Title: RE: Any comments of the SpamHaus lawsuit?
Hi,
quite frankly: mis-listings occur but if a domain
remains blacklisted after a court case, it
must be for a reason :)
As an email user, I dont want to have to find out that reason :(
As a non-american, I can see this as a
Title: RE: unsubscribe
This email and any files transmitted with it are confidential
and intended for use only by the individual or entity named
above. If you are not the intended recipient or the employee
or agent responsible for delivering this message to the
intended recipient,
Title: RE: Rulesemporium rules
-Original Message-
From: Duncan Findlay [mailto:[EMAIL PROTECTED]]
Sent: Wednesday, October 11, 2006 1:38 AM
To: Dan Horne
Cc: users@spamassassin.apache.org
Subject: Re: Rulesemporium rules
On Tue, Oct 10, 2006 at 04:43:58PM -0400, Dan Horne
Title: RE: Low accuracy ?
-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]
Sent: Wednesday, October 11, 2006 11:06 AM
To: Martin Hepworth
Cc: sarahphia; users@spamassassin.apache.org
Subject: Re: Low accuracy ?
I¿m testing it on the spam
Wait...what?
You want to setup
a server that sends spam?
Why not just make
an email address, stick it on the usenet and post to a few sites, have it get
normal spam, and just test that one address?
Thanks,
Chris Santerre SysAdmin and Spamfighter www.rulesemporium.com www.uribl.com
to be 10!
10) Making top ten lists.
Thanks,
Chris Santerre
SysAdmin and Spamfighter
www.rulesemporium.com
www.uribl.com
Title: RE: Rulesemporium rules
Joe Zitnik wrote:
A simple no would have sufficed.
It wouldn't have been as amusing though :)
LOL, Joe don't get upset. You obviously haven't seen enough of my posts to know what I'm like. :)
We have been testing new stuff all the time. There just
as a relay
or anything like that...
Robert
Peace he would say
instead of goodbyepeace my
brother.
From: Chris
Santerre [mailto:[EMAIL PROTECTED] Sent: Tuesday, October 10, 2006 4:18
PMTo: Robert Swan;
SpamAssassin UsersSubject:
RE
by having to waste resources to get the spam down to your machine. I realise there are people who don't have a choice. Only thing you can do is complain to your ISP.
(The S in ISP is for Service. Most ISPs forget that.)
Thanks,
Chris Santerre
SysAdmin and Spamfighter
www.rulesemporium.com
Title: RE: Syslog gone?
-Original Message-
From: Loren Wilton [mailto:[EMAIL PROTECTED]]
Sent: Friday, October 06, 2006 4:15 AM
To: users@spamassassin.apache.org
Subject: Re: Syslog gone?
/usr/local/bin/spamd -D -x -q -d -m 16 -r
/var/run/spamd.pid -i 127.0.0.1
-A
couldn't resist. I'm in a weird mood today. ;)
Much love for the SURBL team!
Go Patriots!
Thanks,
Chris Santerre
SysAdmin and Spamfighter
www.rulesemporium.com
www.uribl.com
y.
I say my rules aren't ready for publishing because for the public I'd like the rules to be tighter. Prbly used as metas to reduce FPs in general world usage. Anyway, I just wanted to say that sometimes the simple ways still work great!
(Any spelling errors in this post are your fault!)
Than
Title: RE: What's the best method to use SA?
-Original Message-
From: Monty Ree [mailto:[EMAIL PROTECTED]]
Sent: Wednesday, October 04, 2006 12:44 AM
To: users@spamassassin.apache.org
Subject: What's the best method to use SA?
Hello.
I have used SA using with procmail.
Title: RE: FP: URI_NOVOWEL
-Original Message-
From: jdow [mailto:[EMAIL PROTECTED]]
Sent: Friday, September 22, 2006 7:41 AM
To: users@spamassassin.apache.org
Subject: Re: FP: URI_NOVOWEL
From: mouss [EMAIL PROTECTED]
Chris Santerre wrote:
-Original Message
elps a bit!
(For some reason I'm being rejected to posting to SAUSERs with a 500: PHISH elsewhere. Please reply to the list with this for others to see. I'm trying to get it resolved.)
