On Thu, 16 Aug 2012, Sergio wrote:
John, that is what I am looking to do and that is why I thought that SA
could have a rule for this. I will read the info that KAM sent.
No, that sort of thing is the responsibility of the MTA.
--
John Hardin KA7OHZhttp://www.impsec.org/~
Thank you, KAM.
I will take a look at those URLs, appreciated.
John, that is what I am looking to do and that is why I thought that SA
could have a rule for this. I will read the info that KAM sent.
Best Regards,
Sergio
On Thu, Aug 16, 2012 at 2:22 PM, John Hardin wrote:
> On Thu, 16 Aug 201
On 8/16/2012 4:13 PM, Sergio wrote:
, he sends emails but the FROM is changed to something that is not a
domain on the server, that is what I am looking to stop.
Maybe a rule that could check that the FROM is not the same as the
authenticated domain.
I think SA is the wrong tool for the issue
On Thu, 16 Aug 2012, Sergio wrote:
My server is not Open Relayed and it has SPF and DOMAINKEYS in it and
that is working great. The problem is when a hacker has obtained the
password from an account, so, it can send emails authenticating with the
account that has been compromised. When a hacke
Thank all for your inputs.
What happens is this:
My server is not Open Relayed and it has SPF and DOMAINKEYS in it and that
is working great. The problem is when a hacker has obtained the password
from an account, so, it can send emails authenticating with the account
that has been compromised. Wh
On Thu, 16 Aug 2012, RW wrote:
On Thu, 16 Aug 2012 12:18:44 -0400
Alex wrote:
What effect do whitelist entries have on autolearning
None at all because they are marked as "userconf".
bummer.
In other words, my whitelist_from_rcvd entries add -100 to the score,
which would be way beyond t
On Thu, 16 Aug 2012 12:18:44 -0400
Alex wrote:
> Hi,
>
> >> What will probably end up happening is this:
> >> (1) wipe your Bayes database
> >> (2) turn off autolearn
> >> (3) collect several hundred hams and spams for an initial training
> >> corpus (4) train using that corpus
> >> (5) evaluate
On Thu, 16 Aug 2012, Ben Johnson wrote:
It may be academic at this point, but I'm now curious as to what causes
the DB file to be recreated, if not restarting Amavis. (It bears mention
that plenty of mail came in between using the "--clear" switch and when
using the "--dump" switch began to prod
On Thu, 16 Aug 2012, Jim Schueler wrote:
To restate the question: My mailbox contains between 10-20 false positives
every morning. Before reporting them, I pass them through the spam
assassin filter again. About 20-25% are flagged as spam the second time
through.
The most obvious explanation
On 8/16/2012 12:32 PM, John Hardin wrote:
> On Thu, 16 Aug 2012, Ben Johnson wrote:
>
>> On 8/16/2012 11:38 AM, John Hardin wrote:
>>> On Thu, 16 Aug 2012, Ben Johnson wrote:
>>>
So, after disabling auto-learn (for now) and executing "sa-learn
--clear", and restarting Amavis, I'm still
On 08/16/2012 07:01 PM, Jim Schueler wrote:
I've noticed that this problem is ongoing, my upgrade to 3.3.2
notwithstanding.
To restate the question: My mailbox contains between 10-20 false positives
every morning. Before reporting them, I pass them through the spam
assassin filter again. Abou
On 8/16/2012 1:01 PM, Jim Schueler wrote:
I've noticed that this problem is ongoing, my upgrade to 3.3.2
notwithstanding.
To restate the question: My mailbox contains between 10-20 false
positives every morning. Before reporting them, I pass them through
the spam assassin filter again. Abo
I've noticed that this problem is ongoing, my upgrade to 3.3.2
notwithstanding.
To restate the question: My mailbox contains between 10-20 false positives
every morning. Before reporting them, I pass them through the spam
assassin filter again. About 20-25% are flagged as spam the second time
t
On Thu, 16 Aug 2012, Ben Johnson wrote:
On 8/16/2012 11:38 AM, John Hardin wrote:
On Thu, 16 Aug 2012, Ben Johnson wrote:
So, after disabling auto-learn (for now) and executing "sa-learn
--clear", and restarting Amavis, I'm still seeing this:
No, score=0.593 tag=-999 tag2=3 kill=13 tests=[BA
Hi,
>> What will probably end up happening is this:
>> (1) wipe your Bayes database
>> (2) turn off autolearn
>> (3) collect several hundred hams and spams for an initial training corpus
>> (4) train using that corpus
>> (5) evaluate results
>>
>> Depending on your mail volume, once Bayes is worki
On 8/16/2012 11:38 AM, John Hardin wrote:
> On Thu, 16 Aug 2012, Ben Johnson wrote:
>
>> So, after disabling auto-learn (for now) and executing "sa-learn
>> --clear", and restarting Amavis, I'm still seeing this:
>>
>> No, score=0.593 tag=-999 tag2=3 kill=13 tests=[BAYES_00=-1.9,
>> HTML_MESSAGE
On Thu, 16 Aug 2012, Ben Johnson wrote:
So, after disabling auto-learn (for now) and executing "sa-learn
--clear", and restarting Amavis, I'm still seeing this:
No, score=0.593 tag=-999 tag2=3 kill=13 tests=[BAYES_00=-1.9,
HTML_MESSAGE=0.001, RDNS_NONE=0.793, SPF_PASS=-0.001,
URIBL_DBL_SPAM=1.7
On 8/16/2012 10:14 AM, Ben Johnson wrote:
>
>
> On 8/15/2012 4:05 PM, John Hardin wrote:
>> On Wed, 15 Aug 2012, Ben Johnson wrote:
>>
>>> On 8/15/2012 2:24 PM, John Hardin wrote:
On Wed, 15 Aug 2012, Ben Johnson wrote:
> Some 99% of the spam that I receive, which is grossly spamm
On 8/15/2012 4:05 PM, John Hardin wrote:
> On Wed, 15 Aug 2012, Ben Johnson wrote:
>
>> On 8/15/2012 2:24 PM, John Hardin wrote:
>>> On Wed, 15 Aug 2012, Ben Johnson wrote:
>>>
Some 99% of the spam that I receive, which is grossly spammy (we're
talking auto loans, cash advances, dink p
On Thu, 16 Aug 2012, Kevin A. McGrail wrote:
On 8/15/2012 6:08 PM, John Evans wrote:
I added the patch and it hung in the same place. The 'spamassassin -D -t <
bad' command eventually went through after a LONG timeout. I didn't
capture the results of the SA command (forgot to redirect output
Ori,
> > RFC 5321, section 4.4 has a BNF description of a Received: header.
> > http://tools.ietf.org/html/rfc5321#section-4.4
>
> Thank you, although I wonder where the definition of "Protocol"
With = CFWS "WITH" FWS Protocol
Protocol = "ESMTP" / "SMTP" / Attdl-Protocol
On 8/15/2012 6:08 PM, John Evans wrote:
I added the patch and it hung in the same place. The 'spamassassin -D
-t < bad' command eventually went through after a LONG timeout. I
didn't capture the results of the SA command (forgot to redirect
output), but the patch to substr(X, 0, 3) didn't s
22 matches
Mail list logo
