You are viewing a plain text version of this content. The canonical link for it is here.
Posted to users@spamassassin.apache.org by Al Bogner <sp...@ml061.pinguin.uni.cc> on 2006/01/26 23:18:50 UTC
No X-Spam-Status (sa_tag_level_deflt = -100.0)
Hi,
I asked other mailinglists already and nobody could help me with my problem,
since it works sometimes.
What I am missing in a mail-header is something like this:
X-Spam-Status: No, hits=-5.895 tagged_above=-20 required=5 tests=ALL_TRUSTED,
(from another system).
I have similiar problemes with different Linux distris, with SuSE it works a
little bit better, here I am discussing an uptodate Debian-Sid-System.
Detailed versions you see below.
For spam-reasons I use FQDN instead of the existing configuration. Please let
me know which Info you need too.
From root@client4.local.FQDN Thu Jan 26 15:48:51 2006
Return-Path: root@client4.local.FQDN
X-Original-To: ab@client4.local.FQDN
Delivered-To: ab@client4.local.FQDN
Received: from localhost (localhost.localdomain [127.0.0.1])
by client4.local.FQDN (Postfix) with ESMTP id 621E57359
for <ab...@client4.local.FQDN>; Thu, 26 Jan 2006 15:48:51 +0100 (CET)
Received: from client4.local.FQDN ([127.0.0.1])
by localhost (client4.local.FQDN [127.0.0.1]) (amavisd-new, port
10024)
with ESMTP id 03668-01 for <ab...@client4.local.FQDN>;
Thu, 26 Jan 2006 15:48:49 +0100 (CET)
Received: by client4.local.FQDN (Postfix, from userid 0)
id 30C397357; Thu, 26 Jan 2006 15:48:49 +0100 (CET)
Date: Thu, 26 Jan 2006 15:48:49 +0100
To: ab@client4.local.FQDN
Subject: Test
User-Agent: nail 11.25 7/29/05
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
Message-Id: <20...@client4.local.FQDN>
From: root <ro...@client4.local.FQDN>
X-Virus-Scanned: Debian amavisd-new at client4.local.FQDN
Jan 26 15:48:49 client4 postfix/pickup[4727]: 30C397357: uid=0 from=<root>
Jan 26 15:48:49 client4 postfix/cleanup[6041]: 30C397357:
message-id=<20...@client4.local.FQDN>
Jan 26 15:48:49 client4 postfix/qmgr[4728]: 30C397357:
from=<ro...@client4.local.FQDN>, size=451, nrcpt=1 (queue active)
Jan 26 15:48:51 client4 postfix/smtpd[6050]: connect from
localhost.localdomain[127.0.0.1]
Jan 26 15:48:51 client4 postfix/smtpd[6050]: 621E57359:
client=localhost.localdomain[127.0.0.1]
Jan 26 15:48:51 client4 postfix/cleanup[6041]: 621E57359:
message-id=<20...@client4.local.FQDN>
Jan 26 15:48:51 client4 postfix/qmgr[4728]: 621E57359:
from=<ro...@client4.local.FQDN>, size=952, nrcpt=1 (queue active)
Jan 26 15:48:51 client4 postfix/smtpd[6050]: disconnect from
localhost.localdomain[127.0.0.1]
Jan 26 15:48:51 client4 amavis[3668]: (03668-01) Passed CLEAN,
<ro...@client4.local.FQDN> -> <ab...@client4.local.FQDN>, Message-ID:
<20...@client4.local.FQDN>, mail_id: SmG+YV9el+WD, Hits:
0.015, 2238 ms
Jan 26 15:48:51 client4 postfix/smtp[6043]: 30C397357:
to=<ab...@client4.local.FQDN>, orig_to=<ab>, relay=127.0.0.1[127.0.0.1],
delay=2, status=sent (250 2.6.0 Ok, id=03668-01, from MTA([127.0.0.1]:10025):
250 Ok: queued as 621E57359)
Jan 26 15:48:51 client4 postfix/qmgr[4728]: 30C397357: removed
Jan 26 15:48:51 client4 postfix/local[6052]: 621E57359:
to=<ab...@client4.local.FQDN>, relay=local, delay=0, status=sent (delivered to
command: procmail -a "$EXTENSION")
Jan 26 15:48:51 client4 postfix/qmgr[4728]: 621E57359: removed
/etc/amavis/conf.d/50-user
use strict;
$mydomain = '';
$sa_tag_level_deflt = -100.0; # add spam info headers if at, or above that
level
1; # insure a defined return
grep -r tag_level_deflt /etc/amavis/conf.d/
/etc/amavis/conf.d/20-debian_defaults:#$sa_tag_level_deflt = 2.0; # add spam
info headers if at, or above that level
/etc/amavis/conf.d/20-debian_defaults:$sa_tag_level_deflt = -100.0;
