Thanks a lot all of you for your help.
Please help with this how can i do this
* smtp-auth mails do not scan for spam at all*
can somebody please guide me for this.
Warm Regards,
Anshul Chauhan
"Dream is not what you see while sleep, it's the thing that does not let you
sleep."
2009/6/9 LuKr
On Tue, June 9, 2009 03:48, LuKreme wrote:
> Second off, there is absolutely nothing wrong with using CPAN.
OP problem is mix of CPAN and RPM, he dont need both to solve it
CPAN is usefull if one makes RPM with it, but most belive its better just
to follow guides and use CPAN shells, when distro
On 8-Jun-2009, at 16:50, Benny Pedersen wrote:
On Mon, June 8, 2009 15:26, The Doctor wrote:
You can either use cpan or http://search.cpan.org .
bad advise !
First off, it's 'advice' (the noun) in this case, not 'advise' (the
verb).
Second off, there is absolutely nothing wrong with usi
On 8-Jun-2009, at 11:19, ktn wrote:
By default, the spamd daemon does not allow user defined rules.
Hostmonster needs to set "allow_user_rules" to 1 in the system
configuration file. I asked about this and that's something that
they will
not do.
It's a good thing there are other hosting comp
On Tue, 2009-06-09 at 01:18 +0200, Mark Martinec wrote:
> >
> > X-SpamScore: 0
> > tests= SIZE_LIMIT_EXCEEDED
> Some sw components to be ruled out:
> - this isn't amavisd-new doing it, at least none of the official versions;
Sorry, Mark. :) I was entirely going by the OPs outgoing head
On Mon, Jun 8, 2009 at 16:31, alexus wrote:
> whats botnet plugin?
It's a SpamAssassin plugin looks at DNS configurations and attempts to
identify hosts that are probably actually clients that are sending
email directly to your server, instead of through their own mail
server.
There's a high like
whats botnet plugin?
On Mon, Jun 8, 2009 at 7:23 PM, John Rudd wrote:
> On Mon, Jun 8, 2009 at 09:55, Jari Fredriksson wrote:
>>> The BOTNET plugin isn't covered in the CustomPlugins wiki
>>> page. When I Googled it I found this:
>>>
>>> http://people.ucsc.edu/~jrudd/spamassassin/Botnet.tar
>>>
>>
On Mon, Jun 8, 2009 at 09:55, Jari Fredriksson wrote:
>> The BOTNET plugin isn't covered in the CustomPlugins wiki
>> page. When I Googled it I found this:
>>
>> http://people.ucsc.edu/~jrudd/spamassassin/Botnet.tar
>>
>> but it's a bit old. Is there a later version?
>
> That's 0.8 which is AFAIK t
Stefan,
> I just had a closer look at the header of an email which should have
> been recognized by spamassassin as spam.
> Waht I found was this:
>
> X-SpamScore: 0
> tests= SIZE_LIMIT_EXCEEDED
>
> I have checked /usr/share/spamassassin/ for a rule which might contain a
> size limit, bu
On Tue, June 9, 2009 00:59, Martin Gregorie wrote:
> On Tue, 2009-06-09 at 00:39 +0200, Benny Pedersen wrote:
>> does there exists a perl-cleanup in you distro ?
>>
> There's not a general one. On the assumption (true for Fedora) that both
> Perl and SA are distro supported packages, if I was tack
On Tue, 2009-06-09 at 00:39 +0200, Benny Pedersen wrote:
> does there exists a perl-cleanup in you distro ?
>
There's not a general one. On the assumption (true for Fedora) that both
Perl and SA are distro supported packages, if I was tackling this I'd do
the following:
- make safety copies of SA
On Mon, June 8, 2009 15:41, Arvid Picciani wrote:
> is there anything i can do about that?
report to dnswl at there site ?
http://www.dnswl.org/
--
http://localhost/ 100% uptime and 100% mirrored :)
On Mon, June 8, 2009 15:26, The Doctor wrote:
> You can either use cpan or http://search.cpan.org .
bad advise !
--
http://localhost/ 100% uptime and 100% mirrored :)
On Mon, June 8, 2009 15:04, snowweb wrote:
> so I guess it's fixed.
until next time there is a new perl version yes :/
newer mix CPAN with a RPM system !
