Re: sought rules
Post your server and bandwidth requirements here. I'm sure many of us would have the datacenter space and capacity to host a redundant backup. On Wed, Nov 11, 2009 at 03:29:07PM +, Justin Mason wrote: On Wed, Nov 11, 2009 at 14:04, Bowie Bailey bowie_bai...@buc.com wrote: john ffitch wrote: Have I missed something? I used to pull the sought rules daily, but nothing seems to have changed since 2 Nov. Is that expected behaviour? ==John ffitch No, that's not expected behavior... On Thu, 5 Nov 2009, Justin Mason wrote: Right now, SOUGHT appears to be broken. I need to get to where the server is currently and fix it -- I don't have remote login to it at the mo :( And that's about all we know at the moment. Yep -- sorry -- I got to reboot the server, but it appears to have not fixed the problem. Right now I'm not likely to be able to perform more investigation for a week or two. :( Sorry about this -- the perils of volunteer infrastructure! -- --j. -- /* Jason Philbrook | Midcoast Internet Solutions - Wireless and DSL KB1IOJ| Broadband Internet Access, Dialup, and Hosting http://f64.nu/ | for Midcoast Mainehttp://www.midcoast.com/ */
Re: New image spam
Alex wrote: Hi all, Has anyone else seen an increase in image spam lately? http://pastebin.com/m47617898 The LOC_IMGSPAM is a local rule I created that simply checks for /inline/ content disposition. I've changed the @ to # to pass the pastebin filters. no way of helping.. someone (something) truncated the email in pastbin.. doesn't have the mime headers with any attachment, in fact, don't see an attachment. Any ideas what I could be missing on catching this one? Please let me know if I can provide any additional information. Thanks, Alex _ This email has been scanned and certified safe by SpammerTrap(r). For Information please see http://www.secnap.com/products/spammertrap/ _
Re: New image spam
On lør 14 nov 2009 07:25:20 CET, Alex wrote Any ideas what I could be missing on catching this one? Please let me know if I can provide any additional information. score DKIM_SIGNED 5 score USER_IN_DKIM_WHITELIST -5.0 whitelist_from_dkim fri...@sbcglobal.net -- xpoint
Re: sought rules
On Sat, 14 Nov 2009, jp wrote: Post your server and bandwidth requirements here. I'm sure many of us would have the datacenter space and capacity to host a redundant backup. It's wonderful to see so many people offer 'mirror' space, but as I understand things, the issue is not with delivery/download of the rules, but with the regeneration program/process. And I believe the maintainer already stated that the issue there is with the security of the ham corpus he uses to regenerate the rules. It makes the server restricted for access for repair, and precludes the possibility of the regeneration process itself being mirrored So we're just going to have to wait patiently. :) - Charles
Re: New image spam
On Saturday 14 November 2009, Alex wrote: Hi all, Has anyone else seen an increase in image spam lately? http://pastebin.com/m47617898 The LOC_IMGSPAM is a local rule I created that simply checks for /inline/ content disposition. I've changed the @ to # to pass the pastebin filters. Any ideas what I could be missing on catching this one? Please let me know if I can provide any additional information. Thanks, Alex Yes, sometimes with no mention of it in the text. -- Cheers, Gene There are four boxes to be used in defense of liberty: soap, ballot, jury, and ammo. Please use in that order. -Ed Howdershelt (Author) The NRA is offering FREE Associate memberships to anyone who wants them. https://www.nrahq.org/nrabonus/accept-membership.asp God requireth not a uniformity of religion. - Roger Williams
Re: use passwd file to control senders
Adam Katz-10 wrote: Neroxyr may have been asking something else. Is this regarding mail *received* from unknown senders? Do you want to check for forged senders? Do you want to check for invalid recipients? Mails received are not the problem, i want to check for forged senders that are not created by us, so that those may be considered as spam, if that's the case. I'll try the methods you described and let u know if I encounter some kind of problem. Thanks for the help you're giving me. I'll post the results ASAP -- View this message in context: http://old.nabble.com/use-passwd-file-to-control-senders-tp26324411p26351317.html Sent from the SpamAssassin - Users mailing list archive at Nabble.com.
Re: New image spam
no way of helping.. someone (something) truncated the email in pastbin.. doesn't have the mime headers with any attachment, in fact, don't see an attachment. Please find updated one here: http://pastebin.com/m291e486b Benny, score DKIM_SIGNED 5 score USER_IN_DKIM_WHITELIST -5.0 whitelist_from_dkim fri...@sbcglobal.net That's a good idea, but an administrative nightmare with many users, particularly with the fail first, correct later attitude, they would kill me. Thanks, Alex
Re: New image spam
On lør 14 nov 2009 17:31:11 CET, Alex wrote That's a good idea, but an administrative nightmare with many users, particularly with the fail first, correct later attitude, they would kill me. i maked a script in php that dump horde addressbook to whitelist_auth.cf put that in a daily cron, solved -- xpoint
Re: New image spam
On Sat, 2009-11-14 at 18:58 +0100, Benny Pedersen wrote: i maked a script in php that dump horde addressbook to whitelist_auth.cf Only if everyone uses webmail... -- Homer Parker hpar...@homershut.net
Re: New image spam
On lør 14 nov 2009 20:11:09 CET, Homer Parker wrote On Sat, 2009-11-14 at 18:58 +0100, Benny Pedersen wrote: i maked a script in php that dump horde addressbook to whitelist_auth.cf Only if everyone uses webmail... so how do i solve other problems ? if you make me a ldap addressbook and would like to host it for me or even just provide me a ebuild let me know :) but i begin to think about why not make a dkim or spf patch to use webbased addressebooks in generic ? whats the point in outlook ldap addressebooks if its not working for mail ? yes please mail me back on my new email address you find in body type of spams KISS :) -- xpoint
Re: New image spam
On 14-Nov-2009, at 10:58, Benny Pedersen wrote: On lør 14 nov 2009 17:31:11 CET, Alex wrote That's a good idea, but an administrative nightmare with many users, particularly with the fail first, correct later attitude, they would kill me. i maked a script in php that dump horde addressbook to whitelist_auth.cf put that in a daily cron, solved Assuming everyone uses Horde. Oh, wait… -- I DID NOT INVENT IRISH DANCING Bart chalkboard Ep. 5F03
