Problem with Spam Assassin
Has anyone else been seeing this problem with spamassasin?
sa-learn --spam --mbox spambox
Argument "\008566332M-XM-yM-@@" isn't numeric in numeric lt (<) at
/usr/share/perl5/Mail/SpamAssassin/BayesStore.pm line 1267.
|
|
for pages and pages and pages
The lines in question are:
# Make sure to check for either !defined or "" ... Apparently
# sometimes the DB module doesn't return the value correctly. :(
my $oldmagic = $self->{db_toks}->{$OLDEST_TOKEN_AGE_MAGIC_TOKEN};
--> if (!defined ($oldmagic) || $oldmagic eq "" || $atime < $oldmagic) {
$self->{db_toks}->{$OLDEST_TOKEN_AGE_MAGIC_TOKEN} = $atime;
--
--
Dale Amon [EMAIL PROTECTED]+44-7802-188325
International linux systems consultancy
Hardware & software system design, security
and networking, systems programming and Admin
"Have Laptop, Will Travel"
--
Problem with Spam Assassin
Has anyone else been seeing this problem with spamassasin?
sa-learn --spam --mbox spambox
Argument "\008566332M-XM-yM-@@" isn't numeric in numeric lt (<) at
/usr/share/perl5/Mail/SpamAssassin/BayesStore.pm line 1267.
|
|
for pages and pages and pages
The lines in question are:
# Make sure to check for either !defined or "" ... Apparently
# sometimes the DB module doesn't return the value correctly. :(
my $oldmagic = $self->{db_toks}->{$OLDEST_TOKEN_AGE_MAGIC_TOKEN};
--> if (!defined ($oldmagic) || $oldmagic eq "" || $atime < $oldmagic) {
$self->{db_toks}->{$OLDEST_TOKEN_AGE_MAGIC_TOKEN} = $atime;
--
--
Dale Amon [EMAIL PROTECTED]+44-7802-188325
International linux systems consultancy
Hardware & software system design, security
and networking, systems programming and Admin
"Have Laptop, Will Travel"
--
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
We offer you a choice of original and generic medications Y3UomZ69rRoorBjBoq
We take the risk out of finding a safe place to make your online medical decisions. your health, safety, and shopping experience are very important to us. %RND_AD_2 Plus: %RND_ALL_OTHER_MEDS We use Fedex shipping to ensure that you will receive your order promptly. Buy online in the comfort of your home.. Use Microsoft Internet Explorer to view the following website: www.%RND_HOST. Please copy and paste the URL on your browser's address field. %RND_PHRASE %RND_PHRASE %RND_PHRASE %RND_PHRASE
We offer you a choice of original and generic medications Y3UomZ69rRoorBjBoq
We take the risk out of finding a safe place to make your online medical decisions. your health, safety, and shopping experience are very important to us. %RND_AD_2 Plus: %RND_ALL_OTHER_MEDS We use Fedex shipping to ensure that you will receive your order promptly. Buy online in the comfort of your home.. Use Microsoft Internet Explorer to view the following website: www.%RND_HOST. Please copy and paste the URL on your browser's address field. %RND_PHRASE %RND_PHRASE %RND_PHRASE %RND_PHRASE
Re: logging samba access
2004. június 6. 13:16 dátummal Dariush Pietrzak ezt írta: > > The problem is - in order to see file/dir accesses you need to > increase log level in smb.conf. > This sounds innocent enough unless you actually do it - the level in > which you see those accesses is one of 'DEBUG' ones, and you get GIGs > of logfiles per day/hour, and then parsing this becomes a nightmare. > > So simple task like finding who created this 'John Doe is f***ing > faggot' with porn on your samba fileserver is not as easy as with ftp > servers (this is party because of protocol nature, but not that much > ). > > btw, I'd be very interested if someone knew solution to this that > does not require modifying samba source and then maintaining your own > packages... I think increasing the log level is quite enough for me. Thanks! Daniel -- LeVA pgpaK13c71bwY.pgp Description: signature
Re: logging samba access
## Dariush Pietrzak ([EMAIL PROTECTED]): > > > Is it possible to log the file/dir accesses to samba server? I.e. I got > > > a share, and when someone mounts (from win or unix) it and access file, > > > or write files I want samba to log it to the smb.log. Is this possible? > > Ever had a look in /var/log/samba/? If you are missing something, > > increase log level in smb.conf. > The problem is - in order to see file/dir accesses you need to increase > log level in smb.conf. I said so. "log level = 2" does the job. > This sounds innocent enough unless you actually do it - the level in which > you see those accesses is one of 'DEBUG' ones, and you get GIGs of logfiles > per day/hour, and then parsing this becomes a nightmare. Depends on your traffic. You might want to set "max log size". Use perl to extract the relevant information, so you don't need to keep the whole logfiles around. Regrads, Christoph -- Spare Space
Re: logging samba access
