I think you have a first hand experience on this topic
http://story.news.yahoo.com/news?tmpl=story&cid=530&e=2&u=/ap/20040111/ap_on
_hi_te/swimming_in_spam
By ANICK JESDANUN, AP Internet Writer
NEW YORK - Software makers have spent millions of dollars developing new
tools for
that's exactly what I started doing a few weeks agao.
I want to send enough habeas to enforce their copyrights :)
jenni baier wrote:
I guess we can all start putting together a "habeas corpus"
On Sun, 11 Jan 2004, Jack Gostl wrote:
I must have gotten 20 of these in the last three hours! I'm
I guess we can all start putting together a "habeas corpus"
On Sun, 11 Jan 2004, Jack Gostl wrote:
>
> I must have gotten 20 of these in the last three hours! I'm going to have
> to zap the habeus rule.
>
>
---
This SF.net email is sponsor
Robert Menschel wrote:
> I'm trying to make sure my corpus is as clean as possible, eliminating
> all duplicates.
>
> I tried to use the masses/corpora/uniq-mailbox program for this, and had
> problems which I've documented in bugzilla report 2920.
>
> Fortunately, my email client identifies and
Robert Menschel wrote:
> Of course, the amount of ham and spam in your corpus does have an impact.
> I have over 17,000 ham and 70,000 spam in my corpus right now, and my run
> time for a single rule has gone from 20 minutes when I first started
> using cygwin to something just less than 2 hours. (
Hello Bryan,
Sunday, January 11, 2004, 6:58:58 PM, you wrote:
>> I've just completed documenting my current system at
>> http://www.exit0.us/index.php/BobCorpusTest
BH> So the good news is, I'm now downloading Cygwin! I've brought down the
BH> default packages which took from 7:07pm to 8:22pm,
I'm trying to make sure my corpus is as clean as possible, eliminating
all duplicates.
I tried to use the masses/corpora/uniq-mailbox program for this, and had
problems which I've documented in bugzilla report 2920.
Fortunately, my email client identifies and can delete duplicates = same
message
Robert Menschel wrote:
> Some people have been asking about my mass-check capabilities and
> reports.
>
> I've just completed documenting my current system at
> http://www.exit0.us/index.php/BobCorpusTest
I tried to run mass-check a bit ago -- for the first time -- and I'm
afraid it was killed on
Wow, very nice Bob! Thanks for sharing this with the list. I'll give it a
try this next week and see how it goes.
Bill
- Original Message -
From: "Robert Menschel" <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Sent: Sunday, January 11, 2004 3:31 PM
Subject: [SAtalk] Mass-Check
> Some pe
I must have gotten 20 of these in the last three hours! I'm going to have
to zap the habeus rule.
--
Jack Gostl [EMAIL PROTECTED]
---
This SF.net email is sponsored by: Perforce Software.
Perforce is the Fast Software Configuration Man
Wow. almost a dozen in very little time. Given how well bayes is
working, I might just disable the habeus mark test.
--
Jack Gostl [EMAIL PROTECTED]
---
This SF.net email is sponsored by: Perforce Software.
Perforce is the Fast Sof
Robert Menschel <[EMAIL PROTECTED]> wrote:
> I don't find any indication anywhere on the Web that mPOP is
> used for anything but spam. If anyone can provide evidence that
> it can be used for ham on a valid webmail site, I'll lower the
> score.
There are a few seemingly genuine messages here:
h
I have had at least 5 of these come in today.
The spamvertised site address seems to be generated by the following
Javascript code. The code is the content of an *.html file attachment.
The message bodies have been of two types. The variable names are
different bayes poison in all the examples
Some people have been asking about my mass-check capabilities and
reports.
I've just completed documenting my current system at
http://www.exit0.us/index.php/BobCorpusTest
I'll gladly update that documentation to answer questions people may
have, and will even update/improve my script if people h
Hello Rich,
Saturday, January 10, 2004, 10:27:47 PM, you wrote:
RW> I came up with a set of rules which appear to catch the new strain
RW> of spam with a meaningless jumble of words in the body, while hope-
RW> fully not catching any legitimate mail. See below; comments welcome,
RW> and (natural
Hi!
In most of the spam I receive at the moment there seems to be a link/text
like:
http://www.domain.com/rid?=1142
Everything is (of course) base64 encoded - The main issue is to detect the
.domain.[com|net|biz]/rid?[1-x digits] ... Is it possible to make a rule for
this ? I have only seen it
Well, it was inevitable - usenet is starting to get enough spam posted
in newsgroups to annoy me.
offhand, it looks to me like spamassassin could be 'hooked into'
leafnode during the in.coming processing step. Has anyone done any
work on the idea?
Mike-
Mornings: Evolution in action. Only the
Thanks - I'll send them off.
On Sun, 11 Jan 2004, Theo Van Dinter wrote:
> On Sun, Jan 11, 2004 at 05:18:30PM -0500, Jack Gostl wrote:
> > Just got a bunch of these myself. Are you suggesting that we simply
> > learn them as spam and ignore them otherwise and then let nature take its
> > course?
