You are viewing a plain text version of this content. The canonical link for it is here.
Posted to users@spamassassin.apache.org by Chris Purves <ch...@northfolk.ca> on 2006/01/01 02:21:33 UTC
Re: SA suddenly giving lots of FP's?
On Sun, January 1, 2006 3:28 am, Gene Heskett said:
> On Saturday 31 December 2005 13:38, Rick Macdougall wrote:
>>Gene Heskett wrote:
>>> On Saturday 31 December 2005 12:42, Gene Heskett wrote:
>>>> This morning I'm going thru my JunqueMail folder and find that
>>>> about a dozen msgs to the OpenOffice list, 5 or 6 to the fedeora
>>>> list, and one to the gimp-print-devel list were flaged and sorted
>>>> as *****SPAN*****. With one exception, all were in english.
>>
>>Would help if you let us know what rules got hit.
>>
> No doubt Rick, but I ran them thru learn-ham and manualy sorted them to
> the right folders, but lemme see if I can find one of them in the OOo
> list, brb. Yeah, here's a snip:
>
> Received: from localhost by coyote.coyote.den
> with SpamAssassin (version 3.1.0);
> Fri, 30 Dec 2005 20:39:25 -0500
> From: Leah Lefler <lj...@yahoo.com>
> To: users@openoffice.org
> Subject: *****SPAM***** [users] question about Base
> Date: Fri, 30 Dec 2005 16:04:04 -0800 (PST)
> Message-Id: <20...@web34003.mail.mud.yahoo.com>
> X-Spam-Flag: YES
> X-Spam-Checker-Version: SpamAssassin 3.1.0 (2005-09-13) on
> coyote.coyote.den
> X-Spam-Level: *****
> X-Spam-Status: Yes, score=5.7 required=5.0
> tests=BAYES_40,DNS_FROM_RFC_ABUSE,
> FORGED_YAHOO_RCVD,HELO_DYNAMIC_IPADDR2 autolearn=no
> version=3.1.0
> MIME-Version: 1.0
> Content-Type: multipart/mixed;
> boundary="----------=_43B5E14D.9501384C"
> X-UID:
> Status: RO
> X-Status: RPC
> X-KMail-EncryptionState: N
> X-KMail-SignatureState: N
> X-KMail-MDN-Sent:
>
> Content analysis details: (5.7 points, 5.0 required)
>
> pts rule name description
> ---- ----------------------
> --------------------------------------------------
> 3.8 HELO_DYNAMIC_IPADDR2 Relay HELO'd using suspicious hostname (IP
> addr
> 2)
> 1.8 FORGED_YAHOO_RCVD 'From' yahoo.com does not match 'Received'
> headers
> -0.2 BAYES_40 BODY: Bayesian spam probability is 20 to
> 40%
> [score: 0.3369]
> 0.2 DNS_FROM_RFC_ABUSE RBL: Envelope sender in
> abuse.rfc-ignorant.org
>
Is that the entire header? You're missing a bunch of "Received" lines.
--
Good day, eh.
Chris
Re: SA suddenly giving lots of FP's?
Posted by Gene Heskett <ge...@verizon.net>.
On Tuesday 03 January 2006 17:30, mouss wrote:
>Gene Heskett a écrit :
>> -------------
>> From jean-ooo@taming-openoffice-org.com Sat Dec 31 23:16:57 2005
>> Return-Path: <je...@taming-openoffice-org.com>
>> Received: from localhost (localhost.localdomain [127.0.0.1])
>> by coyote.coyote.den (8.12.11/8.12.10) with ESMTP id
>> k014Gv7g021793
>> for <ge...@localhost>; Sat, 31 Dec 2005 23:16:57 -0500
>
>so this is the "after fetchmail" header
>
>> Received: from incoming.verizon.net [206.46.232.10]
>> by localhost with POP3 (fetchmail-6.2.5.5)
>> for gene@localhost (single-drop); Sat, 31 Dec 2005 23:16:57
>> -0500 (EST)
>
>and this is the fetchmail header.
