On Wed, 2017-01-25 at 22:29 -0800, Ian Zimmerman wrote: > On 2017-01-26 01:03, RW wrote: > > > > > Probably what's happening is that these are emails over 500 kB > > which > > by default are just passed through by spamc without sending them to > > spamd. If they don't get sent to spamd the existing SA headers > > don't > > get stripped. > > > > You can to set the -s parameter on spamc to something larger that > > the > > largest spam you want to filter. > > I have never been clear about this, in two ways. > > The relevant bit of man spamc says: > > -s max_size, --max-size=max_size > > Set the maximum message size which will be sent to spamd -- any > bigger > than this threshold and the message will be returned unprocessed > (default: 500 KB). If spamc gets handed a message bigger than this, > it > won't be passed to spamd. The maximum message size is 256 MB. > > The size is specified in bytes, as a positive integer greater than > 0. > For example, -s 500000. > > My first confusion is that even if there's a knob I can turn up on > spamc, there's a "maximum message size". What does that mean? Does > spamd have its own limit? Is it really that high? And what happens > if > I break it? > > Second, is the default 500 * 1000 bytes or 512 * 1024 bytes? The > example seems to suggest the latter. >
Here's the procmail recipe I have for large messages
:0 fh w
* > 100000
* ^Subject:\/.*
| formail -I "Subject: {* -BIG- *} $MATCH"
I don't know if you're using procmail or if this is relative to your
question but since you were asking about large messages this is how I
tag them that way they're not even sent to spamc and are easy to spot
in my inbox.
--
Chris
KeyID 0xE372A7DA98E6705C
31.11972; -97.90167 (Elev. 1092 ft)
15:58:43 up 23:19, 1 user, load average: 0.20, 0.23, 0.33
Ubuntu 16.04.1 LTS, kernel 4.4.0-59-generic #80-Ubuntu SMP Fri Jan 6
17:47:47 UTC 2017
signature.asc
Description: This is a digitally signed message part
