ietf-asrg
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: [Asrg] New proposal for spam blocking: Greylisting

2003-06-20 10:37:36
from [Evan Harris] [Permanent Link] 

On Fri, 20 Jun 2003, Vernon Schryver wrote:


Well, keep in mind that the longer you run the system, the more
"relationships" that are observed and whitelisted.  The majority of the
impact is in the first few days of running the system.  After that, I should
think it would scale very well.


That makes sense for a small site, but I wonder if AOL or Microsoft
would agree.


The fact that they have systems that can handle those volumes of mail means
that they also probably already have the needed infrastructure in the way of
distributed scalable database backends.

In the overall picture of handling any individual mail, the checks for
greylisting is a tiny amount.  Multiply that by a million mails an hour, and
it's still the same small percent, which means it should be straightforward
to implement it in a manner that scales with whatever infrastructure is
already in place.

Places like AOL and yahoo already use databases to store their user
accounts, and all the contacts for those user accounts.  Reimplement it to
take advantage of those existing databases, and the impact becomes even
less.


My bet is the opposite and that the employers of legislators will
never let them outlaw "mainsleaze" even as they instruct them to outlaw
the current spammers.  To prove the point at an extreme, consider the
likelihood of congresscritters outlawing their own spam.


So let them be handled by blacklists.  In either case, the fact that they
are trying to be legit means they are easily blocked since the headers
should not be forged.


I agree, although I find your 95% effectiveness results surprisingly
high.   Other people who have tried the same idea have reported
significantly lower numbers, although still worthwhile.


That may be due to the fact that I'm counting all blocked deliveries in my
totals.  Many delivery attempts are to non-existant users, which would have
been blocked by sendmail anyway, but aren't yet at the point that the milter
gets the info.  I didn't have an easy way of eliminating those, but don't
think I should have anyway.  I don't think that the fact that the spam may
have also been caught by another method (even one so simple as if the user
exists) should not be counted against it.  It still blocked the mail before
that check was done.

Evan


_______________________________________________
Asrg mailing list
Asrg(_at_)ietf(_dot_)org
https://www1.ietf.org/mailman/listinfo/asrg
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: [Asrg] New proposal for spam blocking: Greylisting, Evan Harris
Next by Date:  Re: [Asrg] Introduction and another idea, Vernon Schryver
Previous by Thread:  Re: [Asrg] New proposal for spam blocking: Greylisting, Vernon Schryver
Next by Thread:  Re: [Asrg] New proposal for spam blocking: Greylisting, Vernon Schryver
Indexes:  [Date] [Thread] [Top] [All Lists]