Hi James
Just to let you know it isn't just you. Tried this this morning with
same result. Retried just now, where it seems to have found an update
(1786640), but still doesn't update, exiting with error code 1 (no
updates available), as below
Apr 6 15:05:52.617 [22842] dbg: channel: usin
Tried that when I read Kevin's message. It failed, until I unset a
http_proxy env variable, which I'v now tracked down and eliminated.
Everything is working fine now, thanks
On 30/03/17 13:40, RW wrote:
On Thu, 30 Mar 2017 10:45:59 +0100
Terry Stewart wrote:
Hi
I'm havin
Hi Kevin
Thanks, that was an easy one. For some reason the shell had a http
proxy set (though I couldn't see this when I ran env) So unset
http_proxy fixed it. Now all I have to do is track down where this is
coming from, but that's my problem nothing to do with sa-update.
Rega
Hi
I'm having trouble using sa-update where it says "channel: could not
find working mirror, channel failed".
I'm running this on a Solaris 10 server. DNS works fine (the mail
server also acts as our DNS server) as below
nslookup http://sa-update.space-pro.be
Non-authoritative answer:
Nam
uot;;
I tried using the perl negative look-ahead as both : (?!/) and (?!\/)
without success.
Can anybody toss me a clue?
Thanks!
Terry
entirely possible to select a refresh rate or resolution that
would cause a monitor to smoke and die.
AFAIK, this is not possible with current hardware.
Terry
result in strange things being displayed in the Outlook
Express subject line. If T'bird scrolls the subject in that case
you'd get the effect he's talking about.
I'm guessing that it's nothing more interesting than a bunch of
backspaces. If so, it's a *really* old trick.
Terry
as Nov 2008 when McColo went offline.
We're down slightly, but nothing that couldn't be attributed to normal
fluctuations.
Is your non-spam traffic normal?
Terry
as Nov 2008 when McColo went offline.
We're down slightly, but nothing that couldn't be attributed to normal
fluctuations.
Is your non-spam traffic normal?
Terry
"Thank you!". 8-)
Terry
sounds like the most likely suspect. They're probably waiting for
a confirm email to come back to the address they posted, to see if
they can use the form to send spam from the website.
Maybe I'll send a response to one of the addresses and see the page
starts getting more hits.
Thanks for the help guys!
Terry
ters.
I'll see how well the IP restriction works and take additional steps
if necessary.
Really, I was just trying to figure out what the point would be for
someone to fill out the form with obviously invalid data.
Can SA handle plain text (not an email with headers?). The garbage
characters are pretty obvious.
Thanks,
Terry
dy would bother to fill
out the form with random data in the first place.
Anybody have any ideas what anybody would hope to accomplish with this?
Terry
On 01/11/2010 12:57 PM, Terry Carmen wrote:
exactly every (or any) domain
Should be "exactly *matches* every (or any) domain"
--
Terry Carmen
CNY Support, LLC
315.382.3939
http://cnysupport.com
On 01/11/2010 12:42 PM, Ted Mittelstaedt wrote:
Terry Carmen wrote:
On 01/11/2010 05:22 AM, Jason Haar wrote:
Hi there
We've been getting a few of these leaking through in the past couple of
weeks.
http://pastebin.com/m574da717
They aren't triggering (enough) network rule matches,
n it's tracks at your MTA. If there
isn't any reverse DNS, the chances of it being a legitimate mail server
are pretty slim.
Terry
On 01/06/2010 02:05 PM, Kai Schaetzl wrote:
Terry Carmen wrote on Wed, 06 Jan 2010 13:23:28 -0500:
How/where is this turned on in amavisd-new-2.6.4?
I'd be happy to get rid of useless instances of spamd
This has nothing to do with amavis. spamd is a separate daemon that
here is this turned on in amavisd-new-2.6.4?
I'd be happy to get rid of useless instances of spamd
Terry
On 01/05/2010 02:22 PM, Mark Martinec wrote:
On Tuesday 05 January 2010 19:43:59 Martin Gregorie wrote:
On Tue, 2010-01-05 at 12:37 -0500, Terry Carmen wrote:
I just did a "find" and have:
/usr/local/share/spamassassin/72_active.cf
/usr/share/spamassassin/72_active.c
On 01/05/2010 01:43 PM, Martin Gregorie wrote:
On Tue, 2010-01-05 at 12:37 -0500, Terry Carmen wrote:
I just did a "find" and have:
/usr/local/share/spamassassin/72_active.cf
/usr/share/spamassassin/72_active.cf
/var/lib/spamassassin/3.002005/updates_spamassassin_org/72_active.cf
On 01/05/2010 12:06 PM, Jason Bertoch wrote:
Terry Carmen wrote:
/usr/share/spamassassin/72_active.cf contains
< header FH_DATE_PAST_20XXDate =~ /20[1-9][0-9]/ [if-unset: 2006]
< describe FH_DATE_PAST_20XXThe date is grossly in the future.
