This exploration is more about the fact that we are about to change
our servers. I would not entertain a change if it weren't for
that. We are now at a cross-road where we have a choice of upgrading
iMail 7.07 and renewing our maintenance agreement with Declude or
entertaining a different
Does anyone have experience with Surgemail? If so what can you say
about it positive or negative. How do you feel it compares with iMail?
I as because my partner has been pushing me to look at Surgemail
since we are in the midst of a major migration on our mail server (we
will actually have
Can anyone suggest why Blind Carbon Copy (bcc) would stop working on
7.07 iMail with Declude 2.0.6? As far as I know it was working fine
until it ceased yesterday when I sent an email with 87 addresses in
the bcc. I tried again today and see the same result. Looking at
the iMail log I can
Not according to the Declude Junkmail documentation:
This test will catch all mail with To: addresses that contain a
percent sign.
Even if it did apply to the subject, there is no percent sign in the
subject either.
At 03:35 PM 4/1/2006, [EMAIL PROTECTED] wrote:
I could be wrong, but
Interesting.
Buried in among the 87 email addresses was one with a typo that added
an extra @ in a bad place. [EMAIL PROTECTED]@aol.com for example. It was
32nd on the list but apparently this was enough to trip up Declude to
declare EVERY address to be sensed to include a Percent sign.
I am hoping one of you more experienced folks has a clue about this
problem and can give me some advice. I don't even know exactly what
is going on let alone where it is happening.
Both last night and again tonight our iMail simply stopped delivering
mail. It appears the messages come into
] On Behalf Of Orin Wells
Sent: Friday, March 24, 2006 12:36 AM
To: Declude.JunkMail@declude.com
Subject: [Declude.JunkMail] IMail jamming up
I am hoping one of you more experienced folks has a clue about this
problem and can give me some advice. I don't even know exactly what
is going on let alone
incredibly important for a software company to be
completely transparent and extraordinary detailed when it comes to
bugs and fixes.
Matt
Orin Wells wrote:
I am hoping one of you more experienced folks has a clue about this
problem and can give me some advice. I don't even know exactly
what
Stopping the iMail processing seems a bit more of a challenge than I
thought. I stopped all the iMail services, BUT there are 13 SMTP
processes that continue to run and I see stuff going on in the spool
directory. Is there a way to shut this stuff down long enough to
move the Spool directory
I stopped being lazy and had a look at the
manual - GSE files are error messages being returned to the sender.
All that I have looked at so far (there are
hundreds) seem to be for one specific domain on
our server. They all contain information similar
to the following. It is starting to
It appears the cause for my imail jamming problem is a spam source in
Korea starting with the block 51.0.0.0
Until advised otherwise, I don't care if anyone ever receives
messages from this origin so I have set up a blacklist using the following
59.0.0.0/8 Korean spammer
Per the Deculde
shouldn't be sending E-mail to
[EMAIL PROTECTED], and it appears that it was. That suggests that
you are either an open relay, or that you were hacked. I believe
that IMail 7.07 has some unpatched IMAP vulnerabilities that many
were hacked by way of.
Matt
Orin Wells wrote:
It appears the cause
Global.cfg for WHITELIST AUTH. This will
whitelist all authenticated E-mail, which I assume included the first
example that you provided. This also saves processing power since
WHITELIST AUTH disables most tests in JunkMail.
Matt
Orin Wells wrote:
Clearly I am missing something
here. I am still
Can anyone tell me why this is failing the SPAMHEADERS check? I know
the reasons for the REVDNS and the HELOBOGUS but I am unsure about
the SPAMHEADERS. I suspect it may be the placement of the
MESSAGE-ID. Normally this appears near the top of the headers. Here
it appears just above the
that this isn't an issue. You will get a lot
of BADHEADERS, SPAMHEADERS, HELOBOGUS, and CMDSPACE failures on your
own customers unless you have the ability to whitelist them.
