RH> RP_MATCHES_RCVD removed 1.7 points
On 11.05.16 16:29, Reindl Harald wrote:
which proves again how badly auto-qa works and why you need to adjust
some rules up to remove them eniterily with a zero score
Am 11.05.2016 um 16:34 schrieb Matus UHLAR - fantomas:
afaik, auto-qa scores _a
s
spam ...
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
Micro$oft random number generator: 0, 0, 0, 4.33e+67, 0, 0, 0...
he log line.
you can simply stop running dccifd daemon. But I recommend configure it in
SA and run it. Not because of the logs, but I assume it's more effcient
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Var
28, 2016, at 2:34 AM, Matus UHLAR - fantomas <uh...@fantomas.sk> wrote:
do you see any DCC_CHECK in spam headers?
On 28.04.16 11:58, @lbutlr wrote:
A few, but they always seem to be “1.1” and they occur in about a third of the
messages in the Spam folder, but the daily report into maillog
appears every day at midnight.
It it matters, SA is being called by amavis.
do you see any DCC_CHECK in spam headers?
do you have dcc_home set up in SA configuration?
If SA does not find dccifd socket, it uses dccproc interface.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk
ses, this is one of them.
"dig any mirrors.updates.spamassassin.org. @b.auth-ns.sonic.net."
produces OK output.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVA
On 30 Mar 2016, at 9:48, Matus UHLAR - fantomas wrote:
On 30.03.16 06:18, redtailjason wrote:
[]
The headers you have posted show mail that only goes through
internal IPs and localhost, that mail doesn't seem to come from
outside.
On 31.03.16 09:23, Bill Cole wrote:
I believe
-
View this message in context:
http://spamassassin.1065346.n5.nabble.com/Configuration-Help-Request-Spoofed-Email-Being-Whitelisted-tp120328.html
Sent from the SpamAssassin - Users mailing list archive at Nabble.com.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I
config at once:
whitelist_from_dkim *@*.bbcmail.co.uk
def_whitelist_auth *@*.bbcmail.co.uk
and run the mail through spamassassin -D
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu
. check for this carefully...
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
BSE = Mad Cow Desease ... BSA = Mad Software Producents Desease
ME/.spamassassin/
would provide the same result, however
- check for _uri_host would find enlist_uri_host and blacklist_uri_host
- should check all HOME directories.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
On Mar 8, 2016, at 7:31 AM, Matus UHLAR - fantomas <uh...@fantomas.sk> wrote:
how can these two stats be different?
On 08.03.16 10:19, @lbutlr wrote:
Because one is for SPAM and one is for HAM.
On Mar 8, 2016, at 10:41 AM, Matus UHLAR - fantomas <uh...@fantomas.sk> wrote:
On Mar 8, 2016, at 7:31 AM, Matus UHLAR - fantomas <uh...@fantomas.sk> wrote:
how can these two stats be different?
On 08.03.16 10:19, @lbutlr wrote:
Because one is for SPAM and one is for HAM.
Why did you remove the important part?
TOP SPAM RULES FIRED
RANKRUL
%OFRULES %OFMAIL %OFSPAM %OFHAM
1 HTML_MESSAGE16473 9.13 50.51 87.85 90.80
how can these two stats be different?
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address
Am 04.03.2016 um 09:29 schrieb Matus UHLAR - fantomas:
I why are you complaining (again), when you can simply zero the score, when
you have no problem highly tuning other scores.
On 04.03.16 10:40, Reindl Harald wrote:
because this thread was about *another* deep header test and wrong
out other common characteristics of messages
hitting those scores and post results here so we see what to exclude.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT
On 03.03.16 16:54, RW wrote:
>RCVD_NUMERIC_HELO is an independent deep check and overlaps heavily
>with either FSL_* rule.
On Thu, 3 Mar 2016 17:59:33 +0100
Matus UHLAR - fantomas wrote:
I wouldn't say so, at least on my system.
% zcat /var/log/mail*.gz | cat - /var/log/mail /var/log/
, at least on my system.
