Re: Semi Off-topic: VFEMail destroyed
On Fri, 22 Feb 2019 22:07:03 +0100 Antony Stone wrote: > How do you know you don't trust them until you find out you can't? Use a vulcan mind meld. :) More seriously, you can try trusting them with less important and unmonitored tasks. If they are trustworthy with those then chances are that trust can be raised to the next level. Evil and good people tend to behave consistently. A lot of the trouble with trust is that you have to have a rock solid understanding of the persons modus operandi, and yours too. Sincerely, David
Re: Semi Off-topic: VFEMail destroyed
-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 On Sat, 16 Feb 2019 10:50:58 -0700 Grant Taylor wrote: > On 2/16/19 8:50 AM, David Niklas wrote: > > My context was not that email servers were so unique to the internet > > > that there is only one in the world, rather that they were > > > sufficiently > > few that a failure of one, such as VFEmail, is a major problem for a > > > lot of people. > > That is a decidedly different problem than what usually considered SPOF. > > > My email is affected, just not all gone. I still can't send or > > receive > emails from my accounts. > > I'm sorry that you (and others) were effected. > > > Your email is unaffected. But your email and a lot of others is on > > gmai > l > and if they suffered the same attack then that would show that > gmail is > > a SPOF, just like VFEmail. > > My email is decidedly not on Gmail. Seeing as how I run my own email > infrastructure, I'm not effected by anybody's actions by my own (or > someone that hacks me and pretends to be me). VFEmail, Gmail, Yahoo, > etc can all have failures and my email, along with the hundreds of > thousands of other email servers, will not be effected. > > I also know for a fact that it would be EXTREMELY DIFFICULT, if not > actually impossible, for the same type of attack to happen to Gmail. > Between the infrastructure, number and type of backups, and monitoring, > such an attack would be EXTREMELY DIFFICULT to conduct against to Gmail. > > > I don't understand why this is confusing. I've listened to many talks > > > on distributed systems, such as freenet, and they always mention > > > that > they want no SPOF and then go on to list servers, just like > > > gmail and > VFEmail as a SPOF. > > The /desire/ to avoid a SPOF is independent of what actually exists. > > It's somewhat easy to shard different parts of an email service across > multiple separate / discrete pieces of infrastructure, such that the > blast radius of a catastrophic failure in one part has little to no > effect on another part. But that's complex to do and requires people > that are very good at what they do. Even then, it's possible, all be > it difficult, to turn a portion of the infrastructure into a crater. > It's just a matter of how much that portion impacts. > > Thus why I asked you earlier, "how were distributed email systems > designed with no single point of failure?" How do you design an email > system that doesn't have any single points that impact everything. > Even if your infrastructure is highly redundant, and highly > distributed, you still end up with a dependency on the domain name that > is common across it. > > Sure, DNS infrastructure can be made highly redundant. But that's > functionally serving the same (single for the sake of this discussion) > name. Then there is the registrar and DNS infrastructure above that, > which are largely SPOF against a sufficiently motivated attacker. > > Sure, you could arrange Business-to-Business partner relationship with > big email players such that they know how to route to you without using > DNS. But that's … fragile … and requires a LOT of work. Plus, it > doesn't scale to Internet size. > > There are a LOT of things that can be done to minimize and / or contain > the blast. But there is still a blast radius and thing in it will be > effected. > > So … Pray tell, how were distributed email systems (historically) > designed with no single point of failure (like I have outlined herein)? Under those conditions even so much as cutting the (plastic) internet cable would be all that is needed to preform a SPOF against what I proposed. It is, therefore, unrealistic for me to define a distributed email system as not having a SPOF with respect to your definition herein. My understanding would be more of a "contain the blast" method. And I still am of the opinion that it would do a better job than is currently