On 2011-06-23 18:40, Dave Wreski wrote:
Hi,
since so many have problems i share my mysql shemas :=)
`token` binary(5) NOT NULL,
Yes, the binary or varbinary is the key to a solution here.
Mucking with utf-8 vs latin-1 is just covering but not solving
the most glaring problem here, namely that
On 2011-06-21 16:30, Marc Perkel wrote:
On 6/21/2011 7:23 AM, David F. Skoll wrote:
On Tue, 21 Jun 2011 07:06:11 -0700
Marc Perkel wrote:
Trying to get MySQL bays working in a high volume environment.
Dedicated MySQL server with SSD drives. Can someone send me a sample
my.cnf file and make o
On 2011-06-16 9:44, Cédric Jeanneret wrote:
Hello,
I just read that SARE shouldn't be used anymore[1] (note maintained
anymore, and many false-positives reported) Is that true?
Yes.. 100% true.
>If so, which list can you suggest? For now, I don't have any problem
with FPs,
but...
the
On 2011-06-11 3:38, Warren Togami Jr. wrote:
On 6/10/2011 3:34 PM, John Hardin wrote:
On Fri, 10 Jun 2011, Lawrence @ Rogers wrote:
On 10/06/2011 10:24 PM, Warren Togami Jr. wrote:
On 6/10/2011 2:01 PM, Karsten Bräckelmann wrote:
> > IFF you use the sought channel with SA 3.3.x, you will need
On 2011-06-09 11:46, Mark Martinec wrote:
Sandro,
I find a lot of spam that has already passed other spam-filters with
spamassassin better tuned than mine an already have a X-Spam-Flag to YES.
I tried to add a rule to match that case:
header CUSTOM_X_SPAM_FLAG X-Spam-Flag =~ /\bYES\b/i
for those looking for new tools for their arsenal..
take a look at the relatively new Haraka.
running it as a proxy, I'm impressed.
enjoy!
https://github.com/baudehlo/Haraka
Haraka - a Node.js Mail Server
Haraka is a plugin capable SMTP server. It uses a highly scalable event
model to be abl
On 2011-06-01 12:42, Barry Kwok wrote:
I just found out that there is no ImageInfo plugin score in one of my
server. Spamassassin debug show:
Jun 1 17:46:50.229 [29338] dbg: config: fixed relative path:
/var/lib/spamassas
sin/3.003001/updates_spamassassin_org/20_imageinfo.cf
Jun 1 17:46:50.229
put ow.ly in a URI rule
On 2011-05-31 8:58, Lars Jørgensen wrote:
Hi,
We don't get much spam through the spamassassin filter, but we do get a bit of
german spam which only seems to trigger RVCD_IN_XBL and thus not get a high
enough score to be discarded. I have included a sample below (hopi
On 2011-04-05 17:44, Salvatore wrote:
For to stop this spam I must modify my spamassassin configuration ?
What steps I can make for to resolve my problem ?
Thanks and sorry for my banal question.
Thanks in advance.
help us help you and post the sample in http://pastebin.com
On 2011-04-05 12:08, rstarkov wrote:
Like so many people, I get a dynamic IP from my ISP. Right now, any emails I
send to myself show up as "RCVD_IN_SORBS_DUL". Somehow I thought that as
long as my SMTP server isn't blacklisted, something like this wouldn't
happen.
The exact message is: RCVD_IN
On 2011-04-04 9:54, Andreas Schulze wrote:
Hello
Im using spamassassin inside amavisd-new to filter mails.
