On Tue, 2002-05-28 at 15:30, Tony L. Svanstrom wrote:
> On 28 May 2002 the voices made Tony K Lindstrom write:
>
> > > > > > tony.lindstrom |/usr/local/bin/spamcheck.sh
>
> > So my question still is, (I put his back on the list) is it possible to
> > use the sendmail alias to use sp
[Cross post alert... This should have been posted on `talk'
I had my wires crossed for a few posts which will no be posted to
`talk']
"Michael Moncur" <[EMAIL PROTECTED]> writes:
>> Running some of my spam thru and makine some adjustments, like
>> lowering the required score to 2 (default 5).
[Cross post alert... This should have been posted on `talk'
I had my wires crossed for a few posts which will no be posted to
`talk']
The online docs at:
http://spamassassin.org/doc/Mail_SpamAssassin_Conf.html
Come within a hairs breadth of giving full details of what will work
with whitelis
[Cross post alert... This should have been posted on `talk'
I had my wires crossed for a few posts which will no be posted to
`talk']
Just recently installed Spamassassin and using it with procmail.
I have a test directory setup to test out procmailr recipes etc and so
far am just trying spamas
[Cross post alert... This should have been posted on `talk'
I had my wires crossed for a few posts which will no be posted to
`talk']
Being very new to spamassassin, I'm wondering if I something setup
very wrong. I just installed from CPAN and so far have only made a
few edits to /etc/mail/spa
Thanks for the replies. I now have a working pair of post-SA procmail
filters that eliminates duplicate message ids and approximately duplicate
message bodies:
:0
* ^X-Spam-Status: Yes
{
:0 Wh: msgid.lock
| $FORMAIL -D 16384 $HOME/tmp/msgid.cache
:0 W: cksum.
Duncan Findlay wrote:
>But, tests meant to catch spam are ill-suited for determining
>non-spam. I agree that negative scores are a good thing, but only on
>tests designed to do that.
>
>The GA is amazing. But humans are smarter than computers (we have to
>program them after all). The GA is not pe
Hi
Is it possible to local system wide whitelist and blacklist enteries from an
SQL database rather then from the config files in the spamassassin
directory.
This would make it easier for remote updates as I would not have to edit the
file.
Cheers
Andrew
On Tue, May 28, 2002 at 09:42:22PM -0600, Steve Cabito wrote:
>
> When I try to start spamd, I get:
> "Your vendor has not defined socket macro SOMAXCONN..."
>
> I have Perl 5.6.1 (possibly missing modules?) on an old Linux distro (kernel
> 1.2.13). What am I looking for?
A new Kernel?
perl -M
When I try to start spamd, I get:
"Your vendor has not defined socket macro SOMAXCONN..."
I have Perl 5.6.1 (possibly missing modules?) on an old Linux distro (kernel
1.2.13). What am I looking for?
Thanks,
Steve Cabito
Chama ValleyNet
PO Box 10
Chama, NM 87520-0010
505 756-2596
steve@chamava
On Sun, May 26, 2002 at 10:00:32PM -0400, Duncan Findlay wrote:
> On Sun, May 26, 2002 at 10:55:34PM +0200, Tony L. Svanstrom wrote:
>
> I think so. Rules designed to catch spam, scored negatively, even if
> they occur more frequently in non-spam than spam, are NOT good
> indicators of spam. They
On Tue, May 28, 2002 at 05:21:39PM -0500, Eric Six wrote:
>
> Is there a way to dump all "spam" email to a file or redirect it to another
> user account? I am using the latest spamass-milter for spamassassin. Before
> I can implement this company wide, we want to be able to see how much real
> ma
If we did anything like this, I think it would be very important to
break the rule files up into two separate pieces to distinguish rules
that are very dependent on the particular .pm version - i.e. the eval()
stuff.
Rules would almost need a major/minor version number like a library.
