Re: [Exim] Bogofilter and Exim

Top Page
This message is part of the following thread:
M\the complete thread tree sorted by date
MMKarl Schmidt at <-
MDavid Relson at ->
Delete this message
Reply to this message
Author: Philip Douglass
Date:  
To: Karl Schmidt, Konstantin Starodubtsev, bogofilter, exim-users
Subject: Re: [Exim] Bogofilter and Exim
I think you've missed the point: bogofilter is going to strip any x-bogosity
header it finds and will replace it with a new one. If a spammer adds an
x-bogosity header that makes it look as if it is not spam, it will be
replaced with a new, correct header. And then you will filter it. That "fake
x-bogosity header" tactic would only work if you filtered your email before
it got passed through bogofilter. And why would you want to do that?

----- Original Message -----
From: "Karl Schmidt" <karl@???>
To: "Konstantin Starodubtsev" <kostya@???>; <bogofilter@???>;
<exim-users@???>
Sent: Monday, December 30, 2002 5:55 PM
Subject: Re: [Exim] Bogofilter and Exim


> A couple of things here
>
> What prevents a spammer from adding a x-bogosity header that makes it
> look as if it is not spam? Or if someone forgot to put
>
> domain = +local_domains
>
> in the router and sent filtered and thus x-bogosity headered mail out?
>
>
> - bogofilter replaces the x-bogosity header with the -p switch.
>
> Is there a simple way to remove the header on mail coming from the
outside?
>
> Konstantin Starodubtsev wrote:
> >>Has anyone had any success with integrating Exim 4 and bogofilter
> >>system wide, such that each emails gets run through bogofilter before
> >>it gets delivered to a users mailbox?
> >>
> >
> >
> > #Router
> > #the router should be placed just before actual local delivery
> > bogofilter_router:
> > no_verify
> > condition = "${if and { {!def:h_X-Bogosity:} \
> > {!eq {$received_protocol}{spam-sc anned}}} {1}{0}}"
> > driver = accept
> > transport = bogofilter_filter
> >
> >
> > # Transport
> > # bogofilter just adds X-Bogosity header here so we left the decision
what to
> > # with spam for user. ( by using procmail in the case of local delivery
or
> > # sieve if we're using cyrus imapd)
> > bogofilter_filter:
> > driver = pipe
> > command = /usr/sbin/exim -oMr spam-scanned -bS
> > use_bsmtp = true
> > transport_filter = /usr/bin/bogofilter -d /var/lib/bogofilter -l -p -e
> > group = mail
> > return_fail_output = true
> > user = mail
> > home_directory = "/tmp"
> > current_directory = "/tmp"
> > log_output = true
> > return_path_add = false
> >
> > --
> >
> > ## List details at http://www.exim.org/mailman/listinfo/exim-users Exim
details at http://www.exim.org/ ##
> >
>
> --
> --------------------------------------------------
> Karl Schmidt EMail    Karl@???
> Transtronics, Inc.    WEB http://xtronics.com
> 3209 West 9th Street  Ph(785) 841-3089
> Lawrence, KS 66049    FAX(785) 841-0434

>
> Definition of Windows XP:
> SPAM, thinly disguised as an operating system
> --------------------------------------------------
>
>
> ---------------------------------------------------------------------
> FAQ: http://bogofilter.sourceforge.net/bogofilter-faq.html
> To unsubscribe, e-mail: bogofilter-unsubscribe@???
> For summary digest subscription: bogofilter-digest-subscribe@???
> For more commands, e-mail: bogofilter-help@???
>



This message was posted to the following mailing lists:
Exim-users
Mailing List Info | Nearby Messages		<-Re: [Exim] Bogofilter and EximRe: [Exim] Bogofilter and Exim->
Tahini and Hummus and Cumin Development Archives administrated by cumin AdminsLurker (version 2.3)