Re: Multiple test failures

[Sidney Markowitz]

I haven't had a chance yet to read this thread carefully, but spamd when 
run as root in tests will, at least in some cases, set itself to run as 
user "nobody". If you do that in a subdirectory of your non-nobody 
user's HOME, the usual permission configuration will not provide read 
access to nobody and the test will fail.


Basically, the only tests that should be run as root are the t/root*.t 
tests, and even those have comments in their source telling you about 
running under a directory with world read permissions, and those tests 
are not run by default, being used as part of our release testing on 
machines that do not run SpamAssassin in production.


 Sidney


Bill Cole wrote on 4/04/24 3:46 am:

On 2024-04-02 at 18:18:09 UTC-0400 (Tue, 2 Apr 2024 18:18:09 -0400)
Scott Ellentuch 
is rumored to have said:


Hi,

Trying to install SA 4.0.1 from scratch. Tried via CPAN, that didn't
go
well, so trying from tarball. (Enabled SSL when doing Makefile.PL)


NEVER run 'make' as root except when you're ready to commit with 'make
install' unless you're doing it on a sacrificial system.

Re: Multiple test failures

[Scott Ellentuch]

File attached. However, I don't see any smoking gun.

Nothing in t/log
[ec2-user@ip-172-31-131-251 Mail-SpamAssassin-4.0.1]$ ls -lR t/log
t/log:
total 0

Nothing big in iptables
[ec2-user@ip-172-31-131-251 Mail-SpamAssassin-4.0.1]$ sudo iptables -L
Chain INPUT (policy ACCEPT)
target prot opt source   destination

Chain FORWARD (policy ACCEPT)
target prot opt source   destination
ACCEPT all  --  ip-10-8-0-0.ec2.internal/24  anywhere
ACCEPT all  --  anywhere anywhere state
RELATED,ESTABLISHED

Chain OUTPUT (policy ACCEPT)
target prot opt source   destination

Tnx, Tuc

On Wed, Apr 3, 2024 at 3:31 PM Bill Cole <
sausers-20150...@billmail.scconsult.com> wrote:

