All that said, I can't see why you'd want to do anything else with
DCC.
The FP rate on DCC, even with the defaults of |99 for fuzz counts,
is significant. In the SA 3.1.0 set3 mass-checks, DCC_CHECK had a S/O
of| 0.979, meaning that 2.1% of email matched by it was nonspam.
So more detail
Nevermind, I found the entry:
use_dcc { 0 | 1 } (default: 1)
Whether to use DCC, if it is available.
dcc_timeout n (default: 10)
How many seconds you wait for dcc to complete before you go on
without the results.
dcc_body_max NUMBER
dcc_fuz1_max NUMBER
dcc_fuz2_max NUMBER
DCC (Distributed
I'm building a list of IP ranges (currently CIDRs) and want to use
them to:
1) Tag/block messages that arrive (directly and indirectly) from IPs
in these ranges
2) Tag/block messages with URIs that point to IPs in these ranges
What is the best way to define specific/fixed IP ranges for
Matt Kettler [EMAIL PROTECTED] writes:
All that said, I can't see why you'd want to do anything else with DCC.
The FP rate on DCC, even with the defaults of |99 for fuzz counts,
is significant. In the SA 3.1.0 set3 mass-checks, DCC_CHECK had a S/O
of| 0.979, meaning that 2.1% of email
On Mon, May 01, 2006 at 08:55:17AM +0100, Graham Murray wrote:
Dallas L. Engelken [EMAIL PROTECTED] writes:
skip SA on newsgroup mail (or whitelist_from_rcvd)... if the reason for
running newsgroup mail through SA is because your newsgroups get
spammed, then you have a bigger problem to
Dan wrote:
I'm building a list of IP ranges (currently CIDRs) and want to use
them to:
1) Tag/block messages that arrive (directly and indirectly) from IPs
in these ranges
2) Tag/block messages with URIs that point to IPs in these ranges
What is the best way to define specific/fixed IP
If I have created a new script that can be used with
SpamAssassin (not a plugin), and would like to submit it for public use, where
would I do that?
Thanks,
Drew Burchett
United Systems Software
http://www.united-systems.com
Phone: (270)527-3293
Fax: (270)527-3132
--
Graham Murray wrote:
Matt Kettler [EMAIL PROTECTED] writes:
All that said, I can't see why you'd want to do anything else with DCC.
The FP rate on DCC, even with the defaults of |99 for fuzz counts,
is significant. In the SA 3.1.0 set3 mass-checks, DCC_CHECK had a S/O
of| 0.979,
(not a
plugin), and would like to submit it for public use, where would I do that?
Thanks,
Drew Burchett
United Systems Software
http://www.united-systems.com
Phone: (270)527-3293
Fax: (270)527-3132
__ NOD32 1.1515 (20060501) Information __
This message
On Saturday, April 29, 2006 8:28 PM +0900 MATSUDA Yoh-ichi [EMAIL PROTECTED]
wrote:
BTW, I have more rules for catching various types of spams.
Which is better for posting new rules?
(1) first, posting new rules to this users ML, next, posting to Bugzilla
(2) directly posting new rules to
Matt Kettler wrote:
It is perfectly reasonable to assume that most of the mail matching
BAYES_99 also matches a large number of the stock spam rules that SA
comes with. These highly-obvious mails are the model after which
most SA rules are made in the first place. Thus, these mails need
jdow wrote:
From: Bart Schaefer [EMAIL PROTECTED]
On 4/29/06, Matt Kettler [EMAIL PROTECTED] wrote:
In SA 3.1.0 they did force-fix the scores of the bayes rules,
particularly the high-end. The perceptron assigned BAYES_99 a
score of 1.89 in the 3.1.0 mass-check run. The devs jacked
On Saturday April 29 2006 12:44 am, Richard Ozer wrote:
I've purchased HUNDREDS of fake degrees and I feel much smarter because of
it!
