On Sunday 13 May 2007 23:25, Gary V wrote:
On Sunday 13 May 2007 12:28, Gary V wrote:
Thanks for the excellent notes!
The run 'pyzor discover'. This creates
/root/.pyzor/servers which is a file that contains the IP address and
port
to the main pyzor server. Don't use that
I see the Pyzor rule often hitting msgs without body content which
include an attachment (.doc. .xls, etc)
Anybody else?
Thanks
Alex
Hello Group/Everyone,
I am trying to setup SPAMD on Fedora Core but no luck. I would
appreciate if anyone can point to the documentation which guides
though step-by-step to get started with Spamd :-)
I will appreciate any help.
--
Sunil
SSL Certificates @ $12
www.rapidsslonline.com
Phil Barnett wrote:
On Sunday 13 May 2007 23:25, Gary V wrote:
On Sunday 13 May 2007 12:28, Gary V wrote:
Thanks for the excellent notes!
The run 'pyzor discover'. This creates
/root/.pyzor/servers which is a file that contains the IP address and
port
to the main pyzor server. Don't use
http://www.coders.co.uk/slipped.through.txt
It has sailed through both a SA3.1.8 and SA3.2.0 (3.2.0-pre2-r512851)
running on recent versions of MailScanner
cheers
Matt
On Mon, May 14, 2007 11:32, Matt Hampton wrote:
http://www.coders.co.uk/slipped.through.txt
It has sailed through both a SA3.1.8 and SA3.2.0 (3.2.0-pre2-r512851)
running on recent versions of MailScanner
The ClamAV engine tends to work well on a large number of that type of
phish. Local
Hi all,
Necessary of aid to create one script that it reads the
folder .Trainings inside of the Maildir of the user and train as Spam.
Soon after the trainings the same script has that to move this message
for the Inbox of a called user Spam. One of the problems and use of the
vpopmail, the users
On Mon, 14 May 2007, Duncan Hill wrote:
From: Duncan Hill [EMAIL PROTECTED]
To: users@spamassassin.apache.org
Date: Mon, 14 May 2007 11:41:24 +0100 (BST)
Subject: Re: Does anyone catch this
On Mon, May 14, 2007 11:32, Matt Hampton wrote:
http://www.coders.co.uk/slipped.through.txt
Dennis Davis schrieb:
On Mon, 14 May 2007, Duncan Hill wrote:
From: Duncan Hill [EMAIL PROTECTED]
To: users@spamassassin.apache.org
Date: Mon, 14 May 2007 11:41:24 +0100 (BST)
Subject: Re: Does anyone catch this
On Mon, May 14, 2007 11:32, Matt Hampton wrote:
-Original Message-
From: Matthias Haegele [mailto:[EMAIL PROTECTED]
Sent: Monday, May 14, 2007 8:30 AM
To: SpamAssassin
Subject: Re: Does anyone catch this
Dennis Davis schrieb:
On Mon, 14 May 2007, Duncan Hill wrote:
From: Duncan Hill [EMAIL PROTECTED]
To:
Rick Cooper schrieb:
-Original Message-
From: Matthias Haegele [mailto:[EMAIL PROTECTED]
Sent: Monday, May 14, 2007 8:30 AM
To: SpamAssassin
Subject: Re: Does anyone catch this
Dennis Davis schrieb:
On Mon, 14 May 2007, Duncan Hill wrote:
From: Duncan Hill [EMAIL PROTECTED]
On Monday 14 May 2007 06:20, Mikael Syska wrote:
Will your notes be available online ?
Yes.
--
Phil Barnett
AI4OF
SKCC #600
Do you mind if I include your notes with attribution to my document on
building a MailServer applicance?
--
Phil Barnett
No, of course I don't mind, and credit isn't necessary. But thanks.
Gary V
_
More photos, more messages,
We have just upgraded from v3.1.8 to v3.2.0. We invoke spamc as
follows:
spamc -H -E -t 180 -s 20 -d spamd.ornl.gov
# nslookup spamd.ornl.gov
Name:spamd.ornl.gov
Addresses: 160.91.4.92, 160.91.1.172
This used to connect equally to the two hosts, but now it makes almost
On Sun, 13 May 2007, Jason Frisvold wrote:
Here's a sample of the hits I'm getting ... As you can see, its a
bunch of different IPs in various ranges.. I've decided to just block
the ranges at this point.. I have no idea if there's anything legit
in there, but I'll take that risk...
On Sun, 13 May 2007, Jason Frisvold wrote:
later112.itbobble.com (216.74.88.112)
source238.wearisen.com (216.74.120.238)
You can safely block all of 216.74.64.0/18 -- that's 216.75.64 - 216.74.127
==
Chris Candreva -- [EMAIL
On 5/14/07, Christopher X. Candreva [EMAIL PROTECTED] wrote:
This looks like what is being called Snowshow spammers on Spam-L . They
will have a rather large block and just cycle through until their whols
space is used up, then get more.
