date:20141126


On Wed, 26 Nov 2014, Reindl Harald wrote:


Am 26.11.2014 um 23:44 schrieb Nick Edwards:

 google reindl and his email address  he copped nothing he has not
 dished out to others for years, now he plays innocent, thankfully
 google does not lie, or hide.


did you pure asshole ever consider that i try to do my best to be more nice 
as been in the past?


Take it private or you'll get yourself banned too.

--
 John Hardin KA7OHZhttp://www.impsec.org/~jhardin/
 jhar...@impsec.orgFALaholic #11174 pgpk -a jhar...@impsec.org
 key: 0xB8732E79 -- 2D8C 34F4 6411 F507 136C  AF76 D822 E6E6 B873 2E79
---
  "Bother," said Pooh as he struggled with /etc/sendmail.cf, "it never
  does quite what I want. I wish Christopher Robin was here."
   -- Peter da Silva in a.s.r
---
 29 days until Christmas

Re: [SA-Users] Re: unsubscribe

2014-11-26 Thread John R. Dennison

On Wed, Nov 26, 2014 at 11:46:38PM +0100, Antony Stone wrote:
> On Wednesday 26 November 2014 at 21:05:30 (EU time), John Hardin wrote:
> 
> > Moderator, I am making an official request to ban Nick Edwards
> >  for abuse. There is no call for and no excuse
> > for such behavior.
> 
> From just an "average member" of this list, seconded.
> 
> He's even continuing, despite both parties being asked to take this personal 
> dispute offlist.

Not that this is a democracy but add me to the list of people sick of
this nonsense.  I am hardly one of Reindl's fans but I don't recall him
ever being this outright abusive, nor issuing the veiled threats I saw
from Edwards earlier.

I am quite sure that the Apache Foundation takes a very dim view of
these antics on resources they own as well.

John
-- 
To do just the opposite is also a form of imitation.

-- Georg Christoph Lichtenberg (1742-1799), German scientist,
   satirist and philosopher, Notebook D (1773-1775)

pgpVBd9eCAY0x.pgp
Description: PGP signature

Re: unsubscribe

2014-11-26 Thread Brett Schenker

Holy crap. You're adults, this is a professional list. Start acting like
adults and if you want to continue this pissing match, take this off list.
You're cluttering my inbox, and this is beyond rude to those on the list.

For being anti-spam it sure feels like I'm being sent some right now.
On Nov 26, 2014 6:01 PM, "Reindl Harald"  wrote:

>
> Am 26.11.2014 um 23:54 schrieb Nick Edwards:
>
>> all people have to do is google you,
>>
>> then they will know the truth about what  nasty bit of work you really
>> are and how you attack people all the time, that and all those list
>> bannings and moderations should make them realize who they are really
>> dealing with.
>>
>
> you still don't get it:
>
> if someone should google me the same applies to you:
> http://comments.gmane.org/gmane.mail.roundcube.user/4500
>
> it is *not* your business to judge *here* hwat i did in say in the past
> and somewhere else, especially as long *you* are the real abusive asshole -
> and there is no nicer word than asshole for your attitude
>
> when i answer somewhere not that nice i *always* discuss about facts
> you are *always* attacking in a pure personal way
>
> care about your own acting and life while leave others in peace
>
>  On 11/27/14, Reindl Harald  wrote:
>>
>>>
>>> Am 26.11.2014 um 23:42 schrieb Nick Edwards:
>>>
 On 11/26/14, Reindl Harald  wrote:

>
>  fedora list MODERATED

>>>
>>> not true for many months
>>>
>>>  oh because you "allegedly" unsubscribed
>>
>
> bullshit - fedora devel active all the time
> https://lists.fedoraproject.org/pipermail/devel/2014-
> November/thread.html
>

 dont mix words reindl im talking about fedora users and you bloody well
 know it

>>>
>>> be precise or shut up *AND IN GENERAL* the past and other lists don#t
>>> matter *AT ALL* and so creep out of my sight at all
>>>
>>> what about stop acting like a child?
>>>
>>> * i did nothing wrong in my reply caused you again
>>> to start your vendetta
>>>
>>> * even if - you are *not* in the position of a judge - *period*
>>>
>>> * whatever you criticize i did *never* act in any way like
>>> a asshole as you do here *because* even if i don't find
>>> always nice enough words i *never* attack a person because
>>> of the person - *you do*
>>>
>>> so creep away and care about your own stuff
>>> what i do and say is *clearly* not your stuff - nowhere
>>>
>>> you are a nobody in context of playing judge
>>>
>>
>

Re: unsubscribe



Am 26.11.2014 um 23:54 schrieb Nick Edwards:

all people have to do is google you,

then they will know the truth about what  nasty bit of work you really
are and how you attack people all the time, that and all those list
bannings and moderations should make them realize who they are really
dealing with.


you still don't get it:

if someone should google me the same applies to you:
http://comments.gmane.org/gmane.mail.roundcube.user/4500

it is *not* your business to judge *here* hwat i did in say in the past 
and somewhere else, especially as long *you* are the real abusive 
asshole - and there is no nicer word than asshole for your attitude


when i answer somewhere not that nice i *always* discuss about facts
you are *always* attacking in a pure personal way

care about your own acting and life while leave others in peace


On 11/27/14, Reindl Harald  wrote:


Am 26.11.2014 um 23:42 schrieb Nick Edwards:

On 11/26/14, Reindl Harald  wrote:



fedora list MODERATED


not true for many months


oh because you "allegedly" unsubscribed


bullshit - fedora devel active all the time
https://lists.fedoraproject.org/pipermail/devel/2014-November/thread.html


dont mix words reindl im talking about fedora users and you bloody well
know it


be precise or shut up *AND IN GENERAL* the past and other lists don#t
matter *AT ALL* and so creep out of my sight at all

what about stop acting like a child?

* i did nothing wrong in my reply caused you again
to start your vendetta

* even if - you are *not* in the position of a judge - *period*

* whatever you criticize i did *never* act in any way like
a asshole as you do here *because* even if i don't find
always nice enough words i *never* attack a person because
of the person - *you do*

so creep away and care about your own stuff
what i do and say is *clearly* not your stuff - nowhere

you are a nobody in context of playing judge




signature.asc
Description: OpenPGP digital signature

Re: unsubscribe

2014-11-26 Thread Antony Stone

On Wednesday 26 November 2014 at 23:44:10 (EU time), Nick Edwards wrote:

> google reindl and his email address  he copped nothing he has not
> dished out to others for years, now he plays innocent, thankfully
> google does not lie, or hide.

We don't care.  This list is for SpamAssassin discussions.  Please take up 
your personal concerns about other members with them personally, not here.

Antony.

-- 
Perfection in design is achieved not when there is nothing left to add, but 
rather when there is nothing left to take away.

 - Antoine de Saint-Exupery

   Please reply to the list;
 please *don't* CC me.

Re: unsubscribe

all people have to do is google you,

then they will know the truth about what  nasty bit of work you really
are and how you attack people all the time, that and all those list
bannings and moderations should make them realize who they are really
dealing with.


