Hi,
I'm using Spamassassin 3.4.1 on FreeBSD 9.3, called via a pipe from
Exim. Today I created a meta rule to give additional points to FREEMAIL
where also there is no RDNS. What I've noticed is that many emails are
triggering RDNS_NONE when I don't think they should. DNS lookups are
working
On Jan 4, 2016, 3:42 AM, rwmaillists at googlemail wrote:
> No look-up is done. RDNS_NONE tests whether rdns is recorded in the
> received header. You need either to turn it on or turn the rule off.
Hi, Thanks for the reply. Ok so I assume you mean its a header that has
to haven been put in
On 2016-01-04 14:31, Kevin A. McGrail wrote:
> I'm guessing this might be the trick you need:
> https://www.ssisg.com/galaxy/knowledgebase.php?action=displayarticle&id=24
Thanks Kevin, I'd taken a look at this already but I'd misunderstood
the original reply, I thought I was looking for som
Quoting Michael Scheidell :
Had a report from a user who installed SA 3.3.1 from freebsd ports
with perl 5.10.1 on a Freebsd AMD64 build, Freebsd 8.0, p4 and he
noted that the binaries never got installed.
said he default install does a 'make pure_site_install', and he
wasn't able to get it
Hi all,
a couple of spam email messages got passed our spamassassin scanner
today, and on investigation I found some odd behaviour. Our mail
system scans via a pipe using the following command
"/usr/local/bin/spamc -u mailnull". If I cat the spam mail file in
question by doing a cat and
Quoting John Hardin :
Yes, the default size limit on messages that spamc enforces is less
than 600k.
If you want to scan larger messages you must override that default.
Please see the list archives for the pros and cons.
Ah ok! Thanks! Think I can up it to at least 1Mb based on CPU usage
Quoting Karsten Bräckelmann :
That would specifically include my name, I guess. ;) Good additional
search terms would include size, limit, threshold and of course spamc.
Time range should be the last couple months, maybe half a year.
Since this topic appears to come up more often recently, ma
Hi,
I just noticed this, I have an email which was marked as spam. One
of the rules it flagged was:
0.7 SPF_SOFTFAIL SPF: sender does not match SPF record (softfail)
In the headers I see:
Received: from [62.8.109.125] (port=24079 helo=mail.dynamail.co.uk)
In the SPF record for
Quoting a.sm...@ukgrid.net:
Hi,
I just noticed this, I have an email which was marked as spam. One
of the rules it flagged was:
0.7 SPF_SOFTFAIL SPF: sender does not match SPF record (softfail)
In the headers I see:
Received: from [62.8.109.125] (port=24079 helo=mail.dynamail.
Look in the "sql" directory in the source code,
Andy.
Quoting Marc Perkel :
I must be blind but I can seem to find the files or instructions for
creating the mysql databases to set up bayes.
Quoting "David F. Skoll" :
On Tue, 21 Jun 2011 07:06:11 -0700
Marc Perkel wrote:
Trying to get MySQL bays working in a high volume environment.
Dedicated MySQL server with SSD drives. Can someone send me a sample
my.cnf file and make other suggestings to keep it running wihout
database corrup
Quoting Per Jessen :
Matus UHLAR - fantomas wrote:
... again, does this affect BAYES?
Probably not, but David was asked to explain why he was wary of using
mysql, and he did just that.
If those don't apply to Bayes, then he has explained why he doesn't
trust MyISAM with his data
Quoting a.sm...@ukgrid.net:
Quoting Per Jessen :
Matus UHLAR - fantomas wrote:
... again, does this affect BAYES?
Probably not, but David was asked to explain why he was wary of using
mysql, and he did just that.
If those don't apply to Bayes, then he has explained why he doesn't
tr
Currently I have it at 4.8
Quoting Lars Jørgensen :
Hi,
We still get quite a bit of spam through and instead of fiddling
with scores, I was thinking about lowering the threshold. Currently
tag is at 6.2 and kill at 6.9. Would it be unwise to lower these?
What thresholds are other people
Hi, why don't you collect a selection of spam and ham emails prior to
go live and use them to train the Bayes DB prior to go live. Then you
have a Bayes DB trained to your own data at time of go live...
thanks, Andy.
Quoting Andrew Talbot :
Well, I certainly hope someone offers to help!
