On 02.06.16 12:35, Reindl Harald wrote:
the setup IS CRIPPELED in it's function as long URIBL/DNSBL/DNSWL are
not working - period
hitting the others' limits does not mean that the setup is crippled.
get it finally. period.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.f
On 6/1/2016 3:06 AM, Reindl Harald wrote:
write 1000 times " YOUR SETUP IS CRIPPLED
http://uribl.com/refused.shtml " in the rpeort header and
every 5 seconds into the maillog so that the biggest fool can't
ignore it
Am 01.06.2016 um 15:24 schrieb Matus U
score of 0 should be just OK, but in such case it would never be
shown.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
Linux IS user
ould_ help you
much.
and of course read what the others advised you
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
I'm not interest
e with any score above 0.01 or
below -0.01
why? If someone fakes a clear spammy sign, I see no point in giving them
higher score.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto ad
documented installations than mimedefang.
don't know about other distros tho
(ubuntu does have popcpon package - it'd Debian derivative, but I was
lazy to search how popcon.ubuntu.com works)
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to recei
On Fri, 27 May 2016, Matus UHLAR - fantomas wrote:
Another one came onto my mind:
abuse@ address separation.
- mail to abuse@ should not be rejected as spam, even it it might be scanned
(it might be spam report and those should not be rejected)
- spams to abuse@ and other addresses should not
recipient was accepted.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
How does cat play with mouse? cat /dev/mouse
putting a fork of the project on GitHub, and trying to
maintain it there. Is anyone else here interested in seeing that happen?
Or do you have other ideas about what should be done?
...some other headers to be pushed to mail SA generates
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http
On Thu, 26 May 2016 12:20:35 +0200
Matus UHLAR - fantomas wrote:
you apparently mistook razor to DCC, the DCC is here to measure
bulkiness, but not (necessarily) spamminess.
On 26.05.16 09:46, Dianne Skoll wrote:
Yes, you are correct. Thanks for the clarification!
And also, just to clarify
sassin but both go through amavisd-new. Can you help me
understand what is happening?
this is spamassassin, not amavis mailing list.
you should search amavis documentation and configuration to see if it was
configured to skip the mail (maybe because of its size?)
--
Matus UHLAR - fa
ursive DNS server, and ISP
that allows you to use it, and doesn't redirect DNS traffic to its servers.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek
ipedia.org/wiki/Sender_Policy_Framework
this changes nothing on the fact that Microsoft tried to redefine SPF usage
to match header addresses (by default).
you apparently missed this, please stop calling people who didn't idiots.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fanto
Am 17.05.2016 um 20:30 schrieb Matus UHLAR - fantomas:
On 17.05.16 09:10, Marc Perkel wrote:
Is there any address that I can forward gmail spam to google for
reporting?
ab...@google.com should be the address (the mail was delivered to your
network by *.google.com host, wasn't it?)
On 17.05.16 09:10, Marc Perkel wrote:
Is there any address that I can forward gmail spam to google for reporting?
ab...@google.com should be the address (the mail was delivered to your
network by *.google.com host, wasn't it?)
--
Matus UHLAR - fantomas, uh...@fantomas.sk ;
>That seems a little aggressive, IMO.
On Sun, 15 May 2016 18:08:31 +0200
Matus UHLAR - fantomas wrote:
I don't think so. If you have a mail server, you don't change its DNS
records very often.
On 15.05.16 20:47, Dianne Skoll wrote:
Maybe, but the TTL on the DNS records has
On Sun, 15 May 2016 13:25:34 +0200
Matus UHLAR - fantomas wrote:
Note that the TTL is 3600 for both reverse and forward records.
There are blacklists that won'd delist your IP if your TTL is this
short, e.g. sorbs requirs at least 14400.
On 15.05.16 09:51, Dianne Skoll wrote:
What, r
g DNS records. You really should blame your ISP or hostmaster
instead of spamassassin.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
Chri
RH> RP_MATCHES_RCVD removed 1.7 points
On 11.05.16 16:29, Reindl Harald wrote:
which proves again how badly auto-qa works and why you need to adjust
some rules up to remove them eniterily with a zero score
Am 11.05.2016 um 16:34 schrieb Matus UHLAR - fantomas:
afaik, auto-qa scores _a
n it's less
spam ...