Serious answer many spammers are probably paid per email. Others
figure that more retries to a given address will result in a higher
likelihood of the
Bowie Bailey wrote:
Matt Kettler wrote:
It is perfectly reasonable to assume that most of the mail matching
BAYES_99 also matches a large number of the stock spam rules that SA
comes with. These highly-obvious mails are the model after which
most SA rules are made in the first place. Thus,
I'm trying to write or find a script that will
extract attachments from an email message and write them to a directory, where I
could run sa-learn on them. Right now, mail comes in
through exim and our users get their mail via pop3. I have got
them all forwarding the spam they get to a spam
Matt Kettler wrote:
Bowie Bailey wrote:
The Bayes rules are not individual unrelated rules. Bayes is a
series of rules indicating a range of probability that a message is
spam or ham. You can argue over the exact scoring, but I can't see
any reason to score BAYES_99 lower than
Jeff Portwine wrote:
I'm trying to write or find a script that will extract attachments from
an email message and write them to a directory, where I could run
sa-learn on them. Right now, mail comes in through exim and our
users get their mail via pop3.I have got them all forwarding
On 5/1/06, Jeff Portwine [EMAIL PROTECTED] wrote:
I tried ripmime, and it does extract the attachments but it throws away all
of the header information and gives me only the attachment by itself.
I wrote an extractor in procmail for simple (as in, it doesn't handle
nested structure well) MIME
I can say that the best, and most affordable, anti-virus package I have ever
used was RAV. Until is
was bought out by Microsoft. I have since been using ClamAV but it sure uses
allot of RAM.
What do you use?
Am Montag, 1. Mai 2006 21:18 schrieb :
I can say that the best, and most affordable, anti-virus package I
have ever used was RAV. Until is was bought out by Microsoft. I
have since been using ClamAV but it sure uses allot of RAM.
What do you use?
clamav.
clamd uses some 2.8% of my ram
Title: RE: new type of email spam
-Original Message-
From: Anton Krall [mailto:[EMAIL PROTECTED]]
Sent: Friday, April 28, 2006 12:36 AM
To: users@spamassassin.apache.org
Subject: new type of email spam
Guys, today I got a flow of new type of spam, this new email
has some
Title: Message
Has
anyone used or tried Panda for Linux? If so, what is your feedback on the
product? We use it only on the client machines but haven't ran it on my
email/web server. To tell the truth, I'm a little scared to install it
with running CommuniGate Pro, CGPSA, Spamassassin without
wrote:
I can say that the best, and most affordable, anti-virus package I
have ever used was RAV. Until is was bought out by Microsoft. I
have since been using ClamAV but it sure uses allot of RAM.
I use both ClamAV and BitDefender's free Linux product
On May 1, 2006, at 13:21, wrote:
| At work:
|
| mailscanner calls both sophos av (via sweep) and spamassassin
|
|
| At home:
|
| mimedefang calls both clamav (via clamd) and spamassassin
|
|
| I have less RAM on the home machine than the work machines, and
ClamAV
| seems to do just
On May 1, 2006, at 13:30, Ricardo Oliveira wrote:
John,
I use sophos too, but I though I'd drop the note on a
memory-and-performance-saver: Sophie is a deamon which received the
messages, processos them and returns the result infected or not
infected instead of forking a new sweep process
Is BitDefender stable?
- Original Message -
From: [EMAIL PROTECTED]
To: users@spamassassin.apache.org
Sent: Monday, May 01, 2006 2:44 PM
Subject: RE: Way OT: What do you use for anti-virus (Linux)
| wrote:
| I can say that the best, and most affordable, anti-virus package I
I use MailScanner and Qmail-Scanner depending on the server.
- Original Message -
From: John Rudd [EMAIL PROTECTED]
To: Ricardo Oliveira [EMAIL PROTECTED]
Cc: users@spamassassin.apache.org
Sent: Monday, May 01, 2006 3:33 PM
Subject: Re: Way OT: What do you use for anti-virus (Linux)
wrote:
Is BitDefender stable?
I haven't had any troubles with it. It's free, but not open source... and most
importantly the virus definitions are updated regularly.
--
Matthew.van.Eerde (at) hbinc.com 805.964.4554 x902
Hispanic Business Inc./HireDiversity.com
[EMAIL PROTECTED] schreef:
wrote:
I can say that the best, and most affordable, anti-virus package I
have ever used was RAV. Until is was bought out by Microsoft. I
have since been using ClamAV but it sure uses allot of RAM.
