Only thing I can think of is from monitor mode...copy over the
flash with tftp.
Otherwise you have to call cisco support and get an erase
utility.
- Original Message -
From:
S.J.Stanaitis
To: Declude.JunkMail@declude.com
Sent: Monday, November 28, 2005 2:00
PM
Su
ice you are using may send your message
through multiple servers on their end?
Darrell
----
DLAnalyzer - Comprehensive reporting for Declude Junkmail and Virus. Try
it
today - http://www.invariantsystems.com
Doug Anders
lude.JunkMail] example
> Doug,
>
> Is it possible that the spam service you are using may send your message
> through multiple servers on their end?
>
> Darrell
>
> ----
> DLAnalyzer - Comprehensive
Does anyone have an example of a declude junkmail config file
they can share which has a inbound from a gateway server?
We have an external service scanning the emails for virus and
spam (adding x-header only). So our mx record points to them. They
then
send the email via smtp to us.
What I
Alright, due to "management decisions" they want me to test a
product from sprint for spam and virus protection.
It is setup a pre-cursor to our imail and declude setup, but
is only set to add a x-header into the email.
Since I've done this, more spam seems to be coming through. Do
I need
Anyone use Postini before? in addition to?
New manager wants to look at it
Comments?
om
(Ipswitch)Sent:
Thursday, February 24,
2005 12:48
PMTo:
IMail_Forum@list.ipswitch.comSubject: Re: [IMail Forum] odd
behavior
Says ameripride.org is on the
whitelist (decludes not IMail's)
Eric S
- Original Message -
To: IMail_Forum@list.ipswitch.com
Sent: Thursday, February 24, 2005 2:48
PM
Subject: Re: [IMail Forum] odd
behavior
Says ameripride.org is on the whitelist (decludes
not IMail's)
Eric S
- Original Message -
From:
Doug Anderson
To: I
Anyone use the xbl db from spamhaus? Good, bad,
otherwise?
Since it's openldap, check the event log/viewer and then goto
eventid.net and lookup the source and Event ID.
- Original Message -
From:
Dave Doherty
To: [EMAIL PROTECTED]
Sent: Monday, November 29, 2004 8:53
AM
Subject: [Declude.JunkMail] LDAP Error 19
/ Re
I'm wondering, would any valid corporate email contain http://%
Any valid reasons these would be in a corporate
email?
Title: Message
upgrade manual is in the zip.
- Original Message -
From:
Alejandro
Valenzuela
To: [EMAIL PROTECTED]
Sent: Monday, October 04, 2004 2:29
PM
Subject: [Declude.JunkMail] Upgrading
from 1.78 to 1.81
Last
upgrades from declude, where a singl
vb code to give you a dos error code
In your declares use
Private Declare Sub ExitProcess Lib "kernel32" (ByVal uExitCode As Long)
and then call
ExitProcess 2
- Original Message -
From: "Dave Doherty" <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Sent: Sunday, August 22, 2004 10:55 PM
Sub
Actually Russ, ICMP still works. Can you ping 127.0.0.1, the local loop
back? Can you ping other items on your local network?
It comes down intranet vs internet separated by a firewall. Many
corporations kill ICMP externally, but it works fine
internally and is used as intended OR they allow outgoi
We block all incoming and outgoing icmp traffic. A live reg should check at
80 or 443 because that typical allowable outbound traffic in my opinion.
- Original Message -
From: "Sanford Whiteman" <[EMAIL PROTECTED]>
To: "Scott Fisher" <[EMAIL PROTECTED]>
Sent: Friday, July 09, 2004 11:47 A
Admin server can not be reached...Error 3592. Need any special
ports open or anything?
- Original Message -
From:
Jay
Calvert
To: [EMAIL PROTECTED]
Sent: Friday, July 09, 2004 10:49
AM
Subject: Re: [Declude.JunkMail] Fw: New
Multiple Threat Lookup Database tes
anywhere in the
chain.
Let me know if it makes sense or
not.
Thanks,
Dan Geiser
[EMAIL PROTECTED]
- Original Message -
From:
Doug Anderson
To: [EMAIL PROTECTED]
Sent: Friday, July 09, 2004 10:52
AM
Subject: [Declude.Ju
After looking at the manual/archives and getting a little
more confused I've decided to consult the masses.
What would be the easiest way of adding a few points for
emails NOT orgininating from Canada, US, and Mexico?
We have users in all three areas so I'm guessing the
nonenglish won't work
> 'Phishing' scams luring more users
> By Munir Kotadia
>
> Security firm MessageLabs says the number of e-mails that use the
deceptive tactic has increased from 279 to 215,643 over the past six months.