being employed, at a fraction of the cost (esp. cost to user privacy). Please note, however, that individuals normally have IPs, not DNS names, so that cuts off a main route of attack. Sincerely, David -BEGIN PGP SIGNATURE- iQIzBAEBCAAdFiEEL2N7+xWmVOJDQxWGm3XCrhg2YP8FAlxow0YACgkQm3XCrhg2 YP+HQg/+LcVody5yryzDIjFJqgmL7Jm9hRv3OMdfwiwADYHF75bQwCurHzl8i3JP qWB8EsisXOTyHC1WMltu2RfK4kXstUtwWYhWjUjzDMvEqGI05FCcDjz0FlebIeIx loQFiP17HOLCN+iWMsUu16xqnVSxk+lpEnpt9HEJNpFBOJ6lWRL4gO8xgAyOP/Fi yrItHRBuSnXS4YPm4Q0wGTYCKRAa5TqPzWoIzQm/eTvTKGxUMH2fKlXqbKbKOjT+ hO+glrHMipXC+DAA0HER5Juj0rGMeUMq29yXg3PlWnjgikj3lgYXtbUkVaSYH6so +wT38DzzpxLG50m6w3CBD+laIsljq3IgY3RPi5M/3+InR4DRAMmwwHFMvx767pnI 8c3SeUtbimSYQBRPcSwQKhV8H4zURONPiUtVZr9jteOe5cQVeBU6ONVHzq2PNobz Y9dcUbnIhgJOmUnMHPx91obumN8RZxbkLFfvNTHzgRn5rI6Gib/DpcEvh1Odsfh1 algt3DFWu5IeOvtpG/hLP5WevS0R8/brlu8Q5VIkobtPnVSoStqO1hYoN2nWXMHP XgiozNGZCnw+9pVocLuYO+LiGmt1dVvNvKKgBdjmZrjtFfqOBnahx33+jYrI5vQP PF6ATzt9N7IrjZoc7AcTZCHIeAV/rNfHCGsTFBFxourbc5RUHrU= =iYyS -END PGP SIGNATURE-
Re: Semi Off-topic: VFEMail destroyed
-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 On Sat, 16 Feb 2019 02:31:01 -0700 Grant Taylor wrote: > On 2/15/19 7:57 PM, David Niklas wrote: > > If I host my own mail it does not effect your mail if my computer and > > backups are destroyed. > > If I host my mail and yours and my computer and backups are destroyed > > we are both affected. > > Thus there is no single point of failure. > > I'm fairly certain that Gmail, your email, and my email were not > effected by VFEmail's fiasco. So where's the SPOF that you're alluding > to? My context was not that email servers were so unique to the internet that there is only one in the world, rather that they were sufficiently few that a failure of one, such as VFEmail, is a major problem for a lot of people. My email is affected, just not all gone. I still can't send or receive emails from my accounts. Your email is unaffected. But your email and a lot of others is on gmail and if they suffered the same attack then that would show that gmail is a SPOF, just like VFEmail. I don't understand why this is confusing. I've listened to many talks on distributed systems, such as freenet, and they always mention that they want no SPOF and then go on to list servers, just like gmail and VFEmail as a SPOF. Sincerely, David -BEGIN PGP SIGNATURE- iQIzBAEBCAAdFiEEL2N7+xWmVOJDQxWGm3XCrhg2YP8FAlxoMTwACgkQm3XCrhg2 YP8gqA//VOBbFU4+pSvul/uZIujUnaBzOXY1RQa7ncZupIdGo279Qhq6UqZuMenp fz77UNmcm/yU6AFSPSfPqIB+WeSmaHlPGMlzozRoInQAkLxprSmyyYN3M7yqo1qQ UFnOK+CGJ3Fj+/xP8QmQJBItzYfkczBYYenfU+sHk0yKQsSSGfKoQaf3dn9h7XqN snuQNsh/wvggcPliKI51Ll2SfNmEFuLHPXkgo0a+D5Z3KzIYiO2KjMVGEnK1NlvZ solKEz5FBVjtLuo6+HRVJmBt4tyNP1cHtq9iXkiJ9Oi4f4NaVoMsOIEGPHX9O4Fj /J8xMg4jmOPhS+aByt4an1DIBBpGEfo5Umr3sheBdGzv6aDtDgu6U+MtPMgXuMs3 qVf7/AidbF2wLIeVZjtY4ANaiGPgHgCvx23FbWp6Mp9jLt1ctTwXScHrNrUhhxnu K23gVp6bgtrqk9TZD0IRCraH26132fyuLq3rQRFTr64F4A9Ag9e57d1rDXm8Hg+V 7LWEpFC8viN1lN8BcmqKchE5zstBA49pZ3hxWCWXdwsqq+xozem6B2e9BxDICeWI Xo3LdcFNWK4nTzOG2PpdhaQHSHTuZwWuX4mwaZGJ6sxriQIC/7AoFxR3ztO56WX4 Coy3Q/Rx+LSapie2dpDAfIrfiUgIbdOipxmhebxnwYLRxT43kBE= =6DPV -END PGP SIGNATURE-
Re: Semi Off-topic: VFEMail destroyed
-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 On Fri, 15 Feb 2019 19:54:00 -0700 Grant Taylor wrote: > On 2/15/19 7:11 PM, David Niklas wrote: > > Let my put forward a wild idea. What if email was a distributed > > system > with no 1 point of failure like it was originally designed > > and then > these super shock stories of mass email slaughter would > > cease to exist? > > Pray tell, how were distributed email systems designed with no single > point of failure? > If I host my own mail it does not effect your mail if my computer and backups are destroyed. If I host my mail and yours and my computer and backups are destroyed we are both affected. Thus there is no single point of failure. David -BEGIN PGP SIGNATURE- iQIzBAEBCAAdFiEEL2N7+xWmVOJDQxWGm3XCrhg2YP8FAlxnfDYACgkQm3XCrhg2 YP+0Ig//ela+4L6y2yv8NIaR6At5+N2oTUDVrvTfgwh72lPvX0p88+FTKNEFQ2iF zCSKP5jrwyC8QO44BJEoF+D+SGP4UNiv0E/BXmGFsd7shmfmTD2x8+ApPZPIWKXR s1D4uTe16c0RC+cywhkLcoXDb9/7p6PBLI1UHQxzmBir33Atapq0zIaTy7Jozcuf EF5CNCC+1rpnj/LKLUusWVJVZPYdzipFQkyPVj9AHPeOUWnLVtbVIQh8n2XB6ANX /a9x5mkyCJSAOah6A65xkIx4Uk6F55mykPoLLSyd1kWU6yT1PuVWFSSAF7dOK1gX 3pZXiR9whF8X+tyDQJbVkl59wLmKfvfYLMSQVkgR4KmYJ2jsZKeGPJpZZ/LcFbRv B+OJ5svTQLdy1VsYA783MTcl1tGnHaJx4u8tsegYLo48QsAWUAIxylrExw3FiZZ5 kVMbsHyuQSTofbM9WkyWLRnSUrxdQL7s5mqty2veHKXo2EcQx8mcWeIY/YO2GBUU wC9TfIGDBKK8fFpA3DBmA1jbFgvdl1kab+Du4S67LYqvjUcLvDyQ3fLTh4iCA6of N2ILerNlMHXFajDTf4CeecOD1LEKZOEajEmMhHf2fanKmkbS0mbPe7xy+TtzR0jL Hw0gxxMEJB4XA0TaHC1l7jQ8fqlLm1p19O8+FXgAxpJPMVN53b8= =MuNU -END PGP SIGNATURE-
