Spam Filter

[asmithjr]

wrote

I used this method mentioned. That may be why it is working for me.

You can stop them getting through using etc/antivirus.exim.

Find:

if error_message and $header_from: contains "[email protected]"
then
# looks like a real error message - just ignore it
finish
endif

#Than right under it put:

if $header_subject: contains "wrote"
then
seen finish
endif

It should look like this.

if error_message and $header_from: contains "[email protected]"
then
# looks like a real error message - just ignore it
finish
endif

if $header_subject: contains "wrote"
then
seen finish
endif

 

[Daniel15]

There's a new variant of these spam messages. The new ones have the subject 'hi it's <name here>'. These emails get blocked on my server with the following rules:


3.50 BAYES_99
0.48 DATE_IN_PAST_03_06
2.80 RCVD_FORGED_WROTE
1.95 RCVD_IN_NJABL_DUL
2.05 RCVD_IN_SORBS_DUL
Total: 10.77

 

[mickalo]

There's a new variant of these spam messages. The new ones have the subject 'hi it's <name here>'. These emails get blocked on my server with the following rules:


3.50 BAYES_99
0.48 DATE_IN_PAST_03_06
2.80 RCVD_FORGED_WROTE
1.95 RCVD_IN_NJABL_DUL
2.05 RCVD_IN_SORBS_DUL
Total: 10.77

where exactly did you add this, the local.cf file in the /etc/mail/spamassassin folder, and is this the exact format you used ??

Mickalo

 

[Zion Ahead]

A decent auto installer is located here, or you can check out their how to page here.

I also highly recommend Chirpy's MailScanner setup here, which includes it. For $35 they install Mailscanner with clamAV; they set up SA, Vipul's Razor and DCC; plus they install a WHM front end for you and your hosting customers. WELL worth the cost!

What am I doing wrong here?
I wget'd the file and then

[email protected] [~]# sh installRDJ.pl
installRDJ.pl: line 32: use: command not found
installRDJ.pl: line 33: use: command not found
installRDJ.pl: line 35: my: command not found
installRDJ.pl: line 36: syntax error near unexpected token `('
installRDJ.pl: line 36: `my %configOptions = ();'


Did I forget something?

Also, how do I implement the 70 stocks rule http://www.rulesemporium.com/rules.htm#stocks ? It says read internal doc, I don't see any, but broken link (click on 'more info' for RDJ)

 

[mctDarren]

sh installRDJ.pl

That's a perl script, not a shell script. Try "perl installRDJ.pl"

 

[Zion Ahead]

Nothing is working for me. I am trying to first install rulesdujour

[email protected] [~]# sh rules_du_jour
mkdir: cannot create directory `/etc/spamassassin/RulesDuJour': No such file or directory
rules_du_jour: line 685: cd: /etc/spamassassin/RulesDuJour: No such file or directory
***NOTICE***: Cannot write to /etc/spamassassin. Are you running as the correct user? No rulesets will be checked or updated.
***NOTICE***: Cannot write to /etc/spamassassin/RulesDuJour. Are you running as the correct user? No rulesets will be checked or updated.
exec: curl -w %{http_code} --compressed -O -R -s -S -z /etc/spamassassin/RulesDuJour/rules_du_jour http://sandgnat.com/rdj/rules_du_jour 2>&1
curl_output: 200
Performing preliminary lint (sanity check; does the CURRENT config lint?).
No files updated; No restart required.


Rules Du Jour Run Summary:RulesDuJour Run Summary on server.host.com:

***NOTICE***: Cannot write to /etc/spamassassin. Are you running as the correct user? No rulesets will be checked or updated.

***NOTICE***: Cannot write to /etc/spamassassin/RulesDuJour. Are you running as the correct user? No rulesets will be checked or updated.
[email protected] [~]# perl install rules_du_jour
Can't open perl script "install": No such file or directory



[email protected] [~]# perl installRDJ.pl --install
[CHECK] Checking Vars to avoid error
+ /etc/spamassassin Exist: FAILED
+ /usr/bin/wget Exists: OK
+ /etc/init.d/spamassassin Exists: FAILED

[FAILURE] There was a failure before installation
+ SpamAssassin Dir "/etc/spamassassin" doesn't exists
+ Command "/etc/init.d/spamassassin" doesn't exists

 

[celliott]

For the sake of $35 just hire Chirpy's services. He knows what he is doing and will have you sorted in no time.

