John D. Hardin wrote:
> On Mon, 26 Feb 2007, Per Jessen wrote:
>
>> whitelist_from ?
>
> No. whitelist_from_rcvd, whitelist_from_spf, etc.
>
> whitelist_from is a last resort as it is subject to spoofing by forged
> addresses.
Quick comment - the OP specifically asked for something "to force l
Hardy, Matthew wrote:
> Dear Spamassassin User Group:
>
> I am trying to install SpamAssassin 3.1.8 on a Mac PowerBook G4 OS X v10.4.8
> (upgrading from a successful installation of v 3.1.7).
>
> Now, when I try to run /user/local/bin/spamassassin, the following error
> message is returned:
>
> s
Paul Aviles wrote:
> Matt, following your advise that I had something configured wrong and not
> standard, I removed and reinstalled SA and got a bit further. However no
> matter what, I get the following errors for root when I send an email to
> myself which has nothing to do for root. I even crea
Paul Aviles wrote:
> I don't know if OPR is really a term or not, but I got OCR working
> with Fuzzy and I know other spam providers offer a service that scans
> pictures and can make up if most of the picture if a nude person. Is
> there any module like that available?
>
> Regards,
>
> Paul
Th
On Mon, Feb 26, 2007 at 04:42:36PM -0800, [EMAIL PROTECTED] wrote:
> No, score=3.0 required=5.0 tests=EXTRA_MPART_TYPE,HTML_MESSAGE
> autolearn=no version=3.1.7
>
> Shouldn't SA notice this image and show an image item in its status
> line?
Do you have a rule that looks for an image attachme
Hi SA users,
We're receiving leaked spam that has one gif image in each. In such
emails,
the SA status line doesn't show a rule match for an image. Here's a
sample:
No, score=3.0 required=5.0 tests=EXTRA_MPART_TYPE,HTML_MESSAGE
autolearn=no version=3.1.7
Looking at the source for the
I don't know if OPR is really a term or not, but I got OCR working with
Fuzzy and I know other spam providers offer a service that scans pictures
and can make up if most of the picture if a nude person. Is there any module
like that available?
Regards,
Paul
Hi!
Is it correct, with Spamassassin 3.1.7 and every Outlook Express
client, FORGED_MUA_OUTLOOK with simple "test" message?
Score for FORGED_MUA_OUTLOOK is set to 4.1!!
Thanks!
Sim
Example:
Delivered-To: [EMAIL PROTECTED]
Received: (qmail
On Mon, 26 Feb 2007, Nigel Frankcom wrote:
> Can anyone tell me if I need to escape the characters within the
> square braces in the following?
>
> body NF_REM_CHAR1 /remove [*%!+`"£$%^&()_-=#~]/i
A dash indicates a range (e.g. a-z) - if you need that, it's safest to
put it as the first charact
Paul
Have a look at the DefenderMX range (and something new due any day now),
from www.fsl.com.
Basically is a commercial version of MailScanner (with added stuff on
it).
--
Martin Hepworth
Snr Systems Administrator
Solid State Logic
Tel: +44 (0)1865 842300
> -Original Message-
> From:
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Is anyone who is using the TQMCUBE RBL with their email server seeing
any significant decreases to the effectiveness of the list?
The TQMCUBE DNSBL is the first RBL we check -- it had been dropping
about 60% of our incoming email connections.
Four da
On Mon, Feb 26, 2007 at 02:42:28PM -0500, Hardy, Matthew wrote:
> I am sorry to resend this but my mail delivery appears was malfunctioning as
> a result of the problem and I lost several email that might
> have contained replies. I have established that I can read my incoming email
> again, and
On Mon, 26 Feb 2007, Per Jessen wrote:
> whitelist_from ?
No. whitelist_from_rcvd, whitelist_from_spf, etc.
whitelist_from is a last resort as it is subject to spoofing by forged
addresses.
--
John Hardin KA7OHZhttp://www.impsec.org/~jhardin/
[EMAIL PROTECTED]FALaholi
Dear User Group:
I am sorry to resend this but my mail delivery appears was malfunctioning as a
result of the problem and I lost several email that might
have contained replies. I have established that I can read my incoming email
again, and if anyone has thoughts on this topic I would
be grat
Miki wrote:
> I need to find out if (or how) is possible to force lower score on
> exact From: address. I have some customers which are sending mail from
> mobile devices and thus coming from IPs of provider which are on RBL;s
> Problem is that messsage get high score because RBL present of sendin
> "perldoc Mail::SpamAssassin::Conf", look for "whitelist".
This topic reminds me of my occasional desire to be able to supply
individual score points (optional, overriding a default) with each
whitelist_from* and whitelist_from_dkim entry, taking into account
reputation of each sender, e.g.:
w
On Mon, 26 Feb 2007, Theo Van Dinter wrote:
> On Mon, Feb 26, 2007 at 06:31:42PM +0100, Miki wrote:
> > Basically I need set that mail from [EMAIL PROTECTED] get -20 score.
> > even if address is stolen by spammer. these addresses are very rare,
> > but for few I need it urgently.
