• We’re currently investigating an issue related to the forum theme and styling that is impacting page layout and visual formatting. The problem has been identified, and we are actively working on a resolution. There is no impact to user data or functionality, this is strictly a front-end display issue. We’ll post an update once the fix has been deployed. Thanks for your patience while we get this sorted.

Spamassassin Configuration Help

Bulldog13

Bulldog13

Golden Member
We use spamassassin to filter all incoming email, but apparently we have been getting more false positives than our department was aware of.

To make a long story short my boss's boss just called, annoyed, and wanted to know why some of the emails / attachments were not making it through to him.

My boss who originally setup spamassassin is out on vacation and it falls upon me to fix the issue.

How do I go about lessening the sensitivity of spamassasin for just a particular email address ?

Any ideas ?
 
Mandatory ATOT answer: Tell him to stop sending attachments with names such as: HotGirlPicsWithViruses.zip or SantaElfBowlingTrojan.exe? :beer:
 
What type of stuff?

I put a spam filter in and people were bitching at me left and right that it was spam-tagging their maillist bulk mails from weight watchers, pottery barn, astrology/horroscopes, sports sites, ect.

I thought it was doing a good job 🙂

I used GFI though. Does it tell you on the message why it was tagged? Was it based upon content words? Or did it not like some images on there? Was it from a blacklisted domain?
 
Originally posted by: vi_edit
What type of stuff?

I put a spam filter in and people were bitching at me left and right that it was spam-tagging their maillist bulk mails from weight watchers, pottery barn, astrology/horroscopes, sports sites, ect.

I thought it was doing a good job 🙂

I used GFI though. Does it tell you on the message why it was tagged? Was it based upon content words? Or did it not like some images on there? Was it from a blacklisted domain?
Click to expand...

How do I tell this ? I'm looking at the spamassassin webpage and it's very confusing.

 
spamassasin stinks, our university gives you the option, but it blocks legitimate emails. I just use outlook w/spambayes. spambayes is free, and it's awesome.
 
Originally posted by: Carbo
Software forum?
Click to expand...

That was my original thought, but...

1) I have to figure this out by tommorrow and I have no linux / spamassassin experience so I need more than 7 people to look at this thread by tommorrow.

2) I didn't want it to turn into OMG DOOM3 ROX/SUX, or WoW TRINKET OF MAGECRAFT OF LIGHT ROX/SUX, and finally WHATS TeH BESTest FIREWALL 4 fFreE ?!!

 
Originally posted by: Merlyn3D
spamassasin stinks, our university gives you the option, but it blocks legitimate emails. I just use outlook w/spambayes. spambayes is free, and it's awesome.
Click to expand...

Once spamassassin has had enough emails to learn, it does a really good job, imho. It does Bayes, as well.
 
change the global spamassassin setting to a higher number... you should be able to figure out how to do this. also whitelist his important e-mailers.
 
Originally posted by: FuzzyBee
Originally posted by: Merlyn3D
spamassasin stinks, our university gives you the option, but it blocks legitimate emails. I just use outlook w/spambayes. spambayes is free, and it's awesome.
Click to expand...

Once spamassassin has had enough emails to learn, it does a really good job, imho. It does Bayes, as well.
Click to expand...

spam assassin is rule based, no?
 
Originally posted by: Bulldog13
Originally posted by: vi_edit
What type of stuff?

I put a spam filter in and people were bitching at me left and right that it was spam-tagging their maillist bulk mails from weight watchers, pottery barn, astrology/horroscopes, sports sites, ect.

I thought it was doing a good job 🙂

I used GFI though. Does it tell you on the message why it was tagged? Was it based upon content words? Or did it not like some images on there? Was it from a blacklisted domain?
Click to expand...

How do I tell this ? I'm looking at the spamassassin webpage and it's very confusing.
Click to expand...


If they are using outlook, right click on the message and go down to properties.

