Home / Browse / Anti-Spam SMTP Proxy Server / Mail / Archive

Donate

Anti-Spam SMTP Proxy Server

Email Archive: assp-test (read-only)

2007:	_Jan	_Feb	_Mar	_Apr	_May	_Jun	_Jul	_Aug (400)	_Sep (619)	_Oct (540)	_Nov (426)	_Dec (204)
2008:	_Jan (662)	_Feb (332)	_Mar (335)	_Apr (284)	_May (193)	_Jun (201)	_Jul (264)	_Aug (283)	_Sep (167)	_Oct (193)	_Nov (155)	_Dec (298)
2009:	_Jan (336)	_Feb (402)	_Mar (788)	_Apr (673)	_May (227)	_Jun (182)	_Jul (337)	_Aug (219)	_Sep (490)	_Oct (527)	_Nov (385)	_Dec (391)
2010:	_Jan (257)	_Feb (188)	_Mar (253)	_Apr (190)	_May (217)	_Jun (171)	_Jul (83)	_Aug (158)	_Sep (215)	_Oct (221)	_Nov (102)	_Dec (159)
2011:	_Jan (245)	_Feb (119)	_Mar (167)	_Apr (112)	_May (158)	_Jun (149)	_Jul (164)	_Aug (116)	_Sep (109)	_Oct (310)	_Nov (288)	_Dec (265)
2012:	_Jan (212)	_Feb (187)	_Mar (289)	_Apr (229)	_May (117)	_Jun (70)	_Jul (108)	_Aug (212)	_Sep (164)	_Oct (90)	_Nov (58)	_Dec (69)
2013:	_Jan (85)	_Feb (56)	_Mar (115)	_Apr (55)	_May (50)	_Jun	_Jul	_Aug	_Sep	_Oct	_Nov	_Dec


S	M	T	W	T	F	S
						1
						(5)
2	3	4	5	6	7	8
(2)	(19)	(3)	(5)	(2)	(1)	(12)
9	10	11	12	13	14	15
(6)	(4)	(7)	(4)	(19)	(24)	(3)
16	17	18	19	20	21	22
(4)	(1)	(3)	(3)	(18)	(30)
23	24	25	26	27	28	29
(1)	(16)	(7)	(9)	(5)	(1)	(2)
30	31
	(3)

[Assp-test] changed in 2.0.1_RC0.4.06

From: Thomas Eckardt/eck <Thomas.Eckardt@th...> - 2009-08-28 13:14

Hi all,

to be more flexible in all config values where the 'file:' option could be 
used (*)(**), the following is changed (added).


changed/added in 2.0.1_RC0.4.06 :

- It is possible to include custom-designed files at any line of such a 
file, using the following directive

# include filename

where filename is the relative path (from $base) to the included file like 
  files/inc1.txt    or    inc1.txt   (one file per line). The line will be 
internaly replaced by the contents of the included file!

an example bomb file could be:

\bmy bad word\b  # your comment
any other words
# include files/bombinc1.txt   # any comment
or an other word
; a comment
....
#include sync/bombReInc1.txt
# a comment
...
...



The included files are also watched by assp for changes like any other 
option file.

Thomas


DISCLAIMER:
*******************************************************
This email and any files transmitted with it may be confidential, legally 
privileged and protected in law and are intended solely for the use of the 

individual to whom it is addressed.
This email was multiple times scanned for viruses. There should be no 
known virus in this email!
*******************************************************

[Assp-test] Antwort: changed in 2.0.1_RC0.4.06

From: Thomas Eckardt/eck <Thomas.Eckardt@th...> - 2009-08-29 01:27

And to answer a possible question:

Yes, it is possible to use the same include file in more than one option 
file - as long as the syntax of the option files is the same!

For example the spamlover options: 
- you can have a common include file for all spamlovers - the non default 
(common) users could be registered in the option file!

So it is possible to reduce the adminstration of the option files to a 
minimum - because for common changes, you have to edit only one include 
file!.

Thomas




Thomas Eckardt/eck <Thomas.Eckardt@...> 
28.08.2009 15:17
Bitte antworten an
ASSP development mailing list <assp-test@...>


An
ASSP development mailing list <assp-test@...>
Kopie

Thema
[Assp-test] changed in 2.0.1_RC0.4.06






Hi all,

to be more flexible in all config values where the 'file:' option could be 

used (*)(**), the following is changed (added).


changed/added in 2.0.1_RC0.4.06 :

- It is possible to include custom-designed files at any line of such a 
file, using the following directive

# include filename

where filename is the relative path (from $base) to the included file like 

  files/inc1.txt    or    inc1.txt   (one file per line). The line will be 

internaly replaced by the contents of the included file!

an example bomb file could be:

\bmy bad word\b  # your comment
any other words
# include files/bombinc1.txt   # any comment
or an other word
; a comment
....
#include sync/bombReInc1.txt
# a comment
...
...



The included files are also watched by assp for changes like any other 
option file.

Thomas


DISCLAIMER:
*******************************************************
This email and any files transmitted with it may be confidential, legally 
privileged and protected in law and are intended solely for the use of the 


individual to whom it is addressed.
This email was multiple times scanned for viruses. There should be no 
known virus in this email!
*******************************************************

------------------------------------------------------------------------------
Let Crystal Reports handle the reporting - Free Crystal Reports 2008 
30-Day 
trial. Simplify your report design, integration and deployment - and focus 
on 
what you do best, core application coding. Discover what's new with 
Crystal Reports now.  http://p.sf.net/sfu/bobj-july
_______________________________________________
Assp-test mailing list
Assp-test@...
https://lists.sourceforge.net/lists/listinfo/assp-test




DISCLAIMER:
*******************************************************
This email and any files transmitted with it may be confidential, legally 
privileged and protected in law and are intended solely for the use of the 

individual to whom it is addressed.
This email was multiple times scanned for viruses. There should be no 
known virus in this email!
*******************************************************

[Assp-test] Antwort: changed in 2.0.1_RC0.4.06

From: Thomas Eckardt/eck <Thomas.Eckardt@th...> - 2009-08-29 01:27

Sorry I forgot to say, if you have finished editing an option file and 
have added an include line, you have to reload the GUI to get the edit 
buttons for the included files!

Thomas


DISCLAIMER:
*******************************************************
This email and any files transmitted with it may be confidential, legally 
privileged and protected in law and are intended solely for the use of the 

individual to whom it is addressed.
This email was multiple times scanned for viruses. There should be no 
known virus in this email!
*******************************************************

[Assp-test] Request: File dates/times for beta downloads

From: Trevor Jacques <Trevor@Vi...> - 2009-08-27 12:41

Could I make a request that file dates and times (and perhaps another  
column with version numbers) be put on the list of latest files at:

http://www.iworld.de/homes/assp/S0615ADC0?WasRead=1

That way, users can tell which files should be of interest for any  
given update, making updating that much easier and quicker, because  
all we'd have to do is scan the list to know which files have been  
updated since our installed version.

Thanks. :-)

T.

