On Mon, 05 Nov 2018 12:14:50 -0500
Bill Cole wrote:
. I would guess that with some authoritative
> servers refusing to serve invalid names and some resolvers refusing
> to resolve them, it would be a low-yield tactic to use them to evade
> filtering.
Authoritative nameservers are potentially un
--On Monday, November 05, 2018 12:14 PM -0500 Bill Cole
wrote:
FWIW, BIND 9.x (since 9.4-ish) will parse and load a zone with such an A
in it, but complains and does not serve the record: NXDOMAIN for a normal
query, no hint of it in a zone transfer.
BIND's check-names directive controls whe
On 5 Nov 2018, at 9:44, RW wrote:
I created an A-record at Namecheap for a_b.mydomain.tld and
neither firefox nor chromium had a problem with it.
That's interesting and unfortunate because 'a_b' is unequivocally a
violation of the syntax for hostnames. It may be acceptable as a DNS
label, bu
On Mon, Nov 05, 2018 at 02:44:29PM +, RW wrote:
> On Sun, 04 Nov 2018 19:28:02 -0500
> Bill Cole wrote:
>
> > On 4 Nov 2018, at 16:27, Henrik K wrote:
> >
> > > Can someone actually register and use a domain with underscore in
> > > it?
> >
> > No.
> >
> ...
> > I support the concept of
On Sun, 04 Nov 2018 19:28:02 -0500
Bill Cole wrote:
> On 4 Nov 2018, at 16:27, Henrik K wrote:
>
> > Can someone actually register and use a domain with underscore in
> > it?
>
> No.
>
...
> I support the concept of not treating domain-name-like strings that
> are not valid hostnames as if t
.local is a valid tld for LANs.
Please do not mess with the DNS.
On Sun, Nov 4, 2018 at 17:14, Benny Pedersen wrote:
> is it a problem ?
>
> i think it should be solved to make configfiles local dns resolved only,
> if at all it needs to be dns
>
> so cf changes to cf.localdomain or cf.localhost
--On Sunday, November 04, 2018 7:28 PM -0500 Bill Cole
wrote:
most of my examples of "Not A URI" were in fact turned into clickable
links by some horrific MUA.
If it's clickable, some user will click on it. If it's not, a malicious
message may beg the user to copy and paste it into the brow
On Sun, 4 Nov 2018, John Hardin wrote:
Why is your system doing that?
...never mind, explained in a later post.
--
John Hardin KA7OHZhttp://www.impsec.org/~jhardin/
jhar...@impsec.orgFALaholic #11174 pgpk -a jhar...@impsec.org
key: 0xB8732E79 -- 2D8C 34F4 6411 F
On Sun, 4 Nov 2018, Benny Pedersen wrote:
Bill Cole skrev den 2018-11-04 19:25:
On 4 Nov 2018, at 11:45, Grant Taylor wrote:
Why does it matter if there's a naming collision between DNS domain names
and file names?
Discussion of config files for SpamAssassin and Postfix has
intermittently b
On 4 Nov 2018, at 16:27, Henrik K wrote:
Can someone actually register and use a domain with underscore in it?
No.
It is worth noting that the SA "standard" for what is treated as a
domain part of an URI is grounded in how MUAs behave, not in conformance
to to any well-defined specification
On 11/04/2018 04:02 PM, Grant Taylor wrote:
I have been downloading a daily lists of newly registered domains
for almost a year.
I have grand plans of turning the data into an RBL (of sorts) that I can
use to artificially add score to young domain names. Something like
last day, last week,
On 11/04/2018 02:27 PM, Henrik K wrote:
It does seems wasteful parsing 72_foobar.cf as a legal domain.
Agreed.
Can someone actually register and use a domain with underscore in it?
I don't know.
Does anyone have access to some URIBL data, is something actually listed
with an underscore? I
On Sun, Nov 04, 2018 at 04:12:12PM -0500, Bill Cole wrote:
>
> That would be SpamAssassin itself. The policy of treating anything matching
> '[-a-zA-Z0-9_]+\.' as an URI in all contexts dates back to v3.3.1
> at least. See https://bz.apache.org/SpamAssassin/show_bug.cgi?id=6716 and
> note this scan
On 4 Nov 2018, at 14:48, Matus UHLAR - fantomas wrote:
On 4 Nov 2018, at 11:45, Grant Taylor wrote:
Why does it matter if there's a naming collision between DNS domain
names and file names?
