On Thu, 21 Nov 2024, pgnd wrote:
I'm focused atm on using available rules -- out-of-the-box and KAM.
IF the answer is that the only way to cope with this is WITH Bayes, then
that's a learning too.
Well, I'm not sure out-of-the-box rules will help otherwise they'd already
be helping. :)
You
On Thu, Nov 21, 2024 at 12:42:58PM -0500, pgnd wrote:
> , sneaking past my SA protections. Whether to call it snowshoe, I dunno :-/
> But my usually well fed Bayes isn't getting noticeably better with 'em.
> https://gist.github.com/pgnd/5ab934d921939f4c62a4c978a30b9e6f
Are you even runnin
On 2024-11-21 at 11:26:35 UTC-0500 (Thu, 21 Nov 2024 11:26:35 -0500)
AJ Weber
is rumored to have said:
Thanks Bill,
I just went back to check and IDK when it started, but I have a perl
issue:
spamassassin --lint
Subroutine File::Spec::Unix::canonpath redefined at
/usr/share/perl5/XSLoader.
On 2024-11-21 at 10:45:58 UTC-0500 (Thu, 21 Nov 2024 10:45:58 -0500)
AJ Weber
is rumored to have said:
> Thanks Kevin,
>
> Have trusted KAM rules for a long time. I assume they're still now in the
> main rules updates?
The KAM rules are an independent rules channel that you must explicitly se
On 11/21/24 18:42, pgnd wrote:
Starting about 2 weeks ago, I've been playing whack-a-mole with waves of
'your mail box is full' phish, e.g.
"Subject: The storage on your Webmail account is about full. You've
used up all of the storage."
, sneaking past my SA protections. Whether to cal
Hi AJ, thanks for the kind words. The KAM ruleset is NOT included with
the main rules update. See https://mcgrail.com/template/kam.cf_channel
As for why, the rulset doesn't go through the same ASF voting process or
the Apache SpamAssassin QA process. This is because it been difficult
to fig
AJ Weber skrev den 2024-11-21 13:57:
I saw a "conversation" a few weeks ago regarding paypal phishing emails
that were not being caught.
I can't recall if anyone found a reasonable solution (or new rules).
I just received one and it seems very well crafted. Is anyone still
collecting samples
I coincidentally have a legit PP email/notification from just a day
ago. Some things to note:
LEGIT:
X-Spam-DCC:www.nova53.net: app3 1207; Body=1 Fuz1=1 Fuz2=1
From:"serv...@paypal.com"
To: AW
Subject: You authorized a payment to
((To is actually my email address))
FAKES:
X-Spam-DCC:www.n
These look useful, and I'll likely put them on my server, but the one I
just received is an "Invoice Request". It doesn't have the traditional,
"we've detected unusual activity" kind of language.
I started scanning through the plain text (not wanting to trigger any of
the http links) and the
Thanks Bill,
I just went back to check and IDK when it started, but I have a perl issue:
spamassassin --lint
Subroutine File::Spec::Unix::canonpath redefined at
/usr/share/perl5/XSLoader.pm line 111.
Subroutine File::Spec::Unix::catdir redefined at
/usr/share/perl5/XSLoader.pm line 111.
Subrou
Thanks Kevin,
Have trusted KAM rules for a long time. I assume they're still now in
the main rules updates? I'll double-check my logs to make sure I'm
fetching the latest.
-AJ
On 11/21/2024 8:11 AM, Kevin A. McGrail wrote:
I can't provide a recap but I can tell you that the KAM Ruleset ha
On 11/21/2024 7:57 AM, AJ Weber wrote:
I saw a "conversation" a few weeks ago regarding paypal phishing
emails that were not being caught.
I can't recall if anyone found a reasonable solution (or new rules).
BOLO for my email.
That is the complete PayPal stanza from Jared Rulez PHISH rules
On 20 Nov 2024, Andy Smith uttered the following:
> Hi,
>
> On Wed, Nov 20, 2024 at 05:07:09PM +, Nix wrote:
>> > From
>> > https://knowledge.validity.com/s/articles/Accessing-Validity-reputation-data-through-DNS
>> > :
>>
>> Tried registering here. I can register a v4 address, but every fo
I can't provide a recap but I can tell you that the KAM Ruleset has been
consistently looking at these, blocking phone numbers, looking at their
techniques, adding rules, etc. It's very frustrating though because
they seem to be abusing PayPal's systems to send them.
The key pattern that I've
Nick Howitt writes:
>> ... the account is free and then they hit you with an EULA that says
>>
>>> The Services are available at the then-current rate. Customer shall
>>> pay all applicable fees when due as invoiced and, if fees are being
>>> paid via credit card or other electronic means, Custo
I saw a "conversation" a few weeks ago regarding paypal phishing emails
that were not being caught.
I can't recall if anyone found a reasonable solution (or new rules).
I just received one and it seems very well crafted. Is anyone still
collecting samples and wants this one too?
Thanks for
16 matches
Mail list logo
