What Sandy said.
In my experience, the "infrastructure software" never failed, the only
ABENDs were from applications that our own programmers wrote.
And yes, ABEND is still in my vocabulary.
Andrew 8)
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Sa
Title: Message
What, you had a teletype instead of keypunch? Bah,
kids today. When I was a boy, we had to walk uphill in the snow both ways
just to submit our punchcards for overnight processing. And we liked
it.
Andrew 8)
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED]
Title: Message
No, just snowing. But it was a driving snow.
You'll have to drive in to the Sierras to find out what snow looks like,
John. Or check out that nuisance white stuff outside you see on the
national news.
Andrew 8)
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED
> I can still program in 1401 Autocoder. Does that qualify?
>
> George
That depends, George.
Did you hand wrap the core?
Andrew 8)
> -Original Message-
> From: [EMAIL PROTECTED]
> [mailto:[EMAIL PROTECTED] On Behalf Of george
> Sent: Thursday, December 22, 2005 7:34 AM
> To: Declude
And for those who enjoy video games and hate their vegetables:
http://www.bellman.co.uk/sproutinvader/
Andrew 8)
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Dan
Sent: Friday, December 23, 2005 10:40 PM
To: Declude.JunkMail@declude.com
Subject: [Dec
FRISK has just updated F-Prot for Windows to 3.16e and this purports to
include enhanced scanning capability for malformed WMF that appear as
other graphic formats.
The subscription login server is down with HTTP error 500 again.
Andrew 8)
> -Original Message-
> From: [EMAIL PROTECTED]
That would be this posting:
http://lists.grok.org.uk/pipermail/full-disclosure/2006-January/041032.h
tml
I'm willing to bet that this information is not to be trusted, Dave.
I'm confident enough and lazy enough that I'm not going to test it.
"Preliminary testing reveals that emails containing WM
This may be of some use... These are two of the things
checked by theMicrosoft Exchange Best Practices Tool (sorry, there is no KB
listed):
1) How to restrict the size of the bounce messages
you generate (just like the big boys do with their postfix and sendmail MTAs,
but it's possible tha
Sweet. Thanks for the testing and follow up on this,
Matt.
Andrew
8)
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of
MattSent: Wednesday, January 11, 2006 6:52 AMTo:
Declude.JunkMail@declude.comSubject: Re: [Declude.JunkMail] OT:
MaxDSNSize
I just con
Title: Message
Richard, look at it from everybody else's
perspective:
We don't have an abused web proxy, so we don't see what
you see. We're guessing, based on what you write in your
messages.
As to answering your question, a web programmer can do
anything they like with CGI. If you wa
Title: Message
No, Markus, the CMDSPACE is not duplicated inside of Pete's
Message Sniffer.
What the Declude CMDSPACE test checks for is in the
envelope (the Q*.SMD file) and what Message Sniffer checks is the content of the
message itself (D*.SMD).
Andrew.
From: [EMAIL PROTECT
I don't know if the BEGINSWITH will work in all cases, but if it does,
great.
I think you'd do better to mitigate the false positives by checking for
text that is missing, e.g. I think this would be a lethal test, and
wouldn't require you to track his evolving HELO and SUBJECT lines:
BODY END CO
Using Declude JunkMail Pro v2.0.6.16 from 2005-05-25 on IMail v8.14 plus
hotfixes on a dual 3.0 GHz Pentium 4 Xeon Proliant with hyperthreading
on. There is no on-access antivirus software installed, and no
defragmentation, no indexing or other type of disk tasks were running.
I re-queued a messa
Checking with http://virusscan.jotti.org shows:
File: newyears.scr
Status: INFECTED/MALWARE
MD5 a4b0c8e03cc266d3500eb515f616a6d2
Packers detected: PESPIN
Scanner results
AntiVir Found Packer/PESpin packer
ArcaVir Found nothing
Avast Found nothing
AVG
Nick, I think that if you left this mail in, your users won't complain
that it is spam.
I have much the same opinion of these lists that Matt has; more
explicitly, I have a counterweight (*not* a whitelist) that awards
negative points to their score.
