On Sun, Mar 28, 2004 at 07:01:47PM -0800, Robert LeBlanc wrote: # (1) Should *all* non-spam items be revoked, or just those that were # wrongly marked as spam by Razor? That is, if Razor ignores a given # item because its confidence level is too low, and that item is # indeed ham (not spam), is there any value to revoking that item # (e.g. to further confirm to the Razor database that this item is not # spam, to help lower its confidence score)? Is there any *harm* in # doing so?
There is no harm in revoking legit messages in any case, and in the specific case you describe there actually is value in a revocation. It is the case where p=0 (Razor2 does not know about the message at all) that a revocation really provides little value to the reputation metrics. # (2) When an item is revoked, is the full body of the item sent to # the Razor server, or just the hash/digest? If the mail happens to # contain sensitive or confidential information, I imagine most people # wouldn't want to have that sent and/or databased by Razor (and may # in fact have corporate policies that forbid such a thing). I # realize that the full body of *spam* messages are sent to the Razor # server, but is this also done with the revoke mechanism? Depending on which implementation you're using, the client-side agent will first attempt to revoke the ``dre'' (default reporting engine) signature of the MIME part(s). If the system does not know about them, then it will respond with an ``err=230'', the "content required" error, and the client-side agent will then provide the content in full. In the common case, you're revoking something the system already knows about and thus the content never crosses the wire (a second time). It is worth noting that in the context of revoking that proprietary, private message from your CEO or business partner that you accidentally blocked, we call that a "self-correction" (defined as a revoke for a content class whose only report was also from you) and will nuke the entire thing, signatures and content, from the system. Best, --jordan
pgp00000.pgp
Description: PGP signature
