All,
Thank you to everyone who replied on this thread. FWIW, the issue was in fact with Net::DNS. I actually had previously had contact with him regarding other problems, but 0.51 was working for me on another system, so I was a little surprised that this was the fix. I upgraded to the newest
sc2.surbl.org, the improved version of the SpamCop SURBL list, is
ready for testing. So is the new version of xs.surbl.org, which
is now more accurate, has far fewer FPs, etc.
sc2 adds resolved IP checks, meaning sites hosted on the same
networks are detected immediately upon the first report.
From: Jeff Chan [EMAIL PROTECTED]
Is this correct as ammended? I added the TXT strings
Here are SpamAssassin 3.0.1 and later configs for using these two lists:
urirhsbl URIBL_SC2_SURBL sc2.surbl.org. TXT
body URIBL_SC2_SURBL eval:check_uridnsbl('URIBL_SC2_SURBL')
describe
On Monday, July 25, 2005, 12:33:08 AM, jdow jdow wrote:
From: Jeff Chan [EMAIL PROTECTED]
Is this correct as ammended? I added the TXT strings
Here are SpamAssassin 3.0.1 and later configs for using these two lists:
Please try:
urirhsbl URIBL_SC2_SURBL sc2.surbl.org. A127.0.0.2
body
jdow wrote:
From: Jeff Chan [EMAIL PROTECTED]
Is this correct as ammended? I added the TXT strings
Here are SpamAssassin 3.0.1 and later configs for using these two lists:
urirhsbl URIBL_SC2_SURBL sc2.surbl.org. TXT
body URIBL_SC2_SURBL eval:check_uridnsbl('URIBL_SC2_SURBL')
Le lundi 25 Juillet 2005 01:05, jdow a écrit :
christophe, you DO know that cat spam merely prints out your raw
spam file so it should not have any markup in it.
If you want to view a permanent marked up file you need to run:
spamc spam spam_marked_up
Or something like that. Remember that
OK the prior rules were still wrong. These will work:
urirhsbl URIBL_SC2_SURBL sc2.surbl.org. A
body URIBL_SC2_SURBL eval:check_uridnsbl('URIBL_SC2_SURBL')
describe URIBL_SC2_SURBL Has URI in SC2 at http://www.surbl.org/lists.html
tflagsURIBL_SC2_SURBL net
score
Am Montag, 25. Juli 2005 10:50 schrieb christophe:
Le lundi 25 Juillet 2005 01:05, jdow a écrit :
christophe, you DO know that cat spam merely prints out your raw
spam file so it should not have any markup in it.
If you want to view a permanent marked up file you need to run:
spamc spam
I have just had a bogus Microsoft update slip through the net. Is there a
rule to combat these? In any case, here's the info in case it's of use:
From: MS Technical Services [EMAIL PROTECTED]
Subject line: Newest Microsoft Critical Pack
The attachment was Upgrade9591.exe
Here's the body, minus
I have messages that give this error from sa-learn. SA is 3.0.4. Perl
is 5.8.7. HTML-Parser is 3.45
Parsing of undecoded UTF-8 will give garbage when decoding entities at
/opt/csw/share/perl/csw/Mail/SpamAssassin/HTML.pm line 182.
Attached is an example, which is ham. The HTML::Parser
mouss wrote:
John T. Yocum wrote:
Hello,
I've recently noticed that a lot of spam is getting through SpamAssassin,
and it's getting the ALL_TRUSTED test listed on it. The issue with that
is, I only have one IP trusted, and that's my own mail server.
snip from local.cf
# Trusted Networks
Apologies - just noticed that the mail was picked up from a third party
server, not our in-house one, and was dumped into the wrong folder due to an
Outlook rules error.
I've just tried sending an .exe through our mail server and it was blocked.
NK
Alex S Moore wrote:
I have messages that give this error from sa-learn. SA is 3.0.4. Perl
is 5.8.7. HTML-Parser is 3.45
Parsing of undecoded UTF-8 will give garbage when decoding entities at
/opt/csw/share/perl/csw/Mail/SpamAssassin/HTML.pm line 182.
Attached is an example, which is
Matt Kettler wrote:
Alex S Moore wrote:
I have messages that give this error from sa-learn. SA is 3.0.4. Perl
is 5.8.7. HTML-Parser is 3.45
Parsing of undecoded UTF-8 will give garbage when decoding entities at
/opt/csw/share/perl/csw/Mail/SpamAssassin/HTML.pm line 182.
Attached is an
If I have a spam with a RAZOR2_CHECK score of 1.5, can I user the syntax ( in local.cf) score RAZOR2_CHECK 3.0 to increase the test's "score" when it is hit? I know this works for the normal "rule based" tests, but I was unsure about he razor type query test.
Dr Robert Young wrote:
If I have a spam with a RAZOR2_CHECK score of 1.5, can I user the syntax
( in local.cf)
score RAZOR2_CHECK 3.0
to increase the test's score when it is hit?
I know this works for the normal rule based tests, but I was unsure
about he razor type query test.
It
Greetings,
My weekend spam assassination resumed yesterday, when I found a few hour to
implement the suggestions from the list last month (well, some of them -- there
were so many good suggestions).
I upgraded SA to 3.0.4. That went as smooth as silk.
