Has anyone else noticed this stream of new spamvertized domains :
http://files.jessen.ch/list-of-new-domains
Typically accompanied by messages/subject lines such as:
You should check your status update and see if it changed
This method of language learning is super easy.
Please confirm that
Am 21.03.2012 09:09, schrieb Per Jessen:
Has anyone else noticed this stream of new spamvertized domains :
http://files.jessen.ch/list-of-new-domains
Typically accompanied by messages/subject lines such as:
You should check your status update and see if it changed
This method of
Axb wrote:
SOUGHT rule updates are working again.
That is truly wonderful news! The last update I had was from
2011-11-10. Looking forward to the revivied goodness!
Thanks JM!
Yes. Thanks!
Bob
On Fri, 9 Mar 2012 16:38:49 +0100
Matus UHLAR - fantomas wrote:
You can of course configure mailer to train automatically on anything
received/delivered. However this would apparently cause much more
FP's and FN's rate than letting user train only those that misfire.
On 10.03.12 00:07, RW
I get this in SpamAssassin report:
0.0 RCVD_IN_DNSWL_BLOCKED RBL: ADMINISTRATOR NOTICE: The query to DNSWL
was blocked. See
http://wiki.apache.org/spamassassin/DnsBlocklists#dnsbl-block
for more information.
I use public DNS services
On 3/21/12 5:06 AM, Matus UHLAR - fantomas wrote:
there are two problems when requiring users to manually learn on
everythhing.
- it's more work to implement
- it's more work for users to do the training.
and, if 95% of the users are using microsoft exchange, exchange will
horribly mangle the
On 21.03.12 14:24, Jari Fredriksson wrote:
I get this in SpamAssassin report:
0.0 RCVD_IN_DNSWL_BLOCKED RBL: ADMINISTRATOR NOTICE: The query to DNSWL
was blocked. See
http://wiki.apache.org/spamassassin/DnsBlocklists#dnsbl-block
for more
On 3/21/12 8:24 AM, Jari Fredriksson wrote:
I use public DNS services as forwarders in my LAN dns (bind9). I
remember that once disabled forwarders for some URIBL but the setting is
gone, and I can't find a recipe.
Howto?
don't use public forwarders. unless you are doing 100K dns queries per
On 3/21/12 5:06 AM, Matus UHLAR - fantomas wrote:
there are two problems when requiring users to manually learn on
everythhing.
- it's more work to implement
- it's more work for users to do the training.
On 21.03.12 08:38, Michael Scheidell wrote:
and, if 95% of the users are using microsoft
On 3/21/2012 8:24 AM, Jari Fredriksson wrote:
I get this in SpamAssassin report:
0.0 RCVD_IN_DNSWL_BLOCKED RBL: ADMINISTRATOR NOTICE: The query to DNSWL
was blocked. See
http://wiki.apache.org/spamassassin/DnsBlocklists#dnsbl-block
Am 21.03.2012 13:39, schrieb Matus UHLAR - fantomas:
On 21.03.12 14:24, Jari Fredriksson wrote:
I get this in SpamAssassin report:
0.0 RCVD_IN_DNSWL_BLOCKED RBL: ADMINISTRATOR NOTICE: The query to DNSWL
was blocked. See
21.3.2012 14:40, Michael Scheidell kirjoitti:
On 3/21/12 8:24 AM, Jari Fredriksson wrote:
I use public DNS services as forwarders in my LAN dns (bind9). I
remember that once disabled forwarders for some URIBL but the setting is
gone, and I can't find a recipe.
Howto?
don't use public
On 3/21/2012 9:07 AM, Jari Fredriksson wrote:
I used public forwarderds because app called namebench told me that
they are faster. I need bind for my own LAN, but the rest is server as
is fastest. One is google, other another public one, not google. zone
solutions is how I have it now. Let us
On Wed, 21 Mar 2012 10:06:58 +0100
Matus UHLAR - fantomas wrote:
On Fri, 9 Mar 2012 16:38:49 +0100
Matus UHLAR - fantomas wrote:
No, it isn't. Bayes is a statistical filter it needs to learn a lot
of diverse spam and ham to reach it's optimum accuracy. It's been
demonstrated on Bogofilter
On Wed, 21 Mar 2012 13:44:49 +0100
Matus UHLAR - fantomas uh...@fantomas.sk wrote:
Mangling data by exchange is a big. problem when trying to filter
spam in front of it. I see two ways to avoid this problem:
- use spam server for exchange. We use one from GFI, with quite good
results.
-
On 3/21/2012 9:30 AM, David F. Skoll wrote:
Actually, there's a third way and it's what we do (but difficult to
set up with pure SpamAssassin.) We tokenize inbound messages and store
the tokens on the server. In each message, we add links for doing
training. When you click on a training link,
On Wed, 21 Mar 2012 09:57:33 -0400
Kevin A. McGrail kmcgr...@pccc.com wrote:
[Storing Bayes tokens on the server and retrieving them when training]
Very elegant IMO. I'd love to look at moving some of the framework
to support this into SA. Any objections? Won't be anything quick
but it's a
On 3/21/2012 10:03 AM, David F. Skoll wrote:
On Wed, 21 Mar 2012 09:57:33 -0400
Kevin A. McGrailkmcgr...@pccc.com wrote:
[Storing Bayes tokens on the server and retrieving them when training]
Very elegant IMO. I'd love to look at moving some of the framework
to support this into SA. Any
On 3/21/12 9:57 AM, Kevin A. McGrail wrote:
Very elegant IMO. I'd love to look at moving some of the framework to
support this into SA. Any objections? Won't be anything quick but
it's a really great idea.
