Greg Troxel skrev den 2025-07-30 23:40:
"Alan via users" writes:
I got a FP on this rule, which isn't really that bad, save for the
default score of 5.75. That's enough to get a spam classification on
it's own.
I've adjusted the score locally but the default seems a tad heavy. I'm
giving it a
giova...@paclan.it skrev den 2025-07-03 17:26:
maybe it could be possible to add a cache layer to extracttext plugin,
could you open an enhancement request on
https://bz.apache.org/SpamAssassin/ please ?
+1
would the cache just use message-id as the value of key where value is
zbarimg resul
Alex skrev den 2025-07-02 15:45:
Also, it's very slow because it has to spawn the binary with every
request. Is there a way to load it into memory or use a library
version to avoid having to do this every time? Sometimes salespeople
send emails to 50+ people at a time with a legitimate PDF, but
Lichtinger, Bernhard skrev den 2025-06-24 13:38:
Some regular mails of our users contain a lot of " "
and every hit adds some spam points to the mail because of
tflags _SCC_HTML_ODDDIV8 multiple publish
As a workaround I set my own tflags with maxhits=20 for this check, but
per
Network 37.202.0.0/21 (AS15817 MITTWALD-AS Mittwald CM Service GmbH und
Co. KG, DE)
Whois
Domain: forward5.de
Status: connect
add to spamassassin
https://phishtank.com/phish_detail.php?phish_id=9135395&frame=details
is there plan to make realease of 4.0.2 soon ?
Matus UHLAR - fantomas skrev den 2025-06-11 13:13:
On 11.06.25 09:47, Vincent Lefevre wrote:
Well, it appears that the scores of the _BLOCKED strings are set
in the file
/var/lib/spamassassin/4.01/updates_spamassassin_org/72_scores.cf
by
score RCVD_IN_VALIDITY_CERTIFIED_BLOCKED0.001 0.0
Matija Nalis skrev den 2025-05-07 17:21:
On Wed, May 07, 2025 at 04:44:18PM +0200, Benny Pedersen via users
wrote:
Yes, score=5.513 tagged_above=-999 required=5 tests=[DKIM_SIGNED=0.1,
DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1,
FILL_THIS_FORM_SHORT=1, HTML_FONT_LOW_CONTRAST=0.001
Yes, score=5.513 tagged_above=-999 required=5 tests=[DKIM_SIGNED=0.1,
DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1,
FILL_THIS_FORM_SHORT=1, HTML_FONT_LOW_CONTRAST=0.001,
HTML_MESSAGE=0.001, HTTPS_HTTP_MISMATCH=0.1,
KAM_BODY_MARKETINGBL_PCCC=0.001, KAM_MARKETINGBL_PCCC=0.5,
RELAYCOUN
Benny Pedersen via users skrev den 2025-05-02 16:08:
Michael Grant via users skrev den 2025-05-02 13:41:
From "Bill Cole"
Did you do that in the "global" config at
/etc/mail/spamassassin/local.cf (or something like it with 'etc'
somewhere) or in root's
Michael Grant via users skrev den 2025-05-02 13:41:
From "Bill Cole"
Did you do that in the "global" config at
/etc/mail/spamassassin/local.cf (or something like it with 'etc'
somewhere) or in root's user config in
/root/.spamassassin/{userprefs,local.cf,whatever} ? If it was the
latter, yo
Andrew C Aitchison skrev den 2025-04-17 22:40:
I'll just repeat the words that Bill Cole sent last week
( https://marc.info/?l=spamassassin-users&m=174413206312855&w=2 ):
Please note that "Reindl Harald " has a bad
habit
of writing pointlessly confrontational, intentionally rude, and very
oft
Mark London skrev den 2025-03-11 05:51:
Hi - I'm really getting tired of these fake warnings. See below. This
one luckily hit spamcop. Otherwise, it would have been delivered.
so close your email address so it never will be recived :=)
As an aside, see the last line of the email. I am not
Noel Butler skrev den 2025-02-21 10:54:
and I'm sure thats exactly what he doesn't want, whitelisting one of
the biggest spammers, yeah, that makes sense not...
off your drugs again Noel? you dont get to tell ANYONE how they can post
in here.
sadly i need to have auto-reader on your ema
Alex skrev den 2025-02-20 20:26:
Hi,
What should the policy be on blocking Google IPs?
