. It's still unsolicited, so
it's valid data.
--
Kelson Vibber
SpeedGate Communications www.speed.net
___
NOTE: If there is a disclaimer or other legal boilerplate in the above
message, it is NULL AND VOID. You may ignore it.
Visit http
in your address, then go over it to check for typos.
Not to say you shouldn't do it, of course -- some sort of obfuscation is
practically a necessity these days -- but it *is* a trade-off that can
impact usability.
--
Kelson Vibber
SpeedGate Communications www.speed.net
, just let it run through the normal filter path.
This is how SpamAssassin's whitelist_from_spf and whitelist_from_dkim
methods work. (Well, mostly. It still runs through the regular
filters, just subtracts a bunch of points at the end.)
--
Kelson Vibber
SpeedGate Communications www.speed.net
their
privacy, you should expect your own ISP to snoop on *your* email and
invade *your* privacy.
If you want your own ISP to respect your privacy, it's a bit
counterproductive to advocate that other ISPs violate their users'.
--
Kelson Vibber
SpeedGate Communications www.speed.net
-positives.
Agreed. One might say, Watch out for false positives.
--
Kelson Vibber
SpeedGate Communications www.speed.net
___
NOTE: If there is a disclaimer or other legal boilerplate in the above
message, it is NULL AND VOID. You may ignore it.
Visit
it, and I know Thunderbird will read it. I'm
not sure how widely it's supported in other clients, though.
--
Kelson Vibber
SpeedGate Communications www.speed.net
___
NOTE: If there is a disclaimer or other legal boilerplate in the above
message
the SARE rules. I haven't done
so myself, since I was already running RDJ -- it ain't broke -- but I
found info on how to set it up here:
http://daryl.dostech.ca/sa-update/sare/sare-sa-update-howto.txt
--
Kelson Vibber
SpeedGate Communications www.speed.net
legit words that contain blacklisted words. Looking for
cialis will trigger on specialist, for instance.
--
Kelson Vibber
SpeedGate Communications www.speed.net
___
NOTE: If there is a disclaimer or other legal boilerplate in the above
message, it is NULL
exist.
For instance, if we get mail with an envelope sender of
[EMAIL PROTECTED], I don't think it even gets as far as MIMEDefang.
--
Kelson Vibber
SpeedGate Communications www.speed.net
___
NOTE: If there is a disclaimer or other legal boilerplate
to
figure out what you can pull out of the object to get the country info.
IS SPAM is probably in there too, but you could also calculate it by
checking whether $hits = $req.
--
Kelson Vibber
SpeedGate Communications www.speed.net
___
NOTE
(which will probably require a newer version
of MIMEDefang), since you're basically checking for 20-year-old spam.
--
Kelson Vibber
SpeedGate Communications www.speed.net
___
NOTE: If there is a disclaimer or other legal boilerplate in the above
message
do.
So yeah, '=' will show up in the LHS of a significant number of legit
envelope senders.
--
Kelson Vibber
SpeedGate Communications www.speed.net
___
NOTE: If there is a disclaimer or other legal boilerplate in the above
message, it is NULL
R.Linga Reddy wrote:
I want to install on Red hat fedora core 5, will it (Mime Defang )
support. Please suggest me.
I don't see why not. Fedora Core 5 includes a version of Sendmail with
milter support, and includes Perl. So it should work.
--
Kelson Vibber
SpeedGate Communications
servers.
--
Kelson Vibber
SpeedGate Communications www.speed.net
___
NOTE: If there is a disclaimer or other legal boilerplate in the above
message, it is NULL AND VOID. You may ignore it.
Visit http://www.mimedefang.org and http
and spam.) This seems
like a clear-cut case of the latter.
--
Kelson Vibber
SpeedGate Communications www.speed.net
___
NOTE: If there is a disclaimer or other legal boilerplate in the above
message, it is NULL AND VOID. You may ignore it.
Visit http
on this at all.
--
Kelson Vibber
SpeedGate Communications www.speed.net
___
NOTE: If there is a disclaimer or other legal boilerplate in the above
message, it is NULL AND VOID. You may ignore it.
Visit http://www.mimedefang.org and http://www.roaringpenguin.com
Jim McCullars wrote:
I just tried running sa-update for the first time and I got the new rules,
but MD doesn't seem to be using them.
Someone posted a patch for mimedefang.pl a week or two ago... or you can
install the 2.57 beta
--
Kelson Vibber
SpeedGate Communications www.speed.net
, and if they send you a new copy of the virus
every five minutes, you only need to scan it once a day until they clean
the system or the virus stops sending.
