I've seen a lot of recent spam campaigns that get through my basic scanning using the following tactics: 1. Careful design to not trigger Spamassassin content rules, including blocks of text to fool the bayes filter. 2, Careful omission of any identifying headers except for completely valid SPF and DKIM headers with appropriately configured DNS. 3. Real Linux mail servers dropped onto virtual hosting providers. 4. Fresh IP addresses and domains - never used domains that are not blacklisted yet and IP addresses blocks from the hosting providers that take 10-30 minutes to get blacklisted Then they use snowshoe spam tactics to trickle them out until they're blacklisted and then move to the next domain and address.
If your address is on the lists that the perpetrators of these campaigns are using, it's really hard to avoid spam right now. Not impossible, there are some countermeasures, but vanilla Spamassassin and your standard appliances are going to have problems. I can imagine google is going to have an easier time with this because of its size and volume (=more information), but it's far from trivial.
Feds Help You Find Your Fastest Advertised Internet Service
...there, I fixed that for you. That's not even right though. I'm in Verizon country but there's no FIOS in my whole county, yet they list FIOS speeds. Looks pretty useless to me.
a few weeks after you buy a 'smartphone' some other model makes yours a POS. well, almost. how can anyone buy in that kind of market and retain sanity?
How about use the tool you bought for what you bought it for? You did buy it as a tool, right?
You really want to use stranded wire for patch cables. Solid will end up cracking with the repeated bending that most patches are subjected to. I've made patches by hand with stranded and found it much harder to work with than the solid most people are used to.
It's definitely not worth my time unless it's an emergency with no alternative (i.e. poor planning).
I'll speak up here in defense of Mulberry. I've been using it since '99, and for all its flaws I still love it. The organization I work for has it deployed for about 500 users.
It's a bit of a two headed beast. On one hand it's an incredibly feature rich and customizable client, built using IMAP from the ground up. It supports POP3 and local mailboxes, but both are add ons to the IMAP core. It doesn't have the greatest GUI in the world, but it's simple, fast and powerful. The GUI is very close on Win/Mac/*nix which makes it very easy to support.
Now, that doesn't sound like a good email client for the masses, but the other side of Mulberry is the centralized IMSP preferences and the Admin toolkit.
An IMSP server for preferences and addressbooks allows users to have consistency between locations (home, offices, a co-worker's computer, labs) for all their settings and addressbooks. Sorta like a webmail solution, but much FASTER. IMSP options are inherited on the server, so you set up _your_ defaults for new users that make sense. You can also lock specific options to keep users from getting in trouble, or creating security problems.
The Admin Toolkit is what lets you take a copy of the Mulberry Application and customize it for your user base. Prevent creation of local mailboxes if you want, or keep users from saving their passwords so they actually remember what they are. Set attachment size limits or warnings, prevent the use of custom headers, or whatever.
I'm really not sure what we're going to do now that Cyrusoft/ISAMET is gone. Any other option is going to have a big support impact on out helpdesk.
I've not upgraded to Tiger yet, but I'm dubuous that Spotlight will help me. Much of my data is stored on Samba mounts and is shared with other people.
If spotlight keeps its database up to date by tracking changes you make to files, how can it handle files that are potentially changeable by others? It would require some kind of server involvement or inter-client communication that I haven't yet seen considered.
I'm no scientist, but I do own a 3.5 foot iguana, and she is FAR stronger than any cat or dog of equal or greater size that I have ever owned or played with.
Slashdot Mirror
Chech out totalspaces
I've seen a lot of recent spam campaigns that get through my basic scanning using the following tactics:
1. Careful design to not trigger Spamassassin content rules, including blocks of text to fool the bayes filter.
2, Careful omission of any identifying headers except for completely valid SPF and DKIM headers with appropriately configured DNS.
3. Real Linux mail servers dropped onto virtual hosting providers.
4. Fresh IP addresses and domains - never used domains that are not blacklisted yet and IP addresses blocks from the hosting providers that take 10-30 minutes to get blacklisted
Then they use snowshoe spam tactics to trickle them out until they're blacklisted and then move to the next domain and address.
If your address is on the lists that the perpetrators of these campaigns are using, it's really hard to avoid spam right now. Not impossible, there are some countermeasures, but vanilla Spamassassin and your standard appliances are going to have problems. I can imagine google is going to have an easier time with this because of its size and volume (=more information), but it's far from trivial.
-db
The failure of your business model is not my problem.
It's synced to your PC, which is a vulnerability in itself.
Speak for yourself. I trust my "PC" more than the wireless companies who are storing this kind of data already.
Feds Help You Find Your Fastest Advertised Internet Service
db
...unless your name is Zaphod.
You never know, somebody might answer with instructions on how to get there quicker.
Yea right, and a recipe for the sauce we're to pour on our bodies upon arrival.
a few weeks after you buy a 'smartphone' some other model makes yours a POS. well, almost. how can anyone buy in that kind of market and retain sanity?
How about use the tool you bought for what you bought it for? You did buy it as a tool, right?
You'd think a creative person would want to move on and do something different.
A creative person would.
You really want to use stranded wire for patch cables. Solid will end up cracking with the repeated bending that most patches are subjected to. I've made patches by hand with stranded and found it much harder to work with than the solid most people are used to.
It's definitely not worth my time unless it's an emergency with no alternative (i.e. poor planning).
-db
There is another system.
The solution is called 802.1X. No, it's not perfect, but I'm guessing it may become a bit more widely used.
-David
The license is perpetual and per-user, not per machine. Quite nice.
I'm sure we'll use it as long as we can.
-d
I'll speak up here in defense of Mulberry. I've been using it since '99, and for all its flaws I still love it. The organization I work for has it deployed for about 500 users.
It's a bit of a two headed beast. On one hand it's an incredibly feature rich and customizable client, built using IMAP from the ground up. It supports POP3 and local mailboxes, but both are add ons to the IMAP core. It doesn't have the greatest GUI in the world, but it's simple, fast and powerful. The GUI is very close on Win/Mac/*nix which makes it very easy to support.
Now, that doesn't sound like a good email client for the masses, but the other side of Mulberry is the centralized IMSP preferences and the Admin toolkit.
An IMSP server for preferences and addressbooks allows users to have consistency between locations (home, offices, a co-worker's computer, labs) for all their settings and addressbooks. Sorta like a webmail solution, but much FASTER. IMSP options are inherited on the server, so you set up _your_ defaults for new users that make sense. You can also lock specific options to keep users from getting in trouble, or creating security problems.
The Admin Toolkit is what lets you take a copy of the Mulberry Application and customize it for your user base. Prevent creation of local mailboxes if you want, or keep users from saving their passwords so they actually remember what they are. Set attachment size limits or warnings, prevent the use of custom headers, or whatever.
I'm really not sure what we're going to do now that Cyrusoft/ISAMET is gone. Any other option is going to have a big support impact on out helpdesk.
-d
I've not upgraded to Tiger yet, but I'm dubuous that Spotlight will help me. Much of my data is stored on Samba mounts and is shared with other people.
If spotlight keeps its database up to date by tracking changes you make to files, how can it handle files that are potentially changeable by others? It would require some kind of server involvement or inter-client communication that I haven't yet seen considered.
-db
I'm no scientist, but I do own a 3.5 foot iguana, and she is FAR stronger than any cat or dog of equal or greater size that I have ever owned or played with.
You've obviously never tried to pill a cat...