>
>- you should add 206.46.232.10 to your trusted_networks
>- SA will recognize this as a fetchmail hop, and will "reinitialize"
> its received parsing (This is my understanding, but I may be wrong.
> But this is what I understand from -D output).
>
Yes, I put it into local.cf as 206.46.232/24 and I believe it has
helped. Time will tell & its only been about 20 hrs so far, during
which I built and rebooted to 2.6.15.
>> ------------
>> which is not the same message, and therefore a waste of bandwidth I
>> think.
>
>what do you mean?
>
>> Too bad the /var/spool/mail/gene files contents are so ephemeral.
>
>what do you mean?
--
Cheers, Gene
People having trouble with vz bouncing email to me should add the word
'online' between the 'verizon', and the dot which bypasses vz's
stupid bounce rules. I do use spamassassin too. :-)
Yahoo.com and AOL/TW attorneys please note, additions to the above
message by Gene Heskett are:
Copyright 2005 by Maurice Eugene Heskett, all rights reserved.
Re: SA suddenly giving lots of FP's?
Posted by Gene Heskett <ge...@verizon.net>.
On Monday 02 January 2006 23:16, jdow wrote:
>From: "Gene Heskett" <ge...@verizon.net>
>
>> On Monday 02 January 2006 00:50, Chris Purves wrote:
>>>On Sunday 01 January 2006 12:24, Gene Heskett wrote:
>>>> On Saturday 31 December 2005 20:21, Chris Purves wrote:
>>>> >On Sun, January 1, 2006 3:28 am, Gene Heskett said:
>>>> >> On Saturday 31 December 2005 13:38, Rick Macdougall wrote:
>>>> >>>Gene Heskett wrote:
>>>> >>>> On Saturday 31 December 2005 12:42, Gene Heskett wrote:
>>>> >>>>> This morning I'm going thru my JunqueMail folder and find
>>>> >>>>> that about a dozen msgs to the OpenOffice list, 5 or 6 to
>>>> >>>>> the fedeora list, and one to the gimp-print-devel list were
>>>> >>>>> flaged and sorted as *****SPAN*****. With one exception,
>>>> >>>>> all were in english.
>>>> >>>
>>>> >>>Would help if you let us know what rules got hit.
>>>> >>
>>>> >> Content analysis details: (5.7 points, 5.0 required)
>>>> >>
>>>> >> pts rule name description
>>>> >> ---- ----------------------
>>>> >> --------------------------------------------------
>>>> >> 3.8 HELO_DYNAMIC_IPADDR2 Relay HELO'd using suspicious
>>>> >> hostname (IP addr
>>>> >> 2)
>>>> >> 1.8 FORGED_YAHOO_RCVD 'From' yahoo.com does not match
>>>> >> 'Received' headers
>>>> >> -0.2 BAYES_40 BODY: Bayesian spam probability is
>>>> >> 20 to 40%
>>>> >> [score: 0.3369]
>>>> >> 0.2 DNS_FROM_RFC_ABUSE RBL: Envelope sender in
>>>> >> abuse.rfc-ignorant.org
>>>> >
>>>> >Is that the entire header? You're missing a bunch of "Received"
>>>> > lines.
>>>>
>>>> FWIW, fetchmail sucks it and dumps it to /var/spool/mail/gene, &
>>>> kmail sucks it from there. This is due to a bug in the kmail
>>>> suck from servers code of quite long duration, 3 or 4 years now.
>>>> Humm, headers do seem to be getting lost!
>>>
>>>If some of the header is being removed, then that might be a
>>> problem. That could definitely trigger the FORGED_YAHOO_RCVD rule
>>> if the received header listing the Yahoo! server was removed.