I haven't seen spam from them yet, and all the
WhatsUp someversionorother http://www.ipswitch.com
Nagios (Open Source, with a *nix bent) http://www.nagios.org/
Andrew 8)
> -Original Message-
> From: [EMAIL PROTECTED]
> [mailto:[EMAIL PROTECTED] On Behalf Of
> Jerod M. Bennett
> Sent: Monday, January 23, 2006 11:25 AM
> To: Declude
I'm quite surprised that nobody has named:
http://www.microsoft.com/mom/default.mspx
Microsoft MOM yet. It's quite popular in Microsft shops.
Andrew 8)
> -Original Message-
> From: [EMAIL PROTECTED]
> [mailto:[EMAIL PROTECTED] On Behalf Of
> Colbeck,
icrosft shops.
Andrew 8)
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED]] On Behalf Of
Colbeck, Andrew
Sent: Monday, January 23, 2006 11:45 AM
To: Declude.JunkMail@declude.com
Subject: RE: [Declude.JunkMail] OT - Server Watching.
WhatsUp someversionorother
Title: Logged spam getting to mailbox
Corby, to help you rule out "header corruption" I checked
my own logs, and found that I received (and held) three copies of the same spam
message today.
Inspecting each of those with notepad showed that my X-
headers are being added, therefore "header c
216.9.248.49 is listed in SpamCop, since at least 5am PST.
See:
http://www.spamcop.net/w3m?action=blcheck&ip=216.9.248.49
I would guess because of bounced viruses (e.g. the latest round of Bagle
that started last night). The page above notes that a neighbouring IP
(from which I have received g
Chris, there's no shortage of them:
http://www.sortmonster.com/MessageSniffer/Help/AutomatingUpdatesHelp.htm
l
Andrew 8)
> -Original Message-
> From: [EMAIL PROTECTED]
> [mailto:[EMAIL PROTECTED] On Behalf Of Chris Anton
> Sent: Tuesday, January 31, 2006 7:23 AM
> To: Declude.JunkMai
Richard, are you using the latest version? V3.16f was released on
Jan-09-2006.
http://www.f-prot.com/news/gen_news/060106_release_win316f.html
Some previous version I used did the same thing, but I think that F-Prot
fixed this issue.
Andrew 8)
> -Original Message-
> From: [EMAIL PRO
http://dictionary.reference.com/search?q=irony
> -Original Message-
> From: [EMAIL PROTECTED]
> [mailto:[EMAIL PROTECTED] On Behalf Of Erik
> Sent: Tuesday, January 31, 2006 7:56 AM
> To: Declude.JunkMail@declude.com
> Subject: RE: [Declude.JunkMail] Another forged Declude address e-
REVDNS [35], FILTER-USERS [50]" be enough for a "COMBO" test to be used to
filter to a HOLD or DELETE?
No, I'm not bashing Declude. We've been a Declude user since 2000. Just
pointing out the obvious.
-Erik
-Original Message-
From: [EMAIL PROTECTED
AIL PROTECTED]
> [mailto:[EMAIL PROTECTED] On Behalf Of Glenn \ WCNet
> Sent: Tuesday, January 31, 2006 10:53 AM
> To: Declude.JunkMail@declude.com
> Subject: Re: [Declude.JunkMail] F-Prot
>
> 3.16f doesn't get hung-up on updates any *less* than other
> versions did.
>
&g
I assumed that everybody got rich off stock tips they received in the
mail.
Andrew 8)
> -Original Message-
> From: [EMAIL PROTECTED]
> [mailto:[EMAIL PROTECTED] On Behalf Of Scott Fisher
> Sent: Friday, February 03, 2006 1:01 PM
> To: Declude.JunkMail@declude.com
> Subject: Re: [Declu
Title: New server replacing the old one
Sharyn, I'm sure that it will work just fine, but you
should contact [EMAIL PROTECTED]
directly; for quite a while now, their licencing scheme has been recording the
unique MAC address of the NIC.