/var/lib/spamassassin/3.
thing else I need
to do to get /usr/share/ updated or should it be deleted? (or something
else?)
Thanks,
Terry
Per Jessen wrote:
Terry Carmen wrote:
Some of my users have people they normally to corrospond with, but who
also send large numbers of massivly CC'd "jokes".
Does anybody have an example of a rule that would score messages with
large numbers of CCs higher, without hosing fi
Charles Gregory wrote:
On Tue, 8 Dec 2009, Terry Carmen wrote:
Some of my users have people they normally to corrospond with, but
who also send large numbers of massivly CC'd "jokes".
Does anybody have an example of a rule that would score messages with
large numbers of CCs
Some of my users have people they normally to corrospond with, but who
also send large numbers of massivly CC'd "jokes".
Does anybody have an example of a rule that would score messages with
large numbers of CCs higher, without hosing filtering for the user's
normal messages?
Thanks!
Terry
er because
the user f...@example.net does not exist.
That's a nice idea!
One option (definitely a hack) would be to get SA to pull the
message_id, then scan the maillog for rejected recipients.
Terry
ipient, fbaz, doesn't
exist, and to read it from the headers rather than the envelope
recipients (the way an MTA does).
If your MTA is configured properly, SA will never see a message for a
non-existent recipient.
What are you trying to do?
Terry
from outside the country, un-typable
un-recognizable characters won't help.
Terry
that some of it's customers
can't read or type.
Terry
, but whatever
it is still has the message.
In any case, Spamassassin doesn't delete anything, it only analyzes content.
Terry
asons.
Unfortunately, I don't know of any way to reliably detect it from the
client side.
Terry
ISP is intercepting your DNS requests to opendns?
Terry
John Hardin wrote:
On Wed, 7 Oct 2009, Terry Carmen wrote:
Instead of blacklisting new domains (which is apparently difficult to
do), why not blacklist all .cn domains (or simply all domains) newer
than xxx days?
If they're older than xxx days and not yet on another blacklist for
se
er.
Instead of blacklisting new domains (which is apparently difficult to
do), why not blacklist all .cn domains (or simply all domains) newer
than xxx days?
If they're older than xxx days and not yet on another blacklist for
sending actual spam, return a neutral response.
Terry
This is on par with the classic form submit message "The following
fields are required: . . . " Well if the fields are required, the submit
button shouldn't be active until they're filled.
It's no wonder non-technical people feel intimidated by computers.
Software st
for spam decisions then drop or relay accordingly. This is for
>> outbound email only. I would prefer that spamassassin live outside of
>> these relay servers. Is this possible?
>>
>> Thanks!
>
> Terry,
>
> Are you saying you want the spam processing to be on an
Hello,
We have a cluster of postfix servers through a load balancer. I would
like to set up an external set of spamassassin servers where these
postfix servers simply query the spamassassin servers over the network
for spam decisions then drop or relay accordingly. This is for
outbound email on
zzy distorted
letters. 8-)
Even if it gets past the filters, if it doesn't bring in business, it's
not useful for spam.
Terry
> On Thu, 2009-08-06 at 21:42 -0400, Terry Carmen wrote:
>> > Sorry. But yes, I've got personal responses from pretty
>> > much *all* over the world.
>>
>> As a geek, "I" receive mail from all over the world. However as a business
>> owner,
> On Thu, 2009-08-06 at 13:28 -0400, Terry Carmen wrote:
>> Anything that I receive from an IP address located with maybe 50 miles of
my location is almost 100% guaranteed Ham. However, I've never received
even a single email from China that wasn't spam.
. . .
>So
> On Thu, 6 Aug 2009 13:28:06 -0400
> "Terry Carmen" wrote:
>
>>
>> > Kenneth Porter wrote:
>
>> > Personally, I think you'd have just about as much success scoring 1
>> > additional point to any email originating from the US.
>
Ps and created "hammy" and "spammy" area mappings,
and used distance from these as a weighting factor.
Terry
> On Sat, 1 Aug 2009 19:33:40 -0400
> "Terry Carmen" wrote:
>
>> The backscatter would not have been received, since the sender is on
>> a number of RBLs.
