On Thursday 13 September 2007, jdow wrote:
And you just fed the troll-chain, yourself, silly person.
{^_-}
At least I trim my replies...
--
Phil Barnett
AI4OF
SKCC #600
of 30 off topic posts we'd have 3.
This is not a new concept.
--
Phil Barnett
AI4OF
SKCC #600
are well directed.
You can view his website here and probably find a link to his email addy if
you can read and interpret whats in that box in the 'Other useful pages'
section...
http://www.jms1.net/
--
Phil Barnett
AI4OF
SKCC #600
/combined-details.shtml
--
Phil Barnett
AI4OF
SKCC #600
On Thursday 12 July 2007, Justin Mason wrote:
Phil Barnett writes:
On Wednesday 11 July 2007, SARE Webmaster wrote:
There has been discussion of taking down the public site, opening
something new ( private access, invite only, acl by ip, etc), in hopes
to avoid ddos and provide better
not be a lot of people on this list
who can use their server to take on the entire DDOS for you, there are a LOT
of servers here that could participate in a pool.
Maybe a DNS round robin?
Just some ideas.
--
Phil Barnett
AI4OF
SKCC #600
started to take defensive measures...
That would earn them a rule in my firewall.
--
Phil Barnett
AI4OF
SKCC #600
On Wednesday 11 July 2007, Yet Another Ninja wrote:
On 7/12/2007 12:50 AM, Phil Barnett wrote:
On Wednesday 11 July 2007, SARE Webmaster wrote:
There has been discussion of taking down the public site, opening
something new ( private access, invite only, acl by ip, etc), in hopes
to avoid
rights, but I
never did figure out how they got in on Geeklog, so it's now banned from my
server.
--
Phil Barnett
AI4OF
SKCC #600
be deleted rather than causing a --lint failure in spamassassin.
I'm going to try this, but with a 5 minute wait. I run it in the middle of the
night anyway, who cares how long it takes.
Actually, the proper response might be a random wait.
--
Phil Barnett
AI4OF
SKCC #600
do. This
causes the congestion. Waiting a random time makes the peaks gradually level
out on the second retry.
--
Phil Barnett
AI4OF
SKCC #600
in alphabetical order.
I checked. RDJ is pulling the new one and naming it tripwire.cf in the working
rule directory. At least they have the same date/time stamp and identical
content. So I think I'm only using the newer one.
Thanks.
--
Phil Barnett
AI4OF
SKCC #600
: /HEAD/HTML [24363] warn: lint: 4 issues detected,
please rerun with debug enabled for more information
--
Phil Barnett
AI4OF
SKCC #600
RulesDuJour Run Summary on taz5.fiberhosting.net:
TripWire has changed on taz5.fiberhosting.net.
Version line:
***WARNING***: spamassassin --lint failed.
Rolling
tags and there aren't any in my current tripwire.cf file.
If it is true that there are no updates, then why is the RDJ script trying to
update anything? Is the RDJ server still being DOS'd?
--
Phil Barnett
AI4OF
SKCC #600
?
--
Phil Barnett
AI4OF
SKCC #600
find it useful to drive the score up.
--
Phil Barnett
AI4OF
SKCC #600
a person should listen to find out that it't time to
manually intervene and get any changes? I don't have a problem removing the
cron job, but I don't want it to turn into an unmaintained appendage.
--
Phil Barnett
AI4OF
SKCC #600
on this list? Some other channel?
I've been getting RDJ updates via cron once a week for a while now. I don't
see how that can be construed as abusive, but I'm game to unhook it while
they figure out what to do. I'm not wanting to be a burden, but I loath
unmaintained systems.
--
Phil Barnett
I recently saw this happening when testing. Is this stuff left over from some
older version, or something not installed?
What should I do with the undefined dependencies?
[29724] info: rules: meta test DIGEST_MULTIPLE has undefined
dependency 'DCC_CHECK'
[29724] info: rules: meta test
that server. Edit and change to
82.94.255.100:24441
Why?
--
Phil Barnett
Pyzor is not actively maintained. It has not been for a while. All new
pyzor installations use the main pyzor server. That server is overloaded
and queries will often timeout (5 seconds wasted). Some generous person
On Monday 14 May 2007 06:20, Mikael Syska wrote:
Will your notes be available online ?
Yes.
--
Phil Barnett
AI4OF
SKCC #600
On Monday 14 May 2007 09:48, Gary V wrote:
Do you mind if I include your notes with attribution to my document on
building a MailServer applicance?
--
Phil Barnett
No, of course I don't mind, and credit isn't necessary. But thanks.
