dms dms wrote:
Hello all,
I searched high and low but could not find anywhere that says the
following rule patten is invalid or not allowed in SpamAssassin 3.2.5 on
CentOS 5.1 However it works with non-zero numbers... Thoughts? and TIA
header LOCAL_TESTHEADERTESTHEADER =~
Marc Perkel schrieb:
Hi everyone,
I'm launching a free spam reduction service to help build up my
blacklists. It involves adding a fake high numbered MX record to your
existing MX list that points to one of our servers. We always return a
451 error but we have a very good way of detecting
Henrik K schrieb:
On Mon, Aug 25, 2008 at 10:40:08PM -0700, Jake Maul wrote:
I get spam like this too. I'd tell you to train your bayes db better,
but no amount of learning these things seems to have any effect for
me- the next one in just just right back at BAYES_50. Mine are also
largely from
* Robert Schetterer [EMAIL PROTECTED]:
Project Tarbaby helps you reduce spam and helps us build our blacklist.
This is done by adding a fake MX record to your existing MX lists
thats could be seen as a security risk
cause in rare cases you may recieve legal mails
i.e at an network outage
Ralf Hildebrandt [EMAIL PROTECTED] writes:
* Robert Schetterer [EMAIL PROTECTED]:
thats could be seen as a security risk
cause in rare cases you may recieve legal mails
i.e at an network outage etc
How? He tempfails all mails.
Because some senders erroneously treat a tempfail as a permfail
Ralf Hildebrandt schrieb:
* Robert Schetterer [EMAIL PROTECTED]:
Project Tarbaby helps you reduce spam and helps us build our blacklist.
This is done by adding a fake MX record to your existing MX lists
thats could be seen as a security risk
cause in rare cases you may recieve legal mails
On Tue, 2008-08-26 at 00:34 -0400, Munroe Sollog wrote:
I'm not quite sure I understand what is happening here:
http://www.pastebin.ca/1184943
it looks like the message is triggering rules but in the end it is
getting '0' points
See the very last two lines. They mention the rules hit. In
* Graham Murray [EMAIL PROTECTED]:
How? He tempfails all mails.
Because some senders erroneously treat a tempfail as a permfail (or even
worse as a successful delivery) and do not retry.
Well, idjuts I say. They won't even pass greylisting on the primary or
the secondary MX, so why bother?
Ralf Hildebrandt [EMAIL PROTECTED] writes:
* Robert Schetterer [EMAIL PROTECTED]:
thats could be seen as a security risk
cause in rare cases you may recieve legal mails
i.e at an network outage etc
How? He tempfails all mails.
On 26.08.08 10:21, Graham Murray wrote:
Because some
On Tuesday 26 August 2008 11:12:23 Ralf Hildebrandt wrote:
* Robert Schetterer [EMAIL PROTECTED]:
Project Tarbaby helps you reduce spam and helps us build our blacklist.
This is done by adding a fake MX record to your existing MX lists
thats could be seen as a security risk
cause in
* Ralf Hildebrandt [EMAIL PROTECTED]:
Because some senders erroneously treat a tempfail as a permfail (or even
worse as a successful delivery) and do not retry.
Well, idjuts I say. They won't even pass greylisting on the primary or
the secondary MX, so why bother?
OTOH if all my real
On Tue, 2008-08-26 at 10:21 +0100, Graham Murray wrote:
Ralf Hildebrandt [EMAIL PROTECTED] writes:
* Robert Schetterer [EMAIL PROTECTED]:
thats could be seen as a security risk
cause in rare cases you may recieve legal mails
i.e at an network outage etc
I think just hits on the fake
On Tuesday 26 August 2008 10:09:37 mouss wrote:
dms dms wrote:
Hello all,
I searched high and low but could not find anywhere that says the
following rule patten is invalid or not allowed in SpamAssassin 3.2.5 on
CentOS 5.1 However it works with non-zero numbers... Thoughts? and TIA
On Tue, 2008-08-26 at 01:10 +0200, GoodnGo.de (R) Zentrale wrote:
My question:
All emails from localhost are tagged als ***Spam*** in the subject
line.
since localhost is unknown, you might want to add it to your /etc/hosts
Hello Dan,thanx, just did that ...Spmafilter is working fine.Just
In my case, I setup Postfix to listen on 2 ports (that means 2 instances)
- Regular port 25 will pass to SA
- Another port will not pass to SA and we use this port to send mail to
each other.
