Re: [Exim] SpamAssassin and large mail

Pàgina inicial
Delete this message
Reply to this message
Autor: Eric Kuzniar
Data:  
A: exim-users
Assumpte: Re: [Exim] SpamAssassin and large mail
>I had hoped not to mention the "obvious" exploit which will gum up
>the internet, but I fear that I wont be understood if I do not.
>If spammers can find a message size that many systems allow but don't
>spam check they will try to send messages of that size.
>

But the spammers are of limited means as well. Using often times stolen
bandwidth their sending out messages that are 251k instead of the usual
< 10k,
and knowing that bandwidth is usually the only thing that limits them from
sending us more spam, an "exploit" like that would would significantly
reduce the amount of spam that they could send. So even if spamassasin was
popular enough for spammers to try to work around, the cure, for them, would
likely be worse than the ailment. If a spammer really wanted to get around
spamassasin they would download it and simply tailor the messages so that
the only thing that gets tagged are the false headers and avoid scoring any
points for text in the body. This would get through most default configs and
be much more efficient than blowing their most limited resource, bandwidth.


>
>