>
> http://news.com.com/2100-7355-5194807.html?tag=sas.email
>
> ---
web trends firewall suite maybe?
- Original Message -
From: "Kevin Bilbee" <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Sent: Tuesday, March 30, 2004 2:43 PM
Subject: [Declude.JunkMail] OT: Internet Usage Monitoring
> Management wants to do web usage mainitoring. They do not at this time
We have mcafee at our location. I understand that I can use declude virus
with it - but got some questions
1. which version of mcafee should I use? I have access to both the windows
Virus Scan Enterprise 7.1.0 and the dos based Version 4.3.20.
2. If the suggestion is dos based 4.3.20, does anyone h
I just got a wave of pif's, scr's, com's, exe's
both mcaffee and symantec had updates for a new netsky variant
- Original Message -
From: "Dave Doherty" <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Sent: Wednesday, February 25, 2004 1:35 PM
Subject: [Declude.JunkMail] Haeds up!
> I've go
Is there a test out there that checks for an email address in
the subject line?
Example:
Jon Doe gets an email. In the subject line it has:
Card #29546 - Award Pending for [EMAIL PROTECTED]
I'm seeing alot more of these.
A test to match the to email address and subject contains
New ONE
Moving fast!
Virus Warning - [EMAIL PROTECTED]
---
[This E-mail was scanned for viruses by Declude Virus (http://www.declude.com)]
---
This E-mail came from the Declude.JunkMail mailing list. To
unsubscribe, just send an E-mail to [EMAIL PROTECTED], and
type "unsubscribe Declude.JunkMail"
check in global for
WHITELIST HABEAS
Spammers are putting Habeas headers in to their mail...we've reported 3 of
them today to www.habeas.com.
- Original Message -
From: "R. Scott Perry" <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Sent: Wednesday, February 18, 2004 11:40 AM
Subject: Re: [
Do you have read access to the router's snmp community? if you doMRTG
gives some great stats
- Original Message -
From: "Omar K." <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Sent: Wednesday, February 04, 2004 9:26 PM
Subject: [Declude.JunkMail] Slightly OT: calculating bandwidth
Hel
Title: Message
I tried mime types for the "web site" and that
wasn't working. one of the emails mentioned the onlineworkshop...I forgot about
setting it for all of IIS. Now it downloads.
Thanks for all the help!
Soon to be published...ldaplst - an ldap reader /
file creator. I'll post it he
That's what I'm trying to get away from. Actually have it pop
up to open or download. my users have problems understanding right
click.
Plus I'm rewriting it so that have to enter username and
password to get to the link.
- Original Message -
From:
Kevin Bilbee
To: [EMAIL
Ok, I'm running IIS 5.0 on my imail server. I've written a
program to read the ldap and create a ldif file.
I put the ldif file (xxx.ldif) in a sub directory on the
web server and when I put a link to it, it displays it directly in the
browser.
I want it to download, not display as text.
A
http://vil.nai.com/vil/content/v_100983.htm
- Original Message -
From: "Travis Rabe" <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Sent: Monday, January 26, 2004 3:55 PM
Subject: RE: [IMail Forum] New, fast-spreading virus
> McAfee just put out new defs about 30 minutes ago.
>
> Travis
>
Hi Scott,
Symantic returns this type of message to the administrator account
Message contained a virus
Virus detected - [EMAIL PROTECTED]
The message was Deleted
The message was from <[EMAIL PROTECTED]>
The message was to [EMAIL PROTECTED]
Subject: Spam-Junk-Ad: bug announcement
Message-Id: <[EMA
Is anyone getting on either of these lists getting slammed
with [EMAIL PROTECTED] virus?
Out Symantec AV is set to email the administrator warnings.
Reading through the warnings, they're coming from everywhere
outside of the us & canada. The weird part is they're only going at the
email add
Thought I'd warn everyone
Some different/newer (I haven't seen it before) versions of
two emails are floating around
#1
From Microsoft Corporation Network Security
to Commercial customer
No subject
Attachment "UPGRADE88.exe"
It claims to be updates from microsoft.
#2
From Internet Delivery
I tried this on the normal Imail list with no answers, so I figured since
this list is more of the imail power users I'd try here
I'm trying to write a vb.net program to query the ldap and create a 3
different files from it. one is a standard csv file, next is an ldif file
for importing into Win A
Careful if using NonEnglish.
We have Spanish and French users - nonEnglish can catch them.
Don't want to piss off our friends to the north or south.