Today I noticed a mail with these headers:
X-Spam-Flag: NO
X-Spam-Score: -0.007
X-Spam-Level:
X-Spam-Status: No, score=-0.007 tagged_above=-999 required=5
tests=[HTML_IMAGE_ONLY_3
On 2011-03-08 22:28, Joseph Brennan wrote:
http://www.spamhaus.org/faq/answers.lasso?section=Spamhaus%20DBL#291
quote,
One way to address this problem would have been to treat URL shortener
domains the same way as any other spammed domain and include them in our
main DBL zone. But, as ment
On 2011-03-08 22:12, Warren Togami Jr. wrote:
On 3/8/2011 9:58 AM, Bill Landry wrote:
FYI: "Spamhaus created a new "URL shortener/redirector" zone in the
DBL." See:
http://www.spamhaus.org/news.lasso?article=667
Will Spamassassin be adding support for this new DBL
shortener/redirector response
On 2011-03-08 20:58, Bill Landry wrote:
FYI: "Spamhaus created a new "URL shortener/redirector" zone in the
DBL." See:
http://www.spamhaus.org/news.lasso?article=667
Will Spamassassin be adding support for this new DBL
shortener/redirector response code?:
127.0.1.3 spammed redirector domain
F
On 2011-03-08 21:24, dar...@chaosreigns.com wrote:
Looks like that would be something like this?
urirhssub URIBL_DBL_REDIRECTOR dbl.spamhaus.org. A 127.0.1.3
bodyURIBL_DBL_REDIRECTOR eval:check_uridnsbl('URIBL_DBL_SPAM')
describeURIBL_DBL_REDIRECTOR Contai
On 2011-02-17 16:40, RW wrote:
On Thu, 17 Feb 2011 15:29:07 +0100
Yet Another Ninja wrote:
On 2011-02-17 15:23, Andreas Schulze wrote:
Hello,
http://www.spamhaus.org/faq/answers.lasso?section=DROP FAQ
mention as very last point to use the Spamhaus Drop list with SA.
is anybody doing this
On 2011-02-17 15:23, Andreas Schulze wrote:
Hello,
http://www.spamhaus.org/faq/answers.lasso?section=DROP FAQ
mention as very last point to use the Spamhaus Drop list with SA.
is anybody doing this and can explain it in detail ?
Thanks
Andreas
"DROP is a tiny subset of the SBL designed for
On 2011-02-03 17:53, Kris Deugau wrote:
I've been adding local rules to catch otherwise legitimate headers from
popular sites in the message body (ie, where they would appear in
postmaster mail that should never ever arrive at an account outside of
that site).
Unfortunately I've had to use mimeh
On 2011-01-02 13:59, Warren Togami Jr. wrote:
I've been thinking, perhaps we should consider making a "Freemail Realtime
BL" that lists not IP addresses, but rather ID's at the Freemail provider.
Search the list archives for emailbl
1) I am assuming that ID's you see in headers of mail from Y
On 2010-12-29 20:50, Marc Perkel wrote:
On 12/29/2010 11:10 AM, David F. Skoll wrote:
On Wed, 29 Dec 2010 09:33:25 -0800
Marc Perkel wrote:
Yes - there's no point in doing DNS blacklist lookups on yahoo,
hotmail, and gmail as well as thousands of other mixed source
providers.
I disagree. I
On 2010-12-24 12:37, Warren Togami Jr. wrote:
You have the option of uploading your corpus to the central server to
process every night. But most people have privacy concerns about that if it
is their own personal ham. For this reason you have the option of running
the masscheck script yourself
On 2010-12-15 21:41, Lawrence @ Rogers wrote:
On 15/12/2010 3:51 PM, Bowie Bailey wrote:
The khop rules are good. I thought the 2tld stuff had been pulled into
SA as 20_aux_tlds.cf?
It has, but the Daryl edited one has some additional stuff (I think)
that isn't in there. There is conditional co
On 2010-12-15 19:00, Lawrence @ Rogers wrote:
90_2tld.cf.sare.sa-update.dostech.net
this has been deprecated and replaced with SA's default 20_aux_tlds.cf
See in: 20_aux_tlds.cf
# This file replaces the SARE http://www.rulesemporium.com/rules/90_2tld.cf
# which will be deprecated as from
On 2010-12-14 15:28, Marc Perkel wrote:
Are there any DNSBLs out there based on email addresses?
nope
Is there a standard?
nope
On 2010-12-01 17:13, Martin Gregorie wrote:
On Wed, 2010-12-01 at 07:27 -0800, Marc Perkel wrote:
I've been thinking about what it would take to actually eliminate spam
or reduce it to less than 10% of what it is now. One of the problems is
the SMTP protocol itself. And a big problem with that i
On 2010-11-16 11:41, Alvaro Marin wrote:
Hi,
Is there anyway to see the changes made by sa-udpate when I execute it?