* 2.3 RCVD_IN_PSBL RBL: Received via a relay in PSBL
* [209.85.208.194 listed in psbl.surriel.com [1]]
* 2.2 RCVD_IN_SENDERSCORE_30_49 RBL: Senderscore.org score of 30 to
49
* [209.85.208.194 l
wissen.online | Stefan Mehlhorn skrev den 2025-02-13 18:22:
Dear SpamAssassin Support Team,
https://matrix.spfbl.net/212.83.50.80
non-compliance domain.
i never will pay $2 for resolving this, same reason i dont use it in
spamassassin anymore
sorry that i did miss that you had spf pass fr
Benny Pedersen skrev den 2025-02-14 00:05:
Bill Cole skrev den 2025-02-13 21:29:
On 2025-02-13 at 11:13:43 UTC-0500 (Thu, 13 Feb 2025 17:13:43 +0100)
natan
Feb 13 17:02:06 amavis5 amavis[9316]: (09316-01) _WARN: check:
dns_block_rule RCVD_IN_VALIDITY_RPBL_BLOCKED hit, creating
/var/amavis
Bill Cole skrev den 2025-02-13 21:29:
On 2025-02-13 at 11:13:43 UTC-0500 (Thu, 13 Feb 2025 17:13:43 +0100)
natan
is rumored to have said:
Hi
Sorry but University debate
The machines were 1:1 clones
For testing, I also updated debian11 -> debian12 to rule out other
issues and the effect wa
be that they
are using public resolver or our volume is high enough to trigger
blocks. We could open a ticket and give them some guidance.
every thing is here also that blocked rules does not hit :)
LMK if I understand things correctly, KAM
+1
On 2/13/2025 1:33 PM, Benny Pedersen wrote
X-Virus-Scanned: Debian amavisd-new at spamproc1-he-fi.apache.org
X-Spam-Flag: NO
X-Spam-Score: 3.8
X-Spam-Level: ***
X-Spam-Status: No, score=3.8 tagged_above=-999 required=6.31
tests=[DKIM_ADSP_DISCARD=1.8, PDS_OTHER_BAD_TLD=1.997,
RCVD_IN_DNSWL_BLOCKED=0.001, RCVD_IN_VALIDITY_RPBL_BLOCK
wissen.online | Stefan Mehlhorn skrev den 2025-02-13 19:02:
Hi Benny, Hi Levine,
tnx! Wissen.online it also the name of our company ... so we need
.online
and not wissenonline.de (ist another company)
stop using send emails from pbl listed ips eq dynamic ips
Yes we change it next days doing
John Levine skrev den 2025-02-13 18:49:
I'm guessing that wissen.online is the same company as wissenonline.de.
That domain
should work fine.
de tld will fail on pbl listed ip aswell imho :=)
oh never mind
wissen.online | Stefan Mehlhorn skrev den 2025-02-13 18:22:
Are there any specific configurations or adjustments we can make to
lower the high spam score of our emails?
https://multirbl.valli.org/lookup/90.186.69.50.html
avoid using online tld
X-Spam-Status No, score=1.375 tagged_above=-999
Matus UHLAR - fantomas skrev den 2025-02-13 17:26:
On 13.02.25 11:28, Marc wrote:
I was wondering if it could be interesting for spamassassin to get
also into the business of scanning for personal/sensitive data. Maybe
as a separate project?
I have the impression there is growing demand for
natan skrev den 2025-02-13 15:01:
Hi
Thenx for help but this url is not very clear
I have own resolver
ii pdns-recursor 4.1.11-1+deb10u2 amd64 PowerDNS Recursor
ii rbldnsd 1.0~20210120-2 amd64 small nameserver daemon
designed for DNSBLs
dig test.uribl.com.multi.uribl.
natan skrev den 2025-02-13 12:03:
Spamasaasin4.x gets less traffic than others.
and now please show the real problem, not workarounds
Alex skrev den 2024-12-11 23:40:
Hi all,
Does anyone know where I can find an updated MySQL schema for v4?
https://cwiki.apache.org/confluence/display/spamassassin/UsingSQL
https://svn.apache.org/repos/asf/spamassassin/tags/spamassassin_current_release_4.0.x/sql/
This is for v3. I'd like
AJ Weber skrev den 2024-11-21 13:57:
I saw a "conversation" a few weeks ago regarding paypal phishing emails
that were not being caught.
