|
|
| Author |
Message |
| 8 new of 40 responses total. |
cross
|
|
response 33 of 40:
| 
Mar 3 13:02 UTC 2010 |
resp:32 That's simply not true. If a foreign power wants to get root on
grex and read the emails of one of their nationals, they'll find a way.
The reality is that Grex doesn't *need* to offer email. But we've managed
to scale it back enough that it's a relatively low-bandwidth thing and I'm
not sure I see any harm in having it available as an opt-in (which it
basically is now). As far as whitelists go, I believe the current spam
assassin configuration already allows for that, no?
|
veek
|
|
response 34 of 40:
|
Mar 4 02:35 UTC 2010 |
Spamassasin would entail accepting the whole email and then white-
listing it, unless you use a system-whitelist. Also, what about
outbound flood? The postfix-policyserver thingy rejects much earlier in
the game (just after the connection is opened and after the rcpt to) I
vaguely remember ppl saying that email was turned off because SPAM was
taking up bandwidth (and we were using spamassasin back then).
So.. the current status is that we have full mail access (send to
Yahoo, receive from Yahoo, send local email), but ppl have to ask for
it? Who do they have to contact for e-mail to be enabled? Staff?
staff@grex.org??
Again, all this is because if we invite a few ppl in here (once
everything is ready).. I don't want them to bump into problems.
Basically a lot of this (mysql, mail) just needs to be clarified.. The
website: http://cyberspace.org/email.xhtml doesn't explicitly state that
people need to ask for email.. it just states:
------------
Grex provides free email accounts to anyone who wants one. This service
is made available in the spirit of improving everyone's ability to
communicate with others.
Once you have a Grex account, your Email address is either
accountname@grex.org or accountname@cyberspace.org. You may use
whichever address you prefer.
Grex does not support POP mail or Web-based mail.
<SNIP>
Once you have connected by telnet and logged in, you can use any of the
mail clients available on Grex. Currently, we support pine, elm, and
mail.
--------
|
kentn
|
|
response 35 of 40:
|
Mar 4 03:57 UTC 2010 |
Yes, I'm using a short whitelist right now with spamassassin. And a
very short blacklist. As to whether it works, it's hard to say right
now. I still get spam which spamassassin almost always throws out
correctly.
|
cross
|
|
response 36 of 40:
|
Mar 5 14:05 UTC 2010 |
Then we should update the web pages.
|
kentn
|
|
response 37 of 40:
|
Mar 5 15:06 UTC 2010 |
I don't think that we want a system-wide whitelist or a system-wide
blacklist. It'd be better to leave what gets tossed out to the
individual. That's just my opinion, though.
Most corporate spam software just puts potential spam in a separate
location and informs the user so they can decide if it's a false
positive. If the user doesn't rescue the message in a certain amount of
time, it gets nuked. Of course, I have no idea how much egregious spam
is deleted before that point.
Definitely the web pages need updating (it's a never-ending job, I'm
sure). We need to have them be in line with what we are offering and
with our policies. Making it easier for new users to find what they
need would help if it isn't obvious already.
Having easy to follow instructions for beginners is a great idea. I
think Grex offered some sort of help manual in the past. Perhaps, in
addition to the web page updates, that manual needs updating?
Here's an on-line spamassassin configuration generator for users:
http://www.yrex.com/spam/spamconfig.php
I don't know how useful that is, but it might help (or it might let
people shoot themselves in the foot more easily).
Oh, and from what I've read about spamassassin whitelisting, it doesn't
reject e-mails from people not in the whitelist per se, it gives e-mails
from the whitelist addresses a very low spam score (-100) so that it is
unlikely they will be marked as spam. Thus, e-mails still go through
the usual spam filtering.
|
tod
|
|
response 38 of 40:
|
Mar 6 01:27 UTC 2010 |
Can't you folks say "yes-no list" instead of conjuring up racial images?
|
kentn
|
|
response 39 of 40:
|
Mar 6 01:29 UTC 2010 |
Heh. Read the man page. Of course the word assassin is in there too, so
that conjures up other images, I'm sure.
|
kentn
|
|
response 40 of 40:
|
Mar 6 01:39 UTC 2010 |
100 USER_IN_BLACKLIST From: address is in the user's black-list
Okay, so it finally hit one from my list and gave it 100 points.
Guaranteed spam, almost.
|