sender name same as recipient name
|
View:
New views
7 Messages
—
Rating Filter:
Alert me
|
| < Prev | 1 - 2 | Next > |
 |
|
|
|
Re: sender name same as recipient name
by John Hardin
::
Rate this Message:
On Tue, 25 Sep 2007, feral wrote:
> Hmmm... deepest thread here w/ John Hardin somehow got > broken... nabble hiccup? My pruning stuff. > Where is this configuration file? Probably under /etc/mail/spamassassin > John Hardin wrote: > > > Look for the command line that starts SA. If "-L" or "--local" > > appears, network tests have been disabled. > > > > You may be able to check this using "ps -fax" to see what the > > currently-running SA instance has for its command line. > > /usr/bin/spamd --username=popuser --daemonize --nouser-config > --helper-home-dir=/var/qmail --max-children 1 --create-prefs > --virtual-config-dir=/var/qmail/mailnames/%d/%l/.spamassassin > --pidfile=/var/run/spamd/spamd_full.pid --socketpath=/tmp/spamd_full.sock Odd, it looks like network tests *should* be running... Also: your bayes database files will probably be under popuser's home directory. See anything there? > Evan Platt wrote: > > > Edit your spamd start-up script, or start-up options file (depending on > > which OS you're running, these may be different). There should be a -L or > > --local switch in that file. Remove it to enable network tests. " > > What are the file names? CentOS is RHEL-based, right? Likely /etc/rc.d/init,d/spamassassin -- John Hardin KA7OHZ http://www.impsec.org/~jhardin/ jhardin@... FALaholic #11174 pgpk -a jhardin@... key: 0xB8732E79 -- 2D8C 34F4 6411 F507 136C AF76 D822 E6E6 B873 2E79 ----------------------------------------------------------------------- Pelley: Will you pledge not to test a nuclear weapon? Ahmadeinejad: CIA! Secret prison in Europe! Abu Ghraib! -- Mahmoud Ahmadeinejad clumsily dodges a question (60 minutes interview, 9/20/2007) ----------------------------------------------------------------------- 243 days until the Mars Phoenix lander arrives at Mars |
|
|
Re: sender name same as recipient name
by feral
::
Rate this Message:
John D. Hardin wrote: cd /var/qmail/mailnames/blah.com/mark/.spamassassinOn Tue, 25 Sep 2007, feral wrote: [root@condor .spamassassin]# ls total 1691 1 ./ 1 ../ 408 auto-whitelist 97 bayes_journal 141 bayes_seen 1042 bayes_toks 1 user_prefs This auto-whitelist file looks very suspicious. It is filled with spammer addresses... the mark@ addresses I was talking about. I see no "-L" or "--local" anywhere. See below... Here is my SA startup file:-- John Hardin KA7OHZ http://www.impsec.org/~jhardin/ [root@condor init.d]# more spamassassin #!/bin/sh # # spamassassin This script starts and stops the spamd daemon # # chkconfig: - 78 30 # processname: spamd # description: spamd is a daemon process which uses SpamAssassin to check \ # email messages for SPAM. It is normally called by spamc \ # from a MDA. # Source function library. . /etc/rc.d/init.d/functions prog="spamd" # Source networking configuration. . /etc/sysconfig/network # Check that networking is up. [ ${NETWORKING} = "no" ] && exit 0 # Set default spamd configuration. SPAMDOPTIONS="-d -c -m5 -H" SPAMD_PID=/var/run/spamd.pid # Source spamd configuration. if [ -f /etc/sysconfig/spamassassin ] ; then . /etc/sysconfig/spamassassin fi [ -f /usr/bin/spamd -o -f /usr/local/bin/spamd ] || exit 0 PATH=$PATH:/usr/bin:/usr/local/bin # By default it's all good RETVAL=0 # See how we were called. case "$1" in start) # Start daemon. echo -n $"Starting $prog: " daemon $NICELEVEL spamd $SPAMDOPTIONS -r $SPAMD_PID RETVAL=$? echo if [ $RETVAL = 0 ]; then touch /var/lock/subsys/spamassassin fi ;; stop) # Stop daemons. echo -n $"Stopping $prog: " killproc spamd RETVAL=$? echo if [ $RETVAL = 0 ]; then rm -f /var/lock/subsys/spamassassin rm -f $SPAMD_PID fi ;; restart) $0 stop sleep 3 $0 start ;; condrestart) [ -e /var/lock/subsys/spamassassin ] && $0 restart ;; status) status spamd RETVAL=$? ;; *) echo "Usage: $0 {start|stop|restart|status|condrestart}" RETVAL=1 ;; esac exit $RETVAL |
