On Mon, May 18, 2009 01:54, Kurt Buff wrote:
> Don't know why clamav didn't catch it - I know you're running that...
tests=[AV:Sanesecurity.Phishing.Pay.5872.UNOFFICIAL=0, AV_SS=7.5,
it also did :)
so some have had it before bill
--
http://localhost/ 100% uptime and 100% mirrored :)
b-sub-...@rope.net wrote:
> I am implementing a new SA installation. It looks like the shortcircuit
> feature would be very useful, in my case. However, in searching the wiki,
> google, etc., etc., I have not been able to find a *simple* explicit
> example for my use.
>
> As I understand it, I shou
Pieter De Wit wrote:
> Hi Guys,
>
> I am pretty sure I covered this well, but I saw some strange happenings
> over the last couple of days. I don't have access to the box to copy and
> paste the results so this goes from memory (thought I would get the ball
> rolling)
>
> I am writing my own custom
I am implementing a new SA installation. It looks like the shortcircuit
feature would be very useful, in my case. However, in searching the wiki,
google, etc., etc., I have not been able to find a *simple* explicit
example for my use.
As I understand it, I should be able to define a rule, and if i
On Sun, 17 May 2009, Dennis German wrote:
> Could someone discuss or add a wiki page about?
>
> SPF_SOFTFAIL
http://www.openspf.org/RFC_4408#op-result-softfail
> SPF_NEUTRAL
http://www.openspf.org/RFC_4408#op-result-neutral
--
Sahil Tandon
Could someone discuss or add a wiki page about?
SPF_SOFTFAIL
SPF_NEUTRAL
On Sun, 17 May 2009, Matt Kettler wrote:
> > Could someone please show me how I could alter this frivilous rule to use
> > shortcircuit:
> >
> > body SA1/dear friend/i
> > describe SA1SA - dear friend
> > score SA1 13
> > # Score of 12 is enough to classif
b-sub-...@rope.net wrote:
> On Sun, 17 May 2009, Matt Kettler wrote:
>
>
>>> Could someone please show me how I could alter this frivilous rule to use
>>> shortcircuit:
>>>
>>> body SA1/dear friend/i
>>> describe SA1SA - dear friend
>>> score SA1 13
>>>
On Mon, May 18, 2009 01:23, Bill Landry wrote:
> Is it simply a poorly written piece of vbscript that could be dangerous
> if done right?
paypal.conSOLE sender have a nice day trying
also From: is diff then envelope sender so why is paypal.com in body, and
https but not all url is https, silly s
LuKreme wrote:
> On 17-May-2009, at 06:32, Yet Another Ninja wrote:
>> On 5/17/2009 2:09 PM, LuKreme wrote:
>>> On 16-May-2009, at 21:25, Bill Landry wrote:
LuKreme wrote:
> grep EMAILBL /var/log/maillog.1 | grep -v "is spam" | wc -l
>
> ??
How is that going to work if yo
On 17-May-2009, at 01:42, Michael Monnerie wrote:
fetchmail -asnp IMAP --folder autolearn --user $username -m "formail
-s
|spamassassin -d >>/tmp/x" $mailserver
Fethmail first so you an get ALL the messages at once. THEN run
Spamassassin. This will be a lot shorter I'll be than what you a
On Sun, May 17, 2009 at 17:28, Bill Landry wrote:
> Kurt Buff wrote:
>> On Sun, May 17, 2009 at 16:23, Bill Landry wrote:
>>> I'm not sure the purpose is of this kind of email, as the links are not
>>> clickable, even though they appear to be. The message scored high, but
>>> wondering what othe
On 17-May-2009, at 06:32, Yet Another Ninja wrote:
On 5/17/2009 2:09 PM, LuKreme wrote:
On 16-May-2009, at 21:25, Bill Landry wrote:
LuKreme wrote:
grep EMAILBL /var/log/maillog.1 | grep -v "is spam" | wc -l
??
How is that going to work if you are telling grep to output
everything
that d
Hi Guys,
I am pretty sure I covered this well, but I saw some strange happenings
over the last couple of days. I don't have access to the box to copy and
paste the results so this goes from memory (thought I would get the ball
rolling)
I am writing my own custom milter for sendmail. I use the fo
Kurt Buff wrote:
> On Sun, May 17, 2009 at 16:23, Bill Landry wrote:
>> I'm not sure the purpose is of this kind of email, as the links are not
>> clickable, even though they appear to be. The message scored high, but
>> wondering what others think about this one:
>>
>> http://pastebin.com/m74d
Quoting Evan Platt :
At 04:36 PM 5/17/2009, you wrote:
Not sure as to the purpose - the VBscript certainly looks suspect,
but
I'm no expert there.
But damn you'd think they'd at least run a spell-check LOL. I'm
sure
they'd get at least twice the number of dumb-asses responding if
their
emails
At 04:36 PM 5/17/2009, you wrote:
Not sure as to the purpose - the VBscript certainly looks suspect, but
I'm no expert there.