On 11/27/14, Reindl Harald  wrote:
>
> Am 26.11.2014 um 23:42 schrieb Nick Edwards:
>> On 11/26/14, Reindl Harald  wrote:
>>>
>> fedora list MODERATED
>
> not true for many months
>
 oh because you "allegedly" unsubscribed
>>>
>>> bullshit - fedora devel active all the time
>>> https://lists.fedoraproject.org/pipermail/devel/2014-November/thread.html
>>
>> dont mix words reindl im talking about fedora users and you bloody well
>> know it
>
> be precise or shut up *AND IN GENERAL* the past and other lists don#t
> matter *AT ALL* and so creep out of my sight at all
>
> what about stop acting like a child?
>
> * i did nothing wrong in my reply caused you again
>to start your vendetta
>
> * even if - you are *not* in the position of a judge - *period*
>
> * whatever you criticize i did *never* act in any way like
>a asshole as you do here *because* even if i don't find
>always nice enough words i *never* attack a person because
>of the person - *you do*
>
> so creep away and care about your own stuff
> what i do and say is *clearly* not your stuff - nowhere
>
> you are a nobody in context of playing judge
>
>
>

Re: unsubscribe




Am 26.11.2014 um 23:44 schrieb Nick Edwards:

google reindl and his email address  he copped nothing he has not
dished out to others for years, now he plays innocent, thankfully
google does not lie, or hide.


did you pure asshole ever consider that i try to do my best to be more 
nice as been in the past?


who are you that you refer to how acted here and there by beeing *much 
more* abusive and personal than *i ever* was?


get a life!


On 11/27/14, John Hardin  wrote:

On Wed, 26 Nov 2014, Anthony Cartmell wrote:


How about you take your own advice. On any of my lists that diatribe
would




signature.asc
Description: OpenPGP digital signature

Re: unsubscribe



Am 26.11.2014 um 23:42 schrieb Nick Edwards:

On 11/26/14, Reindl Harald  wrote:



fedora list MODERATED


not true for many months


oh because you "allegedly" unsubscribed


bullshit - fedora devel active all the time
https://lists.fedoraproject.org/pipermail/devel/2014-November/thread.html


dont mix words reindl im talking about fedora users and you bloody well know it


be precise or shut up *AND IN GENERAL* the past and other lists don#t 
matter *AT ALL* and so creep out of my sight at all


what about stop acting like a child?

* i did nothing wrong in my reply caused you again
  to start your vendetta

* even if - you are *not* in the position of a judge - *period*

* whatever you criticize i did *never* act in any way like
  a asshole as you do here *because* even if i don't find
  always nice enough words i *never* attack a person because
  of the person - *you do*

so creep away and care about your own stuff
what i do and say is *clearly* not your stuff - nowhere

you are a nobody in context of playing judge




signature.asc
Description: OpenPGP digital signature

Re: unsubscribe

2014-11-26 Thread Antony Stone

On Wednesday 26 November 2014 at 21:05:30 (EU time), John Hardin wrote:

> Moderator, I am making an official request to ban Nick Edwards
>  for abuse. There is no call for and no excuse
> for such behavior.

From just an "average member" of this list, seconded.

He's even continuing, despite both parties being asked to take this personal 
dispute offlist.

Regards,

Antony.

Re: unsubscribe

google reindl and his email address  he copped nothing he has not
dished out to others for years, now he plays innocent, thankfully
google does not lie, or hide.

On 11/27/14, John Hardin  wrote:
> On Wed, 26 Nov 2014, Anthony Cartmell wrote:
>
>>> How about you take your own advice. On any of my lists that diatribe
>>> would
>
>

Re: unsubscribe

On 11/26/14, Reindl Harald  wrote:
>
>
>
 fedora list MODERATED
>>>
>>> not true for many months
>>>
>> oh because you "allegedly" unsubscribed
>
> bullshit - fedora devel active all the time
> https://lists.fedoraproject.org/pipermail/devel/2014-November/thread.html
>

dont mix words reindl im talking about fedora users and you bloody well know it

Re: unsubscribe


On Wed, 26 Nov 2014, Anthony Cartmell wrote:

How about you take your own advice. On any of my lists that diatribe would 
get you banned no questions asked.


I'm always amused by the abusive language people sometimes use on this list.

Bad language, and personal attacks, reveal a lot more about the person doing 
the writing than the person they're trying to attack.


Agreed to both points.

Moderator, I am making an official request to ban Nick Edwards 
 for abuse. There is no call for and no excuse 
for such behavior.


--
 John Hardin KA7OHZhttp://www.impsec.org/~jhardin/
 jhar...@impsec.orgFALaholic #11174 pgpk -a jhar...@impsec.org
 key: 0xB8732E79 -- 2D8C 34F4 6411 F507 136C  AF76 D822 E6E6 B873 2E79
---
  "Bother," said Pooh as he struggled with /etc/sendmail.cf, "it never
  does quite what I want. I wish Christopher Robin was here."
   -- Peter da Silva in a.s.r
---
 29 days until Christmas

Re: unsubscribe

2014-11-26 Thread Axb


On 11/26/2014 07:54 PM, Quanah Gibson-Mount wrote:

--On Wednesday, November 26, 2014 2:06 PM +0100 Axb
 wrote:


Girls,


^ -> Extremely sexist.  Please try some other form of insult in
the future. ;)


blame my education or lack of..   8-P

Re: sa-update lint fail on __PDS_FROM_2_EMAILS


On Wed, 26 Nov 2014, Niamh Holding wrote:



Hello John,

Wednesday, November 26, 2014, 4:56:46 PM, you wrote:

JH> Any possibility of upgrading to at least perl 5.10.0?

Not officially on CentOS 5.11 it seems as nothing newer is listed-


Bummer.

Well, the rule is commented out in my sandbox. Hopefully it will go out 
tonight.


--
 John Hardin KA7OHZhttp://www.impsec.org/~jhardin/
 jhar...@impsec.orgFALaholic #11174 pgpk -a jhar...@impsec.org
 key: 0xB8732E79 -- 2D8C 34F4 6411 F507 136C  AF76 D822 E6E6 B873 2E79
---
  "Bother," said Pooh as he struggled with /etc/sendmail.cf, "it never
  does quite what I want. I wish Christopher Robin was here."
   -- Peter da Silva in a.s.r
---
 29 days until Christmas

Re: Honeypot email addresses

2014-11-26 Thread Christian Grunfeld

even /64 DNSxLs will be expensive !
/64 lists will have 2^32 times more entries than IPv4 lists.

2014-11-26 15:45 GMT-03:00 Franck Martin :

>
>  On Nov 26, 2014, at 10:19 AM, Matthias Leisi  wrote:
>
>
>
> On Wed, Nov 26, 2014 at 6:05 PM, Franck Martin 
> wrote:
>
>
>> As for /64, yes there are hosting providers that have all their customers
>> in the same /64 and other cases like this where infrastructure is not
>> separated by /64 boundaries. I think IPv6 blocking list will be more last
>> resort, than first line of defense (but that’s just me). Note rbldnsd works
>> at /64 by default, with /128 exceptions.
>>
>
>  DNSxLs are still the "cheapest" way to determine reputation because it
> can happen at connection stage (or as a computationally cheap input to a
> scoring mechanism such as SpamAssassin) - so I believe there is still value
> in it, and it is important to get it as efficient as possible.
>
>
> Agreed, it is cheap in resources. However, it will be easier to add to a
> domain blocking list than to add to an IPv6 blocking list. May be first
> line of defense is the wrong naming. IPv6 blocking lists will be to remove
> the extreme badness of the Internet.
>
>

Re: unsubscribe

2014-11-26 Thread Quanah Gibson-Mount

--On Wednesday, November 26, 2014 2:06 PM +0100 Axb  
wrote:



Girls,


^ -> Extremely sexist.  Please try some other form of insult in the 
future. ;)


--Quanah


--

Quanah Gibson-Mount
Server Architect
Zimbra, Inc.