/etc/amavis/conf.d/50-user:$sa_tag_level_deflt = -100.0; # add spam info
headers if at, or above that level
/etc/default/spamassassin
ENABLED=1
OPTIONS="--create-prefs --max-children 5 --helper-home-dir"
PIDFILE="/var/run/spamd.pid"
aptitude search postfix | cut -c-30
p bld-postfix
p gforge-mta-postfix
i postfix
p postfix-dev
p postfix-doc
p postfix-gld
p postfix-ldap
p postfix-mysql
p postfix-pcre
p postfix-pgsql
p postfix-policyd
p postfix-smtpguard
v postfix-tls
i webmin-postfix
aptitude search amavis | cut -c-30
v amavis
p amavis-ng
p amavis-ng-milter-helper
p amavis-stats
i amavisd-new
p amavisd-new-milter
aptitude search spam | cut -c-30
v libmail-spamassassin-perl
p spamass-milter
i A spamassassin
p spambayes
i spamc
p spamoracle
p spamoracle-byte
p spampd
p spamprobe
p sylpheed-claws-gtk2-spamas
p sylpheed-claws-spamassassi
p usermin-spamassassin
i webmin-spamassassin
apt-cache policy postfix
postfix:
Installiert:2.2.4-1.0.1
Mögliche Pakete:2.2.4-1.0.1
Versions-Tabelle:
2.2.8-7 0
500 ftp://ftp.at.debian.org sid/main Packages
500 ftp://ftp.freenet.de sid/main Packages
*** 2.2.4-1.0.1 0
900 ftp://ftp.at.debian.org etch/main Packages
900 ftp://ftp.freenet.de etch/main Packages
100 /var/lib/dpkg/status
apt-cache policy amavisd-new
amavisd-new:
Installiert:1:2.3.3-2
Mögliche Pakete:1:2.3.3-2
Versions-Tabelle:
1:2.3.3-4 0
500 ftp://ftp.at.debian.org sid/main Packages
500 ftp://ftp.freenet.de sid/main Packages
*** 1:2.3.3-2 0
900 ftp://ftp.at.debian.org etch/main Packages
900 ftp://ftp.freenet.de etch/main Packages
100 /var/lib/dpkg/status
apt-cache policy spamassassin
spamassassin:
Installiert:3.1.0a-2
Mögliche Pakete:3.1.0a-2
Versions-Tabelle:
*** 3.1.0a-2 0
900 ftp://ftp.at.debian.org etch/main Packages
500 ftp://ftp.at.debian.org sid/main Packages
900 ftp://ftp.freenet.de etch/main Packages
500 ftp://ftp.freenet.de sid/main Packages
100 /var/lib/dpkg/status
This is from a log after rebooting the system.
AM.PDP prot code NOT loaded
SMTP-in prot code loaded
ANTI-VIRUS code loaded
ANTI-SPAM code loaded
Unpackers code loaded
Found $file at /usr/bin/file
No $dspam, not using it
Internal decoder for .mail
Internal decoder for .asc
Internal decoder for .uue
Internal decoder for .hqx
Internal decoder for .ync
No decoder for .F tried
Found decoder for .Z at /bin/uncompress
Internal decoder for .gz
Found decoder for .bz2 at /usr/bin/bzip2 -d
Found decoder for .lzo at /usr/bin/lzop -d
Found decoder for .rpm at /usr/bin/rpm2cpio
Found decoder for .cpio at /usr/bin/pax
Found decoder for .tar at /usr/bin/pax
Found decoder for .deb at /usr/bin/ar
Internal decoder for .zip
Found decoder for .rar at /usr/bin/rar
Found decoder for .arj at /usr/bin/arj
Found decoder for .arc at /usr/bin/nomarch
Found decoder for .zoo at /usr/bin/zoo
Found decoder for .lha at /usr/bin/lha
No decoder for .doc tried
Found decoder for .cab at /usr/bin/cabextract
No decoder for .tnef
Internal decoder for .tnef
Found decoder for .exe at /usr/bin/rar; /usr/bin/lha; /usr/bin/arj
Using internal av scanner code for (primary) ClamAV-clamd
Found primary av scanner H+BEDV AntiVir or CentralCommand Vexira Antivirus
at /usr/bin/antivir
Found primary av scanner BitDefender at /usr/bin/bdc
Using internal av scanner code for (primary) check-jpeg
Found secondary av scanner ClamAV-clamscan at /usr/bin/clamscan
Found secondary av scanner FRISK F-Prot Antivirus at /usr/bin/f-prot
Creating db in /var/lib/amavis/db/; BerkeleyDB 0.27, libdb 4.3
postconf -n
alias_database = hash:/etc/aliases
alias_maps = hash:/etc/aliases
append_dot_mydomain = no
biff = no
config_directory = /etc/postfix
content_filter = smtp:[127.0.0.1]:10024
inet_interfaces = all
