On Wed, Mar 15, 2006 at 09:58:52PM -0700, Philip Prindeville wrote: > Ok, does anyone have *recent* statistical analysis (i.e. not almost a > year old) > on this? It could be that the people using this "boneheaded" construct have > realized the error of their ways, and stopped doing it.
Unfortunately not. I updated the ticket (http://issues.apache.org/SpamAssassin/show_bug.cgi?id=4255) with new stats and a plugin that implements the check so people can play with it. The best version was comparing domains: MSECS SPAM% HAM% S/O RANK SCORE NAME 0 28446 5023 0.850 0.00 0.00 (all messages) 0.00000 84.9921 15.0079 0.850 0.00 0.00 (all messages as %) 0.302 0.3340 0.1195 0.737 0.00 0.01 T_HTTPS_HTTP_MISMATCH If people want to play with the plugin and can improve the hit rate to a usable level (or if you find a bug in the code), please let us know! But otherwise this rule sucks pretty badly. :( -- Randomly Generated Tagline: Fry: Whoah. Check out that guy. He makes Speedy Gonzales look like Regular Gonzalez.
pgpFrs2oG7pnQ.pgp
Description: PGP signature