> On 2024-04-03 at 14:01:44 UTC-0400 (Wed, 3 Apr 2024 14:01:44 -0400)
> Scott Ellentuch 
> is rumored to have said:
>
> > Hi,
> >
> > Ok, deleted the directory and started again.
> >
> > Test Summary Report
> > ---
> > t/spamd_client.t(Wstat: 26624 Tests: 4 Failed: 0)
> >   Non-zero exit status: 104
> >   Parse errors: Bad plan.  You planned 52 tests but ran 4.
> > Files=217, Tests=3765, 890 wallclock secs ( 1.21 usr  0.19 sys +
> > 271.62
> > cusr 25.51 csys = 298.53 CPU)
> > Result: FAIL
> > Failed 1/217 test programs. 0/3765 subtests failed.
> > make: *** [test_dynamic] Error 255
> >
> > Script file attached.
>
> This error appears to be a problem launching a spamd instance from the
> test harness, verifying its PID, and getting responses from it. You can
> get more details logged by clearing the test logs and re-running just
> the one test file which displays the problem:
>
>rm -r t/log
>make test TEST_FILES="t/spamd_client.t"  TEST_VERBOSE=1
>
> That should provide the precise command used to launch spamd and
> hopefully a clue about why it failed. There may also be useful
> information logged under t/log/ after a failed test.
>
> One possibility is a local packet filter (iptables, nftables, etc.)
> blocking the port spamd uses for testing. That is rare because it
> selects an unused high  port on the loopback interface for the test run,
> but if you have a very tight network security policy in place, that can
> fail. SELinux and AppArmor can also interfere.
>
>
> >
> > Thanks Tuc
> >
> > On Wed, Apr 3, 2024 at 10:46 AM Bill Cole <
> > sausers-20150...@billmail.scconsult.com> wrote:
> >
> >> On 2024-04-02 at 18:18:09 UTC-0400 (Tue, 2 Apr 2024 18:18:09 -0400)
> >> Scott Ellentuch 
> >> is rumored to have said:
> >>
> >>> Hi,
> >>>
> >>> Trying to install SA 4.0.1 from scratch. Tried via CPAN, that didn't
> >>> go
> >>> well, so trying from tarball. (Enabled SSL when doing Makefile.PL)
> >>
> >> NEVER run 'make' as root except when you're ready to commit with
> >> 'make
> >> install' unless you're doing it on a sacrificial system.
> >>
> >> Think about how unsafe it could be...
> >>
> >> These test failures look like you did that. I am flattered that you
> >> trust the SpamAssassin team that much, but don't, please. We are only
> >> human. In the past there have been bugs in the test suite that have
> >> polluted the running config of the system if run as root. It is
> >> possible
> >> in principle for there to still be such bugs.
> >>
> >>> I'm on Amazon Linux 2 , 4.0.1 SA, and not sure what other info I can
> >>> give.
> >>> I installed every perl module it wanted.
> >>
> >> FWIW, non-root 'make test' has been clean for PMC members on a wide
> >> range of systems, so a real test failure would be both a shock and a
> >> serious problem. If this is happening with a normal user running
> >> 'make
> >> test' we definitely need to
> >> address it.
> >>
> >>>
> >>> The final summary is -
> >>> Test Summary Report
> >>> ---
> >>> t/spamc_optL.t  (Wstat: 2560 Tests: 18 Failed: 10)
> >>>   Failed tests:  2, 5-8, 10, 12, 15-16, 18
> >>>   Non-zero exit status: 10
> >>> t/spamd_client.t(Wstat: 3584 Tests: 52 Failed: 14)
> >>>   Failed tests:  35, 37-42, 44, 46-51
> >>>   Non-zero exit status: 14
> >>> Files=217, Tests=3807, 904 wallclock secs ( 1.21 usr  0.22 sys +
> >>> 273.72
> >>> cusr 26.33 csys = 301.48 CPU)
> >>> Result: FAIL
> >>> Failed 2/217 test programs. 24/3807 subtests failed.
> >>> make: *** [test_dynamic] Error 255
> >>>
> >>> During the run it seems to output :
> >>>
> >>> t/spamd_client.t .. 32/52
> >>> #   Failed test at t/spamd_client.t line 152.
> >>> ERROR: Bayes dump returned an error, please re-run with -D for more
> >>> information
> >>> t/spamd_client.t .. 37/52
> >>> #   Failed test at t/spamd_client.t line 157.
> >>> Not found: spam in database = 1 0  non-token data: nspam at
> >>> t/spamd_client.t line 158.
> >>>
> >>> #   Failed test at t/SATest.pm line 926.
> >>>
> >>> #   Failed test at t/spamd_client.t line 161.
> >>> ERROR: Bayes dump returned an error, please re-run with -D for more
> >>> information
> >>>
> >>> #   Failed test 

Re: Multiple test failures

[Bill Cole]

On 2024-04-03 at 14:01:44 UTC-0400 (Wed, 3 Apr 2024 14:01:44 -0400)
Scott Ellentuch 
is rumored to have said:


Hi,

Ok, deleted the directory and started again.

Test Summary Report
---
t/spamd_client.t(Wstat: 26624 Tests: 4 Failed: 0)
  Non-zero exit status: 104
  Parse errors: Bad plan.  You planned 52 tests but ran 4.
Files=217, Tests=3765, 890 wallclock secs ( 1.21 usr  0.19 sys + 
271.62

cusr 25.51 csys = 298.53 CPU)
Result: FAIL
Failed 1/217 test programs. 0/3765 subtests failed.
make: *** [test_dynamic] Error 255

Script file attached.


This error appears to be a problem launching a spamd instance from the 
test harness, verifying its PID, and getting responses from it. You can 
get more details logged by clearing the test logs and re-running just 
the one test file which displays the problem:


  rm -r t/log
  make test TEST_FILES="t/spamd_client.t"  TEST_VERBOSE=1

That should provide the precise command used to launch spamd and 
hopefully a clue about why it failed. There may also be useful 
information logged under t/log/ after a failed test.


One possibility is a local packet filter (iptables, nftables, etc.) 
blocking the port spamd uses for testing. That is rare because it 
selects an unused high  port on the loopback interface for the test run, 
but if you have a very tight network security policy in place, that can 
fail. SELinux and AppArmor can also interfere.





Thanks Tuc

On Wed, Apr 3, 2024 at 10:46 AM Bill Cole <
sausers-20150...@billmail.scconsult.com> wrote:


On 2024-04-02 at 18:18:09 UTC-0400 (Tue, 2 Apr 2024 18:18:09 -0400)
Scott Ellentuch 
is rumored to have said:


Hi,

Trying to install SA 4.0.1 from scratch. Tried via CPAN, that didn't
go
well, so trying from tarball. (Enabled SSL when doing Makefile.PL)


NEVER run 'make' as root except when you're ready to commit with 
'make

install' unless you're doing it on a sacrificial system.

