On Tue, 29 Jun 2010 15:11:10 -0400
Kris Deugau wrote:
> The other thing to check to confirm whether you're really running as
> globally as you think you are is:
>
The OP quoted this:
| Name | Engine | Version | Row_format |Rows...
...
| bayes_expire | InnoDB | 9
Hello SA list,
I try to compile SA on a Debian 5.0.5, via CPAN. (install
Mail::SpamAssassin), but it fails when running the tests. I have done
it earlier a hundred times, but now I got strange error. I have found
a similar in 2007 (bug5510) (maybe it is not the same, but for me it
looks like). Any
--On Tuesday, June 29, 2010 2:37 PM -0700 John Hardin
wrote:
So it sounds like they're not sending everything through the same
system. Time to post a report about that in one of their game forums.
(Which one? Suggestions? Bug Reports? Customer Support? I think the last
one, as that's where the
On Tue, 29 Jun 2010, Kenneth Porter wrote:
I just checked some recent messages and found that auto-replies from the
ha...@blizzard.com address (to which one should forward examples of
phish) do NOT have DKIM signatures of any kind.
Other recent mail from Blizzard does have a DKIM signature.
Aaron Bennett wrote:
On 06/29/2010 11:00 AM, Kris Deugau wrote:
Aaron Bennett wrote:
1) Are you supposed to have a global Bayes DB?
2) How many users do you have?
3) If the answer to 1) is "yes", did you set bayes_sql_override_username?
If the answer to 1) is no, you're probably not runni
--On Tuesday, June 29, 2010 11:17 AM +0200 Mark Martinec
wrote:
What I want:
1) Message from blizzard that has no dkim gets scored +10
adsp_override blizzard.com custom_high
I just checked some recent messages and found that auto-replies from the
ha...@blizzard.com address (to which on
On 06/29/2010 11:00 AM, Kris Deugau wrote:
Aaron Bennett wrote:
1) Are you supposed to have a global Bayes DB?
2) How many users do you have?
3) If the answer to 1) is "yes", did you set bayes_sql_override_username?
If the answer to 1) is no, you're probably not running Bayes expiry for
>
> I believe the issue is that there are no brackets around the IP. The
> line should look like this:
>
> Received: from [68.103.178.110] by webmail.east.cox.net; Mon, 28 Jun 2010
> 18:02:23 -0400
>
>
Ah, right! Thanks!
( Drat, sorry about the reply to poster rather than list. )
Mike Grau wrote:
> Hello,
>
> I'm getting a lot of FPs from FH_FAKE_RCVD_LINE_B RCVD line looks faked
> (B) since the default score for this rule is a whopping 4.000.
>
> It's matching on this header:
>
> Received: from 68.103.178.110 by webmail.east.cox.net; Mon, 28 Jun 2010
> 18:02:23 -0400
>
> T
Aaron Bennett wrote:
I'm sort of pulling at straws here, but I'm reading the manpage for
sa-learn and it says that sa-learn will try to expire bayes tokens
according to this:
- the number of tokens in the DB is> 100,000
- the number of tokens in the DB is> bayes_expiry_max_db_s
Hello,
I'm getting a lot of FPs from FH_FAKE_RCVD_LINE_B RCVD line looks faked
(B) since the default score for this rule is a whopping 4.000.
It's matching on this header:
Received: from 68.103.178.110 by webmail.east.cox.net; Mon, 28 Jun 2010
18:02:23 -0400
This rule matches the ISP Cox Commun
On Tue, 2010-06-29 at 04:39 -0400, Dan Mahoney, System Admin wrote:
> On Mon, 28 Jun 2010, Yet Another Ninja wrote:
> > > Perhaps this is by design, but rt replies are, strictly speaking, not
> > > bounce messages.
> > from what I see it looks normal if someone really makes an effort to
> > "tu
On 2010-06-29 10:39, Dan Mahoney, System Admin wrote:
On Mon, 28 Jun 2010, Yet Another Ninja wrote:
On 2010-06-28 11:33, Dan Mahoney, System Admin wrote:
> Hey there,
> > Perhaps this is by design, but rt replies are, strictly speaking,
not > bounce messages.
> > Message attached, let me know
On Mon, 28 Jun 2010, Yet Another Ninja wrote:
On 2010-06-28 11:33, Dan Mahoney, System Admin wrote:
> Hey there,
>
> Perhaps this is by design, but rt replies are, strictly speaking, not
> bounce messages.
>
> Message attached, let me know if it looks "normal".
>
> -Dan
>
from what I see i
LuKreme,
> > adsp_override blizzard.com custom_high
> > adsp_override *.blizzard.com custom_high
> OK, and than I just do that for every doamin?
Yes, for every domain that you are sure to always provide a valid
DKIM or DK signatures and always send directly, and after you
make sure that your mail
Bowie Bailey wrote:
>
> The best idea was suggested by someone else. Instead of trying to match
> a short segment, do a negative match on a longer one.
>
> rawbody T__LONG_MAIL /.{151}/s
> meta T_SHORT_MAIL !T__LONG_MAIL
>
Hmm, I saw the suggestion but missed to negate the meta...
Thank you
16 matches
Mail list logo