[Assp-test] changes and fixes in 2.0.1_RC0.4.05

From: Thomas Eckardt/eck <Thomas.Eckardt@th...> - 2009-08-27 11:36

Hi all,

the following is changed in 2.0.1_RC0.4.05

1.)

If your ISP is writing a headerline like (for example):

Received: from gold.dnsstuff.com ([75.125.82.251]:59117 helo=main) by 
astaro1.bordo.com.au with esmtp (Exim 4.69) (envelope-from 
<emailavtest@...>) id 1Mg52q-0004vU-1K for me@...; Wed, 
26 Aug 2009 09:03:17 +1000

ASSP was using 'gold.dnsstuff.com' as orginated HELO - now if 
'helo=the_hosts_helo' is found in that line, ASSP uses this string 
('the_hosts_helo') for the HELO-verification


2.)

The 'Received:' line that is written by ASSP in to the header (for 
example):

Received: from astaro1.bordo.com.au ([192.168.1.2] 
helo=astaro1.bordo.com.au) by ASSP-nospam; 26 Aug 2009 09:03:20 +1000

is changed for incoming mails. ASSP was using the string in the HELO 
command to write 'from .....' and the 'helo=....'
Now ASSP uses the HELO-string for 'helo=....' - but the PTR to the 
connected IP in 'from ....' if it finds a PTR record. If no PTR is found 
the HELO-string is used (like before).
For outgoing (relayed) mails nothing has changed.


fixed:

- The STAT for damping was not set to 0 at startup -> wrong count.
- The 'AutoRestartAfterCodeChange' feature was not working in nondefault 
installations (assp.pl not in $base)

Thomas

DISCLAIMER:
*******************************************************
This email and any files transmitted with it may be confidential, legally 
privileged and protected in law and are intended solely for the use of the 

individual to whom it is addressed.
This email was multiple times scanned for viruses. There should be no 
known virus in this email!
*******************************************************

Re: [Assp-test] changes and fixes in 2.0.1_RC0.4.05

From: Trevor Jacques <Trevor@Vi...> - 2009-08-27 12:35

> the following is changed in 2.0.1_RC0.4.05

on both the download page and http://idisk.mac.com/fribo007-Public?view=web 
, the version is .04. :-/

HTH.

T.

[Assp-test] Spam getting through from DNSstuff spam test

From: James Brown <jlbrown@bo...> - 2009-08-25 23:18

DNSstuff have a beta of a new anti-spam test tool which I ran.  
Unfortunately the email got through. What settings should I use to  
stop this in future? The message states that it should be caught  
because it contains a forged received header, but it looks like ASSP  
is not picking this up.

I've increased the rblnValencePB to the default of 35 (from 5).

Running 2.0, 4.02.

Any suggestions about the forged received header?

Thanks,

James.

Log was:

Aug-26-09 09:03:20 id-41400-16761 [Worker_3] 192.168.1.2 <emailavtest@... 
 > to: me@... Originating IP/HELO:  75.125.82.251 /  
gold.dnsstuff.com
Aug-26-09 09:03:20 id-41400-16761 [Worker_3] 192.168.1.2 <emailavtest@... 
 > to: me@... Message-Score: added 5 for DNSBLcache: neutral,  
75.125.82.251 listed in combined-HIB.dnsiplists.completewhois.com,  
total score for this message is now 5
Aug-26-09 09:03:20 id-41400-16761 [Worker_3] 192.168.1.2 <emailavtest@... 
 > to: me@... Message-Score: added -10 for SPF pass, total  
score for this message is now -5
Aug-26-09 09:03:20 id-41400-16761 [Worker_3] 192.168.1.2 <emailavtest@... 
 > to: me@... info: queued first data in sendqueue
Aug-26-09 09:03:20 id-41400-16761 [Worker_3] 192.168.1.2 <emailavtest@... 
 > to: me@... Bayesian Check  - Prob: 0.00000 => ham
Aug-26-09 09:03:20 id-41400-16761 [Worker_3] 192.168.1.2 <emailavtest@... 
 > to: me@... convert and send data from sendqueue
Aug-26-09 09:03:20 id-41400-16761 [Worker_3] [MessageOK] 192.168.1.2 <emailavtest@... 
 > to: me@... message ok [DNSstuff Mail Server Test Center  
Anti Spam Test Message] -> /Applications/assp//okmail/ 
DNSstuff_Mail_Server_Test_Center_Anti_Spam_Test_Me--4964.eml
Aug-26-09 09:03:20 id-41400-16761 [Worker_3] 192.168.1.2 <emailavtest@... 
 > to: me@... info: no MIME/TNEF conversion done

The email that got through, including header was:

	From: 	sales@...
	Subject: 	DNSstuff Mail Server Test Center - Anti-Spam Test Message
	Date: 	26 August 2009 9:03:14 AM
	To: 	me@...
	Return-Path: 	<emailavtest@...>
	X-Original-To: 	me@...
	Delivered-To: 	me@...
	Received: 	from astaro1.bordo.com.au (localhost [127.0.0.1]) by  
mail.bordo.com.au (Postfix) with SMTP id 9EB14566F50 for <me@... 
 >; Wed, 26 Aug 2009 09:03:20 +1000 (EST)
	Received: 	from astaro1.bordo.com.au ([192.168.1.2]  
helo=astaro1.bordo.com.au) by ASSP-nospam; 26 Aug 2009 09:03:20 +1000
	Received: 	from gold.dnsstuff.com ([75.125.82.251]:59117 helo=main)  
by astaro1.bordo.com.au with esmtp (Exim 4.69) (envelope-from <emailavtest@... 
 >) id 1Mg52q-0004vU-1K for me@...; Wed, 26 Aug 2009 09:03:17  
+1000
	Received: 	from forgedsnd.example.com ([127.0.0.2]) by  
forgedrcv.example.com with fakesvc; Wed, 12 Aug 2009 23:24:02
	X-Ctch-Refid: 	 
str=0001.0A150203.4A946DB5.0037:SCFSTAT4073896,ss=1,fgs=0
	Mime-Version: 	1.0
	Content-Type: 	text/html; charset="US-ASCII"
	Content-Disposition: 	inline
	X-Assp-Message/Ip-Score: 	5 (DNSBLcache: neutral, 75.125.82.251  
listed in combined-HIB.dnsiplists.completewhois.com)
	X-Assp-Message/Ip-Score: 	-10 (SPF pass)
	X-Assp-Dnsblcache: 	neutral, 75.125.82.251 listed in combined- 
HIB.dnsiplists.completewhois.com
	X-Assp-Received-Spf: 	pass (cache) ip=75.125.82.251 mailfrom=emailavtest@... 
  helo=astaro1.bordo.com.au
	X-Assp-Bayes-Confidence: 	0.00000
	X-Assp-Envelope-From: 	emailavtest@...
	X-Assp-Intended-For: 	me@...
	Message-Id: 	<20090825230320.9EB14566F50@...>

DNSstuff Mail Server Test Center - Anti-Spam Test

Sent by "me" at Tue Aug 25 23:03:14 2009

This is a test message that was sent to you because you or someone you  
know visited the DNSstuff Mail Server Test Center and ran an anti-spam  
test against this email address.

