hi list,
spamassassin is very nice, but i wanna pass the required_hits value as
command line parameter to spamc, but didn't find anything about this in the
manual.
any solution? thx, soenke.
---
This sf.net email is sponsored by:ThinkGeek
We
I'm getting a few false positives and noticed that a common factor seems
to be that the first component is "rtn" . The lists appear to be legit but
they are getting picked up for NO_MX_FOR_FROM , FROM_AND_TO_SAME,
COPYRIGHT_CLAIMED,CTYPE_JUST_HTML and the like.
Looks like a few music companies a
Rich,
I have a suggestion for your scripts that would make the grepping far less
CPU intensive in my experience. With your current setup your grepping the
entire file at each running. I use the logtail part of the logcheck
package to keep tabs on appenging log files. logtail records an offset
On Tue, Oct 08, 2002 at 06:41:44PM +0200, Ralf G. R. Bergs wrote:
> On Tue, 08 Oct 2002 16:18:43 +0200, DEFFONTAINES Vincent wrote:
>
> >Was
> >"libnet-smtp-server-perl" backported by anyone that you know of?
>
> You should be able to use the "testing" version of that package without any
> prob
Putting on my Commercial Software hat, Deersoft is entering final beta
on our SpamAssassin for Exchange product. We're looking for beta
testers. If anyone's interested, please contact me quickly to get in.
Current version of the product is targeted at Exchange 2000; 5.5 is in
the pipeline b
On Tue, Oct 08, 2002 at 04:46:56PM -0700, Steve Thomas wrote:
> Verify PGP signatures
>
>The Sendmail source distribution is cryptographically signed with the
>following PGP key:
>
> pub1024R/678C0A032001-12-18 Sendmail Signing Key/2002
> <[EMAIL PROTECTED]>
>
An FYI for anyone that's downloaded the sendmail source recently...
-Original Message-
From: CERT Advisory [mailto:[EMAIL PROTECTED]]
Sent: Tuesday, October 08, 2002 2:32 PM
To: [EMAIL PROTECTED]
Subject: CERT Advisory CA-2002-28 Trojan Horse Sendmail Distribution
-BEGIN PGP SIG
hey, I'm new to this list and ..well.. new to
Linux. :)
The problem I'm having is that when mail is
received via fetchmail (cron job)... all the mail is being delivered to
root. It only has this problem when I specify the MDA in .fetchmailrc as
spamasassin. When I remove the mda line and
On Tuesday 08 October 2002 02:10 pm, Theo Van Dinter wrote:
> I just got some spam that included an URL like:
>
> http:[EMAIL PROTECTED]
>
> Now, we all know the www.yahoo.com bit is a username, but the "hostname"
> threw me off. Sure enough, at least IE and Mozilla both convert the
> hex to IP.
Running qmail and executing SA via qmail-scanner. Everything setup to
only mark the subject as spam.
Now, I want to delete messages that contain words from a wordlist. I
have a custom test in /etc/mail/spamassassin which successfully finds
the test word and flags as spam.
The question: how do
Here is the script that I just made available.
http://hrtc.net/~csorrell
You can use this to monitor anything that logs through syslog, so long
as you have the facility name and a unique key phrase to trigger on. It
was designed around spamd, but I quickly incorporated my pop3 daemon and
a f
On Tue, 2002-10-08 at 14:03, Dallas Engelken wrote:
> > On 08 Oct 2002 13:01:34 -0500, you wrote:
> > >Would anyone be interested in a script that pipes spamd data
> > into mrtg
> > >to be graphed?
> > Yes. I already graph inbound and outbound mail to MRTG. A
> > spam one would be
> > nice, to
On Tue, 8 Oct 2002 14:37:57 -0700, you wrote:
>| 0xD5.0xEF.0x8F.0x9D
>
>resolves to www.amsterdamcash.com (213.239.143.157)
>
>It scares me to think that spammers might be starting to evolve into having
>the same intelligence level as a human.
This trick's been going on for years, but this is th
On Tuesday 08 October 2002 23:10 CET Theo Van Dinter wrote:
> I just got some spam that included an URL like:
>
> http:[EMAIL PROTECTED]
>
> Now, we all know the www.yahoo.com bit is a username, but the "hostname"
> threw me off. Sure enough, at least IE and Mozilla both convert the
> hex to IP.
| 0xD5.0xEF.0x8F.0x9D
resolves to www.amsterdamcash.com (213.239.143.157)
It scares me to think that spammers might be starting to evolve into having
the same intelligence level as a human.
---
This sf.net email is sponsored by:ThinkGeek
We
I just got some spam that included an URL like:
http:[EMAIL PROTECTED]
Now, we all know the www.yahoo.com bit is a username, but the "hostname"
threw me off. Sure enough, at least IE and Mozilla both convert the
hex to IP. Stupid browsers.
