I checked this email against my SA, this is what I've got:
Content analysis details: (10.1 points, 5.0 required)
pts rule name description
---- ----------------------
--------------------------------------------------
-1.8 ALL_TRUSTED Passed through trusted hosts only via SMTP
3.5 BAYES_99 BODY: Bayesian spam probability is 99 to 100%
[score: 0.9999]
0.0 DK_POLICY_SIGNSOME Domain Keys: policy says domain signs some mails
0.0 MIME_HTML_MOSTLY BODY: Multipart message mostly text/html MIME
0.0 HTML_MESSAGE BODY: HTML included in message
2.2 TVD_SPACE_RATIO BODY: TVD_SPACE_RATIO
1.5 RAZOR2_CF_RANGE_E4_51_100 Razor2 gives engine 4 confidence level
above 50%
[cf: 100]
0.5 RAZOR2_CHECK Listed in Razor2 (http://razor.sf.net/)
0.5 RAZOR2_CF_RANGE_51_100 Razor2 gives confidence level above 50%
[cf: 100]
3.7 PYZOR_CHECK Listed in Pyzor (http://pyzor.sf.net/)
0.0 DIGEST_MULTIPLE Message hits more than one network digest check
Eugene
Starckjohann, Ove wrote:
>
>
> Hi!
>
> The following PDF-Spam is passing through:
>
> http://ghds.de/20070808074441242.eml.txt
>
> System ist Debian Sarge with SA 3.1.7.
> I'm already using:
> PDFInfo 0.7
> 80_additional.cf
>
> Anyone scoring over 5?
> How to get it caught ?
>
> Ove Starckjohann
>
>
--
View this message in context:
http://www.nabble.com/PDF-Spam-passing-SA-tf4235004.html#a12108793
Sent from the SpamAssassin - Users mailing list archive at Nabble.com.
