http://issues.apache.org/SpamAssassin/show_bug.cgi?id=5829
------- Additional Comments From [EMAIL PROTECTED] 2008-02-18 21:18 ------- > hmm -- interesting. so the idea is to use this for user training? > Do you see this as something that admins want? (I hadn't heard > of the concept before.) One of the uses will be training, but I think an equally important use is to quantify the vulnerability of the users of an email service; a corporate IT service can use it to estimate the impact of a targeted phishing attack on their employees. Of course they would have to setup either a redirect web page or a proxy to count the number of visits to the detour web page. Otherwise, if it is used for training, the concept is commonly called "embedded training". You can learn more about the related literature and research issues from a recently published article by researchers at CMU on how to design such training systems: http://scholar.google.com/scholar?cluster=12192065727047269146 The idea is that to show the users how they fall for the attacks through first-hand experience, and then give the training material; instead of just plainly bombarding them with didactic policy documents. I would be very happy to improve the code/add new functionalities upon feedback. ------- You are receiving this mail because: ------- You are the assignee for the bug, or are watching the assignee.