Think about how unsafe it could be...

These test failures look like you did that. I am flattered that you
trust the SpamAssassin team that much, but don't, please. We are only
human. In the past there have been bugs in the test suite that have
polluted the running config of the system if run as root. It is 
possible

in principle for there to still be such bugs.


I'm on Amazon Linux 2 , 4.0.1 SA, and not sure what other info I can
give.
I installed every perl module it wanted.


FWIW, non-root 'make test' has been clean for PMC members on a wide
range of systems, so a real test failure would be both a shock and a
serious problem. If this is happening with a normal user running 
'make

test' we definitely need to
address it.



The final summary is -
Test Summary Report
---
t/spamc_optL.t  (Wstat: 2560 Tests: 18 Failed: 10)
  Failed tests:  2, 5-8, 10, 12, 15-16, 18
  Non-zero exit status: 10
t/spamd_client.t(Wstat: 3584 Tests: 52 Failed: 14)
  Failed tests:  35, 37-42, 44, 46-51
  Non-zero exit status: 14
Files=217, Tests=3807, 904 wallclock secs ( 1.21 usr  0.22 sys +
273.72
cusr 26.33 csys = 301.48 CPU)
Result: FAIL
Failed 2/217 test programs. 24/3807 subtests failed.
make: *** [test_dynamic] Error 255

During the run it seems to output :

t/spamd_client.t .. 32/52
#   Failed test at t/spamd_client.t line 152.
ERROR: Bayes dump returned an error, please re-run with -D for more
information
t/spamd_client.t .. 37/52
#   Failed test at t/spamd_client.t line 157.
Not found: spam in database = 1 0  non-token data: nspam at
t/spamd_client.t line 158.

#   Failed test at t/SATest.pm line 926.

#   Failed test at t/spamd_client.t line 161.
ERROR: Bayes dump returned an error, please re-run with -D for more
information

#   Failed test at t/spamd_client.t line 165.
Not found: ham in database = 0 0  non-token data: nham at
t/spamd_client.t
line 166.

#   Failed test at t/SATest.pm line 926.
Not found: spam in database = 0 0  non-token data: nspam at
t/spamd_client.t line 166.

#   Failed test at t/SATest.pm line 926.
t/spamd_client.t .. 44/52
#   Failed test at t/spamd_client.t line 172.
ERROR: Bayes dump returned an error, please re-run with -D for more
information

#   Failed test at t/spamd_client.t line 177.
Not found: ham in database = 1 0  non-token data: nham at
t/spamd_client.t
line 178.

#   Failed test at t/SATest.pm line 926.

#   Failed test at t/spamd_client.t line 181.
ERROR: Bayes dump returned an error, please re-run with -D for more
information
t/spamd_client.t .. 49/52
#   Failed test at t/spamd_client.t line 185.
Not found: ham in database = 0 0  non-token data: nham at
t/spamd_client.t
line 186.

#   Failed test at t/SATest.pm line 926.
Not found: spam in database = 0 0  non-token data: nspam at
t/spamd_client.t line 186.

#   Failed test at t/SATest.pm line 926.
t/spamd_client.t .. 52/52 # Looks like you failed 14
tests
of 52.
t/spamd_client.t .. 

Re: Multiple test failures

[Scott Ellentuch]

Hi,

Ok, deleted the directory and started again.

Test Summary Report
---
t/spamd_client.t(Wstat: 26624 Tests: 4 Failed: 0)
  Non-zero exit status: 104
  Parse errors: Bad plan.  You planned 52 tests but ran 4.
Files=217, Tests=3765, 890 wallclock secs ( 1.21 usr  0.19 sys + 271.62
cusr 25.51 csys = 298.53 CPU)
Result: FAIL
Failed 1/217 test programs. 0/3765 subtests failed.
make: *** [test_dynamic] Error 255

Script file attached.