This email message contains a forged received header with with a  
blacklisted IP Address.

If you received this message without a spam warning or notification,  
we recommend you perform the following steps:

Contact your email administrator.
If you are the email administrator, review your current anti-spam  
settings, and insure that the latest updates are applied and that your  
spam filtering software is enabled.
If the issue is still not resolved or you need additional assistance,  
please reply to this email and a DNSstuff sales team member will  
contact you.
If you received this message in error or if you require assistance,  
please reply to this email.

[Assp-test] Antwort: Spam getting through from DNSstuff spam test

From: Thomas Eckardt/eck <Thomas.Eckardt@th...> - 2009-08-26 16:13

James,

setup 'myServerRe' to all names that are used by your servers!

Thomas




James Brown <jlbrown@...> 
26.08.2009 01:21
Bitte antworten an
ASSP development mailing list <assp-test@...>


An
ASSP development mailing list <assp-test@...>
Kopie

Thema
[Assp-test] Spam getting through from DNSstuff spam test






DNSstuff have a beta of a new anti-spam test tool which I ran. 
Unfortunately the email got through. What settings should I use to 
stop this in future? The message states that it should be caught 
because it contains a forged received header, but it looks like ASSP 
is not picking this up.

I've increased the rblnValencePB to the default of 35 (from 5).

Running 2.0, 4.02.

Any suggestions about the forged received header?

Thanks,

James.

Log was:

Aug-26-09 09:03:20 id-41400-16761 [Worker_3] 192.168.1.2 
<emailavtest@... 
 > to: me@... Originating IP/HELO:  75.125.82.251 / 
gold.dnsstuff.com
Aug-26-09 09:03:20 id-41400-16761 [Worker_3] 192.168.1.2 
<emailavtest@... 
 > to: me@... Message-Score: added 5 for DNSBLcache: neutral, 
75.125.82.251 listed in combined-HIB.dnsiplists.completewhois.com, 
total score for this message is now 5
Aug-26-09 09:03:20 id-41400-16761 [Worker_3] 192.168.1.2 
<emailavtest@... 
 > to: me@... Message-Score: added -10 for SPF pass, total 
score for this message is now -5
Aug-26-09 09:03:20 id-41400-16761 [Worker_3] 192.168.1.2 
<emailavtest@... 
 > to: me@... info: queued first data in sendqueue
Aug-26-09 09:03:20 id-41400-16761 [Worker_3] 192.168.1.2 
<emailavtest@... 
 > to: me@... Bayesian Check  - Prob: 0.00000 => ham
Aug-26-09 09:03:20 id-41400-16761 [Worker_3] 192.168.1.2 
<emailavtest@... 
 > to: me@... convert and send data from sendqueue
Aug-26-09 09:03:20 id-41400-16761 [Worker_3] [MessageOK] 192.168.1.2 
<emailavtest@... 
 > to: me@... message ok [DNSstuff Mail Server Test Center 
Anti Spam Test Message] -> /Applications/assp//okmail/ 
DNSstuff_Mail_Server_Test_Center_Anti_Spam_Test_Me--4964.eml
Aug-26-09 09:03:20 id-41400-16761 [Worker_3] 192.168.1.2 
<emailavtest@... 
 > to: me@... info: no MIME/TNEF conversion done

The email that got through, including header was:

                 From:           sales@...
                 Subject:                DNSstuff Mail Server Test Center 
- Anti-Spam Test Message
                 Date:           26 August 2009 9:03:14 AM
                 To:             me@...
                 Return-Path:            <emailavtest@...>
                 X-Original-To:                  me@...
                 Delivered-To:           me@...
                 Received:               from astaro1.bordo.com.au 
(localhost [127.0.0.1]) by 
mail.bordo.com.au (Postfix) with SMTP id 9EB14566F50 for <me@... 
 >; Wed, 26 Aug 2009 09:03:20 +1000 (EST)
                 Received:               from astaro1.bordo.com.au 
([192.168.1.2] 
helo=astaro1.bordo.com.au) by ASSP-nospam; 26 Aug 2009 09:03:20 +1000
                 Received:               from gold.dnsstuff.com 
([75.125.82.251]:59117 helo=main) 
by astaro1.bordo.com.au with esmtp (Exim 4.69) (envelope-from 
<emailavtest@... 
 >) id 1Mg52q-0004vU-1K for me@...; Wed, 26 Aug 2009 09:03:17 
+1000
                 Received:               from forgedsnd.example.com 
([127.0.0.2]) by 
forgedrcv.example.com with fakesvc; Wed, 12 Aug 2009 23:24:02
                 X-Ctch-Refid: 
str=0001.0A150203.4A946DB5.0037:SCFSTAT4073896,ss=1,fgs=0
                 Mime-Version:           1.0
                 Content-Type:           text/html; charset="US-ASCII"
                 Content-Disposition:            inline
                 X-Assp-Message/Ip-Score:                5 (DNSBLcache: 
neutral, 75.125.82.251 
listed in combined-HIB.dnsiplists.completewhois.com)
                 X-Assp-Message/Ip-Score:                -10 (SPF pass)
                 X-Assp-Dnsblcache:              neutral, 75.125.82.251 
listed in combined- 
HIB.dnsiplists.completewhois.com
                 X-Assp-Received-Spf:            pass (cache) 
ip=75.125.82.251 mailfrom=emailavtest@... 
  helo=astaro1.bordo.com.au
                 X-Assp-Bayes-Confidence:                0.00000
                 X-Assp-Envelope-From:           emailavtest@...
                 X-Assp-Intended-For:            me@...
                 Message-Id: 
<20090825230320.9EB14566F50@...>

DNSstuff Mail Server Test Center - Anti-Spam Test

Sent by "me" at Tue Aug 25 23:03:14 2009

This is a test message that was sent to you because you or someone you 
know visited the DNSstuff Mail Server Test Center and ran an anti-spam 
test against this email address.

This email message contains a forged received header with with a 
blacklisted IP Address.

If you received this message without a spam warning or notification, 
we recommend you perform the following steps:

Contact your email administrator.
If you are the email administrator, review your current anti-spam 
settings, and insure that the latest updates are applied and that your 
spam filtering software is enabled.
If the issue is still not resolved or you need additional assistance, 
please reply to this email and a DNSstuff sales team member will 
contact you.
If you received this message in error or if you require assistance, 
please reply to this email.
------------------------------------------------------------------------------
Let Crystal Reports handle the reporting - Free Crystal Reports 2008 
30-Day 
trial. Simplify your report design, integration and deployment - and focus 
on 
what you do best, core application coding. Discover what's new with 
Crystal Reports now.  http://p.sf.net/sfu/bobj-july
_______________________________________________
Assp-test mailing list
Assp-test@...
https://lists.sourceforge.net/lists/listinfo/assp-test




DISCLAIMER:
*******************************************************
This email and any files transmitted with it may be confidential, legally 
privileged and protected in law and are intended solely for the use of the 

individual to whom it is addressed.
This email was multiple times scanned for viruses. There should be no 
known virus in this email!
*******************************************************

Re: [Assp-test] Antwort: Spam getting through from DNSstuff spam test

From: James Brown <jlbrown@bo...> - 2009-08-26 23:08

Thanks Thomas.

