that the change is
recognised in the logs. It is.
DONALD BROOKS
T.I. Télécommunications | IT Telecom
-Original Message-
From: Fritz Borgstedt [mailto:f...@iworld.de]
Sent: Friday, April 12, 2013 5:30 PM
To: For Users of ASSP
Subject: Re: [Assp-user] clamav not scanning
For Users of ASSP assp
Apr-15-13 09:39:06 File::Scan::ClamAV module version 1.8 installed and ready;
Apr-15-13 09:39:06 File::Scan::ClamAV modifyClamAV enabled;
DONALD BROOKS
T.I. Télécommunications | IT Telecom
-Original Message-
From: Fritz Borgstedt [mailto:f...@iworld.de]
Sent: Monday, April 15
I replaced assp.pl with my old 1.94 version and it works. Clamd process
is accepting connections and I can see them in the verbose logging of
ClamAV and ASSP.
-Original Message-
From: Fritz Borgstedt [mailto:f...@iworld.de]
Sent: Monday, April 15, 2013 12:36 PM
To: For Users of ASSP
I used to have 1.94. Always worked great.
Windows drive failed. I installed 1.99 during the rebuild. ClamAV fails to
check anything.
I copied 1.94 (file assp.pl only) from a backup. Restart ASSP service, and now
ClamAV works right away with no other intervention.
DONALD BROOKS
T.I
Autoupdated to 1.99(13107) and it works. Thanks.
-Original Message-
From: Fritz Borgstedt [mailto:f...@iworld.de]
Sent: Monday, April 15, 2013 4:14 PM
To: For Users of ASSP
Subject: Re: [Assp-user] clamav not scanning
I tested 1.99(13107), ClamAV is working.
I've just updated to the most recent stable version of ASSP 1.9.9 on an
old Exchange 2003/Server 2003 box.
Running clamav 0.97.6 installed as a service
When ASSP starts, I see clearly that File::Scan::Clamav 1.8 Installed
and Ready
Perl.exe service is running and mail is flowing properly.
Clamd
AcceptAllMail from the exchange server's IP address.
-Original Message-
From: Scheck, Doug [mailto:dsch...@frontrunnernetworks.com]
Sent: May-14-10 11:48 AM
To: assp-user@lists.sourceforge.net
Subject: [Assp-user] Allowing back-end Exchange server to forward
emailthrough ASSP
I have a
I have one domain that is constantly being bombarded by attempts to
harvest/brute force guess valid addresses.
The use of trapaddresses has changed since I last set this up. I had
downloaded a script called invalid2penalty.pl, that used to scan the log
files for invalid addresses, and based on X
Thanks for the suggestion; I was starting to consider a secondary smtp
daemon specifically for outgoing. Things are working nicely now.
Don Brooks
dbro...@fertichem.ca
P
Pensons vert avant d'imprimer ce message!
Please think green before printing this message!
-Original Message-
From:
/2/26 Donald Brooks dbro...@fertichem.ca
relayHost:=208.79.240.5:587
relayPort:=587
allowRelayCon:=127.0.0.1|192.168.0.
Don
-Original Message-
From: Greybear [mailto:smo...@smokey.hu]
Sent: February-26-10 1:53 PM
To: For Users of ASSP
Subject
configuration.
What's RELAYHOST is set to? What's RELAYPORT is set to?
Regards
Greybear
2010/2/24 Donald Brooks dbro...@fertichem.ca
Still no joy.
When I set my exchange connector to my ISP smarthost, mail goes out
fine. When I pass to ASSP, it does not.
And yet
So far as I can tell in a few years of using ASSP, many files that
change will be reloaded. Do you have another option somewhere that is
writing to this file?
Don
-Original Message-
From: bytehd [mailto:byt...@us.net]
Sent: February-24-10 9:05 PM
To: assp-user@lists.sourceforge.net
Hrmm.. perl -v reports perl 5.10
ASSP reports Perl Version: 5.01
Don
-Original Message-
From: Donald Brooks
Sent: February-24-10 9:51 AM
To: 'For Users of ASSP'
Subject: RE: [Assp-user] authentication to smarthost?
Thanks Greybear and Fritz for your input on this.