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
Micro$oft random number generator: 0, 0, 0, 4.33e+67, 0, 0, 0...
can simply stop running dccifd daemon. But I recommend configure it in
SA and run it. Not because of the logs, but I assume it's more effcient
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie:
28, 2016, at 2:34 AM, Matus UHLAR - fantomas wrote:
do you see any DCC_CHECK in spam headers?
On 28.04.16 11:58, @lbutlr wrote:
A few, but they always seem to be “1.1” and they occur in about a third of the
messages in the Spam folder, but the daily report into maillog shows that 0
messages
appears every day at midnight.
It it matters, SA is being called by amavis.
do you see any DCC_CHECK in spam headers?
do you have dcc_home set up in SA configuration?
If SA does not find dccifd socket, it uses dccproc interface.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk
ut in many cases, this is one of them.
"dig any mirrors.updates.spamassassin.org. @b.auth-ns.sonic.net."
produces OK output.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu
On 30 Mar 2016, at 9:48, Matus UHLAR - fantomas wrote:
On 30.03.16 06:18, redtailjason wrote:
[]
The headers you have posted show mail that only goes through
internal IPs and localhost, that mail doesn't seem to come from
outside.
On 31.03.16 09:23, Bill Cole wrote:
I believe
View this message in context:
http://spamassassin.1065346.n5.nabble.com/Configuration-Help-Request-Spoofed-Email-Being-Whitelisted-tp120328.html
Sent from the SpamAssassin - Users mailing list archive at Nabble.com.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT t
config at once:
whitelist_from_dkim *@*.bbcmail.co.uk
def_whitelist_auth *@*.bbcmail.co.uk
and run the mail through spamassassin -D
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu
d not
whitelist. check for this carefully...
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
BSE = Mad Cow Desease ... BSA = Mad Software Producents Desease
same result, however
- check for _uri_host would find enlist_uri_host and blacklist_uri_host
- should check all HOME directories.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem
On Mar 8, 2016, at 7:31 AM, Matus UHLAR - fantomas wrote:
how can these two stats be different?
On 08.03.16 10:19, @lbutlr wrote:
Because one is for SPAM and one is for HAM.
On Mar 8, 2016, at 10:41 AM, Matus UHLAR - fantomas wrote:
Why did you remove the important part?
On 08.03.16
On Mar 8, 2016, at 7:31 AM, Matus UHLAR - fantomas wrote:
how can these two stats be different?
On 08.03.16 10:19, @lbutlr wrote:
Because one is for SPAM and one is for HAM.
Why did you remove the important part?
TOP SPAM RULES FIRED
RANKRULE NAME COUNT %OFRULES
%OFRULES %OFMAIL %OFSPAM %OFHAM
1 HTML_MESSAGE16473 9.13 50.51 87.85 90.80
how can these two stats be different?
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address
Am 04.03.2016 um 09:29 schrieb Matus UHLAR - fantomas:
I why are you complaining (again), when you can simply zero the score, when
you have no problem highly tuning other scores.
On 04.03.16 10:40, Reindl Harald wrote:
because this thread was about *another* deep header test and wrong
find out other common characteristics of messages
hitting those scores and post results here so we see what to exclude.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOS
On 03.03.16 16:54, RW wrote:
>RCVD_NUMERIC_HELO is an independent deep check and overlaps heavily
>with either FSL_* rule.
On Thu, 3 Mar 2016 17:59:33 +0100
Matus UHLAR - fantomas wrote:
I wouldn't say so, at least on my system.
% zcat /var/log/mail*.gz | cat - /var/log/mail /var
7;t say so, at least on my system.
% zcat /var/log/mail*.gz | cat - /var/log/mail /var/log/mail.1 | grep
RCVD_NUMERIC_HELO | grep -c FSL_HELO_BARE_IP
5
% zcat /var/log/mail*.gz | cat - /var/log/mail /var/log/mail.1 | grep
RCVD_NUMERIC_HELO | grep -vc FSL_HELO_BARE_IP
36
--
Matus UHLAR - fantomas,
On 02.03.16 12:48, Roman Gelfand wrote:
>I have awl disabled and dcc checks configured. Why, sometimes,
>spamassassin doesn't do dcc checks?
On Wed, Mar 2, 2016 at 2:50 PM Matus UHLAR - fantomas
wrote:
that has nothing to do with AWL.
You have already asked in the DCC mailing
ought it here?
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
Enter any 12-digit prime number to continue.
l".
quite probably, but it highly depends on how you filter the spam.