Zimbra ::  the leader in open source messaging and collaboration

Re: Honeypot email addresses



Am 26.11.2014 um 19:45 schrieb Franck Martin:

On Nov 26, 2014, at 10:19 AM, Matthias Leisi mailto:matth...@leisi.net>> wrote:


On Wed, Nov 26, 2014 at 6:05 PM, Franck Martin mailto:fmar...@linkedin.com>> wrote:

As for /64, yes there are hosting providers that have all their
customers in the same /64 and other cases like this where
infrastructure is not separated by /64 boundaries. I think IPv6
blocking list will be more last resort, than first line of defense
(but that’s just me). Note rbldnsd works at /64 by default, with
/128 exceptions.


DNSxLs are still the "cheapest" way to determine reputation because it
can happen at connection stage (or as a computationally cheap input to
a scoring mechanism such as SpamAssassin) - so I believe there is
still value in it, and it is important to get it as efficient as
possible.

Agreed, it is cheap in resources. However, it will be easier to add to a
domain blocking list than to add to an IPv6 blocking list. May be first
line of defense is the wrong naming. IPv6 blocking lists will be to
remove the extreme badness of the Internet


"domain blocking list" is already done with SpamAssassins URIBL

blocking sender domains blindly is error prone because you penalty a 
legit domain because some faced forged senders




signature.asc
Description: OpenPGP digital signature

Re: Honeypot email addresses

2014-11-26 Thread Franck Martin


On Nov 26, 2014, at 10:19 AM, Matthias Leisi 
mailto:matth...@leisi.net>> wrote:



On Wed, Nov 26, 2014 at 6:05 PM, Franck Martin 
mailto:fmar...@linkedin.com>> wrote:

As for /64, yes there are hosting providers that have all their customers in 
the same /64 and other cases like this where infrastructure is not separated by 
/64 boundaries. I think IPv6 blocking list will be more last resort, than first 
line of defense (but that’s just me). Note rbldnsd works at /64 by default, 
with /128 exceptions.

DNSxLs are still the "cheapest" way to determine reputation because it can 
happen at connection stage (or as a computationally cheap input to a scoring 
mechanism such as SpamAssassin) - so I believe there is still value in it, and 
it is important to get it as efficient as possible.

Agreed, it is cheap in resources. However, it will be easier to add to a domain 
blocking list than to add to an IPv6 blocking list. May be first line of 
defense is the wrong naming. IPv6 blocking lists will be to remove the extreme 
badness of the Internet.

Re: Honeypot email addresses

2014-11-26 Thread Matthias Leisi

On Wed, Nov 26, 2014 at 6:05 PM, Franck Martin  wrote:

> As for /64, yes there are hosting providers that have all their customers
> in the same /64 and other cases like this where infrastructure is not
> separated by /64 boundaries. I think IPv6 blocking list will be more last
> resort, than first line of defense (but that’s just me). Note rbldnsd works
> at /64 by default, with /128 exceptions.
>

DNSxLs are still the "cheapest" way to determine reputation because it can
happen at connection stage (or as a computationally cheap input to a
scoring mechanism such as SpamAssassin) - so I believe there is still value
in it, and it is important to get it as efficient as possible.

For my project, dnswl.org, the situation may be a bit different, because
TTLs can be very long (at least in the range of hours) rather than mere
minutes for DNSBLs.

I'll try to hack together a plugin, I've reserved some time over the next
few days.

-- Matthias

Re: sa-update lint fail on __PDS_FROM_2_EMAILS

2014-11-26 Thread Niamh Holding


Hello John,

Wednesday, November 26, 2014, 4:56:46 PM, you wrote:

JH> Any possibility of upgrading to at least perl 5.10.0?

Not officially on CentOS 5.11 it seems as nothing newer is listed-

 yum list perl
Loaded plugins: fastestmirror, priorities
Loading mirror speeds from cached hostfile
 * base: mirror.as29550.net
 * extras: mirrors.vooservers.com
 * updates: repo.bigstepcloud.com
Installed Packages
perl.x86_64 4:5.8.8-43.el5_11 installed

-- 
Best regards,
 Niamhmailto:ni...@fullbore.co.uk

pgpiRLTTE7Xa1.pgp
Description: PGP signature

Re: Honeypot email addresses

2014-11-26 Thread Franck Martin

On Nov 26, 2014, at 2:15 AM, Kevin A. McGrail
mailto:kmcgr...@pccc.com>> wrote:

On 11/26/2014 1:53 AM, Matthias Leisi wrote:

On Wed, Nov 26, 2014 at 3:45 AM, Franck Martin
mailto:fmar...@linkedin.com>> wrote:

You may want to read
https://www.m3aawg.org/sites/maawg/files/news/M3AAWG_Inbound_IPv6_Policy_Issues-2014-09.pdf

I'm well aware of the issues of cache efficiency and query volumes due to the
vast address space. The solution to just cut off at /64 is nice, but there will
be many legitimate cases where this is will not be "good enough".

That's why I am convinced that in the end we will need something like a "tree
walk" algorithm, where an "intelligent" algorithm starts at (let's say) a /32
boundary and then gets responses to the best fitting response.

Yes, such an approach might initially double the amount of queries and has an
increased risk of not getting DNS responses, but on the other hand such "tree
information" can be nicely cached with reasonably long TTLs, even for the
fast-paced DNSBLs out there.

Maybe such a tree-walk algorithm is worth an experiment as a SpamAssassin
plugin?

I could likely ramble about why I don't think the real-world implications will
be that large because patterns will emerge. As such, SA Plugins are very safe
for experimental work and can be done without any impact on production systems
in my experience.

I'd support and love to see some experiments in this realm.

I think may be you are missing the other point of this document, if there is no
valid SPF or DKIM and the message was received over IPv6, then you reject it
(or send it to spam). I think such rule can be easily implemented in SA. Just
need to put a score of 10 on it :P

As for real case scenario, Google, Microsoft and others are already doing just
this.

As for /64, yes there are hosting providers that have all their customers in
the same /64 and other cases like this where infrastructure is not separated by
/64 boundaries. I think IPv6 blocking list will be more last resort, than first
line of defense (but that’s just me). Note rbldnsd works at /64 by default,
with /128 exceptions.

Re: could not create IO::Socket::IP socket on [127.0.0.1]:783: Address already in use

2014-11-26 Thread Thomas Schulz

> Thanks, that explains how we get to 'Address already in use'.
> 
> This opens up a couple of questions:
> 
> - creating a socket listening on '::' apparently does work
> (it is tested in the BEGIN phase, and reported by 'have PF_INET6'),
> but creating a socket listening on '::1' (i.e. a loopback address)
> fails. Are you running spamd in jail? Does a loopback interface
> have an IPv6 address assigned? Is it '::1'? Or if you think the
> IPv6 is not supported on that host, why then does creating a
> socket listening on '::' succeed?
> 
> - why did it work with older versions of perl and modules
> 
> - this chain of events shows that the logic in server_sock_setup_inet()
> and/or its caller is flawed. When multiple sockets are to be created
> and not all succeed, we'd need to undo the successfully created
> sockets before bailing out on error - or alternatively, make do
> with partially fulfilling the request.
> 
> Please open up a ticket on the bugzilla.
> 
>Mark

Bug 7106 has been created. For the benefit of those reading this thead,
here is a last bit of information.

