Michael Scheidell a écrit :
>> 3banatomy.co.kr
>
> Minor point, rfc's don't require an mx record an a record will satisfy the
> rfc's just fine. (and one of the major saas email anti-spam providers used
> to use cname records for all their clients.. Yes, they took them off, one at
> a time, as c
Burton Windle a écrit :
> Sorry for the off-topic post, but I can't think of a better list with
> more sharp email server admins.
>
> I've just taken a new job with a company that does some (legit, opt-in,
> with-working-remove-link, only sending to our paying customers) email
> marketing. I'm see
Lucio Chiappetti a écrit :
> We have been very happily running spamassassin 3.0.4 under amavisd-new
> milter on Suse 9.2 since a couple of years, using the standard
> configuration recommended by the Italian GARR network.
>
> Please avoid comments on "old version" or so, we are planning an overall
Brent Clark a écrit :
> Hiya
>
> I would like to know, what are the implications of using / enabling
> shortcircuit.
>
> Other than speeding up the scan processing, from my side, I cant see a
> downgrade in spam detection.
>
if you don't have performance issues, don't shortcircuit. The more you
Michael Scheidell a écrit :
> we arn't arguing rfc's, and by '99% of the time', actually, it works
> 100% of the time unless you use the rfc-ignorant blacklists.
>
> rfc means 'request for comment'. and rfc's change as technology changes.
>
> I don't know if, or, since you are the expert in this
Jean-Paul Natola a écrit :
> Hi all,
>
> I've been out of the loop for a couple of months do a rollout, so I came back
> to my SA today as I have seen A LOT more spam coming in than normal, I
> upgraded to 3.2.5 today, and ran sa-update but , i dont seem to see any new
> rules, and i;m getting
Jim Knuth a écrit :
> Am 24.10.2008 1:31 Uhr, schrieb mouss:
>> Jean-Paul Natola a écrit :
>>> Hi all,
>>>
>>> I've been out of the loop for a couple of months do a rollout, so I came
>>> back
>>> to my SA today as I have seen A LO
Benny Pedersen a écrit :
> On Thu, October 23, 2008 20:43, mouss wrote:
>
>> subdomains, as used to be the case when all the internet was unix,
>> but this is no more the case).
>
> lets hope thay are deploying dkim next then, it was newer meant to rewrite
> any head
asai a écrit :
> Greetings,
>
> I've been trying to stop Spamassassin from sending any more spam notices to
> me, so I changed it in /etc/mail/spamassassin/local.cf but I'm still getting
> messages sent to the same email address...what am I missing here?
SA does not send, block, or route mail. it
Luis Croker a écrit :
>
> Hi...
>
> I have a mail server with FreeBSD 7.0,
> postfix+amavis-new+spamassassin. We are an ISP and I need to filter the
> spam that our susbribers are sending to internet, the PCs have some
> malware or are botnets. These PCs generates a lot of spam each day.
>
Luis Croker a écrit :
>
>I have updated the SARE rules... how often should I update them ? Daily ?
>
no. they don't change often. (I don't update them anymore, so I don't
know when they were last updated...).
JM_SOUGHT rules get updated often.
asai a écrit :
> Ok, thank you.
>
> I'm using Postfix, Amavisd-new, ClamAV and SQLGrey. Do you know where I
> would enable or disable receiving this notice in any of these? I've been
> looking and looking and I can't seem to find anything...
>
>
you should aks on the amavisd users list. but y
Daniel J McDonald wrote:
On Wed, 2008-10-22 at 23:59 +0200, Jonas Eckerman wrote:
Matus UHLAR - fantomas wrote:
In my understanding, these are different concepts. In particular, RMX
doesn't hijack the TXT record, which is one of the major sins of SPF.