Thanks Tuc

On Wed, Apr 3, 2024 at 10:46 AM Bill Cole <
sausers-20150...@billmail.scconsult.com> wrote:

> On 2024-04-02 at 18:18:09 UTC-0400 (Tue, 2 Apr 2024 18:18:09 -0400)
> Scott Ellentuch 
> is rumored to have said:
>
> > Hi,
> >
> > Trying to install SA 4.0.1 from scratch. Tried via CPAN, that didn't
> > go
> > well, so trying from tarball. (Enabled SSL when doing Makefile.PL)
>
> NEVER run 'make' as root except when you're ready to commit with 'make
> install' unless you're doing it on a sacrificial system.
>
> Think about how unsafe it could be...
>
> These test failures look like you did that. I am flattered that you
> trust the SpamAssassin team that much, but don't, please. We are only
> human. In the past there have been bugs in the test suite that have
> polluted the running config of the system if run as root. It is possible
> in principle for there to still be such bugs.
>
> > I'm on Amazon Linux 2 , 4.0.1 SA, and not sure what other info I can
> > give.
> > I installed every perl module it wanted.
>
> FWIW, non-root 'make test' has been clean for PMC members on a wide
> range of systems, so a real test failure would be both a shock and a
> serious problem. If this is happening with a normal user running 'make
> test' we definitely need to
> address it.
>
> >
> > The final summary is -
> > Test Summary Report
> > ---
> > t/spamc_optL.t  (Wstat: 2560 Tests: 18 Failed: 10)
> >   Failed tests:  2, 5-8, 10, 12, 15-16, 18
> >   Non-zero exit status: 10
> > t/spamd_client.t(Wstat: 3584 Tests: 52 Failed: 14)
> >   Failed tests:  35, 37-42, 44, 46-51
> >   Non-zero exit status: 14
> > Files=217, Tests=3807, 904 wallclock secs ( 1.21 usr  0.22 sys +
> > 273.72
> > cusr 26.33 csys = 301.48 CPU)
> > Result: FAIL
> > Failed 2/217 test programs. 24/3807 subtests failed.
> > make: *** [test_dynamic] Error 255
> >
> > During the run it seems to output :
> >
> > t/spamd_client.t .. 32/52
> > #   Failed test at t/spamd_client.t line 152.
> > ERROR: Bayes dump returned an error, please re-run with -D for more
> > information
> > t/spamd_client.t .. 37/52
> > #   Failed test at t/spamd_client.t line 157.
> > Not found: spam in database = 1 0  non-token data: nspam at
> > t/spamd_client.t line 158.
> >
> > #   Failed test at t/SATest.pm line 926.
> >
> > #   Failed test at t/spamd_client.t line 161.
> > ERROR: Bayes dump returned an error, please re-run with -D for more
> > information
> >
> > #   Failed test at t/spamd_client.t line 165.
> > Not found: ham in database = 0 0  non-token data: nham at
> > t/spamd_client.t
> > line 166.
> >
> > #   Failed test at t/SATest.pm line 926.
> > Not found: spam in database = 0 0  non-token data: nspam at
> > t/spamd_client.t line 166.
> >
> > #   Failed test at t/SATest.pm line 926.
> > t/spamd_client.t .. 44/52
> > #   Failed test at t/spamd_client.t line 172.
> > ERROR: Bayes dump returned an error, please re-run with -D for more
> > information
> >
> > #   Failed test at t/spamd_client.t line 177.
> > Not found: ham in database = 1 0  non-token data: nham at
> > t/spamd_client.t
> > line 178.
> >
> > #   Failed test at t/SATest.pm line 926.
> >
> > #   Failed test at t/spamd_client.t line 181.
> > ERROR: Bayes dump returned an error, please re-run with -D for more
> > information
> > t/spamd_client.t .. 49/52
> > #   Failed test at t/spamd_client.t line 185.
> > Not found: ham in database = 0 0  non-token data: nham at
> > t/spamd_client.t
> > line 186.
> >
> > #   Failed test at t/SATest.pm line 926.
> > Not found: spam in database = 0 0  non-token data: nspam at
> > t/spamd_client.t line 186.
> >
> > #   Failed test at t/SATest.pm line 926.
> > t/spamd_client.t .. 52/52 # Looks like you failed 14
> > tests
> > of 52.
> > t/spamd_client.t .. Dubious, test returned 14 (wstat
> > 3584,
> > 0xe00)
> > Failed 14/52 subtests
> >
> > Any indications as to the issue?
> >
> > Thanks, Tuc
>
>
> --
> Bill Cole
> b...@scconsult.com or billc...@apache.org
> (AKA @grumpybozo and many *@billmail.scconsult.com addresses)
> Not Currently Available For Hire
>
Script started on Wed 03 Apr 2024 05:40:56 PM UTC
]0;ec2-user@ip-172-31-131-251:/usr/local/src/Mail-SpamAssassin-4.0.1[?1034h[ec2-user@ip-172-31-131-251
 Mail-SpamAssassin-4.0.1]$ make test
"/usr/bin/perl" build/mkrules --exit_on_no_src --src rulesrc --out rules 
--manifest MANIFEST --manifestskip MANIFEST.SKIP
no source 

Re: Syslog local3

[Bill Cole]

On 2024-04-03 at 05:49:20 UTC-0400 (Wed, 3 Apr 2024 11:49:20 +0200)
Emmanuel Seyman 
is rumored to have said:


Hello, all.