>
> It's the IP address of the botnet PC that's on the RBLs, the backscatter
> doesn'
> On Sat, 1 Aug 2009 11:04:35 -0400
> "Terry Carmen" wrote:
>
>>
>> > On Sat, 1 Aug 2009 10:02:54 -0400
>> > "Terry Carmen" wrote:
>> >
>> >>
>> >> > I have received many emails in the last hour which wer
> On Sat, 1 Aug 2009 10:02:54 -0400
> "Terry Carmen" wrote:
>
>>
>> > I have received many emails in the last hour which were
>> > undeliverable, NOT sent by me.
>> > It seems someone is forging usernames in my domain
>> &g
l server use an RBL, which would
have stopped this before you received it.
http://www.mxtoolbox.com/blacklists.aspx
Terry
s going on here! How can it get a score like that?
> The message contained just an image and a link.
--> USER_IN_WHITELIST
Terry
y of the "damaged" content with a fresh copy from the
secure server and remove any "extras", making any unauthorized content changes
vanish.
Terry
> On Fri, 10 Jul 2009, Terry Carmen wrote:
>
>>> Because of Apache.org spam filters I can't send here my message about
>>> spammers again:
>> . . .
>>
>>> http://pastebin.com/f6a83e9fb
>>
>> I'm new to this list, and may be missin
ule.
Is there any reason you don't just drop the packets instead of wasting time
deciding if they're spam?
In fact, you can get fail2ban to do this automatically for IPs that create a
significant number of spammy messages.
Terry
> On Wed, 8 Jul 2009, Terry Carmen wrote:
>
>> I'm running:
>>
>> #spamassassin --version
>> SpamAssassin version 3.1.9
>> running on Perl version 5.8.8
>>
>> and would greatly appreciate a help in troubleshooting this problem.
>>
>&g
> On Wed, 8 Jul 2009, Terry Carmen wrote:
>
>> SpamAssassin version 3.1.9
>
> That's *way* old. Is there any chance you can upgrade to 3.2.5?
I'm actually upgrading the entire server, but wanted to make sure I didn't
migrate the problem along with the config
gus, since CHARSETS_LIKELY_TO_FP_AS_CAPS is defined in
/usr/lib/perl5/vendor_perl/5.8.8/Mail/SpamAssassin:
Any ideas?
Thanks!
Terry
/
# These are generic constants that may be used across several modules
@SA_VARS = qw(
HARVEST_DNSBL_PRIORITY MBX_SEPARATOR
MAX_BODY_L
John Hardin wrote:
On Tue, 1 Apr 2008, William Terry wrote:
Is there anything I can do to mitigate this?
Do you publish SPF records?
We haven't as of yet. I have been looking at it though since this last
burst of backscatter. Any idea how widely SPF record checking has been
adopte
I mostly lurk here, gleaning bits of wisdom from those far more
knowledgeable than me, however...
I am getting a dramatic increase in bounce messages with my domain
forged sent to me. At least some of the messages still retain the
headers so I can tell that we did not originate the message.
To assume that legitimate mail
servers won't use legitimate methods of delivering mail in the instance
of service unavailability, IMHO, is a mistake.
__
Terry Soucy, Systems Analyst Integrated Technology Services
University of New Brunswick, Fredericton Campus http://www
compensate for the RFC rules that will more than likely fire off.
Terry
Terry Soucy, Systems Analyst Integrated Technology Services
University of New Brunswick, Fredericton Campus http://www.unbf.ca/its
Voice: 506.447.3018Fax: 506.453.3590 E-mail: [EMAIL PROTECTED
You might want to try asking that question in a mailing list specific
for qmail. Check www.qmail.org for access to support and forums.
Also check the Life with qmail book, available for download at
http://www.lifewithqmail.org, which addresses this question.
Terry
Terry Soucy, Systems Analyst
record to their DNS, adding the A record
for it, but not actually having system there. Spammers attempt to send
to the third host, make no connection, and then move on.
Just my $0.02 CDN
Terry
Terry Soucy, Systems Analyst Integrated Technology Services
University of New
. all within a web
interface.
--
Bye for now, Terry Allen
___
hEARd
Postal Address:
hEARd, 26B Glenning Rd, Glenning Valley, NSW 2261, Australia
Internet -
WWW: http://heard.com.au http://itavservices.com
EMAIL: [EMAIL PRO
On Friday, October 20, 2006, 9:26:29 PM, Terry Allen wrote:
Hi all,
I'm a long time SA user - my system runs Mac OSX 10.4.x,
running Postfix, Maia Mailguard, ClamAV, Amavisd-new & now
SpamAssassin 3.1.7 since upgrading 4 days ag, the SA installation
intercepts all inbound
On Sat, October 21, 2006 06:26, Terry Allen wrote:
if it's an optional extra, can anyone let me know how to
install it or point me to a how-to to get it running successfully
with SA - many thanks for any help with this.
find /etc/mail/spamassassin/ look for any file there ends wit
elp with this.
