On Mon, Jun 21, 2010 at 11:39:33AM -0400, Adam Moffett wrote: > My philosophy in the past has always been not to scan outgoing > emails because my users are not likely to be spamming. > > However, a couple of issues recently with spambots and SMTP AUTH > with weak passwords has me reconsidering that stance. > > Is anyone here currently scanning their outgoing mail with SA? Good > results? Bad results?
We are scanning both ways without problems - very low false positive rate. The reason: it happened once or twice that some spam came from inside our network with the resulting risk that our domain could be blacklisted. We use spamassassin in combination with the following filters on smtp-level: - clamav with sanesecurity signatures which stops a lot of spam even before it reach spamassassin. - spamhaus' blacklisting which also block a lot of spam at an early stage. - several checks in exim. - spamassassin which only get into the action after the email has passed the first filters. Regards Johann -- Johann Spies Telefoon: 021-808 4599 Informasietegnologie, Universiteit van Stellenbosch "What? know ye not that your body is the temple of the Holy Ghost which is in you, which ye have of God, and ye are not your own? For ye are bought with a price: therefore glorify God in your body, and in your spirit, which are God's." I Corinthians 6:19,20