N field set by
> the MTA generating the DSN."
So it might perhaps be worthwhile to extract that field and test it against
some RBLs?
--
Magnus Holmgrenholmg...@lysator.liu.se
(No Cc of list mail needed, thanks)
signature.asc
Description: This is a digitally signed message part.
ed to let a separate MSA, separate from the main MTA
and included in trusted_networks but not in internal_networks, receive the
users' mail, or arrange for a fake Received line, simulating this, to be
inserted.
--
Magnus Holmgrenholmg...@lysator.liu.se
(No Cc of list mai
odings and character sets, and mixed with ordinary
7-bit text. See RFC 2047.
--
Magnus Holmgrenholmg...@lysator.liu.se
(No Cc of list mail needed, thanks)
signature.asc
Description: This is a digitally signed message part.
sing the score for BAYES_50 is basically equivalent to lowering the
threshold, which is usually not recommended.
--
Magnus Holmgrenholmg...@lysator.liu.se
(No Cc of list mail needed, thanks)
"Exim is better at being younger, whereas sendmail is better for
all about
combining and adding many various rules.
--
Magnus Holmgren[EMAIL PROTECTED]
(No Cc of list mail needed, thanks)
signature.asc
Description: This is a digitally signed message part.
ss of the last external server that handled the mail,
and the server you want to check in the case of list mail is not the list
server but the server that delivered the mail to the list server.
--
Magnus Holmgren[EMAIL PROTECTED]
(No Cc of list mail needed, thank
), expire messages older than a certain age, and refuse to learn older
messages, unless explicitly overridden (for example when populating a clean
bayes DB with an initial corpus).
--
Magnus Holmgren[EMAIL PROTECTED]
(No Cc of list mail needed, thanks)
pgp6jhYlXZsPa.pgp
Description: PGP signature
be accurate (i.e. not forged), **not** that those hosts are
> not originating spam!
No, Jari is correct. He also wrote "And mostly, they will not tamper with
email headers, that's what the trust is about.", but you left that out. And
hosts in trusted_networks *are* (mildly)
emanding that the envelope sender address be
unmodified without adjusting the local policy is not going to work. It's the
same thing as demanding that the envelope sender always be trusted by
everybody, but we know that it can't be.
--
Magnus Holmgren[EMAIL PROTECTED]
On Monday 27 August 2007 21:54, Marc Perkel wrote:
> Magnus Holmgren wrote:
> > SPF does not in itself break email forwarding. SPF tells MTAs where mail
> > with certain senders may originate from. It's their job to know if the
> > recipient forwards mail from the connect
ul.
SPF does not in itself break email forwarding. SPF tells MTAs where mail with
certain senders may originate from. It's their job to know if the recipient
forwards mail from the connecting host. It can be tricky, but it's not
impossible in principle. Applying SPF without thinking
0.0/2 +a:128.0.0.0/2 +a:192.0.0.0/2", so
it's possible to check for that. Another approach is to add a few points for
newly-registered domains, so called "day-old bread".
--
Magnus Holmgren[EMAIL PROTECTED]
(No Cc of list mail needed,
former) and gets really pissed if you then turn into a spamming monster.
> It seems to work.
What did you have to do to prove you're competent?
--
Magnus Holmgren[EMAIL PROTECTED]
(No Cc of list mail needed, thanks)
"Exim is better at being younger,
On Monday 13 August 2007 07:12, Nigel Frankcom wrote:
> [20:35] man, who ever wrote this ExchangeSpamC NEVER use
> option explicit, therefore almost all of his vars (that he didn't
> copy/paste from) weren't dimensioned
Sounds like Visual Basic... ;-P
--
Magnus Holmgren
score_int}{100}{1}{0}}}{0}}
>
> log_message = "The mail server detected your message as spam and has
> prevented delivery (100)."
> message = "The mail server detected your message as spam and has
> prevented delivery."
