Am 03.09.2014 um 22:29 schrieb Adam Moffett: > I've been thinking it could easily be a full time job to read spam, write sa > rules, test sa rules, etc. > > There isn't enough time in my day for that, so I'm pretty much running SA > un-customized. I do have bayes, which I > do train with my own spam & ham, but I don't have a good population of users > that I would trust to determine what > is spam. So I don't think I have a very good representative sample. It > works, but it could be better. > > Is there a paid service that will take care of this for me, but that also > directly benefits the Spam Assassin > project? I'm aware of services like Barracuda (and many others), but I would > prefer to know that our payments > would help keep the project alive and healthy and up to date. I feel that if > we're paying somebody, we might as > well pay somebody who's work benefits the entire spam fighting world
at least forget Barracuda after 8 years i migrated away the last weeks because: * they put random domains on the zerohour-intent list which means you can't whitelist them including "amavis.org" and until today the complete ".cf" TLD leading in block incoming mail containing "local.cf", "main.cf" and so on wrapped in tags by some client * they fucked up two times PTR checks to do deep header inspection leading in if you have "ends with localhost" rules any mail with a header of a local filter on source hosts get blocked and finally nearly anything if you try to filter out dynamic PTR's since the deep header inspection wnet back until the submission of the end user to his MTA * they don't care about security bugs like auth tokens in the URL leading any user click on a link in the message-preview on the webUI leaks his current session via referer header * they mixed RBL's where you configured some for tag, quarantine, block in the action and even in the response which RBL leaded to block -> gambling machine * they verify links in messages by push them to US servers and some days later a server from their network visits links in incoming mail (proven by a test message i sent on a wednesday through gmail, made it back to the Barracuda device and on friday night a hit in the httpd log from their servers) * they run the content filter in a way if messages are blocked by score they are *silently dropped* so no reject on the sender MTA and no evidence that you ever received the message without seek in the WebUI https://community.barracudanetworks.com/forum/index.php?/topic/20584-zerohour-intent-catches/page-6
signature.asc
Description: OpenPGP digital signature
