On Wed, Sep 01, 2004 at 11:30:08PM -0500, Bob Apthorpe <[EMAIL PROTECTED]> wrote: > [cc'd to SATalk] > On Wed, 1 Sep 2004 20:45:18 -0700 Jeff Chan <[EMAIL PROTECTED]> wrote: > > On Wednesday, September 1, 2004, 6:57:12 PM, Bob Apthorpe wrote: > > > You've sparked a thought. I'd rather not (badly) rewrite and maintain > > > existing, tested code so maybe the right thing to do is take the > > > comment, wrap it up as a mail message, feed it through spamassassin and > > > parse the response for SURBL hits. Or SA score. Using a custom config > > > file with no bayes or other network tests should keep the load down. > > > > > It's somewhat inelegant but it's a) a lot less work, b) more likely to > > > succeed, and c) leverages all of SA, not just SURBL. The downside is > > > that this method requires SpamAssassin with the SpamcopURI plugin to be > > > installed, but since this only has to work for me right now and I only > > > run two servers at home, I don't see that as a real problem. > > > > Justin Mason of SpamAssassin expressed that it would be > > pretty easy to write a plugin for SA3 to dump URIs: > I need to look into the new SA plugin architecture - I have a different > project underway that looks at the ASNs of domains and IP addresses > which could be very useful, especially if fed into bayes.
I just whipped up some code to reject trackback/comment spam using a SURBL as a data source. Unfortunately, the people spamming my weblogs aren't in multi.surbl.org, so I will have to maintain my own local blacklist server. The single most useful thing that could be done wrt fighting spam in weblogs would be an SURBL source that had the offending domains in it. I would offer to make mine public, but I don't have the IP to spare at the moment... Does anyone know of an appropriate SURBL list? -- Matthew Hunter ([EMAIL PROTECTED]) Public Key: http://matthew.infodancer.org/public_key.txt Homepage: http://matthew.infodancer.org/index.jsp Politics: http://www.triggerfinger.org/weblog/index.jsp