Yes, but they both were designed to do th
Chris Arnold wrote:
We use zimbra OSS on SLES10 SP1. Zimbra has spamassassin built-in. At
the present time, my mailbox is filled with backscatter; getting around
10 a minute since 4:30 today. I have postfix backscatter rules in
postfix of zimbra,
http://www.postfix.org/BACKSCATTER_README.html#
Michael Scheidell wrote:
I need a domain registry who won't spam me every two weeks with crap and
argue that since I am a client of theirs, its not a violation of
can-spam laws to spam me and refuse to stop. And, no, I can't change
the email address because then we won't get REALLY important
Per Jessen wrote:
Greg Troxel wrote:
Asking someone to change their domain name to match an SA rule seems
a bit extreme to me! Why not propose that de establish a gmbh 2nd
level for companies, and make him rss.gmbh.de?
FROM_DOMAIN_NOVOWEL was logged for only 3 messages here yesterday,
Matthias Leisi wrote:
mouss schrieb:
reject_backscatter =
reject_rbl_client ips.backscatterer.org
Which will very likely result in a lot of false positives.
an FP here would mostly be: a bounce from a 3d party that is listed on
backscatterer.org. do you get a lot of such mail?
Benny Pedersen wrote:
On Sun, November 2, 2008 19:14, mouss wrote:
PS. don't think SPF will help. this has been discussed here and
elsewhere before.
SPF helps if its used from the sites that does use spf in mta stage, if not
used it will turn over to be a backscatter site itself
yes
Sahil Tandon wrote:
Matthias Leisi <[EMAIL PROTECTED]> wrote:
mouss schrieb:
reject_backscatter =
reject_rbl_client ips.backscatterer.org
Which will very likely result in a lot of false positives.
an FP here would mostly be: a bounce from a 3d party that is listed on
backscatter
Jeff Chan wrote:
On Thursday, October 30, 2008, 12:56:53 PM, Micah Anderson wrote:
I keep getting hit by phishing attacks, and they aren't being stopped by
anything I've thrown up in front of them:
[...]
I've got spamassassin 3.2.5 with URIBL plugin loaded (which I understand
pulls in the 25
Micah Anderson wrote:
* Kelson <[EMAIL PROTECTED]> [2008-10-30 17:29-0400]:
Micah Anderson wrote:
reject_rbl_client list.dsbl.org,
DSBL has shut down, and you should remove the query from your list. It
won't help with the phishing, but it'll free up some network resources.
In
Kelson wrote:
Per Jessen wrote:
I guess it's a matter of opinion, but an email address is a significant
part of a corporate identity - you don't go around changing it ad-hoc,
and you certainly try to avoid having one domain in your email-address
and another on your brochures and businesscards.
RobertH wrote:
this looks for it, assigns some reasonable scores, and if (add your
favorite shortcut) bumps it up another 5.
uri ST_SPACES /\.spaces\.live\.com/$
score ST_SPACES 5 3 4 2
meta ST_SPACES_BUMP (ST_SPACES && (RCVD_IN_BL_SPAMCOP_NET ||
RCVD_IN_XBL
|| RCVD_IN_BL_SPAMCOP_NE
Justin Mason wrote:
mouss writes:
Justin Mason wrote:
mouss writes:
[snip]
will vbounce tag this message?
Nope ;)
hmmm. It does trigger BOUNCE_MESSAGE here (both my message and your reply):
[71842] dbg: rules: ran one_line_body rule __BOUNCE_OOO_1 ==> got
hit: "I will be on
Andy Spiegl wrote:
[snip]
But I do agree with Karsten (or Guenther?) that we shouldn't raise the
score.
yes, vbounce does FP. Let's test:
nobody wrote:
> I will be on vacation from 1/2/2345 to 6/7/8901.
will vbounce tag this message?
But my problem is that I cannot explain to all of my u
David Birnbaum wrote:
Greetings,
I've experienced a pretty significant upswing in spam over the last few
weeks, and I finally had a chance to track it down. Although not
responsible for 100% of the increase, I found that the URIDNSBL isn't
getting all of the URLs it should be.
