Matt Kettler wrote:
Daniel J McDonald wrote:
On Fri, 2007-10-26 at 08:16 -0400, Matt Kettler wrote:
Justin Mason wrote:
What else can we do?
Add code to generate a lint warning any time a .cf file over 1mb is read
unless a config option is
Olivier Nicole wrote:
It's not a matter of cultural imperialism, if that's what you're getting at.
It's an acknowledgment of the importance of the rule of law in cyberspace.
Except that I don't think it is anything close to a rule of law, but
rather a sign of short view.
As I said, I
Matus UHLAR - fantomas wrote:
Olivier Nicole wrote:
The attitude goes by organisation, not by country.
On 06.11.07 08:37, mouss wrote:
we know almost all countries. I don't even know a small part of the
organizations in my own town. and there is no DNS equivalent of whois
Marcin Praczko wrote:
It is possible add some text to Subject: For example [SPLIST] - to make
easier set up filter for emails?
How about having the logo in png format on the subject line :)
List managers (and other software) should not alter email unless
absolutely necessary. This
Philip Prindeville wrote:
[snip]
Could they have just *deleted* the Received: lines they didn't want to
show? No, of course not. That would be too easy. Let's mangle them
into something that doesn't conform to RFC-822 instead.
As it is, they were leaking hostnames through the Reference:
Olivier Nicole wrote:
meant there
is no dns list for organizations. something like
# lookup_company_by_ip 192.0.2.1
Reverse DNS on the contacting mail gateway?
that only gives the domain name. but a single organization may have
multiple domains, and in many cases it is hard to
Kelson wrote:
Rob Sterenborg wrote:
SM wrote:
The spam content shouldn't even be getting through as the recipient
address is invalid.
Unless you don't know who your recipients are, which may be the case
when operating a mailrelay. (I'm not saying that such situation is
optimal...)
Or
Noiano wrote:
Hello folks
I have a little problem. My email provider has a spam filter which
marks all spam email with [Suspected Spam] in the subject of the
spam message. Now I would like that SpamAssassin when finds that
pattern in the subject immediately breaks any analysis and mark the
Micah Anderson wrote:
* [EMAIL PROTECTED] [EMAIL PROTECTED] [071119 10:01]:
N PS: I post to this list using gmane. Is it possible to stop delivery
N on my email address so that I can post but I do not receive the list
N messages?
http://www.google.com/[EMAIL PROTECTED]
Can this
Jack Gostl wrote:
I was trying to figure out why a piece of spam got through with no
spamassassin headers at all. I finally found this message in my log:
spamc[523292]: skipped message, greater than max message size (256000
bytes)
The message was close to 2mb, including a very, very
Mike Kenny wrote:
I hope to use this to cut down on spam and phishing attempts, because
I could identify legitimate mail by virtue of having the correct
sender address (or at least domain) and recipient. That is, mail from
[EMAIL PROTECTED] mailto:[EMAIL PROTECTED] to the
Michael Scheidell wrote:
[mss: I looked on the list, didn't see this mentioned.. maybe
SpamAssassin(tm) can reapply for a registered trademark now.]
On Nov. 21, the Trademark Trial and Appeal Board _dismissed_
Martin.Hepworth wrote:
Looks mangled to me - but then I ain't French ;-)
if quoted printable is mangled, then you'll block a lot of mail.
and it's a signature that advertizes for a microsoft site. feel free to
block it, but ...
Matt Kettler wrote:
mouss wrote:
If I understand, spam is a generic word. I am also convinced that
arrest is a generic word. Now accepting spam arrest as a trademark
is beyond me, as is all this trademark and patent stuff...
You can use generic words in trademarks (ie: Windows
Jared Hall wrote:
There was no SPAM before Hormel invented it
and it most certainly can be trademarked -
just like threepeat.
For at least five years that I know of, Hormel
didn't object to anyone using spam as long as
it was not all upper-case, and published such
in their trademark use
Morvan Daniel Müller wrote:
I use amavisd-new, entries into amavisd.conf:
@blacklist_sender_maps = read_hash($MYHOME/black_sender.lst);
@whitelist_sender_maps = read_hash($MYHOME/white_sender.lst);
read_hash(\%spam_lovers, '/var/spool/amavisd/spam_lovers.lst');
Into this files I put one
Jonas Eckerman wrote:
Vivek Khera wrote:
On Nov 29, 2007, at 10:19 AM, Mike Jackson wrote:
It also confirms that your SMTP banner greeting matches the reverse
DNS.
