[Mailman-Users] Filtering Chinese spam.

[Kenneth G. Gordon]

On 22 Apr 2018 at 7:55, Mark Sapiro wrote:

> On 04/21/2018 10:46 AM, Kenneth G. Gordon wrote:
> > 
> > I have modified my settings in Privacy Options/Spam Filters thusly:
> > 
> > ^Subject: =?utf-8?B?
> > ^Subject:.*\?{4,}
> > from: .*@qq.com
> > from: .*ebdoor.com
> > from: .*126.com
> > from: .*139.com
> > from: .*136.com
> > from: .*163.com
> > from: .*193.com
> 
> 
> I'm a bit confused as to where you are putting these. The ones starting
> with ^Subject: look like regexps that would be in header_filter_rules

Correct.

> and the ones starting with from: would also work in header_filter_rules
> but look more like bounce_matching_headers entries.

Yes. I took the first one from my bounce_matching_header rules, then added some others. 
Those worked to eliminate all the spam from qq.com so I continued with the others.

> It is best to use header_filter_rules for everything as it gives more
> control over what to do with a matching message. In that case, it would
> be better if the from ones were like
> 
> ^from: .*@qq.com

OK. Thanks, I am not particularly good at operating mailman (!!) yet, but am trying to learn.
 
> to avoid a match on something like
> 
> Subject: message from: someone @qq.com

My lists would never have anyone from such an address. They are very specifically limited 
to a very few folks who are interested in a rather arcane part of radio operations. Therefore, 
if I block everything from qq.com, that would be just fine.

> Also, if those from: lines are in bounce_matching_headers, it only
> results in those messages being held and presumably the same end result
> is obtained with Privacy options... -> Sender filters ->
> generic_nonmember_action = Hold

Thanks again, I want ALL traffic from (for instance) qq.com to go into a big black hole.

Ken Gordon

---
This email has been checked for viruses by Avast antivirus software.
https://www.avast.com/antivirus