On Fri, Jan 06, 2012 at 06:06:35PM +1300, Jason Haar wrote:
> Hi there
>
> I just had the following phishing attacks get through with scores in the 2s.
>
> http://pastebin.com/4Yyc0m7j
> http://pastebin.com/R0XMM9Je
>
> Both are generated by different hacked websites - both from 41.184.112.222
>
Hi there
I just had the following phishing attacks get through with scores in the 2s.
http://pastebin.com/4Yyc0m7j
http://pastebin.com/R0XMM9Je
Both are generated by different hacked websites - both from 41.184.112.222
Could X-EN-OrigIP: and X-PHP-Script: be added to X-Spam-Relays-External
so a
>Wow, really? Then why wouldn't RedHat or CentOS have a fixed updated
>version in their repo? That seems egregious if what you say is indeed the
>case.
RedHat (and CentOS, since their whole mission is to match RHEL
feature-for-feature and bug-for-bug) believes that their Enterprise Linux
custome
>>> What is the Net::DNS version, are you pure ipv6
> and are you
>>
>>> 64-bit?
>>
>> perl-Net-DNS-0.63-1.el5.rf
>>
>
> You are in no man's land there - the distro uses
perl-Net-DNS-0.59-3.el5
> and the latest rpmforge package i
>> /usr/lib/perl5/5.8.8/Exporter.pm line 65. at
>> /usr/lib/perl5/vendor_perl/5.8.8/i386-linux-thread-multi/Net/DNS/Resolver/Base.pm
>>
>> line 66 [ OK ]
>>
>> With my spamassassin, perl-Net-DNS and per-IO-Socket-INET6
>> packages all being from CentOS repo, I'm unsure why this would hap
David B Funk wrote:
>
>
> I'm not familiar with the FreeBSD ports tree, but if its
> spamass-milter-0.3.2 is the same as the one from
> http://www.freshports.org/mail/spamass-milter/ then it does -not-
> add the auth tokens to its internally synthesized "Received" header.
> Thus your problem
On Thu, 5 Jan 2012, nsayer wrote:
David B Funk wrote:
Noel,
I assume that you're saying he has a sendmail config problem because his
SA isn't 'seeing' the auth tokens. That might not be the case, it may be
his milter that is at fault.
SA depends upon the auth tokens that your MTA adds to its
On 2012-01-05 21:28, email builder wrote:
What is the Net::DNS version, are you pure ipv6 and are you
64-bit?
perl-Net-DNS-0.63-1.el5.rf
You are in no man's land there - the distro uses
perl-Net-DNS-0.59-3.el5
and the latest rpmforge package is perl-Net-DNS-0.66-1.el
Starting spamd: Subroutine Net::DNS::Resolver::Base::AF_INET6 redefined
at /usr/lib/perl5/5.8.8/Exporter.pm line 65. at
/usr/lib/perl5/vendor_perl/5.8.8/i386-linux-thread-multi/Net/DNS/Resolver/Base.pm
line 66 [ OK ] With my spamassassin, perl-Net-DNS and
per-IO-Socket-INET6 packages all bei
> What is the Net::DNS version, are you pure ipv6 and are you
> 64-bit?
perl-Net-DNS-0.63-1.el5.rf
>>>
>>> You are in no man's land there - the distro uses
>> perl-Net-DNS-0.59-3.el5
>>> and the latest rpmforge package is perl-Net-DNS-0.66-1.el5.rfx.
>>>
>
Noel Butler wrote:
>
> Ack, you have far bigger problems then you realise given below...
> Question, you are smtp-auth'ing via port 587 aren't you?
>
>
Yes.
If you are,
> then your sendmail is incorrectly configured and I suggest you load the
> news group comp.mail.sendmail and ask there (
David B Funk wrote:
>
> Noel,
> I assume that you're saying he has a sendmail config problem because his
> SA isn't 'seeing' the auth tokens. That might not be the case, it may be
> his milter that is at fault.
>
> SA depends upon the auth tokens that your MTA adds to its "Received:"
> head
> What is the Net::DNS version, are you pure ipv6 and are you
> 64-bit?
perl-Net-DNS-0.63-1.el5.rf
>>>
>>> You are in no man's land there - the distro uses
>>> perl-Net-DNS-0.59-3.el5
>>> and the latest rpmforge package is perl-Net-DNS-0.66-1.el5.rfx.
>>>
>>>
OK, fair-enough, and your theory seems very valid. I wish they (Cloudmark)
made a SA plugin for us SOHO users that can't afford (and don't need) a full
Cloudmark Authority server/setup. I'd pay a license fee if it were
reasonable and it performed anywhere near as accurately as their windows
desk
On 1/5/2012 8:49 AM, AJ Weber wrote:
Yes, I still have other rules enabled. I have found the Cloudmark product to
be extremely accurate, and really my question is specific to whether "razor
== cloudmark" or to what extent they are related and how, so I can better
understand the results I'm seein
Yes, I still have other rules enabled. I have found the Cloudmark product to
be extremely accurate, and really my question is specific to whether "razor
== cloudmark" or to what extent they are related and how, so I can better
understand the results I'm seeing.
Thanks for the reply,
AJ
Martin
Noel,
I assume that you're saying he has a sendmail config problem because his
SA isn't 'seeing' the auth tokens. That might not be the case, it may be
his milter that is at fault.
SA depends upon the auth tokens that your MTA adds to its "Received:"
header to recognize properly authed messag
17 matches
Mail list logo