Re: Semi Off-topic: VFEMail destroyed
-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 On Fri, 15 Feb 2019 06:07:23 -0700 "@lbutlr" wrote: > On 14 Feb 2019, at 19:31, Grant Taylor > wrote: > > > > If VFE had backups stored off-site via something like Amazon Glacier > > with no normal in-band connectivity between the main systems and the > > backups, and the hacker went out of their way to delete the backups, > > I don't think I could hold /that/ against VFE. > > I believe that when you hold customer data you have an obligation to > have backups that cannot be deterred by accessing your systems. There > are many possible ways to do this, from a rsync process on another > machine that your network has no write access to that is able to login > and do a backup, all the way up to services like backblaze or Arq that > will (or can) keep differential backups for you. You mean like this? rsync -cav --delete /current-empty-part s...@backup.com/very-safe-backup :) These things need more thought. And no, a purposeful attack could overcome even Kevin. His servers could fall to the attack that took vfemail. The guy said that passwords and exploits of some sort were used. A root password to where the VMs are hosted and backed up would be critical. Unless you're doing something clever, Kevin. Sincerely, David -BEGIN PGP SIGNATURE- iQIzBAEBCAAdFiEEL2N7+xWmVOJDQxWGm3XCrhg2YP8FAlxncU4ACgkQm3XCrhg2 YP8xoBAAq21cs8x+nr9lHtQ2e03Pzvd/3abNGFii04ouJhFF6NfMz1cgeyB9056b bAuJ9YUHmY3lsDl51ZsMh0JVuVRq+VjPBHawxvzt9WuiXsGPPuyJr+7uyLYIZpa+ AjIWpA+ng2B9574DggBpPPlFZMkxEwysjaBFAScc/Es2TCDXjw8Z44E9fAlGV7vj 2IVC21dzhrbdbcKx/ZlNBV6Xs4t6s/ihlgS1odo/X6OuQsAvqJidLU81O36iYHDf Rg8VI9HtSzZHrkXLM2K9R5MXCJQCFlYHaKNd/h5vdrOWqWFh/V9oxf/iZY25oy7l wYsLNbF4TSfsmQ13Nk10FkVkVz2b9mVFAMqvmcR1Be/sreiy70B3DguDT64JUe/n 2uKxXkw5fetesjlwP7cRveRh1hFWhrYGXPlbemwUvQ4XmvUtJacbht2/XoPt4TKz OYOkIoT1D9aaKA5lhEU6eaDjaCI54RdXo7rQiwzU0bqNiPhkcIhGUJtQEip2noFQ W5awVVRERykeFHxcbLBHtJKt02Fk/3ONqsTb+7xbr5wlIRRAdSgiL0Y/efZz3BGe 5YrJ9F89BZci1TjZed1d4jl2Zs2g4kIzvO8OxsAmmPnkTZ14zerh2psrm1Vt2SzO rn7rY9lseKbP5iiFqT6GQxKVzSRbgOrB0sTi93iBVmFAeKKLY8I= =14si -END PGP SIGNATURE-
Re: Semi Off-topic: VFEMail destroyed
-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 On Thu, 14 Feb 2019 18:02:31 -0700 "@lbutlr" wrote: > On 14 Feb 2019, at 09:37, Kevin A. McGrail wrote: > > I blame the hackers so I haven't posted about this when all the > > articles came out because you don't blame the victim. > > Sure, I blame the hackers too, but there must be a lot of > responsibility placed on a company that failed so miserably to protect > their clients data through backups that were not accessible to be > destroyed. > > VFE isn’t to blame for the hack, but they are to Balme for losing all > the data,. > Not all... I have 2 accounts with them and my data is safe because I used pop. I trust no company with my data. I don't trust my HDD with my data. I've even learned not to trust my RAM with my data. :( I use rm so I don't even trust myself with my data. Let my put forward a wild idea. What if email was a distributed system with no 1 point of failure like it was originally designed and then these super shock stories of mass email slaughter would cease to exist? Sincerely, David -BEGIN PGP SIGNATURE- iQIzBAEBCAAdFiEEL2N7+xWmVOJDQxWGm3XCrhg2YP8FAlxncUsACgkQm3XCrhg2 YP+ybRAAun7Rw5n+JB7RuX9um/li1vfqG9IU2wgCFVa2Q8G3897h4emBS1rJEvIf 3hvUpYjVAMgew7uI7T/3HpLUKC+ztCAkekPTs/JkN/eUwGEA+j9P0W/1ooCbqXhT VzJRJg7Iyie5ZKRjoW2Jbidvwgc1c7GJouaSL4puO2tbAEzNsuv7nRQy0RYtV1Ky oXqYekXqOA2D5FKGftx/IRiyKAXfoD4pk/+HYBXGziOfosPBevzU1SGutrH5AHbe W9iTw2oa9oZOWjSgDQr9V8ew9gZFj+8UuWfkG3G2dAGyqrFEjcFyhPn1szcgwvxE BrmmJBb7TxjCnenUH1cxCAXLyKoosnVe9zij1wk87hHoDqSLoLiSSIlNEjyWWxg5 1LReVvsjV1f7/UdAo9ZkTmGUt3IkxT2a7xjuWKV1oOXM9HyXNMaIgJAm7ejVPToc IpQt9kHmMKY7zQahLWBFCNAUiJ6mfG03WcCYB/QgbpAhYeGzo9dmf8E2mb4g77ce fiCJxFdfTCd5L9VVj2YBeejpTfbRFtBVgm3VFA/Z5IEvLotzQxA4TJxC0wOFXqlw IPDSs8TJK5KC2T8IQaxwRDDi+H5gFA/0VvYFU+Pnv/1F3yy2tguOk1qbs84o3II0 tufsrf9Asmto4q2shvHgjXoGf09ybZReZ/DjHsQtH07FzQfl2Dg= =vPlO -END PGP SIGNATURE-
Re: (OT) Best spam video
On Fri, 22 Jun 2018 22:34:48 -0400 "Kevin A. McGrail" wrote: > https://youtu.be/_QdPW8JrYzQ > > Worth a watch. 1 min in: ROFL! Thanks for the video! If the end is as good as the front I'll be LOL for weeks!
