Re: AWL on per-user basis
Good day! You were completely right: after I added '-u debian-spamd' (this user was automatically created at the time of package installation) to the spamd start string in the /etc/default/spamassassin AWL started working right as expected. The database is now filled almost as expected: *** 9. row *** username: m...@mmm.mmm email: f...@fff.fff ip: none count: 1 totscore: 0.179 signedby: Thank you for your advice! What bothers me now are the values of the 'ip' and 'signedby' fields: I don't seem to understand what they are needed for and whether the data that they contain is of any importance? If there is a link to read, I will be glad to follow it. I have a suspicion that IP address will be set as soon as I will start sending and receiving mail to/from remote hosts that are not on my 'allowed-ips' list. Can you confirm? Unfortunately, I can't test receiving right now -- I'm on a development environment. But what about the 'signedby' field? Boris On 16 January 2016 at 17:36, RW wrote: > On Sat, 16 Jan 2016 15:07:36 +0300 > ? wrote: > > > > No, spamd is running as user "root", so I don't have the "-u" key > > anywhere in the smapd configs. I'm sorry for not making this clear > > enough. > > > > What I meant to say is that when I send or receive a message through > > my Exim (on the remote host) it passes the message to the spamd by > > calling a locally installed (i.e. installed on the same host where > > Exim is) spamc binary with the following command: "spamc > > -F /etc/spamc/spamc.conf -u $local_part@$domain". Unfortunately, I am > > still unable to get this setup working properly with AWL, as username > > in the AWL table is set to "nobody". > > > Running spamd without -u is intended to support unix account users. In > this case the spamd child process drops its privileges from root to the > user running spamc or the user specified by spamc -u. This allows spamd > to access home directories without running as root. Probably what's > happening is that as $local_part@$domain isn't a unix user, spamd is > overriding it with the unix user "nobody" to avoid scanning an email as > root. > > You should be running spamd with "-u spamd" which causes spamd to drop > its privileges to the unprivileged user spamd after it has bound to > the default port (it's usually called spamd, but your spamassassin > package may have created some other user for this purpose). When you do > this, the user in spamc -u can be treated as a virtual user. > > > >
Re: sch.uk - potential util_rb_3tld list
> On 18 Jan 2016, at 11:53, Axb wrote: > > On 01/18/2016 12:36 PM, Paul Stead wrote: >> Come across the following which lists all *.sch.uk local authorities - >> thought it might be useful to someone >> >> http://www.nominet.uk/wp-content/uploads/2015/10/Schools_Domain_Name_Rules.pdf >> > > Paul, > Pls open a bug so we have a record.. > thx Actually, I don’t see how to use the list: it’s subject to change, and unfortunately doesn’t include contacts. More useful to know is that next level subdomains of .sch.uk can only be registered by local education authorities, which are branches of local government in the UK. And each subdomain of a subdomain of .sch.uk can only be registered by a school. So, it’s unlikely that subdomains of .sch.uk will be registered maliciously. Similarly, .ac.uk is reserved for higher education institutions in the UK. So they’re unlikely to be registered maliciously. So, an SPF pass, or valid DKIM signature in such a domain is likely to be coming from a legitimate source. However, account compromise is not uncommon: partly because the domains are quite attractive to spammers. So, don’t adjust your spam score, but do adjust your strategy when discovering spam. Reports of spam from .ac.uk or .sch.uk accounts are likely to be taken seriously, and contacts should be relatively easy to discover. -- Ian Eiloart Postmaster, University of Sussex +44 (0) 1273 87-3148
Re: sch.uk - potential util_rb_3tld list
On 01/18/2016 12:36 PM, Paul Stead wrote: Come across the following which lists all *.sch.uk local authorities - thought it might be useful to someone http://www.nominet.uk/wp-content/uploads/2015/10/Schools_Domain_Name_Rules.pdf Paul, Pls open a bug so we have a record.. thx
sch.uk - potential util_rb_3tld list
Come across the following which lists all *.sch.uk local authorities - thought it might be useful to someone http://www.nominet.uk/wp-content/uploads/2015/10/Schools_Domain_Name_Rules.pdf Paul -- Paul Stead Systems Engineer Zen Internet