--
Randomly Generated Tagline:
Quiet, you kids! If
| IIRC, I recall an arguement that strongly says you aren't supposed to put
| an A on a domain. I forget what the main reasons were though.
I'd be interested in finding out. I typically put an A record on
'domain.tld', then CNAME the 'www' host to it. That way, a person can type
"domain.tld" or
| Is it "acceptable" to just run the CPAN install command while my mail
| server is up and running, and probably going to invoke SA to run during
| the upgrade, or should some/anything be disabled/suspended?
Probably. You could turn off your MTA for the moment or two it'll take to
upgrade if you'
Yep. I've thought about doing it, but haven't found the time/motivation for
it.
Which stats were you thinking of graphing?
| -Original Message-
| From: [EMAIL PROTECTED]
| [mailto:[EMAIL PROTECTED]]On Behalf Of
| Chadwick L. Sorrell
| Sent: Tuesday, October 08, 2002 11:02 AM
| To: [EMAI
Dallas Engelken wrote:
>
> if there is a more elegant way than this.. i'm happy to hear others solutions
> dallas
>
>
I've got another way (not necessarily more elegant, though) at
http://users.2z.net/rpuhek/scripts_public/spamd/
My approach currently relies on grepping the syslog file
> "SWS" == Sunil William Savkar <[EMAIL PROTECTED]> writes:
SWS> However, I also remember reading that i need to have an account set up to
SWS> even use razor. But in my case, it would be a pain for every one of my
SWS> users to have a razor account. Is there a way to set up only one accoun
> "SY" == Steve Yuroff <[EMAIL PROTECTED]> writes:
SY> I currently have 2.11 installed and running fine, and am ready to move
SY> to 2.42. I'll be using the CPAN intaller, and have 2 simple questions:
SY> Is it "acceptable" to just run the CPAN install command while my mail
SY> server is u
I currently have 2.11 installed and running fine, and am ready to move
to 2.42. I'll be using the CPAN intaller, and have 2 simple questions:
Is it "acceptable" to just run the CPAN install command while my mail
server is up and running, and probably going to invoke SA to run during
the upgrad
ok.
I am about to download razor2 and install, however, I still wanted some
clarification.
Currently it looks like the razor servers are only used if I actually have
razor client software installed. That is, without it, no go.
Is this correct? I was looking at Dns.pm for this behavior, which
Hi all,
While installing Spamassassin on my virtual host I'm encountering some errors :
opendir(./../..): Permission denied at
/usr/local/lib/perl5/5.6.0/Pod/Html.pm line 784
and
make: execvp: ./configure: Permission denied
make: *** [binaries.mk] Error 127
I have no root access. How do I s
>
> On 08 Oct 2002 13:01:34 -0500, you wrote:
>
> >Would anyone be interested in a script that pipes spamd data
> into mrtg
> >to be graphed?
>
>
> Yes. I already graph inbound and outbound mail to MRTG. A
> spam one would be
> nice, too.
>
>
i do this already via qmail-scanner-queue.pl
One of the many reasons I never put an A record on a domain name. I had a
hell of a conversion at an ISP I consult with when they moved from a one
server to many server setup. Previously they'd advertised domain.tld for
*everything*; MX, www, POP, SMTP, you name it. Everything was domain.tld.
T
It's a normal behavior. If you do not have a specific MX record for the
domain, the mail servers will look to the A record for the domain. So, if
www.domain.com has the same A record as domain.com, or if domain.com is
CNAME'd to www.domain.com, than that system will receive the mail for
doma
On 08 Oct 2002 13:01:34 -0500, you wrote:
>Would anyone be interested in a script that pipes spamd data into mrtg
>to be graphed?
Yes. I already graph inbound and outbound mail to MRTG. A spam one would be
nice, too.
---
This sf.net email
Would anyone be interested in a script that pipes spamd data into mrtg
to be graphed?
--
Chadwick L. Sorrell
Internet Technician
Hancock Internet
[EMAIL PROTECTED]
---
This sf.net email is sponsored by:ThinkGeek
Welcome to geek heaven.
http:
On Tue, Oct 08, 2002 at 12:31:22PM -0400, Michal wrote:
> But now when user gets html spam , he sees SA summary report joined into one
> line which is really hard to read.
>
> Is there way how to attach on the end of each SA report line ?
At the moment, the appropriate solution is to put the re
On Tuesday 08 October 2002 18:42 CET John McCoy, Jr. wrote:
>[...]
> For every message I get three lines first is fine, second two get \n on
> the end of each. Works fine just looks funky.