Cheers,
Hieu N. Le
On Tue, Aug 26, 2008 at 6:22 PM, McDonald, Dan
[EMAIL PROTECTED] wrote:
On Tue,
I am using sa-update for the stock rules. I run:
sa-update -D --channelfile /etc/mail/spamassassin/sa-update-channels.txt
--gpgkey 856AA88A
where sa-update-channels.txt contains:
updates.spamassassin.org
70_sare_stocks.cf.sare.sa-update.dostech.net
Here is the -t output
http://www.pastebin.ca/1185205
Munroe Sollog
Systems Engineer
Digirati Consulting, Inc
[EMAIL PROTECTED]
Bob Proulx wrote:
Munroe Sollog wrote:
I'm not quite sure I understand what is happening here:
http://www.pastebin.ca/1184943
it looks like the message is
Good day,
I am running a pretty old Debian box with spamassassin 3.0 here. It seems to
have some problems with rulesdujour and hence I am wondering if I shouldn't
upgrade to the current version.
Pro: Current version has up to date docs and features
Cons: The machine is very important (proxy)
Patrick
Yes RDJ will still work, but only for the ones you've enabled. There's been
very liitle update on the standard RDJ ruleset for months now. So don't expect
to see much updating.
Sa-update is the way to go for more modern versiosn, this will also keep the
core rules updated too.
--
On Tue, 2008-08-26 at 07:43 -0400, Munroe Sollog wrote:
I am using sa-update for the stock rules. I run:
sa-update -D --channelfile /etc/mail/spamassassin/sa-update-channels.txt
--gpgkey 856AA88A
where sa-update-channels.txt contains:
updates.spamassassin.org
On Tue, 2008-08-26 at 14:02 +0200, Karsten Bräckelmann wrote:
On Tue, 2008-08-26 at 07:43 -0400, Munroe Sollog wrote:
updates.spamassassin.org
70_sare_stocks.cf.sare.sa-update.dostech.net
[ snip ]
$ ls *.cf /var/lib/spamassassin/3.002005/
Err, whoops. Of course, make that
$ ls
Thanks to all for confirming, a bug report has been opened.
https://issues.apache.org/SpamAssassin/show_bug.cgi?id=5965
Getting a lot of these:
spamd: bad protocol: header error: (closed before headers) at
/usr/bin/spamd line 2001.
Not sure what this means. Thanks in advance for your help.
Robert Schetterer wrote:
Marc Perkel schrieb:
Hi everyone,
I'm launching a free spam reduction service to help build up my
blacklists. It involves adding a fake high numbered MX record to your
existing MX list that points to one of our servers. We always return
a 451 error but we have a
Graham Murray wrote:
Ralf Hildebrandt [EMAIL PROTECTED] writes:
* Robert Schetterer [EMAIL PROTECTED]:
thats could be seen as a security risk
cause in rare cases you may recieve legal mails
i.e at an network outage etc
How? He tempfails all mails.
Because some senders
Ralf Hildebrandt wrote:
* Robert Schetterer [EMAIL PROTECTED]:
Project Tarbaby helps you reduce spam and helps us build our blacklist.
This is done by adding a fake MX record to your existing MX lists
thats could be seen as a security risk
cause in rare cases you may recieve legal mails
i.e
On Tue, 26 Aug 2008, Marc Perkel wrote:
Robert Schetterer wrote:
thats could be seen as a security risk
cause in rare cases you may recieve legal mails
i.e at an network outage etc
We don't actually receive and emails. Everything is turned away with a
451.
So you say.
Marc, the point
On Tue, 26 Aug 2008, Marc Perkel wrote:
If that were the case then they already would have failed before getting
to tarbaby as your main server is out.
Just a stylistic note: tarbaby is a poor term to use if you want to
reassure people that your service will not cause any loss of email. The
Ken A wrote:
Ralf Hildebrandt wrote:
* Robert Schetterer [EMAIL PROTECTED]:
Project Tarbaby helps you reduce spam and helps us build our
blacklist. This is done by adding a fake MX record to your existing
MX lists
thats could be seen as a security risk
cause in rare cases you may
Marc Perkel wrote:
Getting a lot of these:
spamd: bad protocol: header error: (closed before headers) at
/usr/bin/spamd line 2001.
Not sure what this means. Thanks in advance for your help.
That implies that something opened up a network socket to spamd, then closed
the socket before
* Ken A [EMAIL PROTECTED]:
How? He tempfails all mails.
Are you asking how sending your customer, or company email off someplace
you don't control might be a security risk?
It's in no way more dangerous than using Postini...
--
Ralf Hildebrandt (i.A. des IT-Zentrums) [EMAIL
Marc Perkel wrote:
Graham Murray wrote:
Because some senders erroneously treat a tempfail as a permfail (or even
worse as a successful delivery) and do not retry.
If that were the case then they already would have failed before getting
to tarbaby as your main server is out. If they are on
Ralf Hildebrandt wrote:
* Ken A [EMAIL PROTECTED]:
How? He tempfails all mails.
