on a hardcoded per user or
IP setting.
--
Mike Cardwell https://grepular.com https://emailprivacytester.com
OpenPGP Key35BC AF1D 3AA2 1F84 3DC3 B0CF 70A5 F512 0018 461F
XMPP OTR Key 8924 B06A 7917 AAF3 DBB1 BF1B 295C 3C78 3EF1 46B4
signature.asc
Description: Digital signature
the
score, that would be sufficient.
> You can fairly easily write a meta that reverses the score of each RBL
> and SPF rule if your condition fires.
Any chance you could point me to an example of how to do this?
--
Mike Cardwell https://grepular.com https://emailprivacytester.com
OpenPGP Ke
is that I believe
I would have to write a rule for every single RBL and keep those rules
up to date whenever a new RBL is added or score updated by upstream.
Is there any way of avoiding that?
--
Mike Cardwell https://grepular.com https://emailprivacytester.com
OpenPGP Key35BC AF1D 3AA2 1F84
d be sorted within SpamAssassin its
self. Opinions?
--
Mike Cardwell
(https://secure.grepular.com/) (http://perlcv.com/)
pts on each of them. This works for us because the usernames follow
a very specific format, and our password policy is quite strict meaning
that the number of possible username/password combos we pull out of
emails is quite low.
It has been very successful for us.
--
Mike Cardwell
(https://secure.grepular.com/) (http://perlcv.com/)
data using Kochi by hooking it
into Squid or some other HTTP proxy. It should be no more difficult than
scanning outgoing email is.
Of course, that only helps if your users are accessing the web from
within your sphere of control at the time. Phishers are unlikely to use
SSL for this.
--
er the World.
You could also use rbls like sbl-xbl.spamhaus.org if you wanted as well
of course.
--
Mike Cardwell
(https://secure.grepular.com/) (http://perlcv.com/)
dnslists = example.com/${md5:$sender_address}
message = $sender_address is listed on $dnslist_domain
--
Mike Cardwell
(https://secure.grepular.com) (http://perlcv.com/)
t starts getting 10x the size, DNS will start looking
attractive..
This might sound a big picky, but using backticks to call the date
command in a perl script is horrible. Try using the standard gmtime
function. Eg:
$date = gmtime().' (UTC)';
Rather than:
$date = `date -u`; chomp($d
re you actually serious or is this some geek humor that I don't get?
I was serious. Your code is a bit shit. I was just trying to help. Never
mind.
If you are serious, would you be willing to audit SpamAssassin code with such
enthusiasm? It might actually _matter_.
No, I'm too busy.
thread be an inspiration for all coders out there.
Now back to the real world..
Sorry, I assumed that if you were releasing source code to the public,
you'd want to make sure it was cross platform compatible. I wont point
out the various other limitations with your script then.
--
Mike
ail.address". There's no advantage of sticking the email
address in the TXT record rather than having a separate file, apart from
keeping the data together.
--
Mike Cardwell
(https://secure.grepular.com/) (http://perlcv.com/)
Adam Katz wrote:
Mike Cardwell contended:
It would definitely require a hashing algorithm, like MD5. IIRC
there is a maximum length for a hostname, and that is 255
characters. What if the hostname in your email address is 255
characters long on it's own...?
When MD5sums were first pro
to 'game'
the system... just basic estimates will do)
There's actually a mailing list for the project. You're probably better
off asking these questions there:
http://groups.google.com/group/anti-phishing-email-reply-discuss
--
Mike Cardwell
(https://secure.grepular.com/) (http://perlcv.com/)
like this to the rbl:
^(?i)https?://[a-z]+\.example\.com/unsubscribe\.cgi\?id=\d+$
And:
^(?i)customer-service-[a-z]...@example\.(?:com|co\.uk)$
--
Mike Cardwell
(https://secure.grepular.com/) (http://perlcv.com/)
sending emails *to* those addresses. Many organisations rightly or
wrongly don't perform spam filtering on their outgoing relays so
spamassassin is a bit over the top when you can just use another dns
based bl.
--
Mike Cardwell
(https://secure.grepular.com/) (http://perlcv.com/)
0.6
AC == 127.0.0.10
etc.
So the entry for 'abus...@live.com' only has an 'A' type.
host account-teamd...@live.com.phish.icaen.uiowa.edu. => 127.0.0.10
so the entry for 'account-teamd...@live.com' has an 'A' & 'C' type.
Yeah, that might be a good idea.