>>
>> In that event, how do I go about telling fetchmail that the
>> mailfile it generates in /var/spool/mail/gene is to be a verbatum
>> copy of what was sucked in the vz's server. My fetchmailrc is
>> comparatively clean, with no options that I know about set that
>> would encourage the shrunken headers. There are no OPTIONS
>> currently defined.
>
>Fetchmail is verbatim in the sense needed. Does fetchmail go through
>the tool that fires off SpamAssassin or is this done up in KMail as
>it reads? If so KMail may have sanitized off headers in much the same
>way as Outlook or Exchange. This makes KMail pretty useless IMAO if
>this is what they do.
>
>{^_^}
Nope, its two seperate processes, Joanne. Fetchmail is run from
rc.local, and is totally independant of kmail. Where I made that
statement was that I was compareing an old message that kmail had
sucked directly, to the contents of the /var/spool/mail/gene file.
Kmail in turn, and completely asynchronously, grabs and processes
the /var/spool/mail/gene file and sorts it a bit, then calls
spamassasin on what I haven't sorted out, then looks at the output of
the spamassassin pipe when its done and finishes the sorting.
But it was obviously two seperate messages, hence the ambiguity from
that alone. Over the next few days I will stop the auto fwd to vz
from gmail so that I can set the fetchmail output to other than "as
gene" & then send myself a message at the gmail address. As soon as
it comes back, copy it to a tmp file, wait for kmail to pick it up,
and then compare the contents of the tmp file with the message shown
me by kmail. Then stop the fetchmail scan of gmail, send another
message and look at it with the web interface before I tell kmail to
suck it directly. Somewhere in there, I hope to be able to "red dot"
the perp, if indeed there is one. I could very well be barking at the
moon and chaseing rabbits, but hopefully I'll also be a little smarter
too.
Right now I'm watching GA show the home team how its done. WV31-GA27,
but GA has closed the door on us after the first 15 minutes.
Seriously slammed it, and our guys are fumbling the ball away 4 times
now. Later, it looks like maybe we might pull one off, WV38-GA35,
1:45 to go with WV in possession. 1:10 left, new 1st down by WV. Rich
called for a fake punt and pulled it off very well. And with about 25
secs to go, GA walked out on the field to make it official, WV has won
the Sugar Bowl!
--
Cheers, Gene
People having trouble with vz bouncing email to me should add the word
'online' between the 'verizon', and the dot which bypasses vz's
stupid bounce rules. I do use spamassassin too. :-)
Yahoo.com and AOL/TW attorneys please note, additions to the above
message by Gene Heskett are:
Copyright 2005 by Maurice Eugene Heskett, all rights reserved.
Re: SA suddenly giving lots of FP's?
Posted by Chris Purves <ch...@northfolk.ca>.
Gene Heskett wrote:
>
> In that event, how do I go about telling fetchmail that the mailfile it
> generates in /var/spool/mail/gene is to be a verbatum copy of what was
> sucked in the vz's server. My fetchmailrc is comparatively clean,
> with no options that I know about set that would encourage the
> shrunken headers. There are no OPTIONS currently defined.
>
> -------------sanitized of course-----------
> poll incoming.verizon.net with proto pop3
> user XXXXXXX with password YYYYYYYY is gene
> # options OPTIONS
> poll pop.gmail.com with proto pop3
> user ZZZZZZZZZZ with password YYYYYYYYYYYYYYYY is gene
> options ssl
> # end of file
> -----------------------------------------
>
> Or is there some option I need to set to make it do verbatum sucks?
I think you should confirm that it is fetchmail that is removing
headers. I use fetchmail myself and haven't had any problems.
In the manual page there is an --invisible option that keeps fetchmail
from inserting its own received header. You could try that.
--
Good day, eh.
Chris
Re: SA suddenly giving lots of FP's?
Posted by Craig White <cr...@azapple.com>.
