Hi Jason,
Thanks for your answer.
> > May I know the difference between fast_spamassassin and
> > verbose_spamassassin?
> >
> >
> Well one's faster than the other - but the slower one is more verbose ;-)
Currently, I choose fast mode instead of verbose.
> > Seems my installation (Sa & QS) did not detect the incoming spam testing
> > pattern (GTUBE). At this time, I use verbose_spamassassin option.
> >
> >
> Then you have a different problem. SA always gives the GTUBE mail a
> score of 1000. Your SA install is broken
Now, seems the SA is running well. My user gets email with "modified"
message (below). Thanks for superb Q-S !
BTW, is it possible to tag the subject? It will be easier for user to create
mail rule in Outlook (express) to put the tagged message to specific folder.
Thanks,
Awie
====SNIP====
Spam detection software, running on the system "Mailsvr", has
identified this incoming email as possible spam. The original message
has been attached to this so you can view it (if it isn't spam) or label
similar future email. If you have any questions, see
the administrator of that system for details.
Content preview: How Would You Like a Much Bigger Pfg Efl Nfd Iem S?
GAIN UPTO 2-3 Ier Njg Ced Hok Eed Sog !! GO HERE [...]
Content analysis details: (7.7 points, 5.0 required)
pts rule name description
---- ---------------------- ------------------------------------------------
--
3.4 HELO_DYNAMIC_IPADDR Relay HELO'd using suspicious hostname (IP addr
1)
0.3 HTML_FONT_BIG BODY: HTML tag for a big font size
0.0 MIME_HTML_ONLY BODY: Message only has text/html MIME parts
0.4 HTML_LINK_PUSH_HERE BODY: HTML link text says "push here" or similar
0.0 HTML_MESSAGE BODY: HTML included in message
0.8 HTML_FONT_LOW_CONTRAST BODY: HTML font color similar to background
0.2 HTML_TAG_BALANCE_BODY BODY: HTML has unbalanced "body" tags
2.7 HTML_OBFUSCATE_20_30 BODY: Message is 20% to 30% HTML obfuscation
The original message was not completely plain text, and may be unsafe to
open with some email clients; in particular, it may contain a virus,
or confirm that your address can receive spam. If you wish to view
it, it may be safer to save it to a file and open it with an editor.
-------------------------------------------------------
This SF.net email is sponsored by: Splunk Inc. Do you grep through log files
for problems? Stop! Download the new AJAX search engine that makes
searching your log files as easy as surfing the web. DOWNLOAD SPLUNK!
http://sel.as-us.falkag.net/sel?cmd=lnk&kid=103432&bid=230486&dat=121642
_______________________________________________
Qmail-scanner-general mailing list
Qmail-scanner-general@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/qmail-scanner-general
