SA-3.2 need help

[Tux Techie]

 hi,
>
> I'm new to linux and Need help in configuring spamassassin on my mail
> server,I'm using spamassassin-3.2.4-1.el4.1 on CentOS4 with
> sendmail-8.13.1-3.3.el4
>
> This is my local.cf
>
>
>
> # This is the right place to customize your installation of SpamAssassin.
> #
> # See 'perldoc Mail::SpamAssassin::Conf' for details of what can be
> # tweaked.
> #
> # Only a small subset of options are listed below
> #
> ###########################################################################
> #   Add *****SPAM***** to the Subject header of spam e-mails
> #
> rewrite_header Subject *****SPAM*****
>
> #   Save spam messages as a message/rfc822 MIME attachment instead of
> #   modifying the original message (0: off, 2: use text/plain instead)
> #
> report_safe 0
>
> #   Set which networks or hosts are considered 'trusted' by your mail
> #   server (i.e. not spammers)
> #
> #trusted_networks 132.
> trusted_networks 132.
> #   Set file-locking method (flock is not safe over NFS, but is faster)
> #
> #lock_method flock
>
> #   Set the threshold at which a message is considered spam (default: 5.0)
> #
> required_score 6.0
> #required_score 5.0
>
> #   Use Bayesian classifier (default: 1)
> #
> use_bayes 1
>
> #   Bayesian classifier auto-learning (default: 1)
> #
> bayes_auto_learn 1
> # Enable or disable network checks
> skip_rbl_checks 0
> use_razor2              1
> use_dcc                 1
> use_pyzor               1
> # Mail using languages used in these country codes will not be marked
> # as being possibly spam in a foreign language.
> ok_languages            all
> # Mail using locales used in these country codes will not be marked
> # as being possibly spam in a foreign language.
> ok_locales              all
> #   Set headers which may provide inappropriate cues to the Bayesian
> #   classifier
> #
> bayes_ignore_header X-Bogosity
> bayes_ignore_header X-Spam-Flag
> bayes_ignore_header X-Spam-Status
>
> #
> # New Spam Settings
> urirhssub URLBL_RBLJP  url.rbl.jp.      A   2
> body URLBL_RBLJP eval:check_uridnsbl('URLBL_RBLJP')
> describe URLBL_RBLJP Has URI in url.rbl.jp
> tflags    URLBL_RBLJP  net
> score URLBL_RBLJP 2.0
> uridnsbl        URLBL_IP_RBLJP    url.rbl.jp.       TXT
> body URLBL_IP_RBLJP eval:check_uridnsbl('URLBL_IP_RBLJP')
> describe URLBL_IP_RBLJP Has IP URL in url.rbl.jp
> tflags          URLBL_IP_RBLJP    net
> score URLBL_IP_RBLJP 2.0
> header RCVD_IN_ALL_RBL_JP eval:check_rbl_txt('rbl.jp', 'all.rbl.jp.')
> describe RCVD_IN_ALL_RBL_JP Received via a relay in all.rbl.jp
> tflags RCVD_IN_ALL_RBL_JP   net
> score RCVD_IN_ALL_RBL_JP 1.5
>
> # the following config will only detect URLs which use hostnames urirhssub
> URLBL_RBLJP url.rbl.jp. A 2
> #body URLBL_RBLJP eval:check_uridnsbl('URLBL_RBLJP')
> #describe URLBL_RBLJP Has URI in url.rbl.jp
> tflags URLBL_RBLJP net
> score URLBL_RBLJP 4.0
> # the following config will only detect URLs which use IP addresses
> uridnsbl URLBL_IP_RBLJP url.rbl.jp. TXT
> #body URLBL_IP_RBLJP eval:check_uridnsbl('URLBL_IP_RBLJP')
> #describe URLBL_IP_RBLJP Has IP URL in url.rbl.jp
> tflags URLBL_IP_RBLJP net
> score URLBL_IP_RBLJP 4.0
> uridnsbl_skip_domain livedoor.com reset.jp asahi-net.or.jp hi-ho.ne.jp
> 2ch.net hatena.ne.jp
> uridnsbl_skip_domain mixi.jp yahoo.co.jp
> header __RCVD_IN_JMF
> eval:check_rbl('JMF-lastexternal','hostkarma.junkemailfilter.com.')