I've tracked
Justin Mason wrote:
mouss writes:
[snip]
will vbounce tag this message?
Nope ;)
hmmm. It does trigger BOUNCE_MESSAGE here (both my message and your reply):
[71842] dbg: rules: ran one_line_body rule __BOUNCE_OOO_1 ==> got
hit: "I will be on vacation from"
...
[71842] db
[EMAIL PROTECTED] wrote:
Hello,
Swinog has no listing for this url - so why does spamassassin mark this mail?
because it is listed on swinog:
$ host s9y.org.uribl.swinog.ch
s9y.org.uribl.swinog.ch has address 127.0.0.2
As others said, swinog isn't part of the default SA rules. you added it
mouss wrote:
[EMAIL PROTECTED] wrote:
Hello,
Swinog has no listing for this url - so why does spamassassin mark
this mail?
[snip]
so now you reject my mail because it is spam?
client and sender domain added to local permanent blocklist.
bounce:
This is the mail system at host
derHummel wrote:
nik600 hotmail wrote:
I'm experiencing a strange problem with RDNS_NONE.
On the same sender host, sometimes it is marked with RDNS_NONE, and
sometimes not.
The host has a reverse dns!
Example:
Received: from dadosoftware.com (dns2.dadosoftware.com [217.199.13.2]) ->
OK
Rec
Per Jessen wrote:
Occasionally I'd like to do something like this:
whitelist_from_rcvd [EMAIL PROTECTED] /^smtp[0-9]+\.orange\.fr$/
The situation is that domain.fr is relaying mail through their provider,
which has a number of smtp servers named smtpNN.orange.fr. If I were
to stick to the cu
FractalBob wrote:
Can SpamAssassin be configured to use the domain in the sender e-mail address
or in the message content itself as an input parameter to, say, a WHOIS
search, in order to locate either the sender or his ISP? I know this would
be expensive, since it would require going out to the
Henrik K wrote:
On Fri, Nov 07, 2008 at 02:38:22PM +0100, Per Jessen wrote:
Henrik K wrote:
On Fri, Nov 07, 2008 at 02:22:08PM +0100, Per Jessen wrote:
Yes, I saw that in the code - still, having a
whitelist_from_rcvdregex
would be very useful, people relay via their providers quite a lot.
I
Henrik K wrote:
why link that to trusted_networks?
Obviously the whole IP path must be trusted (excluding the last one). You
can use hostnames as well. But then you have to have trust path right, to
trust later hostnames.
maybe I misunderstood your "could even work ...".
And perhaps it cou
Henrik K wrote:
On Fri, Nov 07, 2008 at 04:20:17PM +0200, Henrik K wrote:
On Fri, Nov 07, 2008 at 03:09:29PM +0100, Per Jessen wrote:
I'm not sure I like the ideas of whitelisting based on IP-addresses,
it's too inflexible. Why would you not use hostnames?
Hmm.. ok I think you b
FractalBob wrote:
Sure, they do spoof, but one could write a script that pokes around the
message content, looking for a URL or signature and use that instead.
I found some rulesets, 70_sare_evilnum*.cf, that seem to do what I want, but
I don't know how to use them; documentation is scarce for S
Benny Pedersen wrote:
On Fri, November 7, 2008 03:33, Michelle Konzack wrote:
I am rejecting ANY (!!!) messages coming from <*.ru> and <*.ua> domains
where the "From:" header is from:
MAILER-DAEMON@
ok
postmaster@
http://rfc-ignorant.org/policy-postmaster.php
the rfci
Neil wrote:
But still; how can I know that SPF and DKIM checks are working?
copy _this_ message (the one you are reading now) to a file:
message.eml, then (assuming a Bourne shell, not a C shell), run
# spamassassin -D -t < message.eml 2>&1 | tee sa.out
and check sa.out for spf and dkim.