Thanks,
Chris Santerre
SysAdmin and Spamfighter
www.rulesemporium.com
www.uribl.com
Title: RE: FP: URI_NOVOWEL
Apache.org may have their spf configuration hosed. Messages come back
to me from this list with some rather enigmatic SPF comments. First it
says I pass then it says I fail.
Yeah I couldn't even report it without being rejected! I VERY helpful SA dev, who
Title: RE: Antidrug.cf, call to cease RDJ updates.
-Original Message-
From: Doc Schneider [mailto:[EMAIL PROTECTED]]
Sent: Tuesday, September 05, 2006 10:53 PM
To: spamassassin
Subject: Re: Antidrug.cf, call to cease RDJ updates.
DAve wrote:
Rick Macdougall wrote:
Matt
Title: RE: Antidrug.cf, call to cease RDJ updates.
So, here's your first (of 3) warning to disable RDJ for antidrug until
the move is completed. (If you have SA 3.0.0 or higher you
shouldn't be
using antidrug.cf anyway).
I still get hits to the original SARE website! This is like 2
Title: RE: Enumerating the robots?
-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]
Sent: Tuesday, September 05, 2006 11:17 AM
To: Chris Santerre
Cc: '[EMAIL PROTECTED]'; SpamAssassin Users List
Subject: Re: Enumerating the robots?
Chris Santerre
@spamassassin.apache.org
Action: failed
Status: 5.7.1
But it also gave the same for J.Mason's email that was CC'd to my reply to SATALK. WTF
Anyone else?
Thanks,
Chris Santerre
SysAdmin and Spamfighter
www.rulesemporium.com
www.uribl.com
Title: RE: Hacked E-Trade Phishing Site
-Original Message-
From: Gino Cerullo [mailto:[EMAIL PROTECTED]]
Sent: Friday, September 01, 2006 9:25 AM
To: users@spamassassin.apache.org
Subject: Re: Hacked E-Trade Phishing Site
On 1-Sep-06, at 9:12 AM, Bowie Bailey wrote:
Title: RE: AWL confusion.. (drinking game)
I thought these two had made it into the Wiki :)
Its SATALK comedy gold!
-Original Message-
From: guenther [mailto:[EMAIL PROTECTED]]
Sent: Thursday, May 26, 2005 2:52 PM
To: Craig Jackson
Cc: users@spamassassin.apache.org
Subject: Re:
Title: RE: FuzzyOcr mailing list
-Original Message-
From: jdow [mailto:[EMAIL PROTECTED]]
Sent: Friday, August 18, 2006 5:43 AM
To: users@spamassassin.apache.org
Subject: Re: FuzzyOcr mailing list
From: Jonathan Allen [EMAIL PROTECTED]
Chris wrote:
because I feel
Title: Spammers have found a way around URIBL!
a href="" href="http://" TARGET="_blank">http://strongvisit our website/strong/a
*giggle*
Silly Spammers! Now that truely was a pointless spam.
Thanks,
Chris Santerre
SysAdmin and Spamfighter
www.rulesemporium.com
www.uribl.com
|se\.client..?\.attbi\.com|\.(east|west)\.verizon\.net|(nj|sc)\.comcast\.net|\.dis.net|\.charter.com|metropolis\-inter\.com/i
describe MY_DSL Contains likely dsl address in header
score MY_DSL 3.0
Thanks,
Chris Santerre
SysAdmin and Spamfighter
www.rulesemporium.com
www.uribl.com
:08PM -0400, Chris Santerre wrote:
Ok, no. SARE and the official SA are worlds apart. SARE has
been setup to be
QUICK and accurate. SA is accurate. SARE wants to get good
rules out when
they are needed. Now saupdate make the DELIVERY of that
possible. But the
creation of rules
Title: RE: breaking out: thinking abt the 'sa-update *VS* rdj' thread .. .
*sigh*
I fear my last reply may either
1) Drive a wedge between SA and SARE
2) Make ppl think SARE vs SA is the norm.
I assure everyone that SA and SARE have helped eachother a TON. Many of our requests for help
indicated it believes Hawke buried the loot on his parents' property using a shovel.
Thanks,
Chris Santerre
SysAdmin and Spamfighter
www.rulesemporium.com
www.uribl.com
choose to get the rules shouldn't be our decision. I'll see if I can drum up stats on most downloaded rules.
