My first day with Spamassassin.
As root, I ran sa-update. Then I created the file
sare-sa-update-channels.txt that contain these lines:
70_sare_adult.cf.sare.sa-update.dostech.net
70_sare_bayes_poison_nxm.cf.sare.sa-update.dostech.net
70_sare_specific.cf.sare.sa-update.dostech.net
72_sare_bml_post
On Sun, 28 Jan 2007 14:51:21 -0500, "Tim Boyer" <[EMAIL PROTECTED]>
wrote:
>One thing I've noticed is that Polyakov is starting to obfuscate the URL.
>What would normally be caught because it's in the Spamhaus SBL is getting
>missed because of this:
>
>Good day,
>
>Viazzgra $1, 80
>Ciazzlis $3,
On Wed, Jan 24, 2007 at 11:19:37AM -0500, Kris Deugau wrote:
> I'm now trying to get the global Bayes DBs from the 2.64 installs
> upgraded as necessary. I knew there was a format change, and I thought
> there was a simple upgrade procedure: sa-learn --import is *supposed*
> to make whatever c
> -Original Message-
> From: Raul Dias [mailto:[EMAIL PROTECTED]
> Sent: Friday, January 26, 2007 10:04 PM
> To: users@spamassassin.apache.org
> Subject: Poor man's high MX spam Trap
>
> Hi,
>
> This is what I did to flag spam that goes to the Highest MX
> server without having a sec
Ok managed to do this by hacking the FuzzyOcr.pm code.. just changed
the if condition and hopefully this drug image spam is history.
On Jan 28, 2007, at 8:32 PM, Robert Nicholson wrote:
So currently FuzzyOCR is not getting hit on this drug spam however
I'd like to force the recognition of th
On Fri, Jan 26, 2007 at 07:10:24AM -0500, tom wrote:
> I have a general question about development versus using spamassassin.
> Does the developer mailing list do anything other than bugs or is that the
> wrong list for detailed discussions on how SA works
> under the hood?
The dev list is fine
So currently FuzzyOCR is not getting hit on this drug spam however
I'd like to force the recognition of this image as spam for future by
generating a hash and adding an entry into the hash database that
this email is spam
How can I do that?
I want to manually add an entry to the hashin
Jorge Cardona wrote:
> Hi.
>
> I'm implementing a proxy mail server, and i want to know if there is
> some global database server for global tokens.
>
> In my implementation i have a database server with global tokens (
> user @GLOBAL) and per-user tokens. The final user can fill his tokens
> with
Hi.
I'm implementing a proxy mail server, and i want to know if there is
some global database server for global tokens.
In my implementation i have a database server with global tokens (
user @GLOBAL) and per-user tokens. The final user can fill his tokens
with the help of a script and a path .
>
> I don't know about "fry" the DB, but sa-learn will happily attempt to
> learn
> from whatever files/directories matched '*'. Likely, it'll see them all
> as
> messages w/ no headers, so a lot of body tokens.
>
> The question of course is, does this matter, which is hard to say. If the
> tok
On Sun, Jan 28, 2007 at 04:33:05PM -0800, R Lists06 wrote:
> sa-learn --spam --showdots *
> would sa-learn actually do anything and fry the spamassassin database?
I don't know about "fry" the DB, but sa-learn will happily attempt to learn
from whatever files/directories matched '*'. Likely, it'll
If a person was logged in as user spamd
And was in the /home/spamd directory and "accidentally" did this command
sa-learn --spam --showdots *
would sa-learn actually do anything and fry the spamassassin database?
I know it will try, yet will it succede at anything in this accident?
Or?
- r
I had the exact same problem. There is something very similar in Bugzilla at
Spamassassin.org.
The fix that worked for them and me is to use spamd with the --round-robin
option.
Hope this helps
Troy Davis-2 wrote:
>
> Hello,
>
> I've noticed a server of mine becoming unresponsive over the
On Sun, 28 Jan 2007, Giampaolo Tomassoni wrote:
Yes, they are. But I see often legitimate messages like this. They are
probably used when sending something to somebody while having a voice
conversation with him/her. I did it, too.
Giampaolo,
In which case, nothing is lost if the message doe
From: Rich Shepard [mailto:[EMAIL PROTECTED]
>
> On Sun, 28 Jan 2007, John D. Hardin wrote:
>
> > Please don't ask SA to become an antivirus or attachment file type
> > security policy enforcement tool. There are already very effective tools
> > to do perform those tasks.
>
>We run only linu
[EMAIL PROTECTED] wrote:
> Hello all! This is not spamassassin related (altho i do use it on my
> mail server). I just got this email and i am wondering if this is just a
> case of someone using my email address or did someone send this email
> via my mail server?
>
The message presumably origi
Hello all! This is not spamassassin related (altho i do use it on my
mail server). I just got this email and i am wondering if this is just a
case of someone using my email address or did someone send this email
via my mail server?