Installed Razor 2.75. Very much unlike
On Mon, Jul 25, 2005 at 08:09:55AM -0700, James Bucanek wrote:
But what does the RAZOR2_CHECK score mean? Poking around, I would guess that
it means that Razor has determined the confidence value for the message is
higher than the threshold I've configured in the Razor config files; but I
James Bucanek wrote:
Greetings,
My weekend spam assassination resumed yesterday, when I found a few hour to
implement the suggestions from the list last month (well, some of them --
there were so many good suggestions).
I upgraded SA to 3.0.4. That went as smooth as silk.
Installed
Thanks. I tried adding the /32 to the end, but that didn't have an effect.
I did run the headers through spamassassin -D and got the following.
debug: received-header: unknown format: from U075209.ppp.dion.ne.jp
(U075209.ppp.dion.ne.jp
debug: metadata: X-Spam-Relays-Trusted:
debug: metadata:
Thanks for the info.
I fixed that Received line, by removing the line wrap, and it was no
longer ALL_TRUSTED.
Now that I know what the issue is, I just need to figure out why the
header is getting munged.
Thanks,
John
John T. Yocum wrote:
Thanks. I tried adding the /32 to the end, but that
I decided to run spamd in debug mode, and log what it was seeing. This is
what I found for a direct delivered message..
debug: received-header: unknown format: from fluidhostingc.com (unknown)
by kangaroo.publicmx.com;
Searched around on Google, and saw a reference that atleast in
spamass-milter
From: Jeff Chan [EMAIL PROTECTED]
On Monday, July 25, 2005, 12:33:08 AM, jdow jdow wrote:
From: Jeff Chan [EMAIL PROTECTED]
Is this correct as ammended? I added the TXT strings
Here are SpamAssassin 3.0.1 and later configs for using these two
lists:
Please try:
urirhsbl
Fixed the problem. Looks like the howto I followed for setting up
spamass-milter was wrong. After redoing my sendmail config for it, all is
well.
Thanks for all the help everyone.
--John
I decided to run spamd in debug mode, and log what it was seeing. This is
what I found for a direct
jdow wrote:
From: "Jeff Chan" [EMAIL PROTECTED]
Here are SpamAssassin 3.0.1 and later configs for using these two lists:
urirhsbl URIBL_SC2_SURBL sc2.surbl.org.
body URIBL_SC2_SURBL eval:check_uridnsbl('URIBL_SC2_SURBL')
describe URIBL_SC2_SURBL Has URI in SC2 at
Jeff Chan wrote:
Pretty elaborate obfuscation:
a
Brian Ipsen wrote:
Hi,
When trying to report spam manually using
# spamassassin -r (mailfile)
I get an error like:
razor2 report failed: No such file or directory Died at
/usr/lib/perl5/site_perl/5.8.0/Mail/SpamAssassin/Reporter.pm line 148,
GEN1 line 1.
1 message(s) examined.
Insecure
It seems that sa always tries to login to the db as the running user
instead of the defined db user. Is this the expected behavior? If so
the documentation should be changed.
schu
Matthew Schumacher wrote:
It seems that sa always tries to login to the db as the running user
instead of the defined db user. Is this the expected behavior? If so
the documentation should be changed.
schu
Nothing is that code has changed in forever, so you're gonna have to
provide a
Michael Parker wrote:
Matthew Schumacher wrote:
It seems that sa always tries to login to the db as the running user
instead of the defined db user. Is this the expected behavior? If so
the documentation should be changed.
schu
Nothing is that code has changed in forever, so you're
Hi,
Anyone aware of anything that can parse a day's spamd logs and then give a
summary of total hits per rule? I noticed since 3.0.x that all rule hits
are in the logs now:
Jul 25 22:44:49 spamd2 spamd[59436]: result: Y 14 -
Hi,
I am using Spam Assassin 3.0.4 called from MIMEDefang 2.51 on a FreeBSD
4.9 box with perl 5.6.2 and I get the following messages in my maillog
on occasion..
Jul 26 12:43:36 cain sm-mta[81183]: j6Q3DUp1081183: from=[EMAIL PROTECTED],
size=4221, class=-30, nrcpts=1, msgid=[EMAIL PROTECTED],
On Monday, July 25, 2005, 12:06:10 PM, jdow jdow wrote:
From: Jeff Chan [EMAIL PROTECTED]
On Monday, July 25, 2005, 12:33:08 AM, jdow jdow wrote:
From: Jeff Chan [EMAIL PROTECTED]
Is this correct as ammended? I added the TXT strings
Here are SpamAssassin 3.0.1 and later configs for using
Hi all,
I am using Spamassassin on our SMTP servers with almost 2 mails
an hour. The problem is the machine is almost always heavily loaded.
Spamassassin takes a lot of time and I think the Bayes checking /
learning is the real cpu hog ?
Also I feel bayes is no good for a server like
Jeff Chan wrote:
On Monday, July 25, 2005, 3:11:40 PM, Tim Litwiller wrote:
this is what it took to make it work for me
_urirhssub_ URIBL_SC2_SURBL sc2.surbl.org. A127.0.0.2
body URIBL_SC2_SURBL eval:check_uridnsbl('URIBL_SC2_SURBL')
describe URIBL_SC2_SURBL Has
35 matches
Mail list logo