On 14/12/15 20:32, John Hardin wrote:
All:
Any objection to promoting __CT_ENCRYPTED and ENCRYPTED_MESSAGE out of
the sandbox to permanent rules, and giving ENCRYPTED_MESSAGE a
negative (nice) score (say, -1)?
I think that's fairly safe to do, as I doubt a spammer would impose
the overhead of decryption on their victims, and I'm not sure exactly
how well sandbox+masscheck works for "nice" rules.
> header __CT_ENCRYPTED Content-Type =~
/^multipart\/(?:x-)?(?:pgp-)?encrypted|application\/(?:x-)?pkcs7-mime/
What's to stop the spammer using a very short public key? The overhead
for the victim would be minimal
Paul
--
Paul Stead
Systems Engineer
Zen Internet