Who requires this?
The hostname in the banner is usually the same hostname as in
HELO/EHLO, and it's often a good idea to
Matthias Haegele wrote:
mouss schrieb:
Morvan Daniel Müller wrote:
I use amavisd-new, entries into amavisd.conf:
@blacklist_sender_maps = read_hash($MYHOME/black_sender.lst);
@whitelist_sender_maps = read_hash($MYHOME/white_sender.lst);
read_hash(\%spam_lovers, '/var/spool/amavisd
Jack Gostl wrote:
- Original Message - From: mouss [EMAIL PROTECTED]
To: Spamass users@spamassassin.apache.org
Sent: Saturday, November 24, 2007 1:19 PM
Subject: Re: Message bypassed
2 Mo spam? is this a new trend? Can you put a copy somewhere?
I've got another of those 2mb spams
Johnson, S wrote:
I just upgraded my Spamassassin/postfix/amavisd/sqlgrey to the current
version and now have a few users from MSN and Yahoo reporting an error
similar to this:
554 5.6.0 Reject, is=26786-18 - Bad_Header: Duplicate header field:
Message-ID
This nondelivery report was
[EMAIL PROTECTED] wrote:
Hi gurus,
Recently, I've upgraded to spamassassin 3.2.0 called from amavisd-new.
I've seen that this version is more agressive, and for example it
detect as spam
a legitimate email with next score:
X-Spam-Status: Yes, score=4.884 tagged_above=-999 required=3.5
Kevin W. Gagel wrote:
- Original Message -
your amavisd-new is configured to reject mail with bad headers. as you
see, this block legitimate mail.
note that since your amavisd-new is sending bounces, you are a potential
backscatter source. do not bounce mail after it was accepted
Kevin W. Gagel wrote:
- Original Message -
From: mouss [EMAIL PROTECTED]
To:
Cc: users@spamassassin.apache.org
Subject: Re: Duplicate header question
Date: Tue, 04 Dec 2007 23:47:21 +0100
Kevin W. Gagel wrote:
- Original Message -
your amavisd-new
Jonas Eckerman wrote:
mouss wrote:
since the banner usually presents the same hostname as HELO/EHLO,
the test can still be useful.
I am about the usually. consider a setup
[examples snipped...]
I did consider those setups when I wrote my message. Usually is
*not* the same as allways
Jonas Eckerman wrote:
mouss wrote:
It also confirms that your SMTP banner greeting matches the reverse
DNS.
Who requires this?
The hostname in the banner is usually the same hostname as in
HELO/EHLO, and it's often a good idea to HELO/EHLO with a hostname
that matches RDNS.
You
McDonald, Dan wrote:
On Fri, 2007-12-07 at 11:15 -0500, Rich Dygert wrote:
Folks
I am the postmaster for @compuserve.com and @csi.com (the i is
important, @cs.com is someone else).
A couple months ago my email traffic doubled (from 1 million a day to 2
million a day). After some
Loren Wilton wrote:
So it doesn't happen that often. I did try writing an SA header rule
for these first, but it appears that SA strips out 'X-Spam-Flag'
headers out before the rules are run.
SA Strips out X-Spam-* on the assumption that it previously added
them. Previous to 3.0 it did this
gpr wrote:
Hi,
I am looking for a utility which can dump the mails from SpamAssassin public
corpus to an outlook or outlook express folder?
what problem are you trying to solve? outlook and corpus are two distant
words, why would anyone merge them?
if using imap, you can do anything on
Kelson wrote:
Ken Goods wrote:
Spamassassin only scores emails. You'll need another application to do
something with them. I use MailScanner and what you need is easily
done with
it. It gives you many other options as well. I think Amavis-new and
Mailwatch may do the same thing but have no
Per Jessen wrote:
Matt Kettler wrote:
That's easily checked - we could run a comparison of any up-to-date
geoip database against blackholes.us.
True.
