er-oriented
business to be barred from the leading consumer ISP. But it's a
*business* problem, and as a technical person, your only
responsibility should be to explain it, not solve it.
--Sandy
Sanford Whiteman, Chief Technologist
Broadleaf S
you scramble. IMO, the only other choice
is to shut down completely. And this is quite a quandary for
PrudentialRand.
--Sandy
Sanford Whiteman, Chief Technologist
Broadleaf Systems, a division of
Cypress Integrated Systems, Inc.
e-mail: [EMAIL
).
--Sandy
--------
Sanford Whiteman, Chief Technologist
Broadleaf Systems, a division of
Cypress Integrated Systems, Inc.
e-mail: [EMAIL PROTECTED]
SpamAssassin plugs into Declude!
http://www.mailmage.com/download/software/freeutils/SPAMC32/Release/
---
[This E-mail was
ns," enable Full Control for the accounts you
want to grant Full Control to. By default on XP, all users are
read-only.
--Sandy
Sanford Whiteman, Chief Technologist
Broadleaf Systems, a division of
Cypress Integrated Systems, Inc.
e-mail: [
e address that ends in a period would probably benefit from
being escaped to confirm intent.
Nonetheless, I wouldn't think that you'd see these two used together
in a substantive amount of legit e-mail. But whether it's worth a
filter is questionable.
--Sandy
----
> The blocklists are great, but at that volume, I can't run Declude on
> the messages without killing the server.
Why would you ever run Declude on messages for unknown users? Even
considering that as an option makes me cringe.
--Sandy
-----
er to real-time than the
more sophisticated anomaly regexes/greps. Then again, by definition,
it is not actually responding to locally observed behavior.
--Sandy
----
Sanford Whiteman, Chief Technologist
Broadleaf Systems, a division of
Cypress Integ
name of the user." :)
--Sandy
--------
Sanford Whiteman, Chief Technologist
Broadleaf Systems, a division of
Cypress Integrated Systems, Inc.
e-mail: [EMAIL PROTECTED]
SpamAssassin plugs into Declude!
http://www.mailmage.com/download/software/freeutils/SPAMC32/Release/
;s interesting.
--Sandy
--------
Sanford Whiteman, Chief Technologist
Broadleaf Systems, a division of
Cypress Integrated Systems, Inc.
e-mail: [EMAIL PROTECTED]
SpamAssassin plugs into Declude!
http://www.mailmage.com/download/software/freeutils/SPAMC32/Releas
our
userbase. Best practices dictate the rejection of users at the
earliest possible point, which means _never_ processing mail for
unknown users (this prescription covers both local catchall 'nobody'
aliases and backup servers).
--Sandy
-------
list for further discussion.
--Sandy
----
Sanford Whiteman, Chief Technologist
Broadleaf Systems, a division of
Cypress Integrated Systems, Inc.
e-mail: [EMAIL PROTECTED]
SpamAssassin plugs into Declude!
http://www.mailmage.com/download/software/freeutils/SPAMC32/Release/
---
[This E-mail was
LDAP routing cannot be used for (and isn't designed for) that purpose.
If you're looking to integrate MS SMTP with your userbase, the best bet is ORF from
Vamsoft, which offers AD-integrated envelope rejection.
--Sandy
--
----
Sanford White
x27;ve had MS SMTP
and IIS working on the same box (and same port) for years now.
--Sandy
--------
Sanford Whiteman, Chief Technologist
Broadleaf Systems, a division of
Cypress Integrated Systems, Inc.
e-mail: [EMAIL PROTECTED]
SpamAssassin plugs into Declude!
h
ot exceed that of indexed LDAP
lookups.
--Sandy
Sanford Whiteman, Chief Technologist
Broadleaf Systems, a division of
Cypress Integrated Systems, Inc.
e-mail: [EMAIL PROTECTED]
SpamAssassin plugs into Declude!
http://www.mailmage.com/download/software
ifically designed
for this type of application.
