lf Of Computer House
SupportSent: Monday, October 16, 2006 8:09 PMTo: Message
Sniffer CommunitySubject: [sniffer] Re: Significant increase in
false positives
Dear Pete,
Sniffer blocked 35,000 messages today, and
roughly 7200 of them were blocked by the 1174356 rule.
Hello Computer,
Monday, October 16, 2006, 11:09:03 PM, you wrote:
Dear Pete,
Sniffer blocked 35,000 messages today, and roughly 7200 of them were blocked by the1174356rule.
Do you think many of these were false positives? Do you know a way of searching through 35,000 Imail messages
Sniffer Community
Sent: Tuesday, October 17, 2006 8:42 AM
Subject: [sniffer] Re: Significant increase in false
positives
Hello Computer,
Monday, October 16, 2006, 11:09:03 PM, you wrote:
Dear Pete,
Sniffer blocked 35,000 messages today, and roughly
On Oct 16, 2006, at 5:17 PM, Darin Cox wrote:
Anyone else seeing a sudden increase in FPs? We normally report a
few each day, but we're seeing a 10x increase in FPs for the past
three days.
What particular group, if any, are you seeing them in? The
experimental-abstract (61) category
Hi Darin;
Not seeing a lot of false pos messages, but there are lots of spam
messages sneaking through our system because declude is not modifying
the header correctly. It is adding a header stub to the bottom of the
message so that users mail client filters which look for the modified
We see this occasionallywith Declude
1.82. What version are you running?
Darin.
- Original Message -
From: Herb Guenther
To: Message Sniffer Community
Sent: Monday, October 16, 2006 5:35 PM
Subject: [sniffer] Re: Significant increase in false
positives
Hi Darin;Not seeing a lot
-
From:
Herb Guenther
To: Message Sniffer Community
Sent: Monday, October 16, 2006 5:35 PM
Subject: [sniffer] Re: Significant increase in false
positives
Hi Darin;
Not seeing a lot of false pos messages, but there are lots of spam
messages sneaking through our system
GuentherSent: Monday, October 16, 2006 4:35 PMTo: Message
Sniffer CommunitySubject: [sniffer] Re: Significant increase in false
positives
Hi Darin;Not seeing a lot of false pos messages, but there
are lots of spam messages sneaking through our system because declude is
not modifying the header correctly
.
-
Original Message -
From:
Herb Guenther
To: Message Sniffer Community
Sent: Monday, October 16, 2006 5:35 PM
Subject: [sniffer] Re: Significant increase in false
positives
Hi Darin;Not seeing a lot of false pos messages, but
there are lots of spam messages
-
From: Robert Grosshandler
To: Message Sniffer Community
Sent: Monday, October 16, 2006 5:57 PM
Subject: [sniffer] Re: Significant increase in false
positives
That's been a problem for a long time, but for us, it still
treats that e-mail as spam, with the appropriate weight. 100% of the time
: [sniffer] Re: Significant increase in false
positives
For us, it doesn't calculate the proper weight when
this happens, and only acts on the weight seen in the topmost headers. One
of these years I'll finally exercise the right to use our 4.x license, I just
don't have time for new problems
, 2006 5:12 PMTo: Message Sniffer
CommunitySubject: [sniffer] Re: Significant increase in false
positives
Ahh... good. The first thing they'll probably
tell you is to update to the latest 4.x version, see if the problem persists,
then re-report it.
Darin.
- Original Message -
From: Herb
06 4:35 PM
To: Message Sniffer Community
Subject: [sniffer] Re: Significant increase in false positives
Hi Darin;
Not seeing a lot of false pos messages, but there are lots of spam
messages sneaking through our system because declude is not modifying
the header correctly. It is adding a h
Hello Darin,
Monday, October 16, 2006, 5:17:26 PM, you wrote:
Anyone else seeing a sudden increase in FPs? We normally report a few each day, but we're seeing a 10x increase in FPs for the past three days.
Not sure if this is it, but there was an image segment rule that went in
Sniffer Community
Sent: Monday, October 16, 2006 8:46 PM
Subject: [sniffer] Re: Significant increase in false
positives
Hello Darin,
Monday, October 16, 2006, 5:17:26 PM, you wrote:
Anyone else seeing a sudden increase in FPs? We
normally report a few each
Pete,
Would you please clarify this a bit. Declude of course doesn't record
the rule in the headers, so this is difficult to figure out. Knowing
the pattern may help identify the problematic messages. Also knowing
the start time and end time of the rule would also help.
I would be nice too
Hello Matt,
Monday, October 16, 2006, 10:03:04 PM, you wrote:
Pete,
Would you please clarify this a bit. Declude of course doesn't record the rule in the headers, so this is difficult to figure out. Knowing the pattern may help identify the problematic messages. Also knowing the start
Message -
From: Matt
To: Message Sniffer Community
Sent: Monday, October 16, 2006 10:03 PM
Subject: [sniffer] Re: Significant increase in false
positives
Pete,Would you please clarify this a bit. Declude
of course doesn't record the rule in the headers, so this is difficult to figure
out
to enable and use the info it would be greatly
appreciated.
Darin.
- Original Message -
From: Pete McNeil
To: Message Sniffer Community
Sent: Monday, October 16, 2006 11:13 PM
Subject: [sniffer] Re: Significant increase in false
positives
Hello Matt,
Monday, October 16, 2006, 10:03:04 PM
There is no doubt that having Declude handle xhdr files would be
optimal. I might add that an option to exclude the header on non-hits
would also be wise. David Barker appears open to some feature requests
of late, and I would think that you could make this happen. Not
everyone has capacity
20 matches
Mail list logo
