![[identity profile]](https://www.dreamwidth.org/img/silk/identity/openid.png){kind=small}
![[personal profile]](https://www.dreamwidth.org/img/silk/identity/user.png){kind=small}
My current ISP uses a product called Proofpoint to filter spam. And it is without a doubt the most useless spam-filtering product EVER.
How doth it suck? Let me begin to count the ways...
- Let's start with the fact that its false positive rate, in my experience so far, has exceeded its hit rate. (Granted, on the email addresses subject to its whims, I get very little spam.)
- Only two actions are possible on a message quarantined as spam: release it for delivery as non-spam, or safelist it for delivery for all time as non-spam. Even if you're 100% certain it's spam, you can't delete it from quarantine — all you can do is wait until the system deletes it automatically (after 30 days, I think).
- There is no way to inspect a message in quarantine. So if you aren't sure whether a message it has quarantined is spam or not, you have three choices: Release it and pray it's not a virus, safelist it and pray it's not a virus, or leave it in the quarantine and hope it really is spam.
- It frequently seems to munge the originating domain of quarantined messages, further confusing the issue.
- You can't even set it to tell you in real time when it's quarantined something. It automatically generates a report every night (by default, only if it blocked something during the previous 24 hours). If you want to go and check during the day, you have to go and manually tell it to generate a new report. And that report will list EVERYTHING ... so, if you get a lot of spam, expect to do a lot of wading through reports looking to see what's new, because at any given time there's going to be 30 days' worth of spam in your quarantine. What, you say "But 30 days of spam is several thousand messages"? Sucks to be you, if you have to deal with Proofpoint.
- Speaking of settings, there is a management interface, but navigation through it is bloody horrible. There isn't even any way to look at your quarantine online and see what's in there. You can manage your settings, to a limited extent, but there's zero online help, and the management interface is unintuitive and leaves you guessing as to what the controls do.
- Even as useless as it is, you can't even turn it off.
Proofpoint, at least as deployed by Metrocast, isn't an anti-spam solution. It's just this sort of ... trollish, passive-aggressive THING ... that sits astride your connection and periodically quarantines inbound mail for no visible or apparent reason whatsoever, won't tell you until the next day, refuses to explain why or even let you check its decision, and offers no way to confirm its actions other than to huffily say "Well, alright then, here, have it, payload and all, but don't say I didn't warn you. Here I am, brain the size of a planet..."
Tags:
no subject
SpamAssassin works -really- well when it's set up intelligently, has interfaces to allow individual users to override just about anything (which can be web-exposed), etc.
SpamAssassin + Client-side Bayesian (Thunderbird) has kept me damned near 100% spam-free for years, and I leave my email unobfuscated on the web in all kinds of places.
And it's free.
So why do companies roll out crap like this?
no subject
Besides, Thunderbird doesn't come with a shiny glossy sales brochure, and the Mozilla Foundation doesn't take you to lunch.
(Non-technical managers should NOT BE FUCKING ALLOWED to make hardware and software decisions.)
no subject
Still, I'm pretty sure a company sells commercialized, supported SpamAssassin. I just hate rampant NIHism.
no subject
no subject
no subject