Neil wrote:
On 8 Nov 2008, at 07:40, mouss wrote:
Neil wrote:
But still; how can I know that SPF and DKIM checks are working?
copy _this_ message (the one you are reading now) to a file:
message.eml, then (assuming a Bourne shell, not a C shell), run
# spamassassin -D -t < message.
Benny Pedersen wrote:
On Fri, November 7, 2008 19:31, mouss wrote:
postmaster@
so Michell said she rejects mail from postmaster@ from specific clients.
http://rfc-ignorant.org/policy-postmaster.php
you cited rfci which is irrelevant here.
the rfci policy applies to postmaster as a
Neil wrote:
[snip]
Content analysis details: (-6.1 points, 4.5 required)
pts rule name description
--
--
-0.0 SPF_PASS SPF: sender matches SPF record
This is because SA list domain has an
Neil wrote:
[snip]
Heh, thanks for helping me out with this.
Do you have any recommendations on scores for these rules?
I use the default scores for these.
Byung-Hee HWANG wrote:
mouss wrote:
[...]
let's start with DKIM.
do you have
loadplugin Mail::SpamAssassin::Plugin::DKIM
+ i'm use with following rule ;;
score DKIM_VERIFIED -45.3
then you won't catch spam relayed by yahoo, ... etc.
Henrik K wrote:
On Mon, Nov 10, 2008 at 08:49:00AM +0100, mouss wrote:
Henrik K wrote:
On Mon, Nov 10, 2008 at 12:25:42PM +0530, ram wrote:
The number of DNSWL_LOW and DNSWL_MED misfires have gone up especially
in last two days. Even Marc's JMF_W misfires.
What it means is these are
Henrik K wrote:
On Mon, Nov 10, 2008 at 12:25:42PM +0530, ram wrote:
The number of DNSWL_LOW and DNSWL_MED misfires have gone up especially
in last two days. Even Marc's JMF_W misfires.
What it means is these are "good" mailservers who normally relay ham and
have some weak links ( weak passwo
Francis Russell wrote:
>> Even with the default DKIM scores, I finding I am getting spam that are
>> DKIM_VERIFIED causing the score to dip below zero and let the message
>> through, for example:
>>
>> http://micah.riseup.net/1
>
> that's spam relayed by a debian list. definitely a differe
Micah Anderson wrote:
Byung-Hee HWANG <[EMAIL PROTECTED]> writes:
mouss wrote:
[...]
let's start with DKIM.
do you have
loadplugin Mail::SpamAssassin::Plugin::DKIM
+ i'm use with following rule ;;
score DKIM_VERIFIED -45.3
Even with the default DKIM scores, I finding I
Bill Landry wrote:
I've posted a short pharma spam message to:
http://www.inetmsg.com/spam.txt
and debug output to:
http://www.inetmsg.com/sa-debug.txt
It displays a single URI linked line in an e-mail client that only
displays: "Please visit our shop." There seems to be something about
the
Ralf Hildebrandt wrote:
* Benny Pedersen <[EMAIL PROTECTED]>:
On Tue, November 11, 2008 16:38, Henrik K wrote:
header RCVD_IN_BRBL_LASTEXT
eval:check_rbl('brbl-lastexternal','bb.barracudacentral.org')
bb ?
Yes, I was wondering about this as well. Typo?
no, it's the zone set for SA, so th
Micah Anderson wrote:
mouss <[EMAIL PROTECTED]> writes:
Francis Russell wrote:
>> Even with the default DKIM scores, I finding I am getting spam that are
>> DKIM_VERIFIED causing the score to dip below zero and let the message
>> through, for example:
>>
Sujit Acharyya-Choudhury wrote:
I would like to use the "free" barracuda RBL with SpamAssassin. Is
there any rule for that yet?
I've been usingthis:
ifplugin Mail::SpamAssassin::Plugin::DNSEval
header RCVD_IN_BRBL eval:check_rbl('brbl-lastexternal',
'bb.barracudacentral.org.')
