Quoting John Rudd ([EMAIL PROTECTED]): > > From: Daniel Senie <[EMAIL PROTECTED]> > > Products which wish to filter spam or viruses > > REALLY should be built to "plug in" to mail clients via APIs. > > I disagree. The proper place to do spam and virus scanning is on the > server. Sure, if you want user's to feel some form of warm fuzzy, they > should have the option to run it on the client (and once there, your > method might be right). But the best place to put it is on the server. > For one, it means that the client hasn't wasted bandwidth downloading > what may be huge amounts of bad data.
No, it means you pay (without being able to charge through, often) for a large infrastrcture upgrade because some of your customers are running virus runtime environments (Outbreak). Ever scan 50-100,000 message/hour? Me? I use mutt mostly. It doesn't get viruses. More, I've been hindered from clients trying to send me viruses and had them blocked by our IT folks. Why do virus scanning on the end? "By utilizing the massively distributed, mainly idle systems available we are able to be scale our anti-virus capabilities far being what we could do without spending 6 figures or more" Virus "attacks" usually come hard and fast at once. Server scanning is a great way to do denial of service on yourself. Scan it on landing and those hundreds of 600MHz+ machine out there scan as the mail comes down. Given floppies, USB thumb drives, and CDs with Virii (thanks MS for that one), you must scan on the machine. It's WAY offtopic for QPopper, but commercial Sendmail (Inc) has anti-spam and anti-virus milters available for $$$$. Explore also Sendmail 8.12's "FFR_QUARANTINE" option (new features can not be added officially without a version number increase (eg 8.13) and they are tested or in versions as "FFR_blah"). Me? I use spamassassin, but mostly get amused at the floods of viruses trying to run on my BSD/Alpha box. Now, back to qpopper discussions...
