SM wrote:
> "Botnet Plugin" sounds like a plugin that detect botnets ... If
> Rasmus is finding that many false positives, then he's using the wrong
> tools.
Well I am not using the botnet plugin because i am not sure how to
implement it with the SA engine running in Icewarp Merak. Anyway we do
Am 15. Jan 2009 um 01:35 CET schrieb Francis Russell:
> Anyone know of any good rule-sets to block this sort of spam?
>
> http://www.unchartedbackwaters.co.uk/files/russian_spam.txt
,
| X-Spam-Flag: YES
| X-Spam-Checker-Version: SpamAssassin 3.2.5 (2008-06-10) on debian64.potato.lan
| X-Spam-
it should work, assuming you have the required CPAN module installed.
--j.
On Wed, Jan 14, 2009 at 21:27, Bogun Dmitriy wrote:
> Hello.
>
> Is there any way to make configuration option "normalize_charset" working?
> As I understand it didn't work because of broken utf8 support. But without
> it
Jberliner wrote on Wed, 14 Jan 2009 11:34:33 -0800 (PST):
> A couple of things about the non-tagged messages: they usually feature a
> spoofed sender address identical to the recipient, but not always: so, e.g.
> From: To: m...@mydomain.com. And, in looking at the
> message
> headers, a few thin
Hi @all,
We are searching for someone who will make spamd run on windows systems (XP and
later) by providing a one-click setup or single spamd.exe file like the
sourceforge project http://sourceforge.net/projects/sawin32/ .
We offer payment or donations if someone will continue (improve windows
On 1/15/2009 1:36 AM, Rasmus Haslund wrote:
SM wrote:
"Botnet Plugin" sounds like a plugin that detect botnets ... If
Rasmus is finding that many false ositives, then he's using the wrong tools.
Well I am not using the botnet plugin because i am not sure how to
implement
> Anyone know of any good rule-sets to block this sort of spam?
>
> http://www.unchartedbackwaters.co.uk/files/russian_spam.txt
>
I get 17 points on that one. And looked the ip up manually on xbl and it is
there because its on cbl:
http://cbl.abuseat.org/lookup.cgi?ip=84.16.105.146
pts rule nam
Daniel J McDonald wrote:
I too found botnet to be a great source of FP. By combining it with p0f
it's moderately useful.
I just found one reason for FPs in the Botnet plugin. It doesn't
make a difference between timeouts (and other DNS errors) and
negative answers. So if your DNS server/pro
В Чтв, 15/01/2009 в 11:03 +, Justin Mason пишет:
> it should work, assuming you have the required CPAN module installed.
But it didn't work.
There is a test message and local.cf. And here is processing log:
2009-01-15 14:51:42+02:00 mahoro.home.lan exim[22912]: SMTP connection from
[192.
>
> I just found one reason for FPs in the Botnet plugin. It
> doesn't make a difference between timeouts (and other DNS
> errors) and negative answers. So if your DNS server/proxy is
> overloaded (or slow for some other reason), you'll get FPs
>
> Since 15 minutes ago, I'm running a slight
At 01:36 15-01-2009, Rasmus Haslund wrote:
implement it with the SA engine running in Icewarp Merak. Anyway we do
have alot of problems with FP when we try out new things and I just have
to say some things just does not work good on a large scale where you
have to deal with all kinds og languages
Jonas,
> I just found one reason for FPs in the Botnet plugin. It doesn't
> make a difference between timeouts (and other DNS errors) and
> negative answers. So if your DNS server/proxy is overloaded (or
> slow for some other reason), you'll get FPs
>
> Since 15 minutes ago, I'm running a slightly
Kai Schaetzl wrote:
>
> Jberliner wrote on Wed, 14 Jan 2009 11:34:33 -0800 (PST):
>
>> A couple of things about the non-tagged messages: they usually feature a
>> spoofed sender address identical to the recipient, but not always: so,
>> e.g.
>> From: To: m...@mydomain.com. And, in looking at
Harald Binkle wrote:
> Hi @all,
> We are searching for someone who will make spamd run on windows systems (XP
> and later) by providing a one-click setup or single spamd.exe file like the
> sourceforge project http://sourceforge.net/projects/sawin32/ .
> We offer payment or donations if someone w
Jberliner wrote on Thu, 15 Jan 2009 09:20:04 -0800 (PST):
> Strangely, I was getting no error messages anywhere. Something was just
> silently failing, and as you say, only for certain messages, and very
> regularly. Though I'm kind of curious to know what the pattern was, I've
> spent so much tim
On Thu, January 15, 2009 12:03, Justin Mason wrote:
> it should work, assuming you have the required CPAN module
> installed.
what cpan module is it ?
i have olso seen problems with some utf-7 :/
--
Benny Pedersen
Need more webspace ? http://www.servage.net/?coupon=cust37098
On Thu, January 15, 2009 17:27, Bogun Dmitriy wrote:
> perldoc Mail::SpamAssassin::Conf say, that I need Encode::Detect
1.01 here
> HTML::Parser version 3.46 or later. I have them both.
3.59 here in my gentoo
--
Benny Pedersen
Need more webspace ? http://www.servage.net/?coupon=cust37098
On Thu, January 15, 2009 18:06, Mark Martinec wrote:
> Not to forget the long-standing DNS problem with Botnet:
> http://marc.info/?l=spamassassin-users&m=118641079630268
> http://marc.info/?l=spamassassin-users&m=120783518919154
i have changed to use BadRelay from
http://sa.hege.li/BadRela
Return-Path:
Delivered-To: m...@junc.org
Received: from localhost.junc.org (localhost [127.0.0.1])
by localhost.junc.org (Postfix) with ESMTP id ACF0616F4BA
for ; Thu, 15 Jan 2009 20:56:12 +0100 (CET)
X-Virus-Scanned: amavisd-new at junc.org
X-Spam-Flag: NO
X-Spam-Score: 4.287
X-Spam-Le
Hello!