Josie Walls wrote:
Hello All,
Can anyone provide insight into what this means and how to rectify it?:
2.9 TVD_SPACE_RATIO BODY: TVD_SPACE_RATIO
http://wiki.apache.org/spamassassin/Rules/TVD_SPACE_RATIO
http://svn.apache.org/viewvc/spamassassin/trunk/rules/20_body_tests.cf?view=marku
Randy wrote:
Appriver.com, an e-mail filtering company, sends backskatter or it sure
appears so.
this is the wrong list for such reports. if all of us start forwarding
all backscatter or spam here, this list will quickly become unusable.
if you're annoyed, you can try a rule based on
Micah Anderson a écrit :
> "Benny Pedersen" <[EMAIL PROTECTED]> writes:
>
>> On Tue, November 18, 2008 22:16, Henrik K wrote:
>>
>> postfwd and trusted_networks msa_networks is what i do use here, then minimal
>> dns lookups is needed olso, facebook have random helo so need to be
>> whitelisted ha
Jeff Koch a écrit :
>
> Hi All
>
> Hopefully another pair of eyes can help find the reason for this rDNS
> error. Here's SA header message:
>
> * 1.0 RDNS_NONE Delivered to trusted network by a host with no
> rDNS
> Received: from unknown (HELO cronus.intersessions.com) (74.220.16.65)
>
Lists a écrit :
> Hi all,
>
> The system here is getting heaps of variations of this night of pleasure
> spam. Some is getting stopped by spamassassin but still quite a bit
> getting through.
> Here is an example of one that only scored low.
> http://www.pastebin.ca/1267866
>
> If anybody has tim
Arvid Ephraim Picciani a écrit :
> Hi,
> tryed to find the yahoo abuse report adress, so i did "whois yahoo.com"
did you look at
http://www.rfc-ignorant.org/tools/lookup.php?domain=yahoo.com
> besides not finding what i was looking for, ... what the hell do these
> entries
> mean?
>
>Se
Lars Ebeling a écrit :
> Dear all
>
> Could someone advice me.
> I am listed on dun.dnsrbl.net and spam.dnsrbl.net
>
everybody is listed there, even mister "Luke Al. Host":
$ host 1.0.0.127.spam.dnsrbl.net
1.0.0.127.spam.dnsrbl.net has address 127.0.0.1
you can also search for dnsrbl in the de
John Hardin a écrit :
> On Sat, 29 Nov 2008, Lars Ebeling wrote:
>
>> Dear all
>>
>> Could someone advice me.
>> I am listed on dun.dnsrbl.net and spam.dnsrbl.net
>>
>> How to get off the lists?
>
> Both those lists are dead (since mid-2005?) and appear to be returning
> 127.0.0.1 for all queries
Nikita Kipriyanov a écrit :
> Hello,
>
> SpamAssassin tags mail with headers X-Spam- But, what if there were
> some headers like these, as with mail that already passed someones
> SpamAssassin and has X-Spam-Score, before being recieved by my server?
>
> Will it remove them, replace them or s
Nikita Kipriyanov a écrit :
> mouss пишет:
>> you can "preserve" them by rewriting them before passing the message to
>> SA. for example, with postfix, you can use header checks:
>>
>> /^(X-Spam-*)/X-$1
argh. I meant
/^(X-Spam-*)/REPLACE X-$1
>&
Ray Jette a écrit :
> Karsten Bräckelmann wrote:
>> Back on-list.
>>
>> On Tue, 2008-12-02 at 13:40 -0500, Ray Jette wrote:
>>
Yes, and it does match case insensitively.
I guess the issue is with your testing environment. How are you testing
the rule, err, regexp for a rule?
>
Matt Kettler a écrit :
> Brian J. Murrell wrote:
>> If I get a spam and I need to have SA learn that it's spam with
>> sa-learn, wouldn't it be useful to also skew the AWL for that sender so
>> that future uses of the AWL for that spammer will push the overall spam
>> score up?
