Unattended spam filtering using machine learning: implementation, deployment and lessons

John Graham-Cumming

Technical stream: Thursday 12 October 2006, 14:40 - 15:20.

polymail is a commercial anti-spam library in wide use worldwide. The library supports both attended (i.e. user gives feedback on spam filtering mistakes - sometimes known as 'train on error') and unattended (i.e. blackbox with no user interaction necessary) filtering. This talk details the implementation of 'train on everything' spam filtering with SURBL integration and automatic whitelisting, the deployment of an unattended spam filter and lessons learned in over a year of deployment supporting 10,000s of clients.

Although polymail is a commercial product, this is a technical talk. Come prepared for some mathematics, lots of code, plenty of real-world data and no wild marketing claims of 99.999% accuracy!

VB Conferences

VB2008 (Ottawa)

VB2007 (Vienna)

VB2006 (Montréal)

VB2005 (Dublin)

VB2004 (Chicago)

VB2003 (Toronto)

VB2002 (New Orleans)

VB2001 (Prague)

VB2000 (Orlando)

VB99 (Vancouver)

VB98 (Munich)

VB97 (San Francisco)

VB96 (Brighton)

VB95 (Boston)

VB94 (Jersey)

VB93 (Amsterdam)

VB92 (Edinburgh)

VB91 (Jersey)

‘VB is an excellent conference for networking.’

Poll

Should AV software check search engine results for malicious sites even before the user clicks on them?

Leave a comment
View 8 comments

Virus Bulletin

In this month's magazine:

A commitment to quality and reliability
The road less truvelled: W32/Truvel
New memory persistence threats
Reversing Python modules
Advertising database poisoning
Sunbelt Software VIPRE Antivirus + Antispyware
Spear phishing – on the rise?

Subscribe now!

Virus Bulletin currently has 129,051 registered users.

Fighting malware and spam