--
http://localhost/ 100% uptime and 100% mirrored :)
On Mon, June 8, 2009 14:41, snowweb wrote:
> Then I tried again with sa-update and got the following:
>
> [r...@s1 spamassassin]# sa-update
> Can't locate Archive/Tar.pm in @INC (@INC contains:
> /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi /usr/lib/per
> l5/site_perl/5.8.8 /usr/lib/per
On Mon, June 8, 2009 14:30, snowweb wrote:
>
> When I do "which perl" it only returns,
>
> "/usr/bin/perl"
unsure if thats relayted
> doesn't this mean that I only have one installed? (I'm not arguing.. just
> trying to understand, since I'm new to Linux).
spamassassin 2>&1 -D --lint
grep 5.8
On Mon, June 8, 2009 14:27, snowweb wrote:
> Sorry for my ignorance. I'm very new to Linux. Which missing perl module
> is that please?
there is non missing, you just have another perl version that miss it, how
to resolve problem with 2 versions of perl with yum i dont know, but solve
this and th
On Mon, 8 Jun 2009, Neil Schwartzman wrote:
qq: How do would I get spamassassin to reference an internal list of
IPs? (This would be all of our client IPs in either suspended or active
states on our whitelists to avoid denying access to our ticketing system
from those clients with dnsbl listin
qq: How do would I get spamassassin to reference an internal list of IPs?
(This would be all of our client IPs in either suspended or active states on
our whitelists to avoid denying access to our ticketing system from those
clients with dnsbl listings) I know how to aggregate the data, just want a
On 8-Jun-2009, at 09:42, Matus UHLAR - fantomas wrote:
On Mon, 2009-06-08 at 14:01 +0200, Matus UHLAR - fantomas wrote:
On 08.06.09 12:21, Karsten Bräckelmann wrote:
By authenticated users? So that's no bot spam, and the user spams
deliberately and consciously...
says who? Afaik spamware ofte
On Mon, 8 Jun 2009, ktn wrote:
By default, the spamd daemon does not allow user defined rules.
Hostmonster needs to set "allow_user_rules" to 1 in the system
configuration file. I asked about this and that's something that they
will not do.
...which is completely reasonable in a shared-hosti
I can edit 'user_prefs' and customize scores for existing tests, but when I
tried to add custom rules to 'user_prefs' they somehow got ignored. Weird.
Here's the details from a hostmonster
http://www.hostmonsterforum.com/showthread.php?t=2364 forum post :
> First off, hostmonster does not use
Just wanted to pass along a thank you to those who helped out here and provide
a few notes, on my experience, that may help anyone else that is looking at
this.
By the way, converting to MySQL did alleviate the problems that I was seeing
when attempting to apply updates to AWL ... processes tha
> The BOTNET plugin isn't covered in the CustomPlugins wiki
> page. When I Googled it I found this:
>
> http://people.ucsc.edu/~jrudd/spamassassin/Botnet.tar
>
> but it's a bit old. Is there a later version?
That's 0.8 which is AFAIK the latest.
The BOTNET plugin isn't covered in the CustomPlugins wiki page. When I
Googled it I found this:
http://people.ucsc.edu/~jrudd/spamassassin/Botnet.tar
but it's a bit old. Is there a later version?
On 08.06.09 12:21, Karsten Bräckelmann wrote:
By authenticated users? So that's no bot spam, and the user spams
deliberately and consciously...
On Mon, 2009-06-08 at 14:01 +0200, Matus UHLAR - fantomas wrote:
says who? Afaik spamware often uses outlook's SMTP engine, so it's
quite common for th
On Mon, 2009-06-08 at 17:42 +0200, Matus UHLAR - fantomas wrote:
> On 08.06.09 16:52, Karsten Bräckelmann wrote:
> > Got any stats about a non-negligible amount of bot spam authenticating
> > with the real user's SMTP, instead of direkt-to-MX submission?
>
> Why should I have any? Any spamming cli
On Mon, 8 Jun 2009, ktn wrote:
I am also starting to get a lot of these ".rtf attachment only with no
email body text" spams. Unfortunately, we use hostmonster.com for our
email so my ability to customize SA is greatly limited (i.e. I cannot
use custom rules).