I
Hi,
I have a problem on one server that I see several times an hour
this problem logged by spamd
Wed May 5 10:04:43 2010 [88823] info: spamd: handled cleanup of child
pid [90622] due to SIGCHLD: DIED, signal 11 (000b)
And in the main messages file a corresponding error regarding the pe
Hi,
An update it looks like the problem may well be this Perl bug
that affects Perl 5.10.1 in the FreeBSD ports tree...
http://rt.perl.org/rt3//Public/Bug/Display.html?id=69973
thanks Andy.
Hi,
how can I check if SpamAssassin is checking SPF? I ask because we
have had instances of spam being delivered using a spoofed email
address that is from a domain actually hosted on our mail server,
which shouldn´t happen if SPF is being used (SPF is configured in DNS
for the domain i
PS in my init.pre SPF is loaded:
loadplugin Mail::SpamAssassin::Plugin::SPF
Quoting a.sm...@ukgrid.net:
Hi Benny,
thanks for the info. As I mentioned in a follow up I have the
plugin listed to load in my init.pre. But as you rightly guessed SPF
isnt loaded, as per the spamassassin -D -t msg test you described.
So what can be missing? I must admit to finding the configuration
files quite con
Hi Benny,
do you mean in the general perl envrionment? From that I have the
following available regarding mail:
Actually I just realised I didnt run the test command against a real
mail, Ive just rerun it and I get loads of SPF stuff, starting like
this:
May 5 15:30:31.372 [12084] dbg:
From this maillist the x-spam-status is:
No, score=-11.1 required=4.8 tests=BAYES_00,RCVD_IN_DNSWL_HI,
RCVD_IN_RP_CERTIFIED,RCVD_IN_RP_SAFE,RDNS_NONE,SPF_PASS
autolearn=unavailable version=3.3.1
Hehe, this is another server which is on Spamassassin 3.1.1, seems it
is using SPF on this box
Hi Micheal,
ok I have to come clean on a little error here which Ive just been
thinking over, which by coincidence I have noticed attempting to mail
Benny. Benny's email server bounced my mail due to an SPF error, which
I have never seen myself on my mail nor reported by anyone using this
Thanks, I was meaning I dont know if I can test spamassassin to see if
it now correctly scores email. If I can get another server to relay
some mail I guess, right now I cant think of one
Quoting Benny Pedersen :
On ons 05 maj 2010 17:45:20 CEST, wrote
Im not sure if I can test this,
ok for the header bitty, Im using
envelope_sender_header Return-path
Which I think should be appropriate for exim, and Im sticking it in
the user_prefs in the home dir of the user that spamd runs as. Is that
the right config file?
thanks Andy.
Hi,
thanks a lot for your help, its seems to be working great now.
I sent a message from a server not defined in the domain SPF using my
email address and it got a failed spam scored based on "SPF_FAIL" :)
Great :)
thanks to everyone who commented,
Andy.
Hi,
Ok, update 2:
I proved that my system had the perl but (via a test script) as
previously mentioned. Ive therefore downgraded perl to perl 5.8.9. I
still have the same problem with SpamAssassin perl processes crashing.
I´ve take some more logs from spamd with debugging enabled, this is
Hi,
I have another question on SPF :)
Thanks to those who helped me get it working. Now its working I have a
problem that Im getting fails (for the moment softfails due to my SPF
config) of users sending mail from Outlook or whatever client that is
connecting using SMTP Auth (simple auth
Hi all,
ok I did some furhter work and when testing (sa-learn --sync) the
bayes db integrity its not good. So basically the problem was caused
by a corrupt bayes DB.
Thanks Andy.
Quoting a.sm...@ukgrid.net:
Hi,
I´ve been trying to fix some corruption issues with my bayes DB
files. I have found that if forced to create from scratch the file my
installation of SpamAssassin 3.3.1 is using version 1.85. Why would it
do that? It should be using BDB 4.1 with DB version 8 shouldnt it?
What config
Hi Giampaolo,
thanks for the info. Im not an expert on MTAs or SpamAssassin so Im
trying to understand your mail.
So is it the case according to what you´ve said below that with your
modified logic that setting your MX servers as trusted and MSA will no
longer result in all mail being tru
Why don´t you update it via FreeBSD ports? The latest version is there...
Quoting Jean-Paul Natola :
I setup this box YEARS ago, and only updated the versions of sa
exim and clamav, (this only filters my mail before it hands it off
to my exchange server.