Great, now if I can learn how to properly spell
On Sunday 13 May 2007 12:28, Gary V wrote:
Thanks for the excellent notes!
The run 'pyzor discover'. This creates
/root/.pyzor/servers which is a file that contains the IP address and port
to the main pyzor server. Don't use that server. Edit and change to
82.94.255.100:24441
Why?
--
Phil
ratio is?
--
Phil Barnett
AI4OF
SKCC #600
.
it has a couple drawbacks, as i see it:
1. it's relatively cpu-intensive if i want to do it all the time
(e.g. scan my spam folder to learn only the messages which haven't
already been learned)
Move the messages to a different folder after you learn them.
--
Phil Barnett
AI4OF
SKCC #600
On Sunday 01 April 2007 22:06, kiwidesign wrote:
I am relatively new to SpamAssassin and I am having a bit of difficulty
tracking down the reason for some spam messages getting through. When I
test the message it comes up with score of say 23 points with 5 required.
To me this indicates that
On Thursday 29 March 2007 12:03, Chris Rouffer wrote:
I've been given the job of adding an Internet Content filter, firewall, and
spam filter to a small network in a non-profit organizaiton. Right now
there are about 5 email accounts, and their mail server is at their
web-host. Is it
On Sunday 14 January 2007 12:51, R Lists06 wrote:
I don't know at any given time what is the most stable version of any perl
module in relation to SA use.
Generally, perl modules only do one thing, and the parameters seldom change.
When a bug is found, it's fixed and made available. This means
On Sunday 07 January 2007 13:00, John Rudd wrote:
Have you put your own server into your trusted networks?
It's a Plesk install and I generally don't edit their configuration files.
I'll look into it.
Have you put your own server into any of the various configs in
Botnet.cf (the skip or
Received: from fl-69-34-131-91.dyn.embarqhsd.net (HELO ?192.168.100.209?)
(69.34.131.91)
by vhost.fiberhosting.com with SMTP; 7 Jan 2007 11:24:43 -0500
From: Phil Barnett philb at philb.us
To: philb at philb.us
Subject: test
Date: Sun, 7 Jan 2007 11:24:46 -0500
Now, to me
On Saturday 06 January 2007 23:05, Theo Van Dinter wrote:
On Sat, Jan 06, 2007 at 05:24:35PM -0800, snowcrash+spamassassin wrote:
i regularly run updates via cron on the hour.
:)
:
running it again, or at all, will change what/where?
The recent 3.1 updates include the ZEN rules. If
On Monday 01 January 2007 01:23, Theo Van Dinter wrote:
Generally, updates get put in, and then whenever someone feels like pushing
it, they can. I usually put in small commits for specific sets of rules,
and could do multiple edits before I want an update to occur.
So, does that mean that
On Monday 01 January 2007 01:46, Theo Van Dinter wrote:
On Mon, Jan 01, 2007 at 01:41:33AM -0500, Phil Barnett wrote:
So, does that mean that sa_update brings the update to my machine and
then I have to do something else or that I have to run sa_update to bring
them and install them
On Friday 29 December 2006 08:23, Vernon Webb wrote:
These guys are beginning to
drive me nuts and obvioulsy I have something wrong as others are telling me
these are being caught as SPAM on their systems.
My first question would be:
Have you installed Rules Du Jour and set it up to have
On Friday 29 December 2006 14:50, Vernon Webb wrote:
What are you using?
Right now, I'm using sbl-xbl.
--
My other computer is your Windows machine
On Friday 29 December 2006 16:23, Duane Hill wrote:
Phil Barnett wrote:
On Friday 29 December 2006 14:50, Vernon Webb wrote:
What are you using?
Right now, I'm using sbl-xbl.
I could be mistaken. sbl-xbl is being replaced by zen.spamhaus.org. That
is what I'm currently using
On Friday 29 December 2006 23:55, snowcrash+spamassassin wrote:
and this,
http://www.spamhaus.org/zen
Caution: zen.spamhaus.org replaces sbl-xbl.spamhaus.org.
If you are currently using sbl-xbl.spamhaus.org you can now replace
'sbl-xbl' with 'zen' (sbl-xbl.spamhaus.org will eventually
On Tuesday 26 December 2006 12:13, Luis Hernán Otegui wrote:
OK, I'm using sa-update AND Rules Du Jour. However, I'm not sure about
which rulesets are te most convenient to download. Could somebody pass a
config file for RDJ?
The ruleset you want will vary based on how strict or loose you want
On Monday 18 December 2006 20:16, John Rudd wrote:
New things:
Snippo of neat things that were added
I think that's everything...
