On 2/14/15 5:13 PM, "LuKreme" <krem...@kreme.com> wrote: >Also, I do not delete received mail, regardless of how spammy it is >(well, I do if it¹s *my* mail and the spam score is over 10). It all gets >delivered to the user where they are able to scan the Junk folder and >recover any messages that were mistagged.
<snip> >I will probably do something akin to what you did, with smaller numbers >(like +5 and -10). Your server, your rules, but I'd advise against this approach. The whole *point* of phishing is that users *aren't* able to easily distinguish between legit and forged bank emails; putting the phish in the junk folder just gives them an easy opportunity to make mistakes. I have Exim set to reject mail on an SA score of 10+ and it's been years since I had a FP score 10+. (I quarantine SA scores of 5.0-9.9 and those average 2-3 FP a week.) -- Dave Pooser Cat-Herder-in-Chief, Pooserville.com
