On 11/10/2014 09:01 AM, Rich Wales wrote:
/do we have your permission to add this rule to SA's masscheck /
autopromoting ?/
Yes, by all means, go ahead.
Thanks,
Commited to
http://svn.apache.org/repos/asf/spamassassin/trunk/rulesrc/sandbox/emailed/sa_users_contrib.cf
masscheck results w
> /do we have your permission to add this rule to SA's masscheck /
> autopromoting ?/
Yes, by all means, go ahead.
--
*Rich Wales*
ri...@richw.org
On 11/10/2014 02:32 AM, Rich Wales wrote:
This *AXB_XRCVD_8B8* rule seems excessively broad to me. It seems it
could wrongly catch e-mail that was legitimately Amavis-scanned on its
way out by a server whose name just happened to be eight characters long.
I think a better rule would take advant
This *AXB_XRCVD_8B8* rule seems excessively broad to me. It seems it
could wrongly catch e-mail that was legitimately Amavis-scanned on its
way out by a server whose name just happened to be eight characters long.
I think a better rule would take advantage of other anomalies with these
fake heade
>Yeah they tried a similar trick with MailScanner years ago, basically dont
>trust someone elses mail to tell the truth as per usual
You are right about trust, but in this case we can detect fake amavis-headers
and score bigtime in a safe way. And from what I can tell from my logs it hits
Yeah they tried a similar trick with MailScanner years ago, basically dont
trust someone elses mail to tell the truth as per usual
On Sunday, 9 November 2014, Marieke Janssen wrote:
> >hitting like crazy and safe
>
> Confirmed, thank you.
>
> /MJ
>
>
--
--
Martin Hepworth, CISSP
Oxford, UK
>hitting like crazy and safe
Confirmed, thank you.
/MJ
On 11/09/2014 06:59 PM, Axb wrote:
On 11/09/2014 06:45 PM, Rich Wales wrote:
Hi. Recently, I've noticed that some spam arriving on my mail server
contains a "Received:" header line citing amavisd-new -- possibly an
attempt to trick spam filters into concluding the message has already
been scann
On 11/09/2014 06:45 PM, Rich Wales wrote:
Hi. Recently, I've noticed that some spam arriving on my mail server
contains a "Received:" header line citing amavisd-new -- possibly an
attempt to trick spam filters into concluding the message has already
been scanned and is presumably free of problem
Hi. Recently, I've noticed that some spam arriving on my mail server
contains a "Received:" header line citing amavisd-new -- possibly an
attempt to trick spam filters into concluding the message has already
been scanned and is presumably free of problems.
Here is an example of one of these -- t
10 matches
Mail list logo