>
> :super:
--
Magnus Hol
9')
body BAYES_999 eval:check_bayes('0.999', '1.00')
describe BAYES_99 Bayesian spam probability is 99 to 99.9%
describe BAYES_999 Bayesian spam probability is 99.9 to 100%
score BAYES_99 6.5
score BAYES_999 8
(with spam threshold at 5.0 and reject threshold
t
unsigned or badly signed mail purporting to come from you.
--
Magnus Holmgren[EMAIL PROTECTED]
(No Cc of list mail needed, thanks)
"Exim is better at being younger, whereas sendmail is better for
Scrabble (50 point bonus for clearing your rack)" -- Dave Evans
pgpYxXKPtfBzM.pgp
Description: PGP signature
re is talk of a mod to
> Exim to do same thing for high scoring spam. Sounds interesting.
"Talk of a mod"? It's been a standard feature for ages now. For even
longer with SA-Exim.
--
Magnus Holmgren
own
version of the configuration file.
You're invited to join the SA-Exim mailing list, [EMAIL PROTECTED]
See http://lists.merlins.org/lists/listinfo/sa-exim
--
Magnus Holmgren[EMAIL PROTECTED]
(Debian sa-exim(No Cc of list mail needed, thanks)
maintainer)
pgpqqA0L2hFvq.pgp
Description: PGP signature
change the configuration of Exim or procmail or whatever you use.
--
Magnus Holmgren[EMAIL PROTECTED]
(No Cc of list mail needed, thanks)
pgpXTek3H9crw.pgp
Description: PGP signature
h is more powerful than
apt-get and has a UI.
--
Magnus Holmgren[EMAIL PROTECTED]
(No Cc of list mail needed, thanks)
pgpYyMA6LukKC.pgp
Description: PGP signature
gt; - DEBIAN 3.1
Yes, various ways depending on exactly how you've set up your system. Please
ask on [EMAIL PROTECTED] and provide more details on
your configuration.
--
Magnus Holmgren[EMAIL PROTECTED]
(No Cc of list mail needed, thanks)
"Exim is better at
> >
> >Downloads are available from:
> > http://spamassassin.apache.org/downloads.cgi?update=200705021400
>
> Any projection when SA-3.2 will be in the FBSD ports? Sent email to
> [EMAIL PROTECTED], but bounced back.
I'm wondering when there will be a new Debian vers
ll
spamd from it?
Perhaps you know all that and are merely looking for this specific option:
allow_user_rules. It has to be set to 1 to allow user rules. That's strongly
discouraged though.
--
Magnus Holmgren[EMAIL PROTECTED]
(No Cc of list mail
English-speaking locales.
--
Magnus Holmgren[EMAIL PROTECTED]
(No Cc of list mail needed, thanks)
"Exim is better at being younger, whereas sendmail is better for
Scrabble (50 point bonus for clearing your rack)" -- Dave Evans
pgpMSCVvY59oA.pgp
Description: PGP signature
is correct or not, only what indicates spam. Apparently there
hasn't been enough ham matching it in the corpora fed to the mass-checks.
--
Magnus Holmgren[EMAIL PROTECTED]
(No Cc of list mail needed, thanks)
pgpdRwUcGfcqR.pgp
Description: PGP signature
!
I agree that a dedicated configuration, in particular a separate bayes DB, is
recommended. It shouldn't have to be a completely separate _installation_
though.
--
Magnus Holmgren[EMAIL PROTECTED]
(No Cc of list mail needed, thanks)
pgp2HjDr92zQU.pgp
Description: PGP signature
that rule, byt
please try a test spam *with* a header.
| describe MISSING_HB_SEP Missing blank line between message header and body
--
Magnus Holmgren[EMAIL PROTECTED]
(No Cc of list mail needed, thanks)
pgpwbU755cWGP.pgp
Description: PGP signature
/perl5/vendor_perl/5.8.8/Mail/SpamAssassin/Plugin/DKIM.pm line 60.
>
> [EMAIL PROTECTED] ~]# rpm -q perl-Mail-DomainKeys
> perl-Mail-DomainKeys-1.0
>
> What other package do i need?
perl-Mail-DKIM-something. DKIM != DomainKeys.
--
Magnus Holmgren[EMAIL PROTECTED]
same goes for
awl_whitelist_path if you use it).