--Sandy
----
Sanford Whiteman, Chief Technologist
Broadleaf Systems, a division of
Cypress Integrated Systems, Inc.
e-mail: [EMAIL PROTECTED]
SpamAssassin plugs into Declude!
http://www.mailmage.com/download/s
eatures within their own product!
Coexisting with the competition is not a feature.
--Sandy
--------
Sanford Whiteman, Chief Technologist
Broadleaf Systems, a division of
Cypress Integrated Systems, Inc.
e-mail: [EMAIL PROTECTED]
SpamAssassin plugs into Declude!
http://ww
The server is a stand-alone box, and from a security standpoint, I
> believe it is best for it to remain that way.
You can still run AD on a standalone DC, like I mentioned. Restrict
LDAP queries to the MXs, etc.
--Sandy
Sanford Whiteman, Chief Tech
uery
languages like SQL, LDAP, even xBase (and their respective stable back
ends) when dealing with appications which require up to hundreds of
thousands of values to be stored. It's the sort of thing that seems
easy until you watch it grow--and crumble under load.
--Sandy
---
e scale
of tens of thousands of items is just bad programming. Anything but
that. Remember, the mighty ASCII-centric Postfix knows enough to use
indexed data at runtime.
Sanford Whiteman, Chief Technologist
Broadleaf Systems, a division of
Cypress Integrate
nfo into LDAP using CSVDE/LDIFDE. If
you have ODBC tables for each domain, a SQL > CSV > CSVDE flow should
be very straightforward. Haven't done it, though.
--Sandy
----
Sanford Whiteman, Chief Technologist
Broadleaf Systems, a division of
Cypr
ia LDAP is the better
way to go. As a longtime LDAP user, I believe your concerns about the
complexity of having a built-in LDAP service running with the sole
purpose of MX user lookup are unfounded.
--Sandy
Sanford Whiteman, Chief Technologist
Broadlea
n express disregard for it, count out the
most capable programmers.
--Sandy
Sanford Whiteman, Chief Technologist
Broadleaf Systems, a division of
Cypress Integrated Systems, Inc.
e-mail: [EMAIL PROTECTED]
SpamAssassin plugs into Declude!
http://www.mailmage.com/download/soft
l be bothered by the
> demands. There's absolutely no reason why this couldn't be done.
My ultimate point is that _there is no reason for anything to be
written_. If you want 50,000 users and text file input is what you
want, use ORF. Geez, it's 99 bucks. Vamsoft has done a
osts about the "accept
only for these users" option in ORF, which is loaded from a text file?
This has nothing to do with LDAP.
--Sandy
--------
Sanford Whiteman, Chief Technologist
Broadleaf Systems, a division of
Cypress Integrated Systems, Inc.
e-mail: [EMAI
y about processing order. All addresses are in plain-text and
will reload when the ORF service restarts. It's exactly what your spec
suggests.
--Sandy
Sanford Whiteman, Chief Technologist
Broadleaf Systems, a division of
Cypress Integrated Systems, I
Pete,
Everything that Sniffer does is after submission, so it really
wouldn't apply.
--Sandy
Sanford Whiteman, Chief Technologist
Broadleaf Systems, a division of
Cypress Integrated Systems, Inc.
e-mail: [EMAIL PROTECTED]
SpamAssassin plugs
O+E, none of this requires anything crazy
to be done by SortMonster or Declude--except for licensing
clarifications! :)
--Sandy
Sanford Whiteman, Chief Technologist
Broadleaf Systems, a division of
Cypress Integrated Systems, Inc.
e-mail: [EMA
actions applied than ALERT, while legit mail would still
receive the notification and be nullified.
Still, you're opening a can of worms with anything that looks like
malicious bouncing (malicious rejection is much smoother, obviously).
--Sandy
---------
ust me...