>>
>> Thots?
>>
>
Matt Kettler a écrit :
> mouss wrote:
>> Matt Kettler a écrit :
>>
>>> Brian J. Murrell wrote:
>>>
>>>> If I get a spam and I need to have SA learn that it's spam with
>>>> sa-learn, wouldn't it be useful to also skew t
Lists a écrit :
> Karsten Bräckelmann wrote:
>>> Thank you for the information I will attempt to get it up an running,
>>> have had a huge increase in spam last week or so and just trying to
>>> get it under control.
>>>
>>
>> What type of *spam* are you referring to that you want to kill by
>
Lists a écrit :
> mouss wrote:
>> Lists a écrit :
>>
>>> Karsten Bräckelmann wrote:
>>>
>>>>> Thank you for the information I will attempt to get it up an running,
>>>>> have had a huge increase in spa
Matt Kettler a écrit :
>> I am thinking about this case: Joe the spammer bombs you with mail that
>> is not detected as spam. he gets a negative awl.
> That statement implies that there's a "score" for the user in the AWL.
>
> The AWL score varies with what the current messages pre-awl score. The
raptor31 a écrit :
> Is there a way to pull a real time list of blocked emails...or any real time
> display at all???
SA does not block mail. you need to check tools for the program you use
to call SA (and which may block mail).
Matt Garretson a écrit :
> This thread is getting ridiculous. Just use
>
> Subject =~ /po.*\d+/i
>
> To avoid losing millions of dollars, surely they can put
> up with a couple of porn and impotence spams. :-)
or
Subject =~ /\bPO\W.*\d+/i
mouss a écrit :
> Matt Garretson a écrit :
>> This thread is getting ridiculous. Just use
>>
>> Subject =~ /po.*\d+/i
>>
>> To avoid losing millions of dollars, surely they can put
>> up with a couple of porn and impotence spams. :-)
>
Ray Jette a écrit :
> Martin Gregorie wrote:
>> On Fri, 2008-12-05 at 10:04 -0500, Ray Jette wrote:
>>
>>> Sorry if this is off topic. I am using a Microsoft DNS server. I am
>>> putting a big load on it with Mailscanner / Spamassassin and MTA
>>> RBL's. Would you recommend that I use a local BIN
Matt a écrit :
>>> Is there a way to tell Spamassassin to whitelist a dynamic list of
>>> IP's in a file? I have have a dynamic list of IP's called ./pop_hosts
>>> that have checked email by pop3 within last 15 minutes and I would
>>> like to white list them all if thats possible. The IP's in the
Ray Jette a écrit :
> John Hardin wrote:
>> On Fri, 2008-12-05 at 10:53 -0500, Ray Jette wrote:
>>
>>> Now I want to be able to view the bind cache so I can verify that it
>>> is caching records. I have searched all over the Internet with no
>>> luck. At most, I can find that the cache is stored
Yavuz Maslak a écrit :
> Sometimes, although anyone don't use domain.com's server, he sends many
> mails using himself smtp service as if these mails come from @domian.com.
>
> the domain.com may be hotmail.com , gmail.com.
>
> is there a rule for that so that we can give some score for these m
Arthur Dent a écrit :
> Hello All,
>
> I have the following command running daily in my crontab on my Fedora 9
> box: (excuse the linewrap)
>
> sa-update --channelfile
> /etc/mail/spamassassin/sare-sa-update-channels.txt --gpgkey 856AA88A
> --gpgkey 6C6191E3 && /sbin/service spamassassin restart
Mike Cisar a écrit :
> Have recently been having 1000's of spam slipping past Spamassassin... they
> all seem to be pretty much identical in format but Spamassassin isn't
> scoring them even high enough to be tagged.