We thought about this once.
add (ie: modify body of email) with 'report spam',
Jari Fredriksson wrote:
I get this in SpamAssassin report:
0.0 RCVD_IN_DNSWL_BLOCKED RBL: ADMINISTRATOR NOTICE: The query to
DNSWL
was blocked. See
http://wiki.apache.org/spamassassin/DnsBlocklists#dnsbl-block
for more
On 3/21/2012 10:41 AM, Michael Scheidell wrote:
On 3/21/12 9:57 AM, Kevin A. McGrail wrote:
Very elegant IMO. I'd love to look at moving some of the framework
to support this into SA. Any objections? Won't be anything quick
but it's a really great idea.
We thought about this once.
add
On Wed, 21 Mar 2012 10:41:31 -0400
Michael Scheidell michael.scheid...@secnap.com wrote:
But, what do you do about an email that was forwarded to someone else?
And, that someone else has one of those silly anti-malware plugins
that surfs to every url in any inbound email?
By default, our
On 03/21, Jari Fredriksson wrote:
0.0 RCVD_IN_DNSWL_BLOCKED RBL: ADMINISTRATOR NOTICE: The query to DNSWL
was blocked. See
http://wiki.apache.org/spamassassin/DnsBlocklists#dnsbl-block
for more information.
This is plenty on topic.
21.3.2012 16:45, Per Jessen kirjoitti:
Jari Fredriksson wrote:
I get this in SpamAssassin report:
0.0 RCVD_IN_DNSWL_BLOCKED RBL: ADMINISTRATOR NOTICE: The query to
DNSWL
was blocked. See
http://wiki.apache.org/spamassassin/DnsBlocklists#dnsbl-block
Hello,
I'm having problems with bayes database. When I issue spamassassin --lint
-D, I see a following phrase: bayes: not available for scanning, only 0
spam(s) in bayes DB 200.
However, a bit further I see this: corpus size: nspam = 59870, nham =
185841. What can be the cause of such
On 3/21/2012 11:42 AM, Adrian Gruntkowski wrote:
Hello,
I'm having problems with bayes database. When I issue spamassassin --lint
-D, I see a following phrase: bayes: not available for scanning, only 0
spam(s) in bayes DB 200.
However, a bit further I see this: corpus size: nspam = 59870,
Den 2012-03-21 14:07, Jari Fredriksson skrev:
don't use public forwarders. unless you are doing 100K dns queries
per
day, just use bind and root zones.
if you want information on how to fix bind, then you need the bind
faq/man page/news group.
agre
I used public forwarderds because app
Hello !
I have question why Spamassasssin doesnt add the header SPF_FAIL in
X-Spam-Status ?
s61:~# cat sa.log |grep -i spf
mar 21 22:42:40.285 [20073] dbg: config: read file
/usr/share/spamassassin/25_spf.cf
mar 21 22:42:40.287 [20073] dbg: config: read file
Den 2012-03-21 13:38, Michael Scheidell skrev:
so, what would you manually learn?
using dspam then its not a problem, it only needs dspam signature
internet postfix dspam postfix exchange relay transport
now exchange have the dspam signature and can report back if its spam
or ham,
The message I have tested is spam and I want to add some score when the SPF
failed
but my X-Spam-Status looks like
X-Spam-Status: No, score=4.4 required=5.0 tests=DYN_RDNS_SHORT_HELO_HTML,
FSL_HELO_NON_FQDN_1,HELO_NO_DOMAIN,HTML_MESSAGE,MIME_HTML_ONLY,
On 3/21/2012 5:48 PM, Piotr Kloc wrote:
Hello !
I have question why Spamassasssin doesnt add the header SPF_FAIL in
X-Spam-Status ?
s61:~# cat sa.log |grep -i spf
mar 21 22:42:40.285 [20073] dbg: config: read file
/usr/share/spamassassin/25_spf.cf
mar 21 22:42:40.287 [20073] dbg: config:
The Domain in the From in the envelope, ameriton.com, doesn't publish an SPF
Record:
I know that and I wanted to add some more score when there is no SPF record
its possible to do this with Spamassassin ?
Piotr
Den 2012-03-21 23:00, Piotr Kloc skrev:
The Domain in the From in the envelope, ameriton.com, doesn't
publish an SPF Record:
I know that and I wanted to add some more score when there is no SPF
record
its possible to do this with Spamassassin ?
meta NO_SPF_ON_SENDER_DOMAIN (!SPF_PASS ||
I know that and I wanted to add some more score when there is no SPF
record
its possible to do this with Spamassassin ?
I'm not aware of a no spf record rule but the underlying plugin looks
to support what you want. I think you might find that to be a poorly
performing rule except in meta
I'm going to add this to the default rules with a score 0 so you can
then just give it a score you want.
I also added spf_helo_none
svn commit -m 'Added a default rule for SPF_NONE that is disabled with
Score 0 for administrators to activate'
Sendingrules/25_spf.cf
Sending
On 3/21/12 6:19 PM, Kevin A. McGrail wrote:
I know that and I wanted to add some more score when there is no SPF
record
its possible to do this with Spamassassin ?
I'm not aware of a no spf record rule but the underlying plugin
looks to support what you want. I think you might find that to
36 matches
Mail list logo