--
Mike Cardwell
(https://secure.grepular.com/) (http://perlcv.com/)
Adam Katz wrote:
For listing both emails and uri's it would be useful if you could add
regular expressions. [...]
Steve Freegard responded:
Yuck; if you want to do stuff using regexp then:
uri RULE_NAME //
score RULE_NAME nn.nnn
Is the best way to do this - not via DNS.
Mike Car
er
Education institutions in the UK and USA. It was originally discussed on
a mailing list run by "nd.edu" which can only be subscribed to by people
who are in that particular sector. For that particular group, the list
has been useful. How useful it is for people outside of that
t; into google. If not, please
clarify ...
--
Mike Cardwell
(https://secure.grepular.com/) (http://perlcv.com/)
l SPF.
--
Mike Cardwell
(https://secure.grepular.com/) (http://perlcv.com/)
"If you have mail accounts for users who are not on your network then
you have an obligation to allow those users access to your mailserver."
He was responding to me in that email, not you. I just didn't want to
repeat what everyone else had already said.
--
ver the Internet faster. What do you think?"
People wouldn't respond with, "That's a bad idea because x", they'd
respond with "Don't be stupid", and "That's a crap idea." And I'd thank
them for it, and commit myself.
--
Mike Cardwell
(https://secure.grepular.com/) (http://perlcv.com/)
receiving.
If that regular expression matches, and the connecting host is in a list
of what I refer to as "dodgy countries," then I reject the email.
--
Mike Cardwell
(https://secure.grepular.com/) (http://perlcv.com/)
od yes. If the banks were serious about combating online
fraud, you'd expect them to come together and agree on a standard for
sending their email, eg they could all use DKIM. They should also
publish a combined directory of their own domain names.
--
Mike Cardwell
(https://secure.grepular.com/) (http://perlcv.com/)
a similar result
for connections that use the 8BITMIME extension to ESMTP.
Another indicator that the connecting host isn't a zombie, is if it uses
STARTTLS.
This is all useful information that spamassassin is missing out on. I'm
sure there are many more signatures that spamassassin
eived headers though...
--
Mike Cardwell
(https://secure.grepular.com/) (http://perlcv.com/)
Mike Cardwell wrote:
Justin Mason wrote:
hi -- this stuff is generally recorded in the Received header, and SA
will act on it if it's there. that's the place to do it...
The "STARTTLS" example is recorded in the received headers, yes. None of
the other 3 examples
offers the SIZE extension, and the
connecting host then uses it, the connecting host probably isn't a
zombie. What you do with that metric is up to you...
--
Mike Cardwell
(https://secure.grepular.com/) (http://perlcv.com/)
A cool idea would be an application in a similar vain to p0f, but which
passively detected the SMTP client software, rather than operating
system. It might then be possible to distribute signatures that
identified specific zombie software, as well as real mtas.
--
Mike Cardwell
(https://se
particular.
--
Mike Cardwell
(https://secure.grepular.com/) (http://perlcv.com/)
c can explain how it
managed to get on the whitelist. No ISP SMTP server should be in a
whitelist imho...
--
Mike Cardwell
(https://secure.grepular.com/) (http://perlcv.com/)
Matus UHLAR - fantomas wrote:
I've also just recently enabled these lists in SA so am still in the
very early stages of testing. I initially did get one FP hit against
the whitelist (spam message sent through an ISP smtp server in the
whitelist)
On 20.05.09 13:41, Mike Cardwell wrote
m" (without the quotes). There
are results... There are examples of spam from that host.
2.) Strip mta242c.dm-4.com down to it's domain name part and visit
http://dm-4.com/ or http://www.dm-4.com/. There are a bunch of keywords
on that page that should flag up warnings. Eg,
sts."
It quite clearly states that all email from whitelisted hosts is ham.
--
Mike Cardwell
(https://secure.grepular.com/) (http://perlcv.com/)
gth(256*256*256*256)."\n";'
10
r...@haven:~#
Still, if you were doing that, you'd want to use an integer rather than
a varchar preferably.
--
Mike Cardwell - IT Consultant and LAMP developer
Cardwell IT Ltd. (UK Reg'd Company #06920226) http://cardwellit.com/
t the unsubscribe instructions.
--
Mike Cardwell - IT Consultant and LAMP developer
Cardwell IT Ltd. (UK Reg'd Company #06920226) http://cardwellit.com/
found that using the whitelist was causing a lot of spam to get
through but not helping to get more ham through, so I decided to
"reduce" the recommended score on the website from "-5" to "-0.2".
