You are viewing a plain text version of this content. The canonical link for it is here.
Posted to users@spamassassin.apache.org by David Hollis <dh...@davehollis.com> on 2005/12/16 14:13:31 UTC
Lower initial spam score if authenticated
I'm running Spamassassin via amavisd-new on my postfix MTA. I have
users that are using Verizon Aircards at times to connect and some of
those IPs are now starting to show up in RBLs, leaving them unable to
send email without it bouncing as spam. All users sending email
authenticate via SASL so it seems if there is a way I can whitelist them
or reduce their score from the outset if they are authenticated, I can
resolve this issue. Question is, can I do that and if so, how? I
really don't want to whitelist @domain.com since that will render
spamassassin pretty close to useless for us of course.
Suggestions?
--
David Hollis <dh...@davehollis.com>
Re: Lower initial spam score if authenticated
Posted by David Hollis <dh...@davehollis.com>.
On Fri, 2005-12-16 at 09:28 -0500, Daryl C. W. O'Shea wrote:
> http://wiki.apache.org/spamassassin/DynablockIssues
>
> I believe there's a patch to add the required tokens to Postfix, but I
> can't remember for sure where it is or who wrote it at the moment. The
> name Erwin Hoffmann comes to mind though.
>
Thanks for the tip. I was able to dig up the patch and tweak up my
postfix with it (nice thing is that this patch is included in the next
rev of postfix so I'm good for upgrading down the line).
--
David Hollis <dh...@davehollis.com>
Re: Lower initial spam score if authenticated
Posted by David Hollis <dh...@davehollis.com>.
On Fri, 2005-12-16 at 09:28 -0500, Daryl C. W. O'Shea wrote:
> David Hollis wrote:
> > I'm running Spamassassin via amavisd-new on my postfix MTA. I have
> > users that are using Verizon Aircards at times to connect and some of
> > those IPs are now starting to show up in RBLs, leaving them unable to
> > send email without it bouncing as spam. All users sending email
> > authenticate via SASL so it seems if there is a way I can whitelist them
> > or reduce their score from the outset if they are authenticated, I can
> > resolve this issue. Question is, can I do that and if so, how? I
> > really don't want to whitelist @domain.com since that will render
> > spamassassin pretty close to useless for us of course.
> >
> > Suggestions?
>
> http://wiki.apache.org/spamassassin/DynablockIssues
>
> I believe there's a patch to add the required tokens to Postfix, but I
> can't remember for sure where it is or who wrote it at the moment. The
> name Erwin Hoffmann comes to mind though.
>
Great.... Postfix 2.3 has a new config option to add the "Authenticated"
header which I can have Spamassassin key off of... Unfortunately, I'm
still on 2.2! I may need to try and dig up that patch in the meantime.
--
David Hollis <dh...@davehollis.com>
Re: Lower initial spam score if authenticated
Posted by "Daryl C. W. O'Shea" <sp...@dostech.ca>.
David Hollis wrote:
> I'm running Spamassassin via amavisd-new on my postfix MTA. I have
> users that are using Verizon Aircards at times to connect and some of
> those IPs are now starting to show up in RBLs, leaving them unable to
> send email without it bouncing as spam. All users sending email
> authenticate via SASL so it seems if there is a way I can whitelist them
> or reduce their score from the outset if they are authenticated, I can
> resolve this issue. Question is, can I do that and if so, how? I
> really don't want to whitelist @domain.com since that will render
> spamassassin pretty close to useless for us of course.
>
> Suggestions?
http://wiki.apache.org/spamassassin/DynablockIssues
I believe there's a patch to add the required tokens to Postfix, but I
can't remember for sure where it is or who wrote it at the moment. The
name Erwin Hoffmann comes to mind though.
Daryl
Re: Running sa-learn
Posted by Jim Maul <jm...@elih.org>.
Scott Broderick wrote:
> So this may sounds like a silly question but.....