>
> "perldoc Ma
Dear Spamassassin User Group:
I am trying to install SpamAssassin 3.1.8 on a Mac PowerBook G4 OS X v10.4.8
(upgrading from a successful installation of v 3.1.7).
Now, when I try to run /user/local/bin/spamassassin, the following error
message is returned:
spamassassin: spamassassin script is v
On Mon, Feb 26, 2007 at 12:13:39PM -0500, Paul Aviles wrote:
> OPTIONS="--create-prefs --max-children 5 --username spamd --helper-home-dir
> ${SAHOME} -s /var/log/spamd.log"
You're running spamd as a non-root user,
> Mon Feb 26 10:44:40 2007 [16531] info: spamd: creating default_prefs:
> /root/.s
On Mon, Feb 26, 2007 at 06:31:42PM +0100, Miki wrote:
> Basically I need set that mail from [EMAIL PROTECTED] get -20 score.
> even if address is stolen by spammer. these addresses are very rare,
> but for few I need it urgently.
"perldoc Mail::SpamAssassin::Conf", look for "whitelist".
--
Rando
Hello,
I need to find out if (or how) is possible to force lower score on
exact From: address. I have some customers which are sending mail from
mobile devices and thus coming from IPs of provider which are on RBL;s
Problem is that messsage get high score because RBL present of sending
server.
Bas
On 2/25/07, Len Conrad <[EMAIL PROTECTED]> wrote:
>>Anybody got any links / how-to for setting up SA as postfix policy service?
>>
>>I want SA policy service to perform only envelope checks, not content scans.
>>
>>thanks
>>Len
>
>Since the actual headers are not available
headers are DATA/cont
> -Original Message-
> From: Steve Ingraham [mailto:[EMAIL PROTECTED]
>
> I will add the "score SARE_ADULT2 BODY 10.0" line to local.cf
Steve,
I've just checked for you. It's
score SARE_ADULT2 10.0
Ignore my earlier suggestion about adding an underscore.
Jon
Matt, following your advise that I had something configured wrong and not
standard, I removed and reinstalled SA and got a bit further. However no
matter what, I get the following errors for root when I send an email to
myself which has nothing to do for root. I even created a user for SA as
such:
I've been using 3.1.7 from the sarge backports and its absolutely
fine, much better spam catching rates due to the ability to run
sa-update. Backports repo is:
deb http://www.backports.org/debian sarge-backports main contrib non-free
On Mon, 26 Feb 2007 14:55:40 +
Richard Hobbs <[EMAIL PROTE
> Theo Van Dinter wrote:
> On Mon, Feb 26, 2007 at 09:53:43AM -0600, Steve Ingraham wrote:
> > on this rule it would score higher. Can I change the score
> for that
> > rule? If so, do I just add a line in the local.cf file like so?
> >
> > SARE_ADULT2 BODY 8.0
>
> No. "perldoc Mail::SpamAs
On Mon, Feb 26, 2007 at 03:01:46PM +, Ben Wylie wrote:
> Could a rule be written to catch emails where multipart/alternative is
> used, and an image is apparently the best alternative?
> This way, it is not penalising image attachments, but only images which
> claim to be the best alternative
On Mon, Feb 26, 2007 at 09:53:43AM -0600, Steve Ingraham wrote:
> on this rule it would score higher. Can I change the score for that
> rule? If so, do I just add a line in the local.cf file like so?
>
> SARE_ADULT2 BODY 8.0
No. "perldoc Mail::SpamAssassin::Conf", look for "score".
> Secon
If so, do I just add a line in the local.cf
> file like so?
>
> SARE_ADULT2 BODY 8.0
>
> Second question, in local.cf I have a line that reads:
>
> BAYES_99 10.0
>
> I had assumed that line to mean that any email hitting on the
> BAYES_99 rule would receive a score of 10.0, but as you c
All of my emails pass through an antivirus gateway which is the same
server as the mailserver and appears like this in the headers:
Received: from [127.0.0.1] by arkbb.co.uk with SMTP (HELO server.)
(ArGoSoft Mail Server Pro for WinNT/2000/XP, Version 1.8 (1.8.8.9));
Mon, 26 Feb 2007 15:41:0
Hi All,
Can anyone tell me if I need to escape the characters within the
square braces in the following?
body NF_REM_CHAR1 /remove [*%!+`"£$%^&()_-=#~]/i
score NF_REM_CHAR1 4.0
describe NF_REM_CHAR1 remove chars for URL spams
TIA
Nigel
Richard Hobbs wrote:
> Hello,
>
> I run a mail server which is using the latest stable spamassassin
> available through the standard debian repositories - "spamassassin
> 3.0.3-2sarge1".
>
> As you can imagine, having not done an update of the rules for a very
> long time, it's pretty useless these
I have a few questions about MIME multipart/alternative, and to suggest
a rule.
As i understand it, multipart/alternative in emails allows an email to
be composed in different formats and all formats to be sent together in
the one email. The user agent used to read the email can then choose
w
at seemingly random intervals, sometimes after days of working just
fine with no errors, and with no extraordinary actions on my part,
"sa-update" will fail with:
channel: attempt to rm channel cf file failed, attempting to continue
anyway at /usr/local/spamassassin/bin/sa-update line 742.
error:
Hello,
Is it just as stable? i.e. ours hasn't hung or crashed so far for over
200 days... can you say whether this is true of 3.1 via backports?
