Re: [OT] Re: ATTACK TO MY SYSTEM

From: Willy Tarreau
Date: Wed Sep 24 2003 - 03:48:40 EST

Next message: Jörn Engel: "Re: [OT] Re: ATTACK TO MY SYSTEM"
Previous message: Alexandru Damian: "i875 Watchdog"
In reply to: John Bradford: "Re: [OT] Re: ATTACK TO MY SYSTEM"
Next in thread: Jörn Engel: "Re: [OT] Re: ATTACK TO MY SYSTEM"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Wed, Sep 24, 2003 at 08:40:35AM +0100, John Bradford wrote:

> RFC 822, section 3.4.7, makes clear that case is _not_ significant for
> these field names. RFC 2822 doesn't change this.

Sorry John about the mis-information. Of course case is not significant,
otherwise we would simply not receive these mails. I should have said
"common usage" and not "protocols", since I really thought the former
eventhough I wrote the later.

> Just because no commonly used E-Mail application seems to generate
> uppercase field names, how do you know something like a password
> auto-responder script won't?

I don't know. It's only an empirical choice based on observations. Many of us
are more concerned by hundreds of mails a day than risking to get a rare
false-positive. But I agree, I should have been clearer.

I have nearly the same .procmailrc as the one Joern Engel proposed :

:0 D
* ^FORM:
spam/swen

And I too agree that I have 0% false positive so far. But just like any filter,
use at your own risk...

Willy

-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Jörn Engel: "Re: [OT] Re: ATTACK TO MY SYSTEM"
Previous message: Alexandru Damian: "i875 Watchdog"
In reply to: John Bradford: "Re: [OT] Re: ATTACK TO MY SYSTEM"
Next in thread: Jörn Engel: "Re: [OT] Re: ATTACK TO MY SYSTEM"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]