> -Original Message-
> From: Greg Allen [mailto:[EMAIL PROTECTED]
> If it wasn't for a handful of users I would block everything
> outside the continental US, and certain companies can still
> do that if they do not do business outside the US.
>
RBLs in SA with judicious use of:
Here is an RBL test for china IP addresses that connect to your server to
pass email. I tested it and it works. I have score of 5 for a while, but you
can change that for anything you want.
Add it to your local.cf if you like it. You should be able to modify for
other countries, see the country li
Back on topic..
Since Geocities has done exactly *nothing* to delete the spamvertized
sites, I have no objection to adding 3 points to anything with
*.geocities.com in the URL.
I tried this:
uri GEOCITIES /uk.geocities.com/i
describe GEOCITIESHigh amounts of spam from Geo
lol
I look at it like this.
My users (certain ones) want to be able to receive an odd internet
email/order of lets say...copier parts from someone in China. Now, the odds
are they won't get more than 1 email every 6 months from China. So, they get
pounded with China spam for 6 months hoping for o
From: "Kelson" <[EMAIL PROTECTED]>
> > Yes, all the nasty countries could be added. Great idea going here.
>
> Based on my server logs, if I block mail coming from Earth, I'll take
> care of 100% of incoming spam!
>
> Now all I need to do is look up the subnet for the International Space
> Sta
From: "wolfgang" <[EMAIL PROTECTED]>
> Hi jdow,
>
> In an older episode (Monday, 8. August 2005 23:07), jdow wrote:
>
> > Those guys are annoying. The "ro" folks are just plain not nice people.
> > If it comes from Romania it's a phish, keylogger, or worse.
>
> I'd like to state that I deeply feel
Sorry, yes I should have been clearer there, it's from my /var/log/
mail.log which also logs pop and imap logins, spamd scanning details
etc.
FWIW I have lowered my scanning on message size limit in exim config
file to 80k, and am not seeing these happening any more, however
while it might
Yes, all the nasty countries could be added. Great idea going here.
Based on my server logs, if I block mail coming from Earth, I'll take
care of 100% of incoming spam!
Now all I need to do is look up the subnet for the International Space
Station so I can whitelist it...
--
Kelson Vibber
Sorry, I misunderstood at first what you had there. You are checking uri...
This is good, but it might be even better to have a check for connecting IP
(or use in conjunction with the uri) since the spammers can auto-flip
websites from UK, to china, Korea, RU, etc within a few seconds. I am not a
Hi jdow,
In an older episode (Monday, 8. August 2005 23:07), jdow wrote:
> Those guys are annoying. The "ro" folks are just plain not nice people.
> If it comes from Romania it's a phish, keylogger, or worse.
I'd like to state that I deeply feel that this statement, just like any
generalization
Yes, all the nasty countries could be added. Great idea going here.
-Original Message-
From: jdow [mailto:[EMAIL PROTECTED]
Sent: Monday, August 08, 2005 5:07 PM
To: users@spamassassin.apache.org
Subject: Re: GeoCities Link-only spam
From: <[EMAIL PROTECTED]>
> > On Sun, 2005-08-07 at
Dr Robert Young wrote:
> Currently, about 30% of the "spam" that sneaks through our setup of
> spamassassin 3.0.4 is flagged as RAZOR2_CHECKED, but still scores below
> 5.0 ( it varies from 2-4) . We have the rules_du_jour script running
> updates regularly, and bayes is trained.
>
> Does it m
From: "Dr Robert Young" <[EMAIL PROTECTED]>
> Currently, about 30% of the "spam" that sneaks through our setup of
> spamassassin 3.0.4 is flagged as RAZOR2_CHECKED, but still scores
> below 5.0 ( it varies from 2-4) . We have the rules_du_jour script
> running updates regularly, and bayes i
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
awesome! any chance you could put this on the wiki, linked from
CustomPlugins?
- --j.
Derek Harding writes:
> On Mon, 2005-08-08 at 15:53 -0500, [EMAIL PROTECTED] wrote:
> > >
> > > It allows rules such as:
> > > uricountry URICOUNTRY_CN CN
Currently, about 30% of the "spam" that sneaks through our setup of
spamassassin 3.0.4 is flagged as RAZOR2_CHECKED, but still scores
below 5.0 ( it varies from 2-4) . We have the rules_du_jour script
running updates regularly, and bayes is trained.