For example, using spamassassin/spamc from spamass-milter or per-user
procmail/maildrop filters, the SA can use users' ~/.spamassassin/user_prefs
where the directives are configured.
So, how do you call spamassa
ote:
thans, according to http://regexstorm.net/tester that below seems to
work in the meantime
Postfix: 127.0.4.[0..20]
SA: ^127\.0\.4\.(0?[0-1]?[0-9]|20)$
(1?[0-9]|20) should be enough, I think check_rbl doesn't keep leading zeroes
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://
.109 6.554
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
If Barbie is so popular, why do you have to buy her friends?
ust be configured to use them.
I have never heard of this software, and I don't know if it suppports
multiuser setup at all.
I for example use spamass-milter that does, and on some servers amavis and
MailScanner that do not...
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantoma
.
You do NOT need "allow_user_rules 1" to use "blacklist_from" and you should
not allow user rules by "allow_user_rules 1"
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie:
ssues, related to charater set conversion that may be
ligitimately done by servers.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
Linux - It&
wc -l
130
cat maillog | grep FSL_HELO_BARE_IP_2 | grep BAYES_00 | wc -l
93
excuse me, did you get a FP?
Together with BAYES_00?
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu c
F9:
to=mailto:catalin.badi...@domain.com>>,
relay=spamfilter, delay=3908, delays=3907/0.04/0/0.47, dsn=4.3.0,
status=deferred (temporary failure. Command output: pipe: fatal:
pipe_command: execvp /home/spamd/spamfilter.sh: No such file or
directory )
--
Matus UHLAR - fantomas, uh...@fantomas.sk ;
lly
compiled-in.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
I don't have lysdexia. The Dog wouldn't allow that.
tripadvisor.com fails SPF?
http://pastebin.com/36hzGcTs
On 11.12.15 08:56, Matus UHLAR - fantomas wrote:
the envelope sender seems to be
bounce-15_html-74319930-51788793-10834732...@bounce.e.tripadvisor.com
bounce.e.tripadvisor.com seems to have no SPF record, so I also don't
understand
y a server
> >
> > > > > > > that is not in my SPF record.
On Thu, 10 Dec 2015, Matus UHLAR - fantomas wrote:
The SPF fail SHOULD be triggered in that case.
On Thu, Dec 10, 2015 at 10:28 AM, John Hardin wrote:
Matus, I think you misread the question. Again: whet
er is just the opposite: legitimate clients using
your MTA should not be refused. However they should use SMTP Authentication
and that should be prevented from SPF checks.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to
that - to limit the number of outgoing DNS requests and
focus on that haven't been done before. That's why SA uses existing headers
like Received: and Received-SPF:
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising
mta setup that is
fetched with fetchmail
I would put that one even in the internal_networks, so SA can check hosts
the ISP received mail from...
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie
.
maybe group permissions could be enough: putting spamd to group that has read
permissions on the directory...
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT
urned off (score 0) for some reason, just you have
turned it on :-)
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
Your mouse has moved. Wind
On 19.11.15 14:29, Elod G wrote:
So I understand the milter protocol requires the own local received
header to not be present, and Postfix hides it from milters
Am 19.11.2015 um 14:01 schrieb Matus UHLAR - fantomas:
the milter protocol requires mail to be passed as received - without
locally
else, to
all other data must be passed through pseudo-headers. Which makes it quite
hard when you need locally added Received: header after data received from
other milter.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to
made clamscan/clamscan the owner.
-rwxrwxrwx. 1 clamscan clamscan 69 Nov 19 05:09 eicar.txt
[root@ tmp]# clamdscan -c /etc/clamd.d/scan.conf /tmp/eicar.txt
/tmp/eicar.txt: lstat() failed: No such file or directory. ERROR
does clamd run?
Doesn't it run chrooted?
--
Matus UHLAR - fantoma
Matus UHLAR - fantomas skrev den 2015-11-19 10:36:
in any case, spamass-milter will prepend Received: header before
all other
headers, including Received-SPF added by your policy service, which
means SA
won't trust it...
On 19.11.15 11:02, Benny Pedersen wrote:
using spampd here sin
Matus UHLAR - fantomas skrev den 2015-11-19 09:59:
From what I know, the locally added Received: header is not visible in
milter and the spamass-milter must fake it. Therefore, if Received-SPF
exists, the Received: is prepended before it, which explains the issue.
