I have a pair of Sidwewinder 250 appliances (really they are Dell
servers with a Secure Computing ROM) that aren't supported for 7.0.
So, I am wondering what the future is. These appliances are more than
adequate for our needs for the indefinite future and I would hate to
have to retire them in 2009. So, I am wondering if somebody from
product development or marketing could let us know what to expect.

Thanks

Dan Sichel

I have a pair of Sidwewinder 250 appliances (really they are Dell
servers with a Secure Computing ROM) that aren't supported for 7.0.
So, I am wondering what the future is. These appliances are more than
adequate for our needs for the indefinite future and I would hate to
have to retire them in 2009. So, I am wondering if somebody from
product development or marketing could let us know what to expect.

Thanks

Dan Sichel

Thank you for your response!

So is SEF the only format option for the auditd config?

--- In sidewinder-users@yahoogroups.com, "L Cubed" <lllcubed@...>
wrote:
>
> MB:
>
> The format that is syslog friendly and keeps the log data really
close
> to a straight Sidewinder ASCII audit:  SEF.
>
> The problem comes when there is more log data than can be put into a
> syslog payload...
>
> Hope this helps,
>
> -LCubed
>
> On 9/17/07, MB <matthew.burry@...> wrote:
> > Everyone,
> >
> > Thank you for the response to my last question!!
> >
> > Here is a followup...
> >
> > When configuring the sidewinder to send audit output to a remote
> > syslog server, versions 6.1.2 and 7.0 require the following config
> > change...
> >
> > For version 6.1.2, in /etc/sidewinder/auditd.conf, the following
line
> > must be added:
> >
> > syslog (facility filters["filter"] format)
> >
> > For version 7.0, in /secureos/etc/auditd.conf, the following line
> > must be added:
> >
> > log (type dest filter format)
> >
> > My question is... what are the different optional values
for "format"
> > for both of these versions?
> >
> > In version 6.1.2 documentation, there are references to the
ability
> > to export audit to W3C(HTTP), Webtrends (WELF), and Sidewinder
> > (SEF).  But it doesn't appear to be in association with the
> > auditd.conf change mentioned above.
> >
> > The same appears to be true for the 7.0 documentation (although
for a
> > much broader list of exportable message formats).
> >
> > For each of these versions, are the referenced exportable formats
> > also available for these auditd.conf configurations?
> >
> > Thanks for the help!!
> >
> > - MB
> >
> >
> >
> >
> > Yahoo! Groups Links
> >
> >
> >
> >
>

MB:

The format that is syslog friendly and keeps the log data really close
to a straight Sidewinder ASCII audit:  SEF.

The problem comes when there is more log data than can be put into a
syslog payload...

Hope this helps,

-LCubed

On 9/17/07, MB <matthew.burry@...> wrote:
> Everyone,
>
> Thank you for the response to my last question!!
>
> Here is a followup...
>
> When configuring the sidewinder to send audit output to a remote
> syslog server, versions 6.1.2 and 7.0 require the following config
> change...
>
> For version 6.1.2, in /etc/sidewinder/auditd.conf, the following line
> must be added:
>
> syslog (facility filters["filter"] format)
>
> For version 7.0, in /secureos/etc/auditd.conf, the following line
> must be added:
>
> log (type dest filter format)
>
> My question is... what are the different optional values for "format"
> for both of these versions?
>
> In version 6.1.2 documentation, there are references to the ability
> to export audit to W3C(HTTP), Webtrends (WELF), and Sidewinder
> (SEF).  But it doesn't appear to be in association with the
> auditd.conf change mentioned above.
>
> The same appears to be true for the 7.0 documentation (although for a
> much broader list of exportable message formats).
>
> For each of these versions, are the referenced exportable formats
> also available for these auditd.conf configurations?
>
> Thanks for the help!!
>
> - MB
>
>
>
>
> Yahoo! Groups Links
>
>
>
>

Everyone,

Thank you for the response to my last question!!

Here is a followup...

When configuring the sidewinder to send audit output to a remote
syslog server, versions 6.1.2 and 7.0 require the following config
change...

For version 6.1.2, in /etc/sidewinder/auditd.conf, the following line
must be added:

syslog (facility filters["filter"] format)

For version 7.0, in /secureos/etc/auditd.conf, the following line
must be added:

log (type dest filter format)

My question is... what are the different optional values for "format"
for both of these versions?

