Message

From ssilva at SGVWATER.COM Fri Oct 1 00:23:21 2004 From: ssilva at SGVWATER.COM (Scott Silva) Date: Thu Jan 12 21:27:05 2006 Subject: MailScanner + SA3 + SURBL not registering. Message-ID: -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Daniel Bird wrote: | Scott Silva wrote: | | snip ... | | | So am I. I have many systems setup this way and: | | | | | | grep URIBL_ /var/log/maillog | | | | | With grep URIBL I get nothing, but with grep URI I get lots of hits. | | I am using the spamassassin prefs from your site. | | | | | |> Please send some (but NOT all :) of the log entries that are found | with | |> "grep URI" | | Just 3 log entries, and I see SC_URI, WS_URI etc... | Same thing or not?? | | |> Yes, sort of, but that looks like you have the SURBL tests defined |> somewhere in the SA config files as per the 2.6x way. The new names for |> them are URIBL_xx_SURBL. |> Check your /etc/mail/spamassassin (or even your spam.assassin.prefs.conf |> file ) directory for any rules with those names and remove them. Then |> make sure you have the latest Net::DNS module installed and the line: | |> loadplugin Mail::SpamAssassin::Plugin::URIDNSBL | |> is uncommented in /etc/mail/spamassassin/init.pre (that's the default btw) | |> Dan /etc/mail/spamassassin is clean (empty as a matter of fact), and there are no such rules in spam.assassin.prefs.conf. I found an old user_prefs in /root/.spamassassin and have killed it. I have no /etc/mail/spamassassin/init.pre it is in /usr/etc/mail/spamassassin/ but that line is commented out. I could use a good sample of a URIBL rich email though. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.1 (MingW32) Comment: Using GnuPG with Thunderbird - http://enigmail.mozdev.org iD8DBQFBXJVpRADw9lziUqQRAk+NAJ9vooC0j5+QBjoIX/aTnl3OD3nSSQCfcmhf /97WkfuZcxshtopVEmFw6ok= =5kpU -----END PGP SIGNATURE----- ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From dbird at SGHMS.AC.UK Fri Oct 1 01:09:34 2004 From: dbird at SGHMS.AC.UK (Daniel Bird) Date: Thu Jan 12 21:27:06 2006 Subject: MailScanner + SA3 + SURBL not registering. Message-ID:

> > /etc/mail/spamassassin is clean (empty as a matter of fact), and there > are no such rules in spam.assassin.prefs.conf. I found an old user_prefs > in /root/.spamassassin and have killed it. I have no > /etc/mail/spamassassin/init.pre it is in /usr/etc/mail/spamassassin/ but > that line is commented out. I could use a good sample of a URIBL > rich email though. Here's one that definitely matches: http://www.sghms.ac.uk/test_SURBL.txt Save that to a file and run spamassassin -D -t From mailscanner at BARENDSE.TO Fri Oct 1 03:08:56 2004 From: mailscanner at BARENDSE.TO (Remco Barendse) Date: Thu Jan 12 21:27:06 2006 Subject: MailScanner + SA3 + SURBL not registering. Message-ID: On Thu, 30 Sep 2004, Dean Jones wrote: > Daniel Bird wrote: >> Dean Jones wrote: >> >>> Daniel Bird wrote: >>> >>>> Jeff A. Earickson wrote: >>>> >>>>> This issue has been reported by myself and Ugo earlier this week >>>>> on the list. I'm at a loss too. When the next version of MS >>>>> comes out, I will upgrade and see if the problem remains. >>>>> >>>> Just noticed I had a similar problem after upgrading to SA3, although >>>> all my RBL checks failed to show up not just the SURBL ones. >>>> Installation of a newer version of Net::DNS (v 0.48) has cured it... Nice to know I'm not alone :) >>> >>> the Net::DNS install cured the SURBL as well as the RBL? >>> >>> I had to upgrade my Net::DNS as well, but that only fixed my RBL >>> checks... >>> >>> i either need a pint or some aspirin! >> >> >> Just a thought, what do you see if you set the follwing in >> MailScanner.conf ? >> >> Debug = yes >> Debug SpamAssassin = yes >> >> Anyhting like this? : >> >> debug: using "/etc/mail/spamassassin/init.pre" for site rules init.pre >> debug: config: read file /etc/mail/spamassassin/init.pre >> and >> debug: config: read file /etc/MailScanner/spam.assassin.prefs.conf >> debug:plugin: loading Mail::SpamAssassin::Plugin::URIDNSBL from @INC >> debug:plugin: registered >> Mail::SpamAssassin::Plugin::URIDNSBL=HASH(0x989052c) >> > > Well i re-installed Net::DNS from scratch (killed all Net::DNS related > stuff) and the SURBL checks have started. > I'm still scratching my head though, but hey it's working. I'd like to try that too. How do I remove the 'old' Net::DNS 0.48 and re-install it? Thanx!! Remco ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From p.g.m.peters at utwente.nl Fri Oct 1 08:28:22 2004 From: p.g.m.peters at utwente.nl (Peter Peters) Date: Thu Jan 12 21:27:06 2006 Subject: Mark mail as spam for known destination and origin Message-ID: On Thu, 30 Sep 2004 10:25:03 +0100, you wrote: >>Is it possible to mark a mail as spam on the following conditions: >> >>if a mail is from bla@domain.com and the destination is fubar@mydomain.com >>then the mail is spam. >> >>BUT >> >>if a mail is from bla@domain.com and the destination is me@mydomain.com then >>the mail isn't spam. >> >>I thought of using the spam.blacklist.rules and write a rule like this: >> >>From: bla@destination.com To:fubar@mydomain.com Yes >> >>But that doesn't work out (you can't make combinations on 1 line) > >Yes you can, you forgot to put in the word "and" in the middle. So when I want to consider everything to spam-addr@mydomain.com to be spam except mail from me@mydomain.com I use: To: spam-addr@mydomain.com yes To: spam-addr@mydomain.com and From: me@mydomain.com no Or should I put the second line in spam.whitelist.rules with a "yes" instead of a "no"? -- Peter Peters, senior netwerkbeheerder Dienst Informatietechnologie, Bibliotheek en Educatie (ITBE) Universiteit Twente, Postbus 217, 7500 AE Enschede telefoon: 053 - 489 2301, fax: 053 - 489 2383, http://www.utwente.nl/itbe ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From misterpo at IFRANCE.COM Fri Oct 1 09:11:17 2004 From: misterpo at IFRANCE.COM (Mister PO) Date: Thu Jan 12 21:27:06 2006 Subject: MailScanner, SA and Bayes Message-ID: Hello all, My config is Postfix 2.1.5, MailScanner 4.32.51, clamAV 0.80rc3, SA installed via perl CPAN on a RedHat 9 box. How can I make sure that Bayes is activated for SA ? I have checked my /etc/MailScanner/spam.assassin.prefs.conf file and Bayes looks OK. If I run spamassassin --prefspath/etc/MailScanner/spam.assassin.prefs.conf - -lint -D, I get the following output : debug: using "/usr/share/spamassassin" for default rules dir debug: using "/etc/mail/spamassassin" for site rules dir debug: using "/root/.spamassassin" for user state dir debug: using "/etc/MailScanner/spam.assassin.prefs.conf" for user prefs file debug: bayes: 24697 tie-ing to DB file R/O /usr/var/spool/spamfilter/bayes_toks debug: bayes: 24697 tie-ing to DB file R/O /usr/var/spool/spamfilter/bayes_seen debug: bayes: found bayes db version 2 debug: bayes: Not available for scanning, only 1 spam(s) in Bayes DB < 200 debug: bayes: 24697 untie-ing debug: bayes: 24697 untie-ing db_toks debug: bayes: 24697 untie-ing db_seen debug: Score set 1 chosen. debug: Initialising learner debug: bayes: 24697 tie-ing to DB file R/O /usr/var/spool/spamfilter/bayes_toks debug: bayes: 24697 tie-ing to DB file R/O /usr/var/spool/spamfilter/bayes_seen debug: bayes: found bayes db version 2 debug: bayes: Not available for scanning, only 1 spam(s) in Bayes DB < 200 debug: bayes: 24697 untie-ing debug: bayes: 24697 untie-ing db_toks debug: bayes: 24697 untie-ing db_seen debug: running header regexp tests; score so far=0 Any idea ? Thanks in advance, PO. ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From mailscanner at ecs.soton.ac.uk Fri Oct 1 09:28:57 2004 From: mailscanner at ecs.soton.ac.uk (Julian Field) Date: Thu Jan 12 21:27:06 2006 Subject: Mark mail as spam for known destination and origin Message-ID: At 08:28 01/10/2004, you wrote: >On Thu, 30 Sep 2004 10:25:03 +0100, you wrote: > > >>Is it possible to mark a mail as spam on the following conditions: > >> > >>if a mail is from bla@domain.com and the destination is fubar@mydomain.com > >>then the mail is spam. > >> > >>BUT > >> > >>if a mail is from bla@domain.com and the destination is me@mydomain.com > then > >>the mail isn't spam. > >> > >>I thought of using the spam.blacklist.rules and write a rule like this: > >> > >>From: bla@destination.com To:fubar@mydomain.com Yes > >> > >>But that doesn't work out (you can't make combinations on 1 line) > > > >Yes you can, you forgot to put in the word "and" in the middle. > >So when I want to consider everything to spam-addr@mydomain.com to be >spam except mail from me@mydomain.com I use: > >To: spam-addr@mydomain.com yes >To: spam-addr@mydomain.com and From: me@mydomain.com no Swap those 2 rules over. You want the most specific rules first, otherwise the general rule matches and the specific rule will be ignored. -- Julian Field www.MailScanner.info MailScanner thanks transtec Computers for their support Buy the MailScanner book at www.MailScanner.info/store PGP footprint: EE81 D763 3DB0 0BFD E1DC 7222 11F6 5947 1415 B654 ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From mailscanner at ecs.soton.ac.uk Fri Oct 1 09:33:07 2004 From: mailscanner at ecs.soton.ac.uk (Julian Field) Date: Thu Jan 12 21:27:06 2006 Subject: MailScanner + SA3 + SURBL not registering. Message-ID: I haven't changed the SA3 code, it all works on my production and development systems, as do Steve's systems. At 21:47 30/09/2004, you wrote: >This issue has been reported by myself and Ugo earlier this week >on the list. I'm at a loss too. When the next version of MS >comes out, I will upgrade and see if the problem remains. > >Jeff Earickson >Colby College > >On Thu, 30 Sep 2004, Dean Jones wrote: > >>Date: Thu, 30 Sep 2004 12:49:31 -0700 >>From: Dean Jones >>Reply-To: MailScanner mailing list >>To: MAILSCANNER@JISCMAIL.AC.UK >>Subject: Re: MailScanner + SA3 + SURBL not registering. >> >>Steve Swaney wrote: >>>>>SNIPPED <<< >>>> >>>>Doing the command that you suggested manages to make the SURBL checks >>>>work. >>>> >>>>It almost as if there is a spamassassin option in MailScanner.conf that >>>>turns it off. >>> >>> >>>There is a command in MailScanner that turns SpamAssassin off; >>> >>> Use SpamAssassin = yes >>> >>>But if you have SpamAssassin turned on in MS and the test above works, >>>MailScanner should run the exactly as the test does. How are you sure thst >>>MS is not running the tests? >> >>Use SpamAssassin is set to yes, and SA is doing other checks. >> >>The only way i have to guess is just by the data SA drops into the logs. >>It never hits on any URIBL_* scores running natively. >> >>I can forward SURBL test emails through from outside addresses and they >>don't get hit by the SURBL checks. >> >>I'm at a loss :) >>otherwise SA 3 is working great. -- Julian Field www.MailScanner.info MailScanner thanks transtec Computers for their support Buy the MailScanner book at www.MailScanner.info/store PGP footprint: EE81 D763 3DB0 0BFD E1DC 7222 11F6 5947 1415 B654 ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From martinh at SOLID-STATE-LOGIC.COM Fri Oct 1 09:50:16 2004 From: martinh at SOLID-STATE-LOGIC.COM (Martin Hepworth) Date: Thu Jan 12 21:27:06 2006 Subject: MailScanner being killed and restarted until system hangs Message-ID: Hi there was some fun last weekend with bitdefender updates, so it might be best to redo the updates for that (or whatever the fix was). But also bigevil.cf is *huge*, esp with only 256MB ram you are going to be much better off installing the spamcop_uri plugin and using the surbl.org URI RBL. -- Martin Hepworth Snr Systems Administrator Solid State Logic Tel: +44 (0)1865 842300 sebastian ruchti wrote: >>Do you have any custom rulesets for SA? >> > > I'm using SURBL, antidrug & backhair > > I'm NOT using bigevil.cf, however. > > .sebastian > > ------------------------ MailScanner list ------------------------ > To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: > 'leave mailscanner' in the body of the email. > Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and > the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). ********************************************************************** This email and any files transmitted with it are confidential and intended solely for the use of the individual or entity to whom they are addressed. If you have received this email in error please notify the system manager. This footnote confirms that this email message has been swept for the presence of computer viruses and is believed to be clean. ********************************************************************** ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From james at GRAYONLINE.ID.AU Fri Oct 1 09:52:22 2004 From: james at GRAYONLINE.ID.AU (James Gray) Date: Thu Jan 12 21:27:06 2006 Subject: MailScanner, SA and Bayes Message-ID: [ The following text is in the "utf-8" character set. ] [ Your display is set for the "US-ASCII" character set. ] [ Some characters may be displayed incorrectly. ] On Fri, 1 Oct 2004 06:11 pm, Mister PO wrote: > Hello all, > > My config is Postfix 2.1.5, MailScanner 4.32.51, clamAV 0.80rc3, SA > installed via perl CPAN on a RedHat 9 box. > > How can I make sure that Bayes is activated for SA ? > > I have checked my /etc/MailScanner/spam.assassin.prefs.conf file and > Bayes looks OK. > > If I run spamassassin > --prefspath/etc/MailScanner/spam.assassin.prefs.conf - -lint -D, I get > the following output : ...snipped... > debug: bayes: found bayes db version 2 This is OK if you're running SA 2.6x. However, if you're running SA 3.0, this should be "db version 3". If you're running SA 3.0, stop MailScanner, and run "sa-learn --sync". Then restart MailScanner. > debug: bayes: Not available for scanning, only 1 spam(s) in Bayes DB < > 200 debug: bayes: 24697 untie-ing Here's the main problem. Your bayes database hasn;t seen enough spam yet. It requires a minimum 200 ham and 200 spam before it will be used to calssify new messages. You can get a good corpus to "train" bayes with from here: http://www.spamarchive.org/ ..and read the docs about "sa-learn" here: http://spamassassin.apache.org/full/3.0.x/dist/doc/sa-learn.html Note that the files from spamarchive.org are in MBOX format, so make sure you tell "sa-learn", like this (all on one line, and best to run it as the same user MailScanner run's as): sa-learn -p /opt/MailScanner/etc/spam.assassin.prefs.conf \ --mbox \ --spam corpus.file Cheers, James -- Westheimer's Discovery: A couple of months in the laboratory can frequently save a couple of hours in the library. ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). [ Part 2, Application/PGP-SIGNATURE 196bytes. ] [ Unable to print this part. ] From lists at DVD-GOETSCH.DE Fri Oct 1 10:12:09 2004 From: lists at DVD-GOETSCH.DE (sebastian ruchti) Date: Thu Jan 12 21:27:06 2006 Subject: MailScanner being killed and restarted until system hangs Message-ID: Thank you all for your fast responses. It was indeed the bitdefender update "fun" that made the box go down.... ... unfortunetaly I wasn't monitoring the list that weekend.... I'm NOT using bigevil, but SURBL..... well - all's running fine and I'm just waiting to receive Julian's book in order to get somehow deeper involved with MailScanner ;-) .sebastian > -----Original Message----- > From: MailScanner mailing list [mailto:MAILSCANNER@JISCMAIL.AC.UK]On > Behalf Of Martin Hepworth > Sent: Friday, October 01, 2004 10:50 AM > To: MAILSCANNER@JISCMAIL.AC.UK > Subject: Re: MailScanner being killed and restarted until system hangs > > > Hi > > there was some fun last weekend with bitdefender updates, so it might be > best to redo the updates for that (or whatever the fix was). > > But also bigevil.cf is *huge*, esp with only 256MB ram you are going to > be much better off installing the spamcop_uri plugin and using the > surbl.org URI RBL. > > -- > Martin Hepworth > Snr Systems Administrator > Solid State Logic > Tel: +44 (0)1865 842300 > > > sebastian ruchti wrote: > >>Do you have any custom rulesets for SA? > >> > > > > I'm using SURBL, antidrug & backhair > > > > I'm NOT using bigevil.cf, however. > > > > .sebastian > > > > ------------------------ MailScanner list ------------------------ > > To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: > > 'leave mailscanner' in the body of the email. > > Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and > > the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). > > ********************************************************************** > > This email and any files transmitted with it are confidential and > intended solely for the use of the individual or entity to whom they > are addressed. If you have received this email in error please notify > the system manager. > > This footnote confirms that this email message has been swept > for the presence of computer viruses and is believed to be clean. > > ********************************************************************** > > ------------------------ MailScanner list ------------------------ > To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: > 'leave mailscanner' in the body of the email. > Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and > the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From misterpo at IFRANCE.COM Fri Oct 1 10:12:44 2004 From: misterpo at IFRANCE.COM (Mister PO) Date: Thu Jan 12 21:27:06 2006 Subject: MailScanner, SA and Bayes Message-ID: Hi, Thanks a lot for this information. I'm always impress how fast people respond to my queries. Do you know if I can train SA with a Netscape 7 Inobx file containing all my old spam messages ? Thanks a lot, PO. ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From mailscanner at BARENDSE.TO Fri Oct 1 10:17:47 2004 From: mailscanner at BARENDSE.TO (Remco Barendse) Date: Thu Jan 12 21:27:06 2006 Subject: MailScanner + SA3 + SURBL not registering. Message-ID: Strange.... I can confirm the same problem. I don't know how to remove a perl module, after the suggestion on this list I simply re-installed the tarball and restarted MailScanner but still no URI hits from MS. Can I do a forced re-install of all the perl modules in the install-SA-CLAMAV package? On Fri, 1 Oct 2004, Julian Field wrote: > I haven't changed the SA3 code, it all works on my production and > development systems, as do Steve's systems. > > At 21:47 30/09/2004, you wrote: >> This issue has been reported by myself and Ugo earlier this week >> on the list. I'm at a loss too. When the next version of MS >> comes out, I will upgrade and see if the problem remains. >> >> Jeff Earickson >> Colby College >> >> On Thu, 30 Sep 2004, Dean Jones wrote: >> >>> Date: Thu, 30 Sep 2004 12:49:31 -0700 >>> From: Dean Jones >>> Reply-To: MailScanner mailing list >>> To: MAILSCANNER@JISCMAIL.AC.UK >>> Subject: Re: MailScanner + SA3 + SURBL not registering. >>> >>> Steve Swaney wrote: >>>>>> SNIPPED <<< >>>>> >>>>> Doing the command that you suggested manages to make the SURBL checks >>>>> work. >>>>> >>>>> It almost as if there is a spamassassin option in MailScanner.conf that >>>>> turns it off. >>>> >>>> >>>> There is a command in MailScanner that turns SpamAssassin off; >>>> >>>> Use SpamAssassin = yes >>>> >>>> But if you have SpamAssassin turned on in MS and the test above works, >>>> MailScanner should run the exactly as the test does. How are you sure >>>> thst >>>> MS is not running the tests? >>> >>> Use SpamAssassin is set to yes, and SA is doing other checks. >>> >>> The only way i have to guess is just by the data SA drops into the logs. >>> It never hits on any URIBL_* scores running natively. >>> >>> I can forward SURBL test emails through from outside addresses and they >>> don't get hit by the SURBL checks. >>> >>> I'm at a loss :) >>> otherwise SA 3 is working great. > > -- > Julian Field > www.MailScanner.info > MailScanner thanks transtec Computers for their support > Buy the MailScanner book at www.MailScanner.info/store > > PGP footprint: EE81 D763 3DB0 0BFD E1DC 7222 11F6 5947 1415 B654 > > ------------------------ MailScanner list ------------------------ > To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: > 'leave mailscanner' in the body of the email. > Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and > the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). > ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From mailscanner at ecs.soton.ac.uk Fri Oct 1 10:20:11 2004 From: mailscanner at ecs.soton.ac.uk (Julian Field) Date: Thu Jan 12 21:27:06 2006 Subject: ANNOUNCE: MailScanner Stable 4.34.8 released Message-ID: Morning all, I have just released a new stable version 4.34.8. When installing this release, you *MUST* upgrade to MIME-tools 5.413 and MIME-Base64 3.03, MailScanner can no longer be compatible with previous versions of these packages. This finally gets rid of all the patches required to MIME-tools. Lots of new features this month, the main ones are: - Added "Bounce Spam As Attachment" and "Bounce MCP As Attachment" options. - Added "Remove These Headers" setting. - Added MIME-tools 5.413 and MIME-Base64 3.03. *****You must have these installed.***** - Added 4 new MCP options: "MCP Modify Subject", "MCP Subject Text", "High Scoring MCP Modify Subject", "High Scoring MCP Subject Text". - Added a "generic" virus scanner. This enables you to write your own virus (or other "nasty content") scanner. - Added a new setting "First Check" so you can control whether the MCP or the spam checks are done first. Download as usual from www.mailscanner.info The full ChangeLog is this: * New Features and Improvements * - Added "Bounce Spam As Attachment" and "Bounce MCP As Attachment" options. These will cause the original message (up to the Max SpamAssassin Size so it cannot be used for denial-of-service attacks) to be included in the bounced message as an RFC/822 attachment, which some mail clients can read very nicely. This lets the original sender see what message got bounced. - Updated the Qmail support. See opencomputing.sf.net for more info on Qmail. - Changed default supplied values for a few settings. This will have no effect on upgraded installations, but will improve resource use for new installations, such as not quarantining silent viruses which is pretty much a waste of disk space and i/o load. - Added POSIX back-compatibility switches to scripts wanting to use "tail". - Added "Remove These Headers" setting to allow arbitrary headers, such as delivery receipt requests, to be removed from mail. - Implemented MCP support for SpamAssassin 3.0.0. - Published packages for RPM and non-RPM systems to install ClamAV and SpamAssassin 3. - Adapted code to run with MIME-tools 5.412. - Removed most of the MIME-tools version checks as the new code doesn't specify versions for its components. - Added a load more optional modules to the version number list so we get all the modules required by SpamAssassin 3 and Mail::ClamAV. - Added MIME-tools 5.413 and MIME-Base64 3.03. You must have these installed. - Updated Catalan reports. - Added support for NOD32 2.04. - Added $longspamreport to sender.spam.sa report. - Update Trend-autoupdate script so it supports Trend's new opr.ini file. - Added 4 new MCP options to provide the same subject line modifications as you can do with spam messages: "MCP Modify Subject", "MCP Subject Text", "High Scoring MCP Modify Subject", "High Scoring MCP Subject Text". The defaults are the same as for spam. - Added a "generic" virus scanner. This enables you to write your own virus (or other "nasty content") scanner, which produces input which is read by MailScanner and used to mark certain files as virus-infected. The spec of what output is required from your scanner is in the "generic-wrapper" script. It's very simple to use. - When a child process is HUPped it will now attempt to kill any running child scanner processes, to avoid problems with uvscan consuming 100% CPU. - Timeout code added to AntiVir updating script. - Added a new setting "First Check" so you can control whether the MCP or the spam checks are done first. It is MCP by default as that is how it has run in the past, but you may well want to do spam checks first if you delete most spam. * Fixes * - Fixed another Postfix perl buffering error on a few OS's. - Added remaining MCP definitions to languages.conf files. - Fixed installation problems with MIME-Base64. - Fixed bug in Exim.pm where case of MAIL sender wasn't properly preserved. - Fixed problem causing bitdefender-autoupdate to hang. -- Julian Field www.MailScanner.info MailScanner thanks transtec Computers for their support Buy the MailScanner book at www.MailScanner.info/store PGP footprint: EE81 D763 3DB0 0BFD E1DC 7222 11F6 5947 1415 B654 From mailscanner at ecs.soton.ac.uk Fri Oct 1 10:20:11 2004 From: mailscanner at ecs.soton.ac.uk (Julian Field) Date: Thu Jan 12 21:27:06 2006 Subject: ANNOUNCE: MailScanner Stable 4.34.8 released Message-ID: Morning all, I have just released a new stable version 4.34.8. When installing this release, you *MUST* upgrade to MIME-tools 5.413 and MIME-Base64 3.03, MailScanner can no longer be compatible with previous versions of these packages. This finally gets rid of all the patches required to MIME-tools. Lots of new features this month, the main ones are: - Added "Bounce Spam As Attachment" and "Bounce MCP As Attachment" options. - Added "Remove These Headers" setting. - Added MIME-tools 5.413 and MIME-Base64 3.03. *****You must have these installed.***** - Added 4 new MCP options: "MCP Modify Subject", "MCP Subject Text", "High Scoring MCP Modify Subject", "High Scoring MCP Subject Text". - Added a "generic" virus scanner. This enables you to write your own virus (or other "nasty content") scanner. - Added a new setting "First Check" so you can control whether the MCP or the spam checks are done first. Download as usual from www.mailscanner.info The full ChangeLog is this: * New Features and Improvements * - Added "Bounce Spam As Attachment" and "Bounce MCP As Attachment" options. These will cause the original message (up to the Max SpamAssassin Size so it cannot be used for denial-of-service attacks) to be included in the bounced message as an RFC/822 attachment, which some mail clients can read very nicely. This lets the original sender see what message got bounced. - Updated the Qmail support. See opencomputing.sf.net for more info on Qmail. - Changed default supplied values for a few settings. This will have no effect on upgraded installations, but will improve resource use for new installations, such as not quarantining silent viruses which is pretty much a waste of disk space and i/o load. - Added POSIX back-compatibility switches to scripts wanting to use "tail". - Added "Remove These Headers" setting to allow arbitrary headers, such as delivery receipt requests, to be removed from mail. - Implemented MCP support for SpamAssassin 3.0.0. - Published packages for RPM and non-RPM systems to install ClamAV and SpamAssassin 3. - Adapted code to run with MIME-tools 5.412. - Removed most of the MIME-tools version checks as the new code doesn't specify versions for its components. - Added a load more optional modules to the version number list so we get all the modules required by SpamAssassin 3 and Mail::ClamAV. - Added MIME-tools 5.413 and MIME-Base64 3.03. You must have these installed. - Updated Catalan reports. - Added support for NOD32 2.04. - Added $longspamreport to sender.spam.sa report. - Update Trend-autoupdate script so it supports Trend's new opr.ini file. - Added 4 new MCP options to provide the same subject line modifications as you can do with spam messages: "MCP Modify Subject", "MCP Subject Text", "High Scoring MCP Modify Subject", "High Scoring MCP Subject Text". The defaults are the same as for spam. - Added a "generic" virus scanner. This enables you to write your own virus (or other "nasty content") scanner, which produces input which is read by MailScanner and used to mark certain files as virus-infected. The spec of what output is required from your scanner is in the "generic-wrapper" script. It's very simple to use. - When a child process is HUPped it will now attempt to kill any running child scanner processes, to avoid problems with uvscan consuming 100% CPU. - Timeout code added to AntiVir updating script. - Added a new setting "First Check" so you can control whether the MCP or the spam checks are done first. It is MCP by default as that is how it has run in the past, but you may well want to do spam checks first if you delete most spam. * Fixes * - Fixed another Postfix perl buffering error on a few OS's. - Added remaining MCP definitions to languages.conf files. - Fixed installation problems with MIME-Base64. - Fixed bug in Exim.pm where case of MAIL sender wasn't properly preserved. - Fixed problem causing bitdefender-autoupdate to hang. -- Julian Field www.MailScanner.info MailScanner thanks transtec Computers for their support Buy the MailScanner book at www.MailScanner.info/store PGP footprint: EE81 D763 3DB0 0BFD E1DC 7222 11F6 5947 1415 B654 ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From martinh at SOLID-STATE-LOGIC.COM Fri Oct 1 10:24:30 2004 From: martinh at SOLID-STATE-LOGIC.COM (Martin Hepworth) Date: Thu Jan 12 21:27:06 2006 Subject: MailScanner + SA3 + SURBL not registering. Message-ID: Remco you don't the spamcop_uri module for sa3.0 it's all built-in. HOWEVER, the rule syntax is different and I don't think the surbl URI rules aren't turned on by default - you need the edit the local.cf to turn it on. Also make sure the DNS stuff for SA3.0 is turned on as well (again I think this may be off by default), have a look at the rules in /usr/local/share/spamassassin) for which settings to add to the local.cf. -- Martin Hepworth Snr Systems Administrator Solid State Logic Tel: +44 (0)1865 842300 Remco Barendse wrote: > Strange.... I can confirm the same problem. > > I don't know how to remove a perl module, after the suggestion on this > list I simply re-installed the tarball and restarted MailScanner but still > no URI hits from MS. > > Can I do a forced re-install of all the perl modules in the > install-SA-CLAMAV package? > > > On Fri, 1 Oct 2004, Julian Field wrote: > >> I haven't changed the SA3 code, it all works on my production and >> development systems, as do Steve's systems. >> >> At 21:47 30/09/2004, you wrote: >> >>> This issue has been reported by myself and Ugo earlier this week >>> on the list. I'm at a loss too. When the next version of MS >>> comes out, I will upgrade and see if the problem remains. >>> >>> Jeff Earickson >>> Colby College >>> >>> On Thu, 30 Sep 2004, Dean Jones wrote: >>> >>>> Date: Thu, 30 Sep 2004 12:49:31 -0700 >>>> From: Dean Jones >>>> Reply-To: MailScanner mailing list >>>> To: MAILSCANNER@JISCMAIL.AC.UK >>>> Subject: Re: MailScanner + SA3 + SURBL not registering. >>>> >>>> Steve Swaney wrote: >>>> >>>>>>> SNIPPED <<< >>>>>> >>>>>> >>>>>> Doing the command that you suggested manages to make the SURBL checks >>>>>> work. >>>>>> >>>>>> It almost as if there is a spamassassin option in MailScanner.conf >>>>>> that >>>>>> turns it off. >>>>> >>>>> >>>>> >>>>> There is a command in MailScanner that turns SpamAssassin off; >>>>> >>>>> Use SpamAssassin = yes >>>>> >>>>> But if you have SpamAssassin turned on in MS and the test above works, >>>>> MailScanner should run the exactly as the test does. How are you sure >>>>> thst >>>>> MS is not running the tests? >>>> >>>> >>>> Use SpamAssassin is set to yes, and SA is doing other checks. >>>> >>>> The only way i have to guess is just by the data SA drops into the >>>> logs. >>>> It never hits on any URIBL_* scores running natively. >>>> >>>> I can forward SURBL test emails through from outside addresses and they >>>> don't get hit by the SURBL checks. >>>> >>>> I'm at a loss :) >>>> otherwise SA 3 is working great. >> >> >> -- >> Julian Field >> www.MailScanner.info >> MailScanner thanks transtec Computers for their support >> Buy the MailScanner book at www.MailScanner.info/store >> >> PGP footprint: EE81 D763 3DB0 0BFD E1DC 7222 11F6 5947 1415 B654 >> >> ------------------------ MailScanner list ------------------------ >> To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: >> 'leave mailscanner' in the body of the email. >> Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and >> the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). >> > > ------------------------ MailScanner list ------------------------ > To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: > 'leave mailscanner' in the body of the email. > Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and > the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). ********************************************************************** This email and any files transmitted with it are confidential and intended solely for the use of the individual or entity to whom they are addressed. If you have received this email in error please notify the system manager. This footnote confirms that this email message has been swept for the presence of computer viruses and is believed to be clean. ********************************************************************** ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From davidj at synaq.com Fri Oct 1 10:43:56 2004 From: davidj at synaq.com (David Jacobson) Date: Thu Jan 12 21:27:06 2006 Subject: bitdefender issues Message-ID: Hi, Just a quick note to let the group know that Bitdefender does not work with kernel 2.6.8. I asked Bitdefender what the solution was they said downgrade to 2.6.5. We have now decided to scrap Bitdefender. Just incase anyone would like to know. -- Regards, David Jacobson Technical Director SYNAQ (Pty) Ltd Tel: 011 290 6388 Cell: 083 235 0760 Mail: davidj@synaq.com WWW: http://www.synaq.com Key Fingerprint 8246 FCE1 3C22 7EFB E61B 18DF 6E8B 65E8 BD50 78A1 ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). [ Part 2, "This is a digitally signed message part" ] [ Application/PGP-SIGNATURE 196bytes. ] [ Unable to print this part. ] From raymond at PROLOCATION.NET Fri Oct 1 10:53:59 2004 From: raymond at PROLOCATION.NET (Raymond Dijkxhoorn) Date: Thu Jan 12 21:27:06 2006 Subject: bitdefender issues Message-ID: Hi! > Just a quick note to let the group know that Bitdefender does not work > with kernel 2.6.8. I asked Bitdefender what the solution was they said > downgrade to 2.6.5. We have now decided to scrap Bitdefender. > > Just incase anyone would like to know. We decided to do that same, for now, with the load issues last week we were not really happy. Bye, Raymond. ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From mailscanner at ecs.soton.ac.uk Fri Oct 1 11:21:50 2004 From: mailscanner at ecs.soton.ac.uk (Julian Field) Date: Thu Jan 12 21:27:06 2006 Subject: MailScanner + SA3 + SURBL not registering. Message-ID: I think all this stuff is switched on by default. The only change I made was to set lock_method flock as the default is very slow locking that is compatible with NFS. As most people don't share the Bayes DB over NFS, I don't understand why they didn't make the faster version the default. But they didn't. Ho hum. At 10:24 01/10/2004, you wrote: >Remco > >you don't the spamcop_uri module for sa3.0 it's all built-in. > >HOWEVER, the rule syntax is different and I don't think the surbl URI >rules aren't turned on by default - you need the edit the local.cf to >turn it on. Also make sure the DNS stuff for SA3.0 is turned on as well >(again I think this may be off by default), have a look at the rules in >/usr/local/share/spamassassin) for which settings to add to the local.cf. > > >-- >Martin Hepworth >Snr Systems Administrator >Solid State Logic >Tel: +44 (0)1865 842300 > > >Remco Barendse wrote: >>Strange.... I can confirm the same problem. >> >>I don't know how to remove a perl module, after the suggestion on this >>list I simply re-installed the tarball and restarted MailScanner but still >>no URI hits from MS. >> >>Can I do a forced re-install of all the perl modules in the >>install-SA-CLAMAV package? >> >> >>On Fri, 1 Oct 2004, Julian Field wrote: >> >>>I haven't changed the SA3 code, it all works on my production and >>>development systems, as do Steve's systems. >>> >>>At 21:47 30/09/2004, you wrote: >>> >>>>This issue has been reported by myself and Ugo earlier this week >>>>on the list. I'm at a loss too. When the next version of MS >>>>comes out, I will upgrade and see if the problem remains. >>>> >>>>Jeff Earickson >>>>Colby College >>>> >>>>On Thu, 30 Sep 2004, Dean Jones wrote: >>>> >>>>>Date: Thu, 30 Sep 2004 12:49:31 -0700 >>>>>From: Dean Jones >>>>>Reply-To: MailScanner mailing list >>>>>To: MAILSCANNER@JISCMAIL.AC.UK >>>>>Subject: Re: MailScanner + SA3 + SURBL not registering. >>>>> >>>>>Steve Swaney wrote: >>>>> >>>>>>>>SNIPPED <<< >>>>>>> >>>>>>> >>>>>>>Doing the command that you suggested manages to make the SURBL checks >>>>>>>work. >>>>>>> >>>>>>>It almost as if there is a spamassassin option in MailScanner.conf >>>>>>>that >>>>>>>turns it off. >>>>>> >>>>>> >>>>>> >>>>>>There is a command in MailScanner that turns SpamAssassin off; >>>>>> >>>>>>Use SpamAssassin = yes >>>>>> >>>>>>But if you have SpamAssassin turned on in MS and the test above works, >>>>>>MailScanner should run the exactly as the test does. How are you sure >>>>>>thst >>>>>>MS is not running the tests? >>>>> >>>>> >>>>>Use SpamAssassin is set to yes, and SA is doing other checks. >>>>> >>>>>The only way i have to guess is just by the data SA drops into the >>>>>logs. >>>>>It never hits on any URIBL_* scores running natively. >>>>> >>>>>I can forward SURBL test emails through from outside addresses and they >>>>>don't get hit by the SURBL checks. >>>>> >>>>>I'm at a loss :) >>>>>otherwise SA 3 is working great. >>> >>> >>>-- >>>Julian Field >>>www.MailScanner.info >>>MailScanner thanks transtec Computers for their support >>>Buy the MailScanner book at www.MailScanner.info/store >>> >>>PGP footprint: EE81 D763 3DB0 0BFD E1DC 7222 11F6 5947 1415 B654 >>> >>>------------------------ MailScanner list ------------------------ >>>To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: >>>'leave mailscanner' in the body of the email. >>>Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and >>>the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). >> >>------------------------ MailScanner list ------------------------ >>To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: >>'leave mailscanner' in the body of the email. >>Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and >>the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). > >********************************************************************** > >This email and any files transmitted with it are confidential and >intended solely for the use of the individual or entity to whom they >are addressed. If you have received this email in error please notify >the system manager. > >This footnote confirms that this email message has been swept >for the presence of computer viruses and is believed to be clean. > >********************************************************************** > >------------------------ MailScanner list ------------------------ >To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: >'leave mailscanner' in the body of the email. >Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and >the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). -- Julian Field www.MailScanner.info MailScanner thanks transtec Computers for their support Buy the MailScanner book at www.MailScanner.info/store PGP footprint: EE81 D763 3DB0 0BFD E1DC 7222 11F6 5947 1415 B654 ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From mailscanner at BARENDSE.TO Fri Oct 1 11:31:25 2004 From: mailscanner at BARENDSE.TO (Remco Barendse) Date: Thu Jan 12 21:27:06 2006 Subject: MailScanner + SA3 + SURBL not registering. Message-ID: I have two identical boxes, both running the same distro and module versions and MailScanner version. One box was installed just one week after the other. I use the exact same config files for the boxes (I keep one as my main config file box and simply clone the config to the other box only replacing the hostname). On one box it is working as it should, on the other box it isn't. Both local.cf files on either box is completely empty. I really don't know where to look for the problem. On Fri, 1 Oct 2004, Julian Field wrote: > I think all this stuff is switched on by default. > The only change I made was to set > lock_method flock > as the default is very slow locking that is compatible with NFS. As most > people don't share the Bayes DB over NFS, I don't understand why they > didn't make the faster version the default. But they didn't. Ho hum. > > At 10:24 01/10/2004, you wrote: >> Remco >> >> you don't the spamcop_uri module for sa3.0 it's all built-in. >> >> HOWEVER, the rule syntax is different and I don't think the surbl URI >> rules aren't turned on by default - you need the edit the local.cf to >> turn it on. Also make sure the DNS stuff for SA3.0 is turned on as well >> (again I think this may be off by default), have a look at the rules in >> /usr/local/share/spamassassin) for which settings to add to the local.cf. >> >> >> -- >> Martin Hepworth >> Snr Systems Administrator >> Solid State Logic >> Tel: +44 (0)1865 842300 >> >> >> Remco Barendse wrote: >>> Strange.... I can confirm the same problem. >>> >>> I don't know how to remove a perl module, after the suggestion on this >>> list I simply re-installed the tarball and restarted MailScanner but still >>> no URI hits from MS. >>> >>> Can I do a forced re-install of all the perl modules in the >>> install-SA-CLAMAV package? >>> >>> >>> On Fri, 1 Oct 2004, Julian Field wrote: >>> >>>> I haven't changed the SA3 code, it all works on my production and >>>> development systems, as do Steve's systems. >>>> >>>> At 21:47 30/09/2004, you wrote: >>>> >>>>> This issue has been reported by myself and Ugo earlier this week >>>>> on the list. I'm at a loss too. When the next version of MS >>>>> comes out, I will upgrade and see if the problem remains. >>>>> >>>>> Jeff Earickson >>>>> Colby College >>>>> >>>>> On Thu, 30 Sep 2004, Dean Jones wrote: >>>>> >>>>>> Date: Thu, 30 Sep 2004 12:49:31 -0700 >>>>>> From: Dean Jones >>>>>> Reply-To: MailScanner mailing list >>>>>> To: MAILSCANNER@JISCMAIL.AC.UK >>>>>> Subject: Re: MailScanner + SA3 + SURBL not registering. >>>>>> >>>>>> Steve Swaney wrote: >>>>>> >>>>>>>>> SNIPPED <<< >>>>>>>> >>>>>>>> >>>>>>>> Doing the command that you suggested manages to make the SURBL checks >>>>>>>> work. >>>>>>>> >>>>>>>> It almost as if there is a spamassassin option in MailScanner.conf >>>>>>>> that >>>>>>>> turns it off. >>>>>>> >>>>>>> >>>>>>> >>>>>>> There is a command in MailScanner that turns SpamAssassin off; >>>>>>> >>>>>>> Use SpamAssassin = yes >>>>>>> >>>>>>> But if you have SpamAssassin turned on in MS and the test above works, >>>>>>> MailScanner should run the exactly as the test does. How are you sure >>>>>>> thst >>>>>>> MS is not running the tests? >>>>>> >>>>>> >>>>>> Use SpamAssassin is set to yes, and SA is doing other checks. >>>>>> >>>>>> The only way i have to guess is just by the data SA drops into the >>>>>> logs. >>>>>> It never hits on any URIBL_* scores running natively. >>>>>> >>>>>> I can forward SURBL test emails through from outside addresses and they >>>>>> don't get hit by the SURBL checks. >>>>>> >>>>>> I'm at a loss :) >>>>>> otherwise SA 3 is working great. >>>> >>>> >>>> -- >>>> Julian Field >>>> www.MailScanner.info >>>> MailScanner thanks transtec Computers for their support >>>> Buy the MailScanner book at www.MailScanner.info/store >>>> >>>> PGP footprint: EE81 D763 3DB0 0BFD E1DC 7222 11F6 5947 1415 B654 >>>> >>>> ------------------------ MailScanner list ------------------------ >>>> To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: >>>> 'leave mailscanner' in the body of the email. >>>> Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and >>>> the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). >>> >>> ------------------------ MailScanner list ------------------------ >>> To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: >>> 'leave mailscanner' in the body of the email. >>> Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and >>> the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). >> >> ********************************************************************** >> >> This email and any files transmitted with it are confidential and >> intended solely for the use of the individual or entity to whom they >> are addressed. If you have received this email in error please notify >> the system manager. >> >> This footnote confirms that this email message has been swept >> for the presence of computer viruses and is believed to be clean. >> >> ********************************************************************** >> >> ------------------------ MailScanner list ------------------------ >> To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: >> 'leave mailscanner' in the body of the email. >> Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and >> the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). > > -- > Julian Field > www.MailScanner.info > MailScanner thanks transtec Computers for their support > Buy the MailScanner book at www.MailScanner.info/store > > PGP footprint: EE81 D763 3DB0 0BFD E1DC 7222 11F6 5947 1415 B654 > > ------------------------ MailScanner list ------------------------ > To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: > 'leave mailscanner' in the body of the email. > Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and > the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). > ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From bg.mahesh at INDIAINFO.COM Fri Oct 1 11:39:52 2004 From: bg.mahesh at INDIAINFO.COM (BG Mahesh) Date: Thu Jan 12 21:27:06 2006 Subject: Installation problems with MS 4.34.8-1/MIME::QuotedPrint Message-ID: hi I am not able to install MS 4.34.8-1. The error message I get is, Installing tnef decoder Preparing... ########################################### [100%] package tnef-1.2.3.1-1 is already installed Now to install MailScanner itself. error: Failed dependencies: perl(MIME::QuotedPrint) >= 3.03 is needed by (installed) perl-MIME-tools-5.413-1 My setup Redhat Linux Perl 5.8.3 MIME::QuotedPrint : 3.03 MIME::Tools : 5.413 MIME::Base64 : 3.03 What am I doing wrong? -- B.G. Mahesh bg.mahesh@indiainfo.com http://www.indiainfo.com/ -- ______________________________________________ IndiaInfo Mail - the free e-mail service with a difference! www.indiainfo.com Check out our value-added Premium features, such as an extra 20MB for mail storage, POP3, e-mail forwarding, and ads-free mailboxes! Powered by Outblaze ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From mailscanner at ecs.soton.ac.uk Fri Oct 1 12:07:18 2004 From: mailscanner at ecs.soton.ac.uk (Julian Field) Date: Thu Jan 12 21:27:06 2006 Subject: Installation problems with MS 4.34.8-1/MIME::QuotedPrint Message-ID: At 11:39 01/10/2004, you wrote: >hi > >I am not able to install MS 4.34.8-1. The error message I get is, > >Installing tnef decoder >Preparing... ########################################### [100%] > package tnef-1.2.3.1-1 is already installed > >Now to install MailScanner itself. > >error: Failed dependencies: > perl(MIME::QuotedPrint) >= 3.03 is needed by (installed) > perl-MIME-tools-5.413-1 > >My setup > >Redhat Linux >Perl 5.8.3 >MIME::QuotedPrint : 3.03 >MIME::Tools : 5.413 >MIME::Base64 : 3.03 > >What am I doing wrong? I don't know quite what is going on here, I saw a few similar problems myself sometimes, but I couldn't come up with a definite reason for it. It knows you have QuotedPrint 3.03 but then says you need it installed. All I ended up doing was forcing the install of the main MailScanner rpm. What happens if you rpm -e MIME::Base64 and then reinstall it? Anyone else got any ideas on this? -- Julian Field www.MailScanner.info MailScanner thanks transtec Computers for their support Buy the MailScanner book at www.MailScanner.info/store PGP footprint: EE81 D763 3DB0 0BFD E1DC 7222 11F6 5947 1415 B654 ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From danslists at CONPOINT.COM Fri Oct 1 12:58:00 2004 From: danslists at CONPOINT.COM (Dan Spray) Date: Thu Jan 12 21:27:06 2006 Subject: Need clarification on whitelist rules Message-ID: Hello, I am using MailScanner 4.33.3-1 and am using the spam.whitelist.rules file to whitelist for a few customers that thought my scanning was to tight. My spam has gotten so much better with the latest version of MailScanner that I can actually go through the spam I do get and try to find a way to block it. It appears to me that if a message is sent to multiple recipients and one of those recipients is in the spam.whitelist.rules file that the message is whitelisted for everyone. Is this correct? If so is there a way to block it to everyone other than the one whitelisted? Thanks in advance, Dan -- Dan Spray, Director of Internet Operations dan@conpoint.com Connecting Point Norfolk, NE < http://www.conpoint.com/> Voice - 402.844.2308 Fax - 402.371.4515 "The porcupine with the sharpest quills gets stuck on a tree more often." -- ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From mailscanner at ecs.soton.ac.uk Fri Oct 1 13:56:42 2004 From: mailscanner at ecs.soton.ac.uk (Julian Field) Date: Thu Jan 12 21:27:06 2006 Subject: Need clarification on whitelist rules Message-ID: At 12:58 01/10/2004, you wrote: >I am using MailScanner 4.33.3-1 and am using the spam.whitelist.rules file >to whitelist for a few customers that thought my scanning was to tight. My >spam has gotten so much better with the latest version of MailScanner that I >can actually go through the spam I do get and try to find a way to block it. >It appears to me that if a message is sent to multiple recipients and one of >those recipients is in the spam.whitelist.rules file that the message is >whitelisted for everyone. Is this correct? Yes. > If so is there a way to block >it to everyone other than the one whitelisted? What you need is a Custom Function that edits the recipients list in each message, according to whether they want to be filtered or not. I've done something like this already, just haven't yet published it. What form would people like it in? Added to the per-user white and black list code? It would have to be a simple "remove them from the message if it's in their blacklist or not in their whitelist". Can people see any problems with this? Something is nagging me that this isn't the correct functionality, but I can't see what the right answer is for definite. -- Julian Field www.MailScanner.info MailScanner thanks transtec Computers for their support Buy the MailScanner book at www.MailScanner.info/store PGP footprint: EE81 D763 3DB0 0BFD E1DC 7222 11F6 5947 1415 B654 ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From wont-i at wkh.org Fri Oct 1 14:19:52 2004 From: wont-i at wkh.org (William K. Hardeman) Date: Thu Jan 12 21:27:06 2006 Subject: Need clarification on whitelist rules Message-ID: --On Friday, October 01, 2004 13:56 +0100 Julian Field wrote: > What form would people like it in? Added to the per-user white and black > list code? > It would have to be a simple "remove them from the message if it's in > their > blacklist or not in their whitelist". > > Can people see any problems with this? Something is nagging me that this > isn't the correct functionality, but I can't see what the right answer is > for definite. The only problem I can see with it right now is that there will have to be a rule this rule to check the To:, CC: and BCC: headers to ensure that it gets disposed of properly in the case that all possible local recipients are removed. I'm sure you've probably already thought of that, though. :-) Will -- ---------------------------------------------------------------------------- William K. Hardeman wont-i@wkh.org http://www.wkh.org The most exciting phrase to hear in science, the one that heralds new discoveries, is not "Eureka!" (I found it!) but "That's funny ..." -- Isaac Asimov Always listen to experts. They'll tell you what can't be done and why. Then do it. --Robert A. Heinlein ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From misterpo at IFRANCE.COM Fri Oct 1 14:24:05 2004 From: misterpo at IFRANCE.COM (Mister PO) Date: Thu Jan 12 21:27:06 2006 Subject: MailScanner, SA and Bayes : still problems Message-ID: What happens with the sa-learn process is very strange. I have run sa-learn on several files downloaded from spamarchive.org and when I run spamassassin --lint -D, it seems that content of Bayes DB is removed ! Learned from 913 message(s) (1117 message(s) examined). debug: Initialising learner debug: bayes: 31672 tie-ing to DB file R/O /usr/var/spool/MailScanner/spamassassin/bayes_toks debug: bayes: 31672 tie-ing to DB file R/O /usr/var/spool/MailScanner/spamassassin/bayes_seen debug: bayes: found bayes db version 2 debug: bayes: Not available for scanning, only 15 ham(s) in Bayes DB < 200 Should I shutdown spamd before running the spamassassin command ? How can I rebuild a fresh new Bayes DB ? Thanks, PO. ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From campbell at cnpapers.com Fri Oct 1 14:41:59 2004 From: campbell at cnpapers.com (Steve Campbell) Date: Thu Jan 12 21:27:06 2006 Subject: Need clarification on whitelist rules Message-ID: ----- Original Message ----- From: "Julian Field" To: Sent: Friday, October 01, 2004 8:56 AM Subject: Re: Need clarification on whitelist rules > At 12:58 01/10/2004, you wrote: > >I am using MailScanner 4.33.3-1 and am using the spam.whitelist.rules file > >to whitelist for a few customers that thought my scanning was to tight. My > >spam has gotten so much better with the latest version of MailScanner that I > >can actually go through the spam I do get and try to find a way to block it. > >It appears to me that if a message is sent to multiple recipients and one of > >those recipients is in the spam.whitelist.rules file that the message is > >whitelisted for everyone. Is this correct? > > Yes. > > > If so is there a way to block > >it to everyone other than the one whitelisted? > > What you need is a Custom Function that edits the recipients list in each > message, according to whether they want to be filtered or not. I've done > something like this already, just haven't yet published it. > > What form would people like it in? Added to the per-user white and black > list code? > It would have to be a simple "remove them from the message if it's in their > blacklist or not in their whitelist". ******* I would still prefer a simple "global" entry in the spam.blacklist and spam.whitelist files as opposed to the per-user prefs. With the "and" option you have implemented, I feel this would suffice for us who do not use per-user prefs in any form. I don't know, though, if this would be negated by the envelop-only restrictions for email destinations. I'm just not knowledgable enough about the specifics (or how to spell knowledgable.) ******* > > Can people see any problems with this? Something is nagging me that this > isn't the correct functionality, but I can't see what the right answer is > for definite. > -- > Julian Field ******* As I understand this, you would be looking at the CC & BC fields, along with multiple recipients, and you would be getting away from just interrogating the envelop. I see this exploding into a lot more code down the road, but feel this would solve a lot of questions to the list. I like it - if this is what is intended. Thanks. ******* Steve Campbell campbell@cnpapers.com Charleston Newspapers ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From mailscanner at ecs.soton.ac.uk Fri Oct 1 14:42:12 2004 From: mailscanner at ecs.soton.ac.uk (Julian Field) Date: Thu Jan 12 21:27:06 2006 Subject: Need clarification on whitelist rules Message-ID: At 14:19 01/10/2004, you wrote: >--On Friday, October 01, 2004 13:56 +0100 Julian Field > wrote: > >>What form would people like it in? Added to the per-user white and black >>list code? >>It would have to be a simple "remove them from the message if it's in >>their >>blacklist or not in their whitelist". >> >>Can people see any problems with this? Something is nagging me that this >>isn't the correct functionality, but I can't see what the right answer is >>for definite. > >The only problem I can see with it right now is that there will have to be >a rule this rule to check the To:, CC: and BCC: headers to ensure that it >gets disposed of properly in the case that all possible local recipients >are removed. I'm sure you've probably already thought of that, though. :-) Yes I have :-) That's easy, I don't use the addresses in the headers anyway, only the real addresses which are in the envelope. -- Julian Field www.MailScanner.info MailScanner thanks transtec Computers for their support Buy the MailScanner book at www.MailScanner.info/store PGP footprint: EE81 D763 3DB0 0BFD E1DC 7222 11F6 5947 1415 B654 ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From mailscanner at ecs.soton.ac.uk Fri Oct 1 14:43:45 2004 From: mailscanner at ecs.soton.ac.uk (Julian Field) Date: Thu Jan 12 21:27:06 2006 Subject: MailScanner, SA and Bayes : still problems Message-ID: At 14:24 01/10/2004, you wrote: >What happens with the sa-learn process is very strange. > >I have run sa-learn on several files downloaded from spamarchive.org and >when I run spamassassin --lint -D, it seems that content of Bayes DB is >removed ! > >Learned from 913 message(s) (1117 message(s) examined). >debug: Initialising learner >debug: bayes: 31672 tie-ing to DB file >R/O /usr/var/spool/MailScanner/spamassassin/bayes_toks >debug: bayes: 31672 tie-ing to DB file >R/O /usr/var/spool/MailScanner/spamassassin/bayes_seen >debug: bayes: found bayes db version 2 >debug: bayes: Not available for scanning, only 15 ham(s) in Bayes DB < 200 > >Should I shutdown spamd before running the spamassassin command ? How can I >rebuild a fresh new Bayes DB ? If you have only taught it lots of spam, and 15 ham (i.e. 15 non-spam messages), then you will see this. It has to have at least 200 non-spam messages as well as lots of spam messages before it will start using it. Just let it run on your system for a while to let it auto-learn enough non-spam and it should all start working. -- Julian Field www.MailScanner.info MailScanner thanks transtec Computers for their support Buy the MailScanner book at www.MailScanner.info/store PGP footprint: EE81 D763 3DB0 0BFD E1DC 7222 11F6 5947 1415 B654 ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From rcooper at DWFORD.COM Fri Oct 1 14:56:50 2004 From: rcooper at DWFORD.COM (Rick Cooper) Date: Thu Jan 12 21:27:06 2006 Subject: Need clarification on whitelist rules Message-ID: > -----Original Message----- > From: MailScanner mailing list [mailto:MAILSCANNER@JISCMAIL.AC.UK]On > Behalf Of Julian Field > Sent: Friday, October 01, 2004 7:57 AM > To: MAILSCANNER@JISCMAIL.AC.UK > Subject: Re: Need clarification on whitelist rules > > > > What you need is a Custom Function that edits the recipients list in each > message, according to whether they want to be filtered or not. I've done > something like this already, just haven't yet published it. > > What form would people like it in? Added to the per-user white and black > list code? > It would have to be a simple "remove them from the message if > it's in their > blacklist or not in their whitelist". > > Can people see any problems with this? Something is nagging me that this > isn't the correct functionality, but I can't see what the right answer is > for definite. > -- I guess my first question is how it's tagged as spam when there is a rule file for the spam scoring settings? If user A tagges as spam with a score of 5.0 and user B tagges it with a score of 7.5 how does the message get tagged, since a score of 6.5 would flag as spam for user A and ham for user B? I would think where ever this happens would be the place to check the black/white since that would make it absolutely spam or ham at that point per user. I don't see where this is taken into account within the HandleHamAndSpam sub though? Rick -- This message has been scanned for viruses and dangerous content by MailScanner, and is believed to be clean. ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From mailscanner at ecs.soton.ac.uk Fri Oct 1 15:10:15 2004 From: mailscanner at ecs.soton.ac.uk (Julian Field) Date: Thu Jan 12 21:27:06 2006 Subject: Need clarification on whitelist rules Message-ID: At 14:56 01/10/2004, you wrote: > > -----Original Message----- > > From: MailScanner mailing list [mailto:MAILSCANNER@JISCMAIL.AC.UK]On > > Behalf Of Julian Field > > Sent: Friday, October 01, 2004 7:57 AM > > To: MAILSCANNER@JISCMAIL.AC.UK > > Subject: Re: Need clarification on whitelist rules > > > > > > > > > What you need is a Custom Function that edits the recipients list in each > > message, according to whether they want to be filtered or not. I've done > > something like this already, just haven't yet published it. > > > > What form would people like it in? Added to the per-user white and black > > list code? > > It would have to be a simple "remove them from the message if > > it's in their > > blacklist or not in their whitelist". > > > > Can people see any problems with this? Something is nagging me that this > > isn't the correct functionality, but I can't see what the right answer is > > for definite. > > -- > >I guess my first question is how it's tagged as spam when there is a rule >file for the spam scoring settings? If user A tagges as spam with a score of >5.0 and user B tagges it with a score of 7.5 how does the message get >tagged, since a score of 6.5 would flag as spam for user A and ham for user >B? We use it only for automatic spam deletion. In your example, user A would be removed from the list of recipients, and it would be normally delivered to user B. To use it for anything other than spam deletion is pretty much impossible. -- Julian Field www.MailScanner.info MailScanner thanks transtec Computers for their support Buy the MailScanner book at www.MailScanner.info/store PGP footprint: EE81 D763 3DB0 0BFD E1DC 7222 11F6 5947 1415 B654 ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From davidj at synaq.com Fri Oct 1 15:14:39 2004 From: davidj at synaq.com (David Jacobson) Date: Thu Jan 12 21:27:06 2006 Subject: www.mailscanner.info Message-ID: Hi, It seems the MailScanner website is down. Just informing Julian incase he is not aware :) -- Regards, David Jacobson Technical Director SYNAQ (Pty) Ltd Tel: 011 290 6388 Cell: 083 235 0760 Mail: davidj@synaq.com WWW: http://www.synaq.com Key Fingerprint 8246 FCE1 3C22 7EFB E61B 18DF 6E8B 65E8 BD50 78A1 ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). [ Part 2, "This is a digitally signed message part" ] [ Application/PGP-SIGNATURE 196bytes. ] [ Unable to print this part. ] From rcooper at DWFORD.COM Fri Oct 1 15:26:59 2004 From: rcooper at DWFORD.COM (Rick Cooper) Date: Thu Jan 12 21:27:06 2006 Subject: Need clarification on whitelist rules Message-ID: > -----Original Message----- > From: MailScanner mailing list [mailto:MAILSCANNER@JISCMAIL.AC.UK]On > Behalf Of Julian Field > Sent: Friday, October 01, 2004 9:10 AM > To: MAILSCANNER@JISCMAIL.AC.UK > Subject: Re: Need clarification on whitelist rules > > > At 14:56 01/10/2004, you wrote: > > > -----Original Message----- > > > From: MailScanner mailing list [mailto:MAILSCANNER@JISCMAIL.AC.UK]On > > > Behalf Of Julian Field > > > Sent: Friday, October 01, 2004 7:57 AM > > > To: MAILSCANNER@JISCMAIL.AC.UK > > > Subject: Re: Need clarification on whitelist rules > > > > > > > > > > > > > > What you need is a Custom Function that edits the recipients > list in each > > > message, according to whether they want to be filtered or > not. I've done > > > something like this already, just haven't yet published it. > > > > > > What form would people like it in? Added to the per-user > white and black > > > list code? > > > It would have to be a simple "remove them from the message if > > > it's in their > > > blacklist or not in their whitelist". > > > > > > Can people see any problems with this? Something is nagging > me that this > > > isn't the correct functionality, but I can't see what the > right answer is > > > for definite. > > > -- > > > >I guess my first question is how it's tagged as spam when there is a rule > >file for the spam scoring settings? If user A tagges as spam > with a score of > >5.0 and user B tagges it with a score of 7.5 how does the message get > >tagged, since a score of 6.5 would flag as spam for user A and > ham for user > >B? > > We use it only for automatic spam deletion. In your example, user A would > be removed from the list of recipients, and it would be normally delivered > to user B. To use it for anything other than spam deletion is pretty much > impossible. > > -- Isn't this what you are proposing above? > > > It would have to be a simple "remove them from the message if > > > it's in their > > > blacklist or not in their whitelist". so if you handle the white/black listing here if it's spam and whitelisted don't remove them and if it's ham but blacklisted do remove them, or am I missing something? I would think where every the per user scoring is checked if the whitelist/blacklist was checked as well it would simply adjust the actual tagging as spam or ham the same as the scoring based tagging would, the difference being if it scores as 6.5 and the user threshold is 7.5 but it's blacklisted it would be tagged as spam and not ham? I'm sorry if I am coming across dense just looking for a way to simplify the overall code changes Rick -- This message has been scanned for viruses and dangerous content by MailScanner, and is believed to be clean. ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From mailscanner at ecs.soton.ac.uk Fri Oct 1 16:04:07 2004 From: mailscanner at ecs.soton.ac.uk (Julian Field) Date: Thu Jan 12 21:27:06 2006 Subject: Need clarification on whitelist rules Message-ID: At 15:26 01/10/2004, you wrote: > > -----Original Message----- > > From: MailScanner mailing list [mailto:MAILSCANNER@JISCMAIL.AC.UK]On > > Behalf Of Julian Field > > Sent: Friday, October 01, 2004 9:10 AM > > To: MAILSCANNER@JISCMAIL.AC.UK > > Subject: Re: Need clarification on whitelist rules > > > > > > At 14:56 01/10/2004, you wrote: > > > > -----Original Message----- > > > > From: MailScanner mailing list [mailto:MAILSCANNER@JISCMAIL.AC.UK]On > > > > Behalf Of Julian Field > > > > Sent: Friday, October 01, 2004 7:57 AM > > > > To: MAILSCANNER@JISCMAIL.AC.UK > > > > Subject: Re: Need clarification on whitelist rules > > > > > > > > > > > > > > > > > > > What you need is a Custom Function that edits the recipients > > list in each > > > > message, according to whether they want to be filtered or > > not. I've done > > > > something like this already, just haven't yet published it. > > > > > > > > What form would people like it in? Added to the per-user > > white and black > > > > list code? > > > > It would have to be a simple "remove them from the message if > > > > it's in their > > > > blacklist or not in their whitelist". > > > > > > > > Can people see any problems with this? Something is nagging > > me that this > > > > isn't the correct functionality, but I can't see what the > > right answer is > > > > for definite. > > > > -- > > > > > >I guess my first question is how it's tagged as spam when there is a rule > > >file for the spam scoring settings? If user A tagges as spam > > with a score of > > >5.0 and user B tagges it with a score of 7.5 how does the message get > > >tagged, since a score of 6.5 would flag as spam for user A and > > ham for user > > >B? > > > > We use it only for automatic spam deletion. In your example, user A would > > be removed from the list of recipients, and it would be normally delivered > > to user B. To use it for anything other than spam deletion is pretty much > > impossible. > > > > -- > >Isn't this what you are proposing above? > > > > > It would have to be a simple "remove them from the message if > > > > it's in their > > > > blacklist or not in their whitelist". > >so if you handle the white/black listing here if it's spam and whitelisted >don't remove them and if it's ham but blacklisted do remove them, or am I >missing something? > I would think where every the per user scoring is checked >if the whitelist/blacklist was checked as well it would simply adjust the >actual tagging as spam or ham the same as the scoring based tagging would, >the difference being if it scores as 6.5 and the user threshold is 7.5 but >it's blacklisted it would be tagged as spam and not ham? I don't understand that sentence at all, sorry. > I'm sorry if I am >coming across dense just looking for a way to simplify the overall code >changes -- Julian Field www.MailScanner.info MailScanner thanks transtec Computers for their support Buy the MailScanner book at www.MailScanner.info/store PGP footprint: EE81 D763 3DB0 0BFD E1DC 7222 11F6 5947 1415 B654 ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From mailscanner at ecs.soton.ac.uk Fri Oct 1 16:06:46 2004 From: mailscanner at ecs.soton.ac.uk (Julian Field) Date: Thu Jan 12 21:27:06 2006 Subject: www.mailscanner.info Message-ID: At 15:14 01/10/2004, you wrote: >It seems the MailScanner website is down. Just informing Julian incase >he is not aware :) Our infrastructure people are playing with websites this afternoon, and they have screwed up the firewall in the process. Hopefully they are now fixing it! Thanks for letting me know. -- Julian Field www.MailScanner.info MailScanner thanks transtec Computers for their support Buy the MailScanner book at www.MailScanner.info/store PGP footprint: EE81 D763 3DB0 0BFD E1DC 7222 11F6 5947 1415 B654 ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From martinh at SOLID-STATE-LOGIC.COM Fri Oct 1 16:20:54 2004 From: martinh at SOLID-STATE-LOGIC.COM (Martin Hepworth) Date: Thu Jan 12 21:27:06 2006 Subject: www.mailscanner.info Message-ID: Works... at the moment... -- Martin Hepworth Snr Systems Administrator Solid State Logic Tel: +44 (0)1865 842300 Julian Field wrote: > At 15:14 01/10/2004, you wrote: > >> It seems the MailScanner website is down. Just informing Julian incase >> he is not aware :) > > > Our infrastructure people are playing with websites this afternoon, and > they have screwed up the firewall in the process. Hopefully they are now > fixing it! > > Thanks for letting me know. > -- > Julian Field > www.MailScanner.info > MailScanner thanks transtec Computers for their support > Buy the MailScanner book at www.MailScanner.info/store > > PGP footprint: EE81 D763 3DB0 0BFD E1DC 7222 11F6 5947 1415 B654 > > ------------------------ MailScanner list ------------------------ > To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: > 'leave mailscanner' in the body of the email. > Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and > the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). ********************************************************************** This email and any files transmitted with it are confidential and intended solely for the use of the individual or entity to whom they are addressed. If you have received this email in error please notify the system manager. This footnote confirms that this email message has been swept for the presence of computer viruses and is believed to be clean. ********************************************************************** ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From ssilva at SGVWATER.COM Fri Oct 1 16:24:25 2004 From: ssilva at SGVWATER.COM (Scott Silva) Date: Thu Jan 12 21:27:06 2006 Subject: MailScanner + SA3 + SURBL not registering. Message-ID:

