In an older episode (Wednesday, 6. June 2007 07:47), bbxrider wrote:
i'm getting my domain spoofed and trying to stop the returns from the
spoofed targets coming to my
domain and then getting fwded to my default email account.
the only thing thats constant and identifiable in the returned
Claude Frantz wrote:
The Botnet Plugin is not able to recognize the following sequence:
Another case:
Received: from OrangeSrv.rz.unibw-muenchen.de ([127.0.0.1])
by localhost (OrangeSrv.rz.unibw-muenchen.de [127.0.0.1])
(amavisd-new, port 10024)
with LMTP id 12512-05 for [EMAIL
[EMAIL PROTECTED] says...
Alexis Manning wrote:
It seems that if USER_IN_WHITELIST is triggered then the message won?t
be auto-learned.
That is incorrect, however USER_IN_WHITELIST does not count toward any
autolearning decisions.
[...]
As far as the autolearner is concerned, this
Hi!
Below the debug output of my sa-update -
what about this ('require' failed) lines -
do I have to install Perl modules to get this Spamassassin modules?
lg
Martin
3694] dbg: logger: adding facilities: all
[3694] dbg: logger: logging level is DBG
[3694] dbg: generic: SpamAssassin version
Hi,
Luis HernĂ¡n Otegui wrote:
That's ok, just threw my two cents... Same thing happened to me, and I
tracked it down to the loading twice issue, but I never said I had
the truth...
Maybe some extra cf file getting loaded from the updates dir?
Remember, as updates are present, almost everything
Hi
While running sa-update, I am getting this error :
Use of uninitialized value in eval string at /usr/local/bin/sa-update line
91.
Use of uninitialized value in eval string at /usr/local/bin/sa-update line
92.
Use of uninitialized value in eval string at /usr/local/bin/sa-update line
93.
Use
Daryl C. W. O'Shea wrote:
Anthony Peacock wrote:
And as I noted above, by the time I see the error from the cron
output, running sa-update by hand does not show the problem. It is
almost as if it only happen if there really is an update to download.
rm -f /var/lib/spamassassin/3.001008 or
Hi,
I'm soon to be building two new mailservers which will be running
Debian Etch, Qmail, Sophie and SpamAssassin, all plummed together
using Qmail-Scanner.
In the past, we've just installed SpamAssassin via apt-get, however
when we need to upgrade it means looking for a backport. I'm thinking
Adam Wilbraham schrieb:
Hi,
Hi!
I'm soon to be building two new mailservers which will be running
Debian Etch, Qmail, Sophie and SpamAssassin, all plummed together
using Qmail-Scanner.
In the past, we've just installed SpamAssassin via apt-get, however
apt-get - aptitude
when we need
Hi!
Below the debug output of my sa-update -
what about this ('require' failed) lines -
do I have to install Perl modules to get this Spamassassin modules?
I don't see anything in the debut output that indicates that it failed.
The missing requires are all optional modules AFAIK, so it all
Anthony Peacock wrote:
But, if I move the ImageInfo.pm file into the site plugin directory, the
errors go away. Interestingly, the VBounce and Botnet plugins don't get
loaded by sa-update for testing. I think this is because the LoadPlugin
lines are actually in the plugin's .cf files and
Anyone else having trouble getting to uribl ?
www not coming up. I hope we aren't seeing another anti-spam casualty. :-(
--
Ken Anderson
Pacific.Net
Ken
Web site may be having trouble but the BL's are still responding
--
Martin Hepworth
Snr Systems Administrator
Solid State Logic
Tel: +44 (0)1865 842300
-Original Message-
From: Ken A [mailto:[EMAIL PROTECTED]
Sent: 06 June 2007 17:38
To: users@spamassassin.apache.org
Subject:
Martin.Hepworth wrote:
Ken
Web site may be having trouble but the BL's are still responding
Only one of three US rsync mirrors is. Good to know the public BLs are.
Ken
--
Martin Hepworth
Snr Systems Administrator
Solid State Logic
Tel: +44 (0)1865 842300
-Original Message-
From:
i would very much like to be able to do that, but my mail service,
sitelutions.com, evidently doesn't have that functionality, which doesn't
make any sense to me at all, so i'm forced to try and deal with it with sa
i would have thought that pop3 services would easily include an option to
just
Hi!
Anyone else having trouble getting to uribl ?
www not coming up. I hope we aren't seeing another anti-spam casualty. :-(
There are some botnets having fun with both URIBL and SURBL.
Bye,
Raymond.
Daryl C. W. O'Shea wrote:
Daryl C. W. O'Shea wrote:
The POPAuth plugin for 3.1 works with 3.2 as long as you configure at
least one trusted_network manually.
http://wiki.apache.org/spamassassin/POPAuthPlugin
Hi Daryl,
Good to know. I only had internal_networks set and not
Raymond Dijkxhoorn wrote:
Hi!