In version 6.1.2 documentation, there are references to the ability
to export audit to W3C(HTTP), Webtrends (WELF), and Sidewinder
(SEF).  But it doesn't appear to be in association with the
auditd.conf change mentioned above.

The same appears to be true for the 7.0 documentation (although for a
much broader list of exportable message formats).

For each of these versions, are the referenced exportable formats
also available for these auditd.conf configurations?

Thanks for the help!!

- MB

Please see
http://www.securecomputing.com/index.cfm?skey=1312#utm. If the
tables do not help, please let me know.

--- In sidewinder-users@yahoogroups.com, "MB" <matthew.burry@...>
wrote:
>
> Hello,
>
> Could anyone tell me which versions of Sidewinder are not EOL by
Secure
> Computing?
>
> I found documentation for versions 6.0, 6.1.0, 6.1.1, 6.1.2, and
7.0 on
> their website.  Are all of these versions still actively supported
by
> SC?
>
> Thanks,
> MB
>

Hello,

Could anyone tell me which versions of Sidewinder are not EOL by Secure
Computing?

I found documentation for versions 6.0, 6.1.0, 6.1.1, 6.1.2, and 7.0 on
their website. Are all of these versions still actively supported by
SC?

Thanks,
MB

-- ----------------------------------------------------------------------
Justin Beeler (JBEELER.COM)
Website URL: http://www.jbeeler.com
- UNIX IS user friendly.....it's just picky about who it chooses to be friends with.
"The day Microsoft makes something that doesn't suck is probably the day they start making vacuum cleaners." -Ernst Jan Plugge.
----------------------------------------------------------------------

Hello,

Could anyone tell me which versions of Sidewinder are not EOL by Secure
Computing?

I found documentation for versions 6.0, 6.1.0, 6.1.1, 6.1.2, and 7.0 on
their website.  Are all of these versions still actively supported by
SC?

Thanks,
MB

I ran into the same thing during an install, however, review Microsoft
KB article 923535 {http://support.microsoft.com/kb/923535}, it fixed
their issue.

This might help. I do know there is a CAR submitted for 7.x and
Windows Update.



--- In sidewinder-users@yahoogroups.com, "K K" <kkadow@...> wrote:
>
> Has anybody else encountered Internet Explorer 6 crashes with G2?
>
> We have a Sidewinder G2 running 7.0.0.02, with a minimal configuration.
> Clients access this firewall for HTTP/HTTPS/FTP-over-HTTP as an
> explicit proxy on TCP/80, we do not permit default-route (aka
> "transparent") traffic.
>
> When a Windows workstation running IE6 is configured to use the
> Sidewinder proxy, it works reasonably well for regular HTTP sites (we
> see some slow page loads that we don't see with older G2 firewalls,
> but nothing truly "broken").
>
> However, the moment you try to access a HTTPS URL (e.g.
> https://www.paypal.com/), and IE6 immediately crashes.  Reconfigure
> the browser to use an old v6.1.2.04 firewall, and IE6 is stable.  When
> accessing the same sites with Firefox or IE7, no problems.
>
> I have a feeling this is primarily a Microsoft bug, but I was
> wondering if anybody else has seen this issue?
>
>
> Thanks,
>
> Kevin
>

Has anyone experience any issue with the Sidewinder 7.0 upgrade with
Failover?

On 6/19/07, Justin Beeler (JBEELER.COM) <justin@jbeeler.com> wrote:
> We use a Blue Coat proxy (800 series) in front of our Sidewinder G2.
> Works great. Basically we have an http proxy rule that allows only
> connections from the Blue Coat and have all clients configured to
> proxy their connections to the Blue Coat on port 8081.
> Our Blue Coat also uses SCC Smartfilter.

Thanks, that's good news, and is similar to our deployment plan.
Does your Blue Coat think it is directly connected to the Internet, or
is it configured to point to the IP of the Sidewinder as a next-hop
proxy?

With the Squid service being removed from Sidewinder, I'm hoping this
will let us continue to reap the bandwidth savings of HTTP caching,
plus I'm intrigued by BC's claim of having a very smart proxy for AOL
Instant Messenger, a protocol that has been a thorn in our side for
many years.

Kevin

On 6/19/07, Justin Beeler (JBEELER.COM) <justin@...> wrote:
> We use a Blue Coat proxy (800 series) in front of our Sidewinder G2.
> Works great.  Basically we have an http proxy rule that allows only
> connections from the Blue Coat and have all clients configured to
> proxy their connections to the Blue Coat on port 8081.
> Our Blue Coat also uses SCC Smartfilter.