It's taken me nearly a year to realize this but spamassassin sends to
syslog with the local3 facility, not 'mail' as I had assumed.


The spamd daemon logs as mail as configured in the source distribution, 
but a packager (e.g. Debian) may modify that. If you are using something 
else to call Spamassassin, e.g. Amavis, MIMEDefang, etc., that other 
software controls the logging.



Is this something that can be configured?


If you're running spamd, the facility is set with the "-s" option, as 
documented in the man page.


--
Bill Cole
b...@scconsult.com or billc...@apache.org
(AKA @grumpybozo and many *@billmail.scconsult.com addresses)
Not Currently Available For Hire

Re: Multiple test failures

[Bill Cole]

On 2024-04-02 at 18:18:09 UTC-0400 (Tue, 2 Apr 2024 18:18:09 -0400)
Scott Ellentuch 
is rumored to have said:


Hi,

Trying to install SA 4.0.1 from scratch. Tried via CPAN, that didn't 
go

well, so trying from tarball. (Enabled SSL when doing Makefile.PL)


NEVER run 'make' as root except when you're ready to commit with 'make 
install' unless you're doing it on a sacrificial system.


Think about how unsafe it could be...

These test failures look like you did that. I am flattered that you 
trust the SpamAssassin team that much, but don't, please. We are only 
human. In the past there have been bugs in the test suite that have 
polluted the running config of the system if run as root. It is possible 
in principle for there to still be such bugs.


I'm on Amazon Linux 2 , 4.0.1 SA, and not sure what other info I can 
give.

I installed every perl module it wanted.


FWIW, non-root 'make test' has been clean for PMC members on a wide 
range of systems, so a real test failure would be both a shock and a 
serious problem. If this is happening with a normal user running 'make 
test' we definitely need to

address it.



The final summary is -
Test Summary Report
---
t/spamc_optL.t  (Wstat: 2560 Tests: 18 Failed: 10)
  Failed tests:  2, 5-8, 10, 12, 15-16, 18
  Non-zero exit status: 10
t/spamd_client.t(Wstat: 3584 Tests: 52 Failed: 14)
  Failed tests:  35, 37-42, 44, 46-51
  Non-zero exit status: 14
Files=217, Tests=3807, 904 wallclock secs ( 1.21 usr  0.22 sys + 
273.72

cusr 26.33 csys = 301.48 CPU)
Result: FAIL
Failed 2/217 test programs. 24/3807 subtests failed.
make: *** [test_dynamic] Error 255

During the run it seems to output :

t/spamd_client.t .. 32/52
#   Failed test at t/spamd_client.t line 152.
ERROR: Bayes dump returned an error, please re-run with -D for more
information
t/spamd_client.t .. 37/52
#   Failed test at t/spamd_client.t line 157.
Not found: spam in database = 1 0  non-token data: nspam at
t/spamd_client.t line 158.

#   Failed test at t/SATest.pm line 926.

#   Failed test at t/spamd_client.t line 161.
ERROR: Bayes dump returned an error, please re-run with -D for more
information

#   Failed test at t/spamd_client.t line 165.
Not found: ham in database = 0 0  non-token data: nham at 
t/spamd_client.t

line 166.

#   Failed test at t/SATest.pm line 926.
Not found: spam in database = 0 0  non-token data: nspam at
t/spamd_client.t line 166.

#   Failed test at t/SATest.pm line 926.
t/spamd_client.t .. 44/52
#   Failed test at t/spamd_client.t line 172.
ERROR: Bayes dump returned an error, please re-run with -D for more
information

#   Failed test at t/spamd_client.t line 177.
Not found: ham in database = 1 0  non-token data: nham at 
t/spamd_client.t

line 178.