The operating system (Solaris 10) supports IPV6 but there are no IPV6
interfaces defined. So binding to ::1 can not succeed.
Here is the debug output with the old Perl and old modules:

dbg: spamd: socket module of choice: IO::Socket::IP 0.27, Socket 2.013, have
PF_INET, no PF_INET6, using Socket::getaddrinfo, AI_ADDRCONFIG is suported
dbg: spamd: socket specification: "localhost", IP address: localhost, port: 783
dbg: spamd: attempting to listen on IP addresses: 127.0.0.1, port 783
dbg: spamd: creating IO::Socket::IP socket: Listen: 128, LocalAddr: 127.0.0.1,
LocalPort: 783, Proto: tcp, ReuseAddr: 1, Type: 2, V6Only: 1

Tom Schulz
Applied Dynamics Intl.
sch...@adi.com

Re: sa-update lint fail on __PDS_FROM_2_EMAILS


On 11/26/2014 11:58 AM, John Hardin wrote:

On Wed, 26 Nov 2014, Kevin A. McGrail wrote:


On 11/26/2014 11:27 AM, Niamh Holding wrote:

 Hello Burnie,

 Wednesday, November 26, 2014, 11:07:18 AM, you wrote:

B>  config: invalid regexp for rule __PDS_FROM_2_EMAILS:
B> 
/^\W+([\w+.-]+\@[\w.-]+\.\w\w++)(?:[^\n\w<]{0,80})?<(?!\1)[^\n\s]*\@/i:

B>  Nested quantifiers in regex; marked by <-- HERE in
B>  m/(?i)^\W+([\w+.-]+\@[\w.-]+\.\w\w++ <-- HERE
B> )(?:[^\n\w<]{0,80})?<(?!\1)[^\n\s]*\@/

 Got that this morning too resulting in "Nov 26 04:23:06.317 [2661] 
dbg:

 diag: updates complete, exiting with code 4"


I can recreate the issue as well.

5.14 works, 5.8 doesn't.  Appears to be a regex that has requirements 
beyond our 5.8.8 preferred version.


John, do you think you can identify a regex that's downward 
compatible and open a bug about this issue?


I'll try to figure out a compatible RE.

I'm opening a bug, but it'll be about not being able to check the perl 
version in preprocessor directives...



:-) No arguments here.

Re: sa-update lint fail on __PDS_FROM_2_EMAILS


On 11/26/2014 11:56 AM, John Hardin wrote:

On Wed, 26 Nov 2014, Burnie wrote:


Seems one of the new rules fails to lint.

Perhaps there's a mismatch with the regexp and perl 5.8?

spamassassin 3.3.1
perl 5.8.8

# /usr/bin/sa-update
config: invalid regexp for rule __PDS_FROM_2_EMAILS: 
/^\W+([\w+.-]+\@[\w.-]+\.\w\w++)(?:[^\n\w<]{0,80})?<(?!\1)[^\n\s]*\@/i: 
Nested quantifiers in regex; marked by <-- HERE in 
m/(?i)^\W+([\w+.-]+\@[\w.-]+\.\w\w++ <-- HERE 
)(?:[^\n\w<]{0,80})?<(?!\1)[^\n\s]*\@/


channel: lint check of update failed, channel failed


Whoops. The ++ syntax was introduced in perl 5.10

Since there's no way to add a perl version exclusion to that rule I've 
commented it out, but I don't know how quickly it will go out. Any 
possibility of upgrading to at least perl 5.10.0?


You could try editing your local 72_active.cf to remove the two 
PDS_FROM_2_EMAILS rules (subrule and meta):


#  header  __PDS_FROM_2_EMAILS From =~ 
/^\W+([\w+.-]+\@[\w.-]+\.\w\w++)(?:[^\n\w<]{0,80})?<(?!\1)[^\n\s]*\@/i
#  metaPDS_FROM_2_EMAILS   __PDS_FROM_2_EMAILS && !__VIA_ML && 
!__VIA_RESIGNER





I don't think the 72_active is installed because the sa-update fails and 
I don't think there is a force command for sa-update without a lint. 
Nothing should be broken because it should have aborted the sa-update 
run without touching the existing rules and in a day or three he'll get 
the rules without that rule (or hopefully with a revised version), etc.


Regards,
KAM

Re: sa-update lint fail on __PDS_FROM_2_EMAILS


On Wed, 26 Nov 2014, Burnie wrote:


Seems one of the new rules fails to lint.

Perhaps there's a mismatch with the regexp and perl 5.8?

spamassassin 3.3.1
perl 5.8.8

# /usr/bin/sa-update
config: invalid regexp for rule __PDS_FROM_2_EMAILS: 
/^\W+([\w+.-]+\@[\w.-]+\.\w\w++)(?:[^\n\w<]{0,80})?<(?!\1)[^\n\s]*\@/i: 
Nested quantifiers in regex; marked by <-- HERE in 
m/(?i)^\W+([\w+.-]+\@[\w.-]+\.\w\w++ <-- HERE 
)(?:[^\n\w<]{0,80})?<(?!\1)[^\n\s]*\@/


channel: lint check of update failed, channel failed


Whoops. The ++ syntax was introduced in perl 5.10

Since there's no way to add a perl version exclusion to that rule I've 
commented it out, but I don't know how quickly it will go out. Any 
possibility of upgrading to at least perl 5.10.0?


You could try editing your local 72_active.cf to remove the two 
PDS_FROM_2_EMAILS rules (subrule and meta):


#  header  __PDS_FROM_2_EMAILS From =~ 
/^\W+([\w+.-]+\@[\w.-]+\.\w\w++)(?:[^\n\w<]{0,80})?<(?!\1)[^\n\s]*\@/i
#  metaPDS_FROM_2_EMAILS   __PDS_FROM_2_EMAILS && !__VIA_ML && 
!__VIA_RESIGNER


--
 John Hardin KA7OHZhttp://www.impsec.org/~jhardin/
 jhar...@impsec.orgFALaholic #11174 pgpk -a jhar...@impsec.org
 key: 0xB8732E79 -- 2D8C 34F4 6411 F507 136C  AF76 D822 E6E6 B873 2E79
---
  "Bother," said Pooh as he struggled with /etc/sendmail.cf, "it never
  does quite what I want. I wish Christopher Robin was here."
   -- Peter da Silva in a.s.r
---
 29 days until Christmas

Re: sa-update lint fail on __PDS_FROM_2_EMAILS


On Wed, 26 Nov 2014, Kevin A. McGrail wrote:


On 11/26/2014 11:27 AM, Niamh Holding wrote:

 Hello Burnie,

 Wednesday, November 26, 2014, 11:07:18 AM, you wrote:

B>  config: invalid regexp for rule __PDS_FROM_2_EMAILS:
B>  /^\W+([\w+.-]+\@[\w.-]+\.\w\w++)(?:[^\n\w<]{0,80})?<(?!\1)[^\n\s]*\@/i:
B>  Nested quantifiers in regex; marked by <-- HERE in
B>  m/(?i)^\W+([\w+.-]+\@[\w.-]+\.\w\w++ <-- HERE
B> )(?:[^\n\w<]{0,80})?<(?!\1)[^\n\s]*\@/

 Got that this morning too resulting in "Nov 26 04:23:06.317 [2661] dbg:
 diag: updates complete, exiting with code 4"


I can recreate the issue as well.

5.14 works, 5.8 doesn't.  Appears to be a regex that has requirements beyond 
our 5.8.8 preferred version.


