The only way to know if you have a virus or spam message is to look at the content in the DATA section of the transaction, and at that point it's to late to reject the message as I recall.
Bill >---------- >From: Tracy[SMTP:[EMAIL PROTECTED] >Sent: Tuesday, February 03, 2004 12:02 PM >To: [EMAIL PROTECTED] >Subject: [xmail] Re: SMTP Dialog Filter Hooks > >At 14:51 2/3/2004, Davide Libenzi wrote: >> > Davide, what do you think about that ? >> >>Honestly, I do not like it becuase I think it does not buy enough to us >>to balance the intrisic "crappyness" of running external commands at SMTP >>level. We do have filters, and IMO this should be enough. Repeat me again >>what this does buy to us ... > > >The only benefit I can see is the ability to reject in the protocol session >rather than accept and bounce. With spam (and especially with false virus >reports) coming in as bounces nowadays, a lot of sysadmins feel that >bouncing mail is a bad thing, whereas rejecting mail during the protocol >session is better - because it gets the error back to the actual sender (or >as close as possible in terms of proxy spam and virus engines), rather than >to the (possibly) forged envelope sender. > > >- >To unsubscribe from this list: send the line "unsubscribe xmail" in >the body of a message to [EMAIL PROTECTED] >For general help: send the line "help" in the body of a message to >[EMAIL PROTECTED] > > - To unsubscribe from this list: send the line "unsubscribe xmail" in the body of a message to [EMAIL PROTECTED] For general help: send the line "help" in the body of a message to [EMAIL PROTECTED]