#   Failed test at t/SATest.pm line 926.

#   Failed test at t/spamd_client.t line 181.
ERROR: Bayes dump returned an error, please re-run with -D for more
information
t/spamd_client.t .. 49/52
#   Failed test at t/spamd_client.t line 185.
Not found: ham in database = 0 0  non-token data: nham at 
t/spamd_client.t

line 186.

#   Failed test at t/SATest.pm line 926.
Not found: spam in database = 0 0  non-token data: nspam at
t/spamd_client.t line 186.

#   Failed test at t/SATest.pm line 926.
t/spamd_client.t .. 52/52 # Looks like you failed 14 
tests

of 52.
t/spamd_client.t .. Dubious, test returned 14 (wstat 
3584,

0xe00)
Failed 14/52 subtests

Any indications as to the issue?

Thanks, Tuc



--
Bill Cole
b...@scconsult.com or billc...@apache.org
(AKA @grumpybozo and many *@billmail.scconsult.com addresses)
Not Currently Available For Hire

Re: disable URIBL_ and spamhaus.net

[natan]

W dniu 3.04.2024 o 15:25, Matus UHLAR - fantomas pisze:

On 03.04.24 11:18, natan wrote:

Where in  pdns-recursor? I use pdns-recursor

/etc/powerdns/recursor.conf



W dniu 3.04.2024 o 13:17, Matus UHLAR - fantomas pisze:
This is not about pdns-recursor itself. It's about using own 
recursing DNS server


- you you don't use DNS server of your ISP, google(8.8.8.8/8.8.4.4), 
  cloudflare(1.1.1.1) or quad-nine (9.9.9.9)


look into your /etc/resolv.conf or SpamAssassin's configuration of 
"dns_server" (if there's none, /etc/resolv.conf is used).


On 03.04.24 14:34, natan wrote:

cat /etc/resolv.conf
nameserver 127.0.0.1


so apparently you only use locally installed DNS server which I assume 
is powerdns-recursor.


I guess your powerdns-recursor is not configured to forward lookups to 
other DNS servers but your ISP still may redirect DNS lookups to its 
servers.


How many mail does your machine process daily?
spamhaus limits to about 100k lookups daily.

~200K


according to SA docs:

https://cwiki.apache.org/confluence/display/SPAMASSASSIN/DnsBlocklists

since spamassassin 3.4 it should be enough to disable spamhaus lookups:

dns_query_restriction deny spamhaus.org

or probably split to these:


For test I add i local.cf
dns_query_restriction deny zen.spamhaus.org
dns_query_restriction deny dbl.spamhaus.org


dns_query_restriction deny zen.spamhaus.org
dns_query_restriction deny dbl.spamhaus.org

(if you lates find out one of those would work)



--

Participate in the ASF 25th Anniversary Campaign

[Brian Proffitt]

Hi everyone,

As part of The ASF’s 25th anniversary campaign[1], we will be celebrating
projects and communities in multiple ways.

We invite all projects and contributors to participate in the following
ways:

* Individuals - submit your first contribution:
https://news.apache.org/foundation/entry/the-asf-launches-firstasfcontribution-campaign
* Projects - share your public good story:
https://docs.google.com/forms/d/1vuN-tUnBwpTgOE5xj3Z5AG1hsOoDNLBmGIqQHwQT6k8/viewform?edit_requested=true
* Projects - submit a project spotlight for the blog:
https://cwiki.apache.org/confluence/pages/viewpage.action?pageId=278466116
* Projects - contact the Voice of Apache podcast (formerly Feathercast) to
be featured: https://feathercast.apache.org/help/
*  Projects - use the 25th anniversary template and the #ASF25Years hashtag
on social media:
https://docs.google.com/presentation/d/1oDbMol3F_XQuCmttPYxBIOIjRuRBksUjDApjd8Ve3L8/edit#slide=id.g26b0919956e_0_13

If you have questions, email the Marketing & Publicity team at
mark...@apache.org.

Peace,
BKP

[1] https://apache.org/asf25years/

[NOTE: You are receiving this message because you are a contributor to an
Apache Software Foundation project. The ASF will very occasionally send out
messages relating to the Foundation to contributors and members, such as
this one.]

