You are viewing a plain text version of this content. The canonical link for it is here.
Posted to users@spamassassin.apache.org by Justin Mason <jm...@jmason.org> on 2005/10/30 01:22:26 UTC
Re: [Mailer-Daemon@codemist.co.uk: Mail delivery failed: returning message to sender]
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
OK, the line was:
> Oct 29 10:02:55 asf spamd[84538]: spamd: result: . 6 -
> HELO_DYNAMIC_DHCP,HELO_DYNAMIC_IPADDR,NO_REAL_NAME
> scantime=0.9,size=2039,user=smtpd,uid=99,required_score=10.0,
> rhost=localhost,raddr=127.0.0.1,rport=/var/run/spamd,
> mid=<77...@codemist.co.uk>,
> autolearn=disabled
I'm not sure what the hostname's HELO was, because that's not logged,
but going by this line:
> by dsl-217-155-197-248.zen.co.uk with esmtp (Exim 4.54)
I'll bet it HELO'd as "dsl-217-155-197-248.zen.co.uk". Any idea
why it did that? Most mailservers use a real hostname, instead of
a "dialup IP rDNS" name -- that's a pretty reliable spam trait.
- --j.
jpff@codemist.co.uk writes:
> Another attempt
> ------- Start of forwarded message -------
> Envelope-to: jpff@codemist.co.uk
> Delivery-date: Sat, 29 Oct 2005 18:02:58 +0100
> X-Failed-Recipients: users@spamassassin.apache.org
> Auto-Submitted: auto-generated
> From: Mail Delivery System <Ma...@codemist.co.uk>
> To: jpff@codemist.co.uk
> Subject: Mail delivery failed: returning message to sender
> Date: Sat, 29 Oct 2005 18:02:57 +0100
>
> This message was created automatically by mail delivery software.
>
> A message that you sent could not be delivered to one or more of its
> recipients. This is a permanent error. The following address(es) failed:
>
> users@spamassassin.apache.org
> SMTP error from remote mail server after end of data:
> host asf.osuosl.org [140.211.166.49]: 552 spam score (6.6) exceeded threshold
>
> - ------ This is a copy of the message, including all the headers. ------
>
> Return-path: <jp...@codemist.co.uk>
> Received: from cardew.codemist.co.uk ([172.16.4.17])
> by dsl-217-155-197-248.zen.co.uk with esmtp (Exim 4.54)
> id 1EVu6E-0005As-L7; Sat, 29 Oct 2005 18:02:34 +0100
> Received: from jpff by cardew.codemist.co.uk with local (Exim 4.44)
> id 1EVu8c-0001yh-B5; Sat, 29 Oct 2005 18:05:02 +0100
> Date: Sat, 29 Oct 2005 18:05:01 +0100
> Message-Id: <77...@codemist.co.uk>
> X-Mailer: emacs 21.3.1 (via feedmail 8 I)
> From: jpff@codemist.co.uk
> To: users@spamassassin.apache.org
> Subject: Trying to get DCC to work
>
> I uncommented the line in v310.pre and made sure that DCC was
> installed (this is a Debian box so used aptitude). However
> spamassassin -D --line says
>
> [19739] dbg: dcc: got response: socket(UDP): Address family not supported by protocol
>
> and so I assume something is wrong. I have tried various things but
> no success. btw /var/lib/dcc/dccifd is the socket and it exists
>
> Fuller log below
> ==John ffitch
>
> ...
> [19778] dbg: plugin: registering glue method for check_dcc (Mail::SpamAssassin::Plugin::DCC=HASH(0x93366c0))
> [19778] dbg: dcc: dccifd is not available: no r/w dccifd socket found
> [19778] dbg: util: executable for dccproc was found at /usr/bin/dccproc
> [19778] dbg: dcc: dccproc is available: /usr/bin/dccproc
> [19778] dbg: info: entering helper-app run mode
> [19778] dbg: dcc: opening pipe: /usr/bin/dccproc -H -R < /tmp/.spamassassin19778ZmYs70tmp
> [19779] dbg: util: setuid: ruid=0 euid=0
> [19778] dbg: dcc: got response: socket(UDP): Address family not supported by protocol
> [19778] dbg: info: leaving helper-app run mode
> [19778] dbg: dcc: check failed: no X-DCC returned (did you create a map file?): socket(UDP): Address family not supported by protocol
> ...
> ------- End of forwarded message -------
>
> ==John ffitch
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.1 (GNU/Linux)
Comment: Exmh CVS
iD8DBQFDZAQyMJF5cimLx9ARAr/sAKCloFZl2xZUcJVaADNdg8uBP/db8QCff75h
Iax9/8zIfH753fIWS6XQtF4=
=8C/L
-----END PGP SIGNATURE-----
Re: [Mailer-Daemon@codemist.co.uk: Mail delivery failed:
returning message to sender]
Posted by Evan Platt <ev...@espphotography.com>.
