the subject in order to
highlight that the code is in here:
CODE28607230-BF21-4CDE-A59B-A451CC7C9CA0
My recommendation is to configure both Sniffer (convert your license
with Pete if it was bound to Declude) and ClamAV so that you have virus
protection.
Matt
---
This E-mail came
. The instructions for
doing this are not included here, and I am not an expert in their
integration.
Matt
Abridged directions for a standard install.
1) You need 7zip installed (http://www.7-zip.org/), and to open
files in 7zip, you open the file manager and double click the 7z or ZIP
files.
2
not). Maybe Dave can verify this. I'm willing to share the details of
this once I am more certain that Declude is completely done. This
license will not allow for AVG or Commtouch updates, but it will allow
Declude to operate without validation as far as I know.
Matt
On 4/10/2013 6:16 PM, Pete McNeil
emails not coming from Android botnets
http://www.networkworld.com/news/2012/070512-spammers-have-started-using-android-260693.html?hpg1=bn
Move on, there's nothing to see here
(http://www.youtube.com/watch?v=5NNOrp_83RU).
Matt
On 7/6/2012 1:55 PM, John Dobbin wrote:
After review of my
utilization,
that says you don't have enough disk I/O. Regularly seeing more than
10% for that would indicate an issue that needs attention.
Matt
On 9/26/2011 3:14 PM, Nick Hayer wrote:
I have it on a VM - vmware 4.1 - no issues at all. Why not just PTV
it now - give it more ram
http://danjacoby.de/modules/Search/life.html
---
This E-mail came from the Declude.JunkMail mailing list. To
unsubscribe, just send an E-mail to imail...@declude.com, and
type unsubscribe Declude.JunkMail. The archives can be found
at http://www.mail-archive.com.
Just an FYI, Microsoft generically blocked at least version 5 and 6 of
SmarterMail's webmail. This isn't domain based, but path based. Don't
bother reporting it or trying to fix this yourself as this affects a ton
of people.
Matt
---
[This E-mail was scanned by Declude]
---
This E-mail
of their spam, so there isn't much protection from it otherwise.
Matt
On 7/20/2010 11:42 AM, Dave Beckstrom wrote:
Thanks. David's regex worked well. I'll give the fine tuning a try.
Also, all of this spammer's domains are in DNS servers ns1.domainsite.com -
ns4.domainsite.com.
I
(though it is
obfuscated and therefore not reliable to track):
http://bnqjy.fumblingmetal.info/pfjc/jnmqn/fjr/
http://smhg.thelincolnfield.com/yhdmy/nywcvpchyt/
http://dmyjyo.jollyevent.info/fjrhz/mqstjr/
Matt
On 7/23/2010 3:05 PM, Pete McNeil wrote:
On 7/23/2010 2:29 PM, Matt
source of this spam. Between the two, I believe I am getting
about 15,000 each day.
Matt
On 7/23/2010 8:00 PM, Pete McNeil wrote:
On 7/23/2010 6:37 PM, Matt wrote:
Pete,
Will do. I call this spammer Whitestone,
Much appreciated. I'll take a closer look with the team to see what we
can do
Is the result code really 127.0.0.1? That is totally non-standard. It
should be 127.0.0.2 or higher.
Matt
On 4/30/2010 11:31 AM, Nick Hayer wrote:
you can test the bl directly with nslookup, to see what Declude is
doing turn on debug log level.
**
*MadRiverAccess.com**|**Skywaves.com
to 127.0.0.2, but I'm sure it has something to do with localhost, and
maybe there would be compatibility issues somewhere.
Matt
On 4/30/2010 1:17 PM, Andy Schmidt wrote:
It is -- and I agree with you!
*From:* supp...@declude.com [mailto:supp...@declude.com] *On Behalf Of
*Matt
*Sent:* Friday, April
There aren't that many RFC hawks around here these days :)
Matt
On 4/30/2010 1:48 PM, Pete McNeil wrote:
So it is by convention that the result code would be 127.0.0.2 -- not
a rule.