I use both ClamAV and BitDefender's free Linux
I haven't been happy with CGP's anti-virus/anti-spam options
(specifically a lack of ability to do during the SMTP transaction
processing), so I tend to use a gateway approach.
1) On my production CGP machines, there is a group of sendmail boxes
that sit in front of them handling all
schreef:
Is BitDefender stable?
I have been using ClamAV and BitDefender together for over a year in
several mail servers, invoked by Amavisd-new. The products are very stable.
Jo
SA does support ordinary DNS based blacklists using A record or TXT
record queries.
Is there a text file way to do it, like?:
header TEST1 CIDR /151.44.165.138\/24/
Dan
Check out these guyshttp://www.centralcommand.com/their product, Vexira antivirus, has a similar price scheme to the extint RAV
On 5/1/06, [EMAIL PROTECTED] wrote:
I can say that the best, and most affordable, anti-virus package I have ever used was RAV.Until iswas bought out by Microsoft.I
I used to use them. However, you know the password
protected zip file viruses? My customers were up in arms as these flowed
right through. However, ClamAV caught them with ease. I dropped them
because of this. Also, the Milter would die from time to time and support
didn't really help.
On Mon, May 01, 2006 at 03:38:27PM -0700, Dan wrote:
Is there a text file way to do it, like?:
header TEST1 CIDR /151.44.165.138\/24/
You could do that, or you could use the AccessDB plugin which would allow that
to be done easier.
--
Randomly Generated Tagline:
Please do not blame Sendmail
Yeah,It would be great to have SpamAssassin combined with tools like APF and BFD(http://www.rfxnetworks.com/bfd.php)On 5/1/06,
Dan [EMAIL PROTECTED] wrote:
SA does support ordinary DNS based blacklists using A record or TXT record queries.Is there a text file way to do it, like?:header TEST1
From: Bowie Bailey [EMAIL PROTECTED]
jdow wrote:
From: Bart Schaefer [EMAIL PROTECTED]
On 4/29/06, Matt Kettler [EMAIL PROTECTED] wrote:
In SA 3.1.0 they did force-fix the scores of the bayes rules,
particularly the high-end. The perceptron assigned BAYES_99 a
score of 1.89 in the
Hello,
At the moment i have installed 3.0.4 over Yast. I try to install SA 3.1.1
(Suse 9.3 with Qmail and Plesk 7.5.3), but I get a lot of errors linke this:
May 1 17:55:48 h825672 spamd[18926]: connection from
hxxx.serverkompetenz.net [127.0.0.1] at port 42593
May 1 17:55:48 h825672
From: Matt Kettler [EMAIL PROTECTED]
Bowie Bailey wrote:
Matt Kettler wrote:
It is perfectly reasonable to assume that most of the mail matching
BAYES_99 also matches a large number of the stock spam rules that SA
comes with. These highly-obvious mails are the model after which
most SA rules
Dan wrote:
SA does support ordinary DNS based blacklists using A record or TXT
record queries.
Is there a text file way to do it, like?:
header TEST1 CIDR /151.44.165.138\/24/
No. You can set up your own rbldnsd, but that's about as close as you get.
Most of us who have an explicit IP or
- Original Message -
From: jdow [EMAIL PROTECTED]
From: [EMAIL PROTECTED]
I can say that the best, and most affordable, anti-virus package I have
ever used was RAV. Until is
was bought out by Microsoft. I have since been using ClamAV but it sure
uses allot of RAM.
What do
No. You can set up your own rbldnsd, but that's about as close as
you get.
Most of us who have an explicit IP or IP range we want to block either
use our firewalls, or our MTA access controls to deny the message
before
it ever gets delivered. This saves us considerable bandwidth and
What I don't get is who in his/her right mind would respond to a piece of
spam
that uses so much obfuscation as to be almost unreadable. But, as they
say,
if it didn't work nobody would be doing it.
Perhaps spammer's targets are poor enough at grammar and spelling that they
don't realize the
43 matches
Mail list logo