Matt
Orin Wells wrote:
Can anyone tell me why this is failing the SPAMHEADERS check? I
know the reasons for the REVDNS
(SMTPD32-7.07) id A9111EEB010C; Thu, 23 Feb 2006 14:37:05
-0800
Reply-To: [EMAIL PROTECTED]
From: Steve Chupik [EMAIL PROTECTED]
To: 'Orin Wells' [EMAIL PROTECTED]
Subject: RE: e-mail
Date: Thu, 23 Feb 2006 14:36:49 -0800
Organization: Consejo Counseling
MIME-Version: 1.0
Content-Type: multipart
At 11:54 AM 12/3/2005, John T \(Lists\)
[EMAIL PROTECTED] wrote:
First, the tests used are determined by $default$.junkmail. The only time
forward.junkmail would be used is if the user was named forward.
That is what had me puzzled too. Why should it work? But I can't
believe I dreamed
We had a blanket of snow here in the Seattle area Thursday night too
- still hanging around. We had almost zero snow last year. All the
ski areas are in operation. Some opened a month ago - the earliest
in decades. Maybe we are going into the next ice age?
At 09:08 AM 12/3/2005, you
At 01:56 PM 12/3/2005, Darin Cox wrote:
If only we had mountains bigger than anthills...
We DO have those in Washington. Earthquakes too. And, oh, there is
Mt. Rainier that everyone keeps saying one day will blow and cover us
all with a nice coat of ash. It seems not a question of if,
OK, is it me or are you guys just unusually quiet today? I am a bit
paranoid after the changes I made yesterday and not seeing any posts
to this list makes me wonder if I have done something to get the
declude.junkmail list messages tossed out on me. I have seen
nothing since my last post
-
From: Orin Wells [EMAIL PROTECTED]
To: Declude.JunkMail@declude.com
Sent: Friday, December 02, 2005 8:59 PM
Subject: RE: [Declude.JunkMail] Paranoia
OK, is it me or are you guys just unusually quiet today? I am a bit
paranoid after the changes I made yesterday and not seeing any posts
.dnswizards.com and also
ns2.dnswizards.com and get hinky results, with ridiculous timeouts. I'd
suggest that if nothing else, you stop using them for your DNS queries!
Andrew 8)
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Orin Wells
Sent: Wednesday
Is there something special that has to be done for a user account
that is using forwarding for Declude to shunt the spam off? I was
looking through the spike in spam I have seen lately where it is
apparently slipping through all the gates and noticed that on account
(probably more) where I
but it won't
give me a response when I try it. Maybe I am doing something
wrong. dnsstuff.com seems to have no problem finding it.
Thanks.
John T
eServices For You
-Original Message-
From: [EMAIL PROTECTED] [mailto:Declude.JunkMail-
[EMAIL PROTECTED] On Behalf Of Orin Wells
64.85.13.6 which
is the primary DNS server. Will this then use the servers in Network
Properties or is it going to expect the local server to be providing
DNS services?
Thanks for the suggestions.
-d
- Original Message - From: Orin Wells [EMAIL PROTECTED]
To: Declude.JunkMail
We have a bit of a puzzler with one our clients in trying to
communicate with another domain. What happens is they get 20
attempts failure to deliver. What is REALLY happening is that the
DNS servers that service our environment do not see the target domain
for some unknown reason and thus
Actually, we have tried both but have not found the culprit(s)
yet. Although my partner believes he saw a spike in traffic coming in as a
Telenet session from an unexpected origin -
rrcs-74-39-200-122.nys.biz.rr.com which on searching with google appears
not too uncommon - that is hacks, spam
We are about to build a new server using Windows 2003. The reason is that
we were apparently attacked through the iMail IMAPI exploit. The last of
whatever got in seems to be running in a very effective stealth mode
because nothing seems to be able to find it and kill it. As a consequence,
At 01:43 PM 9/7/2005, Ncl Admin wrote:
I think that the exploit is in imail 7.07 and not in your server do a
google on
imail 7.07 exploit.
