At 04:51 PM 9/26/03 -0700, Chad Simmons wrote:
I've noticed after installing Spamassassin, I'm still getting a large
number of
messages passed through without matching any of the rules.
Many spammers are using paypal.com to get their emails "whitelisted". Also
I've
noticed that they will use in
I've noticed after installing Spamassassin, I'm still getting a large number of
messages passed through without matching any of the rules.
Many spammers are using paypal.com to get their emails "whitelisted". Also I've
noticed that they will use invalid HTML tags to hide high risk words from
cont
At 07:09 PM 9/26/03 +0200, Spam wrote:
For the past couple of months I have had some email subject lines being
rewritten as "SPAM" even though the spam score is much lower than my
threshold (currently set for myself at 4.1). It happens sporadically and I
can't seem to see a pattern. I hav
On Fri, 26 Sep 2003, Justin Mason wrote:
> 2. in the -r command line, use -p to tell it to read that prefs file.
> If you really want more ways to speed this up, I'd suggest using the
> Mail::SpamAssassin object directly, reusing it for several methods as
> Theo's "handlespam.txt" script does.
D
At 03:18 PM 9/26/03 -0700, Ron Snyder wrote:
I'm running SA 2.60-rc1, and have noticed that spamassassin is not catching
microsoft executable attachments when they arrive as an enclosed bounce
message. Shouldn't SA be detecting the microsoft_executable stuff since the
test is done on rawbody?
The t
I'm running SA 2.60-rc1, and have noticed that spamassassin is not catching
microsoft executable attachments when they arrive as an enclosed bounce
message. Shouldn't SA be detecting the microsoft_executable stuff since the
test is done on rawbody?
Here's the SA headers-
>From the sendmail qf* fil
On Fri, Sep 26, 2003 at 02:15:46PM -0400, Dominic Germain wrote:
> fold_headers = 0
that's invalid. try "fold_headers 0"
--
Randomly Generated Tagline:
Your mouse has moved. Windows NT must be restarted for the change to
take effect. Reboot now? [ OK ]
pgp0.pgp
Description: PGP sign
Justin, why not
1. create a prefs file for use when reporting:
use_razor2 1
use_pyzor 1
use_dcc 1
use_bayes 0
2. in the -r command line, use -p to tell it to read that prefs file.
That should work.
Regarding the stripping -- it's a pretty cheap operation if the msg is
already stripped
> No, there is no processing done before reaching me. The mail is not going
> through my ISP.
Are you sure its not being scanned by *someone* before you though ? It
doesn't have to be your ISP. The particular messages you cited looked like
it came through a mailing list, so maybe the mailing list
Hi,
Recently, I discover that Sympatico's SMTP server eat messages that
contains folded headers containing SA report. Their InterMail server
will accept and simply discard messages if a ":" caracter followed by a
space is found on a line beginning by a tab... very weird...
Since many of my su
And what about when the user name and home is in the database only and the mails are
delivered under some other "universal" user??
HOw SA knows, where is the real user's home directory?
On Fri, 26 Sep 2003, Matt Kettler wrote:
> At 03:33 AM 9/26/03 -0700, JP Kelly wrote:
>
> >Why is SA looking i
I guess I should RTFL.
Patch applied
Error stopped
---
This sf.net email is sponsored by:ThinkGeek
Welcome to geek heaven.
http://thinkgeek.com/sf
___
Spamassassin-talk mailing list
[EMAIL PROTECTED]
Per olof Ljungmark wrote:
> Is it possible to move a "auto-whitelist" and "bayes*" database from
> one machine to another or does it have to be created on the machine
> it will run on?
As long as a) the two machines are running the same type of hardware (ie
both x86, or both PPC) and b) both machi
Ryan,
My daughters machine is NOT sending mail directly to me, she uses the
mail services provided by an ASP opposed to an ISP. The Received from
headers do include an ip address that is in the RCVD_IN_DYNABLOCK list.
However the SMTP server is not in a RCVD_IN_DYNABLOCK list. Therefore
it
You are
correct!!
basic.wirehub.nl/spamstats.html
Down towards
the bottom is a static file that is updated every hour. I wget it all the time.
-Original Message-From: Me
[mailto:[EMAIL PROTECTED]Sent: Friday, September 26, 2003
2:13 AMTo:
[EMAIL PROTECTED]Subject: [SA
No, there is no processing done before reaching me. The mail is not going
through my ISP.
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Malte S.
Stretz
Sent: Friday, September 26, 2003 7:52 PM
To: [EMAIL PROTECTED]
Subject: [SAtalk] Re: Mail isn't spam
Razor 2 is having a problem:
Sep 26 12:10:24 crabtree spamd[816]: debug: Razor2 is available
Sep 26 12:10:24 crabtree spamd[816]: debug: entering helper-app run mode
Sep 26 12:10:24 crabtree spamd[816]: razor2 check skipped: Insecure
dependency in connect while running setuid at
/Library/Perl/dar
> >I'm trying to install 2.60 out of CPAN. I get the usual taint errors for
> >AIX, but after a "force" install, I try to run spamd and get:
> >
> >Insecure directory in $ENV{PATH} while running with -T switch at
> > /usr/opt/perl5/lib/5.6.0/Cwd.pm line 85.