% zcat /var/log/mail*.gz | cat - /var/log/mail /var/log/mail.1 | grep
RCVD_NUMERIC_HELO | grep -c FSL_HELO_BARE_IP
5
% zcat /var/log/mail*.gz | cat - /var/log/mail /var/log/mail.1 | grep
RCVD_NUMERIC_HELO | grep -vc FSL_HELO_BARE_IP
36
--
Matus UHLAR - fantomas, uh...@fant
On 02.03.16 12:48, Roman Gelfand wrote:
>I have awl disabled and dcc checks configured. Why, sometimes,
>spamassassin doesn't do dcc checks?
On Wed, Mar 2, 2016 at 2:50 PM Matus UHLAR - fantomas <uh...@fantomas.sk>
wrote:
that has nothing to do with AWL.
You have already aske
it here?
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
Enter any 12-digit prime number to continue.
;.
quite probably, but it highly depends on how you filter the spam.
For example, using spamassassin/spamc from spamass-milter or per-user
procmail/maildrop filters, the SA can use users' ~/.spamassassin/user_prefs
where the directives are configured.
So, how do you call spamassassin?
--
Matus
, according to http://regexstorm.net/tester that below seems to
work in the meantime
Postfix: 127.0.4.[0..20]
SA: ^127\.0\.4\.(0?[0-1]?[0-9]|20)$
(1?[0-9]|20) should be enough, I think check_rbl doesn't keep leading zeroes
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk
UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
If Barbie is so popular, why do you have to buy her friends?
t must be configured to use them.
I have never heard of this software, and I don't know if it suppports
multiuser setup at all.
I for example use spamass-milter that does, and on some servers amavis and
MailScanner that do not...
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas
You do NOT need "allow_user_rules 1" to use "blacklist_from" and you should
not allow user rules by "allow_user_rules 1"
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie:
, related to charater set conversion that may be
ligitimately done by servers.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
Linux - It's now
l
130
cat maillog | grep FSL_HELO_BARE_IP_2 | grep BAYES_00 | wc -l
93
excuse me, did you get a FP?
Together with BAYES_00?
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem
A1695FF9:
to=<catalin.badi...@domain.com <mailto:catalin.badi...@domain.com>>,
relay=spamfilter, delay=3908, delays=3907/0.04/0/0.47, dsn=4.3.0,
status=deferred (temporary failure. Command output: pipe: fatal:
pipe_command: execvp /home/spamd/spamfilter.sh: No such file or
directory )
-in.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
I don't have lysdexia. The Dog wouldn't allow that.
fails SPF?
http://pastebin.com/36hzGcTs
On 11.12.15 08:56, Matus UHLAR - fantomas wrote:
the envelope sender seems to be
bounce-15_html-74319930-51788793-10834732...@bounce.e.tripadvisor.com
bounce.e.tripadvisor.com seems to have no SPF record, so I also don't
understand why SPF tests should
your MTA should not be refused. However they should use SMTP Authentication
and that should be prevented from SPF checks.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDO
y a server
> >
> > > > > > > that is not in my SPF record.
On Thu, 10 Dec 2015, Matus UHLAR - fantomas wrote:
The SPF fail SHOULD be triggered in that case.
On Thu, Dec 10, 2015 at 10:28 AM, John Hardin <jhar...@impsec.org> wrote:
Matus, I think you misrea
- to limit the number of outgoing DNS requests and
focus on that haven't been done before. That's why SA uses existing headers
like Received: and Received-SPF:
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Var
.
maybe group permissions could be enough: putting spamd to group that has read
permissions on the directory...
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT
mta setup that is
fetched with fetchmail
I would put that one even in the internal_networks, so SA can check hosts
the ISP received mail from...
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie
Matus UHLAR - fantomas skrev den 2015-11-19 10:36:
in any case, spamass-milter will prepend Received: header before
all other
headers, including Received-SPF added by your policy service, which
means SA
won't trust it...
On 19.11.15 11:02, Benny Pedersen wrote:
using spampd here since
On 11/19/2015 10:59, Matus UHLAR - fantomas wrote:
From what I know, the locally added Received: header is not visible in
milter and the spamass-milter must fake it. Therefore, if Received-SPF
exists, the Received: is prepended before it, which explains the issue.