 

[mctDarren]

Nothing is working for me. I am trying to first install rulesdujour

You need to install Spamassassin first. RDJ is a script that updates Spamassassin rules. If you don't have SA installed it won't work. Frankly, people are moving away from RDJ and switching to SA-Update now, including the Configserver folks. If you absolutely can't afford the $45 (Chris, it went up $10 now) then wipe what you've done and just follow the configserver free install instructions at Chirpy's site:

Remove clamAV connector if you are using it.
Install SpamAssassin.
Install MailScanner: http://www.configserver.com/free/mailscanner.html
Then Add clamav: http://www.configserver.com/free/clamav.html
Then Vipul & DCC: http://www.configserver.com/techfaq/faqlist.php?catid=5&faqid=7&page=1
Go through the mailscanner conf file and adjust it as needed for your server

Hope that helps

 

[Zion Ahead]

Ok, what am I missing here? I installed clamav and SA via web host manager. Is that not allowed or is it mandatory to install both manually to get this to work?

 

[Zion Ahead]

If someone can help that would be great

 

[Zion Ahead]

I downloaded the autoinstaller and than the below is happening

[email protected] [~]# ./installRDJ.pl --install
-bash: ./installRDJ.pl: Permission denied
[email protected] host [~]# ./installRDJ.pl --install --cpanel
-bash: ./installRDJ.pl: Permission denied

-rw-r--r-- 1 root root 11K Sep 3 10:26 installRDJ.pl

I also was trying to reinstall clamav manually from chirp's site and got this:
http://www.configserver.com/free/clamav.html

[email protected] [~/msinstall/clamav-0.88.7]# make
make: *** No targets specified and no makefile found. Stop.

Why?

Spamasssasin is not showing up in cpanel even though I ticked on both spam assassin options in tweak settings. Mailscanner readme from chirp's site says to uncheck spamassasin but after install is complete it does not say in instructions to re-check SA at all. What is the proper method to reactivate SA?

What am I doing wrong? I’m using cpanel, centos 4.4, spam assassin
already installed as well. Please help.

 

[mctDarren]

[email protected] [~][email protected] host [~]# ./installRDJ.pl --install --cpanel
-bash: ./installRDJ.pl: Permission denied

-rw-r--r-- 1 root root 11K Sep 3 10:26 installRDJ.pl

You don't have permissions set on the file to allow it to execute. "chmod +X ./installRDJ.pl"

[email protected] [~/msinstall/clamav-0.88.7]# make
make: *** No targets specified and no makefile found. Stop.

Why?

if make isn't finding a makefile, then ./configure might not be doing it's job for some reason. Any messages after running ./configure?

 

[Zion Ahead]

Thank you. I redownloaded and did as you listed but I get errors still

[email protected] [~]# chmod +x installRDJ.pl
[email protected] [~]# ./installRDJ.pl --install
[CHECK] Checking Vars to avoid error
+ /etc/spamassassin Exist: FAILED
+ /usr/bin/wget Exists: OK
+ /etc/init.d/spamassassin Exists: FAILED

[FAILURE] There was a failure before installation
+ SpamAssassin Dir "/etc/spamassassin" doesn't exists
+ Command "/etc/init.d/spamassassin" doesn't exists


I really do appreciate any help as I would like to learn this
once and for all. Just a note, I installed spam assassin
via web host manager so is this the reason why
it won’t pick up?

 

[Zion Ahead]

Getting close...

[email protected] [~]# ./installRDJ.pl --install --sa_dir=/usr/bin/spamassassin --sa_restart=</usr/bin/spamassassin
Option sa_restart requires an argument
[CHECK] Checking Vars to avoid error
+ /usr/bin/spamassassin Exist: OK
+ /usr/bin/wget Exists: OK
+ /etc/init.d/spamassassin Exists: FAILED

[FAILURE] There was a failure before installation
+ Command "/etc/init.d/spamassassin" doesn't exists

 

[jeroman8]

You can use cpanels default spamassassin installation.

Then download the instalRDJ.pl script from HERE.
Modify the script: change /etc/spamassasin to /etc/mail/spamassassin

Now it should work.

 

[Zion Ahead]

Thank you. What about the other methods (mailscanner, rbl, vipus, etc??)

Also, what rules are suggested for this environment:

production with shared / reseller accounts (200+ accounts)
using spam assassin, mailman, exim?

 

[Zion Ahead]

PLEASE HELP!

./installRDJ.pl --install --sa_dir=/etc/mail/spamassassin --sa_restart=</etc/mail/spamassassin
Option sa_restart requires an argument
[CHECK] Checking Vars to avoid error
+ /etc/mail/spamassassin Exist: OK
+ /usr/bin/wget Exists: OK
+ /etc/init.d/spamassassin Exists: FAILED

[FAILURE] There was a failure before installation
+ Command "/etc/init.d/spamassassin" doesn't exists


./installRDJ.pl --install --sa_dir=/usr/bin/spamassassin --sa_restart=</usr/bin/spamassassin
Option sa_restart requires an argument
[CHECK] Checking Vars to avoid error
+ /usr/bin/spamassassin Exist: OK
+ /usr/bin/wget Exists: OK
+ /etc/init.d/spamassassin Exists: FAILED

[FAILURE] There was a failure before installation
+ Command "/etc/init.d/spamassassin" doesn't exists