Spam Filter ISP Support Forum

  New Posts New Posts RSS Feed - AuthorizedTo success
  FAQ FAQ  Forum Search   Register Register  Login Login

AuthorizedTo success

 Post Reply Post Reply
Author
Analytical View Drop Down
Newbie
Newbie
Avatar

Joined: 28 February 2006
Location: United States
Status: Offline
Points: 4
Post Options Post Options   Thanks (0) Thanks(0)   Quote Analytical Quote  Post ReplyReply Direct Link To This Post Topic: AuthorizedTo success
    Posted: 28 February 2006 at 4:18pm

I found that the AuthorizedTo list has done more to stop spam and spam attacks than any other filter.  We are an ISP and were being hit hard with phishing spam attacks.  Once we decided to use the AuthorizedTO feature we found it not only cut the spam but allowed our spamfilter processor to move from heavy to relaxed.

After we realized the benefits of this filter we wrote a service that pulls valid email addresses from our ISP mail server (it uses an SQL database) and merges them with a manual list (for clients that have their own email server), sorts them, removes any duplicates and saves them in a text file for the Spamfilter. The service runs every five minutes if there are changes it saves a new AuthorizedTo file. With this service any new email address added to a clients hosted email account (even by the client) is added to the AuthorizedTo list without any effort on our part.

I just thought I'd share how we made this filter work for us. 

 

 

His and yours,

Dwight
Back to Top
mikek View Drop Down
Senior Member
Senior Member
Avatar

Joined: 22 February 2005
Location: Switzerland
Status: Offline
Points: 133
Post Options Post Options   Thanks (0) Thanks(0)   Quote mikek Quote  Post ReplyReply Direct Link To This Post Posted: 01 March 2006 at 10:47am

We're doing the same thing here, our mail server also uses an sql database, and this really works great!

Regards,

Mike

Back to Top
sgeorge View Drop Down
Senior Member
Senior Member


Joined: 23 August 2005
Status: Offline
Points: 178
Post Options Post Options   Thanks (0) Thanks(0)   Quote sgeorge Quote  Post ReplyReply Direct Link To This Post Posted: 01 March 2006 at 11:01am
Very cool.  I know that you both mentioned that you're mail servers use SQL databases...  but would anyone know how to retrieve a list of emails from a mail server that supports LDAP queries?

Thanks,
Stephen
Back to Top
Desperado View Drop Down
Senior Member
Senior Member
Avatar

Joined: 27 January 2005
Location: United States
Status: Offline
Points: 1143
Post Options Post Options   Thanks (0) Thanks(0)   Quote Desperado Quote  Post ReplyReply Direct Link To This Post Posted: 01 March 2006 at 4:47pm

Nice idea in theory BUT, in our application, many customers have "Catch All" addresses and many we simply forward to THEIR mail servers so we have no way of knowing what addresses are valid or not.

Having said that, believe it or not, when I do use the AuthorizedTo list on my own mail server, which only has 90 or so accounts and they are all defined, 99.2% of all messages are blocked! Look below.

Action Messages Bytes
Dropped Connection 478,570  93.2 %  8.69 M
2 quarantined   16,449 3.2 % 68.70 M
3 sent to NULL   13,325 2.6 %   2.00 k
4 Bypassed all rules     2,382 0.5 % 72.25 M
5 accepted     1,547 0.3 % 35.69 M
6 rejected     1,096 0.2 %   1.82 M
  Total       513,369 100 %       187.15 M



Edited by Desperado
The Desperado
Dan Seligmann.
Work: http://www.mags.net
Personal: http://www.desperado.com

Back to Top
Dan B View Drop Down
Senior Member
Senior Member
Avatar

Joined: 09 February 2005
Location: United States
Status: Offline
Points: 104
Post Options Post Options   Thanks (0) Thanks(0)   Quote Dan B Quote  Post ReplyReply Direct Link To This Post Posted: 21 March 2006 at 5:32pm

Dan,

We too have CatchAll Accounts within our mailserver and using the AuthorizedTo feature without any problems.  In the AuthorizedTo list just use an *@yourdomain.com as the catchall domains and it will still allow the other domains to have AuthorizedTo addresses.

Dan B

Back to Top
dcook View Drop Down
Senior Member
Senior Member
Avatar

Joined: 31 January 2005
Location: United States
Status: Offline
Points: 174
Post Options Post Options   Thanks (0) Thanks(0)   Quote dcook Quote  Post ReplyReply Direct Link To This Post Posted: 21 March 2006 at 6:10pm
Good points, we also are an ISP ... for our clients that have catch all accounts or have their own mail server with spam filtering we uncheck the 'authorized to' list in the custom domain filters. This only applies to a few clients. Most clients havre retired their catch all accounts. They decided that they get too much spam.


Edited by dcook
Dwight
www.vividmix.com
Back to Top
 Post Reply Post Reply
  Share Topic   

Forum Jump Forum Permissions View Drop Down



This page was generated in 0.094 seconds.