I have no problem with this... I will make the change... better to do
it now than later.
Odd that nobody
messages with permanent errors with Alligate, but by
greylisting effectively, you can avoid having 95% of your E-mail traffic
hit your second layer of scanning. It also does so selectively so that
your legitimate E-mail will rarely hit it and cause any issues.
Matt
Bonno Bloksma wrote:
Hi
.
Matt
Dave Beckstrom wrote:
I'm seeing a lot of spam with this in the headers:
PowerMTA(TM) v3.0c2
Is powerMTA mainly a spam tool or do legitimate mailers use it too? Just
trying to decide if I can add some weight if that header exists.
Also of late I'm seeing a lot of spam containing ssl
braketed IP
value. If you can't find a bracketed IP value, you should take the last
IP shown (which won't be perfect, but this would not be RFC compliant
anyway).
I would guess that this would take a programmer maybe an hour to code up
and test.
Matt
Andy Schmidt wrote:
Hi Dave, just
headers are rare
where the IP is neither bracketed or enclosed at the boundary with
parenthesis, but it does happen.
Matt
Andy Schmidt wrote:
Hi Matt,
Sorry -- but some of these are actually headers inserted by my OWN
server. So they are NOT forged.
Most of them are spam, but some
Dave,
That's not an RFC violation, it's a problem with the code used to
extract the IP from the Received headers.
Matt
David Barker wrote:
Here is a message going through a Postini server.
---EXAMPLE
1
the
obfuscation techniques themselves than to attempt to go after the actual
text.
Matt
Todd Richards wrote:
Hi Everyone -
I'm seeing this come through a lot - CH!l.D P.ORN and P!rate S0ftware. So
far, the spam filters are catching it ok based on all of the other filters
there. However
#2 was certainly the scenario.
So what's the deal. Was or is Scott being bullied out of both of his
businesses? Didn't Scott maintain an equity stake in both companies?
That write up on the case just sounds like thievery.
Matt
Andy Schmidt wrote:
Well, Darin -- it may be relevant
of the badly formated E-mail dies
there. That certainly adds to the stability of Declude and also the
mail server in some cases. Anything that looks at E-mail must have the
ability to survive something unexpected.
Matt
Mark Strother wrote:
For the past few hours we've had a real problem
be able to fix everything up.
Matt
Uwe Degenhardt wrote:
Hello list,
I can't deinstall Declude 3.1.0
on a Win2003 Server engine.
(although deinstalled, it is still resappearing
after the 4.4.0 install).
Also the installation of Declude 4.4.0
doesn't run into the right directory.
(instead of d
of
back in the mail server's main directory. This would also cause
failures to start as things weren't mapped correctly in the registry. I
would always have to move the files around and edit the registry to get
them to work. I thought you were aware of these issues.
Matt
David Barker wrote
to not just their
accuracy, but also how it mixes with other tests that you use.
Matt
David Dodell wrote:
Is SORBS not a trusted spam database anymore ... multiple stories
being sent to me that they are not legitimate.
ie
http://www.iadl.org/sorbs/sorbs-story.html
http://www.natesimpson.com
to Alligate in
order to avoid issues when resources are that sparse.
Matt
Scott Fosseen wrote:
I believe I have seen some replies to this already, but I though I would put
this out again. I am hosting about 30 domains worth of email and filtering
for an additional 10 domains. My current
to work perfectly, but setting session
variables on the form page doesn't do a damn thing.
Matt
Darin Cox wrote:
Since forms all use different emailers, and the form content is
different as well, your only hope is content filtering based on what
the spammer submitted... like SURBL filtering
to implement. It takes 5 to 10
minutes to fix a form and you don't hinder your visitors with CAPTCHAs.
It's not like there isn't code being used by spammers elsewhere that
read CAPTCHA's anyway, though I suspect that the current form spammers
are not doing that right now.
Matt
Darin Cox wrote
are a burden for legitimate users, and their
utility will likely disappear in time, whereas these other methods are
neither a burden, nor are they likely to cease being effective.