> Does this mean that SA will only become affective and good at catching a
> high percentage of spam IF sa-learn is run on all clients pop3 accounts?
> How do the masses out there do it then? If you have over 1000 users on the
> box (say 100 domains all with 10 mailboxes).
> You would have to have them leave the spam in a mailbox called for example:
> spam
> Then we could run the sa-learn command on all 1000 mailboxes every day.
> Again, I apologize if I come off as a newbe because I AM!!!
> Thanks for all your help
>
There are 2 ways really. Sitewide, and per user. Sounds to me like you
want sidewide. This is what i do. spamd runs as user 'spamd' here so
when i do any sa-learn'ing i do it as the 'spamd' user. All SA files
are then stored in /home/spamd/.spamassassin/ and all works like a charm.
http://wiki.apache.org/spamassassin/UsingSiteWide?highlight=%28sitewide%29
maybe?
-Jim
Re: Running sa-learn
Posted by Scott Broderick <sc...@datona.com>.
So this may sounds like a silly question but.....
Does this mean that SA will only become affective and good at catching a
high percentage of spam IF sa-learn is run on all clients pop3 accounts?
How do the masses out there do it then? If you have over 1000 users on the
box (say 100 domains all with 10 mailboxes).
You would have to have them leave the spam in a mailbox called for example:
spam
Then we could run the sa-learn command on all 1000 mailboxes every day.
Again, I apologize if I come off as a newbe because I AM!!!
Thanks for all your help
Scott Broderick
----- Original Message -----
From: "Jim Maul" <jm...@elih.org>
To: "Scott Broderick" <sc...@datona.com>
Cc: <us...@spamassassin.apache.org>
Sent: Friday, December 16, 2005 8:40 AM
Subject: Re: Running sa-learn
> Scott Broderick wrote:
> > When using sa-learn like the following, will it learn server wide or
just
> > for that user?
> >
> > sa-learn --spam --mbox /home/virtual/removed.com/home/datona/mail/spam
> >
> >
> >
> > Scott Broderick
> >
> >
> >
>
> It will learn for the current user running the sa-learn command.
>
> -Jim
Re: Running sa-learn
Posted by Jim Maul <jm...@elih.org>.
Scott Broderick wrote:
> When using sa-learn like the following, will it learn server wide or just
> for that user?
>
> sa-learn --spam --mbox /home/virtual/removed.com/home/datona/mail/spam
>
>
>
> Scott Broderick
>
>
>
It will learn for the current user running the sa-learn command.
-Jim
Running sa-learn
Posted by Scott Broderick <sc...@datona.com>.
When using sa-learn like the following, will it learn server wide or just
for that user?
sa-learn --spam --mbox /home/virtual/removed.com/home/datona/mail/spam
Scott Broderick
Re: Lower initial spam score if authenticated
Posted by Gareth <li...@linguaphone.co.uk>.
On Fri, 2005-12-16 at 13:13, David Hollis wrote:
> I'm running Spamassassin via amavisd-new on my postfix MTA. I have
> users that are using Verizon Aircards at times to connect and some of
> those IPs are now starting to show up in RBLs, leaving them unable to
> send email without it bouncing as spam. All users sending email
> authenticate via SASL so it seems if there is a way I can whitelist them
> or reduce their score from the outset if they are authenticated, I can
> resolve this issue. Question is, can I do that and if so, how? I
> really don't want to whitelist @domain.com since that will render
> spamassassin pretty close to useless for us of course.
>
> Suggestions?I have the following line in my postfix master.cf
smtps inet n - n - - smtpd -o content_filter=smtp-amavis:[127.0.0.1]:10034 -o smtpd_recipient_restrictions=permit_sasl_authenticated,reject -o smtpd_tls_wrappermode=yes
When people connect and authenticate using smtps it sends the mail to a 2nd copy of amavis which is configured not to do spam filtering.