--
Mike Cardwell - IT Consultant and LAMP developer
Cardwell I
s lookups against the domain first to
make sure it's valid, before doing the uribl lookup. Eg:
m...@haven:~$ host -t ns invented.by
invented.by does not exist, try again
m...@haven:~$
You'd also want to cache your results. This conversation however is
pointless. Why not just try i
Hi,
I've started seeing spam email containing an X-Mailer header which is
the domain name of the From header. Eg:
From: "Compare and Cover Life"
X-Mailer: webguide103.com
How would I construct a spamassassin rule to check for this?
--
Mike Cardwell - IT Consultant and
tantContact API:
http://search.cpan.org/~arich/Email-ConstantContact-0.02/lib/Email/ConstantContact.pm
I just thought it was a weird coincidence, seeing as I'd never heared of
them before today.
--
Mike Cardwell - IT Consultant and LAMP developer
Cardwell IT Ltd. (UK Reg'
Aaron Wolfe wrote:
I think the point was that the URIBL's are never going to be listing
these domains, so why waste time looking them up
m...@haven:~$ host constantcontact.com.multi.uribl.com
constantcontact.com.multi.uribl.com A 127.0.0.4
m...@haven:~$
--
Mike Cardwell
f,
list each of the cuda headers like this:
bayes_ignore_header X-CudaHeader1
bayes_ignore_header X-CudaHeader2
bayes_ignore_header X-CudaHeader3
--
Mike Cardwell - IT Consultant and LAMP developer
Cardwell IT Ltd. (UK Reg'd Company #06920226) http://cardwellit.com/
snowweb wrote:
What makes you think anyone can answer that? The message you posted to
pastebin for us to test and review was nonexistent.
What is 'pastebin' and how do I use it?
http://lmgtfy.com/?q=pastebin
--
Mike Cardwell - IT Consultant and LAMP developer
Cardwell IT Ltd.
ponse in my mailbox. Far more efficient than forum
software.
--
Mike Cardwell - IT Consultant and LAMP developer
Cardwell IT Ltd. (UK Reg'd Company #06920226) http://cardwellit.com/
ticipants join there,
which is what makes all the difference.
Set up the forum. It might work. I'm not anti-forum, I just think
mailing lists are generally better.
--
Mike Cardwell - IT Consultant and LAMP developer
Cardwell IT Ltd. (UK Reg'd Company #06920226) http://cardwellit.com/
derbird, I have an addon installed named "Reply to
mailing list" which adds a button "Reply list" inbetween "Reply" and
"Reply All" which has been very useful.
--
Mike Cardwell - IT Consultant and LAMP developer
Cardwell IT Ltd. (UK Reg'd Company #06920226) http://cardwellit.com/
Hi,
I just started using the SOUGHT rules for the first time. They seem to
be triggering on emails now, but the default score for hits against the
rules seems to be 3.0 and 4.0. That seems quite high to me. Are these
rules considered to have an extremely low false positive impact?
--
Mike
e tin, bidirectional mailing list<->newsgroup gating.
--
Mike Cardwell - IT Consultant and LAMP developer
Cardwell IT Ltd. (UK Reg'd Company #06920226) http://cardwellit.com/
the developers and other active participants join
there,
which is what makes all the difference.
Set up the forum. It might work. I'm not anti-forum, I just think
mailing lists are generally better.
I too prefer mailing lists. but I think it's because I am used to. and
firefox eats too muc
t few would disagree, that you're more likely
to get a false positive from the first than the second.
Or were you ignoring the large bright red warning signs and usage
information on http://www.backscatterer.org/ ?
--
Mike Cardwell - IT Consultant and LAMP developer
Cardwell IT Ltd.
e faulty automated system for populating
the list.
This might be more accurate:
accept !senders = :
dnslists= ips.backscatterer.org
I see. You think "Host sends backscatter" therefore "Host never sends
spam". An interesting hypothesis.
--
Mike Cardwell - IT Cons
rs or does sender callouts"
--
Mike Cardwell - IT Consultant and LAMP developer
Cardwell IT Ltd. (UK Reg'd Company #06920226) http://cardwellit.com/
#x27;t see that it even mentions the SAV problem?
I think it mentions the mailing back, not the SAV,
and I'm interested if the backscatterer.org blacklists IPs with SAV or only
those that send real mails...
It does both. The minimal amount of text on the front page couldn't be
clearer
Matus UHLAR - fantomas wrote:
I've read the "sender callouts" page and I don't see any evidence that it
mentions the SAV problem.