I'll also see about getting the header on the ImageInfo plugin standardised.
Chris Santerre
SysAdmin and Spamfighter
www.rulesemporium.com
www.uribl.com
.cf
24 /rules/70_sare_obfu.cf
25 /rules/70_sare_obfu1.cf
26 /rules/70_sare_stocks.cf
27 /rules/70_sare_html1.cf
28 /rules/70_sc_top200.cf
29 /rules/70_sare_highrisk.cf
30 /rules/70_sare_genlsubj1.cf
Chris Santerre
SysAdmin and Spamfighter
www.rulesemporium.com
www.uribl.com
Title: RE: sa-update vs RDJ
-Original Message-
From: Theo Van Dinter [mailto:[EMAIL PROTECTED]]
Sent: Friday, August 11, 2006 11:45 AM
To: Chris Santerre
Cc: users@spamassassin.apache.org
Subject: Re: sa-update vs RDJ
On Fri, Aug 11, 2006 at 11:42:57AM -0400, Chris
Title: RE: [ot] Re: HTML-tests good or bad?
-Original Message-
From: John Rudd [mailto:[EMAIL PROTECTED]]
Sent: Friday, August 11, 2006 12:50 AM
To: jdow
Cc: users@spamassassin.apache.org
Subject: Re: [ot] Re: HTML-tests good or bad?
On Aug 10, 2006, at 8:42 PM, jdow
Title: RE: Word Doc spam
-Original Message-
From: Rob Poe [mailto:[EMAIL PROTECTED]]
Sent: Thursday, August 10, 2006 5:40 PM
To: Kenneth Porter; users@spamassassin.apache.org
Subject: Re: Word Doc spam
I got one of these too...
Kenneth Porter [EMAIL PROTECTED] 8/8/2006
that the SA project will never have.
So you have 2 completely seperate ideals of rules. The method of which you choose, and how you aquire is up to you.
Thanks,
Chris Santerre
SysAdmin and Spamfighter
www.rulesemporium.com
www.uribl.com
Title: RE: Word Doc spam
Are there other subjects, or just these two:
Bill Summary - Invoice #.
August Payment Summary, Invoice #.
I'm only seeing those 2. But you can't really right a rue for just that without major FPs. Going to have to meta with another sign.
--Chris
Title: RE: breaking out: thinking abt the 'sa-update *VS* rdj' thread ...
and, the OTHER project in this discussion -- SARE -- leaning
on your own
argument, is pointedly NOT undertaking to use/conform to sa's
'official' tools capabilities -- namely, sa-update as a delivery
mechanism.
Title: RE: HTML-tests good or bad?
ROFL!! I just saw this thread!
I haven't played hockey since January :( And still my spelling hasn't improved!
I am in fact, a product of the US skool system ;)
And if you're a Boston Bruins Hockey fan, today is a GREAT DAY!
Title: RE: HTML-tests good or bad?
-Original Message-
From: Loren Wilton [mailto:[EMAIL PROTECTED]]
Sent: Friday, August 04, 2006 7:36 AM
To: users@spamassassin.apache.org
Subject: Re: HTML-tests good or bad?
Hi, I am wondering whether using HTML_MESSAGE makes any sense.
HTML_MISSING_CTYPE (!__MIME_HTML HTML_MESSAGE)
meta OBFUSCATING_COMMENT ((__OBFUSCATING_COMMENT_A
HTML_MESSAGE) || (__OBFUSCATING_COMMENT_B MIME_HTML_ONLY))
What am I overlooking?
www.rulesemporium.com ;)
Chris Santerre
SysAdmin and SARE/URIBL ninja
http://www.uribl.com
http
Title: RE: Image spams getting thru
-Original Message-
From: Loren Wilton [mailto:[EMAIL PROTECTED]]
Sent: Wednesday, August 02, 2006 3:17 PM
To: users@spamassassin.apache.org
Subject: Re: Image spams getting thru
Will work wonders till they change the filename.
It's
Title: RE: bottleneck analsyis on spamassassin
-Original Message-
From: Ramprasad [mailto:[EMAIL PROTECTED]]
Sent: Wednesday, July 26, 2006 6:54 AM
To: spamassassin-users
Subject: bottleneck analsyis on spamassassin
Hi,
Spamassassin has so many dependencies on various
to be rather expensive. And similar results could be had with bayes already.