But damn you'd think they'd at least run a spell-check LOL. I'm sure
they'd get at least twice the number of dumb-asses responding if their
emails weren't full of stupid
On Sun, May 17, 2009 at 16:23, Bill Landry wrote:
> I'm not sure the purpose is of this kind of email, as the links are not
> clickable, even though they appear to be. The message scored high, but
> wondering what others think about this one:
>
> http://pastebin.com/m74dd8503
>
> Is it simply a
Quoting Bill Landry :
I'm not sure the purpose is of this kind of email, as the links are
not
clickable, even though they appear to be. The message scored high,
but
wondering what others think about this one:
http://pastebin.com/m74dd8503
Is it simply a poorly written piece of vbscript
I'm not sure the purpose is of this kind of email, as the links are not
clickable, even though they appear to be. The message scored high, but
wondering what others think about this one:
http://pastebin.com/m74dd8503
Is it simply a poorly written piece of vbscript that could be dangerous
if d
Michael Monnerie wrote:
> Dear experts,
>
> I have a question regarding spam/ham learning, regarding performance. I
> store spam in a mail folder accessible via IMAP. Then I want to feed
> this into bayes.
> [...]
Could you answer a few extra question needed to recommend alternatives?
Do you
On Sun, 2009-05-17 at 09:42 +0200, Michael Monnerie wrote:
> Dear experts,
>
> I have a question regarding spam/ham learning, regarding performance. I
> store spam in a mail folder accessible via IMAP. Then I want to feed
> this into bayes. For this, I do:
>
> fetchmail -asnp IMAP --folder auto
On Sun, 17 May 2009, Michael Monnerie wrote:
Finally measured again, it takes 1h7m to fetch from imap plus remove all
markups:
I think the largest part of your problem is the "fetch" part.
The way this is usually set up is the training mailbox files reside on the
same server that is doing th
On 5/17/2009 3:41 PM, Steve Freegard wrote:
Who cares if they have strict blocks on stuff coming in to their network
- an EMAILBL listing is all about whether or not spammers/scammers use
their service for drop-boxes, spew mail out from their service or use
their domain name. Whereas URIBLs are
Michael Monnerie wrote:
> I generally like the idea. But this project is in the beginners phase,
> and a whole lot of people will want to wait until others report it's
> benefits. After all, who wishes to put it in production and then maybe
> it causes a lot of FPs?
Duh:
score EMAILBL 0.001
*
On 5/17/2009 3:22 PM, Michael Monnerie wrote:
On Sonntag 17 Mai 2009 Yet Another Ninja wrote:
The future of this project depends if the concept is of any use. The
lack of feedback, any kind, must mean its of little value so it might
as well be drowned at birth.
I generally like the idea. But t
- Original Message -
From: "Michael Monnerie"
To:
Sent: Sunday, May 17, 2009 1:15 PM
Subject: Re: learning from IMAP spam collection
>Why is there no mode -L spam -C report to spamc? Could do both at once.
I think -C report does
a) remove markup
b) sent reports to ALL
c) learn as s
On Sonntag 17 Mai 2009 Yet Another Ninja wrote:
> The future of this project depends if the concept is of any use. The
> lack of feedback, any kind, must mean its of little value so it might
> as well be drowned at birth.
I generally like the idea. But this project is in the beginners phase,
and
Michael Monnerie wrote:
Finally measured again, it takes 1h7m to fetch from imap plus remove all
markups:
# time fetchmail -kasnp IMAP --folder $spamfolder--user $spamuser -m
"formail -s |spamassassin -d >>/tmp/x" $mailhost
real67m10.352s
user51m41.350s
sys 3m27.170s
mfg zmi
Why
Finally measured again, it takes 1h7m to fetch from imap plus remove all
markups:
# time fetchmail -kasnp IMAP --folder $spamfolder--user $spamuser -m
"formail -s |spamassassin -d >>/tmp/x" $mailhost
real67m10.352s
user51m41.350s
sys 3m27.170s
mfg zmi
--
// Michael Monnerie, Ing.BS
On 5/17/2009 2:09 PM, LuKreme wrote:
On 16-May-2009, at 21:25, Bill Landry wrote:
LuKreme wrote:
grep EMAILBL /var/log/maillog.1 | grep -v "is spam" | wc -l
??
How is that going to work if you are telling grep to output everything
that does NOT contain "is spam" (-v = select non-matching lin
On 16-May-2009, at 21:25, Bill Landry wrote:
LuKreme wrote:
grep EMAILBL /var/log/maillog.1 | grep -v "is spam" | wc -l
??
How is that going to work if you are telling grep to output everything
that does NOT contain "is spam" (-v = select non-matching lines)?
Right. How many emails that we
On Sonntag 17 Mai 2009 Michael Monnerie wrote:
To clarify my posting, here some additions:
> Question 1:
> Do I need to call spamc twice, once with "-L spam" and once with "-C
> report"? Do I understand correctly that -L trains my bayes, while -C
> reports to spamcop etc.?
The man page of spamc p
Dear experts,
I have a question regarding spam/ham learning, regarding performance. I
store spam in a mail folder accessible via IMAP. Then I want to feed
this into bayes. For this, I do:
fetchmail -asnp IMAP --folder autolearn --user $username -m "formail -s
|spamassassin -d >>/tmp/x" $mailse
34 matches
Mail list logo