Well, I've answered my own question. I ran a test of maxmind addresses
dated 2007/04/04 against the blackholes.us data
Sg wrote:
hi all,
How can I test my email to get spam score before sending?
If you mean how to make sure that my email won't get tagged as spam by
others, then the short answer is don't send spam and it should be ok.
There is no other answer (spammers and wanna spammers would love to see
B3r3n wrote:
Hi Jari,
Thanks for your answer.
Jari Fredriksson wrote:
Not much help from this, but I wonder how this goes... Normally, standard
Amavis does not call spamd at all, but loads it's own copy of spamassassin
- as they both run under perl, and amavis is a resident process.
John D. Hardin wrote:
On Sat, 29 Dec 2007, mouss wrote:
Oooo! Script critique! My turn!
# Filter for Spam
cat | $SPAMASSASSIN out.$$
cat out.$$ | /usr/sbin/sendmail -io -f $ORIGIN $TARGET
I too love cats. but $cmd $file does the same as
cat $file | $cmd.
Why even
Laurent LEVIER wrote:
At 02:36 29/12/2007, mouss wrote:
what is smtpd-laurent? symlink hacks aren't recommended. if you want
different logs, use multiple instances.
That's a jail. If you dont setup something to discriminate process
between them, 8 jails will produce 8 smtpd in the global ps
Laurent LEVIER wrote:
[snip]
for SA, just use amavisd-new. It can also do antivirus check, but if you
want to reject infected mail, then you need to run amavisd-new as a
proxy_filter (before the queue). If you really want this, then configure
amavisd-new to listen on multiple sockets and one
John D. Hardin wrote:
On Mon, 31 Dec 2007, Mike Cisar wrote:
Even tried yanking the IP address off of the server over the
holidays in the hope that whatever it was would just give up. No
such luck, within a minute of reactivating the IP to the server
this morning the traffic was back to
Matthias Schmidt wrote:
Happy New Year everyone :-)
Am/On Tue, 1 Jan 2008 04:20:42 +0100 schrieb/wrote mouss:
John D. Hardin wrote:
On Mon, 31 Dec 2007, Mike Cisar wrote:
Even tried yanking the IP address off of the server over the
holidays in the hope that whatever
John D. Hardin wrote:
On Tue, 1 Jan 2008, mouss wrote:
Tarpitting may not be the right answer, because they have a lot
more resources than us
I may have misunderstood what Mike was saying in his original post - I
thought that the traffic was originating from a single IP
alex wrote:
why not use something like this that rejects ip blocks at the MTA level
http://us.trendmicro.com/us/products/enterprise/network-reputation-services/index.html
it blocks anything on the DUL list which is a list the isp's put out of
which ip's shouldn't be sending mail.
the
Marius Vochin wrote:
Hello!
How can I make spamassassin not to send DSN after
a message is marked [SPAM]?
I need to do this because I get lot of spam from
spoofed adresses and for each message marked as [SPAM]
a DSN is generated. Since the mail adress is spoofed I
get back
Loren Wilton wrote:
d) Most of you guys are going to say Get a decent MTA. Some of you
might
Didn't you say you were using qmail? Or am I
misremembering/misinterpreting? If you are using qmail for MTA, I'm
reasonably sure I recall discussion of patches to qmail to make it Do
The Right
David.Sharpe wrote:
Hi, I want to give users control of the required_score variable. I am
using Postfix // SpamAssassin // amavis. I have read the document
http://wiki.apache.org/spamassassin/UsingSQL and have the tests
working OKAY. /executing SQL: SELECT preference, value FROM userpref
David.Sharpe wrote:
Within postfix/master.cf I have the following lines :
smtp inet n - - - - smtpd
-o content_filter=spamassassin
This pushes mail through the following lines :
spamassassin unix - n n - - pipe
Peter Smith wrote:
Here's my situation:
server1: mail gateway, runs Spamassassin
server2: multi-purpose server. hosts http, mail boxes, pop/imap, runs
sendmail and Spamassassin.
example.org: my domain. The MX record points to server1, A record points to
server2
The problem with this setup of
Michael Weber wrote:
Hello!
I have gotten several emails over the past 3 weeks with a really crazy AWL
score. Here's the headers from a message with a 4138 AWL score.
