Re: Whitelist from file

2007-07-20 Thread Meng Weng Wong 

Crossposted to Karmasphere-users and to SpamAssassin-users

Igor Chudov wrote:

I have several mail folders (linux mailbox files) that are a good
source of whitelist information. For example, I am sure that all To:
addresses in my sent folder, and all From: addresses in my friends or
ebay folder, are good.


This is an excellent approach that I can vouch for :)

http://www.listbox.com/member/archive/735/2004/09/search/bWVuZ3dvbmc/ 
sort/time_rev/page/2/entry/12:54/6619580/


I'm glad to say that things have matured since 2004 see below.


So what I would like to do is to generate a file with a list of
addresses that I know are good, and to give them a good negative score
(to decrease probability of false positive).

Based on my readings, I could not find a feature that would offer
this, have I missed anything?


On Jul 21, 2007, at 6:23 AM, Matt Kettler wrote:
Nope, you'd have to prefix each address with "whitelist_from" and  
put it

into your user_prefs, or a .cf file in /etc/mail/spamassassin.



As Matt Kettler suggested, you really want whitelist_auth rather than  
whitelist_from.


Keeping your whitelist in a locally maintained .cf file is a good  
first step.


A good second step might be publishing that file as a DNSWL so other  
people can benefit from it.


If we take a few more steps down that path, we end up at a possible  
future that I would like to invite you to join.


If you don't mind putting your whitelist on a remotely hosted site,  
you could upload it to Karmasphere, the reputation hosting platform  
I've been building over the last couple of years.


The reason I'm inviting people to upload their whitelists to  
Karmasphere is because I'd like to build a meta-whitelist drawn from  
multiple sources.


I am extending Mail::SpamAssassin::Plugin::Karmasphere to provide  
functionality similar to whitelist_auth.


If persons P1, P2, P3, P4, ... Pn upload their whitelists, then the  
community could benefit.  Imagine, for example, a rule at Karmasphere  
that says "identify domains that appear in at least three or more of  
my friends' whitelists".  The next rev of the Karmasphere plugin will  
show a detailed explanation, such as which third parties caused an  
address to be whitelisted.


If this is an approach that makes sense to you, I would be happy to  
help write some perl scripts and otherwise get things up and running.

Re: Whitelist from file

2007-07-20 Thread Matt Kettler 
Igor Chudov wrote:
> I have several mail folders (linux mailbox files) that are a good
> source of whitelist information. For example, I am sure that all To:
> addresses in my sent folder, and all From: addresses in my friends or
> ebay folder, are good. 
>
> So what I would like to do is to generate a file with a list of
> addresses that I know are good, and to give them a good negative score
> (to decrease probability of false positive). 
>
> Based on my readings, I could not find a feature that would offer
> this, have I missed anything?
>   
Nope, you'd have to prefix each address with "whitelist_from" and put it
into your user_prefs, or a .cf file in /etc/mail/spamassassin.

And quite frankly, an email address alone is a very poor, and commonly
forged, basis for whitelisting. Generally whitelist_from_rcvd or
whitelist_from_spf are better options, and the email-address-only
whitelist_from is considered a method of last resort only.

Re: Whitelist from file

2007-07-20 Thread Jari Fredriksson 
Igor Chudov wrote:
> I have several mail folders (linux mailbox files) that are a good
> source of whitelist information. For example, I am sure that all To:
> addresses in my sent folder, and all From: addresses in my friends or
> ebay folder, are good.
> 
> So what I would like to do is to generate a file with a list of
> addresses that I know are good, and to give them a good negative score
> (to decrease probability of false positive).
> 
> Based on my readings, I could not find a feature that would offer
> this, have I missed anything?
> 
> i

If you use maildrop (and call SpamAssassin from it), you can have such a file, 
and bypass spamassassin when the sender is found from that file.

Whitelist from file

2007-07-20 Thread Igor Chudov 
I have several mail folders (linux mailbox files) that are a good
source of whitelist information. For example, I am sure that all To:
addresses in my sent folder, and all From: addresses in my friends or
ebay folder, are good. 

So what I would like to do is to generate a file with a list of
addresses that I know are good, and to give them a good negative score
(to decrease probability of false positive). 

Based on my readings, I could not find a feature that would offer
this, have I missed anything?

i