On Fri, 05 Aug 2011 10:49:36 -0700, Adam Katz wrote: >> I fixed this yesterday and updates are now fully functional.
On 08/05/2011 07:36 PM, Benny Pedersen wrote: > super, i just noticed nopublis in the above file, is this intended ? Short answer: Yes. The GA is too slow to publish them itself. Longer answer: Until subversion repository checkins reliably get published with a sub-24h turnaround time, the rules in khop-sc-neighbors should not be published through that mechanism. My sa-update channel is updated a few times each day and can handle that. Another issue with upstream is that we'd have to be extra-careful to retract all of these rules once we stop updating them (i.e. when a new release comes out and the older one's auto-updates dwindle). Its regular checkins to the SVN trunk (which are *not* as frequent as the channel's updates) are for ruleQA purposes only, acting as evidence that the rules are of high quality. One further note: The CIDR/8 rules (and the others, to a small degree) look *very* solid to the scoring mechanism. This is in part due to sampling bias; we have very little ham coming in from Latin America, Africa (esp. Nigeria), and Asia (esp. China), which tend to amplify rules that specifically target those regions. It is also unfair to penalize somebody for their provider's /8, which would be entirely out of their control. Both of these reasons mandate the rules stay capped at low scores. (I hear the publishing mechanism now allows for scores set in the sandboxes to act as upper limits on published rules. That would solve this issue.)
signature.asc
Description: OpenPGP digital signature