John, do you think you can identify a regex that's downward compatible and 
open a bug about this issue?


I'll try to figure out a compatible RE.

I'm opening a bug, but it'll be about not being able to check the perl 
version in preprocessor directives...


--
 John Hardin KA7OHZhttp://www.impsec.org/~jhardin/
 jhar...@impsec.orgFALaholic #11174 pgpk -a jhar...@impsec.org
 key: 0xB8732E79 -- 2D8C 34F4 6411 F507 136C  AF76 D822 E6E6 B873 2E79
---
  "Bother," said Pooh as he struggled with /etc/sendmail.cf, "it never
  does quite what I want. I wish Christopher Robin was here."
   -- Peter da Silva in a.s.r
---
 29 days until Christmas

Re: sa-update lint fail on __PDS_FROM_2_EMAILS


On 11/26/2014 11:27 AM, Niamh Holding wrote:

Hello Burnie,

Wednesday, November 26, 2014, 11:07:18 AM, you wrote:

B> config: invalid regexp for rule __PDS_FROM_2_EMAILS:
B> /^\W+([\w+.-]+\@[\w.-]+\.\w\w++)(?:[^\n\w<]{0,80})?<(?!\1)[^\n\s]*\@/i:
B> Nested quantifiers in regex; marked by <-- HERE in
B> m/(?i)^\W+([\w+.-]+\@[\w.-]+\.\w\w++ <-- HERE
B> )(?:[^\n\w<]{0,80})?<(?!\1)[^\n\s]*\@/

Got that this morning too resulting in "Nov 26 04:23:06.317 [2661] dbg:
diag: updates complete, exiting with code 4"


I can recreate the issue as well.

5.14 works, 5.8 doesn't.  Appears to be a regex that has requirements 
beyond our 5.8.8 preferred version.


John, do you think you can identify a regex that's downward compatible 
and open a bug about this issue?


Regards,
KAM

Re: unsubscribe

2014-11-26 Thread David F. Skoll

I will contribute one post to this thread.

http://marc.info/?l=spamassassin-users&m=14124117308&w=2

Just saying.

Regards,

David.

Re: sa-update lint fail on __PDS_FROM_2_EMAILS

2014-11-26 Thread Paul Stead


Not getting the lint error here..

Perl 5.14.2


On 26/11/14 16:37, Axb wrote:

On 11/26/2014 05:27 PM, Niamh Holding wrote:


Hello Burnie,

Wednesday, November 26, 2014, 11:07:18 AM, you wrote:

B> config: invalid regexp for rule __PDS_FROM_2_EMAILS:
B>
/^\W+([\w+.-]+\@[\w.-]+\.\w\w++)(?:[^\n\w<]{0,80})?<(?!\1)[^\n\s]*\@/i:
B> Nested quantifiers in regex; marked by <-- HERE in
B> m/(?i)^\W+([\w+.-]+\@[\w.-]+\.\w\w++ <-- HERE
B> )(?:[^\n\w<]{0,80})?<(?!\1)[^\n\s]*\@/

Got that this morning too resulting in "Nov 26 04:23:06.317 [2661] dbg:
diag: updates complete, exiting with code 4"



Wonder why Jenkins didn't catch this...

--
Paul Stead
Systems Engineer
Zen Internet

Re: sa-update lint fail on __PDS_FROM_2_EMAILS

2014-11-26 Thread Axb


On 11/26/2014 05:27 PM, Niamh Holding wrote:


Hello Burnie,

Wednesday, November 26, 2014, 11:07:18 AM, you wrote:

B> config: invalid regexp for rule __PDS_FROM_2_EMAILS:
B> /^\W+([\w+.-]+\@[\w.-]+\.\w\w++)(?:[^\n\w<]{0,80})?<(?!\1)[^\n\s]*\@/i:
B> Nested quantifiers in regex; marked by <-- HERE in
B> m/(?i)^\W+([\w+.-]+\@[\w.-]+\.\w\w++ <-- HERE
B> )(?:[^\n\w<]{0,80})?<(?!\1)[^\n\s]*\@/

Got that this morning too resulting in "Nov 26 04:23:06.317 [2661] dbg:
diag: updates complete, exiting with code 4"



Wonder why Jenkins didn't catch this...

Re: sa-update lint fail on __PDS_FROM_2_EMAILS

2014-11-26 Thread Niamh Holding


Hello Burnie,

Wednesday, November 26, 2014, 11:07:18 AM, you wrote:

B> config: invalid regexp for rule __PDS_FROM_2_EMAILS: 
B> /^\W+([\w+.-]+\@[\w.-]+\.\w\w++)(?:[^\n\w<]{0,80})?<(?!\1)[^\n\s]*\@/i: 
B> Nested quantifiers in regex; marked by <-- HERE in 
B> m/(?i)^\W+([\w+.-]+\@[\w.-]+\.\w\w++ <-- HERE 
B> )(?:[^\n\w<]{0,80})?<(?!\1)[^\n\s]*\@/

Got that this morning too resulting in "Nov 26 04:23:06.317 [2661] dbg:
diag: updates complete, exiting with code 4"

-- 
Best regards,
 Niamhmailto:ni...@fullbore.co.uk

pgpPwwRxN8_nR.pgp
Description: PGP signature

Re: unsubscribe

2014-11-26 Thread Anthony Cartmell

How about you take your own advice. On any of my lists that diatribe  
would get you banned no questions asked.


I'm always amused by the abusive language people sometimes use on this  
list.


Bad language, and personal attacks, reveal a lot more about the person  
doing the writing than the person they're trying to attack.


Anthony
--
www.fonant.com - Quality web sites
Tel. 01903 867 810
Fonant Ltd is registered in England and Wales, company No. 7006596
Registered office: Amelia House, Crescent Road, Worthing, West Sussex,  
BN11 1QR

Re: Honeypot email addresses



Am 26.11.2014 um 15:07 schrieb David F. Skoll:

On Wed, 26 Nov 2014 14:10:04 +0100
Reindl Harald  wrote:


the unbound stats on our inbound MX saying the opposite


How much of those are DNSBL lookups against DNSBLs with short TTLs?


below the stats by RBL and keep in mind postscreen always asks *all* of 
the 18 dnsbl/dnswl and only logs the one with the highest score in case 
of a reject and *even* cachs results itself (in our config for 5 
minutes) and so not asking every time the local resolver


spamhaus.org   70980
barracudacentral.org   25851
inps.de23020
sorbs.net   9069
thelounge.net   4676
mailspike.net535
spamcop.net  482
psbl.org 344
uceprotect.net   258
manitu.net79
swinog.ch 27
spameatingmonkey.net   4
=
Total DNSBL rejections:135325



signature.asc
Description: OpenPGP digital signature

Re: Honeypot email addresses

2014-11-26 Thread David F. Skoll

On Wed, 26 Nov 2014 14:10:04 +0100
Reindl Harald  wrote:

> the unbound stats on our inbound MX saying the opposite

How much of those are DNSBL lookups against DNSBLs with short TTLs?

Regards,

David.

Re: Honeypot email addresses



Am 26.11.2014 um 14:06 schrieb David F. Skoll:

On Wed, 26 Nov 2014 07:53:20 +0100
Matthias Leisi  wrote:


Yes, such an approach might initially double the amount of queries
and has an increased risk of not getting DNS responses, but on the
other hand such "tree information" can be nicely cached with
reasonably long TTLs, even for the fast-paced DNSBLs out there.