Re: Tapping the microphone
4922 bytes from do...@mail.com (tor anomalized): icmp_seq=1 ttl=55 time=24090 ms 1 emails transmitted, 1 received, 0% email loss, time 24190 ms All rites reversed :)
Re: Attachments with no Content-Type mime header
On Fri, 11 Aug 2017 18:28:56 + (UTC) Pedro David Marco wrote: > Hi everybody... > When an email has a MIME part with no Content-Type header, is there any > way to force SA "guess" the format based on other criteria... file > extension, for example? Example: Content-Disposition: attachment; > filename="details.pdf"Content-Transfer-Encoding: base64 > > Thanks! > PedroD You should not trust what the files extension says that the file is. Also file(1) does not yet do a good enough job to be reliable this way. As for guessing, I think that the best guess that could be applied would be a test of the file to see if, once decoded, it is a utf-8 encoded, ASCII, or iso8859-X encoded text file. Failing that I would assume it is either an MS doc/ppt/spreadsheet/etc, pdf file, or pure binary. Then you could try trusting the file extension. Otherwise, it is a text file and could contain an innocent html or an uncompressed ps file or a dangerous JS infection program. Either way I'd be really careful. What is your use case? What do you intend to do with a pdf file vs. an html one? Sincerely, David
Re: OT - Possibly some good news
On Tue, 4 Jul 2017 08:45:09 -0700 Marc Perkel wrote: > However ... > > I have no hard information and I don't actually know what happened but > something extraordinary occurred and it is so easy to want to declare > victory, but the easiest person to fool is myself and I would like to > see a doctor with a before and after image showing the cancer gone. I > don't have that and I'm not going to get it soon. So - stunned > disbelief is as good as it gets, for now. So, It's been about a month, was your attempt successful? > The implications are stunning. If this did work it could work for any > cancer for anyone. It's all low tech off the shelf stuff where the > secret sauce is timing and partial radiation of the tumor. Did I find > the cure for cancer? Might be a Nobel Prize in it for me and a movie > about my life. Or the big drug companies sue you for practising medicine without a license (aka we want a huge cut and the credit), and you windup on TV as one of the stars in "Americas Most Wanted". Still keep those positive thoughts going! Sincerely, David
How to undo ham-ing a message
Hello, I accidentally learned a single message as ham from the menu of my MUA claws-mail. I immediately re-learned it as spam, but I want to know if there is anything else I might want to do to reverse the ham-ing process. Thanks, David
Great spam filtering, until now
Hello, I have had a wonderful experience filtering spam with spamassassin. However, within the past few weeks (since feb 7th, I think), I have gotten a number of messages that have been normal but marked as spam. It may be those that I am speaking with and what they do to their mail, then again, maybe not. I'm attaching a message I got from firefly, a Chinese company. I have more samples, but I'm not too clear on how to tell which message goes with which record in my logs. Ultimately, I aught to be able to figure out on my own which rule(s), if any, are too harsh, but I've never done this before and could use a hand. I have not altered the message at all. Here is the log record which I've edited to remove identifying information: Feb 18 04:24:46 [spamd] spamd: connection from ulgy_thing [127.0.0.1]:38282 to port 783, fd 5_ Feb 18 04:24:46 [spamd] spamd: setuid to me succeeded_ Feb 18 04:24:46 [spamd] spamd: checking message <201702181220.d3d7dc515...@account.t-firefly.com> for me:1000_ Feb 18 04:24:53 [spamd] spamd: identified spam (6.9/5.0) for me:1000 in 6.7 seconds, 4240 bytes._ Feb 18 04:24:53 [spamd] spamd: result: Y 6 - AWL,BAYES_00,CHARSET_FARAWAY_HEADER,FROM_EXCESS_BASE64,HTML_MESSAGE,MIME_CHARSET_FARAWAY,MIME_HTML_ONLY,RCVD_IN_MSPIKE_H2,RDN S_NONE,URIBL_BLOCKED scantime=6.7,size=4240,user=me,uid=1000,required_score=5.0,rhost=ulgy_thing,raddr=127.0.0.1,rport=38282,mid=<201702181220.d3d7dc515474@ac count.t-firefly.com>,bayes=0.00,autolearn=no autolearn_force=no_ Thanks, David Return-Path: Received: from lucky1.263xmail.com ([211.157.147.135]) by mx.mail.com (mxgmxus006 [74.208.5.22]) with ESMTPS (Nemesis) id 0Lsgwh-1cGI6L0p8j-012IBS for ; Sat, 18 Feb 2017 05:24:24 +0100 Received: from mail?t-firefly.com (unknown [192.168.167.239]) by lucky1.263xmail.com (Postfix) with ESMTP id 925056C9 for ; Sat, 18 Feb 2017 12:24:19 +0800 (CST) X-263anti-spam:KSV:0;BIG:0;Original-ABS:0; X-MAIL-GRAY:1 X-MAIL-DELIVERY:0 X-KSVirus-check:0 X-ADDR-CHECKED:0 X-ABS-CHECKED:0 X-ANTISPAM-LEVEL:2 Received: from uchome (localhost [127.0.0.1]) by smtp.263.net (Postfix) with ESMTP id 879E33A0 for ; Sat, 18 Feb 2017 12:24:19 +0800 (CST) X-RL-SENDER:m...