Have you read README.spamd?
--
Magnus Holmgren[EMAIL PROTECTED]
(No Cc of list mail needed, thanks)
"Exim is better at being younger, whereas sendmail is better for
Scrabble (50 point bon
to forward
his mail to system B. If B wants to enforce SPF, they have to allow U to tell
them about this forwarding, so that an exception can be made. A relatively
secure and not too user-unfriendly way of doing this could be with special
addresses on this form: user+forwarded-(secret)@domai
fication requests from others). (But I'm not sure about the possibility
of differentiating negative VRFY responses from rejections due to policy.)
--
Magnus Holmgren[EMAIL PROTECTED]
(No Cc of list mail needed, thanks)
pgpEPwDRWBqFq.pgp
Description: PGP signature
ined to you that it won't accomplish anything that can't already be
accomplished.
--
Magnus Holmgren[EMAIL PROTECTED]
(No Cc of list mail needed, thanks)
pgpipCg5SeUTi.pgp
Description: PGP signature
0" and exim doesn't
> complain. Probably a better way to do that.
It's common to put "|| true" at the end of a command you don't care about the
exit status of. Or you could just "exit 0".
--
Magnus Holmgren[EMAIL PROTECTED]
very less (around 20-25%).
> >
> > How can i fine tune to get best results?
> >
> > TIA,
>
> Use rules_du_jour. This will download cf files from rulesemporium
No, use sa-update instead. It can download cf files from rulesemporium as well
as the official rule updates.
On Monday 12 March 2007 14:32, LuKreme wrote:
> On 12-Mar-2007, at 03:26, Magnus Holmgren wrote:
> > Yes; see the Mail::SpamAssassin::Conf(3pm) manpage, section
> > "Template tags".
>
> Thanks, but out of curiosity what did the "(3pm)" mean?
It&#
get _SCORE_ to print with a zero pad of one
> character? This particular account does not auto delete any mail,
> regardless of score (hey, not my idea, m'kay?)
Yes; see the Mail::SpamAssassin::Conf(3pm) manpage, section "Template tags".
--
Magnus Holmgren[EMAIL PROTE
am after training the filters so I don't have any to
> feed to to the new system. Will that be a problem?
Having too great an imbalance in numbers between ham and spam will bias the
bayes classifier towards "everything is spam" or in this case "everythi
ou have whitelisted an address in some sender header. It doesn't
have to be From:, it can be Return-Path: or Envelope-Sender: among others.
--
Magnus Holmgren[EMAIL PROTECTED]
(No Cc of list mail needed, thanks)
"Exim is better at being younger, whereas sen
that I think about it, I'm guessing it's Postfix.
SpamAssassin always processes all mail it gets and at the very least adds an
X-Spam-Checker-Version: line to the mail header, so you're guessing
correctly.
--
Magnus Holmgren[EMAIL PROTECTED]
(No Cc
on't have any
> sort of whitelist setup.
Does any of the correctly moved spam have a lower score than this?
--
Magnus Holmgren[EMAIL PROTECTED]
(No Cc of list mail needed, thanks)
"Exim is better at being younger, whereas sendmail is better for
Scr
3) Compatibility with multiple AV scanners
Check!
> 4) Ease of use
That's what Exim is best at.
> 5) Good logging system
I think so, but I can't guarantee that there is no MTA with better logging
facilities.
--
Magnus Holmgren[EMAIL PROTECTED]
/lib/perl5, /usr/share/perl, and /usr/share/perl5.
> If apt-get will not install it, how do I upgrade it properly?
You have to wait for Etch to be released or add a suitable repository
specification to /etc/apt/sources.list, for example one from backports.org.
--
Magnus Holmgren[EM
rules (which have no effect if sa-update is used), and does
some other minor documentation changes.
--
Magnus Holmgren[EMAIL PROTECTED]
(No Cc of list mail needed, thanks)
"Exim is better at being younger, whereas sendmail is better for
Scrabble (50 poin
't it?
I.e. an MX for a domain is normally a legitimate deliverer of mail from that
domain (if it delivers any outbound mail at all).
