On Wed, Jan 24, 2007 at 11:11:20AM +0200, Henrik Krohns wrote:
On Wed, Jan 24, 2007 at 05:41:33AM -, [EMAIL PROTECTED] wrote:
since yesterday I have seen quite a few of them:
Will we eventually get a check for obfuscated urls?
Wolfgang
http://www.bullshit*com
On 1/23/07, R Lists06 [EMAIL PROTECTED] wrote:
On Redhat or CentOS machines would that be under SPAMDOPTIONS ?
Using the RPM install of spamassassin from either the CentOS project
or rpmforge, you make changes to the spamd command line in
/etc/sysconfig/spamassassin, and yes, you place those
I'm having problems with SA provided by debian, version 3.1.7-1.
I run spamc from /etc/procmail. spamd is run with `-x --max-children 5'.
Anyway, the problem is, messages are classified as EMPTY_MESSAGE, which
has description of `Message appears to have no textual parts and no
Subject: text',
--On Wednesday, January 24, 2007 2:11 PM +0200 Henrik Krohns
[EMAIL PROTECTED] wrote:
I guess this works until spammers just use a remove the space from
domain method, which pretty much defeats the uri handler. :)
Perhaps a simpler test is to see if the domain is resolvable by the
On Tue, 23 Jan 2007, Gary V wrote:
Are you using SpamAssassin version 3.1.4 or newer? If not, you need to.
Gary,
SpamAssassin-3.1.7.
What version of FuzzyOcr?
3.5.1
Are you trying to load the plugin from more than one place - in other
words if you are trying to load it via an entry
On Tue, January 23, 2007 16:58, bryan haase wrote:
My whitelist file currently has 13,500 lines and is 503K. spamd is about
58-59M.
amavisd-new sql whitelist/blacklist would love this
Is there a point when the whitelist file becomes to large?
is spam scanning needed for the recipients at
Ramprasad wrote:
I have been using SA for more than 3 years now and I have a dumb
question
I am using SA 3.1.5 on Centos
AFAIK By default Spamassassin reads from /usr/share/spamassassin
and /etc/mail/spamassassin
But If I have /var/lib/spamassassin with some files in it SA is
On Wed, Jan 24, 2007 at 01:17:15PM +0530, Ramprasad wrote:
But If I have /var/lib/spamassassin with some files in it SA is
apparently ignoring /usr/share/spamassassin/*.cf
Yes. That's how updates work.
--
Randomly Selected Tagline:
A polar bear is a rectangular bear after a coordinate
Robert Fitzpatrick wrote:
With sa-update ran within the last week, I run it once a week, and rules
du jour, there is one type of spam still getting through. The subject
varies and the body usually starts with a paragraph then stock info:
The Motion Picture Group
Symbol: MPRG
Price: $0.431
When I run spamassassin --lint I see a number of rule-related warnings.
However, when I look in /etc/mail/spamassassin/rules/ I can't find the
specific text referenced.
Here's the pertinent lint output:
[22906] warn: config: SpamAssassin failed to parse line,
DNS_FROM_AHBL_RHSBL .4 is not
On Wed, 2007-01-24 at 07:25 -0800, Rich Shepard wrote:
When I run spamassassin --lint I see a number of rule-related warnings.
However, when I look in /etc/mail/spamassassin/rules/ I can't find the
specific text referenced.
Here's the pertinent lint output:
snip
Unless you've
On Wed, 24 Jan 2007, Gary V wrote:
I placed ImageInfo.pm in the SA Plugin directory
/./Mail/SpamAssassin/Plugin
Gary,
Aha! Found it. I had it in /usr/lib/perl5/5.8.8/.
There are several directories with perl modules in them. Gets me confused
as to what belongs where.
Now this
I have posted the promised error-generating file for antidrug.cf to the
comcast webspace. Anyone RDJ'ing antidrug from comcast (instead of
verizon) will start getting lint errors so they will hopefully pay
attention to the new site notice in the rulefile.
