fixed in assp 2.8.2 *SPAM-Eliminator* build 23331:
- the memory footprint of the rebuild spamdb task is reduced
- the output for the size of the tmpDB folder in the rebuild report was
wrong
- some GUI corrections
- wrong configuration of the database drivers DBD::ODBC and DBD::ADO
crashed assp
Hi all,
a new build of perl 5.38.0.1 for windows is available at sourceforge
https://sourceforge.net/projects/assp/files/ASSP%20V2%20multithreading/ASSP%20V2%20module%20installation/strawberry-perl-5.38.0.1-64bit_gcc13-relocateable_4-assp.7z
This perl was build using the GNU GCC version 13 (the
Hi all,
fixed in assp 2.8.2 *SPAM-Eliminator* build 23251:
- In IP-address lists it is now possible to define an ASN (Autonomous
System Number) for an IP-address.
The IP-address-range for the IP in the ASN is resolved and used instead
of the defined IP-address.
Even the ASN contains more
Hi all,
fixed in assp 2.8.2 *SPAM-Eliminator* build 23225:
- because of a DNS-answer layout change of asn.routeviews.org, the ASN
(Autonomous System Number) for the IP-address was no longer shown in the
analyzer output
and in the results of the "work with IP-addresses" dialog
Thomas
Hi all,
fixed in assp 2.8.2 *SPAM-Eliminator* build 23214:
changed:
related to SF ticket(150) : DQS Service spamhaus.net is not working
correctly
- The spamhaus offers a new service 'DQS Service spamhaus.net'. Since
06/2023 they are blocking legacy (spamhaus.org) requests from different
Hi all,
fixed in assp 2.8.2 *SPAM-Eliminator* build 23198:
changed:
- an alias for the charset 'ISO-8859-8-I' is added to Encode, if the
charset is not supported by the currently installed version of Encode
- the modus used to delay connections, if the connected IP matches the
provided
Hi all,
fixed in assp 2.8.2 *SPAM-Eliminator* build 23195:
- if a user,sender based (a privat) whitelist entry like
user@local.domain,sender@other.domain was created using the 'work with
lists' GUI dialog,
an existing related personal-black-list entry was not removed
- if a mail contained
Hi all,
fixed in assp 2.8.2 *SPAM-Eliminator* build 23187:
- added support for Perl 5.38.0
Thomas
___
Assp-test mailing list
Assp-test@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/assp-test
Hi all,
perl 5.38.0 was released some days ago.
I've finished compiling it for 64bit windows and added all components
required by assp. If you want to try it out, it is available at
Hi all,
fixed in assp 2.8.2 *SPAM-Eliminator* build 23184:
- if a backend-server (e.g. bad configured exim) offered the
SMTP-extension PIPECONNECT and a client/server used the pipelining option,
the connection failed after the DATA command
changed:
- the at least recommended version of the
Hi all,
fixed in assp 2.8.2 *SPAM-Eliminator* build 23136:
- if openssl 3.0.0 or higher was installed, the installed openssl library
version was not shown in the "Perl Modules" status page
Thomas
___
Assp-test mailing list
Hi all,
fixed in assp 2.8.2 *SPAM-Eliminator* build 23130:
- the latest Net::DNS module version 1.38 throws a deprecation warning
about the usage of the function rr->rdatastr (instead of using
rr->rdstring)
this build uses rr->rdstring
it is expected, that in any of the next versions of
Hi all,
fixed in assp 2.8.2 *SPAM-Eliminator* build 23116:
- the download URL's for the two- and third-level-tld files are changed to
(the download was no longer woring using the old URL's)
https://www.surbl.org/static/two-level-tlds
https://www.surbl.org/static/three-level-tlds
- wrong
Hi all,
fixed in assp 2.8.2 *SPAM-Eliminator* build 23089:
- if the bulkimport of the spamdb and hmmdb were disabled for
MSSQL-Databases, the import failed because of the usage
of wrong table names
- it was possible that preHeaderRe matched in the analyzer but not in the
real mail
Hi all
fixed in assp 2.8.2 *SPAM-Eliminator* build 23072:
**
*
* !!! ATTENTION !!! *
*
*this version of
1. a perl module OpenAI::API is already available - its not really nice
because it uses Moo, but this can be changed
2. using OpenAI for spam detection would be very expensive - you are
charged by tokens - reaching several million "Usage" and "Training" tokens
per day is possible
...