I've done that and it still gets through.

I think the problem is that it says it originates from example.com:

Received: 	from forgedsnd.example.com ([127.0.0.2]) by  
forgedrcv.example.com with fakesvc;

James.

On 27/08/2009, at 2:12 AM, Thomas Eckardt/eck wrote:

> James,
>
> setup 'myServerRe' to all names that are used by your servers!
>
> Thomas
>
>
>
>
> James Brown <jlbrown@...>
> 26.08.2009 01:21
> Bitte antworten an
> ASSP development mailing list <assp-test@...>
>
>
> An
> ASSP development mailing list <assp-test@...>
> Kopie
>
> Thema
> [Assp-test] Spam getting through from DNSstuff spam test
>
>
>
>
>
>
> DNSstuff have a beta of a new anti-spam test tool which I ran.
> Unfortunately the email got through. What settings should I use to
> stop this in future? The message states that it should be caught
> because it contains a forged received header, but it looks like ASSP
> is not picking this up.
>
> I've increased the rblnValencePB to the default of 35 (from 5).
>
> Running 2.0, 4.02.
>
> Any suggestions about the forged received header?
>
> Thanks,
>
> James.
>
> Log was:
>
> Aug-26-09 09:03:20 id-41400-16761 [Worker_3] 192.168.1.2
> <emailavtest@...
>> to: me@... Originating IP/HELO:  75.125.82.251 /
> gold.dnsstuff.com
> Aug-26-09 09:03:20 id-41400-16761 [Worker_3] 192.168.1.2
> <emailavtest@...
>> to: me@... Message-Score: added 5 for DNSBLcache: neutral,
> 75.125.82.251 listed in combined-HIB.dnsiplists.completewhois.com,
> total score for this message is now 5
> Aug-26-09 09:03:20 id-41400-16761 [Worker_3] 192.168.1.2
> <emailavtest@...
>> to: me@... Message-Score: added -10 for SPF pass, total
> score for this message is now -5
> Aug-26-09 09:03:20 id-41400-16761 [Worker_3] 192.168.1.2
> <emailavtest@...
>> to: me@... info: queued first data in sendqueue
> Aug-26-09 09:03:20 id-41400-16761 [Worker_3] 192.168.1.2
> <emailavtest@...
>> to: me@... Bayesian Check  - Prob: 0.00000 => ham
> Aug-26-09 09:03:20 id-41400-16761 [Worker_3] 192.168.1.2
> <emailavtest@...
>> to: me@... convert and send data from sendqueue
> Aug-26-09 09:03:20 id-41400-16761 [Worker_3] [MessageOK] 192.168.1.2
> <emailavtest@...
>> to: me@... message ok [DNSstuff Mail Server Test Center
> Anti Spam Test Message] -> /Applications/assp//okmail/
> DNSstuff_Mail_Server_Test_Center_Anti_Spam_Test_Me--4964.eml
> Aug-26-09 09:03:20 id-41400-16761 [Worker_3] 192.168.1.2
> <emailavtest@...
>> to: me@... info: no MIME/TNEF conversion done
>
> The email that got through, including header was:
>
>                 From:           sales@...
>                 Subject:                DNSstuff Mail Server Test  
> Center
> - Anti-Spam Test Message
>                 Date:           26 August 2009 9:03:14 AM
>                 To:             me@...
>                 Return-Path:            <emailavtest@...>
>                 X-Original-To:                  me@...
>                 Delivered-To:           me@...
>                 Received:               from astaro1.bordo.com.au
> (localhost [127.0.0.1]) by
> mail.bordo.com.au (Postfix) with SMTP id 9EB14566F50 for <me@...
>> ; Wed, 26 Aug 2009 09:03:20 +1000 (EST)
>                 Received:               from astaro1.bordo.com.au
> ([192.168.1.2]
> helo=astaro1.bordo.com.au) by ASSP-nospam; 26 Aug 2009 09:03:20 +1000
>                 Received:               from gold.dnsstuff.com
> ([75.125.82.251]:59117 helo=main)
> by astaro1.bordo.com.au with esmtp (Exim 4.69) (envelope-from
> <emailavtest@...
>> ) id 1Mg52q-0004vU-1K for me@...; Wed, 26 Aug 2009 09:03:17
> +1000
>                 Received:               from forgedsnd.example.com
> ([127.0.0.2]) by
> forgedrcv.example.com with fakesvc; Wed, 12 Aug 2009 23:24:02
>                 X-Ctch-Refid:
> str=0001.0A150203.4A946DB5.0037:SCFSTAT4073896,ss=1,fgs=0
>                 Mime-Version:           1.0
>                 Content-Type:           text/html; charset="US-ASCII"
>                 Content-Disposition:            inline
>                 X-Assp-Message/Ip-Score:                5 (DNSBLcache:
> neutral, 75.125.82.251
> listed in combined-HIB.dnsiplists.completewhois.com)
>                 X-Assp-Message/Ip-Score:                -10 (SPF pass)
>                 X-Assp-Dnsblcache:              neutral, 75.125.82.251
> listed in combined-
> HIB.dnsiplists.completewhois.com
>                 X-Assp-Received-Spf:            pass (cache)
> ip=75.125.82.251 mailfrom=emailavtest@...
>  helo=astaro1.bordo.com.au
>                 X-Assp-Bayes-Confidence:                0.00000
>                 X-Assp-Envelope-From:           emailavtest@...
>                 X-Assp-Intended-For:            me@...
>                 Message-Id:
> <20090825230320.9EB14566F50@...>
>
> DNSstuff Mail Server Test Center - Anti-Spam Test
>
> Sent by "me" at Tue Aug 25 23:03:14 2009
>
> This is a test message that was sent to you because you or someone you
> know visited the DNSstuff Mail Server Test Center and ran an anti-spam
> test against this email address.
>
> This email message contains a forged received header with with a
> blacklisted IP Address.
>
> If you received this message without a spam warning or notification,
> we recommend you perform the following steps:
>
> Contact your email administrator.
> If you are the email administrator, review your current anti-spam
> settings, and insure that the latest updates are applied and that your
> spam filtering software is enabled.
> If the issue is still not resolved or you need additional assistance,
> please reply to this email and a DNSstuff sales team member will
> contact you.
> If you received this message in error or if you require assistance,
> please reply to this email.
> ------------------------------------------------------------------------------
> Let Crystal Reports handle the reporting - Free Crystal Reports 2008
> 30-Day
> trial. Simplify your report design, integration and deployment - and  
> focus
> on
> what you do best, core application coding. Discover what's new with
> Crystal Reports now.  http://p.sf.net/sfu/bobj-july
> _______________________________________________
> Assp-test mailing list
> Assp-test@...
> https://lists.sourceforge.net/lists/listinfo/assp-test
>
>
>
>
> DISCLAIMER:
> *******************************************************
> This email and any files transmitted with it may be confidential,  
> legally
> privileged and protected in law and are intended solely for the use  
> of the
>
> individual to whom it is addressed.
> This email was multiple times scanned for viruses. There should be no
> known virus in this email!
> *******************************************************
>
> ------------------------------------------------------------------------------
> Let Crystal Reports handle the reporting - Free Crystal Reports 2008  
> 30-Day
> trial. Simplify your report design, integration and deployment - and  
> focus on
> what you do best, core application coding. Discover what's new with
> Crystal Reports now.  http://p.sf.net/sfu/bobj-july
> _______________________________________________
> Assp-test mailing list
> Assp-test@...
> https://lists.sourceforge.net/lists/listinfo/assp-test