--
Bye for now, Terry Allen
___
hEARd
Postal Address:
hEARd, 26B Glenning Rd, Glenning Valley, NSW 2261, Australia
Internet -
WWW: http://heard.com.au http://itavservices.com
EMAIL: [EMAIL PROTECTED
Hello,
Our OWA server sits inside of our network. I just tried sending an
email to a valid outside recipient. The email wasnt anything crazy
but here are the tests that were ran:
FORGED_OUTLOOK_HTML=2.514,FORGED_OUTLOOK_TAGS=2.369,HTML_MESSAGE=0.001,HTML_TAG_EXIST_TBODY=0.126,MIME_HTML_ONLY=0.
I checked the FAQ's and the searched the WIKI but couldn't find an
answer to this question...
My email client (thunderbird) connects directly to my remote POP Mail
Server, which is hosted by my ISP.
Is there a configuration of SpamAssassin that will work for me?
--
Terry Wra
On 3/18/06, mouss <[EMAIL PROTECTED]> wrote:
> Terry a écrit :
> > Actually,
> >
> > I got the ALL_TRUSTED I think but I cannot get the x-spam-status
> > header to show up to even start debugging.
>
> What tells you you "got the ALL_TRUSTED" if you
On 3/18/06, Bill Randle <[EMAIL PROTECTED]> wrote:
> On Sat, 2006-03-18 at 09:54 -0600, Terry wrote:
> > Actually,
> >
> > I got the ALL_TRUSTED I think but I cannot get the x-spam-status
> > header to show up to even start debugging. SA is being called from
>
;
$sa_dsn_cutoff_level = 9;
$sa_quarantine_cutoff_level = 20;
The first one says I should get headers no matter what, no? Only
relevant header I am getting is:
X-Virus-Scanned: amavisd-new at domain.org
Any ideas?
On 3/18/06, Matt Kettler <[EMAIL PROTECTED]> wrote:
> Terry wrote:
> > I am not on a
I am not on a natted machine but it is firewalled. So, I set
trusted_networks to my local machine IP because that's really the only
one I trust. I am still, after setting this, getting spams with
negative scores. What am I missing?
ailto:[EMAIL PROTECTED]
Sent: Sunday, February 19, 2006 3:40 PM
To: Terry Miller
Cc: users@spamassassin.apache.org
Subject: Re: Exiscan + subject rewrite not working
On Sun, 19 Feb 2006, Terry Miller wrote:
> I looked this up and can't see where I'm doing anything wrong, but the
>
I looked this up and can't see where I'm doing anything wrong, but the
subject is not being rewritten.
Some relevant data:
/etc/mail/spamassassin/local.cf
# How many hits before a message is considered spam.
required_score 3.0
# Change the subject of suspected spam
rewrite_header Subject *S
Never mind, I found the rule set.
Thank you for the help,
Terry Poperszky
SOS Staffing Services
Network Manager
801-257-5709
[EMAIL PROTECTED]
Terry Poperszky wrote:
Thanks, just checked the logs and it is working. When you ask "beyond
the default ones", what BL's is SA 3.02 u
Thanks, just checked the logs and it is working. When you ask "beyond
the default ones", what BL's is SA 3.02 using by default?
Terry Poperszky
SOS Staffing Services
Network Manager
801-257-5709
[EMAIL PROTECTED]
Theo Van Dinter wrote:
On Wed, Feb 23, 2005 at 12:13:11PM -0700,
orate environment.)
--
Terry Poperszky
What exactly am I losing when I use the -L switch on spamd?
Terry Poperszky
ss
to say the 2.64 spamd didn't work well with the 3.0.2 libraries.
Thanks
Terry
-Original Message-----
From: Terry Poperszky [mailto:[EMAIL PROTECTED]
Sent: Wednesday, February 16, 2005 2:59 PM
To: users@spamassassin.apache.org
Cc: [EMAIL PROTECTED]
Subject: RE: SA not modifyi
Suggestions? I installed using perl -MCPAN -e shell, is there a way to
remove the old and then reinstall the new?
Terry
-Original Message-
From: Matt Kettler [mailto]
Sent: Wednesday, February 16, 2005 2:38 PM
To: Terry Poperszky; users@spamassassin.apache.org
Subject: Re: SA not
I just upgraded from 2.64, to 3.02 this morning. Spamd is
running just fine, but it is not modifying the headers of the email at all. I
find the following errors in my mail log. Can someone point me in the proper
direction?
Terry
SuSe 9.1
Postfix 2.0.4
SpamAssassin 3.0.2
78 matches
Mail list logo