9.
0) (on
darwin) running on server:xxx
[init] IO::Socket::IP module version 0.41 installed and available
And in Activity Monitor I can see that Perl is running as root.
What am I missing?
Thanks,
Jammes[Anhang "attu4spk.txt" gelöscht von Thomas Eckardt/eck] [Anhang
"attyhzf
Hi all,
fixed in assp 2.6.8 *SPAM-Evaporator* build 23002:
- ASSP_AFC.pm is upgraded to version 5.45
- on several linux version assp throws an error "Error: Schedule entry
'0-59/10 * * * *' for MemoryUsageCheckSchedule is not valid"
this should no longer happen
Thomas
found this in the assp dev forum
https://unix.stackexchange.com/questions/714901/dns-broken-when-using-ifupdown-and-systemd-resolved-after-upgrade-to-ubuntu-22-0?newreg=c4cc3942d61140858fd6815357211bba
it's related to ubuntu, but it may help to get an idea
Thomas
Von:"Mr. Courtney
Hi all,
fixed in assp 2.6.8 *SPAM-Evaporator* build 22326:
- several interal statistics were unexpected cleared at startup, if
'useDB4IntCache' was not set
- if a mail with the empty envelope recipient was received and the sending
domain (from: or sender:) provided a DMARC record
the DMARC
hoot this, and also
wondering if anyone else is seeing anything similar.
-C
[Anhang "attmrm6l.txt" gelöscht von Thomas Eckardt/eck] [Anhang
"att9qtoe.txt" gelöscht von Thomas Eckardt/eck]
___
Assp-test mailing list
Assp-test@lists.source
Hi all,
fixed in assp 2.6.8 *SPAM-Evaporator* build 22318:
- some spam messages were not forwarded even 'ccSpamAlways' was configured
NOTICE: if 'ccSpamAlways' is configured and 'SpamVirusLog' is not set to
'quarantine' (even it is set to 'no collect' !!), the virus mails
will be
Hi all,
fixed in assp 2.6.8 *SPAM-Evaporator* build 22313:
- if any of DKIMWLAddresses or DKIMNPAddresses was used and a mail
contained more than one DKIM signature (eg. for different identities)
only the first (header - top to bottom) valid DKIM identity was checked
against both parameters
Hi all,
fixed in assp 2.6.8 *SPAM-Evaporator* build 22310:
- on non english linux installations some times the connection retry was
not working
changed:
- in 'ccSpamInDomain' it is now possible to use the USERNAME literal
The literal USERNAME is replaced by the user part of the
>it appears that it is showing the sha256 of the .html file
yes, the javascript is in the html file - - the fault is "javascript used
in html", not the base64 encoded javascript part
>That means that the sha256 that shows in the log is different each time
and can't be use for the exception.
Hi all,
ASSP_AFC.pm 5.42 is released on the SVN repo.
The last days have shown an extensive usage of very smart attacks, which
are based on native integrated code in SVG images and HTML pages.
This release is able to detect native integrated Base64 encoded as well as
javascript code in
Hi all,
fixed in assp 2.6.8 *SPAM-Evaporator* build 22293:
- if BlockRepForwHost was configured and any of EmailBlockReportDomain,
EmailBlockReport or BlockRepForwHost was changed, queued forwarding
requests failed
in case any of these vales is changed, the BlockReport-Forwarding queue
is
Hi all,
fixed in assp 2.6.8 *SPAM-Evaporator* build 22280:
- after an upgrade of the perl module Schedule::Cron to version 1.03 the
assp scheduler was no longer working
Thomas
___
Assp-test mailing list
Assp-test@lists.sourceforge.net
Hi all,
fixed in assp 2.6.8 *SPAM-Evaporator* build 22279:
- griplist uploads and downloads were no longer working, because the
sourceforge http server no longer accepts plain http transfer
NOTICE: ALL older versions of assp will fail to upload to the griplist
server!