Thanks, that's good news, and is similar to our deployment plan.
Does your Blue Coat think it is directly connected to the Internet, or
is it configured to point to the IP of the Sidewinder as a next-hop
proxy?

With the Squid service being removed from Sidewinder, I'm hoping this
will let us continue to reap the bandwidth savings of HTTP caching,
plus I'm intrigued by BC's claim of having a very smart proxy for AOL
Instant Messenger, a protocol that has been a thorn in our side for
many years.

Kevin

Has anybody tried deploying a Blue Coat ProxySG on the inside of a
Sidewinder G2 firewall, with the Sidewinder being used as a "parent",
as an explicit upstream proxy?

Any lessons learned from somebody who has tried this before would be
extremely helpful. Failing that, I guess I'll be sharing my own
experiences in about a month :)

Kevin

(P.S. The Blue Coat ProxySG is an inexpensive caching proxy offering
instant messaging controls, very basic bandwidth limiting features,
caching of streaming content, and the ability to load one or more of
many of the current URL categorization databases currently on the
market, including Secure Computing's own SmartFilter.)

-- ----------------------------------------------------------------------
Justin Beeler (JBEELER.COM)
Website URL: http://www.jbeeler.com
- UNIX IS user friendly.....it's just picky about who it chooses to be friends with.
"The day Microsoft makes something that doesn't suck is probably the day they start making vacuum cleaners." -Ernst Jan Plugge.
----------------------------------------------------------------------

Has anybody tried deploying a Blue Coat ProxySG on the inside of a
Sidewinder G2 firewall, with the Sidewinder being used as a "parent",
as an explicit upstream proxy?

Any lessons learned from somebody who has tried this before would be
extremely helpful.  Failing that, I guess I'll be sharing my own
experiences in about a month :)


Kevin

(P.S. The Blue Coat ProxySG is an inexpensive caching proxy offering
instant messaging controls, very basic bandwidth limiting features,
caching of streaming content, and the ability to load one or more of
many of the current URL categorization databases currently on the
market, including Secure Computing's own SmartFilter.)

This is a transparent sendmail config. I've got aliases set up to send
root's email off into the real world.  My Internet burb is burb 10,
and mail queues in my internal burb queue.  When I run mailq I get:

Listing the red Queue
/etc/mail/sendmail.cf: line 0: cannot open: No such file or directory

then the listing for the internal queue shows messages.

The maillog shows:
Jun 19 13:37:18 gatekeeper sendmail(5)[1235]: l5JIbDY0001231: Invalid
destination burb, 10, for burb name "red".
Jun 19 13:53:59 gatekeeper sendmail(c)[1284]: NOQUEUE: SYSERR(root):
/etc/mail/sendmail.cf: line 0: cannot open: No such file or directory

I'm thinking that the smartlink /etc/mail/sendmail.cf doesn't match on
a two-digit burb.  Can anyone confirm/deny/give me a workaround or
point me in the right direction?

Thanks.
Katy

Has anybody else encountered Internet Explorer 6 crashes with G2?

We have a Sidewinder G2 running 7.0.0.02, with a minimal configuration.
Clients access this firewall for HTTP/HTTPS/FTP-over-HTTP as an
explicit proxy on TCP/80, we do not permit default-route (aka
"transparent") traffic.

When a Windows workstation running IE6 is configured to use the
Sidewinder proxy, it works reasonably well for regular HTTP sites (we
see some slow page loads that we don't see with older G2 firewalls,
but nothing truly "broken").

However, the moment you try to access a HTTPS URL (e.g.
https://www.paypal.com/), and IE6 immediately crashes.  Reconfigure
the browser to use an old v6.1.2.04 firewall, and IE6 is stable.  When
accessing the same sites with Firefox or IE7, no problems.

I have a feeling this is primarily a Microsoft bug, but I was
wondering if anybody else has seen this issue?


Thanks,

Kevin

Anybody moving to Sidewinder V7 for production traffic?
How is the ftp-over-http support working out?


On 5/21/07, Sidewinder moderated discussion list
<sidewinder@...> wrote:
> FYI, we had been having some response time issues in a configuration where
> we have ISAS proxy as a caching proxy inside our firewall (50GB cache), and
> Squid on the firewall (because the SCC HTTP proxy does not (yet?) support
> ftp:// URLs, for one thing).

