At 01:45 2007-01-06 +0800, DR. Lee - NS3 wrote:
However maybe one can check the validity of my reasoning. What I think
is that instead of thinking about how to get rid of the junk mails,
maybe I should concentrate on thinking about the sender and recipent.
It's called whitelisting (or greenlisting for PC minded folks). Common
pre-test before subjecting messages to more rigorous spam filters.
Basically I only need to pay attention to those with both sender and
recipient are known to my system.
You'll still get plenty of spoofed malware coming from people you may know
because malware often rummages through their saved mail and addressbook to
get addresses. As a result, the malware is more likely to come from
someone you know or have communicated with before (at least via a
For those match neither, it is for bin straight away.
I would be extremely cautious of this policy.
If it match from_list only, the mail could be for an ex-staff of the
Er, why not reject ex-staff at the MTA? Set up the MTA error message to
either report back the address of the person NOW performing those duties,
or (better) provide a URL to a page with general information about who to
If it match to_list only, then it could be a new contact.
Or spam, since a LOT of that has your address on it as a recipient.
Only these two categories need to be examined by an operator or doing
further sorting using the subject of the mail.
It is easy enough for the computer to generate an updated from_list and
to_list from company database system.
Well, have fun tinkering with it.
Sean B. Straw / Professional Software Engineering
Procmail disclaimer: <http://www.professional.org/procmail/disclaimer.html>
Please DO NOT carbon me on list replies. I'll get my copy from the list.
procmail mailing list Procmail homepage: http://www.procmail.org/