I tried
2010/2/19 Donald Brooks dbro...@fertichem.ca
I run an exchange server with ASSP, and pump my mail out through my
ISP's mail server configured as a smarthost in ASSP, in order maintain
a
whitelist. Until recently, this has worked very well. Recently
however,
my ISP is being
I run an exchange server with ASSP, and pump my mail out through my
ISP's mail server configured as a smarthost in ASSP, in order maintain a
whitelist. Until recently, this has worked very well. Recently however,
my ISP is being blacklisted due to someone having found an open relay in
their config
First thing would be to check your relaying settings... perhaps that IP
address has somehow made it into your acceptallmail, or your local
domains are not configured properly.
Have a look at the settings in the Validate Sender section as well.
Depending if you use DoNoValidLocalSender, or
This thread was TOTALLY hijacked by Nazeem Hussein.
Aside from outright flaming someone, that's the rudest thing you can do
on a mailing list IMHO.
To answer the original question, there is a reason to upgrade with every
update or release. Whether or not you deem it worth the effort can be
Does anyone mod this list anymore?
The few replies I try to make get rejected, mails to the owner address
go unanswered, and threads are hijacked constantly, making the list
totally useless.
WTF?
Don Brooks
--
Let
What I usually do is select a 3-4 day period; copy the messages to
another folder, then just drag the whole lot of them into outlook
express. OE can directly import .eml files as messages, so you end up
with an easy way to have a look at things. If you do find something
amiss, you can usually use
-Original Message-
From: Mike Rodgers [mailto:mrodg...@unitedwaytriangle.org]
Sent: March-12-09 7:07 PM
To: Donald Brooks
Subject: FW: [Assp-user] redeliver mail in spam folder
Don, this was a great idea; I've been cutting and pasting into a message
and just blaming the spam filter!
But, *please
I'm not aware of any way to do this through ASSP, but when I come across
them, with Exchange I just copy (not move) them into the pickup
folder. (C:\Program Files\Exchsrvr\Mailroot\vsi 1\PickUp)
I copy the message, rather than move them, because I also go into my
sendallspam account and forward
Message-
From: Donald Brooks [mailto:[EMAIL PROTECTED]
Sent: Monday, December 01, 2008 10:16 AM
To: Questions and Answers for users of ASSP Anti-Spam SMTP Proxy
Subject: Re: [Assp-user] Random problem with attachment blocking
I'm glad with all the other discussion my original thread
I'm glad with all the other discussion my original thread was
remembered.
I set attachment logging to verbose on Friday, hoping that I would catch
something over the weekend, but have not seen anything come through yet.
When it does, I'll post an update.
Thanks all.
-Original Message-
This seems to have the old changelog still.
What are the changes from 1.4.3.0x to 1.4.3.1 ?
-Original Message-
From: Fritz Borgstedt [mailto:[EMAIL PROTECTED]
Sent: Monday, December 01, 2008 7:28 AM
To: 'Questions and Answers for users of ASSP Anti-Spam SMTP Proxy'
Subject:
:[EMAIL PROTECTED]
Sent: Monday, December 01, 2008 11:33 AM
To: Questions and Answers for users of ASSP Anti-Spam SMTP Proxy
Subject: Re: [Assp-user] Random problem with attachment blocking
On 01.12.2008 17:15, Donald Brooks wrote:
I set attachment logging to verbose on Friday, hoping that I would
I've blocked a few filetypes in ASSP, specifically wmv because I have a
few users who were being sent ridiculous amounts of them.
I've recently added a second level of attachment filtering and AV to
Exchange, and it has shown me that some of these files are actually
getting through...
The
Incorrect.
I have no IPs or email addresses in the NP lists. The blocked file was
also hit with noprocessing due to NPsize, but still had to pass though
the attachment checking:
Nov-28-08 09:40:17 83217-11520 xxx.xxx.xxx.xxx [EMAIL PROTECTED]
message proxied without antispam-processing -
Sorry, that statement isn't entirely accurate. abuse@ and postmaster@
are in the NP lists. Everything else is empty, and no, these messages
were not sent to either of those addresses.
-Original Message-
From: Donald Brooks [mailto:[EMAIL PROTECTED]
Sent: Friday, November 28, 2008 12:48
Attachment blocking is set to block (not score or monitor)
External, whitelistedlocal and noprocessing are set to level 1, with
the following being blocked in level 1:
exe|scr|pif|vb[es]|js|jse|ws[fh]|sh[sb]|lnk|bat|cmd|com|ht[ab]|wm[av]|mp
[234eg]|wav|avi|asf|flv
Level 2 3 and 4 are
I'm not advocating any one product or another here, and can't really
speak for other mail server products, but when you say
about 80%+ - of storage is from DUPLICATE large attachments.
