Search found 266 matches

by nicola.piazzi
17 May 2019 12:25
Forum: 3.x How-to
Topic: Uriskip, software
Replies: 0
Views: 11

Uriskip, software

Hi, I devepoped a piece of software, a sample script that create a list of most used 2nd level domains based on latest headers received most used domains are checked for URIBL one time only and saved into a .cf that is used to skip URIBL check so these domains most used are skipped and save tons of ...
by nicola.piazzi
15 May 2019 10:05
Forum: 3.x How-to
Topic: How to skip rbl check locally ?
Replies: 4
Views: 48

Re: How to skip rbl check locally ?

this cannot be done because i wrote a lot of rules / plugins that get data from outgoing emails to analyze incoming emails
i know that i can use same database for all mailservers but it will be too complex
by nicola.piazzi
15 May 2019 08:30
Forum: 3.x How-to
Topic: How to skip rbl check locally ?
Replies: 4
Views: 48

Re: How to skip rbl check locally ?

I found this solution
select count(from_domain) as a, from_domain from maillog group by from_domain order by a;
Then i take all most count domains and put into

uridnsbl_skip_domain gmail.com mrsend.com
etc etc

someone know if writing msend.com include also mail.mrsend.com
?
by nicola.piazzi
15 May 2019 08:07
Forum: 3.x How-to
Topic: How to skip rbl check locally ?
Replies: 4
Views: 48

Re: How to skip rbl check locally ?

In effect seems that RBL are skipped when come from internal network but all URIBL are done in all domains found in the email
is possible to stop uribl check when email come from internal network ?
by nicola.piazzi
14 May 2019 12:34
Forum: 3.x How-to
Topic: How to skip rbl check locally ?
Replies: 4
Views: 48

How to skip rbl check locally ?

Hi My efa receive emails from External and from internal addresses I want to skip RBL check for internal address, i put these in local.cf internal_networks 127.0.0.1 internal_networks 10.1.0.0/16 internal_networks 192.168.2.0/24 trusted_networks 127.0.0.1 trusted_networks 10.1.0.0/16 trusted_network...
by nicola.piazzi
09 May 2019 15:42
Forum: 3.x How-to
Topic: [vsender] PLUGIN
Replies: 0
Views: 40

[vsender] PLUGIN

Here vsender.zip a plugin that i made now Unzip under spamassassin dir and use instructions in init file customize vsender.pm with your banner this plugin detect if FROM email that write you is ready to accept mail on destination server sometimes is not ready because destination is greylisted and it...
by nicola.piazzi
06 May 2019 16:06
Forum: 3.x How-to
Topic: schuCheckMX, an useful plugin
Replies: 0
Views: 26

schuCheckMX, an useful plugin

This plugin uses sqlite that is included in efa so is simple to install (the only thing is to give permission so postfix user can write db file and folder that contains it) Plugin scans received emails for FROM field and have 2 scores : SCHUCHECKMX_MXRECORD give a penality if email received have a F...
by nicola.piazzi
02 May 2019 12:34
Forum: 3.x How-to
Topic: Envelope From & Spamassassin
Replies: 1
Views: 56

(solved by myself)Re: Envelope From & Spamassassin

I was writing a plugin but i found that there is already this
HEADER_FROM_DIFFERENT_DOMAINS

!!
by nicola.piazzi
30 Apr 2019 10:25
Forum: 3.x How-to
Topic: Envelope From & Spamassassin
Replies: 1
Views: 56

Envelope From & Spamassassin

sometimes happens that we receive mails that have a different FROM field in header and in envelope I make a check for spoofing my domain using header from because i cant find a way to use envelope from So when is different they came problems Is there a way to test envelope prom or a rule that tell w...
by nicola.piazzi
19 Apr 2019 16:35
Forum: 3.x How-to
Topic: Sender Verification
Replies: 1
Views: 82

Sender Verification

Postfix can do sender verification, and can mantain a cache table to avoid frequantly verifications of same address. But sender verification is too aggressive, i think that is bnot a good thing to reject unverified addresses Is there something in spamassassin so unverified can assigned a score ? A w...
by nicola.piazzi
19 Apr 2019 16:31
Forum: 3.x Bugs
Topic: Uribl Blocked also with dns recursive
Replies: 17
Views: 569

Re: Uribl Blocked also with dns recursive

Now it seems solved ,
some hour results :-)
thread0.num.queries=251792
thread0.num.cachehits=178785
thread0.num.cachemiss=73007
by nicola.piazzi
18 Apr 2019 10:23
Forum: 3.x Bugs
Topic: Uribl Blocked also with dns recursive
Replies: 17
Views: 569

Re: Uribl Blocked also with dns recursive

command to see hit % [root@EFA41 batch]# date;echo "100/$(unbound-control stats_noreset |grep total.num.queries| sed 's/.*=//')*$(unbound-control stats_noreset |grep total.num.cachehits| sed 's/.*=//')" | bc -l Thu Apr 18 12:20:41 CEST 2019 55.07517104789340933180 55% after 1 hour of run, now i conf...
by nicola.piazzi
18 Apr 2019 08:12
Forum: 3.x Bugs
Topic: Uribl Blocked also with dns recursive
Replies: 17
Views: 569

