I'm having trouble with spamd hanging; it seems related to bayes
processing. When this occurs, mail delivery stops until one clears
the bayes data (sa-learn --clear) and restarts exim, which restarts
spamd. All is then well until the system is trained on enough ham and
spam to do bayes evaluatio
Daryl C. W. O'Shea wrote:
An old version of spamass-milter.
Oops...that was it. Thought I had the latest.
--
Randall Perry
Theo Van Dinter wrote:
> On Fri, Jun 22, 2007 at 09:02:23PM +0100, Anthony Edwards wrote:
>
>>> http://issues.apache.org/SpamAssassin/show_bug.cgi?id=5510
>>>
>> This should have been fixed though if you read the bug history, shown
>> now as Status: RESOLVED, Resolution: FIXED.
>>
>
Jonn R Taylor wrote:
> What version of SA? When you built SA from a tarball you did "rpmbuild
> -tb Mail-SpamAssassin-3.2.1.tar.gz". You may want to rebuild SA from
> source and then do a rpm -Uvh to install.
>
> Jonn
>
> -Original Message-
> From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECT
Nigel Frankcom wrote:
> S'cuse the top post but
>
> If you're going to the trouble of tarball --> RPM, why not just do yum
> install spamassassin?
>
> KR
>
> Nigel
>
> On Fri, 22 Jun 2007 10:11:14 -0500, "Jonn R Taylor"
> <[EMAIL PROTECTED]> wrote:
>
>> What version of SA? When you built S
Remove the blacklist.cf from the box, run spamassassin --lint and restart
qmail. That's what did it for me.
-Original Message-
From: Spam Administrator [mailto:[EMAIL PROTECTED]
Sent: Friday, June 22, 2007 3:17 PM
To: users@spamassassin.apache.org
Subject: Processor Load for spamassassi
On Fri, 2007-06-22 at 17:03 +0200, arni wrote:
> Marc Perkel schrieb:
> >
> > That doesn't answer his question though. He didn't ask for your
> > opinion about if he needed it. If the rules were working for him he
> > wouldn't be asking for help. When someone asks a question telling
> > them they
On Fri, Jun 22, 2007 at 09:02:23PM +0100, Anthony Edwards wrote:
> > http://issues.apache.org/SpamAssassin/show_bug.cgi?id=5510
>
> This should have been fixed though if you read the bug history, shown
> now as Status: RESOLVED, Resolution: FIXED.
That means that the patch has been committed to S
From: "Jai Rangi" <[EMAIL PROTECTED]>
Hello All,
I am little confused here. I have this rule in my .procmailrc file.
:0f
* ^[F|f]rom:.*aleks\.com
*
^[m|M]essage-[i|I][D|d]:.*aleks\.com|^Received:.*(authenticated).*\.aleks\.com
| formail -A"X-ALEKS-Spam: none"
#:0fwE
:0fw
* < 256000
* !^X-ALE
When we ran 3.1.8 our mail server processors reported average 25%
activity. But after upgrading spamassassin to 3.2.0 and then 3.2.1, the
servers were running nearly 100% of capacity and folks are complaining
about mail delays. The volume of incoming mail is about constant. We've
backed off to
Hello All,
I am little confused here. I have this rule in my .procmailrc file.
:0f
* ^[F|f]rom:.*aleks\.com
*
^[m|M]essage-[i|I][D|d]:.*aleks\.com|^Received:.*(authenticated).*\.aleks\.com
| formail -A"X-ALEKS-Spam: none"
#:0fwE
:0fw
* < 256000
* !^X-ALEKS-Spam: none
* !^FROM_DAEMON
| /usr/bin
Anthony Edwards wrote:
On Thu, Jun 21, 2007 at 04:45:56AM -0400, Matt Kettler wrote:
This looks to be a known bug in 3.2.1, make test fails when run as root,
which inherently breaks all CPAN installs.
http://issues.apache.org/SpamAssassin/show_bug.cgi?id=5510
This should have been fixed thou
From: "Phil Barnett" <[EMAIL PROTECTED]>
On Friday 22 June 2007 12:32, jdow wrote:
Take a quick look at tripwire and its newer equivalent. They should be
about the same thing. Loading both will result in the rules that may
share
a name between the files having the newer version superseded by
On Thu, Jun 21, 2007 at 04:45:56AM -0400, Matt Kettler wrote:
> This looks to be a known bug in 3.2.1, make test fails when run as root,
> which inherently breaks all CPAN installs.