Where should I begin looking for this one?
I disabled AWL since long (and I didn't notice a reduction in accuracy).
Marc Perkel wrote:
Ralf Hildebrandt wrote:
* Marc Perkel [EMAIL PROTECTED]:
Sorry for the OT question but just need a quick answer from a
postfix expert.
Here's the problem. I run a front end spam filtering service. Email
from the world comes in, I clean it, and send the good email to
This really belongs to the postfix list, but ...
Marc Perkel wrote:
[snip]
mydestination = $myhostname, localhost.$mydomain, $transport_maps
remove $transport_maps. reusing unrelated maps is horrible. if a
transport entry is added for say hotmail.com, postfix will accept and
mis-deliver (or
Gary V wrote:
From: marc
postconf -n
alias_database = hash:/etc/aliases
alias_maps = hash:/etc/aliases
broken_sasl_auth_clients = yes
command_directory = /usr/sbin
config_directory = /etc/postfix
content_filter = amavis:[$myhostname]:10024
daemon_directory = /usr/libexec/postfix
Ralf Hildebrandt wrote:
* mouss [EMAIL PROTECTED]:
This really belongs to the postfix list, but ...
Marc Perkel wrote:
[snip]
mydestination = $myhostname, localhost.$mydomain, $transport_maps
remove $transport_maps. reusing unrelated maps is horrible. if a
transport entry
Steve wrote:
Bowie Bailey wrote:
That can be fixed by having the MTA (or MDA) add a Delivered-To header
indicating the user the message is being delivered to. Then you can use
this header rather than having to rely on something sensible being in
the To or Cc headers.
I always wondered where
Stefan Jakobs wrote:
Hello list,
I'm using amavisd-new with spamassassin and for some tests I have to disable
all network tests in spamassassin except for sorbs, njabl, uribl and maybe
some other blackhole lists.
I guess I can comment out the corresponding header lines in the files
JP Kelly wrote:
Enough is enough!
SA has been working so well for me all these years I guess I am spoiled.
I woke up this morning and had 5 Google spams and one legit email and
I've had it.
I noticed a somewhat lengthy discussion on the subject here.
I am not able to write my own rules or
JP Kelly wrote:
From: [EMAIL PROTECTED]
Subject: She'll Beg for More..
Date: January 21, 2008 10:34:15 AM PST
To: [EMAIL PROTECTED]
Return-Path: [EMAIL PROTECTED]
Delivered-To: [EMAIL PROTECTED]
Delivered-To: [EMAIL PROTECTED]
X-Spam-Checker-Version:
Matsaki wrote:
New to spamassassin I now got it up and running on my server with ubuntu,
postfix, dovecot.
The only problem I have now is that i have created a mailaccount called
spamtrap but I can't manage to get the SPAM: classified email redirected
to the mailbox. So some help would be
Matt Kettler wrote:
Post to the unsubscribe address, not the list.
See the headers of any message:
List-Unsubscribe: mailto:[EMAIL PROTECTED]
I wonder if it would be bad to forge an unsubscribe requests in such
cases, but I'm not sure they will understand what to do when they get
the
Raquel wrote:
On Sat, 26 Jan 2008 14:26:22 +0100
mouss [EMAIL PROTECTED] wrote:
Matt Kettler wrote:
Post to the unsubscribe address, not the list.
See the headers of any message:
List-Unsubscribe:
mailto:[EMAIL PROTECTED]
I wonder if it would be bad to forge an unsubscribe
Matt Kettler wrote:
John Hardin wrote:
On Tue, 2008-01-29 at 17:51 -0500, Matt Kettler wrote:
Perhaps Verizon is screwing up their DNS?
Ahh, yes they are:
http://www.freedom-to-tinker.com/?p=1227
Hrm.
As a troubleshooting hack for this increasingly-common feature,
perhaps a
John Hardin wrote:
On Wed, 2008-01-30 at 08:38 +0200, David Baron wrote:
OK spamassassin folks: Rules which would say no puppies on software mailing
lists, no software on dog-breeders mailing lists. A few false alarms, i.e.
that great new app is such a sweet-puppie and that breeder's
Arthur Dent wrote:
Hello all,
Please forgive me for consuming off-topic bandwith with this question but I
don't really want to subscribe to the Procmail list for what is, I hope, a
very simple question.