-- Nathan
On Tue, May 28, 2002 at 05:01:50PM -0600, Randy Cassingham wrote:
> The README gives great step-by-step instructions for installing the
> software, except it doesn't start soon enough! I'm a *nix newbie;
> I have root access on my server (dangerous, but not as dangerous as
> someone ELSE having i
On Tue, May 28, 2002 at 05:21:39PM -0500, Eric Six wrote:
> Is there a way to dump all "spam" email to a file or redirect it to another
> user account? I am using the latest spamass-milter for spamassassin. Before
> I can implement this company wide, we want to be able to see how much real
> mail
Hi
Can someone tell me if there is an automatic process to keep the mail rules
updates from the contributions of people from around the world.
I ask, as over the past few week I have had more and more spam get through
not being detected.
Cheers
Andrew
___
> We can't be using the same Internet, because a lot of the spam that I'm
> getting has my e-mailaddress, and only my e-mailaddress, in the
> To-header; your
> rule would seriously hurt me...
I agree, although it might work as a low-scoring rule. I used to use a rule
like this (in Outlook) as my
On Tue, 28 May 2002 the voices made Randy Cassingham write:
> The README gives great step-by-step instructions for installing the
> software, except it doesn't start soon enough! I'm a *nix newbie;
> I have root access on my server (dangerous, but not as dangerous as
> someone ELSE having it! ;-
The README gives great step-by-step instructions for installing the
software, except it doesn't start soon enough! I'm a *nix newbie;
I have root access on my server (dangerous, but not as dangerous as
someone ELSE having it! ;-) -- but I don't know where to download
the tar.gz file TO to start.
On Tue, 28 May 2002 the voices made dman write:
> Also keep a way to test the raw text itself, since some junk is easily
> identified by the raw format and not so obvious after it has been
> prepared for display.
Search the Net for dmmh; it'll decode your QP- and base64-headers, and give
the ol
Is there a way to dump all "spam" email to a file or redirect it to another
user account? I am using the latest spamass-milter for spamassassin. Before
I can implement this company wide, we want to be able to see how much real
mail is lost.
TIA
Eric Six [EMAIL PROTECTED]
__
Thanks for your comments Vivek.
>Looking at the code, it seems to use Net::SMTP::Server::Client to read
>the message, then process it. You can lose your mail this way if your
>program or postfix dies between the time postfix hands it to your
>program and your program hands it back to postfix. T
I write:
>> I don't think I've ever received a UTF-8 Korean spam,
dman <[EMAIL PROTECTED]> writes:
> That's why someone needs to convert the characters to ks_c_5601-1987
> and euc-kr for SA's tests.
Most of the spam is coming through as 8-bit ks_c_5601-1987. That's
what the test should look
Matt Sergeant <[EMAIL PROTECTED]> writes:
> If Craig would work on the email parser I posted to the dev list instead
> of MIME-tools, it decodes all character sets (even embedded ones in
> headers) to UTF-8, making detecting alternate character set stuff
> infinitely easier.
Which is the bett
On Tue, May 28, 2002 at 12:47:35PM -0700, Bart Schaefer wrote:
> # Normally, one doesn't need a lock on a { } action. Lock on delivery.
> :0
> * ^X-Spam-Status: Yes
> {
> :0 Wh: msgid.lock
> | formail -D 8192 $HOME/tmp/msgid.cache
>
> :0 a
> /dev/null
this is unnecessary. If the formail re
All:
Please forgive me and point me there if this has been addressed already...
I'm using SA 2.11, and would love to update the rulebase on a regular
basis, but I don't want to reinstall and config SA again and again.
Wouldn't it be possible to run an automated script to go get the "latest"
rul
On Tue, 28 May 2002, Skip Montanaro wrote:
> :0:spam.lock
> * ^X-Spam-Status: Yes
> {
> # it's spam - is it a duplicate?