I want to see which rules and scores are modified since the last update.
Thanks!
Regards,
sa-update -D
On 2010-10-30 9:56, RW wrote:
On Sat, 30 Oct 2010 02:23:00 -0400
dar...@chaosreigns.com wrote:
But the total amount of bandwidth and processing time saved on the
internet from not running unnecessary tests on every instance of
spamassassin seems worth doing.
You are also wasting resources by
On 2010-10-15 14:49, Niente0 wrote:
Yet Another Ninja wrote:
On 2010-10-15 14:18, Niente0 wrote:
Untested:
# To: "<"
header TO1 To =~ /^\"\<\"\
Thank you!
I tested it but it still doesn't work. :-(
For testing purposes, I created a fake user in my
On 2010-10-15 14:18, Niente0 wrote:
Yet Another Ninja wrote:
On 2010-10-15 12:58, Niente0 wrote:
pls post a spam sample on pastebin.com and send the link to the list
Hi, I tried with 3 different browsers but pastebin.com shows only a blank
page after submitting text. So I posted it here
On 2010-10-15 12:58, Niente0 wrote:
Giles Coochey wrote:
Have you tried escaping it with \x3c ?
Thanks for your suggestion, I tried it now but with no success. Here's my
rule:
header TO1 To:name =~ /\x3c/i
score TO1 100
I have received other "less than" spam j
Does anybody have or know of SA syntax (highlighting) definition for
BBedit (Mac) ?
If yes, would you share?
Thanks
On 2010-10-05 22:35, Brent Gardner wrote:
Steve Freegard wrote:
Hi All,
On 17/09/10 14:11, Steve Freegard wrote:
Hi All,
Recently I've been getting a bit of filter-bleed from a bunch of spams
injected via Hotmail/Yahoo that contain shortened URLs e.g. bit.ly/foo
that upon closer inspection wo
On 2010-10-05 22:16, John Hardin wrote:
On Tue, 5 Oct 2010, Karsten Br�ckelmann wrote:
If there really is no way to use whitelist_from_rcvd, you of course
always can write custom header rules, matching against the pseudo header
X-Spam-Relays-Internal or friends, carefully constructing the RE to
On 2010-09-28 9:28, selven wrote:
Hi, i wanted to set up my own surbl server, unfortunately, not much
information is available around, most of the time am bumping into this
http://www.surbl.org/public-dns.html, but well, getting rsync data feed
access from surbl.org is way too expensive for a bun
On 2010-09-16 13:36, Giles Coochey wrote:
On Thu, September 16, 2010 13:28, Martin Gregorie wrote:
On Thu, 2010-09-16 at 07:28 +0200, Per Jessen wrote:
http://public.jessen.ch/files/mazeweb-spam.jpeg
A cynic might wonder whether it also harvests valid e-mail addresses.
Appears to be a per
On 2010-09-16 12:29, franc wrote:
You may setup a regexp rule in the /etc/local.cf file of your SA
installation
Could you give me an example, or where to find one? In the local.cf i don't
find RegExp-sections.
see http://wiki.apache.org/spamassassin/WritingRules
Received: from 41.155.23.91
(SquirrelMail authenticated user spam)
by 71.4.72.28 with HTTP;
sometimes I wonder
--
If you haven't received my email please tell me and I will resend it to
you again. (Anna Masekela)
On 2010-09-06 12:49, RW wrote:
On Mon, 06 Sep 2010 12:26:08 +0200
Yet Another Ninja wrote:
You're using the SA ClamAV plugin which isn't the most effcient
method do do AV checks.