Are you asking how sending your customer, or company email off someplace
you don't control might be a security risk?
It's in no way more dangerous than using Postini...
Have you compared Postini's contract
On 3/21/08 at 4:59 PM +0200 Henrik K wrote:
Hehe, yeah it should be ok. Let me know if you spot any false FPs with
REPLYTO..
I recently installed the FreeMail 1.10 SA plugin and am getting a
ridiculous number of FPs. I haven't installed Regexp::Assemble but that
shouldn't make any difference in
Marc Perkel wrote:
Ken A wrote:
Ralf Hildebrandt wrote:
* Robert Schetterer [EMAIL PROTECTED]:
Project Tarbaby helps you reduce spam and helps us build our
blacklist. This is done by adding a fake MX record to your existing
MX lists
thats could be seen as a security risk
cause in rare
Ken A wrote:
Ralf Hildebrandt wrote:
* Ken A [EMAIL PROTECTED]:
How? He tempfails all mails.
Are you asking how sending your customer, or company email off
someplace you don't control might be a security risk?
It's in no way more dangerous than using Postini...
Have you compared
On Tue, Aug 26, 2008 at 11:15:32AM -0500, Larry Nedry wrote:
On 3/21/08 at 4:59 PM +0200 Henrik K wrote:
Hehe, yeah it should be ok. Let me know if you spot any false FPs with
REPLYTO..
I recently installed the FreeMail 1.10 SA plugin and am getting a
ridiculous number of FPs. I haven't
On Tue, 2008-08-26 at 11:15 -0500, Larry Nedry wrote:
Below are the FreeMail stats from the last 10,000 messages processed
by SA.
Are these scores based on hand-sorted spam/ham? Or is %OFHAM because
this is the only test that hit?
FREEMAIL_FROM is by nature a pretty week sign.
Hi,
I have a MTA server with Postfix2.4.5 + Amavisd-New2.5.2 +
SpamAssassin3.2.3. In another machine, I have a Mailbox server with
Cyrus-Imapd2.3.11. The users are virtual users and are in a Ldap
database.
We want to enable the learning Bayesian in SpamAssassin. I read enough
doc of sa-learn
Theres quite a few docs about sa-learning and imap email boxes.
Doesn't matter whetr it's remote or local in this scenario.
--
martin
-Original Message-
From: Thiago Henrique [EMAIL PROTECTED]
Sent: Tuesday, August 26, 2008 5:57 PM
To: users@spamassassin.apache.org
Subject: Sa-learn
Hi,
I wrote this script some time ago. here is how it works:
I have an imap account that several users added to their email clients.
whenever they get a spam message that didn't get identified - they move
the message over to this spam account, and when they get a false
positive, they move it
On Tue, 26 Aug 2008, Ivan Levchenko wrote:
I have an imap account that several users added to their email clients.
...
and when they get a false positive, they
move it to the ham account.
So in other words, users can see each others' false positive email?
That may work in some
this works in my circumstances - the email is all strictly work in a
small company, and no personal things are sent here - nobody has any
problem with it, and the email is deleted as soon as it gets
processed.
As I said, its easy to redo the script to work in other cases.
there is an alternative
On Tue, Aug 26, 2008 at 12:26 PM, Marc Perkel [EMAIL PROTECTED] wrote:
Ken A wrote:
Ralf Hildebrandt wrote:
* Ken A [EMAIL PROTECTED]:
How? He tempfails all mails.
Are you asking how sending your customer, or company email off someplace
you don't control might be a security risk?
I'm having a pretty hard time with this one for some reason, mainly because
I don't understand regex. I have a large number of emails that are getting
past my spamassassin setup (Maia Mailguard 1.02a) as well as my Barracuda.
I would like to add a score to email from [EMAIL PROTECTED] I'm not
Curtis LaMasters wrote:
I'm having a pretty hard time with this one for some reason, mainly
because I don't understand regex. I have a large number of emails
that are getting past my spamassassin setup (Maia Mailguard 1.02a) as
well as my Barracuda. I would like to add a score to email from
Excellent, Much easier than I was expecting. Thank you very much. I'll get
to testing.
Curtis LaMasters
http://www.curtis-lamasters.com
http://www.builtnetworks.com
What is the i for after reply/ ? Would just general research for perl
expressions be helpful for me? I guessing so since Spamassassin uses perl
as it's language of choice.
Thanks for your input.
Curtis LaMasters
http://www.curtis-lamasters.com
http://www.builtnetworks.com
Is it ok to post up my local.cf for you more experienced fold to look at? In
my opinion, I believe, Spamassassin is doing a great job, I just want to see
if there is anything else that I can put into it. I'm also using
rules-de-jor and SARE.