For those that have missed my numerous
On Wed, Jan 24, 2007 at 07:25:38AM -0800, Rich Shepard wrote:
[22906] warn: config: SpamAssassin failed to parse line,
DNS_FROM_AHBL_RHSBL .4 is not valid for score, skipping: score
DNS_FROM_AHBL_RHSBL .4
.4 isn't a valid number and so can't be parsed. Try 0.4.
--
Randomly Selected Tagline:
Or doing whatever it shows itself to be doing, anyway.
I have several *old* systems, running 2.64. I've finally managed to
find the key bit of hardware necessary to allow upgrading to 3.x. (This
amounts to complete cascading replacement of the systems in question.)
I'm now trying to get
On Wed, 24 Jan 2007, Theo Van Dinter wrote:
.4 isn't a valid number and so can't be parsed. Try 0.4.
Theo,
When I look for '.4' in the rules files I cannot find it. Otherwise I
would have changed it.
Rich
--
Richard B. Shepard, Ph.D. |The Environmental Permitting
Hi,
I'm testing a Mail Server with sendmail+maildrop, and I'd like to include
antivirus+antispam features.
I'd like the system checks spam in incoming and outgoing messages so I need a
systemwide configuration for SA. I installed amavisd-new as a milter
(amavisd-new-milter) that performs
On Wed, Jan 24, 2007 at 08:22:07AM -0800, Rich Shepard wrote:
When I look for '.4' in the rules files I cannot find it. Otherwise I
would have changed it.
If you run in debug mode, you'll see all the files that SA is using for
configs. At least one of those files will have the invalid
On Wed, Jan 24, 2007 at 05:25:24PM +0100, Leonardo Secci wrote:
Can I configure the SA executed by MDA to start from the spam score obtained
from the systemwide SA to minimize rule checking?
No. SA is designed specifically to only be run once on a message.
--
Randomly Selected Tagline:
I didn't quite parse that. But man sa-learn, it has many an
informational
statement about how it all works.
In short, by default, it stores token timestamp updates. Whenever the
journal
goes over a certain size, SA will automatically sync it for you.
Thank you Theo and Matt for the
Hi there!
Most of our email is delivered through pop3, so right now bayes
filtering is off. Nevertheless Spamassassin is doing a good job
filtering email, but we want to setup a way for our customers to report
to us undetected spam by forwarding that spam to an
[EMAIL PROTECTED] account in our
Sherman Lilly wrote:
[Snipped text about forged mail from own domains whitelisted...]
I was looking on the net and I came across a plugin on spamassassin I don't
think i have loaded. Will the SPF plugin help with this problem?
If you publish SPF records for your domains, you can use
GENTS!
I have setup rbldnsd daemon, and am rsyncing down from NJABL...
I have made the local DNS cachers forward queries to rbldnsd. That can
be tested via dig @dnscacheserver 2.0.0.127.dnsbl.njabl.org... i see
that query get forwarded to rbldnsd, and i see the query in the log so i
know 100
On Wed, 24 Jan 2007, Theo Van Dinter wrote:
If you run in debug mode, you'll see all the files that SA is using for
configs. At least one of those files will have the invalid config lines.
My guess is something in the site-wide config directory
(/etc/mail/spamassassin).
Theo,
Here is
Vasiliy Boulytchev wrote:
GENTS!
I have setup rbldnsd daemon, and am rsyncing down from NJABL...
I have made the local DNS cachers forward queries to rbldnsd. That can
be tested via dig @dnscacheserver 2.0.0.127.dnsbl.njabl.org... i see
that query get forwarded to rbldnsd, and i see the
I have posted the promised error-generating file for antidrug.cf to the
comcast webspace. Anyone RDJ'ing antidrug from comcast (instead of
verizon) will start getting lint errors so they will hopefully pay
attention to the new site notice in the rulefile.