On 07.08.09 15:33, Mike Cardwell wrote:
I went to the front page, and then clicked "Sender Callouts" ... The
very first line s
responds with a temporary error
if it can't speak to SpamAssassin.
--
Mike Cardwell - IT Consultant and LAMP developer
Cardwell IT Ltd. (UK Reg'd Company #06920226) http://cardwellit.com/
ontents of all of the hostkarma
lists. I still use them sensibly in my own SpamAssassin configuration
though for applying low scores.
--
Mike Cardwell - IT Consultant and LAMP developer
Cardwell IT Ltd. (UK Reg'd Company #06920226) http://cardwellit.com/
rich...@buzzhost.co.uk wrote:
I've not laughed so much since I added a low priority mx pointing to
127.0.0.1 .
Heh. Looks like someone got there before me:
http://rfc-ignorant.org/tools/lookup.php?domain=buzzhost.co.uk
--
Mike Cardwell - IT Consultant and LAMP developer
Cardwell I
How would I create a rule to match when a subject line begins /^Re: /i
but the message contains no References or In-Reply-To headers?
--
Mike Cardwell - IT Consultant and LAMP developer
Cardwell IT Ltd. (UK Reg'd Company #06920226) http://cardwellit.com/
Date: is 96 hours or more before Received: date
Although the date header was badly formatted, it wasn't actually
incorrect as far as when the message was sent. I don't think the
DATE_IN_PAST rules should fire if the date isn't valid in the first place...
--
Mike Cardwell - IT
e doesn't already exist.
Line wrapping in headers is messed with too.
There's probably loads of other little things.
--
Mike Cardwell - IT Consultant and LAMP developer
Cardwell IT Ltd. (UK Reg'd Company #06920226) http://cardwellit.com/
d in the last 5 days under the .BIZ, .COM, .INFO,
.NAME, .NET and .US TLDs"
Doesn't work for .cn's, or any other country level tld's (apart from .us)
--
Mike Cardwell - IT Consultant and LAMP developer
Cardwell IT Ltd. (UK Reg'd Company #06920226) http://cardwellit.com/
single day from hosts listed on the HostKarma
whitelist. In comparison, it's very rare that I see any spam from hosts
listed on dnswl.org. I chose a score of -0.2 here.
--
Mike Cardwell - IT Consultant and LAMP developer
Cardwell IT Ltd. (UK Reg'd Company #06920226) http://cardwellit.com/
o it". By all means, reply, but there's no need to
reply to the list.
--
Mike Cardwell - IT Consultant and LAMP developer
Cardwell IT Ltd. (UK Reg'd Company #06920226) http://cardwellit.com/
0.0.2
RCVD_IN_XBL - 127.0.0.[45678]
RCVD_IN_PBL - 127.0.0.1[01]
--
Mike Cardwell - IT Consultant and LAMP developer
Cardwell IT Ltd. (UK Reg'd Company #06920226) http://cardwellit.com/
y, I've just updated RCVD_IN_SBL to
match 127.0.0.[23] for now, but I wouldn't expect it to be added to the
main distribution until it was properly tested.
--
Mike Cardwell - IT Consultant and LAMP developer
Cardwell IT Ltd. (UK Reg'd Company #06920226) http://cardwellit.com/
der
putting the SpamHaus checks before SpamAssassin, but until then I may as
well use the resources I have available.
--
Mike Cardwell - IT Consultant and LAMP developer
Cardwell IT Ltd. (UK Reg'd Company #06920226) http://cardwellit.com/
a single dns lookup like this:
deny dnslists = zen.spamhaus.org=127.0.0.2
dnslists = zen.spamhaus.org=127.0.0.4
You can be 100% backwards compatible by leaving all of your lists as
they are, but then adding another one which is a combined version of all
of them...
--
Mike Cardwell - IT Consu
ven
though it's not fully ready for other people to use, so I've temporarily
stuck it up at https://secure.grepular.com/WebsiteScanner/ in case
anyone wants to pick it a part and use bits of it.
--
Mike Cardwell - IT Consultant and LAMP developer
Cardwell IT Ltd. (UK Reg'd Company #06920226) http://cardwellit.com/
7;ll see a description of "Meta
rules" with a good example.
