This begs additional questions, actually:
1. I have a honeypot, which puts on hold all emails being attempted to be relayed through, and which has a local user account, also - never used - which happens to receive emails once in a while. I "blindly" run a razor-report on all emails received by this local account, based on the assumed definition/functionality of honeypot (actually - when talking about user email - honeytoken) - i.e. everything "touching" it is "illegal" - never thought of running it through "razor-check" - is this wrong?!?
2. The emails which are
attempted to be relayed through this honeypot are in the thousands a
day. I only analyze patterns for those, but never thought of
reporting them - would it be of any help to run them through
razor-report?
3. If the answer to "2" above is "yes", then I could
combine "1" with it, and then - next question - does anybody know if I could build some sort of transport or filter in postfix (as this is what I am using), to have all incoming emails run through razor-report, before either putting them on hold, or delivering them to the local account? The way I achieve "1" and "2" right now is via:
I would think you would want to just razor-report everything, period.
1) reconfirm spam from another source (you) reinforces the reportings. 2) The more spam is reported, the more is captured.
------------------------------------------------------- This SF.Net email is sponsored by: IBM Linux Tutorials Free Linux tutorial presented by Daniel Robbins, President and CEO of GenToo technologies. Learn everything from fundamentals to system administration.http://ads.osdn.com/?ad_id=1470&alloc_id=3638&op=click _______________________________________________ Razor-users mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/razor-users