Do you mean that they won't all
On Mon, 2009-06-08 at 07:17 -0700, ktn wrote:
> I am also starting to get a lot of these ".rtf attachment only with no email
> body text" spams. Unfortunately, we use hostmonster.com for our email so my
> ability to customize SA is greatly limited (i.e. I cannot use custom rules).
>
You can, of c
On Mon, 8 Jun 2009, ktn wrote:
We haven't been with hostmonster long, but considering that they're running
3.2.4 right now, I would assume at some point that they will update to
3.2.5. Until then, I can be patient. I'm just glad to hear that a standard
rule for this kind of spam will be added
> On Mon, 2009-06-08 at 14:01 +0200, Matus UHLAR - fantomas wrote:
> > On 08.06.09 12:21, Karsten Bräckelmann wrote:
> > > By authenticated users? So that's no bot spam, and the user spams
> > > deliberately and consciously...
> >
> > says who? Afaik spamware often uses outlook's SMTP engine, so i
We haven't been with hostmonster long, but considering that they're running
3.2.4 right now, I would assume at some point that they will update to
3.2.5. Until then, I can be patient. I'm just glad to hear that a standard
rule for this kind of spam will be added to SA! Many thanks.
John Hardi
On Mon, 8 Jun 2009, ktn wrote:
I am also starting to get a lot of these ".rtf attachment only with no
email body text" spams. Unfortunately, we use hostmonster.com for our
email so my ability to customize SA is greatly limited (i.e. I cannot
use custom rules).
Bummer.
Does hostmonster run
On Mon, 2009-06-08 at 14:01 +0200, Matus UHLAR - fantomas wrote:
> On 08.06.09 12:21, Karsten Bräckelmann wrote:
> > By authenticated users? So that's no bot spam, and the user spams
> > deliberately and consciously...
>
> says who? Afaik spamware often uses outlook's SMTP engine, so it's quite
>
I am also starting to get a lot of these ".rtf attachment only with no email
body text" spams. Unfortunately, we use hostmonster.com for our email so my
ability to customize SA is greatly limited (i.e. I cannot use custom rules).
So if I understand correctly: currently there is no standard rule
>> On 08.06.09 15:41, Arvid Picciani wrote:
>>> i'm getting _massive_ amounts of backscatter and some of the
>>> offenders are listed in dnswl.org.
>>> is there anything i can do about that?
> Matus UHLAR - fantomas schrieb:
>> ask for DNSWL delisting, if the backscatters are generated by dnswl
On Mon, 2009-06-08 at 15:41 +0200, Arvid Picciani wrote:
> Hi,
> i'm getting _massive_ amounts of backscatter and some of the offenders
> are listed in dnswl.org.
> is there anything i can do about that?
> thanks
>
Has your domain got an SPF record? If not, setting one up may well help.
Some time
On Mon, 2009-06-08 at 08:48 -0400, Matt Kettler wrote:
> Stefan-Michael Guenther wrote:
> >
> > I just had a closer look at the header of an email which should have
> > been recognized by spamassassin as spam.
> >
> > Waht I found was this:
> >
> > X-SpamScore: 0
> > tests= SIZE_LIMIT_EXCEEDE
Matus UHLAR - fantomas schrieb:
On 08.06.09 15:41, Arvid Picciani wrote:
i'm getting _massive_ amounts of backscatter and some of the offenders
are listed in dnswl.org.
is there anything i can do about that?
ask for DNSWL delisting, if the backscatters are generated by dnswl hosts
(
On 08.06.09 15:41, Arvid Picciani wrote:
> i'm getting _massive_ amounts of backscatter and some of the offenders
> are listed in dnswl.org.
> is there anything i can do about that?
ask for DNSWL delisting, if the backscatters are generated by dnswl hosts
(if the hosts in the dnswl are the sour
Hi,
i'm getting _massive_ amounts of backscatter and some of the offenders
are listed in dnswl.org.
is there anything i can do about that?
thanks
On 08.06.09 06:04, snowweb wrote:
> Guys, thanks to you all. You're all the most helpful people I've come across
> online!
>
> I think Stefan-Michael Guenther fixed it when he emailed me and told me to
> run this:
>
> perl -MCPAN -e shell
> install Archive::Tar
>
> Now when I type "sa-update", a
On Sat, 6 Jun 2009, John Rudd wrote:
Probably a good approach for your situation. Let me know how the lower
score works out for you (when you said 80% in the other message, do you
mean you're lowering it to a score of 1.0, or to a score of 4.0?)