On Mon, 2006-01-02 at 20:16 -0800, jdow wrote:
> From: "Gene Heskett" <ge...@verizon.net>
> Fetchmail is verbatim in the sense needed. Does fetchmail go through
> the tool that fires off SpamAssassin or is this done up in KMail as
> it reads? If so KMail may have sanitized off headers in much the same
> way as Outlook or Exchange. This makes KMail pretty useless IMAO if
> this is what they do.
----
I can find a lot to criticize about Outlook but I've not ever seen
Outlook remove header information - but I don't have any Exchange Server
installations which might be why.
In Gene's case, he's probably got Kmail fetching directly
from /var/spool/mail/gene without any pop3/imap server and thus not
getting any additional header information and then the Kmail filtering
is invoking spamassassin. I can't think of any reason not to do it that
way, unless of course, he is doing all this as root.
Craig
Re: SA suddenly giving lots of FP's?
Posted by jdow <jd...@earthlink.net>.
From: "Gene Heskett" <ge...@verizon.net>
> On Monday 02 January 2006 00:50, Chris Purves wrote:
>>On Sunday 01 January 2006 12:24, Gene Heskett wrote:
>>> On Saturday 31 December 2005 20:21, Chris Purves wrote:
>>> >On Sun, January 1, 2006 3:28 am, Gene Heskett said:
>>> >> On Saturday 31 December 2005 13:38, Rick Macdougall wrote:
>>> >>>Gene Heskett wrote:
>>> >>>> On Saturday 31 December 2005 12:42, Gene Heskett wrote:
>>> >>>>> This morning I'm going thru my JunqueMail folder and find
>>> >>>>> that about a dozen msgs to the OpenOffice list, 5 or 6 to the
>>> >>>>> fedeora list, and one to the gimp-print-devel list were
>>> >>>>> flaged and sorted as *****SPAN*****. With one exception, all
>>> >>>>> were in english.
>>> >>>
>>> >>>Would help if you let us know what rules got hit.
>>> >>
>>> >> Content analysis details: (5.7 points, 5.0 required)
>>> >>
>>> >> pts rule name description
>>> >> ---- ----------------------
>>> >> --------------------------------------------------
>>> >> 3.8 HELO_DYNAMIC_IPADDR2 Relay HELO'd using suspicious
>>> >> hostname (IP addr
>>> >> 2)
>>> >> 1.8 FORGED_YAHOO_RCVD 'From' yahoo.com does not match
>>> >> 'Received' headers
>>> >> -0.2 BAYES_40 BODY: Bayesian spam probability is
>>> >> 20 to 40%
>>> >> [score: 0.3369]
>>> >> 0.2 DNS_FROM_RFC_ABUSE RBL: Envelope sender in
>>> >> abuse.rfc-ignorant.org
>>> >
>>> >Is that the entire header? You're missing a bunch of "Received"
>>> > lines.
>>>
>>> FWIW, fetchmail sucks it and dumps it to /var/spool/mail/gene, &
>>> kmail sucks it from there. This is due to a bug in the kmail suck
>>> from servers code of quite long duration, 3 or 4 years now. Humm,
>>> headers do seem to be getting lost!
>>
>>If some of the header is being removed, then that might be a problem.
>> That could definitely trigger the FORGED_YAHOO_RCVD rule if the
>> received header listing the Yahoo! server was removed.
>
> In that event, how do I go about telling fetchmail that the mailfile it
> generates in /var/spool/mail/gene is to be a verbatum copy of what was
> sucked in the vz's server. My fetchmailrc is comparatively clean,
> with no options that I know about set that would encourage the
> shrunken headers. There are no OPTIONS currently defined.
Fetchmail is verbatim in the sense needed. Does fetchmail go through
the tool that fires off SpamAssassin or is this done up in KMail as
it reads? If so KMail may have sanitized off headers in much the same
way as Outlook or Exchange. This makes KMail pretty useless IMAO if
this is what they do.
{^_^}
Re: SA suddenly giving lots of FP's?