> :0 Wh: msgid.lock
> | formail -D 8192 $HOME/tmp/msgid.cache
> $SPAM
> }
>
> If it's a duplicate I just want to drop the messa
> "MP" == Max Paperno <[EMAIL PROTECTED]> writes:
MP> Comments welcome. Disclaimer: I'm no Perl expert so if there is
MP> something glaringly wrong, please let me know. I do know that
MP> it's been working very well here for over a month scanning up to
MP> several K messages per day.
Looki
On Tue, May 28, 2002 at 02:27:04PM -0500, Skip Montanaro wrote:
> :0:spam.lock
> * ^X-Spam-Status: Yes
the lock here doesn't make any sense, you're not delivering.
> {
> # it's spam - is it a duplicate?
> :0 Wh: msgid.lock
> | formail -D 8192 $HOME/tmp/msgid.c
(Sorry, this is really a procmail question, but it relates to how I use SA.
Does that make it okay to post here?)
I get email for lots of different email addresses: [EMAIL PROTECTED],
[EMAIL PROTECTED], [EMAIL PROTECTED], [EMAIL PROTECTED], etc.
Consequently, I tend to get lots of duplicate spam
On Tue, 28 May 2002 the voices made Skip Montanaro write:
> Craig,
>
> Can you give a brief description of the corpus (how big (both spam and
> non-spam), how well exercised the rules are, etc)? I would find it useful
> to see how many times each rule is triggered. That would allow me to poke
>
Hi Craig,
Thanks for explaining why some scores aren't evolved.
I'm an old GA and optimization programmer, so I
naturally find SA's use of a GA pretty interesting.
You suggested using all network tests.
I've installed razor and made sure spamassassin isn't
called with the -L option.
However,
Craig> The section at the end is simply those rules where there wasn't
Craig> enough data in the corpus to justify allowing the GA to modify
Craig> the scores. Doesn't mean that those rules don't show up at all;
Craig> just that they don't show up more than a small handful of tim
Matt Thoene wrote:
> Hello,
>
> Can the...
>
> header
> description
> score
>
> ...format be used with spamassassin run individually from procmail or is
> it a function usable only with spamd/spamc?
The config files are used by both /usr/bin/spamassassin and spamd.
So yes, the format can be u
Hello,
Can the...
header
description
score
...format be used with spamassassin run individually from procmail or is
it a function usable only with spamd/spamc?
--
Regards,
Matt
___
Don't miss the 2002 Sprint PCS Application Devel
On Tue, 28 May 2002 the voices made Scott Nelson write:
> Perhaps the end user could supply a local delivery name
> and this could be parsed into parts for rules checking.
>
> i.e.
> headerIS_ADDRESSED_TO_ME To =~ /$local_email/
> describe IS_ADDRESSED_TO_ME To: contains your email addre
> "DAT" == Dan A Thompson writes:
>> I realise that it is not an intelligent thing to block mail where the
>> 'To' field doesn't mention my domain name (mailinglists etc).
DAT> Actually, I've found that to be a VERY intelligent and effective thing to
DAT> filter on, and I was rather surpri
At 03:53 PM 5/28/02 +0100, Tony Hoyle wrote:
>> -Original Message-
>> From: Phydeaux [mailto:[EMAIL PROTECTED]]
>> Sent: 28 May 2002 13:45
>> To: [EMAIL PROTECTED]
>> Subject: Re: [SAtalk] stopping headers where to: and from:
>> are not part
>> of my domain
>>
>>
>> The rule would be ev
> "IF" == Ian Fraser <[EMAIL PROTECTED]> writes:
IF> I realise that it is not an intelligent thing to block mail where the
IF> 'To' field doesn't mention my domain name (mailinglists etc). But is it
IF> possible to block when both the 'To' and the 'From' are domains that
IF> happily give away
> -Original Message-
> From: Phydeaux [mailto:[EMAIL PROTECTED]]
> Sent: 28 May 2002 13:45
> To: [EMAIL PROTECTED]
> Subject: Re: [SAtalk] stopping headers where to: and from:
> are not part
> of my domain
>
>
> The rule would be even more handy if it could be checked against
> all loca
Jason wrote:
> I don't know if this has been mentioned before... Came across his
> mailing list this morning.