Just need another day or two of testing before I release it.
One thing I noticed from the previous version was there was no mention of
version numbers anywhere
On Tuesday 12 December 2006 07:28, JamesDR wrote:
There is nothing in SPF to keep a spammer with a botnet from putting
0.0.0.0/0 as their approved domain limit.
Sounds like a good spam sign to me. Let the spammers put 0.0.0.0/0 in
their spf records, I'll pop in 3 points for good measure.
On Monday 11 December 2006 16:50, JamesDR wrote:
Would you care to elaborate on why SPF doesn't work for sender
verification? Its pretty simple, doesn't get much more simple that what
SPF does... If SPF doesn't work, nothing will.
There is nothing in SPF to keep a spammer with a botnet from
On Sunday 10 December 2006 16:31, John Rudd wrote:
It can be downloaded from:
http://people.ucsc.edu/~jrudd/spamassassin/Botnet.tar
Thanks, John. I downloaded it and installed it earlier today. It appears to be
working fine, but I got with this tonight when RulesDuJour ran:
RulesDuJour
On Thursday 16 November 2006 07:30, twofers wrote:
1. I have tried putting some canned .cf files into
/etc/mail/spamassassin/ and have discovered that I have limitations on the
size of these file(s) that SA will work with. I have 512 M memory and it
seems large .cf files filled with rules
On Saturday 09 September 2006 12:06, Poohba wrote:
There are more messages in my spam folder(file) than what shows in
evolution. Same goes for almost... Procmail shows its sending emails
there but I don't see them. If I open the file using a text editor I
see the emails but not in
On Sunday 22 January 2006 12:14, wrote:
All,
I'm confused as to how to block words with spaces.
For example,
V ia G ra
M o r t g a g e
This seems to be very effective.
v.?[|[EMAIL PROTECTED]@]
I also like and use the Sare rulesets, which pretty much catch all of this
stuff. but if
On Tuesday 30 August 2005 05:40 pm, [EMAIL PROTECTED] wrote:
Got a nasty spam with an extremly oversized Thread-Index header. (I set
my word wrap to 72 characters, I don't know if it will hold up however
when I hit send).
Does anyone know if it is exploiting a known Outlook/Exchange security
On Monday 29 August 2005 11:57 pm, John Rudd wrote:
Does this fix the problem with SIGCHLD?
Do you really need to quote the entire message?
--
Don't think that a small group of dedicated individuals can't change the
world. it's the only thing that ever has.
On Friday 15 April 2005 08:03 am, Jean Caron wrote:
Again, how can I tell for sure ?
Look in the header and see what the bayes score was on the FN.
--
In the beginning of a change, the patriot is a brave and scarce man, hated
and scorned. When the cause succeeds, however, the timid join
On Sunday 27 February 2005 10:35 am, Kenneth Porter wrote:
--On Thursday, February 24, 2005 6:07 PM -0500 Phil Barnett
[EMAIL PROTECTED] wrote:
i or l = [|ííiil1]
a = [EMAIL PROTECTED]
e = [eé3]
o = [o0]
It seems like this is getting overly-complicated. Are there any libraries
On Sunday 27 February 2005 06:31 pm, Kenneth Porter wrote:
--On Sunday, February 27, 2005 11:48 AM -0500 Phil Barnett [EMAIL PROTECTED]
wrote:
All you have requested here is for someone else to do the complicated
stuff and make it easy for you. Someone has to get the code as complex
On Thursday 24 February 2005 05:42 pm, [EMAIL PROTECTED] wrote:
Stuart Johnston wrote:
[EMAIL PROTECTED] wrote:
Stuart Johnston wrote:
body L_MILLBILL /[mb]i(?:\|l|l\||\|\|)ions?/i
body L_MILLBILL /[mb]i[l|][l|]ions?/i
I started with something similar to that but it will also match
On Thursday 13 January 2005 03:44 pm, Thomas Arend wrote:
Because SuSE stores spamd in /usr/sbin/spamd and the tarball stores it
in /usr/bin/spamd the SA does not run.
You could have put a symlink in /usr/bin
ln -s /usr/sbin/spamd /usr/bin/spamd
--
Top ten reasons to procrastinate.
1.
On Thursday 13 January 2005 07:19 pm, [EMAIL PROTECTED] wrote:
Phil Barnett wrote:
I'm feeling puckish today so I'll say it.
Or even symlink /usr/sbin to /usr/bin (shock, horror) :-)
Gasp, You've gone too far, now... ;-)
--
Top ten reasons to procrastinate.
1.
53 matches
Mail list logo