@t-firefly.com X-FST-TO:do...@mail.com X-SENDER-IP:121.40.141.164 X-LOGIN-NAME:m...@t-firefly.com X-UNIQUE-TAG:<56350341b91b9b14ebd84ec744417965> X-ATTACHMENT-NUM:0 X-SENDER:m...@t-firefly.com X-DNS-TYPE:0 Received: from uchome (unknown [121.40.141.164]) by smtp.263.net (Postfix) whith ESMTP id 1460582EH4N; Sat, 18 Feb 2017 12:24:19 +0800 (CST) Date: Sat, 18 Feb 2017 12:24:20 +0800 To: Subject: =?gbk?B?W0ZpcmVmbHkgVGVhbV0gRW1haWwgQWRkcmVzcyBWZXJpZnk=?= From: =?gbk?B?RmlyZWZseSBUZWFt?= X-Priority: 3 X-Mailer: account.t-firefly.com X3.1 MIME-Version: 1.0 Content-type: text/html; charset=gbk Content-Transfer-Encoding: base64 Message-ID: <201702181220.d3d7dc515...@account.t-firefly.com> Envelope-To: X-GMX-Antispam: 0 (Mail was not recognized as spam); Detail=V3; X-GMX-Antivirus: 0 (no virus found) X-UI-Filterresults: notjunk:1;V01:K0:tVherNjLfYU=:aBiMm6OAxh/BqcSnliDanV+SYl uj+5Wy8GywcCVLJTTcQz1bVsX9I0SIQIsuqXwhAacoKf+1uN1cEW36vYRNWAkyrfPIcdLKWDQ e8FLmLugVtjrOCxfyNuzZHAvWvj4C/KJAWxND0sdN3kSMV2TzJI3GQeiUUOiNJVCanZW95MAv UoJKY8VYTb9FUfdLlbAoShCl0BDeOxg89QG9cDg1gtbwRx6PwcqpIeykRRH2tD3oEWuo8G5Xw bFbOLgNdTEhRsbEI31apRQ/sO0k2C9iWKDkwQD9cu4lQdPgfdI+Nr3Ja0AWXa4NlHFe/XAkrL ol1nV/T2XJMQOZ6ejQf36ppkH8l2S85pNUWE/ijS1DMnwOaT1lEF1QoUE1Hzp6orycCS7wXi+ +32aB161A4U+dOHa6GAlsUY4oF6Ce4mVW4jZ88Vt3gK5qBQCuczNHL2SrlK0SAxRZrTq9RcT7 DoL+SoMtKVl9U0tHoVfzhMNOWGEEJ23LMHUj3k0b1MJIWpvX4lVOOlSfUb0p3gdmcTr7MHs2Y WYLGQp+mi9SEcLqASnRGSyP09UJ3hD21vAfjsKtJGrF7BDA9JyA/utTrVQ/z115IQNOf/hf8P KguWeKk1CiMFFj6FIRtQwzLbUvu5vi1/gl6ly5fNq7pfoZl1jOQYgxjLY9BuyjPnT8AreyIeG D6ZMYOqoPFEtWnVdvzw6o4uT8Kx+UKlqInjA6aYVjgZ91QPC/Ngxq/d5Q/YVLcGF7XorIISnr N76tTgBF4Vf/Znu6WqM/1wTm0HprQMaSlp//IDlpDPwc+YagEKLJ+Y2sNzbLdZ47j4HfQXKM2 BbwwKgMbp1y/VduX2+MI/9Y6GfKSXFt41DjXaov6VtkcoY4ZwP6dvIPU3rZ4uki92ffkE9rsH 7edIiH369XUB8idCGEzpNUhhfP6q2/SMr0xIlFGTOHSWoQ0AZY3bF+zPvMflv4A1EW9h6rxRe piES/oI+XmJ+qQ5IFeNAk09YUUGy527PlQ90mGMo5Te8dxXrUPrJTC2nNn7HJUN/B8RAs++ly DU4JtkPpxKuHI+oJ32z3DU7IlCqQPC96WYVFY0yRsZ5UsZvCxLSiM9ZnSbDKdrQvxp05wkgPL uUYh0PkkGX+hJxcF4gzDfj5nWrr/RAeRQkT2ABWFLt2xIMfvzq8xI7zYNT3KXuriyvomzGa9N Ca5qrNonUAQJrRbMmVX5LYaUX2dRnvxfk+uONL44kdA7FckYGlCx+XWp6M4+BY7jOBkJJk9rH Nut9yuPJFIk1Q91Efv+VneM8fsSABMwymAr7o/zTxrctPzVcgvRCbUc3ppLPvrqgxgNrsngQu icyP/BujC19hNhdXoCZjmg4SES2eJbZ8mFagRQD0gDYf8mYMrHwrnH7a0vVMZVSo8MdiVUkyN UStmDPiopvNd8m0CRhbfAg1ccpzcn+Pzymh3A24ZGDYWW0GUtfPGXsOj6y5Sp95NvaSilBYaG vP8OpHVkEaSsp52pQzkkdKKTt3n15zKag65w5s64W3tjDzKgY4PwXXz/EIBVc2XJTrZV0gGuQ ri4zIzn+0waPLqhN3cz+ofrY2aauywhKHDjxFF2c0p4JaQySWy7Zkoo6ING1bpTsRtfQaGmY8 ArALYHmHg9utdu43VZ836h661ozlOxiQ PGh0bWw+DQo8aGVhZD4NCjxtZXRhIGh0dHAtZXF1aXY9IkNvbnRlbnQtVHlwZSIgY29udGVudD0i dGV4dC9odG1sOyBjaGFyc2V0PWdiayI+DQo8dGl0bGU+RW1haWwgQWRkcmVzcyBWZXJpZnk8L3Rp dGxlPg0KPC9oZWFkPg0KPGJvZHk+DQpFbWFpbCBBZGRyZ
spamd will not bind to ipv4 localhost when network is unconfigured
Hello, Sometimes I start my computer when the internet is not available and I've found that smapd will not bind to 127.0.0.1. I'm having it bind to localhost only. It instead binds to localhost's ipv6 address. I don't know why it *must* connect to router to acquire an ipv4 connection to localhost. I suspect this is a bug. Thanks, in advance. Here's the unwrapped syslog output. Connect to router Oct 24 03:48:45 [dhcpcd] eth0: carrier acquired Oct 24 03:48:45 [dhcpcd] eth0: adding address fe80::63df:f737:a375:9206 Oct 24 03:48:45 [dhcpcd] eth0: IAID 06:0f:ee:cd Oct 24 03:48:45 [dhcpcd] eth0: soliciting an IPv6 router Oct 24 03:48:45 [dhcpcd] eth0: rebinding lease of 192.168.1.104 Oct 24 03:48:45 [dhcpcd] eth0: probing address 192.168.1.104/24 Oct 24 03:48:50 [dhcpcd] eth0: leased 192.168.1.104 for 86400 seconds Oct 24 03:48:50 [dhcpcd] eth0: adding route to 192.168.1.0/24 Oct 24 03:48:50 [dhcpcd] eth0: adding default route via 192.168.1.1 Start spamd Oct 24 03:48:53 [spamd] logger: removing stderr method_ Oct 24 03:48:58 [dhcpcd] eth0: no IPv6 Routers available Oct 24 03:49:25 [spamd] spamd: server started on IO::Socket::IP [127.0.0.1]:783 (running version 3.4.1)_ Oct 24 03:49:25 [spamd] spamd: server pid: 5527_ Oct 24 03:49:25 [spamd] spamd: server successfully spawned child process, pid 5838_ Oct 24 03:49:25 [spamd] spamd: server successfully spawned child process, pid 5840_ Oct 24 03:49:25 [spamd] prefork: child states: IS_ Oct 24 03:49:25 [spamd] prefork: child states: II_ Oct 24 03:49:34 [spamd] spamd: connection from ulgy_thing [127.0.0.1]:38620 to port 783, fd 5_ Oct 24 03:49:34 [spamd] spamd: bad protocol: header error: QUIT_ Oct 24 03:49:34 [spamd] prefork: child states: II_ Disconnect from router Oct 24 03:49:47 [dhcpcd] eth0: carrier lost Oct 24 03:49:47 [kernel] [574755.617244] tg3 :02:00.0 eth0: Link is down Oct 24 03:49:47 [dhcpcd] eth0: deleting address fe80::63df:f737:a375:9206 Oct 24 03:49:47 [dhcpcd] eth0: deleting route to 192.168.1.0/24 Oct 24 03:49:47 [dhcpcd] eth0: deleting default route via 192.168.1.1 Oct 24 03:49:54 [dhcpcd] wlan0: carrier lost Oct 24 03:49:54 [kernel] [574762.258812] cfg80211: Calling CRDA to update world regulatory domain Oct 24 03:49:54 [dhcpcd] wlan0: deleting route to 192.168.1.0/24 Oct 24 03:49:54 [dhcpcd] wlan0: deleting default route via 192.168.1.1 Oct 24 03:49:54 [kernel] [574762.518943] cfg80211: World regulatory domain updated: Oct 24 03:49:54 [kernel] [574762.518949] cfg80211: DFS Master region: unset Oct 24 03:49:54 [kernel] [574762.518950] cfg80211: (start_freq - end_freq @ bandwidth), (max_antenna_gain, max_eirp), (dfs_cac_time) Oct 24 03:49:54 [kernel] [574762.518953] cfg80211: (2402000 KHz - 2472000 KHz @ 4 KHz), (N/A, 2000 mBm), (N/A) Oct 24 03:49:54 [kernel] [574762.518956] cfg80211: (2457000 KHz - 2482000 KHz @ 2 KHz, 92000 KHz AUTO), (N/A, 2000 mBm), (N/A) Oct 24 03:49:54 [kernel] [574762.518958] cfg80211: (2474000 KHz - 2494000 KHz @ 2 KHz), (N/A, 2000 mBm), (N/A) Oct 24 03:49:54 [kernel] [574762.518960] cfg80211: (517 KHz - 525 KHz @ 8 KHz, 16 KHz AUTO), (N/A, 2000 mBm), (N/A) Oct 24 03:49:54 [kernel] [574762.518963] cfg80211: (525 KHz - 533 KHz @ 8 KHz, 16 KHz AUTO), (N/A, 2000 mBm), (0 s) Oct 24 03:49:54 [kernel] [574762.518965] cfg80211: (549 KHz - 573 KHz @ 16 KHz), (N/A, 2000 mBm), (0 s) Oct 24 03:49:54 [kernel] [574762.518966] cfg80211: (5735000 KHz - 5835000 KHz @ 8 KHz), (N/A, 2000 mBm), (N/A) Oct 24 03:49:54 [kernel] [574762.518968] cfg80211: (5724 KHz - 6372 KHz @ 216 KHz), (N/A, 0 mBm), (N/A) Stop spamd Oct 24 03:51:19 [spamd] spamd: server killed by SIGTERM, shutting down_ Start spamd Oct 24 03:51:29 [spamd] logger: removing stderr method_ Oct 24 03:51:30 [spamd] error creating a DNS resolver socket: Address family for hostname not supported at /usr/lib64/perl5/vendor_perl/5.22.2/Mail/SpamAssassin/DnsResolver.pm line 434._ Oct 24 03:51:30 [spamd] dns: unable to connect to [192.168.1.100]:53, no more alternatives_ Oct 24 03:51:30 [spamd] error creating a DNS resolver socket: Address family for hostname not supported at /usr/lib64/perl5/vendor_perl/5.22.2/Mail/SpamAssassin/DnsResolver.pm line 434._ Oct 24 03:51:30 [spamd] dns: unable to connect to [192.168.1.100]:53, no more alternatives_ Oct 24 03:51:30 [spamd] error creating a DNS resolver socket: Address family for hostname not supported at /usr/lib64/perl5/vendor_perl/5.22.2/Mail/SpamAssassin/DnsResolver.pm line 434._ Oct 24 03:51:30 [spamd] dns: unable to connect to [192.168.1.100]:53, no more alternatives_ Oct 24 03:51:31 [spamd] razor2: razor2 check failed: Invalid argument razor2: razor2 had unknown error during get_server_info at /usr/lib64/perl5/vendor_perl/5.22.2/Mail/SpamAssassin/Plugin/Razor2.pm line 187. at /usr/lib64/perl5/vendor_perl/5.22.2/Mail/SpamAssassin/Plugin/Razor2.pm line 330._ Oct 24 03:51:31 [spamd] spamd: server started on IO::Socket::
Re: Possibly some good news - OT