Also, is there an apt repo for 3.1 for sarge?
Thanks again,
Richard.
John Fleming wrote:
>
> - Original Message - From: "Richard Hobbs"
> <[
I just call the following script from my cronjob which sends me the
debug output, a little crude but it works...
#!/bin/sh
sa-update --channelfile /etc/spamassassin/sa-update-sare.txt --gpgkey 856AA88A
-D 1> /tmp/sa.tmp 2>> /tmp/sa.tmp
sleep 60
/etc/init.d/spamassassin restart 2>&1>> /tmp/sa.tmp
- Original Message -
From: "Richard Hobbs" <[EMAIL PROTECTED]>
To:
Sent: Monday, February 26, 2007 4:54 AM
Subject: sa-update doesn't exist on my system
Hello,
I run a mail server which is using the latest stable spamassassin
available through the standard debian repositories - "sp
I'd suggest addign soemthing like:
After running sa-update for the first time old rules which are provided
through one of sa-update's channels should be removed from
/etc/mail/spamassassin (or whichever is our local rules directory) because
the rules in this directory will take precedence over
Hello Justin,
Monday, February 26, 2007, 11:44:21 AM, you wrote:
JM> Miki writes:
>> Hello ;)
>>
>> I want ask you if you are willing to make plugin to SA which allow
>> logging into database instead of file.
>> There is already sa-stats plugin, but its only logging numbers of
>> spam/ham. Im no
Hi
I am running an old version on debian.
server:/usr/doc/spamassassin# spamassassin -V
SpamAssassin version 3.0.2
running on Perl version 5.6.1
server:/usr/doc/spamassassin#
I havn't done an apt-get upgrade for ages, and as such, when i did,
the spamasasin failed to upgrade for some conflic
Hello,
I'm using SA on FreeBSD 6.2 box. SA is installed from ports tree.
There is a problem with stopping SA process with rcNG script:
# /usr/local/etc/rc.d/sa-spamd stop
spamd not running? (check /var/run/spamd/spamd.pid).
But:
# cat /var/run/spamd/spamd.pid
80028
# ps ax|grep 80028
80028 ??
Appreciate this may not be 100% the best place to ask, but I'm
struggling to think of anywhere better other than Usenet.
I'm currently running a box that I've configured to run Postfix plus
Spamassassin, it works, but it's the usual "Only I know about it and if
it fails or I get hit by a bus" etc.
Miki writes:
> Hello ;)
>
> I want ask you if you are willing to make plugin to SA which allow
> logging into database instead of file.
> There is already sa-stats plugin, but its only logging numbers of
> spam/ham. Im not perl programmer ;( but I believe that can be
> relatively easyli done just
Hello ;)
I want ask you if you are willing to make plugin to SA which allow
logging into database instead of file.
There is already sa-stats plugin, but its only logging numbers of
spam/ham. Im not perl programmer ;( but I believe that can be
relatively easyli done just put all line into database
no -- the issue is not the NoMailAudit problem -- it's that
you're missing a required module, Digest::SHA1. read the
INSTALL and UPGRADE docs.
--j.
Bob McClure Jr writes:
> On Sun, Feb 25, 2007 at 08:22:05PM -0800, Wen Wang wrote:
>
> > Thanks, Bob. But I don't think this is the problem. I th
snowcrash+spamassassin writes:
> follow-on to the fix in,
>
> http://issues.apache.org/SpamAssassin/show_bug.cgi?id=5340
>
> building r511659, on,
>
> spamassassin/bin/sa-compile --sudo -D
>
>
> i see lots of output, including many instances of,
>
>[13689] dbg: generic: giving up
> BUT... the "sa-update" command doesn't seem to exist on my system...
any
> ideas?
You need upgrade to 3.1.x if You neet tu use sa-update
maciek
--
|_|0|_| Maciej Friedel <[EMAIL PROTECTED]>
|_|_|0| http://wwv.pl - usługi hostingowe
|0|0|0| http://eprogram.pl - projektowanie stron www
Hello,
I run a mail server which is using the latest stable spamassassin
available through the standard debian repositories - "spamassassin
3.0.3-2sarge1".
As you can imagine, having not done an update of the rules for a very
long time, it's pretty useless these days, so i was wondering how
"sa-u
From: Raul Dias [mailto:[EMAIL PROTECTED]
>
> You need a lot more of bandwidth/memory/cpu power and disk IO to do it.
Maybe I need more bw. Why memory and cpu? I may spool spam detected this way
and my spamtrap script may despool and report it. There will be only one
running spamtrap script.
g
David Goldsmith <[EMAIL PROTECTED]> wrote on 25/02/2007 20:10:46:
> Bram Mertens wrote:
[...]
> > Lately however the number of SPAM messages getting through is
increasing
> > rapidly so I could use some help.
[...]
> SA 3.1.x will look for rules in /usr/share/spamassassin,
> /var/lib/spamassassin
50 matches
Mail list logo