Would a whitelist_from_mx option perhaps be worthwile?
--
Magnus Holmgren[EMAIL PROTECTED]
(No Cc of list mail needed, thanks)
&qu
t;
> > Hope that helps.
>
> what are you using to greylist based on blocklists?
Judging from his presence on the Exim-related mailing lists he is probably
using the Exim MTA and its ACL facilities.
--
Magnus Holmgren[EMAIL PROTECTED]
(No Cc of list mail
sted_networks and even internal_networks,
provided that you believe it not to be accessible to spammers. In practise it
acts like an MX that receives mail addressed (indirectly) to you and forwards
it to you. Putting it in internal_networks means that some DNSBL rules will
work better.
--
e directory /var/cache/spampd/bayes
being there.
Would it be a bad idea to change the code such that bayes_path can optionally
name a directory? Either by including a trailing slash or by there actually
being a directory with the name in question. In these cases the files would
simply be
ps it could be that mail was submitted locally (not with SMTP), over IPv6
or that the IP address couldn't be extracted for some other reason.
--
Magnus Holmgren[EMAIL PROTECTED]
(No Cc of list mail needed, thanks)
"Exim is better at being younger, where
re_header to exclude the old headers from bayes classification.
--
Magnus Holmgren[EMAIL PROTECTED]
(No Cc of list mail needed, thanks)
"Exim is better at being younger, whereas sendmail is better for
Scrabble (50 point bonus for clearing your rack)"
several machines" to handle email I think
others have recommended storing bayes data in a database. Perhaps you can
manage with a single database server; otherwise you can use whatever
replication methods offered by the database engine of your choice.
--
Magnus Holmgren[EMAIL PROTEC
MIME_HTML_ONLY,NO_REAL_NAME autolearn=no version=3.1.7
Yes, it correctly identified that the mail only travelled through trusted
hosts. It also didn't query for those hosts (127.0.0.1 - I don't think it
would have anyway, but it doesn't matter). That's about all it means to be
bly nothing. Possibly lower log level.
--
Magnus Holmgren[EMAIL PROTECTED]
(No Cc of list mail needed, thanks)
"Exim is better at being younger, whereas sendmail is better for
Scrabble (50 point bonus for clearing your rack)" -- Dave Evans
pgpGXWuPxOHBe.pgp
Description: PGP signature
d should be limited to an absolute
minimum. Under no circumstance treat root as a normal user among the rest!
--
Magnus Holmgren[EMAIL PROTECTED]
(No Cc of list mail needed, thanks)
"Exim is better at being younger, whereas sendmail is better for
Scrabble
mail header like 20 years ago. That is what is really
broken.
--
Magnus Holmgren[EMAIL PROTECTED]
(No Cc of list mail needed, thanks)
"Exim is better at being younger, whereas sendmail is better for
Scrabble (50 point bonus for clearing your rack
n for using +all (or not using SPF at all).
>
> Using +all means to me: "Look, I - the postmaster - I'm aware of SPF, but
> unfortunately my customers have the need to send their mail through many
> ISPs."
No, you say "?all". That means that users may send mail from
On Tuesday 28 November 2006 00:22, Chris Purves wrote:
> Magnus Holmgren wrote:
> > On Monday 27 November 2006 16:27, Odhiambo Washington wrote:
> > You seem to be running Exim with Exiscan. The add_header options in
> > local.cf are of no consequence - everything is co
ation.
If you want to configure the headers freely from local.cf, use the SA-Exim
add-on.
--
Magnus Holmgren[EMAIL PROTECTED]
(No Cc of list mail needed, thanks)
pgp70FU1iXs9h.pgp
Description: PGP signature
at
> (eval 80) line 1.
> [5522] warn: plugin: failed to create instance of plugin
> Mail::SpamAssassin::Plugin::ImageInfo: Can't locate object method
> "new" via package "Mail::SpamAssassin::Plugin::ImageInfo" at (eval 81)
> line 1.
--
Magnus Holmgren[EMAIL PROTECTED]
(No Cc of list mail needed, thanks)
pgpV4Z9vE6o1l.pgp
Description: PGP signature
u read the logs, to begin with?
