Offensive spam leaking through

[Danita Zanre]

Hmmm - my blacklists (SQL) no longer seem to be working - that accounts for a LOT of what I’m seeing.    I cannot figure out why it has just stopped working through SQL - so I reenabled the file blacklist, and that’s working again.  What should I be looking for here?

Thanks!

Danita Zanrè, Move Out of the Office
I love my job, and you can too!
Tel: (720) 319-7530 - Caledonia Network Consulting
Tel: (720) 319-8240 - Move Out of the Office


On January 10, 2017 at 10:23:05 AM, Danita Zanre (danita at caledonia.net) wrote:

I have the KAM rules loaded, and I am getting some pretty offensive spam with the F-word in the subject line leaking through - the rule should definitely catch it.  But the headers are interesting.

SpamCheck: not spam, SpamAssassin (not cached,
score=0.003, required 4, autolearn=not spam, HTML_MESSAGE 0.00,
MSGID_FROM_MTA_HEADER 0.00, URIBL_BLOCKED 0.00

That one doesn’t have a timeout, is the URIBL_BLOCKED causing the whole thing to fail to scan?

SpamCheck: not spam, SpamAssassin (not cached,
score=2.602, required 4, ALL_TRUSTED 0.10, HTML_MESSAGE 0.00,
KAM_BADPHP 2.50, MSGID_FROM_MTA_HEADER 0.00)

This one hit a KAM rule, but despite the subject line having a banned word in it, the Explicit Sex rule didn’t hit.  Any ideas?

Thanks

Danita Zanrè, Move Out of the Office
I love my job, and you can too!
Tel: (720) 319-7530 - Caledonia Network Consulting
Tel: (720) 319-8240 - Move Out of the Office

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.mailscanner.info/pipermail/mailscanner/attachments/20170110/669118b9/attachment.html>