--Sandy
--------
Sanford Whiteman, Chief Technologist
Broadleaf Systems, a division of
Cypress Integrated Systems, Inc.
e-mail: [EMAIL PROTECTED]
SpamAssassin plugs into Declude!
http://www.mailmage.com/download/software/freeutils/SPAMC32/Release/
---
[This E-mail was s
> Still running from my end. I turned caching off on my machine.
Still running for me. I am on hold and I'm going to be very, very
blunt.
Kudos to you guys for escalating this off the list.
--Sandy
----
Sanford Whiteman, Chief Technologist
B
be fair, the operations guy is unlikely to have the ability to turn
anyone off, so let's give it a little while for the manager to "get
into the office."
--Sandy
--------
Sanford Whiteman, Chief Technologist
Broadleaf Systems, a division of
Cypress Inte
would with an IMail box making direct connections to remote
servers). The FQDN of the virtual server will be the HELO.
That's a nutshell version.
--Sandy
--------
Sanford Whiteman, Chief Technologist
Broadleaf Systems, a division of
Cypress Integrated Syst
> To replace blackice functions as to load on a server and monitor and
> block what applications sends out on individual ports. I have an
> offending app or task that trying to send out on random ports , I am
> trying to find it and block it
Yep, a HIPS like BlackIce can't be replaced by a se
> We too use Black Ice with great success (except Windows 2003R2 will not
> install and run). The replacement is IMP Proventia and very expensive at
> about $700 per server. We are also looking for a more cost-effective
> replacement.
Blink again -- cost is insanely reasonable.
--Sandy
---
T
> Can you use eEye's Blink on a mail server?
O'course.
--Sandy
----
Sanford Whiteman, Chief Technologist
Broadleaf Systems, a division of
Cypress Integrated Systems, Inc.
e-mail: [EMAIL PROTECTED]
SpamAssassin plugs into Declude!
http://www
ther to get it up.
--Sandy
--------
Sanford Whiteman, Chief Technologist
Broadleaf Systems, a division of
Cypress Integrated Systems, Inc.
e-mail: [EMAIL PROTECTED]
SpamAssassin plugs into Declude!
http://www.imprimia.com/products/software/freeutils/SPAMC32/download/release/
Defuse Dictionary Atta
> I have som SPF issues
What issues?
Did you validate your TXT record at openspf?
--Sandy
----
Sanford Whiteman, Chief Technologist
Broadleaf Systems, a division of
Cypress Integrated Systems, Inc.
e-mail: [EMAIL PROTECTED]
SpamAssassin plugs into Decl
ote tests such as Men and Mice's DIG
online work fine.
--Sandy
----
Sanford Whiteman, Chief Technologist
Broadleaf Systems, a division of
Cypress Integrated Systems, Inc.
e-mail: [EMAIL PROTECTED]
SpamAssassin plugs into Declude!
http://www.imprimia.com/
DNS) for recursive use only, chances are you should be outsourcing
your anti-spam measures as well. From experience, I'm sure Todd has
the skills to support his own DNS, so it seems defeatist to suggest he
do otherwise after this migration period.
--Sandy
---------
ple trying to make use of such a
techies' product as Declude (sorry, it is, I've been using it since
1.x) who can't handle this.
--Sandy
Sanford Whiteman, Chief Technologist
Broadleaf Systems, a division of
Cypress Integrated Systems, Inc.
e-mail: [EMAIL PROTECTED]
SpamAssa
dustry has a
characteristic tic: they will not learn for themselves what should be
their core competencies.
> I will work on getting a few articles together next week. If you
> would like to contribute your extensive knowledge of DNS, shoot me
> an email at [EMAIL PROTECT
else who voiced their agreement. I expect the voices of the
qualified sysadmins here are unified.
--Sandy
----
Sanford Whiteman, Chief Technologist
Broadleaf Systems, a division of
Cypress Integrated Systems, Inc.
e-mail: [EMAIL PROTECTED]
SpamAssassin plug
d. The test "can you
run 'nslookup -q=mx gmail.com 1.2.3.4' is enough to tell people that
the 1.2.3.4 is or isn't valid.