|
|
Re: sender name same as recipient name
by John Hardin
::
Rate this Message:
On Wed, 26 Sep 2007, John Calvert wrote:
> I see no "-L" or "--local" anywhere. See below... > # Source spamd configuration. > if [ -f /etc/sysconfig/spamassassin ] ; then > . /etc/sysconfig/spamassassin > fi You'll also want to look in /etc/sysconfig/spamassassin -- John Hardin KA7OHZ http://www.impsec.org/~jhardin/ jhardin@... FALaholic #11174 pgpk -a jhardin@... key: 0xB8732E79 -- 2D8C 34F4 6411 F507 136C AF76 D822 E6E6 B873 2E79 ----------------------------------------------------------------------- Pelley: Will you pledge not to test a nuclear weapon? Ahmadeinejad: CIA! Secret prison in Europe! Abu Ghraib! -- Mahmoud Ahmadeinejad clumsily dodges a question (60 minutes interview, 9/20/2007) ----------------------------------------------------------------------- 242 days until the Mars Phoenix lander arrives at Mars |
|
|
Re: sender name same as recipient name
by feral
::
Rate this Message:
John D. Hardin wrote: Just contains:On Wed, 26 Sep 2007, John Calvert wrote: SPAMDOPTIONS="-d -c -H --max-children=1" I have decided to restart this whole process... setting the bayes database back to its initial state & deleting auto-whitelist file. Is it good to use a bayes starter DB ? If so, where can I get a good one. thanks, JC |
|
|
Re: sender name same as recipient name
by John Hardin
::
Rate this Message:
On Wed, 26 Sep 2007, John Calvert wrote:
> I have decided to restart this whole process... setting the bayes > database back to its initial state & deleting auto-whitelist file. > > Is it good to use a bayes starter DB ? If so, where can I get a > good one. It's not generally a good idea to use *somebody else's* data for your starter DB - the nature of their email traffic is not likely to be similar to yours. This is why it's a good idea to keep the messages you use to train your bayes, if you're doing manual training - so that you can correct training errors, and retrain from scratch if necessary. Of course, that doesn't scale too well if you have large numbers of users and are autolearning... If your users retrieve their email from your server using IMAP, here's one thing you can do: set up a SpamAssassin-SPAM and SpamAssassin-HAM mail folder in each user's mailbox. Have them move missed spams to the SpamAssassin-SPAM folder, and *copy* false positives (SA says it's spam when it isn't) to the SpamAssassin-HAM folder. They can (and ideally *should*) also copy some legitimate messages to their SpamAssassin-HAM folder so that SA can get an idea of what "ham" looks like. You can then train off those folders, and retrain as needed. To manage the training work, you can rotate those files on a schedule - e.g. on October 1, everybody's SpamAssassin-HAM becomes SpamAssassin-HAM-200709, etc. I have some scripting for that sort of thing here: http://www.impsec.org/~jhardin/antispam/ -- John Hardin KA7OHZ http://www.impsec.org/~jhardin/ jhardin@... FALaholic #11174 pgpk -a jhardin@... key: 0xB8732E79 -- 2D8C 34F4 6411 F507 136C AF76 D822 E6E6 B873 2E79 ----------------------------------------------------------------------- Pelley: Will you pledge not to test a nuclear weapon? Ahmadeinejad: CIA! Secret prison in Europe! Abu Ghraib! -- Mahmoud Ahmadeinejad clumsily dodges a question (60 minutes interview, 9/20/2007) ----------------------------------------------------------------------- 242 days until the Mars Phoenix lander arrives at Mars |
|
|
Re: sender name same as recipient name
by Jari Fredriksson
::
Rate this Message:
>> What are the file names?
> > CentOS is RHEL-based, right? Likely > /etc/rc.d/init,d/spamassassin /etc/init.d/spamassassin more propably. |
| < Prev | 1 - 2 | Next > |
| Free embeddable forum powered by Nabble | Forum Help |
