Yes,
sorry,
I posted resolution there.
Fixed by cleaning all email accounts and correcting tcp.rules then
adding a spam assassin rule to catch all
email with a common phrase html tag
Thanks
Dave
On 06/23/2014 03:12 PM, Eric Shubert wrote:
You got this resolved on the QMT list, right?
SA logs show nothing for scanning
here is what I have
qtp-whatami v0.3.8 Fri Jun 13 21:45:41 CDT 2014
REAL_DIST=CentOS
DISTRO=CentOS
OSVER=5.10
QTARCH=i686
QTKERN=2.6.18-371.3.1.el5
BUILD_DIST=cnt50
BUILD_DIR=/usr/src/redhat
On 6/3/2014 9:10 PM, Eric Shubert wrote:
I haven't seen this sort of
Ok,
found the issue..
We use webmin to admin alot of servers and a few weeks ago we attempted
to write a rule that would detect certain phrases within
a body of the message and when it was applied all seemed fine but webmin
did not know how to properly restart spamd.
Anyways looking into
Just found out my spamassassin doesnt seem to be working..
Ill post logs soon
On 06/03/2014 09:10 PM, Eric Shubert wrote:
I haven't seen this sort of thing in quite some time (thankfully).
Have you sent them through sa-learn so bayes can detect them?
On Jun 3, 2014, at 11:25 AM, David dmilho...@wletc.com wrote:
How in the world do I stop these annoying emails.
according to the headers they change the
From:
Subject:
and the domains and ips change as well.
It looks like an affiliate spammer. They typically rent a block of IP addresses
Thats where I was headed with this one..
UGH!
How annoying.
We need a honeypot approach for these guys and then tarpit them into a
blackhole.
I will post a resolve on this once a I try a few things.
thanks
Dave
On 06/03/2014 11:19 AM, Angus McIntyre wrote:
On Jun 3, 2014, at 11:25 AM, David
I haven't seen this sort of thing in quite some time (thankfully).
Have you sent them through sa-learn so bayes can detect them?
--
-Eric 'shubes'
On 06/03/2014 09:53 AM, David wrote:
Thats where I was headed with this one..
UGH!
How annoying.
We need a honeypot approach for these guys and