How can I avoid spam on my Mailman list?

Back to FAQ index

Title: How can I avoid spam on my Mailman list?

Question: I am the owner of a Mailman list and I have noticed an increased
amount of spam that is sent to the list.  Is there anything I can do to
keep the spam from reaching my list members or from having to discard it
myself when it is held for approval?

Answer:

Depending on how your list is used, you have several options for avoiding
spam. The first option is to have Mailman automatically discard all
messages from non-members. To do this, go to the admin pages for the list
at

        https://mailman.u.washington.edu/mailman/admin/listname

where "listname" is replaced with the name of your list. Once you have
logged on with your UW NetID and password, follow the Configuration
Categories links to Privacy Options -> Sender filters. Set the "generic
nonmember action" setting to Discard and submit your changes.

Note that you can fine-tune your list to allow some specific domains to
post to your list while discarding all other messages. (These domains are
based on the From address of the incoming message and you should be aware
that this address is often forged by spammers.) For example, if you would
like addresses ending in washington.edu to be able to post to your list
regardless of whether or not they are members, while still discarding all
other messages from non-members, add the following entry to the "accept
these non-members" setting on the Privacy Options -> Sender filters page
and then submit your changes:

        ^.*washington.edu

Similarly, your list can be configured to only allow members to post
without moderation, messages from non-members can be discarded
automatically, and messages from non-member washington.edu addresses can
be held for your approval. To do this, put the above entry in the "hold
these nonmembers" setting rather than the "accept these nonmembers"
setting.

Another option is to discard messages from specific domains. Mailman uses
the From address from incoming messages when determining which domain it
is from. Please be aware that the From address is often forged. To enter
domains in the "discard these nonmembers" setting (in Privacy Options ->
Sender filters), put them in the following format:

	^.*domain

e.g.  	^.*msn.com

Yet another option is to have Mailman discard messages with high spam
scores. This option is under Privacy Options -> Spam filters. Enter the
following in the "header filter rules" setting:

        X-Uwash-Spam: Gauge=XXXXXXXX

The eight Xs represent a spam score of 80%. This will discard all messages
with a spam score of 80% or higher. You can adjust the number of Xs that
you use for a lower or higher threshold. You are limited, however, to
increases or decreases of 10%. After you add the above line to the
setting, select "Discard" as your action and submit your changes. (If you
want to be notified of deleted messages matching the spam filter, select
"Reject" rather than Discard as your action.)

If you want to discard messages with specific words in the subject line,
use the "header filter rules" setting with the following entry:

	Subject: .*word

where you replace "word" with the word or phrase you want to match. Again,
choose "Discard" as your action and submit your changes.


Date: 08/2005  Author: R. Skiver Thompson