OK, I see it. The question is how do you KILL the stuff that has gotten
into the server? We shut down the IMAP yesterday primarily because we
really
utility, in case you don't know about it, is mailall.exe in your
Imail directory. Docs are at
http://www.ipswitch.com/Support/ICS/guides/IMailServer/8_2/IMailUGHTML/Chapter%2022%20cmd_line8.html
-Dave
- Original Message - From: Orin Wells [EMAIL PROTECTED]
To: Declude.JunkMail
I am having a problem with a client whose email to other members of her
domain is getting trapped by the GeneralFilter (words or phrases we have
added because they seem to mostly appear in spam). In this particular case
the triggering word seems to be P*O*R*N* without the stars.
I suspect
We are directing suspected spam into spam boxes for our clients. Some of
them are too lazy to go look and clean this out.
Does anyone know of or have a utility that will go through at least a
domain, check for specific mailbox names and remove anything older than a
specified date?
:\mailpure.com -d7 -mHold.mbx
Matt
Orin Wells wrote:
We are directing suspected spam into spam boxes for our clients. Some of
them are too lazy to go look and clean this out.
Does anyone know of or have a utility that will go through at least a
domain, check for specific mailbox names
At 12:29 PM 8/31/2005, Dave Beckstrom wrote:
Aren't they authenticating to Imail, and aren't you white listing
authenticated senders?
Wellthat is another issue we are finally being forced to address.
In the first place we are still running iMail 7.07 - we weren't willing to
pay what I
!
We have some servers we have been planning to move in to replace this one. I think I will need to get that project moving at a higher rate.
Andrew 8)
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of Orin Wells
Sent: Sunday, August 21, 2005 9:45 PM
To: [EMAIL PROTECTED
. That might be the point where
you need to have someone at the remote end be your hands and eyes.
Andrew 8)
From:
[EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of Orin Wells
Sent: Sunday, August 21, 2005 11:48 PM
To: Declude.JunkMail@declude.com
Subject: RE: [Declude.JunkMail] OT
, but I can't seem to eradicate it yet. I will keep at
it until I find something that does it.
Andrew 8)
From:
[EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of Orin Wells
Sent: Saturday, August 20, 2005 8:12 PM
To: [EMAIL PROTECTED]
Subject: [Declude.JunkMail] OT - Losing DNS
I am hoping one of you wise folks can give me a clue what to do about a
problem we are experiencing. A couple of days ago I discovered that
our server with iMail and Declude was not delivering email outside the
server. This was revealed by the typical unable to deliver
after 20 tries. When I
Actually I have been lurking mostly for several years. I jump in from time
to time.
Most of the junkmail records are set to either warn or dump the suspected
spam into a spam folder
MAILBOX SPAM
The users have been instructed to visit their spam mail box from time to
time to verify that
At 04:42 PM 8/1/2005, Colbeck, Andrew wrote:
So having said that, a good question is why this particular CBL listing on
your system ended up HOLDing a message!
That is easy. The CBL failure is set to go to the user Spam mailbox. I
just reviewed mine (spam box) and found 251 e-mails there
I received a contact from one of our customers who discovered an e-mail
from within his own domain had been stuck into the spam box. When I
investigated I found out that it had been tagged by the CBL test.
Looking further if found the email address was on three different black
lists. OK, but the
Forgive me if this has been addressed before, but I would like to hear
from Cyan what the policy and procedures are for de-listing a Bonded
Sender when it is apparent they have disseminated spam. If I were running
the show I would not only de-list them immediately, but I would bar the
company
At 06:04 AM 1/12/2004, R. Scott Perry wrote:
The Habeas headers are a legal means of whitelisting E-mail. In this
case, a spam illegally used the Habeas headers -- something that the
people that are behind Habeas have been waiting years for. Now is the
true test of Habeas -- if they go after
Scott,
You know what I would like to see is a means of sending back a message on
confirmed Spam that carries the 550 User Unknown designation and a from
address appearing to be [EMAIL PROTECTED] (whatever it was) to
make it appear believable.
I realize that a goodly number of these would
44 matches
Mail list logo
