RE: Solution for Disaster spam?
-Original Message- From: Michelle Konzack [mailto:[EMAIL PROTECTED] Sent: Friday, August 01, 2008 1:29 PM To: users@spamassassin.apache.org Subject: Re: Solution for Disaster spam? Am 2008-08-01 07:07:59, schrieb Micha? J?czalik: On Sun, 27 Jul 2008, Robert Nicholson wrote: What have people been using to curtail some of the new disaster spam that's quite common now? Well, indeed it was clamav that helped me. After upgrading to most recent version, 95% of this spam disappeared. spamassassin was helpless, scoring only BAYES_50 at most. Right, spamassassin scored the spams with only -0.8 to +1.9 and I had to install an additional procmail rule which now capture arround 99.9% of it. But I should mention, that I get curently arround 180.000 per day. If you are running clamd/clamav, you can install the anti-scam/phishing/spam signatures from http://www.sanesecurity.com/clamav/usage.htm and you should not see these any more. Fri Aug 1 13:16:13 2008 - /var/spool/MIMEDefang/mdefang-m71HGDNr530135/Work/INPUTMBOX: Email.Spam.Gen3737.Sanesecurity.08072802.StormSpam FOUND Regards, jamie
RE: Memory Leak?
-Original Message- From: Ron Smith [mailto:[EMAIL PROTECTED] Sent: Friday, July 25, 2008 8:31 AM To: users@spamassassin.apache.org Subject: Re: Memory Leak? Yes, Kai, I noticed there were no replies. In fact, I've noticed that for the most part many of the folks on this list try to be as unhelpful as possible to new posters on the list. Almost like there is challenge over who can be the quickest on either a rude comment or put- down. Wow... Personally, I find this list to be one of the most helpful, least-rude lists around... I've only been here about 5 years too. I missed the prior emails on this thread, but if you can detail more about your setup perhaps someone with the same setup (issues or not?) may contact you ... To be honest, it's kind of a bad time for many admins - DNS servers around the world need to be patched ASAP, and there are a LOT of them out there that are vulnerable to the latest (real, and very bad!) cache-poisoning exploit. If you run a DNS server, and have not yet tested/patched it, *please* see http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1447 asap. Regards, jamie
RE: Is ASN information useful?
-Original Message- From: Marc Perkel [mailto:[EMAIL PROTECTED] Sent: Monday, July 14, 2008 3:55 PM To: users@spamassassin.apache.org Subject: Is ASN information useful? Has anyone determined if ASN information is useful in determining if a message is/is not spam? Apparently someone thinks so... http://spamlinks.net/filter-bl.htm#asn http://www.uoregon.edu/~joe/one-pager-asn.pdf
RE: yahoo.com acknowledges no control over third party email from their mail servers
-Original Message- From: Michael Scheidell [mailto:[EMAIL PROTECTED] Sent: Friday, May 16, 2008 7:46 AM To: John Hardin Cc: SpamAssassin Users List Subject: Re: yahoo.com acknowledges no control over third party email from their mail servers How the hell can they disown that? The rDNS is from a domain they control! Didn't disown it, just said it didn't come from a yahoo.com authorized source, ie: they have open third party relay and just allow random spammers to use their servers. I get that email response from them 75% of the time, which means (according to yahoo.com) that 75% of the spam coming from yahoo.com DKIM signed servers is from third partys, not authorized yahoo.com users. If you get testy with them and mail them back and forth about it, and include links to the whois/dig output *proving* that they are lying/hiding/whatever, they will eventually fess up, and a day or so later, you should receive the standard We have taken appropriate action against the user in question (yadda-yadda) email. ...Whether or not they actually *do* anything is obviously an unknown, however, I agree that this is just *bad*, so I tend to call them on it every time if I can/have the time. IOTW - I'm not exactly on Elmer's buddy-list... ;)
RE: Looking for hosts to white list
-Original Message- From: Henrik K [mailto:[EMAIL PROTECTED] Sent: Wednesday, April 23, 2008 2:45 AM To: users@spamassassin.apache.org Subject: Re: Looking for hosts to white list On Tue, Apr 22, 2008 at 09:38:13PM -0400, James Pratt wrote: -Original Message- From: Michael Scheidell [mailto:[EMAIL PROTECTED] Sent: Tuesday, April 22, 2008 9:00 PM To: spamassassin-users Subject: Re: Looking for hosts to white list I don't know if you noticed but I'm a spam filtering company. Must be true, its on his web site: This filter was developed by company founder and all around tech genius Marc Perkel. Marc is a leader in the spam filtering industry and was behind Has/Does anyone use his sa rules he has posted on his site? if so how, how was the accuracy? http://marc.info/?l=spamassassin-usersm=120611144819910w=2 Thank you. After posting that, I also found this: http://lkml.org/lkml/2005/9/18/155 (LMFAO!) .. And then this downright (tasteless?) oddity: http://marc.perkel.org .. one would think he would do much better at his business if he kept his personal life away from it , but I guess it's a *little* too late in his case.. :\ (Did I just hear another plonk? ;)
RE: Looking for hosts to white list
-Original Message- From: Michael Scheidell [mailto:[EMAIL PROTECTED] Sent: Tuesday, April 22, 2008 9:00 PM To: spamassassin-users Subject: Re: Looking for hosts to white list I don't know if you noticed but I'm a spam filtering company. Must be true, its on his web site: This filter was developed by company founder and all around tech genius Marc Perkel. Marc is a leader in the spam filtering industry and was behind Has/Does anyone use his sa rules he has posted on his site? if so how, how was the accuracy?