--
Kelson Vibber
SpeedGate Communications www.speed.net
___
NOTE: If there is a disclaimer or other
), let it run multiple passes. Sometimes
if the hardware is borderline, it can take a while to trigger a problem.
When I've got a system acting suspiciously, I'll just let Memtest86 run
overnight. Or occasionally even over the weekend.
--
Kelson Vibber
SpeedGate Communications www.speed.net
, so they don't think the
message went through.
--
Kelson Vibber
SpeedGate Communications www.speed.net
___
NOTE: If there is a disclaimer or other legal boilerplate in the above
message, it is NULL AND VOID. You may ignore it.
Visit http
is another one (IIRC)
--
Kelson Vibber
SpeedGate Communications www.speed.net
___
NOTE: If there is a disclaimer or other legal boilerplate in the above
message, it is NULL AND VOID. You may ignore it.
Visit http://www.mimedefang.org and http
.
--
Kelson Vibber
SpeedGate Communications www.speed.net
___
NOTE: If there is a disclaimer or other legal boilerplate in the above
message, it is NULL AND VOID. You may ignore it.
Visit http://www.mimedefang.org and http://www.roaringpenguin.com
MIMEDefang
://antispam.yahoo.com/faqs#a15
--
Kelson Vibber
SpeedGate Communications www.speed.net
___
NOTE: If there is a disclaimer or other legal boilerplate in the above
message, it is NULL AND VOID. You may ignore it.
Visit http://www.mimedefang.org and http
rejection policies that you can apply in
filter_begin, do those before the call to stream_by_recipient.
That way you can still issue SMTP rejections in most cases, and bounces
are limited to specific circumstances.
--
Kelson Vibber
SpeedGate Communications www.speed.net
half a chance of reading it, or
would HTML still be more evil, because of the potential as an attack
vector given a sufficiently insecure client?
Inquiring minds want to know!
--
Kelson Vibber
SpeedGate Communications www.speed.net
___
NOTE
webmaster wrote:
nope. I searched my entire server and did not find it. where can I get a
copy?
It's installed by MIMEDefang.
If you haven't run make install yet, then you probably won't find it.
--
Kelson Vibber
SpeedGate Communications www.speed.net
John Nemeth wrote:
What anti-spam laws? The CAN-SPAM act is just that. It actually
legalises spam. As long as you follow the rules (including opt-out
provisions) you're free to spam to your heart's content.
Fortunately, we're free to block them to our hearts' content, too.
--
Kelson
with
textarea (even checkboxes and radio buttons). That way you can try
passing the script multi-line fields and see whether it accepts the
extra lines, strips them out, or converts the newlines to spaces and
wraps the extra-long headers.
--
Kelson Vibber
SpeedGate Communications www.speed.net
David F. Skoll wrote:
MIMEDefang 2.56 is available at http://www.mimedefang.org/node.php?id=1
This is a bug-fix release; changelog relative to 2.55 follows.
The GPG signature appears to be 404...
--
Kelson Vibber
SpeedGate Communications www.speed.net
, because chances are that the resulting FQDN
doesn't exist if you're dealing with a home computer named by the end user.
This of course can be resolved by requiring SMTP-AUTH, but when you
still have half your users on POP-before-SMTP, it limits your options a bit.
--
Kelson Vibber
SpeedGate
blocked, dropped,
or hidden. Why waste the time and bandwidth? It may not be your own
connection anymore, but hey, access to those botnets costs money!
--
Kelson Vibber
SpeedGate Communications, www.speed.net
___
NOTE: If there is a disclaimer or other
That starts a sendmail process that will run through the queue once.
--
Kelson Vibber
SpeedGate Communications, www.speed.net
___
NOTE: If there is a disclaimer or other legal boilerplate in the above
message, it is NULL AND VOID. You may ignore it.
Visit
Kenneth Porter wrote:
--On Thursday, December 29, 2005 12:23 PM -0800 Kelson Vibber wrote:
There is also confMAX_RCPTS_PER_MESSAGE, which limits the total number of
recipients any message can target. But that includes valid recipients.
Is that a global setting or can that be configured based
look into Sendmail's BAD_RCPT_THROTTLE feature. It
doesn't block them, but it'll slow them down a bit.
--
Kelson Vibber
SpeedGate Communications www.speed.net
___
NOTE: If there is a disclaimer or other legal boilerplate in the above
message, it is NULL
involved. ;-)
Unless this Sober variant sends another round of neo-Nazi propaganda, I
wouldn't presume any connection. And even if it does... you're probably
right, and the connection is just money.