What's wrong with it?
nothing "wrong" but my first choice would be to reject inf
On 2010-09-05 0:00, Chris wrote:
On Sat, 2010-09-04 at 08:42 -0500, Chris wrote:
I'm trying to figure out why I'm having ridiculous scan times such as
the above examples. Lower scan times such as in the 20 second range are
the exception rather than the rule. I'm running bind as a local caching
n
On 2010-09-01 22:47, Chris Datfung wrote:
I'm running spamassassin version 3.3.1-1 from the Debian package. I added
several RBLs to /etc/mail/spamassassin/init.pre but spamassassin only
queries its built in RBLs and not the ones I added. An example RBL entry to
init.pre is shown below:
header I
On 2010-08-26 16:11, Grant Peel wrote:
Hi all,
I have serveral hundred domains on a box. Each domain's mail is
controlled by a specific UNIX user.
Inside every user's directory, they have a user_prefs file.
While I have use_bayes 0 in the main config, some users have opted to
turn on bayes
On 2010-08-25 13:44, Christian Scholz wrote:
Hello together,
I've set up my own sbl and want spamassassin to check this rbl but it
doesn't work.
My rule is
IN_SBL_OOS_ORG rbleval:check_rbl('oos', 'sbl.o-o-s.de.')
describe IN_SBL_OOS_ORG Received via a blocked site in sbl.o-o-s.de
tflags IN_S
On 2010-08-18 14:05, Matus UHLAR - fantomas wrote:
/etc/mail/spamassassin/sare-sa-update-channels.txt
BE sareful about SARE rules. They are often obsolete, have false positives
and meny of them are already incorporated in stock SA, and some have better
alternatives (uri blacklist vs. hardcode
On 2010-07-30 21:26, Bowie Bailey wrote:
On 7/30/2010 3:08 PM, Emin Akbulut wrote:
Simply disable regular ruleset and test again. If it takes 6.93-5.78
seconds or
something similar, you are right.
I'm actually having the same issue on my new home server. I set up SA
and got it working. Then
On 2010-06-29 10:39, Dan Mahoney, System Admin wrote:
On Mon, 28 Jun 2010, Yet Another Ninja wrote:
On 2010-06-28 11:33, Dan Mahoney, System Admin wrote:
> Hey there,
> > Perhaps this is by design, but rt replies are, strictly speaking,
not > bounce messages.
> > Messag
On 2010-06-28 11:33, Dan Mahoney, System Admin wrote:
Hey there,
Perhaps this is by design, but rt replies are, strictly speaking, not
bounce messages.
Message attached, let me know if it looks "normal".
-Dan
from what I see it looks normal if someone really makes an effort to
"tune" SA
On 2010-06-24 21:51, Ned Slider wrote:
Michael Scheidell wrote:
On 6/24/10 1:18 PM, Randy Ramsdell wrote:
Yet spamassassin scores it with a .9. I have been reluctant to
block and
this is compounded by spamassassin scoring it low as if it weren't as
accurate as you state.
again, look at
On 2010-06-12 15:20, Andy Dills wrote:
300,000 queries per day...per server? per CIDR? What is the delimiter?
Because there is certainly no single IP generating 300,000 queries per
day.
That is probably your problem... use a central DNS resolver and your
query count will instantly decrease
On 2010-06-11 16:42, Andy Dills wrote:
After recently upgrading to a new mail cluster with SA 3.3.1, we were
contacted (at every imaginable POC address) with a solicitation to
purchase access to utilize the Spamhaus blacklists, or they'll stop
answering our queries.