Re: Uribl Blocked also with dns recursive

Now i made these modifications : vi /etc/unbound/unbound.conf # msg-cache-size: 4m msg-cache-size: 64m # rrset-cache-size: 4m rrset-cache-size: 64m # cache-min-ttl: 0 # cache-min-ttl: 0 cache-min-ttl: 7200 # cache-max-ttl: 86400 cache-max-ttl: 172800 # infra-host-ttl: 900 infra-host-ttl: 1800 # infr...
by nicola.piazzi
17 Apr 2019 10:26
Forum: 3.x Bugs
Topic: Uribl Blocked also with dns recursive
Replies: 17
Views: 569

Re: Uribl Blocked also with dns recursive

*** Quite sure the uribl will happen again soon on your efa public IP ... Yes, this is my EFA IP because now is recursive without forwarders [root@EFA41 ~]# host -tTXT 2.0.0.127.multi.uribl.com 2.0.0.127.multi.uribl.com descriptive text "127.0.0.1 -> Query Refused. See http://uribl.com/refused.shtml...
by nicola.piazzi
17 Apr 2019 09:21
Forum: 3.x How-to
Topic: (how-to) sophossavi installation guide
Replies: 14
Views: 301

Re: (how-to) sophossavi installation guide

somewhere there is this, buit for me is ok so
by nicola.piazzi
16 Apr 2019 09:29
Forum: 3.x How-to
Topic: (how-to) sophossavi installation guide
Replies: 14
Views: 301

Re: (how-to) sophossavi installation guide

i modified report but i dont remember where

if you have echange consider to use OW plugin
by nicola.piazzi
16 Apr 2019 09:22
Forum: 3.x How-to
Topic: (how-to) sophossavi installation guide
Replies: 14
Views: 301

Re: (how-to) sophossavi installation guide

EICAR CATCH is excluded by report, you need to include it modifiyng source or wait to receive virus
by nicola.piazzi
16 Apr 2019 08:28
Forum: 3.x How-to
Topic: (how-to) sophossavi installation guide
Replies: 14
Views: 301

Re: (how-to) sophossavi installation guide

Nothing done in virus report, if you dont see i suppose you havent received viruses detected by savi at now
by nicola.piazzi
12 Apr 2019 14:24
Forum: 3.x Bugs
Topic: Uribl Blocked also with dns recursive
Replies: 17
Views: 569

Re: Uribl Blocked also with dns recursive

hi henk now the opposite with forward-addr: to my dns ceased to work : 2.0.0.127.multi.uribl.com descriptive text "127.0.0.1 -> Query Refused. See http://uribl.com/refused.shtml for more information [Your DNS IP: 195.120.124.2] removed forward works now : 2.0.0.127.multi.uribl.com descriptive text "...
by nicola.piazzi
10 Apr 2019 15:26
Forum: 3.x Bugs
Topic: Uribl Blocked also with dns recursive
Replies: 17
Views: 569

Re: Uribl Blocked also with dns recursive

Using my dns go ok
one thing i dont understand
why efa ip have done too much query to uribl ?
now i expect that also my dns IP will be considered too high query
by nicola.piazzi
10 Apr 2019 10:23
Forum: 3.x Bugs
Topic: Uribl Blocked also with dns recursive
Replies: 17
Views: 569

Re: Uribl Blocked also with dns recursive

Hi
195.120.124.41 is server IP itself, sigh

[root@EFA41 spamassassin]# dig test.uribl.com.multi.uribl.com txt +short
"127.0.0.1 -> Query Refused. See http://uribl.com/refused.shtml for more information [Your DNS IP: 195.120.124.41]"
by nicola.piazzi
09 Apr 2019 16:35
Forum: 3.x Bugs
Topic: Uribl Blocked also with dns recursive
Replies: 17
Views: 569

Re: Uribl Blocked also with dns recursive

no, sorry, Tomorrow i read, i checked only dns
by nicola.piazzi
09 Apr 2019 16:33
Forum: 3.x Feature Requests
Topic: dkimwl.org
Replies: 2
Views: 203

Re: dkimwl.org

Already sent, no answer
by nicola.piazzi
09 Apr 2019 16:19
Forum: 3.x Bugs
Topic: Uribl Blocked also with dns recursive
Replies: 17
Views: 569

Re: Uribl Blocked also with dns recursive

Hi henk
As i wrote i configured recursive dns and my resolv.conf is nameserver 127.0.0.1
by nicola.piazzi
09 Apr 2019 15:14
Forum: 3.x Bugs
Topic: Uribl Blocked also with dns recursive
Replies: 17
Views: 569

Uribl Blocked also with dns recursive

0.00 URIBL_BLOCKED ADMINISTRATOR NOTICE: The query to URIBL was blocked. See http://wiki.apache.org/spamassassin/Dns ... nsbl-block for more information.

Do you have an idea of this problem ?