>
> http://issues.apache.org/SpamAssassin/show_bug.cgi?id=5510
This should have been fixed though if you read the
Suhas Ingale wrote:
Any custom rules to catch this?
body JE_STOCK_ticker6
/\bC[\s\-\_\'\.]?H[\s\-\_\'\.]?F[\s\-\_\
'\.]?R\b|\bO[\s\-\_\'\.]?J[\s\-\_\'\.]?U[\s\-\_\'\.]?F\b|\bC[\s\-\_\'\.]?D[\s\-\
_\'\.]?P[\s\-\_\'\.]?N\b|\bD[\s\-\_\'\.]?S[\s\-\_\'\.]?D[\s\-\_\'\.]?I\b|\b
Hello all,
I've just comitted some changes to our SVN that fixes the ugly
formatting problems that came up with SA 3.1.8 and higher.
The new version should display results with a proper formatting in the
SA report, without screwing up the FuzzyOcr logging output.
Thanks to Justin Mason for poi
sendmail -> spamass-milter -> spamd - because I needed to be a
spam/virus filter relay for other mail servers. Also, I like being
able to reject mail if SA deems it spam. That way if it is a false
positive then the sender is aware that the end user did not get the
mail instead of going into a s
On Friday 22 June 2007 12:32, jdow wrote:
> Take a quick look at tripwire and its newer equivalent. They should be
> about the same thing. Loading both will result in the rules that may share
> a name between the files having the newer version superseded by the older
> version because files load in
Randall Perry wrote:
I recently updated to spamassassin 3.2.0 and sendmail 8.13.8.
Mail originating from the server, or relayed through the server to other
ISPs has an extra blank line added at the end of the 1st X-Spam-Status:
line, causing headers to show in the message body. Here's an examp
ram wrote:
On Thu, 2007-06-21 at 17:31 +, Duane Hill wrote:
On Thu, 21 Jun 2007, Jason Frisvold wrote:
On 6/21/07, Daryl C. W. O'Shea <[EMAIL PROTECTED]> wrote:
I'd just use sa-update on all of them. You could do sa-update on one
and then rsync the files around, though, if you wanted.
I
I've installed Spamassassin version 3.2.1, and have enabled
loadplugin Mail::SpamAssassin::Plugin::Rule2XSBody
in 'init.pre'.
After downloading the latest rule updates using sa-update, when I compile
the rules using
sa-compile --sudo -D
It finishes "correctly" at
COMPILE DONE
Checking
Matt schrieb:
I have Spamassassin setup to whitelist all my own IP pools. Do I need
to do anything else?
Matt
make sure that anything that is an MX for x@.com is in
your internal_networks
arni
procmail
Because it was simple and it was there.
Now because it doesn't do any of the undesireable (by me) default actions
of the newer tools and I don't have time to learn to configure them more
intelligently.
If it works, don't fix it.
(I also use procmail to do some pretty stupid things - li
http://people.ucsc.edu/~jrudd/spamassassin/
docs inside the archive - botnet is really one of the most effective
plugins i use these days (make sure you set your internal nets properly
I have Spamassassin setup to whitelist all my own IP pools. Do I need
to do anything else?
Matt
otherwise
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Hello all,
I've just comitted some changes to our SVN that fixes the ugly
formatting problems that came up with SA 3.1.8 and higher.
The new version should display results with a proper formatting in the
SA report, without screwing up the FuzzyOcr l
From: "Phil Barnett" <[EMAIL PROTECTED]>
On Friday 22 June 2007 00:54, jdow wrote:
I think it was mentioned around these precincts about the time tripwire
was converted to 99_FVGTTripWire.cf and added to the SARE repositories
as a SARE rule set. I also note that I don't use it here anymore. The
Outlook top post.
-Original Message-
From: Nigel Frankcom [mailto:[EMAIL PROTECTED]
Sent: Friday, June 22, 2007 10:18 AM
To: SpamAssassin
Subject: Re: Setup SA to use mysql DB
S'cuse the top post but
If you're going to the trouble of tarball --> RPM, why not just do yum
install spama
We get order acknowledgment e-mails from a specific e-mail address
for orders placed on our website. A couple of days ago, these
messages stopped arriving. Somebody noticed this, I went looking for
them, I found them in our spam folder. For some reason, this address
in the AWL database unde
Matt schrieb:
together with a decent bayes or 1 or 2 more rules already does the
job and
Where do I get the botnet plugin(prefer rpm) and how do I make
Spamassassin use it?
Matt
http://people.ucsc.edu/~jrudd/spamassassin/
docs inside the archive - botnet is really one of the most effective
together with a decent bayes or 1 or 2 more rules already does the job and
Where do I get the botnet plugin(prefer rpm) and how do I make
Spamassassin use it?
Matt
Marc Perkel schrieb:
Actually the fastest way to get rid of stoc/botnet spam is with fake
MX records.
fake 10
real 20
fake 30
fake 40
I dont like the idea of making life harder for ham (forcing a properly
working mailserver to make at least 2 connections) acompanied with the
same delays as
S'cuse the top post but
If you're going to the trouble of tarball --> RPM, why not just do yum
install spamassassin?