Re: [Assp-test] Antwort: Spam getting through from DNSstuff spam test

From: paul+<as@bl...> - 2009-08-27 06:58

On 27 Aug 2009 at 9:07, James Brown wrote:

> I think the problem is that it says it originates from
> example.com:
> 
> Received: 	from forgedsnd.example.com ([127.0.0.2]) by  
> forgedrcv.example.com with fakesvc;

This test is suspect.

Few filters judge solely on the previous Received header because 
there are so many bad MTAs out there which use internal names.

As for their assertion that the header has a blacklisted address, 
that's questionable as 127.0.0.2 is a valid loop-back address but 
which is also used for testing DNSBL.  Besides, it's not always 
useful to test previous received headers because of false positives 
against some blacklists, and it should never be done against non-
routable addresses like this.

DNSstuff should know better.

Of course, like some of the anti-virus testers, it would be possible 
to devise rules which caught this sample, but that wouldn't make it 
any better at catching real-world spam.

paul

[Assp-test] Antwort: Spam getting through from DNSstuff spam test

From: Thomas Eckardt/eck <Thomas.Eckardt@th...> - 2009-08-27 07:12

James,

>because it contains a forged received header

Let's look at the header lines:

line 1
>                Received:               from astaro1.bordo.com.au 
(localhost [127.0.0.1]) by 
>mail.bordo.com.au (Postfix) with SMTP id 9EB14566F50 for <me@... 

> >; Wed, 26 Aug 2009 09:03:20 +1000 (EST)

line 2
>                Received:               from astaro1.bordo.com.au 
([192.168.1.2] 
>helo=astaro1.bordo.com.au) by ASSP-nospam; 26 Aug 2009 09:03:20 +1000

line 3
>                Received:               from gold.dnsstuff.com 
([75.125.82.251]:59117 helo=main) 
>by astaro1.bordo.com.au with esmtp (Exim 4.69) (envelope-from 
<emailavtest@... 
> >) id 1Mg52q-0004vU-1K for me@...; Wed, 26 Aug 2009 09:03:17 
>+1000

line 4
>                Received:               from forgedsnd.example.com 
([127.0.0.2]) by 
>forgedrcv.example.com with fakesvc; Wed, 12 Aug 2009 23:24:02

What 'Received' line should be the forged one? I think it is line 3. But 
there is nothing forged in this line, except the 'helo=main' which is not 
used by ASSP, because it is only an option to have it there.

It looks like your assp 'ASSP-nospam' is not directly connected to to a 
public IP - there is an other mail server in front, that receives the 
message - right?
You has defined the name of that server as 'ispHostnames' - in your case 
'astaro1.bordo.com.au' (line 3). And ASSP has right detected the IP and 
hostname in that line.

Aug-26-09 09:03:20 id-41400-16761 [Worker_3] 192.168.1.2 
<emailavtest@... 
 > to: me@... Originating IP/HELO:  75.125.82.251 / 
gold.dnsstuff.com

Line 2
>                Received:               from astaro1.bordo.com.au 
([192.168.1.2] 
>helo=astaro1.bordo.com.au) by ASSP-nospam; 26 Aug 2009 09:03:20 +1000

 This line is written by ASSP.

Line 3
>                Received:               from gold.dnsstuff.com 
([75.125.82.251]:59117 helo=main) 
>by astaro1.bordo.com.au with esmtp (Exim 4.69) (envelope-from 
<emailavtest@... 
> >) id 1Mg52q-0004vU-1K for me@...; Wed, 26 Aug 2009 09:03:17 
>+1000

This line is the first one (Received: line) that ASSP has got.

ASSP has correctly used the IP '75.125.82.251' as connected IP (cip) to 
make all IP based checks (SPF,PTR,MX,DNSBL,GRIP,IP-Blocking .....) - if 
configured.

The line 4

>                Received:               from forgedsnd.example.com 
([127.0.0.2]) by 
>forgedrcv.example.com with fakesvc; Wed, 12 Aug 2009 23:24:02

contains some words (forged...  and  fake...) which could be detected by 
'bombHeaderRe' if you want - but there is no RFC that disallows the usage 
of such words as host- or service name.

I'm unable to see, from where we could detect, that this a forged mail!

Thomas





James Brown <jlbrown@...> 
26.08.2009 01:21
Bitte antworten an
ASSP development mailing list <assp-test@...>


An
ASSP development mailing list <assp-test@...>
Kopie

Thema
[Assp-test] Spam getting through from DNSstuff spam test






DNSstuff have a beta of a new anti-spam test tool which I ran. 
Unfortunately the email got through. What settings should I use to 
stop this in future? The message states that it should be caught 
because it contains a forged received header, but it looks like ASSP 
is not picking this up.

I've increased the rblnValencePB to the default of 35 (from 5).

Running 2.0, 4.02.

Any suggestions about the forged received header?

Thanks,

James.

Log was:

Aug-26-09 09:03:20 id-41400-16761 [Worker_3] 192.168.1.2 
<emailavtest@... 
 > to: me@... Originating IP/HELO:  75.125.82.251 / 
gold.dnsstuff.com
Aug-26-09 09:03:20 id-41400-16761 [Worker_3] 192.168.1.2 
<emailavtest@... 
 > to: me@... Message-Score: added 5 for DNSBLcache: neutral, 
75.125.82.251 listed in combined-HIB.dnsiplists.completewhois.com, 
total score for this message is now 5
Aug-26-09 09:03:20 id-41400-16761 [Worker_3] 192.168.1.2 
<emailavtest@... 
 > to: me@... Message-Score: added -10 for SPF pass, total 
score for this message is now -5
Aug-26-09 09:03:20 id-41400-16761 [Worker_3] 192.168.1.2 
<emailavtest@... 
 > to: me@... info: queued first data in sendqueue
Aug-26-09 09:03:20 id-41400-16761 [Worker_3] 192.168.1.2 
<emailavtest@... 
 > to: me@... Bayesian Check  - Prob: 0.00000 => ham
Aug-26-09 09:03:20 id-41400-16761 [Worker_3] 192.168.1.2 
<emailavtest@... 
 > to: me@... convert and send data from sendqueue
Aug-26-09 09:03:20 id-41400-16761 [Worker_3] [MessageOK] 192.168.1.2 
<emailavtest@... 
 > to: me@... message ok [DNSstuff Mail Server Test Center 
Anti Spam Test Message] -> /Applications/assp//okmail/ 
DNSstuff_Mail_Server_Test_Center_Anti_Spam_Test_Me--4964.eml
Aug-26-09 09:03:20 id-41400-16761 [Worker_3] 192.168.1.2 
<emailavtest@... 
 > to: me@... info: no MIME/TNEF conversion done