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Daniel Bird wrote: | | |> |> /etc/mail/spamassassin is clean (empty as a matter of fact), and there |> are no such rules in spam.assassin.prefs.conf. I found an old user_prefs |> in /root/.spamassassin and have killed it. I have no |> /etc/mail/spamassassin/init.pre it is in /usr/etc/mail/spamassassin/ but |> that line is commented out. I could use a good sample of a URIBL |> rich email though. | | | | Here's one that definitely matches: http://www.sghms.ac.uk/test_SURBL.txt | Save that to a file and run spamassassin -D -t From dean at SAHRA.ARIZONA.EDU Fri Oct 1 16:29:24 2004 From: dean at SAHRA.ARIZONA.EDU (Dean Jones) Date: Thu Jan 12 21:27:06 2006 Subject: MailScanner + SA3 + SURBL not registering. Message-ID: Remco Barendse wrote: > Strange.... I can confirm the same problem. > > I don't know how to remove a perl module, after the suggestion on this > list I simply re-installed the tarball and restarted MailScanner but still > no URI hits from MS. > > Can I do a forced re-install of all the perl modules in the > install-SA-CLAMAV package? > hye, this is what i did to finally get Net::DNS to fully re-install. it is probably not the 'proper' way to do this, so please be careful. When i upgraded to SA 3 i used the CPAN shell to make sure Net::DNS was upgraded. apparantly this wasn't enough. Make sure spamassassin/mailscanner isn't running or doing checks while you do this. I dloaded the version of Net::DNS i needed from cpan.org. Then i found my perl install and lib/site_perl/5.8.4/Net After backing it up, i removed the DNS.pm and lib/site_perl/5.8.4/Net/DNS directory. Then i re-compiled and installed from the tar.gz i dloaded from cpan.org. Fired MailScanner back up and RBL and URIBL checks were both working. Hopefully that will do it for you. > > On Fri, 1 Oct 2004, Julian Field wrote: > >> I haven't changed the SA3 code, it all works on my production and >> development systems, as do Steve's systems. >> >> At 21:47 30/09/2004, you wrote: >> >>> This issue has been reported by myself and Ugo earlier this week >>> on the list. I'm at a loss too. When the next version of MS >>> comes out, I will upgrade and see if the problem remains. >>> >>> Jeff Earickson >>> Colby College >>> >>> On Thu, 30 Sep 2004, Dean Jones wrote: >>> >>>> Date: Thu, 30 Sep 2004 12:49:31 -0700 >>>> From: Dean Jones >>>> Reply-To: MailScanner mailing list >>>> To: MAILSCANNER@JISCMAIL.AC.UK >>>> Subject: Re: MailScanner + SA3 + SURBL not registering. >>>> >>>> Steve Swaney wrote: >>>> >>>>>>> SNIPPED <<< >>>>>> >>>>>> >>>>>> Doing the command that you suggested manages to make the SURBL checks >>>>>> work. >>>>>> >>>>>> It almost as if there is a spamassassin option in MailScanner.conf >>>>>> that >>>>>> turns it off. >>>>> >>>>> >>>>> >>>>> There is a command in MailScanner that turns SpamAssassin off; >>>>> >>>>> Use SpamAssassin = yes >>>>> >>>>> But if you have SpamAssassin turned on in MS and the test above works, >>>>> MailScanner should run the exactly as the test does. How are you sure >>>>> thst >>>>> MS is not running the tests? >>>> >>>> >>>> Use SpamAssassin is set to yes, and SA is doing other checks. >>>> >>>> The only way i have to guess is just by the data SA drops into the >>>> logs. >>>> It never hits on any URIBL_* scores running natively. >>>> >>>> I can forward SURBL test emails through from outside addresses and they >>>> don't get hit by the SURBL checks. >>>> >>>> I'm at a loss :) >>>> otherwise SA 3 is working great. >> >> >> -- >> Julian Field >> www.MailScanner.info >> MailScanner thanks transtec Computers for their support >> Buy the MailScanner book at www.MailScanner.info/store >> >> PGP footprint: EE81 D763 3DB0 0BFD E1DC 7222 11F6 5947 1415 B654 >> >> ------------------------ MailScanner list ------------------------ >> To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: >> 'leave mailscanner' in the body of the email. >> Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and >> the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). >> > > ------------------------ MailScanner list ------------------------ > To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: > 'leave mailscanner' in the body of the email. > Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and > the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From ugob at CAMO-ROUTE.COM Fri Oct 1 16:35:29 2004 From: ugob at CAMO-ROUTE.COM (Ugo Bellavance) Date: Thu Jan 12 21:27:06 2006 Subject: www.mailscanner.info Message-ID: Martin Hepworth wrote: > Works... > > at the moment... But the sig for the rpm version is a 404 error. ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From mailscanner at ecs.soton.ac.uk Fri Oct 1 17:01:49 2004 From: mailscanner at ecs.soton.ac.uk (Julian Field) Date: Thu Jan 12 21:27:06 2006 Subject: www.mailscanner.info Message-ID: I uploaded the SuSE version to the RPM directory. Sorry about that. The right files are in the right places now. At 16:35 01/10/2004, you wrote: >Martin Hepworth wrote: > >>Works... >> >>at the moment... > >But the sig for the rpm version is a 404 error. -- Julian Field www.MailScanner.info MailScanner thanks transtec Computers for their support Buy the MailScanner book at www.MailScanner.info/store PGP footprint: EE81 D763 3DB0 0BFD E1DC 7222 11F6 5947 1415 B654 ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From wright at CYBERVALE.COM Fri Oct 1 17:40:13 2004 From: wright at CYBERVALE.COM (Terran Wright) Date: Thu Jan 12 21:27:06 2006 Subject: Install-Clam error Message-ID: > > > > > >Missing file /usr/src/redhat/RPMS/noarch/perl-URI-1.31-1.noarch.rpm. > >Maybe it did not build correctly? > > > >I can't seem to find 1.31-1, I've only been able to find perl-URI-1.21-7 and > >I have that installed. > >Any help here? > > I expect 1.21-7 will do just fine. > well it fails with the above error and as you can see 1.21-7 is installed # rpm -qa | grep URI perl-URI-1.21-7 I tried doing rpm -Uvh perl-URI-1.31-1.src.rpm(which is included in the perl dir of your package) it completes but I still get this: # rpm -qa | grep URI perl-URI-1.21-7 I ran the install again with --nodeps it complained about Perl-URI-1.31-1 just the same but ran to completion I notice that there is no /etc/mail/spamassassin directory, does that indicate that there was a problem and how do I remedy that? > Have you bought the MailScanner book yet? Available at a very reasonable > price from www.mailscanner.info, and it helps support my bills to aid > future MailScanner development :-) I got approval from the people who spend the money and should be placing the order next week ;-). It's the least I could do to support you, we love the product and your work. ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From vboulytchev at COINFOTECH.COM Fri Oct 1 17:52:10 2004 From: vboulytchev at COINFOTECH.COM (Boulytchev, Vasiliy) Date: Thu Jan 12 21:27:06 2006 Subject: Load Balancing + File Locking Message-ID: [ The following text is in the "iso-8859-1" character set. ] [ Your display is set for the "US-ASCII" character set. ] [ Some characters may be displayed incorrectly. ] :)))))))))))))) Brilliant! :))))))))))))))))) This is definitely a nice way to use round robin DNS... To your advantage even. Sweet. Unfortunately this don^�t help us :(. We must load balance this sucker. If we will not have loadbalancing, we shall achieve the same with running sendmail on each mailscanner box, and vuala..... But I really want a Mailscanner Cluster! I want redundancy! Vasiliy Boulytchev Colorado Information Technologies, Inc. http://www.coinfotech.com -----Original Message----- From: MailScanner mailing list [mailto:MAILSCANNER@JISCMAIL.AC.UK] On Behalf Of Denis Beauchemin Sent: Thursday, September 30, 2004 2:56 PM To: MAILSCANNER@JISCMAIL.AC.UK Subject: Re: Load Balancing + File Locking Boulytchev, Vasiliy wrote: >Ladies and Gents, > The loads on the mail server require us to start moving >Mailscanner with Spam and Virus filtering to other machines. Questions: > 1.) How does MS do the locking on files in the submitted >directory (after cgp2ms)? If NFS3 is used to mount that shared folder >on say 3 servers designated to only scanning mail, how do we avoid run-ons? > 2.) Idea: if the local procs keep track of locking, then we can >toss all that into mysql for example? :))) Just thinking of ways to >add scalability. > > > Vasiliy, We have 2 MS servers for incoming mail and they don't share any spool directory. They are separate servers and the load balancing is done through the MX records. Our 2 servers were not identical (one was about twice as fast as the other) and we had the following: # host -t mx usherbrooke.ca usherbrooke.ca mail is handled by 10 smtpe1.usherbrooke.ca. usherbrooke.ca mail is handled by 10 smtpe2.usherbrooke.ca. usherbrooke.ca mail is handled by 10 smtpe3.usherbrooke.ca. Here smtpe1 and smtpe3 are the same machine (the fastest one) with different IP. It received close to 2/3 of all mail. I just replaced the slowest one (smtpe2) by a machine identical to the fastest one (smtpe1) so I asked our DNS guys to drop the smtpe3 name. Denis -- _ �v� Denis Beauchemin, analyste /(_)\ Universit� de Sherbrooke, S.T.I. ^ ^ T: 819.821.8000x2252 F: 819.821.8045 ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). [ Part 2, Application/X-PKCS7-SIGNATURE 5.9KB. ] [ Unable to print this part. ] From vboulytchev at COINFOTECH.COM Fri Oct 1 17:55:49 2004 From: vboulytchev at COINFOTECH.COM (Boulytchev, Vasiliy) Date: Thu Jan 12 21:27:06 2006 Subject: Load Balancing + File Locking Message-ID: Unfortunately, our budget is limited. We really need to have independent boxes scanning the Submitted folder. That would be ideal. If money was not an issue, then I would definitely stick this on Beowulf. Vasiliy Boulytchev Colorado Information Technologies, Inc. http://www.coinfotech.com -----Original Message----- From: MailScanner mailing list [mailto:MAILSCANNER@JISCMAIL.AC.UK] On Behalf Of Ugo Bellavance Sent: Thursday, September 30, 2004 2:51 PM To: MAILSCANNER@JISCMAIL.AC.UK Subject: Re: Load Balancing + File Locking Boulytchev, Vasiliy wrote: > Ladies and Gents, > The loads on the mail server require us to start moving > Mailscanner with Spam and Virus filtering to other machines. Questions: > 1.) How does MS do the locking on files in the submitted > directory (after cgp2ms)? If NFS3 is used to mount that shared folder > on say 3 servers designated to only scanning mail, how do we avoid run-ons? > 2.) Idea: if the local procs keep track of locking, then we can > toss all that into mysql for example? :))) Just thinking of ways to > add scalability. Isn't it simpler to use MX records to do your load balancing? Or a hardware load balancer like coyotelinux sells? > > Thanks, > > Vasiliy Boulytchev > Colorado Information Technologies, Inc. > http://www.coinfotech.com > > ------------------------ MailScanner list ------------------------ To > unsubscribe, email jiscmail@jiscmail.ac.uk with the words: > 'leave mailscanner' in the body of the email. > Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the > archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). [ Part 2, Application/X-PKCS7-SIGNATURE 5.9KB. ] [ Unable to print this part. ] From martinh at SOLID-STATE-LOGIC.COM Fri Oct 1 17:58:55 2004 From: martinh at SOLID-STATE-LOGIC.COM (Martin Hepworth) Date: Thu Jan 12 21:27:06 2006 Subject: Load Balancing + File Locking Message-ID: Vasiliv that's what's achieved by round-robin DNS. Or do you a central file store for all queues, quarantine dir etc. You could always have a third machine with the file stores on it that's mounted by all the other hosts, but you still have the issus of the fileserver going down... -- Martin Hepworth Snr Systems Administrator Solid State Logic Tel: +44 (0)1865 842300 Boulytchev, Vasiliy wrote: > :)))))))))))))) Brilliant! :))))))))))))))))) > > This is definitely a nice way to use round robin DNS... To your advantage > even. Sweet. > > Unfortunately this don^�t help us :(. We must load balance this sucker. If > we will not have loadbalancing, we shall achieve the same with running > sendmail on each mailscanner box, and vuala..... But I really want a > Mailscanner Cluster! I want redundancy! > > > Vasiliy Boulytchev > Colorado Information Technologies, Inc. > http://www.coinfotech.com > > -----Original Message----- > From: MailScanner mailing list [mailto:MAILSCANNER@JISCMAIL.AC.UK] On Behalf > Of Denis Beauchemin > Sent: Thursday, September 30, 2004 2:56 PM > To: MAILSCANNER@JISCMAIL.AC.UK > Subject: Re: Load Balancing + File Locking > > > Boulytchev, Vasiliy wrote: > > >>Ladies and Gents, >> The loads on the mail server require us to start moving >>Mailscanner with Spam and Virus filtering to other machines. Questions: >> 1.) How does MS do the locking on files in the submitted >>directory (after cgp2ms)? If NFS3 is used to mount that shared folder >>on say 3 servers designated to only scanning mail, how do we avoid run-ons? >> 2.) Idea: if the local procs keep track of locking, then we can >>toss all that into mysql for example? :))) Just thinking of ways to >>add scalability. >> >> >> > > > Vasiliy, > > We have 2 MS servers for incoming mail and they don't share any spool > directory. They are separate servers and the load balancing is done through > the MX records. Our 2 servers were not identical (one was about twice as > fast as the other) and we had the following: > # host -t mx usherbrooke.ca > usherbrooke.ca mail is handled by 10 smtpe1.usherbrooke.ca. > usherbrooke.ca mail is handled by 10 smtpe2.usherbrooke.ca. > usherbrooke.ca mail is handled by 10 smtpe3.usherbrooke.ca. > > Here smtpe1 and smtpe3 are the same machine (the fastest one) with different > IP. It received close to 2/3 of all mail. > > I just replaced the slowest one (smtpe2) by a machine identical to the > fastest one (smtpe1) so I asked our DNS guys to drop the smtpe3 name. > > Denis > ********************************************************************** This email and any files transmitted with it are confidential and intended solely for the use of the individual or entity to whom they are addressed. If you have received this email in error please notify the system manager. This footnote confirms that this email message has been swept for the presence of computer viruses and is believed to be clean. ********************************************************************** ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From vboulytchev at COINFOTECH.COM Fri Oct 1 18:35:22 2004 From: vboulytchev at COINFOTECH.COM (Boulytchev, Vasiliy) Date: Thu Jan 12 21:27:06 2006 Subject: Load Balancing + File Locking Message-ID: Thoughts and setup (mx is out of the questions, sorry, network is different here) A = Mail Server (CommunigatePro) S1 = Mailscanner node 1 S2 = Mailscanner node 2 S3 = Mailscanner node 3 On A, we have all of our domains (hundreds). I will not go into detail of how much redundancy this thing has, and why we cant simply point to the scanners with mx records, but here is my idea. On A, have 2 NFS-shared folders (certainly on a private network and gig nics). One Incoming, which is handled by cgp2ms and the other is Submitted, handled by ms2cgp. Now, say these three nodes keep grabbing batches of mail from these mount points, process them, and spit things out in the final Submitted location for Cgate to push the mail out. Mailscanner should not have any issues with handling the mounted directories, the only thing I am worried about is file locking and fragmentation. So the question is, how do I prevent (or is it a big deal), that lets say... There are 300 messages in the Incoming directory at any moment. Mailscanners pick that queue up, crunch on it on each node, and spit it out in the Submitted directory. Now we start to ask these questions: 1.) Am I tripple scanning each message and not getting any performance back. 2.) As of right not, I think there are 2 ways MS goes through the Incoming directory, sequentially and non-sequentially (if there are more than x amount of messages). How do I tell MS to share the load! 3.) Maybe modify cgp2ms to spit things out into different Incoming directories, therefore walking right around the file locking problem. IDEAS? Who else is doing this? Vasiliy Boulytchev Colorado Information Technologies, Inc. http://www.coinfotech.com -----Original Message----- From: MailScanner mailing list [mailto:MAILSCANNER@JISCMAIL.AC.UK] On Behalf Of Martin Hepworth Sent: Friday, October 01, 2004 10:59 AM To: MAILSCANNER@JISCMAIL.AC.UK Subject: Re: Load Balancing + File Locking Vasiliv that's what's achieved by round-robin DNS. Or do you a central file store for all queues, quarantine dir etc. You could always have a third machine with the file stores on it that's mounted by all the other hosts, but you still have the issus of the fileserver going down... -- Martin Hepworth Snr Systems Administrator Solid State Logic Tel: +44 (0)1865 842300 Boulytchev, Vasiliy wrote: > :)))))))))))))) Brilliant! :))))))))))))))))) > > This is definitely a nice way to use round robin DNS... To your advantage > even. Sweet. > > Unfortunately this don't help us :(. We must load balance this sucker. If > we will not have loadbalancing, we shall achieve the same with running > sendmail on each mailscanner box, and vuala..... But I really want a > Mailscanner Cluster! I want redundancy! > > > Vasiliy Boulytchev > Colorado Information Technologies, Inc. > http://www.coinfotech.com > > -----Original Message----- > From: MailScanner mailing list [mailto:MAILSCANNER@JISCMAIL.AC.UK] On Behalf > Of Denis Beauchemin > Sent: Thursday, September 30, 2004 2:56 PM > To: MAILSCANNER@JISCMAIL.AC.UK > Subject: Re: Load Balancing + File Locking > > > Boulytchev, Vasiliy wrote: > > >>Ladies and Gents, >> The loads on the mail server require us to start moving >>Mailscanner with Spam and Virus filtering to other machines. Questions: >> 1.) How does MS do the locking on files in the submitted >>directory (after cgp2ms)? If NFS3 is used to mount that shared folder >>on say 3 servers designated to only scanning mail, how do we avoid run-ons? >> 2.) Idea: if the local procs keep track of locking, then we can >>toss all that into mysql for example? :))) Just thinking of ways to >>add scalability. >> >> >> > > > Vasiliy, > > We have 2 MS servers for incoming mail and they don't share any spool > directory. They are separate servers and the load balancing is done through > the MX records. Our 2 servers were not identical (one was about twice as > fast as the other) and we had the following: > # host -t mx usherbrooke.ca > usherbrooke.ca mail is handled by 10 smtpe1.usherbrooke.ca. > usherbrooke.ca mail is handled by 10 smtpe2.usherbrooke.ca. > usherbrooke.ca mail is handled by 10 smtpe3.usherbrooke.ca. > > Here smtpe1 and smtpe3 are the same machine (the fastest one) with different > IP. It received close to 2/3 of all mail. > > I just replaced the slowest one (smtpe2) by a machine identical to the > fastest one (smtpe1) so I asked our DNS guys to drop the smtpe3 name. > > Denis > ********************************************************************** This email and any files transmitted with it are confidential and intended solely for the use of the individual or entity to whom they are addressed. If you have received this email in error please notify the system manager. This footnote confirms that this email message has been swept for the presence of computer viruses and is believed to be clean. ********************************************************************** ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). [ Part 2, Application/X-PKCS7-SIGNATURE 5.9KB. ] [ Unable to print this part. ] From rcooper at DWFORD.COM Fri Oct 1 19:03:11 2004 From: rcooper at DWFORD.COM (Rick Cooper) Date: Thu Jan 12 21:27:06 2006 Subject: Need clarification on whitelist rules Message-ID: > -----Original Message----- > From: MailScanner mailing list [mailto:MAILSCANNER@JISCMAIL.AC.UK]On > Behalf Of Julian Field > Sent: Friday, October 01, 2004 10:04 AM > To: MAILSCANNER@JISCMAIL.AC.UK > Subject: Re: Need clarification on whitelist rules > > > > > >I guess my first question is how it's tagged as spam when > there is a rule > > > >file for the spam scoring settings? If user A tagges as spam > > > with a score of > > > >5.0 and user B tagges it with a score of 7.5 how does the message get > > > >tagged, since a score of 6.5 would flag as spam for user A and > > > ham for user > > > >B? > > > > We use it only for automatic spam deletion. In your example, user A would > be removed from the list of recipients, and it would be normally delivered > to user B. To use it for anything other than spam deletion is > pretty much impossible. > > > > > > -- > > > I don't understand that sentence at all, sorry. > Ok right now there is an expansion of the spam and high scoring spam score that allows for the score for spam/high scoring spam to be configure via a rule file. if the following rules were in that file: To: me@mine.com 5.0 To: you@mine.com 7.5 FromOrTo: default 6.0 and a message arrived from they@them.com that scored 6.5, me@mine.com would not receive the message but you@mine.com would. You would now remove me@mine.com from the recipients list (and presumably CC/BCC) Now suppose you were to also expand the whitelist/blacklist prior to performing the deletion and that and the *whitelist* rules contained To: me@mine.com and From: they@them.com yes ToOrFrom: default no Now even, though the message scored above me@mine.com's spam threshold it would not be tagged /processed as spam and they would not be deleted from the recipient listing. The inverse would be true for a mail scoring below their spam threshold but the to/from pair expansion of the blacklist rule set resulted in the sender address/host being yes. This would result in the whitelist/blacklisting being as per user as the spam/high spam scoring, yes? Of course the most economical processing would be to test the message before processing through SA and see if the entire message would be whitelisted or blacklist and process it accordingly (skip SA or dump entirely) before wasting time with SA and/or virus testing, and only do the above checks if there are more than one recipient. Rick -- This message has been scanned for viruses and dangerous content by MailScanner, and is believed to be clean. ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From jrudd at UCSC.EDU Fri Oct 1 19:04:07 2004 From: jrudd at UCSC.EDU (John Rudd) Date: Thu Jan 12 21:27:06 2006 Subject: MailScanner and CommuniGate Pro (Was: Re: Load Balancing + File Locking) Message-ID: Vasiliy, I'm working on a problem like this, but not the same. (and, you might remember that I'm the person who originally wrote ms2cgp and cgp2ms, but then abandoned them; why? because the tracking mechanisms available me, both through CGP and MS, left me with a lot of doubt in my ability to guarantee the ability to track every message without losing any of them in the logs, so I have taken a new direcction). What I'm doing now is working on a CGP "execute" script which takes a message from CGP, then, using the SMTP perl module, sends it to my load balancer's SMTP port (you could just as easily use a round-robin approach, or any of a few other techniques), behind which sits an array of standard sendmail+mailscanner+sophos systems. It just so happens that the sendmail+mailscanner systems are also the MX servers for our domain, but that's not a requirement. The arrangement could just as easily be a private array of systems that aren't available to outside submitters (protected from those submitters by tcpwrappers and/or sendmail access rules and/or network topology). So, there is no "triple scanning" because the load balancer makes sure the message goes to only one mailscanner system. That also takes care of the multiple paths problem, and whether or not mailscanner is doing sequential or non-sequential processing (because it doesn't matter: mailscanner can do whatever it wants, without competing with other mailscanner processes). And there's no need for file locking issues (because there's no shared incoming directory). I'll try to put up a web page with my current effort later today. On Oct 1, 2004, at 10:35 AM, Boulytchev, Vasiliy wrote: > Thoughts and setup (mx is out of the questions, sorry, network is > different > here) > > A = Mail Server (CommunigatePro) > S1 = Mailscanner node 1 > S2 = Mailscanner node 2 > S3 = Mailscanner node 3 > > On A, we have all of our domains (hundreds). I will not go into > detail of > how much redundancy this thing has, and why we cant simply point to the > scanners with mx records, but here is my idea. On A, have 2 NFS-shared > folders (certainly on a private network and gig nics). One Incoming, > which > is handled by cgp2ms and the other is Submitted, handled by ms2cgp. > Now, > say these three nodes keep grabbing batches of mail from these mount > points, > process them, and spit things out in the final Submitted location for > Cgate > to push the mail out. Mailscanner should not have any issues with > handling > the mounted directories, the only thing I am worried about is file > locking > and fragmentation. > So the question is, how do I prevent (or is it a big deal), > that > lets say... There are 300 messages in the Incoming directory at any > moment. > Mailscanners pick that queue up, crunch on it on each node, and spit > it out > in the Submitted directory. Now we start to ask these questions: > 1.) Am I tripple scanning each message and not getting any > performance back. > 2.) As of right not, I think there are 2 ways MS goes > through > the Incoming directory, sequentially and non-sequentially (if there > are more > than x amount of messages). How do I tell MS to share the load! > 3.) Maybe modify cgp2ms to spit things out into different > Incoming directories, therefore walking right around the file locking > problem. > > IDEAS? Who else is doing this? > > > Vasiliy Boulytchev > Colorado Information Technologies, Inc. > http://www.coinfotech.com > > -----Original Message----- > From: MailScanner mailing list [mailto:MAILSCANNER@JISCMAIL.AC.UK] On > Behalf > Of Martin Hepworth > Sent: Friday, October 01, 2004 10:59 AM > To: MAILSCANNER@JISCMAIL.AC.UK > Subject: Re: Load Balancing + File Locking > > > Vasiliv > > that's what's achieved by round-robin DNS. > > Or do you a central file store for all queues, quarantine dir etc. You > could > always have a third machine with the file stores on it that's mounted > by all > the other hosts, but you still have the issus of the fileserver going > down... > > -- > Martin Hepworth > Snr Systems Administrator > Solid State Logic > Tel: +44 (0)1865 842300 > > > Boulytchev, Vasiliy wrote: >> :)))))))))))))) Brilliant! :))))))))))))))))) >> >> This is definitely a nice way to use round robin DNS... To your >> advantage >> even. Sweet. >> >> Unfortunately this don't help us :(. We must load balance this >> sucker. > If >> we will not have loadbalancing, we shall achieve the same with running >> sendmail on each mailscanner box, and vuala..... But I really want a >> Mailscanner Cluster! I want redundancy! >> >> >> Vasiliy Boulytchev >> Colorado Information Technologies, Inc. >> http://www.coinfotech.com >> >> -----Original Message----- >> From: MailScanner mailing list [mailto:MAILSCANNER@JISCMAIL.AC.UK] On > Behalf >> Of Denis Beauchemin >> Sent: Thursday, September 30, 2004 2:56 PM >> To: MAILSCANNER@JISCMAIL.AC.UK >> Subject: Re: Load Balancing + File Locking >> >> >> Boulytchev, Vasiliy wrote: >> >> >>> Ladies and Gents, >>> The loads on the mail server require us to start moving >>> Mailscanner with Spam and Virus filtering to other machines. >>> Questions: >>> 1.) How does MS do the locking on files in the submitted >>> directory (after cgp2ms)? If NFS3 is used to mount that shared >>> folder >>> on say 3 servers designated to only scanning mail, how do we avoid > run-ons? >>> 2.) Idea: if the local procs keep track of locking, then >>> we can >>> toss all that into mysql for example? :))) Just thinking of ways to >>> add scalability. >>> >>> >>> >> >> >> Vasiliy, >> >> We have 2 MS servers for incoming mail and they don't share any spool >> directory. They are separate servers and the load balancing is done > through >> the MX records. Our 2 servers were not identical (one was about >> twice as >> fast as the other) and we had the following: >> # host -t mx usherbrooke.ca >> usherbrooke.ca mail is handled by 10 smtpe1.usherbrooke.ca. >> usherbrooke.ca mail is handled by 10 smtpe2.usherbrooke.ca. >> usherbrooke.ca mail is handled by 10 smtpe3.usherbrooke.ca. >> >> Here smtpe1 and smtpe3 are the same machine (the fastest one) with > different >> IP. It received close to 2/3 of all mail. >> >> I just replaced the slowest one (smtpe2) by a machine identical to the >> fastest one (smtpe1) so I asked our DNS guys to drop the smtpe3 name. >> >> Denis >> > > ********************************************************************** > > This email and any files transmitted with it are confidential and > intended solely for the use of the individual or entity to whom they > are addressed. If you have received this email in error please notify > the system manager. > > This footnote confirms that this email message has been swept > for the presence of computer viruses and is believed to be clean. > > ********************************************************************** > > ------------------------ MailScanner list ------------------------ > To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: > 'leave mailscanner' in the body of the email. > Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and > the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). > > ------------------------ MailScanner list ------------------------ > To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: > 'leave mailscanner' in the body of the email. > Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and > the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From ssilva at SGVWATER.COM Fri Oct 1 19:04:48 2004 From: ssilva at SGVWATER.COM (Scott Silva) Date: Thu Jan 12 21:27:06 2006 Subject: MailScanner + SA3 + SURBL not registering. Message-ID: -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 |> |> Well i re-installed Net::DNS from scratch (killed all Net::DNS related |> stuff) and the SURBL checks have started. |> I'm still scratching my head though, but hey it's working. | | | | I'd like to try that too. How do I remove the 'old' Net::DNS 0.48 and | re-install it? I think I found a simple fix. At least it is working on my system. The install for Spamassassin 3 puts the files init.pre and local.cf in /usr/etc/mail/spamassassin but MailScanner and spamassassin seem to default to /etc/mail/spamassassin. I copied those two files to /etc/mail/spamassassin and the URIBL tests are now working. Maybe a glitch in the install script for SA 3 or ??? Either way that fixed it. (Sysop wipes sweat from furrowed brow!!) -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.1 (MingW32) Comment: Using GnuPG with Thunderbird - http://enigmail.mozdev.org iD8DBQFBXZxARADw9lziUqQRAi0kAJ9bQaJ1CA7DT3BTie6MCi8E8ZhzrgCfRVNI 6k7kCA5JjNkvKfYMvuarmws= =5W7X -----END PGP SIGNATURE----- ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From vboulytchev at COINFOTECH.COM Fri Oct 1 19:25:57 2004 From: vboulytchev at COINFOTECH.COM (Boulytchev, Vasiliy) Date: Thu Jan 12 21:27:06 2006 Subject: MailScanner and CommuniGate Pro (Was: Re: Load Balancing + File Locking) Message-ID: John, without your help with cgp2ms and ms2cgp last year, we would have been completely stuck, thank you! Too many questions arise when reading your email. What you are doing is extremely interesting to us, as well as anyone else running into one server limitations. Please post a website regarding your efforts. This should really be looked at by the Mailscanner team. THANKS GUYS! Vasiliy Boulytchev Colorado Information Technologies, Inc. http://www.coinfotech.com -----Original Message----- From: MailScanner mailing list [mailto:MAILSCANNER@JISCMAIL.AC.UK] On Behalf Of John Rudd Sent: Friday, October 01, 2004 12:04 PM To: MAILSCANNER@JISCMAIL.AC.UK Subject: MailScanner and CommuniGate Pro (Was: Re: Load Balancing + File Locking) Vasiliy, I'm working on a problem like this, but not the same. (and, you might remember that I'm the person who originally wrote ms2cgp and cgp2ms, but then abandoned them; why? because the tracking mechanisms available me, both through CGP and MS, left me with a lot of doubt in my ability to guarantee the ability to track every message without losing any of them in the logs, so I have taken a new direcction). What I'm doing now is working on a CGP "execute" script which takes a message from CGP, then, using the SMTP perl module, sends it to my load balancer's SMTP port (you could just as easily use a round-robin approach, or any of a few other techniques), behind which sits an array of standard sendmail+mailscanner+sophos systems. It just so happens that the sendmail+mailscanner systems are also the MX servers for our domain, but that's not a requirement. The arrangement could just as easily be a private array of systems that aren't available to outside submitters (protected from those submitters by tcpwrappers and/or sendmail access rules and/or network topology). So, there is no "triple scanning" because the load balancer makes sure the message goes to only one mailscanner system. That also takes care of the multiple paths problem, and whether or not mailscanner is doing sequential or non-sequential processing (because it doesn't matter: mailscanner can do whatever it wants, without competing with other mailscanner processes). And there's no need for file locking issues (because there's no shared incoming directory). I'll try to put up a web page with my current effort later today. On Oct 1, 2004, at 10:35 AM, Boulytchev, Vasiliy wrote: > Thoughts and setup (mx is out of the questions, sorry, network is > different > here) > > A = Mail Server (CommunigatePro) > S1 = Mailscanner node 1 > S2 = Mailscanner node 2 > S3 = Mailscanner node 3 > > On A, we have all of our domains (hundreds). I will not go into > detail of how much redundancy this thing has, and why we cant simply > point to the scanners with mx records, but here is my idea. On A, > have 2 NFS-shared folders (certainly on a private network and gig > nics). One Incoming, which is handled by cgp2ms and the other is > Submitted, handled by ms2cgp. > Now, > say these three nodes keep grabbing batches of mail from these mount > points, process them, and spit things out in the final Submitted > location for Cgate to push the mail out. Mailscanner should not have > any issues with handling the mounted directories, the only thing I am > worried about is file locking and fragmentation. > So the question is, how do I prevent (or is it a big deal), > that lets say... There are 300 messages in the Incoming directory at > any moment. > Mailscanners pick that queue up, crunch on it on each node, and spit > it out in the Submitted directory. Now we start to ask these > questions: > 1.) Am I tripple scanning each message and not getting any > performance back. > 2.) As of right not, I think there are 2 ways MS goes > through > the Incoming directory, sequentially and non-sequentially (if there > are more than x amount of messages). How do I tell MS to share the > load! > 3.) Maybe modify cgp2ms to spit things out into different > Incoming directories, therefore walking right around the file locking > problem. > > IDEAS? Who else is doing this? > > > Vasiliy Boulytchev > Colorado Information Technologies, Inc. > http://www.coinfotech.com > > -----Original Message----- > From: MailScanner mailing list [mailto:MAILSCANNER@JISCMAIL.AC.UK] On > Behalf Of Martin Hepworth > Sent: Friday, October 01, 2004 10:59 AM > To: MAILSCANNER@JISCMAIL.AC.UK > Subject: Re: Load Balancing + File Locking > > > Vasiliv > > that's what's achieved by round-robin DNS. > > Or do you a central file store for all queues, quarantine dir etc. You > could always have a third machine with the file stores on it that's > mounted by all the other hosts, but you still have the issus of the > fileserver going down... > > -- > Martin Hepworth > Snr Systems Administrator > Solid State Logic > Tel: +44 (0)1865 842300 > > > Boulytchev, Vasiliy wrote: >> :)))))))))))))) Brilliant! :))))))))))))))))) >> >> This is definitely a nice way to use round robin DNS... To your >> advantage even. Sweet. >> >> Unfortunately this don't help us :(. We must load balance this >> sucker. > If >> we will not have loadbalancing, we shall achieve the same with >> running sendmail on each mailscanner box, and vuala..... But I really >> want a Mailscanner Cluster! I want redundancy! >> >> >> Vasiliy Boulytchev >> Colorado Information Technologies, Inc. >> http://www.coinfotech.com >> >> -----Original Message----- >> From: MailScanner mailing list [mailto:MAILSCANNER@JISCMAIL.AC.UK] On > Behalf >> Of Denis Beauchemin >> Sent: Thursday, September 30, 2004 2:56 PM >> To: MAILSCANNER@JISCMAIL.AC.UK >> Subject: Re: Load Balancing + File Locking >> >> >> Boulytchev, Vasiliy wrote: >> >> >>> Ladies and Gents, >>> The loads on the mail server require us to start moving >>> Mailscanner with Spam and Virus filtering to other machines. >>> Questions: >>> 1.) How does MS do the locking on files in the submitted >>> directory (after cgp2ms)? If NFS3 is used to mount that shared >>> folder on say 3 servers designated to only scanning mail, how do we >>> avoid > run-ons? >>> 2.) Idea: if the local procs keep track of locking, then >>> we can >>> toss all that into mysql for example? :))) Just thinking of ways to >>> add scalability. >>> >>> >>> >> >> >> Vasiliy, >> >> We have 2 MS servers for incoming mail and they don't share any spool >> directory. They are separate servers and the load balancing is done > through >> the MX records. Our 2 servers were not identical (one was about >> twice as fast as the other) and we had the following: >> # host -t mx usherbrooke.ca >> usherbrooke.ca mail is handled by 10 smtpe1.usherbrooke.ca. >> usherbrooke.ca mail is handled by 10 smtpe2.usherbrooke.ca. >> usherbrooke.ca mail is handled by 10 smtpe3.usherbrooke.ca. >> >> Here smtpe1 and smtpe3 are the same machine (the fastest one) with > different >> IP. It received close to 2/3 of all mail. >> >> I just replaced the slowest one (smtpe2) by a machine identical to >> the fastest one (smtpe1) so I asked our DNS guys to drop the smtpe3 name. >> >> Denis >> > > ********************************************************************** > > This email and any files transmitted with it are confidential and > intended solely for the use of the individual or entity to whom they > are addressed. If you have received this email in error please notify > the system manager. > > This footnote confirms that this email message has been swept for the > presence of computer viruses and is believed to be clean. > > ********************************************************************** > > ------------------------ MailScanner list ------------------------ To > unsubscribe, email jiscmail@jiscmail.ac.uk with the words: > 'leave mailscanner' in the body of the email. > Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the > archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). > > ------------------------ MailScanner list ------------------------ To > unsubscribe, email jiscmail@jiscmail.ac.uk with the words: > 'leave mailscanner' in the body of the email. > Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the > archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). [ Part 2, Application/X-PKCS7-SIGNATURE 5.9KB. ] [ Unable to print this part. ] From rpotter at RPCS.NET Fri Oct 1 19:32:55 2004 From: rpotter at RPCS.NET (Richard Potter) Date: Thu Jan 12 21:27:06 2006 Subject: MailScanner + SA3 + SURBL not registering. Message-ID: On Fri, 1 Oct 2004, Scott Silva wrote: > I think I found a simple fix. At least it is working on my system. > The install for Spamassassin 3 puts the files init.pre and local.cf in > /usr/etc/mail/spamassassin but MailScanner and spamassassin seem to > default to /etc/mail/spamassassin. > I copied those two files to /etc/mail/spamassassin and the URIBL tests > are now working. Maybe a glitch in the install script for SA 3 or ??? > Either way that fixed it. Well... that worked for me also! I only copied init.pre to /etc/mail/spamassassin, as I have /etc/mail/spamassassin/local.cf linked to /etc/MailScanner/spam.assassin.prefs.conf God I love UNIX! Cheers! -- Richard Potter RHCE Re/Max Kingston, ON CANADA ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From mailscanner at ecs.soton.ac.uk Fri Oct 1 20:17:46 2004 From: mailscanner at ecs.soton.ac.uk (Julian Field) Date: Thu Jan 12 21:27:06 2006 Subject: Install-Clam error Message-ID: At 17:40 01/10/2004, you wrote: >I tried doing rpm -Uvh perl-URI-1.31-1.src.rpm(which is included in the perl >dir of your package) it completes but I still get this: > # rpm -qa | grep URI >perl-URI-1.21-7 Installing the src.rpm just installs the source, it doesn't install the running code. You need to rpmbuild -rebuild perl-URI-1.31-1.src.rpm and then install the resulting RPM. > > Have you bought the MailScanner book yet? Available at a very reasonable > > price from www.mailscanner.info, and it helps support my bills to aid > > future MailScanner development :-) > >I got approval from the people who spend the money and should be placing the >order next week ;-). It's the least I could do to support you, we love the >product and your work. Thankyou! -- Julian Field www.MailScanner.info Professional Support Services at www.MailScanner.biz MailScanner thanks transtec Computers for their support Buy the MailScanner book at www.MailScanner.info/store PGP footprint: EE81 D763 3DB0 0BFD E1DC 7222 11F6 5947 1415 B654 ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From jonas.back at pin.se Fri Oct 1 20:58:29 2004 From: jonas.back at pin.se (Jonas Back) Date: Thu Jan 12 21:27:06 2006 Subject: Debian version of 4.34.8 Message-ID: Hi! When will we see the debian version of this release? Cheers, Jonas ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From michele at BLACKNIGHTSOLUTIONS.COM Fri Oct 1 21:08:41 2004 From: michele at BLACKNIGHTSOLUTIONS.COM (Michele Neylon : Blacknight Solutions) Date: Thu Jan 12 21:27:06 2006 Subject: Debian version of 4.34.8 Message-ID: On Fri, 2004-10-01 at 21:58 +0200, Jonas Back wrote: > Hi! > > When will we see the debian version of this release? Julian only released the new version this morning, so you'll need to be patient until the package maintainer gets round to it -- Mr Michele Neylon Blacknight Solutions http://www.blacknight.ie 059 9137101 ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From mailscanner at BARENDSE.TO Fri Oct 1 21:23:59 2004 From: mailscanner at BARENDSE.TO (Remco Barendse) Date: Thu Jan 12 21:27:06 2006 Subject: MailScanner + SA3 + SURBL not registering. Message-ID: On Fri, 1 Oct 2004, Scott Silva wrote: > -----BEGIN PGP SIGNED MESSAGE----- > Hash: SHA1 > > > |> > |> Well i re-installed Net::DNS from scratch (killed all Net::DNS related > |> stuff) and the SURBL checks have started. > |> I'm still scratching my head though, but hey it's working. > | > | > | > | I'd like to try that too. How do I remove the 'old' Net::DNS 0.48 and > | re-install it? > I think I found a simple fix. At least it is working on my system. > The install for Spamassassin 3 puts the files init.pre and local.cf in > /usr/etc/mail/spamassassin but MailScanner and spamassassin seem to > default to /etc/mail/spamassassin. > I copied those two files to /etc/mail/spamassassin and the URIBL tests > are now working. Maybe a glitch in the install script for SA 3 or ??? > Either way that fixed it. Had a look but the directory on my non-working box is empty and the files are already in /etc/mail/spamassassin. Guess this is not the problem I am having but thanks for the suggestion! > > (Sysop wipes sweat from furrowed brow!!) > -----BEGIN PGP SIGNATURE----- > Version: GnuPG v1.2.1 (MingW32) > Comment: Using GnuPG with Thunderbird - http://enigmail.mozdev.org > > iD8DBQFBXZxARADw9lziUqQRAi0kAJ9bQaJ1CA7DT3BTie6MCi8E8ZhzrgCfRVNI > 6k7kCA5JjNkvKfYMvuarmws= > =5W7X > -----END PGP SIGNATURE----- > > ------------------------ MailScanner list ------------------------ > To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: > 'leave mailscanner' in the body of the email. > Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and > the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). > > ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From wright at CYBERVALE.COM Fri Oct 1 22:01:46 2004 From: wright at CYBERVALE.COM (Terran Wright) Date: Thu Jan 12 21:27:06 2006 Subject: Install-Clam error Message-ID: Thank you Guys for all the help, I'll make this my LAST POST ON THIS ISSUE. > At 17:40 01/10/2004, you wrote: > >I tried doing rpm -Uvh perl-URI-1.31-1.src.rpm(which is included in the perl > >dir of your package) it completes but I still get this: > > # rpm -qa | grep URI > >perl-URI-1.21-7 > > Installing the src.rpm just installs the source, it doesn't install the > running code. > You need to > rpmbuild -rebuild perl-URI-1.31-1.src.rpm > and then install the resulting RPM. there's no resulting rpm and that appears to be the problem. This is the output of the rpm --rebuild t/generic........ok t/heuristic......FAILED test 7 Failed 1/15 tests, 93.33% okay t/http...........ok Failed Test Stat Wstat Total Fail Failed List of Failed ---------------------------------------------------------------------------- --- t/heuristic.t 15 1 6.67% 7 Failed 1/30 test scripts, 96.67% okay. 1/467 subtests failed, 99.79% okay. make: *** [test_dynamic] Error 29 error: Bad exit status from /var/tmp/rpm-tmp.47301 (%build) RPM build errors: Bad exit status from /var/tmp/rpm-tmp.47301 (%build) I tried building it on another redhat 9 box with same result. Can anyone tell me what's missing or what I need to do. I have tried searching for the rpm but can't find it anywhere. Also the issue of there not being a /etc/mail/spamassasin directory was not addressed. does that mean the install was not completed correctly? what can I do about that? ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From ml at NETGROUPES.CA Fri Oct 1 23:43:35 2004 From: ml at NETGROUPES.CA (Mailing List) Date: Thu Jan 12 21:27:06 2006 Subject: ByDomainSpamBlacklist & ByDomainSpamWhitelist Message-ID: I'm using: & ByDomainSpamBlacklist and &ByDomainSpamWhitelist I looked at CustomConfig.pm, but could not find an answer, and my Perl=null ;) Can i use wildcards in the files? To blacklist something like: newsletter*@microsoft.com Thanks ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From bg.mahesh at INDIAINFO.COM Sat Oct 2 06:00:49 2004 From: bg.mahesh at INDIAINFO.COM (BG Mahesh) Date: Thu Jan 12 21:27:06 2006 Subject: Installation problems with MS 4.34.8-1/MIME::QuotedPrint Message-ID: > hi > > I am not able to install MS 4.34.8-1. The error message I get is, > > Installing tnef decoder > Preparing... ########################################### [100%] > package tnef-1.2.3.1-1 is already installed > > Now to install MailScanner itself. > > error: Failed dependencies: > perl(MIME::QuotedPrint) >= 3.03 is needed by (installed) perl-MIME-tools-5.413-1 > > My setup > > Redhat Linux > Perl 5.8.3 > MIME::QuotedPrint : 3.03 > MIME::Tools : 5.413 > MIME::Base64 : 3.03 > > What am I doing wrong? >> >Julian said: >I don't know quite what is going on here, I saw a few similar >problems >myself sometimes, but I couldn't come up with a definite reason >for it. It >knows you have QuotedPrint 3.03 but then says you need it >installed. All I >ended up doing was forcing the install of the main MailScanner rpm. W>hat happens if you rpm -e MIME::Base64 and then reinstall it? "rpm -e MIME::Base64 " says MIME::Base64 is not installed! Anyways, I installed MIME::Base64 3.05 but I still get the same error, perl(MIME::QuotedPrint) >= 3.03 is needed by (installed) perl-MIME-tools-5.413-1 -- B.G. Mahesh bg.mahesh@indiainfo.com http://www.indiainfo.com/ -- ______________________________________________ IndiaInfo Mail - the free e-mail service with a difference! www.indiainfo.com Check out our value-added Premium features, such as an extra 20MB for mail storage, POP3, e-mail forwarding, and ads-free mailboxes! Powered by Outblaze ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From admin at thenamegame.com Sat Oct 2 07:12:28 2004 From: admin at thenamegame.com (Michael Freeman) Date: Thu Jan 12 21:27:06 2006 Subject: Delaying cron job for up to 600 seconds? Message-ID:

update.virus.scanners: Delaying cron job up to 600 seconds

I contantly see this message on one of my boxes? Why? Why would the job be delayed?

Hi.

I cannot install MScanner in REL 3.0. Does anybody had do it? Which steps did you perform?