On 19.11.15 11:15, Elod G
Matus UHLAR - fantomas skrev den 2015-11-19 09:59:
From what I know, the locally added Received: header is not visible in
milter and the spamass-milter must fake it. Therefore, if Received-SPF
exists, the Received: is prepended before it, which explains the issue.
On 19.11.15 10:13, Benny
is not visible in
milter and the spamass-milter must fake it. Therefore, if Received-SPF
exists, the Received: is prepended before it, which explains the issue.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address
e 0) for some reason, just you have
turned it on :-)
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
Your mouse has moved. Windows NT will now
made clamscan/clamscan the owner.
-rwxrwxrwx. 1 clamscan clamscan 69 Nov 19 05:09 eicar.txt
[root@ tmp]# clamdscan -c /etc/clamd.d/scan.conf /tmp/eicar.txt
/tmp/eicar.txt: lstat() failed: No such file or directory. ERROR
does clamd run?
Doesn't it run chrooted?
--
Matus UHLAR - fantomas, uh
On 19.11.15 14:29, Elod G wrote:
So I understand the milter protocol requires the own local received
header to not be present, and Postfix hides it from milters
Am 19.11.2015 um 14:01 schrieb Matus UHLAR - fantomas:
the milter protocol requires mail to be passed as received - without
locally
else, to
all other data must be passed through pseudo-headers. Which makes it quite
hard when you need locally added Received: header after data received from
other milter.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising
pam
filter your mail.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
Linux - It's now safe to turn on your computer.
Linux - Teraz mozete p
server for
SpamAssassin to use. You're apparently doing DNS blacklist queries via a
public DNS server (your ISPs?) and the aggregate traffic level is
exceeding the URIBL free usage limits.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail
, why our AMaVis's allowed those faked
bounce-messages with mailware.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
Spam = (S)tupid (P
10.2015 um 13:55 schrieb Matus UHLAR - fantomas:
I don't get this. HELO must be canonical name, so it must not be CNAME.
Thus, there's no need to follow CNAMEs in SPF when checking for HELO.
when you check HELO, the CNAME should be treated as error
On 22.10.15 13:58, Reindl Harald wrote:
result with no holes to
abuse
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
He who laughs last thinks slowest.
things their way just because they are
huge companies and don't care about (even backwards) compatibility and
correctness
Speaking of learning spam… your email address will be joining the blacklist
very soon.
just be careful when blacklisting and spam-training...
--
Matus UHLAR - fantom
d sendmail macro "{i}".
sendmail macrop $i means the queue id. But how does the message look like?
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek rekl
Matus UHLAR - fantomas skrev den 2015-10-16 17:17:
the SPF wasn't reported to fail on own domains. it was reported for
foreign
domains like facebookmail, when coming through secondary MXes, which is
clearly problem of SA configuration...
On 16.10.15 17:51, Benny Pedersen wrote:
in that case
).
This is exactly what internal_networks is for...
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
I just got lost in thought
Matus UHLAR - fantomas skrev den 2015-10-16 14:43:
the MX servers for your domain MUST be listed in internal_network
(and in
trusted_network too).
This is exactly what internal_networks is for...
On 16.10.15 14:58, Benny Pedersen wrote:
just that is not completely true
if spf fails on own
already detect? Should I only be training it
with miscategorized emails and emails in the 20-80% confidence range?
imho, the more uncertain BAYES score is, the more it's usefull to train.
something hitting BAYES_999 is not worth imho.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http
ago...
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
10 GOTO 10 : REM (C) Bill Gates 1998, All Rights Reserved!
:Wed, 23 Sep 2015 11:28:46 GMT
To:helen.papp...@motec.com.au
From:"Incoming Fax" <incoming@motec.com.au>
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu
On 16.09.15 09:50, Bowie Bailey wrote:
The SA config is probably a better solution than the bind exemptions.