- statistc uploads
Hi all,
fixed in assp 2.6.8 *SPAM-Evaporator* build 22252:
- if line continuation '\' was used in a regular expression file, the
regex was no longer working like expected
- if line continuation '\' was used in a regular expression file, the
analyzer has'nt shown the matching file and line
)\@(?:(?)\.)+(?)|(?from):(?)\@(?:(?)\.)*?(?(?))\.(?)).+?\n\
(?!\k)(?:to:(?)\k\@(?:(?)\.)+(?)|from:(?)\@(?:(?)\.)*?\k\.(?))~=>-10
Saving the file does not trigger an error in the GUI, but the analyze GUI
no longer shows matches for the same email that does when the regex is on
a single line.
Thanks![Anhang "att948xp.t
Hi all,
fixed in assp 2.6.8 *SPAM-Evaporator* build 22251:
- some unexpected log lines about unresolveable IP-addresses were shown by
assp (since build 22200)
- the attachment 'NoCheckIf' rule was not working, if the SPF-check or the
DKIM-check was skipped because of any condition
r to catch commonly obscured words (like
GeekSquad). Is it okay if I reply further in my August 1 post here to
keep that in the same thread?
On Tue, Sep 6, 2022 at 2:06 PM Thomas Eckardt
wrote:
>HTML::strip
html parsing to get text parts has nothing to do with html de(en)coding
>i
the end of a line.
I suspect that other characters will be abused in the same way.
This kind of obfuscation goes hand in hand with my previous questions
about considering some non-Latin characters that look like Latin
characters as those Latin alphabet characters.
Thanks
[Anhang "a
ed on the warning, I just wanted
to see if these are new / different warnings that ASSP is doing now or if
there's been an uptick in bulk sending services doing things wrong.
Thanks
[Anhang "attm5aih.txt" gelöscht von Thomas Eckardt/eck] [Anhang
"att78ilr.t
Hi all,
fixed in assp 2.6.8 *SPAM-Evaporator* build 22209:
- If an EmailAdmin requested a resend of a blocked mail (for another
person) and the blocked mail was originally sent to multiple envelope
recipients,
the mail was only resent to the first original envelope recipient,
because only
I released ASSP_AFC.pm version 5.41 at SVN.
If a mail was blocked because of a bad attachment and an admin requested a
resend without using the 'noscan' tag or without defining the
'X-Assp-ForceResend:' header,
assp has possibly moved and renamed the original file (most times in to
I released ASSP_AFC.pm version 5.40 at SVN.
It fixes a problem were the attachment parser was running in to a
processing timeout, if an extracted attachment was a corrupt .eml file.
Thomas
DISCLAIMER:
***
This email and any files
equation in the last 2 years. I'm still in touch with their staff.
While the like 365's features, they can't stand the spam filtering. You've
spoiled them with never having to sort through a junk folder!!
On Fri, Jul 15, 2022 at 6:37 AM Thomas Eckardt wrote:
Ken - learn perl regular express
Hi all,
fixed in assp 2.6.8 *SPAM-Evaporator* build 22200:
- if 'runAsUser' was used on nix systems, it was possible that the file
assp/tmpDB/files/SPFRecCache.sav was saved using a wrong owner (root) -
which may be caused a permission error at the next start of assp
- if setFilePermOnStart
/xis;
return ($match !~ /$re/);
}
seems to return if there's no DKIM (return unless $this->{isDKIM};)
wouldn't that not match the regex, so the 60 score wouldn't be applied?
Part of my goal is to require DKIM signature for certain domain names, not
only requiring valid DKIM
eturn ($match !~ /$re/);
}
Thomas
Von:"Thomas Eckardt"
An: "ASSP development mailing list"
Datum: 08.07.2022 16:53
Betreff:Re: [Assp-test] blockStrictDKIMRe -- also thoughts on
DMARC rejects
If such a feature would be implemented, it will result
reject the message (just like their DMARC
policy says to do).
Is there another way with current ASSP features to accomplish this only if
a message matches this proposed regex?
Ken
On Fri, Jun 17, 2022 at 4:35 AM Thomas Eckardt wrote:
>Would you please consider adding a featur
Hi all,
fixed in assp 2.6.8 *SPAM-Evaporator* build 22187:
- it was possible to define a colon (:) in 'proxyuser' - this is no longer
allowed - as stated in rfc7235
- the upload of Stats and Griplist to the sourceforge servers failed, if
'proxyserver' and 'proxyuser' and 'proxypass' were
>Would you please consider adding a feature to do the same for a failed
DKIM signature?