Bill Cole skrev den 2018-11-04 19:25:
Discussion of config files for SpamAssassin and Postfix has
int
On 4 Nov 2018, at 11:45, Grant Taylor wrote:
Why does it matter if there's a naming collision between DNS
domain names and file names?
Bill Cole skrev den 2018-11-04 19:25:
Discussion of config files for SpamAssassin and Postfix has
intermittently been matched by URI DNSBLs. Some years ago I
On 11/04/2018 11:48 AM, Benny Pedersen wrote:
Nov 3 03:22:50 localhost named[2301]: connection refused resolving
'72_scores.cf/NS/IN': 2a04:1b00:6::1#53
Nov 3 03:22:50 localhost named[2301]: connection refused resolving
'72_scores.cf/A/IN': 2a04:1b00:6::1#53
Nov 3 14:59:26 localhost named[230
Bill Cole skrev den 2018-11-04 19:25:
On 4 Nov 2018, at 11:45, Grant Taylor wrote:
Why does it matter if there's a naming collision between DNS domain
names and file names?
Discussion of config files for SpamAssassin and Postfix has
intermittently been matched by URI DNSBLs. Some years ago I
On 4 Nov 2018, at 11:45, Grant Taylor wrote:
> Why does it matter if there's a naming collision between DNS domain names and
> file names?
Discussion of config files for SpamAssassin and Postfix has intermittently been
matched by URI DNSBLs. Some years ago I discovered just how widespread dumb
On Sun, 4 Nov 2018, Benny Pedersen wrote:
is it a problem ?
i think it should be solved to make configfiles local dns resolved only, if
at all it needs to be dns
so cf changes to cf.localdomain or cf.localhost, not just use cf with is a
valid cctlds :(
is cf.local valid and where ?
i hav
On 11/04/2018 09:14 AM, Benny Pedersen wrote:
is it a problem ?
i think it should be solved to make configfiles local dns resolved only,
if at all it needs to be dns
so cf changes to cf.localdomain or cf.localhost, not just use cf with is
a valid cctlds :(
is cf.local valid and where ?
i
> I think you will have to ask the VHCS people. Their site is
> all in German; and, I don't speak German. So I could not
> glean anything from their site at all when I searched for
> SpamAssassin.
I had the same problem unfortunately, but thank you all for trying, it is
most appreciated.
--
Ja
> grep the source of VHCS for spamassassin or required_score?
Unfortunately, VHCS does not come with SpamAssassin, it was installed after
as part of the following command...
apt-get install clamav clamav-daemon amavisd-new spamassassin
Which must have modified postfix at install time to invoke i
James Smith wrote:
Or to attack the problem from the other end, are there any files
on your system that contain required_score 4
>>>
>>> What would be the best way to find that out?
>
>> I have always just used a locate local.cf andlocate
>> user_prefs this will tell you al
> > > Or to attack the problem from the other end, are there
> any files on
> > > your system that contain
> > > required_score 4
> >
> > What would be the best way to find that out?
> I have always just used a locate local.cf andlocate
> user_prefs
> this will tell you all of the f
Quoting James Smith <[EMAIL PROTECTED]>:
> > Or to attack the problem from the other end, are there any
> > files on your system that contain
> > required_score 4
>
> What would be the best way to find that out?
>
I have always just used a locate local.cf andlocate user_prefs
this wi
> Or to attack the problem from the other end, are there any
> files on your system that contain
> required_score 4
What would be the best way to find that out?
--
Jay
> > On running 'spamassassin -D --lint' it claims to use those config
> > files, and does indeed (as shown by the TEST_E at the end of the
> > output) but it must be using diferent configs when invoked from the
> > mail server. My mail headers list tests not in this list, and only
> > requires
> > No sign of TEST_E and I made sure there was an e in the subject as
> > well as the body and other headers so this config file clearly isn't
> > being read properly. Any other ideas where else I could configure SA
> > from?