Brian Proffitt
VP, Marketing & Publicity
VP, Conferences

Re: disable URIBL_ and spamhaus.net

[Matus UHLAR - fantomas]

On 03.04.24 11:18, natan wrote:

Where in  pdns-recursor? I use pdns-recursor

/etc/powerdns/recursor.conf



W dniu 3.04.2024 o 13:17, Matus UHLAR - fantomas pisze:
This is not about pdns-recursor itself. It's about using own 
recursing DNS server


- you you don't use DNS server of your ISP, google(8.8.8.8/8.8.4.4), 
  cloudflare(1.1.1.1) or quad-nine (9.9.9.9)


look into your /etc/resolv.conf or SpamAssassin's configuration of 
"dns_server" (if there's none, /etc/resolv.conf is used).


On 03.04.24 14:34, natan wrote:

cat /etc/resolv.conf
nameserver 127.0.0.1


so apparently you only use locally installed DNS server which I assume is 
powerdns-recursor.


I guess your powerdns-recursor is not configured to forward lookups to other 
DNS servers but your ISP still may redirect DNS lookups to its servers.


How many mail does your machine process daily?
spamhaus limits to about 100k lookups daily.

according to SA docs:

https://cwiki.apache.org/confluence/display/SPAMASSASSIN/DnsBlocklists

since spamassassin 3.4 it should be enough to disable spamhaus lookups:

dns_query_restriction deny spamhaus.org

or probably split to these:

dns_query_restriction deny zen.spamhaus.org
dns_query_restriction deny dbl.spamhaus.org

(if you lates find out one of those would work)

--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
42.7 percent of all statistics are made up on the spot.

Re: disable URIBL_ and spamhaus.net

[natan]

W dniu 3.04.2024 o 13:17, Matus UHLAR - fantomas pisze:

On 03.04.24 11:18, natan wrote:

Where in  pdns-recursor? I use pdns-recursor

/etc/powerdns/recursor.conf


This is not about pdns-recursor itself. It's about using own recursing 
DNS server


- you you don't use DNS server of your ISP, google(8.8.8.8/8.8.4.4),   
cloudflare(1.1.1.1) or quad-nine (9.9.9.9)


look into your /etc/resolv.conf or SpamAssassin's configuration of 
"dns_server" (if there's none, /etc/resolv.conf is used).



cat /etc/resolv.conf
nameserver 127.0.0.1


W dniu 3.04.2024 o 11:10, Reindl Harald (privat) pisze:

use unbound as caching resolver and configure TTL properly

cache-min-ttl: 60
cache-max-negative-ttl: 60

Am 03.04.24 um 11:06 schrieb natan:

Hi
I must chane or disable permanently spamhaus.net and all everything 
he uses.


They calculated the rate so much that I couldn't afford to use 
their toys


Does anyone have an interesting solution to this problem?
Or maybe some other lists connected?


--

Re: disable URIBL_ and spamhaus.net

[natan]

Hi
In this machine I use
cat /etc/resolv.conf
nameserver 127.0.0.1


W dniu 3.04.2024 o 14:18, Benny Pedersen pisze:

natan skrev den 2024-04-03 11:06:


I must chane or disable permanently spamhaus.net and all everything he
uses.


+1


They calculated the rate so much that I couldn't afford to use their
toys


+1


Does anyone have an interesting solution to this problem?
Or maybe some other lists connected?


more verbose info on how you use dns in your server setup is needed

local resolver is payed

no local resolver, no good results, your choice




--

Re: disable URIBL_ and spamhaus.net

[Benny Pedersen]

natan skrev den 2024-04-03 11:06:


I must chane or disable permanently spamhaus.net and all everything he
uses.


+1


They calculated the rate so much that I couldn't afford to use their
toys


+1


Does anyone have an interesting solution to this problem?
Or maybe some other lists connected?


more verbose info on how you use dns in your server setup is needed

local resolver is payed

no local resolver, no good results, your choice

Re: disable URIBL_ and spamhaus.net

[Matus UHLAR - fantomas]

On 03.04.24 11:18, natan wrote:

Where in  pdns-recursor? I use pdns-recursor

/etc/powerdns/recursor.conf


This is not about pdns-recursor itself. It's about using own recursing DNS 
server


- you you don't use DNS server of your ISP, google(8.8.8.8/8.8.4.4), 
  cloudflare(1.1.1.1) or quad-nine (9.9.9.9)


look into your /etc/resolv.conf or SpamAssassin's configuration of 
"dns_server" (if there's none, /etc/resolv.conf is used).



W dniu 3.04.2024 o 11:10, Reindl Harald (privat) pisze:

use unbound as caching resolver and configure TTL properly

cache-min-ttl: 60
cache-max-negative-ttl: 60

Am 03.04.24 um 11:06 schrieb natan:

Hi
I must chane or disable permanently spamhaus.net and all 
everything he uses.