NO!
Contrary to SPF, a DKIM signature has only two options : OK and FAIL -
Based on the signature it self or based on a trusted forwarders
authentication result (ARC).
A DKIM signature has to be valid
document relationships are too commonly used to block them
if you really need to block them, use the implemented calls to
our $checkExeExternal; # custom subroutine to check executables external
(eg. lib/CorrectASSPcfg.pm) -
$ASSP_AFC::checkExeExternal->($self,\$sk,\$buff,$raf,\$pdf) if the
Hi all,
fixed in assp 2.6.8 *SPAM-Evaporator* build 22165:
- all plugins failed to detect assp.pl versions with two digit version
numbers
all plugins are updated
- assp on perl 5.36.0 showed unexpected warnings at compile time
- SSL renegotiations at a tranparent proxy connection caused
This is not possible because:
Note that the suspicious scheme ("ms-msdt:/") is not present in the
document. It's present in the first stage payload that will be downloaded
by Office.
and
The document contains an external reference pointing to a malicious URL:
If the
Hi all,
If anyhow possible you should consider to not switch openssl to version
3.0.x. There are currently too many openssl related perl modules at CPAN,
which can't be compiled using openssl v3.
ASSP seems not to be affected by any of these incompatible modules!
Thomas
DISCLAIMER:
Hi all,
the development of assp V2 is switched to perl version 5.36.0.
The latest available assp version 2.6.8 build 22125 still shows a hint at
startup that perl 5.36 is too new - but works.
The next build will accept perl 5.36.x and will fix some minor 5.36
warnings.
There is no need to
it all of my BombRE's.
Your suggestion did work:
(?:^|\n)from:\s*_+
However, if you add scoring to it:
(?:^|\n)from:\s*_+=>1.5
ASSP rejects it as invalid Regex.
On 6/9/2022 5:05, Thomas Eckardt wrote:
>>I know regex fairly well
>
> hmm.
>
>
> from\
>I know regex fairly well
hmm.
from\:.*\_
looks very bad - it is read like:
look for
from:
followed by anything any long (or nothing)
followed by
_
in the complete header
keep in mind: all bombRE's are using the /s regex switch (ignoring CR and
LF)
So, if there is an underscore
Hi all,
fixed in assp 2.6.8 *SPAM-Evaporator* build 22125:
- TLSv1.3 connections from assp to a backend-server were running in to a
SMTP-timeout. This was caused by an unhandled second session-ID
transmission in TLSv1.3.
changed:
- 'forceTLSIP' can now be configured for selected sender
Hi all,
fixed in assp 2.6.8 *SPAM-Evaporator* build 22080:
- if 'myGreeting' was configured as multiline greeting, assp has prepended
'220 ' even the first line was starting with '220-'
changed:
The literal 'LASTCOMMAND' will be replaced by the last used SMTP-command
in every SMTP error
Hi all,
fixed in assp 2.6.8 *SPAM-Evaporator* build 22075:
- if a DNS-TXT record contained more than one entry (multi line), only the
first entry was read
some SPF-records were not processed correctly for this reason
this is fixed
changed:
- the GUI dialog "working with IP-addresses"
Yes, only GPB registered assp instances will update plugins and library
files.
Thomas
Von:"Daniel Miller via Assp-test"
An: "ASSP development mailing list"
Kopie: "Daniel Miller"
Datum: 14.03.2022 22:08
Betreff:[Assp-test] Auto plugin update
Is a subscription to the
Looks like your assp.cfg contains an invalid encrypted folder name.
Thomas
Von:"Daniel Miller via Assp-test"
An: "ASSP development mailing list"
Kopie: "Daniel Miller"
Datum: 09.03.2022 03:26
Betreff:[Assp-test] Empty folder created on startup
At some point soon after
switched to perl 5.34.0
Nicely done! How'd you get this done it's released at strawberryperl.com?