--
Magnus Holmgren[EMAIL PROTECTED]
(No Cc of list mail needed, thanks)
pgpPopryspRGE.pgp
Description: PGP signature
On Sunday 26 November 2006 14:27, Giampaolo Tomassoni wrote:
> No answer to this?
>
> Is this the wrong list to ask code details?
You could try [EMAIL PROTECTED]
--
Magnus Holmgren[EMAIL PROTECTED]
(No Cc of list mail needed, thanks)
pgpOPo1e
0 0 0 non-token data: last
> expire reduction count
Looks like you're looking at the wrong database here. The above means that you
have 72 tokens from 1 ham mail and no spam. 1106663054 is a unix timestamp
meaning Tue, 25 Jan 2005 14:24:14 UTC.
su to the right user
hat hit SPF_SOFTFAIL if you
need more help.
--
Magnus Holmgren[EMAIL PROTECTED]
(No Cc of list mail needed, thanks)
pgp9ffanUpFd5.pgp
Description: PGP signature
t bayes and/or AWL) by the spamd user
(should be a special user - the "nobody" user isn't supposed to have any
particular access to any files), or use a database.
See README.spamd for security considerations if you have any untrusted users
with shell access.
--
Magnus Holmgren[EMAIL PROTECTED]
(No Cc of list mail needed, thanks)
pgpdCeXbvJVW8.pgp
Description: PGP signature
20.0
> required_hits 20
It appears that Qmail-scanner can be run in one of two modes, and in the fast
mode it adds its own headers, just like Amavis. See
http://qmail-scanner.sourceforge.net/FAQ.php#cs, points 16 and 17. Also lower
the required_score to something more normal.
--
Magnus Hol
On Friday 17 November 2006 02:44, Chris wrote:
> On Thursday 16 November 2006 9:21 am, Magnus Holmgren wrote:
> > So basically you're right and I haven't added anything. What I can add is
> > that I don't use DCC myself, for precisely the aforementioned reason,
>
haven't added anything. What I can add is that
I don't use DCC myself, for precisely the aforementioned reason, i.e. that it
requires to much fiddling with mailing lists.
--
Magnus Holmgren[EMAIL PROTECTED]
(No Cc of list mail needed, thanks)
pgpXF7edCj7oc.pgp
Description: PGP signature
go over 5 (or whatever limit you choose).
If almost all ham hits BAYES_00 or the occasional BAYES_05, then in principle
there is nothing wrong with a relatively high BAYES_50 score (1.0, for
example).
--
Magnus Holmgren[EMAIL PROTECTED]
(No Cc of list mail needed, thanks)
pgpngTvZSV9rs.pgp
Description: PGP signature
f ham or spam, like you
hadn't run sa-learn --ham at all.
A better approach however would be to skip running those messages through SA
at all, or to whitelist the sender address (read about whitelist_from_rcvd in
Mail::SpamAssassin::Conf(3pm) manual page. Also, is the server in
trusted
etc/spamassassin/local.cf:
clear_report_template
report _REPORT_
you will get a format that's more suitable to put in the headers.
If you need more help with the Exim-specific things, please ask on
[EMAIL PROTECTED]
--
Magnus Holmgren[EMAIL PROTECTED]
(No Cc of list mail needed, thanks)
pgpzUd89GAQwP.pgp
Description: PGP signature
; BAYES_00, NA_DOLLARS, NIGERIAN_BODY1, RCVD_IN_BL_SPAMCOP_NET,
> RCVD_IN_SORBS_WEB, RISK_FREE, TO_EMPTY, URG_BIZ, US_DOLLARS_3
> X-Spam-Level: **
> X-Spam-Flag: YES
--
Magnus Holmgren[EMAIL PROTECTED]
(No Cc of list mail needed, thanks)
pgp9XihfSsD4F.pgp
Description: PGP signature
ecause then it will
start sending bounces to innocent people whose addresses where forged as
senders of the spam.