I get a lot of spam that has a series of numbers in the To address, either
in the form To:
Larry Nedry wrote:
On 1/30/08 at 3:20 PM + Arthur Dent wrote:
I am so pleased with this rule that I decided to give my poor old SA a
well-deserved rest from this rubbish and take these spams out at Procmail
time.
Keep in mind that there are a lot of mobile phones out there that
jp wrote:
Another option, if you are using postfix, is to setup mydomain.com as a
virtual. Then in /etc/postfix/virtuals, you can
mydomain.com virtual
@mydomain.com [EMAIL PROTECTED]
[EMAIL PROTECTED] [EMAIL PROTECTED]
[EMAIL PROTECTED] [EMAIL PROTECTED]
and so on... You can ommit the
Martin Gregorie wrote:
spamassassin --mbox mbox scanned.mbox
No, SA doesn't know how to split up messages for scanning; sa-learn
is the only SA component that can extract messages from an mbox mail
folder.
In that case, what does the --mbox option do? Not what I expected,
Michael Scheidell wrote:
anyone looked at x-cr-hashedpuzzle?
(its the strange, 'hash cash', 'postage stamp' that Outlook 11+ adds
to emails it thinks might be blocked as spam)
What about a plugin to decode, score, validate it?
What about calculating it on outbound emails?
Would that require
David Zinder wrote:
I ran several emails through SA with -D and search for RBL I find
things like:
[2891] dbg: async: starting: URI-DNSBL,
DNSBL:multi.surbl.org.:worldchanging.com (timeout 15.0s, min 3.0s)
[2891] dbg: dns: URIBL_PH_SURBL lookup start
[2891] dbg: async: starting: URI-DNSBL,
giga328 wrote:
Hi Anthony,
I will ask people from MailScanner also but for my email system is not
possible to use MailScanner directly so I'm using spamd. My question is
about lowering chances for false positives by having safe list from
MailScanner. But since I just started to use
Michael Scheidell wrote:
Thank you, as always, you have been !extremely helpful.
why attack me?
So, your proposal is to block all email from all modern outlook clients.
Brilliant plan. No, I don't worship MS, but I live in reality.
sorry, I'm not as brilliant as you are.
We should
Matt Kettler wrote:
mouss wrote:
if you can't validate the header, you can't trust it.
And the whole point of the Michael's original message was to find out
if you can validate it, therefore trust it.
A simple I don't think you can validate that would have been
appropriate, but suggesting
Patrick Sherrill wrote:
Any clues?
run spamassassin -D to see what path it is using. most probably, it's
using the directory where updates are stored, but the latter doesn't
contain core SA rule files (partial update, ... etc)
Justin Mason wrote:
I've been thinking about this. It might be useful to offer a plugin
implementing this hashcash, since it'd offer a good way to come up
with an unforgeable FORGED_MUA_OUTLOOK rule.
However, we'd have to be sure that the CSRI algorithm really is
sufficiently open, and not
[EMAIL PROTECTED] wrote:
Hi
thx for your answer.
The SA Version is 3.2.3
You are right, we are using postfix.
For SA there is an entry in the master.cf of postfix:
filterunix - n n - - pipe
user=filter argv=/home/filter/sc/filter.sh -f ${sender} --
Martin Gregorie wrote:
A weird thing has started within the last couple of days. It is only
affecting mail received from the SA users mail list and only to mail
received from Paul Douglas Franklin of Yakima UGM [EMAIL PROTECTED]
The messages have a To header like this:
To: [EMAIL PROTECTED],
Matt Kettler wrote:
Dale's Stuff wrote:
Hello,
Trying to figure out what the criteria is for getting a domain listed
in sa-blacklist.current, and more importantly how to be de-listed.
List: AFAIK, you only need to be the From: address on spam sent to one
of Will Stern's spamtrap.
isn't
Francesco Abeni wrote:
Good morning everyone, i'm in charge of reducing SPAM at a customer
site. Already have SPAMASSASSIN, sa-update weeklyexecuted.
I'd like to implement a Bogus MX for further filtering of SPAM. I
don't know if this is the correct name, by Bogus MX i mean setting
up a low
Richard Frovarp wrote:
We do something like nolisting. You will lose legit mail no matter
which trick you use. So it's best if you have a method of fixing that.
Our first mx record is a real smtp server, it's just firewalled off to
most of the world. It's used as a fast lane for our internal
Marc Perkel wrote:
Let me clarify something about using bogus MX records. Let's assume
the following.
bogus0.domain.com - MX 10
real.domain.com - MX 20
backup.domain.com MX 30
bogus1.domain.com MX 40
bogus2.domain.com MX 50
The host bogus1 and bogus2 are 100% safe and effective. The bogus IPs
Gene Heskett wrote:
Greetings;
Like everybody else, I'm tired of this nice girl spam. But the only place I
can find any of those files on this F8 system is in usr/share/spamassassin.
Are those the ones to play with for system wide rules?
no, do not modify files in the distribution
mdrivai wrote:
Dear all'
in a day i get spam with url from blogspot
i ' create my rulte
uri BLOGSPOT_01 m;http://[a-z]{8,}\d{5,}\.blogspot\.com/$;
describe BLOGSPOT_01 Throwaway blogspot domain
scoreBLOGSPOT_01 6.0
why this rule don't effective tu blog this spam
\d{5,}
Marc Perkel wrote:
David B Funk wrote:
On Wed, 20 Feb 2008, Aaron Wolfe wrote:
Quotes from this thread (and the nolisting site which was posted as a
response):
Michael Scheidell - Do NOT use a bogus mx as your lowest priority.
Bowie Bailey - I would say that it is too risky to put a
McDonald, Dan wrote:
On Thu, 2008-02-21 at 21:58 +0100, Raymond Dijkxhoorn wrote:
Hi!
provide this hosted (i.e. I'm thinking of offering), but instead of ONLY
log it somehow feed / create a blacklist based on this?
I'm not as familiar with blacklists as many of you, but the network /
Karsten Bräckelmann wrote:
On Thu, 2008-02-21 at 10:14 +0100, Emmanuel Lesouef wrote:
Le Thu, 21 Feb 2008 00:57:55 +0100,
Karsten Bräckelmann [EMAIL PROTECTED] a écrit :
At 13:51 20-02-2008, Emmanuel Lesouef wrote:
http://pastebin.com/m61564e4
That's not a
Michael Scheidell wrote:
From: Bob Amen [EMAIL PROTECTED]
Organization: O'Reilly Media, Inc.
Date: Fri, 22 Feb 2008 17:02:11 -0800
To: users@spamassassin.apache.org users@spamassassin.apache.org
Subject: Re: Pbl.spamhaus.org down?
Quite possibly. I think they're getting stricter
Michael Hutchinson wrote:
I have tried different approaches, and let us not forget I have
filled
out 3 whitelist forms, and received no response from Yahoo. Their
service
is breaking RFC's by not delivering mail. They are ignorant towards
other
companies trying to
Rocco Scappatura wrote:
[snip]
Sorry It was not the case to send the entire email.. Here the
X-Spam-Status after running the message against 'spamassassin -D':
X-Spam-Status: Yes, score=11.2 required=5.0
tests=AWL,BAYES_50,HTML_MESSAGE,
Rocco Scappatura wrote:
Rocco Scappatura wrote:
[snip]
Sorry It was not the case to send the entire email.. Here the
X-Spam-Status after running the message against 'spamassassin -D':
X-Spam-Status: Yes, score=11.2 required=5.0
tests=AWL,BAYES_50,HTML_MESSAGE,
Rocco Scappatura wrote:
% telnet yourserver 25
...
EHLO somehostname
...
MAIL FROM:sender
...
RCPT TO:recipient
DATA
copy-patse the message with full headers except the Delivered-To that
contains your recipient address
end with a line containing a dot ('.') like this:
.
QUIT
Infact I get:
Rocco Scappatura wrote:
And spammer are becoming more faster as the time goes on.. Is it
convenient to use gray listing
newer bots retry, so GL is only effective is the time
interval is large enough, but that's not a neutral thing so
should be restricted to suspicious mail. That's what
Marc Perkel wrote:
Postfix allows you to use blacklists as follows:
reject_rbl_client blacklist.junkemailfilter.com
Does Postfix allow you to use white lists? If so - what's the syntax?