Andrew 8)
From: [EMAIL PROTECTED]
[mailt
Title: Message
Frederick, if you decide you really have to not send NDRs,
then you can follow this KB article:
http://support.microsoft.com/?id=294757
which tells you where in Exchange to disable sending
NDRs. What it doesn't tell you is that you can create other domains to
which you can
Title: Message
How to suppress generation of NDRs in Exchange
5.5:
http://support.microsoft.com/default.aspx?scid=kb;en-us;837794
Andrew 8)
p.s. For anybody reading this who finds that they get
enough spam leakage to take this step, you might also check out these very, very
general tips
Title: Message
Ditto.
I've received and held 24 messages with the same
title. Re-queuing 3 of these to myself, they had an image that was
intact.
They fail the usual RBL tests plus Message
Sniffer.
Andrew 8)
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of H
Title: Message
Interesting. As Matt, said, if you can get an
original D*.SMD that would be great for following this
trail.
I would note that in addition, use the headers that were
received to track the sending IP and time, and check your IMail log, and from
there you will have the GUID fo
Thanks, John.
http://www.trendmicro.com/vinfo/virusencyclo/default5.asp?VName=WORM%5FB
AGLE%2EDF&VSect=T
I didn't see any on my server, but I did find the Trend Micro listing
this morning.
Generating anger or affront in the viewer seems to be the new infection
meme; I just read a blog that menti
John,
I'm doing the same thing for a day. I don't have any
information to support my caution, but if I had changed my list the way
that Solid Oak has done, I might also take the opportunity to re-jig the
content.
Andrew 8)
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] O
Wow, Dave.
Talk about "your mileage may vary"...
My traffic has a huge overlap between MXRate-BL and
what Message Sniffer hits.
Total hits for Message Sniffer: 26,504
Total hits for MXRate-BL: 5,746
Total hits for MXRateBL which also hit Sniffer:
5,697
We also had 21 hits on MXRate-BL
I haven't seen any business oriented material on Geocities (rhymes with
"atrocities").
I've been blocking it in email and our web proxy for years, on the basis
of the security risk of the frequent malware hosting. Blocking the
spamvertisement web pages and redirectors is just an added bonus for m
Message Sniffer plus any URI blacklist test is a
powerful and reliable combination. You could add keywords to make it an
even stronger weight if you wanted to maintain that.
You could also implement the COUNTRY filter and give a
little nudge weight for CO (Colombia) if you think you get ve
"I will think about a special filter test with a keyword
what should be able to get rid of more of this SPAM."
Goran, I suggest that making a "combo" test that awards
more weight when both Message Sniffer and your URI external test trigger will be
a better value for you, as it will be far m
Yes, there is an overlap between an external URIBL test and
Message Sniffer in that Sniffer cross references hits against at least one SURBL
list to gauge the worthiness of a rule.
However, what is often confused is the untrue assertion
that Message Sniffer imports SURBL to construct rules.
Hey, Nick.
I spent some time poking at this with a
stick.
Since I just use IMail as a gateway so that I can use
Declude... I've had no use for IMail mailboxes or forwarding, so it was all new
to me.
The real answer is that you should lobby Ipswitch to
implement that sender re-writing
-
> From: [EMAIL PROTECTED]
> [mailto:[EMAIL PROTECTED] On Behalf Of
> Sanford Whiteman
> Sent: Tuesday, March 07, 2006 6:37 PM
> To: Colbeck, Andrew
> Subject: Re[2]: [Declude.JunkMail] spf breaks email forwarding -
>
> > If you want to perservere and build your o
In the corporate world, it was certainly handy to keep user and
workstation name mappings consistent when we used WINS and the WINS
timeout was far longer than the duration of a dialup session.
Andrew 8)
> -Original Message-
> From: [EMAIL PROTECTED]
> [mailto:[EMAIL PROTECTED] On Behal
> He has
> his wife strip on web cam for money... or so he claims. I
> guess goat farming wasn't enough.
There's probably good money in combining the two. Best not to inquire.
