The Community Forums

Interact with an entire community of cPanel & WHM users!
  1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

spamassassin --- some guidance?

Discussion in 'General Discussion' started by feanor, Feb 5, 2002.

  1. feanor

    feanor Well-Known Member

    Joined:
    Aug 13, 2001
    Messages:
    836
    Likes Received:
    0
    Trophy Points:
    16
    From my standpoint it would be helpful to know:

    a) what exactly happens when a user clicks on \"enable spam assassin\"... what files are updated, where? I don\'t understand how this is enabled on a per-domain basis?

    b) The changeLog forum had no mention of any of this.... as much as the additions/changes are welcome, we are all caught completely clueless when customers start enabling a feature that was instilled while the world was sleeping. Is there a place we can count on for at least a foreshadowing of upcoming changes? It would make things flow so much more smoothly.

    c) An afflicted domain that enabled spamassin is below... (delivering to any address at the domain in question yields the same error)


    If anyone has already come across these details, please let share them here.
    Thank you very much!



    _______________________
    LOG: 0 MAIN
    <= root@hostname U=root P=local S=342
    delivering message 16YENP-0004UF-00
    (directory)
    transport error EPIPE ignored
    LOG: 0 MAIN
    ** ADDRESS@ADDRESS=virtual_sa_user T=virtual_sa_userdelivery: Child process of virtual_sa_userdelivery transport returned 69 (could mean service or program unavailable) from command: /usr/bin/spamassassin
    Exim version 3.34 debug level 1 uid=0 gid=0
    Berkeley DB: Sleepycat Software: DB 2.4.14: (6/2/98)
    LOG: 0 MAIN
    <= <> R=16YENP-0004UF-00 U=root P=local S=1310
    delivering message 16YENP-0004UK-00
    LOG: 5 MAIN
    Error message sent to
     
  2. akashik

    akashik Active Member

    Joined:
    Oct 9, 2001
    Messages:
    34
    Likes Received:
    0
    Trophy Points:
    6
    Don\'t bother with it - it\'s junk. We\'ve had complaints about it since it got put into the panel. Blocks so much real mail it\'s costing our own customers business with missed e-mails.

    Makes you wonder how much testing some of these features get before they go out into the wild.

    Greg Moore
     
  3. feanor

    feanor Well-Known Member

    Joined:
    Aug 13, 2001
    Messages:
    836
    Likes Received:
    0
    Trophy Points:
    16
    We\'ll see I suppose, I wish I had some tangible information on how this interacts w/ CPanel.

    The easiest way to disable this, per domain, is by removing the \".spamassassinenable\" file that is simply a switch ON, in the user\'s home directory. Remove that and nothing is filtered through the spam assassin module.

    I really need more information about how this is integrated.....
    I am all for things that break down / prevent spam..... who isn\'t?

    But can roll something like this out safely?
    Possible?
     
  4. AlaskanWolf

    AlaskanWolf Well-Known Member

    Joined:
    Aug 11, 2001
    Messages:
    537
    Likes Received:
    0
    Trophy Points:
    16
    Location:
    Fremont CA
    actually the way spam assassin works is quite simple

    it does *not* block *any* emails going to a users email account

    based on rules (you which you find in the spamassassin directory) it adds a *******SPAM***** to the subject line, along with a additon to the top of the email such as this:

    xxxxxxxxxxxxxxxxxxxxxx
    SPAM: -------------------- Start SpamAssassin results ----------------------
    SPAM: This mail is probably spam. The original message has been altered
    SPAM: so you can recognise or block similar unwanted mail in future.
    SPAM: See http://spamassassin.org/tag/ for more details.
    SPAM:
    SPAM: Content analysis details: (9.65 hits, 5 required)
    SPAM: Hit! (0.5 points) Subject has an exclamation mark
    SPAM: Hit! (1.72 points) BODY: Talks about email marketing
    SPAM: Hit! (0.01 points) BODY: Asks you to click below
    SPAM: Hit! (1.91 points) BODY: Claims you can be removed from the list
    SPAM: Hit! (1.2 points) BODY: HTML mail with non-white background
    SPAM: Hit! (1 point) BODY: Image tag with an ID code to identify you
    SPAM: Hit! (1.56 points) Contains phrases frequently found in spam
    SPAM: [score: 14, hits: click below, click here, find]
    SPAM: [out, for free, from your, marketing your, people]
    SPAM: [who, please click, received this, removed]
    SPAM: [please, this message, with our, your email, your]
    SPAM: [own]
    SPAM: Hit! (1.75 points) From and To the same address
    SPAM:
    SPAM: -------------------- End of SpamAssassin results ---------------------
     