I can't recall if anyone found a reasonable solution (or new rules).
I just received one and it seems very well crafted. Is anyone still
collecting samples
Noel Butler skrev den 2024-11-10 23:01:
On 11/11/2024 06:13, John Hardin wrote:
On Sun, 10 Nov 2024, Noel Butler wrote:
On 09/11/2024 08:48, MX wrote:
I would just score anything DNSWL at 0. I mean no disrespect to the
maintainer of DNSWL but I just don't find it useful these days.
Spam is
to
Benny Pedersen skrev den 2024-11-07 22:13:
Neither Microsoft or Paypal will do anything unless you advise them of
this - doubt PayPal even knows.
if the above perl module is fixed for this issue i belive thay will
know more
https://dmarcian.com/dmarc-inspector/?domain=paypal.com
relaxed
Jared Hall via users skrev den 2024-11-07 21:15:
1) Paypal's SPF is a little borked. Here's there first included SPF:
v=spf1 ip4:173.0.84.224/27 ip4:66.211.170.85/30 ip4:66.211.170.88/29
ip4:173.224.165.0/26 ip4:173.0.94.244/30 ip4:173.224.161.128/25
ip4:173.0.84.0/29 -all
its still not s
MX skrev den 2024-11-07 05:44:
Isn’t this just a forwarded email from Office 365 using SRS? It
SRS does not solve rfc in dkim, h= tag misssing minimal required headers
https://github.com/fastmail/mail-dkim/issues/35
https://github.com/fastmail/mail-dkim/issues/35
Bill Cole skrev den 2024-11-07 14:47:
I'm quite sure we don't want the SA project committed to running any
sort of blocklist which requires active close attention. We can't do
that competently.
how to solve dkim reuse headers then ?, i bet paypal do all thay can to
remove that public key in d
Matus UHLAR - fantomas skrev den 2024-11-07 19:51:
missing DKIM_VALID_EF, so not dmarc aligned strict
DMARC does not require this.
correct for dmarc non strict yes, correct, it does if dkim domain is
dmarc strict
Even mail from this mailing list does not have DKIM_VALID_EF.
Because this
Michael Peddemors skrev den 2024-11-07 18:03:
For the record, just because it actually comes from the Paypal
infrastructure, doesn't mean it is good. Last couple of weeks they
have been struggling with scammers using actual Paypal accounts. Fake
orders, and using scammers telephone numbers to
Alex skrev den 2024-11-07 14:55:
Can I use spamassassin -D on an email I've already received to confirm
DKIM signature?
sure "spamassassin -D -t email 2>&1 | less" :)
but its sadly dkim valid with non compliant h= tags, i consider this
should be reported as a bug
missing DKIM_VALID_EF, so
Alex skrev den 2024-11-07 03:02:
welcomelist_auth *@paypal.com [2]
blocklist_from *@paypal.com [2]
the dkim is imho 100% invalid, there missing important headers dkim
signed, eg message-id, doh, reuse forgin is very simple then
for spamassassin we could add selector blacklistning to solve t
revsuine skrev den 2024-11-04 04:57:
Trying to use SpamAssassin with Postfix using spamd:
https://cwiki.apache.org/confluence/display/SPAMASSASSIN/IntegratedSpamdInPostfix
drop this
and ask a maintainer for import spampd from here
https://github.com/mpaperno/spampd
its a simple proxy smtp
Marc skrev den 2024-10-11 09:24:
We can just block hostnames that resolve to compute-1.amazonaws.com
not? Amazon has own smtp range, or am I wrong?
urls have nothing to do with sending ips
redirector punktuminfo.psee.io
phishing domain droppinglikead.wpenginepowered.com
https://phishtank.com/phish_detail.php?phish_id=8803182
https://phishtank.com/phish_detail.php?phish_id=8803181
i can send sample to pmc members on request
Xavier Humbert skrev den 2024-09-27 13:20:
To: r...@groumpf.org
From: root
I don't understand while it is not whitelisted.
is internal_networks + trusted_networks set in local.cf ?
perldoc Mail::SpamAssassin::Conf
if its local mail root@ root@ you should see ALL_TRUSTED hits
avoid whiteli
Jared Hall via users skrev den 2024-09-18 20:08:
On Deb-based distros, you can add this in /etc/amavis/conf.d/50-user
under the $max_servers parameter.
