Nice idea. We were considering this for a long time because our mail server
has built in support for email throttling. Luckily for me, configuring it
will be done by my colleague as it is his part of the job. Tomorrow morning
I will happily inform him that throttling is needed and suggested by som
Thank you Joseph,
I'm glad that it is social engineering and not some virus problem. I will
arrange that all users are informed that they will never be asked for their
passwords by email and we will see if in some time number of issues will
fall down.
Giga
Joseph Brennan wrote:
>
>
> If it's
Hi Greg,
I looked at Received headers and unfortunately, Received headers added by
our webmail are not standard ones. Except for the proxy.IP in the following
example, all IPs and all FQDNs are from our servers. Here is the (ugly)
example:
Received: from our.domain ([our.webmail.private.IP])
by
Hi all,
We have some strong spam attacks done by combination of our webmail, viruses
and open proxies.
Situation is like this:
Our outgoing SMTP server is open only for users from our IP addresses and is
filtered for rest of the world. Our webmail interface is open to whole world
as our users ne
Matus UHLAR - fantomas wrote:
>
> We've had similar problem. It was caused by our clients who did not SMTP
> authentication and sent mail to our clients, so they were really sending
> mail from outlook express to the destination server (we use the same
> servers
> for primary MX as for outgoing
Daryl C. W. O'Shea wrote:
>
>
> Please post the full received headers of the problem message and your
> trusted/internal/msa networks config. If you're paranoid about publicly
> posting them you can send them to me directly.
>
> Daryl
>
>
Hi Daryl,
Email system will not use NAT so IP adre
I'm testing SpamAssassin and I'm getting false positives. Both tests
ALL_TRUSTED and DOS_OE_TO_MX are firing for emails sent by Outlook Express
for local clients and it seems like I have something wrong in *_networks.
Here is my setup:
All my servers and my clients IP are in trusted_networks
First
Thank you Jeff and Anthony.
If I'm right, there is big possibility for SpamAssassin to mark as spam some
email from for example doubleclick or other companies if there is
personalized URL in it because it can look like spam or even like phishing.
If I'm protecting only my mailbox it will be ok to
Hi Justin,
Thank you for that. I'm back to Mail::SpamAssassin::Conf to take that lesson
again ;)
Regard,
Giga
Justin Mason wrote:
>
>
> yes, this is easily done -- look up "trusted_networks" and
> "internal_networks" settings.
>
> --j.
>
>
--
View this message in context:
http://www.na
Hi Anthony,
I will ask people from MailScanner also but for my email system is not
possible to use MailScanner directly so I'm using spamd. My question is
about lowering chances for false positives by having safe list from
MailScanner. But since I just started to use SpamAssassing I'm asking is i
I would like to split SpamAssassin test in two parts:
a) all test except in b) ;)
b) several expensive test which can not produce negative score
If after doing tests in a) score is greater than needed I would like to stop
scanning with spam result. If score is not big enough I would like that
Spam
Some of our IP address blocks are in some RBL list just because we use those
IPs for ADSL and that is normal. For example in SORBS Dynamic IP Space (LAN,
Cable, DSL & Dial Ups) – SORBS DUHL.
We need some way to exclude in testing our IP addresses from SORBS DUHL but
not from other SORBS lists. Is
I have question about one list from MailScanner. It is list at
http://www.mailscanner.info/phishing.safe.sites.conf.master and here is part
of text from it:
This file contains the list of all the sites which can be safely ignored in
the "phishing fraud" checks.
My question can it be used by SpamA
13 matches
Mail list logo