On 19.11.15 10:13, Benny
On 11/19/2015 10:59, Matus UHLAR - fantomas wrote:
From what I know, the locally added Received: header is not visible in
milter and the spamass-milter must fake it. Therefore, if Received-SPF
exists, the Received: is prepended before it, which explains the issue.
On 19.11.15 11:15, Elod G
ed: header is not visible in
milter and the spamass-milter must fake it. Therefore, if Received-SPF
exists, the Received: is prepended before it, which explains the issue.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to th
pam
filter your mail.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
Linux - It's now safe to turn on your computer.
Linux - Teraz moz
server for
SpamAssassin to use. You're apparently doing DNS blacklist queries via a
public DNS server (your ISPs?) and the aggregate traffic level is
exceeding the URIBL free usage limits.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e
, why our AMaVis's allowed those faked
bounce-messages with mailware.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
Spam = (S)tup
m 22.10.2015 um 13:55 schrieb Matus UHLAR - fantomas:
I don't get this. HELO must be canonical name, so it must not be CNAME.
Thus, there's no need to follow CNAMEs in SPF when checking for HELO.
when you check HELO, the CNAME should be treated as error
On 22.10.15 13:58, Reindl
that A-record has the same SPF result with no holes to
abuse
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
He who laughs last thinks slowest.
d to screw things their way just because they are
huge companies and don't care about (even backwards) compatibility and
correctness
Speaking of learning spam… your email address will be joining the blacklist
very soon.
just be careful when blacklisting and spam-training...
--
Mat
nrecognized sendmail macro "{i}".
sendmail macrop $i means the queue id. But how does the message look like?
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akuk
Matus UHLAR - fantomas skrev den 2015-10-16 17:17:
the SPF wasn't reported to fail on own domains. it was reported for
foreign
domains like facebookmail, when coming through secondary MXes, which is
clearly problem of SA configuration...
On 16.10.15 17:51, Benny Pedersen wrote:
in that
Matus UHLAR - fantomas skrev den 2015-10-16 14:43:
the MX servers for your domain MUST be listed in internal_network
(and in
trusted_network too).
This is exactly what internal_networks is for...
On 16.10.15 14:58, Benny Pedersen wrote:
just that is not completely true
if spf fails on own
k too).
This is exactly what internal_networks is for...
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
I just got lost in thought. I
ils it can already detect? Should I only be training it
with miscategorized emails and emails in the 20-80% confidence range?
imho, the more uncertain BAYES score is, the more it's usefull to train.
something hitting BAYES_999 is not worth imho.
--
Matus UHLAR - fantomas, uh...@fan
use the old qmail
- last release was made 17 years ago...
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
10 GOTO 10 : REM (C) Bill Gates 1998, All Rights Reserved!
Date:Wed, 23 Sep 2015 11:28:46 GMT
To:helen.papp...@motec.com.au
From:"Incoming Fax"
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek
On 16.09.15 09:50, Bowie Bailey wrote:
The SA config is probably a better solution than the bind exemptions.
I would say just the opposite. For example, MTA at SMTP level can look up
RBLs, and SA would benefit from having records in local cache.
--
Matus UHLAR - fantomas, uh...@fantomas.sk
On 12.09.15 15:27, Reindl Harald wrote:
and no, i am not the package maintainer but the first person who would
file a bug for *any* package which rely on a internet connection due
update
Am 14.09.2015 um 17:25 schrieb Matus UHLAR - fantomas:
in such case it's up to the distribu
Am 12.09.2015 um 19:15 schrieb Matus UHLAR - fantomas:
funny, at least debian SA package does download updates at install time...
you obviously have no experience with distributions...
On 12.09.15 19:18, Reindl Harald wrote:
can we stop that stupid discussion?
I just wanted to point out that
Am 12.09.2015 um 16:08 schrieb Matus UHLAR - fantomas:
did this really happen?
On 12.09.15 16:13, Reindl Harald wrote:
what did really happen?
RPM packages are not supposed to contact network *3rd party*
ressources at install time and when you think 1 second you know why -
who tells you that
Am 11.09.2015 um 21:08 schrieb Matus UHLAR - fantomas:
if your distribution restarts spamassassin, it will most probably
download the rules before. Not everyone uses distributions...
On 12.09.15 04:20, Reindl Harald wrote:
no, the service restarts are usually rpm-macros in the %post section
Am 11.09.2015 um 21:08 schrieb Matus UHLAR - fantomas:
if your distribution restarts spamassassin, it will most probably download
the rules before. Not everyone uses distributions...