Does it make sense to "bump up" the RAZO
From: <[EMAIL PROTECTED]>
> > On Sun, 2005-08-07 at 12:27 -0400, Greg Allen wrote:
> >> They are also using non-Geocities addresses now. Most of the IPs they
> >> use seem to been from China, so you could RBL china at the front end,
> >> if you are allowed to block China that is... (my users won't
On Mon, 2005-08-08 at 15:53 -0500, [EMAIL PROTECTED] wrote:
> >
> > It allows rules such as:
> > uricountry URICOUNTRY_CN CN
> > header URICOUNTRY_CN eval:check_uricountry('URICOUNTRY_CN')
> > describeURICOUNTRY_CN Contains a URI hosted in China
> > tflags URICO
> On Sun, 2005-08-07 at 12:27 -0400, Greg Allen wrote:
>> They are also using non-Geocities addresses now. Most of the IPs they
>> use seem to been from China, so you could RBL china at the front end,
>> if you are allowed to block China that is... (my users won't let me
>> block China...uggh)
>>
>
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
ah, good to hear -- although it would have been nice to have had that
noted on bug 3900, which was still listed as "awaiting confirmation"...
- --j.
Charles Sprickman writes:
> I've seen this problem as well, even in the latest "ports" version. Sti
On Sun, 2005-08-07 at 12:27 -0400, Greg Allen wrote:
> They are also using non-Geocities addresses now. Most of the IPs they
> use seem to been from China, so you could RBL china at the front end,
> if you are allowed to block China that is... (my users won't let me
> block China...uggh)
>
>
> --
I've seen this problem as well, even in the latest "ports" version. Still
runs as root. If I apply the attached patch (obtained from one of the
bugzilla entries), it works properly. Running FBSD 4.11 w/perl 5.6.2
(5.8.7 had the same problem, I backed out of 5.8 since it chewed up more
memory
Adam Rosi-Kessel wrote:
> I'm running Debian Sarge with postfix, mailman (using the spamassassin
> option), procmail ( filtering | spamc), and spamassassin 3.0.3-2
> daemon mode (spamd).
This sounds like "spamassassin called via spamc/spamd at delivery, on a
per-user basis, with full per-user sett
Clay Irving wrote:
I set ALL_TRUSTED to 0.0
That helps explain it. The SPF implementation depends on a properly set
up trust path. If you were seeing misfires on ALL_TRUSTED, that
probably means your trust path was incorrect.
The proper solution is to set your trusted_networks and
intern
I've never quite "gotten" how spamassassin file permissions are supposed
to be set in users' home directories, and nothing in the documentation
directly addresses the issue.
I'm running Debian Sarge with postfix, mailman (using the spamassassin
option), procmail ( filtering | spamc), and spamassas
On Tue, 26 Apr 2005, Justin Mason wrote:
It's specifically a problem with perl on *BSD platforms -- there's
a bug open about it, but it's stalled because we don't have any
developers with BSD machines ;)
Anyone want a test machine where this is occurring? Where it DIDN'T occur
before under
From: Muhammad Farooq Bhatti [mailto:[EMAIL PROTECTED]
>
> I am newbie in spamassassin. I want to block the email based
> on custom rules like for matching Viagra, Penis Enlarment
> etc. Can any body help me in its deployment? As I tried with
> the following setting but it did not score 4.0
Title: Blocking specific domains
That
would be a Postfix question, not SA.
SA
only tags, it does not block.
Lookup
smtpd_client_restrictions for postfix.
-Original Message-From: Fettke, Dirk
[mailto:[EMAIL PROTECTED]Sent: Monday, August 08, 2005
5:48 AMTo: users@spam
Title: Blocking specific domains
Hi,
I have installed postfix with amavisd, spamassassin, pyzer and razor.
My problem is now, that spam-mails from a specific domain don't get filtered.
When I insert following command in the local.cf file from spamassassin, the entry will be ignored
and
Hello,
I want to implement spam system level as well as user level in qmail.
I think For user level we can implement it in
~/.spamassessin/user_pref. But qmail is working only with one user. So
how can I give spam config file for every user ?
All user must have configuration file of spam (loke lo
29 matches
Mail list logo