mailbox_command = procmail -a "$EXTENSION"
mailbox_size_limit = 0
mydestination = client4.local.FQDN, localhost.local.FQDN, localhost
myhostname = client4.local.FQDN
mynetworks = 127.0.0.0/8
myorigin = /etc/mailname
recipient_delimiter = +
relayhost =
smtpd_banner = $myhostname ESMTP $mail_name (Debian/GNU)
/etc/postfix/master.cf
smtp inet n - - - - smtpd
pickup fifo n - - 60 1 pickup
cleanup unix n - - - 0 cleanup
qmgr fifo n - - 300 1 qmgr
rewrite unix - - - - - trivial-rewrite
bounce unix - - - - 0 bounce
defer unix - - - - 0 bounce
trace unix - - - - 0 bounce
verify unix - - - - 1 verify
flush unix n - - 1000? 0 flush
proxymap unix - - n - - proxymap
smtp unix - - - - - smtp
relay unix - - - - - smtp
showq unix n - - - - showq
error unix - - - - - error
local unix - n n - - local
virtual unix - n n - - virtual
lmtp unix - - n - - lmtp
anvil unix - - n - 1 anvil
maildrop unix - n n - - pipe
flags=DRhu user=vmail argv=/usr/local/bin/maildrop -d ${recipient}
uucp unix - n n - - pipe
flags=Fqhu user=uucp argv=uux -r -n -z -a$sender - $nexthop!rmail
($recipient)
ifmail unix - n n - - pipe
flags=F user=ftn argv=/usr/lib/ifmail/ifmail -r $nexthop ($recipient)
bsmtp unix - n n - - pipe
flags=Fq. user=bsmtp argv=/usr/lib/bsmtp/bsmtp -d -t$nexthop -f$sender
$recipient
scalemail-backend unix - n n - 2 pipe
flags=R user=scalemail argv=/usr/lib/scalemail/bin/scalemail-store
${nexthop} ${user} ${extension}
tlsmgr unix - - - 1000? 1 tlsmgr
scache unix - - - - 1 scache
discard unix - - - - - discard
localhost:10025 inet n - n - - smtpd -o
content_filter=
Al
RE: No X-Spam-Status (sa_tag_level_deflt = -100.0)
Posted by Gary V <mr...@hotmail.com>.
>/etc/default/spamassassin
>ENABLED=1
>OPTIONS="--create-prefs --max-children 5 --helper-home-dir"
>PIDFILE="/var/run/spamd.pid"
>
You do not need spamd when running amavisd-new.
This should be
ENABLED=0
in main.cf:
>content_filter = smtp:[127.0.0.1]:10024
Should be more like:
content_filter = smtp-amavis:[127.0.0.1]:10024
>localhost:10025 inet n - n - - smtpd -o
>content_filter=
and in master.cf, your amavisd-new settings should be more like:
smtp-amavis unix - - - - 2 smtp
-o smtp_data_done_timeout=1200
-o smtp_send_xforward_command=yes
-o disable_dns_lookups=yes
-o max_use=20
127.0.0.1:10025 inet n - - - - smtpd
-o content_filter=
-o local_recipient_maps=
-o relay_recipient_maps=
-o smtpd_restriction_classes=
-o smtpd_delay_reject=no
-o smtpd_client_restrictions=permit_mynetworks,reject
-o smtpd_helo_restrictions=
-o smtpd_sender_restrictions=
-o smtpd_recipient_restrictions=permit_mynetworks,reject
-o smtpd_data_restrictions=reject_unauth_pipelining
-o smtpd_end_of_data_restrictions=
-o mynetworks=127.0.0.0/8
-o strict_rfc821_envelopes=yes
-o smtpd_error_sleep_time=0
-o smtpd_soft_error_limit=1001
-o smtpd_hard_error_limit=1000
-o smtpd_client_connection_count_limit=0
-o smtpd_client_connection_rate_limit=0
-o
receive_override_options=no_header_body_checks,no_unknown_recipient_checks
See:
http://www200.pair.com/mecham/debian-postfix-2.2-amavisd/master.cf
and
http://www.ijs.si/software/amavisd/README.postfix.txt
WOW, I also see that these critical settings are nowhere to be found in any
of the configuration files, so they should also be added and configured in
50-user:
$max_servers = 2; # number of pre-forked children (default 2)
$max_requests = 20; # retire a child after that many accepts (default 10)
$child_timeout=5*60; # abort child if it does not complete each task in
# approximately n sec (default: 8*60 seconds)
Who knows what else they have left out. I am going to have to spend some
time looking for things they have left out. Their mess is even bigger than I
thought.