--Sandy
Sanford Whiteman, Chief Technologist
Broadleaf Systems, a division of
Cypress Integrated Systems, Inc.
e-ma
> Thanks for your suggestions!
Um, fix the PTR?
--Sandy
----
Sanford Whiteman, Chief Technologist
Broadleaf Systems, a division of
Cypress Integrated Systems, Inc.
e-mail: [EMAIL PROTECTED]
SpamAssassin plugs into Declude!
http://www.imprimia.com/produ
my thing.
--Sandy
--------
Sanford Whiteman, Chief Technologist
Broadleaf Systems, a division of
Cypress Integrated Systems, Inc.
e-mail: [EMAIL PROTECTED]
SpamAssassin plugs into Declude!
http://www.imprimia.com/products/software/freeutils/SPAMC32/download/release/
Defuse Dictionary Attacks: Tur
S for each domain name?
No, you decide the single most appropriate canonical hostname for the
box and point the IP to that hostname.
--Sandy
--------
Sanford Whiteman, Chief Technologist
Broadleaf Systems, a division of
Cypress Integrated Systems, Inc.
e-
ighted
system. If anybody should be, y'know, malicious out there
--Sandy
--------
Sanford Whiteman, Chief Technologist
Broadleaf Systems, a division of
Cypress Integrated Systems, Inc.
e-mail: sa...@cypressintegrated.com
SpamAssassin plugs into Decl
n they bought and how they use Declude -- that
certainly was not well-presented to the community.
--Sandy
----
Sanford Whiteman, Chief Technologist
Broadleaf Systems, a division of
Cypress Integrated Systems, Inc.
e-mail: sa...@cypressintegrated.c
o
is zone transfers for eligible BLs.
--Sandy
--------
Sanford Whiteman, Chief Technologist
Broadleaf Systems, a division of
Cypress Integrated Systems, Inc.
e-mail: sa...@cypressintegrated.com
SpamAssassin plugs into Declude!
http://www.imprimia.com/products/sof
> Humans notice, because the traffic runs through a perimeter firewall
> that checks port 53 traffic against its Intrusion Protection
> profiles (amongst other things). Lately, during periods of heavy
> activity it's been ramping up the CPU and memory of the perimeter
> firewall. I'v
mmercial use.
> You can remove this notice by purchasing a full licens
Sanford Whiteman, Chief Technologist
Broadleaf Systems, a division of
Cypress Integrated Systems, Inc.
e-mail: sa...@cypressintegrated.com
SpamAssassin plugs into Declude!
http://www
*unsticks Ctrl key*
> How does one go about replicating a zone locally to begin with?
2 ways, depending on the BL. They could let you use standard DNS zone
transfer, or they could make you do an "out-of-band" HTTP/FTP download
of the zone.
--Sandy
---
day are supported, you would be well advised to replicate
this one.
--Sandy
--------
Sanford Whiteman, Chief Technologist
Broadleaf Systems, a division of
Cypress Integrated Systems, Inc.
e-mail: sa...@cypressintegrated.com
SpamAssassin plugs into Declude!
http://www
; NAT recognition feature
-- I have probably saved days upon days of configuration/replication
hell because of that. But you can continue to use Windows DNS and
DNSCMD and be fine for this purpose.
--Sandy
----
Sanford Whiteman, Chief Technologist
Bro
imal URIs like http://1.2.3.4 ? That doesn't make sense.
--Sandy
--------
Sanford Whiteman, Chief Technologist
Broadleaf Systems, a division of
Cypress Integrated Systems, Inc.
e-mail: sa...@cypressintegrated.com
SpamAssassin plugs into Declude!
http://ww
No reason to believe that putting IP addresses in a DNS server would
be substantively faster than an optimized local connection-time IP
database. The local db itself should be cached in memory, and thus
should never be slower when you add in the network overhead of DNS
(even on the sa
AutoWhite doesn't whitelist, it counterweights. Whether you counterweight
enough to be tantamount to whitelisting is up to you and your setup.