Andrew 8)
> -Original Message-
> From: [EMAIL PROTECTED]
> [mailto:[EMAIL PROTECTED] On Behalf Of Will
I don't have a direct comment about your Declude system,
Chris, but a similar problem happens all too frequently when Exchange
organizations send mail to Notes organizations, and less frequently,
to mail systems that are very basic.
The Exchange organization can prevent it from happening by
It's off-topic for this off-topic thread, but Google Analytics at
http://www.google.com/analytics/
is pretty nifty for non-ISP purposes. To get it working though, you need
to edit every page your want to report on with a bit of javascript which
phones home to Google; it doesn't work by analyzing
Gee, I thought it looked like a perl script...
I sometimes wonder if the spammers write stuff like this because they
lose the thread and forget that they are trying to convince people to
buy their stuff, and not just to craft their message to get past the
antispam filters!
Andrew 8)
> -Orig
Richard, you might want to check this thread from the
archives. Goran can clarify, but I'm pretty sure that this is the source
of the "Sane Security" detection string.
For what it's worth, Message Sniffer catches the email
message body you supplied with the MALWARE category.
The hosting
Ben, based on the info here:
http://banned.dnsstuff.com/pages/abuse.htm
You might try going to their "backup site" at:
http://www.dnsstuff.com:8080/
As for contacting somebody there, join the forums and make a posting.
Andrew 8)
> -Original Message-
> From: [EMAIL PROTECTED]
> [mai
Specifying your ISP's DNS servers in your network setup won't be an
issue, Dave.
If the root hints are even close to being correct, your DNS server
configuration should be fine.
To test whether your DNS server is doing the job, issue a single command
line query that you know is going to test your
n addition to, log file parsing.
>
> -Original Message-
> From: [EMAIL PROTECTED]
> [mailto:[EMAIL PROTECTED] On Behalf Of
> Colbeck, Andrew
> Sent: Wednesday, April 05, 2006 8:50 AM
> To: Declude.JunkMail@declude.com
> Subject: RE: [Declude.JunkMail] OT: Live Web
I agree with the changes advised in this thread for registry settings.
Let me point out that these are meant to be applied on the server where
the files are, and not, for example, to a workstation that is trying to
manipulate a folder over the network.
I've been trying out Servant Salamander from
Well...
Once you kick start the procedure by zipping all of the previous
folders, then all you have left is 7 days worth of logs, so you can bag
the "prev x days" logic and just use dec*.log as the parameter.
Or likewise, tell the script to do the previous 8 days and you'll always
get the full li
So... I had reason to dip into my spam folder today and found a message
that is using some kind of tool to generate madlibs, presumably to pad
the spam so that it seems like a normal message and perhaps to poison
antispam systems that use Bayesian analysis.
Assuming that your spam filter doesn't c
ttempts.
>
> So spammers keep using bayes poison because it works in some
> cases. It also doesn't really hurt them much, and sometimes
> even helps them, against more resistant implementations.
> ==
>
> Bill
>
> - Original Message -
> From: "
Also, check how your disk space on C: is currently being used.
I love this free tool (Java is a pre-requisite):
http://www.jgoodies.com/freeware/jdiskreport/
You may find a surprising amount of disk space is used that you can
actually delete. I find that the top culprits are:
1) MS Office cach
Geoff, I'd be interested in hearing back from you on whether Pyzor is
working for you after you have a while to test.
For the last year or so, I've figured it was a project for a few
die-hards only. I've noted that the current SpamAssassin no longer has
it enabled by default, and the Pyzor mailin
I'd like to see an update to all_list.dat too. Mine is a few months
older than Scott's.
... And this IP address has been Turkey since at least February 2006:
% Information related to '88.247.80.0 - 88.247.159.255'
inetnum:88.247.80.0 - 88.247.159.255
netname:TurkTelekom
descr:
For what it's worth, SARE has their own download script (I'm not
familiar with the sa-update script Bill mentioned) called RulesDuJour
which is a bash shell script:
http://www.exit0.us/index.php?pagename=RulesDuJour
And that page contains a howto link for us Windows users who are running
CygWin:
I've never heard of it, John.