--
Kelson Vibber
SpeedGate Communications www.speed.net
in formatting, so they're
getting displayed as negative integers instead of dotted quads.
--
Kelson Vibber
SpeedGate Communications www.speed.net
___
Visit http://www.mimedefang.org and http://www.roaringpenguin.com
MIMEDefang mailing list
MIMEDefang
actually on the
system. But sometimes it's trying to save you headaches down the road.
--
Kelson Vibber
SpeedGate Communications www.speed.net
___
Visit http://www.mimedefang.org and http://www.roaringpenguin.com
MIMEDefang mailing list
MIMEDefang
' prospective customers
have to jump through more hoops. At that point, blocking images becomes
the only sure solution, but it's a tough policy to implement for, say,
an ISP.
--
Kelson Vibber
SpeedGate Communications www.speed.net
___
Visit http
of these are still around, and I never thought it
was a good idea -- and you can definitely argue that it's a malicious
config!
--
Kelson Vibber
SpeedGate Communications www.speed.net
___
Visit http://www.mimedefang.org and http://www.roaringpenguin.com
MIMEDefang
, and
people who moved into it had to deal with traffic and mail being
rejected because it was obviously forged. It wasn't resolved quickly,
either. IIRC it took some sites months (or longer) to catch up.
--
Kelson Vibber
SpeedGate Communications www.speed.net
was seeing things
where they'd changed the recipient from [EMAIL PROTECTED] to
[EMAIL PROTECTED],[EMAIL PROTECTED] -- which would still match
/[EMAIL PROTECTED]/
--
Kelson Vibber
SpeedGate Communications www.speed.net
___
Visit http
training the same database you'll be using!
--
Kelson Vibber
SpeedGate Communications www.speed.net
___
Visit http://www.mimedefang.org and http://www.roaringpenguin.com
MIMEDefang mailing list
MIMEDefang@lists.roaringpenguin.com
http
an intermediate relay would.
--
Kelson Vibber
SpeedGate Communications www.speed.net
___
Visit http://www.mimedefang.org and http://www.roaringpenguin.com
MIMEDefang mailing list
MIMEDefang@lists.roaringpenguin.com
http://lists.roaringpenguin.com/mailman/listinfo
or if you have another
server handing incoming mail to the MIMEDefang server, you will be stuck
generating bounce notices, most of which will end up going to forged
senders.
--
Kelson Vibber
SpeedGate Communications www.speed.net
___
Visit http
.
As for scanning accuracy, action_delete_header doesn't take effect until
MD sends the message back to Sendmail, so SA will see the original
headers anyway.
--
Kelson Vibber
SpeedGate Communications www.speed.net
___
Visit http://www.mimedefang.org and http
would still be getting the User unknown NDRs if we weren't rejecting
them in filter_sender.
--
Kelson Vibber
SpeedGate Communications www.speed.net
___
Visit http://www.mimedefang.org and http://www.roaringpenguin.com
MIMEDefang mailing list
SMTP
connections. All a virus (or spam zombie) has to do is extract the
settings from the user's mail config and send via the ISP's relay.
Depending on how the app stores the password, it may even be possible to
use SMTP AUTH.
--
Kelson Vibber
SpeedGate Communications www.speed.net
. I seriously expected it to be Debian 4.0.)
--
Kelson Vibber
SpeedGate Communications www.speed.net
___
Visit http://www.mimedefang.org and http://www.roaringpenguin.com
MIMEDefang mailing list
MIMEDefang@lists.roaringpenguin.com
http
nosrc RPMs for some package that left out the tarball for bandwidth
reasons, so it should be possible.
--
Kelson Vibber
SpeedGate Communications www.speed.net
___
Visit http://www.mimedefang.org and http://www.roaringpenguin.com
MIMEDefang mailing list
.
--
Kelson Vibber
SpeedGate Communications www.speed.net
___
Visit http://www.mimedefang.org and http://www.roaringpenguin.com
MIMEDefang mailing list
MIMEDefang@lists.roaringpenguin.com
http://lists.roaringpenguin.com/mailman/listinfo/mimedefang
.
--
Kelson Vibber
SpeedGate Communications www.speed.net
___
Visit http://www.mimedefang.org and http://www.roaringpenguin.com
MIMEDefang mailing list
MIMEDefang@lists.roaringpenguin.com
http://lists.roaringpenguin.com/mailman/listinfo/mimedefang
Kevin A. McGrail wrote:
Where did DECnet pick up the term?
