Paul Hurley wrote:
I've just moved my laptop to Ubuntu Feisty 7.04 and am very happy.
I'm still using Thunderbird as I'm happy, but am unsure on how to
integrate
Spamassassin into things. It's just me, although I get mail from
multiple pop accounts on different domains / servers.
Ideally
on 7/2/07 10:08 PM, Robert - eLists at [EMAIL PROTECTED] wrote:
Anyone get Spamassassin installed on their iPhone yet?
:-)
- rh
What are you talking about? SA is a server level tool. Why, if it was even
possible, would you install it on a phone?
--
Mike Yrabedra B^)
Hi all.
Testing new setup:
CentOS 4.4
amavisd-new-2.5.1
SpamAssassin version 3.2.1
running on Perl version 5.8.5
+RulesDuJour
Quad proc Dell PE w/ 4 GB RAM.
Using calls to the timestamp function I've been testing this setup
over the past week. While following the debug output I've removed:
OliverScott wrote:
Is [running two instances of clamd] the following easy to do?
I think it's pretty easy. Exactly how you do it depends on the
platform/distribution you use. Here's what I did in FreeBSD:
I copied the init script (/usr/local/etc/rc.d/clamav-clamd.sh to
Quoting Peter Farrell [EMAIL PROTECTED]:
Hi all.
Testing new setup:
CentOS 4.4
amavisd-new-2.5.1
SpamAssassin version 3.2.1
running on Perl version 5.8.5
+RulesDuJour
Quad proc Dell PE w/ 4 GB RAM.
Using calls to the timestamp function I've been testing this setup
over the past
There is a SpamAssassin plugin which checks messages with
ClamAV, which adds the following header to emails
What I would like to do would be to score the ClamAV
detection differently depending on whether it was
Your problem is that the ClamAV plugin doesn't add a header as
metadata to the
Jonas Eckerman writes:
There is a SpamAssassin plugin which checks messages with
ClamAV, which adds the following header to emails
What I would like to do would be to score the ClamAV
detection differently depending on whether it was
Your problem is that the ClamAV plugin doesn't
Hi,
I am posting this here thinking this may be more of an OS thing than a mysql
thing...
Since all mysql databases and tables need to be owned by the mysql user, is
there, er, has anyone figured out a way to impose disk quotas per database for
mysql?
-Grant
On Tue, 3 Jul 2007 at 08:12 -0400, [EMAIL PROTECTED] confabulated:
I am posting this here thinking this may be more of an OS thing than a mysql
thing...
Since all mysql databases and tables need to be owned by the mysql user, is
there, er, has anyone figured out a way to impose disk quotas
Jeff Chan wrote:
Quoting Peter Farrell [EMAIL PROTECTED]:
Hi all.
Testing new setup:
CentOS 4.4
amavisd-new-2.5.1
SpamAssassin version 3.2.1
running on Perl version 5.8.5
+RulesDuJour
Quad proc Dell PE w/ 4 GB RAM.
Using calls to the timestamp function I've been testing this setup
over
on 7/2/07 10:08 PM, Robert - eLists at [EMAIL PROTECTED] wrote:
Anyone get Spamassassin installed on their iPhone yet?
:-)
- rh
What are you talking about? SA is a server level tool. Why, if it was even
possible, would you install it on a phone?
--
Mike Yrabedra B^)
Perhaps because
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Hello all,
because some people insisted on it, I added an experimental feature to
FuzzyOcr that allows you to scan PDFs as if they were images.
The feature was implemented in the latest SVN revision and is of
course disabled by default.
Personally,
Peter Farrell wrote:
Hi all.
Testing new setup:
CentOS 4.4
amavisd-new-2.5.1
SpamAssassin version 3.2.1
running on Perl version 5.8.5
+RulesDuJour
Quad proc Dell PE w/ 4 GB RAM.
Point blank. In general, *NOBODY* should use WS's blacklist file's for
ANYTHING. It is most unfortunate that
It's been announced that these rules are coming soon and...? Or maybe I
missed something?