The current Squid open source project is a great caching proxy.  That
said, the "squid" process as shipped by SCC is anything but current,
and is not so great.


> On a normal day we can run upwards of 2
> millions requests (per day) amounting to 31GB thru this environment that
> actually goes upstream thru Squid.

We handle upwards of 31 gigabytes per hour during peak hours, but the
vast majority of that uses the new SCC 'httpp' non-caching HTTP
non-transparent proxy.   What we've chosen to do in our environment is
route all HTTPS traffic to the 'httpp' proxy (to check whether it is
really SSL), route the 'ftp://' traffic to the Squid on the firewall,
and then mix and match regular web browsing between Squid and 'httpp'.

There are some popular web sites which only work via Squid, fail via
'httpp' unless we disable _all_ the appdefenses, and we're not willing
to do that.


> At any one time we may have more than
> 500 simultaneous connections from clients to the ISAS proxy, and  from 200
> to 300 or so connections upstream thru Squid.

There are some known issues that make it difficult, even with the
latest Squid, to use it as a true parent proxy for ISA; plus the SCC
version of Squid disables all the ICP features that are needed to run
a true parent/child deployment.

Since you're disabling caching entirely in Squid, why not have ISA
send all the real HTTP traffic to go to an instance of the "SCC HTTP"
proxy (httpp) and have ISA send the ftp:// requests either to the old
Squid-on-Sidewinder or just permit the ISA to do transparent FTP?


> We had tried a number of things.  This weekend, as an experiment, we decided
> to basically disable caching in Squid on the firewall, by changing:
>
> < acl QUERY urlpath_regex cgi-bin \?
> < no_cache deny QUERY
> ---
> > # acl QUERY urlpath_regex cgi-bin \?
> > # no_cache deny QUERY
> > acl cacheall src 0.0.0.0/0.0.0.0
> > no_cache deny cacheall
>
>
> < cache_mem 100 MB
> ---
> > cache_mem 8 MB
>
> < cache_dir ufs /var/cache 100 16 256
> ---
> > cache_dir ufs /var/cache 10 16 256
>
> i.e., we created an ACL and rule to "deny" caching, and shrunk the memory
> cache and disk cache appropriately (since they no longer really have
> anything in them).

One feature (of many) missing in the SCC fork of Squid is "nullfs",
the ability to totally disable the memory and disk cache.

With caching enabled, we're seeing upwards of 30% of Squid requests
being returned from cache, or about 15% of the total bytes processed
through Squid.   This is pretty common real-world savings from
caching, and is what we've seen in the past for large scale Squid
deployments.


> The difference has been *dramatic*.  Response times thru squid had been
> getting pretty bad (700ms pre request or more).  We got some improvement
> (down to around 400-500ms) by tuning our browsers to all use HTTP thru the
> proxy.  But after the cache exclusion change, today they are down under 30ms
> average (34ms thru ISAS and squid combined) (NOTE: traffic today is a
> *little* lighter as we approach the Memorial Day weekend).

That's interesting.   I wonder exactly where the latency savings have been?

I've noticed on several of our Sidewinder G2 firewalls that during
periods of very heavy usage, the Squid instance on G2 starts to
perform poorly as soon as the load average hits 3.1 or so, but
meanwhile traffic through the new SCC 'httpp' proxy is still quite
fast, much lower latency to the same URLs.

So we use PAC to make sure that most clients, except for ftp://,
always use the 'httpp' service, but then we lose all the +15%
bandwidth savings of caching.


> The other interesting thing was that we discovered that
> /var/cache/swap.state was in excess of 1GB.  We moved that to another name
> and restarted Squid, and then deleted that bugger.  It filled /var up on us
> a few weeks back.
>
> We also had been experiencing regular (almost daily) crashes of Squid due to
> an apparent memory leak.  It will be interesting to see if shrinking the
> cache also makes it more stable (I suspect it will).

The above and many other "Squid problems" on Sidewinders are all
problems which have long ago been addressed in the current stable
releases of the Open Source Squid project.

Kevin

(P.S. Yes, I intentionally responded with significantly more details
in a post to the Yahoo list than I did in a post to the moderated
Adeptech list.)


>
> JRJ
> _______________________________________________
> Sidewinder mailing list
> Sidewinder@...
> http://mail.adeptech.com/mailman/listinfo/sidewinder

Hi,

This isn't a technical question per say, but I am wondering if
anyone-else has had difficulty invoking a 4-hour response from Secure
Computing/Dell over a hardware issue?