> >
> >I haven't a clue as t
This was from the virus list. Interesting. I wonder if they are using this
to do the DDOS attacks?
Figured I would pass it on.
--Chris Santerre
> -Original Message-
> From: Brian *munged*
> Sent: Thursday, September 25, 2003 1:05 PM
> To: Focus-Virus
> Subject: Analysis of a Spam Trojan
On Friday 26 September 2003 19:09 CET Spam wrote:
I recommend a Real Name, especially on an anti-spam list :o)
> For the past couple of months I have had some email subject lines being
> rewritten as SPAM even though the spam score is much lower
Rod wrote:
> Is it possible to tell SA that mail coming from machine "X" on local
> network is not "From local machine" ?
>
> -50 LOCAL_RCVD Received from local machine
Where is that rule coming from? I am running 2.60 and just checked
2.55 and I can't find that rule anywhere.
On Friday 26 September 2003 18:21 CET Smart,Dan wrote:
> I used to run timelog_path when I wanted to see how long things took in
> SA?
>
> now spamd says its can't parse this variable.
Yes, timelog code was removed for 2.60 because it was buggy as hell and
slowed down the overall checking time (e
Hello all,
For the past couple of months I have had some email subject lines being
rewritten as SPAM even though the spam score is much lower than my
threshold (currently set for myself at 4.1). It happens sporadically and I
cant seem to see a pattern. I have been using SpamAssassin
Title: Blank Stationery
OK, the SA 2.60
problem: I chown root:filter on /tmp/root-tmp.106cb11/files and chmod 770
/tmp/root-tmp.106cb11/files. That fixed the access problem
On razor, all the perl
libs I installed had directories set to 0700. Reset all under
/usr/lib/perl5/site_perl/5.6.
Hello all,
For the past couple of months I have had some email subject lines being
rewritten as SPAM even though the spam score is much lower than my
threshold (currently set for myself at 4.1). It happens sporadically and I
cant seem to see a pattern. I have been using SpamAssassin
On Fri, 26 Sep 2003, Simon Byrnand wrote:
> >If I eliminate the SA -d call then that leaves me with only one other
> >CPU-draining call: SA -r
> >
> ># Report to Pyzor
> >:0 Wc
> >| /usr/bin/pyzor report
> >
> ># Report to Razor
> >:0 Wc
> >| spamassassin -r
> >
> >Now one thing I never thought a
Title: Blank Stationery
I used to run timelog_path when I wanted to
see how long things took in SA?
now spamd says its can't parse this
variable.
How do you get timings now?
<>
Hello everyone.
I've currently implemented SpamPD on my mail gateway on our DMZ. So far, in
my testing, it seems to be working very well. It does exactly what I need
it to do.
However, i've run into a slight problem when im trying to first start up
SpamPD.
I get the following when I try and st
At 08:55 AM 9/26/03 -0400, Jack Gostl wrote:
I'm trying to install 2.60 out of CPAN. I get the usual taint errors for
AIX, but after a "force" install, I try to run spamd and get:
Insecure directory in $ENV{PATH} while running with -T switch at
/usr/opt/perl5/lib/5.6.0/Cwd.pm line 85.
I
On Fri, 26 Sep 2003, Simon Byrnand wrote:
> No, however maybe I missed something in your description, but it sounds
> like you're doing automated reporting to both pyzor and razor ? If you are,
> please don't do that, both razor and pyzor specifically ask that only spam
> verified by a human be
You need to specify the location of the bayes_ files with
--dbpath=/where/ever/bayes
-Original Message-
From: Scott Renda [mailto:[EMAIL PROTECTED]
Sent: 26 September 2003 00:37
To: [EMAIL PROTECTED]
Subject: [SAtalk] bayes dump question
Running SA 2.60 on a redhat 8.0 box w/o latest p
Took the plunge and upgraded from 2.54 to 2.6 yesterday. 1 mailing-list
false positive over night. But 2.6 is catching a lot more spam than 2.54
here. Awesome!
Thanks!
Bret
---
This sf.net email is sponsored by:ThinkGeek
Welcome to geek heaven
I'm trying to install 2.60 out of CPAN. I get the usual taint errors for
AIX, but after a "force" install, I try to run spamd and get:
Insecure directory in $ENV{PATH} while running with -T switch at
/usr/opt/perl5/lib/5.6.0/Cwd.pm line 85.
I haven't a clue as to what this means. Can
On Thu, Sep 25, 2003 at 11:44:28PM -0700 or thereabouts, Daniel Quinlan wrote:
> Sean McCrohan <[EMAIL PROTECTED]> writes:
> > This is my first week with SpamAssassin, so I may be missing something
> > obvious, but the message I've attached sections of below puzzled me.
> > While the body report s
At 03:33 AM 9/26/03 -0700, JP Kelly wrote:
Why is SA looking in /dev/null/ ???
