Re: [Assp-test] Inbound TLS from gmail.com addresses / servers

2016-09-26 Thread Thomas Eckardt 
First, thank you for the debug file.

There is one big problem. The debug file explains the general behavior of 
the slowing down connection while the data size is growing.
It not explains, why this should only happens at connections from 
gmail.com and only if TLS is used.

looking at the following timeline - the *** lines are from me and are 
showing the count of read-socketcalls within this second


Sep-23-16 21:14:37 [Worker_2]  to: 
testtls@[[ OUR DOMAIN ]].org info: message is too large ( > neverQueueSize 
1200 byte) to be queued for further internal processing! Skipping 
DKMI, Plugins and charset conversion. 
***socketcalls per second (each 1440 byte) 8
...
Sep-23-16 21:22:45 [Worker_2] Sep-23-16 21:14:37 [Worker_2] 
An: ASSP development mailing list 
Datum:  24.09.2016 04:05
Betreff:Re: [Assp-test] Inbound TLS from gmail.com addresses / 
servers



in the debug that I'm about to send you, I'm seeing lines like:

periodically in the file.
Don't know if that's notable or not.

On Fri, Sep 23, 2016 at 9:43 PM, K Post  wrote:

> I'll get you a sample debug asap.
>
> FYI, I forgot to mention yesterday - I've noticed times (not always) 
when
> watching the SMTP Connections Window with large test gmail emails where 
a
> message will start transferring and after some time (7-8 minutes, maybe 
a
> little less), that google will connect a second time and start 
transferring
> the message again, even though the first one is still being received.
>
> The first message completed after say 12 minutes, and then 3-4 minutes
> after that, the 2nd google connection disconnects and doesn't try again
> (nor should it).
>
> This does NOT happen every time, and I can't find find a reason why it
> would do this on occasion for some but not other big messages.
>
>
> On Fri, Sep 23, 2016 at 7:02 AM, Thomas Eckardt <
> thomas.ecka...@thockar.com> wrote:
>
>> Thank you Ken.
>>
>> Please would you send me the debug log for the large (15MB) TLS mail as
>> ZIP or make it available to me for download anywhere, if it is too 
large
>> for SMTP.
>>
>> Thomas
>>
>>
>
--
___
Assp-test mailing list
Assp-test@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/assp-test




DISCLAIMER:
***
This email and any files transmitted with it may be confidential, legally 
privileged and protected in law and are intended solely for the use of the 

individual to whom it is addressed.
This email was multiple times scanned for viruses. There should be no 
known virus in this email!
***

--
___
Assp-test mailing list
Assp-test@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/assp-test

[Assp-test] fixed in assp 2.5.2 build 16270

2016-09-26 Thread Thomas Eckardt 
Hi all,

fixed in assp 2.5.2 build 16270:

- some not required code is removed from the outqueue processing

- spamlover score overrides for low-limit and limit were ignored by failed 
Plugins

- performance optimizaton for large mails

- the automatic creation of empty option files has shown a wrong file path 
in maillog.txt

- the new return values '56' and '57' provided by senderbase.org are no 
longer causing a warning in assp


changed:

- If the usage of AUTH is forbidden for amy reason for incoming 
connections, but the AUTH command is used,
the message and IP is scored with 'autValencePB'

- An microseond timestamp is added to all debug lines.

- the maillog.txt lines for closed connections are expanded by some more 
information

- the values 25 and 50 are added to the max. result count selection in the 
MaillogTail dialog


added:

- hidden parameter to disable the RFC2047 check completely
our $disableRFC2047 = 0;
# (0/1) disable the RFC2047 check - undecoded subject contains non 
printable characters 

Thomas


DISCLAIMER:
***
This email and any files transmitted with it may be confidential, legally 
privileged and protected in law and are intended solely for the use of the 

individual to whom it is addressed.
This email was multiple times scanned for viruses. There should be no 
known virus in this email!
***

--
___
Assp-test mailing list
Assp-test@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/assp-test

Re: [Assp-test] Inbound TLS from gmail.com addresses / servers

2016-09-26 Thread K Post 
I have IO::Socket::SSL 2.036 installed instead of 2.020.  Could this have
anything to do with any of this?