also remember its safe to use tmpfs for tmp dir in amavisd
no joke
natan skrev den 2024-09-18 16:36:
W dniu 18.09.2024 o 16:30, Reindl Harald (privat) pisze:
who reply here ? :)
don't blame SA when a blind man can see that your problem is on the
Amavis side - why do one need Amavis tu begin with when there is SA
and spamass-milter
yes yes everyone know
Jared Hall via users skrev den 2024-09-17 08:15:
On 9/16/2024 8:48 PM, Alex wrote:
Hi,
Now that I'm using SA4, and my bayes database is quite old, I'd like
to retrain it with new ham and spam. I hoped someone had some pointers
on some of the gray area and what you consider to be spam and ham.
Grega via users skrev den 2024-09-13 16:16:
Sorry guys if I replied to all, my intentions were not to spam :)
top posters :)
imho not impossible to request 3dr party list archives to make a
password for users, never mind
eggs came before chickens :=)
Bill Cole skrev den 2024-09-13 15:03:
Please send any replies to the list only.
unsubscribe listarchivers ?
and make archived on apache.org with bugzilla login
don't know if it will help or not, but chicken and egg
it turns off _URIDOMAINS_ so its always empty results, i have thinked it
could expose all urls just did not do any dns resolving on any dnsbl or
rbl, was it not the propose ?
is code change possible so in --local it still shows domains content ?
https://multirbl.valli.org/lookup/dynamicmediaudvikler.wixstudio.io.html
in this case it should only check subdomain, add tflags notrim solves it
imho
or ?
tomoe skrev den 2024-08-07 10:17:
I would like to install SpamAssassin on a newly built mail server.
Does SpamAssassin work on Ubuntu 24.04LTS ?
how do you install postfix ? :)
spamassassin can be installed same way
I look forward to Answer from you.
sorry i just use gentoo, and freebsd,
Bill Cole skrev den 2024-07-16 19:00:
asking to be sure
That is NOT a SpamAssassin message, as SA does nothing so silly. It is
clearly and strictly an Amavis issue.
i know :)
Alex skrev den 2024-07-16 15:00:
Hi all,
Does anyone have any further ideas on how to block "approved for
funding" spam?
https://pastebin.com/2rKiAEpt
This one is another namecheap domain registered from Reykjavik. I can
create body rules, but the language is very much in line with
legitimate l
Thomas Barth via users skrev den 2024-07-16 17:28:
X-Quarantine-ID:
X-Amavis-Alert: BANNED, message contains x.com
Are there any further explanations for the banning of x.com?
ask on amavis maillist
are spamassassin using extractext ?
asking to be sure
Peter skrev den 2024-07-12 05:25:
I have been getting spam from outlook.com (surprise) and a defining
feature
is that the same emnail address is used as the To: and CC: address.
Is there a way for Spamassassin to detect that?
i have a plugin, but not one i need anymore :)
lets see if thay d
Simon Wilson via users skrev den 2024-07-03 07:48:
whitelist_auth supp...@wasabi.com
whitelist_auth *@mmemail.wasabi.com
its more simple to set From: "Simon" in mua
then both spf and dkim gives pass on same domain, note -d in dkim is not
same domain, so you need a new dkim sign key for subd
Simon Wilson via users skrev den 2024-07-03 15:54:
header AUTHRES_DKIM_PASS eval:check_authres_result('dkim', 'pass')
header USER_IN_DKIM_WHITELIST eval:check_for_dkim_whitelist_from()
keep scores of them neutral
meta MY_DKIM_FAILS_NOTRUST (AUTHRES_DKIM_PASS && USER_IN_DKIM_WHITELIST)
descr
Bill Cole skrev den 2024-07-03 17:11:
Not Currently Available For Hire
lol :)
back to sandbox, hehe
Matus UHLAR - fantomas skrev den 2024-07-03 16:14:
On 03.07.24 23:54, Simon Wilson via users wrote:
Simon Wilson via users skrev den 2024-07-03 14:56:
Do I also need to disable the normal SA DKIM plugin evaluation, i.e.
trusting my upstream authres_trusted_authserv only?