Ugh.. I had heard about this tactic some time ago, but
On Mon, 14 May 2007, Rick Cooper wrote:
From: Rick Cooper [EMAIL PROTECTED]
To: 'SpamAssassin' users@spamassassin.apache.org
Date: Mon, 14 May 2007 09:04:57 -0400
Subject: RE: Does anyone catch this
...
I just sent Steve an updated script that accommodates the trailing
back slash the
- Original Message -
Most common usage is:
$ sa-update
Or, if you want to see what it's doing:
$ sa-update -D
Unless you are adding extra channels or doing something strange with it,
you shouldn't need more than that.
OK, got all those RTFM answers :-) - I get that...
But
On Mon, 14 May 2007, Kevin W. Gagel wrote:
- Original Message -
Most common usage is:
$ sa-update
Or, if you want to see what it's doing:
$ sa-update -D
Unless you are adding extra channels or doing something strange with it,
you shouldn't need more than that.
OK, got all
With respect to the previous Monday.
Just wondering why. Are they close to vacation and need to rise some money
to bring their children in vacation?
Anybody knows which is the pattern behind this things?
Regards,
Giampaolo
Abba Communications wrote:
Is there a standard perl version that the SA team aspires to and uses as a
baseline or some sort?
From the README file:
Perl 5.6.1 or a later version is required.
--
Kelson Vibber
SpeedGate Communications www.speed.net
- Original Message -
Despite the controversy that this seems to have set off... Could someone
- anyone - please direct me to someplace that I can read up on my
questions... They remain un-answered and the man page simply is a terse
usage explanation. I would like to read up on the
Is there a standard perl version that the SA team aspires to and uses as
a baseline or some sort?
From the README file:
Perl 5.6.1 or a later version is required.
But 5.8.8 is the workhorse of the day...
Mark
Is there a limit to how many entries a whitelist can have and still run
efficiently?
The box is a PIII 550 512 ram-
Its now scanning approx 3000 messages per day-
Someone asked me if it was possible to add their entire address book (
roughly 600 addresses) to the whitelist ( we have sitewide
When I run sa-compile, it breaks while trying to run make:
[EMAIL PROTECTED] ~]$ sudo sa-compile
[32101] info: generic: base extraction starting. this can take a while...
[32101] info: generic: extracting from rules of type body_0
100% [===] 36.75 rules/sec
On 10 May 2007 at 18:40, Daryl C. W. O'Shea wrote:
no one has ideas why the SA3.2 is complaining about having rights to
the .spamassassin file when the same non-root user is being used for
spamd and spamc ?
If I had to guess I'd say that the non-root user doesn't have rights
to the
On 14 May 2007 at 15:07, Sunil Chelaramani wrote:
Hello Group/Everyone,
I am trying to setup SPAMD on Fedora Core but no luck. I would
appreciate if anyone can point to the documentation which guides
though step-by-step to get started with Spamd :-)
I will appreciate any help.
--
Are
On Monday 14 May 2007 09:48, Gary V wrote:
Do you mind if I include your notes with attribution to my document on
building a MailServer applicance?
--
Phil Barnett
No, of course I don't mind, and credit isn't necessary. But thanks.
Great, now if I can learn how to properly spell
Hi all
Anyone know why see X-Spam-Status: No, hits=? required=? in the email
header after delivery and spam scanning ?
My local.cf file looks like this
required_score 8.0
report_safe 1
rewrite_header Subject *SPAM*
regards
I was reviewing our mail logs and saw items marked as virus infected
being delivered to our users with only a junk mail warning. Not
good! I investigated and found it's a new feature of Amavisd. You
can now set a list of infections that are reclassified as spam. I
don't have a problem
Not 100% sure I would call this a surprise, as it was discussed on the
amavisd-new list and is in README.
(and you should join the amavisd-new list where issues like this are
discussed since they are not dependent on SA)
--
Michael Scheidell, CTO
Join Me at SecureWorld Philadelphia May 17 for
Sorry for the posting on this list, someone mentioned that even
though the man for amavisd is essentially empty, this feature is
mentioned elsewhere. I only recently got on the amavisd-new announce
list so didn't see anything about it.
I just don't like seeing users getting mail with low
-Original Message-
From: Jerry Durand [mailto:[EMAIL PROTECTED]
Sent: Tuesday, May 15, 2007 1:00 AM
To: Jerry Durand
Cc: users@spamassassin.apache.org
Subject: Re: SA and Amavisd-new 2.5.0
Sorry for the posting on this list, someone mentioned that even
though the man for
Jerry Durand wrote the following on 5/14/2007 10:00 PM -0800:
Sorry for the posting on this list, someone mentioned that even though
the man for amavisd is essentially empty, this feature is mentioned
elsewhere. I only recently got on the amavisd-new announce list so
didn't see anything about
On May 14, 2007, at 10:46 PM, Bill Landry wrote:
These are not actually infected message, per say (virus, malware,
trojan, etc), they are phish, scan, spam type messages. You can
increase the score for these messages either within amavisd.config
(these scores will get added to the overall SA
36 matches
Mail list logo