For those that have missed my numerous
I'm thinking about using SpamAssassin. Is it possible to have the suspected
spam to one account to have one person clear or delete possible spam. When
they say it's good, will it then go to the correct user?
Thanks!
--
View this message in context:
[back on list]
Brian C. Huffman wrote:
On Tue, 2007-01-23 at 16:55 -0500, Daryl C. W. O'Shea wrote:
Brian C. Huffman wrote:
Looking through /usr/sbin/amavisd, it appears that it *does not* add the
Received header if it is called via a milter (which it is). So, this wouldn't
seem to be the
At 09:37 AM 1/24/2007, you wrote:
I'm thinking about using SpamAssassin. Is it possible to have the suspected
spam to one account to have one person clear or delete possible spam. When
they say it's good, will it then go to the correct user?
Yes, but that would be done in your MUA, or with
Evan Platt wrote:
Yes, but that would be done in your MUA, or with something like procmail.
SpamAssassin can only mark messages. It cannot do any sort of what you're
attempting to do. Doesn't sound like the right fit.
Thanks!
--
View this message in context:
-Original Message-
From: Evan Platt [mailto:[EMAIL PROTECTED]
Sent: Wednesday, January 24, 2007 12:54 PM
To: users@spamassassin.apache.org
Subject: Re: One person to filter spam
At 09:37 AM 1/24/2007, you wrote:
I'm thinking about using SpamAssassin. Is it possible to
On Wed, Jan 24, 2007 at 11:46:28AM -0500, Vasiliy Boulytchev wrote:
be tested via dig @dnscacheserver 2.0.0.127.dnsbl.njabl.org... i see
[...]
Can someone please help me setup NJABL properly? I am invoking SA via
MS... as you can see below, SA does seem to check NJABL...
[...]
[15101] dbg:
Excellent,
Now we are in the right direction.
Now. I use the NJABL-provided rsync syntax to sync...
$ cat /usr/local/bin/njablrsync
#!/bin/sh
rsync -vaL rsync.njabl.org::njabl/rbldnsd/ /var/dnsbl/njabl/
which provides me with:
ls /var/lib/rbldns/work/
bhnc.gz
On Wed, 24 Jan 2007, Rich Shepard wrote:
[22906] warn: config: SpamAssassin failed to parse line,
DNS_FROM_AHBL_RHSBL .4 is not valid for score, skipping: score
DNS_FROM_AHBL_RHSBL .4
[22906] warn: config: SpamAssassin failed to parse line, DNS_FROM_RFC_ABUSE
.4 is not valid for score,
Problem solved, I had to forward combined.njabl.org in named conf on the
cachers... duh!
THANKS!
Vasiliy Boulytchev
[EMAIL PROTECTED]
Vasiliy Boulytchev wrote:
Excellent,
Now we are in the right direction.
Now. I use the NJABL-provided rsync syntax to sync...
$ cat
Further question,
Since the *combined.njabl.org*: dnsbl.njabl.org and dynablock.njabl.org
in a single zone is what you get
and :
With the advent of Spamhaus's PBL (http://spamhaus.org/pbl/),
dynablock.njabl.org has become obsolete. Rather than maintain separate
similar DNSBL zones,
On Wed, 2007-01-24 at 11:26 -0800, Rich Shepard wrote:
I was looking in the wrong file, it should be 50_scores.cf. And, in that
file there are:
score DNS_FROM_AHBL_RHSBL 0 0.306 0 0.231
score DNS_FROM_RFC_ABUSE 0 0.479 0 0.200
score DNS_FROM_RFC_BOGUSMX 0 2.034 0 1.945
score
Hello Henrik,
Tuesday, January 23, 2007, 2:17:04 PM, you wrote:
I tried File001 some time ago, and didn't need wait long for FPs. The scores
are way too high (many are 10+? whats up with that?), and the rules are
_very_ broad. For example, just mistype remov or ssex in your mail, and
it goes
On Wed, 24 Jan 2007, Adam Lanier wrote:
Did you do a grep for 'DNS_FROM_AHBL_RHSBL' (for example)
in /etc/mail/spamassassin?
