Re: Ignore third-party SA headers

2017-01-26 Thread Chris
On Wed, 2017-01-25 at 22:29 -0800, Ian Zimmerman wrote: > On 2017-01-26 01:03, RW wrote: > > > > > Probably what's happening is that these are emails over 500 kB > > which > > by default are just passed through by spamc without sending them to > > spamd.  If they don't get sent to spamd the

Re: Legit Yahoo mail servers list

2017-01-26 Thread Michael Orlitzky
On 01/26/2017 02:53 PM, David Jones wrote: > > I understand what their SPF record means and how it works > but what they are publishing in their SPF record is not common. > Normally this would expand out to a list of IPs and CIDRs or DNS > records that can be turned into IPs that postwhite can

Re: Suddenly blocking email from SASL authenticated dynamic IP users

2017-01-26 Thread John Hardin
On Thu, 26 Jan 2017, John Stimson wrote: I am running SpamAssassin 3.4.1. It is running as a background daemon, started with: /usr/bin/spamd -d --allow-tell Incoming mail is accepted by postfix 3.1 and submitted via the milter interface to spamass-milter 0.40 for processing in

Re: Legit Yahoo mail servers list

2017-01-26 Thread Matus UHLAR - fantomas
On 26.01.17 19:53, David Jones wrote: I understand what their SPF record means and how it works but what they are publishing in their SPF record is not common. Normally this would expand out to a list of IPs and CIDRs or DNS records that can be turned into IPs that postwhite can use to build a

Re: Legit Yahoo mail servers list

2017-01-26 Thread Dianne Skoll
Following up on myself: > IMO, the SPF spec should have specified that a PTR mechanism MUST be > ignored nuless FCrDNS matches. (Maybe it does... too lazy to look it > up. :)) Indeed, the SPF spec does say this. So a PTR mechanism isn't completely useless after all. Regards, Dianne.

Re: Legit Yahoo mail servers list

2017-01-26 Thread Dianne Skoll
On Thu, 26 Jan 2017 19:53:42 + David Jones wrote: > I think they publish their SPF like this because they have no good > list of outbound mail servers themselves so they take the lazy > approach. Yahoo invented (or was one of the main inventors) of DKIM, so it could also be

Re: Legit Yahoo mail servers list

2017-01-26 Thread David Jones
>On 01/26/2017 01:29 PM, Reindl Harald wrote: >> >> SPF_NEUTRAL will NEVER hit SPF_PASS and that's the problem with ?all >> >SPF mechanisms are evaluated in order, and each one has a result type >associated with it. The default result is "+" for "pass". Another type >of result is "?" for

Re: Ignore third-party SA headers

2017-01-26 Thread RW
On Thu, 26 Jan 2017 05:12:56 -0500 Ruga wrote: > > Probably what's happening is that these are emails over 500 kB > 500.000 bytes: spamc's default max-size > 512.000 bytes: spamc's local default max-size > 005.155 bytes: size of the specific spam Have you been able to reproduce this by feeding

Re: Legit Yahoo mail servers list

2017-01-26 Thread Michael Orlitzky
On 01/26/2017 01:29 PM, Reindl Harald wrote: > > SPF_NEUTRAL will NEVER hit SPF_PASS and that's the problem with ?all > SPF mechanisms are evaluated in order, and each one has a result type associated with it. The default result is "+" for "pass". Another type of result is "?" for "neutral."

Re: Legit Yahoo mail servers list

2017-01-26 Thread Benny Pedersen
Michael Orlitzky skrev den 2017-01-26 19:24: The OP is looking for a way to whitelist so the "?all" is irrelevant. Does the sending IP pass the SPF check? If so, whitelist it. PTR in spf is very hard to forge treat it as ip4:0.0.0.0/0 -all yahoo do not want to reject based on spf, but still

Re: Legit Yahoo mail servers list

2017-01-26 Thread Michael Orlitzky
On 01/26/2017 12:59 PM, Reindl Harald wrote: > > > Am 26.01.2017 um 18:51 schrieb Michael Orlitzky: >> On 01/26/2017 12:22 PM, David Jones wrote: >>> ... >>> They don't publish a good SPF record so I am not able to add >>> them to my postwhite list. >>> >> >> Isn't that what their SPF record

Suddenly blocking email from SASL authenticated dynamic IP users

2017-01-26 Thread John Stimson
I am running SpamAssassin 3.4.1. It is running as a background daemon, started with: /usr/bin/spamd -d --allow-tell Incoming mail is accepted by postfix 3.1 and submitted via the milter interface to spamass-milter 0.40 for processing in SpamAssassin. My Postfix installation is set up to

Re: Legit Yahoo mail servers list

2017-01-26 Thread Michael Orlitzky
On 01/26/2017 12:22 PM, David Jones wrote: > Anyone know how to get a list of legit mail servers for Yahoo? > They don't publish a good SPF record so I am not able to add > them to my postwhite list. > > # dig yahoo.com txt +short > "v=spf1 redirect=_spf.mail.yahoo.com" > # dig

spamassassin and DLP options

2017-01-26 Thread Alex
Hi, Has anyone done any work with spamassassin and DLP? We're currently using the StructuredDataProtection components in clamav, but would like to do more. I realize it's probably not something SA would do, but do you use a milter of some sort with postfix/amavisd to modify the body, such as for

Legit Yahoo mail servers list

2017-01-26 Thread David Jones
Anyone know how to get a list of legit mail servers for Yahoo? They don't publish a good SPF record so I am not able to add them to my postwhite list. # dig yahoo.com txt +short "v=spf1 redirect=_spf.mail.yahoo.com" # dig _spf.mail.yahoo.com txt +short "v=spf1 ptr:yahoo.com ptr:yahoo.net ?all"

OT: Gmail will block .js file attachments starting February 13, 2017

2017-01-26 Thread Axb
Thanks Google - many will follow. https://gsuiteupdates.googleblog.com/2017/01/gmail-will-restrict-js-file-attachments.html Axb

Re: Ignore third-party SA headers

2017-01-26 Thread Ruga
500.000 bytes: spamc's default max-size 512.000 bytes: spamc's local default max-size 005.155 bytes: size of the specific spam Original Message Subject: Re: Ignore third-party SA headers Local Time: 26 January 2017 2:03 AM UTC Time: 26 January 2017 01:03 From: