Good news - my server admin added allow_user_rules to the local.cf file (I don't have access) and my rules now work (from user_prefs). Now I just have to solve that darn buggy_cgi thing.
Thanks, -Mike -----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Matt Kettler Sent: Sunday, June 29, 2003 1:22 PM To: Spam Sucks; [EMAIL PROTECTED] Subject: Re: [SAtalk] BUGGY_CGI? At 12:17 PM 6/29/03 -0700, Spam Sucks wrote: >Anyone know what Spamassassin is testing to trip the BUGGY_CGI sensor? >Is there a web site that lists the tests of each of the default >settings? I could only find lists of the default scores and descriptions >(even on the spamassasin.org site). > >The message I get is: > >BUGGY_CGI (2.8 points) Broken CGI script message > >I am using a very simple and standard FormMail form on my website and >forms sent to me from my own web site are getting marked as spam! Based on the ruleset it appears that buggy (aka relay exploitable) versions of FormMail don't identify themselves with an x-mailer header. Perhaps you should check what version of formmail you are using. Here's the rules involved (extracted from 20_meta_tests.cf for the 2.60 cvs version that's unpacked on the website) http://www.spamassassin.org/dist/rules/20_meta_tests.cf header __NMS_CGI_NOT_BUGGY X-Mailer =~ /^NMS FormMail\.pl.*v\d/ body __BUGGY_CGI /Below is the result of your feedback form/ meta BUGGY_CGI __BUGGY_CGI && !__NMS_CGI_NOT_BUGGY describe BUGGY_CGI Broken CGI script message >I also tried giving a negative score to having a particular subject (the >subject of my form) but couldn't get that to work either. > >header USED_CONTACT_FORM Subject =~ /CONTACT/ >describe USED_CONTACT_FORM Subject: sender used contact form on web >site >score USED_CONTACT_FORM -5.00 That should work, provided the message subject contains CONTACT in all caps... what file did you put the rule in? If you put it in user_prefs, do you have allow_user_rules enabled in your local.cf? Did you run a spamassassin --lint? ------------------------------------------------------- This SF.Net email sponsored by: Free pre-built ASP.NET sites including Data Reports, E-commerce, Portals, and Forums are available now. Download today and enter to win an XBOX or Visual Studio .NET. http://aspnet.click-url.com/go/psa00100006ave/direct;at.asp_061203_01/01 _______________________________________________ Spamassassin-talk mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/spamassassin-talk ------------------------------------------------------- This SF.Net email sponsored by: Free pre-built ASP.NET sites including Data Reports, E-commerce, Portals, and Forums are available now. Download today and enter to win an XBOX or Visual Studio .NET. http://aspnet.click-url.com/go/psa00100006ave/direct;at.asp_061203_01/01 _______________________________________________ Spamassassin-talk mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/spamassassin-talk