I checked with SiteAdvisor and they have nothing bad to say:
http://www.siteadvisor.com/sites/loftmail.com?safe
Googling for loftmail and various interesting keywords doesn't indicate
to me any markedly bad opinion of their service.
Andrew 8)
> -Original Mess
UltraDNS is back in business after the kind of DoS they are supposed to
be in business to defend against.
Check out Brian Kreb's article here, from May-17-2006:
http://blog.washingtonpost.com/securityfix/2006/05/blue_security_surrend
ers_but_s.html
Specifically this snippet:
"Well, UltraDNS mar
Title: Message
Well, great minds think alike*.
I'm working on upgrading my IMail+Declude too. And
like Matt, I'm doing it primarily to update my MTA, not to update my stable
Declude 2.x software!
I went directly from 8.15 HFx to IMail Server 2006.04a (aka
9.04) as an upgrade**.
I haven
I'd second that... on both the observed behaviour and the
request for documentation.
I'm attaching my highly commented declude.cfg as
a reasonable sample.
Andrew 8)
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of
MattSent: Tuesday, May 23, 2006 10:36 AMTo:
Thanks, Nick.
It's a defensive mechanism I've used for years: keep
the documentation with the settings. I often do the same with registry
keys by adding a text string and blathering away. Adding dates and
initials is also a good idea.
Andrew 8)
From: [EMAIL PROTECTED]
[mai
"Those who cannot remember their mistakes are doomed to
repeat them!"
Andrew 8)
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of
MattSent: Tuesday, May 23, 2006 12:26 PMTo:
Declude.JunkMail@declude.comSubject: Re: [Declude.JunkMail]
Experience with 4.x
And
David, is there a proactive way to detect if an installation would
benefit from the WINSOCKCLEANUP ON directive in declude.cfg?
I would rather be able to detect this while it's happening than to react
when I find that spam is leaking or that the proc folder is continually
growing.
Andrew.
> ---
CLEANUP to deal with this specific Imail issue.
>
> David B
> www.declude.com
>
> -----Original Message-
> From: [EMAIL PROTECTED]
> [mailto:[EMAIL PROTECTED] On Behalf Of
> Colbeck, Andrew
> Sent: Tuesday, May 23, 2006 3:45 PM
> To: Declude.JunkMail@declude.c
en this happened the admin was not
> even able to ping an outside server, which would suggest to
> me other IP communications fail as well.
>
> David B
> www.declude.com
>
> -----Original Message-
> From: [EMAIL PROTECTED]
> [mailto:[EMAIL PROTECTED] On Behalf Of
It was
> resolved with a phone call to Declude and the discovery that
> that the initial authorization had been moved from port 53 to
> port 25. After making that change to the firewall V4 runs fine.
>
> Good luck
>
>
> John
>
> -Original Message-
> Fro
rewall port issue.
>
> I'd turn the winsockcleanup off and monitor your memory
> usage. If it keeps creeping up turn it back on.
>
> John
>
>
>
> -Original Message-
> From: [EMAIL PROTECTED]
> [mailto:[EMAIL PROTECTED] Behalf Of
> Colbeck,
Chuck, since I'm not blocked, I've sent a message on your behalf to Pete
as well as false@ ... while redacting your domain name.
Happy to help,
Andrew 8)
> -Original Message-
> From: [EMAIL PROTECTED]
> [mailto:[EMAIL PROTECTED] On Behalf Of Chuck Schick
> Sent: Wednesday, May 24, 20
And what does the Declude log show if you do a:
Find /I "8f41090ecd10" dec0526.log
Andrew 8)
> -Original Message-
> From: [EMAIL PROTECTED]
> [mailto:[EMAIL PROTECTED] On Behalf Of Kyle Fisher
> Sent: Friday, May 26, 2006 9:07 AM
> To: Declude.JunkMail@declude.com
> Subject: R
ECTED] = WHITELISTED [LAST ACTION=WHITELISTED]
> 05/26/2006 00:16:57.630 q8f41090ecd10.smd Cumulative
> action(s) taken on this email = IGNORE [LAST ACTION=IGNORE]
>
>
>
> -Original Message-
> From: [EMAIL PROTECTED]
> [mailto:[EMAIL PROTECTED] On Behalf Of
&g
elisting now I have a problem somewhere.