Gary V
_________________________________________________________________
On the road to retirement? Check out MSN Life Events for advice on how to
get there! http://lifeevents.msn.com/category.aspx?cid=Retirement
Re: No X-Spam-Status (sa_tag_level_deflt = -100.0)
Posted by Al Bogner <sp...@ml061.pinguin.uni.cc>.
Am Freitag, 27. Januar 2006 00:52 schrieb Gary V:
> The only configurable header field is the X-Virus-Scanned
> ($X_HEADER_TAG, $X_HEADER_LINE), other are not configurable,
I found a workaround to find out which machine wrote the X-Spam-Status. I use
different values for sa_tag_level_deflt
Al
Re: No X-Spam-Status (sa_tag_level_deflt = -100.0)
Posted by Gary V <mr...@hotmail.com>.
> > why would you leave $mydomain blank?
>
>I tested a lot, and read there was(?) a bug and it was recommended to leave
>it
>blank.
Never heard of a bug of that sort.
>
> > set
> > $mydomain = 'client4.local.FQDN';
> > and add
> > @local_domains_maps = ( [".$mydomain"] );
> >
> > X=Spam headers are only added for recipient domains that are included in
> > @local_domains_maps.
>
>Thanks a lot, it took me days to find this out.
>
>Now I get :
>
>X-Spam-Status: No, score=0.009 tagged_above=-100 required=6.31
> tests=[AWL=0.010, NO_RELAYS=-0.001]
>X-Spam-Score: 0.009
>X-Spam-Level:
>
>How can I add a comment, which host made the entry. I would like to have
>something like:
>
>X-Spam-Status by ...
You can modify the X-Virus-Scanned line:
X-Virus-Scanned: Debian amavisd-new at client4.local.FQDN
it's the $X_HEADER_LINE setting.
The only configurable header field is the X-Virus-Scanned
($X_HEADER_TAG, $X_HEADER_LINE), other are not configurable,
you will have to modify the program. Be sure to only use
allowed characters as the header field head.
Read the amavisd.conf-sample file:
http://www.xmission.com/~jmcrc/amavisd.conf.html
For other amavisd-new related questions, you should join the amavis user's
list:
https://lists.sourceforge.net/lists/listinfo/amavis-user
>Al
Gary V
_________________________________________________________________
FREE pop-up blocking with the new MSN Toolbar get it now!
http://toolbar.msn.click-url.com/go/onm00200415ave/direct/01/
Re: No X-Spam-Status (sa_tag_level_deflt = -100.0)
Posted by Al Bogner <sp...@ml061.pinguin.uni.cc>.
Am Donnerstag, 26. Januar 2006 23:40 schrieb Gary V:
> Did you ask on the amavis user's list?
No, I asked at the german lists Postfixbuch-users, debian and suse. I head no
idea, which is the right list to ask.
> why would you leave $mydomain blank?
I tested a lot, and read there was(?) a bug and it was recommended to leave it
blank.
> set
> $mydomain = 'client4.local.FQDN';
> and add
> @local_domains_maps = ( [".$mydomain"] );
>
> X=Spam headers are only added for recipient domains that are included in
> @local_domains_maps.
Thanks a lot, it took me days to find this out.
Now I get :
X-Spam-Status: No, score=0.009 tagged_above=-100 required=6.31
tests=[AWL=0.010, NO_RELAYS=-0.001]
X-Spam-Score: 0.009
X-Spam-Level:
How can I add a comment, which host made the entry. I would like to have
something like:
X-Spam-Status by ...
> See:
> http://www.ijs.si/software/amavisd/#faq-spam
>
> and start reading from:
> "No spam-related headers inserted?"
Thanks for this link. I read there, that my question above is amavis related,
but maybe you can answer it in a line.
