Thanks Eric,
I hope you do not mind my posting this to the sniffer list so others
may voice their suggestions as well as take your suggestions into
account.
On Dec 13, 2006, at 12:59 PM, E. H. ((Eric)) Fletcher wrote:
Steve:
I wonder whether a set of I-Mail rules that blocked all of the
small island states with TLD's as well as Russia and Korea and
anything else you wanted to include might not be effective.
Assuming you host more than one domain, the rule base could be
copied in by domain and modified if necessary for a domain that
wanted to be able to receive the material. You could even take it
to the user level if necessary. I've been playing with a few
tests and have found it quite effective against new spam versions
that the rule base has not yet encountered. It isn't at all
effective against e-mail coming from an IP in Russia that
masquerades with some other HELO or TLD but I'm surprised by how
much of it is easily detected on that basis.
It's also possible to block it out with huge IP blocks of course,
as you can map them, but that is done for the I-Mail system as a
whole so not easily implemented or tailored at the domain level.
Best regards,
Eric
Regards,
Steve Guluk
SGDesign
(949) 661-9333
ICQ: 7230769