The email that got through, including header was:

                 From:           sales@...
                 Subject:                DNSstuff Mail Server Test Center 
- Anti-Spam Test Message
                 Date:           26 August 2009 9:03:14 AM
                 To:             me@...
                 Return-Path:            <emailavtest@...>
                 X-Original-To:                  me@...
                 Delivered-To:           me@...
                 Received:               from astaro1.bordo.com.au 
(localhost [127.0.0.1]) by 
mail.bordo.com.au (Postfix) with SMTP id 9EB14566F50 for <me@... 
 >; Wed, 26 Aug 2009 09:03:20 +1000 (EST)
                 Received:               from astaro1.bordo.com.au 
([192.168.1.2] 
helo=astaro1.bordo.com.au) by ASSP-nospam; 26 Aug 2009 09:03:20 +1000
                 Received:               from gold.dnsstuff.com 
([75.125.82.251]:59117 helo=main) 
by astaro1.bordo.com.au with esmtp (Exim 4.69) (envelope-from 
<emailavtest@... 
 >) id 1Mg52q-0004vU-1K for me@...; Wed, 26 Aug 2009 09:03:17 
+1000
                 Received:               from forgedsnd.example.com 
([127.0.0.2]) by 
forgedrcv.example.com with fakesvc; Wed, 12 Aug 2009 23:24:02
                 X-Ctch-Refid: 
str=0001.0A150203.4A946DB5.0037:SCFSTAT4073896,ss=1,fgs=0
                 Mime-Version:           1.0
                 Content-Type:           text/html; charset="US-ASCII"
                 Content-Disposition:            inline
                 X-Assp-Message/Ip-Score:                5 (DNSBLcache: 
neutral, 75.125.82.251 
listed in combined-HIB.dnsiplists.completewhois.com)
                 X-Assp-Message/Ip-Score:                -10 (SPF pass)
                 X-Assp-Dnsblcache:              neutral, 75.125.82.251 
listed in combined- 
HIB.dnsiplists.completewhois.com
                 X-Assp-Received-Spf:            pass (cache) 
ip=75.125.82.251 mailfrom=emailavtest@... 
  helo=astaro1.bordo.com.au
                 X-Assp-Bayes-Confidence:                0.00000
                 X-Assp-Envelope-From:           emailavtest@...
                 X-Assp-Intended-For:            me@...
                 Message-Id: 
<20090825230320.9EB14566F50@...>

DNSstuff Mail Server Test Center - Anti-Spam Test

Sent by "me" at Tue Aug 25 23:03:14 2009

This is a test message that was sent to you because you or someone you 
know visited the DNSstuff Mail Server Test Center and ran an anti-spam 
test against this email address.

This email message contains a forged received header with with a 
blacklisted IP Address.

If you received this message without a spam warning or notification, 
we recommend you perform the following steps:

Contact your email administrator.
If you are the email administrator, review your current anti-spam 
settings, and insure that the latest updates are applied and that your 
spam filtering software is enabled.
If the issue is still not resolved or you need additional assistance, 
please reply to this email and a DNSstuff sales team member will 
contact you.
If you received this message in error or if you require assistance, 
please reply to this email.
------------------------------------------------------------------------------
Let Crystal Reports handle the reporting - Free Crystal Reports 2008 
30-Day 
trial. Simplify your report design, integration and deployment - and focus 
on 
what you do best, core application coding. Discover what's new with 
Crystal Reports now.  http://p.sf.net/sfu/bobj-july
_______________________________________________
Assp-test mailing list
Assp-test@...
https://lists.sourceforge.net/lists/listinfo/assp-test




DISCLAIMER:
*******************************************************
This email and any files transmitted with it may be confidential, legally 
privileged and protected in law and are intended solely for the use of the 

individual to whom it is addressed.
This email was multiple times scanned for viruses. There should be no 
known virus in this email!
*******************************************************

[Assp-test] ASSP on Windows 2003 not auto restarting

From: Dave Watkins <dwatkins@in...> - 2009-08-26 03:58

Hi All

I'm currently running 2.0.1(RC 0.3.23) and am seeing ASSP periodically try to restart. Most of the time this works without issue but randomly it doesn't restart and I have to go and restart it myself. It's running as a windows service. Because it's not crashing it's not restarted, it looks like it's just cleanly shutting down and never comes back up. Below is the last few lines of the log, the next entry is when I start it up manually after having noticed it's not running.


Aug-26-09 15:46:21 [Main_Thread] Waiting for all SMTP-Workers to be finished
Aug-26-09 15:46:22 [Main_Thread] Info: saving Stats in file asspstats.sav
Aug-26-09 15:46:22 [Main_Thread] ASSP finished work
Aug-26-09 15:46:22 [Main_Thread] Restarting on signal QUIT

The RestartEvery setting is 0 and the ReStartSchedule option is not set so I'm actually wondering why it's restarting (or trying to) at all. AutoReloadCfg is also disabled.

On an unrelated note

FreeupMemoryGarbage has a description of "If defined, all Threads will try to recover memory every fife minutes!", should that be ....every five minutes?

Thanks
Dave

[Assp-test] Antwort: ASSP on Windows 2003 not auto restarting

From: Thomas Eckardt/eck <Thomas.Eckardt@th...> - 2009-08-26 14:26

Dave,

please try to setup assp for (AutoRestartCmd , AutoRestartOnException) and 
start assp from commandline. I think assp stopps working before the main 
logging is started. 

Thomas




Dave Watkins <dwatkins@...> 
26.08.2009 05:59
Bitte antworten an
ASSP development mailing list <assp-test@...>


An
ASSP development mailing list <assp-test@...>
Kopie

Thema
[Assp-test] ASSP on Windows 2003 not auto restarting






Hi All

I'm currently running 2.0.1(RC 0.3.23) and am seeing ASSP periodically try 
to restart. Most of the time this works without issue but randomly it 
doesn't restart and I have to go and restart it myself. It's running as a 
windows service. Because it's not crashing it's not restarted, it looks 
like it's just cleanly shutting down and never comes back up. Below is the 
last few lines of the log, the next entry is when I start it up manually 
after having noticed it's not running.


Aug-26-09 15:46:21 [Main_Thread] Waiting for all SMTP-Workers to be 
finished
Aug-26-09 15:46:22 [Main_Thread] Info: saving Stats in file asspstats.sav
Aug-26-09 15:46:22 [Main_Thread] ASSP finished work
Aug-26-09 15:46:22 [Main_Thread] Restarting on signal QUIT

The RestartEvery setting is 0 and the ReStartSchedule option is not set so 
I'm actually wondering why it's restarting (or trying to) at all. 
AutoReloadCfg is also disabled.

