On Mon, 7 Feb 2022, Loren Wilton wrote:
But, it had:
* 2.5 CONTENT_AFTER_HTML More content after HTML close tag
but one was only text/plain and I could see nothing wrong. reading
72_active.cf I found:
rawbody__CONTENT_AFTER_HTML/<\/htnl>\s*[a-z0-9]/i
>
which fires on
On Mon, 7 Feb 2022, Greg Troxel wrote:
and then I got a reply back with the content he was trying to send etc.
But, it had:
* 2.5 CONTENT_AFTER_HTML More content after HTML close tag
but one was only text/plain and I could see nothing wrong. reading
72_active.cf I found:
rawbody
But, it had:
* 2.5 CONTENT_AFTER_HTML More content after HTML close tag
but one was only text/plain and I could see nothing wrong. reading
72_active.cf I found:
rawbody__CONTENT_AFTER_HTML/<\/htnl>\s*[a-z0-9]/i
>
which fires on a text/plain part that discusses html formatti
If they are more than a month or so old, just drop them would probably be
appropriate. Spam changes with time, and learning old spam patterns may not
do you much good.
If you aren't running Bayes, just dump all of them.
If you are running Bayes, it might be worth running the lst month or so th
(Instances of html have been changed to htnl in this message to
avoid tripping the rule I'm talking about.)
A legit message arrived at my server, for me and another user, and it
scored 8 for them and I think about 11 for me. This is really unusual.
The big issues were:
Sent by sendgrid: point
Thank you for responding
You were correct it was the size limit that bypassed the scanning
I created a spamc.conf in the spam assassin folder with the “-s option” and
increased the scanning size to avoid bypassing on smaller attachments.
On Feb 7, 2022, at 5:24 PM, David B Funk wrote:
Ho
After a long outage due to weather, a restart found spamd not running (timed
out on startup, a story for later),
and a lot of spam got through.
Now that it is running, should I re-submit these dozens or hundreds of emails
to allow them to be properly
classified, drop them in "missed SPAM" or ju
How big was the message? (attached images can be pretty big).
Depending on the "glue" you use to connect your mail MTA to SA, it may have some
kind of size restriction.
For example, the 'spamc' client has a 'max-size' parameter (which defaults to
500KB). Any message larger than that size will
Thanks for your help Ian,
I'd run "sh -x /etc/cron.daily/spamassassin"
to see what command in that file failed. I assume it is the sa-compile command.
Running /etc/cron.daily/spamassassin manually, either with "-x" provided
to the shell or simply by running it, letting the shebang do the job,
>
> All of the other emails that were sent before and after this particular
> email have the X-Spam-Status and X-spam-Report scoring,
>
> So Spamassassin was running correctly.
>
So something went wrong with this one. It should have headers, maybe some
communication problem. I have configured
smime.p7m
Description: S/MIME encrypted message
> I have been getting numerous emails lately from various gmail.com
> accounts. They are spam or phishing emails and today I got one that
> had a subject of RECEIPT 5454 and only a JPG image of an invoice.
> There was no content in the email.
>
>
>
> It bypassed Spamassassin scoring. D
smime.p7m
Description: S/MIME encrypted message
On 2022-02-06 at 09:45:31 UTC-0500 (Sun, 6 Feb 2022 14:45:31 +)
Marc
is rumored to have said:
6.4.3.updates.spamassassin.org. 3600 IN CNAME
3.3.3.updates.spamassassin.org.
3.3.3.updates.spamassassin.org. 3600 IN TXT "1897787"
the "updates.spamassassin.org" it
I am testing with containerizing the spamd and I was wondering what would be a
good solution to configure multiple spamd. What is the general advice on this
here?
1. multiple instances
If I spawn multiple instances of the same container, I would get multiple ip
addresses something like:
[@]
15 matches
Mail list logo