  5. AlaskanWolf

    AlaskanWolf Well-Known Member

    Joined:
    Aug 11, 2001
    Messages:
    537
    Likes Received:
    0
    Trophy Points:
    16
    Location:
    Fremont CA
    [quote:683c19b0fd][i:683c19b0fd]Originally posted by akashik[/i:683c19b0fd]
    Don\'t bother with it - it\'s junk. We\'ve had complaints about it since it got put into the panel. Blocks so much real mail it\'s costing our own customers business with missed e-mails.

    Makes you wonder how much testing some of these features get before they go out into the wild.

    Greg Moore [/quote:683c19b0fd]

    Greg, im a bit bewildered about your response on this and ask your opionon on how exactly it \"blocks so much real mail\"

    If i dont know something that u do, please share it with me so i can know exactly what it does. But its apparent to me that

    1. Users can turn it on / off at will

    2. If you decide to keep it in your panel, simply have a reference somewhere on your site on what the feature does

    3. I think DarkOrb did a great job, 2 days before this was released i was on the Exim Mailing list trying to find out how to add such a feature...manually....

    4. It only adds a message in the subject and body of a email, it doesnt delete it

    5. If a user complains about a specific rule, simply go into the rules area and delete it....
     
  6. AlaskanWolf

    AlaskanWolf Well-Known Member

    Joined:
    Aug 11, 2001
    Messages:
    537
    Likes Received:
    0
    Trophy Points:
    16
    Location:
    Fremont CA
    [quote:dd60db597b][i:dd60db597b]Originally posted by feanor[/i:dd60db597b]

    c) An afflicted domain that enabled spamassin is below... (delivering to any address at the domain in question yields the same error)
    _____________________
    LOG: 0 MAIN
    <= root@hostname U=root P=local S=342
    delivering message 16YENP-0004UF-00
    (directory)
    transport error EPIPE ignored
    LOG: 0 MAIN
    ** ADDRESS@ADDRESS=virtual_sa_user T=virtual_sa_userdelivery: Child process of virtual_sa_userdelivery transport returned 69 (could mean service or program unavailable) from command: /usr/bin/spamassassin
    Exim version 3.34 debug level 1 uid=0 gid=0
    Berkeley DB: Sleepycat Software: DB 2.4.14: (6/2/98)
    LOG: 0 MAIN
    <= <> R=16YENP-0004UF-00 U=root P=local S=1310
    delivering message 16YENP-0004UK-00
    LOG: 5 MAIN
    Error message sent to [/quote:dd60db597b]

    This was the same bug we had in our install, bascially what nick told me to do was re-run

    rsync -av rsync://rsync.cpanel.net/scripts /scripts
    /scripts/installspam

    basically it is looking for spamassassin in the /usr/bin/ folder and its not there
     
  7. feanor

    feanor Well-Known Member

    Joined:
    Aug 13, 2001
    Messages:
    836
    Likes Received:
    0
    Trophy Points:
    16
    Thanks- the link to that bug conversation would have been extremely helpful if posted into one of the ongoing threads yesterday when things were resolved.

    Just FYI- it would have saved a lot of peoplez days from going down the toliet.

    :p
    Thanks, regardless- things are golden now.
     
  8. JeremyL

    JeremyL Well-Known Member

    Joined:
    Aug 10, 2001
    Messages:
    87
    Likes Received:
    0
    Trophy Points:
    6
    My recomendation to anyone using the default skins that get updated automatically via cpanel. Make a duplicate copy of them just a renamed directory so that the only way they are updated is when you copy them from one dir to another. Giving customers new features without our knowledge is bad. This way they only get the features we know about.
     