Here's a small patch for the Botnet plugin.
The difference from the original is that it doesn't treat a
timeout or DNS error the same as a not found answer. This should
avoid FPs due to overloaded or s,low DNS responsesn.
This patch is against a version that hjas allready been patched
I'll incorporate this into the next version. Thanks :-)
On Thu, Jan 15, 2009 at 12:47, Jonas Eckerman wrote:
> Hello!
>
> Here's a small patch for the Botnet plugin.
>
> The difference from the original is that it doesn't treat a timeout or DNS
> error the same as a not found answer. This should
On Thu, Jan 15, 2009 at 09:06, Mark Martinec wrote:
> Jonas,
>
>> I just found one reason for FPs in the Botnet plugin. It doesn't
>> make a difference between timeouts (and other DNS errors) and
>> negative answers. So if your DNS server/proxy is overloaded (or
>> slow for some other reason), you
we need your help.
>
>
>
> Apparently yesterday I push the wrong button in my control panel which
> caused our email server to block all incoming emails. My mail server guy
> told me it is because of SpamAssassin .
>
>
>
> We are not spammers but business people, we don't know how to r
brunope...@aol.com wrote:
> we need your help.
> >
> >
> >
> > Apparently yesterday I push the wrong button in my control panel
> > which caused our email server to block all incoming emails. My mail
> > server guy told me it is because of SpamAssassin .
> >
> >
> >
> > We are not spammers b
brunope...@aol.com wrote:
we need your help.
Indeed ;-).
Apparently yesterday I push the wrong button in my control panel which
caused our email server to block all incoming emails. My mail server guy
told me it is because of SpamAssassin .
We are not spammers but business people, we
Neil Schwartzman wrote:
On 2009-01-06 22:19:39 GMT LuKreme kreme.com> wrote:
If you want the real history of Habeas in a nutshell, the company went
to hell when Anne Mitchell left (the same Anne Mitchell who was part
of MAPS back in the day). She's now at the Institute for Spam and
Intern
>
>
> Apparently yesterday I push the wrong button in my control
panel which
> caused our email server to block all incoming emails.
Cadet Stimpy - I specifically told you *not* to press the
[History Eraser Button]! Now look what
brunope...@aol.com wrote:
>
> Bruno Perez writes:
> > Hello Justin, we need your help.
> >
> >
> >
> > Apparently yesterday I push the wrong button in my control panel which
> > caused our email server to block all incoming emails. My mail server guy
> > told me it is because of SpamAssassin .
On Thu, 2009-01-15 at 18:43 -0500, Matt Kettler wrote:
> brunope...@aol.com wrote:
> >
> How does this relate to anything in your control panel? SpamAssassin is
> not easy to run on a Windows PC, it runs natively on Unix or Linux
> machines. It is highly unlikely it is running on your PC, and there
Hi,
milter manager 0.7.0 has been released.
http://milter-manager.sourceforge.net/
http://sourceforge.net/project/showfiles.php?group_id=236233
ClearCode Inc. is developing milter manager for a public
issue bussiness of IPA (INFORMATION-TECHNOLOGY PROMOTION
AGENCY). This is the first release
brunope...@aol.com wrote on Thu, 15 Jan 2009 11:28:09 -0500:
> My mail server guy
> > told me it is because of SpamAssassin .
Great, you have a "mail server guy". That's the right person who can fix
that for you.
Kai
--
Kai Schätzl, Berlin, Germany
Get your web at Conactive Internet Services
Hello brunope...@aol.com,
Though it might sound mean to the un-initiated, I totally agree with Kai. If
you have a Mail Server admin, and they are putting the job of fixing
Spamassassin on the user, they are not doing their job. You may need a new Mail
Server admin. Make a complaint to managemen
Thanks, it works
How ever I have a question. In my configuration I have to mark subject with
"[SPAM]"
How I can tell SA to use another mark "[VIRII]" if clamav plug marks mail.
TIA
On Saturday 03 January 2009 03:53:12 Justin Mason wrote:
> John Hardin writes:
> >On Fri, 2 Jan 2009, Luis Dani
>
> brunope...@aol.com wrote on Thu, 15 Jan 2009 11:28:09 -0500:
>
> > My mail server guy
> > > told me it is because of SpamAssassin .
>
Then Kai wrote:
> Great, you have a "mail server guy". That's the right person
> who can fix that for you.
>
> Kai
>
Then -rh wrote:
hmm
only
At 08:53 PM 1/15/2009, you wrote:
Thanks, it works
How ever I have a question. In my configuration I have to mark subject with
"[SPAM]"
How I can tell SA to use another mark "[VIRII]" if clamav plug marks mail.
I could be wrong, but I don't believe SpamAssassin can do that.
You'll need to d
I have had a user (a co-admin unfamiliar with email) accidentally uncheck
the "Allow SMTP traffic" in a configuration box (Novell ConsoleOne), which
stopped our email flow, but as noted here that has nothing to do with
SpamAssassin. Bruno needs to supply some more information--the OS where the
Con
It seems that my spam assassin IS seeing my incoming mails; it's building an
autowhitelist.
But it isn't tagging anything as spam. Also, when look at the
autowhitelist, the incoming mail is given a bias of 1, but the email is
clearly a spam.
Any ideas what's going on?
This is on redhat 4el se
37 matches
Mail list logo