But lately its been timing out a
Hi,
as per the subject Im having severe problems, any help much appreciated.
My installation:
FreeBSD 8.0-p2
Exim 4.71
SpamAssassin 3.3.1
Perl 5.10.1
All packages have been installed from source via FreeBSD ports.
The problem:
Two main issues really
1) Ever since this server was built (as a
Well firstly I have said "for me" so Im not trying to trash
Spamassasin (I seem to be in a minority of people with any severe
issues), and secondly I have posted some of the same issues previously
without such a theatrical subject and I received zero replies. No
offence was intended for tho
Thanks very much for the detailed reply!
Quoting Mark Martinec :
If you can isolate one such message which causes a crash and
be able to reproduce it from a command line spamassassin, that would
be ideal. Otherwise, enable debugging and when a process crashes
check what was the last thing it w
Hi Karsten,
thanks a lot for your reply...
Quoting Karsten Bräckelmann :
I first would check bugzilla for similar issues. In this particular
case, bug 6127. The comments in that bug should help to get debug logs,
which we would need.
I have previously had a look through this bug report and
Hi,
update on this is Ive had the system running using MySQL backend
for Bayes and AWL for the last 4 hours. So far all good, no 100% CPU
runaway processes and no Signal 11 errors. The 100% CPU issue did seem
to be resolved by my initial deleting of the bayes BDB files (prior to
configu
Quoting Karsten Bräckelmann :
That are *not* debug logs. That's standard logging, no debug.
Post 1 of 3 is normal log, post 3 of 3 was from spamassassin with
debug enabled. Is there some further debugging that can be enabled?
Alas, as you mentioned in your reply to Mark, you flamed the B
Well, before moving servers... What is its file size? See the bug I
referenced earlier, and the oddities found there.
Yeah, I did have a look at this before. I dont think I have any
unusually large files that would cause a prob, the sizes are:
82M./auto-whitelist
66K./bayes_journ
Hi,
a few days on and things are still running well with MySQL bayes backend.
If indeed my system stability does continue I wonder if the bayes DB
version may have had something to do with the corruption problems that
seem to have caused me these problems. The flat files are always
create
No, Im looking at the spamassassin bayes DB files on CentOS 5.5,
spamassassin installed via yum
Quoting RW :
On Mon, 07 Jun 2010 13:14:31 +0100
a.sm...@ukgrid.net wrote:
I checked this on a dev linux box and on these the flat files are
created as Berkeley DB version 8 files. Is this imp
Hi all,
I am using spamassassin with Exim.
I have a router in the middle of the Exim configuration as such:
spamcheck_router:
driver = accept
no_verify
condition = "${if and { {!def:h_X-Spam-Flag:} {!eq {$received_protocol}\
{spam-scanned}}} {1}{0}}"
transport = spamcheck
When the ma
Hi all,
I am using spamassassin with Exim.
I have a router in the middle of the Exim configuration as such:
spamcheck_router:
driver = accept
no_verify
condition = "${if and { {!def:h_X-Spam-Flag:} {!eq {$received_protocol}\
{spam-scanned}}} {1}{0}}"
transport = spamcheck
When the ma
Quoting Karsten Bräckelmann :
On Wed, 2010-06-09 at 01:51 -0400, Louis Guillaume wrote:
Recently I've had a lot of reports of returned mail from authenticated
users. The messages are being bounced on the way out.
You forgot to provide the reason (SA rules hit) for the messages being
scored ab
You only hit the ALL_TRUSTED when mail is from a trusted relay, surely
thats not going to happen if people are sending from a workstation
mail to the server doing the checking?
Yes, it does. The originating host ("workstation") is trusted not to
send spam, because the submission is authenticated
Quoting Karsten Bräckelmann :
On Wed, 2010-06-09 at 13:30 +0100, a.sm...@ukgrid.net wrote:
On my system outbound mails are scanned, even though they are sent
using authentication (not SASL auth tho), additionally the wiki
So? Yes, authentication and the ALL_TRUSTED rule does not prevent mail
So? Yes, authentication and the ALL_TRUSTED rule does not prevent mail
from being scanned by SA. Clearly, because that is a SA rule...
What *does* prevent mail from being scanned by SA is *NOT* passing it to
SA in your MTA. I don't get your point.
Ok I just reread ur first post, I missunderstoo
47 matches
Mail list logo
