Hi Everyone, Ive been looking for a solution to this for a while now, I run Suse, Postfix, Spamassassin, Amavis and Razer2. My problem, Some spam gets quarantined but some also gets a duplicate sent to the user making my setup only 10% effective, it The following might best explain it
Jun 4 19:51:19 scribus postfix/smtpd[14170]: 5EADDBCFF: client=82-45-106-62.cable.ubr03.gray.blueyonder.co.uk[82.45.106.62] Jun 4 19:51:20 scribus postfix/cleanup[14171]: 5EADDBCFF: message-id=<[EMAIL PROTECTED]> Jun 4 19:51:21 scribus postfix/qmgr[13871]: 5EADDBCFF: from=<[EMAIL PROTECTED]>, size=13157, nrcpt=1 (queue active) Jun 4 19:51:21 scribus postfix/smtp[14196]: connect to localhost[::1]: Connection refused (port 10024) Jun 4 19:51:21 scribus amavis[14100]: (14100-06) ESMTP::10024 /var/spool/amavis/amavis-20060604T193936-14100: <[EMAIL PROTECTED]> -> <[EMAIL PROTECTED]> Received: SIZE=13157 from scribus.domain.au ([127.0.0.1]) by localhost (scribus [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 14100-06 for <[EMAIL PROTECTED]>; Sun, 4 Jun 2006 19:51:21 +1000 (EST) Jun 4 19:51:21 scribus amavis[14100]: (14100-06) Checking: <[EMAIL PROTECTED]> -> <[EMAIL PROTECTED]> Jun 4 19:51:21 scribus postfix/smtpd[14170]: disconnect from 82-45-106-62.cable.ubr03.gray.blueyonder.co.uk[82.45.106.62] Jun 4 19:51:23 scribus postfix/smtp[14187]: B809290F0: to=<[EMAIL PROTECTED]>, relay=mx1.mail.yahoo.com[4.79.181.15], delay=5, status=bounced (host mx1.mail.yahoo.com[4.79.181.15] said: 554 delivery error: dd This user doesn't have a yahoo.com account ([EMAIL PROTECTED]) [0] - mta269.mail.mud.yahoo.com (in reply to end of DATA command)) Jun 4 19:51:23 scribus postfix/qmgr[13871]: B809290F0: removed Jun 4 19:51:45 scribus amavis[14100]: (14100-06) spam_scan: hits=8.902 tests=BIZ_TLD,FROM_ENDS_IN_NUMS,FROM_HAS_ULINE_NUMS,HTML_30_40,HTML_FONTCOLOR_UNSAFE,HTML_FONT_INVISIBLE,HTML_IMAGE_ONLY_08,HTML_MESSAGE,MIME_HTML_ONLY,MISSING_MIMEOLE,MISSING_OUTLOOK_NAME,RAZOR2_CF_RANGE_11_50,RAZOR2_CHECK,RCVD_IN_SORBS_DUL Jun 4 19:51:45 scribus amavis[14100]: (14100-06) SEND via SMTP: [127.0.0.1]:10025 <> -> <[EMAIL PROTECTED]> Jun 4 19:51:45 scribus postfix/smtpd[14175]: connect from localhost[127.0.0.1] Jun 4 19:51:45 scribus postfix/smtpd[14175]: 493C790F0: client=localhost[127.0.0.1] Jun 4 19:51:45 scribus postfix/cleanup[14195]: 493C790F0: message-id=<[EMAIL PROTECTED]> Jun 4 19:51:45 scribus postfix/qmgr[13871]: 493C790F0: from=<>, size=13869, nrcpt=1 (queue active) Jun 4 19:51:45 scribus postfix/smtpd[14175]: disconnect from localhost[127.0.0.1] Jun 4 19:51:45 scribus amavis[14100]: (14100-06) SPAM, <[EMAIL PROTECTED]> -> <[EMAIL PROTECTED]>, Yes, hits=8.9 tag1=3.0 tag2=5.0 kill=5.0 tests=BIZ_TLD, FROM_ENDS_IN_NUMS, FROM_HAS_ULINE_NUMS, HTML_30_40, HTML_FONTCOLOR_UNSAFE, HTML_FONT_INVISIBLE, HTML_IMAGE_ONLY_08, HTML_MESSAGE, MIME_HTML_ONLY, MISSING_MIMEOLE, MISSING_OUTLOOK_NAME, RAZOR2_CF_RANGE_11_50, RAZOR2_CHECK, RCVD_IN_SORBS_DUL, quarantine spam-bb9eeb09fed30f59fba0d01b994e08fd-20060604-195145-14100-06 ([EMAIL