thanks for any help

Dywer Santos

------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words:
'leave mailscanner' in the body of the email.
Before posting, read the MAQ (http://www.mailscanner.biz/maq/)
and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From mailscanner at ecs.soton.ac.uk Sat Oct 2 17:55:31 2004 From: mailscanner at ecs.soton.ac.uk (Julian Field) Date: Thu Jan 12 21:27:07 2006 Subject: RedHat Enterprise Linux AS 3.0 Install Message-ID: At 17:39 02/10/2004, you wrote: >Hi. > >I cannot install MScanner in REL 3.0. Does anybody had do it? Which steps >did you perform? Download the RedHat RPM distribution from http://www.sng.ecs.soton.ac.uk/mailscanner/files/4/rpm/MailScanner-4.34.8-1.rpm.tar.gz tar xzf MailScanner-4.34.8-1.rpm.tar.gz cd MailScanner-4.34.8-1 ./install.sh Then read what it outputs to keep an eye on the installation procedure. When it finishes, it will print up a few lines of instructions and commands that you *must* do to complete the installation. And also please read http://www.sng.ecs.soton.ac.uk/mailscanner/install/linux.shtml and the MailScanner MAQ (address at the bottom of every posting to this list) and buy the book, and read it :) -- Julian Field www.MailScanner.info Professional Support Services at www.MailScanner.biz MailScanner thanks transtec Computers for their support Buy the MailScanner book at www.MailScanner.info/store PGP footprint: EE81 D763 3DB0 0BFD E1DC 7222 11F6 5947 1415 B654 ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From roel at GLOUDEMANS.INFO Sat Oct 2 18:22:03 2004 From: roel at GLOUDEMANS.INFO (Roel Gloudemans) Date: Thu Jan 12 21:27:07 2006 Subject: Error message about Socket.pm when starting MailScanner Message-ID: Upon starting MailScanner 4.34-8 I get the error message below: Bad arg length for Socket::pack_sockaddr_in, length is 0, should be 4 at /usr/local/lib/perl5/5.8.5/sun4-solaris/Socket.pm line 373. Running perl 5.8.5, SA 3.0.0, Clamav 0.80rc3 Any ideas? The perl socket package is up-to-date. ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From mailscanner at ecs.soton.ac.uk Sat Oct 2 18:47:57 2004 From: mailscanner at ecs.soton.ac.uk (Julian Field) Date: Thu Jan 12 21:27:07 2006 Subject: Error message about Socket.pm when starting MailScanner Message-ID: What are your MTA = Lock Type = settings? What does uname -a say? Have you ever used a previous version of MailScanner? Have you tried it with a previous version of Perl? At 18:22 02/10/2004, you wrote: >Upon starting MailScanner 4.34-8 I get the error message below: > >Bad arg length for Socket::pack_sockaddr_in, length is 0, should be 4 at >/usr/local/lib/perl5/5.8.5/sun4-solaris/Socket.pm line 373. > >Running perl 5.8.5, SA 3.0.0, Clamav 0.80rc3 > >Any ideas? The perl socket package is up-to-date. -- Julian Field www.MailScanner.info Professional Support Services at www.MailScanner.biz MailScanner thanks transtec Computers for their support Buy the MailScanner book at www.MailScanner.info/store PGP footprint: EE81 D763 3DB0 0BFD E1DC 7222 11F6 5947 1415 B654 ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From roel at GLOUDEMANS.INFO Sat Oct 2 19:03:10 2004 From: roel at GLOUDEMANS.INFO (Roel Gloudemans) Date: Thu Jan 12 21:27:07 2006 Subject: Error message about Socket.pm when starting MailScanner Message-ID: Running Solaris 9. I did some testing, next to the MailScanner upgrade I upgraded from perl 5.8.3 to 5.8.5. (In an attempt to solve a problem with corrupt messages). The old MailScanner version is also not running and gives the same error. I'll try to downgrade perl to 5.8.3 and see if this solves the problem. ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From mailscanner at ecs.soton.ac.uk Sat Oct 2 19:27:37 2004 From: mailscanner at ecs.soton.ac.uk (Julian Field) Date: Thu Jan 12 21:27:07 2006 Subject: Error message about Socket.pm when starting MailScanner Message-ID: I run MailScanner on Solaris 9 on my production systems, though not with perl 5.8, and have no problems. At 19:03 02/10/2004, you wrote: >Running Solaris 9. I did some testing, next to the MailScanner upgrade I >upgraded from perl 5.8.3 to 5.8.5. (In an attempt to solve a problem with >corrupt messages). The old MailScanner version is also not running and gives >the same error. > >I'll try to downgrade perl to 5.8.3 and see if this solves the problem. -- Julian Field www.MailScanner.info Professional Support Services at www.MailScanner.biz MailScanner thanks transtec Computers for their support Buy the MailScanner book at www.MailScanner.info/store PGP footprint: EE81 D763 3DB0 0BFD E1DC 7222 11F6 5947 1415 B654 ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From alex at ERUS.CO.UK Sat Oct 2 19:28:16 2004 From: alex at ERUS.CO.UK (Alex Pimperton) Date: Thu Jan 12 21:27:07 2006 Subject: Mailscanner sends load sky-high on Debian Message-ID: Hi I've been having a few problems recently with mailscanner going awol and sending the load average sky high on my Debian testing box. Looking at my ps output I see: 14662 ? SN 0:00 /usr/bin/perl -I/usr/share/MailScanner /usr/sbin/Mail 16595 ? ZN 0:00 \_ [MailScanner] 14758 ? SN 0:01 /usr/bin/perl -I/usr/share/MailScanner /usr/sbin/Mail 17982 ? ZN 0:00 \_ [MailScanner] 14952 ? SN 0:01 /usr/bin/perl -I/usr/share/MailScanner /usr/sbin/Mail 16664 ? ZN 0:00 \_ [MailScanner] 15207 ? SN 0:01 /usr/bin/perl -I/usr/share/MailScanner /usr/sbin/Mail 17303 ? ZN 0:00 \_ [MailScanner] 15696 ? SN 0:00 /usr/bin/perl -I/usr/share/MailScanner /usr/sbin/Mail 15770 ? ZN 0:00 \_ [MailScanner] 15748 ? SN 0:00 /usr/bin/perl -I/usr/share/MailScanner /usr/sbin/Mail 15985 ? ZN 0:00 \_ [MailScanner] 15771 ? SN 0:00 /usr/bin/perl -I/usr/share/MailScanner /usr/sbin/Mail 15867 ? SN 0:00 /usr/bin/perl -I/usr/share/MailScanner /usr/sbin/Mail 15986 ? SN 0:00 /usr/bin/perl -I/usr/share/MailScanner /usr/sbin/Mail 17432 ? ZN 0:00 \_ [MailScanner] 15998 ? SN 0:01 /usr/bin/perl -I/usr/share/MailScanner /usr/sbin/Mail 16012 ? ZN 0:00 \_ [MailScanner] 16013 ? SN 0:01 /usr/bin/perl -I/usr/share/MailScanner /usr/sbin/Mail 17169 ? ZN 0:00 \_ [MailScanner] 16028 ? SN 0:01 /usr/bin/perl -I/usr/share/MailScanner /usr/sbin/Mail 16618 ? ZN 0:00 \_ [MailScanner] 16063 ? SN 0:00 /usr/bin/perl -I/usr/share/MailScanner /usr/sbin/Mail 16676 ? ZN 0:00 \_ [MailScanner] 16074 ? SN 0:01 /usr/bin/perl -I/usr/share/MailScanner /usr/sbin/Mail 17361 ? ZN 0:00 \_ [MailScanner] 16525 ? SN 0:01 /usr/bin/perl -I/usr/share/MailScanner /usr/sbin/Mail 17314 ? ZN 0:01 \_ [MailScanner] 16596 ? SN 0:00 /usr/bin/perl -I/usr/share/MailScanner /usr/sbin/Mail 16619 ? SN 0:01 /usr/bin/perl -I/usr/share/MailScanner /usr/sbin/Mail 17448 ? ZN 0:01 \_ [MailScanner] 16663 ? SN 0:01 /usr/bin/perl -I/usr/share/MailScanner /usr/sbin/Mail 17210 ? ZN 0:00 \_ [MailScanner] 16665 ? SN 0:00 /usr/bin/perl -I/usr/share/MailScanner /usr/sbin/Mail 16677 ? SN 0:01 /usr/bin/perl -I/usr/share/MailScanner /usr/sbin/Mail 16699 ? ZN 0:00 \_ [MailScanner] 16688 ? SN 0:00 /usr/bin/perl -I/usr/share/MailScanner /usr/sbin/Mail 16700 ? SN 0:00 /usr/bin/perl -I/usr/share/MailScanner /usr/sbin/Mail 17170 ? SN 0:00 /usr/bin/perl -I/usr/share/MailScanner /usr/sbin/Mail 17211 ? SN 0:01 /usr/bin/perl -I/usr/share/MailScanner /usr/sbin/Mail 17390 ? ZN 0:00 \_ [MailScanner] 17304 ? SN 0:00 /usr/bin/perl -I/usr/share/MailScanner /usr/sbin/Mail 17945 ? ZN 0:01 \_ [MailScanner] 17315 ? SN 0:00 /usr/bin/perl -I/usr/share/MailScanner /usr/sbin/Mail 17362 ? SN 0:00 /usr/bin/perl -I/usr/share/MailScanner /usr/sbin/Mail 17391 ? SN 0:00 /usr/bin/perl -I/usr/share/MailScanner /usr/sbin/Mail 17406 ? SN 0:00 /usr/bin/perl -I/usr/share/MailScanner /usr/sbin/Mail 17433 ? SN 0:00 /usr/bin/perl -I/usr/share/MailScanner /usr/sbin/Mail 17449 ? SN 0:00 /usr/bin/perl -I/usr/share/MailScanner /usr/sbin/Mail 17946 ? SN 0:00 /usr/bin/perl -I/usr/share/MailScanner /usr/sbin/Mail 17983 ? SN 0:00 /usr/bin/perl -I/usr/share/MailScanner /usr/sbin/Mail Is this normal? I have Max Children = 1 set in MailScanner.conf so why am I seeing all these processes/threads? When the load average goes up, stopping mailscanner (/etc/init.d/mailscanner stop) fixes the problem. I'm running 4.33.3, but I've had the same problem with unstable package (4.34-1) I'd appreciate any pointers! Thanks Alex ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From roel at GLOUDEMANS.INFO Sat Oct 2 19:45:45 2004 From: roel at GLOUDEMANS.INFO (Roel Gloudemans) Date: Thu Jan 12 21:27:07 2006 Subject: Error message about Socket.pm when starting MailScanner Message-ID: Damn, downgraded to perl 5.8.3. Still got the same problem. I recon it is coming with either one of the Spamassassin modules or the modules MailScanner installs. By the way, which perl version are you running? ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From mailscanner at ecs.soton.ac.uk Sat Oct 2 19:50:09 2004 From: mailscanner at ecs.soton.ac.uk (Julian Field) Date: Thu Jan 12 21:27:07 2006 Subject: Mailscanner sends load sky-high on Debian Message-ID: At 19:28 02/10/2004, you wrote: >Hi > >I've been having a few problems recently with mailscanner going awol and >sending the load average sky high on my Debian testing box. With Max Children = 1 you shouldn't be seeing all these children. Take a look in your syslog for any errors. Also set Debug = yes and then try to start MailScanner. It should print out any errors if there are any. -- Julian Field www.MailScanner.info Professional Support Services at www.MailScanner.biz MailScanner thanks transtec Computers for their support Buy the MailScanner book at www.MailScanner.info/store PGP footprint: EE81 D763 3DB0 0BFD E1DC 7222 11F6 5947 1415 B654 ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From mailscanner at ecs.soton.ac.uk Sat Oct 2 19:50:59 2004 From: mailscanner at ecs.soton.ac.uk (Julian Field) Date: Thu Jan 12 21:27:07 2006 Subject: Error message about Socket.pm when starting MailScanner Message-ID: At 19:45 02/10/2004, you wrote: >Damn, downgraded to perl 5.8.3. Still got the same problem. I recon it is >coming with either one of the Spamassassin modules or the modules >MailScanner installs. > >By the way, which perl version are you running? 5.6.1 as shipped with Solaris. -- Julian Field www.MailScanner.info Professional Support Services at www.MailScanner.biz MailScanner thanks transtec Computers for their support Buy the MailScanner book at www.MailScanner.info/store PGP footprint: EE81 D763 3DB0 0BFD E1DC 7222 11F6 5947 1415 B654 ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From roel at GLOUDEMANS.INFO Sat Oct 2 20:02:03 2004 From: roel at GLOUDEMANS.INFO (Roel Gloudemans) Date: Thu Jan 12 21:27:07 2006 Subject: Error message about Socket.pm when starting MailScanner Message-ID: OK, going to try the built-in perl. Which additional SpamAssassin perl modules doe you use? (I suppose your running SA3.0) Else I'm going to do a trial and error and see when I hit rock-bottom (if the problem is caused by one of the additional modules) ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From mailscanner at ecs.soton.ac.uk Sat Oct 2 20:10:39 2004 From: mailscanner at ecs.soton.ac.uk (Julian Field) Date: Thu Jan 12 21:27:07 2006 Subject: Error message about Socket.pm when starting MailScanner Message-ID: At 20:02 02/10/2004, you wrote: >OK, going to try the built-in perl. Which additional SpamAssassin perl >modules doe you use? (I suppose your running SA3.0) Else I'm going to do a >trial and error and see when I hit rock-bottom (if the problem is caused by >one of the additional modules) I just run SA 3. If you use my Clam+SA3 installation package on the downloads page, it will install all the pre-requisites for you. But you'll need to do a full installation of MailScanner first so that you get all the modules installed that MS needs. -- Julian Field www.MailScanner.info Professional Support Services at www.MailScanner.biz MailScanner thanks transtec Computers for their support Buy the MailScanner book at www.MailScanner.info/store PGP footprint: EE81 D763 3DB0 0BFD E1DC 7222 11F6 5947 1415 B654 ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From roel at GLOUDEMANS.INFO Sat Oct 2 20:30:24 2004 From: roel at GLOUDEMANS.INFO (Roel Gloudemans) Date: Thu Jan 12 21:27:07 2006 Subject: Error message about Socket.pm when starting MailScanner Message-ID: Going to try it out. Geez. perl is making a mess. Installing SA from CPAN failed because Digest:SHA1 is missing, then when I try to satisfy dependencies it is compaining about missing option -KPIC for cc (I use gcc) ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From mailscanner at ecs.soton.ac.uk Sat Oct 2 21:02:29 2004 From: mailscanner at ecs.soton.ac.uk (Julian Field) Date: Thu Jan 12 21:27:07 2006 Subject: Error message about Socket.pm when starting MailScanner Message-ID: At 20:30 02/10/2004, you wrote: >Going to try it out. Geez. perl is making a mess. Installing SA from CPAN >failed because Digest:SHA1 is missing, then when I try to satisfy >dependencies it is compaining about missing option -KPIC for cc (I use gcc) Use my installation package. It solves this problem for you so that the "make" phases all work. -- Julian Field www.MailScanner.info Professional Support Services at www.MailScanner.biz MailScanner thanks transtec Computers for their support Buy the MailScanner book at www.MailScanner.info/store PGP footprint: EE81 D763 3DB0 0BFD E1DC 7222 11F6 5947 1415 B654 ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From roel at GLOUDEMANS.INFO Sat Oct 2 21:19:44 2004 From: roel at GLOUDEMANS.INFO (Roel Gloudemans) Date: Thu Jan 12 21:27:07 2006 Subject: Error message about Socket.pm when starting MailScanner Message-ID: >Use my installation package. It solves this problem for you so that the >"make" phases all work. Well I did have to kill off some options in a couple of Config.pm (-KPIC compiler options and -xdepend options), but after that was done and all was run the system came up! Julian, many thanks for the support. Also, now I am running the same versions as you do. Makes for much smoother operation :-) By the way; I removed the lines with: -xO3 -xdepend and -KPIC from /usr/perl5/5.6.1/lib/sun4-solaris-64int/Config.pm and /usr/perl5/5.00503/sun4-solaris/Config.pm Might be worth to mention on: http://www.sng.ecs.soton.ac.uk/mailscanner/install/solaris9.txt That part of documentation tells you to do the miscompiling modules one by one. Cheers, Roel. ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From mailscanner at ecs.soton.ac.uk Sat Oct 2 21:25:39 2004 From: mailscanner at ecs.soton.ac.uk (Julian Field) Date: Thu Jan 12 21:27:07 2006 Subject: Error message about Socket.pm when starting MailScanner Message-ID: At 21:19 02/10/2004, you wrote: > >Use my installation package. It solves this problem for you so that the > >"make" phases all work. > >Well I did have to kill off some options in a couple of Config.pm (-KPIC >compiler options and -xdepend options), but after that was done and all was >run the system came up! > >Julian, many thanks for the support. > >Also, now I am running the same versions as you do. Makes for much smoother >operation :-) > >By the way; I removed the lines with: >-xO3 -xdepend >and >-KPIC >from >/usr/perl5/5.6.1/lib/sun4-solaris-64int/Config.pm >and >/usr/perl5/5.00503/sun4-solaris/Config.pm > >Might be worth to mention on: >http://www.sng.ecs.soton.ac.uk/mailscanner/install/solaris9.txt > >That part of documentation tells you to do the miscompiling modules one by >one. My installation package creates a new Config.pm with those options removed, so that your original setup is not affected. Most people don't know enough to mess with that Config.pm file :-) -- Julian Field www.MailScanner.info Professional Support Services at www.MailScanner.biz MailScanner thanks transtec Computers for their support Buy the MailScanner book at www.MailScanner.info/store PGP footprint: EE81 D763 3DB0 0BFD E1DC 7222 11F6 5947 1415 B654 ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From jaearick at COLBY.EDU Sun Oct 3 03:13:11 2004 From: jaearick at COLBY.EDU (Jeff A. Earickson) Date: Thu Jan 12 21:27:07 2006 Subject: SA 3.0, SURBL problem: fix for Solaris Message-ID: Gang, Building on the fine efforts of others on the list, I discovered that SURBL for SA 3.0 started working for me if I tracked down the init.pre file (installed in /etc/opt/mail/spamassassin in my case, hunh??) and copied it to /etc/mail/spamassasin. Many thanks to Scott Silva and Richard Potter for this important clue. BUT YOU WILL GET BURNED IF YOU STOP HERE! The FQDN bug in Sys-Hostname-Long-1.2 will rename your mail server the nanosecond that SA invokes the URIDNSBL plugin, thereby screwing up your email delivery and causing MailScanner to hang thereafter. Bad news. See: http://wiki.apache.org/spamassassin/FqdnError My ugly fix to Sys-Hostname-Long-1.2 to solve this problem: I edited Long.pm in this code and removed all references to "--fqdn". I did this in my actual perl source tree (/opt/perl5/lib/site_perl/5.8.5/Sys/Hostname/Long.pm). Maybe I should have done this to the code, rebuilt, and reinstalled. Solved this nasty problem for the moment, and got SURBL working too. Jeff Earickson Colby College ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From karl.kappel at SEGMUELLER.DE Sun Oct 3 08:33:49 2004 From: karl.kappel at SEGMUELLER.DE (Karl Kappel) Date: Thu Jan 12 21:27:07 2006 Subject: Different quarantine dirs Message-ID: Hi, ist there a way to have different dirs for infected mails and blocked attachment mails. I've tried "Quarantine Dir" with ruleset without success. ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From roel at GLOUDEMANS.INFO Sun Oct 3 11:56:22 2004 From: roel at GLOUDEMANS.INFO (Roel Gloudemans) Date: Thu Jan 12 21:27:07 2006 Subject: Error message about Socket.pm when starting MailScanner Message-ID: Post-mortem evaluation of this incident might be worth noting. Eventually the problem had nothing to do with the perl version. When installing an optional spamassassing perl module (Net::Ident I believe), a 'hostname --fqdn' was done to find out the hostname. On Solaris 'hostname --fqdn' actually sets the hostname to --fqdn. Hence the complaining of Socket.pm (--fqdn is an illegal name). Before the switch to the final perl version I opened up an extra ssh session to the server, noticing the --fqdn hostname in the command prompt and changed it back. That's why last time it did work. If I'd listened to Julians first mail to do a 'uname -a', I would have found out right away. So all Solaris folks out there, whatch out when you are installing additional perl modules for spamassassin. ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From mailscanner at ecs.soton.ac.uk Sun Oct 3 12:12:14 2004 From: mailscanner at ecs.soton.ac.uk (Julian Field) Date: Thu Jan 12 21:27:07 2006 Subject: Error message about Socket.pm when starting MailScanner Message-ID: The one that does it is Sys::Hostname::Long. This has been mentioned a few times before, but you probably need to know the module name to find it in the mailing list archive. You need to find and edit this module, or it will reset your hostname every time it runs, which is "A Bad Thing(tm)". See http://www.jiscmail.ac.uk/cgi-bin/webadmin?A2=ind0409&L=mailscanner&P=R13127&I=-1&X=5613951EE2DF4A9399&Y=jkf%40ecs%2Esoton%2Eac%2Euk http://www.jiscmail.ac.uk/cgi-bin/webadmin?A2=ind0410&L=mailscanner&P=R5416&I=-1 http://www.jiscmail.ac.uk/cgi-bin/webadmin?A2=ind0409&L=mailscanner&P=R95109&I=-1 or search the archive for "--fqdn". At 11:56 03/10/2004, you wrote: >Post-mortem evaluation of this incident might be worth noting. > >Eventually the problem had nothing to do with the perl version. When >installing an optional spamassassing perl module (Net::Ident I believe), a >'hostname --fqdn' was done to find out the hostname. > >On Solaris 'hostname --fqdn' actually sets the hostname to --fqdn. Hence the >complaining of Socket.pm (--fqdn is an illegal name). Before the switch to >the final perl version I opened up an extra ssh session to the server, >noticing the --fqdn hostname in the command prompt and changed it back. > >That's why last time it did work. If I'd listened to Julians first mail to >do a 'uname -a', I would have found out right away. > >So all Solaris folks out there, whatch out when you are installing >additional perl modules for spamassassin. > >------------------------ MailScanner list ------------------------ >To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: >'leave mailscanner' in the body of the email. >Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and >the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). -- Julian Field www.MailScanner.info Professional Support Services at www.MailScanner.biz MailScanner thanks transtec Computers for their support Buy the MailScanner book at www.MailScanner.info/store PGP footprint: EE81 D763 3DB0 0BFD E1DC 7222 11F6 5947 1415 B654 ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From mailscanner at ecs.soton.ac.uk Sun Oct 3 12:15:56 2004 From: mailscanner at ecs.soton.ac.uk (Julian Field) Date: Thu Jan 12 21:27:07 2006 Subject: Error message about Socket.pm when starting MailScanner Message-ID: At 12:12 03/10/2004, you wrote: >The one that does it is Sys::Hostname::Long. This has been mentioned a few >times before, but you probably need to know the module name to find it in >the mailing list archive. >You need to find and edit this module, or it will reset your hostname every >time it runs, which is "A Bad Thing(tm)". Correction, only the "make test" stage of the SpamAssassin installation process will screw up your hostname, apparently. -- Julian Field www.MailScanner.info Professional Support Services at www.MailScanner.biz MailScanner thanks transtec Computers for their support Buy the MailScanner book at www.MailScanner.info/store PGP footprint: EE81 D763 3DB0 0BFD E1DC 7222 11F6 5947 1415 B654 ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From jaearick at COLBY.EDU Sun Oct 3 13:00:50 2004 From: jaearick at COLBY.EDU (Jeff A. Earickson) Date: Thu Jan 12 21:27:07 2006 Subject: Error message about Socket.pm when starting MailScanner Message-ID: NOT TRUE!!! Per my note of last night, once you get init.pre in the right place and get SURBL working, then Sys::Hostname::Long will screw up your hostname every time SA finds a message that matches the SURBL criteria. Boom, your hostname gets changed. I confirmed this last night, both in MS debug mode and in regular mode. If you are on a Solaris box using Kerberos (as I am), then the Sys::Hostname::Long bug is really nasty. The hostname changes, the Kerberos key table lookup fails, and then nobody can login to the box. Jeff Earickson Colby College On Sun, 3 Oct 2004, Julian Field wrote: > Date: Sun, 3 Oct 2004 12:15:56 +0100 > From: Julian Field > Reply-To: MailScanner mailing list > To: MAILSCANNER@JISCMAIL.AC.UK > Subject: Re: Error message about Socket.pm when starting MailScanner > > At 12:12 03/10/2004, you wrote: >> The one that does it is Sys::Hostname::Long. This has been mentioned a few >> times before, but you probably need to know the module name to find it in >> the mailing list archive. >> You need to find and edit this module, or it will reset your hostname every >> time it runs, which is "A Bad Thing(tm)". > > Correction, only the "make test" stage of the SpamAssassin installation > process will screw up your hostname, apparently. > -- > Julian Field > www.MailScanner.info > Professional Support Services at www.MailScanner.biz > MailScanner thanks transtec Computers for their support > Buy the MailScanner book at www.MailScanner.info/store > > PGP footprint: EE81 D763 3DB0 0BFD E1DC 7222 11F6 5947 1415 B654 > > ------------------------ MailScanner list ------------------------ > To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: > 'leave mailscanner' in the body of the email. > Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and > the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). > ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From mailscanner at ecs.soton.ac.uk Sun Oct 3 13:05:14 2004 From: mailscanner at ecs.soton.ac.uk (Julian Field) Date: Thu Jan 12 21:27:07 2006 Subject: Error message about Socket.pm when starting MailScanner Message-ID: Thanks for the correction. I based my last post on the contents of the bug report in the SA wiki. I must admit I wasn't sure they were right, but I hadn't tested it out myself. At 13:00 03/10/2004, you wrote: >NOT TRUE!!! Per my note of last night, once you get init.pre in >the right place and get SURBL working, then Sys::Hostname::Long >will screw up your hostname every time SA finds a message that matches >the SURBL criteria. Boom, your hostname gets changed. I confirmed >this last night, both in MS debug mode and in regular mode. > >If you are on a Solaris box using Kerberos (as I am), then the >Sys::Hostname::Long bug is really nasty. The hostname changes, the >Kerberos key table lookup fails, and then nobody can login to the >box. -- Julian Field www.MailScanner.info Professional Support Services at www.MailScanner.biz MailScanner thanks transtec Computers for their support Buy the MailScanner book at www.MailScanner.info/store PGP footprint: EE81 D763 3DB0 0BFD E1DC 7222 11F6 5947 1415 B654 ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From rpotter at RPCS.NET Sun Oct 3 14:13:02 2004 From: rpotter at RPCS.NET (Richard Potter) Date: Thu Jan 12 21:27:07 2006 Subject: SA 3.0, SURBL problem: fix for Solaris Message-ID: On Sat, 2 Oct 2004, Jeff A. Earickson wrote: > BUT YOU WILL GET BURNED IF YOU STOP HERE! > > The FQDN bug in Sys-Hostname-Long-1.2 will rename your mail server > the nanosecond that SA invokes the URIDNSBL plugin, thereby screwing > up your email delivery and causing MailScanner to hang thereafter. > Bad news. See: > > http://wiki.apache.org/spamassassin/FqdnError > > My ugly fix to Sys-Hostname-Long-1.2 to solve this problem: I edited > Long.pm in this code and removed all references to "--fqdn". I did > this in my actual perl source tree > (/opt/perl5/lib/site_perl/5.8.5/Sys/Hostname/Long.pm). Maybe I should > have done this to the code, rebuilt, and reinstalled. Solved this > nasty problem for the moment, and got SURBL working too. For the list archives, this is a Solaris problem. Us Linux folks are good to go. I did 2 more installs Saturday, giving me 2 RHEL U3 boxes, and a RedHat 8 box. Kudos to Julian for MailScanner, and his SpamAssassin 3.0 installation package. These mail servers are working flawlessly, showing a 30% spam rate. Cheers! -- Richard Potter RHCE Re/Max Kingston, ON CANADA ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From peter at UCGBOOK.COM Sun Oct 3 16:18:02 2004 From: peter at UCGBOOK.COM (Peter Bonivart) Date: Thu Jan 12 21:27:07 2006 Subject: SA 3.0, SURBL problem: fix for Solaris Message-ID: Richard Potter wrote: > For the list archives, this is a Solaris problem. Us Linux folks are good to > go. Is that why he put Solaris in the subject line..? -- /Peter Bonivart --Unix lovers do it in the Sun ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From rpotter at RPCS.NET Sun Oct 3 17:29:47 2004 From: rpotter at RPCS.NET (Richard Potter) Date: Thu Jan 12 21:27:07 2006 Subject: SA 3.0, SURBL problem: fix for Solaris Message-ID: On Sun, 3 Oct 2004, Peter Bonivart wrote: > Richard Potter wrote: > > For the list archives, this is a Solaris problem. Us Linux folks are good to > > go. > Is that why he put Solaris in the subject line..? Duh! I should learn to read more carefully. It was Sunday morning and all. Sorry about that. Richard ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From doko at CS.TU-BERLIN.DE Sun Oct 3 18:34:42 2004 From: doko at CS.TU-BERLIN.DE (Matthias Klose) Date: Thu Jan 12 21:27:07 2006 Subject: Mailscanner sends load sky-high on Debian Message-ID: Alex Pimperton writes: > Hi > > I've been having a few problems recently with mailscanner going awol and > sending the load average sky high on my Debian testing box. downgrade spamassassin to the version from sarge. ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From b.addis at TIMESMEDIA.CO.NZ Sun Oct 3 22:05:36 2004 From: b.addis at TIMESMEDIA.CO.NZ (Brent Addis) Date: Thu Jan 12 21:27:07 2006 Subject: bitdefender issues Message-ID: That's odd. I'm using 2.6.8.1 and it seems to function just fine. What are you seeing with it? David Jacobson wrote: >Hi, > >Just a quick note to let the group know that Bitdefender does not work >with kernel 2.6.8. I asked Bitdefender what the solution was they said >downgrade to 2.6.5. We have now decided to scrap Bitdefender. > >Just incase anyone would like to know. > > > -- Regards, Brent Addis Group Systems Administrator Times Media Group Mob: 021 890 241 DDI: 488 3433 ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From mike at ZANKER.ORG Sun Oct 3 22:18:04 2004 From: mike at ZANKER.ORG (Mike Zanker) Date: Thu Jan 12 21:27:07 2006 Subject: Bayes not rebuilding Message-ID: Bayes does not seem to be rebuilding since I upgraded to 4.34.8 last Friday. I have Rebuild Bayes Every = 86400 in MailScanner.conf. I upgraded to version 3 of SpamAssassin recently and started with a new Bayes database but I have had rebuilds since then. Any ideas? Thanks, -- Mike Zanker Northampton, UK PGP Public Key from pgp@zanker.org ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From devonharding at gmail.com Sun Oct 3 22:40:45 2004 From: devonharding at gmail.com (Devon Harding) Date: Thu Jan 12 21:27:07 2006 Subject: End user quarantine? Message-ID: Is there an end user quarantine feature available for MailScanner? I would like the users to get an email a few time per day summarizing all quarantine email with the ability to release them. IronMail and MailFrontier both have this feature. Thanks, -Devon ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From Steve.Swaney at FSL.COM Sun Oct 3 22:49:42 2004 From: Steve.Swaney at FSL.COM (Steve Swaney) Date: Thu Jan 12 21:27:07 2006 Subject: bitdefender issues Message-ID: > -----Original Message----- > From: MailScanner mailing list [mailto:MAILSCANNER@JISCMAIL.AC.UK] On > Behalf Of Brent Addis > Sent: Sunday, October 03, 2004 5:06 PM > To: MAILSCANNER@JISCMAIL.AC.UK > Subject: Re: bitdefender issues > > That's odd. I'm using 2.6.8.1 and it seems to function just fine. > > What are you seeing with it? > > David Jacobson wrote: > > >Hi, > > > >Just a quick note to let the group know that Bitdefender does not work > >with kernel 2.6.8. I asked Bitdefender what the solution was they said > >downgrade to 2.6.5. We have now decided to scrap Bitdefender. > > > >Just incase anyone would like to know. > > Seems to run fine on a dual Opteron Red Hat Linux et 2.6.8 #3 SMP Fri Sep 10 15:01:16 EDT 2004 x86_64 x86_64 x86_64 GNU/Linux I seem to remember using the *gcc3x.* rpm. Steve Steve Swaney President Fortress Systems Ltd. www.fsl.com steve.swaney@fsl.com -- This message has been scanned for viruses and dangerous content by MailScanner, and is believed to be clean. Fortress Systems Ltd. www.fsl.com ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From michele at BLACKNIGHTSOLUTIONS.COM Sun Oct 3 23:11:18 2004 From: michele at BLACKNIGHTSOLUTIONS.COM (Michele Neylon::Blacknight Solutions) Date: Thu Jan 12 21:27:07 2006 Subject: End user quarantine? Message-ID: On Sun, 2004-10-03 at 17:40 -0400, Devon Harding wrote: > Is there an end user quarantine feature available for MailScanner? I > would like the users to get an email a few time per day summarizing > all quarantine email with the ability to release them. IronMail and > MailFrontier both have this feature. > No, it's not part of MailScanner, but there are a few related projects that offer *some* of the functionality you are looking for. -- Mr. Michele Neylon Blacknight Solutions Hosting, Co-location & Domain Registration http://www.blacknight.ie/ Tel. +353 (0)59 9137101 ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From Steve.Swaney at FSL.COM Sun Oct 3 23:35:58 2004 From: Steve.Swaney at FSL.COM (Steve Swaney) Date: Thu Jan 12 21:27:07 2006 Subject: End user quarantine? Message-ID: > -----Original Message----- > From: MailScanner mailing list [mailto:MAILSCANNER@JISCMAIL.AC.UK] On > Behalf Of Devon Harding > Sent: Sunday, October 03, 2004 5:41 PM > To: MAILSCANNER@JISCMAIL.AC.UK > Subject: End user quarantine? > > Is there an end user quarantine feature available for MailScanner? I > would like the users to get an email a few time per day summarizing > all quarantine email with the ability to release them. IronMail and > MailFrontier both have this feature. > > Thanks, > > -Devon We have a client who paid us to develop just such scripts and has asked us to release the code we developed as Open Source Software. They quarantine all spam between x and y and then send each user a daily report of what the have in quarantine. I haven't finished the installation directions (just to busy this week) but if you're perl aware you can probably use these scripts with a little modification. The application: 1. Sends email report once a day to any user who has spam in quarantine 2. Example format of this email report; for each quarantined email: From: email_address_of_sender Subject: subject_line _of_email Click to view: link_to_view Click to Release: link_to_release 3. Links the spam emails to a web accessible directory with a ".web" extension for viewing. 4. Enables a release link mechanism on the server 5. Can be installed with MailWatch but does not need MailWatch to operate. INSTALL instructions should be finished in a few days but if you can't wait: http://www.fsl.com/support With many thanks to the IT staff at Douglas County Oregon, USA who worked with us to develop the scripts. Credit is also due to Kevin Potter, Information Technology Director at Douglas County who conceived of the concept and wrote the original shell scripts. I'll post again when the Steve Install instructions are complete. Steve Swaney President Fortress Systems Ltd. www.fsl.com steve.swaney@fsl.com -- This message has been scanned for viruses and dangerous content by MailScanner, and is believed to be clean. Fortress Systems Ltd. www.fsl.com ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From mailscanner at ELKNET.NET Mon Oct 4 00:35:19 2004 From: mailscanner at ELKNET.NET (Alan) Date: Thu Jan 12 21:27:07 2006 Subject: NO_DNS_FOR_FROM Message-ID: Prior to upgrading to SA3, I used to see quite a few 'NO_DNS_FOR_FROM' hits in my logs. Now that I have upgraded, I see none. Not a single hit. When I moved to SA3, I started from scratch, installing RH8, the latest MS, exim, and SA3. Everything else appears to be running fine, just zero hits for 'NO_DNS_FOR_FROM', even when I feed it test messages with phoney 'from' addresses. Any suggestions on where I should look to solve this? Thanks! -Alan ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From clicknow at SWIFTDSL.COM.AU Mon Oct 4 00:38:08 2004 From: clicknow at SWIFTDSL.COM.AU (Brian Parish) Date: Thu Jan 12 21:27:07 2006 Subject: Mandrake RPMs - good source Message-ID: Just rejoined the list after a couple of months absence, so thought I'd make my first post a positive one instead of a request for assistance (for a change ;-) An issue I find each time I attempt to install a new version of MailScanner on the Mandrake based server is that the src rpms will not build. Others work, but there is obviously something "different" about the way Mandrake is set up that I don't understand and that doesn't correspond to the spec files used in MS src rpms. Anyway, this always resulted in frustrating cpan sessions. Some modules would fail to install from there as well, so I'd be googling all over the place to get the required perl modules in place. But now I have discovered: http://rpmpan.sourceforge.net/ All the modules required in binary rpm form that install easily. Cuts my install time on MailScanner by about 90%. Hope it helps someone else too. cheers Brian ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From mike at TC3NET.COM Mon Oct 4 00:45:58 2004 From: mike at TC3NET.COM (Michael Baird) Date: Thu Jan 12 21:27:07 2006 Subject: Mandrake RPMs - good source Message-ID: Same here, I just install from the tar, MailScanner's install script checks for redhat perl dependancy names, Mandrake has renamed their perl packages for some reason. Regards Mike > Just rejoined the list after a couple of months absence, so thought I'd > make my first post a positive one instead of a request for assistance > (for a change ;-) > > An issue I find each time I attempt to install a new version of > MailScanner on the Mandrake based server is that the src rpms will not > build. Others work, but there is obviously something "different" about > the way Mandrake is set up that I don't understand and that doesn't > correspond to the spec files used in MS src rpms. > > Anyway, this always resulted in frustrating cpan sessions. Some modules > would fail to install from there as well, so I'd be googling all over > the place to get the required perl modules in place. > > But now I have discovered: http://rpmpan.sourceforge.net/ > > All the modules required in binary rpm form that install easily. Cuts > my install time on MailScanner by about 90%. > > Hope it helps someone else too. > > cheers > Brian > > ------------------------ MailScanner list ------------------------ > To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: > 'leave mailscanner' in the body of the email. > Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and > the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). > -- Michael Baird ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From miguelk at konsultex.com.br Mon Oct 4 01:09:13 2004 From: miguelk at konsultex.com.br (Miguel Koren OBrien de Lacy) Date: Thu Jan 12 21:27:07 2006 Subject: OT - Which Linux Now? Message-ID: Hendrik; You mean Red Hat 8? I have had very good experiences with Fedora 1, but I'm sure it also applies to Fedora 2. Miguel -- Konsultex Informatica (http://www.konsultex.com.br) ---------- Original Message ----------- From: Hendrik den Hartog To: MAILSCANNER@JISCMAIL.AC.UK Sent: Mon, 4 Oct 2004 13:09:24 +1300 Subject: OT - Which Linux Now? > Our current MailScanner runs on Linux 8. I'm looking at > rebuilding our firewall. > > Any recommnedations as to which Linux flavour to migrate > to now that RedHat has changed? > > Cheers! > Hendrik > > ------------------------ MailScanner list ------------------------ > To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: > 'leave mailscanner' in the body of the email. > Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and > the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). > > -- > Esta mensagem foi verificada pelo sistema de antiv�rus e > acredita-se estar livre de perigo. ------- End of Original Message ------- -- Esta mensagem foi verificada pelo sistema de antiv�rus e acredita-se estar livre de perigo. ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From hden at KCBBS.GEN.NZ Mon Oct 4 01:09:24 2004 From: hden at KCBBS.GEN.NZ (Hendrik den Hartog) Date: Thu Jan 12 21:27:07 2006 Subject: OT - Which Linux Now? Message-ID: Our current MailScanner runs on Linux 8. I'm looking at rebuilding our firewall. Any recommnedations as to which Linux flavour to migrate to now that RedHat has changed? Cheers! Hendrik ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From greg at BLASTZONE.COM Mon Oct 4 01:18:18 2004 From: greg at BLASTZONE.COM (Greg Deputy) Date: Thu Jan 12 21:27:07 2006 Subject: OT - Which Linux Now? Message-ID: I'm running Fedora 2. Absolutely no complaints. > -----Original Message----- > From: MailScanner mailing list > [mailto:MAILSCANNER@JISCMAIL.AC.UK] On Behalf Of Miguel Koren > OBrien de Lacy > Sent: Sunday, October 03, 2004 5:09 PM > To: MAILSCANNER@JISCMAIL.AC.UK > Subject: Re: OT - Which Linux Now? > > > Hendrik; > > You mean Red Hat 8? I have had very good experiences with > Fedora 1, but I'm sure it also applies to Fedora 2. > > Miguel > > -- > Konsultex Informatica (http://www.konsultex.com.br) > > ---------- Original Message ----------- > From: Hendrik den Hartog > To: MAILSCANNER@JISCMAIL.AC.UK > Sent: Mon, 4 Oct 2004 13:09:24 +1300 > Subject: OT - Which Linux Now? > > > Our current MailScanner runs on Linux 8. I'm looking at > rebuilding our > > firewall. > > > > Any recommnedations as to which Linux flavour to migrate > > to now that RedHat has changed? > > > > Cheers! > > Hendrik > > > > ------------------------ MailScanner list > ------------------------ To > > unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave > > mailscanner' in the body of the email. Before posting, read the MAQ > > (http://www.mailscanner.biz/maq/) and the archives > > (http://www.jiscmail.ac.uk/lists/mailscanner.html). > > > > -- > > Esta mensagem foi verificada pelo sistema de antiv�rus e > > acredita-se estar livre de perigo. > ------- End of Original Message ------- > > > -- > Esta mensagem foi verificada pelo sistema de antiv�rus e > acredita-se estar livre de perigo. > > ------------------------ MailScanner list ------------------------ > To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: > 'leave mailscanner' in the body of the email. > Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and > the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). > > ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From james at GRAYONLINE.ID.AU Mon Oct 4 01:18:27 2004 From: james at GRAYONLINE.ID.AU (James Gray) Date: Thu Jan 12 21:27:07 2006 Subject: OT - Which Linux Now? Message-ID: On Mon, 4 Oct 2004 10:09 am, Hendrik den Hartog wrote: > Our current MailScanner runs on Linux 8. I'm looking at > rebuilding our firewall. > > Any recommnedations as to which Linux flavour to migrate > to now that RedHat has changed? > > Cheers! > Hendrik This could border on a holy war....but I'll bite ;) I rin MailScanner on Debian (Woody + backports.org) and also on FreeBSD. Personally, I find Debian's packaging system far more elegant for remote admin that BSD's ports. However, that could also be a familiarity thing too - fBSD'ers don't flame me :) Debian doesn't have any "official" support providers so is harder to upsell through the food chain, SuSE Enterprise Linux and RedHat Enterprise Server both have mature and well designed support structures if that's important (and MailScanner is packaged AFAIK for both platforms). If you're planning on running AMD64 hardware (Athlon64/Opteron), SuSE EL is the best choice IMHO. For x86, go with RedHat ES. If you run a mixed environment (Sparc/x86/PowerPC etc) Debian is a good choice due to it's consistent installation, layout and management tools across all platforms. Cheers, James ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From clicknow at SWIFTDSL.COM.AU Mon Oct 4 01:26:50 2004 From: clicknow at SWIFTDSL.COM.AU (Brian Parish) Date: Thu Jan 12 21:27:07 2006 Subject: change from sendmail to postfix - messages now stuck in hold Message-ID: I have two servers running MailScanner - home and office. The home machine was installed from scratch using a single instance of postfix as documented on the MS site and works fine. The office machine was running an old version of MS and used two instances of sendmail. This also worked, but not as well, so I moved the office machine to postfix and installed the latest stable version of MS. Without MS running and without the: header_checks = regexp:/etc/postfix/header_checks line in postfix's main.cf file, mail is processed in both directions, but with this line in action and MS running, mail is received into the hold directory and never delivered. I changed /etc/sysconfig/MailScanner to read: MTA=postfix and POSTFIXINCF=/etc/postfix # Directory containing incoming conf POSTFIXOUTCF=/etc/postfix # Directory containing outgoing conf MailScanner.conf is set to: Run As User = postfix Run As Group = postfix Incoming Queue Dir = /var/spool/postfix/hold Outgoing Queue Dir = /var/spool/postfix/incoming Permissions on postfix spool directories are set correctly. All this stuff is identical on the two servers. On the one not working I get a repeating message in /var/log/mail/info: MailScanner E-Mail Virus Scanner version 4.29.7 starting... Using Custom Function file /usr/lib/MailScanner/MailScanner/CustomFunctions/MyExample.pm and I see a number of defunct processes. Any bells ringing out there? TIA Brian ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From steve at SSNI.CA Mon Oct 4 01:52:51 2004 From: steve at SSNI.CA (Steve Roy) Date: Thu Jan 12 21:27:07 2006 Subject: OT - Which Linux Now? Message-ID: Hendrik den Hartog wrote: > Our current MailScanner runs on Linux 8. I'm looking at > rebuilding our firewall. > > Any recommnedations as to which Linux flavour to migrate > to now that RedHat has changed? > I use CentOS ver 3.3 www.centos.org From their website: CentOS-3 is a 100% compatible rebuild of RHEL 3 in full compliance with RedHat's redistribution requirements. It is for people who need an enterprise class OS without the cost of certification and support. Steve ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From ochanis at ncc.edu Mon Oct 4 01:52:53 2004 From: ochanis at ncc.edu (Steve Ochani) Date: Thu Jan 12 21:27:07 2006 Subject: OT - Which Linux Now? Message-ID: You could try http://whiteboxlinux.org/ it's basicly Red Hat Enterprise Linux 3 without the non-open source packages. plus support On 4 Oct 2004 at 13:09, Hendrik den Hartog wrote: > Our current MailScanner runs on Linux 8. I'm looking at > rebuilding our firewall. > > Any recommnedations as to which Linux flavour to migrate > to now that RedHat has changed? > > Cheers! > Hendrik �� Education is what remains after one has forgotten everything he learned in school. -Albert Einstein Steve O. http://www.steveo.us SUNY NCC Physical Sciences Dept. Network Admin SUNY NCC MATH/COMPUTER Unix Admin http://www.matcmp.ncc.edu ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From Steve.Swaney at FSL.COM Mon Oct 4 02:11:29 2004 From: Steve.Swaney at FSL.COM (Steve Swaney) Date: Thu Jan 12 21:27:07 2006 Subject: OT - Which Linux Now? Message-ID: > -----Original Message----- > From: MailScanner mailing list [mailto:MAILSCANNER@JISCMAIL.AC.UK] On > Behalf Of James Gray > Sent: Sunday, October 03, 2004 8:18 PM > To: MAILSCANNER@JISCMAIL.AC.UK > Subject: Re: OT - Which Linux Now? > > On Mon, 4 Oct 2004 10:09 am, Hendrik den Hartog wrote: > > Our current MailScanner runs on Linux 8. I'm looking at > > rebuilding our firewall. > > > > Any recommnedations as to which Linux flavour to migrate > > to now that RedHat has changed? > > This question crops up every month or two and a search of the archives for whitebox or taolinux will give you quite a bit of information. We have tested MailScanner and all related apps on: RH ES 3.0 Whitebox Linux (RH 3.0 clone) TaoLinux (RH 3.0 clone) Absolutely no problems and very easy to maintain thanks to Julian's rpm install version. If it's a home system and you want cutting edge - Fedora is also fine. If it's a production system and you want to sleep at night, my personal choice would be one of the above, No flames please - we also support clients who run FreeBSD, Solaris, etc systems. I can absolutely say that the best OS for you is probably the one that you're the most experienced and comfortable with. (Amen :) Also there is a long promised support window for RH 3.0; + 4years to go. Hope this helps, Steve Steve Swaney President Fortress Systems Ltd. www.fsl.com steve.swaney@fsl.com -- This message has been scanned for viruses and dangerous content by MailScanner, and is believed to be clean. Fortress Systems Ltd. www.fsl.com ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From wont-i at wkh.org Mon Oct 4 04:46:15 2004 From: wont-i at wkh.org (William K. Hardeman) Date: Thu Jan 12 21:27:07 2006 Subject: OT - Which Linux Now? Message-ID: --On Monday, October 04, 2004 13:09:24 +1300 Hendrik den Hartog wrote: > Our current MailScanner runs on Linux 8. I'm looking at > rebuilding our firewall. > > Any recommnedations as to which Linux flavour to migrate > to now that RedHat has changed? > We use Slackware for our servers, here. Although it's a little more work than RH or SUSE from a package management standpoint, it's rock solid and you don't have to play dependency hell. Just thought I'd throw in a so-far-unmentioned alternative. :-) Will -- ---------------------------------------------------------------------------- William K. Hardeman wont-i@wkh.org http://www.wkh.org ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From referencing at REZEAU.NET Mon Oct 4 06:28:41 2004 From: referencing at REZEAU.NET (REZEAU StXphane) Date: Thu Jan 12 21:27:07 2006 Subject: change from sendmail to postfix - messages now stuck in hold Message-ID: I've just had the same problem. All of my incoming/outgoing messages couldn't be delivered because of the missing word "hold" in the line : hash_queue_names = active, bounce, corrupt, hold, defer, flush, incoming in my /etc/postfix/main.cf file. On Mon, 4 Oct 2004 10:26:50 +1000, Brian Parish wrote: >I have two servers running MailScanner - home and office. The home >machine was installed from scratch using a single instance of postfix as >documented on the MS site and works fine. The office machine was >running an old version of MS and used two instances of sendmail. This >also worked, but not as well, so I moved the office machine to postfix >and installed the latest stable version of MS. > >Without MS running and without the: > >header_checks = regexp:/etc/postfix/header_checks > >line in postfix's main.cf file, mail is processed in both directions, >but with this line in action and MS running, mail is received into the >hold directory and never delivered. > >I changed /etc/sysconfig/MailScanner to read: > >MTA=postfix > >and > >POSTFIXINCF=/etc/postfix # Directory containing incoming conf >POSTFIXOUTCF=/etc/postfix # Directory containing outgoing conf > >MailScanner.conf is set to: > >Run As User = postfix >Run As Group = postfix >Incoming Queue Dir = /var/spool/postfix/hold >Outgoing Queue Dir = /var/spool/postfix/incoming > >Permissions on postfix spool directories are set correctly. > >All this stuff is identical on the two servers. > >On the one not working I get a repeating message in /var/log/mail/info: > >MailScanner E-Mail Virus Scanner version 4.29.7 starting... >Using Custom Function file >/usr/lib/MailScanner/MailScanner/CustomFunctions/MyExample.pm > >and I see a number of defunct processes. > >Any bells ringing out there? > >TIA >Brian > >------------------------ MailScanner list ------------------------ >To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: >'leave mailscanner' in the body of the email. >Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and >the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From clicknow at SWIFTDSL.COM.AU Mon Oct 4 07:57:04 2004 From: clicknow at SWIFTDSL.COM.AU (Brian Parish) Date: Thu Jan 12 21:27:07 2006 Subject: change from sendmail to postfix - messages now stuck in hold Message-ID: Well I have no hash_queue_names = line in either main.cf file. As I've no idea what it does I tried it on the server with the problem - no difference. thanks anyway, but still no wiser. Brian On Mon, 2004-10-04 at 15:28, REZEAU St=?ISO-8859-1?Q?=E9phane?= wrote: > I've just had the same problem. > All of my incoming/outgoing messages couldn't be delivered because of the > missing word "hold" in the line : > > hash_queue_names = active, bounce, corrupt, hold, defer, flush, incoming > > in my /etc/postfix/main.cf file. > > On Mon, 4 Oct 2004 10:26:50 +1000, Brian Parish > wrote: > > >I have two servers running MailScanner - home and office. The home > >machine was installed from scratch using a single instance of postfix as > >documented on the MS site and works fine. The office machine was > >running an old version of MS and used two instances of sendmail. This > >also worked, but not as well, so I moved the office machine to postfix > >and installed the latest stable version of MS. > > > >Without MS running and without the: > > > >header_checks = regexp:/etc/postfix/header_checks > > > >line in postfix's main.cf file, mail is processed in both directions, > >but with this line in action and MS running, mail is received into the > >hold directory and never delivered. > > > >I changed /etc/sysconfig/MailScanner to read: > > > >MTA=postfix > > > >and > > > >POSTFIXINCF=/etc/postfix # Directory containing incoming conf > >POSTFIXOUTCF=/etc/postfix # Directory containing outgoing conf > > > >MailScanner.conf is set to: > > > >Run As User = postfix > >Run As Group = postfix > >Incoming Queue Dir = /var/spool/postfix/hold > >Outgoing Queue Dir = /var/spool/postfix/incoming > > > >Permissions on postfix spool directories are set correctly. > > > >All this stuff is identical on the two servers. > > > >On the one not working I get a repeating message in /var/log/mail/info: > > > >MailScanner E-Mail Virus Scanner version 4.29.7 starting... > >Using Custom Function file > >/usr/lib/MailScanner/MailScanner/CustomFunctions/MyExample.pm > > > >and I see a number of defunct processes. > > > >Any bells ringing out there? > > > >TIA > >Brian ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From michele at BLACKNIGHTSOLUTIONS.COM Mon Oct 4 08:34:33 2004 From: michele at BLACKNIGHTSOLUTIONS.COM (Michele Neylon :: Blacknight Solutions) Date: Thu Jan 12 21:27:07 2006 Subject: OT - Which Linux Now? Message-ID: >> Our current MailScanner runs on Linux 8. I'm looking at rebuilding >> our firewall. >> >> Any recommnedations as to which Linux flavour to migrate to now that >> RedHat has changed? We have MailScanner running on a wide variety of distros. Whitebox - as already mentioned Fedora Core 1 Slackware - not as "graceful" to maintain We have also still got a few legacy machines with RH9 - not much fun by comparison with Whitebox Mr Michele Neylon Blacknight Internet Solutions Ltd Hosting, co-location & domains http://www.blacknight.ie/ Tel. +353 59 9137101 ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From mailscanner at ecs.soton.ac.uk Mon Oct 4 08:45:10 2004 From: mailscanner at ecs.soton.ac.uk (Julian Field) Date: Thu Jan 12 21:27:07 2006 Subject: NO_DNS_FOR_FROM Message-ID: Upgrade to the latest Net::DNS. At 00:35 04/10/2004, you wrote: >Prior to upgrading to SA3, I used to see quite a few 'NO_DNS_FOR_FROM' hits >in my logs. Now that I have upgraded, I see none. Not a single hit. > >When I moved to SA3, I started from scratch, installing RH8, the latest MS, >exim, and SA3. Everything else appears to be running fine, just zero hits >for 'NO_DNS_FOR_FROM', even when I feed it test messages with phoney 'from' >addresses. > >Any suggestions on where I should look to solve this? -- Julian Field www.MailScanner.info MailScanner thanks transtec Computers for their support Buy the MailScanner book at www.MailScanner.info/store PGP footprint: EE81 D763 3DB0 0BFD E1DC 7222 11F6 5947 1415 B654 ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From mailscanner at ecs.soton.ac.uk Mon Oct 4 08:47:33 2004 From: mailscanner at ecs.soton.ac.uk (Julian Field) Date: Thu Jan 12 21:27:07 2006 Subject: Mandrake RPMs - good source Message-ID: At 00:38 04/10/2004, you wrote: >All the modules required in binary rpm form that install easily. Cuts >my install time on MailScanner by about 90%. > >Hope it helps someone else too. Another way of cutting your install time: go through install.sh and comment out all the "sleep" commands :-) -- Julian Field www.MailScanner.info MailScanner thanks transtec Computers for their support Buy the MailScanner book at www.MailScanner.info/store PGP footprint: EE81 D763 3DB0 0BFD E1DC 7222 11F6 5947 1415 B654 ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From mailscanner at ecs.soton.ac.uk Mon Oct 4 08:52:56 2004 From: mailscanner at ecs.soton.ac.uk (Julian Field) Date: Thu Jan 12 21:27:07 2006 Subject: change from sendmail to postfix - messages now stuck in hold Message-ID: Please kill all your MailScanner processes, set Debug = yes in MailScanner.conf and then run check_mailscanner. That should print up an error message. If it just sits there, there are no messages in the incoming queue, so wait for 1 to arrive. At 01:26 04/10/2004, you wrote: >I have two servers running MailScanner - home and office. The home >machine was installed from scratch using a single instance of postfix as >documented on the MS site and works fine. The office machine was >running an old version of MS and used two instances of sendmail. This >also worked, but not as well, so I moved the office machine to postfix >and installed the latest stable version of MS. > >Without MS running and without the: > >header_checks = regexp:/etc/postfix/header_checks > >line in postfix's main.cf file, mail is processed in both directions, >but with this line in action and MS running, mail is received into the >hold directory and never delivered. > >I changed /etc/sysconfig/MailScanner to read: > >MTA=postfix > >and > >POSTFIXINCF=/etc/postfix # Directory containing incoming conf >POSTFIXOUTCF=/etc/postfix # Directory containing outgoing conf > >MailScanner.conf is set to: > >Run As User = postfix >Run As Group = postfix >Incoming Queue Dir = /var/spool/postfix/hold >Outgoing Queue Dir = /var/spool/postfix/incoming > >Permissions on postfix spool directories are set correctly. > >All this stuff is identical on the two servers. > >On the one not working I get a repeating message in /var/log/mail/info: > >MailScanner E-Mail Virus Scanner version 4.29.7 starting... >Using Custom Function file >/usr/lib/MailScanner/MailScanner/CustomFunctions/MyExample.pm > >and I see a number of defunct processes. > >Any bells ringing out there? -- Julian Field www.MailScanner.info MailScanner thanks transtec Computers for their support Buy the MailScanner book at www.MailScanner.info/store PGP footprint: EE81 D763 3DB0 0BFD E1DC 7222 11F6 5947 1415 B654 ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From misterpo at IFRANCE.COM Mon Oct 4 10:05:06 2004 From: misterpo at IFRANCE.COM (Mister PO) Date: Thu Jan 12 21:27:07 2006 Subject: MailScanner, SA and Bayes : how to update Message-ID: The first results of this MailScanner/SA solution are impressive : 860 messages detected as SPAM during the week-end ! Is it dangerous to run the sa-learn process while MailScanner is running ? I would like to go on feeding SA with spam archives... Thanks for your help, PO. ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From martinh at SOLID-STATE-LOGIC.COM Mon Oct 4 10:18:25 2004 From: martinh at SOLID-STATE-LOGIC.COM (Martin Hepworth) Date: Thu Jan 12 21:27:07 2006 Subject: MailScanner, SA and Bayes : how to update Message-ID: Hi nom it's fine to do this, I run a daily job to do this, it was hourly, but the amount of corrections I get are low enough to go daily. -- Martin Hepworth Snr Systems Administrator Solid State Logic Tel: +44 (0)1865 842300 Mister PO wrote: > The first results of this MailScanner/SA solution are impressive : 860 > messages detected as SPAM during the week-end ! > > Is it dangerous to run the sa-learn process while MailScanner is running ? > > I would like to go on feeding SA with spam archives... > > Thanks for your help, > > PO. > > ------------------------ MailScanner list ------------------------ > To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: > 'leave mailscanner' in the body of the email. > Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and > the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). ********************************************************************** This email and any files transmitted with it are confidential and intended solely for the use of the individual or entity to whom they are addressed. If you have received this email in error please notify the system manager. This footnote confirms that this email message has been swept for the presence of computer viruses and is believed to be clean. ********************************************************************** ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From Peter.Bates at LSHTM.AC.UK Mon Oct 4 11:00:47 2004 From: Peter.Bates at LSHTM.AC.UK (Peter Bates) Date: Thu Jan 12 21:27:07 2006 Subject: Envelope senders, SA and MailScanner Message-ID: Hello all... In the recent SA 3.0.0 release announcement, I saw under 'Engine Changes': - Rules can now test the "MAIL FROM:" address used in the SMTP transaction if it was logged to the message headers using the "EnvelopeFrom" pseudo-header. This allows rules such as SPF to be applied. Does MailScanner support this? Does it automatically pass the envelope sender (seeing as MS clearly knows it), or does this require some further configuration? Just curious! ---------------------------------------------------------------------------------------------------> Peter Bates, Systems Support Officer, IT Services. London School of Hygiene & Tropical Medicine. Telephone:0207-958 8353 / Fax: 0207- 636 9838 ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From mailscanner at ecs.soton.ac.uk Mon Oct 4 11:53:40 2004 From: mailscanner at ecs.soton.ac.uk (Julian Field) Date: Thu Jan 12 21:27:07 2006 Subject: Envelope senders, SA and MailScanner Message-ID: Well spotted. Attached is a patch to add this feature. At 11:00 04/10/2004, you wrote: >Hello all... > >In the recent SA 3.0.0 release announcement, I saw under 'Engine >Changes': > > - Rules can now test the "MAIL FROM:" address used in the SMTP > transaction if it was logged to the message headers using the > "EnvelopeFrom" pseudo-header. This allows rules such as SPF to be > applied. > >Does MailScanner support this? Does it automatically pass the envelope >sender (seeing as MS clearly knows it), or does this require some >further configuration? > >Just curious! ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). [ Part 2, Application/OCTET-STREAM (Name: "SA.pm.patch") 692bytes. ] [ Unable to print this part. ] [ Part 3: "Attached Text" ] -- Julian Field www.MailScanner.info MailScanner thanks transtec Computers for their support Buy the MailScanner book at www.MailScanner.info/store PGP footprint: EE81 D763 3DB0 0BFD E1DC 7222 11F6 5947 1415 B654 ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From Kevin.Spicer at BMRB.CO.UK Mon Oct 4 12:03:14 2004 From: Kevin.Spicer at BMRB.CO.UK (Spicer, Kevin) Date: Thu Jan 12 21:27:07 2006 Subject: Mandrake RPMs - good source Message-ID: -----Original Message----- From: Brian Parish [mailto:clicknow@SWIFTDSL.COM.AU] >An issue I find each time I attempt to install a new version of MailScanner on the >Mandrake based server is that the src rpms will not build. Others work, but there is >obviously something "different" about the way Mandrake is set up that I don't understand >and that doesn't correspond to the spec files used in MS src rpms. I always found just passing the nodeps argument to install.sh did the trick quite nicely. BMRB International http://www.bmrb.co.uk +44 (0)20 8566 5000 _________________________________________________________________ This message (and any attachment) is intended only for the recipient and may contain confidential and/or privileged material. If you have received this in error, please contact the sender and delete this message immediately. Disclosure, copying or other action taken in respect of this email or in reliance on it is prohibited. BMRB International Limited accepts no liability in relation to any personal emails, or content of any email which does not directly relate to our business. ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From Q.G.Campbell at NEWCASTLE.AC.UK Mon Oct 4 13:40:45 2004 From: Q.G.Campbell at NEWCASTLE.AC.UK (Quentin Campbell) Date: Thu Jan 12 21:27:07 2006 Subject: Envelope senders, SA and MailScanner Message-ID: Julian How long before this patch is available in a stable release of MS? I was just about to start upgrading to 4.34.8-1 on 8 machines after successfully running with 4.34.6-1 (BETA) on one of them. Quentin --- PHONE: +44 191 222 8209 Information Systems and Services (ISS), University of Newcastle, Newcastle upon Tyne, FAX: +44 191 222 8765 United Kingdom, NE1 7RU. ------------------------------------------------------------------------ "Any opinion expressed above is mine. The University can get its own." >-----Original Message----- >From: MailScanner mailing list >[mailto:MAILSCANNER@JISCMAIL.AC.UK] On Behalf Of Julian Field >Sent: 04 October 2004 11:54 >To: MAILSCANNER@JISCMAIL.AC.UK >Subject: Re: Envelope senders, SA and MailScanner > >Well spotted. >Attached is a patch to add this feature. > >At 11:00 04/10/2004, you wrote: >>Hello all... >> >>In the recent SA 3.0.0 release announcement, I saw under 'Engine >>Changes': >> >> - Rules can now test the "MAIL FROM:" address used in the SMTP >> transaction if it was logged to the message headers using the >> "EnvelopeFrom" pseudo-header. This allows rules such as >SPF to be >> applied. >> >>Does MailScanner support this? Does it automatically pass the envelope >>sender (seeing as MS clearly knows it), or does this require some >>further configuration? >> >>Just curious! > >------------------------ MailScanner list ------------------------ >To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: >'leave mailscanner' in the body of the email. >Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and >the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). > > ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From mailscanner at ecs.soton.ac.uk Mon Oct 4 13:44:08 2004 From: mailscanner at ecs.soton.ac.uk (Julian Field) Date: Thu Jan 12 21:27:07 2006 Subject: Envelope senders, SA and MailScanner Message-ID: Start of next month. At 13:40 04/10/2004, you wrote: >Julian > >How long before this patch is available in a stable release of MS? > >I was just about to start upgrading to 4.34.8-1 on 8 machines after >successfully running with 4.34.6-1 (BETA) on one of them. > > >-----Original Message----- > >From: MailScanner mailing list > >[mailto:MAILSCANNER@JISCMAIL.AC.UK] On Behalf Of Julian Field > >Sent: 04 October 2004 11:54 > >To: MAILSCANNER@JISCMAIL.AC.UK > >Subject: Re: Envelope senders, SA and MailScanner > > > >Well spotted. > >Attached is a patch to add this feature. > > > >At 11:00 04/10/2004, you wrote: > >>Hello all... > >> > >>In the recent SA 3.0.0 release announcement, I saw under 'Engine > >>Changes': > >> > >> - Rules can now test the "MAIL FROM:" address used in the SMTP > >> transaction if it was logged to the message headers using the > >> "EnvelopeFrom" pseudo-header. This allows rules such as > >SPF to be > >> applied. > >> > >>Does MailScanner support this? Does it automatically pass the envelope > >>sender (seeing as MS clearly knows it), or does this require some > >>further configuration? -- Julian Field www.MailScanner.info MailScanner thanks transtec Computers for their support Buy the MailScanner book at www.MailScanner.info/store PGP footprint: EE81 D763 3DB0 0BFD E1DC 7222 11F6 5947 1415 B654 ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From misterpo at IFRANCE.COM Mon Oct 4 13:47:54 2004 From: misterpo at IFRANCE.COM (Mister PO) Date: Thu Jan 12 21:27:07 2006 Subject: MailScanner, SA and Bayes : how to update Message-ID: Sorry but my knowledge of SA is very poor... Is there an other way to teach SA than manually feeding the Bays DB with the sa-learn command line and a sample spam file? When should the Bayes DB be rebuilt ? After each update ? Thanks ! ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From chris.jones at ATMOSENERGY.COM Mon Oct 4 14:01:09 2004 From: chris.jones at ATMOSENERGY.COM (Jones, Chris) Date: Thu Jan 12 21:27:07 2006 Subject: CustomConfig.pm Message-ID: I have added a function to the CustomConfig.pm but I cannot get logging to work Is there any reason I should not see this in the log? Here is some entrys from the MailScanner.conf # This is the syslog "facility" name that MailScanner uses. If you don't # know what a syslog facility name is, then either don't change this value # or else go and read "man syslog.conf". The default value of "mail" will # cause the MailScanner logs to go into the same place as all your other # mail logs Syslog Facility = mail # Spam Blacklist: # Make this point to a ruleset, and anything in that ruleset whose value # is "yes" will *always* be marked as spam. # This can also be the filename of a ruleset. # cjones changed this to support MySqlBL #Is Definitely Spam = no Is Definitely Spam = &MySqlBL # Set Run In Foreground to "yes" if you want MailScanner to operate # normally in foreground (and not as a background daemon). # Use this if you are controlling the execution of MailScanner # with a tool like DJB's 'supervise' (see http://cr.yp.to/daemontools.html). #Run In Foreground = no #cjones changed this to debug Run In Foreground = yes This is from CustomConfig.pm sub InitMySqlBL { my( $MySqldb ); $MySqldb = "************* MysqlBL *****************"; MailScanner::Log::InfoLog("Starting up MySql spam Blacklist, " . "Reading from mysql %s", $MySqldb ); } # sub MySqlBL { $MySqldb = "************* MysqlBL *****************"; MailScanner::Log::InfoLog("MySqlBlacklist: " . "Is returning a 1 as a test value %s", $MySqldb ); return 1; } sub EndMySqlBL { my( $MySqldb ); $MySqldb = "************* END MysqlBL *****************"; MailScanner::Log::DebugLog("Ending MySql spam Blacklist, " . "Reading from mysql %s", $MySqldb ); } This is all I see in the maillog: Oct 4 07:55:41 dfw1wu22 MailScanner[21468]: Config: calling custom init function MySqlBL I have tried changing: MailScanner::Log::InfoLog("Starting up MySql spam Blacklist, " . "Reading from mysql %s", $MySqldb ); To read: MailScanner::Log::DebugLog("Ending MySql spam Blacklist, " . "Reading from mysql %s", $MySqldb ); I don't even get it in the foreground output when I run MailScanner. Thanks, Chris Jones System Engineer Atmos Energy Corporation "A leader must never care more about being liked than being right." George W. Bush ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From mailscanner at ecs.soton.ac.uk Mon Oct 4 14:45:19 2004 From: mailscanner at ecs.soton.ac.uk (Julian Field) Date: Thu Jan 12 21:27:07 2006 Subject: MailScanner, SA and Bayes : how to update Message-ID: At 13:47 04/10/2004, you wrote: >Sorry but my knowledge of SA is very poor... > >Is there an other way to teach SA than manually feeding the Bays DB with >the sa-learn command line and a sample spam file? It automatically learns from mail that is either very spammy or very non-spammy ("hammy"). So you don't actually need to do anything if you don't want to. >When should the Bayes DB be rebuilt ? After each update ? Depending on your mail volume, every few days is usually sufficient, what you want to do is an "expiry" run, not a rebuild. -- Julian Field www.MailScanner.info MailScanner thanks transtec Computers for their support Buy the MailScanner book at www.MailScanner.info/store PGP footprint: EE81 D763 3DB0 0BFD E1DC 7222 11F6 5947 1415 B654 ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From dfilchak at sympatico.ca Mon Oct 4 15:13:23 2004 From: dfilchak at sympatico.ca (Dave Filchak) Date: Thu Jan 12 21:27:07 2006 Subject: PDF Corruption Again Message-ID: Hi, A while back, I was having a problem with PDF files being corrupted by MailScanner. As suggested by Julian, I upgraded to the latest MailScanner at that point and the problem was fixed. However, it has started to happen again for no apparent reason. I have not changed anything since the upgrade so unless there is some voodoo going on here then this should not be happening. Any ideas anyone? Here is my current installs: Linux rosewood.zuka.net 2.4.20-31.9 #1 Tue Apr 13 18:04:23 EDT 2004 i686 i686 i386 GNU/Linux This is Red Hat Linux release 9 (Shrike) This is Perl version 5.008000 (5.8.0) This is MailScanner version 4.34.4 Module versions are: 1.00 AnyDBM_File 1.13 Archive::Zip 1.01 Carp 1.119 Convert::BinHex 1.00 DirHandle 1.04 Fcntl 2.71 File::Basename 2.05 File::Copy 2.01 FileHandle 1.05 File::Path 0.13 File::Temp 1.23 HTML::Entities 3.26 HTML::Parser 2.24 HTML::TokeParser 1.20 IO 1.09 IO::File 1.122 IO::Pipe 3.03 MIME::Base64 5.413 MIME::Decoder 5.413 MIME::Decoder::UU 5.413 MIME::Head 5.413 MIME::Parser 5.413 MIME::Tools 0.09 Net::CIDR 1.05 POSIX 1.75 Socket 0.03 Sys::Syslog 1.02 Time::localtime Optional module versions are: 1.806 DB_File 1.00 Digest 1.01 Digest::HMAC 2.20 Digest::MD5 2.01 Digest::SHA1 0.44 Inline 0.11 Mail::ClamAV 3.000000 Mail::SpamAssassin missing Mail::SPF::Query missing Net::CIDR::Lite 0.31 Net::DNS missing Net::LDAP 1.94 Parse::RecDescent missing SAVI missing Sys::Hostname::Long 2.26 Test::Harness 0.47 Test::Simple 1.89 Text::Balanced 1.21 URI David Filchak President - Zuka Inc. Toronto, On Canada M5V2J1 www.zuka.net | www.screamingmedia.ca ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From devonharding at gmail.com Mon Oct 4 15:20:19 2004 From: devonharding at gmail.com (Devon Harding) Date: Thu Jan 12 21:27:07 2006 Subject: End user quarantine? Message-ID: This looks to be really impressive. Let us know when the INSTALL doc will be available or a quick version of the doc would be nice. -Devon On Sun, 3 Oct 2004 18:35:58 -0400, Steve Swaney wrote: > > -----Original Message----- > > From: MailScanner mailing list [mailto:MAILSCANNER@JISCMAIL.AC.UK] On > > Behalf Of Devon Harding > > Sent: Sunday, October 03, 2004 5:41 PM > > To: MAILSCANNER@JISCMAIL.AC.UK > > Subject: End user quarantine? > > > > Is there an end user quarantine feature available for MailScanner? I > > would like the users to get an email a few time per day summarizing > > all quarantine email with the ability to release them. IronMail and > > MailFrontier both have this feature. > > > > Thanks, > > > > -Devon > > We have a client who paid us to develop just such scripts and has asked us > to release the code we developed as Open Source Software. They quarantine > all spam between x and y and then send each user a daily report of what the > have in quarantine. > > I haven't finished the installation directions (just to busy this week) but > if you're perl aware you can probably use these scripts with a little > modification. > > The application: > > 1. Sends email report once a day to any user who has spam in quarantine > > 2. Example format of this email report; for each quarantined email: > > From: email_address_of_sender > Subject: subject_line _of_email > Click to view: link_to_view > Click to Release: link_to_release > > 3. Links the spam emails to a web accessible directory with a ".web" > extension for viewing. > > 4. Enables a release link mechanism on the server > > 5. Can be installed with MailWatch but does not need MailWatch to operate. > > INSTALL instructions should be finished in a few days but if you can't wait: > > http://www.fsl.com/support > > With many thanks to the IT staff at Douglas County Oregon, USA who worked > with us to develop the scripts. Credit is also due to Kevin Potter, > Information Technology Director at Douglas County who conceived of the > concept and wrote the original shell scripts. > > I'll post again when the Steve > Install instructions are complete. > > Steve Swaney > President > Fortress Systems Ltd. > www.fsl.com > steve.swaney@fsl.com > > -- > This message has been scanned for viruses and > dangerous content by MailScanner, and is > believed to be clean. > > Fortress Systems Ltd. > www.fsl.com > > > > ------------------------ MailScanner list ------------------------ > To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: > 'leave mailscanner' in the body of the email. > Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and > the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). > ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From devonharding at gmail.com Mon Oct 4 15:31:54 2004 From: devonharding at gmail.com (Devon Harding) Date: Thu Jan 12 21:27:07 2006 Subject: Cannot start DCC as deamon Message-ID: Following the instruction on how to Optimize Mailscanner, http://www.sng.ecs.soton.ac.uk/mailscanner/serve/cache/312.html, for some reason, I cannot start the DDC service. I get the following error: [root@mars root]# service DCC start DCC: cannot start dccd; SRVR_ID not set in /var/dcc/dcc_conf I cannot find anywhere on how to set the SRVR_ID value or what it is supposed to be. -Devon ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From ugob at CAMO-ROUTE.COM Mon Oct 4 15:41:06 2004 From: ugob at CAMO-ROUTE.COM (Ugo Bellavance) Date: Thu Jan 12 21:27:07 2006 Subject: Cannot start DCC as deamon Message-ID: Devon Harding wrote: > Following the instruction on how to Optimize Mailscanner, > http://www.sng.ecs.soton.ac.uk/mailscanner/serve/cache/312.html, for > some reason, I cannot start the DDC service. I get the following > error: > > [root@mars root]# service DCC start > DCC: cannot start dccd; SRVR_ID not set in /var/dcc/dcc_conf > > I cannot find anywhere on how to set the SRVR_ID value or what it is > supposed to be. Did you enable DCCD or DCCifd? > > -Devon > > ------------------------ MailScanner list ------------------------ > To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: > 'leave mailscanner' in the body of the email. > Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and > the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). > ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From oliverr at TRAYPORT.COM Mon Oct 4 16:32:03 2004 From: oliverr at TRAYPORT.COM (Oliver Rooney) Date: Thu Jan 12 21:27:07 2006 Subject: MailScanner 4.34.8 wont start Message-ID: I have just ugraded from 4.25.14 to 4.34.8, on Debian Woody with a 2.2.20 kernel, perl 5.6.1. I used upgrade_mailscanner_conf, and then moved all files from /opt (where 4.25.14 is installed) to /usr/local/share and adjusted paths in conf file accordingly. However if I run check_mailscanner no mail is delived and MailScanner logs "MailScanner[16086]: MailScanner E-Mail Virus Scanner version 4.34.8 starting..." every 10 seconds and the PID increments. If run with "Debug = Yes" in Mailcanner.conf I get "Starting MailScanner... In Debugging mode, not forking... Undefined subroutine &MailScanner::Config::initialise called at /usr/local/share/MailScanner/bin/MailScanner line 404." Now "sub initialise" is defined in /usr/local/share/MailScanner- 4.34.8/lib/MailScanner/Config.pm but it is not in /opt/MailScanner-4.25- 14/lib/MailScanner/Config.pm. Which seems to me like a possible problem, but my powers of perl wizardry are too weak to work out a solution. Many thanks, Oliver Rooney ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From devonharding at gmail.com Mon Oct 4 16:44:23 2004 From: devonharding at gmail.com (Devon Harding) Date: Thu Jan 12 21:27:07 2006 Subject: Cannot start DCC as deamon Message-ID: I set 'DCCIFD_ENABLE=on' inf /var/dcc/dcc_conf as per MailScanner's instruction. On Mon, 4 Oct 2004 10:41:06 -0400, Ugo Bellavance wrote: > > > Devon Harding wrote: > > Following the instruction on how to Optimize Mailscanner, > > http://www.sng.ecs.soton.ac.uk/mailscanner/serve/cache/312.html, for > > some reason, I cannot start the DDC service. I get the following > > error: > > > > [root@mars root]# service DCC start > > DCC: cannot start dccd; SRVR_ID not set in /var/dcc/dcc_conf > > > > I cannot find anywhere on how to set the SRVR_ID value or what it is > > supposed to be. > > Did you enable DCCD or DCCifd? > > > > > -Devon > > > > ------------------------ MailScanner list ------------------------ > > To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: > > 'leave mailscanner' in the body of the email. > > Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and > > the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). > > > > ------------------------ MailScanner list ------------------------ > To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: > 'leave mailscanner' in the body of the email. > Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and > the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). > ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From ugob at CAMO-ROUTE.COM Mon Oct 4 17:06:35 2004 From: ugob at CAMO-ROUTE.COM (Ugo Bellavance) Date: Thu Jan 12 21:27:07 2006 Subject: Cannot start DCC as deamon Message-ID: Devon Harding wrote: > I set 'DCCIFD_ENABLE=on' inf /var/dcc/dcc_conf as per MailScanner's instruction. It looks like it is trying to start DCCD, which is not what you want. Do you have DCCD_ENABLE to on? ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From combs at magnet.fsu.edu Mon Oct 4 17:18:18 2004 From: combs at magnet.fsu.edu (Tom Combs) Date: Thu Jan 12 21:27:07 2006 Subject: SA 3.0 generates garbled Makefile Message-ID: Folks, I'm attempting to upgrade from SA 2.64 to SA 3.0 on a box running RHEL 3.0. When trying to run via either CPAN or from the tarfile using "perl Makefile.PL", I get a botched make file and can't do the install. It also warns about not being able to find pod2man even though this is in /usr/bin/pod2man. Here is an extract of the Makefile where is starts going haywire: INSTALLSITELIB = /usr/lib/perl5/site_perl/5.8.0' <-- No leading ' installsiteman1='/usr/share/man/man1' installsiteman3='/usr/share/man/man3' installsitescript='/usr/bin' installstyle='lib/perl5' <-- ??? installusrbinperl='define' installvendorarch='/usr/lib/perl5/vendor_perl/5.8.0/i386-linux-thread-multi' installvendorbin='/usr/bin' installvendorhtml1='' installvendorhtml3='' installvendorlib='/usr/lib/perl5/vendor_perl/5.8.' INSTALLVENDORLIB = ib/perl5' <-- ??? installusrbinperl='def <-- No trailing ' INSTALLARCHLIB = /usr/lib/perl5/5.8.0/i386-linux-thread-multi INSTALLSITEARCH = /usr/lib/pe <-- going down hill INSTALLVENDORARCH = /usr/ INSTALLBIN = /usr/bin' installhtml1dir='' installhtml3dir='' installman1 INSTALLSITEBIN = /usr INSTALLVENDORBIN = /usr/bin' I'm just doing a vanilla install and had no problem with the earlier version of SA. I could try to just fix the make file but if 3.0 can't even do the make, I'm not very comfortable running it. Has anyone else had this problem? Thanks, Tom Combs -- Tom Combs E-mail: combs@magnet.fsu.edu National High Magnetic Field Laboratory Phone: (850) 644-1657 1800 E. Paul Dirac Drive Tallahassee, FL 32310 ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From dfilchak at sympatico.ca Mon Oct 4 17:18:46 2004 From: dfilchak at sympatico.ca (Dave Filchak) Date: Thu Jan 12 21:27:07 2006 Subject: Update to corrupted PDF issue Message-ID: Just to update my email from a couple of hours ago. I can receive emails from other people to me that have PDF attachments and the PDF is fine. However, if I send the PDF to a client and CC myself or send it directly to myself, the PDF is unreadable. I really do not know where to start here except perhaps updating to the very latest. Dave ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From chrisk at OS-IT.NET Mon Oct 4 17:43:46 2004 From: chrisk at OS-IT.NET (Chris Kissinger) Date: Thu Jan 12 21:27:07 2006 Subject: SA 3.0 generates garbled Makefile Message-ID: This is the same error as RH9, Fedora, etc. with the $LANG settings http://www.sng.ecs.soton.ac.uk/mailscanner/serve/cache/121.html Chris -----Original Message----- From: MailScanner mailing list [mailto:MAILSCANNER@JISCMAIL.AC.UK] On Behalf Of Tom Combs Sent: Monday, October 04, 2004 9:18 AM To: MAILSCANNER@JISCMAIL.AC.UK Subject: SA 3.0 generates garbled Makefile Folks, I'm attempting to upgrade from SA 2.64 to SA 3.0 on a box running RHEL 3.0. When trying to run via either CPAN or from the tarfile using "perl Makefile.PL", I get a botched make file and can't do the install. It also warns about not being able to find pod2man even though this is in /usr/bin/pod2man. Here is an extract of the Makefile where is starts going haywire: INSTALLSITELIB = /usr/lib/perl5/site_perl/5.8.0' <-- No leading ' installsiteman1='/usr/share/man/man1' installsiteman3='/usr/share/man/man3' installsitescript='/usr/bin' installstyle='lib/perl5' <-- ??? installusrbinperl='define' installvendorarch='/usr/lib/perl5/vendor_perl/5.8.0/i386-linux-thread-multi' installvendorbin='/usr/bin' installvendorhtml1='' installvendorhtml3='' installvendorlib='/usr/lib/perl5/vendor_perl/5.8.' INSTALLVENDORLIB = ib/perl5' <-- ??? installusrbinperl='def <-- No trailing ' INSTALLARCHLIB = /usr/lib/perl5/5.8.0/i386-linux-thread-multi INSTALLSITEARCH = /usr/lib/pe <-- going down hill INSTALLVENDORARCH = /usr/ INSTALLBIN = /usr/bin' installhtml1dir='' installhtml3dir='' installman1 INSTALLSITEBIN = /usr INSTALLVENDORBIN = /usr/bin' I'm just doing a vanilla install and had no problem with the earlier version of SA. I could try to just fix the make file but if 3.0 can't even do the make, I'm not very comfortable running it. Has anyone else had this problem? Thanks, Tom Combs ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From mailscanner at ecs.soton.ac.uk Mon Oct 4 17:51:58 2004 From: mailscanner at ecs.soton.ac.uk (Julian Field) Date: Thu Jan 12 21:27:07 2006 Subject: SA 3.0 generates garbled Makefile Message-ID: I suggest you use my combined Clam+SA package available from the MailScanner downloads page. This will install all the pre-requisites of both packages as well. Just because it installs Clam as well doesn't mean you have to use Clam :-) Make sure you remove the utf8 stuff from /etc/sysconfig/i18n before you start, too. At 17:18 04/10/2004, you wrote: >Folks, > > I'm attempting to upgrade from SA 2.64 to SA 3.0 on a box running > RHEL 3.0. When trying to run via either CPAN or from the tarfile > using "perl Makefile.PL", I get a botched make file and can't do > the install. It also warns about not being able to find pod2man > even though this is in /usr/bin/pod2man. > > Here is an extract of the Makefile where is starts going haywire: > > >INSTALLSITELIB = /usr/lib/perl5/site_perl/5.8.0' <-- No leading ' >installsiteman1='/usr/share/man/man1' >installsiteman3='/usr/share/man/man3' >installsitescript='/usr/bin' >installstyle='lib/perl5' <-- ??? >installusrbinperl='define' >installvendorarch='/usr/lib/perl5/vendor_perl/5.8.0/i386-linux-thread-multi' >installvendorbin='/usr/bin' >installvendorhtml1='' >installvendorhtml3='' >installvendorlib='/usr/lib/perl5/vendor_perl/5.8.' >INSTALLVENDORLIB = ib/perl5' <-- ??? >installusrbinperl='def <-- No trailing ' >INSTALLARCHLIB = /usr/lib/perl5/5.8.0/i386-linux-thread-multi >INSTALLSITEARCH = /usr/lib/pe <-- going down hill >INSTALLVENDORARCH = /usr/ >INSTALLBIN = /usr/bin' >installhtml1dir='' >installhtml3dir='' >installman1 >INSTALLSITEBIN = /usr >INSTALLVENDORBIN = /usr/bin' > > > I'm just doing a vanilla install and had no problem with the earlier > version of SA. I could try to just fix the make file but if 3.0 can't > even do the make, I'm not very comfortable running it. Has anyone else > had this problem? > > Thanks, Tom Combs > > >-- >Tom Combs E-mail: combs@magnet.fsu.edu >National High Magnetic Field Laboratory Phone: (850) 644-1657 >1800 E. Paul Dirac Drive Tallahassee, FL 32310 > >------------------------ MailScanner list ------------------------ >To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: >'leave mailscanner' in the body of the email. >Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and >the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). -- Julian Field www.MailScanner.info Professional Support Services at www.MailScanner.biz MailScanner thanks transtec Computers for their support Buy the MailScanner book at www.MailScanner.info/store PGP footprint: EE81 D763 3DB0 0BFD E1DC 7222 11F6 5947 1415 B654 ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From G.Pentland at SOTON.AC.UK Mon Oct 4 17:58:43 2004 From: G.Pentland at SOTON.AC.UK (Pentland G.) Date: Thu Jan 12 21:27:07 2006 Subject: SA 3.0 generates garbled Makefile Message-ID: You can just set LANG... > LANG=en_GB ; export LANG Then, perl Makefile.pl etc. will work fine. Gary Julian Field wrote: > I suggest you use my combined Clam+SA package available from the > MailScanner downloads page. This will install all the pre-requisites > of both packages as well. Just because it installs Clam as well > doesn't mean you have to use Clam :-) > > Make sure you remove the utf8 stuff from /etc/sysconfig/i18n before > you start, too. > > At 17:18 04/10/2004, you wrote: >> Folks, >> >> I'm attempting to upgrade from SA 2.64 to SA 3.0 on a box running >> RHEL 3.0. When trying to run via either CPAN or from the tarfile >> using "perl Makefile.PL", I get a botched make file and can't do >> the install. It also warns about not being able to find pod2man >> even though this is in /usr/bin/pod2man. >> >> Here is an extract of the Makefile where is starts going haywire: >> >> >> INSTALLSITELIB = /usr/lib/perl5/site_perl/5.8.0' <-- No leading ' >> installsiteman1='/usr/share/man/man1' >> installsiteman3='/usr/share/man/man3' >> installsitescript='/usr/bin' >> installstyle='lib/perl5' <-- ??? >> installusrbinperl='define' >> installvendorarch='/usr/lib/perl5/vendor_perl/5.8.0/i386-linux-thread-m >> ulti' installvendorbin='/usr/bin' >> installvendorhtml1='' >> installvendorhtml3='' >> installvendorlib='/usr/lib/perl5/vendor_perl/5.8.' >> INSTALLVENDORLIB = ib/perl5' <-- ??? >> installusrbinperl='def <-- No trailing ' >> INSTALLARCHLIB = /usr/lib/perl5/5.8.0/i386-linux-thread-multi >> INSTALLSITEARCH = /usr/lib/pe <-- going down hill >> INSTALLVENDORARCH = /usr/ >> INSTALLBIN = /usr/bin' >> installhtml1dir='' >> installhtml3dir='' >> installman1 >> INSTALLSITEBIN = /usr >> INSTALLVENDORBIN = /usr/bin' >> >> >> I'm just doing a vanilla install and had no problem with the >> earlier version of SA. I could try to just fix the make file but >> if 3.0 can't even do the make, I'm not very comfortable running >> it. Has anyone else had this problem? >> >> Thanks, Tom Combs >> >> >> -- >> Tom Combs E-mail: >> combs@magnet.fsu.edu National High Magnetic Field Laboratory >> Phone: (850) 644-1657 1800 E. Paul Dirac Drive >> Tallahassee, FL 32310 >> >> ------------------------ MailScanner list ------------------------ To >> unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave >> mailscanner' in the body of the email. Before posting, read the MAQ >> (http://www.mailscanner.biz/maq/) and the archives >> (http://www.jiscmail.ac.uk/lists/mailscanner.html). ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From dfilchak at sympatico.ca Mon Oct 4 18:46:46 2004 From: dfilchak at sympatico.ca (Dave Filchak) Date: Thu Jan 12 21:27:07 2006 Subject: FW: Update to corrupted PDF issue Message-ID: Not sure what happened to this email as I sent it and it never showed up on the list. So I have forwarded it again. Thanks Dave > -----Original Message----- > From: Dave Filchak [mailto:dfilchak@sympatico.ca] > Sent: Monday, October 04, 2004 12:19 PM > To: 'MAILSCANNER@JISCMAIL.AC.UK' > Subject: Update to corrupted PDF issue > > Just to update my email from a couple of hours ago. I can > receive emails from other people to me that have PDF > attachments and the PDF is fine. However, if I send the PDF > to a client and CC myself or send it directly to myself, the > PDF is unreadable. > > I really do not know where to start here except perhaps > updating to the very latest. > > Dave > > > ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From mailscanner at ecs.soton.ac.uk Mon Oct 4 19:10:43 2004 From: mailscanner at ecs.soton.ac.uk (Julian Field) Date: Thu Jan 12 21:27:07 2006 Subject: Update to corrupted PDF issue Message-ID: At 17:18 04/10/2004, you wrote: >Just to update my email from a couple of hours ago. I can receive emails >from other people to me that have PDF attachments and the PDF is fine. >However, if I send the PDF to a client and CC myself or send it directly to >myself, the PDF is unreadable. What is different in the mail route between you receive email from other people, versus CCing yourself? -- Julian Field www.MailScanner.info Professional Support Services at www.MailScanner.biz MailScanner thanks transtec Computers for their support Buy the MailScanner book at www.MailScanner.info/store PGP footprint: EE81 D763 3DB0 0BFD E1DC 7222 11F6 5947 1415 B654 ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From dfilchak at sympatico.ca Mon Oct 4 19:21:14 2004 From: dfilchak at sympatico.ca (Dave Filchak) Date: Thu Jan 12 21:27:08 2006 Subject: Update to corrupted PDF issue Message-ID: Ummmm ... Idiot move on my part. I had received an email from another list that had a LINK to a PDF not an attachment. I had thought that I had opened it up as an attachment earlier in the day and when you asked this question and went back to look at the headers I realized my mistake. Sorry ;-( Dave -----Original Message----- From: MailScanner mailing list [mailto:MAILSCANNER@JISCMAIL.AC.UK] On Behalf Of Julian Field Sent: Monday, October 04, 2004 2:11 PM To: MAILSCANNER@JISCMAIL.AC.UK Subject: Re: [MAILSCANNER] Update to corrupted PDF issue At 17:18 04/10/2004, you wrote: >Just to update my email from a couple of hours ago. I can receive >emails from other people to me that have PDF attachments and the PDF is fine. >However, if I send the PDF to a client and CC myself or send it >directly to myself, the PDF is unreadable. What is different in the mail route between you receive email from other people, versus CCing yourself? -- Julian Field www.MailScanner.info Professional Support Services at www.MailScanner.biz MailScanner thanks transtec Computers for their support Buy the MailScanner book at www.MailScanner.info/store PGP footprint: EE81 D763 3DB0 0BFD E1DC 7222 11F6 5947 1415 B654 ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From mailscanner at ELKNET.NET Mon Oct 4 19:51:39 2004 From: mailscanner at ELKNET.NET (Alan) Date: Thu Jan 12 21:27:08 2006 Subject: NO_DNS_FOR_FROM Message-ID: On Mon, 4 Oct 2004 08:45:10 +0100, Julian Field wrote: >Upgrade to the latest Net::DNS. MailScanner -V is already reporting: 0.48 Net::DNS which I thought WAS the latest... Spamassassin -D is also reporting: debug: is Net::DNS::Resolver available? yes debug: Net::DNS version: 0.48 CPAN reports: Net::DNS is up to date. ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From mailscanner at ecs.soton.ac.uk Mon Oct 4 19:57:58 2004 From: mailscanner at ecs.soton.ac.uk (Julian Field) Date: Thu Jan 12 21:27:08 2006 Subject: NO_DNS_FOR_FROM Message-ID: In which case I don't know, sorry. At 19:51 04/10/2004, you wrote: >On Mon, 4 Oct 2004 08:45:10 +0100, Julian Field > wrote: > > >Upgrade to the latest Net::DNS. > >MailScanner -V is already reporting: >0.48 Net::DNS > >which I thought WAS the latest... > >Spamassassin -D is also reporting: >debug: is Net::DNS::Resolver available? yes >debug: Net::DNS version: 0.48 > >CPAN reports: >Net::DNS is up to date. -- Julian Field www.MailScanner.info Professional Support Services at www.MailScanner.biz MailScanner thanks transtec Computers for their support Buy the MailScanner book at www.MailScanner.info/store PGP footprint: EE81 D763 3DB0 0BFD E1DC 7222 11F6 5947 1415 B654 ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From devonharding at gmail.com Mon Oct 4 22:21:15 2004 From: devonharding at gmail.com (Devon Harding) Date: Thu Jan 12 21:27:08 2006 Subject: Cannot start DCC as deamon Message-ID: Got it... I did have DCCD_ENABLE set to on. Turn'd it off and it worked. Thanks! On Mon, 4 Oct 2004 12:06:35 -0400, Ugo Bellavance wrote: > Devon Harding wrote: > > > I set 'DCCIFD_ENABLE=on' inf /var/dcc/dcc_conf as per MailScanner's instruction. > > It looks like it is trying to start DCCD, which is not what you want. > Do you have DCCD_ENABLE to on? > > > > ------------------------ MailScanner list ------------------------ > To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: > 'leave mailscanner' in the body of the email. > Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and > the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). > ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From robin at PRIMUS.CA Mon Oct 4 22:44:34 2004 From: robin at PRIMUS.CA (Robin M.) Date: Thu Jan 12 21:27:08 2006 Subject: how can I stop citibank phishing Message-ID: What are peoeple doing to stop citibank phishing. I am seeing alot of citibank phishing mail getting through, and it turns up in peoples mailboxes who are not listed as recipients. What are people doing to stop this. ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From michele at BLACKNIGHTSOLUTIONS.COM Mon Oct 4 22:48:12 2004 From: michele at BLACKNIGHTSOLUTIONS.COM (Michele Neylon : Blacknight Solutions) Date: Thu Jan 12 21:27:08 2006 Subject: how can I stop citibank phishing Message-ID: On Mon, 2004-10-04 at 17:44 -0400, Robin M. wrote: > What are peoeple doing to stop citibank phishing. > > I am seeing alot of citibank phishing mail getting through, and it turns > up in peoples mailboxes who are not listed as recipients. > > What are people doing to stop this. Have you looked at any of the SA custom rules? -- Mr Michele Neylon Blacknight Solutions http://www.blacknight.ie 059 9137101 ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From robin at PRIMUS.CA Mon Oct 4 23:24:57 2004 From: robin at PRIMUS.CA (Robin M.) Date: Thu Jan 12 21:27:08 2006 Subject: how can I stop citibank phishing Message-ID: On Mon, 4 Oct 2004, Michele Neylon : Blacknight Solutions wrote: > On Mon, 2004-10-04 at 17:44 -0400, Robin M. wrote: > > What are peoeple doing to stop citibank phishing. > > > > I am seeing alot of citibank phishing mail getting through, and it turns > > up in peoples mailboxes who are not listed as recipients. > > > > What are people doing to stop this. > > Have you looked at any of the SA custom rules? yeah I am using the rulesdujour suite with most of the rule-sets. ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From hden at KCBBS.GEN.NZ Mon Oct 4 23:26:28 2004 From: hden at KCBBS.GEN.NZ (Hendrik den Hartog) Date: Thu Jan 12 21:27:08 2006 Subject: OT - Which Linux Now? Message-ID: Thanks for the responses. Didn't mean to verge on restarting that traditional war 'which is best', was just after some advice based on experience on where to now... And thats just what we got. Thanks! (We're heading of down the path of some of the RedHat variants, Whitebox or Centos.) Thanks Hendrik ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From mailscan at PRIS.CA Mon Oct 4 23:32:05 2004 From: mailscan at PRIS.CA (MailScanner Mailbox) Date: Thu Jan 12 21:27:08 2006 Subject: tiff causing DOS message Message-ID: Hello We have a customer that is attempting to send a tif file that is a little over 3.5 mb, when trying to send he receives the following error: The following e-mails were found to have: Virus Detected Sender: xxxxxx@pris.bc.ca IP Address: 64.114.126.175 Recipient: xxxxxx@peacecountry.com Subject: '...are' sticker MessageID: i94Kea0D007039 Report: Denial of Service attack in message! Denial of Service attack in message! The interesting part of the df file is: --============_-1115191450==_============ Content-Type: text/plain; charset="us-ascii" ; format="flowed" hello doris & frances, please find the attached layout of the sticker that you requested. thanks! jesh 250-782-6068 --============_-1115191450==_============ Content-Id: Content-Type: image/tiff; name="are.tif" ; x-mac-type="54494646" ; x-mac-creator="3842494D" Content-Disposition: attachment; filename="are.tif" Content-Transfer-Encoding: base64 I have looked as best I can but cannot find a reason for this, we are running MS-4.33.3 with ClamAV-0.80rc2 any pointers would be appreciated. Rick ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From Steve.Swaney at FSL.COM Mon Oct 4 23:54:42 2004 From: Steve.Swaney at FSL.COM (Steve Swaney) Date: Thu Jan 12 21:27:08 2006 Subject: how can I stop citibank phishing Message-ID: > -----Original Message----- > From: MailScanner mailing list [mailto:MAILSCANNER@JISCMAIL.AC.UK] On > Behalf Of Robin M. > Sent: Monday, October 04, 2004 6:25 PM > To: MAILSCANNER@JISCMAIL.AC.UK > Subject: Re: how can I stop citibank phishing > > On Mon, 4 Oct 2004, Michele Neylon : Blacknight Solutions wrote: > > On Mon, 2004-10-04 at 17:44 -0400, Robin M. wrote: > > > What are peoeple doing to stop citibank phishing. > > > > > > I am seeing alot of citibank phishing mail getting through, and it > turns > > > up in peoples mailboxes who are not listed as recipients. > > > > > > What are people doing to stop this. > > > > Have you looked at any of the SA custom rules? > > yeah I am using the rulesdujour suite with most of the rule-sets. > At the risk of sounding defeatist, it's difficult to protect your users against all of the possible scams on the internet. A lot of the pfishing scams depend on speed. I know of a site that was just recently compromised to act as an unwitting conduit for the usernames and passwords in a recent phishing scam. It wasn't long until the scheme was discovered and stopped but thousands of login/passwords were compromised in a very short period of time. How did the compromise occur? Can you Spell STr0ngP1ssw0rdS :( While Julian, The SpamAssassin team, the SURBL crew and many others in the open Source community are providing us with some very good defenses, you can be sure that some of these phishing scams will slip through. As a result we are taking some additional steps and recommending to our customers that they do the same. 1. We sending out a monthly reminder to never, ever respond to an email that request you click on a link to verify ANYTHING that is requested in an email. They should forward such emails to the help desk where we will deal with them. 2. We will vary the message monthly and make it as readable as possible so it does get read. You need to be repetitive with this message because every month there are newbies in our user core who are not sophisticated enough to know of these dangers. These are the people who fill in the usernames / passwords. Will this solve the problem? No. There needs to be: 1. Better publicity in all ot the media regarding this type of fraud. 2. Better international enforcement to stop and prosecute Internet fraud 3. Quicker ways of early detection and cutting off access to the fraud conduit sites. The financial institutions need to participate with the law enforcement and Internet community in addressing items 1-3 above. Unfortunately the trend has been for financial institutions to publicly ignore fraud and cover up break ins and theft. And until they do, you and I will face higher fees to cover their losses due to scams and fraud. This obviously a sore subject with me but not really a topic for the MS list so feel free to send flames or comments to steve@fsl.com. Thanks for listening, Steve Steve Swaney President Fortress Systems Ltd. www.fsl.com steve.swaney@fsl.com -- This message has been scanned for viruses and dangerous content by MailScanner, and is believed to be clean. Fortress Systems Ltd. www.fsl.com ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From Steve.Swaney at FSL.COM Tue Oct 5 00:07:31 2004 From: Steve.Swaney at FSL.COM (Steve Swaney) Date: Thu Jan 12 21:27:08 2006 Subject: OT - Which Linux Now? Message-ID: > -----Original Message----- > From: MailScanner mailing list [mailto:MAILSCANNER@JISCMAIL.AC.UK] On > Behalf Of Hendrik den Hartog > Sent: Monday, October 04, 2004 6:26 PM > To: MAILSCANNER@JISCMAIL.AC.UK > Subject: Re: OT - Which Linux Now? > > Thanks for the responses. Didn't mean to verge on restarting > that traditional war 'which is best', was just after some > advice based on experience on where to now... Don't worry someone starts it every month or two on the list. > > And thats just what we got. Thanks! > > (We're heading of down the path of some of the RedHat variants, > Whitebox or Centos.) > > Thanks > Hendrik As A WhiteBox and TaoLinux user who has just downloaded the CentOS ISOs. It looks like the most up2date current RH clone release is CentOS. Steve Steve Swaney President Fortress Systems Ltd. www.fsl.com steve.swaney@fsl.com -- This message has been scanned for viruses and dangerous content by MailScanner, and is believed to be clean. Fortress Systems Ltd. www.fsl.com ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From vboulytchev at COINFOTECH.COM Tue Oct 5 00:11:15 2004 From: vboulytchev at COINFOTECH.COM (Boulytchev, Vasiliy) Date: Thu Jan 12 21:27:08 2006 Subject: MailScanner-4.34.8-1 Installation Problems Message-ID: Ladies and Gents, rpmbuild --rebuild perl-Archive-Zip-1.13-1.src.rpm yields serveral errors. Some of which had inherent bzip2 syntax problems. What is the issue? After editing the following /usr/lib/rpm/brp-compress, and taking off the "-n" directive, then everything went through. Now its doing some more weirdness with perl-Compress-Zlib-1.33-2.src.rpm. What is going on??? Processing files: perl-Compress-Zlib-1.33-2 error: File not found:/var/tmp/perl-Compress-Zlib-1.33-2-root/usr/lib/perl5/site_perl/5.8.3/i386-linu -thread-multi/auto/Compress/Zlib/Zlib.bs RPM build errors: File not found:/var/tmp/perl-Compress-Zlib-1.33-2-root/usr/lib/perl5/site_perl/5.8.3/i386-linu -thread-multi/auto/Compress/Zlib/Zlib.bs Thanks, Vasiliy Boulytchev Colorado Information Technologies, Inc. http://www.coinfotech.com ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). [ Part 2, Application/X-PKCS7-SIGNATURE 5.9KB. ] [ Unable to print this part. ] From leduc at CTS.COM Tue Oct 5 01:04:53 2004 From: leduc at CTS.COM (Gene LeDuc) Date: Thu Jan 12 21:27:08 2006 Subject: how can I stop citibank phishing Message-ID: Not sure whether it's catching the citibank scam specifically, but the latest clamav (0.8 rc3?) catches phishing scams and treats them as viruses. It was a pleasant surprise when I first saw this happen. On Monday 04 October 2004 02:44 pm, Robin M. wrote: > What are peoeple doing to stop citibank phishing. > > I am seeing alot of citibank phishing mail getting through, and it turns > up in peoples mailboxes who are not listed as recipients. > > What are people doing to stop this. ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From jkf at mailscanner.info Tue Oct 5 01:56:03 2004 From: jkf at mailscanner.info (jkf@mailscanner.info) Date: Thu Jan 12 21:27:08 2006 Subject: Automated reply from jkf@www.mailscanner.biz Message-ID: Thank you for your email. I will reply to you as soon as possible. From robin at PRIMUS.CA Tue Oct 5 02:43:02 2004 From: robin at PRIMUS.CA (Robin M.) Date: Thu Jan 12 21:27:08 2006 Subject: how can I stop citibank phishing Message-ID: On Mon, 4 Oct 2004, Gene LeDuc wrote: > Not sure whether it's catching the citibank scam specifically, but the latest > clamav (0.8 rc3?) catches phishing scams and treats them as viruses. It was > a pleasant surprise when I first saw this happen. > oh that is good news. It looks like they are almost ready for stable release. ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From james_gray at OCS.COM Tue Oct 5 03:12:21 2004 From: james_gray at OCS.COM (James Gray) Date: Thu Jan 12 21:27:08 2006 Subject: how can I stop citibank phishing Message-ID: On Tue, 5 Oct 2004 07:44 am, Robin M. wrote: > What are peoeple doing to stop citibank phishing. > > I am seeing alot of citibank phishing mail getting through, and it turns > up in peoples mailboxes who are not listed as recipients. > > What are people doing to stop this. NAI VirusScan identifies various phishing scams and treats them as viruses. Not sure if that helps - I notice ClamAV does the same. YMMV. Cheers, James ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From mailscanner at ecs.soton.ac.uk Tue Oct 5 03:42:14 2004 From: mailscanner at ecs.soton.ac.uk (Julian Field) Date: Thu Jan 12 21:27:08 2006 Subject: MailScanner-4.34.8-1 Installation Problems Message-ID: At 00:11 05/10/2004, you wrote: >Ladies and Gents, > rpmbuild --rebuild perl-Archive-Zip-1.13-1.src.rpm yields > serveral errors. Some of which had inherent bzip2 syntax problems. What > is the issue? After editing the following /usr/lib/rpm/brp-compress, and > taking off the "-n" directive, then everything went through. Now its > doing some more weirdness with perl-Compress-Zlib-1.33-2.src.rpm. > >What is going on??? > >Processing files: perl-Compress-Zlib-1.33-2 >error: File not found: >/var/tmp/perl-Compress-Zlib-1.33-2-root/usr/lib/perl5/site_perl/5.8.3/i386-linux-thread-multi/auto/Compress/Zlib/Zlib.bs > >RPM build errors: > File not found: > /var/tmp/perl-Compress-Zlib-1.33-2-root/usr/lib/perl5/site_perl/5.8.3/i386-linux-thread-multi/auto/Compress/Zlib/Zlib.bs Something failed in the "make" stage of building perl-Compress-Zlib. Suggest you take a good look at the output from that rebuild. -- Julian Field www.MailScanner.info Professional Support Services at www.MailScanner.biz MailScanner thanks transtec Computers for their support Buy the MailScanner book at www.MailScanner.info/store PGP footprint: EE81 D763 3DB0 0BFD E1DC 7222 11F6 5947 1415 B654 ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From mailscanner at ecs.soton.ac.uk Tue Oct 5 08:27:16 2004 From: mailscanner at ecs.soton.ac.uk (Julian Field) Date: Thu Jan 12 21:27:08 2006 Subject: tiff causing DOS message Message-ID: What happens when you try to scan the tif manually? At 23:32 04/10/2004, you wrote: >Hello > >We have a customer that is attempting to send a tif file that is a little >over 3.5 mb, when trying to send he receives the following error: > >The following e-mails were found to have: Virus Detected > > Sender: xxxxxx@pris.bc.ca >IP Address: 64.114.126.175 > Recipient: xxxxxx@peacecountry.com > Subject: '...are' sticker > MessageID: i94Kea0D007039 > Report: Denial of Service attack in message! > Denial of Service attack in message! > > >The interesting part of the df file is: > >--============_-1115191450==_============ >Content-Type: text/plain; charset="us-ascii" ; format="flowed" > >hello doris & frances, > >please find the attached layout of the sticker that you requested. > > >thanks! > >jesh 250-782-6068 >--============_-1115191450==_============ >Content-Id: >Content-Type: image/tiff; name="are.tif" > ; x-mac-type="54494646" > ; x-mac-creator="3842494D" >Content-Disposition: attachment; filename="are.tif" >Content-Transfer-Encoding: base64 > > >I have looked as best I can but cannot find a reason for this, we are >running MS-4.33.3 with ClamAV-0.80rc2 -- Julian Field www.MailScanner.info MailScanner thanks transtec Computers for their support Buy the MailScanner book at www.MailScanner.info/store PGP footprint: EE81 D763 3DB0 0BFD E1DC 7222 11F6 5947 1415 B654 ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From bg.mahesh at INDIAINFO.COM Tue Oct 5 08:32:10 2004 From: bg.mahesh at INDIAINFO.COM (BG Mahesh) Date: Thu Jan 12 21:27:08 2006 Subject: Installation problems with MS 4.34.8-1/MIME::QuotedPrint Message-ID: How to solve this problem :-( ? ----- Original Message ----- From: BG Mahesh Date: Fri, 1 Oct 2004 16:09:52 +0530 To: MAILSCANNER@JISCMAIL.AC.UK Subject: Installation problems with MS 4.34.8-1/MIME::QuotedPrint > hi > > I am not able to install MS 4.34.8-1. The error message I get is, > > Installing tnef decoder > Preparing... ########################################### [100%] > package tnef-1.2.3.1-1 is already installed > > Now to install MailScanner itself. > > error: Failed dependencies: > perl(MIME::QuotedPrint) >= 3.03 is needed by (installed) perl-MIME-tools-5.413-1 > > My setup > > Redhat Linux > Perl 5.8.3 > MIME::QuotedPrint : 3.03 > MIME::Tools : 5.413 > MIME::Base64 : 3.03 > > What am I doing wrong? > > -- > B.G. Mahesh > bg.mahesh@indiainfo.com > http://www.indiainfo.com/ > > -- > ______________________________________________ > IndiaInfo Mail - the free e-mail service with a difference! www.indiainfo.com > Check out our value-added Premium features, such as an extra 20MB for mail storage, POP3, e-mail forwarding, and ads-free mailboxes! > > Powered by Outblaze > > ------------------------ MailScanner list ------------------------ > To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: > 'leave mailscanner' in the body of the email. > Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and > the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). -- B.G. Mahesh bg.mahesh@indiainfo.com http://www.indiainfo.com/ -- ______________________________________________ IndiaInfo Mail - the free e-mail service with a difference! www.indiainfo.com Check out our value-added Premium features, such as an extra 20MB for mail storage, POP3, e-mail forwarding, and ads-free mailboxes! Powered by Outblaze ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From mailscanner at ecs.soton.ac.uk Tue Oct 5 08:48:57 2004 From: mailscanner at ecs.soton.ac.uk (Julian Field) Date: Thu Jan 12 21:27:08 2006 Subject: Installation problems with MS 4.34.8-1/MIME::QuotedPrint Message-ID: Try ./install.sh --nodeps At 08:32 05/10/2004, you wrote: >How to solve this problem :-( ? > >----- Original Message ----- >From: BG Mahesh >Date: Fri, 1 Oct 2004 16:09:52 +0530 >To: MAILSCANNER@JISCMAIL.AC.UK >Subject: Installation problems with MS 4.34.8-1/MIME::QuotedPrint > > > hi > > > > I am not able to install MS 4.34.8-1. The error message I get is, > > > > Installing tnef decoder > > Preparing... ########################################### > [100%] > > package tnef-1.2.3.1-1 is already installed > > > > Now to install MailScanner itself. > > > > error: Failed dependencies: > > perl(MIME::QuotedPrint) >= 3.03 is needed by (installed) > perl-MIME-tools-5.413-1 > > > > My setup > > > > Redhat Linux > > Perl 5.8.3 > > MIME::QuotedPrint : 3.03 > > MIME::Tools : 5.413 > > MIME::Base64 : 3.03 > > > > What am I doing wrong? > > > > -- > > B.G. Mahesh > > bg.mahesh@indiainfo.com > > http://www.indiainfo.com/ > > > > -- > > ______________________________________________ > > IndiaInfo Mail - the free e-mail service with a difference! > www.indiainfo.com > > Check out our value-added Premium features, such as an extra 20MB for > mail storage, POP3, e-mail forwarding, and ads-free mailboxes! > > > > Powered by Outblaze > > > > ------------------------ MailScanner list ------------------------ > > To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: > > 'leave mailscanner' in the body of the email. > > Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and > > the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). > > > >-- >B.G. Mahesh >bg.mahesh@indiainfo.com >http://www.indiainfo.com/ > >-- >______________________________________________ >IndiaInfo Mail - the free e-mail service with a difference! www.indiainfo.com >Check out our value-added Premium features, such as an extra 20MB for mail >storage, POP3, e-mail forwarding, and ads-free mailboxes! > >Powered by Outblaze > >------------------------ MailScanner list ------------------------ >To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: >'leave mailscanner' in the body of the email. >Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and >the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). -- Julian Field www.MailScanner.info MailScanner thanks transtec Computers for their support Buy the MailScanner book at www.MailScanner.info/store PGP footprint: EE81 D763 3DB0 0BFD E1DC 7222 11F6 5947 1415 B654 ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From admin at thenamegame.com Tue Oct 5 08:55:24 2004 From: admin at thenamegame.com (Michael Freeman) Date: Thu Jan 12 21:27:08 2006 Subject: Cannot start mailScanner all of a sudden Message-ID:

All of a sudden we are seeing huge loads from MailScanner. Reason is because it cannot start. Don’t know why but this is what we are seeing, pages and pages of these.

Oct 5 03:24:28 srv08 MailScanner[22370]: MailScanner E-Mail Virus Scanner version 4.34.8 starting...

Oct 5 03:24:38 srv08 MailScanner[22372]: MailScanner E-Mail Virus Scanner version 4.34.8 starting...

Oct 5 03:24:48 srv08 MailScanner[22374]: MailScanner E-Mail Virus Scanner version 4.34.8 starting...

Oct 5 03:24:58 srv08 MailScanner[22376]: MailScanner E-Mail Virus Scanner version 4.34.8 starting...

Oct 5 03:25:08 srv08 MailScanner[22466]: MailScanner E-Mail Virus Scanner version 4.34.8 starting...

Oct 5 03:25:18 srv08 MailScanner[22468]: MailScanner E-Mail Virus Scanner version 4.34.8 starting...

Oct 5 03:25:28 srv08 MailScanner[22470]: MailScanner E-Mail Virus Scanner version 4.34.8 starting...

We upgraded to 4.34.8 in the hope that this will fix the issue but it hasn’t. Same problem. Mailscanner is trying to restart but it can’t.

I reinstall Spamassassin 3.0 which has been more of a pain than a solution. Still cannot get SA3.0 and MailScanner to work.

I’m seeing errors in Spamassassin, something about parser. That’s why I tried to re install it using FORCE. That has not fixed the problem. I don’t get what the issue is all of a sudden. This may be a perl 5.8.1 issues but its hard to tell.