John,
It seems to be working better with the
On Mon, Jun 08, 2009 at 03:30:59AM -0700, snowweb wrote:
>
> I've just heard about sa-update and tried to run it. I was thinking of
> setting up a cron to do it daily, however, I got the following error message
> when I ran it manually:
>
> [r...@s1 spamassassin]# sa-update && service spamassassi
Guys, thanks to you all. You're all the most helpful people I've come across
online!
I think Stefan-Michael Guenther fixed it when he emailed me and told me to
run this:
perl -MCPAN -e shell
install Archive::Tar
Now when I type "sa-update", although I don't get any feedback, I don't get
any err
Using the command "which perl" will only turn up the first instance
of perl in your path. Try this: cd to the root directory, then type
"find . -name perl -print" and hit return. The find command will
recursively search through all the directories on the machine and
locate all files named "pe
I tested for two versions of perl using "which perl" and it only returned one
location.
I'm using CentOS 5.0 and I'm running DirectAdmin hosting software. The SA
was installed by the script which installed the DirectAdmin. I don't
understand how or where it got the SA from. Again, I don't know wh
Stefan-Michael Guenther wrote:
> Hi,
>
> I just had a closer look at the header of an email which should have
> been recognized by spamassassin as spam.
>
> Waht I found was this:
>
> X-SpamScore: 0
> tests= SIZE_LIMIT_EXCEEDED
>
> I have checked /usr/share/spamassassin/ for a rule which migh
I just ran "yum upgrade spamassassin" and this was the result:
[r...@s1 spamassassin]# yum upgrade spamassassin
Loading "installonlyn" plugin
Setting up Upgrade Process
Setting up repositories
dag 100% |=| 1.1 kB00:00
openwebmail 100
Hi,
I just had a closer look at the header of an email which should have
been recognized by spamassassin as spam.
Waht I found was this:
X-SpamScore: 0
tests= SIZE_LIMIT_EXCEEDED
I have checked /usr/share/spamassassin/ for a rule which might contain a
size limit, but didn't finde
> > On Mon, 2009-06-08 at 03:30 -0700, an anonymous Nabble user wrote:
> >> I've just heard about sa-update and tried to run it. I was thinking of
> >> setting up a cron to do it daily, however, I got the following error
> >> message when I ran it manually:
> >>
> >> [r...@s1 spamassassin]# sa-upd
When I do "which perl" it only returns,
"/usr/bin/perl"
doesn't this mean that I only have one installed? (I'm not arguing.. just
trying to understand, since I'm new to Linux).
pete
Benny Pedersen wrote:
>
>
> On Mon, June 8, 2009 12:55, Nigel Frankcom wrote:
>
>> It may also be worth run
Sorry for my ignorance. I'm very new to Linux. Which missing perl module is
that please?
pete
Karsten Bräckelmann-2 wrote:
>
> On Mon, 2009-06-08 at 03:30 -0700, an anonymous Nabble user wrote:
>> I've just heard about sa-update and tried to run it. I was thinking of
>> setting up a cron to do
> On Mon, 2009-06-08 at 11:59 +0200, Matus UHLAR - fantomas wrote:
> > > On Mon, 2009-06-08 at 10:14 +0530, Anshul Chauhan wrote:
> > > > I can't use RBL because most of my users use datacards & their ip
> > > > addresses are listed in RBL in SBL & XBL & SPAMCOP.
> >
> > On 08.06.09 11:56, Karsten
On Mon, 2009-06-08 at 17:05 +0530, Anshul Chauhan wrote:
> I'm new to SA so please suggest/gve some hint for how to use RBL for
> non smtp authenticated session & for smtp authicated mails not spam
> scanning.
Not scanning outbound messages from your users is entirely the duty of
your SMTP and out
Below is mail headers for one more mail
http://pastebin.com/d3da8daa6
I'm new to SA so please suggest/gve some hint for how to use RBL for non
smtp authenticated session & for smtp authicated mails not spam scanning.
Warm Regards,
Anshul Chauhan
"Dream is not what you see while sleep, it's the th
Back on-list, just FYI.
On Sun, 2009-06-07 at 22:41 -0300, Soporte Técnico elbolson.com wrote:
> Thanks for your answer.
