On Wed, 25 Jul 2012, Chip M. wrote:
Note that none of these is hitting test "T_HTML_ATTACH".
I will fix that so it does not depend on the filename being in the
Content-Type header.
--
John Hardin KA7OHZhttp://www.impsec.org/~jhardin/
jhar...@impsec.orgFALaholic #11
On Wed, 25 Jul 2012, Chip M. wrote:
There's yet another variant in the ongoing campaign of HTML file
attachments with javascript malware payloads. :(
The trick is that it sets the Content-Type to "application/zip",
and uses an ".htm" file extension, for example (actual spam):
Content-Ty
There's yet another variant in the ongoing campaign of HTML file
attachments with javascript malware payloads. :(
The trick is that it sets the Content-Type to "application/zip",
and uses an ".htm" file extension, for example (actual spam):
Content-Type: application/zip
Content-Tr
Good morning!
I'm running into some problems I need some help in trouble shooting.
The Problems:
Problem A - Scoring information does not show up in HAM e-mails.
Problem B - Custom rules don't see to be applied.
Problem C - SpamAssassin.exe and spamd.exe appear to score spam differently.
On 7/25/2012 9:43 AM, Bowie Bailey wrote:
On 7/25/2012 9:33 AM, Sebastijan Šilec wrote:
I'm getting a lot of AXB_XMAILER_MIMEOLE_OL_4379D and
AXB_XMAILER_MIMEOLE_OL_024C2 hits lately from legit users.
What triggers this scores?
meta AXB_XMAILER_MIMEOLE_OL_024C2 (__AXB_XM_OL_024C2 &&
__AXB_M
On 25. 07. 2012 15:43, Bowie Bailey
wrote:
On
7/25/2012 9:33 AM, Sebastijan Šilec wrote:
I'm getting a lot of
AXB_XMAILER_MIMEOLE_OL_4379D and
AXB_XMAILER_MIMEOLE_OL_024C2 hits lately from legit users.
W
On 7/25/2012 9:33 AM, Sebastijan Šilec wrote:
I'm getting a lot of AXB_XMAILER_MIMEOLE_OL_4379D and
AXB_XMAILER_MIMEOLE_OL_024C2 hits lately from legit users.
What triggers this scores?
meta AXB_XMAILER_MIMEOLE_OL_024C2 (__AXB_XM_OL_024C2 &&
__AXB_MO_OL_024C2)
header __AXB_MO_OL_024C2 X