--
Magnus Holmgren[EMAIL PROTECTED]
(No Cc of list mail needed, thanks)
pgp9pqDgmiG2B.pgp
Description: PGP signature
e bayesian, but modified
to be better) classifying isn't used at all, or isn't trained (they're using
Amavisd-new as the interface to SA, which (in a way) explains the slightly
different header format. In any case, you won't get the same results unless
both servers sha
iffer if the systems
don't exchange information.
--
Magnus Holmgren[EMAIL PROTECTED]
(No Cc of list mail needed, thanks)
pgptcwaxCvv4l.pgp
Description: PGP signature
cable :D
http://www.ranum.com/security/computer_security/papers/a1-firewall/
--
Magnus Holmgren[EMAIL PROTECTED]
(No Cc of list mail needed, thanks)
pgpiIPcWPGvki.pgp
Description: PGP signature
On Wednesday 25 October 2006 10:44, Chr. v. Stuckrad took the opportunity to
say:
> Does somebody have a list for something like
> 'the best random-generated spam/text'
> without polluting this list ?
Perhaps not random, but there's always http://spamusement.c
On Sunday 15 October 2006 20:49, Magnus Holmgren took the opportunity to say:
> Apparently, when sa-learn reads a message from stdin, for some reason the
> entire header, and possibly even the empty line separating it from the
> body, disappears. Or at least $msg->get_header("
On Monday 16 October 2006 01:21, Magnus Holmgren took the opportunity to say:
> What I'm saying is that
>
> $ sa-learn --spam < testmessage
>
> and
>
> $ sa-learn --spam testmessage
>
> give different results. I forgot to mention the version, 3.1.4 (Debian
&g
On Monday 23 October 2006 21:58, Peter H. Lemieux took the opportunity to say:
> Magnus Holmgren wrote:
> > I thought they did? At least the message from WU/WGA on one computer with
> > Windows XP I used recently was that unauthorised installations only get
> > critical upd
from WU/WGA on one computer with
Windows XP I used recently was that unauthorised installations only get
critical updates, but they do get those. Is that going to change with Vista?
--
Magnus Holmgren[EMAIL PROTECTED]
(No Cc of list mail needed, thanks)
pgp
But silently dropping FP is a major problem too. You want
> FP to bounce back to the sender as normal. Therefore SMTP-time running
> is the only sensible solution.
I like to run SA at SMTP time too, but rejecting isn't always a good idea,
e.g. when mail is forwarded fr
en things out, are you saying that auto-detection doesn't even
work when there is a single "Received: from remote.example.com ([w.x.y.z]) by
my.domain.example with ESMTP id 1234-567-9" and my.domain.example resolves to
a local interface address?
--
Magnus Holmgren[EMAIL PROTECTED]
(No Cc of list mail needed, thanks)
pgpaCho6tTXbb.pgp
Description: PGP signature
On Thursday 19 October 2006 06:39, Jo Rhett took the opportunity to say:
> Magnus Holmgren wrote:
> > OK, the attacker might have 100 zombies on different ISPs, with each
> > ISP's smarthost helping amplify the attack a bit. But does that really
> > count? The servers
On Wednesday 18 October 2006 19:41, Jo Rhett took the opportunity to say:
> Magnus Holmgren wrote:
> > The thing with e.g. the DNS-based DDoS attacks that became common a while
> > ago is that there is a considerable bandwidth amplification; you send a
> > small query packet
; If you can't do that then try these settings to disable bayes learning for
> this list:
>
> bayes_ignore_to users@spamassassin.apache.org
> bayes_ignore_to spamassassin-users@incubator.apache.org
> bayes_ignore_from [EMAIL PROTECTED]
Too bad it not only turns off autolearni
s low. The
header you presented are not in the standard format, so probably JESMS
doesn't filter the mail through spamd, but instead just gives it to spamd,
gets the score back and adds its own headers. Have you checked the log files
(typically /var/log/mail.log)?
--
Magnus Holm
much mails and bypass those
> that can't process?
That is possible, yes. It can also be that the messages are too big (over 250
kB, usually). But again it depends on how SA is called.