That's my take on it.
Matt
Darin Cox wrote:
Hmmm... good idea. Though the testing/form filler tools I've seen
aren't
This is without a doubt a very important thing to check out. It stung
our system, and I'm sure there are others around here that have yet to
check theirs for any ORDB tests. The hits for all IP's began yesterday
morning for us.
Thanks,
Matt
Michael Hardrick wrote:
Everyone here
Increase from a lot of FP's to exactly how many more?
:)
Matt
David Barker wrote:
Any increase on False Positives with SORBS being experienced ?
David Barker
VP Operations Declude
Your Email security is our business
978.499.2933 x 7007 office
978.988.1311 fax
[EMAIL PROTECTED
are paying more and more. My
upgrade this year will cost nearly as much as my full version did
before. Those are sharp increases in price, and need I not remind
everyone what happened to Ipswitch's business when they pulled this stunt?
Matt
Todd Richards wrote:
Matt --
I'm
waiting for the release just to guarantee
that they weren't stuck on an unsupported version of the product.
That's hugely boneheaded of them. So it would be close to a wash in
revenue to do something as typical and expected as to have a software
subscription for a standard market rate.
Matt
that it is going to be the Yahoo! Mail Unblock Request
Form. This is the same form that I filled out previously for a client.
Matt
Robert Grosshandler wrote:
http://help.yahoo.com/l/us/yahoo/mail/postmaster/
Third bullet down.
-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL
, and it is also good to
use a different domain for bulk mailing. I'm not saying that is the
case here, but bulk mailing can trip Yahoo.
In the mean time, you might want to see if you can just switch your IP
address to see if that will work.
Matt
Dave Beckstrom wrote:
Hi All,
Has anyone figured out
of an infected
desktop that was NAT'ed to be sent from the same IP as their mail server.
Matt
Dave Beckstrom wrote:
Hi All,
Has anyone figured out how to stop Yahoo from blocking email? They've
blocked all email from our servers for about 3 weeks. I've submitted their
forms but it hasn't
. Yahoo won't whitelist you if you are using them.
Matt
Robert Grosshandler wrote:
More. Yahoo has whitelisting, and really cares about reverse DNS pointers
and Domain Keys. You might want to resubmit, they were fast for us way back
when.
Rob
-Original Message-
From: [EMAIL
There are 1,300,925,111,156,286,160,896 ways to spell Viagra (see the
update at the bottom).
http://cockeyed.com/lessons/viagra/viagra.html
Going after the word is not the way to target the spam.
Matt
Chuck Schick wrote:
Here is the From line.
From: viagra [EMAIL PROTECTED]
The X
seem to get kicked back when someone that is not a member tries to post,
or possibly tries to forge as the list owner.
Matt
Rick Klinge wrote:
Will you morons please remove me from your spam list?
*From:* [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]
*Sent:* Monday, February 04, 2008 10
In relation to spam or in relation to security?
My answers would be Alligate (on a separate server) and a firewall,
respectively.
Matt
Howard Smith (N.O.R.A.D.) wrote:
ISS no longer supports blackice and it is no longer in production , what
are users replacing it with ?
Howard Smith
allow in what is necessary.
Matt
Howard Smith (N.O.R.A.D.) wrote:
To replace blackice functions as to load on a server and monitor and block
what applications sends out on individual ports . I have an offending app or
task that trying to send out on random ports , I am trying to find it and
block
are
stopped by a properly configured Alligate pre-scanning gateway, and
virtually all of the automatically-spreading viruses too.
Matt
Colbeck, Andrew wrote:
Hello, Serge.
I'm happy to chime in here, but let me start off with saying that you
will get divergent opinions here, and that nobody
people would then have the tools
to cause themselves trouble.
Matt
Craig Edmonds wrote:
Thanks Andrew, you are a star!
Great advice and much appreciated.