You should read the documentation for AW (if it is still available) before
deciding that a base was not covered.
-- Sandy
---
[This E-mail was scanne
> This product is not ready to be on the market and certainly should not be
> something someone pays good money to purchase. It has promise, but its not
> ready yet.
Your complaints have to do principally with SmarterMail -- certainly
when the product was published and supported I don't recal
I'd second the RAM disk recommendation. You don't need to pay for
enterprise-class RAM disk anymore, as the feature is built into Starwind
Software's StarPort iSCSI initiator, which is free. We've used it for 2+ years
now.
-- Sandy
---
This E-mail came from the Declude.JunkMail mailing list.
Gary, I think I might have spaced on a similar question you asked a
while back.
I recommend Starwind Software's RAM disk -- the one that comes with
their iSCSI initiator (you don't actually need any iSCSI SAN in
place). We use it on 2003 + 2008.
-- Sandy
---
This E-mail came from t
> Why not use the HELO or REVDNS? REVDNS is going to be the safest
> because of the difficulty in forging it
Not always... if the domain has a hard-fail SPF record that isn't
*itself* dependent on forgeable records (only uses IPs and forward DNS
entries), then the MAILFROM can't success
> wouldnt the spammer/attacker need to have delegated authority over
> the source ip address space and control of DNS infrastructure to
> forge a PTR record?
Well, either delegated authority *or* a subscriber agreement with the
ISP that allows PTRs to be requested/modified. For example
> Second problem:
> In our new DNS records, I have it set up something like this:
> two MX records:
> bcwebhost.net MX mail.bcwebhost.net
> mail.bcwebhost.net MX mail.bcwebhost.net
> one A record:
> mail.bcwebhost.net A (IP.200)
> Is there any reason I can't have the same name for both an MX and
> I've been going in circles for about a month with Comcast on this
> and they don't recall that they're the ones who told me three years
> ago that they sometimes intercept DNS calls. I was wondering if
> anyone has any ideas or suggestions on how to track down the errant
> DNS calls?
First, what
> Thanks for the info. Is there any problem with using the same host name for
> both MX record and A record?
None at all. It is arguably redundant, as the host name will be tried
in the absence of an A record, but it is best to keep your zones
self-explanatory and not rely on fallback mechanisms.
It's not really a complex setup unless you have (or had) a secondary
that is capable of reloading with bad records. It shouldn't be
possible to have a proper secondary that does this, as it should use
either standard *XFR methods or some proprietary sync mechanism at
startup to get the right record
> So, two questions: first, is there a version of p0f that runs under Windows?
> I found the Unix version and I found a Windows-port version that is not
> compiled (and I haven't used a real compiler in at least ten years).
http://packetstormsecurity.org/files/download/109101/p0f-3.03b-win.zip
>
> The link you provide is what I found before: it's a Windows port but it's
> uncompiled. Lacking a compiler, I was looking for something precompiled.
Ah, didn't notice that -- maybe search for a p0f 2.x binary because
that's the last time I used it. I have a 2.04 binary that I'll send
you off li
Update: NetworkMiner
(http://sourceforge.net/apps/mediawiki/networkminer/index.php?title=NetworkMiner)
uses the p0f OS fingerprint database and should work for you.
-- S.
---
This E-mail came from the Declude.JunkMail mailing list. To
unsubscribe, just send an E-mail to imail...@declude.com, a
mail.bcwebhost.net. 43200 A 173.164.65.200
> mail.bcwebhost.net. 43200 MX 0
> mail.bcwebhost.net.
There is absolutely nothing wrong with this setup and I wish you could
make this Spencer Jones idiot publish this claim in a DNS-centric
p
> To answer Shaun's question, you'll see that we only have ns0 and
> ns2 for xname.org and ns1.xname.org is removed. So it shouldn't be
> a problem.
It isn't close to a problem.
It isn't helping matters to have your ostensible allies misread one
hostname as another!
