On Thursday 13 September 2007, jdow wrote:
> And you just fed the troll-chain, yourself, silly person.
>
> {^_-}
At least I trim my replies...
--
Phil Barnett
AI4OF
SKCC #600
feed the trolls and
instead of 30 off topic posts we'd have 3.
This is not a new concept.
--
Phil Barnett
AI4OF
SKCC #600
mpson. He doesn't run SA, but he really knows qmail inside
and out, so any questions to him about qmail are well directed.
You can view his website here and probably find a link to his email addy if
you can read and interpret whats in that box in the 'Other useful pages'
section...
http://www.jms1.net/
--
Phil Barnett
AI4OF
SKCC #600
want to
add, change, or delete this variable using the AUTH_SET variables, you can.
Linky here: http://qmail.jms1.net/patches/combined-details.shtml
--
Phil Barnett
AI4OF
SKCC #600
On Thursday 12 July 2007, Justin Mason wrote:
> Phil Barnett writes:
> > On Wednesday 11 July 2007, SARE Webmaster wrote:
> > > There has been discussion of taking down the public site, opening
> > > something new ( private access, invite only, acl by ip, etc), in ho
On Wednesday 11 July 2007, Yet Another Ninja wrote:
> On 7/12/2007 12:50 AM, Phil Barnett wrote:
> > On Wednesday 11 July 2007, SARE Webmaster wrote:
> >> There has been discussion of taking down the public site, opening
> >> something new ( private access, invite only
the RFC's:
>
> Jul 11 00:08:19 mail mimedefang.pl[26738]: filter_relay rejected host
> 194.250.131.236 (smtp-wifi.orange.fr)
(snip)
> We've started to take defensive measures...
That would earn them a rule in my firewall.
--
Phil Barnett
AI4OF
SKCC #600
there might not be a lot of people on this list
who can use their server to take on the entire DDOS for you, there are a LOT
of servers here that could participate in a pool.
Maybe a DNS round robin?
Just some ideas.
--
Phil Barnett
AI4OF
SKCC #600
which was letting new users have picture posting rights, but I
never did figure out how they got in on Geeklog, so it's now banned from my
server.
--
Phil Barnett
AI4OF
SKCC #600
Lot's of them probably do. This
causes the congestion. Waiting a random time makes the peaks gradually level
out on the second retry.
--
Phil Barnett
AI4OF
SKCC #600
I've
> mis-diagnosed the problem somewhat. In any event, the problem file
> should be deleted rather than causing a --lint failure in spamassassin.
I'm going to try this, but with a 5 minute wait. I run it in the middle of the
night anyway, who cares how long it takes.
Actually, the proper response might be a random wait.
--
Phil Barnett
AI4OF
SKCC #600
e files load in alphabetical order.
I checked. RDJ is pulling the new one and naming it tripwire.cf in the working
rule directory. At least they have the same date/time stamp and identical
content. So I think I'm only using the newer one.
Thanks.
--
Phil Barnett
AI4OF
SKCC #600
but all the
ones that do are spam, so I find it useful to drive the score up.
--
Phil Barnett
AI4OF
SKCC #600
s information
distributed?
--
Phil Barnett
AI4OF
SKCC #600
lint error shows
html tags and there aren't any in my current tripwire.cf file.
If it is true that there are no updates, then why is the RDJ script trying to
update anything? Is the RDJ server still being DOS'd?
--
Phil Barnett
AI4OF
SKCC #600
line, skipping:
[24363] warn: config:
failed to parse line, skipping: [24363] warn: config: failed to parse line, skipping:
[24363] warn: config: failed to
parse line, skipping: [24363] warn: lint: 4 issues detected,
please rerun with debug enabled for more information
--
Phil Barnett
ts?
Here on this list? Some other channel?
I've been getting RDJ updates via cron once a week for a while now. I don't
see how that can be construed as abusive, but I'm game to unhook it while
they figure out what to do. I'm not wanting to be a burden, but I loath
unmaintain
mate the process.
Where would you suggest a person should listen to find out that it't time to
manually intervene and get any changes? I don't have a problem removing the
cron job, but I don't want it to turn into an unmaintained appendage.
--
Phil Barnett
AI4OF
SKCC #600
I recently saw this happening when testing. Is this stuff left over from some
older version, or something not installed?
What should I do with the undefined dependencies?
[29724] info: rules: meta test DIGEST_MULTIPLE has undefined
dependency 'DCC_CHECK'
[29724] info: rules: meta test SARE_SPEC
On Monday 14 May 2007 09:48, Gary V wrote:
> >Do you mind if I include your notes with attribution to my document on
> >building a MailServer applicance?
> >
> >--
> >Phil Barnett
>
> No, of course I don't mind, and credit isn't necessary. But than
On Monday 14 May 2007 06:20, Mikael Syska wrote:
> Will your notes be available online ?
Yes.