Posted by Gene Heskett <ge...@verizon.net>.
On Monday 02 January 2006 00:50, Chris Purves wrote:
>On Sunday 01 January 2006 12:24, Gene Heskett wrote:
>> On Saturday 31 December 2005 20:21, Chris Purves wrote:
>> >On Sun, January 1, 2006 3:28 am, Gene Heskett said:
>> >> On Saturday 31 December 2005 13:38, Rick Macdougall wrote:
>> >>>Gene Heskett wrote:
>> >>>> On Saturday 31 December 2005 12:42, Gene Heskett wrote:
>> >>>>> This morning I'm going thru my JunqueMail folder and find
>> >>>>> that about a dozen msgs to the OpenOffice list, 5 or 6 to the
>> >>>>> fedeora list, and one to the gimp-print-devel list were
>> >>>>> flaged and sorted as *****SPAN*****. With one exception, all
>> >>>>> were in english.
>> >>>
>> >>>Would help if you let us know what rules got hit.
>> >>
>> >> Content analysis details: (5.7 points, 5.0 required)
>> >>
>> >> pts rule name description
>> >> ---- ----------------------
>> >> --------------------------------------------------
>> >> 3.8 HELO_DYNAMIC_IPADDR2 Relay HELO'd using suspicious
>> >> hostname (IP addr
>> >> 2)
>> >> 1.8 FORGED_YAHOO_RCVD 'From' yahoo.com does not match
>> >> 'Received' headers
>> >> -0.2 BAYES_40 BODY: Bayesian spam probability is
>> >> 20 to 40%
>> >> [score: 0.3369]
>> >> 0.2 DNS_FROM_RFC_ABUSE RBL: Envelope sender in
>> >> abuse.rfc-ignorant.org
>> >
>> >Is that the entire header? You're missing a bunch of "Received"
>> > lines.
>>
>> FWIW, fetchmail sucks it and dumps it to /var/spool/mail/gene, &
>> kmail sucks it from there. This is due to a bug in the kmail suck
>> from servers code of quite long duration, 3 or 4 years now. Humm,
>> headers do seem to be getting lost!
>
>If some of the header is being removed, then that might be a problem.
> That could definitely trigger the FORGED_YAHOO_RCVD rule if the
> received header listing the Yahoo! server was removed.
In that event, how do I go about telling fetchmail that the mailfile it
generates in /var/spool/mail/gene is to be a verbatum copy of what was
sucked in the vz's server. My fetchmailrc is comparatively clean,
with no options that I know about set that would encourage the
shrunken headers. There are no OPTIONS currently defined.
-------------sanitized of course-----------
poll incoming.verizon.net with proto pop3
user XXXXXXX with password YYYYYYYY is gene
# options OPTIONS
poll pop.gmail.com with proto pop3
user ZZZZZZZZZZ with password YYYYYYYYYYYYYYYY is gene
options ssl
# end of file
-----------------------------------------
Or is there some option I need to set to make it do verbatum sucks?
--
Cheers, Gene
People having trouble with vz bouncing email to me should add the word
'online' between the 'verizon', and the dot which bypasses vz's
stupid bounce rules. I do use spamassassin too. :-)
Yahoo.com and AOL/TW attorneys please note, additions to the above
message by Gene Heskett are:
Copyright 2005 by Maurice Eugene Heskett, all rights reserved.
Re: SA suddenly giving lots of FP's?
Posted by Chris Purves <ch...@northfolk.ca>.
On Sunday 01 January 2006 12:24, Gene Heskett wrote:
> On Saturday 31 December 2005 20:21, Chris Purves wrote:
> >On Sun, January 1, 2006 3:28 am, Gene Heskett said:
> >> On Saturday 31 December 2005 13:38, Rick Macdougall wrote:
> >>>Gene Heskett wrote:
> >>>> On Saturday 31 December 2005 12:42, Gene Heskett wrote:
> >>>>> This morning I'm going thru my JunqueMail folder and find that
> >>>>> about a dozen msgs to the OpenOffice list, 5 or 6 to the fedeora
> >>>>> list, and one to the gimp-print-devel list were flaged and
> >>>>> sorted as *****SPAN*****. With one exception, all were in
> >>>>> english.