At 08:26 AM 10/30/2005, you wrote:
>A "real name" mean: The NAME of the Emailclient!
>
>TheBat
>Outlook Express
>MS Outlook
>Pegasus Mail
>and so on
Umm.. No. No Real Name in the spamassassin rules means no real name
configured of the user, i.e.
Joe Smith <js...@domain.com> wouldn't score, but
<js...@domain.com> would.
Re: [Mailer-Daemon@codemist.co.uk: Mail delivery failed: returning
message to sender]
Posted by "M.Lewis" <_S...@cajuninc.com>.
Jim Knuth wrote:
> Hallo und Guten Tag Loren,
>
> Heute (am 30.10.2005 - 17:36 Uhr)
> schriebst Du:
>
>
>>>A "real name" mean: The NAME of the Emailclient!
>>>
>>>TheBat
>>>Outlook Express
>>>MS Outlook
>>>Pegasus Mail
>>>and so on
>
>
>>Nope, sorry. It has to do with the From address format:
>
>
>> "My Real Name" me@host.com
>> My Real Name <me...@host.com>
>
>
>> <no...@host.com>
>> norealname@host.com
>
>
>>There are other variations, but basically it is whether there is more than
>>just the email address there.
>
>
>> Loren
>
>
>
> sorry, but I have the information from an "maker" of SA. I don`t
> know, just in time, who.
>
>
20_head_tests.cf:header NO_REAL_NAME From =~
/^["\s]*\<?\S+\@\S+\>?\s*$/
20_head_tests.cf:describe NO_REAL_NAME From: does not include a
real name
Re: [Mailer-Daemon@codemist.co.uk: Mail delivery failed: returning message to sender]
Posted by Jim Knuth <jk...@jkart.de>.
Hallo und Guten Tag Loren,
Heute (am 30.10.2005 - 17:36 Uhr)
schriebst Du:
>> A "real name" mean: The NAME of the Emailclient!
>>
>> TheBat
>> Outlook Express
>> MS Outlook
>> Pegasus Mail
>> and so on
> Nope, sorry. It has to do with the From address format:
> "My Real Name" me@host.com
> My Real Name <me...@host.com>
> <no...@host.com>
> norealname@host.com
> There are other variations, but basically it is whether there is more than
> just the email address there.
> Loren
sorry, but I have the information from an "maker" of SA. I don`t
know, just in time, who.
--
Viele Grüße, Kind regards,
Jim Knuth
jk@jkart.de
ICQ #277289867
PGP: 54C9 1A46 D3B2 95B6 454D 74FA AC73 773E 1F78 066F
----------
Zufalls-Zitat
----------
Um eine Einkommensteuererklärung abgeben zu können, muß man
ein Philosoph sein. Für einen Mathematiker ist es zu
schwierig. (Albert Einstein, dt.-am. Physiker, 1879-1955)
----------
Der Text hat nichts mit dem Empfänger der Mail zu tun
----------
Virus free. Checked by NOD32 Version 1.1267 Build 6270 28.10.2005
Re: [Mailer-Daemon@codemist.co.uk: Mail delivery failed: returning message to sender]
Posted by Loren Wilton <lw...@earthlink.net>.
> A "real name" mean: The NAME of the Emailclient!
>
> TheBat
> Outlook Express
> MS Outlook
> Pegasus Mail
> and so on
Nope, sorry. It has to do with the From address format:
"My Real Name" me@host.com
My Real Name <me...@host.com>
<no...@host.com>
norealname@host.com
There are other variations, but basically it is whether there is more than
just the email address there.
Loren
Re: [Mailer-Daemon@codemist.co.uk: Mail delivery failed: returning message to sender]
Posted by Jim Knuth <jk...@jkart.de>.
Hallo und Guten Tag Greg,
Heute (am 30.10.2005 - 16:07 Uhr)
schriebst Du:
>>
>> Somethings odd here. The above message, when it arrived here from the
>> list, did have a real name (jpff@codemist.co.uk) in the headers, all
>> lines of it except those that refered to me@this.domain or to the
>> intermediate handlers of the message. So it looks to me as if he is
>> doing it right.
> I don't think an email address is considered a "real name". If you look at
> most everyone who sends to this list, their "from" address is a indeed real
> name like 'John Smith' not an email address like jpff@codemist.co.uk.
> Now, I have seen situations where real names got stripped by email relays,
> but usually this is just someone being lazy and not setting up their Outlook
> (or whatever) correctly. That is why you see some frustration with the
> responses.
A "real name" mean: The NAME of the Emailclient!
