We have been testing some new web/pop3 software. Now it has an optional function for user called MailGuard.
I am unsure if it is particular to this program or some generic system.
When enabled it automatically blocks email and puts it in a pending account for 7 days. The sender gets an email in which they have to click a link and type in the graphical code presented. The mail is then delivered.
The user can set whitelists mails are not blocked as well as see the number of mails pending. After 7 days they are deleted if the sender does not click etc.
What do you think?
I like the idea but do you see any problems with allowing it to be used, like endless loops or something?
it wont loop, new cpanel pro uses something similer called boxtrapper but i think it wont send to a website just lets the user to reply to the email to confirm and it will be passed. there is also another option called ASK Active Spam Killer that uses the same idea too.
this MailGuard is commercial or free version?
can it be installed serverwide or need custom installation per customer?
Bashar Al-Abdulhadi - KuwaitNET Internet Services Serving customers since 1997
Kuwait's First Webhosting and Domain Registration provider - an ICANN Accredited Registrar
It is actually part of the Socketmail pro implimentation. It is optional both at the provider level and at user level. So you can default it on or off and they can also turn it on or off.
So it is not a serverwide installation, though I guess it is on all the domains using Socketmail since it takes over all the mail on that domain. I am unsure if it has been written for this program or whether the SM folks have used some stock system.
The only thing I do not like is the GD font being used as hard to read. You can test the demo we are running by sending a mail to testuser (at) /dot/ net
Should fire you back an email with a link.
I just worry about people subscribing to newsletters with their email account then this firing a message back then the [email protected] sending one back and so on....
But what about this Cpanel pro option that sounds interesting, I will do a google on those system you mention. Certainly it seems like a good idea off the bat. But I do wonder how practical it is.
I don't see any problems with it technically, but on a practical level, I don't see it catching on. Loops and the such can be avoided by special headers in the captcha request. AFAIK, there are several other commercial and free implementation of this idea.
It is really a pain to verify mail sent to the "guarded" account. You have to get out of your way to open a link and follow the instructions to pass the captcha test. It's also a drain on computing resources, when you can run spam filters like dspam or SA which can filter out 99.9% of spam.
For example, [email protected] is heavily spamed, in the past month we have received over 1000 spam messages, but only 1 got through our SA system. Just make sure you are training your baysian filters heavily and enable DCC, Razor2 and Pyzor. We haven't had any false positives so far.
The best shot for this idea to catch on with users is to promote it as a "secure mailbox", but using email is much of a chore already. Probably don't want to make it more of a chore.
Oh yeah, sorry about the rant.
::. www.diginode.net : Dedicated Servers : Virtual Machine Servers .::
::. Industry-Leading Remote Server Management .::
::. Automatic OS Re-image : Instant Server Reboot : Remote Serial Console .::
::. Over 20 OSes to choose from : Install a new OS every day .::