>
> - they are all flagged as important
> - a single line having so far have one
Bill Landry a écrit :
> This issue has been resolved. Thanks to Justin Mason and Gisle Aas
> (HTML::Parser guy) for finding the fix. The resolution is to update
> HTML::Parser to the latest version and then restart SA.
>
Thanks for the heads up. it indeed works (HTML::Parser 3.59).
Yavuz Maslak a écrit :
> Ok
> I have started to use dkim verification. I defined whitelists in
> local.cf. it works.
> But I could not find how I give high score for a spammer who doesn't
> use gmail's mail servers.
>
The link that I suggested in my previous post contains spamassassin rules.
Yavuz Maslak a écrit :
> Let me explain my problem and goal;
>
> For instance, a spammer installs a smtp server and he has a tool to send
> his mails. He writes [EMAIL PROTECTED] in from adress and He sends his
> mails using his smtp server. Namely, he doesn't use gmail's servers. I
> want to giv
support a écrit :
> On Sat, 2008-12-06 at 23:45 -0500, Theo Van Dinter wrote:
>> On Sat, Dec 06, 2008 at 08:00:10PM -0800, John Hardin wrote:
>>> mechanism for. Devs: there've been wishes for this before; how hard
>>> would it be to add the ability to match on the substring match captured
>>> by an
Benny Pedersen a écrit :
> On Mon, December 8, 2008 05:25, [EMAIL PROTECTED] wrote:
>> mouss said:
>
> bug:
> Mail::SpamAssassin::Plugin::dbg("FromInTo: Comparing '$from' and
> '$To");
>
> fixed line:
> Mail::SpamAssassin::Plugin::dbg
Kai Schaetzl a écrit :
> LuKreme wrote on Tue, 9 Dec 2008 16:50:34 -0700:
>
>> Geez there's
>> a lot of them... and they look like they are very old, with last
>> updated dates in 2005-2006 and none newer than Aug 2007.
>
> Right. I removed most if not all of the SARE rules on most machines s
hofmae a écrit :
> Hi,
>
> thanks a lot.
>
> but the didn't solve anything...
>
> We need the mailer daemon, we cannot just deactivate it.
>
> I think the main problem is that there is one of our adressess in the
> return-path. Thats wrong i think, because the spammer sends a spammail with
> on
John Horne a écrit :
> On Tue, 2008-12-09 at 22:54 -0700, LuKreme wrote:
>> On 9-Dec-2008, at 17:09, John Horne wrote:
>>> Try:
>>>
>>>sa-update --gpgkey 6C6191E3 --channel sought.rules.yerp.org
>> Ok, that gives me no error (where did you find/get the 6C6191E3?). It
>> sits for about 20-30 s
LuKreme a écrit :
> On 8-Dec-2008, at 00:44, mouss wrote:
>>> DKIM is not a blacklister, but a whitelist based on if sender really
>>> use monster.com mta mail server or not :)
>>>
>> indeed.
>
>
> Checking my SPAM folder it seems that a LOT of spam
LuKreme a écrit :
> On 10-Dec-2008, at 01:31, Kai Schaetzl wrote:
>> Duane Hill wrote on Wed, 10 Dec 2008 06:53:39 + (UTC):
>>> Do a search for 'sought' on the SA wiki page
>>
>> and read the documentation on sa-update before you ask again ;-)
>
> I read the man page, where there is no mention
is is why the
>> default scores on DKIM_VERIFIED and DKIM_SIGNED are just enough to
>> track the rule, and not enough to significantly affect the score
>
> Thank you (and you too, mouss) for the explanation, this does make a lot
> of sense now. I guess I need to go through all
Ned Slider a écrit :
> Genuine spam traps are great for bayes training as they should contain a
> representative sample of spam your users will be seeing plus you know
> they only contain spam so you don't need to check the contents before
> feeding them to bayes to learn :)
>
you must be careful
Asif Iqbal a écrit :
> I have this in local.cf in qmail.here.net's /etc/mail/spamassassin dir
>
> whitelist_from_rcvd joe.sm...@here.com qtdenexmbm24.AD.HERE.COM
>
> But email from that address still tagged as spam. What am I doing wrong?