Kindest Regards
Craig Edmonds
123 Marbella Internet
W: www.123marbella.com http://www.123marbella.com
E : [EMAIL PROTECTED] mailto:[EMAIL
it must like the way that things appear in my registry.
Matt
Scott Fisher wrote:
I've change the IP number of my server and I've noticed this oddity.
Email's that score between 100 and 199, I send a copy to a spam
mailbox to scan:
WEIGHT100COPY COPYTO [EMAIL PROTECTED] mailto:[EMAIL
You seem to have failed to ask the actual question here.
If you create the domain locally, you must create all records on the
public domain for full DNS functionality to be maintained. Just
creating one record will result in lookup failures for all other records
on that domain.
Matt
like there are many avenues for you to explore.
Matt
Robert Grosshandler wrote:
Gents and the occasional lady:
You all are the smartest network folks I interact with. If you'd be so kind
as to give me your opinion / suggestions on the following, I'd be forever
grateful.
We're trying
Forgot to add the most important part regarding Simple DNS. They have
an add-on monitoring piece that will switch DNS records automatically,
and this can be used to automatically switch over to the backup.
Matt
Matt wrote:
Rob,
As far as DNS goes, the best way to do this is to use
Check that you don't have PREWHITELIST ON turned on, or rather set it to
OFF. This will cause other tests to run whereas with it on, it will
stop processing on many of the Global.cfg triggers for whitelisting.
If that doesn't work, then it is by design.
Matt
David Barker wrote:
Adolfo
sample shows that you were properly resolving
the recipient's MX records, and at least in my test from a second ago,
their primary MX server is answering just fine.
Matt
Kevin Rogers wrote:
OK - I turned that off and restarted the SMTP and QManager services.
I then tried to send an email
Darrell,
The Web server at fluidhosting.com that dlanalyzer.com is hosted on is
listed in CBL currently and has been before.
http://cbl.abuseat.org/lookup.cgi?ip=204.14.91.21
Matt
Darrell ([EMAIL PROTECTED]) wrote:
You will need to contact Declude at this point. There is nothing we
. The
following chart shows the effect on an 8 core server:
Matt
Darin Cox wrote:
We've saw about a 15% increase a few days ago, and it has stayed there.
Bandwidth increase was significantly more than that, though. Took our
primary mail server from 20-40% cpu to 50-80%. We just upgraded
John,
It's just another one of the viruses from the Storm botnet. Same guys
as the ones sending fake greeting card viruses and PDF stock spam among
other things.
Matt
John T (lists) wrote:
I am not sure what is the purpose yet, but I am catching a lot of
emails this morning
I believe that AFRINIC is a newer RR, an off-shoot of RIPE. Maybe the
original data format that Declude uses didn't expect this, or maybe they
are applying *F simply for anything from AFRINIC.
Matt
Gary Steiner wrote:
According to the whois at www.arin.net, 41.0.0.0/8 belings to AFRINIC
Scott,
The following should do the same. Note that I do not know if Declude
requires the whole match to be placed in parenthesis.
2[0Oo]6[\s\r\n\-\.]*888[\s\r\n\-\.]*2[0Oo]83
Matt
Scott Fisher wrote:
I'm looking to replace these lines with a pcre but it doesn't seem to
be working
leaving a huge gaping hole that even standard E-mail clients will
produce source that would be missed. If you are going after E-mail
format and not the content, then what you have is perfect.
Matt
David Barker wrote:
This would match on all you have provided, the . meaning any character
this, but the code is in fact fairly simple
and it should work.
Matt
Darin Cox wrote:
So far all that I've seen have a blank body with the pdf attachment.
Anyone have any ideas as to how to test for a blank body, or one with
only whitespace characters? The new PCRE function can do
.x.
Matt
Andy Schmidt wrote:
Thanks Dave.
So:
a) Does the scenario that I described (which was not specific to
IMAIL or Declude but also effected other TCP/IP applications on that
machine) still fit the bill?
b) What if I were to turn on WinSockCleanUp just to be safe
that this was
likely the reason for your issue is testament to the fact that it
affects a lot of people that use this functionality.