Chris Santerre
SysAdmin and SARE/URIBL ninja
http://www.uribl.com
http://www.rulesemporium.com
Title: RE: Endividual user settings for Spam , advice needed
-Original Message-
From: John Andersen [mailto:[EMAIL PROTECTED]]
Sent: Wednesday, July 26, 2006 4:54 AM
To: users@spamassassin.apache.org
Subject: Re: Endividual user settings for Spam , advice needed
On
Title: RE: SA Score - Confidence Percentage
-Original Message-
From: John Rudd [mailto:[EMAIL PROTECTED]]
Sent: Wednesday, July 26, 2006 10:44 AM
To: Chris Santerre
Cc: Sietse van Zanen; SpamAssassin Users
Subject: Re: SA Score - Confidence Percentage
On Jul 26, 2006
frothing at the mouth. They will attempt to game your setup.
5) You need a whole infrastructure of mirrors if it goes real world live.
6) The hatred of the NY Yankees by Red Sox fans is ever increasing.
I wish you the best of luck in the project.
Chris Santerre
SysAdmin and SARE/URIBL ninja
and her husband, not her full name. So she has no idea where they got this info.
It was already caught as spam, but it definetly has the user a bit nervous. Looks like the targeted spams to bypass bayes filters is on the rise.
Anyone else see one of these from genutrust?
Chris Santerre
SysAdmin
second to a well tuned SA setup. Frankly, I think we are kicking their ass.
Image spam, bah! They are filled with numerous other flags.
Chris Santerre
SysAdmin and SARE/URIBL ninja
http://www.uribl.com
http://www.rulesemporium.com
on these. Obviously I'm not going to post them here, as spammers would just insert that stuff into their spam.
I suggest you just write a few simple rules that reduce the points for airline emails. I really wish the airlines would learn to write better confirmations emails.
Chris Santerre
SysAdmin
Title: Dev list on an RBL
dev@spamassassin.apache.org mailing list
Blockedby cbl.abuseat.org
Oh noes! :)
Chris Santerre
SysAdmin and SARE/URIBL ninja
http://www.uribl.com
http://www.rulesemporium.com
Title: RE: Dev list on an RBL
-Original Message-
From: Daryl C. W. O'Shea [mailto:[EMAIL PROTECTED]]
Sent: Tuesday, June 27, 2006 3:22 PM
To: Chris Santerre
Cc: SaTalk (E-mail)
Subject: Re: Dev list on an RBL
Chris Santerre wrote:
dev@spamassassin.apache.org mailing
Title: RE: How to avoid MSGID_DOLLARS, PRIORITY_NO_NAME, RATWARE_OUTLOOK_NONAME
-Original Message-
From: markwolk [mailto:[EMAIL PROTECTED]]
Sent: Friday, June 23, 2006 5:53 AM
To: users@spamassassin.apache.org
Subject: How to avoid MSGID_DOLLARS, PRIORITY_NO_NAME,
Title: RE: sudden deluge of university spams
-Original Message-
From: Ramprasad [mailto:[EMAIL PROTECTED]]
Sent: Thursday, June 22, 2006 2:39 AM
To: users@spamassassin.apache.org
Subject: sudden deluge of university spams
Hi,
My servers are suddenly facing a deluge of
Title: RE: HUMOR: Gap needs to fire Marketing people.
Just trying to reach someone in the company who:
1) Understands what I'm talking about
2) Gives a sh1t
3) Has the power to change the problem.
is too long of a battle. I've got enough trouble educating
our vendors and
Title: RE: sudden deluge of university spams
-Original Message-
From: Craig Baird [mailto:[EMAIL PROTECTED]]
Sent: Thursday, June 22, 2006 11:46 AM
To: users@spamassassin.apache.org
Subject: RE: sudden deluge of university spams
Quoting Chris Santerre [EMAIL PROTECTED
Title: RE: HUMOR: Gap needs to fire Marketing people.
-Original Message-
From: Alan Premselaar [mailto:[EMAIL PROTECTED]]
Sent: Tuesday, June 20, 2006 10:53 PM
To: Chris Santerre
Cc: SaTalk (E-mail)
Subject: Re: HUMOR: Gap needs to fire Marketing people.
