Security Basics mailing list archives

Re: Outsourcing spam filtering and secuirty

From: Chris Ditri <chrisd () better-investing org>
Date: Fri, 19 Sep 2003 15:25:10 -0400

Hi.

I would say that if you control your own email server, I would just implement 
something locally.  If you don't own manage your own email server, then I 
don't think you will be significantly secure by letting that same company 
filter your spam.  If you open it up to yet a 3rd company, then obviously 
your risks increase.

If you are using sendmail, or qmail, I would take a look at bogofilter.  It is 
available at sourceforge, and it is open.  I have done wonderful things with 
this package at my place of employment.  After about a week of training, it 
was better than 99% effective, after two months, it was better than 99.999% 
effective.  It is simple to use, just plugs right into a procmailrc -- and 
fast.  We have a rather wimpy email machine, pentium III with ide drives and 
it doesn't even break a sweat on processing.

I have also heard good things about spamassassin, but found no need to pursue 
it since bogofilter is working so nicely.

Maybe a little more than you wanted, but my too sense :0).

Good luck.


Chris



On Thursday 18 September 2003 11:22 pm, Tony Brisco wrote:

Hi,

Is trusting third party with the corporation's MX
records for spam filtering purposes is widely used ?
Accepted ?  And how secure ?

I appreciate in advance your comments and suggestions.

Tony Brisco

__________________________________
Do you Yahoo!?
Yahoo! SiteBuilder - Free, easy-to-use web site design software
http://sitebuilder.yahoo.com

---------------------------------------------------------------------------
Captus Networks
Are you prepared for the next Sobig & Blaster?
 - Instantly Stop DoS/DDoS Attacks, Worms & Port Scans
 - Precisely Define and Implement Network Security
 - Automatically Control P2P, IM and Spam Traffic
FIND OUT NOW -  FREE Vulnerability Assessment Toolkit
http://www.captusnetworks.com/ads/42.htm
---------------------------------------------------------------------------
-



---------------------------------------------------------------------------
----------------------------------------------------------------------------

Current thread:

Outsourcing spam filtering and secuirty Tony Brisco (Sep 19)
- Re: Outsourcing spam filtering and secuirty Roger A. Grimes (Sep 19)
- Re: Outsourcing spam filtering and secuirty Matt Taber (Sep 19)
- Re: Outsourcing spam filtering and secuirty Chris Ditri (Sep 19)
- Re: Outsourcing spam filtering and secuirty chort (Sep 22)
- <Possible follow-ups>
- RE: Outsourcing spam filtering and secuirty jburzenski (Sep 19)
- Re: Outsourcing spam filtering and secuirty Craig_Brauckmiller/LEK (Sep 19)
- RE: Outsourcing spam filtering and secuirty Timothy Onsomu (Sep 19)
  - New Secure Enterprise Magazine from Network Computing Steve (Sep 23)
- Re: Outsourcing spam filtering and secuirty Dana Rawson (Sep 19)