In Exchange, the message store only contains one copy of an identical
file and that single copy in the emssage
I think I've solved this, I'm wondering if anyone else has had this
problem, or if there are any other implications or solutions.
I had to update/reinstall ClamAV (Win32 on server 2003) and did so using
the step by step here http://www.asspsmtp.org/wiki/ClamAV_0.94_Win32
Things installed
, they only send you spam.
I'm sitting here wondering what the simplest way would be to take my
11000 messages from me asp\spam folder, and retransmitting them all to
these two addresses. XD
Rgrds,
Pere.
-Mensaje original-
De: Donald Brooks [mailto:[EMAIL PROTECTED]
Enviado el: martes, 18 de
I have certain larger spam messages from specific addresses that get
flagged for noprocessing based on size, which are driving me mad.
They come daily from two local used hardware resellers, using one of the
largest ISPs in the area, so I can't simply use denysmtp.
By design, noprocessing
This is based on ASSP Version: 1.3.5
I'm having an issue with users who get a large amount of mp3s and videos
sent to them by email. These filetypes are of course blocked by ASSP,
but from looking at the timestamps in the logs, the message isn't
refused until after the entire attachment has
You don't want an LDAP server, but the perl module that can query LDAP
for valid addresses...
http://search.cpan.org/~gbarr/perl-ldap-0.36/lib/Net/LDAP.pod
Don Brooks
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Alex
Davidson
Sent: Thursday, July
That's exactly what I was looking for. Thanks Fritz.
I went from 1.3.1 to 1.3.8 though. If I roll back to 1.3.5 what do I
lose?
-Don
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Fritz
Borgstedt
Sent: Saturday, February 16, 2008 11:52 AM
To: Questions
Ignore that, I missed a digit when I was looking at version numbers
comparing 1.3.3.8 and 1.3.5
Doh!
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Donald
Brooks
Sent: Sunday, February 17, 2008 11:25 AM
To: Questions and Answers for users of ASSP Anti
Proxy
Subject: Re: [Assp-user] Using large list for Penalty Trap addresses
Donald Brooks wrote:
I have one particular domain on my mail server that gets a LOT of
brute
force address harvesting attmepts. Over time, I noticed that most of
the
usernames are repeated over time, usually withing
I have one particular domain on my mail server that gets a LOT of brute
force address harvesting attmepts. Over time, I noticed that most of the
usernames are repeated over time, usually withing a few days.
I've come up with what I think is a decent defense against it, so I
thought I would share,
The messages are blocked, but I want to block the address harvesting.
On this particular domain, the usernames are [EMAIL PROTECTED], so I
have a pretty good chance that mistyped names will send back a
legitimate user unknown message to the originator, without adding too
high a score to the PB
I just upgraded from 1.3.3.1 to 1.3.3.8, and all of a sudden I'm getting
all my attachments rejected.
From maillog.txt:
Feb-1-08 12:18:19 [Local/White] id-6298c1602 127.0.0.1
[EMAIL PROTECTED] to: [EMAIL PROTECTED] local or whitelisted - bad
attachment(white/local/1): Con
tent-Type:
, 2007 6:48 PM
To: Questions and Answers for users of ASSP Anti-Spam SMTP Proxy
Subject: Re: [Assp-user] More potential PDF headaches
Donald Brooks wrote:
A small clip of a news article I just read on ZDNet:
Less than 24 hours after Adobe shipped a fix for a gaping hole
affecting its
A small clip of a news article I just read on ZDNet:
Less than 24 hours after Adobe shipped a fix for a gaping hole
affecting its Reader and Acrobat software, PDF files rigged with malware
are beginning to land in e-mail spam filters.
Finding the entry will only be good until the next db update, which I
hope you have running automatically.
The Skip ClamAV RegEx* (noscanre) option would be best.
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Doug Lytle
Sent: Friday, October 05, 2007
I've been trying them out, using the quarantine, and watching the alerts
that clamav sends me. Two weeks now I've not gotten any false positives.
_
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Paul
Houlbrooke
Sent: Monday, August 27, 2007
45 matches
Mail list logo
