RE: DNS timeout problem
Strangely enough I have been looking at why SA has suddenly started to act up and I also seem to be having DNS timeout issues after years of faultless operation. I am running a local caching nameserver, but spamassassin -D just stops dead as follows: [8808] dbg: logger: adding facilities: all [8808] dbg: logger: logging level is DBG [8808] dbg: generic: SpamAssassin version 3.2.1 [8808] dbg: config: score set 0 chosen. [8808] dbg: util: running in taint mode? yes [8808] dbg: util: taint mode: deleting unsafe environment variables, resetting PATH [8808] dbg: util: PATH included '/usr/kerberos/sbin', keeping [8808] dbg: util: PATH included '/usr/kerberos/bin', keeping [8808] dbg: util: PATH included '/usr/local/sbin', keeping [8808] dbg: util: PATH included '/usr/local/bin', keeping [8808] dbg: util: PATH included '/sbin', keeping [8808] dbg: util: PATH included '/bin', keeping [8808] dbg: util: PATH included '/usr/sbin', keeping [8808] dbg: util: PATH included '/usr/bin', keeping [8808] dbg: util: PATH included '/usr/X11R6/bin', keeping [8808] dbg: util: PATH included '/root/bin', which doesn't exist, dropping [8808] dbg: util: final PATH set to: /usr/kerberos/sbin:/usr/kerberos/bin:/usr/local/sbin:/usr/local/bin:/sbin:/b in:/usr/sbin:/usr/bin:/usr/X11R6/bin [8808] dbg: dns: no ipv6 [8808] dbg: dns: is Net::DNS::Resolver available? yes [8808] dbg: dns: Net::DNS version: 0.48 I have checked the version of Net::DNS installed and according to cpan I am up to date with version 0.6 so is there any relevance in the fact that the above output says it's using 0.48? That's it - I don't know if it's related to the OP's problem but any advice is welcomed. Thanks
FuzzyOCR matches word
Hi, I have just upgraded from FuzzOCR 2.3b to the 3.4.2 devel by copying over the .cf and .pm files, re-making my tweaks to the .cf file and compiling/installing gifsicle. Following a restart of spamassassin, everything is kinda working, but the debug log shows that FuzzyOCR is finding matches for : [SNIP] [8695] dbg: FuzzyOcr: Found word target in line [8695] dbg: FuzzyOcr: shotermprcetargetoo [8695] dbg: FuzzyOcr: with fuzz of 0. scanned with scanset $gocr -i $pfile [8695] dbg: FuzzyOcr: Found word target in line [8695] dbg: FuzzyOcr: shotermprlcetargetoo [8695] dbg: FuzzyOcr: with fuzz of 0. scanned with scanset $gocr -l 180 -d 2 -i $pfile [8695] warn: Use of uninitialized value in abs at /etc/mail/spamassassin/FuzzyOcr.pm line 1146. [8695] dbg: FuzzyOcr: Found word in line [8695] dbg: FuzzyOcr: quantumeneryrinccorporateupdateqegyob [8695] dbg: FuzzyOcr: with fuzz of 0. scanned with scanset $gocr -i $pfile [8695] warn: Use of uninitialized value in abs at /etc/mail/spamassassin/FuzzyOcr.pm line 1146. [8695] dbg: FuzzyOcr: Found word in line [8695] dbg: FuzzyOcr: hotenergystocki [8695] dbg: FuzzyOcr: with fuzz of 0. scanned with scanset $gocr -i $pfile [8695] warn: Use of uninitialized value in abs at /etc/mail/spamassassin/FuzzyOcr.pm line 1146. [8695] dbg: FuzzyOcr: Found word in line [8695] dbg: FuzzyOcr: redytoriiibigmmmeriii [SNIP] [8695] dbg: FuzzyOcr: Message is spam, score = 69.000 [8695] dbg: FuzzyOcr: Words found: [8695] dbg: FuzzyOcr: target in 1 lines [8695] dbg: FuzzyOcr: in 15 lines [8695] dbg: FuzzyOcr: stock in 2 lines [8695] dbg: FuzzyOcr: rating in 1 lines [8695] dbg: FuzzyOcr: company in 1 lines [8695] dbg: FuzzyOcr: recommendation in 1 lines [8695] dbg: FuzzyOcr: trading in 1 lines [8695] dbg: FuzzyOcr: in 15 lines [8695] dbg: FuzzyOcr: in 15 lines [8695] dbg: FuzzyOcr: in 15 lines [8695] dbg: FuzzyOcr: (67 word occurrences found) [8695] dbg: FuzzyOcr: Remove DIR: /tmp/.spamassassin8695S9N6D5tmp [8695] dbg: FuzzyOcr: FuzzyOcr ending successfully... Any ideas? Thanks Nigel Kendrick
RE: FuzzyOCR matches word - FIXED!