>
> http://www.simson.net/pipermail/simsoft/2002-May/08.html
Hmm, I read this:
"Mason's spam-detection engine was incredibly accurate. Unfortunately,
it was also quite slow, someti
At 04:46 AM 5/28/2002 -0500, Dan A Thompson wrote:
>> I realise that it is not an intelligent thing to block mail where the
>> 'To' field doesn't mention my domain name (mailinglists etc).
>
>Actually, I've found that to be a VERY intelligent and effective thing to
>filter on, and I was rather s
I don't know if this has been mentioned before... Came across his
mailing list this morning.
http://www.simson.net/pipermail/simsoft/2002-May/08.html
Jason Portwood
[EMAIL PROTECTED]
___
Don't miss the 2002 Sprint PCS Applica
On 28 May 2002 the voices made Tony K Lindstrom write:
> > > > > tony.lindstrom |/usr/local/bin/spamcheck.sh
> So my question still is, (I put his back on the list) is it possible to
> use the sendmail alias to use spamassassin and how should it be done?
If you can pipe the mess
> I realise that it is not an intelligent thing to block mail where the
> 'To' field doesn't mention my domain name (mailinglists etc).
Actually, I've found that to be a VERY intelligent and effective thing to
filter on, and I was rather surprised to find that our beloved Assassin
doesn't do t
Marc MERLIN wrote:
> Ok, so SA 2.21 sorts the rules by score in an attempt to stop scanning the
> message if the user specified a scan threshold
> Unfortunately, this completely breaks rule dependencies. Granted, those are mostly
>(only?) RBL rules for now, but rule dependency is needed somewhe
Mad Martian wrote:
> I am trying to install SpamAssassin. When I run the command "perl
> Makefile.PL" in the \home\user\SpamAssassin directory I get the following
> Perl error message:
>
> "Warning: I could not locate your pod2man program. Please make sure your
> pod2man program is in your PATH b
Lars Hansson wrote:
> On Monday 27 May 2002 10:00, Duncan Findlay wrote:
>
>>If we want to have negative scoring rules, we should try to put
>>together regexp's that are actually non-spam indicators. The
>>DEAR_SOMEBODY rules is a perfect example. "Dear Sir/Madam" is a sign
>>of spam, "Dear Dunca
dman wrote:
> What is the charset GB2312? Is it a windows thing? Trying to display
> this spam message just gives me an odd sequence of high-order latin1
> chars.
It's an encoding for Chinese characters.
> Also, what is =?UNKNOWN?Q? in a header (eg Subject:)? I know it's
> supposed to give th
Jason Haar wrote:
> On Fri, May 24, 2002 at 01:42:13PM +0100, John Horne wrote:
>
>>I've started using the '-L' recently too, I think our exim MTA does enough
>>(?) network/DNS checks already. You may want to look at the '-S' option on
>>spamd as well :-)
>
>
> There was a thread a while back a
I have been receiving lots
of spam where to the 'to' header is does not contain my domain name. For
example:
From:
[EMAIL PROTECTED]
To:
[EMAIL PROTECTED]
I realise that it is not an
intelligent thing to block mail where the 'To' field doesn't mention my domain
name (mailinglist
On Monday 27 May 2002 10:00, Duncan Findlay wrote:
> If we want to have negative scoring rules, we should try to put
> together regexp's that are actually non-spam indicators. The
> DEAR_SOMEBODY rules is a perfect example. "Dear Sir/Madam" is a sign
> of spam, "Dear Duncan" is not.
No. "Dear Si
52 matches
Mail list logo