> Actually, I tried nslookup
> Actually, you did catch something. The section that starts with
> "Authority". In his email he says "Answer ns0.xname.org" which I
> take to mean that he is getting that authorotative response from
> nso0.xname.org and not ns1.xname.org as you assume below.
It means "ns0.xname.org" is part of
> I remember Len Conrad from way back when, and I believe he could
> "hand him his" Where would there be a DNS-centric list or forum where
> Len hangs out?
Maybe the big ISC BIND newsgroup or something? But it doesn't have to
be him, it could be someone on the DNSStuff forums, too.
-- S.
of the Comcast person did not help
matters.
-- S.
Sanford Whiteman, Chief Technologist
Broadleaf Systems, a division of
Cypress Integrated Systems, Inc.
e-mail: sa...@cypressintegrated.com
SpamAssassin plugs into Declude!
http://www.imprimia.com/products/software/freeutils/SPAMC32/download/release/
Ben,
Thanks for running your questions by me. Feel free to forward this
message to your Comcast rep. Even if he is unwilling to help you
further, there is information below that will help him be more
accurate in future cases, since he currently lacks sufficient
understanding of DNS.
Mr. Jones is
> The challenge for me is in not using forwarding. For MS DNS
> servers, forwarding and recursion are tied together; turn off one
> and you lose both.
Incorrect. Turning off recursion turns off forwarders, but not vice
versa.
You can have a perfectly operating recursive MS DNS server that does
> My experience with MS DNS is that forwarders are setup at
> installation because the installer assumes a blank forwarder means
> the DNS server will be unable to lookup addresses.
Well put. That must explain the feeling that forwarders are
recommended -- they've been turned on for so long that
Ben, you'd find Simple DNS Plus an easy cross-grade. We have used it
exclusively for all user-facing DNS for many years. We only use MS DNS
as a stealth primary.
Also, as Andy said, it's hard to believe your authoritiative domains
require more than a few dollars a month worth of DNS hosting -- som
That is/was Day Old Bread's goal.
-- S.
---
This E-mail came from the Declude.JunkMail mailing list. To
unsubscribe, just send an E-mail to imail...@declude.com, and
type "unsubscribe Declude.JunkMail". The archives can be found
at http://www.mail-archive.com.
> So, has no one still heard nothing from Declude? This is my favorite
> anti-spam service and I would hate to lose them.
Well, no apologetic post here == bye-bye to the product, IMO.
What really irks me when this happens (I've had it happen to two beloved
"boutique" apps in the past) is that n
> In some cases, not necessarily this one, SpamReview will use
> mindspring or the reply address where as Declude will say it's from
> a different address.
Sounds like a pretty useless app, if so.
> You see the dilemma, I would go after all of them, something's gota
> eventually byt
> Not exactly, I actually verify each and every site before I consider
> listing them in my kill file or ISP file.
Great--the point is that SpamReview's bugs, if they're grabbing faked
intermediate second-level domains (mindspring.net in your example) and
suggesting that they be killed whe
> Is there a knowledge base entry listing the headers that Imail
> injects?
No.
But these are they, AFAIK:
Received:
Message-Id:
From:
Date:
X-RCPT-TO:
Status:
X-UIDL:
Note that messages must have basic RFC822-style header and body
sections in order for these headers to be in
> Seems Yahoo (at least groups) fails the abuse test when they do have
> an abuse account.
yahoogroups.com should not fail, but yahoo.com proper (pardon the
expression) should fail NOABUSE (they attempt to route people to
[EMAIL PROTECTED], which is all well and good, but non-RFC). If
> That's what I suspected. Has anyone seen HTML Base64 segments that
> *weren't* spam? Are there any email clients that actually put out
> such a thing?
Yes. My research suggests that sites using Outlook in (native)
Corporate Mode and Exchange 5.5 and 2000 are frequent false-positi
> Does anybody see a reason against filtering on these characters in
> the senders email address?