> It is solved now - I removed a plugin that a friend created to call KAV
> antivirus, based on Clamav plugin. It had worked before on i386, it
> doesn't work on x86_64. We will
On Mon, June 8, 2009 12:55, Nigel Frankcom wrote:
> It may also be worth running "spamassassin --lint -D" to see if you
> are missing any other packages.
you have currently 2 perl versions installed
this is the problem, if not all modules exists in 5.8.8, but some only
does in 5.8.6
--
http:
On Mon, 8 Jun 2009 03:30:59 -0700 (PDT), snowweb
wrote:
>
>I've just heard about sa-update and tried to run it. I was thinking of
>setting up a cron to do it daily, however, I got the following error message
>when I ran it manually:
>
>[r...@s1 spamassassin]# sa-update && service spamassassin res
On Mon, 2009-06-08 at 03:30 -0700, an anonymous Nabble user wrote:
> I've just heard about sa-update and tried to run it. I was thinking of
> setting up a cron to do it daily, however, I got the following error message
> when I ran it manually:
>
> [r...@s1 spamassassin]# sa-update && service spam
I've just heard about sa-update and tried to run it. I was thinking of
setting up a cron to do it daily, however, I got the following error message
when I ran it manually:
[r...@s1 spamassassin]# sa-update && service spamassassin restart
Can't locate Archive/Tar.pm in @INC (@INC contains:
/usr/li
On Mon, 2009-06-08 at 10:14 +0530, Anshul Chauhan wrote:
> I can't use RBL because most of my users use datacards & their ip
> addresses are listed in RBL in SBL & XBL & SPAMCOP.
^^^
Just noticed this -- I kind of hope this is just a typo.
SBL listing of your users
On Mon, 2009-06-08 at 11:59 +0200, Matus UHLAR - fantomas wrote:
> > On Mon, 2009-06-08 at 10:14 +0530, Anshul Chauhan wrote:
> > > I can't use RBL because most of my users use datacards & their ip
> > > addresses are listed in RBL in SBL & XBL & SPAMCOP.
>
> On 08.06.09 11:56, Karsten Bräckelmann
On Mon, June 8, 2009 11:56, Karsten Bräckelmann wrote:
> On Mon, 2009-06-08 at 10:14 +0530, Anshul Chauhan wrote:
>> I can't use RBL because most of my users use datacards & their ip
>> addresses are listed in RBL in SBL & XBL & SPAMCOP.
> As has been suggested by various others, just do not scan
> On Mon, 2009-06-08 at 10:14 +0530, Anshul Chauhan wrote:
> > I can't use RBL because most of my users use datacards & their ip
> > addresses are listed in RBL in SBL & XBL & SPAMCOP.
On 08.06.09 11:56, Karsten Bräckelmann wrote:
> As has been suggested by various others, just do not scan outgoin
On Mon, 2009-06-08 at 10:14 +0530, Anshul Chauhan wrote:
> I can't use RBL because most of my users use datacards & their ip
> addresses are listed in RBL in SBL & XBL & SPAMCOP.
As has been suggested by various others, just do not scan outgoing mail
from authenticated users.
> These are the RBL
Hi, I'm new to SA. I run an Exim/Dovecot CentOS 5.0 mailserver (VPS), on
which I have recently installed SA.
I have configured 'Autolearn = yes' but I have no way to know whether this
is working. Please can someone explain to me how this works, since my
understanding of this is as follows, and ma
On Mittwoch 03 Juni 2009 Michael Monnerie wrote:
> But maybe, if response and urge is high, I will include them. What do
> you think? Is it spam for you?
OK, there where only +1 to include that, without any single objection.
Updates will follow. Thanks for your opinions and votes.
mfg zmi
--
//
On 7-Jun-2009, at 22:44, Anshul Chauhan wrote:
Below is the link for one of the spam mail in which to & from
address is
same.
http://pastebin.com/f20358d76
I can't use RBL because most of my users use datacards & their ip
addresses
are listed in RBL in SBL & XBL & SPAMCOP.
And why does th
On Mon, June 8, 2009 08:41, Anshul Chauhan wrote:
> can i do this in sendmail SMTP auth session without RBL & rest with RBL.
http://www.sendmail.org/~ca/email/auth.html
--
http://localhost/ 100% uptime and 100% mirrored :)
70 matches
Mail list logo