On Sun, 11 Jan 2004, Andrew Cranson wrote:
> Any idea if this is being implemented in an upcoming release? I know
> spamassassin isn't 100% accurate, but it seems to be a much wanted feature
> for SA to be able to delete suspected spam. It'd be even more ideal if a
> preference could be set via my
Said before - show is the headers
I imagine they have changed something that will need to be updated in the
rules - you may have to post a bug.
m/
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] Behalf Of David
Sheeran
Sent: Friday, January 09, 2004 6:40 AM
To: [EMAI
I have developed a hypothesis, which could explain eventually this strange
phenomenon:
spamassassin reads the configuration files directly, but not spamd ---
during installation the rules were compiled by the Debian postinstall
script into a format, which is read exclusively by spamd during launch
* Robin Lynn Frank <[EMAIL PROTECTED]> wrote:
> I rummaged around the web site looking for material on invoking spamc with
> maildrop, but didn't find anything.
> Can someone point me to any documentation on this, or just give me a clue as
> to what must be done in .mailfilter to invoke spamc?
>From [EMAIL PROTECTED] Wed Dec 31 18:12:45 2003
Date: Wed, 31 Dec 2003 21:12:44 -0500
From: Theo Van Dinter <[EMAIL PROTECTED]>
To: Regis Wilson <[EMAIL PROTECTED]>
Cc: [EMAIL PROTECTED]
Subject: Re: [SAtalk] Subject contains username
>On Wed, Dec 31, 2003 at 08:03:19AM -0800, Regis Wilson wrot
> -Original Message-
> From: Gary Funck [mailto:[EMAIL PROTECTED]
> Sent: January 10, 2004 3:29 PM
> To: [EMAIL PROTECTED]
> Cc: Spam Assassin Dev; [EMAIL PROTECTED] (Henry Stern)
> Subject: RE: Neural Net scoring
>
> Thanks. Here's the link:
> http://bugzilla.spamassassin.org/show_bug.cgi
Hi Folks
I'm getting emails caught by SA 1.61 on the following rules. Not sure why as I sent it
myself from MS Office Outlook 2003
(11.5608.5606)
3.3 FORGED_MUA_OUTLOOK Forged mail pretending to be from MS Outlook
0.9 MISSING_OUTLOOK_NAME Message looks like Outlook, but isn't
Any ideas?
Dav
On Sun, Jan 11, 2004 at 10:35:04PM +0100, Samuel Murez wrote:
> Hello--
>
> the line use_auto_whitelist 0
>
> in my /etc/mail/spamassassin/local.cf
>
> does not have any effet, ie I still get AWL ratings in my messages.
>
> Could somebody please give me a hint ?
>
The use_auto_whitelist direc
On Sun, Jan 11, 2004 at 05:26:16PM -0500, Theo Van Dinter wrote:
> Send them to [EMAIL PROTECTED] I dug through my spam corpus and found
> 8 so far this month and just sent them off. We'll see what happens.
BTW: I just found a bunch more today (to different spamtraps)... All of
them so far have
Hello List, Hello Martin
I tried to describe to letters with an \x.. code but there are still some
difficulties. having only a | or a ยก as special character in the word the
rule swings in, but adding another one or two @s just kicks it. I post the
source of the rule here - let's hope someone notic
On Sun, Jan 11, 2004 at 05:18:30PM -0500, Jack Gostl wrote:
> Just got a bunch of these myself. Are you suggesting that we simply
> learn them as spam and ignore them otherwise and then let nature take its
> course? Or should I foward this stuff someplace.
Send them to [EMAIL PROTECTED] I dug thr
Check-out amavisd-new, it can invoke SA and, based on the result score,
apply any of several different options, including quarantining or discarding
the message.
Bill
- Original Message -
From: "Andrew Cranson" <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Sent: Sunday, January 11, 2004 2:0
> > it down so low that it was autolearned as ham. To fix, I ran sa-learn
> > --forget over the message and then re-learned it as spam, removing the
>
> you can just learn it as spam, it'll auto-forget.
>
> > habeas mark beforehand. Is there maybe a better way SpamAssassin could
> > handle habea
On Sun, Jan 11, 2004 at 10:03:09PM -, Andrew Cranson wrote:
> Any idea if this is being implemented in an upcoming release? I know
Since SA can _ONLY_ tag mails, it will never be able to delete messages.
If you want this functionality, you can have whatever calls SA to parse
the headers and de
SpamAssassin can't do that.
SA is a filter that tags messages with information - delivery is the
responsibility of the program that calls SA.