TheBat
Outlook Express
MS Outlook
Pegasus Mail
and so on
--
Viele Grüße, Kind regards,
Jim Knuth
jk@jkart.de
ICQ #277289867
PGP: 54C9 1A46 D3B2 95B6 454D 74FA AC73 773E 1F78 066F
----------
Zufalls-Zitat
----------
Das, wobei unsere Berechnungen versagen, nennen wir Zufall.
----------
Der Text hat nichts mit dem Empfänger der Mail zu tun
----------
Virus free. Checked by NOD32 Version 1.1267 Build 6270 28.10.2005
RE: [Mailer-Daemon@codemist.co.uk: Mail delivery failed: returning message to sender]
Posted by Greg Allen <sa...@floridacpu.com>.
>
> Somethings odd here. The above message, when it arrived here from the
> list, did have a real name (jpff@codemist.co.uk) in the headers, all
> lines of it except those that refered to me@this.domain or to the
> intermediate handlers of the message. So it looks to me as if he is
> doing it right.
I don't think an email address is considered a "real name". If you look at
most everyone who sends to this list, their "from" address is a indeed real
name like 'John Smith' not an email address like jpff@codemist.co.uk.
Now, I have seen situations where real names got stripped by email relays,
but usually this is just someone being lazy and not setting up their Outlook
(or whatever) correctly. That is why you see some frustration with the
responses.
Re: [Mailer-Daemon@codemist.co.uk: Mail delivery failed: returning
message to sender]
Posted by Gene Heskett <ge...@verizon.net>.
On Sunday 30 October 2005 05:37, Michael Monnerie wrote:
>On Sonntag, 30. Oktober 2005 08:38 jpff@codemist.co.uk wrote:
>> This domain is not a dialup and is a static IP address, and
>> completely traceable to me. It has also never been involved in
>> sending spam. If the anti-spam community start misbehaving the
>> future is indeed bleak. ==John ffitch
>
>Your still misbehaving too:
>
>X-Spam-Status: No, hits=0.96 tagged_above=-999 required=5
> tests=NO_REAL_NAME=0.961, SPF_PASS=-0.001
>
>Please set a *real name* in your mailer.
>
>mfg zmi
Somethings odd here. The above message, when it arrived here from the
list, did have a real name (jpff@codemist.co.uk) in the headers, all
lines of it except those that refered to me@this.domain or to the
intermediate handlers of the message. So it looks to me as if he is
doing it right.
I do pick this list off in my sort before it gets fed at SA, so SA
never saw that message.
--
Cheers, Gene
"There are four boxes to be used in defense of liberty:
soap, ballot, jury, and ammo. Please use in that order."
-Ed Howdershelt (Author)
99.35% setiathome rank, not too shabby for a WV hillbilly
Free OpenDocument reader/writer/converter download:
http://www.openoffice.org
Yahoo.com and AOL/TW attorneys please note, additions to the above
message by Gene Heskett are:
Copyright 2005 by Maurice Eugene Heskett, all rights reserved.
Re: [Mailer-Daemon@codemist.co.uk: Mail delivery failed: returning
message to sender]
Posted by Nix <ni...@esperi.org.uk>.
On Sun, 30 Oct 2005, Michael Monnerie moaned:
> On Sonntag, 30. Oktober 2005 08:38 jpff@codemist.co.uk wrote:
>> This domain is not a dialup and is a static IP address, and
>> completely traceable to me. It has also never been involved in
>> sending spam. If the anti-spam community start misbehaving the
>> future is indeed bleak. ==John ffitch
>
> Your still misbehaving too:
It's not `misbehaviour'. It's just a slight spamsign.
> X-Spam-Status: No, hits=0.96 tagged_above=-999 required=5
> tests=NO_REAL_NAME=0.961, SPF_PASS=-0.001
>
> Please set a *real name* in your mailer.
Why should he? 0.961 is nowhere near enough to class the mail
as spam.
(The real problem is that this list is spamfiltered at all: it's
ridiculous to spamfilter a list on which spams are regularly dissected.)
--
`"Gun-wielding recluse gunned down by local police" isn't the epitaph
I want. I am hoping for "Witnesses reported the sound up to two hundred
kilometers away" or "Last body part finally located".' --- James Nicoll
Re: [Mailer-Daemon@codemist.co.uk: Mail delivery failed: returning message to sender]
Posted by Michael Monnerie <m....@zmi.at>.