-Original Message- From: Nigel Kendrick [mailto:[EMAIL PROTECTED] Sent: Wednesday, January 03, 2007 9:11 AM To: users@spamassassin.apache.org Subject: FuzzyOCR matches word Hi, I have just upgraded from FuzzOCR 2.3b to the 3.4.2 devel by copying over the .cf and .pm files, re-making my tweaks to the .cf file and compiling/installing gifsicle. Following a restart of spamassassin, everything is kinda working, but the debug log shows that FuzzyOCR is finding matches for : [SNIP] OK, so I added a couple of debug lines to check the parsing of the words list, saved the original .pm file and put mine in place and everything checked out OK. I put back the original .pm file and everything is still working OK. Not planning to take this much further - just happy it's working - but will keep an eye on it. Hmmm
RE: FuzzyOCR matches word -BROKE AGAIN - But reproducible
-Original Message- From: Nigel Kendrick [mailto:[EMAIL PROTECTED] Sent: Wednesday, January 03, 2007 9:11 AM To: users@spamassassin.apache.org Subject: FuzzyOCR matches word Hi, I have just upgraded from FuzzOCR 2.3b to the 3.4.2 devel by copying over the .cf and .pm files, re-making my tweaks to the .cf file and compiling/installing gifsicle. Following a restart of spamassassin, everything is kinda working, but the debug log shows that FuzzyOCR is finding matches for : [SNIP] OK, so I added a couple of debug lines to check the parsing of the words list, saved the original .pm file and put mine in place and everything checked out OK. I put back the original .pm file and everything is still working OK. Not planning to take this much further - just happy it's working - but will keep an eye on it. Hmmm Broke again! Only happens when I turn on the hash database by setting focr_enable_image_hashing 2 The db files are present and world-writable (for testing). Double Hmmm
One spam offer definitely not worth it..
Invoice #: 33021 - TOTAL: $15.00 We Email Advertise Your Web Site to 0,000,000 People Wow! Only $15 for..er..nothing! Happy New Year etc. to all - and my eternal thanks for everyone involved in the discussion, support and development of SpamAssassin and associated tools - my life would be hell without you all! Nigel Kendrick
RE: FuzzyOCR Plugin question
-Original Message- From: news [mailto:[EMAIL PROTECTED] On Behalf Of René Berber Sent: Thursday, December 14, 2006 1:06 AM To: users@spamassassin.apache.org Subject: Re: FuzzyOCR Plugin question Evan Platt wrote: I hope someone here can help, I've looked at the FuzzyOCR wiki and can't seem to find an answer.. Is there a way to feed a GIF to FuzzyOCR and 'see' the output ? Not quite - but you can go through some of the process manually - have a read here (especially step 10): https://secure.renaissoft.com/maia/wiki/FuzzyOCR23
FuzzyOCR Words List
Hi Guys, We have recently been suffering from tons of inline image spam but this has been pretty much killed by installing FuzzyOCR. Over the last week I have been adding to the FuzzyOCR words file, and recently went on a Web search to see what other lists I could find - to my surprise there didn't seem to be much out there, which I take as either: 1) No one wants to publish their list for fear of giving the 'enemy' a heads up. or 2) No one has bothered to share yet. I can see the argument for #1, but I also remember the argument on the SARE site that you can see their rules and so can the spammers but it makes little difference. Anyway, I am happy to publish my list here for scrutiny if anyone thinks it's worth it, and at the same time perhaps others will? Any thoughts? Cheers NK
FuzzyOCR a little too fuzzy