--
Magnus Holmgren[EMAIL PROTECTED]
(No Cc of list mail needed, thanks)
pgpC1KipZDBD1.pgp
Description: PGP signature
nning your dirty
spamming business using a borrowed sender address, callout-verifying servers
can cause a DoS against the guy who lended his address, at no additional
cost, especially if the callouts are done too early.
(Then there is SPF...)
--
Magnus Holmgren[EMAIL PROTECTED]
_TRUSTED.
So see http://wiki.apache.org/spamassassin/FixingAllTrusted and
http://wiki.apache.org/spamassassin/TrustPath.
--
Magnus Holmgren[EMAIL PROTECTED]
(No Cc of list mail needed, thanks)
pgp229eMXdVYH.pgp
Description: PGP signature
, probably more correctly, found that many spammers make that
substitution). Besides, why would anyone want to obfuscate the word "please"
anyway? Except in certain phrases, maybe.
Perhaps some general rules should be made specific to English mail?
--
Magnus Holmgren[EMAIL PROT
On Sunday 15 October 2006 21:38, jdow took the opportunity to say:
> From: "Magnus Holmgren" <[EMAIL PROTECTED]>
>
> On Sunday 15 October 2006 16:55, Magnus Holmgren took the opportunity to
say:
> > Indeed, when I did "spamassassin -D bayes < testmessage&
On Sunday 15 October 2006 16:55, Magnus Holmgren took the opportunity to say:
> Indeed, when I did "spamassassin -D bayes < testmessage" the debug output
> reported learning from a different "@sa_generated" message ID
> than "sa-learn -D bayes --forget"
rn -D bayes --forget" said it was trying to forget (but didn't
find). AFAICT from reading the source, get_msg() in Mail::SpamAssassin::Bayes
is used in both cases. So why does it make up different IDs?
--
Magnus Holmgren[EMAIL PROTECTED]
(No Cc of list mail needed, thanks)
pgpXUlYVd2XFV.pgp
Description: PGP signature
itled
>"Re: First Received Header only"
> and three of Christopher Martin's
> "Careful with that regex!"
Ha! I got *six* copies of one mail, and four of another.
--
Magnus Holmgren[EMAIL PROTECTED]
(No Cc of list mail needed, thanks)
pgpShuFJtOtcx.pgp
Description: PGP signature
On Saturday 07 October 2006 22:36, Tomasz Chmielewski took the opportunity to
say:
> Magnus Holmgren wrote:
> > On Friday 06 October 2006 11:47, Tomasz Chmielewski took the opportunity
> > to
> >
> > say:
> >> When I "test" spamassassin setup by runn
find useable envelope sender
>
>
> Is it because I didn't feed spamassassin with an email containing
> headers, or is something broken with my setup?
SA didn't find a jump from an external host to an internal one. Have you set
up trusted_networks and/or i
ss?
See
http://cwhois0.completewhois.com/cgi-bin/dbcheck-invalidipwhois.cgi?IP=65.119.30.206
Apparently the listing, which was imported from rfc-ignorant.org two years
ago, is obsolete.
--
Magnus Holmgren[EMAIL PROTECTED]
(No Cc of list mail needed, thanks)
pgpRCC0f1i58N.pgp
Description: PGP signature
tirely on your MTA/MDA setup. SpamAssassin scans everything that
gets thrown on it. You have to tell us more or go ask the appropriate mailing
list.
--
Magnus Holmgren[EMAIL PROTECTED]
(No Cc of list mail needed, thanks)
pgp4CkyZtzylp.pgp
Description: PGP signature
n unacceptable rate and I haven't got a
> clue how fault find
> what's going wrong?
Have you checked out http://wiki.apache.org/spamassassin/UsingSpamAssassin
("Spam getting through?")?
If you need more help you can attach one or two spam mails for us to anal
hen it should even be in
internal_networks (which default to trusted_networks, however).
--
Magnus Holmgren[EMAIL PROTECTED]
(No Cc of list mail needed, thanks)
pgpv6eBFhyFku.pgp
Description: PGP signature
1 - 100 of 189 matches
Mail list logo