On Tue, Mar 8, 2022 at 10:18 AM Thomas Eckardt wrote:
Hi all,
the assp development is switched to perl 5.34.0
strawberry perl 5.34.0 (for win_x64) is available at the sourceforge assp
downlo
Hi all,
the assp development is switched to perl 5.34.0
strawberry perl 5.34.0 (for win_x64) is available at the sourceforge assp
download repository
ASSP V2 multithreading/ASSP V2 module
installation/strawberry-perl-5.34.0.1-64bit-relocateable_4-assp.7z
Thomas
DISCLAIMER:
Hi all,
fixed in assp 2.6.8 *SPAM-Evaporator* build 22063:
added:
- The XOAUTH2 authentication mechanism is implemented (IN and OUT/relay).
A SSL/TLS protected connection is required in every case for XOAUTH2 -
independend from the setting of AUTHrequireTLS.
The help text for
Hi all,
fixed in assp 2.6.8 *SPAM-Evaporator* build 22058:
- because of a MIME decoding BUG, reported mails with very long subjects
were not processed correctly
- if a blocked mail eml-file was moved from the spam folder to the
discarded folder, it was sometimes no longer found by the
Hi all,
fixed in assp 2.6.6 *SPAM-Evaporator* build 22019:
- If the used perl version was compiled without linking to libcypto, the
perl 'crypt' command was without function. This caused the assp internal
encryption engine to fail
and all encrypted configuration values and files were
sourceforge.net. (33)
Does anyone have an idea what the difference between the two queries might
be?
Thanks
Dirk
Von: Thomas Eckardt
Gesendet: Samstag, 1. Januar 2022 08:05
An: ASSP development mailing list
Betreff: Re: [Assp-test] [CANCELLED] Timeout for 3rd DNS?
>(two internet uplinks)
It ma
>(two internet uplinks)
It may be possible that you need to setuo 'dnsLocalIPAddress' on a
multihomed system!
Thomas
Von:"Dirk Kulmsee"
An: "'ASSP development mailing list'"
Datum: 31.12.2021 19:49
Betreff:Re: [Assp-test] [CANCELLED] Timeout for 3rd DNS?
I think I
Hi all,
fixed in assp 2.6.6 *SPAM-Evaporator* build 21351:
- if 'onlyAUTHHeloRe' was used, a logline for a match was written after
each SMTP command - now the match is shown only after the HELO/EHLO
command was used
changed:
- ASSP_AFC.pm version 5.37 is now able to detect template
Everything is OK. onlyAUTHHeloRe is checked as part of the internal
'DisableAUTH' check. This has to be done multiple times, if the
'DisableAUTH'-state was never reached for any reason.
For now, you can skip the logging using 'noLogLineRe'.
I'll see, if I can skip the logging - the check itself
Hi all,
fixed in assp 2.6.6 *SPAM-Evaporator* build 21328:
- If 'AddRWLHeader' was enabled and a RWLCache hit was found, no
RWL-header was added to the mail.
changed:
- text/plain parts of a mail are now also cleanedup from (badly) added
HTML-tags, which improves all text based features,
for the rest of the quiet spam fighters on
this list.
On Sun, Nov 14, 2021 at 5:59 AM Thomas Eckardt wrote:
>How many of the changes in the last 10 or so versions of ASSP have been
from the requests of anyone else on this list?
how many? 1 at 5.11.2021 - weight bug
most - where? ->
Depending on the version you use the download location is different. Links
are provided in GUI-Stats page.
2.6.5 (odd minor number) - public release (SF http download)
2.6.6 (even minor number) - development release (SVN)
Thomas
Von:"Davide Yachaya"
An:
would you have known what I was talking about?
I will now step away from this form as requested for as long as I am able.
I do hope that you are willing to entertain future questions/concerns once
I return, if not for me, then for the rest of the quiet spam fighters on
this list.
On Sun, Nov 14
en if I can be frustrating that I'm ultimately bring
some good to the ASSP world by offering suggestions and asking questions.
On Sat, Nov 13, 2021 at 3:56 AM Thomas Eckardt wrote:
Ken , it would be nice if you consider to signoff this list or at least to
no longer post here.
Thank you.
Thoma
Just checked this again.
worker_1 - AUTH failes and switched on DelayIP for the IP
worker_2 - DelayIP delays the IP
ExtremeIP is checked very much later.