On an unrelated note

FreeupMemoryGarbage has a description of "If defined, all Threads will try 
to recover memory every fife minutes!", should that be ....every five 
minutes?

Thanks
Dave
------------------------------------------------------------------------------
Let Crystal Reports handle the reporting - Free Crystal Reports 2008 
30-Day 
trial. Simplify your report design, integration and deployment - and focus 
on 
what you do best, core application coding. Discover what's new with 
Crystal Reports now.  http://p.sf.net/sfu/bobj-july
_______________________________________________
Assp-test mailing list
Assp-test@...
https://lists.sourceforge.net/lists/listinfo/assp-test




DISCLAIMER:
*******************************************************
This email and any files transmitted with it may be confidential, legally 
privileged and protected in law and are intended solely for the use of the 

individual to whom it is addressed.
This email was multiple times scanned for viruses. There should be no 
known virus in this email!
*******************************************************

[Assp-test] fixes in 2.0.1_RC0.4.03

From: Thomas Eckardt/eck <Thomas.Eckardt@th...> - 2009-08-26 11:02

Hi all,

fixed in 2.0.1_RC0.4.03 (superseeds any prerelease!!!) :

- some connections are not dropped and shown in a state of  'QUIT(error)' 
in last command


changed:

- DoDaming is temporary switched off, if the configured maximum number  of 
SMTP-connection is reached. If the number of SMTP-connections goes below 
the maximum, damping starts again.


Fritz is currently not at home (I think until weekend) - so please 
download assp.zip from

http://idisk.mac.com/fribo007-Public?view=web


the file date is shown as:  08/26/2009  0:18 PM 
with a size of : 335KB

I plan to release V2 for public - currently there are the following opened 
questions (unclear state):

- is TLS/SSL working well
- is send250OK and send250OKISP working well (set ConnectionLog to 
verbose, to get the list of SMTP commands at the end of the connection)
- are there spelling mistakes in GUI or log messages

Thomas


DISCLAIMER:
*******************************************************
This email and any files transmitted with it may be confidential, legally 
privileged and protected in law and are intended solely for the use of the 

individual to whom it is addressed.
This email was multiple times scanned for viruses. There should be no 
known virus in this email!
*******************************************************

Re: [Assp-test] fixes in 2.0.1_RC0.4.03

From: Fritz Borgstedt <fb@iw...> - 2009-08-26 14:17

ASSP development mailing list <assp-test@...>
schreibt:
>
>Fritz is currently not at home (I think until weekend) - so please 
>download assp.zip from


I found an Internet connection:  2.0.1_RC0.4.04 downloadable as usual

[Assp-test] Mistake in 2.0.1_RC0.4.01

From: Thomas Eckardt/eck <Thomas.Eckardt@th...> - 2009-08-25 06:52

Hi all,

everyone who has done an upgrade to 2.0.1_RC0.4.01 should upgrade to 
2.0.1_RC0.4.02 (current version).

There is a mistake in 0.4.01, which causes SMTP handshake errors for non 
queueing connections!

Thomas

DISCLAIMER:
*******************************************************
This email and any files transmitted with it may be confidential, legally 
privileged and protected in law and are intended solely for the use of the 

individual to whom it is addressed.
This email was multiple times scanned for viruses. There should be no 
known virus in this email!
*******************************************************

[Assp-test] staled connections

From: Konrad Olszewski <k@et...> - 2009-08-25 07:13

version 0.4.0.2

i sill got this stalled connections  as below - with "QUIT (error)" 
description


SMTP Connections List

# TLSWKR(Con)Remote IPHELOFromRcptCMDRly/NPSPAMBytesDurationIdle/Damping
1 
__3(1)83.22.93.42dxr131.neoplus.adsl.tpnetrbitrage_1987@...) 
24 1251184256 317


-- 
Serdecznie pozdrawiam,
Konrad Olszewski

Etop Sp. z o.o.
Al. Jerozolimskie 200, 02-222 Warszawa
telefon 022-5780 100
telefaks 022-5780 101 http://www.etop.pl
Regon 016310320   NIP 522-25-50-755   KRS 0000029426
Sad Rejonowy dla m. st. Warszawy, XIII Wydzial Gospodarczy KRS
Kapital zakladowy 75000 PLN
Raiffeisen Bank Polska S.A., konto nr 31 1750 0009 0000 0000 0697 4031

Re: [Assp-test] staled connections

From: Matti Haack <m.haack@ha...> - 2009-08-25 08:18

Hello,


KO> i sill got this stalled connections  as below - with "QUIT (error)" 
KO> description
I can confirm this... :(
Same on my windows system.

Matti




-- 
Matti Haack - Hit Haack IT Service Gmbh
Poltlbauer Weg 4, D-94036 Passau
+49 851 50477-22 Fax: +49 851 50477-29
http://www.haack-it.de

Re: [Assp-test] staled connections

From: Matti Haack <m.haack@ha...> - 2009-08-25 09:10

KO>> i sill got this stalled connections  as below - with "QUIT (error)" 
KO>> description
MH> I can confirm this... :(
MH> Same on my windows system.
And all Quit(error) connections seem to be invalid Helo Domains
(Looking like Dialup Domains)

Matti


MH> Matti







-- 
Matti Haack - Hit Haack IT Service Gmbh
Poltlbauer Weg 4, D-94036 Passau
+49 851 50477-22 Fax: +49 851 50477-29
http://www.haack-it.de

[Assp-test] Antwort: Re: staled connections

From: Thomas Eckardt/eck <Thomas.Eckardt@th...> - 2009-08-25 15:54

Konrad and Matti, please try to debug such a connection ! zip and send me 
the file - thank you!

Thomas




Matti Haack <m.haack@...> 
25.08.2009 11:11
Bitte antworten an
Matti Haack <m.haack@...>; Bitte antworten an
ASSP development mailing list <assp-test@...>


An
Matti Haack <m.haack@...>, ASSP development mailing list 
<assp-test@...>
Kopie

Thema
Re: [Assp-test] staled connections








KO>> i sill got this stalled connections  as below - with "QUIT (error)" 
KO>> description
MH> I can confirm this... :(
MH> Same on my windows system.
And all Quit(error) connections seem to be invalid Helo Domains
(Looking like Dialup Domains)

Matti


MH> Matti







-- 
Matti Haack - Hit Haack IT Service Gmbh
Poltlbauer Weg 4, D-94036 Passau
+49 851 50477-22 Fax: +49 851 50477-29
http://www.haack-it.de



------------------------------------------------------------------------------
Let Crystal Reports handle the reporting - Free Crystal Reports 2008 
30-Day 
trial. Simplify your report design, integration and deployment - and focus 
on 
what you do best, core application coding. Discover what's new with 
Crystal Reports now.  http://p.sf.net/sfu/bobj-july
_______________________________________________
Assp-test mailing list
Assp-test@...
https://lists.sourceforge.net/lists/listinfo/assp-test




DISCLAIMER:
*******************************************************
This email and any files transmitted with it may be confidential, legally 
privileged and protected in law and are intended solely for the use of the 

individual to whom it is addressed.
This email was multiple times scanned for viruses. There should be no 
known virus in this email!
*******************************************************

Re: [Assp-test] Antwort: Re: staled connections

From: Konrad Olszewski <k@et...> - 2009-08-26 06:43

Hi Thomas

i made tons of debug files - how to send them to You ?