It's not worth the complexity.  I ran an analysis quite a few years
ago on the cache efficiency of DNSBLs and they're shockingly low.
I collected all the IPs seen on a very busy mail server and calculated
how many cache hits we'd get with Spamhaus lookups --- I believe Spamhaus
has a TTL of 15 minutes.  I'll have to dig up the exact numbers, but
I recall something like a 90% cache *miss* rate.  Commercial DNSBLs
count on a low cache hit rate; otherwise they wouldn't be able to
detect heavy users as easily


the unbound stats on our inbound MX saying the opposite

cache-min-ttl: 300
cache-max-ttl: 3600

2014-11-25 23:05:27 	[663:1] info: server stats for thread 1: 200732 
queries, 101194 answers from cache, 99538 recursions, 2679 prefetch
2014-11-25 23:05:27 	[663:3] info: server stats for thread 3: 115076 
queries, 51667 answers from cache, 63409 recursions, 1060 prefetch
2014-11-25 23:05:27 	[663:2] info: server stats for thread 2: 125836 
queries, 59737 answers from cache, 66099 recursions, 1293 prefetch
2014-11-25 23:05:27 	[663:0] info: server stats for thread 0: 112853 
queries, 50909 answers from cache, 61944 recursions, 1132 prefetch




signature.asc
Description: OpenPGP digital signature

Re: unsubscribe

2014-11-26 Thread Axb


Girls,

Please take your feud offlist.
It's totally offtopic

Thank you

Re: Honeypot email addresses

2014-11-26 Thread David F. Skoll

On Wed, 26 Nov 2014 07:53:20 +0100
Matthias Leisi  wrote:

> Yes, such an approach might initially double the amount of queries
> and has an increased risk of not getting DNS responses, but on the
> other hand such "tree information" can be nicely cached with
> reasonably long TTLs, even for the fast-paced DNSBLs out there.

It's not worth the complexity.  I ran an analysis quite a few years
ago on the cache efficiency of DNSBLs and they're shockingly low.
I collected all the IPs seen on a very busy mail server and calculated
how many cache hits we'd get with Spamhaus lookups --- I believe Spamhaus
has a TTL of 15 minutes.  I'll have to dig up the exact numbers, but
I recall something like a 90% cache *miss* rate.  Commercial DNSBLs
count on a low cache hit rate; otherwise they wouldn't be able to
detect heavy users as easily.

DNS turns out not to be a very efficient way to distribute reputation
data because it changes too often.  Having a local authoritative DNS
server serving up the reputation zone is fine, but using public
caching DNS servers to query it is a waste of resources.

I'll try to dig up my results and also the Perl script I used for log
analysis.

Regards,

David.

Re: unsubscribe

2014-11-26 Thread Christopher X. Candreva

How about you take your own advice. On any of my lists that diatribe would get 
you banned no questions asked.

On November 26, 2014 7:19:15 AM EST, Nick Edwards  
wrote:
>how about you get fucked, dictator asswipe your  a nobody here so just
>fuck off to your own hole you troll every list you join you act like
>god but your nothing but an offensive troll nobody
>
>On 11/25/14, Reindl Harald  wrote:
>> * don't hijack threads
>> * don't send "unsubscribe" to the whole list
>> * just unsubscribe yourself
>>
>> list-unsubscribe: 
>>
>> the same applies to any other mailing list
>> https://www.google.at/#q=how+to+unsubscribe+from+a+mailing+list
>>
>> Am 25.11.2014 um 14:31 schrieb Ralf Longwitz:
>>> Am 25.11.2014 10:41 schrieb "Paul Gardiner":
>>>
>>> Hi,
>>> I drive spamassassin using spampd.
>>>
>>> I've just swapped from using opensuse 13.1 to 13.2. That's taken
>>> me from spamassassin 3.3.2 to 3.4.0. I have two confusing
>changes.
>>>
>>> 1) The really problematic one is that I no longer see
>X-Spam-Level
>>> and X-Spam-Status headers in the processed mail. I do still have
>>> X-Spam-Checker-Version. I was using status to trigger rejection,
>>> so now effectively I have no filtering.
>>>
>>> 2) The confusing one: I used to have many .cf files in
>>> /usr/share/spamassassin/. I now have none.
>>>
>>> As you can probably tell, I don't really know much about
>>> spamassassin. I've to some degree been using it out of
>>> the box and having it just work. I realise the change could be
>>> down to opensuse packaging, but I thought someone here might
>>> know best where the problem lies. (I wondered if perhaps now
>>> spamassassin requires a cronjob to download and update the
>>> rules)
>>>
>>> Any advice gratefully received
>>
>>

-- 
Sent from Kaiten Mail. Please excuse my brevity.

Re: unsubscribe




Am 26.11.2014 um 13:46 schrieb Nick Edwards:

On 11/26/14, Reindl Harald  wrote:


Am 26.11.2014 um 13:30 schrieb Nick Edwards:

my problem is pompus asswipe dictators like you who interfere where
not required, and go out of their way to abuse people and speak like
acid to them it is my aum in life to rid the internet of scum like you


there was nothing abusive in my response

* question akes ina wrong way
* question answered
* sub thread finished

*then you* decided as so often to start your abusive bullshit

the only guy who acts abusive all the time you face in your mirror and
so better hire a psychologists because you need seriously help


centos list BANNED


so what


fedora list MODERATED


not true for many months


oh because you "allegedly" unsubscribed


bullshit - fedora devel active all the time
https://lists.fedoraproject.org/pipermail/devel/2014-November/thread.html


roundcube list MODERATED


because repsonses like yours in that thread


dovecot list FINAL WARNING


from you? *laugh*

archives show the msg from Timo


the archive shows clearly that the same abusive way you act here was the 
reason for the flamewar



apache list FINAL WARNING


from you? *laugh*


archives show the msg from Guenther


where?


postfix list BANNED


active all the time


no, you were banned, but you resubscribed under another account


and the reason of the ban was a response to a ad hominem attack like you 
do all the time



says all anyone needs to know about your modus operandi


and who do you think you are to judge?
get your head closed boy!


my head LOL, oh look who's talking you paranoid fool, you accused me
and someone else of being the same person, NEWSFLASH  that same
someone else at this very time is rather near you, in Rodenbach
staying with friends, maybe he will pay you a visit LOL


why can't you just stop your personal attacks and name callings which 
you accuse me all the time but the only guy doing so is you?


creep away and just don't read posts from people you don't like or do 
you need a manual for your mail-client?



On 11/26/14, Reindl Harald  wrote:


Am 26.11.2014 um 13:19 schrieb Nick Edwards:

how about you get fucked, dictator asswipe your a nobody here so just
fuck off to your own hole you troll every list you join you act like
god but your nothing but an offensive troll nobody


what is your problem?
i got even a off-list thank you mail in german from the user

so just shut up if nobody asked you!


On 11/25/14, Reindl Harald  wrote:

* don't hijack threads
* don't send "unsubscribe" to the whole list
* just unsubscribe yourself

list-unsubscribe: 

the same applies to any other mailing list
https://www.google.at/#q=how+to+unsubscribe+from+a+mailing+list

Am 25.11.2014 um 14:31 schrieb Ralf Longwitz:

Am 25.11.2014 10:41 schrieb "Paul Gardiner":

   Hi,
   I drive spamassassin using spampd.