--
Mike Cardwell - IT Consultant and LAMP developer
Cardwell IT Ltd. (UK Reg'd Company #06920226) http://cardwellit.com/
Technical Blog: https://secure.grepular.com/blog/
0.71
9RCVD_IN_BSP_TRUSTED 294 1.800.00 19.77
10DKIM_VERIFIED 244 1.910.46 16.41
11RCVD_IN_DNSWL_LOW 176 1.110.04 11.84
--
Mike Cardwell - IT Consultant and LAMP developer
Cardwell IT Ltd. (UK Reg'd C
geocities specific rules any more if geocities doesn't
exist? It's not as if spammers can host their websites on geocities
anymore so there's no reason why a spammer would include a geocities url
in their spam. May as well just delete the rules...
--
Mike Cardwell - IT Consultant and
27;t be done with the help of this software.
rsync? unison? glusterfs? gfs over drdb? A nas with NFS/CIFS mounts?
DropBox? s3fs? There are a million ways to share files between multiple
servers.
--
Mike Cardwell - IT Consultant and LAMP developer
Cardwell IT Ltd. (UK Reg'd Company #06920226
rt of the list, there's
nothing stopping you from using every other feature of his lists without
using this particulary part. You wouldn't use a DNSBL without knowing
how it works first would you?
When I say, "you," I'm refering to the people using the JMF lists, not
sp
ache.org
whitelist_from_spf *...@spam-l.com
Very useful.
--
Mike Cardwell - IT Consultant and LAMP developer
Cardwell IT Ltd. (UK Reg'd Company #06920226) http://cardwellit.com/
Technical Blog: https://secure.grepular.com/blog/
mail into http://pastebin.com/ after
it has been processed by SpamAssassin, with the report header, then
reply to this email with the link. Then we can look at what is causing
the rules to trigger.
--
Mike Cardwell - IT Consultant and LAMP developer
Cardwell IT Ltd. (UK Reg'd Company #06920226) http://cardwellit.com/
Technical Blog: https://secure.grepular.com/blog/
user. In cases where there are multiple
recipients, it runs as the "nobody" user. This allows me to have per
user preferences and bayes applied to the vast majority of incoming
mail, during SMTP; only a tiny proportion of incoming mail here is
multi-recipient... YMMV
--
Mike Cardwell -
e how worked up some people get about the spam
problem. There are worse problems in life to get angry about.
--
Mike Cardwell - IT Consultant and LAMP developer
Cardwell IT Ltd. (UK Reg'd Company #06920226) http://cardwellit.com/
Technical Blog: https://secure.grepular.com/blog/
So you don't have to register a domain before you can register your IPs...
Which is it? Do I have to register a domain, or don't I? So I signed up
for an account and all I see is an option to register my domains with
them, and that costs money... I see no option for registering the IPs o
particular email was sent from a host in Nigeria connecting to a
host in Brazil. The Nigerian host is listed on Barracuda, the SBL and
the XBL. The From header uses a domain name that isn't registered
(swinepro.net) and a freemail Reply-To. It's also currently hitting Pyzor.
--
Mik
n of habeas was:
10HABEAS_ACCREDITED_SOI 367 1.450.00 17.36
So it hit on 17.36% of my Ham, and 0% of my Spam.
--
Mike Cardwell - IT Consultant and LAMP developer
Cardwell IT Ltd. (UK Reg'd Company #06920226) http://cardwellit.com/
Technical Blog: https://secure.grepular.com/blog/
ages reporting IP addresses with a key word like spam, ham,
> or other useful messages that we might want to gather information about.
> Data might look like this:
>
> spam 1.2.3.4 example.com
> ham 5.6.7.8 example2.com
What is "example.com" ? The envelope sender domain?
FH_DATE_PAST_20XX Date =~ /20[1-9][0-9]/ [if-unset: 2006]
Doesn't look particularly sane to me... I have given that rule a score
of 0 in my local.cf for now.
--
Mike Cardwell - IT Consultant and LAMP developer
Cardwell IT Ltd. (UK Reg'd Company #06920226) http://cardwellit.com/
Technical B
ing the Debian Lenny package with
the default settings has basically dropped from a spam threshold of 5.0
to 1.8 over night because of this...?
Also, the "fix" five months ago was to add 10 years to what is
classified as "grossly in the future"... That doesn't sound
7; that have the header 'From' set to an internal
user?
That would break a lot of list mail. Look at the From header compared to
the envelope sender on this email for example. I *think* you could
achieve what you're looking for by using DKIM and *requiring* that mail
from you
ing that crap. I just firewalled out his server after
the first dozen or so bounces.
