Nataraj wrote:
Marc Perkel wrote:
Just wondering about what people are using to detect if email is
coming from a mail list discussion server like yahoo or google
groups. Does anyone have good discussion list detection rules?
I'm not sure about doing this from within spamassassin, but using
postfix, I have a whitelist that will avoid calling spamassassin for
anything that matches. I match entries primarily using the envelope
rules. I've manually added entries primarily for the high traffic
mailing lists that I've noticed on my server. Since I run other tests
on my mailserver to disallow bogus senders, it's pretty foolproof.
If Sender matches:
51 accept regex:.*\.ubuntu\.com 51
accept regex:....@postfix\.org 51 accept
regex:....@centos\.org 51 accept
regex:.*\.fedoraproject\.org 51 accept
regex:....@returns\.groups\.yahoo\.com 51 accept
regex:....@spamassassin\.apache\.org
I would also think there would be some good header tests, such as
having a list-id header, but the problem here is that if this became
used universally, spammers could easily add false headers. You could
also look for signs that the message came through one of the major
mailing lists managers such as mailman, ezmlm, majordomo etc., and
also include yahoogroups, google etc in these tests.
if your MTA already makes the enveloperules available for testing and
you can avoid passing the messages to spamassassin, you'll cut down
significantly on resource usage. I have NOT had any problems with
spam passing through my simple setup.
Nataraj
Sorry for the unreadable formatting, My rules looked like this:
51 accept regex:.*\.ubuntu\.com
51 accept regex:....@postfix\.org
51 accept regex:....@centos\.org
51 accept regex:.*\.fedoraproject\.org
51 accept regex:....@returns\.groups\.yahoo\.com
51 accept regex:....@spamassassin\.apache\.org