-BEGIN PGP
to be flagged as spam. (And it was flagged on our system!)
Chris Santerre
SysAdmin and SARE/URIBL ninja
http://www.uribl.com
http://www.rulesemporium.com
Title: RE: HUMOR: Gap needs to fire Marketing people.
-Original Message-
From: Matt Kettler [mailto:[EMAIL PROTECTED]]
Sent: Tuesday, June 20, 2006 10:36 AM
To: Dallas L. Engelken
Cc: SaTalk (E-mail)
Subject: Re: HUMOR: Gap needs to fire Marketing people.
Dallas L.
X-Spam-Status: No, score=4.4 required=5.0 tests=EXTRA_MPART_TYPE,
FORGED_RCVD_HELO,HTML_90_100,HTML_IMAGE_ONLY_16,HTML_MESSAGE,
MIME_HTML_MOSTLY,MPART_ALT_DIFF,MY_ALT,MY_HELO,SPF_HELO_PASS
I'll have to adjust for those 2. :)
Chris Santerre
SysAdmin and SARE/URIBL ninja
http
, or a This is a spamish domain.?
Greet pause would be used in Sendmail. grey.uribl.com would be used for the later.
http://www.uribl.com/usage.shtml
Chris Santerre
SysAdmin and SARE/URIBL ninja
http://www.uribl.com
http://www.rulesemporium.com
Title: RE: spamassassin on a mail relay
-Original Message-
From: Rick Macdougall [mailto:[EMAIL PROTECTED]]
Sent: Monday, June 19, 2006 11:52 AM
To: users@spamassassin.apache.org
Subject: Re: spamassassin on a mail relay
Michael Grant wrote:
Do any of you out there run
that uses
the entire
message, not only single lines. Content can be arbitrary
split over many
lines so that any 'rawbody' rule can become useless pretty fast. :(
Why not just use black.uribl.com ? It lists PHISHes.
Chris Santerre
SysAdmin and SARE/URIBL ninja
http://www.uribl.com
http
Title: Block: Google servers still on RBLs?
I know this has been discussed before, but is there a reason google is still on RBLs?
Nz-out-0102.google.com
64.233.162.203 listed on bl.spamcop.net 127.0.0.2
Chris Santerre
SysAdmin and SARE/URIBL ninja
http://www.uribl.com
http
the server down, cut that set in half, test. Continue half'ing until you find the culprit. Post the rule(s) here and we can try to help.
Chris Santerre
SysAdmin and SARE/URIBL ninja
http://www.uribl.com
http://www.rulesemporium.com
be afraid to learn something new, and use the darn console! Webmin won't always be there for you! ;)
Chris Santerre
SysAdmin and SARE/URIBL ninja
http://www.uribl.com
http://www.rulesemporium.com
and Dynamic DSL Pool RBLs are extremely helpful. ANd I'm sure if I turned them off, my phone would be ringing off the hook. Instead of teh once a quarter call for whitelisting someone.
Chris Santerre
SysAdmin and SARE/URIBL ninja
http://www.uribl.com
http://www.rulesemporium.com
use Spamassasin with rulesdujours and the SARE rules ...
Can i use SARE rules and URIBL ??
What are the best?
Yes. URIBL is a network test.
www.uribl.com
Chris Santerre
SysAdmin and SARE/URIBL ninja
http://www.uribl.com
http://www.rulesemporium.com
Title: RE: How-to find the good rules for some spam ??
-Original Message-
From: Michele Neylon :: Blacknight.ie [mailto:[EMAIL PROTECTED]]
Sent: Thursday, June 08, 2006 3:15 PM
To: users@spamassassin.apache.org
Subject: Re: How-to find the good rules for some spam ??
Num
, these 'tests' give the RBL guys heads up on the Zombie IPs. Its kind of pointless and sillybut then again, I guess thats expected :)
Chris Santerre
SysAdmin and SARE/URIBL ninja
http://www.uribl.com
http://www.rulesemporium.com
Spamassassin -D --lint
Might show you
where its getting hung up. Also where did you exactly add the rule
HTMAL_MESSAGE? What file, what dir?
Can you run TOP
and see your memory usage?
--Chris
-Original Message-From: yossim
[mailto:[EMAIL PROTECTED]Sent: Friday, June 02,
to get a standard naming scheme. Its a great idea, that simply won't get followed.