Matt
Imail Admin wrote:
Hi All,
Last week I was struggling with this mysterious accidental
whitelisting. Emails addressed to me were whitelisted, even though I
everything in the user's directory except for the MBX files and
possibly IMA files. The summaries are kept in a different format in 2006.
Matt
Imail Admin wrote:
Hi Matt,
I understood the discussion about AUTOWHITELIST ON and the web address
book issue. Where I got caught
Look at the headers, this isn't Declude's issue. The message is somehow
looping through Pete's account and back to the list. It's the AppRiver
servers that are having issues.
Matt
John T (lists) wrote:
OK, would some one at Declude give a good swift kick to your list server?
John T
yesterday morning, and then 4.4.2b when you
found the issue with the DLL omission. Then in a few more days when you
are confident that things are stable, release 4.4.0.
Matt
David Barker wrote:
- Pulled out the bad package
Did this.
- Rolled a new package (with an incremented version
this as a feature.
Matt
---
This E-mail came from the Declude.JunkMail mailing list. To
unsubscribe, just send an E-mail to [EMAIL PROTECTED], and
type unsubscribe Declude.JunkMail. The archives can be found
at http://www.mail-archive.com.
are more interested in owning boxes
rather than wreaking widespread havoc with worms these days though.
Matt
Sanford Whiteman wrote:
It is also odd and possibly grossly incompetent of Microsoft to
choose to use ports 1024+ for such purposes, but I'm thinking that
they have some weakly
with that one...note that it hit one month after the advisory and
that one was using ports 1024, though fixed ports that are easier to
target if open:
http://isc.sans.org/diary.html?date=2003-08-11
Matt
Colbeck, Andrew wrote:
The Administrators who should be applying the workaround are precisely
It can be unsafe to mix, plus IMail's default spam blocking won't do
anything for you that Declude can't if tuned properly.
Matt
Chuck Schick wrote:
We are running IMAIL 8.22 and I am looking at the Anti-spam features. We
are also running declude. Which Anti-spam features do people find
. Watson errors and
other things that could be indications of errors. Also check your Event
Viewer for odd errors that didn't exist before.
Matt
Mike Hardrick wrote:
I've not added any filters and the message count is within the mean average.
Here's a pic from the cpu usage.
http
will however see a 50% or
larger reduction in volume going to IMail/Declude as a result of just
selective greylisting (which approximates the effect on legitimate
addresses).
Matt
Chuck Schick wrote:
Anyone using a spam gateway (Like IMGATE) or proxy (like ASSP) in front of
declude.
I am
breaks,
replacing them with spaces for the purpose of filtering with regex.
Maybe it is time to create another variable for body content that is
more regex friendly? That should be easy enough to do.
Matt
David Barker wrote:
We can certainly look at doing something like that, currently I
to
obfuscate with base64 encoding these days, so even without supporting
encoded text or HTML would still be of benefit. It certainly could be
done to support them though with a little extra work to look at the MIME
types.
Matt
John T (lists) wrote:
This was an old, old feature request/bug fix from
Just a little warning about DEP. I found someone's server was having
Declude caught with DEP. I recommend that DEP either be turned off or
limited to just Windows services.
Matt
Luis Alberto Arango E. wrote:
Now with version 4.13.30 everything is working fine..
I don't know why version
is fixed to a value like 5 minutes. It was fixed to an
hour or more before that point.
It sounds more like something else is going on like DEP interfering or
some other issue.
Matt
---
This E-mail came from the Declude.JunkMail mailing list. To
unsubscribe, just send an E-mail to [EMAIL
that you want to package up in a CMD file and run under
Task Scheduler once every 30 minutes (customize for your paths):
MOVE /Y F:\proc\review\*.* F:\proc
Matt
Colbeck, Andrew wrote:
In my declude.cfg I have set the:
AUTOREVIEW OFF
which is the default for this directive. I've seen
for this type of volume, use something like
Alligate or IMgate. You can run these stand-alone on a much less
capable box and handle many more connections.
Matt
Chris Patterson wrote:
This really is a front end gateway to a front end also running
declude. Even thought the thread count sounds
and are uncovering such things (people contributing to iDefense in this
case). The attack vector appears quite minimal as the notes indicate
that you have to browse to a site with the exploit from the server that
has IMail installed on it.
Matt
John T (lists) wrote:
Interesting. I guess those were
.
Sorry for the grim outlook, but it is all good advice.
Matt
Howard Smith (N.O.R.A.D.) wrote:
The file
location is C:\WINNT\system32\ssm.exe
118kb date 02/05/7 2:45
Howard Smith
N.O.R.A.D.
Inc.
P.O. Box
680116
Miami, Florida 33168
Karl,
It would be wise to fix your name servers in any event.
Regarding spam reductions, we protect a fair number of domains, and
nothing notable has happened. Things can vary widely on servers with
only a few domains though.
Matt
IS - Systems Eng. (Karl Drugge) wrote:
Haven't used
with Declude and IMail 8.22, though I am
also behind Alligate which keeps a lot of the trash out that can cause
exceptions in things like Declude or Queue Manager.
Matt
Bill Green dfn Systems wrote:
Well now that we have moved from IMail 8.15 to 8.22, we are now
experiencing the problem where
with the Received lines intact.
Good luck,
Matt
Sharyn Schmidt wrote:
I'm having a REALLY WEIRD email problem, makes me feel like I'm in the
twilight zone...
One of my users reported that she did not receive an email from
[EMAIL PROTECTED] until TODAY, but the email was sent on
Tuesday, 1/23, at 10
The headers show conclusively that your server didn't receive this
message until almost two days after it was sent. It was stuck on the
sender's own server and not yours.
Matt
Sharyn Schmidt wrote:
Regarding your issue, it would be best to share the headers from the
E-mail
and
recipient.eml bounces entirely even if they take care to try to keep up
with forging virus names. When over 99% of it is forging, it makes no
sense to be bouncing any of it when it is detected as a virus.
Matt
Don Schreiner wrote:
I am looking for the best approach to stop notifications to both
ask them for a trial license and read their manual pages. It's not that
expensive either.
Matt
Michael Cummins wrote:
I can strongly consider Alligate in front of Declude.
So let's say I build a dedicated Alligate box to live in front of my two
Declude enabled servers. How much
In the IMAP service, turn off force subscribe and it should be fine.
Matt
Chris Anton wrote:
Hi all. Glad that Ipswitch has the day off... too bad I don't. We
upgraded to 2006.1 from 8.22 this weekend. I am now getting a problem
with sub mail boxes in web mail... they don't show new
You can do this with two filters, but not one. In the first filter you
would have the following:
SKIPIFWEIGHT 10
REMOTEIP 0 CONTAINS .
In the second filter you would add at the top:
TESTSFAILED END CONTAINS NAME-OF-THE-FIRST-FILTER
Matt
Don Brown wrote:
Can anyone tell me
Karl,
We were specifically talking about SOX (Sarbanes-Oxley) compliance,
which have no legal applicability to your own needs. Your needs are
governed by Florida's Government-in-the-Sunshine laws which allow for
public inspection of most records.
Matt
IS - Systems Eng. (Karl Drugge
to become part of the problem.
Matt
IS - Systems Eng. (Karl Drugge) wrote:
True, I'm covered by different laws..
But in regards to keeping 'legal', in all senses of the word, especially
when you are discussing 'home grown' versus 'off the shelf' solutions,
it would be best to consult lega
with some
degree of risk-aversion as well.
Matt
IS - Systems Eng. (Karl Drugge) wrote:
Gotta love that picture Keeping it for my personal laptop back ground.
I'll agree with you 99%.. I hate lawyers with a passion, and excepting
the miniature French poodle and HR personnel
can be fully compliant by
merely archiving all incoming, outgoing and internal E-mail into capture
accounts, and archiving those capture accounts in a way that they can
reasonably pull any data required of them as a result of an official action.