On 12.09.15 04:20, Reindl Harald wrote:
no, the service restarts are usually rpm-macros in the %post section
e upgrade
but before the restart?
if your distribution restarts spamassassin, it will most probably download
the rules before.
Not everyone uses distributions...
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this add
spamassassin see the whole e-mails, including all headers?
the NO_RELAYS test looks like you are not pushing the whole mails to SA,
which significantly decreases score.
Also, do you have way to train your spamassassin with spam? Since all spams
have BAYES_00, you should train them...
--
Matus UHLAR
Am 09.09.2015 um 15:01 schrieb Matus UHLAR - fantomas:
how do you plug spamassassin into your mail flow? How do you call
spamassassin? mta, mail client ... ?
On 09.09.15 16:11, Marc Richter wrote:
I'm running postfix as my MTA. In it's master.cf there is configured
to pipe my mail
On 09/09/2015 04:55 PM, Matus UHLAR - fantomas wrote:
On 09.09.15 15:21, Ben Whyall wrote:
I didnt have that option but I did have bayes_sql_username set
I have added the sql_override as well.
I don't think you should set such options without understsanding what it
may
cause.
it may
u should set such options without understsanding what it may
cause.
it may work, but also may fsck up spam filtering.
I have restarted and will see what happens.
I am using the ubuntu exim-daemon heavy and it calls spamd directly.
that means how?
--
Matus UHLAR - fantomas, uh...@fantomas.sk
more modern MS Office files, which are really
just zip files in disguise.
There will be some false-positives because some legitimate MS Office files
(b) auto-execute macros on document open, but IMO the danger posed
by macro viruses makes the tradeoff worth it.
i believe some peo
massassin into your mail flow? How do you call
spamassassin? mta, mail client ... ?
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
Enter any 12-digit prime number to continue.
ast all headers and part of the textual body to pastebin?
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
"Where do you want to go to die?" [Microsoft]
BAYES and network rules should make SA behave much
better than banned words rules.
Debian 6.0.10
Samassassin 3.3.2-5+deb7u2
perl 5.10.1-17squeeze6
very outdated
this is included in debian 6 LTS
it should still be better to upgrade to more current versions.
--
Matus UHLAR - fantomas, uh...@f
7;s configuration or your user_prefs
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
Boost your system's speed by 500% - DEL C:\WINDOWS\*.*
, they are
coming via sendmail while the MTA rejects the original
That is the glue, not the SA.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu
would it work?
Spam is a personal experience. One's spam may be another's ham after
all. Right?
yes, otoh, there are many cases organizations sharing the same database.
is that different on gmail?
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I w
On 02.09.15 17:49, Reindl Harald wrote:
[harry@mail-gw:~]$ cat maillog | grep URIBL_SBL | wc -l
16
wow
what about "grep -c URIBL_SBL maillog"?
http://porkmail.org/era/unix/award.html
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to
On Tue, 2015-08-11 at 09:06 +0200, Matus UHLAR - fantomas wrote:
2. how do you run SA? If you are using amavis or other system that
uses
single account for scoring, you must train that account
On 11.08.15 10:04, Martin Skjöldebrand wrote:
This is the output of ps aux | grep spamd
root
using amavis or other system that uses
single account for scoring, you must train that account
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
ion.
I wouldn't wonder if gmail would start marking mail forwarded through your
account as spam...
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek rekla
On 23.07.15 13:47, basti wrote:
all my incomming mails get always "1.3 RDNS_NONE" also with a vaild PTR.
Does your mail server check for reverse DNS?
If not, turn it on.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail adve
eject
is 8.0 - the other rules are there to avoid false-positives and
false-negatives for a good reason
Am 22.07.2015 um 13:40 schrieb Matus UHLAR - fantomas:
So THIS explains, why you blame (us) for every single low-scoring rule for
hitting something you don't like!
On 22.07.15 14:01, Rei
ilmessage* | *path* ... ]
Does that mean I can use a directory: smapassassin -r <
/home/bob/Maildir/.Spam/ ?
No: it explicitly says you can only use < with message, you must specify
path without the <.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning
thing you don't like!
however, for the OP it is another reason not even to score high on BAYES_*
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek rekl
901 - 1000 of 2533 matches
Mail list logo