--
Phil Barnett
AI4OF
SKCC #600
address and
> >
> >port
> >
> > > to the main pyzor server. Don't use that server. Edit and change to
> > > 82.94.255.100:24441
> >
> >Why?
> >
> >--
> >Phil Barnett
>
> Pyzor is not actively maintained. It has not been fo
t; 82.94.255.100:24441
Why?
--
Phil Barnett
AI4OF
SKCC #600
r outbound spam to ham ratio is?
--
Phil Barnett
AI4OF
SKCC #600
ned.
>
> this seems to be the common suggestion.
>
> it has a couple drawbacks, as i see it:
>
> 1. it's relatively cpu-intensive if i want to do it all the time
> (e.g. scan my spam folder to learn only the messages which haven't
> already been learned)
Move the messag
On Sunday 01 April 2007 22:06, kiwidesign wrote:
> I am relatively new to SpamAssassin and I am having a bit of difficulty
> tracking down the reason for some spam messages getting through. When I
> test the message it comes up with score of say 23 points with 5 required.
> To me this indicates th
On Thursday 29 March 2007 12:03, Chris Rouffer wrote:
> I've been given the job of adding an Internet Content filter, firewall, and
> spam filter to a small network in a non-profit organizaiton. Right now
> there are about 5 email accounts, and their mail server is at their
> web-host. Is it pos
On Thursday 08 March 2007 19:46, Andrew Rosolino wrote:
> Why does a directory need execute permissions?
Because you can't use it and you can't move into it unless it does.
--
Balmer is basically saying: We know there's a problem but we're not going to
tell you what it is because we want to amb
On Sunday 14 January 2007 12:51, R Lists06 wrote:
> I don't know at any given time what is the most stable version of any perl
> module in relation to SA use.
Generally, perl modules only do one thing, and the parameters seldom change.
When a bug is found, it's fixed and made available. This mean
On Sunday 07 January 2007 13:00, John Rudd wrote:
> Have you put your own server into your trusted networks?
It's a Plesk install and I generally don't edit their configuration files.
I'll look into it.
> Have you put your own server into any of the various configs in
> Botnet.cf (the skip or p
rom network); 7 Jan 2007 11:24:43 -0500
Received: from fl-69-34-131-91.dyn.embarqhsd.net (HELO ?192.168.100.209?)
(69.34.131.91)
by vhost.fiberhosting.com with SMTP; 7 Jan 2007 11:24:43 -0500
From: Phil Barnett
To: philb at philb.us
Subject: test
Date: Sun, 7 Jan 2007 11:24:46 -0500
On Saturday 06 January 2007 23:05, Theo Van Dinter wrote:
> On Sat, Jan 06, 2007 at 05:24:35PM -0800, snowcrash+spamassassin wrote:
> > i regularly run updates via cron on the hour.
> >
> :)
> :
> > running it again, or at all, will change what/where?
>
> The recent 3.1 updates include the ZEN rule
On Monday 01 January 2007 01:46, Theo Van Dinter wrote:
> On Mon, Jan 01, 2007 at 01:41:33AM -0500, Phil Barnett wrote:
> > So, does that mean that sa_update brings the update to my machine and
> > then I have to do something else or that I have to run sa_update to bring
> >
On Monday 01 January 2007 01:23, Theo Van Dinter wrote:
> Generally, updates get put in, and then whenever someone feels like pushing
> it, they can. I usually put in small commits for specific sets of rules,
> and could do multiple edits before I want an update to occur.
So, does that mean that
On Friday 29 December 2006 23:55, snowcrash+spamassassin wrote:
> and this,
>
> http://www.spamhaus.org/zen
>
> "Caution: zen.spamhaus.org replaces sbl-xbl.spamhaus.org.
>
> If you are currently using sbl-xbl.spamhaus.org you can now replace
> 'sbl-xbl' with 'zen' (sbl-xbl.spamhaus.org will eventua
On Friday 29 December 2006 16:23, Duane Hill wrote:
> Phil Barnett wrote:
> > On Friday 29 December 2006 14:50, Vernon Webb wrote:
> >> What are you using?
> >
> > Right now, I'm using sbl-xbl.
>
> I could be mistaken. sbl-xbl is being replaced by zen.s
On Friday 29 December 2006 14:50, Vernon Webb wrote:
> What are you using?
Right now, I'm using sbl-xbl.
--
My other computer is your Windows machine
On Friday 29 December 2006 08:23, Vernon Webb wrote:
> These guys are beginning to
> drive me nuts and obvioulsy I have something wrong as others are telling me
> these are being caught as SPAM on their systems.
My first question would be:
Have you installed Rules Du Jour and set it up to have c
On Tuesday 26 December 2006 12:13, Luis Hernán Otegui wrote:
> OK, I'm using sa-update AND Rules Du Jour. However, I'm not sure about
> which rulesets are te most convenient to download. Could somebody pass a
> config file for RDJ?