- Original Message -
From: "R. Scott Perry" <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Sent: Wednesday, December 31, 2003 1:18 PM
Subject:
We're using the beta with
PREWHITELIST ON
AUTOWHITELIST ON
WHITELIST AUTH
and it seems to do what we need. It whitelists our "Authenticated users" and
they (the users) can whitelist via their address book
- Original Message -
From: "Omar K." <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Se
Since old programmers never die, they just flip their
bits...and Unix people...I won't go there...
I have a suggestion for our declude creators out
there.
Under filters you can use CONTAINS, STARTSWITH, ENDSWITH
or IS on any of the pieces of an email. I wouldn't mind
seeing a MATCHES quali
Since old programmers never die, they just flip their
bits...and Unix people...I won't go there...
I have a suggestion for our declude creators out
there.
Under filters you can use CONTAINS, STARTSWITH, ENDSWITH
or IS on any of the pieces of an email. I wouldn't mind
seeing a MATCHES qualif
it and they are probably only being sent E-mail
> because they have done business with the site.
>
> Matt
>
>
> Doug Anderson wrote:
>
> > I'm setting up a Sender "Black list" Given the following header, what
> > would I put in my black list file?
>
I'm setting up a Sender "Black list" Given the following
header, what would I put in my black list file?
Is it the reply to or the from I need to look at?
In this instance I would like to kill everything from
quill.com, so would I just use that?
Received: from om-quill.rgc3.net [66.35.244.
>From an earthlink dsl user
Ping test
1 wltx.com 56 60 Success
2 wltx.com 56 60 Success
3 wltx.com 56 60 Success
4 wltx.com 56 60 Success
5 wltx.com 56 60 Success
trace rt
1 0 0 172.16.0.254
2 35 35 172.31.255.251
3 30 -5 192.168.5.53
4 30 0 209.247.34.177 ge-8-0-131.ipcolo1.Chicago1.Level3.net
5
I was looking at the headers and saw SPAMCOP :
Blocked
Is that how it should be - what it's returning? If not, ideas
on what could be wrong?
X-RBL-Warning: SORBS-SPAM: Spam Received See: http://www.dnsbl.sorbs.net/cgi-bin/lookup?IP=66.111.254.21X-RBL-Warning:
SPAMCOP: Blocked - see http
eclude.JunkMail] Active X
filter
What will this filter out...will it filter out
email like MyPoints.com which is not a good idea..
Richard FarrisEthixs Online1.270.247.
Office1.800.548.3877 Tech Support
- Original Message -
From:
Doug Anderson
To: [EMAIL
If anyone wants
BODY 4 CONTAINS BODY 4 CONTAINS .cab#version=BODY 4 CONTAINS
This may sound stupid, but if I create a filter searching for
a string in an email...
BODY 2 CONTAINS xyz
and the email contains 4 instances of that string
now is the xyx time for all xyz good men xyz to come
to the aid xyz of their country
does the filter return an internal value of 8 or
2?
I have the beta in place already, users all have to authenticate (no relay
what-so-ever)
Any additional settings or reg hacks?
- Original Message -
From: "R. Scott Perry" <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Sent: Monday, December 15, 2003 1:07 PM
Subject: Re: [Declude.JunkMail] wh
What is auth in the commented out whitelist?
I'm trying to bypass spam testing for internal emails on the
local network, any examples?
Right now I have in global
PREWHITELIST ONWHITELIST HABEASAUTOWHITELIST
ON#WHITELIST AUTHWHITELIST IP 192.168.0.0/22WHITELIST IP
10.1.0.0/22WHITELIST IP 1
So in Global if I have
PREWHITELIST ON
WHITELIST IP XXX.XXX.XXX.XXX/XXX
where XXX.XXX.XXX.XXX/XXX is an ip in our local range
it will bypass all spam tests?
(using 8.04 & 1.77)
- Original Message -
From: "R. Scott Perry" <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Sent: Monday, Decembe
oPPs!
I think the %REVDNS% was getting timeout because both the box and imails dns
settings were still set to the ip of the box (durning install and testing
phase) for the primary. Modified them to point to the dns server. It was the
only thing having dns issues to my knowledge (users weren't comp
so if I have in global.cfg:
PHRASESCAN external nonzero "D:\Imail\mail_ameripride_org\phrscan.exe
%REVDNS%" 10 0
it will give me:
phrscan (Private IP) c:\IMail\spool\D1234567.SMD
phrscan (timeout) c:\IMail\spool\D1234567.SMD
depending on internal emails vs external emails
or does %REVDNS% actual
Previously posted on Imail site:
> When does declude junkmail add it's xheaders? Do it add
as it conducts it's test(s)? can I conduct a test (if exists) on a previously
added header?
Maybe I should explain it better
I wrote an external phrase test program. I'm trying to come up with a way
51 matches
Mail list logo
