See below for content. I forgot to send this to the list.
John Rudd wrote:
Thomas Bolioli wrote:
It seems to have an issue with mail sent through forwarders like
alumni accounts and one mail type systems. I am sending you a note
off line with the details.
No... it doesn't look that way at a
Thomas Bolioli wrote:
It seems to have an issue with mail sent through forwarders like alumni
accounts and one mail type systems. I am sending you a note off line
with the details.
No... it doesn't look that way at all.
If you read the spam report headers, it clearly states what the problem
John Rudd wrote:
Botnet 0.7 is up and available.
http://people.ucsc.edu/~jrudd/spamassassin/Botnet-0.7.tar
Botnet is a SpamAssassin plugin which attempts to identify hosts which
are likely to be spambot/virusbot hosts, using various DNS
fingerprints of the submitting relay.
New things i
Codger wrote:
I keep getting this error generated in the console (OS X 10.4.8 with
Perl 5.8.6 I believe).
Dec 25 18:49:07 mail spamd[2660]: Use of uninitialized value in string
eq at /etc/mail/spamassassin/Botnet.pm line 564, line 69.\n
Eventually the spamd child processes stop processing a
I keep getting this error generated in the console (OS X 10.4.8 with
Perl 5.8.6 I believe).
Dec 25 18:49:07 mail spamd[2660]: Use of uninitialized value in
string eq at /etc/mail/spamassassin/Botnet.pm line 564, line
69.\n
Eventually the spamd child processes stop processing and then fin
On Fri, 22 Dec 2006, John Rudd wrote:
> >>> 8) The file Botnet.variations.txt exists now with different suggested
> >>> alternative ways to do Botnet rules.
> >
> > Thanks for this. We have to use the meta method to have BOTNET not trigger
> > when other rules hit to avoid collateral damage on c
Rob Mangiafico wrote:
On Thu, 21 Dec 2006, John Rudd wrote:
1) BOTNET_SOHO -- If the sender's (chosen from Envelope-From,
Return-Path, or From, in that order) mail domain (the part after the @
sign) resolves back to the relay's IP address, or has an MX host which
resolves back to the IP addres
On Thu, 21 Dec 2006, John Rudd wrote:
> > 1) BOTNET_SOHO -- If the sender's (chosen from Envelope-From,
> > Return-Path, or From, in that order) mail domain (the part after the @
> > sign) resolves back to the relay's IP address, or has an MX host which
> > resolves back to the IP address, AND t
Botnet.pm had a small problem in it (I rewrote the IPINHOSTNAME check,
and forgot one of the 4 stanzas, so some hosts may have gotten past it).
I've put up a new version of the tar file with the problem fixed.
Since there weren't any other problems, I'm not incrementing the version
number or
Botnet 0.7 is up and available.
http://people.ucsc.edu/~jrudd/spamassassin/Botnet-0.7.tar
Botnet is a SpamAssassin plugin which attempts to identify hosts which
are likely to be spambot/virusbot hosts, using various DNS fingerprints
of the submitting relay.
New things in 0.7:
1) BOTNET
10 matches
Mail list logo