both works in paralel
Simon Wilson via users skrev den 2024-07-03 14:56:
Do I also need to disable the normal SA DKIM plugin evaluation, i.e.
trusting my upstream authres_trusted_authserv only?
both works in paralel, so no need to disable, best results came from
both enabled
its up to you to add more authres_tru
Simon Wilson via users skrev den 2024-07-03 14:13:
I don't think SA 3.4.6 on RH8 has AuthRes plugin:
take it from spamassassin trunc, this plugin works on 3.4.6 aswell, but
was not released or tested on it, i have verify it does work
#!/bin/sh
svn checkout http://svn.apache.org/repos/asf/s
Simon Wilson via users skrev den 2024-07-03 09:48:
So I guess the question is why SA is not accepting a trusted header
with a DKIM pass recorded with the same mail path through the system?
I have no AuthRes settings set specifically in local.cf.
so add it :)
ifplugin Mail::SpamAssassin::Plugi
Dave Funk skrev den 2024-07-03 09:29:
On Wed, 3 Jul 2024, Simon Wilson via users wrote:
You say "passing SPF and DKIM" however in the SA rules report it
clearly says:
DKIM_SIGNED=0.1, DKIM_INVALID=0.1
So eventho you think 'passed DKIM' SA clearly does NOT think it does.
That DKIM_INVALID w
Paul Schmehl skrev den 2024-06-21 01:17:
bayes_path /usr/local/etc/mail/spamassassin/bayes/bayes
this need spamd running as root :/
bayes_path ~/.spamassassin/bayes
path is not a file, just a dir
expanded without ~ is in gentoo /var/lib/spamd
this support any system users, spamd homedir in
Paul Schmehl skrev den 2024-06-22 07:44:
It’s not clear to me from your answer. Does SA read rules in both
places?
it eveal first sa-update rules, then later host rules
Or only in /etc/mail/spamassassin/?
this is host rules, you define all global configs here, and it will
never be overrid
Anders Gustafsson skrev den 2024-06-16 13:42:
This one:
Return-path:
X-Spam-Checker-Version: SpamAssassin 3.4.5 (2021-03-20) on xx
X-Spam-Level:
X-Spam-Status: No, score=-95.6 required=5.0
tests=BAYES_00,HTML_MESSAGE,
MIME_HTML_ONLY,RCVD_IN_MSPIKE_BL,RCVD_IN_MSPIKE_L5,RDNS_NONE,
Bill Cole skrev den 2024-06-08 20:45:
I've chosen #3 for myself, but it's not great.
is why cpanel provided a perl pyzor client ?
ifplugin Mail::SpamAssassin::Plugin::Pyzor
use_pyzor 1
pyzor_count_min 1
pyzor_welcomelist_min 1
pyzor_welcomelist_factor 0.2
pyzor_fork 0
Marc skrev den 2024-05-28 14:15:
I am having a large (20%) of messages fail dkim. If I do some random
checks, it looks like most of the failing messages are from the
outlook.com cloud. Does any one else have this? Or is my setup just not
properly checking dkim of outlook.com?
how should i gue
Noel Butler skrev den 2024-05-26 01:53:
Shame on you for not turning on ESP ;)
whois Kevin ? :)
When Benny is off his meds, he's like the newbies who lodge support
tickets saying "mail doesnt work" not I cant get my mail because of
error fooXXX or cant send mail because im an idiot and ca
Antony Stone skrev den 2024-05-25 16:52:
Is this a reply to something?
something ?, try disable askdns plugin, then do spamassassin --lint
succes ?
hopefully kam know why
there should not be lint errors if just check plugin is enabled, where
all other plugins is disabled
+1
Tomohiro Hosaka skrev den 2024-05-25 13:43:
Perhaps SpamAssassin is designed for single-process use?
this is a limit on DB_File only
(If so, this would conflict with the preforked spamd, which does not
seem to have any special locking to prevent this on the spamd side.)
spamd only write in
J Doe skrev den 2024-05-19 23:57:
On 2024-05-17 23:13, Noel Butler wrote:
On 18/05/2024 08:14, J Doe wrote:
Here is an example entry:
10-May-2024 05:34:39.024 lame-servers: info: REFUSED unexpected
RCODE resolving 'rbldns10.sorbs.net/A/IN': 108.59.172.201#53
SORBS has been ultr
i write here so in hope to start a debate on it, is there a code change
any where to handle this ?
