[Spambayes] RE: Yahoo's "domain keys" and spam

Robert K. Coe bob at 1776.com
Fri Dec 12 13:36:16 EST 2003

Where is it written that Spambayes would "add a token verifying the presence of a domain key entry in the header"? Doing so would seem to be self-defeating if credible forgeries of domain keys become widespread and only marginally helpful otherwise (since the "I know it when I see it" model of spam detection works very well for humans and fairly well for Bayesian filters without this additional complication).

For that matter, where is it written that the use of domain keys will become widespread? (But I guess that's a topic for another discussion.)


MIS Department, City of Cambridge
831 Massachusetts Ave, Cambridge MA 02139  ·  617-349-4217  ·  fax 617-349-6165

> -----Original Message-----
> From: Ryan Malayter [mailto:rmalayter at bai.org]
> Sent: Wednesday, December 10, 2003 8:36 AM
> To: SpamBayes Forum
> Subject: [Spambayes] Yahoo's "domain keys" and spam
> http://www.wired.com/news/business/0,1367,61495,00.html?tw=wn_
> bizhead_2
> Will we want to have SpamBayes check these (since many SB users will
> have no control over what happens at their ISP or corporate gateway) as
> they become widespread?
> Just as obviously, spammers will attempt to forge them as well (to fool
> filters like the current SpamBayes that would just add a token verifying
> the *presence* of a domain key entry in the header), or use
> yet-to-be-revoked keys from domains obtained through fraudulent means. I
> think some intelligence must be built into spambayes to handle these...

More information about the Spambayes mailing list