PROTECTED]) Jun 4 19:51:45 scribus amavis[14100]: (14100-06) SPAM-TAG, <[EMAIL PROTECTED]> -> <[EMAIL PROTECTED]>, Yes, hits=8.9 tagged_above=3.0 required=5.0 tests=BIZ_TLD, FROM_ENDS_IN_NUMS, FROM_HAS_ULINE_NUMS, HTML_30_40, HTML_FONTCOLOR_UNSAFE, HTML_FONT_INVISIBLE, HTML_IMAGE_ONLY_08, HTML_MESSAGE, MIME_HTML_ONLY, MISSING_MIMEOLE, MISSING_OUTLOOK_NAME, RAZOR2_CF_RANGE_11_50, RAZOR2_CHECK, RCVD_IN_SORBS_DUL Jun 4 19:51:45 scribus amavis[14100]: (14100-06) FWD via SMTP: [127.0.0.1]:10025 <[EMAIL PROTECTED]> -> <[EMAIL PROTECTED]> Jun 4 19:51:45 scribus postfix/smtpd[14194]: connect from localhost[127.0.0.1] Jun 4 19:51:45 scribus postfix/smtpd[14194]: 5A58CBD00: client=localhost[127.0.0.1] Jun 4 19:51:45 scribus postfix/smtp[14204]: 493C790F0: to=<[EMAIL PROTECTED]>, orig_to=<[EMAIL PROTECTED]>, relay=luthien.domain.au[10.0.0.67], delay=0, status=sent (250 Ok) Jun 4 19:51:45 scribus postfix/qmgr[13871]: 493C790F0: removed Jun 4 19:51:45 scribus postfix/cleanup[14171]: 5A58CBD00: message-id=<[EMAIL PROTECTED]> Jun 4 19:51:45 scribus postfix/qmgr[13871]: 5A58CBD00: from=<[EMAIL PROTECTED]>, size=13984, nrcpt=1 (queue active) Jun 4 19:51:45 scribus postfix/smtpd[14194]: disconnect from localhost[127.0.0.1] Jun 4 19:51:45 scribus amavis[14100]: (14100-06) Passed, <[EMAIL PROTECTED]> -> <[EMAIL PROTECTED]>, quarantine spam-bb9eeb09fed30f59fba0d01b994e08fd-20060604-195145-14100-06, Message-ID<[EMAIL PROTECTED]>, Hits: 8.902 Jun 4 19:51:45 scribus amavis[14100]: (14100-06) TIMING [total 24262 ms] - SMTP EHLO: 2 (0%), SMTP pre-MAIL: 1 (0%), SMTP pre-DATA-flush: 4 (0%), SMTP DATA: 81 (0%), bodyhash: 1 (0%), mime_decode: 31 (0%), get-file-type: 20 (0%), get-file-type: 16 (0%), decompose_part: 2 (0%), decompose_part: 0 (0%), parts: 0 (0%), AV-scan-1: 1140 (5%), SAmsg read: 4 (0%), SA parse: 2 (0%), SA check: 22814 (94%), fwd-connect: 9 (0%), fwd-mail-from: 1 (0%), fwd-rcpt-to: 2 (0%), write-header: 5 (0%), fwd-data: 1 (0%), fwd-data-end: 48 (0%), fwd-rundown: 2 (0%), fwd-connect: 10 (0%), fwd-mail-from: 2 (0%), fwd-rcpt-to: 3 (0%), write-header: 5 (0%), fwd-data: 1 (0%), fwd-data-end: 48 (0%), fwd-rundown: 2 (0%), unlink-2-files: 6 (0%), rundown: 1 (0%) Jun 4 19:51:45 scribus postfix/smtp[14196]: 5EADDBCFF: to=<[EMAIL PROTECTED]>, orig_to=<[EMAIL PROTECTED]>, relay=localhost[127.0.0.1], delay=27, status=sent (250 2.6.0 Ok, id=14100-06, from MTA: 250 Ok: queued as 5A58CBD00) Jun 4 19:51:45 scribus postfix/qmgr[13871]: 5EADDBCFF: removed Jun 4 19:51:45 scribus postfix/smtp[14176]: 5A58CBD00: to=<[EMAIL PROTECTED]>, relay=luthien.domain.au[10.0.0.67], delay=0, status=sent (250 Ok) Jun 4 19:51:45 scribus postfix/qmgr[13871]: 5A58CBD00: removed please let me know if i can post some better information, id appreciate any help i can get with this. Thanks in advance _______________________________________________ AMaViS-user mailing list AMaViS-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/amavis-user AMaViS-FAQ:http://www.amavis.org/amavis-faq.php3 AMaViS-HowTos:http://www.amavis.org/howto/