We felt the amount of mone
On 2010-05-28 23:57, Kris Deugau wrote:
Karsten Bräckelmann wrote:
On Wed, 2010-05-26 at 11:35 -0400, Kris Deugau wrote:
Is there any way to take a domain listed with util_rb_2tld, and
"un-2tld" it (similar to how you can unwhitelist stock whitelist
entries if they don't work well with your ma
On 2010-05-21 15:40, John Horne wrote:
Hello,
Can you tell it's Friday afternoon? What should be a simple problem
always seems to become a nightmare on Friday afternoons! :-)
Using SA 3.3.1 I have the following simple rule:
body LOCAL_JH /userid:\s*\n/i
which should look for 'useri
On 2010-05-19 23:57, Karsten Bräckelmann wrote:
What I can do, however, is to split up the original question into
manageable chunks, as unrelated as possible. SA and postfix on Debian?
I can highly recommend: FuGlu http://sourceforge.net/apps/trac/fuglu/
On 2010-05-19 23:26, Karsten Bräckelmann wrote:
On Wed, 2010-05-19 at 23:13 +0200, Mikael Syska wrote:
Not to highjack the thread, but there are also other things to consider.
I have no idea how on Postfix, but this could help you too Scott Lavoie.
If there are multiple exchange backends for p
On 2010-04-28 20:01, Chip M. wrote:
I haven't seen any since the first blast, so I suspect their
signatures were widely distributed by most anti-virus orgs.
I'm mainly publishing this for all of us who like to have backup
rules, and are willing to be more general than the sometimes too
tightly f
On 2010-04-09 17:31, hateSpam wrote:
Thanks a lot for replies. Do I have to install Amavisd-new and ClamAV to get
spamassassin working? Is there any other way to configure spamassassin with
postfix not installing additional software?
See: http://wiki.apache.org/spamassassin/IntegratedInMta
als
On 2010-03-18 16:36, tonjg wrote:
update: after doing some reading on google I found init.pre and added:
loadplugin Mail::SpamAssassin::Plugin::Razor2
and
loadplugin Mail::SpamAssassin::Plugin::Pyzor
and restarted spamassassin.
Did you also install the plugins?
These two are not delive
On 2010-03-18 15:02, Jason Bertoch wrote:
On 2010/03/17 6:20 PM, Micah Anderson wrote:
I'm trying to find out what the current state of the art is for plugins
and channel updates.
For channels I've been using:
updates.spamassassin.org
sought.rules.yerp.org
saupdates.openprotect.com
But I won
QUICK FIX!
borked FH_DATE_PAST_20XX is your problem.
set in local.cf
score FH_DATE_PAST_20XX 0
and then read up about this rule in the list archive
On 2010-03-16 12:26, Phill Edwards wrote:
I'm running Spamassassin 3.2.5. I'm getting masses and masses of false
positives. I trashed my Bayes
On 2010-03-13 0:50, Rob McEwen wrote:
Yet Another Ninja wrote:
there are no users - its trap domains which have never had any real
users - ever.
no prefiltering except rejecting potential bounces and stuff leaking
from whatever may be on DNSWL and a coupleof other WLs.
Alex,
Your
On 2010-03-12 20:23, Rob McEwen wrote:
Yet Another Ninja wrote:
These stats are for small trap box which only accepts mail from bots
and rejects stuff listed by DNSWL and other public WLs. Since midnight
CET-
These are only URI BL tats - so you woun't see other dnsbls like
Spamcop, etc.
On 2010-03-12 16:48, Ray Dzek wrote:
I just received the dreaded URIBL "You send us to many DNS queries"
notice. This is fine. We have been growing and I am sure our
queries have gone up. But when looking at their data feed service
options the first thing I noticed was that there is no fee str
On 2010-03-09 15:48, Rosenbaum, Larry M. wrote:
From: Yet Another Ninja [mailto:sa-l...@alexb.ch]
On 3/4/2010 7:34 PM, Rosenbaum, Larry M. wrote:
From: Karsten Bräckelmann [mailto:guent...@rudersport.de]
On Thu, 2010-03-04 at 00:12 +0100, Yet Another Ninja wrote:
On 3/3/2010 10:09 PM
On 2010-03-09 13:51, Brian wrote:
On Tue, 2010-03-09 at 13:17 +0100, Ralf Hildebrandt wrote:
* Brian :
In the year 2010 it is not unreasonable to expect the MTA that takes
responsibility for accepting a message to make reasonable checks about
the validity or content of that message.