It will say something like this:
X-Spam-Status: No, hits=-2.599 tagged_above=-999.99 required=2.7
tests=[BAYES_00=-2.599]
X-Spam-Level:

If hits is less then the required then it passes through... higher, it doesnt. ur goal is to block most spam and to get no false positives. the setting should be somewhere around 6.3.
 
Originally posted by: DaveSimmons
Originally posted by: Bulldog13
Is there anyway to just allow all email for one address through ?
Click to expand...
"whitelist" / "white list" in The Friendly Manual.
Click to expand...

I don't mean one address of a sender, I mean one address of a reciever. Is there a way to allow all email through for just one person within the organization ?
 
If the boss is really that upset about the performance of a free opensource solution, then perhaps you need to propose a product he/she will PAY for. Paid products come with support!

I can suggest a few to you...
 
Originally posted by: SagaLore
Originally posted by: Bulldog13
Originally posted by: DaveSimmons
Originally posted by: Bulldog13
Is there anyway to just allow all email for one address through ?
Click to expand...
"whitelist" / "white list" in The Friendly Manual.
Click to expand...

I don't mean one address of a sender, I mean one address of a reciever. Is there a way to allow all email through for just one person within the organization ?
Click to expand...

http://email.about.com/cs/spamassassintips/qt/et090403.htm
Click to expand...

Thank you for the link. I understand the concept of whitelisting...my question is how can I make all email, not just email from phb@somecompany.com goto myboss@mycompany.com

Basically all emails aimed at myboss@mycompany.com should get through.

As a short term solution I'll have him dig through all the spam email.

 
Originally posted by: Bulldog13
Thank you for the link. I understand the concept of whitelisting...my question is how can I make all email, not just email from phb@somecompany.com goto myboss@mycompany.com

Basically all emails aimed at myboss@mycompany.com should get through.

As a short term solution I'll have him dig through all the spam email.
Click to expand...

-To whitelist only for yourself, open ~/.spamassassin/user_prefs.

-Append "whitelist_from_rcvd {address or domain you want to whitelist} {domain name which must be present in the Received: headers}".

Try:

whitelist_from_rcvd * *

or try:
http://www.cts.wustl.edu/cts/help/Mail_SpamAssassin_Conf.html

whitelist_to add@ress.com
If the given address appears in the To: or Cc: headers, mail will be whitelisted. Useful if you're deploying SpamAssassin system-wide, and don't want some users to have their mail filtered. Same format as whitelist_from.

There are three levels of To-whitelisting, whitelist_to, more_spam_to and all_spam_to. Users in the first level may still get some spammish mails blocked, but users in all_spam_to should never get mail blocked.
Click to expand...
 
Originally posted by: SagaLore
Originally posted by: Bulldog13
Thank you for the link. I understand the concept of whitelisting...my question is how can I make all email, not just email from phb@somecompany.com goto myboss@mycompany.com

Basically all emails aimed at myboss@mycompany.com should get through.

As a short term solution I'll have him dig through all the spam email.
Click to expand...

-To whitelist only for yourself, open ~/.spamassassin/user_prefs.

-Append "whitelist_from_rcvd {address or domain you want to whitelist} {domain name which must be present in the Received: headers}".

Try:

whitelist_from_rcvd * *

or try:
http://www.cts.wustl.edu/cts/help/Mail_SpamAssassin_Conf.html

whitelist_to add@ress.com
If the given address appears in the To: or Cc: headers, mail will be whitelisted. Useful if you're deploying SpamAssassin system-wide, and don't want some users to have their mail filtered. Same format as whitelist_from.

There are three levels of To-whitelisting, whitelist_to, more_spam_to and all_spam_to. Users in the first level may still get some spammish mails blocked, but users in all_spam_to should never get mail blocked.
Click to expand...
Click to expand...

SagaLore FOR THE WIN !
 
You must log in or register to reply here.

TRENDING THREADS

Back
Top