At 09:22 AM 8/19/2007, Michael Scheidell wrote: >> -----Original Message----- >> From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] >> Sent: Saturday, August 18, 2007 11:25 PM >> To: users@spamassassin.apache.org >> Subject: How do I temporarily disable SpamAssassin? >> >> >> >> I have a FreeBSD machine running qmail, SpamAssassin and >> ClamAV. The machine is receiving 200,000 e-mail messages per >> day, courtesy of Rumpelstiltskin attacks from thousands of >> different IP addresses each day, and SpamAssassin appears to >> be overwhelmed. I have about 50,000 e-mail messages in my >> qmail queue and the queue is growing by more than 1,000 >> e-mail messages per hour. >> >> I want to temporarily disable SpamAssassin to free up enough >> resources to let the mail queue clear. How do I do that? > >I hope you aren't emailing from that server, you might not get these >responses ;-)
I'm by-passing the problem server for these conversations. That's a good point for everybody to remember, Michael, when they're soliciting help via e-mail. >I would start with qmail (I use postfix, so I can't help) >Do you have a valid list of user loaded on qmail? Can it reject DHA >attacks right there? I turned to the qmail list for help with this issue. That list has pointed me to Paul Jarc's realrcptto patch to qmail at http://code.dogmap.org/qmail/ as a first line of defense. >Can you limit (with qmail) the incoming queue when the outgoing queue is >full? > >As for disabling SA, it really depends on how it was set up. >You might want to backup all the qmail config files, and put in some >default files. >That way you can see how. > >Maybe, to help SA, you can disable all network tests for a short time >(see local.cf) > > >-- >Michael Scheidell, CTO >SECNAP Network Security Corporation >Keep up to date with latest information on IT security: Real time >security alerts: >http://www.secnap.com/news > >_________________________________________________________________________ >This email has been scanned and certified safe by SpammerTrap(tm). >For Information please see http://www.spammertrap.com >_________________________________________________________________________