Anyone else having trouble getting to uribl ?
www not coming up. I hope we aren't seeing another anti-spam casualty.
:-(
There are some botnets having fun with both URIBL and SURBL.
Bye,
Raymond.
Ah, yes www.surbl.org has gone missing too.
Forget national
bbxrider wrote:
i would very much like to be able to do that, but my mail service,
sitelutions.com, evidently doesn't have that functionality, which
doesn't make any sense to me at all, so i'm forced to try and deal
with it with sa i would have thought that pop3 services would easily
include
Anyone else having trouble getting to uribl ?
www not coming up. I hope we aren't seeing another anti-spam
casualty. :-(
I unplugged the server so I could play Forza 2 on the 360 at work. I'll plug
it back in after this endurance race. :)
I'm kidding...
I'll prbly keep
Hi!
Anyone else having trouble getting to uribl ?
www not coming up. I hope we aren't seeing another anti-spam
casualty. :-(
I unplugged the server so I could play Forza 2 on the 360 at work. I'll plug
it back in after this endurance race. :)
I'm kidding...
I'll prbly keep playing
Ken A wrote:
Raymond Dijkxhoorn wrote:
Hi!
Anyone else having trouble getting to uribl ?
www not coming up. I hope we aren't seeing another anti-spam
casualty. :-(
There are some botnets having fun with both URIBL and SURBL.
Bye,
Raymond.
Ah, yes www.surbl.org has gone missing too.
FWIW, I'm showing uribl.com resolving to 127.0.0.1 at the moment
(A tactic to deal with DOS???)
Rob McEwen
PowerView Systems
[EMAIL PROTECTED]
-Original message-
From: Chris Santerre [EMAIL PROTECTED]
Date: Wed, 06 Jun 2007 15:11:17 -0400
To: 'Ken A' [EMAIL PROTECTED],
On Wed, 6 Jun 2007 20:07:20 +0200 (CEST), Raymond Dijkxhoorn
[EMAIL PROTECTED] wrote:
Hi!
Anyone else having trouble getting to uribl ?
www not coming up. I hope we aren't seeing another anti-spam
casualty. :-(
I unplugged the server so I could play Forza 2 on the 360 at work. I'll plug
it
Dear Users
I didnt found it on google or FAQ
Today i get mails marked as spam cause of this 2 rules
CTYPE_001C_A and FH_HAS_XID
It was a normal t-online user e-mail.
Can you tell me what is danger on this headers / rules (if found)?
thx
regards
richard
yes, but..
i have a spam filter on my client, spambayes, and it works fine to sort out
spam sent
to a 'real' account
the problem here is numbers, the spammer is spoofing my domain with a
constantly changing
name (but with a constant piece of it) with dozens if not
[EMAIL PROTECTED] wrote:
Dear Users
I didnt found it on google or FAQ
Today i get mails marked as spam cause of this 2 rules
CTYPE_001C_A and FH_HAS_XID
It was a normal t-online user e-mail.
Can you tell me what is danger on this headers / rules (if found)?
Danger? SpamAssassin doesn't
I have read the documentation over and over again and
must be missing something. It seems to me that the default
behavior is to give everything that has been through SMTP AUTH
a high negative score, and that I shouldn't have to configure
anything. It isn't working, though. My users don't
Brian C. Hill wrote:
I have read the documentation over and over again and
must be missing something. It seems to me that the default
behavior is to give everything that has been through SMTP AUTH
a high negative score, and that I shouldn't have to configure
anything. It isn't working,
In what way is botnet not properly processing the headers in question?
Claude Frantz wrote:
Claude Frantz wrote:
The Botnet Plugin is not able to recognize the following sequence:
Another case:
Received: from OrangeSrv.rz.unibw-muenchen.de ([127.0.0.1])
by localhost
The diagnostic output for that message would have been useful.
However, one thing to recognize is that botnet does not parse the
Received headers themselves. Spam Assassin does, and puts them into
psuedoheaders. Those pseudoheaders are what botnet processes.
Claude Frantz wrote:
The
Hello fellow anti-spam advocates.
After getting a rather large logwatch report, I went hunting in my logs
to get to the root of the problem. I noticed a very big spike in the
number of occurences of the following line in the /var/log/maillog file:
Milter add: header: Content-Type:
At 20:19 06-06-2007, Anthony Kamau wrote:
After getting a rather large logwatch report, I went hunting in my logs
to get to the root of the problem. I noticed a very big spike in the
number of occurences of the following line in the /var/log/maillog file:
Milter add: header: Content-Type:
Thanks sm.
It is indeed sendmail that is responsible - I totally ignored that part
in the logs!
I guess it is time to hunt down the sendmail list.
Cheers,
Anthony.
-Original Message-
From: SM [mailto:[EMAIL PROTECTED]
Sent: Thursday, 7 June 2007 1:59 PM
To:
34 matches
Mail list logo