Yes:
a) The '+' sign is in common use by well-behaved list managers, and is
in fact suggested by list exploder RFCs. It is reasonable, in fact
preferable, to expect legitimate bulk mail t
> When iMail recieves mail, it will route into the mailbox BEFORE the
> filters are run.
I see you're on 7.07. I believe this was...well, let's say "altered to
your liking" instead of "fixed"...in 7.1.
-Sandy
---
[This E-mail was scanned for viruses by Declude Virus (http://www.declude.com)]
> Oh great. I don't have a "support" contract and really dont feel
> like shelling out the $$ for 7.1x.
I hear ya.
> Any workaround?
You could write a custom program alias to do the filtering. But this
probably won't be worth the effort for just your mailbox alone.
Note that this isn't a
> I realize that this mailing list is devoted to JunkMail discussions;
> however, I was referred here
...from where?
> Any help or a link to another group that would be able to help me would be
> greatly appreciated.
Try signing up for the IMail Forum at:
http://www.ipswitch.com/support/mai
> How do you setup a domain to spool only then forward to another
> Exchange server?
Search IMail KB for "store and forward."
-Sandy
---
[This E-mail was scanned for viruses by Declude Virus (http://www.declude.com)]
---
This E-mail came from the Declude.JunkMail mailing list. To
unsubscr
> Seems to me that this would add a LOT of false positives, especially
> from larger ISPs where the outgoing relay servers aren't necessarily
> the same as the incoming (the only ones listed in MX records) smtp
> servers.
> Am I all wet on this?
I agree with you completely. In fact, even with t
> I believe this to be the first of many emails trying desperately to
> tweak every last feature of IMail and Declude to get the performance
> that I need. Please let me know anything you might need from me.
Performance Monitor will help you figure out whether only the CPU is
being pegged,
ave their interests piqued.
-Sandy
--------
Sanford Whiteman, Chief Technologist
Broadleaf Systems, a division of
Cypress Integrated Systems, Inc.
e-mail: [EMAIL PROTECTED]
---
[This E-mail was scanned for viruses by Declude Virus
> To clarify a point though: do you implement a BOUNCE to the domain's
> postmaster of the offending server?
We haven't found this useful, since so much spam goes to the "known
good" postmaster@ and abuse@ is not as common as it should be. At any
rate, we don't BOUNCE the messages that ar
> What I am trying to figure out is what holds/creates the string :
> Xade9939bcc9fcf9aee8571e9
In other words, "How do I crack IWEBMSG session security?"
What are you trying to do with this information?
-Sandy
---
[This E-mail was scanned for viruses by Declude Virus (http://www.declude.com
> With all respect if we were trying to hack Imail then why ask such
> question in this user group?
Stranger things have happened. :) I knew that wasn't what you *meant*
in terms of your end results, but in practical terms your proposed
implementation would have required it.
-Sandy
---
[T
Guys,
Nobody uses Finger anymore, right? Well, check this out: with a few
cosmetic tweaks to chgplan.html, pchgplan.html, and dropdown.cgi, you
can give your users a fully IMail-served per-user blacklist, with the
data stored in the unused PLAN.IMA and users none the wiser. Combine
this wit
> So, IPNOTINMX compares the MX IP against the SENDER (workstation)
> IP? Not the SENDING MAIL SERVER'S IP?
It compares to the connecting IP, which in your case was your directly
connected workstation. For remote connections, it would indeed be the
mail server.
-Sandy
---
[This E-mail was sc
> Is there a way to change the location of HOLD messages from the
> default?
You can use an NTFS mount point to put it on another physical
partition, though it's still just one folder.
-Sandy
---
[This E-mail was scanned for viruses by Declude Virus (http://www.declude.com)]
---
T
> Since I have been using the ROUTETO command, can I somehow forward
> the message to the intended recipient...
Yes, The Bat! does this readily.
> ...without the user realizing I monitored it?
Not in a commercial MUA that I'm aware of, since they add headers that
traced the message route.
The
501 - 600 of 671 matches
Mail list logo