And it might FP less. I can get lots of Ham that hits PORN_ rules. I have lots of friends with potty mouths :)
Chris Santerre
SysAdmin and SARE/URIBL ninja
http://www.uribl.com
http://www.rulesemporium.com
Title: RE: list of rules
-Original Message-
From: Theo Van Dinter [mailto:[EMAIL PROTECTED]]
Sent: Thursday, May 18, 2006 8:17 PM
To: users@spamassassin.apache.org
Subject: Re: list of rules
On Thu, May 18, 2006 at 06:52:23PM -0400, Matt Kettler wrote:
is there a list
Title: RE: Proposal: First URI black list, how about email address black lists?
-Original Message-
From: Marc Perkel [mailto:[EMAIL PROTECTED]]
Sent: Thursday, May 18, 2006 11:09 AM
To: jdow
Cc: users@spamassassin.apache.org
Subject: Re: Proposal: First URI black list, how
Title: RE: Proposal: First URI black list, how about email address blacklists?
-Original Message-
From: Rob McEwen (PowerView Systems) [mailto:[EMAIL PROTECTED]]
Sent: Thursday, May 18, 2006 1:48 PM
To: users@spamassassin.apache.org
Subject: Re: Proposal: First URI black list,
Title: RE: Minimizing spamd's memory footprint
Holy crap! Is blacklist_URI the wstearns port over? Good grief don't use that! Just use SURBL or URIBL. That list would most definetly crush your server and get your cat pregnant!
--Chris
-Original Message-
From: Matt Kettler
Title: RE: So, when do we start handling [dot] in a URI
-Original Message-
From: Dallas L. Engelken
This cycle will never stop until people stop pumping money into porn,
Hey now!!! Lets not get crazy!! :)
--Chris
Title: RE: limit child process
-Original Message-
From: Jean-Paul Natola [mailto:[EMAIL PROTECTED]]
Sent: Wednesday, May 10, 2006 8:28 AM
To: ; Matt Kettler
Cc: users@spamassassin.apache.org
Subject: RE: limit child process
| Spamd calls it,
|
| But I have seen
Title: RE: My only problem with URIBL_BLACK
On a side note, to anyone watching this seemingly incredible long discusion about one FP:
This is typically what URIBL member do. We take every FP and delist request seriously. We do deep research on each one. Much deeper then anything you have
a bandaid.
Chris Santerre
SysAdmin and SARE/URIBL ninja
http://www.uribl.com
http://www.rulesemporium.com
Title: RE: My only problem with URIBL_BLACK
| But.
|
| There are some spammers who run subscribe to mailing lists.
|
| I got spam at home the other day from ediets.co.uk, for example.
|
| I call this stuff subscription spam and would block most
of it anyway.
|
| Cheers,
|
Title: RE: Latest sa-stats from last week
| I'm in a similar situation as Bowie. I had to turn of Bayes
| as mail that was obviously spam was getting a Bayes_0 pulling
| the # back down under the threshold.
|
|
| so why not just score BAYES_00, BAYES_20, etc all at at
0...
on craigslist? :)
Anyone near Blair want to grab some photos of the place for fun?
Chris Santerre
SysAdmin and SARE/URIBL ninja
http://www.uribl.com
http://www.rulesemporium.com
Title: RE: My only problem with URIBL_BLACK
I've scored GREY at 0.1 as an informational rule. It's S/O is
so poor it is more
qualified to be a nonspam rule. ( 0.354 in the nightly
mass-check Theo posted)
Thats actually perfect. Exactly what it was designed to be :)
Had it been
Title: RE: My only problem with URIBL_BLACK
-Original Message-
From: Matt Kettler [mailto:[EMAIL PROTECTED]]
Sent: Tuesday, May 09, 2006 1:32 PM
To: Chris Santerre
Cc: users@spamassassin.apache.org
Subject: Re: My only problem with URIBL_BLACK
Chris Santerre wrote
Title: RE: My only problem with URIBL_BLACK
-Original Message-
From: Matt Kettler [mailto:[EMAIL PROTECTED]]
Sent: Tuesday, May 09, 2006 2:12 PM
To: Chris Santerre
Cc: users@spamassassin.apache.org
Subject: Re: My only problem with URIBL_BLACK
Chris Santerre wrote
Title: RE: My only problem with URIBL_BLACK
-Original Message-
From: [mailto:[EMAIL PROTECTED]]
Sent: Tuesday, May 09, 2006 3:12 PM
To: Chris Santerre; 'Matt Kettler'
Cc: users@spamassassin.apache.org
Subject: Re: My only problem with URIBL_BLACK
RE: My only problem
are using spamc/spamd or Amavis.