On Mon, Sep 26, 2016 at 11:49 PM, K Post  wrote:

> THANK YOU again for taking all the time on this.  It's nuts that this only
> seems to happen (to me and others reporting) with TLS on and mail sent
> through google servers.
>
> I've confirmed the version of Convert::Scalar to be 1.11
>
> I'll get you a debug log privately, but here's what I'm seeing with the
> latest version:
>
> 11mb attachment, tls on, newest version, but without
> the $main::neverQueueSize = 4194304; line took 620 seconds.  That's better
> than the 772seconds that saw before I but still pretty terrible - and of
> course, that's only one test.
>
> I see a message which I assume is now expected:
> message is too large ( SIZE 15700413 byte > neverQueueSize 1200 byte)
> to be queued for further internal processing! Skipping DKIM, Plugins and
> charset conversion. for that message
>
> I saw a X-ASSP-KEEP line in the header too.  Don't know what that means.
> Haven't seen that before.
>
> Once I added the $main::neverQueueSize = 4194304; line to
> ASSP_Correct.pm, speed improves for sure.  It took 327 seconds.  Still
> really slow considering that without TLS it only takes 19 seconds.
> Similar line noting the 4MB size limit
> Removing the full message analysis seems like a shame especially since it
> doesn't seem to even stutter if TLS is off.
>
> So more questions for your consideration
> 1) What is TLS doing that slows things down so much for GOOGLE mails only
> (or at least only google that I've seen be slow)
> 2) What encryption related modules need checking?
> 3) Why would things be fine on your old Windows 2003 rig, but clearly not
> okay on my (presumably) faster machine
> 4) What is similar between my machine and the others who reported TLS
> problems with Google.  I know one at least was a Linux rig.
>
>
>
>
>
>
> On Mon, Sep 26, 2016 at 4:02 AM, Thomas Eckardt <
> thomas.ecka...@thockar.com> wrote:
>
>> First, thank you for the debug file.
>>
>> There is one big problem. The debug file explains the general behavior of
>> the slowing down connection while the data size is growing.
>> It not explains, why this should only happens at connections from
>> gmail.com and only if TLS is used.
>>
>> looking at the following timeline - the *** lines are from me and are
>> showing the count of read-socketcalls within this second
>>
>> 
>> Sep-23-16 21:14:37 [Worker_2] > (6)> Sep-23-16 21:14:37 [Worker_2] > Sep-23-16 21:14:38 [Worker_2] > Sep-23-16 21:14:39 [Worker_2] > ***socketcalls per second (each 1440 byte) 164
>> ...
>> Sep-23-16 21:14:40 [Worker_2] > ***socketcalls per second (each 1440 byte) 167
>> ...
>> Sep-23-16 21:14:41 [Worker_2] > ***socketcalls per second (each 1440 byte) 108
>> ...
>> Sep-23-16 21:14:42 [Worker_2] > ***socketcalls per second (each 1440 byte) 95
>> ...
>> Sep-23-16 21:14:43 [Worker_2] > ***socketcalls per second (each 1440 byte) 82
>> ...
>> Sep-23-16 21:14:44 [Worker_2] > ***socketcalls per second (each 1440 byte) 74
>> ...
>> Sep-23-16 21:15:09 [Worker_2] > ***socketcalls per second (each 1440 byte) 43
>> ...
>> Sep-23-16 21:15:39 [Worker_2] > ***socketcalls per second (each 1440 byte) 35
>> ...
>> Sep-23-16 21:16:39 [Worker_2] > ***socketcalls per second (each 1440 byte) 21
>> ...
>> Sep-23-16 21:18:39 [Worker_2] > ***socketcalls per second (each 1440 byte) 12
>> ...
>> Sep-23-16 21:22:41 msg79676-04975 209.85.223.177 
>> to:
>> testtls@[[ OUR DOMAIN ]].org info: message is too large ( >
>> neverQueueSize
>> 1200 byte) to be queued for further internal processing! Skipping
>> DKMI, Plugins and charset conversion.
>> ***socketcalls per second (each 1440 byte) 8
>> ...
>> Sep-23-16 21:22:45 [Worker_2] > (1404)
>> ***socketcalls per second (each 1440 byte) 150
>> ...
>> Sep-23-16 21:23:53 [Worker_2] > (1404)
>> ***socketcalls per second (each 1440 byte) 161
>> ...
>> Sep-23-16 21:23:53 [Worker_2] > (1404)
>> ***socketcalls per second (each 1440 byte) 161
>> Sep-23-16 21:25:29 [Worker_2] > seconds)[CR][LF]
>> 
>>
>> Until Sep-23-16 21:22:41 the mail is queued. While this is done, the speed
>> slows down with the growing data.
>> After this timestamp, large (65 kB)data junks are sent to the MTA (small
>> (1400 Byte) are received) and as the queued data are getting less, the
>> speed grows.
>> At Sep-23-16 21:22:45 the outqueue is empty and the data are sent as they
>> are received (1404 Byte each) with a normal speed.
>>
>> This behavior can't be explained with the usage of TLS, because the code
>> behind is the same for all connections. The read data size for each read
>> operation is always the same 1400 Byte.
>> For me, the behavior can be exactly described with a not working Perl
>> module 'Convert::Scalar' or a code operation, which is done over all the
>> growing data after each read operation.
>> The latter I can exclude. To