--
Michał Jęczalik, +48.603.64.62.97
INFONAUTIC, +48.33.487.69.04
You didn't miss anything. I don't believe they are released yet. FInal
testing being done. Results look great. I'll see if they can get released
soon.
--Chris
-Original Message-
From: Michal Jeczalik [mailto:[EMAIL PROTECTED]
Sent: Tuesday, July 03, 2007 9:47 AM
To:
A little play on words spoofing A plan for spam.
I have been testing a new technique for detecting ham that is working
quite well. It's nearly (or possibly at) 100% accurate in that what it
identifies is ham.
First of all you get a verified RDNS lookup on the host. Verified means
that you
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
I'm still a bit vague on how the SpamAssassin rules fit together but
I've noticed that, since upgrading to the latest version, I'm getting a
lot of false positives.
The common cause seems to be Botnet.cf. Where a server has no reverse
DNS,
Hi List,
So what's with 3.2.1 ? I'm running 3.1.8 and did the standard:
cpan Mail::SpamAssassin
and got:
t/spamc_optCFAILED tests 2, 4, 6, 8
Failed 4/9 tests, 55.56% okay
t/spamc_optLFAILED tests 1-16
Failed 16/16 tests, 0.00% okay
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Gary V wrote:
Hello,
On the fuzzyocr site I see 3.5.1 version is not SA 3.2.X
compatible ? Is this true, or can I safely ignore :-)
We have an older server with SA 3.2.0 and Fuzzyocr 2.3b and it
works.
Greetings.. Richard
Force install or wait for 3.2.2
on 7/3/07 10:46 AM, Jonathan Allen at [EMAIL PROTECTED] wrote:
Hi List,
So what's with 3.2.1 ? I'm running 3.1.8 and did the standard:
cpan Mail::SpamAssassin
and got:
t/spamc_optCFAILED tests 2, 4, 6, 8
Failed 4/9 tests,
On Tue, Jul 03, 2007 at 06:04:33AM -0500, Jeff Chan wrote:
Please DO NOT use sa-blacklist. Use multi.surbl.org instead. Bill will tell
you the same thing when he gets a chance.
It seems as if the blacklist.cf file is still available for people to
download, since this question comes up
Why can't Spamassassin do like a MD5 hash of any URL's in a message
and check them against a database? I just think it would help catch
things like: geocities.com/spamer123/ or spamer123.tripod.com and etc.
It would also work for Tinyurl links and the like.
Matt
Thanks for all the advice. It's been extremely helpful.
RE: the comment for local caching name server - I'd not really thought
about that when I was deploying these, but it makes sense and I rolled
that out this afternoon.
RE: RulesDuJour
I didn't find these things documented anywhere. Ie.
Hi all,
Can someone please advise me: is it good or bad to add bayes_ignore_header
values in my local.cf file for the X-Spam headers that
are added by SA? For example:
bayes_ignore_header X-Spam-Status
bayes_ignore_header X-Spam-Level
bayes_ignore_header X-Spam-Checker-Version
-Messaggio originale-
Da: Marc Perkel [mailto:[EMAIL PROTECTED]
A little play on words spoofing A plan for spam.
I have been testing a new technique for detecting ham that is working
quite well. It's nearly (or possibly at) 100% accurate in that what it
identifies is ham.
Who likes this idea?
While its a little out of date now and was manually generated and verified,
SARE has a whitelist of hosts and the like that are supposedly never spam,
even though they may be commercial mail.
Loren
In today's SANS diary:
During the last two days, we've received continuous reports of new
PDF spam. This time the pages attached are generally of different
size each time (no longer A4, but 4x3 inch or 6x1 inch).
Might a non-standard-paper-size PDF attachment be worth a point?
--
John
Loren Wilton wrote:
Who likes this idea?
While its a little out of date now and was manually generated and
verified, SARE has a whitelist of hosts and the like that are
supposedly never spam, even though they may be commercial mail.