Thomas
Von:"Dirk Kulmsee"
An:
Datum: 12.11.2021 14:47
Betreff:[Assp-test] PenaltyExtreme not used?
Hi all,
I'm
Hi all,
fixed in assp 2.6.6 *SPAM-Evaporator* build 21317:
- If a line in a regular expression file was protected from regex
optimization using the <<<...>>> pagma, a possibly defined weight
(...=>ddd) was ignored and the default penalty points were used.
- If a predefinition of regular
you just
don't think it's necessary? I'm most interested in your opinion on that
before I move forward.
On Fri, Nov 12, 2021 at 1:08 PM Thomas Eckardt wrote:
Nov-12-21 04:00:20 RebuildSpamDB-thread rebuildspamdb-version 8.14 started
in ASSP version 2.6.6(21314)
Nov-12-21 04:00:20 detection of lo
that would let bombs later in the body be detected. I don't know
what the downside to having such a feature would be.
Based on your reaction to my question, I'm obviously missing something
important.
On Thu, Nov 11, 2021 at 1:38 AM Thomas Eckardt wrote:
>Is there logic to having a se
worker_1 is blocked because the AUTH check comes first and AUTH was used
worker_2 is blocked by PenaltyDelay - AUTH was not used
both are blocked before the PenaltyExtreme check is done
Thomas
Von:"Dirk Kulmsee"
An:
Datum: 12.11.2021 14:47
Betreff:[Assp-test]
>Is there logic to having a separate MaxBytes setting like
MaxBytesForBombs that's used only during message delivery? That way, the
entire message can be scanned for bombs, but the rebuild could use a lower
number to better balance the differential between the average sized spam
and average
ll getting the bonus score, but this
will have to do. Thanks.
On Mon, Nov 8, 2021 at 12:01 PM Thomas Eckardt wrote:
I told you to score such domains elsewhere - just do it and the result is
the same like you wanted.
for example:
bombHeaderRe:
\nDKIM-Signature:(?:[ \t]*[^= \;]+=[^= \;
a
scenario in which it's a good idea.
On Fri, Nov 5, 2021 at 10:37 AM Thomas Eckardt wrote:
Another useless post about concepts without reading the manual.
>dkimBonusValancePB
there is already dkimOkValencePB - increase it
and
reduce the score for certain domains by blackList
Another useless post about concepts without reading the manual.
>dkimBonusValancePB
there is already dkimOkValencePB - increase it
and
reduce the score for certain domains by blackListedDomains, SenderBase or
anywhere else - if needed
Thomas
Von:"K Post"
An: "ASSP development
ters ending in space or <
\g{FROMFirstMatch}\@
now look for the second level domain match from the from: line immediately
followed by an @ sign
(?:[a-z\d\-]+\.)+
then hostnames separated by dots, at least 1
[a-z]{2,6}\>?\r?\n)
followed by a 2-6 character tld, an optional > and a \n
>>If "searchstring" is to the right and left of an @ sign, it should
match.
After having some time while driving a car today - my 2 cents for using a
named capture group and backreference ? \k - instead
of numbered (...) \1
(?searchstring)[^@\r\n]{0,64}\@[^@\r\n]{0,64}\k
When ever
:"Thomas Eckardt"
An: "ASSP development mailing list"
Datum: 04.11.2021 09:22
Betreff:Re: [Assp-test] RegEx Backreferences - the basics
to make backreferences working, regex optimization must be switched off
for the complete regex -> tested -> worked
>I'
to make backreferences working, regex optimization must be switched off
for the complete regex -> tested -> worked
>I've seen posts here indicating that backreferencing matches is possible
with an unoptimized expression.
so - the problem is sitting in front of the monitor :):)
Hi all
fixed in assp 2.6.6 *SPAM-Evaporator* build 21306:
- An email, starting with an invalid MIME header, sent to the analyzer -
prevented the analyzer from finding the subject of the mail.
- If the same regular expression was used with different weights, tagged
by different 'NWLI'
you
have the time and energy to review what's going on with the above, maybe
you could also consider fixing (adding?) this functionality?