There were some newline characters in some spamd syslog messages. I removed
them, either 2.43 or 2.50 (what
Try updating CPAN with
perl -MCPAN -e 'install Bundle::CPAN'
and then updating SA. You shouldn't need to update Perl in order to update
CPAN.
HTH,
St-
| -Original Message-
| From: [EMAIL PROTECTED]
| [mailto:[EMAIL PROTECTED]]On Behalf Of
| Odhiambo Washington
| Sent: Tuesday, October
I'm preparing to roll out SA on another test box in preparation for a
production installation soon. I'm testing it on another box because my
first test box is testing way to many different (but related things right
now). My current test install is
Sendmail 8.12.6
Procmail 3.22
SpamAssassin 2.4
I did try installing 2.4.2 via CPAN
perl -MCPAN -e 'install Mail::SpamAssassin'
..this ended up tryingto install ver 5.8.0 of CPAN and a loop that never
ended
Anyone seen that?
-Wash
--
Odhiambo Washington <[EMAIL PROTECTED]> "The box said 'Requires
Wananchi Online Ltd. www.wanan
Odhiambo Washington wrote:
> I did try installing 2.4.2 via CPAN
>
> perl -MCPAN -e 'install Mail::SpamAssassin'
>
>
> ..this ended up tryingto install ver 5.8.0 of CPAN and a loop that never
> ended
>
> Anyone seen that?
Try:
perl -MCPAN -e 'install CPAN'
first. Then upgrade SpamAssass
Of course I could always be the issue but here goes:
On Sol7
Perl 5.6.1
SA 2.4.2 Release tar ball (saw it with CVS too)
For every message I get three lines first is fine, second two get \n on
the end of each. Works fine just looks funky.
Oct 8 09:29:42 koko.mills.edu spamd[24078]: server sta
On Tue, 08 Oct 2002 16:18:43 +0200, DEFFONTAINES Vincent wrote:
>Was
>"libnet-smtp-server-perl" backported by anyone that you know of?
You should be able to use the "testing" version of that package without any
problems. This is what I'm doing.
--
L I N U X .~.
The Choice /V
I use on my server SA with mime defang function turned off.
But now when user gets html spam , he sees SA summary report joined into one
line which is really hard to read.
Is there way how to attach on the end of each SA report line ?
I know I can use custom templates, but all lines with test
Odhiambo Washington wrote:
> After being bitten by bugs in 2.41, I've downgraded to 2.31 but now spamd
> spews errors like I've never seen before:
Delete the contents of /usr/local/share/spamassassin and reinstall. There
are some files that were new to v2.4x, so they won't be overwritten when yo
That explains it, thanks.
Terry Poperszky MCSE, CCNA
Network Manager
SOS Staffing Services
801-257-5706
[EMAIL PROTECTED]
-Original Message-
From: Theo Van Dinter [mailto:[EMAIL PROTECTED]]
Sent: Tuesday, October 08, 2002 8:23 AM
To: Terry Poperszky
Cc: [EMAIL PROTECTED]
Subject: Re:
On Tue, Oct 08, 2002 at 08:07:11AM -0600, Terry Poperszky wrote:
> I maintain about 20 different domain registrations, only a couple of
> which receive emails (At least legitimate ones). One domain that had
> been receiving emails and was now defunct, was still receiving hundreds
> of SPAM mails p
Thanks to all that replied to this (two replies below). The CPAN install
worked (not something I'd heard of before, which is why I didn't try it).
In the end though, I upgraded the server to RH8 (which worked perfectly!),
and installed the RH RPM of SA, as it just seemed a lazy way to ensure I was
Adding this to my sources.list and trying to upgrade spamassassin gets apt
complain about package
"libnet-smtp-server-perl" not existing.
I checked, just in case my sources.list would be inconsistent, but no such
package exists on Debian woody.
Is there any other line I am missing in my sources.l
I agree. I think a system whereby the weighted average of long term scores
dictates how well each email is received. ie, a friend that sends you 20
good emails should have a heavily weighted negative average to offset the
occassional spam type email they may send you. And a spammer that sends
On Tue, Oct 08, 2002 at 04:05:10PM +0300, Odhiambo Washington wrote:
> How do I solve the issue below???
>
>
> After being bitten by bugs in 2.41, I've downgraded to 2.31 but now spamd spews
> errors like I've never seen before:
>
> Oct 8 16:03:37 ns2 spamd[97835]: Failed to run MSN_GROUPS Spa
Title: SPAM related, but not SPAMASSASSIN question
If there is a better list for this, please feel free to direct me to it.
