* Mike Marynowski: > Everything we test for is easily compromised on its own.
That's quite a sweeping statement, and I disagree. IP-based real time blacklists, anyone? Also, "we" is too unspecific. In addition to the stock rules, I happen to maintain a set of custom tests which are neither published nor easily circumvented. They have proven pretty effective for us. -Ralph