We have had a few and most recently, this week it has taken 6 days to
get a Dell engineer to visit our datacentre with the highlight being
to run Windows executables as a debug measure.

Thanks, Mark

Since I have spent the past few weeks working with getting the Mitel
Teleworker Solution in Server mode working through a SideWinder {No,
SIP proxy doesn't work} and since Mitels technical
support....well....um....sucks.

I have created documentation on the IP filters required to make this
work because there is an "odd" traffic flow in it.

Docs are stored as: Mitel TeleWorker Solution

I have also sent this documentation to both Mitel and Secure.

RS

On 5/14/07, Sidewinder moderated discussion list
<sidewinder@...> wrote:
> Hi,
>
> We are experiencing connection breaks when using ssh through the firewall.
>
> For example,  I have a G2 with 4 interfaces. Any ssh connection between
> interface 1-2,3,4 when using SSH disconnects after a 5 minutes or so of
> inactivity. When we are connected from the same network we do not have this
> problem. Is there a setting on the Sidewinder I can look at?

The proxies do have an "idle" timeout, this will abend any session
with zero activity.  One workaround would be to enable the 'keepalive'
feature included in the current supported and stable release of
OpenSSH, this will prevent the connection from going idle.

--
Kevin Kadow  /  kkadow@...  /  http://tinyurl.com/3znu8

Use it all the time, find it informative and very useful

RS

>
> All:
>
> Are you aware of the Knowledge Base that's online at
> kb.securecomputing.com?  This represents a significant
> effort on the part of the company to produce an online
> volume of useful topics that utilizes an intelligent
> search engine for prioritization of results.
>
> Take a look, let me know what you think.
>
> Thanks!
>
> Scott

All:

Are you aware of the Knowledge Base that's online at
kb.securecomputing.com? This represents a significant
effort on the part of the company to produce an online
volume of useful topics that utilizes an intelligent
search engine for prioritization of results.

Take a look, let me know what you think.

Thanks!

Scott

__________________________________________________
Do You Yahoo!?
Tired of spam? Yahoo! Mail has the best spam protection around
http://mail.yahoo.com

• IronMail articles:  IronMail articles are available in the IronMail Portal.  Go to https://supportcenter.ciphertrust.com/index.php, log in, and click the ‘IronMail Knowledge Base’ link.  They are also available using the “Articles,…” bullet below.

• SnapGear articles:  SnapGear articles are available in the SnapGear Portal located at http://sgkb.securecomputing.com.  This portal does not require authentication.  They are also available using the “Articles,…” bullet below. 

• Internal Only articles:  Internal Only articles are only available in the Internal Only!!! Portal located at http://intkb.securecomputing.com.  This portal does not require authentication, but you do need access to the SCC intranet (physical or VPN).

• Articles, Application Notes, and Product Manuals KBs:  You can use either of these methods to access these KBs.  The Technical Support Portal and Online Support Portal contain exactly the same articles, they only differ in how you access each of them.

All:

Are you aware of the Knowledge Base that's online at
kb.securecomputing.com?  This represents a significant
effort on the part of the company to produce an online
volume of useful topics that utilizes an intelligent
search engine for prioritization of results.

Take a look, let me know what you think.

Thanks!

Scott

__________________________________________________
Do You Yahoo!?
Tired of spam?  Yahoo! Mail has the best spam protection around
http://mail.yahoo.com

6.1.2.0.4 on 7 firewalls and EM, working like a champ with no issues
noted

Had issue with backup configuration script, had to play around with it
for a bit, but worked it out.

I have installed this patch on 3 SW firewalls and one EM.  All have
been stable for 3 weeks, no issues.

===Jesse===


--- In sidewinder-users@yahoogroups.com, "cynthiacuddihy"
<cynthiacuddihy@...> wrote:
>
> I installed 6.1.2.04 in our lab environment only yesterday, so I
don't
> have a whole lot of feed back...But I headed straight for the
improved
> backup section which I really liked.
>
> The only issue I had, and it's probably more of a windows issue
than
> anything else, is that after I saved the backup file to my local
> machine, I could't move it to another directory unless I exited
from
> the admin console, even though the backup was finished.
>
> --- In sidewinder-users@yahoogroups.com, "K K" <kkadow@> wrote:
> >
> > Anybody else not get a patch 4 announcement?
> >
> > Any reports (good, bad, or ugly) from upgrading to 61204?
> >
> >
> > Thanks,
> >
> > Kevin
> >
>

I installed 6.1.2.04 in our lab environment only yesterday, so I don't
have a whole lot of feed back...But I headed straight for the improved
backup section which I really liked.