From Monty Python's Spamalot/SpamSPAMspamSpam Eggs.
...which brings us back to spam having its origins in negative
commentary on SPAM.
Or at least negative commentary on an *excess* of SPAM.
--
Kelson Vibber
SpeedGate
Ian Mitchell wrote:
Always curious how someone who owns a trademark feels when they're
trademark is essentially hijacked by a community as a whole for use to
describe the bain of all existance ;)
Yeah. When you think about it, Kleenex, Xerox, and Styrofoam have had
it *easy*.
--
Kelson
in the next link should
solve the problem.
http://wiki.apache.org/spamassassin/TrustPath
There are bugs in SA that cause ALL_TRUSTED to fire incorrectly for some
people, but your best bet is to set trusted_networks first, and only
disable ALL_TRUSTED if that isn't enough.
--
Kelson Vibber
is important for more than just that one rule.
--
Kelson Vibber
SpeedGate Communications www.speed.net
___
Visit http://www.mimedefang.org and http://www.canit.ca
MIMEDefang mailing list
MIMEDefang@lists.roaringpenguin.com
http://lists.roaringpenguin.com
even
entertain the notion of permitting executables in via e-mail.)
Zip file containing whatever.txtbunch-of-spaces.pif
One got into my mailbox before freshclam picked up the signature, so I
had a chance to take a look at it.
--
Kelson Vibber
SpeedGate Communications www.speed.net
scanning in
filter_begin or filter_end, right? Those get triggered in the DATA
phase. The virtusertable lookups should be done for each RCPT TO. If
there are no valid recipients, will sendmail even accept anything for DATA?
Or am I just completely confused here as to the process?
--
Kelson Vibber
copies of Sober.P get through on Monday
morning during the half-hour between the first hit and the first
freshlcam after ClamAV added the signature.
Of course, by get through I mean get defanged instead of discarded
outright -- so it could have been considerably worse.
--
Kelson Vibber
for future reference
--
Kelson Vibber
SpeedGate Communications www.speed.net
___
Visit http://www.mimedefang.org and http://www.canit.ca
MIMEDefang mailing list
MIMEDefang@lists.roaringpenguin.com
http://lists.roaringpenguin.com/mailman/listinfo/mimedefang
was added or from another source, I forget which) and had the
sense not to open it... but forwarded it to their network consultant,
asking Is this a virus?
The main nuisance Sober has caused here has been all the bogus bounces.
--
Kelson Vibber
SpeedGate Communications www.speed.net
, and then CONTINUE for
everything else, letting sendmail take care of the rest.
--
Kelson Vibber
SpeedGate Communications www.speed.net
___
Visit http://www.mimedefang.org and http://www.canit.ca
MIMEDefang mailing list
MIMEDefang@lists.roaringpenguin.com
a filter.
I'm not saying the motivation won't be there, just that it won't be very
strong when there's a guaranteed multi-year transition period in which
the old standard will still get the mail through.
--
Kelson Vibber
SpeedGate Communications www.speed.net
certain conditions.
--
Kelson Vibber
SpeedGate Communications www.speed.net
___
Visit http://www.mimedefang.org and http://www.canit.ca
MIMEDefang mailing list
MIMEDefang@lists.roaringpenguin.com
http://lists.roaringpenguin.com/mailman/listinfo/mimedefang
on Sender-ID basics, including the PRA header that Mark
mentioned -- at http://spf.pobox.com/senderid.html
--
Kelson Vibber
SpeedGate Communications www.speed.net
___
Visit http://www.mimedefang.org and http://www.canit.ca
MIMEDefang mailing list
MIMEDefang
that are not sent from an approved server should still be accepted but
may be subjected to greater scrutiny.
--
Kelson Vibber
SpeedGate Communications www.speed.net
___
Visit http://www.mimedefang.org and http://www.canit.ca
MIMEDefang mailing list
MIMEDefang
side of the
return address. So it *looks* like a FQDN, but chances are it isn't.
--
Kelson Vibber
SpeedGate Communications www.speed.net
___
Visit http://www.mimedefang.org and http://www.canit.ca
MIMEDefang mailing list
MIMEDefang
/Exchange have an annoying tendency to sanitize
out the useful error with a generic one, but I do know it at least makes
it out the door.
--
Kelson Vibber
SpeedGate Communications www.speed.net
___
Visit http://www.mimedefang.org and http://www.canit.ca
.