I would say just the opposite. For example, MTA at SMTP level can look up
RBLs, and SA would benefit from having records in local cache.
--
Matus UHLAR - fantomas, uh...@fantomas.sk
Am 12.09.2015 um 19:15 schrieb Matus UHLAR - fantomas:
funny, at least debian SA package does download updates at install time...
you obviously have no experience with distributions...
On 12.09.15 19:18, Reindl Harald wrote:
can we stop that stupid discussion?
I just wanted to point out
On 12.09.15 15:27, Reindl Harald wrote:
and no, i am not the package maintainer but the first person who would
file a bug for *any* package which rely on a internet connection due
update
Am 14.09.2015 um 17:25 schrieb Matus UHLAR - fantomas:
in such case it's up to the distributions
Am 12.09.2015 um 16:08 schrieb Matus UHLAR - fantomas:
did this really happen?
On 12.09.15 16:13, Reindl Harald wrote:
what did really happen?
RPM packages are not supposed to contact network *3rd party*
ressources at install time and when you think 1 second you know why -
who tells you
Am 11.09.2015 um 21:08 schrieb Matus UHLAR - fantomas:
if your distribution restarts spamassassin, it will most probably
download the rules before. Not everyone uses distributions...
On 12.09.15 04:20, Reindl Harald wrote:
no, the service restarts are usually rpm-macros in the %post section
Am 11.09.2015 um 21:08 schrieb Matus UHLAR - fantomas:
if your distribution restarts spamassassin, it will most probably download
the rules before. Not everyone uses distributions...
On 12.09.15 04:20, Reindl Harald wrote:
no, the service restarts are usually rpm-macros in the %post section
upgrade
but before the restart?
if your distribution restarts spamassassin, it will most probably download
the rules before.
Not everyone uses distributions...
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
spamassassin see the whole e-mails, including all headers?
the NO_RELAYS test looks like you are not pushing the whole mails to SA,
which significantly decreases score.
Also, do you have way to train your spamassassin with spam? Since all spams
have BAYES_00, you should train them...
--
Matus UHLAR
Am 09.09.2015 um 15:01 schrieb Matus UHLAR - fantomas:
how do you plug spamassassin into your mail flow? How do you call
spamassassin? mta, mail client ... ?
On 09.09.15 16:11, Marc Richter wrote:
I'm running postfix as my MTA. In it's master.cf there is configured
to pipe my mail through
user_prefs
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
Boost your system's speed by 500% - DEL C:\WINDOWS\*.*
message, or at
least all headers and part of the textual body to pastebin?
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
"Where do you want to go to die?" [Microsoft]
and network rules should make SA behave much
better than banned words rules.
Debian 6.0.10
Samassassin 3.3.2-5+deb7u2
perl 5.10.1-17squeeze6
very outdated
this is included in debian 6 LTS
it should still be better to upgrade to more current versions.
--
Matus UHLAR - fantomas, uh...@fantomas.sk
How do you call
spamassassin? mta, mail client ... ?
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
Enter any 12-digit prime number to continue.
stsanding what it may
cause.
it may work, but also may fsck up spam filtering.
I have restarted and will see what happens.
I am using the ubuntu exim-daemon heavy and it calls spamd directly.
that means how?
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I
On 09/09/2015 04:55 PM, Matus UHLAR - fantomas wrote:
On 09.09.15 15:21, Ben Whyall wrote:
I didnt have that option but I did have bayes_sql_username set
I have added the sql_override as well.
I don't think you should set such options without understsanding what it
may
cause.
it may work
eople will argument against this ;-)
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
Chernobyl was an Windows 95 beta test site.
would it work?
Spam is a personal experience. One's spam may be another's ham after
all. Right?
yes, otoh, there are many cases organizations sharing the same database.
is that different on gmail?