On Sun, Jun 06, 2004 at 12:30:58PM +0200, Christoph Moench-Tegeder wrote: > ## LeVA ([EMAIL PROTECTED]): > > > Is it possible to log the file/dir accesses to samba server? I.e. I got > > a share, and when someone mounts (from win or unix) it and access file, > > or write files I want samba to log it to the smb.log. Is this possible? > > Ever had a look in /var/log/samba/? If you are missing something, > increase log level in smb.conf. The problem is - in order to see file/dir accesses you need to increase log level in smb.conf. This sounds innocent enough unless you actually do it - the level in which you see those accesses is one of 'DEBUG' ones, and you get GIGs of logfiles per day/hour, and then parsing this becomes a nightmare. So simple task like finding who created this 'John Doe is f***ing faggot' with porn on your samba fileserver is not as easy as with ftp servers (this is party because of protocol nature, but not that much ). btw, I'd be very interested if someone knew solution to this that does not require modifying samba source and then maintaining your own packages... -- Dariush Pietrzak, Key fingerprint = 40D0 9FFB 9939 7320 8294 05E0 BCC7 02C4 75CC 50D9
Re: logging samba access
Am Sun, Jun 06, 2004 at 11:59:21AM +0200, LeVA sagte: > Hi! > > Is it possible to log the file/dir accesses to samba server? I.e. I got > a share, and when someone mounts (from win or unix) it and access file, > or write files I want samba to log it to the smb.log. Is this possible? > > Thanks! > > > Daniel "log level = 2" in the global section of smb.conf will do the trick. gruss pascal
Re: logging samba access
## LeVA ([EMAIL PROTECTED]): > Is it possible to log the file/dir accesses to samba server? I.e. I got > a share, and when someone mounts (from win or unix) it and access file, > or write files I want samba to log it to the smb.log. Is this possible? Ever had a look in /var/log/samba/? If you are missing something, increase log level in smb.conf. Regards, Christoph -- Spare Space
logging samba access
Hi! Is it possible to log the file/dir accesses to samba server? I.e. I got a share, and when someone mounts (from win or unix) it and access file, or write files I want samba to log it to the smb.log. Is this possible? Thanks! Daniel -- LeVA pgp1uiUEsQUo6.pgp Description: signature
Re: logging samba access
2004. június 6. 13:16 dátummal Dariush Pietrzak ezt írta: > > The problem is - in order to see file/dir accesses you need to > increase log level in smb.conf. > This sounds innocent enough unless you actually do it - the level in > which you see those accesses is one of 'DEBUG' ones, and you get GIGs > of logfiles per day/hour, and then parsing this becomes a nightmare. > > So simple task like finding who created this 'John Doe is f***ing > faggot' with porn on your samba fileserver is not as easy as with ftp > servers (this is party because of protocol nature, but not that much > ). > > btw, I'd be very interested if someone knew solution to this that > does not require modifying samba source and then maintaining your own > packages... I think increasing the log level is quite enough for me. Thanks! Daniel -- LeVA pgpoeScU65KgD.pgp Description: signature
Re: logging samba access
## Dariush Pietrzak ([EMAIL PROTECTED]): > > > Is it possible to log the file/dir accesses to samba server? I.e. I got > > > a share, and when someone mounts (from win or unix) it and access file, > > > or write files I want samba to log it to the smb.log. Is this possible? > > Ever had a look in /var/log/samba/? If you are missing something, > > increase log level in smb.conf. > The problem is - in order to see file/dir accesses you need to increase > log level in smb.conf. I said so. "log level = 2" does the job. > This sounds innocent enough unless you actually do it - the level in which > you see those accesses is one of 'DEBUG' ones, and you get GIGs of logfiles > per day/hour, and then parsing this becomes a nightmare. Depends on your traffic. You might want to set "max log size". Use perl to extract the relevant information, so you don't need to keep the whole logfiles around. Regrads, Christoph -- Spare Space -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: Unusual spam recently - hummm - postprocess
On Sat, 5 Jun 2004 08:52, Michael Stone <[EMAIL PROTECTED]> wrote: > >So, adding handling for SPF RRs in one's MTA yields significant > >advantages today, despite the technology being new, because _all_ of the > >forgemail claiming to be from aol.com, msn.com, hotmail.com, pobox.com, > >etc. can be detected all in one step. > > Well, I guess the spammers will have to use different addresses. That > shouldn't take long. Which leads to more spam that uses addresses from small domains in the From: field, and thus more need for administrators of small servers to implement SPF records to counter it. -- http://www.coker.com.au/selinux/ My NSA Security Enhanced Linux packages http://www.coker.com.au/bonnie++/ Bonnie++ hard drive benchmark http://www.coker.com.au/postal/Postal SMTP/POP benchmark http://www.coker.com.au/~russell/ My home page