Postfix
On 2010-03-08 12:29, Dhaval Soni wrote:
Dear All,
I want to use zen.spamhous.org for spam check. So we need to do entry in
spam.lists.conf file. But do we need to mention score for it? If yes, where
to do it?
spam.lists.conf is not part of Spamassassin (sounds like MailScanner)
Pls see:
http:
On 2010-03-08 1:24, Rops wrote:
Hello
I'm trying to figure out why some emails get lost, which most likely is due
to emails killed by ISP spam filter due to high spam score these lost email
have.
How to find out if some mail server is blacklisted and where?
Is there any central database for que
On 3/3/2010 10:09 PM, Karsten Bräckelmann wrote:
On Wed, 2010-03-03 at 15:38 -0500, Rosenbaum, Larry M. wrote:
Is there still a reason for this update channel?
90_sare_freemail.cf.sare.sa-update.dostech.net
Or is it now built in to SA v3.3.0?
20_freemail.cf and 20_freemail_domains.cf ?
9
On 2/25/2010 11:41 PM, Daniel McDonald wrote:
config: SpamAssassin failed to parse line, "co.at.pn" is not valid for
"util_rb_2tld", skipping: util_rb_2tld co.at.pn
config: SpamAssassin failed to parse line, "co.uk.pn" is not valid for
"util_rb_2tld", skipping: util_rb_2tld co.uk.pn
config: SpamA
On 2/2/2010 1:03 PM, Randal, Phil wrote:
There's an extraneous linebreak or two in there:
#
SA > 3.3.0
if (version >= 3.003000)
SA > 3.3.0 was missing a comment...
fixed
thx
On 2/1/2010 10:50 PM, Karsten Bräckelmann wrote:
On Mon, 2010-02-01 at 22:33 +0100, Yet Another Ninja wrote:
- If someone knows how to put these two rule sets in one file and
"activate" according to SA version, pls let me know... I'm stumped.
Preprocessing Options [1]
For those using SA 3.3.x I've split the tld files :
SA > 3.3.x ONLY!
http://www.rulesemporium.com/rules/90_3tld.cf
SA > 3.2.4
http://www.rulesemporium.com/rules/90_2tld.cf
SA 3.3.x users will require both files.
- If someone knows how to put these two rule sets in one file and
"activate" a
On 1/28/2010 5:23 PM, Adam Katz wrote:
However, as you noted earlier:
It's all because
http://www.rulesemporium.com/rules/70_sare_header1.cf
header SARE_RECV_SPAM_DOMN0b Received =~
/\bdynamic.hinet\.(?:com|net|org|info)/
describe SARE_RECV_SPAM_DOMN0b Email passed through apparent spammer d
On 12/16/2009 6:16 PM, Charles Gregory wrote:
On Wed, 16 Dec 2009, Yet Another Ninja wrote:
blabber... checkout SVN - follow dev list... HABEAS is history...
I believe the *point* here is that HABEAS is NOT 'history' for ordinary
systems running ordinary sa-update on 3.2.5.
On 12/16/2009 3:23 PM, LuKreme wrote:
On 16-Dec-2009, at 07:12, Bowie Bailey wrote:
uses. The only thing that really matters is how effective they are. If
a blacklist blocks spammers without blocking too many legitimate mails,
use it. If a whitelist allows legitimate mail without sending thro
Dear Santa,
SA users hope Justin Mason has moved into his newly renovated home and
he find the time & energy to bring the SOUGHT rule magic back to us.
As this is an Xmas wish, we hope you, Santa Claus, will help him.
Axb
PS: If JM posts a link to his Amazon wishlist, maybe we can all help h
On 12/16/2009 8:24 AM, Rajkumar S wrote:
On Tue, Dec 15, 2009 at 9:07 PM, Yet Another Ninja wrote:
even using site wide, autolearning will help your detection a LOT.
Don't underestimate it...