I'm about to publish my whitelist for Postfix.
No. DNSWL offer an rsync access. This is better for
--[ UxBoD ]-- wrote:
policyd works a treat :) V2 is also in development aswell.
it's not the same. I don't know why they call it V2.
As far as I know, Cami is no more involved. so I would stick with the
current (which is a single C threaded program).
Matthias Leisi wrote:
mouss schrieb:
| Does Postfix allow you to use white lists? If so - what's the syntax?
| I'm about to publish my whitelist for Postfix.
|
|
| No. DNSWL offer an rsync access.
That's the exact reason we offer rsync access *to a specially formatted
file* (see http
Robert S wrote:
I have started, over the last few months, getting a lot of plain text scam
messages (Nigerian type scams, lottery wins etc etc). Previously I had
almost none of these.
Unfortunately I'd need to send rather a lot of information about my configs,
and log files to help, but can
Tuc at T-B-O-H.NET wrote:
I guess I'm still not being clear. There are 120K emails a day coming
to INVALID EMAIL ADDRESSES THAT NEVER EXISTED. Its not a case of a user being
fickle, its a case that they are emailing addresses that NEVER EVER ACTUALLY
EXISTED. About 1 ever 3/4 of a
Tuc at T-B-O-H wrote:
Tuc at T-B-O-H.NET wrote:
I guess I'm still not being clear. There are 120K emails a day coming
to INVALID EMAIL ADDRESSES THAT NEVER EXISTED. Its not a case of a user being
fickle, its a case that they are emailing addresses that NEVER EVER ACTUALLY
EXISTED.
Tuc at T-B-O-H.NET wrote:
If you are proposing some kind of checksums or other types of 'message
identifying' techniques on the messages, those few mistyped addresses
could certainly make a difference for your site. What if bongo's mom
mistypes to bungo, realizes her mistake and resends it to
Fred T wrote:
Hello Steve,
Saturday, March 8, 2008, 11:56:46 PM, you wrote:
Now, I'm no expert on spam-bots, but it strikes me that the 'bots might want
to remove failed addresses
from their lists to make them more efficient. A 550 error returned at the
protocol level will immediately
Matus UHLAR - fantomas wrote:
On 11.03.08 12:16, Jay Langley wrote:
Below I have offered the content of my spam score report generated by
Spam Assassin. We are Kintera subscribers. Problem is I don't know
how to make changes in the text that will result in a better score.
you
Michael Hutchinson wrote:
Hi Everyone.
I need to implement some RBL's at the Spamassassin stage in our mail
server. We already have spamhaus setup on the firewall, amongst other
SMTP rejection lists. What RBL's are people using with Spamassassin to
tag email? As far as I can see, we are only
James E. Pratt wrote:
-Original Message-
From: Arvid Ephraim Picciani [mailto:[EMAIL PROTECTED]
Sent: Monday, March 17, 2008 4:43 PM
To: users@spamassassin.apache.org
Subject: ways to react faster to spam attacks
greetings.
most of the spam we get (like 90%) is the usual internet
Euroka wrote:
Hi all,
I have a postfix with a couple of virtual hosts and a /etc/postfix/virtual
file with my users
.
some users prefer that mail from my postfix server mail.domain1.com gets
forwarded to an exchange server at mail.domain2.com
Now all users have a .procmailrc file in their
Luis Hernán Otegui wrote:
Hi, I'm kinda getting tired of reporting these mails (both to my local
SA and to SpamCop), and so are my customers. My problem is that the
spammers are using a large ISP's mail server, and that particular ISP
(as all the others here in Argentina) don't bother checking
Luis Hernán Otegui wrote:
[snip]
how about something like
headerNONFQHELO_DYN1 X-Spam-Relays-Untrusted =~ /^[^\]]+
rdns=\S*[^a-z]{9}\S+ helo=[^\.\s]+ /i
score NONFQHELO_DYN1 3.0
describe NONFQHELO_DYN1 non fqdn helo from dynamic client
?
I'll go with this, and tomorrow
101 - 200 of 1228 matches
Mail list logo