   I've just swapped from using opensuse 13.1 to 13.2. That's
taken
   me from spamassassin 3.3.2 to 3.4.0. I have two confusing
changes.

   1) The really problematic one is that I no longer see
X-Spam-Level
   and X-Spam-Status headers in the processed mail. I do still
have
   X-Spam-Checker-Version. I was using status to trigger
rejection,
   so now effectively I have no filtering.

   2) The confusing one: I used to have many .cf files in
   /usr/share/spamassassin/. I now have none.

   As you can probably tell, I don't really know much about
   spamassassin. I've to some degree been using it out of
   the box and having it just work. I realise the change could be
   down to opensuse packaging, but I thought someone here might
   know best where the problem lies. (I wondered if perhaps now
   spamassassin requires a cronjob to download and update the
   rules)

   Any advice gratefully received




signature.asc
Description: OpenPGP digital signature

Re: unsubscribe

On 11/26/14, Reindl Harald  wrote:
>
> Am 26.11.2014 um 13:30 schrieb Nick Edwards:
>> my problem is pompus asswipe dictators like you who interfere where
>> not required, and go out of their way to abuse people and speak like
>> acid to them it is my aum in life to rid the internet of scum like you
>
> there was nothing abusive in my response
>
> * question akes ina wrong way
> * question answered
> * sub thread finished
>
> *then you* decided as so oftento start your abusive bullshit
>
> the only guy who acts abusive all the time you face in your mirror and
> so better hire a psychologists because you need seriously help
>
>> centos list BANNED
>
> so what
>
>> fedora list MODERATED
>
> not true for many months
>

oh because you "allegedly" unsubscribed

>> roundcube list MODERATED
>
> because repsonses like yours in that thread
>
>> dovecot list FINAL WARNING
>
> from you? *laugh*
archives show the msg from Timo

>
>> apache list FINAL WARNING
>
> from you? *laugh*

archives show the msg from Guenther

>
>> postfix list BANNED
>
> active all the time
>

no, you were banned, but you resubscribed under another account

>> says all anyone needs to know about your modus operandi
>
> and who do you think you are to judge?
> get your head closed boy!

my head LOL, oh look who's talking you paranoid fool, you accused me
and someone else of being the same person, NEWSFLASH  that same
someone else at this very time is rather near you, in Rodenbach
staying with friends, maybe he will pay you a visit LOL


>
>> On 11/26/14, Reindl Harald  wrote:
>>>
>>> Am 26.11.2014 um 13:19 schrieb Nick Edwards:
 how about you get fucked, dictator asswipe your a nobody here so just
 fuck off to your own hole you troll every list you join you act like
 god but your nothing but an offensive troll nobody
>>>
>>> what is your problem?
>>> i got even a off-list thank you mail in german from the user
>>>
>>> so just shut up if nobody asked you!
>>>
 On 11/25/14, Reindl Harald  wrote:
> * don't hijack threads
> * don't send "unsubscribe" to the whole list
> * just unsubscribe yourself
>
> list-unsubscribe: 
>
> the same applies to any other mailing list
> https://www.google.at/#q=how+to+unsubscribe+from+a+mailing+list
>
> Am 25.11.2014 um 14:31 schrieb Ralf Longwitz:
>> Am 25.11.2014 10:41 schrieb "Paul Gardiner":
>>
>>   Hi,
>>   I drive spamassassin using spampd.
>>
>>   I've just swapped from using opensuse 13.1 to 13.2. That's
>> taken
>>   me from spamassassin 3.3.2 to 3.4.0. I have two confusing
>> changes.
>>
>>   1) The really problematic one is that I no longer see
>> X-Spam-Level
>>   and X-Spam-Status headers in the processed mail. I do still
>> have
>>   X-Spam-Checker-Version. I was using status to trigger
>> rejection,
>>   so now effectively I have no filtering.
>>
>>   2) The confusing one: I used to have many .cf files in
>>   /usr/share/spamassassin/. I now have none.
>>
>>   As you can probably tell, I don't really know much about
>>   spamassassin. I've to some degree been using it out of
>>   the box and having it just work. I realise the change could be
>>   down to opensuse packaging, but I thought someone here might
>>   know best where the problem lies. (I wondered if perhaps now
>>   spamassassin requires a cronjob to download and update the
>>   rules)
>>
>>   Any advice gratefully received
>
>

Re: Facebook subdomain spamming started today

its quite painstaking but I reluctantly agree with Reindl, if you are
going to post crap like this, post details

On 11/23/14, Benny Pedersen  wrote:
> No more info in public from me

Re: unsubscribe



Am 26.11.2014 um 13:30 schrieb Nick Edwards:

my problem is pompus asswipe dictators like you who interfere where
not required, and go out of their way to abuse people and speak like
acid to them it is my aum in life to rid the internet of scum like you


there was nothing abusive in my response

* question akes ina wrong way
* question answered
* sub thread finished

*then you* decided as so oftento start your abusive bullshit

the only guy who acts abusive all the time you face in your mirror and 
so better hire a psychologists because you need seriously help



centos list BANNED


so what


fedora list MODERATED


not true for many months


roundcube list MODERATED


because repsonses like yours in that thread


dovecot list FINAL WARNING


from you? *laugh*


apache list FINAL WARNING


from you? *laugh*


postfix list BANNED


active all the time


says all anyone needs to know about your modus operandi


and who do you think you are to judge?
get your head closed boy!


On 11/26/14, Reindl Harald  wrote:


Am 26.11.2014 um 13:19 schrieb Nick Edwards:

how about you get fucked, dictator asswipe your a nobody here so just
fuck off to your own hole you troll every list you join you act like
god but your nothing but an offensive troll nobody


what is your problem?
i got even a off-list thank you mail in german from the user

so just shut up if nobody asked you!


On 11/25/14, Reindl Harald  wrote:

* don't hijack threads
* don't send "unsubscribe" to the whole list
* just unsubscribe yourself

list-unsubscribe: 

the same applies to any other mailing list
https://www.google.at/#q=how+to+unsubscribe+from+a+mailing+list

Am 25.11.2014 um 14:31 schrieb Ralf Longwitz:

Am 25.11.2014 10:41 schrieb "Paul Gardiner":

  Hi,
  I drive spamassassin using spampd.

  I've just swapped from using opensuse 13.1 to 13.2. That's taken
  me from spamassassin 3.3.2 to 3.4.0. I have two confusing changes.

  1) The really problematic one is that I no longer see X-Spam-Level
  and X-Spam-Status headers in the processed mail. I do still have
  X-Spam-Checker-Version. I was using status to trigger rejection,
  so now effectively I have no filtering.

  2) The confusing one: I used to have many .cf files in
  /usr/share/spamassassin/. I now have none.

