On Sat, 5 Apr 2014, Axb wrote:
On 04/05/2014 06:42 PM, John Hardin wrote:
I'd rather not have to resort to hitting the masscheck system over the
head with the "tflags publish" cluebat, but I will if it keeps ignoring
these rules.
this would by very unwise and would create rule bloat as obviosuly the corpus
isn't seeing much spams with whatever pattern you'd wan to publish.
If the corpus is pathetically small then the results reflect this or the
rulex X only applies to very specific traffic which is not representative.
The masscheck spam corpus isn't pathetically small, but at the moment it's
*strongly* biased towards the traffic *you* are seeing. Your spam is 490k+
of the 510k total corpus.
The idea of the GA is to conservatively publish rules which are useful on a
global basis. Bypassing this mechanism seems to defeat GA and we might as
well stop using it.
If Darxus sees so much of this type, why isn't he running a masschecker?
That was only an example. There are other rules for spam that I'm
receiving, and I have some contact with a fairly large ISP that has been
seeing similar traffic and reporting FNs to me, but the rules aren't doing
well in masscheck.
My personal message traffic is pretty small, and I don't know whether the
ISP can devote any resources to performing masschecks.
I've been considering publishing a separate rules feed for
apparently-useful rules like this that masscheck doesn't seem to consider
worthy, I may have to consider that idea more seriously.
For the moment, though, I think I will "tflags publish" a couple of my
recent high-S/O rules. I wasn't proposing doing it en masse.
--
John Hardin KA7OHZ http://www.impsec.org/~jhardin/
jhar...@impsec.org FALaholic #11174 pgpk -a jhar...@impsec.org
key: 0xB8732E79 -- 2D8C 34F4 6411 F507 136C AF76 D822 E6E6 B873 2E79
-----------------------------------------------------------------------
Maxim IV: Close air support covereth a multitude of sins.
-----------------------------------------------------------------------
8 days until Thomas Jefferson's 271st Birthday