When running site wide, how do you get ham to train bayes? I can
manage spam by spam reportin
On 12/15/2009 5:49 PM, Charles Gregory wrote:
On Tue, 15 Dec 2009, Matt Garretson wrote:
Heartily agreed. Site-wide bayes here (single database for 2000+
users) catches 40% of the spam here.
But what is the FP rate? Is it safe for an ISP with a widely varied user
base to use site-wide Bayes?
On 12/15/2009 4:07 PM, Rajkumar S wrote:
On Tue, Dec 15, 2009 at 8:29 PM, Matt Garretson
wrote:
Do you use Bayes? Bogofilter (another bayesian filter) catches
those here. The one you posted scored 0.94 here and would have
been dropped.
I am not using bayes as of now, SA is site wide and so
On 12/14/2009 10:55 PM, Daniel J McDonald wrote:
I'd love to have the clamav unofficial signature families scored. I
have a fine guess as to how relevant they are, but it is just that - a
guess.
someone, somewhere is alreay converting ClamV signatures to HUGE (slow)
rule files, forgot where
On 12/14/2009 10:23 PM, Martin Gregorie wrote:
May I suggest that handling whitelist or blacklist rules and any
associated plugins by packaging them as separately installable modules
may be of benefit to SA maintainers. The idea is to reduce the SA dev
workload by handing off responsibility for m
On 12/8/2009 9:38 PM, Ted Mittelstaedt wrote:
Habeas's existence helps to make it more difficult for the
MAJORITY of people to have these "bulk-email-advertisements" filtered
from their mail stream, because now that the system admin is giving a
free pass to all the alleged "bulk-email-advertisers
On 12/7/2009 3:42 PM, rich...@buzzhost.co.uk wrote:
http://pastebin.com/m7c1c17d
Interesting insofar as it appears to be whitelisted??? Is this some kind
of well known US email or hosting service?
Sane missed it, the dnsbl's have missed it and the content filtering has
missed it. So it's a tast
this rule won't work for long :-)
ifplugin Mail::SpamAssassin::Plugin::MIMEHeader
mimeheader AXB_CID_YARIGHT Content-ID =~ /^\<00\{DIGIT2\}/
score AXB_CID_YARIGHT 3.0
endif
score higher if you wish...
have a {ENJOY_VAR} Sunday!
On 12/4/2009 10:57 AM, rich...@buzzhost.co.uk wrote:
> FINAL
This is not a social club, it's a question and issues list for
Spamassassin. My question and issue is why, by default, does
Spamassassin use the HABEAS white list, and why is it out of the box set
with a score to favour delivery of the
Is there a way to limit the pattern size in rules created by
seek-phrases-in-log ?
I'd like to avoid creating rules using patterns with +200 characters.
hints very appreciated.
Axb
On 11/25/2009 11:29 PM, Alex wrote:
iptables -A FIREWALL -s 127.0.0.0/8 -j DROP
Very good. That was nearly funny :-) Why don't you add:
iptables -A FIREWALL -s 0.0.0.0/0 -j DROP and enjoy the silence :-)
Trouble is that you have to be the one that drives to the colo to
eventually undo the rul
On 11/25/2009 3:56 AM, John Hardin wrote:
On Tue, 24 Nov 2009, Justin Mason wrote:
that's normal. can be ignored
On Tue, Nov 24, 2009 at 21:04, Yet Another Ninja
wrote:
When running masscheck calling:
/home/mc/masscheck/spamassassin/trunk/masses && nice ./mass-check \
--c
On 11/25/2009 3:56 AM, John Hardin wrote:
On Tue, 24 Nov 2009, Justin Mason wrote:
that's normal. can be ignored
On Tue, Nov 24, 2009 at 21:04, Yet Another Ninja
wrote:
When running masscheck calling:
/home/mc/masscheck/spamassassin/trunk/masses && nice ./mass-check \
--c
When running masscheck calling:
/home/mc/masscheck/spamassassin/trunk/masses && nice ./mass-check \
--cf='loadplugin Dumptext plugins/Dumptext.pm' \
--cf='loadplugin Mail::SpamAssassin::Plugin::Check' \
-j=2 -n -o --rules='^(?!JM_SOUGHT)(?!T_JM_SOUGHT)' \
spam:dir:/home/mc/Maildir/.SPAM/c
On 11/24/2009 7:10 PM, Benny Pedersen wrote:
On tir 24 nov 2009 19:02:29 CET, Yet Another Ninja wrote
seems simpler than adding 1 domains to freemail's config .-)
that why i like to change it to be paidmail.pm with lists of paid domains
got it now ? :)
spammers can get any
On 11/24/2009 6:34 PM, Benny Pedersen wrote:
On tir 24 nov 2009 18:30:15 CET, Yet Another Ninja wrote
Freemail.pm plugin does it pretty well without the overhead and cron'd
replication lag...
