efa-project.org

examine the url carefully. Is it available externally? Is it blocked by your home firewall?

no, not without making code changes to mailscanner or handling the cleanup manually/self scripted.

i don’t believe that it would be too hard to script.

[root@efa4 ~]# df -h Filesystem Size Used Avail Use% Mounted on devtmpfs 3.9G 0 3.9G 0% /dev tmpfs 3.9G 0 3.9G 0% /dev/shm tmpfs 3.9G 17M 3.9G 1% /run tmpfs 3.9G 0 3.9G 0% /sys/fs/cgroup /dev/mapper/centos_efa4-root 50G 2.4G 48G 5% / none 3.9G 0 3.9G 0% /var/spool/MailScanner/incoming /dev/sda1 101...

Is there anything in the efa interface, or in the log files when you try to resubmit the messages? A problem I've had is when a message gets false flagged as a virus and blocked. In this case, I had to update my virus signature whitelist, restart clamd, and then resubmit the message to the mail queu...

Probably not, as the EFA build depends on the packages in Centos 7.

The next version will support Centos 8

You can see the discussion about this here: viewtopic.php?f=5&t=1038&p=14763&hilit=Centos+8#p14763

Good question! I just did a default install the other day and it basically made 2 50GB partitions managed by lvm I'm not actually happy about that, so I'm thinking of reinstalling. My own preference is to just set it as a single 100GB partition mounted under / without using LVM. Why? Well, it's a VM...

Thanks. I figure the less time you spend dealing with spammers, the more time you have for making efa even better. My evil plan is now complete.

BWAAHAHAHAAhahahahahaHAhaah...

*cough cough*

Thanks darky83.

Deleting that garbage is satisfying.

I might not check every day, but I will check as often as possible.

Yes. That would work, and would be a better fix than my suggestion.

Just goes to show how much I *don't* use the apache rewrite rules.

!@#$!@# spammers.

Could I get delete privileges so I could delete the bloody spam posters and posts?

I'll give this one a try.

I was previously using the ole2macro.pm add in to detect (partially) word macros.

Discussion about that one here: viewtopic.php?t=1547

If you search in the forums, you'll find that this has been discussed.

The short answer is, "kinda". Due to the complexities in the MS Word file format, it is very difficult to consistently do so.

...which is a good thing.

Useful.

I keep getting a lot of false positives for gmail.com and imgur.com with the Malware Patrol Block List, so I am trying to decide whether to get rid of MBL, or avoid virus scanning for certain people.

No, not exactly that. In the old wiki, there was a FAQ with links to the answers.

Considering the # of times that the geoip question has come up, it might be useful to have again.

henk,

Whatever happened to the wiki where we had a list of commonly asked questions with links to their respective answers?

It is possible, but I believe that there are quite a number of places where the /mailscanner/ path is hardcoded. Changing the path is easy, but some things might break until you find every instance of every place where /mailscanner/ is referenced. I vaguely recall a discussion on this somewhere in t...

I have found that after running the mail server for a few years, few messages from big providers gets grey listed. However, Shawn's fix is also effective. Leaving greylisting on results in a lot less spam, and any reduction of spam has been worth the effort. That's just my experience. I understand t...

https://wiki.efa-project.org/doku.php?id=migration_guide_from_v3_to_v4 Personally, I've been putting this off. I guess I am going to have to get off my ass and make it happen sooner, rather than later. On the plus side, it'll be a good chance to rediscover all the tweaks and changes I made to my v3 ...

There is also the MCP functionality of efa.

(Quick poll, does anyone use the MCP?)

Apparently, I'm having a reading comprehension problem...

Change the last command to:

Code: Select all

# sed -e 's/,/\n/g' /tmp/to.txt | sort | uniq -c | sort -r > /tmp/top-recipients.txt

Thus, you'll get both the top recipients and the number of times they've received a message.

oh, receipient, not sender. Sorry. # mysql -uroot -p`grep ROOT /etc/EFA-Config | awk -F: '{print $2}'` mailscanner \ -e "select to_address from maillog order by 1" > /tmp/to.txt # sed -e 's/,/\n/g' /tmp/to.txt | sort | uniq > /tmp/to-unique.txt Now scp the /tmp/to-unique.txt file to your computer.

Code: Select all

mysql -uroot -p`grep ROOT /etc/EFA-Config | awk -F: '{print $2}'` mailscanner \
      -e "select distinct(from_address) from maillog order by 1" > /tmp/from.txt

Then scp the /tmp/from.txt to your computer and you're done.

Yes, that will do very nicely.

(Sorry for answering my own question, but sometimes asking the question leads me to the answer without expecting it)

postfix header_checks?

e.g.

Code: Select all

/^From: .*info@example.com.*/ PREPEND X-MyFiltering: InfoMailingList

efa-project.org

Search found 1290 matches

Re: view content of allowed messages

Re: receiver-domain based retention period

Re: Recommended partitioning of a vm for EFA 4

Re: Release Block Attachments with Sendmail

Re: EFA4 - Can Centos 8 be used

Re: Recommended partitioning of a vm for EFA 4

Re: !@#$ spammers

Re: !@#$ spammers

Re: Change URL from domain/mailscanner

Re: !@#$ spammers

Re: block MS office documents with macros

Re: block MS office documents with macros

Re: Mailscanner: wa - what does it mean

Re: Avoid local messages to be virus scanned

Re: want to release bad content quarantined mail per mailwatch

Re: want to release bad content quarantined mail per mailwatch

Re: Change URL from domain/mailscanner

Re: outlook.com

Re: End of life for efa v3??

Re: Block specific keyword and subject and content

Re: Report of all recipient addresses?

Re: Report of all recipient addresses?

Re: Report of all recipient addresses?

Re: replacing complex client side filtering rule sets with server side processing

Re: replacing complex client side filtering rule sets with server side processing