Adam,
I _thought_ that I had, but I'm trying to simultaneously fix problems with
three applications, so I missed doing this.
I'm betting you have a 'score
I was wondering what is the best way to deal with spam that comes
through on mailing lists? For mailing lists like spamassassin I
whitelist all mail because I expect to see examples of spam, but for
other lists, is it a good idea to run 'sa-learn --spam'? What about
reporting those spam to
On Wed, Jan 24, 2007 at 08:37:01AM -0800, R Lists06 wrote:
Do you know what the size or time threshold is?
perldoc Mail::SpamAssassin::Conf, look for bayes and or journal. :)
Im sure time is a factor in there too right as maybe the size wouldn't make
it there in a reasonable timeframe?
I would like to suppress user_prefs and stick with a single site-wide
user_prefs.
I don't think I actually need to do much for this. But I get a lot of warnings.
I also want to be able to switch users for the bayes list (SQL) but continue
using the same prefs for all users.
If I call
Chris Purves wrote:
I was wondering what is the best way to deal with spam that comes
through on mailing lists? For mailing lists like spamassassin I
whitelist all mail because I expect to see examples of spam, but for
other lists, is it a good idea to run 'sa-learn --spam'?
As long as you
Daryl C. W. O'Shea wrote:
You are running the latest version of amavisd, correct? I know for
*sure* that a milter must fake a received header before passing the
message to SA and I'm 99.9% sure that it was amavisd that wasn't doing
this only a couple of months ago.
I am running the latest
See attach python script written by one of the folks on the MailScanner
list.
Its designed for use with exchange, so i will describe the Exchange
usage and you can modify as you see fit to work on your pop3 server.
In Exchange 2003 create a public folder called SPAM, give everyone
On 1/24/2007 3:29 PM, Chris Purves wrote:
I was wondering what is the best way to deal with spam that comes
through on mailing lists? For mailing lists like spamassassin I
whitelist all mail because I expect to see examples of spam, but for
other lists, is it a good idea to run 'sa-learn
IT_Architect wrote:
Evan Platt wrote:
Yes, but that would be done in your MUA, or with something like procmail.
SpamAssassin can only mark messages. It cannot do any sort of what you're
attempting to do. Doesn't sound like the right fit.
Thanks!
www.mailscanner.info can do that and a
On 1/24/2007 12:37 PM, IT_Architect wrote:
I'm thinking about using SpamAssassin. Is it possible to have the suspected
spam to one account to have one person clear or delete possible spam. When
they say it's good, will it then go to the correct user?
It's possible to do that but not with
Brian C. Huffman wrote:
Daryl C. W. O'Shea wrote:
You are running the latest version of amavisd, correct? I know for
*sure* that a milter must fake a received header before passing the
message to SA and I'm 99.9% sure that it was amavisd that wasn't doing
this only a couple of months ago.
Hi all,
It seems i have a problem with sa-update using my SARE rules channels ; i
followed the doc at URL :
http://daryl.dostech.ca/sa-update/sare/sare-sa-update-howto.txt and used the
rules from here : http://wiki.apache.org/spamassassin/SareChannels
Any idea of what I have to do ?
[1174] dbg: bayes: using username: tallison
[1174] dbg: bayes: unable to connect to database: missing = after
bayes:192.168.0.100:5432 in connection info string
bayes_store_module Mail::SpamAssassin::BayesStore::PgSQL
bayes_sql_dsn DBI:Pg:bayes:192.168.0.100:5432
bayes_sql_username
NEVER MIND!!
I'm not paying attention to the ruddy docs!