The ruleset you want will vary based on how strict or loose you wa
On Monday 18 December 2006 20:16, John Rudd wrote:
> New things:
> I think that's everything...
>
>
> Just need another day or two of testing before I release it.
One thing I noticed from the previous version was there was no mention of
version numbers anywhere in the package. Not in the name,
On Tuesday 12 December 2006 07:28, JamesDR wrote:
> > There is nothing in SPF to keep a spammer with a botnet from putting
> > 0.0.0.0/0 as their approved domain limit.
>
> Sounds like a good spam sign to me. Let the spammers put 0.0.0.0/0 in
> their spf records, I'll pop in 3 points for good measu
On Monday 11 December 2006 16:50, JamesDR wrote:
> Would you care to elaborate on why SPF doesn't work for sender
> verification? Its pretty simple, doesn't get much more simple that what
> SPF does... If SPF doesn't work, nothing will.
There is nothing in SPF to keep a spammer with a botnet from
On Sunday 10 December 2006 16:31, John Rudd wrote:
> It can be downloaded from:
>
> http://people.ucsc.edu/~jrudd/spamassassin/Botnet.tar
Thanks, John. I downloaded it and installed it earlier today. It appears to be
working fine, but I got with this tonight when RulesDuJour ran:
RulesDuJour
On Thursday 16 November 2006 07:30, twofers wrote:
> 1. I have tried putting some "canned" .cf files into
> /etc/mail/spamassassin/ and have discovered that I have limitations on the
> size of these file(s) that SA will work with. I have 512 M memory and it
> seems large .cf files filled with "r
On Saturday 09 September 2006 12:06, Poohba wrote:
> There are more messages in my spam folder(file) than what shows in
> evolution. Same goes for almost... Procmail shows its sending emails
> there but I don't see them. If I open the file using a text editor I
> see the emails but not in evolut
On Sunday 22 January 2006 12:14, wrote:
> All,
>
> I'm confused as to how to block words with spaces.
> For example,
> V ia G ra
> M o r t g a g e
This seems to be very effective.
v.?[|[EMAIL PROTECTED]@]
I also like and use the Sare rulesets, which pretty much catch all of this
stuff. but
On Tuesday 30 August 2005 05:40 pm, [EMAIL PROTECTED] wrote:
> Got a nasty spam with an extremly oversized Thread-Index header. (I set
> my word wrap to 72 characters, I don't know if it will hold up however
> when I hit send).
>
> Does anyone know if it is exploiting a known Outlook/Exchange secu
On Monday 29 August 2005 11:57 pm, John Rudd wrote:
> Does this fix the problem with SIGCHLD?
Do you really need to quote the entire message?
--
Don't think that a small group of dedicated individuals can't change the
world. it's the only thing that ever has.
On Friday 15 April 2005 08:03 am, Jean Caron wrote:
> Again, how can I tell for sure ?
Look in the header and see what the bayes score was on the FN.
--
"In the beginning of a change, the patriot is a brave and scarce man, hated
and scorned. When the cause succeeds, however, the timid join hi
On Sunday 27 February 2005 06:31 pm, Kenneth Porter wrote:
> --On Sunday, February 27, 2005 11:48 AM -0500 Phil Barnett <[EMAIL PROTECTED]>
>
> wrote:
> > All you have requested here is for someone else to do the complicated
> > stuff and make it easy for you. Som
On Sunday 27 February 2005 10:35 am, Kenneth Porter wrote:
> --On Thursday, February 24, 2005 6:07 PM -0500 Phil Barnett
>
> <[EMAIL PROTECTED]> wrote:
> > i or l = [|ííiil1]
> >
> > a = [EMAIL PROTECTED]
> >
> > e = [eé3]
> >
> > o = [o0]
On Thursday 24 February 2005 05:42 pm, [EMAIL PROTECTED] wrote:
> Stuart Johnston wrote:
> > [EMAIL PROTECTED] wrote:
> >> Stuart Johnston wrote:
> >>> body L_MILLBILL /[mb]i(?:\|l|l\||\|\|)ions?/i
> >>
> >> body L_MILLBILL /[mb]i[l|][l|]ions?/i
> >
> > I started with something similar to that but
On Thursday 13 January 2005 07:19 pm, [EMAIL PROTECTED] wrote:
> Phil Barnett wrote:
> I'm feeling puckish today so I'll say it.
>
> Or even symlink /usr/sbin to /usr/bin (shock, horror) :-)
Gasp, You've gone too far, now... ;-)
--
Top ten reasons to procrastinate.
1.
On Thursday 13 January 2005 03:44 pm, Thomas Arend wrote:
> Because SuSE stores spamd in /usr/sbin/spamd and the tarball stores it
> in /usr/bin/spamd the SA does not run.
You could have put a symlink in /usr/bin
ln -s /usr/sbin/spamd /usr/bin/spamd
--
Top ten reasons to procrastinate.
1.
54 matches
Mail list logo
