They seem a little to preoccupied with content filters (IMHO), but here are the links
to this months presentations:
http://spamconference.org/proceedings2003.html
video:
http://spamconference.org/webcast.html
photos: (wonder if any of these guys are Scott?)
Things like hotmail, yahoo and other free email services are not that good
at catching virii I have found. Also on the Island we have one other main
competitor and a few smaller ones, none of which have virus scanning or
can't get it implemented correctly. People switch ISPs looking for better
The project is to set up a dns server to list spam-vertised domain
names, plus all of the opt-in services domain names.
Right. And are you successfully updating the name server at this
point? This was some of the confusion: some people were giving
suggestions for DNS server
Right again, but we want to use the native Windows API call, which
we know is there, for a few different reasons. We will also want
GetHostByAddr functionality incase we want to index spam-vertised IP
numbers.
Gotcha. So...
Sounds like the COM objects for ASP, and either COM or
We hold at a weight of 10 and delete at 20 and I use Spam review to clean
out the hold folder. I have noticed lately that sometimes a message shows
that it has failed only one test and has a weight of 10+ (we have no single
test with a weight of 10) so obviously I am not getting all of the tests
Hello all. Does anyone follow this list?
Is if very useful?
It seems it is hard to follow.
John Tolmachoff MCSE, CSSA
IT Manager, Network Engineer
RelianceSoft, Inc.
Fullerton, CA 92835
www.reliancesoft.com
---
[This E-mail was scanned for viruses by Declude Virus (http://www.declude.com)]
Hello all. Does anyone follow this list?
In the past I did.
Is if very useful?
I found it to be of very little use -- although there was a bit of useful
information, :
It seems it is hard to follow.
it was nearly impossible to find the good information. It's about 99.9%
junk, with
I need some help figuring out why
this was marked as spam. I have attached the headers.
Received: from jck [208.51.24.65]
by sunline.net (SMTPD32-7.11) id A91C41610100; Tue, 28 Jan 2003
12:08:44 -0500Message-ID: 001401c2c6ef$ffe757f0$[EMAIL PROTECTED]From:
"Jason" [EMAIL PROTECTED]To:
Scott:
Here is an example message result.
Here is what the log file shows:
01/30/2003 09:32:43 Q53873aa Msg failed HELOBOGUS (Domain terminal has no
MX/A records.).
01/30/2003 09:32:43 Q53873aa Msg failed BADHEADERS (This E-mail was sent
from a broken mail client [804e].).
01/30/2003
It is extremely difficult to tell why it was marked as spam just by the
headers (unless you have an X-Spam-Tests-Failed: header).
What you would need to do in this case is look at the Declude JunkMail log
file to see which test(s) it failed.
-Scott
At 01:39 PM
Add this line in the Global.cfg:
XINHEADER X-Tests-Failed: %TESTSFAILED%
John Tolmachoff MCSE, CSSA
IT Manager, Network Engineer
RelianceSoft, Inc.
Fullerton, CA 92835
www.reliancesoft.com
-Original Message-
From: [EMAIL PROTECTED] [mailto:Declude.JunkMail-
[EMAIL PROTECTED]]
Hi;
Are you interested in knowing the tests that have failed or which items
within a test have failed.
I don't think you can know all the items (e.g. filters) that you have and
which ones have failed.
If you have a filter file then the header will only show one of the filters
and not all the
Scott:
This is actually coming from the $default$.junkmail file from the following
line:
REVDNS WARN [Possibly SPAM - Failed RDNS lookup]
Should I change that.
Chuck Schick
Warp 8, Inc.
303-421-5140
www.warp8.com
Ouch -- you need to fix that second header (which is a broken
This is actually coming from the $default$.junkmail file from the following
line:
REVDNS WARN [Possibly SPAM - Failed RDNS lookup]
Should I change that.
Yes, that's exactly what you need to change.
The line REVDNSWARN [Possibly SPAM - Failed RDNS lookup]
tells
I want to whitelist an entire domain on my mail
server to allow all messages to come to it...
i am running declude hijack, junkmail, and
virus
I would like to keep virus but turn off junkmail
for a specific domain...
I have the following line at the bottom of my
global config...
I am pretty sure we can view messages in the spool directory, but I cannot
find anything in archives. Can somebody let me know where I can find a
utility which will help viewing messages?
Ron
---
[This E-mail was scanned for viruses by Declude Virus (http://www.declude.com)]
---
This E-mail
I thought those contained plain text and could be opened with a standard text editor?
Keith Purtell, Web/Network Administrator
VantageMed Operations (Kansas City)
Email: [EMAIL PROTECTED]
CONFIDENTIALITY NOTICE: This email message, including any attachments, is for the sole
use of the
intended
Notepad.exe
John Tolmachoff MCSE, CSSA
IT Manager, Network Engineer
RelianceSoft, Inc.
Fullerton, CA 92835
www.reliancesoft.com
-Original Message-
From: [EMAIL PROTECTED] [mailto:Declude.JunkMail-
[EMAIL PROTECTED]] On Behalf Of Ron Harris
Sent: Thursday, January 30, 2003 2:20 PM
Unless you add a line WHITELIST TO [EMAIL PROTECTED], E-mail to the
postmaster@ account will still get scanned.
Postmaster is whitelisted...
You've got a number of options here -- you could blacklist in Declude
JunkMail, based on the return address or IP of the remote mailserver, or
you
I use a product called wintail for Windows (like tail from Unix), it is available from
www.wintail.com for free. It allows you to look realtime a spool file while the
connections are being made, thus not having to open notepad up, close it, open it,
etc. Good luck,
Keith
Could I use this WHITELIST TODOMAIN @domain.com to add to the
global config for each domain that we don't want to scan (virtual hosted)
due to the customer not wanting SPAM filtered mail and by which cutting
down on Junkmail's processing time.
You can use the WHITELIST TODOMAIN
Scott,
why is there a limit on such whitelist commands...
the manual talks about 100 or so...
why can we have a text file to control access...
domain junkmail virus hijack
default is all domains all on if licensed...
domain.com on,on,on
Just a suggestion...
would be awesome to have that
Hi there,
Please help me understand the syntax of:
IPNOTINMX ipnotinmx x x 0 -4
In our case we very often see this test failing together with Base 64 and
Sniffer or Spamcop but because of the negative value the total weight gets
reduced and the message goes through.
Hi Scott:
I believe I found a bad link in your IPWHOIS lookup.
I had to update my SWIP entry and your site had cached the old answer. When
trying to use the get fresh results link - I suddenly ended up on a screen
that convinced me that my Backbone Provider had deleted my entry entirely.
I have compiled the first public beta of MIAMI, which is a Declude Virus
log analyzer. (see previous posts)
At this point Declude JunkMail is not included, but when it is, I feel it
will be the coolest thing yet.
I was planning on programming the web side of things in PHP, but since
everything
25 matches
Mail list logo