Thomas Barth skrev den 2024-05-12 15:56:
Am 2024-05-12 12:39, schrieb Greg Troxel:
I would suggest that if Debian is modifying the default config from 5
to
6.31, then probably they should not be doing that.
This is a status of dmarc-report from microsoft today
X-Spam-Status: Yes, score=5.938
oh dear, when do he stop ?
Original besked
Emne: Re: Rule: "1.0 R_DCD 90% of .com. is spam"
Dato: 2024-05-10 20:17
Afsender: "Reindl Harald (gmail)"
Modtager: Benny Pedersen
Am 10.05.24 um 20:14 schrieb Benny Pedersen:
Matus UHLAR - fantomas skrev den 2
Matus UHLAR - fantomas skrev den 2024-05-10 18:46:
On 10.05.24 15:36, Rupert Gallagher wrote:
The ikea mail was received through ...
mta-numbers.ikea.com.sparkpostmail.com and is a request for feedback.
The SA rule says ...
header R_DCD Received =~ /\.com\./
I still do not know where the rul
Bill Cole skrev den 2024-05-09 14:22:
In fact, I can't think of any whitelist test that should pass if SPF
fails.
If you operate on the theory that a SPF failure is always a sign of
spam, you can make your SpamAssassin always trust SPF failures
absolutely. I would not recommend that. Some pe
Alex skrev den 2024-05-09 01:18:
What can be done to be able to process a quarantined email again so I
can make adjustments to prevent it from being quarantined?
is not an spamassassin issue, ask glue maillists
kurt.va1der.ca via users skrev den 2024-05-08 21:53:
I received a (relatively) well crafted Phishing email today. It was
clearly a well planned campaign. The Spamassassin score was as
follows:
X-Spam-Status: No, score=-0.4 required=5.0
tests=GOOG_REDIR_NORDNS=0.001,
HTML_FONT_LOW_CONTRAST=
Bill Cole skrev den 2024-04-24 19:37:
On 2024-04-24 at 12:27:01 UTC-0400 (Wed, 24 Apr 2024 18:27:01 +0200)
Benny Pedersen
is rumored to have said:
For example, it matches on
* 3.1 URI_IMG_CWINDOWSNET Non-MSFT image hosted by Microsoft Azure
infra, possible phishing
this is not in
Matus UHLAR - fantomas skrev den 2024-04-24 18:58:
On 24.04.24 18:50, Benny Pedersen wrote:
unsure so i ask :)
try to explain your question a bit more
perldoc Mail::SpamAssassin::Plugin::AuthRes
EVAL FUNCTIONS
header RULENAME eval:check_authres_result(method, result)
Can be
unsure so i ask :)
Alex skrev den 2024-04-24 15:45:
Hi,
I'm using SA 4.0.1 and amavisd with postfix. I've identified a few
bounce messages in the quarantine because they weren't identified
properly. Here's one:
https://pastebin.com/RMNkcyhF
Content preview: Delivery has failed to these recipients or groups:
CURT
Pierluigi Frullani skrev den 2024-04-18 20:23:
It was simscan, that is compiled with enable-drop.
with is fine
The problem was a bad expression in blacklist_from section in local.cf
[1]
this is spam, not virus
Sorry for the noise.
if you like to reject all / drop all, why not pants ? :)
Pierluigi Frullani skrev den 2024-04-18 19:52:
So could it be simscan ?
super you wake up :)
configure it to pass spam, and reject virus
simscan is very old, btw
Pierluigi Frullani skrev den 2024-04-18 19:44:
I'm really fighting with spamassasin as one ( legit ) mail get spam
dropped with a 99.90 value, also if I have put, in local.cf [1] a
required hit of 100.
why is 100 required score ?
spamassassin does only tag, it does not drop
The mail is sen
Michael Grant via users skrev den 2024-04-15 12:55:
Do any of you use spamassassin with a gmail account, and if so, how
are people doing it? The reason to do this is gmail's spam filtering
isn't perfect and you don't have the control you have with
spamassassin.