Loren
Looks like a useful list. I'm going to
-Original Message-
From: Loren Wilton [mailto:[EMAIL PROTECTED]
Sent: Tuesday, July 03, 2007 9:16 AM
To: users@spamassassin.apache.org
Subject: Re: SA on iPhone yet?
on 7/2/07 10:08 PM, Robert - eLists at [EMAIL PROTECTED] wrote:
Anyone get Spamassassin installed on their iPhone
At 08:26 03-07-2007, Jonathan Allen wrote:
I am neither a spammer, nor in Poland but a legitimate UK business with
Are you absolutely sure you are not in Poland? :-) Antispam systems
can sometimes be geography-challenged.
the same IP address for some years. Where on earth did this
I have another question concerning FozzyOcr 2.3b versus FuzzyOcr 3.5.1:
A spam picture like this: http://213.146.165.18/spam2.gif does generate
a SA FuzzyOcr score of 19 with version 2.3b (and gocr 0.40). With version 3.5.1
(and gocr 0.44) does not generate a score at all. I'm sure the
systems
SM,
Where on earth did this response come from ?
The response came from the mail server for cobatco.com. They have a
user subscribed to this mailing list.
Yes: [EMAIL PROTECTED], to whom I was trying to respond. But I worded
my question badly - what I meant was: why on earth should
Hi,
Yes: [EMAIL PROTECTED], to whom I was trying to respond. But I worded
my question badly - what I meant was: why on earth should their machine
think that I am a Polish spammer ? The IP address is in one of the
static blocks administered by my (UK) ISP.
And for the sake of argument, why
On Tue, 3 Jul 2007, Jonathan Allen wrote:
I just tried to reply to a kind soul that had offered some help with the
3.2.1 root errors and got:
- The following addresses had permanent fatal errors -
[EMAIL PROTECTED]
(reason: 554 mailgate.barumtrading.co.uk[83.104.103.142]: Client
Maybe because statistic talks :)
Zbigniew Szalbot schrieb:
Hi,
Yes: [EMAIL PROTECTED], to whom I was trying to respond. But I worded
my question badly - what I meant was: why on earth should their machine
think that I am a Polish spammer ? The IP address is in one of the
static blocks
At 09:04 AM 7/3/2007, Jonathan Allen wrote:
Yes: [EMAIL PROTECTED], to whom I was trying to respond. But I worded
my question badly - what I meant was: why on earth should their machine
think that I am a Polish spammer ? The IP address is in one of the
static blocks administered by my (UK)
On Tue, 2007-07-03 at 16:39 +0200, Cliff Stanford wrote:
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
I'm still a bit vague on how the SpamAssassin rules fit together but
I've noticed that, since upgrading to the latest version, I'm getting a
lot of false positives.
The common cause
Jonathan and all:
First off sorry for the problem and to any from the country of Poland
that were offended by this. The response came from our ISP which we
fetch our mail from; they run a anti-spamming service that we are
suppose to be opted out off but apparently are not. One of its many
Hi Jonathan,
Yes: [EMAIL PROTECTED], to whom I was trying to respond. But I worded
my question badly - what I meant was: why on earth should their machine
think that I am a Polish spammer ? The IP address is in one of the
static blocks administered by my (UK) ISP.
They may be using a
On Tue, 2007-07-03 at 10:11 -0500, Matt wrote:
Why can't Spamassassin do like a MD5 hash of any URL's in a message
and check them against a database?
Well, not MD5, but Whiplash type 8 signatures in Razor-2 are pretty
similar.
I just think it would help catch
things like:
Quoting Theo Van Dinter [EMAIL PROTECTED]:
On Tue, Jul 03, 2007 at 06:04:33AM -0500, Jeff Chan wrote:
Please DO NOT use sa-blacklist. Use multi.surbl.org instead. Bill will
tell
you the same thing when he gets a chance.
It seems as if the blacklist.cf file is still available for people
List and [EMAIL PROTECTED],
First off sorry for the problem and to any from the country of Poland
that were offended by this.
I need to apologise to the nice chap at cobatco - I really didn't mean
to cause you any embarassment on the public list, but I didn't think
I could reach you any other
Matt wrote:
Why can't Spamassassin do like a MD5 hash of any URL's in a message
and check them against a database?