>
> Kyle
>
> -Original Message-
> From: [EMAIL PROTECTED]
> [mailto:[EMAIL PROTECTED] On Behalf Of
> Colbeck, Andrew
> Sent: Friday, May 26, 2006 12:42 PM
> To: Declude.JunkMail@declude.com
> Subject: RE: [Declude.JunkMail] Spam says
Another country heard from (hey,
literally!).
I'm not seeing the email patterns reported. I have a
gateway-only scenario so I thought a different angle on this might be
helpful.
Like Matt, I thought an illegal character or unusual
MAILFROM might contribute to the problem.
I looked thr
Let there be light!
---
This E-mail came from the Declude.JunkMail mailing list. To
unsubscribe, just send an E-mail to [EMAIL PROTECTED], and
type "unsubscribe Declude.JunkMail". The archives can be found
at http://www.mail-archive.com.
David, have you heard the phrase "Caesar's wife must be above reproach"?
A company that sells email based products has to do a superlative job in
their own field.
I've already got a fulltime job thanks, but I just can't help getting
pulled into the forum and paying attention to what Declude is do
Title: Message
I'd suggest that this would work better without false
positives. The headers are missing darn near everything, the date, the
message-id, the subject, and the from. Any one of these could be missing,
but Michael's script will punish with a weight of 30 if either of the two tes
Will, try this:
dir q*.smd | find /C /V ""
dir d*.smd | find /C /V ""
dir t*.smd | find /C /V ""
And let us know the results. I'm betting that you have the same
circumstance that I do after I upgraded IMail, which is that you have
very few q*.smd files, and just broken d*.smd and t*.smd from b
I hadn't noticed that before. This webpage is pretty
darn explicit, so yes, the pricing you quoted is correct! From the bottom of the page that
describes the corporate licences available:
http://www.f-prot.com/products/corporate_users/win/
F-Prot Antivirus for Windows on Mail Servers
To us
... But a font size of "1" in an email is always spam.
Andrew 8)
> -Original Message-
> From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On
> Behalf Of Andy Schmidt
> Sent: Thursday, August 17, 2006 7:57 AM
> To: declude.junkmail@declude.com
> Subject: RE: [Declude.JunkMail] HTML code
Title: SKIPIFWEIGHT question
... what Scott said. And preferably, at the top of
each text filter file that you want to allow Declude to
skip.
All weights accumulated up to that point are
taken into account. DNS tests like SpamCop and external tests like Message
Sniffer execute before tex
Dean, I'm not sure if this is close to what you're looking for, but in
addition to the forfiles command, the "for" command that is built into
the command shell can be very handy, particularly if you're only going
one directory deep.
Check it out:
for /?
For example, you can do this to loop throu
That's one for the record books, folks.
Andrew was far more verbose than Matt!
Andrew 8)
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of MattSent:
Thursday, August 24, 2006 6:02 PMTo:
declude.junkmail@declude.comSubject: Re: [Declude.JunkMail] OT:
Spam
Title: Message
Another thing, Sharyn, is that the SKIPIFWEIGHT only
does as the name implies.
i.e. if you were expecting SKIPIFWEIGHT 30 to clamp the
total message weight at exactly thirty, that would be expecting too
much.
If all of your RBL and external tests and the Declude
built-in t
This morning I received a notice from Ipswitch that the above-mentioned
version is available.
I thought this was worth pointing out:
SMTP
* Added ability to create and use a static, predefined helo/ehlo
Hostname for all outgoing mail.
This is good news for the various admins who have been blocke
I dunno if they're the same people, but ReedExpo.com is similarly
allowed here. I have a few users who want that mail and they don't seem
to spam other accounts.
Andrew.