just one problem with freemail it should list all domain as freemail as
default, unless there
On 11/24/2009 6:22 PM, R-Elists wrote:
didnt anyone think that the emailBL project was good enough in adding an
extra factor of protection to continue development?
- rh
Freemail.pm plugin does it pretty well without the overhead and cron'd
replication lag...
Anybody here using some flavour of Kerio Mail Server... pls get back to
me, offlist!
thanks
AXB
On 11/4/2009 5:22 PM, Charles Gregory wrote:
On Wed, 4 Nov 2009, Bowie Bailey wrote:
The SA core rules are not updated very often. For the most part, they
just work. If you are not already doing so, you may want to consider
Justin's Sought ruleset. It is dynamically generated and updated ever
On 11/3/2009 12:40 PM, rich...@buzzhost.co.uk wrote:
On Tue, 2009-11-03 at 10:55 +, Ned Slider wrote:
rich...@buzzhost.co.uk wrote:
RUSSIAN_LINKS BODY: link to .ru
Appears to miss the example:
http://pastebin.com/m7ae0f8ec
Unless I'm missing something ?
Well, lets see your RUSSIAN_LINKS
On 10/31/2009 2:33 PM, Gene Heskett wrote:
On Saturday 31 October 2009, Yet Another Ninja wrote:
On 10/31/2009 2:16 PM, Gene Heskett wrote:
Greetings;
Does anyone have a procmail recipe that incorporates clamav into the
checks, and one that handles the clamav output to /dev/null the viri etc
On 10/31/2009 2:33 PM, Gene Heskett wrote:
On Saturday 31 October 2009, Yet Another Ninja wrote:
On 10/31/2009 2:16 PM, Gene Heskett wrote:
Greetings;
Does anyone have a procmail recipe that incorporates clamav into the
checks, and one that handles the clamav output to /dev/null the viri etc
On 10/31/2009 2:16 PM, Gene Heskett wrote:
Greetings;
Does anyone have a procmail recipe that incorporates clamav into the checks,
and one that handles the clamav output to /dev/null the viri etc?
At least I assume clamav doesn't auto-delete, I've not yet studied all the
docs, but do have fr
On 10/16/2009 10:25 PM, Adam Katz wrote:
> I suppose it's possible that your customer base is large enough that
there aren't any repeat offenders and that each case is unique ...
digging through my archives, I don't see more than 2x of any message
from a CC customer.
look at this way, some sno
On 10/10/2009 10:32 PM, Warren Togami wrote:
On 10/10/2009 11:27 AM, Marc Perkel wrote:
I'm thinking about starting a service to filter spam on outgoing email.
I was wondering if anyone has any experience doing this and has some
advice on how to do it. These customers will be businesses, not fre
On 10/7/2009 8:01 PM, Rob McEwen wrote:
Blaine Fleming wrote:
I know my users never see .cn domains in their inbox
and if I didn't run a blacklist I wouldn't either.
Which brings up an interesting idea. I wonder how many legit non-spam
..cn domains exist? Surely it is a fraction of a percent o
1 - 100 of 255 matches
Mail list logo