They calculated the rate so much that I couldn't afford to use 
their toys


Does anyone have an interesting solution to this problem?
Or maybe some other lists connected?

--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
Enter any 12-digit prime number to continue.

Re: disable URIBL_ and spamhaus.net

[natan]

W dniu 3.04.2024 o 11:20, Marc pisze:

I must chane or disable permanently spamhaus.net and all everything he
uses.

They calculated the rate so much that I couldn't afford to use their toys

Does anyone have an interesting solution to this problem?
Or maybe some other lists connected?


Do you really need url checking? Maybe you can make a caching servlet so you do 
not send duplicate requests? I am thinking of doing this for geo / reverse geo 
lookups.

I try naw disable:

URIBL_SBL 0
URIBL_CSS 0
URIBL_SBL_A URIBL_CSS_A 0
URIBL_ZEN_BLOCKED_OPENDNS 0
URIBL_ZEN_BLOCKED 0
URIBL_DBL_SPAM 0
 URIBL_DBL_PHISH 0
URIBL_DBL_MALWARE 0
URIBL_DBL_BOTNETCC 0
URIBL_DBL_ABUSE_SPAM 0
URIBL_DBL_ABUSE_REDIR 0
URIBL_DBL_ABUSE_PHISH 0
URIBL_DBL_ABUSE_MALW 0
URIBL_DBL_ABUSE_BOTCC 0
URIBL_DBL_ERROR 0
URIBL_DBL_BLOCKED_OPENDNS URIBL_DBL_BLOCKED 0

Is that enough ?





--

Re: disable URIBL_ and spamhaus.net

[natan]

Hi
IRTFM beacuse I use pdns-recursor where
max-cache-ttl default is 86400
ecs-minimum-ttl-override=60
minimum-ttl-override=60


W dniu 3.04.2024 o 11:23, Reindl Harald (privat) pisze:



Am 03.04.24 um 11:18 schrieb natan:

Hi
Where in  pdns-recursor? I use pdns-recursor

/etc/powerdns/recursor.conf


RTFM or switch to unbound

the point is if you ignore the short TTL you trigger only a small 
subset of outbound dns requests and shouldn't note any difference



W dniu 3.04.2024 o 11:10, Reindl Harald (privat) pisze:

use unbound as caching resolver and configure TTL properly

cache-min-ttl: 60
cache-max-negative-ttl: 60

Am 03.04.24 um 11:06 schrieb natan:

Hi
I must chane or disable permanently spamhaus.net and all everything 
he uses.


They calculated the rate so much that I couldn't afford to use 
their toys


Does anyone have an interesting solution to this problem?
Or maybe some other lists connected?




--

Syslog local3

[Emmanuel Seyman]

Hello, all.

It's taken me nearly a year to realize this but spamassassin sends to
syslog with the local3 facility, not 'mail' as I had assumed.

Is this something that can be configured?

Regards,
Emmanuel

RE: disable URIBL_ and spamhaus.net

[Marc]

> I must chane or disable permanently spamhaus.net and all everything he
> uses.
> 
> They calculated the rate so much that I couldn't afford to use their toys
> 
> Does anyone have an interesting solution to this problem?
> Or maybe some other lists connected?
> 

Do you really need url checking? Maybe you can make a caching servlet so you do 
not send duplicate requests? I am thinking of doing this for geo / reverse geo 
lookups.

Re: disable URIBL_ and spamhaus.net

[natan]

Hi
Where in  pdns-recursor? I use pdns-recursor

/etc/powerdns/recursor.conf

W dniu 3.04.2024 o 11:10, Reindl Harald (privat) pisze:

use unbound as caching resolver and configure TTL properly

cache-min-ttl: 60
cache-max-negative-ttl: 60

Am 03.04.24 um 11:06 schrieb natan:

Hi
I must chane or disable permanently spamhaus.net and all everything 
he uses.


They calculated the rate so much that I couldn't afford to use their 
toys


Does anyone have an interesting solution to this problem?
Or maybe some other lists connected?




--

disable URIBL_ and spamhaus.net

[natan]

Hi
I must chane or disable permanently spamhaus.net and all everything he uses.

They calculated the rate so much that I couldn't afford to use their toys

Does anyone have an interesting solution to this problem?
Or maybe some other lists connected?


--