> And then stick the following three lines in the top of your /etc/procmailrc > > LOGABSTRACT=all > LOGFILE=/var/log/prcmail.log > VERBOSE=YES > > Then, tail -f /var/log/procmail.log > > It'll tell you more than you need to know, but should help you in traking > down what is or isn't happening.
Hi Kelsey, Thanks for your suggestions. I did some testing and I'm a bit confused by the results. I tried two different procmailrc files. The first is your suggested procmailrc setup with the log results. And the second is my standard procmailrc which runs Procmail Sanitizer first before SA as well as the log results. The strange part is that the first procmailrc doesn't work and the second procmailrc does! I don't really see a different between how SA is called but for whatever reason, the second procmailrc works. My trouble with it before was that I was sticking the ":0fw | /usr/bin/spamc" before the Procmail Sanitizer part. Once I swapped their positions, it started working fine. Strange. ---snip--- [root@mail /etc]# cat procmailrc LOGABSTRACT=all LOGFILE=/var/log/procmail.log VERBOSE=YES :0fw | /usr/bin/spamc procmail: [14540] Fri May 3 03:19:02 2002 procmail: Executing "/usr/bin/spamc" procmail: [14540] Fri May 3 03:19:02 2002 procmail: Assigning "PATH=/home/spam/bin:/bin:/usr/bin:/sbin:/usr/sbin:/usr/local/bin:/usr/X11R6/bin" >From [EMAIL PROTECTED] Fri May 3 03:19:02 2002 Subject: Save Up to 70% On Your Life Insurance -FREE Quote Folder: /var/spool/mail/spam ---snip--- [root@mail /etc]# cat procmailrc.001 PATH="/usr/bin:$PATH:/usr/local/bin" SHELL=/bin/sh POISONED_EXECUTABLES=/etc/procmail/poisoned #STRIPPED_EXECUTABLES=/etc/procmail/stripped SECURITY_NOTIFY="postmaster" #SECURITY_NOTIFY_VERBOSE="virus checker" SECURITY_NOTIFY_SENDER=/etc/procmail/local-email-security-policy.txt SECRET="lrlj3ong" # this file must already exist, with proper permissions (rw--w--w-): SECURITY_QUARANTINE=/var/spool/mail/quarantine POISONED_SCORE=25 SCORE_HISTORY=/var/log/macro-scanner-scores DROPPRIVS=YES LOGFILE=$HOME/procmail.log # Finished setting up, now run the sanitizer... INCLUDERC=/etc/procmail/html-trap.procmail # Reset some things to avoid leaking info to # the users... POISONED_EXECUTABLES= SECURITY_NOTIFY= SECURITY_NOTIFY_VERBOSE= SECURITY_NOTIFY_SENDER= SECURITY_QUARANTINE= SECRET= :0fw | /usr/bin/spamc Defanging active HTML content in "Save Up to 70% On Your Life Insurance -FREE Quote" from [EMAIL PROTECTED] to spam msgid=<[EMAIL PROTECTED]> >From [EMAIL PROTECTED] Fri May 3 03:20:36 2002 Subject: *****SPAM***** Save Up to 70% On Your Life Insurance -FREE Quote Folder: /var/spool/mail/spam _______________________________________________________________ Have big pipes? SourceForge.net is looking for download mirrors. We supply the hardware. You get the recognition. Email Us: [EMAIL PROTECTED] _______________________________________________ Spamassassin-talk mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/spamassassin-talk
