Bug 4393

Summary: [RFE] make pyzor, dcc, razor usable multiple times
Product: Spamassassin Reporter: Martin Blapp <mbr>
Component: PluginsAssignee: SpamAssassin Developer Mailing List <dev>
Status: NEW ---    
Severity: enhancement    
Priority: P5    
Version: unspecified   
Target Milestone: Undefined   
Hardware: Other   
OS: other   
Whiteboard:

Description Martin Blapp 2005-06-05 08:37:58 UTC
Im the maintainer of swinog blacklists 

http://antispam.imp.ch/05-uribl.php
http://antispam.imp.ch/06-dnsbl.php

and we have also our own pyzor server running. It would make sense
to be able to specify more than one digest server, as this makes it
possible to generate combo rules which could give you a much more
precise spam possibility.

Currently I've solved it with just copying the pyzor bits and change
the name, but it would rock if I just could add more than one pyzor
service like I query more than ons URIBL.

Whay do others think about this idea ? Should I make a patch for this ?

Martin
Comment 1 Bob Menschel 2005-07-13 23:53:35 UTC
Triage: Martin, I would think that if you could make a patch for this, it could
then be tested to see if there's any benefit.  Without that patch to test, it's
hard to tell. My question, knowing the bare minimum about pyzor, dcc, and razor
(or maybe slightly less than the bare minimum): what would be different about
two servers that would give more useful results than just the one? 

I'm assuming that you pump your own data into your own pyzor server. How does
that data differ from what everyone else is using, and how could others best
gain the same benefits? 
Comment 2 Martin Blapp 2005-07-14 02:23:57 UTC
Hi,

> I'm assuming that you pump your own data into your own pyzor server. How does
> that data differ from what everyone else is using, and how could others best
> gain the same benefits? 

Thats correct. I'm using our own pyzord server mostly for whitelisting
digest checks. If a customer reports a false positive with digest checks
(DCC, PYZOR, RAZOR) we can whitelist this FP just for us. We have wrapped
all checks to look also in the whitelist, and don't count them if a checksum
is whitelisted.

This really helps us to avoid FP caused by digest checks

I'll see if I can provide a patch for this. Also for the pyzor whitelist
feature which is great !

Martin
Comment 3 Martin Blapp 2005-07-17 10:05:35 UTC
It is not eas easy as I thought. It would be possible to make it look
like this:

But this will break reporting. Any idea how to make it look like URIBL
configs ?

ifplugin Mail::SpamAssassin::Plugin::Pyzor
full            PYZOR_CHECK     eval:check_pyzor('pyzer', '--homedir
/spamassassin/pyzor/', 5, 10)
describe        PYZOR_CHECK     Listed in Pyzor (http://pyzor.sf.net/)
tflags          PYZOR_CHECK     net
full            CUSTPYZOR_CHECK eval:check_pyzor('imppyzer', '--homedir
/spamassassin/pyzorcust/', 5, 10)
describe        CUSTPYZOR_CHECK Listed in custom Pyzor (http://xxx/)
tflags          CUSTPYZOR_CHECK net
endif
Comment 4 Theo Van Dinter 2006-12-31 12:42:52 UTC
fwiw, since razor only has 1 set of servers to query, this ticket is really
about dcc and pyzor.  I don't know enough about those to determine how easy it
is to specify/change the default servers that they query.  If it's
straightforward, such as a commandline change, then it should be really easy to
update the plugins to deal with it.