Because there isn't such a database?
Daryl
Funny you should mention that. I recently wrote a proof of concept plugin
that does exactly what you're talking about. The point was to check URLs
against google's safebrowsing list, which was just announced.
Unfortunately, the results were rather poor. The only hits that I got were
on
Chris Santerre wrote:
You didn't miss anything. I don't believe they are released yet. FInal
testing being done. Results look great. I'll see if they can get
released soon.
--Chris
-Original Message-
From: Michal Jeczalik [mailto:[EMAIL PROTECTED]
Sent: Tuesday, July 03, 2007
Jonathan:
No need to apologize at all; you did me a favor by letting me know we
were still having these issues with our ISP's anti-spam methods. Will
get this sorted out one way or the other. Trying to keep your user's
mailboxes free of spam is work enough, but having to to battle with your
ISP
On Tue, Jul 03, 2007 at 11:35:01AM -0500, Dallas Engelken wrote:
The mechanism used for accurate detection in the PDFInfo plugin is not
going to be a part of this.. and I'd recommend you request the plugin
and use it privately. If the information gets publicized, that method
would soon
Hi Zbigniew,
At 09:08 03-07-2007, Zbigniew Szalbot wrote:
And for the sake of argument, why on earth a POLISH spammer? Why does a
spammer have to be Polish. I happen to live in Poland but I am no way a
spammer, never have been and never will be.
It's easier to blame some country for the spam
MIKE YRABEDRA wrote:
Robert - eLists wrote:
Anyone get Spamassassin installed on their iPhone yet?
What are you talking about? SA is a server level tool.
What are *you* talking about? As far as I can tell (I don't have one)
the iphone is perfectly capable enough to be considered a server.
MIKE YRABEDRA wrote:
on 7/2/07 10:08 PM, Robert - eLists at [EMAIL PROTECTED] wrote:
Anyone get Spamassassin installed on their iPhone yet?
:-)
- rh
What are you talking about? SA is a server level tool. Why, if it was even
possible, would you install it on a phone?
SA is not
My take on botnet scoring, like that of any custom rule is that I can
change the scoring to suit my requirements.
Considering the kind of users we deal with adding in the default
scores would have caused a lot of headaches, so I actually tested it
with scores of 0 on all to see how many hits
Theo Van Dinter wrote:
All in all, you're better off just making things public.
I agree. It's sort of like saying that Open Source cannot work as a
model in the antivirus/antispam arena...
...and it may be true - but no-one on this list believes it ;-)
--
Cheers
Jason Haar
Information
On Tue, 3 Jul 2007, Dallas Engelken wrote:
The PDFInfo.pm and accompanying ruleset will not be public. If you want it,
please go to
http://www.rulesemporium.com/plugins.htm#pdfinfo and request it.
Despite of my opinion about security-by-obscurity approach, I still
experience major
on 7/3/07 2:01 PM, John Rudd at [EMAIL PROTECTED] wrote:
MIKE YRABEDRA wrote:
on 7/2/07 10:08 PM, Robert - eLists at [EMAIL PROTECTED] wrote:
Anyone get Spamassassin installed on their iPhone yet?
:-)
- rh
What are you talking about? SA is a server level tool. Why, if it was
On Tue, 3 Jul 2007, Matt wrote:
Why can't Spamassassin do like a MD5 hash of any URL's in a
message and check them against a database? I just think it would
help catch things like: geocities.com/spamer123/ or
spamer123.tripod.com and etc.
Too easy to defeat using a URI with random
Hi!
All in all, you're better off just making things public.
model in the antivirus/antispam arena...
...and it may be true - but no-one on this list believes it ;-)
Its a matter of fact that published rules (see sare rulesets) become less
effective immediate after publishing. That due
Folks,
SpamAssassin version 3.2.1
running on Perl version 5.8.8
Solaris 10 x86
I am seeing the following error at startup of spamd. Does DB_File.pm
load to make a connection to the AWL and Bayes DBs ? If so does
this point to a corrupt or munged db?