> >>>
> >>>Would help if you let us know what rules got hit.
> >>
> >>
> >> Content analysis details: (5.7 points, 5.0 required)
> >>
> >> pts rule name description
> >> ---- ----------------------
> >> --------------------------------------------------
> >> 3.8 HELO_DYNAMIC_IPADDR2 Relay HELO'd using suspicious hostname
> >> (IP addr
> >> 2)
> >> 1.8 FORGED_YAHOO_RCVD 'From' yahoo.com does not match
> >> 'Received' headers
> >> -0.2 BAYES_40 BODY: Bayesian spam probability is 20
> >> to 40%
> >> [score: 0.3369]
> >> 0.2 DNS_FROM_RFC_ABUSE RBL: Envelope sender in
> >> abuse.rfc-ignorant.org
> >
> >Is that the entire header? You're missing a bunch of "Received"
> > lines.
>
>
> FWIW, fetchmail sucks it and dumps it to /var/spool/mail/gene, & kmail
> sucks it from there. This is due to a bug in the kmail suck from
> servers code of quite long duration, 3 or 4 years now. Humm, headers
> do seem to be getting lost!
>
If some of the header is being removed, then that might be a problem. That
could definitely trigger the FORGED_YAHOO_RCVD rule if the received header
listing the Yahoo! server was removed.
--
Good day, eh.
Chris
Re: SA suddenly giving lots of FP's?
Posted by mouss <us...@free.fr>.
Gene Heskett a écrit :
> -------------
> From jean-ooo@taming-openoffice-org.com Sat Dec 31 23:16:57 2005
> Return-Path: <je...@taming-openoffice-org.com>
> Received: from localhost (localhost.localdomain [127.0.0.1])
> by coyote.coyote.den (8.12.11/8.12.10) with ESMTP id
> k014Gv7g021793
> for <ge...@localhost>; Sat, 31 Dec 2005 23:16:57 -0500
so this is the "after fetchmail" header
> Received: from incoming.verizon.net [206.46.232.10]
> by localhost with POP3 (fetchmail-6.2.5.5)
> for gene@localhost (single-drop); Sat, 31 Dec 2005 23:16:57
> -0500 (EST)
and this is the fetchmail header.
- you should add 206.46.232.10 to your trusted_networks
- SA will recognize this as a fetchmail hop, and will "reinitialize" its
received parsing (This is my understanding, but I may be wrong. But this
is what I understand from -D output).
> ------------
> which is not the same message, and therefore a waste of bandwidth I
> think.
what do you mean?
>
> Too bad the /var/spool/mail/gene files contents are so ephemeral.
>
what do you mean?
Re: SA suddenly giving lots of FP's?
Posted by Gene Heskett <ge...@verizon.net>.
On Saturday 31 December 2005 20:21, Chris Purves wrote:
>On Sun, January 1, 2006 3:28 am, Gene Heskett said:
>> On Saturday 31 December 2005 13:38, Rick Macdougall wrote:
>>>Gene Heskett wrote:
>>>> On Saturday 31 December 2005 12:42, Gene Heskett wrote:
>>>>> This morning I'm going thru my JunqueMail folder and find that
>>>>> about a dozen msgs to the OpenOffice list, 5 or 6 to the fedeora
>>>>> list, and one to the gimp-print-devel list were flaged and
>>>>> sorted as *****SPAN*****. With one exception, all were in
>>>>> english.
>>>
>>>Would help if you let us know what rules got hit.