------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words:
'leave mailscanner' in the body of the email.
Before posting, read the MAQ (http://www.mailscanner.biz/maq/)
and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From mailscanner at ecs.soton.ac.uk Tue Oct 5 09:04:16 2004 From: mailscanner at ecs.soton.ac.uk (Julian Field) Date: Thu Jan 12 21:27:08 2006 Subject: Cannot start mailScanner all of a sudden Message-ID: In MailScanner.conf, set Debug = yes Then kill all your MailScanner processes. Then run check_mailscanner with at least 1 message in the incoming queue. That will tell you why it's not starting. At 08:55 05/10/2004, you wrote: >All of a sudden we are seeing huge loads from MailScanner. Reason is >because it cannot start. Don't know why but this is what we are seeing, >pages and pages of these. > >Oct 5 03:24:28 srv08 MailScanner[22370]: MailScanner E-Mail Virus Scanner >version 4.34.8 starting... >Oct 5 03:24:38 srv08 MailScanner[22372]: MailScanner E-Mail Virus Scanner >version 4.34.8 starting... >Oct 5 03:24:48 srv08 MailScanner[22374]: MailScanner E-Mail Virus Scanner >version 4.34.8 starting... >Oct 5 03:24:58 srv08 MailScanner[22376]: MailScanner E-Mail Virus Scanner >version 4.34.8 starting... >Oct 5 03:25:08 srv08 MailScanner[22466]: MailScanner E-Mail Virus Scanner >version 4.34.8 starting... >Oct 5 03:25:18 srv08 MailScanner[22468]: MailScanner E-Mail Virus Scanner >version 4.34.8 starting... >Oct 5 03:25:28 srv08 MailScanner[22470]: MailScanner E-Mail Virus Scanner >version 4.34.8 starting... > >We upgraded to 4.34.8 in the hope that this will fix the issue but it >hasn't. Same problem. Mailscanner is trying to restart but it can't. > >I reinstall Spamassassin 3.0 which has been more of a pain than a >solution. Still cannot get SA3.0 and MailScanner to work. > >I'm seeing errors in Spamassassin, something about parser. That's why I >tried to re install it using FORCE. That has not fixed the problem. I >don't get what the issue is all of a sudden. This may be a perl 5.8.1 >issues but its hard to tell. >------------------------ MailScanner list ------------------------ To >unsubscribe, email jiscmail@jiscmail.ac.uk with >the words: >'leave mailscanner' in the body of the email. >Before posting, read the MAQ >(http://www.mailscanner.biz/maq/) >and the archives >(http://www.jiscmail.ac.uk/lists/mailscanner.html). > -- Julian Field www.MailScanner.info MailScanner thanks transtec Computers for their support Buy the MailScanner book at www.MailScanner.info/store PGP footprint: EE81 D763 3DB0 0BFD E1DC 7222 11F6 5947 1415 B654 ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From admin at thenamegame.com Tue Oct 5 09:21:11 2004 From: admin at thenamegame.com (Michael Freeman) Date: Thu Jan 12 21:27:08 2006 Subject: Cannot start mailScanner all of a sudden Message-ID: root@srv08 [/etc/cron.hourly]# ./check* MailScanner manually shut down (no /var/lock/subsys/MailScanner.off file). Not restarting. -----Original Message----- From: MailScanner mailing list [mailto:MAILSCANNER@JISCMAIL.AC.UK] On Behalf Of Julian Field Sent: Tuesday, October 05, 2004 4:04 AM To: MAILSCANNER@JISCMAIL.AC.UK Subject: Re: Cannot start mailScanner all of a sudden In MailScanner.conf, set Debug = yes Then kill all your MailScanner processes. Then run check_mailscanner with at least 1 message in the incoming queue. That will tell you why it's not starting. At 08:55 05/10/2004, you wrote: >All of a sudden we are seeing huge loads from MailScanner. Reason is >because it cannot start. Don't know why but this is what we are seeing, >pages and pages of these. > >Oct 5 03:24:28 srv08 MailScanner[22370]: MailScanner E-Mail Virus Scanner >version 4.34.8 starting... >Oct 5 03:24:38 srv08 MailScanner[22372]: MailScanner E-Mail Virus Scanner >version 4.34.8 starting... >Oct 5 03:24:48 srv08 MailScanner[22374]: MailScanner E-Mail Virus Scanner >version 4.34.8 starting... >Oct 5 03:24:58 srv08 MailScanner[22376]: MailScanner E-Mail Virus Scanner >version 4.34.8 starting... >Oct 5 03:25:08 srv08 MailScanner[22466]: MailScanner E-Mail Virus Scanner >version 4.34.8 starting... >Oct 5 03:25:18 srv08 MailScanner[22468]: MailScanner E-Mail Virus Scanner >version 4.34.8 starting... >Oct 5 03:25:28 srv08 MailScanner[22470]: MailScanner E-Mail Virus Scanner >version 4.34.8 starting... > >We upgraded to 4.34.8 in the hope that this will fix the issue but it >hasn't. Same problem. Mailscanner is trying to restart but it can't. > >I reinstall Spamassassin 3.0 which has been more of a pain than a >solution. Still cannot get SA3.0 and MailScanner to work. > >I'm seeing errors in Spamassassin, something about parser. That's why I >tried to re install it using FORCE. That has not fixed the problem. I >don't get what the issue is all of a sudden. This may be a perl 5.8.1 >issues but its hard to tell. >------------------------ MailScanner list ------------------------ To >unsubscribe, email jiscmail@jiscmail.ac.uk with >the words: >'leave mailscanner' in the body of the email. >Before posting, read the MAQ >(http://www.mailscanner.biz/maq/) >and the archives >(http://www.jiscmail.ac.u k/lists/mailscanner.html). > -- Julian Field www.MailScanner.info MailScanner thanks transtec Computers for their support Buy the MailScanner book at www.MailScanner.info/store PGP footprint: EE81 D763 3DB0 0BFD E1DC 7222 11F6 5947 1415 B654 ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From mailscanner at ecs.soton.ac.uk Tue Oct 5 09:25:34 2004 From: mailscanner at ecs.soton.ac.uk (Julian Field) Date: Thu Jan 12 21:27:08 2006 Subject: Cannot start mailScanner all of a sudden Message-ID: I didn't mean you to run the cron job. That is designed to do exactly what it did. I meant you to run the command which is on root's $PATH in /usr/sbin. At 09:21 05/10/2004, you wrote: >root@srv08 [/etc/cron.hourly]# ./check* >MailScanner manually shut down (no /var/lock/subsys/MailScanner.off file). >Not restarting. > >-----Original Message----- >From: MailScanner mailing list [mailto:MAILSCANNER@JISCMAIL.AC.UK] On Behalf >Of Julian Field >Sent: Tuesday, October 05, 2004 4:04 AM >To: MAILSCANNER@JISCMAIL.AC.UK >Subject: Re: Cannot start mailScanner all of a sudden > >In MailScanner.conf, set >Debug = yes >Then kill all your MailScanner processes. Then run check_mailscanner with >at least 1 message in the incoming queue. That will tell you why it's not >starting. > >At 08:55 05/10/2004, you wrote: > >All of a sudden we are seeing huge loads from MailScanner. Reason is > >because it cannot start. Don't know why but this is what we are seeing, > >pages and pages of these. > > > >Oct 5 03:24:28 srv08 MailScanner[22370]: MailScanner E-Mail Virus Scanner > >version 4.34.8 starting... > >Oct 5 03:24:38 srv08 MailScanner[22372]: MailScanner E-Mail Virus Scanner > >version 4.34.8 starting... > >Oct 5 03:24:48 srv08 MailScanner[22374]: MailScanner E-Mail Virus Scanner > >version 4.34.8 starting... > >Oct 5 03:24:58 srv08 MailScanner[22376]: MailScanner E-Mail Virus Scanner > >version 4.34.8 starting... > >Oct 5 03:25:08 srv08 MailScanner[22466]: MailScanner E-Mail Virus Scanner > >version 4.34.8 starting... > >Oct 5 03:25:18 srv08 MailScanner[22468]: MailScanner E-Mail Virus Scanner > >version 4.34.8 starting... > >Oct 5 03:25:28 srv08 MailScanner[22470]: MailScanner E-Mail Virus Scanner > >version 4.34.8 starting... > > > >We upgraded to 4.34.8 in the hope that this will fix the issue but it > >hasn't. Same problem. Mailscanner is trying to restart but it can't. > > > >I reinstall Spamassassin 3.0 which has been more of a pain than a > >solution. Still cannot get SA3.0 and MailScanner to work. > > > >I'm seeing errors in Spamassassin, something about parser. That's why I > >tried to re install it using FORCE. That has not fixed the problem. I > >don't get what the issue is all of a sudden. This may be a perl 5.8.1 > >issues but its hard to tell. > >------------------------ MailScanner list ------------------------ To > >unsubscribe, email jiscmail@jiscmail.ac.uk with > >the words: > >'leave mailscanner' in the body of the email. > >Before posting, read the MAQ > >(http://www.mailscanner.biz/maq/) > >and the archives > >(http://www.jiscmail.ac.u >k/lists/mailscanner.html). > > > >-- >Julian Field >www.MailScanner.info >MailScanner thanks transtec Computers for their support >Buy the MailScanner book at www.MailScanner.info/store > >PGP footprint: EE81 D763 3DB0 0BFD E1DC 7222 11F6 5947 1415 B654 > >------------------------ MailScanner list ------------------------ >To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: >'leave mailscanner' in the body of the email. >Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and >the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). > >------------------------ MailScanner list ------------------------ >To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: >'leave mailscanner' in the body of the email. >Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and >the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). -- Julian Field www.MailScanner.info MailScanner thanks transtec Computers for their support Buy the MailScanner book at www.MailScanner.info/store PGP footprint: EE81 D763 3DB0 0BFD E1DC 7222 11F6 5947 1415 B654 ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From admin at thenamegame.com Tue Oct 5 09:45:36 2004 From: admin at thenamegame.com (Michael Freeman) Date: Thu Jan 12 21:27:08 2006 Subject: Cannot start mailScanner all of a sudden Message-ID: root@srv08 [/usr/sbin]# ./MailScanner In Debugging mode, not forking... SA bayes lock is /root/.spamassassin/bayes.lock Bayes lock is at /root/.spamassassin/bayes.lock unknown type for __REPORT_DSN: 18 at /usr/lib/perl5/site_perl/5.8.4/Mail/SpamAssassin.pm line 1671. -----Original Message----- From: MailScanner mailing list [mailto:MAILSCANNER@JISCMAIL.AC.UK] On Behalf Of Julian Field Sent: Tuesday, October 05, 2004 4:26 AM To: MAILSCANNER@JISCMAIL.AC.UK Subject: Re: Cannot start mailScanner all of a sudden I didn't mean you to run the cron job. That is designed to do exactly what it did. I meant you to run the command which is on root's $PATH in /usr/sbin. At 09:21 05/10/2004, you wrote: >root@srv08 [/etc/cron.hourly]# ./check* >MailScanner manually shut down (no /var/lock/subsys/MailScanner.off file). >Not restarting. > >-----Original Message----- >From: MailScanner mailing list [mailto:MAILSCANNER@JISCMAIL.AC.UK] On Behalf >Of Julian Field >Sent: Tuesday, October 05, 2004 4:04 AM >To: MAILSCANNER@JISCMAIL.AC.UK >Subject: Re: Cannot start mailScanner all of a sudden > >In MailScanner.conf, set >Debug = yes >Then kill all your MailScanner processes. Then run check_mailscanner with >at least 1 message in the incoming queue. That will tell you why it's not >starting. > >At 08:55 05/10/2004, you wrote: > >All of a sudden we are seeing huge loads from MailScanner. Reason is > >because it cannot start. Don't know why but this is what we are seeing, > >pages and pages of these. > > > >Oct 5 03:24:28 srv08 MailScanner[22370]: MailScanner E-Mail Virus Scanner > >version 4.34.8 starting... > >Oct 5 03:24:38 srv08 MailScanner[22372]: MailScanner E-Mail Virus Scanner > >version 4.34.8 starting... > >Oct 5 03:24:48 srv08 MailScanner[22374]: MailScanner E-Mail Virus Scanner > >version 4.34.8 starting... > >Oct 5 03:24:58 srv08 MailScanner[22376]: MailScanner E-Mail Virus Scanner > >version 4.34.8 starting... > >Oct 5 03:25:08 srv08 MailScanner[22466]: MailScanner E-Mail Virus Scanner > >version 4.34.8 starting... > >Oct 5 03:25:18 srv08 MailScanner[22468]: MailScanner E-Mail Virus Scanner > >version 4.34.8 starting... > >Oct 5 03:25:28 srv08 MailScanner[22470]: MailScanner E-Mail Virus Scanner > >version 4.34.8 starting... > > > >We upgraded to 4.34.8 in the hope that this will fix the issue but it > >hasn't. Same problem. Mailscanner is trying to restart but it can't. > > > >I reinstall Spamassassin 3.0 which has been more of a pain than a > >solution. Still cannot get SA3.0 and MailScanner to work. > > > >I'm seeing errors in Spamassassin, something about parser. That's why I > >tried to re install it using FORCE. That has not fixed the problem. I > >don't get what the issue is all of a sudden. This may be a perl 5.8.1 > >issues but its hard to tell. > >------------------------ MailScanner list ------------------------ To > >unsubscribe, email jiscmail@jiscmail.ac.uk with > >the words: > >'leave mailscanner' in the body of the email. > >Before posting, read the MAQ > >(http://www.mailscanner.biz/maq/) > >and the archives > >(http://www.jiscmail.ac.u >k/lists/mailscanner.html). > > > >-- >Julian Field >www.MailScanner.info >MailScanner thanks transtec Computers for their support >Buy the MailScanner book at www.MailScanner.info/store > >PGP footprint: EE81 D763 3DB0 0BFD E1DC 7222 11F6 5947 1415 B654 > >------------------------ MailScanner list ------------------------ >To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: >'leave mailscanner' in the body of the email. >Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and >the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). > >------------------------ MailScanner list ------------------------ >To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: >'leave mailscanner' in the body of the email. >Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and >the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). -- Julian Field www.MailScanner.info MailScanner thanks transtec Computers for their support Buy the MailScanner book at www.MailScanner.info/store PGP footprint: EE81 D763 3DB0 0BFD E1DC 7222 11F6 5947 1415 B654 ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From mailscanner at ecs.soton.ac.uk Tue Oct 5 09:48:51 2004 From: mailscanner at ecs.soton.ac.uk (Julian Field) Date: Thu Jan 12 21:27:08 2006 Subject: Cannot start mailScanner all of a sudden Message-ID: Sounds like your SpamAssassin installation is screwed up, as you suspected. Remove all trace of it and then reinstall it. At 09:45 05/10/2004, you wrote: >root@srv08 [/usr/sbin]# ./MailScanner >In Debugging mode, not forking... >SA bayes lock is /root/.spamassassin/bayes.lock >Bayes lock is at /root/.spamassassin/bayes.lock >unknown type for __REPORT_DSN: 18 at >/usr/lib/perl5/site_perl/5.8.4/Mail/SpamAssassin.pm line 1671. > >-----Original Message----- >From: MailScanner mailing list [mailto:MAILSCANNER@JISCMAIL.AC.UK] On Behalf >Of Julian Field >Sent: Tuesday, October 05, 2004 4:26 AM >To: MAILSCANNER@JISCMAIL.AC.UK >Subject: Re: Cannot start mailScanner all of a sudden > >I didn't mean you to run the cron job. That is designed to do exactly what >it did. >I meant you to run the command which is on root's $PATH in /usr/sbin. > >At 09:21 05/10/2004, you wrote: > >root@srv08 [/etc/cron.hourly]# ./check* > >MailScanner manually shut down (no /var/lock/subsys/MailScanner.off file). > >Not restarting. > > > >-----Original Message----- > >From: MailScanner mailing list [mailto:MAILSCANNER@JISCMAIL.AC.UK] On >Behalf > >Of Julian Field > >Sent: Tuesday, October 05, 2004 4:04 AM > >To: MAILSCANNER@JISCMAIL.AC.UK > >Subject: Re: Cannot start mailScanner all of a sudden > > > >In MailScanner.conf, set > >Debug = yes > >Then kill all your MailScanner processes. Then run check_mailscanner with > >at least 1 message in the incoming queue. That will tell you why it's not > >starting. > > > >At 08:55 05/10/2004, you wrote: > > >All of a sudden we are seeing huge loads from MailScanner. Reason is > > >because it cannot start. Don't know why but this is what we are seeing, > > >pages and pages of these. > > > > > >Oct 5 03:24:28 srv08 MailScanner[22370]: MailScanner E-Mail Virus >Scanner > > >version 4.34.8 starting... > > >Oct 5 03:24:38 srv08 MailScanner[22372]: MailScanner E-Mail Virus >Scanner > > >version 4.34.8 starting... > > >Oct 5 03:24:48 srv08 MailScanner[22374]: MailScanner E-Mail Virus >Scanner > > >version 4.34.8 starting... > > >Oct 5 03:24:58 srv08 MailScanner[22376]: MailScanner E-Mail Virus >Scanner > > >version 4.34.8 starting... > > >Oct 5 03:25:08 srv08 MailScanner[22466]: MailScanner E-Mail Virus >Scanner > > >version 4.34.8 starting... > > >Oct 5 03:25:18 srv08 MailScanner[22468]: MailScanner E-Mail Virus >Scanner > > >version 4.34.8 starting... > > >Oct 5 03:25:28 srv08 MailScanner[22470]: MailScanner E-Mail Virus >Scanner > > >version 4.34.8 starting... > > > > > >We upgraded to 4.34.8 in the hope that this will fix the issue but it > > >hasn't. Same problem. Mailscanner is trying to restart but it can't. > > > > > >I reinstall Spamassassin 3.0 which has been more of a pain than a > > >solution. Still cannot get SA3.0 and MailScanner to work. > > > > > >I'm seeing errors in Spamassassin, something about parser. That's why I > > >tried to re install it using FORCE. That has not fixed the problem. I > > >don't get what the issue is all of a sudden. This may be a perl 5.8.1 > > >issues but its hard to tell. > > >------------------------ MailScanner list ------------------------ To > > >unsubscribe, email jiscmail@jiscmail.ac.uk with > > >the words: > > >'leave mailscanner' in the body of the email. > > >Before posting, read the MAQ > > >(http://www.mailscanner.biz/maq/) > > >and the archives > > > >(http://www.jiscmail.ac.u > >k/lists/mailscanner.html). > > > > > > >-- > >Julian Field > >www.MailScanner.info > >MailScanner thanks transtec Computers for their support > >Buy the MailScanner book at www.MailScanner.info/store > > > >PGP footprint: EE81 D763 3DB0 0BFD E1DC 7222 11F6 5947 1415 B654 > > > >------------------------ MailScanner list ------------------------ > >To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: > >'leave mailscanner' in the body of the email. > >Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and > >the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). > > > >------------------------ MailScanner list ------------------------ > >To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: > >'leave mailscanner' in the body of the email. > >Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and > >the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). > >-- >Julian Field >www.MailScanner.info >MailScanner thanks transtec Computers for their support >Buy the MailScanner book at www.MailScanner.info/store > >PGP footprint: EE81 D763 3DB0 0BFD E1DC 7222 11F6 5947 1415 B654 > >------------------------ MailScanner list ------------------------ >To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: >'leave mailscanner' in the body of the email. >Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and >the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). > >------------------------ MailScanner list ------------------------ >To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: >'leave mailscanner' in the body of the email. >Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and >the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). -- Julian Field www.MailScanner.info MailScanner thanks transtec Computers for their support Buy the MailScanner book at www.MailScanner.info/store PGP footprint: EE81 D763 3DB0 0BFD E1DC 7222 11F6 5947 1415 B654 ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From mailscanner at BARENDSE.TO Tue Oct 5 11:05:16 2004 From: mailscanner at BARENDSE.TO (Remco Barendse) Date: Thu Jan 12 21:27:08 2006 Subject: MailScanner + SA3 + SURBL not registering. Message-ID: Unfortunately even deleting Net::DNS and reinstalling did not get URI started, also the 'solaris' fix did not work. Is there any way I can do a forced re-install off all the perl modules in install-Clam-SA.tar.gz ?? On Fri, 1 Oct 2004, Dean Jones wrote: > Remco Barendse wrote: >> Strange.... I can confirm the same problem. >> >> I don't know how to remove a perl module, after the suggestion on this >> list I simply re-installed the tarball and restarted MailScanner but still >> no URI hits from MS. >> >> Can I do a forced re-install of all the perl modules in the >> install-SA-CLAMAV package? >> > > hye, > > this is what i did to finally get Net::DNS to fully re-install. > it is probably not the 'proper' way to do this, so please be careful. > When i upgraded to SA 3 i used the CPAN shell to make sure Net::DNS was > upgraded. apparantly this wasn't enough. > > Make sure spamassassin/mailscanner isn't running or doing checks while > you do this. > I dloaded the version of Net::DNS i needed from cpan.org. > Then i found my perl install and lib/site_perl/5.8.4/Net > After backing it up, i removed the DNS.pm and > lib/site_perl/5.8.4/Net/DNS directory. > Then i re-compiled and installed from the tar.gz i dloaded from cpan.org. > > Fired MailScanner back up and RBL and URIBL checks were both working. > > Hopefully that will do it for you. > > > >> >> On Fri, 1 Oct 2004, Julian Field wrote: >> >>> I haven't changed the SA3 code, it all works on my production and >>> development systems, as do Steve's systems. >>> >>> At 21:47 30/09/2004, you wrote: >>> >>>> This issue has been reported by myself and Ugo earlier this week >>>> on the list. I'm at a loss too. When the next version of MS >>>> comes out, I will upgrade and see if the problem remains. >>>> >>>> Jeff Earickson >>>> Colby College >>>> >>>> On Thu, 30 Sep 2004, Dean Jones wrote: >>>> >>>>> Date: Thu, 30 Sep 2004 12:49:31 -0700 >>>>> From: Dean Jones >>>>> Reply-To: MailScanner mailing list >>>>> To: MAILSCANNER@JISCMAIL.AC.UK >>>>> Subject: Re: MailScanner + SA3 + SURBL not registering. >>>>> >>>>> Steve Swaney wrote: >>>>> >>>>>>>> SNIPPED <<< >>>>>>> >>>>>>> >>>>>>> Doing the command that you suggested manages to make the SURBL checks >>>>>>> work. >>>>>>> >>>>>>> It almost as if there is a spamassassin option in MailScanner.conf >>>>>>> that >>>>>>> turns it off. >>>>>> >>>>>> >>>>>> >>>>>> There is a command in MailScanner that turns SpamAssassin off; >>>>>> >>>>>> Use SpamAssassin = yes >>>>>> >>>>>> But if you have SpamAssassin turned on in MS and the test above works, >>>>>> MailScanner should run the exactly as the test does. How are you sure >>>>>> thst >>>>>> MS is not running the tests? >>>>> >>>>> >>>>> Use SpamAssassin is set to yes, and SA is doing other checks. >>>>> >>>>> The only way i have to guess is just by the data SA drops into the >>>>> logs. >>>>> It never hits on any URIBL_* scores running natively. >>>>> >>>>> I can forward SURBL test emails through from outside addresses and they >>>>> don't get hit by the SURBL checks. >>>>> >>>>> I'm at a loss :) >>>>> otherwise SA 3 is working great. >>> >>> >>> -- >>> Julian Field >>> www.MailScanner.info >>> MailScanner thanks transtec Computers for their support >>> Buy the MailScanner book at www.MailScanner.info/store >>> >>> PGP footprint: EE81 D763 3DB0 0BFD E1DC 7222 11F6 5947 1415 B654 >>> >>> ------------------------ MailScanner list ------------------------ >>> To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: >>> 'leave mailscanner' in the body of the email. >>> Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and >>> the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). >>> >> >> ------------------------ MailScanner list ------------------------ >> To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: >> 'leave mailscanner' in the body of the email. >> Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and >> the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). > > ------------------------ MailScanner list ------------------------ > To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: > 'leave mailscanner' in the body of the email. > Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and > the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). > > ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From mailscanner at ecs.soton.ac.uk Tue Oct 5 11:18:30 2004 From: mailscanner at ecs.soton.ac.uk (Julian Field) Date: Thu Jan 12 21:27:08 2006 Subject: MailScanner + SA3 + SURBL not registering. Message-ID: On line 249 on install.rpm-fns.sh, add "--force" to the rpm command options. At 11:05 05/10/2004, you wrote: >Unfortunately even deleting Net::DNS and reinstalling did not get URI >started, also the 'solaris' fix did not work. > >Is there any way I can do a forced re-install off all the perl modules in >install-Clam-SA.tar.gz ?? > > > >On Fri, 1 Oct 2004, Dean Jones wrote: > >>Remco Barendse wrote: >>>Strange.... I can confirm the same problem. >>> >>>I don't know how to remove a perl module, after the suggestion on this >>>list I simply re-installed the tarball and restarted MailScanner but still >>>no URI hits from MS. >>> >>>Can I do a forced re-install of all the perl modules in the >>>install-SA-CLAMAV package? >> >>hye, >> >>this is what i did to finally get Net::DNS to fully re-install. >>it is probably not the 'proper' way to do this, so please be careful. >>When i upgraded to SA 3 i used the CPAN shell to make sure Net::DNS was >>upgraded. apparantly this wasn't enough. >> >>Make sure spamassassin/mailscanner isn't running or doing checks while >>you do this. >>I dloaded the version of Net::DNS i needed from cpan.org. >>Then i found my perl install and lib/site_perl/5.8.4/Net >>After backing it up, i removed the DNS.pm and >>lib/site_perl/5.8.4/Net/DNS directory. >>Then i re-compiled and installed from the tar.gz i dloaded from cpan.org. >> >>Fired MailScanner back up and RBL and URIBL checks were both working. >> >>Hopefully that will do it for you. >> >> >> >>> >>>On Fri, 1 Oct 2004, Julian Field wrote: >>> >>>>I haven't changed the SA3 code, it all works on my production and >>>>development systems, as do Steve's systems. >>>> >>>>At 21:47 30/09/2004, you wrote: >>>> >>>>>This issue has been reported by myself and Ugo earlier this week >>>>>on the list. I'm at a loss too. When the next version of MS >>>>>comes out, I will upgrade and see if the problem remains. >>>>> >>>>>Jeff Earickson >>>>>Colby College >>>>> >>>>>On Thu, 30 Sep 2004, Dean Jones wrote: >>>>> >>>>>>Date: Thu, 30 Sep 2004 12:49:31 -0700 >>>>>>From: Dean Jones >>>>>>Reply-To: MailScanner mailing list >>>>>>To: MAILSCANNER@JISCMAIL.AC.UK >>>>>>Subject: Re: MailScanner + SA3 + SURBL not registering. >>>>>> >>>>>>Steve Swaney wrote: >>>>>> >>>>>>>>>SNIPPED <<< >>>>>>>> >>>>>>>> >>>>>>>>Doing the command that you suggested manages to make the SURBL checks >>>>>>>>work. >>>>>>>> >>>>>>>>It almost as if there is a spamassassin option in MailScanner.conf >>>>>>>>that >>>>>>>>turns it off. >>>>>>> >>>>>>> >>>>>>> >>>>>>>There is a command in MailScanner that turns SpamAssassin off; >>>>>>> >>>>>>>Use SpamAssassin = yes >>>>>>> >>>>>>>But if you have SpamAssassin turned on in MS and the test above works, >>>>>>>MailScanner should run the exactly as the test does. How are you sure >>>>>>>thst >>>>>>>MS is not running the tests? >>>>>> >>>>>> >>>>>>Use SpamAssassin is set to yes, and SA is doing other checks. >>>>>> >>>>>>The only way i have to guess is just by the data SA drops into the >>>>>>logs. >>>>>>It never hits on any URIBL_* scores running natively. >>>>>> >>>>>>I can forward SURBL test emails through from outside addresses and they >>>>>>don't get hit by the SURBL checks. >>>>>> >>>>>>I'm at a loss :) >>>>>>otherwise SA 3 is working great. >>>> >>>> >>>>-- >>>>Julian Field >>>>www.MailScanner.info >>>>MailScanner thanks transtec Computers for their support >>>>Buy the MailScanner book at www.MailScanner.info/store >>>> >>>>PGP footprint: EE81 D763 3DB0 0BFD E1DC 7222 11F6 5947 1415 B654 >>>> >>>>------------------------ MailScanner list ------------------------ >>>>To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: >>>>'leave mailscanner' in the body of the email. >>>>Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and >>>>the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). >>> >>>------------------------ MailScanner list ------------------------ >>>To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: >>>'leave mailscanner' in the body of the email. >>>Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and >>>the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). >> >>------------------------ MailScanner list ------------------------ >>To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: >>'leave mailscanner' in the body of the email. >>Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and >>the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). >> > >------------------------ MailScanner list ------------------------ >To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: >'leave mailscanner' in the body of the email. >Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and >the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). -- Julian Field www.MailScanner.info MailScanner thanks transtec Computers for their support Buy the MailScanner book at www.MailScanner.info/store PGP footprint: EE81 D763 3DB0 0BFD E1DC 7222 11F6 5947 1415 B654 ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From alex at ERUS.CO.UK Tue Oct 5 11:53:22 2004 From: alex at ERUS.CO.UK (Alex Pimperton) Date: Thu Jan 12 21:27:08 2006 Subject: Mailscanner sends load sky-high on Debian Message-ID: Julian Field wrote: > At 19:28 02/10/2004, you wrote: > >> Hi >> >> I've been having a few problems recently with mailscanner going awol and >> sending the load average sky high on my Debian testing box. > > > With Max Children = 1 you shouldn't be seeing all these children. Take a > look in your syslog for any errors. > Also set > Debug = yes > and then try to start MailScanner. It should print out any errors if there > are any. > -- Setting Debug = yes and running check_mailscanner gives: server01:/var/spool/MailScanner/incoming# check_mailscanner Starting MailScanner... In Debugging mode, not forking... SA bayes lock is /var/lib/MailScanner/bayes.lock Bayes lock is at /var/lib/MailScanner/bayes.lock Stopping now as you are debugging me. Could not get to parent of incoming work directory at /usr/share/MailScanner/MailScanner/WorkArea.pm line 187. Stopping now as you are debugging me. The incoming work directory is set to /var/spool/MailScanner/incoming and the permissions for that are: drwxrwx--- 2 Debian-exim Debian-exim 4096 Oct 5 11:20 incoming Also, occasionaly in syslog i get: Oct 3 21:52:08 server01 MailScanner[32643]: Could not open file >/var/spool/MailScanner/incoming/31838/1CEDKr-0000Yv-NT.header: No such file or directory Oct 3 21:52:08 server01 MailScanner[32643]: Cannot create + lock headers file /var/spool/MailScanner/incoming/31838/1CEDKr-0000Yv-NT.header, Oct 3 21:52:10 server01 MailScanner[32576]: Could not open file >/var/spool/MailScanner/incoming/31838/1CEDKr-0000Yv-NT.header: No such file or directory Oct 3 21:52:10 server01 MailScanner[32576]: Cannot create + lock headers file ....which all points to a permissions problem, but I can't fid anything that looks out of place, as it works some of the time. Regards Alex p.s. server01:/var/spool/MailScanner# MailScanner -v Running on Linux server01.erus.co.uk 2.4.26-bytemark-uml-20040706-1 #1 Tue Jul 6 09:37:31 BST 2004 i686 GNU/Linux This is Perl version 5.008004 (5.8.4) This is MailScanner version 4.33.3 Module versions are: 1.00 AnyDBM_File 1.13 Archive::Zip 1.02 Carp 1.119 Convert::BinHex 1.00 DirHandle 1.05 Fcntl 2.72 File::Basename 2.07 File::Copy 2.01 FileHandle 1.06 File::Path 0.14 File::Temp 1.27 HTML::Entities 3.36 HTML::Parser 2.28 HTML::TokeParser 1.21 IO 1.10 IO::File 1.123 IO::Pipe 3.01 MIME::Base64 5.403 MIME::Decoder 5.403 MIME::Decoder::UU 5.403 MIME::Head 5.406 MIME::Parser 5.411 MIME::Tools 0.10 Net::CIDR 1.08 POSIX 1.77 Socket 0.05 Sys::Syslog 1.02 Time::localtime Optional module versions are: 2.64 Mail::SpamAssassin missing Net::LDAP missing SAVI missing Mail::ClamAV 0.48 Net::DNS ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From p.g.m.peters at utwente.nl Tue Oct 5 12:20:59 2004 From: p.g.m.peters at utwente.nl (Peter Peters) Date: Thu Jan 12 21:27:08 2006 Subject: Cannot start mailScanner all of a sudden Message-ID: On Tue, 5 Oct 2004 09:48:51 +0100, you wrote: >Sounds like your SpamAssassin installation is screwed up, as you suspected. >Remove all trace of it and then reinstall it. I have seen SA problems on one system where the running Spamassassin was installed through CPAN (Not mine, so I'm not sure) and SA3 was installed through up2date (Red Hat). It didn't crash MS, but it stopped scanning for spam. This was a 4.31.6 version of MS. -- Peter Peters, senior netwerkbeheerder Dienst Informatietechnologie, Bibliotheek en Educatie (ITBE) Universiteit Twente, Postbus 217, 7500 AE Enschede telefoon: 053 - 489 2301, fax: 053 - 489 2383, http://www.utwente.nl/itbe ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From usergroups at THEARGONCOMPANY.COM Tue Oct 5 14:10:16 2004 From: usergroups at THEARGONCOMPANY.COM (Boskey) Date: Thu Jan 12 21:27:08 2006 Subject: How to configure MailScanner with sendmail's expensive=true option? Message-ID: Hi I use a few mail servers with MailScanner & Sendmail (RH9) that hook up to the net using a ppp dial up connection every 30 minutes. I relay the messages to a Smart Host which accepts mail only if it is pop authenticated... so I run a script which does 1. fetchmail to authenticate my dynamic IP address on the smart host 2. trigger sendmai -q to relay mail to the smart host. Sendmail is configured with Expensive=True, but MailScanner ignores this feature and tries to deliver the moment it gets a chance to send out mail. I read this from the archives but was not sure if this is the solution to my problem. http://www.jiscmail.ac.uk/cgi-bin/wa.exe?A2=ind0209&L=mailscanner&P=R37713&I=-1 Can anyone help? Regards Boskey. ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From ugob at CAMO-ROUTE.COM Tue Oct 5 14:16:44 2004 From: ugob at CAMO-ROUTE.COM (Ugo Bellavance) Date: Thu Jan 12 21:27:08 2006 Subject: Cannot start DCC as deamon Message-ID: Devon Harding wrote: > Got it... I did have DCCD_ENABLE set to on. Turn'd it off and it worked. > > Thanks! Cool. Is it on by default now? Btw, you should stop top-posting on mailing lists... Ugo > > > On Mon, 4 Oct 2004 12:06:35 -0400, Ugo Bellavance wrote: > >>Devon Harding wrote: >> >> >>>I set 'DCCIFD_ENABLE=on' inf /var/dcc/dcc_conf as per MailScanner's instruction. >> >>It looks like it is trying to start DCCD, which is not what you want. >>Do you have DCCD_ENABLE to on? ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From Q.G.Campbell at NEWCASTLE.AC.UK Tue Oct 5 15:03:38 2004 From: Q.G.Campbell at NEWCASTLE.AC.UK (Quentin Campbell) Date: Thu Jan 12 21:27:08 2006 Subject: MailScanner-4.34.8-1 Installation Problems Message-ID: Julian I have just upgraded two RedHat AS/ES 3 systems to 4-34.8-1 but the attempt to ugrade a third AS 3 system failed in install.sh with: error: Failed dependencies: perl (Compress::Zlib) is needed by perl-Archive-Zip-1.13-1. Using CPAN and "installing Compress::Zlib" I am told that it is up to date! However looking a bit more closely I find that on the two systems on which 4.34.8-1 was successfully installed there is present the files /usr/src/redhat/RPMS/i386/perl-Compress-Zlib-1.33-1.i396.rpm /usr/src/redhat/RPMS/i386/perl-Compress-Zlib-debuginfo-1.33-1.i396.rpm These are not present in the system on which install.sh is failing. I assume it should thus install the perl-Compress-Zlib-1.33-2.i396.rpm you provide on the download for RedHat systems. However this begs the question as to why the later version you provide (1.33-2) is not installed in place of the existing version (1.33-1) on my two successful builds. Quentin --- PHONE: +44 191 222 8209 Information Systems and Services (ISS), University of Newcastle, Newcastle upon Tyne, FAX: +44 191 222 8765 United Kingdom, NE1 7RU. ------------------------------------------------------------------------ "Any opinion expressed above is mine. The University can get its own." >-----Original Message----- >From: MailScanner mailing list >[mailto:MAILSCANNER@JISCMAIL.AC.UK] On Behalf Of Julian Field >Sent: 05 October 2004 03:42 >To: MAILSCANNER@JISCMAIL.AC.UK >Subject: Re: MailScanner-4.34.8-1 Installation Problems > >At 00:11 05/10/2004, you wrote: > >>Ladies and Gents, >> rpmbuild --rebuild perl-Archive-Zip-1.13-1.src.rpm yields >> serveral errors. Some of which had inherent bzip2 syntax >problems. What >> is the issue? After editing the following >/usr/lib/rpm/brp-compress, and >> taking off the "-n" directive, then everything went through. Now its >> doing some more weirdness with perl-Compress-Zlib-1.33-2.src.rpm. >> >>What is going on??? >> >>Processing files: perl-Compress-Zlib-1.33-2 >>error: File not found: >>/var/tmp/perl-Compress-Zlib-1.33-2-root/usr/lib/perl5/site_per >l/5.8.3/i386-linux-thread-multi/auto/Compress/Zlib/Zlib.bs >> >>RPM build errors: >> File not found: >> >/var/tmp/perl-Compress-Zlib-1.33-2-root/usr/lib/perl5/site_perl >/5.8.3/i386-linux-thread-multi/auto/Compress/Zlib/Zlib.bs > >Something failed in the "make" stage of building perl-Compress-Zlib. >Suggest you take a good look at the output from that rebuild. >-- >Julian Field >www.MailScanner.info >Professional Support Services at www.MailScanner.biz >MailScanner thanks transtec Computers for their support >Buy the MailScanner book at www.MailScanner.info/store > >PGP footprint: EE81 D763 3DB0 0BFD E1DC 7222 11F6 5947 1415 B654 > >------------------------ MailScanner list ------------------------ >To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: >'leave mailscanner' in the body of the email. >Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and >the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). > ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From p.g.m.peters at utwente.nl Tue Oct 5 15:20:45 2004 From: p.g.m.peters at utwente.nl (Peter Peters) Date: Thu Jan 12 21:27:08 2006 Subject: How to configure MailScanner with sendmail's expensive=true option? Message-ID: On Tue, 5 Oct 2004 18:40:16 +0530, you wrote: >Sendmail is configured with Expensive=True, but MailScanner ignores this >feature and tries to deliver the moment it gets a chance to send out mail. In MailScanner.conf you can set "Delivery Method" to "queue". Or, as advised in the comment, use a ruleset. -- Peter Peters, senior netwerkbeheerder Dienst Informatietechnologie, Bibliotheek en Educatie (ITBE) Universiteit Twente, Postbus 217, 7500 AE Enschede telefoon: 053 - 489 2301, fax: 053 - 489 2383, http://www.utwente.nl/itbe ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From mailscanner at ecs.soton.ac.uk Tue Oct 5 15:35:10 2004 From: mailscanner at ecs.soton.ac.uk (Julian Field) Date: Thu Jan 12 21:27:08 2006 Subject: How to configure MailScanner with sendmail's expensive=true option? Message-ID: At 14:10 05/10/2004, you wrote: >Hi > >I use a few mail servers with MailScanner & Sendmail (RH9) that hook up to the >net using a ppp dial up connection every 30 minutes. > >I relay the messages to a Smart Host which accepts mail only if it is pop >authenticated... so I run a script which does >1. fetchmail to authenticate my dynamic IP address on the smart host >2. trigger sendmai -q to relay mail to the smart host. > >Sendmail is configured with Expensive=True, but MailScanner ignores this >feature and tries to deliver the moment it gets a chance to send out mail. > >I read this from the archives but was not sure if this is the solution to my >problem. > >http://www.jiscmail.ac.uk/cgi-bin/wa.exe?A2=ind0209&L=mailscanner&P=R37713&I=-1 > >Can anyone help? Set "Delivery Method = queue" in MailScanner.conf and it won't make the initial delivery attempt, but leave your system to deliver at a time of its own choosing. -- Julian Field www.MailScanner.info MailScanner thanks transtec Computers for their support Buy the MailScanner book at www.MailScanner.info/store PGP footprint: EE81 D763 3DB0 0BFD E1DC 7222 11F6 5947 1415 B654 ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From usergroups at THEARGONCOMPANY.COM Tue Oct 5 16:55:11 2004 From: usergroups at THEARGONCOMPANY.COM (Rishi) Date: Thu Jan 12 21:27:08 2006 Subject: How to configure MailScanner with sendmail's expensive=true option? Message-ID: > Set "Delivery Method = queue" in MailScanner.conf and it won't make the > initial delivery attempt, but leave your system to deliver at a time of its > own choosing. But then even internal mail between users on the Linux box is queued... The way sendmail's expensive feature works is that internal mail is delivered instantly, while keeping external mail in the queue to be delivered when triggered. Any way to accomplish this? Regards Rishi ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From Q.G.Campbell at NEWCASTLE.AC.UK Tue Oct 5 17:17:13 2004 From: Q.G.Campbell at NEWCASTLE.AC.UK (Quentin Campbell) Date: Thu Jan 12 21:27:08 2006 Subject: MailScanner-4.34.8-1 Installation Problems Message-ID: Julian There appears to be a bug in the logic of install.sh. You should not be using Perl to check for the presence of modules since Perl will find them even when they were not installed by RPM. This causes a problem because when you install a RPM binary it seems to check whether dependent modules are present by reference to the RPM database. However a module may have been installed earlier by non-RPM means. Your script decides whether a module is present or not by using Perl. This will find the module when it was _not_ installed by RPM. You then skip the necessary rpmbuild and rpm -Uvh steps needed to update the RPM database. This was the case with Compress-Zlib. It _is_ installed on the system but is not in the RPM database. However the binary RPM for Archive-Zip expects to see Compress-Zlib in the list of RPM-installed modules. Quentin --- PHONE: +44 191 222 8209 Information Systems and Services (ISS), University of Newcastle, Newcastle upon Tyne, FAX: +44 191 222 8765 United Kingdom, NE1 7RU. ------------------------------------------------------------------------ "Any opinion expressed above is mine. The University can get its own." >-----Original Message----- >From: MailScanner mailing list >[mailto:MAILSCANNER@JISCMAIL.AC.UK] On Behalf Of Quentin Campbell >Sent: 05 October 2004 15:04 >To: MAILSCANNER@JISCMAIL.AC.UK >Subject: Re: MailScanner-4.34.8-1 Installation Problems > >Julian > >I have just upgraded two RedHat AS/ES 3 systems to 4-34.8-1 but the >attempt to ugrade a third AS 3 system failed in install.sh with: > > error: Failed dependencies: > perl (Compress::Zlib) is needed by perl-Archive-Zip-1.13-1. > >Using CPAN and "installing Compress::Zlib" I am told that it is up to >date! > >However looking a bit more closely I find that on the two systems on >which 4.34.8-1 was successfully installed there is present the files > > /usr/src/redhat/RPMS/i386/perl-Compress-Zlib-1.33-1.i396.rpm > >/usr/src/redhat/RPMS/i386/perl-Compress-Zlib-debuginfo-1.33-1.i396.rpm > > >These are not present in the system on which install.sh is failing. I >assume it should thus install the >perl-Compress-Zlib-1.33-2.i396.rpm you >provide on the download for RedHat systems. > >However this begs the question as to why the later version you provide >(1.33-2) is not installed in place of the existing version (1.33-1) on >my two successful builds. > >Quentin >--- >PHONE: +44 191 222 8209 Information Systems and Services (ISS), > University of Newcastle, > Newcastle upon Tyne, >FAX: +44 191 222 8765 United Kingdom, NE1 7RU. >--------------------------------------------------------------- >--------- >"Any opinion expressed above is mine. The University can get >its own." > >>-----Original Message----- >>From: MailScanner mailing list >>[mailto:MAILSCANNER@JISCMAIL.AC.UK] On Behalf Of Julian Field >>Sent: 05 October 2004 03:42 >>To: MAILSCANNER@JISCMAIL.AC.UK >>Subject: Re: MailScanner-4.34.8-1 Installation Problems >> >>At 00:11 05/10/2004, you wrote: >> >>>Ladies and Gents, >>> rpmbuild --rebuild perl-Archive-Zip-1.13-1.src.rpm yields >>> serveral errors. Some of which had inherent bzip2 syntax >>problems. What >>> is the issue? After editing the following >>/usr/lib/rpm/brp-compress, and >>> taking off the "-n" directive, then everything went through. Now its >>> doing some more weirdness with perl-Compress-Zlib-1.33-2.src.rpm. >>> >>>What is going on??? >>> >>>Processing files: perl-Compress-Zlib-1.33-2 >>>error: File not found: >>>/var/tmp/perl-Compress-Zlib-1.33-2-root/usr/lib/perl5/site_per >>l/5.8.3/i386-linux-thread-multi/auto/Compress/Zlib/Zlib.bs >>> >>>RPM build errors: >>> File not found: >>> >>/var/tmp/perl-Compress-Zlib-1.33-2-root/usr/lib/perl5/site_perl >>/5.8.3/i386-linux-thread-multi/auto/Compress/Zlib/Zlib.bs >> >>Something failed in the "make" stage of building perl-Compress-Zlib. >>Suggest you take a good look at the output from that rebuild. >>-- >>Julian Field >>www.MailScanner.info >>Professional Support Services at www.MailScanner.biz >>MailScanner thanks transtec Computers for their support >>Buy the MailScanner book at www.MailScanner.info/store >> >>PGP footprint: EE81 D763 3DB0 0BFD E1DC 7222 11F6 5947 1415 B654 >> >>------------------------ MailScanner list ------------------------ >>To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: >>'leave mailscanner' in the body of the email. >>Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and >>the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). >> > >------------------------ MailScanner list ------------------------ >To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: >'leave mailscanner' in the body of the email. >Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and >the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). > > ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From chris.jones at ATMOSENERGY.COM Tue Oct 5 17:25:32 2004 From: chris.jones at ATMOSENERGY.COM (Jones, Chris) Date: Thu Jan 12 21:27:08 2006 Subject: Logging from CustomConfig.pm Message-ID: I am trying to understand logging from within a CustomFunction. I have set up the function "ByDomainSpamWhitelist" to work in my test environment. I do not see any logging from custom functions in either the mail log or the foreground messages. I have also set my syslog to enable logging from remote machines. Is there something else I need to enable? The CustomConfig.pm ByDomainSpamWhiteList: my $WhitelistDir = '/etc/MailScanner/spam.bydomain/whitelist'; # # Initialise by-domain spam whitelist and blacklist # sub InitByDomainSpamWhitelist { MailScanner::Log::InfoLog("Starting up by-domain spam whitelist, " . "reading from %s", $WhitelistDir); my $domains = CreateByDomainList($WhitelistDir, \%Whitelist); MailScanner::Log::InfoLog("Read whitelist for %d domains", $domains); } This is where I have enabled the ByDomainSpamWhiteList in the MailScanner.conf # Spam Blacklist: # Make this point to a ruleset, and anything in that ruleset whose value # is "yes" will *always* be marked as spam. # This can also be the filename of a ruleset. Is Definitely Spam = &ByDomainSpamWhitelist This is where I have set logging to go to the syslog. # This is the syslog "facility" name that MailScanner uses. If you don't # know what a syslog facility name is, then either don't change this value # or else go and read "man syslog.conf". The default value of "mail" will # cause the MailScanner logs to go into the same place as all your other # mail logs. Syslog Facility = mail Trying to see log statements from the debug statements # Set Run In Foreground to "yes" if you want MailScanner to operate # normally in foreground (and not as a background daemon). # Use this if you are controlling the execution of MailScanner # with a tool like DJB's 'supervise' (see http://cr.yp.to/daemontools.html). Run In Foreground = yes This is all I actually see in the /var/log/maillog Oct 4 12:22:55 u22 MailScanner[23334]: Config: calling custom init function ByDomainSpamWhitelist Oct 4 12:23:04 u22 MailScanner[23335]: MailScanner E-Mail Virus Scanner version 4.34.6 starting... Oct 4 12:23:05 22 MailScanner[23335]: spamblacklist^I^IByDomainSpamWhitelist Oct 4 12:23:05 u22 MailScanner[23335]: End of definition file. Thanks, Chris Jones System Engineer Atmos Energy Corporation "A leader must never care more about being liked than being right." George W. Bush ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From mailscanner at ecs.soton.ac.uk Tue Oct 5 17:50:02 2004 From: mailscanner at ecs.soton.ac.uk (Julian Field) Date: Thu Jan 12 21:27:08 2006 Subject: How to configure MailScanner with sendmail's expensive=true option? Message-ID: At 16:55 05/10/2004, you wrote: > > Set "Delivery Method = queue" in MailScanner.conf and it won't make the > > initial delivery attempt, but leave your system to deliver at a time of its > > own choosing. > >But then even internal mail between users on the Linux box is queued... The >way sendmail's expensive feature works is that internal mail is delivered >instantly, while keeping external mail in the queue to be delivered when >triggered. > >Any way to accomplish this? Use a frequent queue-runner to deliver the "cheap" mail. You could even use a ruleset to make the outgoing queue directory depend on the addresses in the message. You run a frequent queue-runner on the "local mail" queue, and don't run one on the "expensive" mail. -- Julian Field www.MailScanner.info Professional Support Services at www.MailScanner.biz MailScanner thanks transtec Computers for their support Buy the MailScanner book at www.MailScanner.info/store PGP footprint: EE81 D763 3DB0 0BFD E1DC 7222 11F6 5947 1415 B654 ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From G.Pentland at SOTON.AC.UK Tue Oct 5 17:52:08 2004 From: G.Pentland at SOTON.AC.UK (Pentland G.) Date: Thu Jan 12 21:27:08 2006 Subject: Feature request dodgy hack Message-ID: I would like to request a "Log Silently Deleted Viruses = yes/no" style option. Having recently upgraded MailScanner I have performed another dodgy hack to get this logged. A suggestion of a non-dodgy hack to achieve this will do. Would anyone else find this useful? Any chance Julian? Gary ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From mailscanner at ecs.soton.ac.uk Tue Oct 5 17:54:13 2004 From: mailscanner at ecs.soton.ac.uk (Julian Field) Date: Thu Jan 12 21:27:08 2006 Subject: MailScanner-4.34.8-1 Installation Problems Message-ID: But the perl module dependencies are added automatically when the RPM is built, apparently taken from the Makefile.PL contents. I'm not sure how to build the RPM's without it using this information. There doesn't appear to be an easy way to do it. Anyone know how to do this with rpmbuild? At 17:17 05/10/2004, you wrote: >Julian > >There appears to be a bug in the logic of install.sh. You should not be >using Perl to check for the presence of modules since Perl will find >them even when they were not installed by RPM. > >This causes a problem because when you install a RPM binary it seems to >check whether dependent modules are present by reference to the RPM >database. > >However a module may have been installed earlier by non-RPM means. Your >script decides whether a module is present or not by using Perl. This >will find the module when it was _not_ installed by RPM. You then skip >the necessary rpmbuild and rpm -Uvh steps needed to update the RPM >database. > >This was the case with Compress-Zlib. It _is_ installed on the system >but is not in the RPM database. However the binary RPM for Archive-Zip >expects to see Compress-Zlib in the list of RPM-installed modules. > > > >Quentin >--- >PHONE: +44 191 222 8209 Information Systems and Services (ISS), > University of Newcastle, > Newcastle upon Tyne, >FAX: +44 191 222 8765 United Kingdom, NE1 7RU. >------------------------------------------------------------------------ >"Any opinion expressed above is mine. The University can get its own." > > >-----Original Message----- > >From: MailScanner mailing list > >[mailto:MAILSCANNER@JISCMAIL.AC.UK] On Behalf Of Quentin Campbell > >Sent: 05 October 2004 15:04 > >To: MAILSCANNER@JISCMAIL.AC.UK > >Subject: Re: MailScanner-4.34.8-1 Installation Problems > > > >Julian > > > >I have just upgraded two RedHat AS/ES 3 systems to 4-34.8-1 but the > >attempt to ugrade a third AS 3 system failed in install.sh with: > > > > error: Failed dependencies: > > perl (Compress::Zlib) is needed by perl-Archive-Zip-1.13-1. > > > >Using CPAN and "installing Compress::Zlib" I am told that it is up to > >date! > > > >However looking a bit more closely I find that on the two systems on > >which 4.34.8-1 was successfully installed there is present the files > > > > /usr/src/redhat/RPMS/i386/perl-Compress-Zlib-1.33-1.i396.rpm > > > >/usr/src/redhat/RPMS/i386/perl-Compress-Zlib-debuginfo-1.33-1.i396.rpm > > > > > >These are not present in the system on which install.sh is failing. I > >assume it should thus install the > >perl-Compress-Zlib-1.33-2.i396.rpm you > >provide on the download for RedHat systems. > > > >However this begs the question as to why the later version you provide > >(1.33-2) is not installed in place of the existing version (1.33-1) on > >my two successful builds. > > > > > >>-----Original Message----- > >>From: MailScanner mailing list > >>[mailto:MAILSCANNER@JISCMAIL.AC.UK] On Behalf Of Julian Field > >>Sent: 05 October 2004 03:42 > >>To: MAILSCANNER@JISCMAIL.AC.UK > >>Subject: Re: MailScanner-4.34.8-1 Installation Problems > >> > >>At 00:11 05/10/2004, you wrote: > >> > >>>Ladies and Gents, > >>> rpmbuild --rebuild perl-Archive-Zip-1.13-1.src.rpm yields > >>> serveral errors. Some of which had inherent bzip2 syntax > >>problems. What > >>> is the issue? After editing the following > >>/usr/lib/rpm/brp-compress, and > >>> taking off the "-n" directive, then everything went through. Now its > >>> doing some more weirdness with perl-Compress-Zlib-1.33-2.src.rpm. > >>> > >>>What is going on??? > >>> > >>>Processing files: perl-Compress-Zlib-1.33-2 > >>>error: File not found: > >>>/var/tmp/perl-Compress-Zlib-1.33-2-root/usr/lib/perl5/site_per > >>l/5.8.3/i386-linux-thread-multi/auto/Compress/Zlib/Zlib.bs > >>> > >>>RPM build errors: > >>> File not found: > >>> > >>/var/tmp/perl-Compress-Zlib-1.33-2-root/usr/lib/perl5/site_perl > >>/5.8.3/i386-linux-thread-multi/auto/Compress/Zlib/Zlib.bs > >> > >>Something failed in the "make" stage of building perl-Compress-Zlib. > >>Suggest you take a good look at the output from that rebuild. -- Julian Field www.MailScanner.info Professional Support Services at www.MailScanner.biz MailScanner thanks transtec Computers for their support Buy the MailScanner book at www.MailScanner.info/store PGP footprint: EE81 D763 3DB0 0BFD E1DC 7222 11F6 5947 1415 B654 ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From vboulytchev at COINFOTECH.COM Tue Oct 5 18:33:06 2004 From: vboulytchev at COINFOTECH.COM (Boulytchev, Vasiliy) Date: Thu Jan 12 21:27:08 2006 Subject: MailScanner-4.34.8-1 Installation Problems Message-ID: Errors: #rpmbuild --rebuild perl-Archive-Zip-1.13-1.src.rpm SNIP Processing files: perl-Archive-Zip-1.13-1 error: File not found: /var/tmp/perl-Archive-Zip-1.13-1-root/usr/share/man/man3/Archive::Zip::Tree.3pm error: File not found: /var/tmp/perl-Archive-Zip-1.13-1-root/usr/share/man/man3/Archive::Zip.3pm error: File not found: /var/tmp/perl-Archive-Zip-1.13-1-root/usr/share/man/man3/Archive::Zip::FAQ.3pm error: File not found:/var/tmp/perl-Archive-Zip-1.13-1-root/usr/share/man/man3/Archive::Zip::MemberRe d.3pm RPM build errors: File not found: /var/tmp/perl-Archive-Zip-1.13-1-root/usr/share/man/man3/Archive::Zip::Tree.3pm File not found: /var/tmp/perl-Archive-Zip-1.13-1-root/usr/share/man/man3/Archive::Zip.3pm File not found: /var/tmp/perl-Archive-Zip-1.13-1-root/usr/share/man/man3/Archive::Zip::FAQ.3pm File not found:/var/tmp/perl-Archive-Zip-1.13-1-root/usr/share/man/man3/Archive::Zip::MemberRe d.3pm So, went looking in the /var/tmp/perl-Archive-Zip-1.13-1-root/usr/share/man/man3/ ALL FILES ARE THERE, except bziped, not a .3pm, so when i "bzip2 -d *" they come out. Another part of the rpmbuild, which is responsible for the errors above: SNIP Appending installation info to/var/tmp/perl-Archive-Zip-1.13-1-root/usr/lib/perl5/5.8.3/i386-linux-thread-mul i/perllocal.pod + '[' -x /usr/lib/rpm/brp-compress ']' + /usr/lib/rpm/brp-compress bzip2: Bad flag `-n' bzip2, a block-sorting file compressor. Version 1.0.2, 30-Dec-2001. usage: bzip2 [flags and input files in any order] -h --help print this message -d --decompress force decompression -z --compress force compression -k --keep keep (don't delete) input files -f --force overwrite existing output files -t --test test compressed file integrity -c --stdout output to standard out -q --quiet suppress noncritical error messages -v --verbose be verbose (a 2nd -v gives more) -L --license display software version & license -V --version display software version & license -s --small use less memory (at most 2500k) -1 .. -9 set block size to 100k .. 900k --fast alias for -1 --best alias for -9 If invoked as `bzip2', default action is to compress. as `bunzip2', default action is to decompress. as `bzcat', default action is to decompress to stdout. If no file names are given, bzip2 compresses or decompresses from standard input to standard output. You can combine short flags, so `-v -4' means the same as -v4 or -4v, &c. bzip2: Bad flag `-n' SNIP So what I did, is edited /usr/lib/rpm/brp-compress and took out the -n option, which is by the way not part of bzip2........ Anyways, then everything compiled just fine. I am having almost same issues with zlib as stated below. WHATS GOING ON! :( Thanks, Vasiliy Boulytchev Colorado Information Technologies, Inc. http://www.coinfotech.com ________________________________________________________________________________ From: MailScanner mailing list [mailto:MAILSCANNER@JISCMAIL.AC.UK] On Behalf Of Boulytchev, Vasiliy Sent: Monday, October 04, 2004 5:11 PM To: MAILSCANNER@JISCMAIL.AC.UK Subject: MailScanner-4.34.8-1 Installation Problems Ladies and Gents, rpmbuild --rebuild perl-Archive-Zip-1.13-1.src.rpm yields serveral errors. Some of which had inherent bzip2 syntax problems. What is the issue? After editing the following /usr/lib/rpm/brp-compress, and taking off the "-n" directive, then everything went through. Now its doing some more weirdness with perl-Compress-Zlib-1.33-2.src.rpm. What is going on??? Processing files: perl-Compress-Zlib-1.33-2 error: File not found:/var/tmp/perl-Compress-Zlib-1.33-2-root/usr/lib/perl5/site_perl/5.8.3/i386-linu -thread-multi/auto/Compress/Zlib/Zlib.bs RPM build errors: File not found:/var/tmp/perl-Compress-Zlib-1.33-2-root/usr/lib/perl5/site_perl/5.8.3/i386-linu -thread-multi/auto/Compress/Zlib/Zlib.bs Thanks, Vasiliy Boulytchev Colorado Information Technologies, Inc. http://www.coinfotech.com ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). [ Part 2, Application/X-PKCS7-SIGNATURE 5.9KB. ] [ Unable to print this part. ] From vboulytchev at COINFOTECH.COM Tue Oct 5 18:34:41 2004 From: vboulytchev at COINFOTECH.COM (Boulytchev, Vasiliy) Date: Thu Jan 12 21:27:08 2006 Subject: MailScanner-4.34.8-1 Installation Problems Message-ID: On the same note, Processing files: perl-Net-CIDR-0.09-3 error: File not found: /var/tmp/perl-Net-CIDR-0.09-3-root/usr/share/man/man3/Net::CIDR.3pm RPM build errors: File not found: /var/tmp/perl-Net-CIDR-0.09-3-root/usr/share/man/man3/Net::CIDR.3pm Thanks, Vasiliy Boulytchev Colorado Information Technologies, Inc. http://www.coinfotech.com ________________________________________________________________________________ From: MailScanner mailing list [mailto:MAILSCANNER@JISCMAIL.AC.UK] On Behalf Of Boulytchev, Vasiliy Sent: Tuesday, October 05, 2004 11:33 AM To: MAILSCANNER@JISCMAIL.AC.UK Subject: Re: MailScanner-4.34.8-1 Installation Problems Errors: #rpmbuild --rebuild perl-Archive-Zip-1.13-1.src.rpm SNIP Processing files: perl-Archive-Zip-1.13-1 error: File not found: /var/tmp/perl-Archive-Zip-1.13-1-root/usr/share/man/man3/Archive::Zip::Tree.3pm error: File not found: /var/tmp/perl-Archive-Zip-1.13-1-root/usr/share/man/man3/Archive::Zip.3pm error: File not found: /var/tmp/perl-Archive-Zip-1.13-1-root/usr/share/man/man3/Archive::Zip::FAQ.3pm error: File not found:/var/tmp/perl-Archive-Zip-1.13-1-root/usr/share/man/man3/Archive::Zip::MemberRe d.3pm RPM build errors: File not found: /var/tmp/perl-Archive-Zip-1.13-1-root/usr/share/man/man3/Archive::Zip::Tree.3pm File not found: /var/tmp/perl-Archive-Zip-1.13-1-root/usr/share/man/man3/Archive::Zip.3pm File not found: /var/tmp/perl-Archive-Zip-1.13-1-root/usr/share/man/man3/Archive::Zip::FAQ.3pm File not found:/var/tmp/perl-Archive-Zip-1.13-1-root/usr/share/man/man3/Archive::Zip::MemberRe d.3pm So, went looking in the /var/tmp/perl-Archive-Zip-1.13-1-root/usr/share/man/man3/ ALL FILES ARE THERE, except bziped, not a .3pm, so when i "bzip2 -d *" they come out. Another part of the rpmbuild, which is responsible for the errors above: SNIP Appending installation info to/var/tmp/perl-Archive-Zip-1.13-1-root/usr/lib/perl5/5.8.3/i386-linux-thread-mul i/perllocal.pod + '[' -x /usr/lib/rpm/brp-compress ']' + /usr/lib/rpm/brp-compress bzip2: Bad flag `-n' bzip2, a block-sorting file compressor. Version 1.0.2, 30-Dec-2001. usage: bzip2 [flags and input files in any order] -h --help print this message -d --decompress force decompression -z --compress force compression -k --keep keep (don't delete) input files -f --force overwrite existing output files -t --test test compressed file integrity -c --stdout output to standard out -q --quiet suppress noncritical error messages -v --verbose be verbose (a 2nd -v gives more) -L --license display software version & license -V --version display software version & license -s --small use less memory (at most 2500k) -1 .. -9 set block size to 100k .. 900k --fast alias for -1 --best alias for -9 If invoked as `bzip2', default action is to compress. as `bunzip2', default action is to decompress. as `bzcat', default action is to decompress to stdout. If no file names are given, bzip2 compresses or decompresses from standard input to standard output. You can combine short flags, so `-v -4' means the same as -v4 or -4v, &c. bzip2: Bad flag `-n' SNIP So what I did, is edited /usr/lib/rpm/brp-compress and took out the -n option, which is by the way not part of bzip2........ Anyways, then everything compiled just fine. I am having almost same issues with zlib as stated below. WHATS GOING ON! :( Thanks, Vasiliy Boulytchev Colorado Information Technologies, Inc. http://www.coinfotech.com ________________________________________________________________________________ From: MailScanner mailing list [mailto:MAILSCANNER@JISCMAIL.AC.UK] On Behalf Of Boulytchev, Vasiliy Sent: Monday, October 04, 2004 5:11 PM To: MAILSCANNER@JISCMAIL.AC.UK Subject: MailScanner-4.34.8-1 Installation Problems Ladies and Gents, rpmbuild --rebuild perl-Archive-Zip-1.13-1.src.rpm yields serveral errors. Some of which had inherent bzip2 syntax problems. What is the issue? After editing the following /usr/lib/rpm/brp-compress, and taking off the "-n" directive, then everything went through. Now its doing some more weirdness with perl-Compress-Zlib-1.33-2.src.rpm. What is going on??? Processing files: perl-Compress-Zlib-1.33-2 error: File not found:/var/tmp/perl-Compress-Zlib-1.33-2-root/usr/lib/perl5/site_perl/5.8.3/i386-linu -thread-multi/auto/Compress/Zlib/Zlib.bs RPM build errors: File not found:/var/tmp/perl-Compress-Zlib-1.33-2-root/usr/lib/perl5/site_perl/5.8.3/i386-linu -thread-multi/auto/Compress/Zlib/Zlib.bs Thanks, Vasiliy Boulytchev Colorado Information Technologies, Inc. http://www.coinfotech.com ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). [ Part 2, Application/X-PKCS7-SIGNATURE 5.9KB. ] [ Unable to print this part. ] From mike at CAMAROSS.NET Tue Oct 5 18:36:17 2004 From: mike at CAMAROSS.NET (Mike Kercher) Date: Thu Jan 12 21:27:08 2006 Subject: How to configure MailScanner with sendmail's expensive=true option? Message-ID: Rishi wrote: >> Set "Delivery Method = queue" in MailScanner.conf and it won't make >> the initial delivery attempt, but leave your system to deliver at a >> time of its own choosing. > > But then even internal mail between users on the Linux box is > queued... The way sendmail's expensive feature works is that internal > mail is delivered instantly, while keeping external mail in the queue > to be delivered when triggered. > > Any way to accomplish this? > > Regards > > Rishi In your MailScanner.conf: Delivery Method = %rules-dir%/delivery.rules In delivery.rules: To: *@yourdomain.com batch FromTo: default queue That should do what you want. Mike ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From vboulytchev at COINFOTECH.COM Tue Oct 5 18:37:11 2004 From: vboulytchev at COINFOTECH.COM (Boulytchev, Vasiliy) Date: Thu Jan 12 21:27:08 2006 Subject: MailScanner-4.34.8-1 Installation Problems Message-ID: Having same issues on several machines. :( Not just that one box. Thanks, Vasiliy Boulytchev Colorado Information Technologies, Inc. http://www.coinfotech.com ________________________________________________________________________________ From: MailScanner mailing list [mailto:MAILSCANNER@JISCMAIL.AC.UK] On Behalf Of Boulytchev, Vasiliy Sent: Tuesday, October 05, 2004 11:35 AM To: MAILSCANNER@JISCMAIL.AC.UK Subject: Re: MailScanner-4.34.8-1 Installation Problems On the same note, Processing files: perl-Net-CIDR-0.09-3 error: File not found: /var/tmp/perl-Net-CIDR-0.09-3-root/usr/share/man/man3/Net::CIDR.3pm RPM build errors: File not found: /var/tmp/perl-Net-CIDR-0.09-3-root/usr/share/man/man3/Net::CIDR.3pm Thanks, Vasiliy Boulytchev Colorado Information Technologies, Inc. http://www.coinfotech.com ________________________________________________________________________________ From: MailScanner mailing list [mailto:MAILSCANNER@JISCMAIL.AC.UK] On Behalf Of Boulytchev, Vasiliy Sent: Tuesday, October 05, 2004 11:33 AM To: MAILSCANNER@JISCMAIL.AC.UK Subject: Re: MailScanner-4.34.8-1 Installation Problems Errors: #rpmbuild --rebuild perl-Archive-Zip-1.13-1.src.rpm SNIP Processing files: perl-Archive-Zip-1.13-1 error: File not found: /var/tmp/perl-Archive-Zip-1.13-1-root/usr/share/man/man3/Archive::Zip::Tree.3pm error: File not found: /var/tmp/perl-Archive-Zip-1.13-1-root/usr/share/man/man3/Archive::Zip.3pm error: File not found: /var/tmp/perl-Archive-Zip-1.13-1-root/usr/share/man/man3/Archive::Zip::FAQ.3pm error: File not found:/var/tmp/perl-Archive-Zip-1.13-1-root/usr/share/man/man3/Archive::Zip::MemberRe d.3pm RPM build errors: File not found: /var/tmp/perl-Archive-Zip-1.13-1-root/usr/share/man/man3/Archive::Zip::Tree.3pm File not found: /var/tmp/perl-Archive-Zip-1.13-1-root/usr/share/man/man3/Archive::Zip.3pm File not found: /var/tmp/perl-Archive-Zip-1.13-1-root/usr/share/man/man3/Archive::Zip::FAQ.3pm File not found:/var/tmp/perl-Archive-Zip-1.13-1-root/usr/share/man/man3/Archive::Zip::MemberRe d.3pm So, went looking in the /var/tmp/perl-Archive-Zip-1.13-1-root/usr/share/man/man3/ ALL FILES ARE THERE, except bziped, not a .3pm, so when i "bzip2 -d *" they come out. Another part of the rpmbuild, which is responsible for the errors above: SNIP Appending installation info to/var/tmp/perl-Archive-Zip-1.13-1-root/usr/lib/perl5/5.8.3/i386-linux-thread-mul i/perllocal.pod + '[' -x /usr/lib/rpm/brp-compress ']' + /usr/lib/rpm/brp-compress bzip2: Bad flag `-n' bzip2, a block-sorting file compressor. Version 1.0.2, 30-Dec-2001. usage: bzip2 [flags and input files in any order] -h --help print this message -d --decompress force decompression -z --compress force compression -k --keep keep (don't delete) input files -f --force overwrite existing output files -t --test test compressed file integrity -c --stdout output to standard out -q --quiet suppress noncritical error messages -v --verbose be verbose (a 2nd -v gives more) -L --license display software version & license -V --version display software version & license -s --small use less memory (at most 2500k) -1 .. -9 set block size to 100k .. 900k --fast alias for -1 --best alias for -9 If invoked as `bzip2', default action is to compress. as `bunzip2', default action is to decompress. as `bzcat', default action is to decompress to stdout. If no file names are given, bzip2 compresses or decompresses from standard input to standard output. You can combine short flags, so `-v -4' means the same as -v4 or -4v, &c. bzip2: Bad flag `-n' SNIP So what I did, is edited /usr/lib/rpm/brp-compress and took out the -n option, which is by the way not part of bzip2........ Anyways, then everything compiled just fine. I am having almost same issues with zlib as stated below. WHATS GOING ON! :( Thanks, Vasiliy Boulytchev Colorado Information Technologies, Inc. http://www.coinfotech.com ________________________________________________________________________________ From: MailScanner mailing list [mailto:MAILSCANNER@JISCMAIL.AC.UK] On Behalf Of Boulytchev, Vasiliy Sent: Monday, October 04, 2004 5:11 PM To: MAILSCANNER@JISCMAIL.AC.UK Subject: MailScanner-4.34.8-1 Installation Problems Ladies and Gents, rpmbuild --rebuild perl-Archive-Zip-1.13-1.src.rpm yields serveral errors. Some of which had inherent bzip2 syntax problems. What is the issue? After editing the following /usr/lib/rpm/brp-compress, and taking off the "-n" directive, then everything went through. Now its doing some more weirdness with perl-Compress-Zlib-1.33-2.src.rpm. What is going on??? Processing files: perl-Compress-Zlib-1.33-2 error: File not found:/var/tmp/perl-Compress-Zlib-1.33-2-root/usr/lib/perl5/site_perl/5.8.3/i386-linu -thread-multi/auto/Compress/Zlib/Zlib.bs RPM build errors: File not found:/var/tmp/perl-Compress-Zlib-1.33-2-root/usr/lib/perl5/site_perl/5.8.3/i386-linu -thread-multi/auto/Compress/Zlib/Zlib.bs Thanks, Vasiliy Boulytchev Colorado Information Technologies, Inc. http://www.coinfotech.com ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). [ Part 2, Application/X-PKCS7-SIGNATURE 5.9KB. ] [ Unable to print this part. ] From mailscanner at ecs.soton.ac.uk Tue Oct 5 18:59:04 2004 From: mailscanner at ecs.soton.ac.uk (Julian Field) Date: Thu Jan 12 21:27:08 2006 Subject: Feature request dodgy hack Message-ID: At 17:52 05/10/2004, you wrote: >I would like to request a "Log Silently Deleted Viruses = yes/no" style >option. Yes, that sounds useful. Attached are patches to ConfigDefs.pl and Message.pm to add a "Log Silent Viruses" configuration option. It can only be yes or no. By default it is switched off. It cannot be a ruleset, as that sounds pretty daft to me. # Log all occurrences of "Silent Viruses" as defined above? # This can only be a simple yes/no value, not a ruleset. Log Silent Viruses = no ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). [ Part 2, Application/OCTET-STREAM (Name: "Message.pm.patch") 4.2KB. ] [ Unable to print this part. ] [ Part 3, Application/OCTET-STREAM (Name: "ConfigDefs.pl.patch") ] [ 446bytes. ] [ Unable to print this part. ] [ Part 4: "Attached Text" ] -- Julian Field www.MailScanner.info Professional Support Services at www.MailScanner.biz MailScanner thanks transtec Computers for their support Buy the MailScanner book at www.MailScanner.info/store PGP footprint: EE81 D763 3DB0 0BFD E1DC 7222 11F6 5947 1415 B654 ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From ssilva at SGVWATER.COM Tue Oct 5 19:03:01 2004 From: ssilva at SGVWATER.COM (Scott Silva) Date: Thu Jan 12 21:27:08 2006 Subject: MailScanner-4.34.8-1 Installation Problems Message-ID: -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Boulytchev, Vasiliy wrote: | On the same note, | | | | Processing files: perl-Net-CIDR-0.09-3 | error: File not found: | /var/tmp/perl-Net-CIDR-0.09-3-root/usr/share/man/man3/Net::CIDR.3pm | | | RPM build errors: | File not found: | /var/tmp/perl-Net-CIDR-0.09-3-root/usr/share/man/man3/Net::CIDR.3pm | | | Thanks, | Vasiliy Boulytchev | Colorado Information Technologies, Inc. | http://www.coinfotech.com | | | | ------------------------------------------------------------------------ | *From:* MailScanner mailing list [mailto:MAILSCANNER@JISCMAIL.AC.UK] *On | Behalf Of *Boulytchev, Vasiliy | *Sent:* Tuesday, October 05, 2004 11:33 AM | *To:* MAILSCANNER@JISCMAIL.AC.UK | *Subject:* Re: MailScanner-4.34.8-1 Installation Problems | | Errors: | #rpmbuild --rebuild perl-Archive-Zip-1.13-1.src.rpm | | SNIP | Processing files: perl-Archive-Zip-1.13-1 | error: File not found: | /var/tmp/perl-Archive-Zip-1.13-1-root/usr/share/man/man3/Archive::Zip::Tree.3pm | error: File not found: | /var/tmp/perl-Archive-Zip-1.13-1-root/usr/share/man/man3/Archive::Zip.3pm | error: File not found: | /var/tmp/perl-Archive-Zip-1.13-1-root/usr/share/man/man3/Archive::Zip::FAQ.3pm | error: File not found: | /var/tmp/perl-Archive-Zip-1.13-1-root/usr/share/man/man3/Archive::Zip::MemberRead.3pm | | | RPM build errors: | File not found: | /var/tmp/perl-Archive-Zip-1.13-1-root/usr/share/man/man3/Archive::Zip::Tree.3pm | File not found: | /var/tmp/perl-Archive-Zip-1.13-1-root/usr/share/man/man3/Archive::Zip.3pm | File not found: | /var/tmp/perl-Archive-Zip-1.13-1-root/usr/share/man/man3/Archive::Zip::FAQ.3pm | File not found: | /var/tmp/perl-Archive-Zip-1.13-1-root/usr/share/man/man3/Archive::Zip::MemberRead.3pm | | | So, went looking in the | /var/tmp/perl-Archive-Zip-1.13-1-root/usr/share/man/man3/ | ALL FILES ARE THERE, except bziped, not a .3pm, so when i "bzip2 -d *" | they come out. | | | | Another part of the rpmbuild, which is responsible for the errors above: | | SNIP | Appending installation info to | /var/tmp/perl-Archive-Zip-1.13-1-root/usr/lib/perl5/5.8.3/i386-linux-thread-multi/perllocal.pod | + '[' -x /usr/lib/rpm/brp-compress ']' | + /usr/lib/rpm/brp-compress | bzip2: Bad flag `-n' | bzip2, a block-sorting file compressor. Version 1.0.2, 30-Dec-2001. | | usage: bzip2 [flags and input files in any order] | | -h --help print this message | -d --decompress force decompression | -z --compress force compression | -k --keep keep (don't delete) input files | -f --force overwrite existing output files | -t --test test compressed file integrity | -c --stdout output to standard out | -q --quiet suppress noncritical error messages | -v --verbose be verbose (a 2nd -v gives more) | -L --license display software version & license | -V --version display software version & license | -s --small use less memory (at most 2500k) | -1 .. -9 set block size to 100k .. 900k | --fast alias for -1 | --best alias for -9 | | If invoked as `bzip2', default action is to compress. | as `bunzip2', default action is to decompress. | as `bzcat', default action is to decompress to stdout. | | If no file names are given, bzip2 compresses or decompresses | from standard input to standard output. You can combine | short flags, so `-v -4' means the same as -v4 or -4v, &c. | | bzip2: Bad flag `-n' | SNIP | | | | So what I did, is edited /usr/lib/rpm/brp-compress and took out the -n | option, which is by the way not part of bzip2........ Anyways, then | everything compiled just fine. I am having almost same issues with zlib | as stated below. | | WHATS GOING ON! :( | | | | | | Thanks, | Vasiliy Boulytchev | Colorado Information Technologies, Inc. | http://www.coinfotech.com | | | If you are not building as root, do you have a valid .rpmmacros file for the user you are building as? -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.1 (MingW32) Comment: Using GnuPG with Thunderbird - http://enigmail.mozdev.org iD8DBQFBYuHURADw9lziUqQRAqrMAJ0VGWift0ovPNWbMl53mErTI8en5wCfXzkO /1ZII5o+JpSfdQ1AoKefYYM= =NZKU -----END PGP SIGNATURE----- ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From jaearick at COLBY.EDU Tue Oct 5 19:07:53 2004 From: jaearick at COLBY.EDU (Jeff A. Earickson) Date: Thu Jan 12 21:27:08 2006 Subject: where went SAVI-Perl? Message-ID: Julian, I would suggest adding SAVI-perl-0.15 to the perl.tar directory. I was using the output of "MailScanner -v" to compare the version numbers of MS perl modules to what is listed at CPAN, to see if I was up-to-date. A search for "SAVI" out there yielded really old stuff for this code -- version 0.10. Has Paul Henson dropped support for this? Jeff Earickson Colby College ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From jaearick at COLBY.EDU Tue Oct 5 19:24:01 2004 From: jaearick at COLBY.EDU (Jeff A. Earickson) Date: Thu Jan 12 21:27:08 2006 Subject: NO_DNS_FOR_FROM Message-ID: I've noticed the same problem, my settings listed below. I've done some poking thru the SA 3.0 code to try and figure out what is going on, but I don't really know what I'm looking at. This smells like a bug in SA 3.0; it worked in 2.64 for me. I contemplated filing a bug report for SA 3.0, but I realize that my report would be vague enough to annoy the SpamAssassin maintainers. Anybody have any suggestions on how to give them more info? A debug run of MS/SA yields little except: debug: dns_available set to yes in config file, skipping test Jeff Earickson Colby College My setup: ./MailScanner -v Running on SunOS basalt 5.9 Generic_117171-10 sun4u sparc SUNW,Netra-T12 This is Perl version 5.008005 (5.8.5) This is MailScanner version 4.34.8 Module versions are: 1.00 AnyDBM_File 1.13 Archive::Zip 1.03 Carp 1.119 Convert::BinHex 1.00 DirHandle 1.05 Fcntl 2.73 File::Basename 2.08 File::Copy 2.01 FileHandle 1.06 File::Path 0.14 File::Temp 1.27 HTML::Entities 3.36 HTML::Parser 2.28 HTML::TokeParser 1.21 IO 1.10 IO::File 1.123 IO::Pipe 3.05 MIME::Base64 5.413 MIME::Decoder 5.413 MIME::Decoder::UU 5.413 MIME::Head 5.413 MIME::Parser 3.03 MIME::QuotedPrint 5.413 MIME::Tools 0.10 Net::CIDR 1.08 POSIX 1.77 Socket 0.05 Sys::Syslog 1.02 Time::localtime Optional module versions are: 1.810 DB_File 1.08 Digest 1.01 Digest::HMAC 2.33 Digest::MD5 2.10 Digest::SHA1 0.44 Inline 0.11 Mail::ClamAV 3.000000 Mail::SpamAssassin 1.997 Mail::SPF::Query 0.15 Net::CIDR::Lite 0.48 Net::DNS missing Net::LDAP 1.94 Parse::RecDescent 0.15 SAVI 1.2 Sys::Hostname::Long 2.42 Test::Harness 0.47 Test::Simple 1.95 Text::Balanced 1.34 URI On Mon, 4 Oct 2004, Alan wrote: > Date: Mon, 4 Oct 2004 00:35:19 +0100 > From: Alan > Reply-To: MailScanner mailing list > To: MAILSCANNER@JISCMAIL.AC.UK > Subject: NO_DNS_FOR_FROM > > Prior to upgrading to SA3, I used to see quite a few 'NO_DNS_FOR_FROM' hits > in my logs. Now that I have upgraded, I see none. Not a single hit. > > When I moved to SA3, I started from scratch, installing RH8, the latest MS, > exim, and SA3. Everything else appears to be running fine, just zero hits > for 'NO_DNS_FOR_FROM', even when I feed it test messages with phoney 'from' > addresses. > > Any suggestions on where I should look to solve this? > Thanks! > -Alan > > ------------------------ MailScanner list ------------------------ > To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: > 'leave mailscanner' in the body of the email. > Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and > the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). > ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From mailscanner at ecs.soton.ac.uk Tue Oct 5 19:37:58 2004 From: mailscanner at ecs.soton.ac.uk (Julian Field) Date: Thu Jan 12 21:27:08 2006 Subject: where went SAVI-Perl? Message-ID: Google produced this: http://www.csupomona.edu/~henson/www/projects/SAVI-Perl/dist/ which is his master site. 0.15 is still there. At 19:07 05/10/2004, you wrote: >Julian, > >I would suggest adding SAVI-perl-0.15 to the perl.tar directory. >I was using the output of "MailScanner -v" to compare the version >numbers of MS perl modules to what is listed at CPAN, to see if >I was up-to-date. A search for "SAVI" out there yielded really >old stuff for this code -- version 0.10. Has Paul Henson dropped >support for this? -- Julian Field www.MailScanner.info Professional Support Services at www.MailScanner.biz MailScanner thanks transtec Computers for their support Buy the MailScanner book at www.MailScanner.info/store PGP footprint: EE81 D763 3DB0 0BFD E1DC 7222 11F6 5947 1415 B654 ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From mkettler at EVI-INC.COM Tue Oct 5 20:14:24 2004 From: mkettler at EVI-INC.COM (Matt Kettler) Date: Thu Jan 12 21:27:08 2006 Subject: NO_DNS_FOR_FROM Message-ID: At 02:24 PM 10/5/2004, Jeff A. Earickson wrote: >I've noticed the same problem, my settings listed below. I've done >some poking thru the SA 3.0 code to try and figure out what is going >on, but I don't really know what I'm looking at. This smells like >a bug in SA 3.0; it worked in 2.64 for me. It would appear there was a bug, but Dan Q tried to fix it before releasing SA 3.0 final. http://bugzilla.spamassassin.org/show_bug.cgi?id=3494 In which Dan Q tried to fix NO_DNS_FOR_FROM prior to 3.0's release. I'd double-check to make sure you've got a fully final copy of SA 3.0, not a release candidate. grep NO_DNS_FOR_FROM /usr/share/spamassassin/*.cf Should return these lines: 20_dnsbl_tests.cf:header NO_DNS_FOR_FROM eval:check_dns_sender() 20_dnsbl_tests.cf:describe NO_DNS_FOR_FROM Envelope sender has no MX or A DNS records 20_dnsbl_tests.cf:tflags NO_DNS_FOR_FROM net 30_text_de.cf:lang de describe NO_DNS_FOR_FROM Domain der Absendeadresse nicht im DNS registriert (kein MX/A Eintrag) 30_text_fr.cf:lang fr describe NO_DNS_FOR_FROM Adresse From: inconnue en DNS (pas d'enregistrement MX) 30_text_nl.cf:lang nl describe NO_DNS_FOR_FROM Domein in Van heeft geen MX of A DNS record 30_text_pl.cf:lang pl describe NO_DNS_FOR_FROM If you see this line: 20_head_tests.cf header NO_DNS_FOR_FROM eval:check_for_from_dns() You've got rules from an outdated release. I know the old code was in pre4 and earlier, and not in rc3 and later, but I don't have copies of rc1 and rc2 on hand to check those. ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From combs at magnet.fsu.edu Tue Oct 5 21:08:39 2004 From: combs at magnet.fsu.edu (Tom Combs) Date: Thu Jan 12 21:27:08 2006 Subject: Why aren't RBL checks running? Message-ID: Hello, I'm in the process of setting up an email server using MS 4.34.8-1 and Spamassassin 3.0. For some reason, the RBL checks don't appear to be running. In my MailScanner.conf file I have: Spam List = spamcop.net in spam.lists.conf there is: spamcop.net bl.spamcop.net. and in spam.assassin.prefs.conf, I have skip_rbl_checks 1 On my other server, I'm use to seeing messages in the log file like: RBL checks: i917AbsS018169 found in spamcop.net and .... to magnet.fsu.edu is spam, spamcop.net But I'm not seeing any of this on the new server and I do have the spam logging turned on. My old server is a Solaris box and my new server is a RedHat AS 3.0 system so I'm wondering if it is something peculiar between the two OS environments. Since I really don't know how the RBL checks worked, I turned off iptables in case I was blocking the traffic. That doesn't seem to help. Does anyone have any suggestions as what could be wrong? Is there a way to test the RBLs other then looking for results in the log files? Thanks a bunch! --Tom -- Tom Combs E-mail: combs@magnet.fsu.edu National High Magnetic Field Laboratory Phone: (850) 644-1657 1800 E. Paul Dirac Drive Tallahassee, FL 32310 ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From mailscanner at ecs.soton.ac.uk Tue Oct 5 21:18:22 2004 From: mailscanner at ecs.soton.ac.uk (Julian Field) Date: Thu Jan 12 21:27:08 2006 Subject: Why aren't RBL checks running? Message-ID: Is mail coming to this system straight from the outside world, or is it all coming via one of your own servers? The MailScanner "Spam List" checks only check the other end of the incoming SMTP connection. So if it's all coming via one of your own servers, it won't find anything. The RBL checks that SpamAssassin can do will still work, though. At 21:08 05/10/2004, you wrote: >Hello, > >I'm in the process of setting up an email server using MS 4.34.8-1 >and Spamassassin 3.0. For some reason, the RBL checks don't appear >to be running. > >In my MailScanner.conf file I have: > > Spam List = spamcop.net > > >in spam.lists.conf there is: > > spamcop.net bl.spamcop.net. > > > and in spam.assassin.prefs.conf, I have > > skip_rbl_checks 1 > > > On my other server, I'm use to seeing messages in the log file like: > > RBL checks: i917AbsS018169 found in spamcop.net > > and > > .... to magnet.fsu.edu is spam, spamcop.net > > > But I'm not seeing any of this on the new server and I do have the spam > logging > turned on. > > My old server is a Solaris box and my new server is a RedHat AS 3.0 > system so > I'm wondering if it is something peculiar between the two OS environments. > Since I really don't know how the RBL checks worked, I turned off iptables > in case I was blocking the traffic. That doesn't seem to help. > > Does anyone have any suggestions as what could be wrong? Is there a way > to test the RBLs other then looking for results in the log files? > > Thanks a bunch! --Tom -- Julian Field www.MailScanner.info Professional Support Services at www.MailScanner.biz MailScanner thanks transtec Computers for their support Buy the MailScanner book at www.MailScanner.info/store PGP footprint: EE81 D763 3DB0 0BFD E1DC 7222 11F6 5947 1415 B654 ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From Kevin at MICA.NET Tue Oct 5 21:25:54 2004 From: Kevin at MICA.NET (Kevin Hanser) Date: Thu Jan 12 21:27:08 2006 Subject: Multiple actions in a ruleset Message-ID: I just want to clarify the syntax if I want to have a ruleset rule that has multiple actions. For example, a domain that wants their spam quarantined, but still receive a notification. The ruleset I think to do this would be: To: domain.com store notify I just want to confirm the syntax for multiple actions like this... Do I separate them w/a space as I have here, or do I use a comma, like this: To: domain.com store,notify I want to confirm this because I just noticed a bug in my msre application when you have multiple actions like this, and I want to confirm the correct syntax before I correct my application. Thx k ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From mailscan at PRIS.CA Tue Oct 5 21:36:25 2004 From: mailscan at PRIS.CA (MailScanner Mailbox) Date: Thu Jan 12 21:27:08 2006 Subject: tiff causing DOS message Message-ID: Hello Julian Scanning the file by itself produces the following output: ----------- SCAN SUMMARY ----------- Known viruses: 24829 Scanned directories: 0 Scanned files: 1 Infected files: 0 Data scanned: 2.46 MB I/O buffer size: 131072 bytes Time: 103.994 sec (1 m 43 s) Now when I look at this, it took almost 2 minutes to scan the file, I'm assuming that this is what is causing the DOS message. When I scan a file of similar size it only takes a little over a 1/3 of the time. ----------- SCAN SUMMARY ----------- Known viruses: 24829 Scanned directories: 0 Scanned files: 1 Infected files: 0 Data scanned: 3.33 MB I/O buffer size: 131072 bytes Time: 28.532 sec (0 m 28 s) So now that I think I know why its doing it, is there a way to prevent this from happening. Thank you for the help Rick On Tue, 5 Oct 2004, Julian Field wrote: > What happens when you try to scan the tif manually? > > At 23:32 04/10/2004, you wrote: > >Hello > > > >We have a customer that is attempting to send a tif file that is a little > >over 3.5 mb, when trying to send he receives the following error: > > > >The following e-mails were found to have: Virus Detected > > > > Sender: xxxxxx@pris.bc.ca > >IP Address: 64.114.126.175 > > Recipient: xxxxxx@peacecountry.com > > Subject: '...are' sticker > > MessageID: i94Kea0D007039 > > Report: Denial of Service attack in message! > > Denial of Service attack in message! > > > > > >The interesting part of the df file is: > > > >--============_-1115191450==_============ > >Content-Type: text/plain; charset="us-ascii" ; format="flowed" > > > >hello doris & frances, > > > >please find the attached layout of the sticker that you requested. > > > > > >thanks! > > > >jesh 250-782-6068 > >--============_-1115191450==_============ > >Content-Id: > >Content-Type: image/tiff; name="are.tif" > > ; x-mac-type="54494646" > > ; x-mac-creator="3842494D" > >Content-Disposition: attachment; filename="are.tif" > >Content-Transfer-Encoding: base64 > > > > > >I have looked as best I can but cannot find a reason for this, we are > >running MS-4.33.3 with ClamAV-0.80rc2 > > -- > Julian Field > www.MailScanner.info > MailScanner thanks transtec Computers for their support > Buy the MailScanner book at www.MailScanner.info/store > > PGP footprint: EE81 D763 3DB0 0BFD E1DC 7222 11F6 5947 1415 B654 > > ------------------------ MailScanner list ------------------------ > To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: > 'leave mailscanner' in the body of the email. > Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and > the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). > ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From combs at magnet.fsu.edu Tue Oct 5 21:37:45 2004 From: combs at magnet.fsu.edu (Tom Combs) Date: Thu Jan 12 21:27:08 2006 Subject: Why aren't RBL checks running? Message-ID: Julian, Yes that's true, all the email coming to the new server is being sent via the current production server so that must be why the RBLs aren't finding anything. Good to know that I'm not on any of the RBLs! Thanks again, I'm always amazed and your quality and quantity of work/help. --Tom >Date: Tue, 5 Oct 2004 21:18:22 +0100 >From: Julian Field >Subject: Re: Why aren't RBL checks running? >Comments: To: Tom Combs >To: MAILSCANNER@JISCMAIL.AC.UK > >Is mail coming to this system straight from the outside world, or is it all >coming via one of your own servers? The MailScanner "Spam List" checks only >check the other end of the incoming SMTP connection. So if it's all coming >via one of your own servers, it won't find anything. The RBL checks that >SpamAssassin can do will still work, though. > > Tom Combs E-mail: combs@magnet.fsu.edu National High Magnetic Field Laboratory Phone: (850) 644-1657 1800 E. Paul Dirac Drive Tallahassee, FL 32310 ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From dean at SAHRA.ARIZONA.EDU Tue Oct 5 22:32:06 2004 From: dean at SAHRA.ARIZONA.EDU (Dean Jones) Date: Thu Jan 12 21:27:08 2006 Subject: MailScanner + SA3 + SURBL not registering. Message-ID: Hate to come back to this issue but i guess i will :) Upgraded to Mailscanner 4.34.8 today and SURBL checks stopped again. the only thing i changed was installing the new MIME-Base64 and MIME-Tools (and requirements) via CPAN. Then i installed the new MailScanner. All config files are in the right places and RBL is working.. guess i'm back to square one! heh Julian Field wrote: > On line 249 on install.rpm-fns.sh, add "--force" to the rpm command > options. > > At 11:05 05/10/2004, you wrote: > >> Unfortunately even deleting Net::DNS and reinstalling did not get URI >> started, also the 'solaris' fix did not work. >> >> Is there any way I can do a forced re-install off all the perl modules in >> install-Clam-SA.tar.gz ?? >> >> >> >> On Fri, 1 Oct 2004, Dean Jones wrote: >> >>> Remco Barendse wrote: >>> >>>> Strange.... I can confirm the same problem. >>>> >>>> I don't know how to remove a perl module, after the suggestion on this >>>> list I simply re-installed the tarball and restarted MailScanner but >>>> still >>>> no URI hits from MS. >>>> >>>> Can I do a forced re-install of all the perl modules in the >>>> install-SA-CLAMAV package? >>> >>> >>> hye, >>> >>> this is what i did to finally get Net::DNS to fully re-install. >>> it is probably not the 'proper' way to do this, so please be careful. >>> When i upgraded to SA 3 i used the CPAN shell to make sure Net::DNS was >>> upgraded. apparantly this wasn't enough. >>> >>> Make sure spamassassin/mailscanner isn't running or doing checks while >>> you do this. >>> I dloaded the version of Net::DNS i needed from cpan.org. >>> Then i found my perl install and lib/site_perl/5.8.4/Net >>> After backing it up, i removed the DNS.pm and >>> lib/site_perl/5.8.4/Net/DNS directory. >>> Then i re-compiled and installed from the tar.gz i dloaded from >>> cpan.org. >>> >>> Fired MailScanner back up and RBL and URIBL checks were both working. >>> >>> Hopefully that will do it for you. >>> >>> >>> >>>> >>>> On Fri, 1 Oct 2004, Julian Field wrote: >>>> >>>>> I haven't changed the SA3 code, it all works on my production and >>>>> development systems, as do Steve's systems. >>>>> >>>>> At 21:47 30/09/2004, you wrote: >>>>> >>>>>> This issue has been reported by myself and Ugo earlier this week >>>>>> on the list. I'm at a loss too. When the next version of MS >>>>>> comes out, I will upgrade and see if the problem remains. >>>>>> >>>>>> Jeff Earickson >>>>>> Colby College >>>>>> >>>>>> On Thu, 30 Sep 2004, Dean Jones wrote: >>>>>> >>>>>>> Date: Thu, 30 Sep 2004 12:49:31 -0700 >>>>>>> From: Dean Jones >>>>>>> Reply-To: MailScanner mailing list >>>>>>> To: MAILSCANNER@JISCMAIL.AC.UK >>>>>>> Subject: Re: MailScanner + SA3 + SURBL not registering. >>>>>>> >>>>>>> Steve Swaney wrote: >>>>>>> >>>>>>>>>> SNIPPED <<< >>>>>>>>> >>>>>>>>> >>>>>>>>> >>>>>>>>> Doing the command that you suggested manages to make the SURBL >>>>>>>>> checks >>>>>>>>> work. >>>>>>>>> >>>>>>>>> It almost as if there is a spamassassin option in MailScanner.conf >>>>>>>>> that >>>>>>>>> turns it off. >>>>>>>> >>>>>>>> >>>>>>>> >>>>>>>> >>>>>>>> There is a command in MailScanner that turns SpamAssassin off; >>>>>>>> >>>>>>>> Use SpamAssassin = yes >>>>>>>> >>>>>>>> But if you have SpamAssassin turned on in MS and the test above >>>>>>>> works, >>>>>>>> MailScanner should run the exactly as the test does. How are you >>>>>>>> sure >>>>>>>> thst >>>>>>>> MS is not running the tests? >>>>>>> >>>>>>> >>>>>>> >>>>>>> Use SpamAssassin is set to yes, and SA is doing other checks. >>>>>>> >>>>>>> The only way i have to guess is just by the data SA drops into the >>>>>>> logs. >>>>>>> It never hits on any URIBL_* scores running natively. >>>>>>> >>>>>>> I can forward SURBL test emails through from outside addresses >>>>>>> and they >>>>>>> don't get hit by the SURBL checks. >>>>>>> >>>>>>> I'm at a loss :) >>>>>>> otherwise SA 3 is working great. >>>>> >>>>> >>>>> >>>>> -- >>>>> Julian Field >>>>> www.MailScanner.info >>>>> MailScanner thanks transtec Computers for their support >>>>> Buy the MailScanner book at www.MailScanner.info/store >>>>> >>>>> PGP footprint: EE81 D763 3DB0 0BFD E1DC 7222 11F6 5947 1415 B654 >>>>> >>>>> ------------------------ MailScanner list ------------------------ >>>>> To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: >>>>> 'leave mailscanner' in the body of the email. >>>>> Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and >>>>> the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). >>>> >>>> >>>> ------------------------ MailScanner list ------------------------ >>>> To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: >>>> 'leave mailscanner' in the body of the email. >>>> Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and >>>> the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). >>> >>> >>> ------------------------ MailScanner list ------------------------ >>> To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: >>> 'leave mailscanner' in the body of the email. >>> Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and >>> the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). >>> >> >> ------------------------ MailScanner list ------------------------ >> To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: >> 'leave mailscanner' in the body of the email. >> Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and >> the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). > > > -- > Julian Field > www.MailScanner.info > MailScanner thanks transtec Computers for their support > Buy the MailScanner book at www.MailScanner.info/store > > PGP footprint: EE81 D763 3DB0 0BFD E1DC 7222 11F6 5947 1415 B654 > > ------------------------ MailScanner list ------------------------ > To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: > 'leave mailscanner' in the body of the email. > Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and > the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From clicknow at SWIFTDSL.COM.AU Tue Oct 5 23:30:01 2004 From: clicknow at SWIFTDSL.COM.AU (Brian Parish) Date: Thu Jan 12 21:27:08 2006 Subject: change from sendmail to postfix - messages now stuck in hold Message-ID: On Mon, 2004-10-04 at 17:52, Julian Field wrote: > Please kill all your MailScanner processes, set > Debug = yes > in MailScanner.conf and then run check_mailscanner. > That should print up an error message. If it just sits there, there are no > messages in the incoming queue, so wait for 1 to arrive. OK - seems that the problem was permissions. /var/spool/MailScanner/incoming was owned by root. Changed this to postfix and all seems OK. I presume that this is the correct owner? thanks and regards Brian ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From nicks at ONTHENET.COM.AU Wed Oct 6 00:33:21 2004 From: nicks at ONTHENET.COM.AU (Nick Slager) Date: Thu Jan 12 21:27:08 2006 Subject: change from sendmail to postfix - messages now stuck in hold Message-ID: Thus spake Brian Parish (clicknow@SWIFTDSL.COM.AU): > OK - seems that the problem was permissions. > /var/spool/MailScanner/incoming was owned by root. Changed this to > postfix and all seems OK. I presume that this is the correct owner? Yes :-) Nick ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From vboulytchev at COINFOTECH.COM Wed Oct 6 00:38:41 2004 From: vboulytchev at COINFOTECH.COM (Boulytchev, Vasiliy) Date: Thu Jan 12 21:27:08 2006 Subject: MailScanner-4.34.8-1 Installation Problems Message-ID: I am building as root... Thanks, Vasiliy Boulytchev Colorado Information Technologies, Inc. http://www.coinfotech.com -----Original Message----- From: MailScanner mailing list [mailto:MAILSCANNER@JISCMAIL.AC.UK] On Behalf Of Scott Silva Sent: Tuesday, October 05, 2004 12:03 PM To: MAILSCANNER@JISCMAIL.AC.UK Subject: Re: MailScanner-4.34.8-1 Installation Problems -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Boulytchev, Vasiliy wrote: | On the same note, | | | | Processing files: perl-Net-CIDR-0.09-3 | error: File not found: | /var/tmp/perl-Net-CIDR-0.09-3-root/usr/share/man/man3/Net::CIDR.3pm | | | RPM build errors: | File not found: | /var/tmp/perl-Net-CIDR-0.09-3-root/usr/share/man/man3/Net::CIDR.3pm | | | Thanks, | Vasiliy Boulytchev | Colorado Information Technologies, Inc. | http://www.coinfotech.com | | | | ---------------------------------------------------------------------- | -- | *From:* MailScanner mailing list [mailto:MAILSCANNER@JISCMAIL.AC.UK] | *On Behalf Of *Boulytchev, Vasiliy | *Sent:* Tuesday, October 05, 2004 11:33 AM | *To:* MAILSCANNER@JISCMAIL.AC.UK | *Subject:* Re: MailScanner-4.34.8-1 Installation Problems | | Errors: | #rpmbuild --rebuild perl-Archive-Zip-1.13-1.src.rpm | | SNIP | Processing files: perl-Archive-Zip-1.13-1 | error: File not found: | /var/tmp/perl-Archive-Zip-1.13-1-root/usr/share/man/man3/Archive::Zip::Tree. 3pm | error: File not found: | /var/tmp/perl-Archive-Zip-1.13-1-root/usr/share/man/man3/Archive::Zip. | 3pm | error: File not found: | /var/tmp/perl-Archive-Zip-1.13-1-root/usr/share/man/man3/Archive::Zip::FAQ.3 pm | error: File not found: | /var/tmp/perl-Archive-Zip-1.13-1-root/usr/share/man/man3/Archive::Zip::Membe rRead.3pm | | | RPM build errors: | File not found: | /var/tmp/perl-Archive-Zip-1.13-1-root/usr/share/man/man3/Archive::Zip::Tree. 3pm | File not found: | /var/tmp/perl-Archive-Zip-1.13-1-root/usr/share/man/man3/Archive::Zip.3pm | File not found: | /var/tmp/perl-Archive-Zip-1.13-1-root/usr/share/man/man3/Archive::Zip::FAQ.3 pm | File not found: | /var/tmp/perl-Archive-Zip-1.13-1-root/usr/share/man/man3/Archive::Zip::Membe rRead.3pm | | | So, went looking in the | /var/tmp/perl-Archive-Zip-1.13-1-root/usr/share/man/man3/ | ALL FILES ARE THERE, except bziped, not a .3pm, so when i "bzip2 -d *" | they come out. | | | | Another part of the rpmbuild, which is responsible for the errors above: | | SNIP | Appending installation info to | /var/tmp/perl-Archive-Zip-1.13-1-root/usr/lib/perl5/5.8.3/i386-linux-thread- multi/perllocal.pod | + '[' -x /usr/lib/rpm/brp-compress ']' | + /usr/lib/rpm/brp-compress | bzip2: Bad flag `-n' | bzip2, a block-sorting file compressor. Version 1.0.2, 30-Dec-2001. | | usage: bzip2 [flags and input files in any order] | | -h --help print this message | -d --decompress force decompression | -z --compress force compression | -k --keep keep (don't delete) input files | -f --force overwrite existing output files | -t --test test compressed file integrity | -c --stdout output to standard out | -q --quiet suppress noncritical error messages | -v --verbose be verbose (a 2nd -v gives more) | -L --license display software version & license | -V --version display software version & license | -s --small use less memory (at most 2500k) | -1 .. -9 set block size to 100k .. 900k | --fast alias for -1 | --best alias for -9 | | If invoked as `bzip2', default action is to compress. | as `bunzip2', default action is to decompress. | as `bzcat', default action is to decompress to stdout. | | If no file names are given, bzip2 compresses or decompresses | from standard input to standard output. You can combine | short flags, so `-v -4' means the same as -v4 or -4v, &c. | | bzip2: Bad flag `-n' | SNIP | | | | So what I did, is edited /usr/lib/rpm/brp-compress and took out the -n | option, which is by the way not part of bzip2........ Anyways, then | everything compiled just fine. I am having almost same issues with | zlib as stated below. | | WHATS GOING ON! :( | | | | | | Thanks, | Vasiliy Boulytchev | Colorado Information Technologies, Inc. | http://www.coinfotech.com | | | If you are not building as root, do you have a valid .rpmmacros file for the user you are building as? -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.1 (MingW32) Comment: Using GnuPG with Thunderbird - http://enigmail.mozdev.org iD8DBQFBYuHURADw9lziUqQRAqrMAJ0VGWift0ovPNWbMl53mErTI8en5wCfXzkO /1ZII5o+JpSfdQ1AoKefYYM= =NZKU -----END PGP SIGNATURE----- ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). [ Part 2, Application/X-PKCS7-SIGNATURE 5.9KB. ] [ Unable to print this part. ] From vboulytchev at COINFOTECH.COM Wed Oct 6 00:40:14 2004 From: vboulytchev at COINFOTECH.COM (Boulytchev, Vasiliy) Date: Thu Jan 12 21:27:08 2006 Subject: MailScanner-4.34.8-1 Installation Problems Message-ID: Is it just some systems having issues? This is on Mandrake 10.0 Thanks, Vasiliy Boulytchev Colorado Information Technologies, Inc. http://www.coinfotech.com -----Original Message----- From: MailScanner mailing list [mailto:MAILSCANNER@JISCMAIL.AC.UK] On Behalf Of Julian Field Sent: Tuesday, October 05, 2004 10:54 AM To: MAILSCANNER@JISCMAIL.AC.UK Subject: Re: MailScanner-4.34.8-1 Installation Problems But the perl module dependencies are added automatically when the RPM is built, apparently taken from the Makefile.PL contents. I'm not sure how to build the RPM's without it using this information. There doesn't appear to be an easy way to do it. Anyone know how to do this with rpmbuild? At 17:17 05/10/2004, you wrote: >Julian > >There appears to be a bug in the logic of install.sh. You should not be >using Perl to check for the presence of modules since Perl will find >them even when they were not installed by RPM. > >This causes a problem because when you install a RPM binary it seems to >check whether dependent modules are present by reference to the RPM >database. > >However a module may have been installed earlier by non-RPM means. Your >script decides whether a module is present or not by using Perl. This >will find the module when it was _not_ installed by RPM. You then skip >the necessary rpmbuild and rpm -Uvh steps needed to update the RPM >database. > >This was the case with Compress-Zlib. It _is_ installed on the system >but is not in the RPM database. However the binary RPM for Archive-Zip >expects to see Compress-Zlib in the list of RPM-installed modules. > > > >Quentin >--- >PHONE: +44 191 222 8209 Information Systems and Services (ISS), > University of Newcastle, > Newcastle upon Tyne, >FAX: +44 191 222 8765 United Kingdom, NE1 7RU. >----------------------------------------------------------------------- >- "Any opinion expressed above is mine. The University can get its >own." > > >-----Original Message----- > >From: MailScanner mailing list > >[mailto:MAILSCANNER@JISCMAIL.AC.UK] On Behalf Of Quentin Campbell > >Sent: 05 October 2004 15:04 > >To: MAILSCANNER@JISCMAIL.AC.UK > >Subject: Re: MailScanner-4.34.8-1 Installation Problems > > > >Julian > > > >I have just upgraded two RedHat AS/ES 3 systems to 4-34.8-1 but the > >attempt to ugrade a third AS 3 system failed in install.sh with: > > > > error: Failed dependencies: > > perl (Compress::Zlib) is needed by perl-Archive-Zip-1.13-1. > > > >Using CPAN and "installing Compress::Zlib" I am told that it is up to > >date! > > > >However looking a bit more closely I find that on the two systems on > >which 4.34.8-1 was successfully installed there is present the files > > > > /usr/src/redhat/RPMS/i386/perl-Compress-Zlib-1.33-1.i396.rpm > > > >/usr/src/redhat/RPMS/i386/perl-Compress-Zlib-debuginfo-1.33-1.i396.rp > >m > > > > > >These are not present in the system on which install.sh is failing. I > >assume it should thus install the perl-Compress-Zlib-1.33-2.i396.rpm > >you provide on the download for RedHat systems. > > > >However this begs the question as to why the later version you > >provide > >(1.33-2) is not installed in place of the existing version (1.33-1) > >on my two successful builds. > > > > > >>-----Original Message----- > >>From: MailScanner mailing list > >>[mailto:MAILSCANNER@JISCMAIL.AC.UK] On Behalf Of Julian Field > >>Sent: 05 October 2004 03:42 > >>To: MAILSCANNER@JISCMAIL.AC.UK > >>Subject: Re: MailScanner-4.34.8-1 Installation Problems > >> > >>At 00:11 05/10/2004, you wrote: > >> > >>>Ladies and Gents, > >>> rpmbuild --rebuild perl-Archive-Zip-1.13-1.src.rpm yields > >>>serveral errors. Some of which had inherent bzip2 syntax > >>problems. What > >>> is the issue? After editing the following > >>/usr/lib/rpm/brp-compress, and > >>> taking off the "-n" directive, then everything went through. Now > >>> its doing some more weirdness with perl-Compress-Zlib-1.33-2.src.rpm. > >>> > >>>What is going on??? > >>> > >>>Processing files: perl-Compress-Zlib-1.33-2 > >>>error: File not found: > >>>/var/tmp/perl-Compress-Zlib-1.33-2-root/usr/lib/perl5/site_per > >>l/5.8.3/i386-linux-thread-multi/auto/Compress/Zlib/Zlib.bs > >>> > >>>RPM build errors: > >>> File not found: > >>> > >>/var/tmp/perl-Compress-Zlib-1.33-2-root/usr/lib/perl5/site_perl > >>/5.8.3/i386-linux-thread-multi/auto/Compress/Zlib/Zlib.bs > >> > >>Something failed in the "make" stage of building perl-Compress-Zlib. > >>Suggest you take a good look at the output from that rebuild. -- Julian Field www.MailScanner.info Professional Support Services at www.MailScanner.biz MailScanner thanks transtec Computers for their support Buy the MailScanner book at www.MailScanner.info/store PGP footprint: EE81 D763 3DB0 0BFD E1DC 7222 11F6 5947 1415 B654 ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). [ Part 2, Application/X-PKCS7-SIGNATURE 5.9KB. ] [ Unable to print this part. ] From admin at thenamegame.com Wed Oct 6 04:15:58 2004 From: admin at thenamegame.com (Michael Freeman) Date: Thu Jan 12 21:27:08 2006 Subject: Auto-Whitelist growing Message-ID:

Since upgrading to SA3.0 the auto-whitelist file is growing by leaps and bound. Anyone know why?

-rw------- 1 root root 1290240 Oct 5 22:59 auto-whitelist

This file is in the same directory as my bayes files. Why is it being populated?

------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words:
'leave mailscanner' in the body of the email.
Before posting, read the MAQ (http://www.mailscanner.biz/maq/)
and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From bg.mahesh at INDIAINFO.COM Wed Oct 6 07:28:05 2004 From: bg.mahesh at INDIAINFO.COM (BG Mahesh) Date: Thu Jan 12 21:27:08 2006 Subject: Installation problems with MS 4.34.8-1/MIME::QuotedPrint Message-ID: % ./install.sh ignore-perl --nodeps Installing tnef decoder Preparing... ########################################### [100%] package tnef-1.2.3.1-1 is already installed Now to install MailScanner itself. error: Failed dependencies: perl(MIME::QuotedPrint) >= 3.03 is needed by (installed) perl-MIME-tools-5.413-1 ----- Original Message ----- From: Julian Field Date: Tue, 5 Oct 2004 08:48:57 +0100 To: MAILSCANNER@JISCMAIL.AC.UK Subject: Re: Installation problems with MS 4.34.8-1/MIME::QuotedPrint > Try > ./install.sh --nodeps > > At 08:32 05/10/2004, you wrote: > >How to solve this problem :-( ? > > > >----- Original Message ----- > >From: BG Mahesh > >Date: Fri, 1 Oct 2004 16:09:52 +0530 > >To: MAILSCANNER@JISCMAIL.AC.UK > >Subject: Installation problems with MS 4.34.8-1/MIME::QuotedPrint > > > > > hi > > > > > > I am not able to install MS 4.34.8-1. The error message I get is, > > > > > > Installing tnef decoder > > > Preparing... ########################################### > > [100%] > > > package tnef-1.2.3.1-1 is already installed > > > > > > Now to install MailScanner itself. > > > > > > error: Failed dependencies: > > > perl(MIME::QuotedPrint) >= 3.03 is needed by (installed) > > perl-MIME-tools-5.413-1 > > > > > > My setup > > > > > > Redhat Linux > > > Perl 5.8.3 > > > MIME::QuotedPrint : 3.03 > > > MIME::Tools : 5.413 > > > MIME::Base64 : 3.03 > > > > > > What am I doing wrong? > > > > > > -- > > > B.G. Mahesh > > > bg.mahesh@indiainfo.com > > > http://www.indiainfo.com/ > > > > > > -- > > > ______________________________________________ > > > IndiaInfo Mail - the free e-mail service with a difference! > > www.indiainfo.com > > > Check out our value-added Premium features, such as an extra 20MB for > > mail storage, POP3, e-mail forwarding, and ads-free mailboxes! > > > > > > Powered by Outblaze > > > > > > ------------------------ MailScanner list ------------------------ > > > To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: > > > 'leave mailscanner' in the body of the email. > > > Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and > > > the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). > > > > > > > >-- > >B.G. Mahesh > >bg.mahesh@indiainfo.com > >http://www.indiainfo.com/ > > > >-- > >______________________________________________ > >IndiaInfo Mail - the free e-mail service with a difference! www.indiainfo.com > >Check out our value-added Premium features, such as an extra 20MB for mail > >storage, POP3, e-mail forwarding, and ads-free mailboxes! > > > >Powered by Outblaze > > > >------------------------ MailScanner list ------------------------ > >To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: > >'leave mailscanner' in the body of the email. > >Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and > >the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). > > -- > Julian Field > www.MailScanner.info > MailScanner thanks transtec Computers for their support > Buy the MailScanner book at www.MailScanner.info/store > > PGP footprint: EE81 D763 3DB0 0BFD E1DC 7222 11F6 5947 1415 B654 > > ------------------------ MailScanner list ------------------------ > To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: > 'leave mailscanner' in the body of the email. > Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and > the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). -- B.G. Mahesh bg.mahesh@indiainfo.com http://www.indiainfo.com/ -- ______________________________________________ IndiaInfo Mail - the free e-mail service with a difference! www.indiainfo.com Check out our value-added Premium features, such as an extra 20MB for mail storage, POP3, e-mail forwarding, and ads-free mailboxes! Powered by Outblaze ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From kevin at KEVINSPICER.CO.UK Wed Oct 6 09:10:28 2004 From: kevin at KEVINSPICER.CO.UK (Kevin Spicer) Date: Thu Jan 12 21:27:09 2006 Subject: MailScanner-MRTG new STABLE release Message-ID: This stable release is a recommended upgrade for anyone running releases prior to v0.09.03 (users of 0.09.03 need not upgrade as it is functionally identical to this release, the only difference being a single cosmetic change - a link to subscribe to this list!). On a personal note, I will be away on honeymoon for two weeks from this weekend, and I don't think my wife will take kindly to me slipping off to read my email. Please accept my apologies in advance if I'm not able to deal with any support issues in a timely manner. Please note that there are some changes in the config file on this release. The recomended way to upgrade the config file is by using upgrade_MailScanner_conf. For example on an rpm based system... $ cd /etc/MailScanner $ upgrade_MailScanner_conf mailscanner-mrtg.conf mailscanner-mrtg.conf.rpmnew > mailscanner-mrtg.conf.new $ mv mailscanner-mrtg.conf mailscanner-mrtg.conf.old $ mv mailscanner-mrtg.conf.new mailscanner-mrtg.conf New features and improvements since the 0.08 branch include the following... *Implementation of a timeout on data collection runs, to reduce impact on heavily laden systems *New way of counting quarantine files, to make it quicker and less resource intensive *Support for multiple quarantine and queue directories *Quarantine counts messages as well as files *Two new graphs. Batch Size and Processing Speed *Logging to syslog *Added helpful descriptions to the graphs *Now will not attempt to restart MailScanner if MailScanner was shut down using its init script. *More flexible way of dealing with all the various names MTA's use when logging Important fixes include.... *Fix spam ratio to work properly for people using RBL's in their MTA *Fix the Load average graph to show loads higher than 4, rather than clipping. See the full changelog for details of other fixes. ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). [ Part 2, "This is a digitally signed message part" ] [ Application/PGP-SIGNATURE 196bytes. ] [ Unable to print this part. ] From mailscanner at ecs.soton.ac.uk Wed Oct 6 09:52:27 2004 From: mailscanner at ecs.soton.ac.uk (Julian Field) Date: Thu Jan 12 21:27:09 2006 Subject: tiff causing DOS message Message-ID: That will be it. I can't remember whether you can change the timeout in MailScanner.conf or not, it's something that people never normally need to tweak. At 21:36 05/10/2004, you wrote: >Hello Julian > >Scanning the file by itself produces the following output: > >----------- SCAN SUMMARY ----------- >Known viruses: 24829 >Scanned directories: 0 >Scanned files: 1 >Infected files: 0 >Data scanned: 2.46 MB >I/O buffer size: 131072 bytes >Time: 103.994 sec (1 m 43 s) > >Now when I look at this, it took almost 2 minutes to scan the file, I'm >assuming that this is what is causing the DOS message. When I scan a file >of similar size it only takes a little over a 1/3 of the time. > > >----------- SCAN SUMMARY ----------- >Known viruses: 24829 >Scanned directories: 0 >Scanned files: 1 >Infected files: 0 >Data scanned: 3.33 MB >I/O buffer size: 131072 bytes >Time: 28.532 sec (0 m 28 s) > > >So now that I think I know why its doing it, is there a way to prevent >this from happening. > >Thank you for the help > >Rick > > >On Tue, 5 Oct 2004, Julian Field wrote: > > > What happens when you try to scan the tif manually? > > > > At 23:32 04/10/2004, you wrote: > > >Hello > > > > > >We have a customer that is attempting to send a tif file that is a little > > >over 3.5 mb, when trying to send he receives the following error: > > > > > >The following e-mails were found to have: Virus Detected > > > > > > Sender: xxxxxx@pris.bc.ca > > >IP Address: 64.114.126.175 > > > Recipient: xxxxxx@peacecountry.com > > > Subject: '...are' sticker > > > MessageID: i94Kea0D007039 > > > Report: Denial of Service attack in message! > > > Denial of Service attack in message! > > > > > > > > >The interesting part of the df file is: > > > > > >--============_-1115191450==_============ > > >Content-Type: text/plain; charset="us-ascii" ; format="flowed" > > > > > >hello doris & frances, > > > > > >please find the attached layout of the sticker that you requested. > > > > > > > > >thanks! > > > > > >jesh 250-782-6068 > > >--============_-1115191450==_============ > > >Content-Id: > > >Content-Type: image/tiff; name="are.tif" > > > ; x-mac-type="54494646" > > > ; x-mac-creator="3842494D" > > >Content-Disposition: attachment; filename="are.tif" > > >Content-Transfer-Encoding: base64 > > > > > > > > >I have looked as best I can but cannot find a reason for this, we are > > >running MS-4.33.3 with ClamAV-0.80rc2 -- Julian Field www.MailScanner.info MailScanner thanks transtec Computers for their support Buy the MailScanner book at www.MailScanner.info/store PGP footprint: EE81 D763 3DB0 0BFD E1DC 7222 11F6 5947 1415 B654 ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From mailscanner at ecs.soton.ac.uk Wed Oct 6 09:54:28 2004 From: mailscanner at ecs.soton.ac.uk (Julian Field) Date: Thu Jan 12 21:27:09 2006 Subject: Multiple actions in a ruleset Message-ID: At 21:25 05/10/2004, you wrote: >I just want to clarify the syntax if I want to have a ruleset rule that >has multiple actions. For example, a domain that wants their spam >quarantined, but still receive a notification. > >The ruleset I think to do this would be: > >To: domain.com store notify > >I just want to confirm the syntax for multiple actions like this... Do I >separate them w/a space as I have here, or do I use a comma, like this: > >To: domain.com store,notify You need to have a space in between them. Extra spaces and commas are fine too, but there must be at least one space. So store, notify and store notify are okay, but store,notify is not. -- Julian Field www.MailScanner.info MailScanner thanks transtec Computers for their support Buy the MailScanner book at www.MailScanner.info/store PGP footprint: EE81 D763 3DB0 0BFD E1DC 7222 11F6 5947 1415 B654 ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From mailscanner at ecs.soton.ac.uk Wed Oct 6 09:58:56 2004 From: mailscanner at ecs.soton.ac.uk (Julian Field) Date: Thu Jan 12 21:27:09 2006 Subject: Auto-Whitelist growing Message-ID: At 04:15 06/10/2004, you wrote: >Since upgrading to SA3.0 the auto-whitelist file is growing by leaps and >bound. Anyone know why? > >-rw------- 1 root root 1290240 Oct 5 22:59 auto-whitelist > >This file is in the same directory as my bayes files. Why is it being >populated? You need to turn off the auto_whitelist setting in spam.assassin.prefs.conf. For some reason, turning it off from the API doesn't appear to work any more. I might remove the MailScanner.conf option that does this. -- Julian Field www.MailScanner.info MailScanner thanks transtec Computers for their support Buy the MailScanner book at www.MailScanner.info/store PGP footprint: EE81 D763 3DB0 0BFD E1DC 7222 11F6 5947 1415 B654 ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From mailscanner at ecs.soton.ac.uk Wed Oct 6 10:00:46 2004 From: mailscanner at ecs.soton.ac.uk (Julian Field) Date: Thu Jan 12 21:27:09 2006 Subject: Installation problems with MS 4.34.8-1/MIME::QuotedPrint Message-ID: I'm going to ask for the dependency on MIME::QuotedPrint to be removed. It comes as part of MIME::Base64 anyway, so if you have the right version of that, you must have the right version of MIME::QuotedPrint as well. At 07:28 06/10/2004, you wrote: >% ./install.sh ignore-perl --nodeps > >Installing tnef decoder > >Preparing... ########################################### [100%] > package tnef-1.2.3.1-1 is already installed > >Now to install MailScanner itself. > >error: Failed dependencies: > perl(MIME::QuotedPrint) >= 3.03 is needed by (installed) > perl-MIME-tools-5.413-1 > >----- Original Message ----- >From: Julian Field >Date: Tue, 5 Oct 2004 08:48:57 +0100 >To: MAILSCANNER@JISCMAIL.AC.UK >Subject: Re: Installation problems with MS 4.34.8-1/MIME::QuotedPrint > > > Try > > ./install.sh --nodeps > > > > At 08:32 05/10/2004, you wrote: > > >How to solve this problem :-( ? > > > > > >----- Original Message ----- > > >From: BG Mahesh > > >Date: Fri, 1 Oct 2004 16:09:52 +0530 > > >To: MAILSCANNER@JISCMAIL.AC.UK > > >Subject: Installation problems with MS 4.34.8-1/MIME::QuotedPrint > > > > > > > hi > > > > > > > > I am not able to install MS 4.34.8-1. The error message I get is, > > > > > > > > Installing tnef decoder > > > > Preparing... ########################################### > > > [100%] > > > > package tnef-1.2.3.1-1 is already installed > > > > > > > > Now to install MailScanner itself. > > > > > > > > error: Failed dependencies: > > > > perl(MIME::QuotedPrint) >= 3.03 is needed by (installed) > > > perl-MIME-tools-5.413-1 > > > > > > > > My setup > > > > > > > > Redhat Linux > > > > Perl 5.8.3 > > > > MIME::QuotedPrint : 3.03 > > > > MIME::Tools : 5.413 > > > > MIME::Base64 : 3.03 > > > > > > > > What am I doing wrong? > > > > > > > > -- > > > > B.G. Mahesh > > > > bg.mahesh@indiainfo.com > > > > http://www.indiainfo.com/ > > > > > > > > -- > > > > ______________________________________________ > > > > IndiaInfo Mail - the free e-mail service with a difference! > > > www.indiainfo.com > > > > Check out our value-added Premium features, such as an extra 20MB for > > > mail storage, POP3, e-mail forwarding, and ads-free mailboxes! > > > > > > > > Powered by Outblaze > > > > > > > > ------------------------ MailScanner list ------------------------ > > > > To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: > > > > 'leave mailscanner' in the body of the email. > > > > Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and > > > > the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). > > > > > > > > > > > >-- > > >B.G. Mahesh > > >bg.mahesh@indiainfo.com > > >http://www.indiainfo.com/ > > > > > >-- > > >______________________________________________ > > >IndiaInfo Mail - the free e-mail service with a difference! > www.indiainfo.com > > >Check out our value-added Premium features, such as an extra 20MB for mail > > >storage, POP3, e-mail forwarding, and ads-free mailboxes! > > > > > >Powered by Outblaze > > > > > >------------------------ MailScanner list ------------------------ > > >To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: > > >'leave mailscanner' in the body of the email. > > >Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and > > >the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). > > > > -- > > Julian Field > > www.MailScanner.info > > MailScanner thanks transtec Computers for their support > > Buy the MailScanner book at www.MailScanner.info/store > > > > PGP footprint: EE81 D763 3DB0 0BFD E1DC 7222 11F6 5947 1415 B654 > > > > ------------------------ MailScanner list ------------------------ > > To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: > > 'leave mailscanner' in the body of the email. > > Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and > > the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). > > > >-- >B.G. Mahesh >bg.mahesh@indiainfo.com >http://www.indiainfo.com/ > >-- >______________________________________________ >IndiaInfo Mail - the free e-mail service with a difference! www.indiainfo.com >Check out our value-added Premium features, such as an extra 20MB for mail >storage, POP3, e-mail forwarding, and ads-free mailboxes! > >Powered by Outblaze > >------------------------ MailScanner list ------------------------ >To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: >'leave mailscanner' in the body of the email. >Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and >the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). -- Julian Field www.MailScanner.info MailScanner thanks transtec Computers for their support Buy the MailScanner book at www.MailScanner.info/store PGP footprint: EE81 D763 3DB0 0BFD E1DC 7222 11F6 5947 1415 B654 ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From mailscanner at ecs.soton.ac.uk Wed Oct 6 10:25:44 2004 From: mailscanner at ecs.soton.ac.uk (Julian Field) Date: Thu Jan 12 21:27:09 2006 Subject: Please try this: Re: Installation problems with MS 4.34.8-1/MIME::QuotedPrint Message-ID: Please can you try 4.34.8-2 which is available from RedHat: www.sng.ecs.soton.ac.uk/mailscanner/files/4/rpm/MailScanner-4.34.8-2.rpm.tar.gz SuSE: www.sng.ecs.soton.ac.uk/mailscanner/files/4/suse/MailScanner-4.34.8-2.suse.tar.gz Others: www.sng.ecs.soton.ac.uk/mailscanner/files/4/tar/MailScanner-install-4.34.8-2.tar.gz I have removed the MIME::QuotedPrint dependency, and made the MIME::Base64 dependency more strict instead. At 07:28 06/10/2004, you wrote: >% ./install.sh ignore-perl --nodeps > >Installing tnef decoder > >Preparing... ########################################### [100%] > package tnef-1.2.3.1-1 is already installed > >Now to install MailScanner itself. > >error: Failed dependencies: > perl(MIME::QuotedPrint) >= 3.03 is needed by (installed) > perl-MIME-tools-5.413-1 > >----- Original Message ----- >From: Julian Field >Date: Tue, 5 Oct 2004 08:48:57 +0100 >To: MAILSCANNER@JISCMAIL.AC.UK >Subject: Re: Installation problems with MS 4.34.8-1/MIME::QuotedPrint > > > Try > > ./install.sh --nodeps > > > > At 08:32 05/10/2004, you wrote: > > >How to solve this problem :-( ? > > > > > >----- Original Message ----- > > >From: BG Mahesh > > >Date: Fri, 1 Oct 2004 16:09:52 +0530 > > >To: MAILSCANNER@JISCMAIL.AC.UK > > >Subject: Installation problems with MS 4.34.8-1/MIME::QuotedPrint > > > > > > > hi > > > > > > > > I am not able to install MS 4.34.8-1. The error message I get is, > > > > > > > > Installing tnef decoder > > > > Preparing... ########################################### > > > [100%] > > > > package tnef-1.2.3.1-1 is already installed > > > > > > > > Now to install MailScanner itself. > > > > > > > > error: Failed dependencies: > > > > perl(MIME::QuotedPrint) >= 3.03 is needed by (installed) > > > perl-MIME-tools-5.413-1 > > > > > > > > My setup > > > > > > > > Redhat Linux > > > > Perl 5.8.3 > > > > MIME::QuotedPrint : 3.03 > > > > MIME::Tools : 5.413 > > > > MIME::Base64 : 3.03 > > > > > > > > What am I doing wrong? > > > > > > > > -- > > > > B.G. Mahesh > > > > bg.mahesh@indiainfo.com > > > > http://www.indiainfo.com/ > > > > > > > > -- > > > > ______________________________________________ > > > > IndiaInfo Mail - the free e-mail service with a difference! > > > www.indiainfo.com > > > > Check out our value-added Premium features, such as an extra 20MB for > > > mail storage, POP3, e-mail forwarding, and ads-free mailboxes! > > > > > > > > Powered by Outblaze > > > > > > > > ------------------------ MailScanner list ------------------------ > > > > To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: > > > > 'leave mailscanner' in the body of the email. > > > > Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and > > > > the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). > > > > > > > > > > > >-- > > >B.G. Mahesh > > >bg.mahesh@indiainfo.com > > >http://www.indiainfo.com/ > > > > > >-- > > >______________________________________________ > > >IndiaInfo Mail - the free e-mail service with a difference! > www.indiainfo.com > > >Check out our value-added Premium features, such as an extra 20MB for mail > > >storage, POP3, e-mail forwarding, and ads-free mailboxes! > > > > > >Powered by Outblaze > > > > > >------------------------ MailScanner list ------------------------ > > >To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: > > >'leave mailscanner' in the body of the email. > > >Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and > > >the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). > > > > -- > > Julian Field > > www.MailScanner.info > > MailScanner thanks transtec Computers for their support > > Buy the MailScanner book at www.MailScanner.info/store > > > > PGP footprint: EE81 D763 3DB0 0BFD E1DC 7222 11F6 5947 1415 B654 > > > > ------------------------ MailScanner list ------------------------ > > To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: > > 'leave mailscanner' in the body of the email. > > Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and > > the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). > > > >-- >B.G. Mahesh >bg.mahesh@indiainfo.com >http://www.indiainfo.com/ > >-- >______________________________________________ >IndiaInfo Mail - the free e-mail service with a difference! www.indiainfo.com >Check out our value-added Premium features, such as an extra 20MB for mail >storage, POP3, e-mail forwarding, and ads-free mailboxes! > >Powered by Outblaze > >------------------------ MailScanner list ------------------------ >To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: >'leave mailscanner' in the body of the email. >Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and >the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). -- Julian Field www.MailScanner.info MailScanner thanks transtec Computers for their support Buy the MailScanner book at www.MailScanner.info/store PGP footprint: EE81 D763 3DB0 0BFD E1DC 7222 11F6 5947 1415 B654 ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From marcin.rozek at IOS.EDU.PL Wed Oct 6 10:27:20 2004 From: marcin.rozek at IOS.EDU.PL ([ISO-8859-2] Marcin Ro�ek) Date: Thu Jan 12 21:27:09 2006 Subject: MailScanner-4.34.8-1 Installation Problems Message-ID: Boulytchev, Vasiliy wrote: > Is it just some systems having issues? This is on Mandrake 10.0 I had the same issue on Mandrake. Workaround is to remove -n from brp-compress (as already mentioned), install from cpan all perl modules that doesn't want to --rebuild and then install with --nodeps --force the rest that builds but complain about rpm's dependences. After that MS works fine (with sophossavi, clamavmodule and spamassasin 3) ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From marcin.rozek at IOS.EDU.PL Wed Oct 6 11:52:17 2004 From: marcin.rozek at IOS.EDU.PL ([ISO-8859-2] Marcin Ro�ek) Date: Thu Jan 12 21:27:09 2006 Subject: Please try this: Re: Installation problems with MS 4.34.8-1/MIME::QuotedPrint Message-ID: Julian Field wrote: > Please can you try 4.34.8-2 which is available from > > RedHat: > www.sng.ecs.soton.ac.uk/mailscanner/files/4/rpm/MailScanner-4.34.8-2.rpm.tar.gz Still no luck... Attempting to build and install perl-MIME-Base64-3.03-1 Instalacja perl-MIME-Base64-3.03-1.src.rpm Wykonywanie(%prep): /bin/sh -e /var/tmp/rpm-tmp.68280 + umask 022 + cd /usr/src/RPM/BUILD + cd /usr/src/RPM/BUILD + rm -rf MIME-Base64-3.03 + /usr/bin/gzip -dc /usr/src/RPM/SOURCES/MIME-Base64-3.03.tar.gz + tar -xf - + STATUS=0 + '[' 0 -ne 0 ']' + cd MIME-Base64-3.03 + exit 0 Wykonywanie(%build): /bin/sh -e /var/tmp/rpm-tmp.68280 + umask 022 + cd /usr/src/RPM/BUILD + cd MIME-Base64-3.03 + CFLAGS=-O2 -fomit-frame-pointer -pipe -march=i586 -mcpu=pentiumpro + perl Makefile.PL PREFIX=/var/tmp/perl-MIME-Base64-root/usr Checking if your kit is complete... Looks good Writing Makefile for MIME::Base64 + make cp QuotedPrint.pm blib/lib/MIME/QuotedPrint.pm cp Base64.pm blib/lib/MIME/Base64.pm /usr/bin/perl5.8.3 /usr/lib/perl5/5.8.3/ExtUtils/xsubpp -typemap /usr/lib/perl5/5.8.3/ExtUtils/typemap Base64.xs > Base64.xsc && mv Base64.xsc Base64.c gcc -c -D_REENTRANT -D_GNU_SOURCE -DTHREADS_HAVE_PIDS -fno-strict-aliasing -I/usr/local/include -D_LARGEFILE_SOURCE -D_FILE_OFFSET_BITS=64 -I/usr/include/gdbm -O2 -fomit-frame-pointer -pipe -march=i586 -mcpu=pentiumpro -DVERSION=\"3.03\" -DXS_VERSION=\"3.03\" -fPIC "-I/usr/lib/perl5/5.8.3/i386-linux-thread-multi/CORE" Base64.c Running Mkbootstrap for MIME::Base64 () chmod 644 Base64.bs rm -f blib/arch/auto/MIME/Base64/Base64.so LD_RUN_PATH="" gcc -shared -L/usr/local/lib Base64.o -o blib/arch/auto/MIME/Base64/Base64.so chmod 755 blib/arch/auto/MIME/Base64/Base64.so cp Base64.bs blib/arch/auto/MIME/Base64/Base64.bs chmod 644 blib/arch/auto/MIME/Base64/Base64.bs cp decode-qp blib/script/decode-qp /usr/bin/perl5.8.3 "-MExtUtils::MY" -e "MY->fixin(shift)" blib/script/decode-qp cp encode-qp blib/script/encode-qp /usr/bin/perl5.8.3 "-MExtUtils::MY" -e "MY->fixin(shift)" blib/script/encode-qp cp decode-base64 blib/script/decode-base64 /usr/bin/perl5.8.3 "-MExtUtils::MY" -e "MY->fixin(shift)" blib/script/decode-base64 cp encode-base64 blib/script/encode-base64 /usr/bin/perl5.8.3 "-MExtUtils::MY" -e "MY->fixin(shift)" blib/script/encode-base64 Manifying blib/man3/MIME::QuotedPrint.3pm Manifying blib/man3/MIME::Base64.3pm + make test Running Mkbootstrap for MIME::Base64 () chmod 644 Base64.bs rm -f blib/arch/auto/MIME/Base64/Base64.so LD_RUN_PATH="" gcc -shared -L/usr/local/lib Base64.o -o blib/arch/auto/MIME/Base64/Base64.so chmod 755 blib/arch/auto/MIME/Base64/Base64.so cp Base64.bs blib/arch/auto/MIME/Base64/Base64.bs chmod 644 blib/arch/auto/MIME/Base64/Base64.bs cp decode-qp blib/script/decode-qp /usr/bin/perl5.8.3 "-MExtUtils::MY" -e "MY->fixin(shift)" blib/script/decode-qp cp encode-qp blib/script/encode-qp /usr/bin/perl5.8.3 "-MExtUtils::MY" -e "MY->fixin(shift)" blib/script/encode-qp cp decode-base64 blib/script/decode-base64 /usr/bin/perl5.8.3 "-MExtUtils::MY" -e "MY->fixin(shift)" blib/script/decode-base64 PERL_DL_NONLAZY=1 /usr/bin/perl5.8.3 "-MExtUtils::Command::MM" "-e" "test_harness(0, 'blib/lib', 'blib/arch')" t/*.t t/bad-sv..........skipped all skipped: Perl::API needed for this test t/base64..........ok t/quoted-print....ok t/unicode.........ok t/warn............ok All tests successful, 1 test skipped. Files=5, Tests=339, 1 wallclock secs ( 0.26 cusr + 0.07 csys = 0.33 CPU) + exit 0 Wykonywanie(%install): /bin/sh -e /var/tmp/rpm-tmp.92698 + umask 022 + cd /usr/src/RPM/BUILD + cd MIME-Base64-3.03 + rm -rf /var/tmp/perl-MIME-Base64-root ++ perl -V:installarchlib + eval 'installarchlib='\''/usr/lib/perl5/5.8.3/i386-linux-thread-multi'\'';' ++ installarchlib=/usr/lib/perl5/5.8.3/i386-linux-thread-multi + mkdir -p /var/tmp/perl-MIME-Base64-root//usr/lib/perl5/5.8.3/i386-linux-thread-multi + make install Running Mkbootstrap for MIME::Base64 () chmod 644 Base64.bs rm -f blib/arch/auto/MIME/Base64/Base64.so LD_RUN_PATH="" gcc -shared -L/usr/local/lib Base64.o -o blib/arch/auto/MIME/Base64/Base64.so chmod 755 blib/arch/auto/MIME/Base64/Base64.so cp Base64.bs blib/arch/auto/MIME/Base64/Base64.bs chmod 644 blib/arch/auto/MIME/Base64/Base64.bs cp decode-qp blib/script/decode-qp /usr/bin/perl5.8.3 "-MExtUtils::MY" -e "MY->fixin(shift)" blib/script/decode-qp cp encode-qp blib/script/encode-qp /usr/bin/perl5.8.3 "-MExtUtils::MY" -e "MY->fixin(shift)" blib/script/encode-qp cp decode-base64 blib/script/decode-base64 /usr/bin/perl5.8.3 "-MExtUtils::MY" -e "MY->fixin(shift)" blib/script/decode-base64 cp encode-base64 blib/script/encode-base64 /usr/bin/perl5.8.3 "-MExtUtils::MY" -e "MY->fixin(shift)" blib/script/encode-base64 Installing /var/tmp/perl-MIME-Base64-root/usr/lib/perl5/5.8.3/i386-linux-thread-multi/auto/MIME/Base64/Base64.so Installing /var/tmp/perl-MIME-Base64-root/usr/lib/perl5/5.8.3/i386-linux-thread-multi/auto/MIME/Base64/Base64.bs Files found in blib/arch: installing files in blib/lib into architecture dependent library tree Installing /var/tmp/perl-MIME-Base64-root/usr/lib/perl5/5.8.3/i386-linux-thread-multi/MIME/QuotedPrint.pm Installing /var/tmp/perl-MIME-Base64-root/usr/lib/perl5/5.8.3/i386-linux-thread-multi/MIME/Base64.pm Installing /var/tmp/perl-MIME-Base64-root/usr/share/man/man3/MIME::QuotedPrint.3pm Installing /var/tmp/perl-MIME-Base64-root/usr/share/man/man3/MIME::Base64.3pm Installing /var/tmp/perl-MIME-Base64-root/usr/bin/decode-qp Installing /var/tmp/perl-MIME-Base64-root/usr/bin/encode-qp Installing /var/tmp/perl-MIME-Base64-root/usr/bin/decode-base64 Installing /var/tmp/perl-MIME-Base64-root/usr/bin/encode-base64 Writing /var/tmp/perl-MIME-Base64-root/usr/lib/perl5/5.8.3/i386-linux-thread-multi/auto/MIME/Base64/.packlist Appending installation info to /var/tmp/perl-MIME-Base64-root/usr/lib/perl5/5.8.3/i386-linux-thread-multi/perllocal.pod + '[' -x /usr/lib/rpm/brp-compress ']' + /usr/lib/rpm/brp-compress + find /var/tmp/perl-MIME-Base64-root/usr -type f -print + sed 's@^/var/tmp/perl-MIME-Base64-root@@g' + grep -v perllocal.pod + grep -v '\.packlist' ++ cat MIME-Base64-3.03-filelist + '[' '/usr/lib/perl5/5.8.3/i386-linux-thread-multi/auto/MIME/Base64/Base64.so /usr/lib/perl5/5.8.3/i386-linux-thread-multi/auto/MIME/Base64/Base64.bs /usr/lib/perl5/5.8.3/i386-linux-thread-multi/MIME/QuotedPrint.pm /usr/lib/perl5/5.8.3/i386-linux-thread-multi/MIME/Base64.pm /usr/share/man/man3/MIME::Base64.3pm.bz2 /usr/share/man/man3/MIME::QuotedPrint.3pm.bz2 /usr/bin/decode-qp /usr/bin/encode-qp /usr/bin/decode-base64 /usr/bin/encode-base64X' = X ']' + /usr/lib/rpm/brp-mandrake Cleaning files...done Compressing files...done Stripping files...done Relativisation of symlinks...done Clean perl...done Building libraries symlinks...done Processing files: perl-MIME-Base64-3.03-1 error: File not found: /var/tmp/perl-MIME-Base64-root/usr/lib/perl5/5.8.3/i386-linux-thread-multi/auto/MIME/Base64/Base64.bs RPM build errors: File not found: /var/tmp/perl-MIME-Base64-root/usr/lib/perl5/5.8.3/i386-linux-thread-multi/auto/MIME/Base64/Base64.bs Missing file /usr/src/RPM/RPMS/i386/perl-MIME-Base64-3.03-1.i386.rpm. Maybe it did not build correctly? ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From mailscanner at ecs.soton.ac.uk Wed Oct 6 12:04:41 2004 From: mailscanner at ecs.soton.ac.uk (Julian Field) Date: Thu Jan 12 21:27:09 2006 Subject: Please try this: Re: Installation problems with MS 4.34.8-1/MIME::QuotedPrint Message-ID: In which case you're going to have to install it from CPAN instead. It's only MIME::Base64 which you'll have to do that way. It's installing the file in the right place but then some other bit of the RPM building process is sitting on it. At 11:52 06/10/2004, you wrote: >Julian Field wrote: >>Please can you try 4.34.8-2 which is available from >> >>RedHat: >>www.sng.ecs.soton.ac.uk/mailscanner/files/4/rpm/MailScanner-4.34.8-2.rpm.tar.gz >Still no luck... > > >Attempting to build and install perl-MIME-Base64-3.03-1 >Instalacja perl-MIME-Base64-3.03-1.src.rpm >Wykonywanie(%prep): /bin/sh -e /var/tmp/rpm-tmp.68280 >+ umask 022 >+ cd /usr/src/RPM/BUILD >+ cd /usr/src/RPM/BUILD >+ rm -rf MIME-Base64-3.03 >+ /usr/bin/gzip -dc /usr/src/RPM/SOURCES/MIME-Base64-3.03.tar.gz >+ tar -xf - >+ STATUS=0 >+ '[' 0 -ne 0 ']' >+ cd MIME-Base64-3.03 >+ exit 0 >Wykonywanie(%build): /bin/sh -e /var/tmp/rpm-tmp.68280 >+ umask 022 >+ cd /usr/src/RPM/BUILD >+ cd MIME-Base64-3.03 >+ CFLAGS=-O2 -fomit-frame-pointer -pipe -march=i586 -mcpu=pentiumpro >+ perl Makefile.PL PREFIX=/var/tmp/perl-MIME-Base64-root/usr >Checking if your kit is complete... >Looks good >Writing Makefile for MIME::Base64 >+ make >cp QuotedPrint.pm blib/lib/MIME/QuotedPrint.pm >cp Base64.pm blib/lib/MIME/Base64.pm >/usr/bin/perl5.8.3 /usr/lib/perl5/5.8.3/ExtUtils/xsubpp -typemap >/usr/lib/perl5/5.8.3/ExtUtils/typemap Base64.xs > Base64.xsc && mv Base64.xsc >Base64.c >gcc -c -D_REENTRANT -D_GNU_SOURCE -DTHREADS_HAVE_PIDS -fno-strict-aliasing >-I/usr/local/include -D_LARGEFILE_SOURCE -D_FILE_OFFSET_BITS=64 >-I/usr/include/gdbm -O2 -fomit-frame-pointer -pipe -march=i586 >-mcpu=pentiumpro > -DVERSION=\"3.03\" -DXS_VERSION=\"3.03\" -fPIC >"-I/usr/lib/perl5/5.8.3/i386-linux-thread-multi/CORE" Base64.c >Running Mkbootstrap for MIME::Base64 () >chmod 644 Base64.bs >rm -f blib/arch/auto/MIME/Base64/Base64.so >LD_RUN_PATH="" gcc -shared -L/usr/local/lib Base64.o -o >blib/arch/auto/MIME/Base64/Base64.so >chmod 755 blib/arch/auto/MIME/Base64/Base64.so >cp Base64.bs blib/arch/auto/MIME/Base64/Base64.bs >chmod 644 blib/arch/auto/MIME/Base64/Base64.bs >cp decode-qp blib/script/decode-qp >/usr/bin/perl5.8.3 "-MExtUtils::MY" -e "MY->fixin(shift)" >blib/script/decode-qp >cp encode-qp blib/script/encode-qp >/usr/bin/perl5.8.3 "-MExtUtils::MY" -e "MY->fixin(shift)" >blib/script/encode-qp >cp decode-base64 blib/script/decode-base64 >/usr/bin/perl5.8.3 "-MExtUtils::MY" -e "MY->fixin(shift)" >blib/script/decode-base64 >cp encode-base64 blib/script/encode-base64 >/usr/bin/perl5.8.3 "-MExtUtils::MY" -e "MY->fixin(shift)" >blib/script/encode-base64 >Manifying blib/man3/MIME::QuotedPrint.3pm >Manifying blib/man3/MIME::Base64.3pm >+ make test >Running Mkbootstrap for MIME::Base64 () >chmod 644 Base64.bs >rm -f blib/arch/auto/MIME/Base64/Base64.so >LD_RUN_PATH="" gcc -shared -L/usr/local/lib Base64.o -o >blib/arch/auto/MIME/Base64/Base64.so >chmod 755 blib/arch/auto/MIME/Base64/Base64.so >cp Base64.bs blib/arch/auto/MIME/Base64/Base64.bs >chmod 644 blib/arch/auto/MIME/Base64/Base64.bs >cp decode-qp blib/script/decode-qp >/usr/bin/perl5.8.3 "-MExtUtils::MY" -e "MY->fixin(shift)" >blib/script/decode-qp >cp encode-qp blib/script/encode-qp >/usr/bin/perl5.8.3 "-MExtUtils::MY" -e "MY->fixin(shift)" >blib/script/encode-qp >cp decode-base64 blib/script/decode-base64 >/usr/bin/perl5.8.3 "-MExtUtils::MY" -e "MY->fixin(shift)" >blib/script/decode-base64 >PERL_DL_NONLAZY=1 /usr/bin/perl5.8.3 "-MExtUtils::Command::MM" "-e" >"test_harness(0, 'blib/lib', 'blib/arch')" t/*.t >t/bad-sv..........skipped > all skipped: Perl::API needed for this test >t/base64..........ok >t/quoted-print....ok >t/unicode.........ok >t/warn............ok >All tests successful, 1 test skipped. >Files=5, Tests=339, 1 wallclock secs ( 0.26 cusr + 0.07 csys = 0.33 CPU) >+ exit 0 >Wykonywanie(%install): /bin/sh -e /var/tmp/rpm-tmp.92698 >+ umask 022 >+ cd /usr/src/RPM/BUILD >+ cd MIME-Base64-3.03 >+ rm -rf /var/tmp/perl-MIME-Base64-root >++ perl -V:installarchlib >+ eval 'installarchlib='\''/usr/lib/perl5/5.8.3/i386-linux-thread-multi'\'';' >++ installarchlib=/usr/lib/perl5/5.8.3/i386-linux-thread-multi >+ mkdir -p >/var/tmp/perl-MIME-Base64-root//usr/lib/perl5/5.8.3/i386-linux-thread-multi >+ make install >Running Mkbootstrap for MIME::Base64 () >chmod 644 Base64.bs >rm -f blib/arch/auto/MIME/Base64/Base64.so >LD_RUN_PATH="" gcc -shared -L/usr/local/lib Base64.o -o >blib/arch/auto/MIME/Base64/Base64.so >chmod 755 blib/arch/auto/MIME/Base64/Base64.so >cp Base64.bs blib/arch/auto/MIME/Base64/Base64.bs >chmod 644 blib/arch/auto/MIME/Base64/Base64.bs >cp decode-qp blib/script/decode-qp >/usr/bin/perl5.8.3 "-MExtUtils::MY" -e "MY->fixin(shift)" >blib/script/decode-qp >cp encode-qp blib/script/encode-qp >/usr/bin/perl5.8.3 "-MExtUtils::MY" -e "MY->fixin(shift)" >blib/script/encode-qp >cp decode-base64 blib/script/decode-base64 >/usr/bin/perl5.8.3 "-MExtUtils::MY" -e "MY->fixin(shift)" >blib/script/decode-base64 >cp encode-base64 blib/script/encode-base64 >/usr/bin/perl5.8.3 "-MExtUtils::MY" -e "MY->fixin(shift)" >blib/script/encode-base64 >Installing >/var/tmp/perl-MIME-Base64-root/usr/lib/perl5/5.8.3/i386-linux-thread-multi/auto/MIME/Base64/Base64.so >Installing >/var/tmp/perl-MIME-Base64-root/usr/lib/perl5/5.8.3/i386-linux-thread-multi/auto/MIME/Base64/Base64.bs >Files found in blib/arch: installing files in blib/lib into architecture >dependent library tree >Installing >/var/tmp/perl-MIME-Base64-root/usr/lib/perl5/5.8.3/i386-linux-thread-multi/MIME/QuotedPrint.pm >Installing >/var/tmp/perl-MIME-Base64-root/usr/lib/perl5/5.8.3/i386-linux-thread-multi/MIME/Base64.pm >Installing >/var/tmp/perl-MIME-Base64-root/usr/share/man/man3/MIME::QuotedPrint.3pm >Installing /var/tmp/perl-MIME-Base64-root/usr/share/man/man3/MIME::Base64.3pm >Installing /var/tmp/perl-MIME-Base64-root/usr/bin/decode-qp >Installing /var/tmp/perl-MIME-Base64-root/usr/bin/encode-qp >Installing /var/tmp/perl-MIME-Base64-root/usr/bin/decode-base64 >Installing /var/tmp/perl-MIME-Base64-root/usr/bin/encode-base64 >Writing >/var/tmp/perl-MIME-Base64-root/usr/lib/perl5/5.8.3/i386-linux-thread-multi/auto/MIME/Base64/.packlist >Appending installation info to >/var/tmp/perl-MIME-Base64-root/usr/lib/perl5/5.8.3/i386-linux-thread-multi/perllocal.pod >+ '[' -x /usr/lib/rpm/brp-compress ']' >+ /usr/lib/rpm/brp-compress >+ find /var/tmp/perl-MIME-Base64-root/usr -type f -print >+ sed 's@^/var/tmp/perl-MIME-Base64-root@@g' >+ grep -v perllocal.pod >+ grep -v '\.packlist' >++ cat MIME-Base64-3.03-filelist >+ '[' '/usr/lib/perl5/5.8.3/i386-linux-thread-multi/auto/MIME/Base64/Base64.so >/usr/lib/perl5/5.8.3/i386-linux-thread-multi/auto/MIME/Base64/Base64.bs >/usr/lib/perl5/5.8.3/i386-linux-thread-multi/MIME/QuotedPrint.pm >/usr/lib/perl5/5.8.3/i386-linux-thread-multi/MIME/Base64.pm >/usr/share/man/man3/MIME::Base64.3pm.bz2 >/usr/share/man/man3/MIME::QuotedPrint.3pm.bz2 >/usr/bin/decode-qp >/usr/bin/encode-qp >/usr/bin/decode-base64 >/usr/bin/encode-base64X' = X ']' >+ /usr/lib/rpm/brp-mandrake >Cleaning files...done >Compressing files...done >Stripping files...done >Relativisation of symlinks...done >Clean perl...done >Building libraries symlinks...done >Processing files: perl-MIME-Base64-3.03-1 >error: File not found: >/var/tmp/perl-MIME-Base64-root/usr/lib/perl5/5.8.3/i386-linux-thread-multi/auto/MIME/Base64/Base64.bs > > >RPM build errors: > File not found: >/var/tmp/perl-MIME-Base64-root/usr/lib/perl5/5.8.3/i386-linux-thread-multi/auto/MIME/Base64/Base64.bs > > > >Missing file /usr/src/RPM/RPMS/i386/perl-MIME-Base64-3.03-1.i386.rpm. >Maybe it did not build correctly? -- Julian Field www.MailScanner.info MailScanner thanks transtec Computers for their support Buy the MailScanner book at www.MailScanner.info/store PGP footprint: EE81 D763 3DB0 0BFD E1DC 7222 11F6 5947 1415 B654 ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From bg.mahesh at INDIAINFO.COM Wed Oct 6 12:57:23 2004 From: bg.mahesh at INDIAINFO.COM (BG Mahesh) Date: Thu Jan 12 21:27:09 2006 Subject: Please try this: Re: Installation problems with MS 4.34.8-1/MIME::QuotedPrint Message-ID: Still doesn't works.. # pwd /usr/local/src/MailScanner-4.34.8-2 Installing tnef decoder Preparing... ########################################### [100%] package tnef-1.2.3.1-1 is already installed Now to install MailScanner itself. error: Failed dependencies: perl(MIME::QuotedPrint) >= 3.03 is needed by (installed) perl-MIME-tools-5.413-2 ----- Original Message ----- From: Julian Field Date: Wed, 6 Oct 2004 10:25:44 +0100 To: MAILSCANNER@JISCMAIL.AC.UK Subject: Please try this: Re: Installation problems with MS 4.34.8-1/MIME::QuotedPrint > Please can you try 4.34.8-2 which is available from > > RedHat: > www.sng.ecs.soton.ac.uk/mailscanner/files/4/rpm/MailScanner-4.34.8-2.rpm.tar.gz > > SuSE: > www.sng.ecs.soton.ac.uk/mailscanner/files/4/suse/MailScanner-4.34.8-2.suse.tar.gz > > Others: > www.sng.ecs.soton.ac.uk/mailscanner/files/4/tar/MailScanner-install-4.34.8-2.tar.gz > > I have removed the MIME::QuotedPrint dependency, and made the MIME::Base64 > dependency more strict instead. > -- B.G. Mahesh bg.mahesh@indiainfo.com http://www.indiainfo.com/ -- ______________________________________________ IndiaInfo Mail - the free e-mail service with a difference! www.indiainfo.com Check out our value-added Premium features, such as an extra 20MB for mail storage, POP3, e-mail forwarding, and ads-free mailboxes! Powered by Outblaze ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From mailscanner at ecs.soton.ac.uk Wed Oct 6 13:54:53 2004 From: mailscanner at ecs.soton.ac.uk (Julian Field) Date: Thu Jan 12 21:27:09 2006 Subject: Please try this: Re: Installation problems with MS 4.34.8-1/MIME::QuotedPrint Message-ID: Force it to uninstall MIME::Base64 and MIME-tools with rpm -e --nodeps perl-MIME-Base64 perl-MIME-tools then try again. At 12:57 06/10/2004, you wrote: >Still doesn't works.. > ># pwd >/usr/local/src/MailScanner-4.34.8-2 > >Installing tnef decoder > >Preparing... ########################################### [100%] > package tnef-1.2.3.1-1 is already installed > >Now to install MailScanner itself. > >error: Failed dependencies: > perl(MIME::QuotedPrint) >= 3.03 is needed by (installed) > perl-MIME-tools-5.413-2 > > > >----- Original Message ----- >From: Julian Field >Date: Wed, 6 Oct 2004 10:25:44 +0100 >To: MAILSCANNER@JISCMAIL.AC.UK >Subject: Please try this: Re: Installation problems with MS >4.34.8-1/MIME::QuotedPrint > > > Please can you try 4.34.8-2 which is available from > > > > RedHat: > > > www.sng.ecs.soton.ac.uk/mailscanner/files/4/rpm/MailScanner-4.34.8-2.rpm.tar.gz > > > > SuSE: > > > www.sng.ecs.soton.ac.uk/mailscanner/files/4/suse/MailScanner-4.34.8-2.suse.tar.gz > > > > Others: > > > www.sng.ecs.soton.ac.uk/mailscanner/files/4/tar/MailScanner-install-4.34.8-2.tar.gz > > > > I have removed the MIME::QuotedPrint dependency, and made the MIME::Base64 > > dependency more strict instead. -- Julian Field www.MailScanner.info MailScanner thanks transtec Computers for their support Buy the MailScanner book at www.MailScanner.info/store PGP footprint: EE81 D763 3DB0 0BFD E1DC 7222 11F6 5947 1415 B654 ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From devonharding at gmail.com Wed Oct 6 14:00:14 2004 From: devonharding at gmail.com (Devon Harding) Date: Thu Jan 12 21:27:09 2006 Subject: End user quarantine? Message-ID: Steve, has the Docs been completed yet? Curious on how to Install. On Mon, 4 Oct 2004 10:20:19 -0400, Devon Harding wrote: > This looks to be really impressive. Let us know when the INSTALL doc > will be available or a quick version of the doc would be nice. > > -Devon > > > > > On Sun, 3 Oct 2004 18:35:58 -0400, Steve Swaney wrote: > > > -----Original Message----- > > > From: MailScanner mailing list [mailto:MAILSCANNER@JISCMAIL.AC.UK] On > > > Behalf Of Devon Harding > > > Sent: Sunday, October 03, 2004 5:41 PM > > > To: MAILSCANNER@JISCMAIL.AC.UK > > > Subject: End user quarantine? > > > > > > Is there an end user quarantine feature available for MailScanner? I > > > would like the users to get an email a few time per day summarizing > > > all quarantine email with the ability to release them. IronMail and > > > MailFrontier both have this feature. > > > > > > Thanks, > > > > > > -Devon > > > > We have a client who paid us to develop just such scripts and has asked us > > to release the code we developed as Open Source Software. They quarantine > > all spam between x and y and then send each user a daily report of what the > > have in quarantine. > > > > I haven't finished the installation directions (just to busy this week) but > > if you're perl aware you can probably use these scripts with a little > > modification. > > > > The application: > > > > 1. Sends email report once a day to any user who has spam in quarantine > > > > 2. Example format of this email report; for each quarantined email: > > > > From: email_address_of_sender > > Subject: subject_line _of_email > > Click to view: link_to_view > > Click to Release: link_to_release > > > > 3. Links the spam emails to a web accessible directory with a ".web" > > extension for viewing. > > > > 4. Enables a release link mechanism on the server > > > > 5. Can be installed with MailWatch but does not need MailWatch to operate. > > > > INSTALL instructions should be finished in a few days but if you can't wait: > > > > http://www.fsl.com/support > > > > With many thanks to the IT staff at Douglas County Oregon, USA who worked > > with us to develop the scripts. Credit is also due to Kevin Potter, > > Information Technology Director at Douglas County who conceived of the > > concept and wrote the original shell scripts. > > > > I'll post again when the Steve > > Install instructions are complete. > > > > Steve Swaney > > President > > Fortress Systems Ltd. > > www.fsl.com > > steve.swaney@fsl.com > > > > -- > > This message has been scanned for viruses and > > dangerous content by MailScanner, and is > > believed to be clean. > > > > Fortress Systems Ltd. > > www.fsl.com > > > > > > > > ------------------------ MailScanner list ------------------------ > > To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: > > 'leave mailscanner' in the body of the email. > > Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and > > the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). > > > ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From xterm1 at TATORZ.COM Wed Oct 6 14:01:35 2004 From: xterm1 at TATORZ.COM (xterm1) Date: Thu Jan 12 21:27:09 2006 Subject: An FYI with wbel 3.0 Message-ID: Just a little For your information. I recently installed WhiteBox 3.0, and before I did updates via up2date I installed Mailscanner. When I dd finally start updates, the packages MailScanner installs breaks dependencies in the newer perl packages! Other then that I commend all that work on MailScanner! it is one fine product Brian -- This message has been scanned for viruses and dangerous content by MailScanner, and is believed to be clean. MailScanner thanks transtec Computers for their support. ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From mailscanner at ecs.soton.ac.uk Wed Oct 6 14:32:52 2004 From: mailscanner at ecs.soton.ac.uk (Julian Field) Date: Thu Jan 12 21:27:09 2006 Subject: Please try this: Re: Installation problems with MS 4.34.8-1/MIME::QuotedPrint Message-ID: Sorry, now I realise where it is getting all this information from! Please can you try 4.34.8-3 which is available from RedHat: www.sng.ecs.soton.ac.uk/mailscanner/files/4/rpm/MailScanner-4.34.8-3.rpm.tar.gz SuSE: www.sng.ecs.soton.ac.uk/mailscanner/files/4/suse/MailScanner-4.34.8-3.suse.tar.gz Others: www.sng.ecs.soton.ac.uk/mailscanner/files/4/tar/MailScanner-install-4.34.8-3.tar.gz At 13:54 06/10/2004, you wrote: >Force it to uninstall MIME::Base64 and MIME-tools with >rpm -e --nodeps perl-MIME-Base64 perl-MIME-tools >then try again. > >At 12:57 06/10/2004, you wrote: >>Still doesn't works.. >> >># pwd >>/usr/local/src/MailScanner-4.34.8-2 >> >>Installing tnef decoder >> >>Preparing... ########################################### >>[100%] >> package tnef-1.2.3.1-1 is already installed >> >>Now to install MailScanner itself. >> >>error: Failed dependencies: >> perl(MIME::QuotedPrint) >= 3.03 is needed by (installed) >>perl-MIME-tools-5.413-2 >> >> >> >>----- Original Message ----- >>From: Julian Field >>Date: Wed, 6 Oct 2004 10:25:44 +0100 >>To: MAILSCANNER@JISCMAIL.AC.UK >>Subject: Please try this: Re: Installation problems with MS >>4.34.8-1/MIME::QuotedPrint >> >> > Please can you try 4.34.8-2 which is available from >> > >> > RedHat: >> > >>www.sng.ecs.soton.ac.uk/mailscanner/files/4/rpm/MailScanner-4.34.8-2.rpm.tar.gz >> > >> > SuSE: >> > >>www.sng.ecs.soton.ac.uk/mailscanner/files/4/suse/MailScanner-4.34.8-2.suse.tar.gz >> > >> > Others: >> > >>www.sng.ecs.soton.ac.uk/mailscanner/files/4/tar/MailScanner-install-4.34.8-2.tar.gz >> > >> > I have removed the MIME::QuotedPrint dependency, and made the MIME::Base64 >> > dependency more strict instead. > >-- >Julian Field >www.MailScanner.info >MailScanner thanks transtec Computers for their support >Buy the MailScanner book at www.MailScanner.info/store > >PGP footprint: EE81 D763 3DB0 0BFD E1DC 7222 11F6 5947 1415 B654 > >------------------------ MailScanner list ------------------------ >To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: >'leave mailscanner' in the body of the email. >Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and >the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). -- Julian Field www.MailScanner.info MailScanner thanks transtec Computers for their support Buy the MailScanner book at www.MailScanner.info/store PGP footprint: EE81 D763 3DB0 0BFD E1DC 7222 11F6 5947 1415 B654 ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From danslists at CONPOINT.COM Wed Oct 6 14:34:25 2004 From: danslists at CONPOINT.COM (Dan Spray) Date: Thu Jan 12 21:27:09 2006 Subject: Need clarification on whitelist rules Message-ID: Okay, so now that I am back in the office, is there anyway to avoid having all of the recipients whitelisted when just one of the recipients has requested to be whitelisted? Dan -----Original Message----- From: MailScanner mailing list [mailto:MAILSCANNER@JISCMAIL.AC.UK] On Behalf Of Julian Field Sent: Friday, October 01, 2004 10:04 AM To: MAILSCANNER@JISCMAIL.AC.UK Subject: Re: Need clarification on whitelist rules At 15:26 01/10/2004, you wrote: > > -----Original Message----- > > From: MailScanner mailing list [mailto:MAILSCANNER@JISCMAIL.AC.UK]On > > Behalf Of Julian Field > > Sent: Friday, October 01, 2004 9:10 AM > > To: MAILSCANNER@JISCMAIL.AC.UK > > Subject: Re: Need clarification on whitelist rules > > > > > > At 14:56 01/10/2004, you wrote: > > > > -----Original Message----- > > > > From: MailScanner mailing list [mailto:MAILSCANNER@JISCMAIL.AC.UK]On > > > > Behalf Of Julian Field > > > > Sent: Friday, October 01, 2004 7:57 AM > > > > To: MAILSCANNER@JISCMAIL.AC.UK > > > > Subject: Re: Need clarification on whitelist rules > > > > > > > > > > > > > > > > > > > What you need is a Custom Function that edits the recipients > > list in each > > > > message, according to whether they want to be filtered or > > not. I've done > > > > something like this already, just haven't yet published it. > > > > > > > > What form would people like it in? Added to the per-user > > white and black > > > > list code? > > > > It would have to be a simple "remove them from the message if > > > > it's in their > > > > blacklist or not in their whitelist". > > > > > > > > Can people see any problems with this? Something is nagging > > me that this > > > > isn't the correct functionality, but I can't see what the > > right answer is > > > > for definite. > > > > -- > > > > > >I guess my first question is how it's tagged as spam when there is a rule > > >file for the spam scoring settings? If user A tagges as spam > > with a score of > > >5.0 and user B tagges it with a score of 7.5 how does the message get > > >tagged, since a score of 6.5 would flag as spam for user A and > > ham for user > > >B? > > > > We use it only for automatic spam deletion. In your example, user A would > > be removed from the list of recipients, and it would be normally delivered > > to user B. To use it for anything other than spam deletion is pretty much > > impossible. > > > > -- > >Isn't this what you are proposing above? > > > > > It would have to be a simple "remove them from the message if > > > > it's in their > > > > blacklist or not in their whitelist". > >so if you handle the white/black listing here if it's spam and whitelisted >don't remove them and if it's ham but blacklisted do remove them, or am I >missing something? > I would think where every the per user scoring is checked >if the whitelist/blacklist was checked as well it would simply adjust the >actual tagging as spam or ham the same as the scoring based tagging would, >the difference being if it scores as 6.5 and the user threshold is 7.5 but >it's blacklisted it would be tagged as spam and not ham? I don't understand that sentence at all, sorry. > I'm sorry if I am >coming across dense just looking for a way to simplify the overall code >changes -- Julian Field www.MailScanner.info MailScanner thanks transtec Computers for their support Buy the MailScanner book at www.MailScanner.info/store PGP footprint: EE81 D763 3DB0 0BFD E1DC 7222 11F6 5947 1415 B654 ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From jaearick at COLBY.EDU Wed Oct 6 14:52:27 2004 From: jaearick at COLBY.EDU (Jeff A. Earickson) Date: Thu Jan 12 21:27:09 2006 Subject: NO_DNS_FOR_FROM Message-ID: I have a production release of 3.0.0. I have added a comment about our issues with this to the bottom of bug 3494, and marked it "reopen". We will see what happens. They will probably need more info out of anybody who has encountered this issue (ie, "MailScanner -v" output). Jeff Earickson Colby College On Tue, 5 Oct 2004, Matt Kettler wrote: > Date: Tue, 5 Oct 2004 15:14:24 -0400 > From: Matt Kettler > Reply-To: MailScanner mailing list > To: MAILSCANNER@JISCMAIL.AC.UK > Subject: Re: NO_DNS_FOR_FROM > > At 02:24 PM 10/5/2004, Jeff A. Earickson wrote: >> I've noticed the same problem, my settings listed below. I've done >> some poking thru the SA 3.0 code to try and figure out what is going >> on, but I don't really know what I'm looking at. This smells like >> a bug in SA 3.0; it worked in 2.64 for me. > > It would appear there was a bug, but Dan Q tried to fix it before releasing > SA 3.0 final. > http://bugzilla.spamassassin.org/show_bug.cgi?id=3494 > > In which Dan Q tried to fix NO_DNS_FOR_FROM prior to 3.0's release. > > I'd double-check to make sure you've got a fully final copy of SA 3.0, not > a release candidate. > > grep NO_DNS_FOR_FROM /usr/share/spamassassin/*.cf > > Should return these lines: > > 20_dnsbl_tests.cf:header NO_DNS_FOR_FROM > eval:check_dns_sender() > 20_dnsbl_tests.cf:describe NO_DNS_FOR_FROM Envelope sender has no MX > or A DNS records > 20_dnsbl_tests.cf:tflags NO_DNS_FOR_FROM net > 30_text_de.cf:lang de describe NO_DNS_FOR_FROM Domain der Absendeadresse > nicht im DNS registriert (kein MX/A Eintrag) > 30_text_fr.cf:lang fr describe NO_DNS_FOR_FROM Adresse From: inconnue en > DNS (pas d'enregistrement MX) > 30_text_nl.cf:lang nl describe NO_DNS_FOR_FROM Domein in > Van heeft geen MX of A DNS record > 30_text_pl.cf:lang pl describe NO_DNS_FOR_FROM > > > > If you see this line: > > 20_head_tests.cf header NO_DNS_FOR_FROM eval:check_for_from_dns() > > You've got rules from an outdated release. I know the old code was in pre4 > and earlier, and not in rc3 and later, but I don't have copies of rc1 and > rc2 on hand to check those. > > ------------------------ MailScanner list ------------------------ > To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: > 'leave mailscanner' in the body of the email. > Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and > the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). > ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From mailscanner at ecs.soton.ac.uk Wed Oct 6 15:31:30 2004 From: mailscanner at ecs.soton.ac.uk (Julian Field) Date: Thu Jan 12 21:27:09 2006 Subject: Need clarification on whitelist rules Message-ID: Only if you are deleting it and not delivering it to the people who didn't whitelist it. For each recipient, you can either 1) whitelist and deliver it 2) delete it Then it's easy, and I've done it before. At 14:34 06/10/2004, you wrote: >Okay, so now that I am back in the office, is there anyway to avoid having >all of the recipients whitelisted when just one of the recipients has >requested to be whitelisted? > >Dan > >-----Original Message----- >From: MailScanner mailing list [mailto:MAILSCANNER@JISCMAIL.AC.UK] On Behalf >Of Julian Field >Sent: Friday, October 01, 2004 10:04 AM >To: MAILSCANNER@JISCMAIL.AC.UK >Subject: Re: Need clarification on whitelist rules > >At 15:26 01/10/2004, you wrote: > > > -----Original Message----- > > > From: MailScanner mailing list [mailto:MAILSCANNER@JISCMAIL.AC.UK]On > > > Behalf Of Julian Field > > > Sent: Friday, October 01, 2004 9:10 AM > > > To: MAILSCANNER@JISCMAIL.AC.UK > > > Subject: Re: Need clarification on whitelist rules > > > > > > > > > At 14:56 01/10/2004, you wrote: > > > > > -----Original Message----- > > > > > From: MailScanner mailing list [mailto:MAILSCANNER@JISCMAIL.AC.UK]On > > > > > Behalf Of Julian Field > > > > > Sent: Friday, October 01, 2004 7:57 AM > > > > > To: MAILSCANNER@JISCMAIL.AC.UK > > > > > Subject: Re: Need clarification on whitelist rules > > > > > > > > > > > > > > > > > > > > > > > > What you need is a Custom Function that edits the recipients > > > list in each > > > > > message, according to whether they want to be filtered or > > > not. I've done > > > > > something like this already, just haven't yet published it. > > > > > > > > > > What form would people like it in? Added to the per-user > > > white and black > > > > > list code? > > > > > It would have to be a simple "remove them from the message if > > > > > it's in their > > > > > blacklist or not in their whitelist". > > > > > > > > > > Can people see any problems with this? Something is nagging > > > me that this > > > > > isn't the correct functionality, but I can't see what the > > > right answer is > > > > > for definite. > > > > > -- > > > > > > > >I guess my first question is how it's tagged as spam when there is a >rule > > > >file for the spam scoring settings? If user A tagges as spam > > > with a score of > > > >5.0 and user B tagges it with a score of 7.5 how does the message get > > > >tagged, since a score of 6.5 would flag as spam for user A and > > > ham for user > > > >B? > > > > > > We use it only for automatic spam deletion. In your example, user A >would > > > be removed from the list of recipients, and it would be normally >delivered > > > to user B. To use it for anything other than spam deletion is pretty >much > > > impossible. > > > > > > -- > > > >Isn't this what you are proposing above? > > > > > > > It would have to be a simple "remove them from the message if > > > > > it's in their > > > > > blacklist or not in their whitelist". > > > >so if you handle the white/black listing here if it's spam and whitelisted > >don't remove them and if it's ham but blacklisted do remove them, or am I > >missing something? > > > > I would think where every the per user scoring is checked > >if the whitelist/blacklist was checked as well it would simply adjust the > >actual tagging as spam or ham the same as the scoring based tagging would, > >the difference being if it scores as 6.5 and the user threshold is 7.5 but > >it's blacklisted it would be tagged as spam and not ham? > >I don't understand that sentence at all, sorry. > > > I'm sorry if I am > >coming across dense just looking for a way to simplify the overall code > >changes > >-- >Julian Field >www.MailScanner.info >MailScanner thanks transtec Computers for their support >Buy the MailScanner book at www.MailScanner.info/store > >PGP footprint: EE81 D763 3DB0 0BFD E1DC 7222 11F6 5947 1415 B654 > >------------------------ MailScanner list ------------------------ >To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: >'leave mailscanner' in the body of the email. >Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and >the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). > >------------------------ MailScanner list ------------------------ >To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: >'leave mailscanner' in the body of the email. >Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and >the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). -- Julian Field www.MailScanner.info MailScanner thanks transtec Computers for their support Buy the MailScanner book at www.MailScanner.info/store PGP footprint: EE81 D763 3DB0 0BFD E1DC 7222 11F6 5947 1415 B654 ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From mailscanner at ecs.soton.ac.uk Wed Oct 6 15:34:03 2004 From: mailscanner at ecs.soton.ac.uk (Julian Field) Date: Thu Jan 12 21:27:09 2006 Subject: An FYI with wbel 3.0 Message-ID: What version did you install? In 4.34 I have done some more work recently on the dependencies between MIME::QuotedPrint and MIME-tools, which have been causing problems for the past couple of weeks or so. I haven't yet published that new work, I'm having some testing done first. At 14:01 06/10/2004, you wrote: > Just a little > > For your information. > > I recently installed WhiteBox 3.0, and before I did updates via > up2date > I installed Mailscanner. When I dd finally start updates, the > packages > MailScanner installs breaks dependencies in the newer perl packages! > > Other then that I commend all that work on MailScanner! it is one > fine > product > > Brian -- Julian Field www.MailScanner.info MailScanner thanks transtec Computers for their support Buy the MailScanner book at www.MailScanner.info/store PGP footprint: EE81 D763 3DB0 0BFD E1DC 7222 11F6 5947 1415 B654 ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From michele at BLACKNIGHTSOLUTIONS.COM Wed Oct 6 15:38:59 2004 From: michele at BLACKNIGHTSOLUTIONS.COM (Michele Neylon :: Blacknight Solutions) Date: Thu Jan 12 21:27:09 2006 Subject: An FYI with wbel 3.0 Message-ID: > Just a little > > For your information. > > I recently installed WhiteBox 3.0, and before I did updates > via up2date I installed Mailscanner. When I dd finally start > updates, the packages MailScanner installs breaks > dependencies in the newer perl packages! > > Other then that I commend all that work on > MailScanner! it is one fine > product FWIW we run MS on whitebox and have never seen any issues across multiple installs. Mr Michele Neylon Blacknight Internet Solutions Ltd Hosting, co-location & domains http://www.blacknight.ie/ Tel. +353 59 9137101 ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From xterm1 at TATORZ.COM Wed Oct 6 15:46:19 2004 From: xterm1 at TATORZ.COM (xterm1) Date: Thu Jan 12 21:27:09 2006 Subject: An FYI with wbel 3.0 Message-ID: mailscanner-4.34.8-1 |-----Original Message----- |From: MailScanner mailing list [mailto:MAILSCANNER@JISCMAIL.AC.UK]On |Behalf Of Julian Field |Sent: Wednesday, October 06, 2004 10:34 AM |To: MAILSCANNER@JISCMAIL.AC.UK |Subject: Re: An FYI with wbel 3.0 | | |What version did you install? In 4.34 I have done some more work recently |on the dependencies between MIME::QuotedPrint and MIME-tools, which have |been causing problems for the past couple of weeks or so. I haven't yet |published that new work, I'm having some testing done first. |MailScanner thanks transtec Computers for their support. -- This message has been scanned for viruses and dangerous content by MailScanner, and is believed to be clean. MailScanner thanks transtec Computers for their support. ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From mailscan at PRIS.CA Wed Oct 6 15:50:19 2004 From: mailscan at PRIS.CA (MailScanner Mailbox) Date: Thu Jan 12 21:27:09 2006 Subject: tiff causing DOS message Message-ID: Hello Julian I changed the Virus Scanner Timeout from the default 300 to 450 and that seem to have taken care of the problem. Thanks Rick On Wed, 6 Oct 2004, Julian Field wrote: > That will be it. I can't remember whether you can change the timeout in > MailScanner.conf or not, it's something that people never normally need to > tweak. > > At 21:36 05/10/2004, you wrote: > >Hello Julian > > > >Scanning the file by itself produces the following output: > > > >----------- SCAN SUMMARY ----------- > >Known viruses: 24829 > >Scanned directories: 0 > >Scanned files: 1 > >Infected files: 0 > >Data scanned: 2.46 MB > >I/O buffer size: 131072 bytes > >Time: 103.994 sec (1 m 43 s) > > > >Now when I look at this, it took almost 2 minutes to scan the file, I'm > >assuming that this is what is causing the DOS message. When I scan a file > >of similar size it only takes a little over a 1/3 of the time. > > > > > >----------- SCAN SUMMARY ----------- > >Known viruses: 24829 > >Scanned directories: 0 > >Scanned files: 1 > >Infected files: 0 > >Data scanned: 3.33 MB > >I/O buffer size: 131072 bytes > >Time: 28.532 sec (0 m 28 s) > > > > > >So now that I think I know why its doing it, is there a way to prevent > >this from happening. > > > >Thank you for the help > > > >Rick > > > > > >On Tue, 5 Oct 2004, Julian Field wrote: > > > > > What happens when you try to scan the tif manually? > > > > > > At 23:32 04/10/2004, you wrote: > > > >Hello > > > > > > > >We have a customer that is attempting to send a tif file that is a little > > > >over 3.5 mb, when trying to send he receives the following error: > > > > > > > >The following e-mails were found to have: Virus Detected > > > > > > > > Sender: xxxxxx@pris.bc.ca > > > >IP Address: 64.114.126.175 > > > > Recipient: xxxxxx@peacecountry.com > > > > Subject: '...are' sticker > > > > MessageID: i94Kea0D007039 > > > > Report: Denial of Service attack in message! > > > > Denial of Service attack in message! > > > > > > > > > > > >The interesting part of the df file is: > > > > > > > >--============_-1115191450==_============ > > > >Content-Type: text/plain; charset="us-ascii" ; format="flowed" > > > > > > > >hello doris & frances, > > > > > > > >please find the attached layout of the sticker that you requested. > > > > > > > > > > > >thanks! > > > > > > > >jesh 250-782-6068 > > > >--============_-1115191450==_============ > > > >Content-Id: > > > >Content-Type: image/tiff; name="are.tif" > > > > ; x-mac-type="54494646" > > > > ; x-mac-creator="3842494D" > > > >Content-Disposition: attachment; filename="are.tif" > > > >Content-Transfer-Encoding: base64 > > > > > > > > > > > >I have looked as best I can but cannot find a reason for this, we are > > > >running MS-4.33.3 with ClamAV-0.80rc2 > > -- > Julian Field > www.MailScanner.info > MailScanner thanks transtec Computers for their support > Buy the MailScanner book at www.MailScanner.info/store > > PGP footprint: EE81 D763 3DB0 0BFD E1DC 7222 11F6 5947 1415 B654 > > ------------------------ MailScanner list ------------------------ > To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: > 'leave mailscanner' in the body of the email. > Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and > the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). > ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From danslists at CONPOINT.COM Wed Oct 6 15:53:20 2004 From: danslists at CONPOINT.COM (Dan Spray) Date: Thu Jan 12 21:27:09 2006 Subject: Need clarification on whitelist rules Message-ID: That is the problem though. I have a customer who has asked to be whitelisted so I add them to the spam.whitelist.rules file. Then a spam message comes in and is addressed to 10 people, ONE of which is the customer that wanted to be whitelisted. The message however is declared whitelisted and is delivered to all 10 people even though it is actually scored as spam. Dan -----Original Message----- From: MailScanner mailing list [mailto:MAILSCANNER@JISCMAIL.AC.UK] On Behalf Of Julian Field Sent: Wednesday, October 06, 2004 9:32 AM To: MAILSCANNER@JISCMAIL.AC.UK Subject: Re: Need clarification on whitelist rules Only if you are deleting it and not delivering it to the people who didn't whitelist it. For each recipient, you can either 1) whitelist and deliver it 2) delete it Then it's easy, and I've done it before. At 14:34 06/10/2004, you wrote: >Okay, so now that I am back in the office, is there anyway to avoid having >all of the recipients whitelisted when just one of the recipients has >requested to be whitelisted? > >Dan > >-----Original Message----- >From: MailScanner mailing list [mailto:MAILSCANNER@JISCMAIL.AC.UK] On Behalf >Of Julian Field >Sent: Friday, October 01, 2004 10:04 AM >To: MAILSCANNER@JISCMAIL.AC.UK >Subject: Re: Need clarification on whitelist rules > >At 15:26 01/10/2004, you wrote: > > > -----Original Message----- > > > From: MailScanner mailing list [mailto:MAILSCANNER@JISCMAIL.AC.UK]On > > > Behalf Of Julian Field > > > Sent: Friday, October 01, 2004 9:10 AM > > > To: MAILSCANNER@JISCMAIL.AC.UK > > > Subject: Re: Need clarification on whitelist rules > > > > > > > > > At 14:56 01/10/2004, you wrote: > > > > > -----Original Message----- > > > > > From: MailScanner mailing list [mailto:MAILSCANNER@JISCMAIL.AC.UK]On > > > > > Behalf Of Julian Field > > > > > Sent: Friday, October 01, 2004 7:57 AM > > > > > To: MAILSCANNER@JISCMAIL.AC.UK > > > > > Subject: Re: Need clarification on whitelist rules > > > > > > > > > > > > > > > > > > > > > > > > What you need is a Custom Function that edits the recipients > > > list in each > > > > > message, according to whether they want to be filtered or > > > not. I've done > > > > > something like this already, just haven't yet published it. > > > > > > > > > > What form would people like it in? Added to the per-user > > > white and black > > > > > list code? > > > > > It would have to be a simple "remove them from the message if > > > > > it's in their > > > > > blacklist or not in their whitelist". > > > > > > > > > > Can people see any problems with this? Something is nagging > > > me that this > > > > > isn't the correct functionality, but I can't see what the > > > right answer is > > > > > for definite. > > > > > -- > > > > > > > >I guess my first question is how it's tagged as spam when there is a >rule > > > >file for the spam scoring settings? If user A tagges as spam > > > with a score of > > > >5.0 and user B tagges it with a score of 7.5 how does the message get > > > >tagged, since a score of 6.5 would flag as spam for user A and > > > ham for user > > > >B? > > > > > > We use it only for automatic spam deletion. In your example, user A >would > > > be removed from the list of recipients, and it would be normally >delivered > > > to user B. To use it for anything other than spam deletion is pretty >much > > > impossible. > > > > > > -- > > > >Isn't this what you are proposing above? > > > > > > > It would have to be a simple "remove them from the message if > > > > > it's in their > > > > > blacklist or not in their whitelist". > > > >so if you handle the white/black listing here if it's spam and whitelisted > >don't remove them and if it's ham but blacklisted do remove them, or am I > >missing something? > > > > I would think where every the per user scoring is checked > >if the whitelist/blacklist was checked as well it would simply adjust the > >actual tagging as spam or ham the same as the scoring based tagging would, > >the difference being if it scores as 6.5 and the user threshold is 7.5 but > >it's blacklisted it would be tagged as spam and not ham? > >I don't understand that sentence at all, sorry. > > > I'm sorry if I am > >coming across dense just looking for a way to simplify the overall code > >changes > >-- >Julian Field >www.MailScanner.info >MailScanner thanks transtec Computers for their support >Buy the MailScanner book at www.MailScanner.info/store > >PGP footprint: EE81 D763 3DB0 0BFD E1DC 7222 11F6 5947 1415 B654 > >------------------------ MailScanner list ------------------------ >To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: >'leave mailscanner' in the body of the email. >Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and >the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). > >------------------------ MailScanner list ------------------------ >To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: >'leave mailscanner' in the body of the email. >Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and >the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). -- Julian Field www.MailScanner.info MailScanner thanks transtec Computers for their support Buy the MailScanner book at www.MailScanner.info/store PGP footprint: EE81 D763 3DB0 0BFD E1DC 7222 11F6 5947 1415 B654 ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From mailscanner at ecs.soton.ac.uk Wed Oct 6 16:08:38 2004 From: mailscanner at ecs.soton.ac.uk (Julian Field) Date: Thu Jan 12 21:27:09 2006 Subject: Need clarification on whitelist rules Message-ID: In which case put a Custom Function on "Is Definitely Not Spam" (i.e. the spam whitelist) and use that to mess with the list of recipients of the message. That might work. At 15:53 06/10/2004, you wrote: >That is the problem though. I have a customer who has asked to be >whitelisted so I add them to the spam.whitelist.rules file. Then a spam >message comes in and is addressed to 10 people, ONE of which is the customer >that wanted to be whitelisted. The message however is declared whitelisted >and is delivered to all 10 people even though it is actually scored as spam. > >Dan > >-----Original Message----- >From: MailScanner mailing list [mailto:MAILSCANNER@JISCMAIL.AC.UK] On Behalf >Of Julian Field >Sent: Wednesday, October 06, 2004 9:32 AM >To: MAILSCANNER@JISCMAIL.AC.UK >Subject: Re: Need clarification on whitelist rules > >Only if you are deleting it and not delivering it to the people who didn't >whitelist it. >For each recipient, you can either >1) whitelist and deliver it >2) delete it >Then it's easy, and I've done it before. > >At 14:34 06/10/2004, you wrote: > >Okay, so now that I am back in the office, is there anyway to avoid having > >all of the recipients whitelisted when just one of the recipients has > >requested to be whitelisted? > > > >Dan > > > >-----Original Message----- > >From: MailScanner mailing list [mailto:MAILSCANNER@JISCMAIL.AC.UK] On >Behalf > >Of Julian Field > >Sent: Friday, October 01, 2004 10:04 AM > >To: MAILSCANNER@JISCMAIL.AC.UK > >Subject: Re: Need clarification on whitelist rules > > > >At 15:26 01/10/2004, you wrote: > > > > -----Original Message----- > > > > From: MailScanner mailing list [mailto:MAILSCANNER@JISCMAIL.AC.UK]On > > > > Behalf Of Julian Field > > > > Sent: Friday, October 01, 2004 9:10 AM > > > > To: MAILSCANNER@JISCMAIL.AC.UK > > > > Subject: Re: Need clarification on whitelist rules > > > > > > > > > > > > At 14:56 01/10/2004, you wrote: > > > > > > -----Original Message----- > > > > > > From: MailScanner mailing list >[mailto:MAILSCANNER@JISCMAIL.AC.UK]On > > > > > > Behalf Of Julian Field > > > > > > Sent: Friday, October 01, 2004 7:57 AM > > > > > > To: MAILSCANNER@JISCMAIL.AC.UK > > > > > > Subject: Re: Need clarification on whitelist rules > > > > > > > > > > > > > > > > > > > > > > > > > > > > > What you need is a Custom Function that edits the recipients > > > > list in each > > > > > > message, according to whether they want to be filtered or > > > > not. I've done > > > > > > something like this already, just haven't yet published it. > > > > > > > > > > > > What form would people like it in? Added to the per-user > > > > white and black > > > > > > list code? > > > > > > It would have to be a simple "remove them from the message if > > > > > > it's in their > > > > > > blacklist or not in their whitelist". > > > > > > > > > > > > Can people see any problems with this? Something is nagging > > > > me that this > > > > > > isn't the correct functionality, but I can't see what the > > > > right answer is > > > > > > for definite. > > > > > > -- > > > > > > > > > >I guess my first question is how it's tagged as spam when there is a > >rule > > > > >file for the spam scoring settings? If user A tagges as spam > > > > with a score of > > > > >5.0 and user B tagges it with a score of 7.5 how does the message get > > > > >tagged, since a score of 6.5 would flag as spam for user A and > > > > ham for user > > > > >B? > > > > > > > > We use it only for automatic spam deletion. In your example, user A > >would > > > > be removed from the list of recipients, and it would be normally > >delivered > > > > to user B. To use it for anything other than spam deletion is pretty > >much > > > > impossible. > > > > > > > > -- > > > > > >Isn't this what you are proposing above? > > > > > > > > > It would have to be a simple "remove them from the message if > > > > > > it's in their > > > > > > blacklist or not in their whitelist". > > > > > >so if you handle the white/black listing here if it's spam and >whitelisted > > >don't remove them and if it's ham but blacklisted do remove them, or am I > > >missing something? > > > > > > > I would think where every the per user scoring is checked > > >if the whitelist/blacklist was checked as well it would simply adjust the > > >actual tagging as spam or ham the same as the scoring based tagging >would, > > >the difference being if it scores as 6.5 and the user threshold is 7.5 >but > > >it's blacklisted it would be tagged as spam and not ham? > > > >I don't understand that sentence at all, sorry. > > > > > I'm sorry if I am > > >coming across dense just looking for a way to simplify the overall code > > >changes > > > >-- > >Julian Field > >www.MailScanner.info > >MailScanner thanks transtec Computers for their support > >Buy the MailScanner book at www.MailScanner.info/store > > > >PGP footprint: EE81 D763 3DB0 0BFD E1DC 7222 11F6 5947 1415 B654 > > > >------------------------ MailScanner list ------------------------ > >To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: > >'leave mailscanner' in the body of the email. > >Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and > >the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). > > > >------------------------ MailScanner list ------------------------ > >To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: > >'leave mailscanner' in the body of the email. > >Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and > >the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). > >-- >Julian Field >www.MailScanner.info >MailScanner thanks transtec Computers for their support >Buy the MailScanner book at www.MailScanner.info/store > >PGP footprint: EE81 D763 3DB0 0BFD E1DC 7222 11F6 5947 1415 B654 > >------------------------ MailScanner list ------------------------ >To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: >'leave mailscanner' in the body of the email. >Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and >the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). > >------------------------ MailScanner list ------------------------ >To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: >'leave mailscanner' in the body of the email. >Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and >the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). -- Julian Field www.MailScanner.info MailScanner thanks transtec Computers for their support Buy the MailScanner book at www.MailScanner.info/store PGP footprint: EE81 D763 3DB0 0BFD E1DC 7222 11F6 5947 1415 B654 ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From randyf at SIBERNET.COM Wed Oct 6 16:16:24 2004 From: randyf at SIBERNET.COM (Randy Fishel) Date: Thu Jan 12 21:27:09 2006 Subject: tiff causing DOS message Message-ID: I have had a small flurry of DoS warnings recently, and took notice this morning when a couple of automated notices were tagged as DoS attacks. The log shows a sophossavi timeout, but scanning all the messages in today's quarantine complete in 7 seconds. I am running MS4.33.3 and Sophossavi on Solaris. -rf On Wed, 6 Oct 2004, Julian Field wrote: > That will be it. I can't remember whether you can change the timeout in > MailScanner.conf or not, it's something that people never normally need to > tweak. > > At 21:36 05/10/2004, you wrote: > >Hello Julian > > > >Scanning the file by itself produces the following output: > > > >----------- SCAN SUMMARY ----------- > >Known viruses: 24829 > >Scanned directories: 0 > >Scanned files: 1 > >Infected files: 0 > >Data scanned: 2.46 MB > >I/O buffer size: 131072 bytes > >Time: 103.994 sec (1 m 43 s) > > > >Now when I look at this, it took almost 2 minutes to scan the file, I'm > >assuming that this is what is causing the DOS message. When I scan a file > >of similar size it only takes a little over a 1/3 of the time. > > > > > >----------- SCAN SUMMARY ----------- > >Known viruses: 24829 > >Scanned directories: 0 > >Scanned files: 1 > >Infected files: 0 > >Data scanned: 3.33 MB > >I/O buffer size: 131072 bytes > >Time: 28.532 sec (0 m 28 s) > > > > > >So now that I think I know why its doing it, is there a way to prevent > >this from happening. > > > >Thank you for the help > > > >Rick > > > > > >On Tue, 5 Oct 2004, Julian Field wrote: > > > > > What happens when you try to scan the tif manually? > > > > > > At 23:32 04/10/2004, you wrote: > > > >Hello > > > > > > > >We have a customer that is attempting to send a tif file that is a little > > > >over 3.5 mb, when trying to send he receives the following error: > > > > > > > >The following e-mails were found to have: Virus Detected > > > > > > > > Sender: xxxxxx@pris.bc.ca > > > >IP Address: 64.114.126.175 > > > > Recipient: xxxxxx@peacecountry.com > > > > Subject: '...are' sticker > > > > MessageID: i94Kea0D007039 > > > > Report: Denial of Service attack in message! > > > > Denial of Service attack in message! > > > > > > > > > > > >The interesting part of the df file is: > > > > > > > >--============_-1115191450==_============ > > > >Content-Type: text/plain; charset="us-ascii" ; format="flowed" > > > > > > > >hello doris & frances, > > > > > > > >please find the attached layout of the sticker that you requested. > > > > > > > > > > > >thanks! > > > > > > > >jesh 250-782-6068 > > > >--============_-1115191450==_============ > > > >Content-Id: > > > >Content-Type: image/tiff; name="are.tif" > > > > ; x-mac-type="54494646" > > > > ; x-mac-creator="3842494D" > > > >Content-Disposition: attachment; filename="are.tif" > > > >Content-Transfer-Encoding: base64 > > > > > > > > > > > >I have looked as best I can but cannot find a reason for this, we are > > > >running MS-4.33.3 with ClamAV-0.80rc2 > > -- > Julian Field > www.MailScanner.info > MailScanner thanks transtec Computers for their support > Buy the MailScanner book at www.MailScanner.info/store > > PGP footprint: EE81 D763 3DB0 0BFD E1DC 7222 11F6 5947 1415 B654 > > ------------------------ MailScanner list ------------------------ > To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: > 'leave mailscanner' in the body of the email. > Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and > the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). > ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From eric.sauvageau at gmail.com Wed Oct 6 16:17:47 2004 From: eric.sauvageau at gmail.com (Eric Sauvageau) Date: Thu Jan 12 21:27:09 2006 Subject: Disabling virus scanning but not spam checking? Message-ID: Hi, I have a few customers who only require the spam filtering but not the virus checking. I was hoping to be able to use a ruleset on the Virus Scanning option, unfortunately this option disables ALL mail processing, and not just virus scanning. Any suggestion/code patch I could apply? Having separate options to disable Virus Scanning and Disable All Processing would probably be a good idea IMHO. Thanks! --- Eric ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From Q.G.Campbell at NEWCASTLE.AC.UK Wed Oct 6 16:26:39 2004 From: Q.G.Campbell at NEWCASTLE.AC.UK (Quentin Campbell) Date: Thu Jan 12 21:27:09 2006 Subject: Envelope senders, SA and MailScanner (& patch) Message-ID: Julian I applied this patch to a 4.34.8-1 system and re-started MailScanner but am not seeing the EnvelopEFrom: header in the delivered messages. I have not followed the SA.pm code through in detail but was the intention to only add this header to the copy of the message passed to SpamAssassin? Quentin --- PHONE: +44 191 222 8209 Information Systems and Services (ISS), University of Newcastle, Newcastle upon Tyne, FAX: +44 191 222 8765 United Kingdom, NE1 7RU. ------------------------------------------------------------------------ "Any opinion expressed above is mine. The University can get its own." >-----Original Message----- >From: MailScanner mailing list >[mailto:MAILSCANNER@JISCMAIL.AC.UK] On Behalf Of Julian Field >Sent: 04 October 2004 11:54 >To: MAILSCANNER@JISCMAIL.AC.UK >Subject: Re: Envelope senders, SA and MailScanner > >Well spotted. >Attached is a patch to add this feature. > >At 11:00 04/10/2004, you wrote: >>Hello all... >> >>In the recent SA 3.0.0 release announcement, I saw under 'Engine >>Changes': >> >> - Rules can now test the "MAIL FROM:" address used in the SMTP >> transaction if it was logged to the message headers using the >> "EnvelopeFrom" pseudo-header. This allows rules such as >SPF to be >> applied. >> >>Does MailScanner support this? Does it automatically pass the envelope >>sender (seeing as MS clearly knows it), or does this require some >>further configuration? >> >>Just curious! > >------------------------ MailScanner list ------------------------ >To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: >'leave mailscanner' in the body of the email. >Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and >the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). > ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From lists at NORCOMCABLE.CA Wed Oct 6 16:27:03 2004 From: lists at NORCOMCABLE.CA (Dan) Date: Thu Jan 12 21:27:09 2006 Subject: Need clarification on whitelist rules Message-ID: I had this problem as well. I assume you are using Sendmail. Following this guide in the FAQ solved the problem for me. http://www.sng.ecs.soton.ac.uk/mailscanner/serve/cache/169.html regards, -dan -----Original Message----- From: MailScanner mailing list [mailto:MAILSCANNER@JISCMAIL.AC.UK] On Behalf Of Dan Spray Sent: October 6, 2004 9:53 AM To: MAILSCANNER@JISCMAIL.AC.UK Subject: Re: Need clarification on whitelist rules That is the problem though. I have a customer who has asked to be whitelisted so I add them to the spam.whitelist.rules file. Then a spam message comes in and is addressed to 10 people, ONE of which is the customer that wanted to be whitelisted. The message however is declared whitelisted and is delivered to all 10 people even though it is actually scored as spam. Dan -----Original Message----- From: MailScanner mailing list [mailto:MAILSCANNER@JISCMAIL.AC.UK] On Behalf Of Julian Field Sent: Wednesday, October 06, 2004 9:32 AM To: MAILSCANNER@JISCMAIL.AC.UK Subject: Re: Need clarification on whitelist rules Only if you are deleting it and not delivering it to the people who didn't whitelist it. For each recipient, you can either 1) whitelist and deliver it 2) delete it Then it's easy, and I've done it before. At 14:34 06/10/2004, you wrote: >Okay, so now that I am back in the office, is there anyway to avoid >having all of the recipients whitelisted when just one of the >recipients has requested to be whitelisted? > >Dan > >-----Original Message----- >From: MailScanner mailing list [mailto:MAILSCANNER@JISCMAIL.AC.UK] On Behalf >Of Julian Field >Sent: Friday, October 01, 2004 10:04 AM >To: MAILSCANNER@JISCMAIL.AC.UK >Subject: Re: Need clarification on whitelist rules > >At 15:26 01/10/2004, you wrote: > > > -----Original Message----- > > > From: MailScanner mailing list > > > [mailto:MAILSCANNER@JISCMAIL.AC.UK]On > > > Behalf Of Julian Field > > > Sent: Friday, October 01, 2004 9:10 AM > > > To: MAILSCANNER@JISCMAIL.AC.UK > > > Subject: Re: Need clarification on whitelist rules > > > > > > > > > At 14:56 01/10/2004, you wrote: > > > > > -----Original Message----- > > > > > From: MailScanner mailing list [mailto:MAILSCANNER@JISCMAIL.AC.UK]On > > > > > Behalf Of Julian Field > > > > > Sent: Friday, October 01, 2004 7:57 AM > > > > > To: MAILSCANNER@JISCMAIL.AC.UK > > > > > Subject: Re: Need clarification on whitelist rules > > > > > > > > > > > > > > > > > > > > > > > > What you need is a Custom Function that edits the recipients > > > list in each > > > > > message, according to whether they want to be filtered or > > > not. I've done > > > > > something like this already, just haven't yet published it. > > > > > > > > > > What form would people like it in? Added to the per-user > > > white and black > > > > > list code? > > > > > It would have to be a simple "remove them from the message if > > > > > it's in their blacklist or not in their whitelist". > > > > > > > > > > Can people see any problems with this? Something is nagging > > > me that this > > > > > isn't the correct functionality, but I can't see what the > > > right answer is > > > > > for definite. > > > > > -- > > > > > > > >I guess my first question is how it's tagged as spam when there > > > >is a >rule > > > >file for the spam scoring settings? If user A tagges as spam > > > with a score of > > > >5.0 and user B tagges it with a score of 7.5 how does the message > > > >get tagged, since a score of 6.5 would flag as spam for user A > > > >and > > > ham for user > > > >B? > > > > > > We use it only for automatic spam deletion. In your example, user > > > A >would > > > be removed from the list of recipients, and it would be normally >delivered > > > to user B. To use it for anything other than spam deletion is > > > pretty >much > > > impossible. > > > > > > -- > > > >Isn't this what you are proposing above? > > > > > > > It would have to be a simple "remove them from the message if > > > > > it's in their blacklist or not in their whitelist". > > > >so if you handle the white/black listing here if it's spam and whitelisted > >don't remove them and if it's ham but blacklisted do remove them, or > >am I missing something? > > > > I would think where every the per user scoring is checked if the > >whitelist/blacklist was checked as well it would simply adjust the > >actual tagging as spam or ham the same as the scoring based tagging would, > >the difference being if it scores as 6.5 and the user threshold is > >7.5 but > >it's blacklisted it would be tagged as spam and not ham? > >I don't understand that sentence at all, sorry. > > > I'm sorry if I am > >coming across dense just looking for a way to simplify the overall > >code changes > >-- >Julian Field >www.MailScanner.info >MailScanner thanks transtec Computers for their support Buy the >MailScanner book at www.MailScanner.info/store > >PGP footprint: EE81 D763 3DB0 0BFD E1DC 7222 11F6 5947 1415 B654 > >------------------------ MailScanner list ------------------------ To >unsubscribe, email jiscmail@jiscmail.ac.uk with the words: >'leave mailscanner' in the body of the email. >Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the >archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). > >------------------------ MailScanner list ------------------------ To >unsubscribe, email jiscmail@jiscmail.ac.uk with the words: >'leave mailscanner' in the body of the email. >Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the >archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). -- Julian Field www.MailScanner.info MailScanner thanks transtec Computers for their support Buy the MailScanner book at www.MailScanner.info/store PGP footprint: EE81 D763 3DB0 0BFD E1DC 7222 11F6 5947 1415 B654 ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From mailscanner at ecs.soton.ac.uk Wed Oct 6 16:44:31 2004 From: mailscanner at ecs.soton.ac.uk (Julian Field) Date: Thu Jan 12 21:27:09 2006 Subject: An FYI with wbel 3.0 Message-ID: If you want to try it out, change the 1 to a 3 in the URL and download it again. This has 1 important troublesome dependency removed, which you may find helps quite a lot. You will need to rpm -e --nodeps perl-MIME-Base64 perl-MIME-tools before you run the install.sh script. At 15:46 06/10/2004, you wrote: > mailscanner-4.34.8-1 > >|-----Original Message----- >|From: MailScanner mailing list [mailto:MAILSCANNER@JISCMAIL.AC.UK]On >|Behalf Of Julian Field >|Sent: Wednesday, October 06, 2004 10:34 AM >|To: MAILSCANNER@JISCMAIL.AC.UK >|Subject: Re: An FYI with wbel 3.0 >| >| >|What version did you install? In 4.34 I have done some more work recently >|on the dependencies between MIME::QuotedPrint and MIME-tools, which have >|been causing problems for the past couple of weeks or so. I haven't yet >|published that new work, I'm having some testing done first. >|MailScanner thanks transtec Computers for their support. > >-- >This message has been scanned for viruses and >dangerous content by MailScanner, and is >believed to be clean. >MailScanner thanks transtec Computers for their support. > >------------------------ MailScanner list ------------------------ >To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: >'leave mailscanner' in the body of the email. >Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and >the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). -- Julian Field www.MailScanner.info MailScanner thanks transtec Computers for their support Buy the MailScanner book at www.MailScanner.info/store PGP footprint: EE81 D763 3DB0 0BFD E1DC 7222 11F6 5947 1415 B654 ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From Steve.Swaney at FSL.COM Wed Oct 6 16:48:40 2004 From: Steve.Swaney at FSL.COM (Steve Swaney) Date: Thu Jan 12 21:27:09 2006 Subject: QuarantineReport Message-ID: I have finished the INSTALL documentation for QuarantineReport. The application and the documentation may be downloaded from: http://www.fsl.com/support QuarantineReport is a small application that's intended to: * Create a daily report for each user who has messages in MailScanner Quarantine * Quarantine Create a web link to view the message in Quarantine * Provide a link to allow the user to release the message from Quarantine * Email the report to the user The report will contain this information for each message in Quarantine: From: address_of_sender Subject: subject_of message Link_to_View Link_to_Release The application can also verify that recipient is a valid user by checking a file or performing an LDAP search. While these script are supplied as unsupported software. Please email me off list if you find errors or have problems. Steve Steve Swaney President Fortress Systems Ltd. www.fsl.com steve.swaney@fsl.com -- This message has been scanned for viruses and dangerous content by MailScanner, and is believed to be clean. Fortress Systems Ltd. www.fsl.com ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From michele at BLACKNIGHTSOLUTIONS.COM Wed Oct 6 16:54:08 2004 From: michele at BLACKNIGHTSOLUTIONS.COM (Michele Neylon :: Blacknight Solutions) Date: Thu Jan 12 21:27:09 2006 Subject: {SPAM?} Re: Max Children Message-ID: >> > Doesn't adding {Spam?} to emails originating from within your > company give the impression that your own users are sending spam? If that is being added to the mails they might be :) Mr Michele Neylon Blacknight Internet Solutions Ltd Hosting, co-location & domains http://www.blacknight.ie/ Tel. +353 59 9137101 ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From eric.sauvageau at gmail.com Wed Oct 6 17:09:57 2004 From: eric.sauvageau at gmail.com (Eric Sauvageau) Date: Thu Jan 12 21:27:09 2006 Subject: Disabling virus scanning but not spam checking? Message-ID: Hi, I'm using the Sept 1st release. I finally went ahead and configured everything, and it does work as expected indeed. I got confused by the (possibly outdated) comment in my config file: # NOTE: This switch actually switches on/off all processing of the email # messages. If you just want to switch off actual virus scanning, # then set "Virus Scanners = none" instead. Thanks! --- Eric On Wed, 06 Oct 2004 16:45:15 +0100, Julian Field wrote: > Use a newer MailScanner, and the control are more fine grained. > > > > At 16:17 06/10/2004, you wrote: > >Hi, > > > >I have a few customers who only require the spam filtering but not the > >virus checking. > > > >I was hoping to be able to use a ruleset on the Virus Scanning option, > >unfortunately this option disables ALL mail processing, and not just > >virus scanning. > > > >Any suggestion/code patch I could apply? > > > >Having separate options to disable Virus Scanning and Disable All > >Processing would probably be a good idea IMHO. > > > >Thanks! > > -- > Julian Field > www.MailScanner.info > MailScanner thanks transtec Computers for their support > Buy the MailScanner book at www.MailScanner.info/store > > PGP footprint: EE81 D763 3DB0 0BFD E1DC 7222 11F6 5947 1415 B654 > > ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From marcel-ml at IRC-ADDICTS.DE Wed Oct 6 17:10:51 2004 From: marcel-ml at IRC-ADDICTS.DE (Marcel Blenkers) Date: Thu Jan 12 21:27:09 2006 Subject: autoupdate for generic? Message-ID: Hi there, i just installed the latest MailScanner-Version. and now i found the following alongside with the other updates from the virus-scanners: Oct 6 18:05:00 mail update.virus.scanners: Running autoupdate for generic Oct 6 18:05:00 mail Generic-autoupdate[4140]: Generic scanner successfully updated Where does this come from? It says in the generic-autoupdate and -wrapper-script soemthing about own virus-scanners.. but i never did one on my own.. Marcel ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From admin at thenamegame.com Wed Oct 6 17:24:18 2004 From: admin at thenamegame.com (Michael Freeman) Date: Thu Jan 12 21:27:09 2006 Subject: Auto-Whitelist growing Message-ID:

There is no such option. Howcome there are so many options missing from this file I mean we just upgraded and copied rpmnew over the stop of the old so I would image the option should be there and if not why not?

From: David While [mailto:David.While@uce.ac.uk]
Sent: Wednesday, October 06, 2004 4:27 AM
To: admin@thenamegame.com
Subject: RE: Auto-Whitelist growing

Have you turned off the auto whitelisting feature in SpamAssassin? It is on by default.

Set use_auto_whitelist 0 in spam.assassin.prefs.conf to turn it off.

David While

University of Central England.

-----Original Message-----
From: MailScanner mailing list on behalf of Michael Freeman
Sent: Wed 06/10/2004 04:15
To: MAILSCANNER@JISCMAIL.AC.UK
Cc:
Subject: Auto-Whitelist growing

Since upgrading to SA3.0 the auto-whitelist file is growing by leaps and bound. Anyone know why?

-rw------- 1 root root 1290240 Oct 5 22:59 auto-whitelist

This file is in the same directory as my bayes files. Why is it being populated?

We upgraded all of our bayes db’s to the new format for SA3.0.

I just don’t understand why we are seeing these messages sometimes;

Oct 3 12:36:02 srv08 spamd[7436]: bayes: bayes db version 0 is not able to be used,

aborting! at /usr/lib/perl5/site_perl/5.8.1/Mail/SpamAssassin/BayesStore/DBM.pm line 160.

If bayes db was not able to be used then why is the bayes db not kicking out this warning everytime a message is autolearn=spam?

Not even sure what bayes db verson 0 is.

There is no such option. Howcome there are so many options missing from this file I mean we just upgraded and copied rpmnew over the stop of the old so I would image the option should be there and if not why not?

From: David While [mailto:David.While@uce.ac.uk]
Sent: Wednesday, October 06, 2004 4:27 AM
To: admin@thenamegame.com
Subject: RE: Auto-Whitelist growing

Have you turned off the auto whitelisting feature in SpamAssassin? It is on by default.

Set use_auto_whitelist 0 in spam.assassin.prefs.conf to turn it off.

David While
University of Central England.

-----Original Message-----

From: MailScanner mailing list on behalf of Michael Freeman

Sent: Wed 06/10/2004 04:15

To: MAILSCANNER@JISCMAIL.AC.UK

Cc:

Subject: Auto-Whitelist growing

Since upgrading to SA3.0 the auto-whitelist file is growing by leaps and bound. Anyone know why?

-rw------- 1 root root 1290240 Oct 5 22:59 auto-whitelist

This file is in the same directory as my bayes files. Why is it being populated?

------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words:
'leave mailscanner' in the body of the email.
Before posting, read the MAQ (http://www.mailscanner.biz/maq/)
and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words:
'leave mailscanner' in the body of the email.
Before posting, read the MAQ (http://www.mailscanner.biz/maq/)
and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html).