On Sonntag, 30. Oktober 2005 08:38 jpff@codemist.co.uk wrote:
> This domain is not a dialup and is a static IP address, and
> completely traceable to me. It has also never been involved in
> sending spam. If the anti-spam community start misbehaving the
> future is indeed bleak. ==John ffitch
Your still misbehaving too:
X-Spam-Status: No, hits=0.96 tagged_above=-999 required=5
tests=NO_REAL_NAME=0.961, SPF_PASS=-0.001
Please set a *real name* in your mailer.
mfg zmi
--
// Michael Monnerie, Ing.BSc --- it-management Michael Monnerie
// http://zmi.at Tel: 0660/4156531 Linux 2.6.11
// PGP Key: "lynx -source http://zmi.at/zmi2.asc | gpg --import"
// Fingerprint: EB93 ED8A 1DCD BB6C F952 F7F4 3911 B933 7054 5879
// Keyserver: www.keyserver.net Key-ID: 0x70545879
Re: [Mailer-Daemon@codemist.co.uk: Mail delivery failed: returning
message to sender]
Posted by mouss <us...@free.fr>.
jpff@codemist.co.uk a écrit :
>This domain is not a dialup and is a static IP address, and completely
>traceable to me. It has also never been involved in sending spam. If
>the anti-spam community start misbehaving the future is indeed bleak.
>
>
your mail goes through 217.155.197.248, which calls itself
dsl-217-....uk. Why don't give it is a "more natural" name such
foo.codemist.co.uk (and configure the latter to resolve to that IP)? and
if you can get the reverse to return this name, then do it to.
also, as already suggested, configure your MUA to put a display name.
"John" <jp...@...> would save you some points.
Re: [Mailer-Daemon@codemist.co.uk: Mail delivery failed: returning message to sender]
Posted by Mathias Homann <ad...@eregion.de>.
Am Sonntag, 30. Oktober 2005 08:38 schrieb jpff@codemist.co.uk:
> This domain is not a dialup and is a static IP address, and
> completely traceable to me. It has also never been involved in
> sending spam. If the anti-spam community start misbehaving the
> future is indeed bleak. ==John ffitch
if mail admins are this clueless about mx records, the future is
indeed even more bleak.
i'll explain it to you, slowly:
> mathias@merry:~> host codemist.co.uk
> codemist.co.uk has address 81.174.238.154
This is the IP adress for that domain of yours.
> mathias@merry:~> host -t mx codemist.co.uk
> codemist.co.uk mail is handled by 5 dsl-217-155-197-248.zen.co.uk.
this is what is configured as that domain's MAIL SERVER.
The hostname (and the whois record connected with the corresponding ip
address) clearly shows that this is a dsl-connected dynamic address
belonging to zen networks in the UK.
> mathias@merry:~> host 81.174.238.154
> 154.238.174.81.in-addr.arpa domain name pointer hanif001.plus.com.
this is the reverse to the ip address of your domain, so to speak the
"real" name of the webserver its being hosted on.
oh, and from the headers of your mail to this list:
> X-Spam-Status: No, score=0.5 required=5.0
> tests=AWL,BAYES_40,CAME_VIA_USA, NO_REAL_NAME autolearn=no
> version=3.1.0
See the "NO_REAL_NAME"? yes, that is from YOUR mail. It means that you
forgot to put your REAL NAME in your mail program.
bye,
MH
--
gpg key fingerprint: 5F64 4C92 9B77 DE37 D184 C5F9 B013 44E7 27BD
763C
Re: [Mailer-Daemon@codemist.co.uk: Mail delivery failed: returning message to sender]
Posted by jp...@codemist.co.uk.
This domain is not a dialup and is a static IP address, and completely
traceable to me. It has also never been involved in sending spam. If
the anti-spam community start misbehaving the future is indeed bleak.
==John ffitch
Re: [Mailer-Daemon@codemist.co.uk: Mail delivery failed: returning message to sender]
Posted by jdow <jd...@earthlink.net>.
From: "Justin Mason" <jm...@jmason.org>
> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
>
>
> OK, the line was:
>
>> Oct 29 10:02:55 asf spamd[84538]: spamd: result: . 6 -
>> HELO_DYNAMIC_DHCP,HELO_DYNAMIC_IPADDR,NO_REAL_NAME
>> scantime=0.9,size=2039,user=smtpd,uid=99,required_score=10.0,
>> rhost=localhost,raddr=127.0.0.1,rport=/var/run/spamd,
>> mid=<77...@codemist.co.uk>,
>> autolearn=disabled
>
> I'm not sure what the hostname's HELO was, because that's not logged,
> but going by this line:
>
>> by dsl-217-155-197-248.zen.co.uk with esmtp (Exim 4.54)
>
> I'll bet it HELO'd as "dsl-217-155-197-248.zen.co.uk". Any idea
> why it did that? Most mailservers use a real hostname, instead of
> a "dialup IP rDNS" name -- that's a pretty reliable spam trait.
>
> - --j.
Oh what tangled webs....
===8<---
[jdow ~/.spamassassin]$ host codemist.co.uk
codemist.co.uk has address 81.174.238.154
codemist.co.uk mail is handled by 5 dsl-217-155-197-248.zen.co.uk.
[jdow ~/.spamassassin]$ host 81.174.238.154
154.238.174.81.in-addr.arpa domain name pointer hanif001.plus.com.
===8<---
It IS a dialup as near as I can figure.
{^_^}