> describe __RCVD_IN_JMF Sender listed in JunkEmailFilter
> tflags __RCVD_IN_JMF net
> header RCVD_IN_JMF_W eval:check_rbl_sub('JMF-lastexternal', '127.0.0.1')
> describe RCVD_IN_JMF_W Sender listed in JMF-WHITE
> tflags RCVD_IN_JMF_W net nice
> score RCVD_IN_JMF_W -5
> header RCVD_IN_JMF_BL eval:check_rbl_sub('JMF-lastexternal', '127.0.0.2')
> describe RCVD_IN_JMF_BL Sender listed in JMF-BLACK
> tflags RCVD_IN_JMF_BL net
> score RCVD_IN_JMF_BL 3.0
> header RCVD_IN_JMF_BR eval:check_rbl_sub('JMF-lastexternal', '127.0.0.4')
> describe RCVD_IN_JMF_BR Sender listed in JMF-BROWN
> tflags RCVD_IN_JMF_BR net
> score RCVD_IN_JMF_BR 1.0
> #############TEST RULES
> header LOCAL_DEMONSTRATION_SUBJECT      Subject =~ /\b%\b/i
> score LOCAL_DEMONSTRATION_SUBJECT       0.1
>
> #   Set headers which may provide inappropriate cues to the Bayesian
> #   classifier
> #
> bayes_ignore_header X-Bogosity
> bayes_ignore_header X-Spam-Flag
> bayes_ignore_header X-Spam-Status
>
> #   Some shortcircuiting, if the plugin is enabled
> #
> ifplugin Mail::SpamAssassin::Plugin::Shortcircuit
> #
> #   default: strongly-whitelisted mails are *really* whitelisted now, if
> the
> #   shortcircuiting plugin is active, causing early exit to save CPU load.
> #   Uncomment to turn this on
> #
> shortcircuit USER_IN_WHITELIST       on
> shortcircuit USER_IN_DEF_WHITELIST   on
> shortcircuit USER_IN_ALL_SPAM_TO     on
> shortcircuit SUBJECT_IN_WHITELIST    on
> #   the opposite; blacklisted mails can also save CPU
> #
> shortcircuit USER_IN_BLACKLIST       on
> shortcircuit USER_IN_BLACKLIST_TO    on
> shortcircuit SUBJECT_IN_BLACKLIST    on
> #   if you have taken the time to correctly specify your
> "trusted_networks",
> #   this is another good way to save CPU
> #
> shortcircuit ALL_TRUSTED             on
> #   and a well-trained bayes DB can save running rules, too
> #
> shortcircuit BAYES_99                spam
> shortcircuit BAYES_00                ham
> endif # Mail::SpamAssassin::Plugin::Shortcircuit
> score FH_DATE_PAST_20XX 0
>
>
> ____________________________________________________________________________________________________________________________
>
> these are default rules which i fetched from sa-update
>
> 10_default_prefs.cf    20_head_tests.cf  20_uri_tests.cf  25_domainkeys.cf
> 30_text_de.cf     60_shortcircuit.cf       sa-update.cron
> 20_advance_fee.cf      20_html_tests.cf  20_vbounce.cf    25_hashcash.cf
> 30_text_fr.cf     60_whitelist.cf          sa-update-pubkey.txt
> 20_body_tests.cf       20_imageinfo.cf   23_bayes.cf      25_pyzor.cf
> 30_text_it.cf     60_whitelist_dk.cf       user_prefs.template
> 20_compensate.cf       20_meta_tests.cf  25_accessdb.cf   25_razor2.cf
> 30_text_nl.cf     60_whitelist_dkim.cf
> 20_dnsbl_tests.cf      20_net_tests.cf   25_antivirus.cf  25_replace.cf
> 30_text_pl.cf     60_whitelist_spf.cf
> 20_drugs.cf            20_phrases.cf     25_asn.cf        25_spf.cf
> 30_text_pt_br.cf  60_whitelist_subject.cf
> 20_dynrdns.cf          20_porn.cf        25_dcc.cf        25_textcat.cf
> 50_scores.cf      72_active.cf
> 20_fake_helo_tests.cf  20_ratware.cf     25_dkim.cf       25_uribl.cf
> 60_awl.cf         languages
>
> This is my /etc/procmailrc
>
> DROPPRIVS=yes
> :0fw
> | /usr/bin/spamc
> :0
> * ^X-Spam-Status: Yes
> /dev/null
>
>
> The main problem which i'm facing is false positives SA is marking my
> geniune mails as spams from gmail.com and yahoo.co.in accounts and many of
> spams are not caught by SA,
>
> Please help me in tuning SA
>
> Thanks,
> Ansh
>