  9. stevem

    stevem Registered

    Joined:
    Feb 8, 2002
    Messages:
    1
    Likes Received:
    0
    Trophy Points:
    1
    [quote:2198d83dc1][i:2198d83dc1]Originally posted by AlaskanWolf[/i:2198d83dc1]

    actually the way spam assassin works is quite simple

    it does *not* block *any* emails going to a users email account

    based on rules (you which you find in the spamassassin directory) it adds a *******SPAM***** to the subject line, along with a additon to the top of the email such as this:
    [/quote:2198d83dc1]Actually when I enabled this it did, in fact, block a ton of email. I expected to see some email with the **********SPAN************ in the subject line. Instead it fully blocked all email from all vBulletin forums I subscribe to (including my own.) I'm not sure how much ore mail I missed. Once I saw what it was doing, I disabled it.

    Any idea why this email was blocked?
     
  10. Julie

    Julie Member

    Joined:
    Aug 10, 2001
    Messages:
    6
    Likes Received:
    0
    Trophy Points:
    1
    [quote:722dd40e99]
    rsync -av rsync://rsync.cpanel.net/scripts /scripts
    /scripts/installspam
    [/quote:722dd40e99]
    We have tried this, and still both our servers are bouncing all incoming mail when spamassasin is enabled...

    LOG: 0 MAIN
    &= root@host2.safe-hosting.com U=root P=local S=320
    delivering message 16eOBP-0007h2-00
    root@host2 [/usr/bin]# LOG: 0 MAIN
    ** wr2000@wr2000.com &wr2000@wr2000.com& D=sa_localuser T=local_sa_delivery: Child process of local_sa_delivery transport returned 70 (could mean internal software error) from command: /usr/bin/spamassassin
    Exim version 3.34 debug level 1 uid=0 gid=0
    Berkeley DB: Sleepycat Software: DB 2.4.14: (6/2/98)
    LOG: 0 MAIN
    &= && R=16eOBP-0007h2-00 U=root P=local S=1719
    delivering message 16eOBP-0007h7-00
    LOG: 5 MAIN
     
  11. akashik

    akashik Active Member

    Joined:
    Oct 9, 2001
    Messages:
    34
    Likes Received:
    0
    Trophy Points:
    6
    [quote:24bd6a88d4]Greg, im a bit bewildered about your response on this and ask your opionon on how exactly it \&blocks so much real mail\&
    [/quote:24bd6a88d4]

    I haven't revisted this feature since my post but to answer your question, customers would enable it to find a large percent of their legit e-mail blocked. One in particular that bought it to our attention remarked he'd only found out himself from a customer of his who'd contacted him via a 'spam assassin' enabled domain and had it bounce. This guy then contacted him via a different e-mail address to let him know his mail was bouncing. Turning off spam assassin fixed the issue and his e-mail began to flow through just as it did before.

    No messages, errors etc.. just mail not arriving at it's inbox.

    Don't know if this has been corrected via update of course as it's been a while.

    Greg Moore
     
  12. TRAIN YARD SOFTWARE

    TRAIN YARD SOFTWARE Well-Known Member

    Joined:
    Dec 20, 2001
    Messages:
    224
    Likes Received:
    0
    Trophy Points:
    16
    spam

    We have the same problem

    ON: no mail. not even root mailbox test email

    OFF: email works fine


    are there some settings somewhere for this?



    Ed
     
  13. bdraco

    bdraco Guest

    [quote:553f48245c][i:553f48245c]Originally posted by akashik[/i:553f48245c]

    [quote:553f48245c]Greg, im a bit bewildered about your response on this and ask your opionon on how exactly it \&blocks so much real mail\&
    [/quote:553f48245c]

    I haven't revisted this feature since my post but to answer your question, customers would enable it to find a large percent of their legit e-mail blocked. One in particular that bought it to our attention remarked he'd only found out himself from a customer of his who'd contacted him via a 'spam assassin' enabled domain and had it bounce. This guy then contacted him via a different e-mail address to let him know his mail was bouncing. Turning off spam assassin fixed the issue and his e-mail began to flow through just as it did before.

    No messages, errors etc.. just mail not arriving at it's inbox.

    Don't know if this has been corrected via update of course as it's been a while.

    Greg Moore[/quote:553f48245c]


    /scripts/fixcommonproblems
     
Loading...

Share This Page