I forget, are you running spamd? You need to restart it for new rules
From: <[EMAIL PROTECTED]>
James Smith wrote:
On running 'spamassassin -D --lint' it claims to use those config
files, and does indeed (as shown by the TEST_E at the end of the
output) but it must be using diferent configs when invoked from the
mail server. My mail headers list tests not in this
[EMAIL PROTECTED] wrote:
> This addresses one of my concerns. If there are multiple local.cf
> files, if children are spawned (correct term?) could they possible
> access the other files. Specifically, some of my ham, which is
> obviously spam seems to be comparing to another required_hits score
This addresses one of my concerns. If there are multiple local.cf files, if
children are spawned (correct term?) could they possible access the other
files. Specifically, some of my ham, which is obviously spam seems to be
comparing to another required_hits score. Obviously, this causes problem
Matthew.van.Eerde wrote:
> James Smith wrote:
>> On running 'spamassassin -D --lint' it claims to use those config
>> files, and does indeed (as shown by the TEST_E at the end of the
>> output) but it must be using diferent configs when invoked from the
>> mail server. My mail headers list tests n
James Smith wrote:
> On running 'spamassassin -D --lint' it claims to use those config
> files, and does indeed (as shown by the TEST_E at the end of the
> output) but it must be using diferent configs when invoked from the
> mail server. My mail headers list tests not in this list, and only
> req
> > > Run 'spamassassin -D --lint' and take a look at the
> output. It will
> > > list all of the config files that it uses in the debug output.
> >
> > It claims to be using the one I am modifying, it lies!
On running 'spamassassin -D --lint' it claims to use those config files, and
does inde
James Smith wrote:
>
> > Run 'spamassassin -D --lint' and take a look at the output. It
> > will list all of the config files that it uses in the debug
> > output.
>
> It claims to be using the one I am modifying, it lies!
Post the full output from that command so we can see what it is doing.
> Please keep list traffic on the list.
Yeah, sorry about that, I keep hitting reply without thinking but this
mailing list doesn't fix the reply-to header like my others do. Appologies.
> The only thing I can tell you is what I told you (at least I
> think it was you) earlier.
It was.
> Run
James Smith wrote:
> > Make a rule that hits everything with a low score. Something like
> > this:
> >
> > Header TEST_E ALL =~ /e/
> > Describe TEST_E Found an E in the header
> > Score TEST_E 0.01
> >
> > This will fire on every email, but with a low score, it
> > shouldn't affect
> Make a rule that hits everything with a low score. Something like
> this:
>
> Header TEST_E ALL =~ /e/
> Describe TEST_E Found an E in the header
> Score TEST_E 0.01
>
> This will fire on every email, but with a low score, it shouldn't
> affect spam detection.
Ok, I inserted thos
James Smith wrote:
>
> > The default value for required_score is 5.0, so I'm wondering
> > where the 4.0 comes from in the first place. How are you running
> > SA?
>
> I was wondering that myself, last time I used SA it was on a fully
> self configured system, this time it is Ubuntu (Debian der
> Ah, Debian. :/
Not a big fan myself, but thought I would give Ubuntu a try...
> The other place SA configuration files will show up is in
> ~/.spamassassin. These are per-user files, and set up
> *slightly* differently than the main files. There is one file
> (~/.spamassassin/user_prefs) t
James Smith wrote:
I am having some trouble finding the spamassassin config files on my system.
I have got /etc/mail/spamassassin with local.cf and init.pre, I have
/etc/spamassassin
^
Ah, Debian. :/
> I am using Ubuntu with VHCS if that helps.
OK, a Debian derivative. Sam
James Smith wrote:
> > Run 'spamassassin -D --lint' and look for a line like the following:
> >
> > [18246] dbg: config: read file /etc/mail/spamassassin/init.pre
>
> Thanks, I got...
> debug: config: read file /etc/spamassassin/init.pre
>
> But the only thing in that file NOT commented is the l
> Run 'spamassassin -D --lint' and look for a line like the following:
>
> [18246] dbg: config: read file /etc/mail/spamassassin/init.pre
Thanks, I got...
debug: config: read file /etc/spamassassin/init.pre
But the only thing in that file NOT commented is the loading of 3 plugins
(spf, hashcash
James Smith wrote:
> Sorry, should have mentioned that /etc/mail/spamassassin is a link to
> /etc/spamassassin not a directory.
Run 'spamassassin -D --lint' and look for a line like the following:
[18246] dbg: config: read file /etc/mail/spamassassin/init.pre
--
Bowie
Sorry, should have mentioned that /etc/mail/spamassassin is a link to
/etc/spamassassin not a directory.
--
Jay
45 matches
Mail list logo
