Home > Archive > PHP Documentation > March 2006 > Re: [PHP-NOTES] note 63699 added to language.oop5.autoload
You are viewing an archived Text-only version of the thread.
To view this thread in it's original format and/or if you want to reply to
this thread please [click here]
| Author |
Re: [PHP-NOTES] note 63699 added to language.oop5.autoload
|
|
| Nuno Lopes 2006-03-28, 6:58 pm |
| >> ----
>
>
> What is the status of these messages?
> Are the IPs actually correct?
> I guess the X-Spam-Status is bogus (always the same).
>
> S
The X-Spam-Status isn't always the same :) its almost the same.. I have
already seen one different :) The spamassassin needs training to be useful
to us.
The IPs are correct. the server IP should belong to a PHP.net mirror and the
probable submiter is the IP that sent the note to the php.net mirror (unless
someone is posting notes directly without using the mirrors).
Nuno
| |
| Sean Coates 2006-03-28, 6:58 pm |
| > The X-Spam-Status isn't always the same :) its almost the same.. I have
> already seen one different :) The spamassassin needs training to be
> useful to us.
Well, that may gain some accuracy, but I stand by my idea that
spamassassin will not work properly for notes because SA is designed to
handle mail (this is obvious when notes fail a test like
"DATE_MISSING,FROM_NO_LOWER"
> The IPs are correct. the server IP should belong to a PHP.net mirror and
> the probable submiter is the IP that sent the note to the php.net mirror
> (unless someone is posting notes directly without using the mirrors).
Ok.
The reason I asked is because a large number of notes seem to be coming
from RIPE-owned IPs.
I just submitted one, and my ISP showed up.
....
Anyway, what I'm getting at is:
- notes are broken (we already agree on this)
- spammers submit notes from open proxies and zombie machines
Perhaps we could scan submitting IP addresses for open proxies before
accepting a note?
The user would have to consent to this scan.
Thoughts?
S
| |
| Nuno Lopes 2006-03-28, 6:58 pm |
| >> The X-Spam-Status isn't always the same :) its almost the same.. I have
>
> Well, that may gain some accuracy, but I stand by my idea that
> spamassassin will not work properly for notes because SA is designed to
> handle mail (this is obvious when notes fail a test like
> "DATE_MISSING,FROM_NO_LOWER"
fixing that is easy. we would only need to inject some dummy emails headers.
>
> Ok.
> The reason I asked is because a large number of notes seem to be coming
> from RIPE-owned IPs.
Interesting.. maybe we could report this to them.
> Anyway, what I'm getting at is:
> - notes are broken (we already agree on this)
> - spammers submit notes from open proxies and zombie machines
>
> Perhaps we could scan submitting IP addresses for open proxies before
> accepting a note?
>
> The user would have to consent to this scan.
>
> Thoughts?
How would you do that scan? Currently the entry/user-note.php script checks
with a dns black-list that also includes zombie machines, but most seem that
aren't detected.
Nuno
|
|
|
|
|