SA looks in the home directory for the user it runs as. In the case of
spamd, if no user is ever specified, and it is started as root, it will
fall back to the user "nobody" for security.
Try passing the -u parameter
At 11:42 AM 9/26/03 +0200, Jonathan G - Mailing List wrote:
Hi folks,
i would like to know how can i disable the relays.osirusoft.com rbl checks
form my spamassassin (v2.55 from CPAN)
my config file (i provide it because i'm a newbie in SA) is in
http://www.surestorm.com/data/SpamAssassin_loca
On Fri, Sep 26, 2003 at 03:33:02AM -0700 JP Kelly wrote :
> Can someone tell me why auto-learn is failing here.
> >From the log:
Looks like your home dir is set to /dev/null - odd!
--
Ian
---
This sf.net email is sponsored by:ThinkGeek
Welco
On Fri, 26 Sep 2003 08:15:40 +0100, you wrote:
>depends on the RBL I guess, there might be an argument for doing that with
>something like spews, or cc specific ones as they probably don't change that
>much hour to hour, but with something like spamcop you'd have no chance as
>it changes all the t
Can someone tell me why auto-learn is failing here.
>From the log:
debug: running meta tests; score so far=32.003
Sep 26 03:25:05 crabtree spamd[4856]: debug: auto-learn? ham=0.1, spam=12,
body-hits=17.294, head-hits=19.505
Sep 26 03:25:05 crabtree spamd[4856]: debug: auto-learn: currently using
s
Hi folks,
i would like to know how can i disable the relays.osirusoft.com rbl
checks form my spamassassin (v2.55 from CPAN)
my config file (i provide it because i'm a newbie in SA) is in
http://www.surestorm.com/data/SpamAssassin_local.cf.html
This is an example of report of my SA v2.55 system
Hi Russell,
if you are using blacklists in the local.cf file you have to put the
whitelist_* over this line because if not won't work fine.
If you want you can take a look at my local.cf file in my site @
http://www.surestorm.com/data/SpamAssassin_local.cf.html
if you have comments just drop m
Hi James,
i have installed SpamAssassin from my CPAN shell in my linux box without
any problem but using this versions:
perl-5.8.0-10tr
Mail::SpamAssassin-2.55
My system is running Exim 4.22 + Exiscan-ACL v.11 with SpamAssassin
v.255 and all works fine.
Configuration files are available for Ex
Hi Ewald,
the problem you have is that your system seems not to have a "make"
pre-compiler:
> Writing Makefile for Mail::SpamAssassin
> Makefile:92: *** missing separator. Stop.
> /usr/bin/make -- NOT OK
> Running make test
> Can't test without successful make
> Running make install
> ma
pretty low score too. its attached.
--
Christof Damian
xs03 ltd
--- Begin Message ---
Hello My Dear Friend,
Your email address did not just get to me by sudden, but
through a sincere and confidential sarch for someone whom I will
trust to handle a transaction of a sensitive nature like
On Thu, Sep 25, 2003 at 10:39:09PM -0400, Paul Farber wrote:
> I have .qmail calling spamc to toss the message to a remote spamd with prefs
> stored in a SQL db
>
> The username is not passed with the email.. so spamd does not know who's prefs
> to call up, and therefore the @GLOBAL settings are
Hi all,
Is it possible to move a "auto-whitelist" and "bayes*" database from one
machine to another or does it have to be created on the machine it will
run on?
Thanks,
Per olof
---
This sf.net email is sponsored by:ThinkGeek
Welcome to ge
>
> Gotta patch Razor too. See the README file in the SA source tree.
>
> I've been trying to promote a FAQ entry on this ... the question
> has been asked about seven times in three days on this list.
>
Eh? I thought I did patch Razor by applying it to the source tree:
> Upgraded to Razor 2.36
depends on the RBL I guess, there might be an argument for doing that with
something like spews, or cc specific ones as they probably don't change that
much hour to hour, but with something like spamcop you'd have no chance as
it changes all the time.
regards,
Paul
--
Paul Hutchings
Network Adminis
"Covington, Chris" <[EMAIL PROTECTED]> writes:
> Why is this test deprecated in 2.60?
Because trusted_networks works better to avoid checking internal hosts.
It still works for 2.6x, though. The documentation clearly explains
this.
It even says "It will be removed in a future version."
> I've
"Dallas L. Engelken" <[EMAIL PROTECTED]> writes:
> Can anyone help explain the STATISTICS.txt files a little deeper to me?
>
> STATISTICS.txt - rules
> STATISTICS-set1.txt - rules + network tests
> STATISTICS-set2.txt - rules + bayes
> STATISTICS-set3.txt - rules + bayes + network tests
>
> this
Sean McCrohan <[EMAIL PROTECTED]> writes:
> This is my first week with SpamAssassin, so I may be missing something
> obvious, but the message I've attached sections of below puzzled me.
> While the body report scores it at 7.1 points, the X-Spam-Status in
> the header only gives it 1.8 - this is
51 matches
Mail list logo