FuzzyOcr is proving to be useful but it does seem to be a bit too 'Fuzzy' at times... [2006-12-08 13:27:47] Debug mode: Found word best in line shotermprcetargetoo with fuzz of 0.25 scanned with scanset /usr/bin/gocr -i - [2006-12-08 13:27:47] Debug mode: Found word best in line quantumenergyincspleasedtoannouncethatthasappiedtohavetssharesistedfor with fuzz of 0.25 scanned with scanset /usr/bin/gocr -i - [2006-12-08 13:27:47] Debug mode: Found word best in line tradngonthefrankfustockexchangethecompanyhasretanedthesewcesofbaltc with fuzz of 0.25 scanned with scanset /usr/bin/gocr -i - [2006-12-08 13:27:47] Debug mode: Found word best in line investmentgroupofhamburggermanytoassstwththeappicaton with fuzz of 0.25 scanned with scanset /usr/bin/gocr -i - [2006-12-08 13:27:47] Debug mode: Found word cheap in line investmentgroupofhamburggermanytoassistwiththeapplication with fuzz of 0.2 scanned with scanset /usr/bin/gocr -l 180 -d 2 -i - [2006-12-08 13:27:47] Debug mode: Found word revista in line quantumenergyincspleasedtoannouncethatthasappiedtohavetssharesistedfor [2006-12-08 13:27:47] Debug mode: Found word alert in line quantumenergyincspleasedtoannouncethatthasappiedtohavetssharesistedfor with fuzz of 0.2 scanned with scanset /usr/bin/gocr -i - [2006-12-08 13:27:47] Debug mode: Found word alert in line tradngonthefrankfustockexchangethecompanyhasretanedthesewcesofbaltc [2006-12-08 13:27:47] Debug mode: Found word investor in line investmentgroupofhamburggermanytoassistwiththeapplication with fuzz of 0.25 scanned with scanset /usr/bin/gocr -l 180 -d 2 -i - [2006-12-08 13:27:47] Debug mode: Found word meridia in line redytoriiibigmmmeriii with fuzz of 0.285714285714286 scanned with scanset /usr/bin/gocr -i - Any suggestions? Thanks
Bogus MS 'critical update'
I have just had a bogus Microsoft update slip through the net. Is there a rule to combat these? In any case, here's the info in case it's of use: From: MS Technical Services [EMAIL PROTECTED] Subject line: Newest Microsoft Critical Pack The attachment was Upgrade9591.exe Here's the body, minus HTML formatting: MicrosoftAll Products | Support | Search | Microsoft.com Guide Microsoft Home MS Customer this is the latest version of security update, the July 2005, Cumulative Patch update which eliminates all known security vulnerabilities affecting MS Internet Explorer, MS Outlook and MS Outlook Express as well as three newly discovered vulnerabilities. Install now to continue keeping your computer secure from these vulnerabilities, the most serious of which could allow an malicious user to run executable on your computer. This update includes the functionality of all previously released patches. System requirements Windows 95/98/Me/2000/NT/XP This update applies to MS Internet Explorer, version 4.01 and later MS Outlook, version 8.00 and later MS Outlook Express, version 4.01 and later Recommendation Customers should install the patch at the earliest opportunity. How to install Run attached file. Choose Yes on displayed dialog box. How to use You don't need to do anything after installing this item. Microsoft Product Support Services and Knowledge Base articles can be found on the Microsoft Technical Support web site. For security-related information about Microsoft products, please visit the Microsoft Security Advisor web site, or Contact Us. Thank you for using Microsoft products. Please do not reply to this message. It was sent from an unmonitored e-mail address and we are unable to respond to any replies. The names of the actual companies and products mentioned herein are the trademarks of their respective owners. Contact Us | Legal | TRUSTe C2005 Microsoft Corporation. All rights reserved. Terms of Use | Privacy Statement | Accessibility
Bogus MS 'critical update' - PANIC OVER
Apologies - just noticed that the mail was picked up from a third party server, not our in-house one, and was dumped into the wrong folder due to an Outlook rules error. I've just tried sending an .exe through our mail server and it was blocked. NK