Matt
Sanford Whiteman wrote:
Unlike... um
), it would be absurd to keep copies of junk postal mail
along with legitimate business communications. Unsolicited bulk
commercial E-mail, viruses and scams that never reach an end-user are
surely not the equivalent of an business communication under any regulation.
Matt
Sharyn Schmidt
. The old CODE's that were in the
JunkMail.cfg and Virus.cfg are no longer used and are not compatible
with the new code, though it will run with a time bomb if you don't have
the correct code in the correct place.
Matt
Chris Anton wrote:
Hi... Checked the archives, but didn't find anything
.
Matt
Sanford Whiteman wrote:
... and it should be acceptable to the feds.
Which feds?
The regulatory agencies I know would scoff at such a solution. But the
OP didn't mention this being done for external regulatory reasons,
anyway.
--Sandy
you to better explain it.
Printing off a stack of hundreds of junk messages and showing him that
the legitimate ones are less than 10% of that stack might be rather
compelling.
Matt
Sharyn Schmidt wrote:
shrug
IF it is a mistake, then my boss is the one that is making it
I just do
situations with multi-national
companies where it is pretty much impossible to be in compliance with
every regulation that applies to them. For instance, some countries
require removing certain records for privacy, while others require
retaining all such records for oversight and legal reasons.
Matt
Nice point about the activation issue.
Matt
Gary Steiner wrote:
For those SmarterMail owners who may have noticed that SmarterTools has been
offline for over 24 hours, you can read about it here:
http://www.crystaltech.com/forum/topic.asp?TOPIC_ID=16305
Gary
---
This E-mail came
NICKGOBACKTOSLEEPON
:)
Nick Hayer wrote:
Any other undocumented's that you can share? :)
-Nick
David Barker wrote:
Just an FYI you may find it useful, in the global.cfg:
BLKLSTON
Writes a text file to the \spool\blklst.txt containing the IP and
weight of
emails eg.
in order for the weight
skipping mechanism to operate. Other external apps have no weight
skipping built into them and this would add the much needed
functionality to save resources.
Matt
Scott Fisher wrote:
I've been mulling this one over as I watch my spam filtering CPU time
slowly
Sharyn,
You should specify what version of Declude you are asking about. FYI,
IMail 8.2+ requires Declude 3+. Some claim that older versions of
Declude will work, however there are also widely reported problems with
IMail 8.2+ and it is no doubt safest to run Declude 3+.
Matt
Sharyn
, or a real E-mail service that has Advance Fee Fraud users (Hotmail
for instance), or service providers that are forwarding E-mail, or
possibly forwarding phishing on behalf of hacked servers in their network.
Matt
Andy Schmidt wrote:
Is it me - or should MXRate-Allow be treated as a spam
in blogs, guestbooks and message boards with the goal of
improving search ranking of the sites listed.
Matt
Andy Schmidt wrote:
Hi Matt:
What is a static spammer?
I've looked into a few in the past week and they all were obviously
were marketing mail companies (such as in this case
.
A STOP function would not be a bad idea, and to create ABORT in the
place of END (same thing, different name), and depricating END as Andrew
suggested in 2004 would make sense as far as confusion goes and also to
add extra functionality, but that is in fact a feature request.
Matt
Andy Schmidt
CONTAINS SNIFFER-IP
In your Global.cfg, you would only need to make sure that ADD-WEIGHT
appear before EXTRA-WEIGHT.
Matt
Andy Schmidt wrote:
I'm familiar with MAXWEIGHT and I'm using it.
It doesn't address this particular application.
Best Regards
*/Andy Schmidt/*/
/
Phone: +1 201
hops the same as the last hop.
Why don't you just whitelist this customer by setting up a blank
per-domain config for them? If they want Postini, why not let them have it?
Matt
Bill Green dfn Systems wrote:
I have a customer whose email domain we are hosting who recently began
using
1 - 100 of 1396 matches
Mail list logo