These programs run as daemons and only have to load everything once.
The spamassassin program should only be used for testing.
And you can limit the instances of spamc being called with the -m option.
Chris Santerre
SysAdmin and SARE/URIBL ninja
http
.. 5 minutes of research reveals otherwise.
So what is the point of this messege I'm out of coffee :D
Chris Santerre
SysAdmin and SARE/URIBL ninja
http://www.uribl.com
http://www.rulesemporium.com
and check against SURBL/URIBL.
Many thanks to Tinyurl for using the service. And of course thanks to Jeff.
Chris Santerre
SysAdmin and SARE/URIBL ninja
http://www.uribl.com
http://www.rulesemporium.com
.
Chris Santerre
SysAdmin and SARE/URIBL ninja
http://www.uribl.com
http://www.rulesemporium.com
with MY is something I've written for here. And may or may not have been converted to a SARE rule.
HTH,
Chris Santerre
SysAdmin and SARE/URIBL ninja
http://www.uribl.com
http://www.rulesemporium.com
--
No virus found in this outgoing message.
Checked by AVG Free Edition.
Version: 7.0.385 / Virus
Title: RE: new type of email spam
I seem to stop a ton of them. I'll post what rules are hitting when the next one comes in. Sorry, I just finished clearing thru todays fresh catches and then read this thread :)
-Chris
-Original Message-
From: Ronald I. Nutter [mailto:[EMAIL
What
the fork happens to perl?? :)
Seriously, how
does the code handle all this memory wise? I have to say, I've never even
thought of doing this. It looks like it might have some interesting purposes.
But for the most part, I can't think of what you would use it for. I can't think
of a
for someone else to recommend it :)
Chris Santerre
SysAdmin and SARE/URIBL ninja
http://www.uribl.com
http://www.rulesemporium.com
Title: RE: standard vs SARE rules
WooHoo! 70_sare_stocks.cf hits my favorite number! Sorry just
had to say
that! 8*))
And of course that means it is working good too!
For those who don't know I'm the maintainer of that SARE ruleset.
Yeahbut which rules in the stock set hit
Title: RE: standard vs SARE rules
From that I would infer that the SARE stock ruleset is the
most effective -
it was responsible for 5 out of 163 spams being identified.
That leaves the
other files I use - 70_sare_bayes_poison_nxm.cf, 70_sare_html0.cf,
70_sare_obfu0.cf,
This
might help:
http://mail-archives.apache.org/mod_mbox/spamassassin-users/200505.mbox/[EMAIL PROTECTED]
:)
-Original Message-From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED]Sent: Tuesday, April 18, 2006 10:33
AMTo: users@spamassassin.apache.orgSubject: AWL - Where,
a lot more people will fall for this junk. Everyone is paranoid about phishes, that I'm sure users will fall for trying to protect themselves from it, only to be caught up in it.
Chris Santerre
SysAdmin and SARE/URIBL ninja
http://www.uribl.com
http://www.rulesemporium.com
. The bad thing is, you don't get to meet all the cool people who attend.
I basically have it running in the background while I work. This year supposedly has more proactive measures.
http://news.com.com/Antispam+confab+looks+beyond+filters/2100-7348-6055171.html?part=dht=nl.e703
Chris Santerre
.
**
This was caught with a score of 7.4 so my users never saw it. Again, I'm just posting with the hope that we can
1) Warn users about this. Repeatedly ;)
2) Get the site shutdown.
Chris Santerre
SysAdmin and SARE/URIBL ninja
http://www.uribl.com
http
5 things you can do to make it easier. Between SARE, URIBLs, Bayes, and AWL, you should only have to check up on the system a few times a week. If that!
Chris Santerre
SysAdmin and SARE/URIBL ninja
http://www.uribl.com
http://www.rulesemporium.com
101 - 200 of 524 matches
Mail list logo