>>
>> No doubt Rick, but I ran them thru learn-ham and manualy sorted
>> them to the right folders, but lemme see if I can find one of them
>> in the OOo list, brb. Yeah, here's a snip:
>>
>> Received: from localhost by coyote.coyote.den
>> with SpamAssassin (version 3.1.0);
>> Fri, 30 Dec 2005 20:39:25 -0500
>> From: Leah Lefler <lj...@yahoo.com>
>> To: users@openoffice.org
>> Subject: *****SPAM***** [users] question about Base
>> Date: Fri, 30 Dec 2005 16:04:04 -0800 (PST)
>> Message-Id:
>> <20...@web34003.mail.mud.yahoo.com>
>> X-Spam-Flag: YES
>> X-Spam-Checker-Version: SpamAssassin 3.1.0 (2005-09-13) on
>> coyote.coyote.den
>> X-Spam-Level: *****
>> X-Spam-Status: Yes, score=5.7 required=5.0
>> tests=BAYES_40,DNS_FROM_RFC_ABUSE,
>> FORGED_YAHOO_RCVD,HELO_DYNAMIC_IPADDR2 autolearn=no
>> version=3.1.0
>> MIME-Version: 1.0
>> Content-Type: multipart/mixed;
>> boundary="----------=_43B5E14D.9501384C"
>> X-UID:
>> Status: RO
>> X-Status: RPC
>> X-KMail-EncryptionState: N
>> X-KMail-SignatureState: N
>> X-KMail-MDN-Sent:
>>
>> Content analysis details: (5.7 points, 5.0 required)
>>
>> pts rule name description
>> ---- ----------------------
>> --------------------------------------------------
>> 3.8 HELO_DYNAMIC_IPADDR2 Relay HELO'd using suspicious hostname
>> (IP addr
>> 2)
>> 1.8 FORGED_YAHOO_RCVD 'From' yahoo.com does not match
>> 'Received' headers
>> -0.2 BAYES_40 BODY: Bayesian spam probability is 20
>> to 40%
>> [score: 0.3369]
>> 0.2 DNS_FROM_RFC_ABUSE RBL: Envelope sender in
>> abuse.rfc-ignorant.org
>
>Is that the entire header? You're missing a bunch of "Received"
> lines.
Humm, that was a highlight & paste, with the src file 'show all
headers' on in kmail-1.7. I don't usually look at even that much
header as they take up way too much screen real estate. I run x at
1600x1200 here, but also use 18 to 20 point fonts. Silky smooth fonts
that way.
FWIW, fetchmail sucks it and dumps it to /var/spool/mail/gene, & kmail
sucks it from there. This is due to a bug in the kmail suck from
servers code of quite long duration, 3 or 4 years now. Humm, headers
do seem to be getting lost!
I just catted the last fetchmail run and there are headers above those
IN THIS FILE:
-------------
From jean-ooo@taming-openoffice-org.com Sat Dec 31 23:16:57 2005
Return-Path: <je...@taming-openoffice-org.com>
Received: from localhost (localhost.localdomain [127.0.0.1])
by coyote.coyote.den (8.12.11/8.12.10) with ESMTP id
k014Gv7g021793
for <ge...@localhost>; Sat, 31 Dec 2005 23:16:57 -0500
Received: from incoming.verizon.net [206.46.232.10]
by localhost with POP3 (fetchmail-6.2.5.5)
for gene@localhost (single-drop); Sat, 31 Dec 2005 23:16:57
-0500 (EST)
------------
which is not the same message, and therefore a waste of bandwidth I
think.
Too bad the /var/spool/mail/gene files contents are so ephemeral.
--
Cheers, Gene
People having trouble with vz bouncing email to me should add the word
'online' between the 'verizon', and the dot which bypasses vz's
stupid bounce rules. I do use spamassassin too. :-)
Yahoo.com and AOL/TW attorneys please note, additions to the above
message by Gene Heskett are:
Copyright 2005 by Maurice Eugene Heskett, all rights reserved.