Tom Allison wrote:
[1174] dbg: bayes: using username: tallison
[1174] dbg: bayes: unable to connect to database: missing = after
bayes:192.168.0.100:5432 in connection info string
bayes_store_module
Florent Gilain wrote:
Hi all,
It seems i have a problem with sa-update using my SARE rules channels ;
i followed the doc at URL :
http://daryl.dostech.ca/sa-update/sare/sare-sa-update-howto.txt and used
the rules from here : http://wiki.apache.org/spamassassin/SareChannels
Any idea
The quantity of spam for various varieties of quicker-dicker-upper pills
into my inbox has increased over the past couple of weeks. The filters in
/usr/share/spamassassin/20_drugs.cf don't seem to be up to full strength.
Are there newer rules (I'm running 3.1.7) to cover the changing
Rich Shepard wrote:
The quantity of spam for various varieties of quicker-dicker-upper pills
into my inbox has increased over the past couple of weeks. The filters in
/usr/share/spamassassin/20_drugs.cf don't seem to be up to full strength.
Are there newer rules (I'm running 3.1.7) to cover
On Wed, 24 Jan 2007, Daryl C. W. O'Shea wrote:
Use sa-update.
Thank you, Daryl. I guess that I'm up to date on those rules so I need to
tweak elsewhere.
I read in the man page that the default directory is
/var/lib/spamassassin/3.001007. That directory does not exist here. I have
Rich Shepard wrote:
On Wed, 24 Jan 2007, Daryl C. W. O'Shea wrote:
Use sa-update.
Thank you, Daryl. I guess that I'm up to date on those rules so I need to
tweak elsewhere.
I read in the man page that the default directory is
/var/lib/spamassassin/3.001007. That directory does not exist
On Wed, 24 Jan 2007, Daryl C. W. O'Shea wrote:
Have you actually run sa-update?
I just did so. Nothing was returned.
I have no idea what rules you're copying, where you're copying them to, or
why your even copying them anywhere.
I originally updated with CPAN. That left no executable
Rich Shepard wrote:
On Wed, 24 Jan 2007, Daryl C. W. O'Shea wrote:
Have you actually run sa-update?
I just did so. Nothing was returned.
I always run sa-update -D to see what is happening.
--
-Doc
Penguins: Do it on the ice.
10:12pm up 11 days, 7:10, 15 users, load average:
Rich Shepard wrote:
On Wed, 24 Jan 2007, Daryl C. W. O'Shea wrote:
Have you actually run sa-update?
I just did so. Nothing was returned.
There's usually no output if you run it without the debug option -D. An
exit code is returned though.
I have no idea what rules you're copying,
On Wed, Jan 24, 2007 at 08:11:50PM -0800, Rich Shepard wrote:
I just did so. Nothing was returned.
sa-update provides no output by default. Run with -D to see what it's doing.
I originally updated with CPAN. That left no executable binary file. Then
I updated from the tarball. That made
On Wed, Jan 24, 2007 at 09:01:58PM -0500, Tom Allison wrote:
Am I correct in understanding that I have to run sa-learn for every user
who is going to have a bayes token store?
If you are running per-user Bayes (nothing else makes much sense,
IMHO), yes, but only if they want to train their
Hi All,
Does anyone have any idea why there are such scoring disparities
between these two emails? I've been seeing a few of these creep
through lately.
http://dev.blue-canoe.net/spam/spam01.txt
http://dev.blue-canoe.net/spam/spam02.txt
http://dev.blue-canoe.net/spam/spam03.txt
Nigel Frankcom wrote:
Hi All,
Does anyone have any idea why there are such scoring disparities
between these two emails? I've been seeing a few of these creep
through lately.
http://dev.blue-canoe.net/spam/spam01.txt
http://dev.blue-canoe.net/spam/spam02.txt
On Thu, 25 Jan 2007 02:40:30 -0500, Matt Kettler
[EMAIL PROTECTED] wrote:
Nigel Frankcom wrote:
Hi All,
Does anyone have any idea why there are such scoring disparities
between these two emails? I've been seeing a few of these creep
through lately.
http://dev.blue-canoe.net/spam/spam01.txt
65 matches
Mail list logo