...
https://isbg.gitlab.io/isbg
Bill Cole skrev den 2024-04-13 19:42:
score USER_IN_DEF_DKIM_WL -2
score USER_IN_DEF_SPF_WL -2
By default those each score -7.5 so a doubly-confirmed message gets the
same insane -15 as a legacy listing (def_whitelist_from_rcvd) that
doesn't require authentication. No such listings still exis
Darrell Budic skrev den 2024-04-10 19:48:
Anything I’m missing?
using amavisd ?
then try this in amavisd.conf:
@spam_scanners = (
# ['SpamAssassin', 'Amavis::SpamControl::SpamAssassin'],
['SpamdClient', 'Amavis::SpamControl::SpamdClient']
);
1; # insure a defined return value
if
no rules set in default sa-update
its unclear from perldoc Mail::SpamAssassin::Plugin::FromNameSpoof how
to make a local config to use it
could it be added one example config ?
i like to catch when ReplyTo is same as From:addr users should stop add
ReplyTo when not needed
natan skrev den 2024-04-08 12:31:
Apr 6 01:15:09 amavis3 amavis[3887068]: (3887068-17) Passed
BAD-HEADER-7 {RelayedInbound}, [34.23.17.0]:38582 [34.23.17.0] <>
-> , Queue-ID: 4VBDq04Bn7z1Q9qQ, mail_id:
6LRhEwtUmP7u, Hits: -, size: 10888, queued_as: 4VBDq06n69z1Q9q1,
358 ms
I check and I not f
natan skrev den 2024-04-03 11:06:
I must chane or disable permanently spamhaus.net and all everything he
uses.
+1
They calculated the rate so much that I couldn't afford to use their
toys
+1
Does anyone have an interesting solution to this problem?
Or maybe some other lists connected?
Philip Prindeville via users skrev den 2024-03-28 18:55:
My config also has:
trusted_networks 192.168.6.0/24
trusted_networks 192.168.8.0/24
trusted_networks 127.0.0.1/32
So I don't think that's the problem.
rfc 1918 is imho hardcoded into spamassassin
if its this, make a bugzilla about it,
natan skrev den 2024-03-15 09:30:
Yes but this disable all URIBL_* where I use *.spamhouse.net
i never asked you to add *
now you know your own mistake, good weekend
natan skrev den 2024-03-14 16:04:
in 00_init_dns.cf:
# dns_query_restriction (allow|deny) domain1 domain2 .
dns_query_restriction allow dq.spamhaus.net
dns_query_restriction deny zen.spamhaus.net
...
In: /var/lib/spamassassin/3.004006/updates_spamassassin_org/
do not edit or add any new fil
natan skrev den 2024-03-14 12:20:
I have disable only spamahause rules
URIBL_SBL URIBL_CSS URIBL_SBL_A URIBL_CSS_A URIBL_ZEN_BLOCKED_OPENDNS
URIBL_ZEN_BLOCKED URIBL_DBL_SPAM URIBL_DBL_PHISH
URIBL_DBL_MALWARE URIBL_DBL_BOTNETCC URIBL_DBL_ABUSE_SPAM
URIBL_DBL_ABUSE_REDIR URIBL_DBL_ABUSE_PHISH
URI
Jared Hall via users skrev den 2024-03-12 20:37:
Is there a use case for emailing .shtml files, or can these just be
simply discarded?
i have seen .html attachment
only reason i think its tryed was to skip url testing in spamassassin
might be same for shtml
i still have the clamav rule to re
Byung-Hee HWANG skrev den 2024-01-19 11:12:
I rely on DNSWL for the reputable MX.
if repution is 100% needed we all have to make local rescore on all
local mails, since repution is to be local, not external just
i consider dnswl level 0 to be possitive scored, and let the other
levels be n
Marc skrev den 2024-01-19 09:34:
Hi Byung and Benny, are you having a nice MX party? :)
not needed yet, hehe
Byung-Hee HWANG skrev den 2024-01-19 06:16:
Actually i used Google MX for 10 years. Recently, i created dedicated
MXs and am continuing to operate them. Plus, the dedicated MXs run on
Google Cloud and RimuHosting.
it was to vierd for me to figure out how to get it working, and posible
in the
Mike Bostock via users skrev den 2024-01-14 23:22:
I currently have users set up with spamc called in .procmailrc
virtual users is hard to support then
However, I have quite a few aliases/redirects in sendmail virtusertable
who are not being protected by Spamassassin.
good, move all system
1 - 100 of 1028 matches
Mail list logo