KR
Nigel
On Fri, 22 Jun 2007 10:11:14 -0500, "Jonn R Taylor"
<[EMAIL PROTECTED]> wrote:
>What version of SA? When you built SA from a tarball you did "rpmbuild
>-tb Mail-Spa
What version of SA? When you built SA from a tarball you did "rpmbuild
-tb Mail-SpamAssassin-3.2.1.tar.gz". You may want to rebuild SA from
source and then do a rpm -Uvh to install.
Jonn
-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]
Sent: Friday, June 22, 2007 9:25
arni wrote:
Marc Perkel schrieb:
That doesn't answer his question though. He didn't ask for your
opinion about if he needed it. If the rules were working for him he
wouldn't be asking for help. When someone asks a question telling
them they don't need it is generally the wrong answer and a
Marc Perkel schrieb:
That doesn't answer his question though. He didn't ask for your
opinion about if he needed it. If the rules were working for him he
wouldn't be asking for help. When someone asks a question telling them
they don't need it is generally the wrong answer and a waste of time.
arni wrote:
Suhas Ingale schrieb:
Can someone help me writing rules to catch below content spam?
* 5.5 BAYES_99 BODY: Bayesian spam probability is 99 to 100%
* [score: 1.]
* 0.1 RDNS_NONE Delivered to trusted network by a host with no rDNS
* 5.
Suhas Ingale schrieb:
Can someone help me writing rules to catch below content spam?
* 5.5 BAYES_99 BODY: Bayesian spam probability is 99 to 100%
* [score: 1.]
* 0.1 RDNS_NONE Delivered to trusted network by a host with no rDNS
* 5.0 BOTNET Relay
I do it fully separately from spamassassin.
I have a list of patterns in a file that are matched by saying
m/\b$pattern\b/. (\b means word boundary). If I get more than one or
two spams advertising a particular stock, I put that stock name in the
pattern list.
All messages mentioning those spam
Jonn R Taylor wrote:
> Verify that you do not have 2 versions of perl installed and that part
> of your SA install did not go in the wrong version. What OS and how did
> you build SA?
>
> Jonn
>
> -Original Message-
> From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]
> Sent: Friday, June
> Also, that way outgoing mail is not driven thru SpamAssassin,
> which is good.
Depends. In my experience it is not good.
Running outgoing mail through SpamAssassin has some advantages:
- prevents internal infected/zombiized hosts from spewing their stuff;
- presents quality examples of ham to b
>Just curios to see how people call SA? And, why did you choose one method over
>another? We have been using Amavisd to call SA for the last three or four
>years.
>Recently, I have tried out the daemonized version of SA.
Using spamd, and spamc from /etc/maildroprc
That way I can use different
Verify that you do not have 2 versions of perl installed and that part
of your SA install did not go in the wrong version. What OS and how did
you build SA?
Jonn
-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]
Sent: Friday, June 22, 2007 8:22 AM
To: users@spamassassin
Matthias Leisi wrote:
I think it would be useful to start using this idea more widely to
improve the quality of DNS listing. So roll the idea around and see if
we can build on it.
It's somewhat similar to the "trust levels" we use in dnswl.org (where,
incidentially, we partly import data
Jonn R Taylor wrote:
> This is what I use and it has been working for the last 3 years.
>
> # MySQL Setup
> use_razor2 1
> use_bayes_rules 1
> allow_user_rules 1
> use_auto_whitelist 1
>
> user_scores_dsn DBI:mysql:spamassassin:127.0.0.1
> user_scores_sql_usernamexxx
Just curios to see how people call SA? And, why did you choose one
method over another? We have been using Amavisd to call SA for the last
three or four years. Recently, I have tried out the daemonized version
of SA.
Shane
> I think it would be useful to start using this idea more widely to
> improve the quality of DNS listing. So roll the idea around and see if
> we can build on it.
It's somewhat similar to the "trust levels" we use in dnswl.org (where,
incidentially, we partly import data from different sources t
I have changed the BODY rule to URI rule...
Now my rule looks something like this.
uri LOCAL_URI_LINK_BLOCK /abc\.uk/
score LOCAL_URI_LINK_BLOCK 4
actually i want to block this type of LINK from my mail :
http://img409.abc.uk/my.php?image=qoofkjruod4.png
where I am not sure if
1. I
Joerg Reisslein schrieb:
Mit freundlichen Gru?en
Do you have a link for the botnet plugin?
$searchmachine "download botnet plugin spamassassin"
http://people.ucsc.edu/~jrudd/spamassassin/
Docs in tarball provide details for install.
--
hth
MH
Dont send mail to: [EMAIL PROTECTED]
--
48 matches
Mail list logo