On Tue, 11 Oct 2016 10:49:36 -0700 Marc Perkel wrote: > Hi everyone, > > Well, maybe there's some good news. Traditional solutions for stage 4 > lung cancer are not good but on the cutting edge of technology it looks > much better. Below is a letter I sent to a former employer explaining > my current status. The bottom line is that I think I have figured out > the best science based treatment that has ever been tried for my > specific kind of lung cancer and that means, if I'm right, that I have > more time that I thought. > > Also - you can follow me on Twitter @mperkel > > > Hi Cindy, > > Please share this with EFF Staff and others. First I'd like to thank > you for including me in the EFF staff group photo. That was very > meaningful to me. It was great spending time with everyone at the > Pioneer Awards. > > So, the good news - it looks like there's a good chance I'm going to be > around longer that I originally thought. Compressing a long story with > a lot of adventure, traditional cancer therapies offered me very > little. So I went to MD Anderson in Texas which is considered to be the > nations most advanced research hospital. While I was traveling there > some of Kaiser's tests came in that showed I had a very rare genetic > profile in the cancer called RET fusion mutation. And it so happens > that MDA had a phase 1 trial of a drug combination that had only been > tried on 9 people on the planet so far but had 100% response. (response > is tumor shrinkage). > > Although this was what looked like the ideal treatment - just 2 pills - > no chemo - actually getting the treatment was challenging and a long > story that was a hard fought battle. But in the end I got Kaiser to > prescribe these same 2 drugs, not as part of a study, and because of > that I don't have to travel monthly to Texas to get this treatment nor > endure drug escalation experiments of the phase 1 trial. And I can mix > in a few other ideas in the plan without messing up anyone's data. So I > got what I want and I got it on my terms. One thing that I did find out > is a darker side of the cancer industry where MDA's interests were > focused mostly on the billing issues and were willing to hold my life > hostage to get money. But that was the aspect that I leveraged to get > the treatment and on my own terms. > > The treatment consists of 2 pills, Vandetanib in Combination with > Everolimus. Vandetanib (Caprelsa) is a thyroid cancer drug that targets > the same RET fusion I have in my lung cancer, and is much more common > in thyroid cancer. Everolimus (Afinitor) is a more interesting drug. > it's in a class called mTor inhibitors which is the same kind of drugs > being researched for cellular epigenetic regeneration to reverse old > age at the cellular level. > > I share a theory with some others on the cutting age of both the cancer > and anti-aging community that the biggest risk factor for cancer is old > age. And the cure for cancer will be in most part the cure for aging > and cancer, along with diabetes, Alzheimer, and other age related > diseases will be cured at the same time. So the idea that one of the > magic drugs happened to be an anti-aging drug was in line with this > theory. Although Afinitor has too many side effects to be used as a > nutritional supplement, because I'm lucky enough to have cancer I get > drugs that other people don't have access to. > > While I was waiting for access to this treatment (it took 3 weeks) I > started doing my own research to put together my own drug cocktail in > the mean time. Because of all the rules and regulations in the medical > world they have to move far more slowly than optimal. But there are a > lot of papers online as to the kinds of things they are looking at > trying next. And because of the way I think outside the box and my lack > of limitations, the likelihood that I could create a superior outcome > compared to short term certain death is rather high. And in comparison > to what traditional therapies offer there is really no additional risk. > > One thing that I noticed was that all the experimental substances in > the anti-aging world were also the cutting edge experimental substances > in the cancer world. The leading mind in the anti-aging world is a guy > named Dr. David Sinclair, who became famous for discovering the > Resveritrol molecule in red wine. Since then he has come up with > several more powerful substances and no Glaxo Smith Kline has got 3/4 > of a billion dollars invested in his work and some of his latest stuff > is in human trials now. He expects to be able to kick the age limit up > for 80 to 120 years. > > Some of his intermediate work since Resveritrol is now available on > Amazon without a prescription. One combination of 2 substances he's > working on is Pterostilbene and Nicotinamide Riboside. One is a > metabolic enhancer and the other is an mTor inhibitor, like Afinitor, > that trigger the Surtuin enzymes that are responsible
How to use sa rules?