Al
Re: No X-Spam-Status (sa_tag_level_deflt = -100.0)
Posted by Al Bogner <sp...@ml061.pinguin.uni.cc>.
Am Freitag, 27. Januar 2006 00:06 schrieb Gary V:
> >set
> >$mydomain = 'client4.local.FQDN';
> >and add
> >@local_domains_maps = ( [".$mydomain"] );
>
> Actually, your domain name is read from /etc/mailname in the
> 05-node_id file so you could actually just get rid of it here.
>
> It would have been nice if the Debian package maintainers added
> a few common settings in the 50-user file like:
> @local_domains_maps = ( [".$mydomain"] );
I checked this now with my SuSE-9.2-System and the "large" /etc/amavisd.conf
contained these entries.
With the SuSE-machine I have the problem, that i see X-Spam-Status _only_ if
mails are sent within the local network, but I don't see a line with
X-Spam-Status and mails from the internet. I am unsure if this is really a
problem with local mails, but I didn' define any white- or blacklists and
spam is moved to /var/spool/amavis/virusmails, so with the SuSE-machine
"something" seems to work.
Any ideas?
> I hate the new format they have devised. I wrote a little something
> about it but the setup is confusing enough that I don't even know if my
> findings are accurate:
>
> http://www200.pair.com/mecham/spam/debian-amavisd-new_2.3.3.html
I read this, but it won't help me with my old Suse-system.
galerkin.suse.de:spamassassin-3.0.4-1.3
galerkin.suse.de:perl-spamassassin-3.0.4-1.3
g168.suse.de:amavisd-new-2.1.2-5
A long time ago with SuSE 8.x everything worked fine, but
these configuration-changes can be nightmare for a _user_.
Thank you again!
Al
RE: No X-Spam-Status (sa_tag_level_deflt = -100.0)
Posted by Gary V <mr...@hotmail.com>.
>>$mydomain = '';
>
>why would you leave $mydomain blank?
>
>>$sa_tag_level_deflt = -100.0; # add spam info headers if at, or above
>>that
>>level
>
>set
>$mydomain = 'client4.local.FQDN';
>and add
>@local_domains_maps = ( [".$mydomain"] );
>
Actually, your domain name is read from /etc/mailname in the
05-node_id file so you could actually just get rid of it here.
It would have been nice if the Debian package maintainers added
a few common settings in the 50-user file like:
@local_domains_maps = ( [".$mydomain"] );
I hate the new format they have devised. I wrote a little something
about it but the setup is confusing enough that I don't even know if my
findings are accurate:
http://www200.pair.com/mecham/spam/debian-amavisd-new_2.3.3.html
I wouldn't fault anyone who might be confused or have problems with
this setup.
Gary V
_________________________________________________________________
Express yourself instantly with MSN Messenger! Download today - it's FREE!
http://messenger.msn.click-url.com/go/onm00200471ave/direct/01/
RE: No X-Spam-Status (sa_tag_level_deflt = -100.0)
Posted by Gary V <mr...@hotmail.com>.
>Hi,
>
>I asked other mailinglists already and nobody could help me with my
>problem,
>since it works sometimes.
Did you ask on the amavis user's list?
>
>What I am missing in a mail-header is something like this:
>X-Spam-Status: No, hits=-5.895 tagged_above=-20 required=5
>tests=ALL_TRUSTED,
>(from another system).
>
>I have similiar problemes with different Linux distris, with SuSE it works
>a
>little bit better, here I am discussing an uptodate Debian-Sid-System.
>Detailed versions you see below.
>
>For spam-reasons I use FQDN instead of the existing configuration. Please
>let
>me know which Info you need too.
>
>Received: from localhost (localhost.localdomain [127.0.0.1])
> by client4.local.FQDN (Postfix) with ESMTP id 621E57359
> for <ab...@client4.local.FQDN>; Thu, 26 Jan 2006 15:48:51 +0100 (CET)
>$mydomain = '';
why would you leave $mydomain blank?
>$sa_tag_level_deflt = -100.0; # add spam info headers if at, or above
>that
>level
set
$mydomain = 'client4.local.FQDN';
and add
@local_domains_maps = ( [".$mydomain"] );
X=Spam headers are only added for recipient domains that are included in
@local_domains_maps.
See:
http://www.ijs.si/software/amavisd/#faq-spam
and start reading from:
"No spam-related headers inserted?"
Gary V
_________________________________________________________________
On the road to retirement? Check out MSN Life Events for advice on how to
get there! http://lifeevents.msn.com/category.aspx?cid=Retirement