The only issue I had, and it's probably more of a windows issue than
anything else, is that after I saved the backup file to my local
machine, I could't move it to another directory unless I exited from
the admin console, even though the backup was finished.

--- In sidewinder-users@yahoogroups.com, "K K" <kkadow@...> wrote:
>
> Anybody else not get a patch 4 announcement?
>
> Any reports (good, bad, or ugly) from upgrading to 61204?
>
>
> Thanks,
>
> Kevin
>

Anybody else not get a patch 4 announcement?

Any reports (good, bad, or ugly) from upgrading to 61204?


Thanks,

Kevin

3) An additional step you can evaluate for free for
30 days is to utilize the new TrustedSource
integration on Sidewinder v.6.1.2.03. This performs a
modified DNS query to the global intelligence
TrustedSource database to make a determination based
on source IP alone whether or not the sender of a
piece of as yet uncollected mail is likely to be spam.

Several things:

1)  The Webwasher spam filter is a third party OEM,
provided by a company called Mailshell.

2)  In the base version of v.7.0, and in a patch to
v.6.1.2, the existing package which Ingmar has called
'useless' (I would say it differently, I would say 'it
has major challenges') will be replaced with the same
Mailshell implementation that is in Webwasher.  The
primary difference is that the Sidewinder will not
host a quarantine area for users to pick which
messages they want and don't want - the firewall is a
*really* bad place to do that.

3)  An additional step you can evaluate for free for
30 days is to utilize the new TrustedSource
integration on Sidewinder v.6.1.2.03.  This performs a
modified DNS query to the global intelligence
TrustedSource database to make a determination based
on source IP alone whether or not the sender of a
piece of as yet uncollected mail is likely to be spam.
  Our test customers have found that 60-70% of their
spam is dropped WITHOUT ANY CPU CYCLES.  You can still
utilize the mailshell package for even further
refining, but the ability to drop a spammer's intended
connection before it becomes payload is absolutely a
big deal from the performance standpoint.  The cost of
TrustedSource on v.6.1.2.03 and v.7.0 is about
one-third of what full anti-spam processing is.  If
you'd like to try it for 30 days cost-free send a zero
dollar PO to SCUR with your firewall serial #, and
mark it TrustedSource evaluation.  Also, we're running
a promotion right now that anti-spam customers can use
TrustedSource for free for a longer-than-eval period
of time (I forget the actual length).  I'll check and
reply.

HTH,

Scott

PS - I have cross-copied the other list.


--- "Hupp, Ingmar" <ingmar.hupp@...>
wrote:

> In one word, it's useless. Don't do it. The only
> configurable features
> are a whitelist (no blacklist) and keyword matching.
> There is no
> quarantine, no spam digest, no blacklist, no
> configurable RBL servers,
> and it lets through alot of genericspam. This
> feature really needs work
> badly. Perhaps spamfilter from Webwasher will be
> ported here, which is
> really good.
>
>
> ________________________________
>
>  Von: sidewinder-users@yahoogroups.com
> [mailto:sidewinder-users@yahoogroups.com] Im Auftrag
> von richard_st_john
>  Gesendet: Dienstag, 13. Februar 2007 15:28
>  An: sidewinder-users@yahoogroups.com
>  Betreff: [sidewinder-users] Anti-Spam on SideWinder
>
>
>
>  We currently use Tumbleweed and CipherTrust as our
> anti-spam
>  capabilities and are fairly happy with what we have
> seen.
>
>  However, I have been looking at the Anti-spam
> capabilities on
> the
>  SideWinder and would like some comments from people
> that use it.
>
>  We are specifically looking for features such as
> white list
> {even if
>  it looks like spam it is from domain X, let it
> through}, text
> based
>  weighting. I am also looking for specific log
> entries that would
> be
>  generated by the SideWinder when it drops an E-mail
> as spam.
>
>  Anyone have comments they can publish about the
> SideWinder
> anti-spam
>  capabilities?
>
>
>
>
>
>




________________________________________________________________________________\
____
Yahoo! Music Unlimited
Access over 1 million songs.
http://music.yahoo.com/unlimited