> -Original Message-
> From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On
> Behalf Of Darin Cox
> Sent: Monday, Sep
Here are the published details. The anonymous
researcher provided no information for other than the 2006 versions, so your
question is still open, Gunter.
http://www.zerodayinitiative.com/advisories/ZDI-06-028.html
Andrew.
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On
t;>>> SAME files
> >>>> in:
> >>>>
> >>>> D:\Imail\Declude
> >>>>
> >>>> together with binaries and the various other Declude files.
> >>>>
> >>>> I'm at loss!
> >>
You can follow the link in the text that the SpamCop RBL returns, and
then follow a link there for further information:
http://www.spamcop.net/w3m?action=blcheck&ip=216.9.248.51
Which shows that this Blackberry server is listed again and will be for
the next 16 hours. It also shows the recent hi
... And using fgrep is an order of magnitude faster than FIND in my
testing.
fgrep -i "Yaddah" dec0924.log
That would be a straightforward substitution. Then you can turn to
egrep when you actually want to do some regular expression work; I keep
it pretty simple, on the order of:
egrep -i "s
Never heard of ssdmbs.exe ...
Search your filesystem for the file and see if the location
or right-clicking on it gives you any insight.
I like to use Process Explorer from sysinternals.com for
stuff like this. It's like Task Manager but has all the features you wished
it had, like right-
The current hotfix for IMail Server 2006 includes a registry setting
that allows you to set a fixed domain name in your outbound HELO/EHLO.
Andrew.
> -Original Message-
> From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On
> Behalf Of John Shacklett
> Sent: Tuesday, September 26, 2006
__
> > >>>>
> > >>>> From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]
> > On Behalf Of
> > >>>> Andy Schmidt
> > >>>> Sent: Wednesday, July 12, 2006 2:36 PM
> > >>>> To: Declude.JunkMai
Hey, Craig.
Did you resolve this, and what was the
outcome?
Andrew 8)
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Colbeck,
AndrewSent: Tuesday, September 26, 2006 8:46 AMTo:
declude.junkmail@declude.comSubject: RE: [Declude.JunkMail] anyone
know
Yeah, what Matt said.
Message splitting before junkmail filtering would
be punishing for CPU time and somewhat more for disk time; message
splitting for the sake of whitelisting (or alternate actions) after
junkmail filtering would be an incremental cost.
And message splitting before junk
I've noticed the same thing in all versions of Ipswitch
IMail Server; the cause was broken connections, 99% of which were
spam.
Only in the absolute latest, v9.10 from Sep-06-2006, have I
noticed that IMail cleans up after itself. There is an item about this in
the latest release notes.
http://www.microsoft.com/presspass/press/2006/oct06/10-23OSPSenderIDPR.m
spx
Andrew.
---
This E-mail came from the Declude.JunkMail mailing list. To
unsubscribe, just send an E-mail to [EMAIL PROTECTED], and
type "unsubscribe Declude.JunkMail". The archives can be found
at http://www.ma
The version in the customer login area is out of date,
and the one inside the "current" Declude installer is 3 months further out of
date, even though the installer is newer than the all_list.dat
...
Andrew.
---This E-mail came from the Declude.JunkMail mailing list. Tounsubsc
DB> 1. The all_list.dat is not updated every
release.
DB> 2. The latest
all_list.dat is posted on the My Account page 6 July
06
Worse, David, is that the then-current all_list.dat is
not packaged with the release.
When Declude v3.13 was packaged, it included builds of
decludeproc.exe da
Markus, I believe that the XINHEADER and XOUTHEADER directives in the
global.cfg are what you're looking for.
They can be used to create an arbitrary header and populate it with any
exposed Declude variables, e.g.:
#XINHEADER X-Note: This E-mail was sent from %REVDNS%
([%REMOTEIP%]).
#XOUTHE
Oops, sorry, I jumped the gun and gave the wrong answer.
What I meant to say was that the %TESTSFAILED% variable could be used
with either XINTHEADER/XOUTHEADER and the client would have to parse the
whole line for, say, a traditional WEIGHT20 entry.
If there's a way to create an arbitrary entry
1 - 100 of 708 matches
Mail list logo
