There's this myth that automated spam detection is hard because spammers are all very clever masters of disguise.

notthebee@tilde.zone

@danslimmon This reminded me of that one Twitter thing where they tried to develop an automated system to combat hate posts from white supremacists, but had to shelf it because it would mark posts from official GOP politician accounts

Twitter reportedly won't use an algorithm to crack down on white supremacists because some GOP politicians could end up getting barred too

Twitter used an algorithm to crack down on ISIS-related tweets, but an employee said an algorithm targeting white supremacists could bar GOP figures.

Business Insider (www.businessinsider.com)

endolexi@social.vivaldi.net

@danslimmon I'd say legitimacy is created through active consent, opt-in only. Because when I absolutely *want* to receive 'product news' from the people whose stuff I enjoy using every day, I don't consider it spam at all.

nuintari@mastodon.bsd.cafe

@danslimmon Honestly, the hardest thing in email anymore is getting your legitimate emails through to the big three when you aren't using their services. I do not regret leaving gSuite or whatever they call it this month, but managing one's MX reputation can be a pain in the ass.

jrdepriest@infosec.exchange

@marjolica @azonenberg @danslimmon

If we blocked no reverse DNS, I'm not sure there would be anything left.

zhenech@chaos.social

@danslimmon From a legitimate mail (not even marketing) that I intentionally subscribed to:

X-Spam-Status: Yes, score=5.323
tests=[DIRECT_LOW_CONTRAST=2.499, DKIM_SIGNED=0.1, DKIM_VALID=-0.1,
DKIM_VALID_AU=-0.1, DMARC_PASS=-0.001, HEADER_FROM_DIFFERENT_DOMAINS=0.25,
HTML_FONT_LOW_CONTRAST=0.001, HTML_MESSAGE=0.001, MIME_HTML_ONLY=0.1,
MISSING_HEADERS=1.021, RCVD_IN_MSPIKE_H4=0.001, RCVD_IN_MSPIKE_WL=0.001,
REPLYTO_WITHOUT_TO_CC=1.552]

wouter@pleroma.debian.social

@notthebee

@danslimmon

wouter@pleroma.debian.social

@nuintari
Try managing it when you move servers.

My current Algo:

- Get the new server
- Add the new server to SPF, and add it as low-prio MX (but don't run anything on port 25, yet)
- wait a month
- cross fingers
- pray to the gods of email. Like, *really* hard
- switch servers, but keep the old server around, just in case
- monitor results
- if problems occur: switch back and fix
@danslimmon

towo@chaos.social

@dalias
Hard to differentiate though. When Oracle's billing department produces mails that confuse spam filters..
@danslimmon

jeffgrigg@mastodon.social

@danslimmon

A number of times, at a number of different organizations, I've asked *my employer* (and their partners) to please do a better job with their email requests for action so as *NOT* to "check off" a number of issues in their emails that are literally in their own required computer security training.

marjolica@social.linux.pizza

@jrdepriest @azonenberg @danslimmon not my experience.
Over the last 4 weeks I rejected 16.3% of emails.
Of that 1.9% were replied 4.7.1 (try again later) and 0.4% were replied 5.7.1 (spam) and ended up in my spam folders to review.

On the other hand 13.4% lacked a reverse hostname. The great majority of those were from China (.cn). Only one was from a (UK) site I have bought from.

jrdepriest@infosec.exchange

@marjolica @azonenberg @danslimmon

I imagine if a business is only going to maintain a few reverse lookups anyway, they will prioritize their MX records over the A records. I am used to looking at all the DNS requests and responses, not just those for email.