SA/Spamd built fine and has been running
You are if you're the only one dumb enough to run email from this list
through SpamAssassin then you might be.
{o.o}
- Original Message -
From: arni [EMAIL PROTECTED]
To: mouss [EMAIL PROTECTED]
Cc: users@spamassassin.apache.org
Sent: Monday, 2007, July 02 13:06
Subject: Re:
John Rudd wrote:
Botnet's score of 5 is meant to say this message should be quarantined
or flagged for review. It's not saying this message is _definitely_
spam.[snip]
The trouble is redundancy in scores, the BOTNET score is usually just the start
of a
I'm having problems with my mail not getting processed properly.
This setup has been in place for years and worked without problems.
All of a sudden this weekend it stopped delivering its mail from the
incoming queue. If I modify my MailScanner.conf file to run in debug
mode it will process a
We are trying to upgrade from 3.1.0 on SLES9 using spamd. I have viewed
the install notes and downloaded the zip. Extracted and CD'd to that new
SA dir. Followed these install instructions:
[unzip/untar the archive]
cd Mail-SpamAssassin-*
perl Makefile.PL
[option: add
jdow schrieb:
You are if you're the only one dumb enough to run email from this list
through SpamAssassin then you might be.
I dont exactly know why you have to flame people on this mailinglist but
i'm gonna explain it to you:
This list offers a great way to learn bayes with spam related
Hi,
2007/7/3, [EMAIL PROTECTED] [EMAIL PROTECTED]:
We are trying to upgrade from 3.1.0 on SLES9 using spamd. I have viewed
the install notes and downloaded the zip. Extracted and CD'd to that new
SA dir. Followed these install instructions:
[unzip/untar the archive]
cd
OK, so i installed HTML::Parser and now tried installing SA 3.2 with
cpan. This is what i get with cpan install:
Going to read /root/.cpan/sources/modules/03modlist.data.gz
Going to write /root/.cpan/Metadata
Mail::SpamAssassin is up to date.
cpan quit
Caught SIGINT
Lockfile removed.
Do you need
On Tue, 3 Jul 2007, David Boltz wrote:
I went through all the mysql databases and repaired any tables
that contained errors as well but that didn't seem to help.
commit ineffective with AutoCommit enabled at
/usr/lib/MailScanner/MailScanner/CustomFunctions/MailWatch.pm line 93,
CLIENT line
On Tue, Jul 03, 2007 at 07:56:00PM -0400, [EMAIL PROTECTED] wrote:
OK, so i installed HTML::Parser and now tried installing SA 3.2 with
cpan. This is what i get with cpan install:
[...]
Mail::SpamAssassin is up to date.
Do you need to also update perl-spamassassin too? Because when i look to
Jason Haar wrote:
Theo Van Dinter wrote:
All in all, you're better off just making things public.
I agree. It's sort of like saying that Open Source cannot work as a
model in the antivirus/antispam arena...
It can, if you have the people willing to contribute new dats on every
René Berber wrote:
John Rudd wrote:
Botnet's score of 5 is meant to say this message should be quarantined
or flagged for review. It's not saying this message is _definitely_
spam.[snip]
The trouble is redundancy in scores, the BOTNET score is usually just the start
of a
Thanks for the info. Could it be that because the debug mode tries to
do an commit before it closes and the system is set to auto commit for
when it's running continuously it says this?
Regards,
Dave B..
I for one agree with the protected model.
I've read post after post in this group and others where people complain
that some new method is no longer effective due to the other guys
knowing our every step.
If there were an application process, which would be too burdensome on
the maintainers, I'd
Theo Van Dinter wrote:
perl-spamassassin sounds like a package. Don't mix using CPAN and using
packages. If you're using a package, upgrade SA through a package.
If you
want to use CPAN, get rid of the packages first.
I did install from rpm. So, if i understand you right, i need to
On Tue, 3 Jul 2007, David Boltz wrote:
Thanks for the info. Could it be that because the debug mode
tries to do an commit before it closes and the system is set to
auto commit for when it's running continuously it says this?