>
you should run the message through spamassa
Johan Borch a écrit :
> Hi all,
>
> I have a problem with getting spamassassin to find the razor-agent.conf
>
> When running "spamassassin -D < testmail.txt" it says:
>
> .
> .
> .
> [22640] warn: razor2: razor2 check failed: No such file or directory razor2:
> Can't read conf file: = /etc/razor
Asif Iqbal a écrit :
> On Thu, Dec 11, 2008 at 8:09 PM, LuKreme wrote:
>> On 11-Dec-2008, at 11:51, Asif Iqbal wrote:
>>> whitelist_from_rcvd joe.sm...@here.com qtdenexmbm24.AD.HERE.COM
>> Really here.com? The here.com that is registered to Network Solutions? Or
>> are you making up d
Marcin Krol a écrit :
> Henrik K wrote:
> sure there's other useful stuff you can do with spamtrap mails too.
>>
>> Unfortunately it takes a lot of effort to create *good* spamtraps.
>
> Yep.
>
>> It's just
>> too much trouble for a normal admin, I leave it to those who have time on
>> their han
Arthur Dent a écrit :
> Hello all,
>
> I have had quite a lot of trouble getting my posts through to mailing
> lists (this one and others) lately. More often than not they simply
> never appear which makes me wonder if there is something wrong with my
> mail set-up (I would be grateful if someone
Anton Herber a écrit :
> Hi,
>
> I'm currently having a problem with spamassassin (SpamAssassin version
> 3.2.5, running on Perl version 5.10.0). I'm using Spamassassin within
> postfix/spamd/spamc in /etc/postfix/master.cf:
>
> smtp inet n - n - - smtpd
>
Luis Daniel Lucio Quiroz a écrit :
> No of courseno
>
> -> soekris -> final mail server
>
so you will store mail on it? Then you definitely should consider adding
a HD. I think it's worth the price...
>
> On Tuesday 16 December 2008 13:24:32 Henrik K wrote:
>> On Tue, Dec 16, 2008 at 01:09:06P
Henrik K a écrit :
> On Tue, Dec 16, 2008 at 08:35:49PM +0100, mouss wrote:
>> Luis Daniel Lucio Quiroz a écrit :
>>> No of courseno
>>>
>>> -> soekris -> final mail server
>>>
>> so you will store mail on it? Then you definitely sho
Luis Daniel Lucio Quiroz a écrit :
> Is there any direct way to make SA and clamav talk thour it clam.socke file?
>
there's a clamav plugin for SA.
> I want to avoid amavis or mailscanner
why not use clamsmtpd?
you could also use a milter.
Justin Mason a écrit :
> On Tue, Dec 16, 2008 at 23:35, Karsten Bräckelmann
> wrote:
>> On Tue, 2008-12-16 at 15:06 +, Justin Mason wrote:
>>
>>> actually, Bayes would be a good one to drop. If you also remove AWL,
>>> and comment out both "loadplugin" lines, you will remove the need to
>>> l
Luis Daniel Lucio Quiroz a écrit :
> Hey Robert
>
> I know, amavis is the best antispam machine for SA+Clamv, but I have a little
> box, 256MB or ram and no swap (dont ask why). There for, because amavis is
> running under perl, it use alot of memory and then I'm having pipe errors.
>
if you
Karsten Bräckelmann a écrit :
> Back on-list.
>
> On Wed, 2008-12-17 at 17:02 +0530, ram wrote:
>> On Wed, 2008-12-17 at 12:16 +0100, Karsten Bräckelmann wrote:
> score *_SURBL 0
I dont want that since that will cause a lint fail incase the rules are
removed later
>>> No, it won't, i
901 - 1000 of 1293 matches
Mail list logo