...as always... Thank you
Ken
On Sun, Oct 31, 2021 at 5:50 AM Thomas Eckardt wrote:
It's always been like this - outlook forwards WRONG. To
It's always been like this - outlook forwards WRONG. To send a mail to an
SMTP-based analysis system (this applies to all, not just ASSP) for
analysis purposes:
- the mail is to be exported (.msg or .eml) and then (possibly zip) sent
to the system
- or to attach the mail to a new mail via drag
ubmitted reclassifications vs ones I've done through the
GUI. Could we have it use the same file extension as we use for the
corpus? (maillogExt)
In the code, in some places X-Assp- headers are referenced, others have
X-ASSP- All of the compares I've seen appear to be case insensitive, b
Hi all,
fixed in assp 2.6.6 *SPAM-Evaporator* build 21302:
- Improved email address detection in the emailinterface list reports
(whitelistadd , whitelistremove, ).
- The change time for include files used in the 'Groups' feature were not
recorded in workers. This caused unexpected
ct-26-21 10:37:33 Worker_6 will sleep now
Oct-26-21 10:37:33 Info: Worker_3 is interrupted to get new connection
Oct-26-21 10:37:33 Connected: session:8FC33A40 104.237.139.48:57300 >
a.b.c.60:25 > a.b.c.35:25
Oct-26-21 10:37:33 Worker_4 wakes up
Oct-26-21 10:37:33 Info: Worker_4 got connectio
>I tried to see where SaveConfig()
SaveConfig() is called in the Main_Thread (Worker_0) every time, anything
in the assp configuration was changed.
And under normal cirumstances, after that, all workers are told to check
there configuration (and reload) in relation to the new one (lists, files,
>without rebuild taking too much of a performance hit?
fastest case: all in the file model
slowest case:
- no file model
- checking whiteRe, whitelist, npRe, DKIMWLAddresses, DKIMNPAddresses,
redRe - for assp/spam
- checking denySMTPConnectionsFromAlways, denySMTPConnectionsFrom,
>During rebuild, ASSP runs rb_whitelisted against each message in the spam
corpus
only for spam (not for corrected spam) AND only if enabled (DoRBWhite ,
DoRBRed) !
Thomas
Von:"K Post"
An: "ASSP development mailing list"
Datum: 24.10.2021 02:40
Betreff:[Assp-test]
(@|.)domain.com
Thomas
Von:"K Post"
An: "ASSP development mailing list"
Datum: 24.10.2021 04:36
Betreff:[Assp-test] Concept question with sample code:
DKIMWLAddresses single line for .domain.com and @domain.com?
(I believe I have this working, see code please)
I
Hi all,
fixed in assp 2.6.6 *SPAM-Evaporator* build 21293:
- if a file for regular expressions contained an incomplete default
definition for the !!!NWLI!!! directive, this directive was not applied to
the regexes in the file
changed:
- some corrections and additions to the main help text
misperception as I do on this. I suggest we add:
Note: Messages flagged as "no processing" will not contribute to the
corpus and will not be scored based on Bayesian/HMM detection. However,
by default, "Penalty Box" / Bomb scroing will still take place. See
!!!NWLI!!! option to
Hi all,
fixed in assp 2.6.6 *SPAM-Evaporator* build 21290:
- build 21287 caused an error 'BerkeleyDB-ERROR: in start
rebuildAddCorrections - syntax error at (eval 679) line 5, near
"$main::$BDBerrLog "'
- fixes a STATS counting mistake since 21280
- if an IP was blocked by an early blocking
P use some magic to trap any BDB error or
warning that may occur?
On Fri, Oct 15, 2021 at 5:35 AM Thomas Eckardt wrote:
>If msvcrt is being used, would 512 open files ever not be enough?
No, not in every case. This depends on the configuration and the workload.
> $winSetMaxIO_DLL and $winS
>(not sure why this line is in the log twice)
because the string was found twice
>msg rejected, even though no processing
I can't find anything in the manual, which states that 'noprocessing'
mails are not processed by the penaltybox
Scores are added by the bomb feature, because assp is
tallations at
https://strawberryperl.com/releases.html compiled with DUSE_PERLIO?I
tried looking it up, but I'm coming up empty
With BDBErrLog set to 0, I assume that any error with BDB files would
still be spit out to the maillog.txt file so we can be alerted that
something's wrong?
On Thu, Oct
1 - 100 of 3742 matches
Mail list logo