On Thu, 9 Dec 2010, Karsten Br?ckelmann wrote:
On Thu, 2010-12-09 at 14:43 -0800, John Hardin wrote:
It appears that a client can easily set up hosting using cPanel or
something without ever setting the rDNS or hostname to anything other
than the numeric default.
Is there anything in the head
On tor 09 dec 2010 22:50:50 CET, Cedric Knight wrote
Well, Hotmail is a bigger source of compromised accounts (I've had spam
appearing to come from many friends and contacts), but Microsoft still
seem fairly unsure about it themselves:
i think its another problem hotmail have, lets say that a v
On tor 09 dec 2010 21:30:39 CET, Karsten Bräckelmann wrote
Received: from 94.229.160.4.srvlist.ukfast.net
(94.229.160.4.srvlist.ukfast.net [94.229.160.4])
Looks like a dynamic hostname indeed.
but static ip range according to
http://www.db.ripe.net/whois?form_type=simple&full_query_string=&se
On 09/12/10 22:43, John Hardin wrote:
> On Thu, 9 Dec 2010, Cedric Knight wrote:
>
>> It appears that a client can easily set up hosting using cPanel or
>> something without ever setting the rDNS or hostname to anything other
>> than the numeric default.
>
> Is there anything in the headers that in
On Thu, 9 Dec 2010, Karsten Bräckelmann wrote:
> On Thu, 2010-12-09 at 14:43 -0800, John Hardin wrote:
> > > It appears that a client can easily set up hosting using cPanel or
> > > something without ever setting the rDNS or hostname to anything other
> > > than the numeric default.
> >
> > Is the
On Thu, 2010-12-09 at 14:43 -0800, John Hardin wrote:
> > It appears that a client can easily set up hosting using cPanel or
> > something without ever setting the rDNS or hostname to anything other
> > than the numeric default.
>
> Is there anything in the headers that indicates cpanel is in us
On Thu, 2010-12-09 at 23:02 +0100, Matus UHLAR - fantomas wrote:
> > Ah, so they are operational, just poorly configured. That's what you
> > just said in other words, right? :)
> >
> > Anyway, why are *web* servers sending out mail at all? Other than maybe
> > cron junk and friends, which would w
On Thu, 9 Dec 2010, Cedric Knight wrote:
It appears that a client can easily set up hosting using cPanel or
something without ever setting the rDNS or hostname to anything other
than the numeric default.
Is there anything in the headers that indicates cpanel is in use? Perhaps
a meta on cpan
On Thu, 2010-12-09 at 21:59 +, Cedric Knight wrote:
> On 09/12/10 20:30, Karsten Bräckelmann wrote:
> > Anyway, why are *web* servers sending out mail at all? Other than maybe
> > cron junk and friends, which would warrant bypassing SA or extending
> > your internal network. If they are indeed
On Thu, 2010-12-09 at 16:49 -0500, Bowie Bailey wrote:
> On 12/9/2010 4:39 PM, Karsten Bräckelmann wrote:
> > According to that, the bug finally and fully has been fixed since
> > NetAddr::IP 4.036.
> >
> > Always glad to copy-n-paste other guys' Subject lines into search
> > engines or list archi
> On Thu, 2010-12-09 at 20:18 +, Cedric Knight wrote:
> > I noticed some bad false positives on email sent from certain web
> > servers that haven't (yet) been properly configured. For example, a
> > trusted header line starting:
>
> Ah, so they are operational, just poorly configured. That's
On 09/12/10 20:30, Karsten Bräckelmann wrote:
> On Thu, 2010-12-09 at 20:18 +, Cedric Knight wrote:
>> I noticed some bad false positives on email sent from certain web
>> servers that haven't (yet) been properly configured. For example, a
>> trusted header line starting:
>
> Ah, so they are o
On 09/12/10 14:33, Randy Ramsdell wrote:
> I have been receiving bounces to my yahoo account for email I did not
> send. From the pastebin, you see the email did originate from the yahoo
> servers but is not in my sent directory. This is an interesting case and
> I cannot determine how this happene
On 12/9/2010 4:39 PM, Karsten Bräckelmann wrote:
> On Thu, 2010-12-09 at 16:21 -0500, Bowie Bailey wrote:
>> At one point there was an issue with the NetAddr::IP package that caused
>> problems with SA, but I have not heard anything about it recently. Does
>> the current 4.037 version still have t
On Thu, 2010-12-09 at 16:21 -0500, Bowie Bailey wrote:
> At one point there was an issue with the NetAddr::IP package that caused
> problems with SA, but I have not heard anything about it recently. Does
> the current 4.037 version still have the same issue? If so, what needs
> to be done to work
At one point there was an issue with the NetAddr::IP package that caused
problems with SA, but I have not heard anything about it recently. Does
the current 4.037 version still have the same issue? If so, what needs
to be done to work around it?
I am running the latest SA 3.3.1, if it makes a di
On Thu, 2010-12-09 at 20:18 +, Cedric Knight wrote:
> I noticed some bad false positives on email sent from certain web
> servers that haven't (yet) been properly configured. For example, a
> trusted header line starting:
Ah, so they are operational, just poorly configured. That's what you
ju
I noticed some bad false positives on email sent from certain web
servers that haven't (yet) been properly configured. For example, a
trusted header line starting:
Received: from 94.229.160.4.srvlist.ukfast.net
(94.229.160.4.srvlist.ukfast.net [94.229.160.4])
looks to SpamAssassin like the dynam
On Wed, 2010-12-08 at 15:52 -0800, Marc Perkel wrote:
> For those who want to try the Fake MX trick you can set your highest MX
> to tarbaby.junkemailfilter.com. I'm harvesting spambot data for my black
> list. It's a free way to get rid of some spam and punish the spammers.
Marc, we've gone thr
On 12/9/2010 10:25 AM, Florescu, Dan Alexandru wrote:
>
> Hi, I just upgraded to SA 3.3.1.
>
> Installed the rules using sa-update => ls /var/lib/spamassassin/
>
> 3.003001
>
>
>
> And I fed a message to SA using spamassassin -t < msg1. It gave me the
> following:
>
> Spam detection software, run
Hi, I just upgraded to SA 3.3.1.
Installed the rules using sa-update => ls /var/lib/spamassassin/
3.003001
And I fed a message to SA using spamassassin -t < msg1. It gave me the
following:
Spam detection software, running on the system "xxxhost.tld", has
identified this incoming email as possible
Michael Scheidell wrote:
On 12/9/10 9:33 AM, Randy Ramsdell wrote:
I have been receiving bounces to my yahoo account for email I did not
send. From the pastebin, you see the email did originate from the
yahoo servers but is not in my sent directory. This is an interesting
case and I cannot d
On 12/9/10 9:33 AM, Randy Ramsdell wrote:
I have been receiving bounces to my yahoo account for email I did not
send. From the pastebin, you see the email did originate from the
yahoo servers but is not in my sent directory. This is an interesting
case and I cannot determine how this happened.
I have been receiving bounces to my yahoo account for email I did not
send. From the pastebin, you see the email did originate from the yahoo
servers but is not in my sent directory. This is an interesting case and
I cannot determine how this happened. One thing could be my account was
compromi
24 matches
Mail list logo