I maintain about 20 different domain registrations, only a couple of which receive emails (At least legitimate ones). One domain that had been receiving emails and was
> -Original Message-
> From: Stephane Lentz
> Sent: Tuesday, October 08, 2002 6:52 AM
>
>
> On Tue, Oct 08, 2002 at 11:32:18AM +0100, Justin Mason wrote:
> >
> > "viviane.correge" said:
> >
> > > I am running on a Readhat 7.1 system :
> > >
> > > Compil
I found a portable sprintf at:
http://www.ijs.si/software/snprintf/
After compiling the snprintf i added snprintf.o to CFLAGS = -g -O2 in
binaries.mk and did a make. SpamAssassin 2.42 compiled and is working great.
I did this on Digital Unix (tru64) 4.0e
Chris Myers
---
Ahoy!
How do I solve the issue below???
After being bitten by bugs in 2.41, I've downgraded to 2.31 but now spamd spews
errors like I've never seen before:
Oct 8 16:03:37 ns2 spamd[97835]: Failed to run MSN_GROUPS SpamAssassin test,
skipping: (Can't locate object method
"check_for
That is what this config is doing. By any chance are you using Debian linux?
This setup that I tried (badly) to explain does not deliver locally. It is the public
looking MX that receives all SMTP for the domain. After postfix sends through
filter.sh (which calls spamc) it reinjects it to pos
hi all
how do you guys recommend i setup a system where by our local outlook users
are about to report spam to razor or to a local blacklist
resist the irresistible comments about world calamity that they are able to
inflect with this magic bullet :-)
what i'd really like to be able to do it allow
On Mon, Oct 07, 2002 at 06:23:35PM +0200, Per Goetterup wrote:
> I'm using SpamAssassin and I'm also handling our abuse-mails, which is a
> somewhat bad combination because all complaint messages from SpamCop also gets
> tagged as spam, which in a way is correct but very unfortunate because then
In that case, my suggestion is to download/install mailscanner or
amavisd-new, and configure it to make use of spamassassin for you. I
personally use amavis to do virus scanning, and SA via procmail, but am
planning on configuring amavis to call SA.
In any event, amavis (and mailscanner) acts
On Tue, Oct 08, 2002 at 11:32:18AM +0100, Justin Mason wrote:
>
> "viviane.correge" said:
>
> >I am running on a Readhat 7.1 system :
> >
> >Compiled/installed sendmail 8.12.5, installed
> > spamassassin 4.32 from ports, and installed spama
> Well, the initial idea behind the AWL was to exploit the fact that
> spammers typically forge their From addresses randomly, whereas legit
> senders do not.
I've found that a surprising number of spammers don't bother to use
different From addresses between spam runs. Another thing I run into i
Michael Moncur said:
> Justin Mason Wrote:
>
> > That's exactly what is intended; the idea is that legit senders who
> > habitually score just > 5, will eventually get out of "AWL hell" after
> > 6-10 messages.
>
> Whoa. This sounds very wrong to me. What's the difference between a legit
> send
"viviane.correge" said:
>I am running on a Readhat 7.1 system :
>
>Compiled/installed sendmail 8.12.5, installed
> spamassassin 4.32 from ports, and installed spamass-milter-0.1.1
> got everything configured and running ...
Mike Whitaker wrote:
> Debian woody install of spamassassin, unchanged from the defaults except
> for some additions to the whitelist:
>
> Running
>
> zcat sample-nonspam.txt.gz | spamassassin -t
>
> gets me the following headers inserted:
>
>
>>X-Spam-Status: No, hits=0.2 required=5.0
>> t
Debian woody install of spamassassin, unchanged from the defaults except
for some additions to the whitelist:
Running
zcat sample-nonspam.txt.gz | spamassassin -t
gets me the following headers inserted:
> X-Spam-Status: No, hits=0.2 required=5.0
> tests=GAPPY_TEXT,LINES_OF_YELLING,PGP_SIGNA
Hello,
I am running on a Readhat 7.1 system :
Compiled/installed sendmail 8.12.5, installed
spamassassin 4.32 from ports, and installed spamass-milter-0.1.1
got everything configured and running
On Mon, 07 Oct 2002 23:41:42 -0400, Duncan Findlay wrote:
>Spamassassin 2.42 packages for Debian GNU/Linux "woody" are now available!
>
>Add the following to your /etc/apt/sources.list:
>deb http://people.debian.org/~duncf/debian/ woody main
>
>Now, apt-get update, and apt-get upgrade. You will h
I guess I forgot to say that it's on a mail-relay, which is supposed to scan the mail,
and not deliver locally.
So what I basically need, is the way to apply a contentfilter in postfix, inject the
mail in spamd/spamc, and then reinject the mails in the postfix queue.
Just like a virus-scanner
63 matches
Mail list logo