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish
ed address, they are
coming via sendmail while the MTA rejects the original
That is the glue, not the SA.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu po
On 02.09.15 17:49, Reindl Harald wrote:
[harry@mail-gw:~]$ cat maillog | grep URIBL_SBL | wc -l
16
wow
what about "grep -c URIBL_SBL maillog"?
http://porkmail.org/era/unix/award.html
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to
system that uses
single account for scoring, you must train that account
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
42.7 percent of all
On Tue, 2015-08-11 at 09:06 +0200, Matus UHLAR - fantomas wrote:
2. how do you run SA? If you are using amavis or other system that
uses
single account for scoring, you must train that account
On 11.08.15 10:04, Martin Skjöldebrand wrote:
This is the output of ps aux | grep spamd
root
wonder if gmail would start marking mail forwarded through your
account as spam...
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
Silvester
On 23.07.15 13:47, basti wrote:
all my incomming mails get always 1.3 RDNS_NONE also with a vaild PTR.
Does your mail server check for reverse DNS?
If not, turn it on.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising
you don't like!
however, for the OP it is another reason not even to score high on BAYES_*
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu
can use a directory: smapassassin -r
/home/bob/Maildir/.Spam/ ?
No: it explicitly says you can only use with message, you must specify
path without the .
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address
is 8.0 - the other rules are there to avoid false-positives and
false-negatives for a good reason
Am 22.07.2015 um 13:40 schrieb Matus UHLAR - fantomas:
So THIS explains, why you blame (us) for every single low-scoring rule for
hitting something you don't like!
On 22.07.15 14:01, Reindl Harald
or spf2.0/pra ?all
Better not. Don't jump on dead horse. Microsoft SPF/2 is dead, let it die
and don't even try to fix things by implementing it, since may break things
working properly.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail
with these SA headers and I remember it was
hard (if not impossible) to find spam report link on their site.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
Honk if you love peace and quiet.
. I don't agree with Harald very often, but I find smtp-time scoring safe,
if properly set up
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu
needs the mail).
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
You have the right to remain silent. Anything you say will be misquoted
, does it?
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
I just got lost in thought. It was unfamiliar territory.
,
SHORT_HELO_AND_INLINE_IMAGE=1.39] autolearn=no
this looks like our customer is using your server as mail relay, without
using SMTP autehntication.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem
to 'localhost'.
It would make more sense if TxRep uses the lastest (first) Received
header setting $helo to 'mail-wi0-f175.google.com'.
shouldn't that logically be more like lasttrusted header?
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e
On 10.06.15 04:34, Amir Caspi wrote:
To: Matus UHLAR - fantomas uh...@fantomas.sk
Cc: users@spamassassin.apache.org
pleaase, avoid personal mail. The list is for public discussion.
Subject: Re: Must-Have Plugins?
On Jun 10, 2015, at 12:32 AM, Matus UHLAR - fantomas uh...@fantomas.sk wrote
there don't have proper rDNS,
how many? I'm happy to block them for years...
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
We
)
TextCat (if you and your users are able to set up ok_languages)
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
BSE = Mad Cow Desease
...
(2) Check the HELO the other guy sends and reject if it's not a FQDN
(i.e. it's not got any periods at all).
or if it's your FQDN, or your IP - they should use their FQDN, not yours.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail
will set their own score (this is enabled by default)
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
I wonder how much deeper the ocean would
+0200, Matus UHLAR - fantomas wrote:
Matus what other things? Journal is here to fasten database updates,
Matus not to avoid database writes. too big journal slows things down.
Matus The main reason to use manual expire is to avoid ocassional
Matus delays with automatic expire noted in the bugreport
, not to avoid
database writes. too big journal slows things down.
The main reason to use manual expire is to avoid ocassional delays with
automatic expire noted in the bugreport you posted link to.
so, again, what are reasons you want to avoid journal syncs?
--
Matus UHLAR - fantomas, uh...@fantomas.sk
3.5 for BAYES_99 just enough - properly
trained BAYES db should be enough.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
Linux - It's now
this is to manually increase score for rules
URIBL_BLACK, SPF_FAIL and BAYES_80 ?
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
- Have you got
on the caching nameserver in my DMZ. Is that
useful in any way to resolve this issue?
you can set up forwarding to the rbldnsd server, if it contains proper
zones.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising
901 - 1000 of 2479 matches
Mail list logo