Curtis LaMasters
http://www.curtis-lamasters.com
On Tue, 26 Aug 2008, Curtis LaMasters wrote:
What is the i for after reply/ ?
Case-insensitive match.
Would just general research for perl expressions be helpful for me? I
guessing so since Spamassassin uses perl as it's language of choice.
Learning how regular expressions work is a very
Bowie Bailey wrote:
Curtis LaMasters wrote:
I'm having a pretty hard time with this one for some reason, mainly
because I don't understand regex. I have a large number of emails
that are getting past my spamassassin setup (Maia Mailguard 1.02a) as
well as my Barracuda. I would like to add a
On Tue, 2008-08-26 at 16:00 -0500, Curtis LaMasters wrote:
What is the i for after reply/ ?
case Insensitive
Would just general research for perl expressions be helpful for me?
Yes. perldoc perlretut is a great place to start.
--
Daniel J McDonald, CCIE #2495, CISSP #78281, CNX
Austin
Curtis LaMasters wrote:
Is it ok to post up my local.cf for you more experienced fold to look at? In
my opinion, I believe, Spamassassin is doing a great job, I just want to see
if there is anything else that I can put into it. I'm also using
rules-de-jor and SARE.
consider using sa-update
Aaron Wolfe wrote:
On Tue, Aug 26, 2008 at 12:26 PM, Marc Perkel [EMAIL PROTECTED] wrote:
You continue to miss the point, or maybe you just don't want to understand it.
Sending my client's email to your servers is irresponsible at best and
possibly even a violation of contract or illegal.
On Tue, 2008-08-26 at 16:13 -0500, Curtis LaMasters wrote:
Is it ok to post up my local.cf for you more experienced fold to look
at? In my opinion, I believe, Spamassassin is doing a great job, I
just want to see if there is anything else that I can put into it.
There is always stuff you
Alle,
We are running SA V3.2.4 on RHEL5.1. We would like to whitelist mail
coming from inside our network. Spamassassin is located on our DMZ
servers. Users use the internal SMTP relay to send mail. The internal
domain is foo.ac.jp. The external domain is foo.org. (Don't ask). *All*
On Tue, 26 Aug 2008, Camron W. Fox wrote:
We are running SA V3.2.4 on RHEL5.1.
How do messages get passed to SA for scoring?
The best way is to note the internal origination of the message and bypass
SA entirely. Exactly how that is done depends on your plumbing.
--
John Hardin
Marc Perkel wrote:
And - I'm putting this out for those who are interested. You are not
interested so this doesn't affect you.
Mark,
This debate can continue until the end of time (assuming time has an end
;-p). How about creating a dedicated mailing list?
On Wed, 27 Aug 2008, mouss wrote:
Marc Perkel wrote:
And - I'm putting this out for those who are interested. You are not
interested so this doesn't affect you.
Mark,
This debate can continue until the end of time (assuming time has an end
;-p). How about creating a dedicated mailing
Hi!
Sorry I am a newbie here at spam assassin. I just have a question, when I
set the report safe to '1' the message gets altered, even for the important
message being tagged as SPAM. How do I get the original message. Is there
some sort of directory or logs to view it? I am using qmail
On Tue, 26 Aug 2008, Camron W. Fox wrote:
Alle,
We are running SA V3.2.4 on RHEL5.1. We would like to whitelist mail
coming from inside our network. Spamassassin is located on our DMZ servers.
Users use the internal SMTP relay to send mail. The internal domain is
foo.ac.jp. The external
On Wed, 27 Aug 2008, Denise Ricerra wrote:
Hi!
Sorry I am a newbie here at spam assassin. I just have a question, when I set
the report safe to ?1? the message gets altered,
even for the important message being tagged as SPAM. How do I get the original
message. Is there some sort of
John Hardin wrote:
On Tue, 26 Aug 2008, Camron W. Fox wrote:
We are running SA V3.2.4 on RHEL5.1.
How do messages get passed to SA for scoring?
The best way is to note the internal origination of the message and
bypass SA entirely. Exactly how that is done depends on your plumbing.
Please respond to the list. I'm not the only one that can provide
feedback.
On Wed, 27 Aug 2008, Denise Ricerra wrote:
Thanks for the response. But is there some sort of a log file where we can
check the mails that are tagged as spam? Also, is it possible to redirect
mails tagged as spam to
Perkel wrote:
What if your server is compromised or your DNS is hijacked? I'm doing
the same thing Postini is doing, just better. Besides, if you keep your
email servers and backup servers online then good email will never reach
my server.
And - I'm putting this out for those who are
65 matches
Mail list logo