Here is the email
Your message to: [EMAIL PROTECTED]
was blocked by
On Sun, 28 Jan 2007, John D. Hardin wrote:
Please don't ask SA to become an antivirus or attachment file type
security policy enforcement tool. There are already very effective tools
to do perform those tasks.
We run only linux here, so I ignore Microsoft virii and the like. But,
when I get
Is there something of tutorial on how to use the scores and the
user_pref database?
I'll assume that the search pattern is approximately /usr/share/
spamassassin/*.cf
followed by the database '@GLOBAL' and so one to get the specific
values.
I'm not sure it's even working right now...
X-Spa
One thing I've noticed is that Polyakov is starting to obfuscate the URL.
What would normally be caught because it's in the Spamhaus SBL is getting
missed because of this:
Good day,
Viazzgra $1, 80
Ciazzlis $3, 00
Levizztra $3, 35
http://www.printeryml.*com ( Important ! Remove "*" )
--
T
On Sun, 28 Jan 2007, Rich Shepard wrote:
>The past couple of days has seen the arrival of a new mutant
> species of spam: the empty message with a Windows .exe attachment
> that is base64 encoded. SpamAssassin is giving them scores of 0.0.
Please don't ask SA to become an antivirus or attachm
Well I cannot see why for myself can I? I mean in this case it's
simply not matching any of the words when they are clearly visible.
On Jan 27, 2007, at 8:16 PM, René Berber wrote:
Robert Nicholson wrote:
Fuzzy OCR isn't getting any hits on this mail. Anybody know why?
[snip]
You can see
At 01:50 AM Sunday, 1/28/2007, Rodney Richison wrote -=>
Is pyzor down? I keep getting timeout, can not do a pyzor ping etc..
Is this safe to use? I can at least "pyzor ping" it. Course, pyzor
discover will break it again... :)
82.94.255.100:24441
$ pyzor ping
82.94.255.100:24441 (200,
From: Rich Shepard [mailto:[EMAIL PROTECTED]
>
>With your help the amount of spam getting past the various
> filters in my
> inbox (and that of my fiancee) has dropped dramatically. I appreciate
> learning from all of you.
>
>The past couple of days has seen the arrival of a new mutant s
From: Rich Shepard [mailto:[EMAIL PROTECTED]
>
>With your help the amount of spam getting past the various
> filters in my
> inbox (and that of my fiancee) has dropped dramatically. I appreciate
> learning from all of you.
>
>The past couple of days has seen the arrival of a new mutant s
With your help the amount of spam getting past the various filters in my
inbox (and that of my fiancee) has dropped dramatically. I appreciate
learning from all of you.
The past couple of days has seen the arrival of a new mutant species of
spam: the empty message with a Windows .exe attachme
Adding my 0.2€ to the discussion...
I use qgreylist, which enables us to (if properly configured) block whole
/24 networks instead of single hosts. Of course, I'm using qmail, so this is
a qmail solution.
I've successfully integrated greylisting with A/V scanning and SA processing
in the incomi
Mike Jackson escreveu:
Until the spammers build in retry into their bots, I'm a
firm believer of greylisting.
They have. I'm a sys admin at a major hosting provider, and I've seen
it in action on at least one customer's box who was using greylisting.
Considering spammers have near-infinite
Yves Goergen wrote:
Hi,
I have installed Botnet 0.7 from the previous announcements on this
list. This is a syslog entry I got today (and maybe already before):
Jan 28 09:01:04 mond spamd[12174]: Use of uninitialized value in string
eq at /etc/mail/spamassassin/Botnet.pm line 564, line 93.
Is
Thomas Bolioli wrote:
Anyone with ideas, they would be greatly appreciated but right now I
need to determine if it is SA that is having issues with the lookups
or are the accounts screwed up in some way. bind does not seem to be
throttled either so the volume of queries should not be the issue
Theo Van Dinter wrote:
On Sat, Jan 27, 2007 at 06:52:29PM -0500, Thomas Bolioli wrote:
/etc/procmail and it is fired off with a user .forward file "|IFS=' ' &&
exec /usr/bin/procmail || exit 75 #tpblists". Still looking into Net::DNS.
A few ideas. First, do DROPPRIVS=yes if you haven'
John Rudd wrote:
If you think there is a case where Botnet breaks down for
multiple/virtual mail domains, where DNS and rDNS are properly set up,
put your money where your mouth is and give a real world example.
Give the IP address(es), and the mail domains that go with them that
you think wi
Hi,
I have installed Botnet 0.7 from the previous announcements on this
list. This is a syslog entry I got today (and maybe already before):
Jan 28 09:01:04 mond spamd[12174]: Use of uninitialized value in string
eq at /etc/mail/spamassassin/Botnet.pm line 564, line 93.
Is that a problem?
--
Is pyzor down? I keep getting timeout, can not do a pyzor ping etc..
Is this safe to use? I can at least "pyzor ping" it. Course, pyzor
discover will break it again... :)
82.94.255.100:24441
Highest Regards,
Rodney Richison
RCR Computing
PO Box 566 - 118 N. Broadway
Cleveland, OK 7402
34 matches
Mail list logo