  As you can probably tell, I don't really know much about
  spamassassin. I've to some degree been using it out of
  the box and having it just work. I realise the change could be
  down to opensuse packaging, but I thought someone here might
  know best where the problem lies. (I wondered if perhaps now
  spamassassin requires a cronjob to download and update the
  rules)

  Any advice gratefully received




signature.asc
Description: OpenPGP digital signature

Re: unsubscribe

my problem is pompus asswipe dictators like you who interfere where
not required, and go out of their way to abuse people and speak like
acid to them it is my aum in life to rid the internet of scum like you

centos list BANNED
fedora list MODERATED
roundcube list MODERATED
dovecot list FINAL WARNING
apache list FINAL WARNING
postfix list BANNED

says all anyone needs to know about your modus operandi

On 11/26/14, Reindl Harald  wrote:
>
> Am 26.11.2014 um 13:19 schrieb Nick Edwards:
>> how about you get fucked, dictator asswipe your a nobody here so just
>> fuck off to your own hole you troll every list you join you act like
>> god but your nothing but an offensive troll nobody
>
> what is your problem?
> i got even a off-list thank you mail in german from the user
>
> so just shut up if nobody asked you!
>
>> On 11/25/14, Reindl Harald  wrote:
>>> * don't hijack threads
>>> * don't send "unsubscribe" to the whole list
>>> * just unsubscribe yourself
>>>
>>> list-unsubscribe: 
>>>
>>> the same applies to any other mailing list
>>> https://www.google.at/#q=how+to+unsubscribe+from+a+mailing+list
>>>
>>> Am 25.11.2014 um 14:31 schrieb Ralf Longwitz:
 Am 25.11.2014 10:41 schrieb "Paul Gardiner":

  Hi,
  I drive spamassassin using spampd.

  I've just swapped from using opensuse 13.1 to 13.2. That's taken
  me from spamassassin 3.3.2 to 3.4.0. I have two confusing changes.

  1) The really problematic one is that I no longer see X-Spam-Level
  and X-Spam-Status headers in the processed mail. I do still have
  X-Spam-Checker-Version. I was using status to trigger rejection,
  so now effectively I have no filtering.

  2) The confusing one: I used to have many .cf files in
  /usr/share/spamassassin/. I now have none.

  As you can probably tell, I don't really know much about
  spamassassin. I've to some degree been using it out of
  the box and having it just work. I realise the change could be
  down to opensuse packaging, but I thought someone here might
  know best where the problem lies. (I wondered if perhaps now
  spamassassin requires a cronjob to download and update the
  rules)

  Any advice gratefully received
>
>

Re: unsubscribe



Am 26.11.2014 um 13:19 schrieb Nick Edwards:

how about you get fucked, dictator asswipe your a nobody here so just
fuck off to your own hole you troll every list you join you act like
god but your nothing but an offensive troll nobody


what is your problem?
i got even a off-list thank you mail in german from the user

so just shut up if nobody asked you!


On 11/25/14, Reindl Harald  wrote:

* don't hijack threads
* don't send "unsubscribe" to the whole list
* just unsubscribe yourself

list-unsubscribe: 

the same applies to any other mailing list
https://www.google.at/#q=how+to+unsubscribe+from+a+mailing+list

Am 25.11.2014 um 14:31 schrieb Ralf Longwitz:

Am 25.11.2014 10:41 schrieb "Paul Gardiner":

 Hi,
 I drive spamassassin using spampd.

 I've just swapped from using opensuse 13.1 to 13.2. That's taken
 me from spamassassin 3.3.2 to 3.4.0. I have two confusing changes.

 1) The really problematic one is that I no longer see X-Spam-Level
 and X-Spam-Status headers in the processed mail. I do still have
 X-Spam-Checker-Version. I was using status to trigger rejection,
 so now effectively I have no filtering.

 2) The confusing one: I used to have many .cf files in
 /usr/share/spamassassin/. I now have none.

 As you can probably tell, I don't really know much about
 spamassassin. I've to some degree been using it out of
 the box and having it just work. I realise the change could be
 down to opensuse packaging, but I thought someone here might
 know best where the problem lies. (I wondered if perhaps now
 spamassassin requires a cronjob to download and update the
 rules)

 Any advice gratefully received




signature.asc
Description: OpenPGP digital signature

Re: unsubscribe

how about you get fucked, dictator asswipe your  a nobody here so just
fuck off to your own hole you troll every list you join you act like
god but your nothing but an offensive troll nobody

On 11/25/14, Reindl Harald  wrote:
> * don't hijack threads
> * don't send "unsubscribe" to the whole list
> * just unsubscribe yourself
>
> list-unsubscribe: 
>
> the same applies to any other mailing list
> https://www.google.at/#q=how+to+unsubscribe+from+a+mailing+list
>
> Am 25.11.2014 um 14:31 schrieb Ralf Longwitz:
>> Am 25.11.2014 10:41 schrieb "Paul Gardiner":
>>
>> Hi,
>> I drive spamassassin using spampd.
>>
>> I've just swapped from using opensuse 13.1 to 13.2. That's taken
>> me from spamassassin 3.3.2 to 3.4.0. I have two confusing changes.
>>
>> 1) The really problematic one is that I no longer see X-Spam-Level
>> and X-Spam-Status headers in the processed mail. I do still have
>> X-Spam-Checker-Version. I was using status to trigger rejection,
>> so now effectively I have no filtering.
>>
>> 2) The confusing one: I used to have many .cf files in
>> /usr/share/spamassassin/. I now have none.
>>
>> As you can probably tell, I don't really know much about
>> spamassassin. I've to some degree been using it out of
>> the box and having it just work. I realise the change could be
>> down to opensuse packaging, but I thought someone here might
>> know best where the problem lies. (I wondered if perhaps now
>> spamassassin requires a cronjob to download and update the
>> rules)
>>
>> Any advice gratefully received
>
>

Re: Confused by new version of spamassassin

On 11/26/14, Paul Gardiner  wrote:
> On 25/11/2014 09:57, Reindl Harald wrote:
>>
>>
>> Am 25.11.2014 um 10:40 schrieb Paul Gardiner:
>>> I drive spamassassin using spampd.
>>>
>>> I've just swapped from using opensuse 13.1 to 13.2. That's taken
>>> me from spamassassin 3.3.2 to 3.4.0. I have two confusing changes.
>>>
>>> 1) The really problematic one is that I no longer see X-Spam-Level
>>> and X-Spam-Status headers in the processed mail. I do still have
>>> X-Spam-Checker-Version. I was using status to trigger rejection,
>>> so now effectively I have no filtering.
>>>
>>> 2) The confusing one: I used to have many .cf files in
>>> /usr/share/spamassassin/. I now have none
>>
>> you need to call "sa-update" after a version change since the rules are
>> always below a versioned folder
>
> Gah! That was it. Silly me. I didn't restart spampd after the update.
> At least, I assume that's it because I just restarted spampd and it
> has all magically started working again.
>
> Thanks again everyone for all your help.
>
> Cheers,
>   Paul.
>
> I'm still a little unsure as to why sa-update hadn't been called
> before. I seem to have a daily cron job that is supposed to call it,
> but still I do at least have filtering now.
>

such  a mes, i suggest you  use amavisd instead

sa-update lint fail on __PDS_FROM_2_EMAILS

2014-11-26 Thread Burnie


Seems one of the new rules fails to lint.

Perhaps there's a mismatch with the regexp and perl 5.8?

spamassassin 3.3.1
perl 5.8.8

# /usr/bin/sa-update
config: invalid regexp for rule __PDS_FROM_2_EMAILS: 
/^\W+([\w+.-]+\@[\w.-]+\.\w\w++)(?:[^\n\w<]{0,80})?<(?!\1)[^\n\s]*\@/i: 
Nested quantifiers in regex; marked by <-- HERE in 
m/(?i)^\W+([\w+.-]+\@[\w.-]+\.\w\w++ <-- HERE 
)(?:[^\n\w<]{0,80})?<(?!\1)[^\n\s]*\@/


channel: lint check of update failed, channel failed



--
Bernt  'Burnie'  Pettersen  ///  DoD#2345
 ///  http://burnie.sh/>
   - Creative brains need creative workhours! -

Re: Honeypot email addresses