Julian Field

www.MailScanner.info

Professional Support Services at www.MailScanner.biz

MailScanner thanks transtec Computers for their support

Buy the MailScanner book at www.MailScanner.info/store

PGP footprint: EE81 D763 3DB0 0BFD E1DC 7222 11F6 5947 1415 B654 ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words:
'leave mailscanner' in the body of the email.
Before posting, read the MAQ (http://www.mailscanner.biz/maq/)
and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From jaearick at COLBY.EDU Wed Oct 6 18:02:15 2004 From: jaearick at COLBY.EDU (Jeff A. Earickson) Date: Thu Jan 12 21:27:09 2006 Subject: How to find a slowdown? Message-ID: Quick advice, run MailScanner in debug mode and see what happens. I'll bet that it gets slow on DNS lookups. It always helps to run a caching DNS (stealth secondary) on your mail server. Jeff Earickson Colby College On Wed, 6 Oct 2004, Jeremy Huber wrote: > Date: Wed, 6 Oct 2004 10:32:54 -0600 > From: Jeremy Huber > Reply-To: MailScanner mailing list > To: MAILSCANNER@JISCMAIL.AC.UK > Subject: How to find a slowdown? > > I've got a case where our brand new server that I put MailScanner on is > just CRAWLING. Dual 2.4Ghz Xeon with 4GB RAM running Fedora Core 2, MS > 4.33.3, and SA 2.63 (I've turned off the virus scanning temporarily). > We only push somewhere around 50k messages a day through it, so I'm not > sure why it's so slow. It almost always has hundreds of messages in the > inbound queue. I tried turning on LOG_SPEED, and the spam scanning > speed is usually around 600 bytes per second. That seems insanely slow, > but I didn't what's "good." I've got SA using DCC and Pyzor as well as > maybe 6 of the rulesets out of the rdj (one of which being the > blacklist). Am I just making SA do too much, and that's why it's so > slow? > > Thanks for any help you guys can give! > > Jeremy > > -- > Jeremy Huber, SCSA, LCP > jhuber@microsource.com > Datacenter Engineer > Microsource, Inc > > ------------------------ MailScanner list ------------------------ > To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: > 'leave mailscanner' in the body of the email. > Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and > the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). > ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From mailscanner at ecs.soton.ac.uk Wed Oct 6 18:04:55 2004 From: mailscanner at ecs.soton.ac.uk (Julian Field) Date: Thu Jan 12 21:27:09 2006 Subject: Envelope senders, SA and MailScanner (& patch) Message-ID: At 16:26 06/10/2004, you wrote: >I applied this patch to a 4.34.8-1 system and re-started MailScanner but >am not seeing the EnvelopEFrom: header in the delivered messages. You won't, because... >I have not followed the SA.pm code through in detail but was the >intention to only add this header to the copy of the message passed to >SpamAssassin? Yes. I don't want to permanently add it to the message, MailScanner can already do this with a customisable header anyway. > >-----Original Message----- > >From: MailScanner mailing list > >[mailto:MAILSCANNER@JISCMAIL.AC.UK] On Behalf Of Julian Field > >Sent: 04 October 2004 11:54 > >To: MAILSCANNER@JISCMAIL.AC.UK > >Subject: Re: Envelope senders, SA and MailScanner > > > >Well spotted. > >Attached is a patch to add this feature. > > > >At 11:00 04/10/2004, you wrote: > >>Hello all... > >> > >>In the recent SA 3.0.0 release announcement, I saw under 'Engine > >>Changes': > >> > >> - Rules can now test the "MAIL FROM:" address used in the SMTP > >> transaction if it was logged to the message headers using the > >> "EnvelopeFrom" pseudo-header. This allows rules such as > >SPF to be > >> applied. > >> > >>Does MailScanner support this? Does it automatically pass the envelope > >>sender (seeing as MS clearly knows it), or does this require some > >>further configuration? > >> > >>Just curious! -- Julian Field www.MailScanner.info Professional Support Services at www.MailScanner.biz MailScanner thanks transtec Computers for their support Buy the MailScanner book at www.MailScanner.info/store PGP footprint: EE81 D763 3DB0 0BFD E1DC 7222 11F6 5947 1415 B654 ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From ssilva at SGVWATER.COM Wed Oct 6 18:12:54 2004 From: ssilva at SGVWATER.COM (Scott Silva) Date: Thu Jan 12 21:27:09 2006 Subject: Disabling virus scanning but not spam checking? Message-ID: -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Eric Sauvageau wrote: | Hi, | | I have a few customers who only require the spam filtering but not the | virus checking. | | I was hoping to be able to use a ruleset on the Virus Scanning option, | unfortunately this option disables ALL mail processing, and not just | virus scanning. | | Any suggestion/code patch I could apply? | | Having separate options to disable Virus Scanning and Disable All | Processing would probably be a good idea IMHO. "Virus Scanning = yes" and leave "Virus Scanners =" blank -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.1 (MingW32) Comment: Using GnuPG with Thunderbird - http://enigmail.mozdev.org iD8DBQFBZCeVRADw9lziUqQRAnMOAJ9Zmy63D9nE+ux3OTDdw47HAf6rLACeJqxV 45kuwBfqmNOD4hfzZuAsvns= =eTRb -----END PGP SIGNATURE----- ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From xterm1 at TATORZ.COM Wed Oct 6 18:26:57 2004 From: xterm1 at TATORZ.COM (xterm1) Date: Thu Jan 12 21:27:09 2006 Subject: Please try this: Re: Installation problems with MS 4.34.8-1/MIME::QuotedPrint Message-ID: Julian I went ahead and did the ./install.sh on MailScanner-4.34.8-4 Before I seen your post on rpm -e --nodeps ... As for the installation it went fine! up2date -u is also fixed! Way to go!! Brian |-----Original Message----- |From: MailScanner mailing list [mailto:MAILSCANNER@JISCMAIL.AC.UK]On |Behalf Of Julian Field |Sent: Wednesday, October 06, 2004 12:55 PM |To: MAILSCANNER@JISCMAIL.AC.UK |Subject: Re: Please try this: Re: Installation problems with MS |4.34.8-1/MIME::QuotedPrint | | |Okay, that was -3. Now I've created -4 which I have tested on a RHEL system |and it seems to be rather cleaner. Would you believe that when rpmbuild |constructs the dependency list, it actually looks at the "use" statements |in the Perl scripts and scrapes version numbers out of them! Yuch! |up2date -u on the RHEL box no longer complains about these modules. |MailScanner thanks transtec Computers for their support. -- This message has been scanned for viruses and dangerous content by MailScanner, and is believed to be clean. MailScanner thanks transtec Computers for their support. ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From derek at CSOLVE.NET Wed Oct 6 18:29:58 2004 From: derek at CSOLVE.NET (Derek Buttineau | Compu-SOLVE) Date: Thu Jan 12 21:27:09 2006 Subject: FreeBSD Installation Issue Message-ID: Okay, I'm having a rather strange problem here attempted to install MailScanner from the latest FreeBSD port.. and I'm wonder if it's perhaps just something I've missed in my dazed stupor! It appears to me that the variables within my MailScanner.conf file aren't being used by the program (though I have confirmed that the config file is being parsed as it'll yell at me good if I duplicate any of the entries, etc) But the config values themselves are defaulting. IE Incoming Mail Queue is defaulting to /var/spool/mqueue.in even though I've changed it in the configuration file... Some detail: In my /usr/local/etc/MailScanner/MailScanner.conf file I have defined: # Set location of incoming mail queue # # This can be any one of # 1. A directory name # Example: /var/spool/mqueue.in # 2. A wildcard giving directory names # Example: /var/spool/mqueue.in/* # 3. The name of a file containing a list of directory names, # which can in turn contain wildcards. # Example: /usr/local/etc/MailScanner/mqueue.in.list.conf # Incoming Queue Dir = /var/spool/exim.ms/input # Set location of outgoing mail queue. # This can also be the filename of a ruleset. Outgoing Queue Dir = /var/spool/exim/input Yet when I try to start it I get: In Debugging mode, not forking... Can't use string ("/var/spool/mqueue.in") as an ARRAY ref while "strict refs" in use at /usr/local/libexec/MailScanner/MailScanner line 915. Note: I can get rid of the error by tweaking the perl code slightly.. ie on line 915 changing: my @inqdirs = @{MailScanner::Config::Value('inqueuedir')}; To my @inqdirs = (MailScanner::Config::Value('inqueuedir'); But I don't really want to, and besides it doesn't address the fact that it shouldn't be using that /var/spool/mqueue.in setting either :( This is with the current port as well (4.33.3-1), hopefully it's something simple.. otherwise I might wait for the next port to be released or try and build it from source instead, but any suggestions would be more than welcomed. Thanks in advance. :) -- Regards, Derek Buttineau Internet Systems Developer Compu-SOLVE Internet Services Compu-SOLVE Technologies Inc. 705.725.1212 x255 ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From Denis.Beauchemin at USHERBROOKE.CA Wed Oct 6 18:36:19 2004 From: Denis.Beauchemin at USHERBROOKE.CA (Denis Beauchemin) Date: Thu Jan 12 21:27:09 2006 Subject: ANNOUNCE: MailScanner Stable 4.34.8 released Message-ID: Julian (looks like the previous message didn't go to the list), I upgraded one of my servers to 4.34.8 and my filename.rules.conf got replaced by the one in the installation RPM. No rpmnew or rpmsave... Since I customized it with French comments, I was surprised to see English comments in emails sent to users... Could you make sure this doesn't happen again? I always look for rpmnew files after an upgrade, but I didn't I needed also to look at other files also. I also had problems with perl-ExtUtils-MakeMaker-6.05-1: le fichier /usr/share/man/man3/ExtUtils::testlib.3pm.gz de l'installation de perl-ExtUtils-MakeMaker-6.05-1 entre en conflit avec le fichier du paquetage perl-5.8.0-88.7 Sorry for the French error message. It says that it is conflicting with my Perl 5.8 RPM... I had to force install it. Thanks again! PS: Here is the output of MS -V on that server: Running on Linux smtpi1.usherbrooke.ca 2.4.21-15.0.4.EL #1 Sat Jul 31 01:33:50 EDT 2004 i686 i686 i386 GNU/Linux This is Red Hat Enterprise Linux AS release 3 (Taroon Update 3) This is Perl version 5.008000 (5.8.0) This is MailScanner version 4.34.8 Module versions are: 1.00 AnyDBM_File 1.13 Archive::Zip 1.01 Carp 1.119 Convert::BinHex 1.00 DirHandle 1.04 Fcntl 2.71 File::Basename 2.05 File::Copy 2.01 FileHandle 1.05 File::Path 0.13 File::Temp 1.27 HTML::Entities 3.36 HTML::Parser 2.28 HTML::TokeParser 1.20 IO 1.09 IO::File 1.122 IO::Pipe 3.03 MIME::Base64 5.413 MIME::Decoder 5.413 MIME::Decoder::UU 5.413 MIME::Head 5.413 MIME::Parser 3.03 MIME::QuotedPrint 5.413 MIME::Tools 0.09 Net::CIDR 1.05 POSIX 1.75 Socket 0.03 Sys::Syslog 1.02 Time::localtime Optional module versions are: 1.810 DB_File 1.00 Digest 1.01 Digest::HMAC 2.20 Digest::MD5 2.10 Digest::SHA1 missing Inline missing Mail::ClamAV 3.000000 Mail::SpamAssassin 1.997 Mail::SPF::Query 0.15 Net::CIDR::Lite 0.48 Net::DNS missing Net::LDAP missing Parse::RecDescent missing SAVI 1.2 Sys::Hostname::Long 2.26 Test::Harness 0.47 Test::Simple 1.89 Text::Balanced 1.31 URI Denis -- _ �v� Denis Beauchemin, analyste /(_)\ Universit� de Sherbrooke, S.T.I. ^ ^ T: 819.821.8000x2252 F: 819.821.8045 ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From mkettler at EVI-INC.COM Wed Oct 6 18:36:54 2004 From: mkettler at EVI-INC.COM (Matt Kettler) Date: Thu Jan 12 21:27:09 2006 Subject: Bayes rebuild Message-ID: At 12:45 PM 10/6/2004, Dean Jones wrote: >Should i do the Bayes rebuild from within MailScanner.conf or should i >do it seperately from cron? Either works. I generally do both, and treat the cronjob as a backup measure. However, at Julian's request I've been running without the cronjob to verify it also performs expiry when needed, and it does. >How often should Bayes be rebuilt? Daily, give or take a bit depending on your preference. I've done it every hour as well, but that's really just a matter of how loaded your system is. The rebuild will also force any journaling to sync, so if you're using SA's bayes_learn_to_journal option you'll probably want to do it more frequently so that the autolearn data gets folded back into the live bayes DB more frequently. I'd say at least twice a day here. I'd also advise disabling bayes autoexpire in your local.cf (can't do it in spam.asssassin.prefs.conf). bayes_auto_expire 0 ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From ssilva at SGVWATER.COM Wed Oct 6 18:37:04 2004 From: ssilva at SGVWATER.COM (Scott Silva) Date: Thu Jan 12 21:27:09 2006 Subject: Disabling virus scanning but not spam checking? Message-ID: -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Scott Silva wrote: | Eric Sauvageau wrote: | | Hi, | | | | I have a few customers who only require the spam filtering but not the | | virus checking. | | | | I was hoping to be able to use a ruleset on the Virus Scanning option, | | unfortunately this option disables ALL mail processing, and not just | | virus scanning. | | | | Any suggestion/code patch I could apply? | | | | Having separate options to disable Virus Scanning and Disable All | | Processing would probably be a good idea IMHO. | "Virus Scanning = yes" and leave "Virus Scanners =" blank Sorry! Should be Virus Scanners = none Where is the "Unsend" button!! -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.1 (MingW32) Comment: Using GnuPG with Thunderbird - http://enigmail.mozdev.org iD8DBQFBZC1ARADw9lziUqQRAg+RAJ97/DRSTu9MKwuOkKEcs35D1AvWnACfYCMc xAP6MyJTaDdKjR40zccWUGQ= =RUgo -----END PGP SIGNATURE----- ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From mailscanner at ecs.soton.ac.uk Wed Oct 6 18:37:54 2004 From: mailscanner at ecs.soton.ac.uk (Julian Field) Date: Thu Jan 12 21:27:09 2006 Subject: Please try this: Re: Installation problems with MS 4.34.8-1/MIME::QuotedPrint Message-ID: At long last. I will update the downloads page. There's no need for anyone already running -1 without any problems to upgrade to -4, so I won't announce it. At 18:26 06/10/2004, you wrote: >Julian > I went ahead and did the ./install.sh on MailScanner-4.34.8-4 > > Before I seen your post on rpm -e --nodeps ... > As for the installation it went fine! > > up2date -u is also fixed! Way to go!! > > > Brian > > > >|-----Original Message----- >|From: MailScanner mailing list [mailto:MAILSCANNER@JISCMAIL.AC.UK]On >|Behalf Of Julian Field >|Sent: Wednesday, October 06, 2004 12:55 PM >|To: MAILSCANNER@JISCMAIL.AC.UK >|Subject: Re: Please try this: Re: Installation problems with MS >|4.34.8-1/MIME::QuotedPrint >| >| >|Okay, that was -3. Now I've created -4 which I have tested on a RHEL system >|and it seems to be rather cleaner. Would you believe that when rpmbuild >|constructs the dependency list, it actually looks at the "use" statements >|in the Perl scripts and scrapes version numbers out of them! Yuch! >|up2date -u on the RHEL box no longer complains about these modules. >|MailScanner thanks transtec Computers for their support. > > >-- >This message has been scanned for viruses and >dangerous content by MailScanner, and is >believed to be clean. >MailScanner thanks transtec Computers for their support. > >------------------------ MailScanner list ------------------------ >To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: >'leave mailscanner' in the body of the email. >Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and >the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). -- Julian Field www.MailScanner.info Professional Support Services at www.MailScanner.biz MailScanner thanks transtec Computers for their support Buy the MailScanner book at www.MailScanner.info/store PGP footprint: EE81 D763 3DB0 0BFD E1DC 7222 11F6 5947 1415 B654 ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From mkettler at EVI-INC.COM Wed Oct 6 18:47:13 2004 From: mkettler at EVI-INC.COM (Matt Kettler) Date: Thu Jan 12 21:27:09 2006 Subject: Auto-Whitelist growing Message-ID: At 04:58 AM 10/6/2004, Julian Field wrote: >You need to turn off the auto_whitelist setting in >spam.assassin.prefs.conf. For some reason, turning it off from the API >doesn't appear to work any more. I might remove the MailScanner.conf option >that does this. Julian, does that work? use_auto_whitelist is an administrator setting, SA should refuse to honor it in spam.assassin.prefs.conf if it is working correctly. It should only honor it in local.cf. ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From mailscanner at ecs.soton.ac.uk Wed Oct 6 18:57:15 2004 From: mailscanner at ecs.soton.ac.uk (Julian Field) Date: Thu Jan 12 21:27:09 2006 Subject: ANNOUNCE: MailScanner Stable 4.34.8 released Message-ID: Has anyone else seen this? At 18:36 06/10/2004, you wrote: >Julian (looks like the previous message didn't go to the list), > >I upgraded one of my servers to 4.34.8 and my filename.rules.conf got >replaced by the one in the installation RPM. No rpmnew or rpmsave... > >Since I customized it with French comments, I was surprised to see English >comments in emails sent to users... > >Could you make sure this doesn't happen again? I always look for rpmnew >files after an upgrade, but I didn't I needed also to look at other files also. -- Julian Field www.MailScanner.info Professional Support Services at www.MailScanner.biz MailScanner thanks transtec Computers for their support Buy the MailScanner book at www.MailScanner.info/store PGP footprint: EE81 D763 3DB0 0BFD E1DC 7222 11F6 5947 1415 B654 ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From mailscanner at ecs.soton.ac.uk Wed Oct 6 19:12:21 2004 From: mailscanner at ecs.soton.ac.uk (Julian Field) Date: Thu Jan 12 21:27:09 2006 Subject: The Party Line on Bayes settings? Message-ID: I don't know about al, but personally I haven't tried this yet. I'm just letting SA do its expiry runs when it wants to. Doesn't seem to be generating bayes_toks.expire files, so I'm going to leave it well alone. No pearls of wisdom on this occasion, sorry :-) At 17:59 06/10/2004, you wrote: >Julian et. al, > >Could you say a few words about the recommended settings for using >Bayes with SA 3.0 and the latest MailScanner? I had the common >problem of bayes_toks.expire files piling up after upgrading to >SA 3.0. I read thru the FAQ on Bayes lock files >(http://www.sng.ecs.soton.ac.uk/mailscanner/serve/cache/303.html) >and followed this advice. I used to have (with MS 4.33 and SA 2.64) >Rebuild Bayes Every = 86400, but I now use the factory default of >zero. I have a cron job that runs the attached shell script once >a day, to learn spam/ham and do the force-expire/sync, which came >out of list posting months ago. > >I'm getting to the point where I'm really wondering if I'm doing >Bayes correctly any more. I'm sure I'm not the only one. Maybe >Julian's wisdom on this could make it to the MAQ? -- Julian Field www.MailScanner.info Professional Support Services at www.MailScanner.biz MailScanner thanks transtec Computers for their support Buy the MailScanner book at www.MailScanner.info/store PGP footprint: EE81 D763 3DB0 0BFD E1DC 7222 11F6 5947 1415 B654 ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From Denis.Beauchemin at USHERBROOKE.CA Wed Oct 6 19:23:14 2004 From: Denis.Beauchemin at USHERBROOKE.CA (Denis Beauchemin) Date: Thu Jan 12 21:27:09 2006 Subject: ANNOUNCE: MailScanner Stable 4.34.8 released Message-ID: Denis Beauchemin wrote: > I upgraded one of my servers to 4.34.8 and my filename.rules.conf got > replaced by the one in the installation RPM. No rpmnew or rpmsave... > > Could you make sure this doesn't happen again? I always look for > rpmnew files after an upgrade, but I didn't I needed also to look at > other files also. Looks like it may have been my fault... I just installed on a new system and I now have a filename.rules.conf.rpmnew... :-/ > > I also had problems with perl-ExtUtils-MakeMaker-6.05-1: > le fichier /usr/share/man/man3/ExtUtils::testlib.3pm.gz de > l'installation de perl-ExtUtils-MakeMaker-6.05-1 entre en conflit avec > le fichier du paquetage perl-5.8.0-88.7 > > Sorry for the French error message. It says that it is conflicting > with my Perl 5.8 RPM... I had to force install it. This one is still there. I had to: cd /usr/src/redhat/RPMS/noarch rpm -Uvh --force perl-ExtUtils-MakeMaker-6.05-1.noarch.rpm to install it... Denis -- _ �v� Denis Beauchemin, analyste /(_)\ Universit� de Sherbrooke, S.T.I. ^ ^ T: 819.821.8000x2252 F: 819.821.8045 ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From xterm1 at TATORZ.COM Wed Oct 6 19:38:06 2004 From: xterm1 at TATORZ.COM (xterm1) Date: Thu Jan 12 21:27:09 2006 Subject: ANNOUNCE: MailScanner Stable 4.34.8 released Message-ID: Julian On the version we had just used to fix up2date it did exactly that! Left my Mailscanner.conf alone! mailscanner-4.34.8-4 |-----Original Message----- |From: MailScanner mailing list [mailto:MAILSCANNER@JISCMAIL.AC.UK]On |Behalf Of Julian Field |Sent: Wednesday, October 06, 2004 1:57 PM |To: MAILSCANNER@JISCMAIL.AC.UK |Subject: Re: ANNOUNCE: MailScanner Stable 4.34.8 released | | |Has anyone else seen this? | |At 18:36 06/10/2004, you wrote: |>Julian (looks like the previous message didn't go to the list), |> |>I upgraded one of my servers to 4.34.8 and my filename.rules.conf got |>replaced by the one in the installation RPM. No rpmnew or rpmsave... |> |>Since I customized it with French comments, I was surprised to see English |>comments in emails sent to users... |> |>Could you make sure this doesn't happen again? I always look for rpmnew |>files after an upgrade, but I didn't I needed also to look at |other files also. | |-- |Julian Field |www.MailScanner.info |Professional Support Services at www.MailScanner.biz |MailScanner thanks transtec Computers for their support |Buy the MailScanner book at www.MailScanner.info/store | |PGP footprint: EE81 D763 3DB0 0BFD E1DC 7222 11F6 5947 1415 B654 | |------------------------ MailScanner list ------------------------ |To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: |'leave mailscanner' in the body of the email. |Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and |the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). | |-- |This message has been scanned for viruses and |dangerous content by MailScanner, and is |believed to be clean. |MailScanner thanks transtec Computers for their support. -- This message has been scanned for viruses and dangerous content by MailScanner, and is believed to be clean. MailScanner thanks transtec Computers for their support. ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From eric.sauvageau at gmail.com Wed Oct 6 19:40:10 2004 From: eric.sauvageau at gmail.com (Eric Sauvageau) Date: Thu Jan 12 21:27:10 2006 Subject: Disabling virus scanning but not spam checking? Message-ID: On Wed, 6 Oct 2004 10:37:04 -0700, Scott Silva wrote: > | | I have a few customers who only require the spam filtering but not the > | | virus checking. > | | > | | I was hoping to be able to use a ruleset on the Virus Scanning option, > | | unfortunately this option disables ALL mail processing, and not just > | | virus scanning. > | | > | | Any suggestion/code patch I could apply? > | | > | | Having separate options to disable Virus Scanning and Disable All > | | Processing would probably be a good idea IMHO. > | "Virus Scanning = yes" and leave "Virus Scanners =" blank > Sorry! Should be Virus Scanners = none > Where is the "Unsend" button!! Wouldn't have worked. I needed per-domain settings, and Virus Scanners doesn't accept rulesets. Virus Scanning = path/to/ruleset is working as expected, it was just the .conf documentation that was leading to confusion - Julian mentions in his reply that it's fixed now. --- Eric ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From danslists at CONPOINT.COM Wed Oct 6 19:44:31 2004 From: danslists at CONPOINT.COM (Dan Spray) Date: Thu Jan 12 21:27:10 2006 Subject: Need clarification on whitelist rules Message-ID: Okay, here is what I currently have in mailscanner.conf... Is Definitely Not Spam = %rules-dir%/spam.whitelist.rules And here is what I have in my spam.whitelist.rules file... FromOrTo: default no #To To: dalder@conpoint.com no To: tdickie@conpoint.com yes To: randjnelson@conpoint.com yes What else do I need? I believe that I have this setup correctly but please correct me if I am wrong. With the above config I am seeing what I described below. Thanks for all your help with this, Dan -----Original Message----- From: MailScanner mailing list [mailto:MAILSCANNER@JISCMAIL.AC.UK] On Behalf Of Julian Field Sent: Wednesday, October 06, 2004 10:09 AM To: MAILSCANNER@JISCMAIL.AC.UK Subject: Re: Need clarification on whitelist rules In which case put a Custom Function on "Is Definitely Not Spam" (i.e. the spam whitelist) and use that to mess with the list of recipients of the message. That might work. At 15:53 06/10/2004, you wrote: >That is the problem though. I have a customer who has asked to be >whitelisted so I add them to the spam.whitelist.rules file. Then a spam >message comes in and is addressed to 10 people, ONE of which is the customer >that wanted to be whitelisted. The message however is declared whitelisted >and is delivered to all 10 people even though it is actually scored as spam. > >Dan > >-----Original Message----- >From: MailScanner mailing list [mailto:MAILSCANNER@JISCMAIL.AC.UK] On Behalf >Of Julian Field >Sent: Wednesday, October 06, 2004 9:32 AM >To: MAILSCANNER@JISCMAIL.AC.UK >Subject: Re: Need clarification on whitelist rules > >Only if you are deleting it and not delivering it to the people who didn't >whitelist it. >For each recipient, you can either >1) whitelist and deliver it >2) delete it >Then it's easy, and I've done it before. > >At 14:34 06/10/2004, you wrote: > >Okay, so now that I am back in the office, is there anyway to avoid having > >all of the recipients whitelisted when just one of the recipients has > >requested to be whitelisted? > > > >Dan > > > >-----Original Message----- > >From: MailScanner mailing list [mailto:MAILSCANNER@JISCMAIL.AC.UK] On >Behalf > >Of Julian Field > >Sent: Friday, October 01, 2004 10:04 AM > >To: MAILSCANNER@JISCMAIL.AC.UK > >Subject: Re: Need clarification on whitelist rules > > > >At 15:26 01/10/2004, you wrote: > > > > -----Original Message----- > > > > From: MailScanner mailing list [mailto:MAILSCANNER@JISCMAIL.AC.UK]On > > > > Behalf Of Julian Field > > > > Sent: Friday, October 01, 2004 9:10 AM > > > > To: MAILSCANNER@JISCMAIL.AC.UK > > > > Subject: Re: Need clarification on whitelist rules > > > > > > > > > > > > At 14:56 01/10/2004, you wrote: > > > > > > -----Original Message----- > > > > > > From: MailScanner mailing list >[mailto:MAILSCANNER@JISCMAIL.AC.UK]On > > > > > > Behalf Of Julian Field > > > > > > Sent: Friday, October 01, 2004 7:57 AM > > > > > > To: MAILSCANNER@JISCMAIL.AC.UK > > > > > > Subject: Re: Need clarification on whitelist rules > > > > > > > > > > > > > > > > > > > > > > > > > > > > > What you need is a Custom Function that edits the recipients > > > > list in each > > > > > > message, according to whether they want to be filtered or > > > > not. I've done > > > > > > something like this already, just haven't yet published it. > > > > > > > > > > > > What form would people like it in? Added to the per-user > > > > white and black > > > > > > list code? > > > > > > It would have to be a simple "remove them from the message if > > > > > > it's in their > > > > > > blacklist or not in their whitelist". > > > > > > > > > > > > Can people see any problems with this? Something is nagging > > > > me that this > > > > > > isn't the correct functionality, but I can't see what the > > > > right answer is > > > > > > for definite. > > > > > > -- > > > > > > > > > >I guess my first question is how it's tagged as spam when there is a > >rule > > > > >file for the spam scoring settings? If user A tagges as spam > > > > with a score of > > > > >5.0 and user B tagges it with a score of 7.5 how does the message get > > > > >tagged, since a score of 6.5 would flag as spam for user A and > > > > ham for user > > > > >B? > > > > > > > > We use it only for automatic spam deletion. In your example, user A > >would > > > > be removed from the list of recipients, and it would be normally > >delivered > > > > to user B. To use it for anything other than spam deletion is pretty > >much > > > > impossible. > > > > > > > > -- > > > > > >Isn't this what you are proposing above? > > > > > > > > > It would have to be a simple "remove them from the message if > > > > > > it's in their > > > > > > blacklist or not in their whitelist". > > > > > >so if you handle the white/black listing here if it's spam and >whitelisted > > >don't remove them and if it's ham but blacklisted do remove them, or am I > > >missing something? > > > > > > > I would think where every the per user scoring is checked > > >if the whitelist/blacklist was checked as well it would simply adjust the > > >actual tagging as spam or ham the same as the scoring based tagging >would, > > >the difference being if it scores as 6.5 and the user threshold is 7.5 >but > > >it's blacklisted it would be tagged as spam and not ham? > > > >I don't understand that sentence at all, sorry. > > > > > I'm sorry if I am > > >coming across dense just looking for a way to simplify the overall code > > >changes > > > >-- > >Julian Field > >www.MailScanner.info > >MailScanner thanks transtec Computers for their support > >Buy the MailScanner book at www.MailScanner.info/store > > > >PGP footprint: EE81 D763 3DB0 0BFD E1DC 7222 11F6 5947 1415 B654 > > > >------------------------ MailScanner list ------------------------ > >To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: > >'leave mailscanner' in the body of the email. > >Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and > >the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). > > > >------------------------ MailScanner list ------------------------ > >To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: > >'leave mailscanner' in the body of the email. > >Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and > >the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). > >-- >Julian Field >www.MailScanner.info >MailScanner thanks transtec Computers for their support >Buy the MailScanner book at www.MailScanner.info/store > >PGP footprint: EE81 D763 3DB0 0BFD E1DC 7222 11F6 5947 1415 B654 > >------------------------ MailScanner list ------------------------ >To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: >'leave mailscanner' in the body of the email. >Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and >the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). > >------------------------ MailScanner list ------------------------ >To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: >'leave mailscanner' in the body of the email. >Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and >the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). -- Julian Field www.MailScanner.info MailScanner thanks transtec Computers for their support Buy the MailScanner book at www.MailScanner.info/store PGP footprint: EE81 D763 3DB0 0BFD E1DC 7222 11F6 5947 1415 B654 ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From danslists at CONPOINT.COM Wed Oct 6 19:51:06 2004 From: danslists at CONPOINT.COM (Dan Spray) Date: Thu Jan 12 21:27:10 2006 Subject: Need clarification on whitelist rules Message-ID: Thank you for the link. This is exactly what is happening. However, I am using postfix not sendmail. Anyone out there that has done the same thing in postfix? Dan -----Original Message----- From: MailScanner mailing list [mailto:MAILSCANNER@JISCMAIL.AC.UK] On Behalf Of Dan Sent: Wednesday, October 06, 2004 10:27 AM To: MAILSCANNER@JISCMAIL.AC.UK Subject: Re: Need clarification on whitelist rules I had this problem as well. I assume you are using Sendmail. Following this guide in the FAQ solved the problem for me. http://www.sng.ecs.soton.ac.uk/mailscanner/serve/cache/169.html regards, -dan -----Original Message----- From: MailScanner mailing list [mailto:MAILSCANNER@JISCMAIL.AC.UK] On Behalf Of Dan Spray Sent: October 6, 2004 9:53 AM To: MAILSCANNER@JISCMAIL.AC.UK Subject: Re: Need clarification on whitelist rules That is the problem though. I have a customer who has asked to be whitelisted so I add them to the spam.whitelist.rules file. Then a spam message comes in and is addressed to 10 people, ONE of which is the customer that wanted to be whitelisted. The message however is declared whitelisted and is delivered to all 10 people even though it is actually scored as spam. Dan -----Original Message----- From: MailScanner mailing list [mailto:MAILSCANNER@JISCMAIL.AC.UK] On Behalf Of Julian Field Sent: Wednesday, October 06, 2004 9:32 AM To: MAILSCANNER@JISCMAIL.AC.UK Subject: Re: Need clarification on whitelist rules Only if you are deleting it and not delivering it to the people who didn't whitelist it. For each recipient, you can either 1) whitelist and deliver it 2) delete it Then it's easy, and I've done it before. At 14:34 06/10/2004, you wrote: >Okay, so now that I am back in the office, is there anyway to avoid >having all of the recipients whitelisted when just one of the >recipients has requested to be whitelisted? > >Dan > >-----Original Message----- >From: MailScanner mailing list [mailto:MAILSCANNER@JISCMAIL.AC.UK] On Behalf >Of Julian Field >Sent: Friday, October 01, 2004 10:04 AM >To: MAILSCANNER@JISCMAIL.AC.UK >Subject: Re: Need clarification on whitelist rules > >At 15:26 01/10/2004, you wrote: > > > -----Original Message----- > > > From: MailScanner mailing list > > > [mailto:MAILSCANNER@JISCMAIL.AC.UK]On > > > Behalf Of Julian Field > > > Sent: Friday, October 01, 2004 9:10 AM > > > To: MAILSCANNER@JISCMAIL.AC.UK > > > Subject: Re: Need clarification on whitelist rules > > > > > > > > > At 14:56 01/10/2004, you wrote: > > > > > -----Original Message----- > > > > > From: MailScanner mailing list [mailto:MAILSCANNER@JISCMAIL.AC.UK]On > > > > > Behalf Of Julian Field > > > > > Sent: Friday, October 01, 2004 7:57 AM > > > > > To: MAILSCANNER@JISCMAIL.AC.UK > > > > > Subject: Re: Need clarification on whitelist rules > > > > > > > > > > > > > > > > > > > > > > > > What you need is a Custom Function that edits the recipients > > > list in each > > > > > message, according to whether they want to be filtered or > > > not. I've done > > > > > something like this already, just haven't yet published it. > > > > > > > > > > What form would people like it in? Added to the per-user > > > white and black > > > > > list code? > > > > > It would have to be a simple "remove them from the message if > > > > > it's in their blacklist or not in their whitelist". > > > > > > > > > > Can people see any problems with this? Something is nagging > > > me that this > > > > > isn't the correct functionality, but I can't see what the > > > right answer is > > > > > for definite. > > > > > -- > > > > > > > >I guess my first question is how it's tagged as spam when there > > > >is a >rule > > > >file for the spam scoring settings? If user A tagges as spam > > > with a score of > > > >5.0 and user B tagges it with a score of 7.5 how does the message > > > >get tagged, since a score of 6.5 would flag as spam for user A > > > >and > > > ham for user > > > >B? > > > > > > We use it only for automatic spam deletion. In your example, user > > > A >would > > > be removed from the list of recipients, and it would be normally >delivered > > > to user B. To use it for anything other than spam deletion is > > > pretty >much > > > impossible. > > > > > > -- > > > >Isn't this what you are proposing above? > > > > > > > It would have to be a simple "remove them from the message if > > > > > it's in their blacklist or not in their whitelist". > > > >so if you handle the white/black listing here if it's spam and whitelisted > >don't remove them and if it's ham but blacklisted do remove them, or > >am I missing something? > > > > I would think where every the per user scoring is checked if the > >whitelist/blacklist was checked as well it would simply adjust the > >actual tagging as spam or ham the same as the scoring based tagging would, > >the difference being if it scores as 6.5 and the user threshold is > >7.5 but > >it's blacklisted it would be tagged as spam and not ham? > >I don't understand that sentence at all, sorry. > > > I'm sorry if I am > >coming across dense just looking for a way to simplify the overall > >code changes > >-- >Julian Field >www.MailScanner.info >MailScanner thanks transtec Computers for their support Buy the >MailScanner book at www.MailScanner.info/store > >PGP footprint: EE81 D763 3DB0 0BFD E1DC 7222 11F6 5947 1415 B654 > >------------------------ MailScanner list ------------------------ To >unsubscribe, email jiscmail@jiscmail.ac.uk with the words: >'leave mailscanner' in the body of the email. >Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the >archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). > >------------------------ MailScanner list ------------------------ To >unsubscribe, email jiscmail@jiscmail.ac.uk with the words: >'leave mailscanner' in the body of the email. >Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the >archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). -- Julian Field www.MailScanner.info MailScanner thanks transtec Computers for their support Buy the MailScanner book at www.MailScanner.info/store PGP footprint: EE81 D763 3DB0 0BFD E1DC 7222 11F6 5947 1415 B654 ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From ssilva at SGVWATER.COM Wed Oct 6 19:51:26 2004 From: ssilva at SGVWATER.COM (Scott Silva) Date: Thu Jan 12 21:27:10 2006 Subject: Need clarification on whitelist rules Message-ID: -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Dan Spray wrote: | Okay, here is what I currently have in mailscanner.conf... | | Is Definitely Not Spam = %rules-dir%/spam.whitelist.rules | | And here is what I have in my spam.whitelist.rules file... | | FromOrTo: default no | | #To | To: dalder@conpoint.com no | To: tdickie@conpoint.com yes | To: randjnelson@conpoint.com yes | | What else do I need? I believe that I have this setup correctly but please | correct me if I am wrong. With the above config I am seeing what I | described below. FromorTo: default no should be last rule. Default rules always go at the end. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.1 (MingW32) Comment: Using GnuPG with Thunderbird - http://enigmail.mozdev.org iD8DBQFBZD6uRADw9lziUqQRAlGwAJ9uFz2KgJICdVQc5kMWXO4p/ny3RwCdEQ37 2fmIfvgfqFEUD/IiMMOOGNw= =x8ZK -----END PGP SIGNATURE----- ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From mailscanner at ecs.soton.ac.uk Wed Oct 6 20:06:29 2004 From: mailscanner at ecs.soton.ac.uk (Julian Field) Date: Thu Jan 12 21:27:10 2006 Subject: Need clarification on whitelist rules Message-ID: At 19:51 06/10/2004, you wrote: >-----BEGIN PGP SIGNED MESSAGE----- >Hash: SHA1 > >Dan Spray wrote: >| Okay, here is what I currently have in mailscanner.conf... >| >| Is Definitely Not Spam = %rules-dir%/spam.whitelist.rules >| >| And here is what I have in my spam.whitelist.rules file... >| >| FromOrTo: default no >| >| #To >| To: dalder@conpoint.com no >| To: tdickie@conpoint.com yes >| To: randjnelson@conpoint.com yes >| >| What else do I need? I believe that I have this setup correctly but >please >| correct me if I am wrong. With the above config I am seeing what I >| described below. >FromorTo: default no >should be last rule. >Default rules always go at the end. It's a good guideline, as it makes the rulesets make more sense. However it isn't absolutely necessary. Just this can make it a bit easier if you auto-generate rulesets with scripts. -- Julian Field www.MailScanner.info Professional Support Services at www.MailScanner.biz MailScanner thanks transtec Computers for their support Buy the MailScanner book at www.MailScanner.info/store PGP footprint: EE81 D763 3DB0 0BFD E1DC 7222 11F6 5947 1415 B654 ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From jase at SENSIS.COM Wed Oct 6 20:16:47 2004 From: jase at SENSIS.COM (Desai, Jason) Date: Thu Jan 12 21:27:10 2006 Subject: Multiple actions in a ruleset Message-ID: Julian Field wrote: > At 21:25 05/10/2004, you wrote: >> I just want to clarify the syntax if I want to have a ruleset rule >> that has multiple actions. For example, a domain that wants their >> spam quarantined, but still receive a notification. >> >> The ruleset I think to do this would be: >> >> To: domain.com store notify >> >> I just want to confirm the syntax for multiple actions like this... >> Do I separate them w/a space as I have here, or do I use a comma, >> like this: >> >> To: domain.com store,notify > > You need to have a space in between them. Extra spaces and commas are > fine too, but there must be at least one space. So > store, notify > and > store notify > are okay, but > store,notify > is not. Will this work for actions with 2 conditions? I am having problems with rules with 2 conditions and multiple actions. MailScanner complains about there being a syntax error in the file. But I don't get a syntax error if I just have one action. Directly from the EXAMPLES file (#8): From: trapme.com and To: abuse@* deliver works just fine but: From: trapme.com and To: abuse@* store deliver gives a syntax error. Is this supposed to work, or am I doing something wrong? I was running MailScanner 4.29.7, but upgraded to 4.34.8 and I still get the same problem. Thanks. Jase ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From Steve.Swaney at FSL.COM Wed Oct 6 20:17:41 2004 From: Steve.Swaney at FSL.COM (Steve Swaney) Date: Thu Jan 12 21:27:10 2006 Subject: Need clarification on whitelist rules Message-ID: I don't believe it can be done using Postfix. Please correct me if I'm wrong. I know it works in sendmail - we use it on many systems; I believe it can be done in exim. Mike Bacher [mikeb@tulsaconnect.com] sent me the directions below: ----------------------------------- FYI, a potential solution to the white/blacklist problem with MailScanner when using exim as the MTA: [I wont have time to test this myself for a week or two] -------- Original Message -------- Return-Path: Date: Fri, 16 Jul 2004 11:09:59 +0100 (BST) From: Philip Hazel Reply-To: exim-users@exim.org To: Mike Bacher On Fri, 16 Jul 2004, Mike Bacher wrote: > Well, I only care that a message with multiple recipients gets broken > up into 1 message per recipient and placed into the queue for outbound > delivery, You can do this with an "incestuous" call to exim. Make this your first router: split: driver = accept domains = the.domains.you.want.to.do.this.for condition = ${if eq {$received_protocol}{split}{no}{yes}} transport = send_to_self no_verify Add this transport: send_to_self: driver = pipe batch_max = 1 use_bsmtp command = /usr/sbin/exim -oMr split -bS user = exim Untested. YMMV. You logs will get bigger, of course... -- Philip Hazel University of Cambridge Computing Service, ph10@cus.cam.ac.uk Cambridge, England. Phone: +44 1223 334714. Get the Exim 4 book: http://www.uit.co.uk/exim-book ------------------------------------------------------------- Steve Steve Swaney President Fortress Systems Ltd. www.fsl.com steve.swaney@fsl.com > -----Original Message----- > From: MailScanner mailing list [mailto:MAILSCANNER@JISCMAIL.AC.UK] On > Behalf Of Dan Spray > Sent: Wednesday, October 06, 2004 2:51 PM > To: MAILSCANNER@JISCMAIL.AC.UK > Subject: Re: Need clarification on whitelist rules > > Thank you for the link. This is exactly what is happening. However, I am > using postfix not sendmail. Anyone out there that has done the same thing > in postfix? > > Dan > > -----Original Message----- > From: MailScanner mailing list [mailto:MAILSCANNER@JISCMAIL.AC.UK] On > Behalf > Of Dan > Sent: Wednesday, October 06, 2004 10:27 AM > To: MAILSCANNER@JISCMAIL.AC.UK > Subject: Re: Need clarification on whitelist rules > > I had this problem as well. > I assume you are using Sendmail. > > Following this guide in the FAQ solved the problem for me. > > http://www.sng.ecs.soton.ac.uk/mailscanner/serve/cache/169.html > > regards, > -dan > > > -----Original Message----- > From: MailScanner mailing list [mailto:MAILSCANNER@JISCMAIL.AC.UK] On > Behalf > Of Dan Spray > Sent: October 6, 2004 9:53 AM > To: MAILSCANNER@JISCMAIL.AC.UK > Subject: Re: Need clarification on whitelist rules > > That is the problem though. I have a customer who has asked to be > whitelisted so I add them to the spam.whitelist.rules file. Then a spam > message comes in and is addressed to 10 people, ONE of which is the > customer > that wanted to be whitelisted. The message however is declared > whitelisted > and is delivered to all 10 people even though it is actually scored as > spam. > > Dan > > -----Original Message----- > From: MailScanner mailing list [mailto:MAILSCANNER@JISCMAIL.AC.UK] On > Behalf > Of Julian Field > Sent: Wednesday, October 06, 2004 9:32 AM > To: MAILSCANNER@JISCMAIL.AC.UK > Subject: Re: Need clarification on whitelist rules > > Only if you are deleting it and not delivering it to the people who didn't > whitelist it. > For each recipient, you can either > 1) whitelist and deliver it > 2) delete it > Then it's easy, and I've done it before. > > At 14:34 06/10/2004, you wrote: > >Okay, so now that I am back in the office, is there anyway to avoid > >having all of the recipients whitelisted when just one of the > >recipients has requested to be whitelisted? > > > >Dan > > > >-----Original Message----- > >From: MailScanner mailing list [mailto:MAILSCANNER@JISCMAIL.AC.UK] On > Behalf > >Of Julian Field > >Sent: Friday, October 01, 2004 10:04 AM > >To: MAILSCANNER@JISCMAIL.AC.UK > >Subject: Re: Need clarification on whitelist rules > > > >At 15:26 01/10/2004, you wrote: > > > > -----Original Message----- > > > > From: MailScanner mailing list > > > > [mailto:MAILSCANNER@JISCMAIL.AC.UK]On > > > > Behalf Of Julian Field > > > > Sent: Friday, October 01, 2004 9:10 AM > > > > To: MAILSCANNER@JISCMAIL.AC.UK > > > > Subject: Re: Need clarification on whitelist rules > > > > > > > > > > > > At 14:56 01/10/2004, you wrote: > > > > > > -----Original Message----- > > > > > > From: MailScanner mailing list > [mailto:MAILSCANNER@JISCMAIL.AC.UK]On > > > > > > Behalf Of Julian Field > > > > > > Sent: Friday, October 01, 2004 7:57 AM > > > > > > To: MAILSCANNER@JISCMAIL.AC.UK > > > > > > Subject: Re: Need clarification on whitelist rules > > > > > > > > > > > > > > > > > > > > > > > > > > > > > What you need is a Custom Function that edits the recipients > > > > list in each > > > > > > message, according to whether they want to be filtered or > > > > not. I've done > > > > > > something like this already, just haven't yet published it. > > > > > > > > > > > > What form would people like it in? Added to the per-user > > > > white and black > > > > > > list code? > > > > > > It would have to be a simple "remove them from the message if > > > > > > it's in their blacklist or not in their whitelist". > > > > > > > > > > > > Can people see any problems with this? Something is nagging > > > > me that this > > > > > > isn't the correct functionality, but I can't see what the > > > > right answer is > > > > > > for definite. > > > > > > -- > > > > > > > > > >I guess my first question is how it's tagged as spam when there > > > > >is a > >rule > > > > >file for the spam scoring settings? If user A tagges as spam > > > > with a score of > > > > >5.0 and user B tagges it with a score of 7.5 how does the message > > > > >get tagged, since a score of 6.5 would flag as spam for user A > > > > >and > > > > ham for user > > > > >B? > > > > > > > > We use it only for automatic spam deletion. In your example, user > > > > A > >would > > > > be removed from the list of recipients, and it would be normally > >delivered > > > > to user B. To use it for anything other than spam deletion is > > > > pretty > >much > > > > impossible. > > > > > > > > -- > > > > > >Isn't this what you are proposing above? > > > > > > > > > It would have to be a simple "remove them from the message if > > > > > > it's in their blacklist or not in their whitelist". > > > > > >so if you handle the white/black listing here if it's spam and > whitelisted > > >don't remove them and if it's ham but blacklisted do remove them, or > > >am I missing something? > > > > > > > I would think where every the per user scoring is checked if the > > >whitelist/blacklist was checked as well it would simply adjust the > > >actual tagging as spam or ham the same as the scoring based tagging > would, > > >the difference being if it scores as 6.5 and the user threshold is > > >7.5 > but > > >it's blacklisted it would be tagged as spam and not ham? > > > >I don't understand that sentence at all, sorry. > > > > > I'm sorry if I am > > >coming across dense just looking for a way to simplify the overall > > >code changes > > > >-- > >Julian Field > >www.MailScanner.info > >MailScanner thanks transtec Computers for their support Buy the > >MailScanner book at www.MailScanner.info/store > > > >PGP footprint: EE81 D763 3DB0 0BFD E1DC 7222 11F6 5947 1415 B654 > > > >------------------------ MailScanner list ------------------------ To > >unsubscribe, email jiscmail@jiscmail.ac.uk with the words: > >'leave mailscanner' in the body of the email. > >Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the > >archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). > > > >------------------------ MailScanner list ------------------------ To > >unsubscribe, email jiscmail@jiscmail.ac.uk with the words: > >'leave mailscanner' in the body of the email. > >Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the > >archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). > > -- > Julian Field > www.MailScanner.info > MailScanner thanks transtec Computers for their support Buy the > MailScanner > book at www.MailScanner.info/store > > PGP footprint: EE81 D763 3DB0 0BFD E1DC 7222 11F6 5947 1415 B654 > > ------------------------ MailScanner list ------------------------ To > unsubscribe, email jiscmail@jiscmail.ac.uk with the words: > 'leave mailscanner' in the body of the email. > Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the > archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). > > ------------------------ MailScanner list ------------------------ To > unsubscribe, email jiscmail@jiscmail.ac.uk with the words: > 'leave mailscanner' in the body of the email. > Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the > archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). > > ------------------------ MailScanner list ------------------------ > To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: > 'leave mailscanner' in the body of the email. > Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and > the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). > > ------------------------ MailScanner list ------------------------ > To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: > 'leave mailscanner' in the body of the email. > Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and > the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). > > -- > This message has been scanned for viruses and > dangerous content by MailScanner, and is > believed to be clean. > > Fortress Systems Ltd. > www.fsl.com > -- This message has been scanned for viruses and dangerous content by MailScanner, and is believed to be clean. Fortress Systems Ltd. www.fsl.com ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From mailscanner at ecs.soton.ac.uk Wed Oct 6 20:22:17 2004 From: mailscanner at ecs.soton.ac.uk (Julian Field) Date: Thu Jan 12 21:27:10 2006 Subject: Multiple actions in a ruleset Message-ID: At 20:16 06/10/2004, you wrote: >Julian Field wrote: > > At 21:25 05/10/2004, you wrote: > >> I just want to clarify the syntax if I want to have a ruleset rule > >> that has multiple actions. For example, a domain that wants their > >> spam quarantined, but still receive a notification. > >> > >> The ruleset I think to do this would be: > >> > >> To: domain.com store notify > >> > >> I just want to confirm the syntax for multiple actions like this... > >> Do I separate them w/a space as I have here, or do I use a comma, > >> like this: > >> > >> To: domain.com store,notify > > > > You need to have a space in between them. Extra spaces and commas are > > fine too, but there must be at least one space. So > > store, notify > > and > > store notify > > are okay, but > > store,notify > > is not. > >Will this work for actions with 2 conditions? I am having problems with >rules with 2 conditions and multiple actions. MailScanner complains about >there being a syntax error in the file. But I don't get a syntax error if I >just have one action. > >Directly from the EXAMPLES file (#8): > >From: trapme.com and To: abuse@* deliver > >works just fine but: > >From: trapme.com and To: abuse@* store deliver > >gives a syntax error. Is this supposed to work, or am I doing something >wrong? I was running MailScanner 4.29.7, but upgraded to 4.34.8 and I still >get the same problem. Thanks. Try using store,deliver instead. Sounds like a bugette in the ruleset compiler. Trying to spot those "and" conditions is not as easy as it looks when you can't predict what might be the results of the rule. -- Julian Field www.MailScanner.info Professional Support Services at www.MailScanner.biz MailScanner thanks transtec Computers for their support Buy the MailScanner book at www.MailScanner.info/store PGP footprint: EE81 D763 3DB0 0BFD E1DC 7222 11F6 5947 1415 B654 ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From JHuber at MICROSOURCE.COM Wed Oct 6 20:27:02 2004 From: JHuber at MICROSOURCE.COM (Jeremy Huber) Date: Thu Jan 12 21:27:10 2006 Subject: How to find a slowdown? Message-ID: 1) The debug output didn't seem to indicate a certain spot where it's slow.. I can attach it if it'd help. 2) Turning the RBL lookups didn't speed it up much at all (just did skip_rbl_lookups 1 in spam.assassin.prefs.conf) 3) I next pulled out all the extra rules_du_jour scripts out (70_sare_adult.cf, 70_sare_random.cf, 99_sare_fraud_post25x.cf, antidrug.cf, blacklist.cf, bogus-virus-warnings.cf, evilnumbers.cf, local.cf, random.cf, tripwire.cf) of the /etc/mail/spamassassin directory, and now the spam checks are up around 4500 bytes per second, and screaming through the queue. 4) Turned back on RBL, and added all the .cf files EXCEPT the blacklist in, and tried again, still screaming through them. 5) Added in the blacklist - slower than snot. Ok, so the next question is: Is there a better way to do the blacklisting? I'm doing the spam.bydomain extra stuff, too, or I'd just add it into the MS blacklist.. (Thanks!) Jeremy -----Original Message----- From: MailScanner mailing list [mailto:MAILSCANNER@JISCMAIL.AC.UK] On Behalf Of Jeff A. Earickson Sent: Wednesday, October 06, 2004 11:02 AM To: MAILSCANNER@JISCMAIL.AC.UK Subject: Re: How to find a slowdown? Quick advice, run MailScanner in debug mode and see what happens. I'll bet that it gets slow on DNS lookups. It always helps to run a caching DNS (stealth secondary) on your mail server. Jeff Earickson Colby College On Wed, 6 Oct 2004, Jeremy Huber wrote: > Date: Wed, 6 Oct 2004 10:32:54 -0600 > From: Jeremy Huber > Reply-To: MailScanner mailing list > To: MAILSCANNER@JISCMAIL.AC.UK > Subject: How to find a slowdown? > > I've got a case where our brand new server that I put MailScanner on is > just CRAWLING. Dual 2.4Ghz Xeon with 4GB RAM running Fedora Core 2, MS > 4.33.3, and SA 2.63 (I've turned off the virus scanning temporarily). > We only push somewhere around 50k messages a day through it, so I'm not > sure why it's so slow. It almost always has hundreds of messages in the > inbound queue. I tried turning on LOG_SPEED, and the spam scanning > speed is usually around 600 bytes per second. That seems insanely slow, > but I didn't what's "good." I've got SA using DCC and Pyzor as well as > maybe 6 of the rulesets out of the rdj (one of which being the > blacklist). Am I just making SA do too much, and that's why it's so > slow? > > Thanks for any help you guys can give! > > Jeremy > > -- > Jeremy Huber, SCSA, LCP > jhuber@microsource.com > Datacenter Engineer > Microsource, Inc > > ------------------------ MailScanner list ------------------------ > To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: > 'leave mailscanner' in the body of the email. > Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and > the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). > ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From mike at ZANKER.ORG Wed Oct 6 20:30:34 2004 From: mike at ZANKER.ORG (Mike Zanker) Date: Thu Jan 12 21:27:10 2006 Subject: Please try this: Re: Installation problems with MS 4.34.8-1/MIME::QuotedPrint Message-ID: On 06 October 2004 17:54 +0100 Julian Field wrote: > Okay, that was -3. Now I've created -4 which I have tested on a RHEL > system and it seems to be rather cleaner. Unfortunately this breaks my up2date: up2date -u now gives: Fetching Obsoletes list for channel: rhel-i386-as-3... ######################################## Fetching rpm headers... ######################################## Name Version Rel ---------------------------------------------------------- perl 5.8.0 88.7 i386 Testing package set / solving RPM inter-dependencies... ######################################## RPM package conflict error. The message was: Test install failed because of package conflicts: package perl-5.8.0-88.7 is already installed If I do "up2date -l" I get: Fetching Obsoletes list for channel: rhel-i386-as-3... Fetching rpm headers... ######################################## Name Version Rel ---------------------------------------------------------- perl 5.8.0 88.7 i386 The following Packages are obsoleted by newer packages: Name-Version-Release obsoleted by Name-Version-Release ------------------------------------------------------------------------------- perl-MIME-Base64-3.03-1 perl-5.8.0-88.7 Mike. ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From greg at BLASTZONE.COM Wed Oct 6 20:44:32 2004 From: greg at BLASTZONE.COM (Greg Deputy) Date: Thu Jan 12 21:27:10 2006 Subject: Version History Message-ID: Is there a version history document for MailScanner someplace? I've checked the archives and faq/maq with no luck. I'm running version 4.33.3 and am curious what has changed in the latest release. ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From jase at SENSIS.COM Wed Oct 6 20:46:34 2004 From: jase at SENSIS.COM (Desai, Jason) Date: Thu Jan 12 21:27:10 2006 Subject: Multiple actions in a ruleset Message-ID: Julian Field wrote: > At 20:16 06/10/2004, you wrote: >> Julian Field wrote: >>> At 21:25 05/10/2004, you wrote: >>>> I just want to clarify the syntax if I want to have a ruleset rule >>>> that has multiple actions. For example, a domain that wants their >>>> spam quarantined, but still receive a notification. >>>> >>>> The ruleset I think to do this would be: >>>> >>>> To: domain.com store notify >>>> >>>> I just want to confirm the syntax for multiple actions like this... >>>> Do I separate them w/a space as I have here, or do I use a comma, >>>> like this: >>>> >>>> To: domain.com store,notify >>> >>> You need to have a space in between them. Extra spaces and commas >>> are fine too, but there must be at least one space. So >>> store, notify >>> and >>> store notify >>> are okay, but >>> store,notify >>> is not. >> >> Will this work for actions with 2 conditions? I am having problems >> with rules with 2 conditions and multiple actions. MailScanner >> complains about there being a syntax error in the file. But I don't >> get a syntax error if I just have one action. >> >> Directly from the EXAMPLES file (#8): >> >> From: trapme.com and To: abuse@* deliver >> >> works just fine but: >> >> From: trapme.com and To: abuse@* store deliver >> >> gives a syntax error. Is this supposed to work, or am I doing >> something wrong? I was running MailScanner 4.29.7, but upgraded to >> 4.34.8 and I still get the same problem. Thanks. > > Try using store,deliver instead. Sounds like a bugette in the ruleset > compiler. Trying to spot those "and" conditions is not as easy as it > looks when you can't predict what might be the results of the rule. Both "store,deliver" and "store, deliver" give syntax errors. I know it's not easy. I was going to report the bug and submit a patch, but I took a quick look at the code and decided to just report the bug. :-) Jase ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From peter at UCGBOOK.COM Wed Oct 6 21:01:18 2004 From: peter at UCGBOOK.COM (Peter Bonivart) Date: Thu Jan 12 21:27:10 2006 Subject: The Party Line on Bayes settings? Message-ID: Jeff A. Earickson wrote: > Julian et. al, > > Could you say a few words about the recommended settings for using > Bayes with SA 3.0 and the latest MailScanner? I had the common > problem of bayes_toks.expire files piling up after upgrading to > SA 3.0. I read thru the FAQ on Bayes lock files > (http://www.sng.ecs.soton.ac.uk/mailscanner/serve/cache/303.html) > and followed this advice. I used to have (with MS 4.33 and SA 2.64) > Rebuild Bayes Every = 86400, but I now use the factory default of > zero. I have a cron job that runs the attached shell script once > a day, to learn spam/ham and do the force-expire/sync, which came > out of list posting months ago. Do you have the original local.cf in /etc/mail/spamassassin or do you have it symlinked to spam.assassin.prefs.conf? Supposedly the bayes_auto_expire setting is only honored in local.cf so if you have that one symlinked to spam.assassin.prefs.conf, like I do, you're ok. I did that so I wouldn't have to bother with the -C and -p options all the time so that's a bonus. -- /Peter Bonivart --Unix lovers do it in the Sun ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From peter at UCGBOOK.COM Wed Oct 6 21:02:37 2004 From: peter at UCGBOOK.COM (Peter Bonivart) Date: Thu Jan 12 21:27:10 2006 Subject: Version History Message-ID: Greg Deputy wrote: > Is there a version history document for MailScanner someplace? I've > checked the archives and faq/maq with no luck. I'm running version > 4.33.3 and am curious what has changed in the latest release. The change log on the web site describes all changes. http://www.sng.ecs.soton.ac.uk/mailscanner/ChangeLog -- /Peter Bonivart --Unix lovers do it in the Sun ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From mkettler at EVI-INC.COM Wed Oct 6 21:08:51 2004 From: mkettler at EVI-INC.COM (Matt Kettler) Date: Thu Jan 12 21:27:10 2006 Subject: Version History Message-ID: At 03:44 PM 10/6/2004, Greg Deputy wrote: >Is there a version history document for MailScanner someplace? I've >checked the archives and faq/maq with no luck. I'm running version >4.33.3 and am curious what has changed in the latest release. Right on the main page, but burried in text, is a link to the changelog: http://www.sng.ecs.soton.ac.uk/mailscanner/ChangeLog ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From jaearick at COLBY.EDU Wed Oct 6 21:08:58 2004 From: jaearick at COLBY.EDU (Jeff A. Earickson) Date: Thu Jan 12 21:27:10 2006 Subject: The Party Line on Bayes settings? Message-ID: On Wed, 6 Oct 2004, Peter Bonivart wrote: > Date: Wed, 6 Oct 2004 22:01:18 +0200 > From: Peter Bonivart > Reply-To: MailScanner mailing list > To: MAILSCANNER@JISCMAIL.AC.UK > Subject: Re: The Party Line on Bayes settings? > > Jeff A. Earickson wrote: >> Julian et. al, >> >> Could you say a few words about the recommended settings for using >> Bayes with SA 3.0 and the latest MailScanner? I had the common >> problem of bayes_toks.expire files piling up after upgrading to >> SA 3.0. I read thru the FAQ on Bayes lock files >> (http://www.sng.ecs.soton.ac.uk/mailscanner/serve/cache/303.html) >> and followed this advice. I used to have (with MS 4.33 and SA 2.64) >> Rebuild Bayes Every = 86400, but I now use the factory default of >> zero. I have a cron job that runs the attached shell script once >> a day, to learn spam/ham and do the force-expire/sync, which came >> out of list posting months ago. > > Do you have the original local.cf in /etc/mail/spamassassin or do you > have it symlinked to spam.assassin.prefs.conf? Supposedly the > bayes_auto_expire setting is only honored in local.cf so if you have > that one symlinked to spam.assassin.prefs.conf, like I do, you're ok. I have /etc/mail/spamassassin/local.cf symlinked to MailScanner's spam.assassin.prefs.conf. In there I have bayes_auto_expire set to zero. The Bayes database has always benn a semi-mystery to me. Jeff Earickson Colby College ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From dustin.baer at IHS.COM Wed Oct 6 21:14:22 2004 From: dustin.baer at IHS.COM (Dustin Baer) Date: Thu Jan 12 21:27:10 2006 Subject: CustomConfig.pm per user/domain lists Message-ID: I've decided to try the per domain whitelisting/blacklisting in CustomConfig.pm. In http://www.jiscmail.ac.uk/cgi-bin/webadmin?A2=ind0305&L=mailscanner&P=R43253&I=-1 it is asked if wildcards are allowed. Julian mentions that he "might expand this later to allow IP prefixes and possibly domain suffixes." In a normal rules file, one is allowed to use wildcards. I've tried to use wildcards in the spam.bydomain/whitelist/... files with no success. Does the ability to do this exist? I've compared sub InitByDomainSpamWhitelist in the version I am currently using (4.31.6) and current version (4.34.8), but don't see any difference that might point to wildcard acceptance. Thanks, Dustin -- Dustin Baer Transport Extranet Network Services Information Handling Services 15 Inverness Way East Englewood, CO 80112 303-397-2836 ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From greg at BLASTZONE.COM Wed Oct 6 21:17:33 2004 From: greg at BLASTZONE.COM (Greg Deputy) Date: Thu Jan 12 21:27:10 2006 Subject: Version History Message-ID: Perfect, thanks. Might be a good thing to have in the main list of links at the top. > -----Original Message----- > From: MailScanner mailing list > [mailto:MAILSCANNER@JISCMAIL.AC.UK] On Behalf Of Matt Kettler > Sent: Wednesday, October 06, 2004 1:09 PM > To: MAILSCANNER@JISCMAIL.AC.UK > Subject: Re: Version History > > > At 03:44 PM 10/6/2004, Greg Deputy wrote: > >Is there a version history document for MailScanner someplace? I've > >checked the archives and faq/maq with no luck. I'm running version > >4.33.3 and am curious what has changed in the latest release. > > Right on the main page, but burried in text, is a link to the > changelog: > http://www.sng.ecs.soton.ac.uk/mailscanner/ChangeLog ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From vboulytchev at COINFOTECH.COM Wed Oct 6 22:10:01 2004 From: vboulytchev at COINFOTECH.COM (Boulytchev, Vasiliy) Date: Thu Jan 12 21:27:10 2006 Subject: MailScanner-4.34.8-1 Installation Problems Message-ID: That's the fix. If you guys see another one of these, tell the below to the client. Thanks, Vasiliy Boulytchev Colorado Information Technologies, Inc. http://www.coinfotech.com -----Original Message----- From: MailScanner mailing list [mailto:MAILSCANNER@JISCMAIL.AC.UK] On Behalf Of Marcin Rozek Sent: Wednesday, October 06, 2004 3:27 AM To: MAILSCANNER@JISCMAIL.AC.UK Subject: Re: MailScanner-4.34.8-1 Installation Problems Boulytchev, Vasiliy wrote: > Is it just some systems having issues? This is on Mandrake 10.0 I had the same issue on Mandrake. Workaround is to remove -n from brp-compress (as already mentioned), install from cpan all perl modules that doesn't want to --rebuild and then install with --nodeps --force the rest that builds but complain about rpm's dependences. After that MS works fine (with sophossavi, clamavmodule and spamassasin 3) ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). [ Part 2, Application/X-PKCS7-SIGNATURE 5.9KB. ] [ Unable to print this part. ] From hden at KCBBS.GEN.NZ Wed Oct 6 22:25:13 2004 From: hden at KCBBS.GEN.NZ (Hendrik den Hartog) Date: Thu Jan 12 21:27:10 2006 Subject: Spam Assassin Prefs Conf Message-ID: I may be blind to the obvious, but I've been reluctant to change my spam.assassin.prefs.conf file due to the fear of losing my 'tweaks', but, the following is part of a debug output.. SpamAssassin failed to parse line, skipping: auto_learn 1 Is this command depreciated? or a mistake of mine? Cheers! Hendrik ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From michele at BLACKNIGHTSOLUTIONS.COM Wed Oct 6 22:25:45 2004 From: michele at BLACKNIGHTSOLUTIONS.COM (Michele Neylon : Blacknight Solutions) Date: Thu Jan 12 21:27:10 2006 Subject: Spam Assassin Prefs Conf Message-ID: On Thu, 2004-10-07 at 10:25 +1300, Hendrik den Hartog wrote: > I may be blind to the obvious, but I've been reluctant > to change my spam.assassin.prefs.conf file due to the > fear of losing my 'tweaks', but, the following is > part of a debug output.. > > SpamAssassin failed to parse line, skipping: auto_learn 1 > > Is this command depreciated? or a mistake of mine? It's deprecated in SA 3 -- Mr Michele Neylon Blacknight Solutions http://www.blacknight.ie 059 9137101 ------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words: 'leave mailscanner' in the body of the email. Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html). From moacyrs at AKADNYX.COM.BR Wed Oct 6 22:30:14 2004 From: moacyrs at AKADNYX.COM.BR (Moacyr Leite da Silva) Date: Thu Jan 12 21:27:10 2006 Subject: MailScanner and Mail::ClamAV Message-ID:

With MailScanner-4.34.8-1 - I installed the MailScanner and Install-ClamAV-SA - and did the install of clamavmodule correctly (Mail::ClamAV - build Mail-ClamAV-0.11)

With MailScanner-4.34.8-4 - I received the following error when i try to install Mail::ClamAV

I already tryed to force install of module via MCPAN but no success.

Some tip?

Thanks

Moacyr Leite da Silva

rict-aliasing -I/usr/local/include -D_LARGEFILE_SOURCE -D_FILE_OFFSET_BITS=64 -I/usr/include/gdbm -O2 -g -pipe -march=i386 -mcpu=i686 -DVERSION=\"0.11\" -DXS_VERSION=\"0.11\" -fPIC "-I/usr/lib/perl5/5.8.0/i386-linux-thread-multi/CORE" ClamAV.c
ClamAV.xs: In function `clamav_perl__scanbuff':
ClamAV.xs:141: warning: passing arg 3 of `cl_scanbuff' from incompatible pointer type
ClamAV.xs: In function `clamav_perl__scanfd':
ClamAV.xs:181: warning: passing arg 2 of `cl_scandesc' from incompatible pointer type
ClamAV.xs: In function `clamav_perl__scanfile':
ClamAV.xs:217: warning: passing arg 2 of `cl_scanfile' from incompatible pointer type
ClamAV.xs: In function `clamav_perl_constant':
ClamAV.xs:262: `CL_EOLE2' undeclared (first use in this function)
ClamAV.xs:262: (Each undeclared identifier is reported only once
ClamAV.xs:262: for each function it appears in.)
ClamAV.xs:281: `CL_OLE2' undeclared (first use in this function)
ClamAV.xs:282: `CL_ENCRYPTED' undeclared (first use in this function)
make[1]: *** [ClamAV.o] Error 1
make[1]: Leaving directory `/root/.cpan/build/Mail-ClamAV-0.11/_Inline/build/Mail/ClamAV'

A problem was encountered while attempting to compile and install your Inline
C code. The command that failed was:
make

I also tryed to remove MailScanner and reinstall the MailScanner-4.38-8-1 but no luck. I cant figured out what to do.

Thanks

Moacyr

----- Original Message -----

From: Moacyr Leite da Silva

To: MAILSCANNER@JISCMAIL.AC.UK

Sent: Wednesday, October 06, 2004 6:30 PM

Subject: MailScanner and Mail::ClamAV

With MailScanner-4.34.8-1 - I installed the MailScanner and Install-ClamAV-SA - and did the install of clamavmodule correctly (Mail::ClamAV - build Mail-ClamAV-0.11)

With MailScanner-4.34.8-4 - I received the following error when i try to install Mail::ClamAV

I already tryed to force install of module via MCPAN but no success.

Some tip?

Thanks

Moacyr Leite da Silva

rict-aliasing -I/usr/local/include -D_LARGEFILE_SOURCE -D_FILE_OFFSET_BITS=64 -I/usr/include/gdbm -O2 -g -pipe -march=i386 -mcpu=i686 -DVERSION=\"0.11\" -DXS_VERSION=\"0.11\" -fPIC "-I/usr/lib/perl5/5.8.0/i386-linux-thread-multi/CORE" ClamAV.c
ClamAV.xs: In function `clamav_perl__scanbuff':
ClamAV.xs:141: warning: passing arg 3 of `cl_scanbuff' from incompatible pointer type
ClamAV.xs: In function `clamav_perl__scanfd':
ClamAV.xs:181: warning: passing arg 2 of `cl_scandesc' from incompatible pointer type
ClamAV.xs: In function `clamav_perl__scanfile':
ClamAV.xs:217: warning: passing arg 2 of `cl_scanfile' from incompatible pointer type
ClamAV.xs: In function `clamav_perl_constant':
ClamAV.xs:262: `CL_EOLE2' undeclared (first use in this function)
ClamAV.xs:262: (Each undeclared identifier is reported only once
ClamAV.xs:262: for each function it appears in.)
ClamAV.xs:281: `CL_OLE2' undeclared (first use in this function)
ClamAV.xs:282: `CL_ENCRYPTED' undeclared (first use in this function)
make[1]: *** [ClamAV.o] Error 1
make[1]: Leaving directory `/root/.cpan/build/Mail-ClamAV-0.11/_Inline/build/Mail/ClamAV'

A problem was encountered while attempting to compile and install your Inline
C code. The command that failed was:
make

------------------------ MailScanner list ------------------------ To unsubscribe, email jiscmail@jiscmail.ac.uk with the words:
'leave mailscanner' in the body of the email.
Before posting, read the MAQ (http://www.mailscanner.biz/maq/)
and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html).

Brian Berglund
Engineer	bberglund@techpro.com

Brian Berglund
Engineer	bberglund@techpro.com

Brian Berglund
Engineer	bberglund@techpro.com

Brian Berglund
Engineer	bberglund@techpro.com