Re: [Assp-test] fixed in assp 2.5.2 build 16270

2016-09-26 Thread K Post 
Thanks again for all of this!  Some of these little tweaks will make a big
difference in my day to day.

Note, that after launching this new version, I am getting the warning:

warning: the current HMMdb is possibly incompatible to this version of
ASSP. Please run a rebuildspamdb. current:
2_14315_5.020001_UAX#29_UAX#15_WordStem1.27 - required:
2_14315_UAX#29_UAX#15_WordStem1.27

I'm running a rebuild, but I haven't ever seen that before when doing a
version upgrade.




On Mon, Sep 26, 2016 at 5:38 AM, Thomas Eckardt 
wrote:

> Hi all,
>
> fixed in assp 2.5.2 build 16270:
>
> - some not required code is removed from the outqueue processing
>
> - spamlover score overrides for low-limit and limit were ignored by failed
> Plugins
>
> - performance optimizaton for large mails
>
> - the automatic creation of empty option files has shown a wrong file path
> in maillog.txt
>
> - the new return values '56' and '57' provided by senderbase.org are no
> longer causing a warning in assp
>
>
> changed:
>
> - If the usage of AUTH is forbidden for amy reason for incoming
> connections, but the AUTH command is used,
> the message and IP is scored with 'autValencePB'
>
> - An microseond timestamp is added to all debug lines.
>
> - the maillog.txt lines for closed connections are expanded by some more
> information
>
> - the values 25 and 50 are added to the max. result count selection in the
> MaillogTail dialog
>
>
> added:
>
> - hidden parameter to disable the RFC2047 check completely
> our $disableRFC2047 = 0;
> # (0/1) disable the RFC2047 check - undecoded subject contains non
> printable characters
>
> Thomas
>
>
> DISCLAIMER:
> ***
> This email and any files transmitted with it may be confidential, legally
> privileged and protected in law and are intended solely for the use of the
>
> individual to whom it is addressed.
> This email was multiple times scanned for viruses. There should be no
> known virus in this email!
> ***
>
>
> 
> --
>
> ___
> Assp-test mailing list
> Assp-test@lists.sourceforge.net
> https://lists.sourceforge.net/lists/listinfo/assp-test
>
>
--
___
Assp-test mailing list
Assp-test@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/assp-test