No idea. That's why it's a wild guess.
--
John Hardin KA7OHZ
On Tue, 3 Jul 2007 [EMAIL PROTECTED] wrote:
Theo Van Dinter wrote:
perl-spamassassin sounds like a package. Don't mix using CPAN and using
packages. If you're using a package, upgrade SA through a package.
If you want to use CPAN, get rid of the packages first.
I did install from rpm.
Theo Van Dinter wrote:
perl-spamassassin sounds like a package. Don't mix using CPAN and
using
packages. If you're using a package, upgrade SA through a package.
If you
want to use CPAN, get rid of the packages first.
I did install from rpm. So, if i understand you right, i need to
On Tue, Jul 03, 2007 at 07:16:19PM -0500, Dallas Engelken wrote:
... we have to release a new plugin, and a new
ruleset. Its not like we just release a new ruleset, someone runs
RDJ/sa-update and they are off.There is no way to auto-update the
plugin (currently) besides to announce it
John D. Hardin wrote:
On Tue, 3 Jul 2007 [EMAIL PROTECTED] wrote:
Theo Van Dinter wrote:
perl-spamassassin sounds like a package. Don't mix using CPAN and
using
packages. If you're using a package, upgrade SA through a package.
If you want to use CPAN, get rid of the packages first.
I
From: arni [EMAIL PROTECTED]
jdow schrieb:
You are if you're the only one dumb enough to run email from this list
through SpamAssassin then you might be.
I dont exactly know why you have to flame people on this mailinglist but
i'm gonna explain it to you:
This list offers a great way to
If you read JM's Planet Antispam, you know this already, but:
http://www.dnsbl.com/2007/06/status-of-dnsbltqmcubecom-abandoned.html
Well, i may have really messed up now. I uninstalled all spamassassin
3.1 using red carpet and the installed perl-spamassassin from rpm using
yast (this was fine). Then i tried to install spamassassin 3.2 from rpm
using yast, this gives this error:
ERROR(InstTarget:E_RpmDB_subprocess_failed)
---
Well, i may have really messed up now. I uninstalled all spamassassin
3.1 using red carpet and the installed perl-spamassassin from rpm
usingyast (this was fine). Then i tried to install spamassassin 3.2
from rpm
using yast, this gives this error:
Despite of my opinion about security-by-obscurity approach, I still
experience major connection problems with that site. By now it seems that
it does not resolve it's hostname to me at all. At least from my subnet,
which is unfortunately one of those polish-spam 83.x subnets, that are
Well, i may have really messed up now. I uninstalled all spamassassin
3.1 using red carpet and the installed perl-spamassassin from rpm
usingyast (this was fine). Then i tried to install spamassassin 3.2
from rpm
using yast, this gives this error:
ERROR(InstTarget:E_RpmDB_subprocess_failed)
I for one agree with the protected model.
I've read post after post in this group and others where people complain
that some new method is no longer effective due to the other guys
knowing our every step.
If there were an application process, which would be too burdensome on
the
I recently upgraded to 3.2.1
In doing so, I find that the following rules which were previously used
are no longer in service.
Can someone explain why?
[/etc/mail/spamassassin] spamassassin --lint
[22753] warn: config: warning: score set for non-existent rule
HTML_FONT_INVISIBLE
[22753] warn:
On Tue, 3 Jul 2007 [EMAIL PROTECTED] wrote:
I downloaded the traball and made a rpm; which created
perl-spamassassin.rpm and mail-spamassassin.rpm. I installed
perl-spamassassin first using yast and then spamassassin using
yast. The spamassassin rpm failed to installed but when i do a rpm
Jeremy Fairbrass wrote:
Hi all,
Can someone please advise me: is it good or bad to add bayes_ignore_header
values in my local.cf file for the X-Spam headers that
are added by SA?
It's pointless.. SA already removes it's own markings when learning
messages.
The only time you'd need to do
86 matches
Mail list logo