MySQL Student wrote: > Hi, > > I have an mbox with about a 100 messages in it from a few days ago. > The mbox is a combination of spam and ham. What is the best way to run > SA through these messages again, so I can catch the ones that have > URLs in them that weren't on the blacklist at the time they were > received? > > Must I break them all apart to do this, or can SA somehow parse the > whole mbox? If not, what program do you suggest I use to accomplish > this? > Do you just want to re-scan the whole mbox and see what rules hit now for research reasons?
You could probably abuse the mass-check tool for that purpose: http://svn.apache.org/repos/asf/spamassassin/branches/3.2/masses/ It's normally used to generate logs we feed into the score generation process, but it can be run on a single mbox. The downside, is all it does is generate a report, one line per message, with a list of hits. There's no way to (directly) get SA to modify email that's already in an mbox file. The mass-check and sa-learn tools can read them, but nothing in SA can write to that. However, there might be a utility out there to do this (although I'm not aware of any)..