That, on the other hand, sounds like it could be useful, if you get a
lot of virus traffic.
--
Kelson Vibber
SpeedGate Communications www.speed.net
___
Visit http://www.mimedefang.org and http://www.canit.ca
MIMEDefang mailing list
MIMEDefang
for mimedefang-filter).
--
Kelson Vibber
SpeedGate Communications www.speed.net
___
Visit http://www.mimedefang.org and http://www.canit.ca
MIMEDefang mailing list
MIMEDefang@lists.roaringpenguin.com
http://lists.roaringpenguin.com/mailman/listinfo/mimedefang
down
their servers.) I could be misremembering, though.
--
Kelson Vibber
SpeedGate Communications www.speed.net
___
Visit http://www.mimedefang.org and http://www.canit.ca
MIMEDefang mailing list
MIMEDefang@lists.roaringpenguin.com
http
at that said it only ran on Linux?
--
Kelson Vibber
SpeedGate Communications www.speed.net
___
Visit http://www.mimedefang.org and http://www.canit.ca
MIMEDefang mailing list
MIMEDefang@lists.roaringpenguin.com
http://lists.roaringpenguin.com/mailman
and Habeas, forgeries are much
harder than they used to be, so it depends on how much you trust their
criteria and their verification process.
--
Kelson Vibber
SpeedGate Communications www.speed.net
___
Visit http://www.mimedefang.org and http://www.canit.ca
problems aside from the occasional log
clutter.
--
Kelson Vibber
SpeedGate Communications www.speed.net
___
Visit http://www.mimedefang.org and http://www.canit.ca
MIMEDefang mailing list
MIMEDefang@lists.roaringpenguin.com
http
, aliases, random
redirectors, etc.
That said, I do see websites *cough*Mandrake*cough* getting these mixed
up from time to time.
--
Kelson Vibber
SpeedGate Communications www.speed.net
___
Visit http://www.mimedefang.org and http://www.canit.ca
and Mockery Act. :D
Disclaimer: All spelling errors are intentional. Except the ones that
aren't. Your 'musement may vary.
--
Kelson Vibber
SpeedGate Communications www.speed.net
___
Visit http://www.mimedefang.org and http://www.canit.ca
MIMEDefang mailing
Paul wrote:
SpamAssassin 3.0.2 is released! 3.0.2 contains some important
bugfixes, and is recommended.
Anybody try this one with MD yet? If so, any issues, comments?
No issues here.
--
Kelson Vibber
SpeedGate Communications www.speed.net
___
Visit
SHell. If you set an
account to use smrsh as its shell, then the user can only run the
programs you specify -- and that includes programs called through procmail.
--
Kelson Vibber
SpeedGate Communications www.speed.net
___
Visit http://www.mimedefang.org
of Someone sent
you a virus, but we deleted it.
--
Kelson Vibber
SpeedGate Communications www.speed.net
___
Visit http://www.mimedefang.org and http://www.canit.ca
MIMEDefang mailing list
[EMAIL PROTECTED]
http://lists.roaringpenguin.com/mailman/listinfo
Kelson wrote:
To underscore the point a bit more fully, here's a post by one of a
Mozilla developer
... make that a post by *a* Mozilla developer ...
Beware large friendly toolbars. If you happen to sneeze while reaching
for the menu, you just might hit Send by mistake
--
Kelson Vibber
David F. Skoll wrote:
On Thu, 11 Nov 2004, Kelson wrote:
I've searched through my filter, and every single open call is inside a
function. Despite this, I still get the Something in your Perl filter
appears to have opened a file descriptor outside of any function
warning in my logs.
Are you
action_discard();
^^
Since you're calling return with the result of action_discard, it will
leave filter_end. So yes, it should do what you want.
(If you're concerned, just use an if...elsif structure.)
--
Kelson Vibber
SpeedGate Communications www.speed.net
and a few others, and defang other bad filenames
after some extra checks on files like whatever.com proposal.doc or
cnn.com.html
--
Kelson Vibber
SpeedGate Communications www.speed.net
___
Visit http://www.mimedefang.org and http://www.canit.ca
itself isn't license/patent/etc.
encumbered, but Microsoft's sections are. (Though reportedly less so
than they were originally. Something to research when I have time...)
--
Kelson Vibber
SpeedGate Communications www.speed.net
___
Visit http
prefer to roll
my own RPMs, which essentially automates the process of copying over the
binaries and config files (plus it removes any outdated files as well.)
When I do have to build something on a production server, I generally
build it as a non-privileged user at low priority.