Hello, I run sa-update but I want to know if any additional configuration is needed to tell sa that I want it to use the rules. Thanks, David
Re: I have some bad news
On Mon, 15 Aug 2016 22:22:47 -0700 Marc Perkel wrote: > Well, this is kind of hard to say so just going to say it. I have stage > 4 lung cancer and the probably spectrum is not good. I've been fighting > spam for the last 15 years and I'd like to keep fighting spam from the > grave. So I'm willing to share my technology with anyone interested. > > Several months ago I talked about a new trick I came up with to fight > spam and also positively identify good email as good. I've been running > it now for 7 months and it is a breakthrough. At the time I had > intended to patent it just to get enough protection to license it to > the big boys, but now it is unlikely I'll be around long enough for > that. I have however noticed that because of my condition people are > paying attention to me more now that there's a deadline. > > Here's my spam filtering trick. It's something that can be easily > integrated into SpamAssassin. Being that my programming is somewhat > sloppy at times it can probably be done even better than what I did. > The thing to keep in mind when reading this is that it's not bayesian > filtering. Many people in the spam filtering community make that > mistake. This is done with set operations using Redis. Here's the link. > > http://wiki.junkemailfilter.com/index.php/The_Evolution_Spam_Filter > > I'm still doing well for now and if not for this diagnosis I wouldn't > know I was sick, And I want to get as much done in this window as > possible. Since I live in Gilroy California I'm thinking I'd like to > contact the spam filtering person at Google and let them continue to > really develop what I started. So if someone could hook me up with the > right person(s) there I would appreciate it. And I'm willing to work > with anyone else that can make use of my work. (My way of cheating > death.) > > Below is a letter I wrote to EFF staff where I used to work. It > summarizes my situation. I'm still doing well considering. > > > Hi Cindy, > > Hate to ruin your Monday morning but I have some bad news. I have stage > 4 lung cancer and the odds are not with me. I'm slowly telling the > world and realizing the the problem with having so many friends is that > I'm making a lot of people very sad. And that is very difficult for me > to do. > > I'm dealing with it about as well as can be expected, maybe a little > better than that. My needs are covered for now, but dealing with > rolling out the information. Please pass this email on to the staff > there. I'm somewhat concerned about getting too much response at once. > There is no specific time frame for me yet but stage 4 lung is almost > always fatal and it's more likely months and not years. > > I have a lot of friends who are offering to take care of me. I have a > paid for house, some savings, and I'm still doing well off my spam > filtering business. I am going to be looking for someone to take over > my small techno empire in the hopes of keeping my web sites and the > people who I host for online. While I plan to put up a good fight if I > get 2 years that would be considered a win. Taking over my empire would > be a great opportunity for the right person and I need to find someone > to do that. I am unfortunately really good at what I do and might be > tricky getting someone to take that over. > > I have lived a good life. I have done more than most people have done > in 100 lifetimes. At the age of 60 I was already down to my last 1/4 > tank so if I don't get the last 20 years I really have little to > complain about. At this point my goals are to upload what's left of me > to the web, which is the afterlife in my world. I have to finish up > certain philosophical projects with my Church of Reality, which, > interestingly enough might lead to a solution for the control problem > for Artificial Intelligence. (Something I need to finish writing up.) > > Oddly enough the idea of being dead doesn't worry me. And that might be > the denial speaking. However the process of getting there is going to > be overwhelming. And it's been just a week since I found out. And I'm > exploring the idea that there might even be an upside to being > terminal. Maybe new opportunities will open up. > > I do want to say that working at EFF was some of the best times of my > life and I really appreciate having had that opportunity. The internet > is the new nervous system of humanity and is therefore sacred space, > not just in a religious sense, but in a Reality based sense. To protect > it is to protect the essence of humanity itself. The Internet is our > common mind and it is the core of who we are as a human species. (Note > to legal team, I think there is a legal argument opportunity in this > statement.) > > A person's story is everything they do from the moment they are born to > the moment they die. And then your story is the effect you had on > advancing the evolution of life from what we were, to what we are, to > what we will become. So my sto
Re: Disabling spamcop plugin
Am 07.04.2016 um 22:55 schrieb Ian Zimmerman: > My high-level goal here is to get rid of as many configuration changes > as I can in the system-managed area (/etc in my case) and achieve the > same effects by other means. This is because I'm learning that I > cannot trust my distro not to screw me over anymore You could use Gentoo, you get to configure it all yourself! Really, I do configure it all myself. It's actually quite educational (and time consuming). You might also try Arch or Devuan. What distro are you using now? FWIW I also found that what others though I would like and what I actually did like were two different things. Sincerely, David In windowz, they choose everything for you. In Linux, if you want to choose, you have to be willing to both do so and accept the consequences of your choices. -- Me pgpL25v5eOYlQ.pgp Description: OpenPGP digital signature
Re: Permissions for home dir .spamassassin
On Tue, 22 Sep 2015 22:41:10 +0200 Antony wrote: > On Tuesday 22 September 2015 at 22:35:55, David wrote: > > > Hello, I decided to store users personal filter rules > > in .spamassassin in their home dir, but I'm not sure how to set the > > perms. > > How does spamassassin get invoked for each user's email? > > Is it a single system-wide process, are you calling it from procmail > per user, or something else? I'm using claws-mail and the SA plugin, I'm not certain how exactly it works, though it does use localhost for filtering. At first it did not work, complaining that there was not such dir and it could not be created. Then I created it and I got cannot write to the dir errors, so I changed the owner to spamassassin:spamassassin, the umask makes the perms drwxr-x--- . Now I can't have my account look inside and I am seeking a better solution. Thanks, David
Permissions for home dir .spamassassin
Hello, I decided to store users personal filter rules in .spamassassin in their home dir, but I'm not sure how to set the perms. Thanks, David