Re: logging samba access
On Sun, Jun 06, 2004 at 12:30:58PM +0200, Christoph Moench-Tegeder wrote: > ## LeVA ([EMAIL PROTECTED]): > > > Is it possible to log the file/dir accesses to samba server? I.e. I got > > a share, and when someone mounts (from win or unix) it and access file, > > or write files I want samba to log it to the smb.log. Is this possible? > > Ever had a look in /var/log/samba/? If you are missing something, > increase log level in smb.conf. The problem is - in order to see file/dir accesses you need to increase log level in smb.conf. This sounds innocent enough unless you actually do it - the level in which you see those accesses is one of 'DEBUG' ones, and you get GIGs of logfiles per day/hour, and then parsing this becomes a nightmare. So simple task like finding who created this 'John Doe is f***ing faggot' with porn on your samba fileserver is not as easy as with ftp servers (this is party because of protocol nature, but not that much ). btw, I'd be very interested if someone knew solution to this that does not require modifying samba source and then maintaining your own packages... -- Dariush Pietrzak, Key fingerprint = 40D0 9FFB 9939 7320 8294 05E0 BCC7 02C4 75CC 50D9 -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: Strange bind error
> > For the first time I saw those curious errors. I don't understand where > > is the error, in my bind or in the remote client/server?? > > > > Any idea? > > > > Apr 21 22:00:50 volubilis named[12517]: socket.c:1100: unexpected error: > > Apr 21 22:00:50 volubilis named[12517]: internal_send: 203.147.0.49#0: > > Invalid argument > > DNS queries with source port 0 could cause this, I suppose. I don't think so. You shouldn't get an error binding to '0' port unless all your resources are used (AFAIK). I think there might be some race condition there, because I've seen similiar errors during peek load. -- Dariush Pietrzak, Key fingerprint = 40D0 9FFB 9939 7320 8294 05E0 BCC7 02C4 75CC 50D9
Re: logging samba access
Am Sun, Jun 06, 2004 at 11:59:21AM +0200, LeVA sagte: > Hi! > > Is it possible to log the file/dir accesses to samba server? I.e. I got > a share, and when someone mounts (from win or unix) it and access file, > or write files I want samba to log it to the smb.log. Is this possible? > > Thanks! > > > Daniel "log level = 2" in the global section of smb.conf will do the trick. gruss pascal -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: logging samba access
## LeVA ([EMAIL PROTECTED]): > Is it possible to log the file/dir accesses to samba server? I.e. I got > a share, and when someone mounts (from win or unix) it and access file, > or write files I want samba to log it to the smb.log. Is this possible? Ever had a look in /var/log/samba/? If you are missing something, increase log level in smb.conf. Regards, Christoph -- Spare Space -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
logging samba access
Hi! Is it possible to log the file/dir accesses to samba server? I.e. I got a share, and when someone mounts (from win or unix) it and access file, or write files I want samba to log it to the smb.log. Is this possible? Thanks! Daniel -- LeVA pgpvLB2l18Lxu.pgp Description: signature
Re: Unusual spam recently - hummm - postprocess
On Sat, 5 Jun 2004 08:52, Michael Stone <[EMAIL PROTECTED]> wrote: > >So, adding handling for SPF RRs in one's MTA yields significant > >advantages today, despite the technology being new, because _all_ of the > >forgemail claiming to be from aol.com, msn.com, hotmail.com, pobox.com, > >etc. can be detected all in one step. > > Well, I guess the spammers will have to use different addresses. That > shouldn't take long. Which leads to more spam that uses addresses from small domains in the From: field, and thus more need for administrators of small servers to implement SPF records to counter it. -- http://www.coker.com.au/selinux/ My NSA Security Enhanced Linux packages http://www.coker.com.au/bonnie++/ Bonnie++ hard drive benchmark http://www.coker.com.au/postal/Postal SMTP/POP benchmark http://www.coker.com.au/~russell/ My home page -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: Strange bind error
> > For the first time I saw those curious errors. I don't understand where > > is the error, in my bind or in the remote client/server?? > > > > Any idea? > > > > Apr 21 22:00:50 volubilis named[12517]: socket.c:1100: unexpected error: > > Apr 21 22:00:50 volubilis named[12517]: internal_send: 203.147.0.49#0: > > Invalid argument > > DNS queries with source port 0 could cause this, I suppose. I don't think so. You shouldn't get an error binding to '0' port unless all your resources are used (AFAIK). I think there might be some race condition there, because I've seen similiar errors during peek load. -- Dariush Pietrzak, Key fingerprint = 40D0 9FFB 9939 7320 8294 05E0 BCC7 02C4 75CC 50D9 -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