--
Kelson
on the wrng Received headers.
--
Kelson Vibber
SpeedGate Communications www.speed.net
___
Visit http://www.mimedefang.org and http://www.canit.ca
MIMEDefang mailing list
[EMAIL PROTECTED]
http://lists.roaringpenguin.com/mailman/listinfo/mimedefang
into SA 3.0.
--
Kelson Vibber
SpeedGate Communications www.speed.net
___
Visit http://www.mimedefang.org and http://www.canit.ca
MIMEDefang mailing list
[EMAIL PROTECTED]
http://lists.roaringpenguin.com/mailman/listinfo/mimedefang
a banking site cause
problems it was just broken browser detection, not IE-only code. (It
wanted me to upgrade to Netscape 6 before it would let me in.)
--
Kelson Vibber
SpeedGate Communications www.speed.net
___
Visit http://www.mimedefang.org and http
in
2.45? Why have a separate function?
--
Kelson Vibber
SpeedGate Communications www.speed.net
___
Visit http://www.mimedefang.org and http://www.canit.ca
MIMEDefang mailing list
[EMAIL PROTECTED]
http://lists.roaringpenguin.com/mailman/listinfo
(a) have the client queue-runner
active and (b) avoid running locally-generated mail through SpamAssassin.
Alternatively, you can quarantine the message (using
quarantine_entire_message) instead of sending it to your postmaster.
--
Kelson Vibber
SpeedGate Communications www.speed.net
jpeg virus and 0.75?
From: Tomasz Kojm [EMAIL PROTECTED]
Will there be an updated signature for the new jpeg virus for the
0.75 series of ClamAV?
No, there will not - only 0.8x can detect JPEG exploits.
--
Kelson Vibber
SpeedGate Communications www.speed.net
)) {
my $path = $bh-path();
if (defined($path)) {
--
Kelson Vibber
SpeedGate Communications www.speed.net
___
Visit http://www.mimedefang.org and http://www.canit.ca
MIMEDefang mailing list
[EMAIL PROTECTED]
http
your favorite method for finding one item in a list. (array, hash,
regexp, etc.)
You only *really* need to use filter_relay if you want to act on the
info before SMTP DATA.
--
Kelson Vibber
SpeedGate Communications www.speed.net
___
Visit http
it itself --
which accomplishes the same thing. (Assuming you have the right options
set in clamav.conf -- er, clamd.conf for 0.80)
--
Kelson Vibber
SpeedGate Communications www.speed.net
___
Visit http://www.mimedefang.org and http://www.canit.ca
MIMEDefang
spamd would just
be extra overhead.
--
Kelson Vibber
SpeedGate Communications www.speed.net
___
Visit http://www.mimedefang.org and http://www.canit.ca
MIMEDefang mailing list
[EMAIL PROTECTED]
http://lists.roaringpenguin.com/mailman/listinfo/mimedefang
so
that only a few rules will actually be visible in the report. (At the
time it was written, that capability wasn't available.)
--
Kelson Vibber
SpeedGate Communications www.speed.net
___
Visit http://www.mimedefang.org and http://www.canit.ca
-- well over half-way to the 8K limit. Throw in the report
header and footer and a few other rules and you can hit 8K easily.
--
Kelson Vibber
SpeedGate Communications www.speed.net
___
Visit http://www.mimedefang.org and http://www.canit.ca
MIMEDefang
Your mail server sent us a virus!
messages when it's obvious from the headers (which are generally
attached) that our server *didn't* send it. Sometimes I'll even write
it in the style of the notice they sent.
I don't know if it does any good, but it helps let off steam sometimes.
--
Kelson
Johann wrote:
append_text_boilerplate($entity, Scanned for viruses, trojans and
worms. Verified clean by Sophos Antivirus . /n Legal mumbo-jumbo
here., 0);
I tried with the /n both inside and outside of the quotes.
Inside the quotes, and \n, not /n.
--
Kelson Vibber
SpeedGate Communications
to put
a check in filter_end right before SA is called.
In either case, you can find examples in the list archives.
--
Kelson Vibber
SpeedGate Communications www.speed.net
___
Visit http://www.mimedefang.org and http://www.canit.ca
MIMEDefang mailing list
it in the local mailbox.
As for spam checking, I'll second Gordon's recommendation of
SpamAssassin www.spamassassin.org. ClamAV www.clamav.net works very
well as a virus scanner and does frequent updates.
--
Kelson Vibber
SpeedGate Communications www.speed.net
1 - 100 of 159 matches
Mail list logo