SA already does provide the information required to that your maildrop /
procmail script CAN though... that's where that decision belongs.
m/
-Origin
Any idea if this is being implemented in an upcoming release? I know
spamassassin isn't 100% accurate, but it seems to be a much wanted feature
for SA to be able to delete suspected spam. It'd be even more ideal if a
preference could be set via mysql to set a delete threshold in addition to
the sta
Any idea if this is being implemented in an upcoming release? I know
spamassassin isn't 100% accurate, but it seems to be a much wanted feature
for SA to be able to delete suspected spam. It'd be even more ideal if a
preference could be set via mysql to set a delete threshold in addition to
the sta
On Sun, Jan 11, 2004 at 03:14:37PM -0600, David A. Carter wrote:
> the message differ from the original, I figured I better --forget the
> original first. Was this not needed? Did I even need to remove the habeas
> marks first?
If you learn a message that has already been learned as the opposite
Hello--
the line use_auto_whitelist 0
in my /etc/mail/spamassassin/local.cf
does not have any effet, ie I still get AWL ratings in my messages.
Could somebody please give me a hint ?
thanks,
--sam
---
This SF.net email is sponsored by: Pe
Quoting Theo Van Dinter <[EMAIL PROTECTED]>:
> you can just learn it as spam, it'll auto-forget.
Thanks for the reply, Theo. Normally, I would have done this, but I wanted
to remove the habeas marks before learning it as spam. Since this would make
the message differ from the original, I figured
On Sun, Jan 11, 2004 at 09:27:40PM +0100, Michael Jacob wrote:
> This is the first access to the new database. And then I found a
> leftover and damaged "_toks.new" database lying around in
> ~/.spamassassin. Seems there is a sanity check missing. I added this
> near the beginning of this sub:
Ple
On Sun, Jan 11, 2004 at 01:53:48PM -0600, David A. Carter wrote:
> it down so low that it was autolearned as ham. To fix, I ran sa-learn
> --forget over the message and then re-learned it as spam, removing the
you can just learn it as spam, it'll auto-forget.
> habeas mark beforehand. Is there ma
Hi,
THANK YOU!!!
The patch itself didn't help very mutch (stalled after the debug
statements), but it gave me a good starting point for more debugging.
Took me an hour, but then I found that this line never finished:
$new_toks{$LAST_ATIME_DELTA_MAGIC_TOKEN} = $newdelta;
This is the first acce
Hello Stefan,
Saturday, January 10, 2004, 12:03:18 AM, you wrote:
SU> Watch out for following rule, as mentioned working fine with direct
SU> invocation of the spamassassin script, but even after putting it in the
SU> /usr/share/spamassassin 20_head_tests.cf and 50_scores.cf files (did so
SU> for
Sigh.
This is the first time I've seen a spam come in with a phony Habeas mark
(link to spam below). Perhaps I've just been lucky up to this point...anyone
else seen this? Of course, I reported it immediately to Habeas. Let's see
what they do.
An unfortunate side effect of how SA scores mail with
Gary Funck wrote:
> Florian's note says the following:
>
> "For high-traffic environments it is really useful to mirror all used
> *.blackholes.us zones, if possible on a DNS running on the MTA host
> itself. The amount of DNS lookups per email is quite high, but most
> spammers spamvertise the sa
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On Sunday 11 January 2004 07:35, Geoffrey Lane wrote:
> I've setup my kmail to keep the mail on my isp's server, so that I can
download them from my windows side or have the email on their webmail service
to view at work.
> my question, is there a wa
Michael Jacob wrote:
>
> Hi,
>
> something seems to be wrong with my bayes db, or is this considered
> 'normal'? Log:
I backed up my Bayes db, and ran with -D force-expire to see what it'd
do. I got pretty much what you show, except after the "something fishy"
line, it paused for a moment or tw
I've setup my kmail to keep the mail on my isp's server, so that I can download them
from my windows side or have the email on their webmail service to view at work.
my question, is there a way to setup spamassassin to delete only the spam messages off
the server and keep the "ham", so I would no
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On Saturday 10 January 2004 09:22, oj wrote:
> hello,
> Im using 2.61, sendmail,e spamass-milter, spamc and spamd. I have a 2
machine
> setup sendmail on one and spamd on the other.
>
> No matter what i do i can't get the full mail/user info to spam
I believe that the Backhair Ruleset will catch these as well; no sense
in duplicating work taht soneone else has already done!
http://www.merchantsoverseas.com/wwwroot/gorilla/sa_rules.htm
Rubin
On Sun, 2004-01-11 at 01:27, Rich Wales wrote:
> I came up with a set of rules which appear to catch t
I have Alt-N's mdameon, and what I'm looking to do is I have a few
addresses that are spam fodder - harvested from newsgroups, they get ~30
spams a day. I'd like to somehow add them to the Bayesian database or any
other 'spam fodder' database.
Any suggestions on a 'automatic' way to do it in Md
Robin Lynn Frank wrote:
> I rummaged around the web site looking for material on invoking spamc with
> maildrop, but didn't find anything.
>
> Can someone point me to any documentation on this, or just give me a clue as
> to what must be done in .mailfilter to invoke spamc?
>
This is what I us
51 matches
Mail list logo