--
Mike Cardwell: UK based IT Consultant, LAMP developer, Linux admin
Cardwell IT Ltd. : UK Company - http://cardwellit.com/ #06920226
Technical Blog : Tech Blog - https://secure.grepular.com/blog/
Spamalyser : Spam Tool - http://spamalyser.com/
tp://spamalyser.com/v/6xnb26gp/mime
Unlike with pastebin, it mime decodes emails and you can see the decoded
image at the bottom of that page.
Just thought some of you might be interested. It's quite new and
requires some work but the basic functionality is there.
--
Mike Cardwell: UK ba
On 11/01/2010 14:55, Charles Gregory wrote:
On Mon, 11 Jan 2010, Mike Cardwell wrote:
: I just copied and pasted that out of pastebin into a little project I've
: been working on. Here's the result:
: http://spamalyser.com/v/6xnb26gp/mime
Question: What does spamalyzer do with an HT
r I think that would also stop most
people from using the service. I'm trying to keep it simple.
Anywho, this is probably getting off topic now.
--
Mike Cardwell: UK based IT Consultant, LAMP developer, Linux admin
Cardwell IT Ltd. : UK Company - http://cardwellit.com/ #06920226
Technical Blog : Tech Blog - https://secure.grepular.com/blog/
Spamalyser : Spam Tool - http://spamalyser.com/
A PNG "thumbnail" generated from the PDF is displayed
along side text/html parts. Clicking that preview image takes you to the
PDF.
I've also tweaked some of the styling so the headers are easier to read.
I've also set up a mailman based mailing list which is linked to
header. If you
were to do SPF checks on the From header of this email it would be
rejected due to an SPF failure.
--
Mike Cardwell: UK based IT Consultant, LAMP developer, Linux admin
Cardwell IT Ltd. : UK Company - http://cardwellit.com/ #06920226
Technical Blog : Tech Blog - https
my Greek though.
--
Mike Cardwell: UK based IT Consultant, LAMP developer, Linux admin
Cardwell IT Ltd. : UK Company - http://cardwellit.com/ #06920226
Technical Blog : Tech Blog - https://secure.grepular.com/blog/
Spamalyser : Spam Tool - http://spamalyser.com/
On 19/01/2010 10:07, mamalos wrote:
I just pasted that email into spamalyser.com and it gave this:
http://spamalyser.com/v/u32d10ix/mime
The subject looks fully capitalised to me when decoded? I'm not overly
proficient on my Greek though.
--
Mike Cardwell: UK based IT Consultant,
iggered on only 79 out of the last 66657 emails. Is
such an infrequently triggering rule worth having a dedicated DNS based
lookup system?
It's *much* more sensible to just push out the changes with sa-update.
--
Mike Cardwell: UK based IT Consultant, LAMP developer, Linux admin
Cardwell
f SPF/DKIM
are available, you're better off using them than "whitelist_from" or
even "whitelist_from_rcvd". Personally I use this to whitelist all
Apache mailing lists, including the SpamAssassin one:
whitelist_from_spf *...@*.apache.org
--
Mike Cardwell: UK
se lines meet your user-friendliness criteria?
If your mail server has address book functionality, then you can use
that as a whitelist. I wrote an application for doing it with
CommuniGate Pro:
https://secure.grepular.com/CommuniGate_Pro_Contact_Folders_as_a_Whitelist_Source_for_Exim
I also
u're using but if it's
"Exim" and you ask on the Exim users mailing list, I'll help you there.
--
Mike Cardwell: UK based IT Consultant, Perl developer, Linux admin
Cardwell IT Ltd. : UK Company - http://cardwellit.com/ #06920226
Technical Blog : Tech Blog -
ore=-0.7 required=4.0 tests=BAYES_20
> autolearn=ham version=3.2.5-gr2".
>
> Hopefully a valid question here...
By forwarding the email the way you have, your email client has stripped
out most of the useful header information. Try pasting the message
including the full set of head
"text/plain" copy of the original content uploaded. There are a bunch of
referer restrictions in order to prevent content being uploaded and then
linked to from spam, which is why the wget failed. I have removed
referer checks for user agents matching /wget|lwp|lynx|links|python/i
-
hich
"never send spam".
--
Mike Cardwell: UK based IT Consultant, Perl developer, Linux admin
Cardwell IT Ltd. : UK Company - http://cardwellit.com/ #06920226
Technical Blog : Tech Blog - https://secure.grepular.com/
Spamalyser : Spam Tool - http://spamalyser.com/
1 - 100 of 124 matches
Mail list logo
