[TriLUG] SpamAssassin + ??? + Postfix == PROFIT!!
matt at noway2.thruhere.net
matt at noway2.thruhere.net
Mon Jan 12 13:22:21 EST 2015
Slightly off topic, but on the subject of Spam Assassin, I thought I would
share something that I ran into recently in case anyone else has been
impacted by this.
Apparently the site that ran DNS_FROM_AHBL_RHSBL which is / was used by
SA, went belly up on 1/1/15 and for whatever (in my not so humble opinion)
ignorant reason they decided to set the RBL system to report positive to
all queries thereby increasing the likelihood that mail gets flagged as
SPAM. Given that they said that this was done to annoy people who don't
maintain their email systems, strikes me as malicious.
After noticing a pattern of valid messages getting delivered to spam
folder with this flag set, I took the obvious answer of overriding this
value to zero in the local.cf file. Even though I restarted Postfix,
Amavis, Spamassassin, etc it didn't seem to have any effect.
Continued searching showed that this appears to have been addressed by SA
but in many cases one needs to run a manual update (via the sa-update
command). This may be due to a default option of having auto updates
disabled, but I couldn't find such an option.
In any case, following this command and a complete reboot, messages are no
longer getting flagged as SPAM due to this erroneous RBL.
> Maybe https://www.maiamailguard.com/maia/wiki/AboutMaia would work?
>
> Matt P.
>
> On Jan 9, 2015, at 12:44 PM, Brian Henning <bhenning at pineinst.com> wrote:
>
>> ...where PROFIT == spam reported in digest form.
>>
>> To elaborate:
>>
>> With a past employer, company e-mail was spam-filtered by a service that
>> would quarantine spam without delivering it and send a daily digest of
>> senders/subjects of newly-quarantined items. That e-mail would contain
>> a link to a web page where I could delete, deliver, and/or whitelist
>> each message.
>>
>> As my personal SpamAssassin-guarded e-mail addresses have grown in
>> spam-reception volume, eyeballing the Junk folder for false-positives is
>> getting more and more daunting. I'm looking for a mechanism that will
>> quarantine messages that SpamAssassin has flagged, report them to me on
>> a daily basis sorted by score and subject in a single digest e-mail, and
>> allow me to delete, deliver, and/or whitelist (or blacklist) senders
>> from a web interface.
>>
>> What package(s) would you folks recommend to accomplish this? Postfix
>> is my MTA, if that's relevant. I'd be thrilled if it used an RDBMS for
>> storage and configs but that's not a requirement.
>>
>> Thanks!
>> -Brian
>> --
>> This message was sent to: M. Pusateri <mpusateri at wickedtrails.com>
>> To unsubscribe, send a blank message to trilug-leave at trilug.org from
>> that address.
>> TriLUG mailing list : http://www.trilug.org/mailman/listinfo/trilug
>> Unsubscribe or edit options on the web :
>> http://www.trilug.org/mailman/options/trilug/mpusateri%40wickedtrails.com
>> Welcome to TriLUG: http://trilug.org/welcome
>
> --
> This message was sent to: Matt Flyer <matt at noway2.thruhere.net>
> To unsubscribe, send a blank message to trilug-leave at trilug.org from that
> address.
> TriLUG mailing list : http://www.trilug.org/mailman/listinfo/trilug
> Unsubscribe or edit options on the web :
> http://www.trilug.org/mailman/options/trilug/matt%40noway2.thruhere.net
> Welcome to TriLUG: http://trilug.org/welcome
More information about the TriLUG
mailing list