-- 
Serdecznie pozdrawiam,
Konrad Olszewski

Etop Sp. z o.o.
Al. Jerozolimskie 200, 02-222 Warszawa
telefon 022-5780 100
telefaks 022-5780 101 http://www.etop.pl
Regon 016310320   NIP 522-25-50-755   KRS 0000029426
Sad Rejonowy dla m. st. Warszawy, XIII Wydzial Gospodarczy KRS
Kapital zakladowy 75000 PLN
Raiffeisen Bank Polska S.A., konto nr 31 1750 0009 0000 0000 0697 4031

----- Original Message ----- 
From: "Thomas Eckardt/eck" <Thomas.Eckardt@...>
To: "Matti Haack" <m.haack@...>; "ASSP development mailing list" 
<assp-test@...>
Sent: Tuesday, August 25, 2009 5:54 PM
Subject: [Assp-test] Antwort: Re: staled connections


> Konrad and Matti, please try to debug such a connection ! zip and send me
> the file - thank you!
>
> Thomas
>
>
>
>
> Matti Haack <m.haack@...>
> 25.08.2009 11:11
> Bitte antworten an
> Matti Haack <m.haack@...>; Bitte antworten an
> ASSP development mailing list <assp-test@...>
>
>
> An
> Matti Haack <m.haack@...>, ASSP development mailing list
> <assp-test@...>
> Kopie
>
> Thema
> Re: [Assp-test] staled connections
>
>
>
>
>
>
>
>
> KO>> i sill got this stalled connections  as below - with "QUIT (error)"
> KO>> description
> MH> I can confirm this... :(
> MH> Same on my windows system.
> And all Quit(error) connections seem to be invalid Helo Domains
> (Looking like Dialup Domains)
>
> Matti
>
>
> MH> Matti
>
>
>
>
>
>
>
> -- 
> Matti Haack - Hit Haack IT Service Gmbh
> Poltlbauer Weg 4, D-94036 Passau
> +49 851 50477-22 Fax: +49 851 50477-29
> http://www.haack-it.de
>
>
>
> ------------------------------------------------------------------------------
> Let Crystal Reports handle the reporting - Free Crystal Reports 2008
> 30-Day
> trial. Simplify your report design, integration and deployment - and focus
> on
> what you do best, core application coding. Discover what's new with
> Crystal Reports now.  http://p.sf.net/sfu/bobj-july
> _______________________________________________
> Assp-test mailing list
> Assp-test@...
> https://lists.sourceforge.net/lists/listinfo/assp-test
>
>
>
>
> DISCLAIMER:
> *******************************************************
> This email and any files transmitted with it may be confidential, legally
> privileged and protected in law and are intended solely for the use of the
>
> individual to whom it is addressed.
> This email was multiple times scanned for viruses. There should be no
> known virus in this email!
> *******************************************************
>
> ------------------------------------------------------------------------------
> Let Crystal Reports handle the reporting - Free Crystal Reports 2008 
> 30-Day
> trial. Simplify your report design, integration and deployment - and focus 
> on
> what you do best, core application coding. Discover what's new with
> Crystal Reports now.  http://p.sf.net/sfu/bobj-july
> _______________________________________________
> Assp-test mailing list
> Assp-test@...
> https://lists.sourceforge.net/lists/listinfo/assp-test
>

[Assp-test] Antwort: Re: Antwort: Re: staled connections

From: Thomas Eckardt/eck <Thomas.Eckardt@th...> - 2009-08-26 06:57

I've got a report from Matti yesterday evening that a prereleased 4.03 has 
possibly fixed the problem for him. I'm just doing some changes for the 
error handling and some testing.
Keep the debug files. It is possible that I'll need them to compare 4.02 
to 4.03.

Can I use your email address that is shown in this post to send you a new 
version?

Thomas




"Konrad Olszewski" <k@...> 
26.08.2009 08:44
Bitte antworten an
ASSP development mailing list <assp-test@...>


An
"ASSP development mailing list" <assp-test@...>
Kopie

Thema
Re: [Assp-test] Antwort: Re:  staled connections






Hi Thomas

i made tons of debug files - how to send them to You ?


-- 
Serdecznie pozdrawiam,
Konrad Olszewski

Etop Sp. z o.o.
Al. Jerozolimskie 200, 02-222 Warszawa
telefon 022-5780 100
telefaks 022-5780 101 http://www.etop.pl
Regon 016310320   NIP 522-25-50-755   KRS 0000029426
Sad Rejonowy dla m. st. Warszawy, XIII Wydzial Gospodarczy KRS
Kapital zakladowy 75000 PLN
Raiffeisen Bank Polska S.A., konto nr 31 1750 0009 0000 0000 0697 4031

----- Original Message ----- 
From: "Thomas Eckardt/eck" <Thomas.Eckardt@...>
To: "Matti Haack" <m.haack@...>; "ASSP development mailing list" 
<assp-test@...>
Sent: Tuesday, August 25, 2009 5:54 PM
Subject: [Assp-test] Antwort: Re: staled connections


> Konrad and Matti, please try to debug such a connection ! zip and send 
me
> the file - thank you!
>
> Thomas
>
>
>
>
> Matti Haack <m.haack@...>
> 25.08.2009 11:11
> Bitte antworten an
> Matti Haack <m.haack@...>; Bitte antworten an
> ASSP development mailing list <assp-test@...>
>
>
> An
> Matti Haack <m.haack@...>, ASSP development mailing list
> <assp-test@...>
> Kopie
>
> Thema
> Re: [Assp-test] staled connections
>
>
>
>
>
>
>
>
> KO>> i sill got this stalled connections  as below - with "QUIT (error)"
> KO>> description
> MH> I can confirm this... :(
> MH> Same on my windows system.
> And all Quit(error) connections seem to be invalid Helo Domains
> (Looking like Dialup Domains)
>
> Matti
>
>
> MH> Matti
>
>
>
>
>
>
>
> -- 
> Matti Haack - Hit Haack IT Service Gmbh
> Poltlbauer Weg 4, D-94036 Passau
> +49 851 50477-22 Fax: +49 851 50477-29
> http://www.haack-it.de
>
>
>
> 
------------------------------------------------------------------------------
> Let Crystal Reports handle the reporting - Free Crystal Reports 2008
> 30-Day
> trial. Simplify your report design, integration and deployment - and 
focus
> on
> what you do best, core application coding. Discover what's new with
> Crystal Reports now.  http://p.sf.net/sfu/bobj-july
> _______________________________________________
> Assp-test mailing list
> Assp-test@...
> https://lists.sourceforge.net/lists/listinfo/assp-test
>
>
>
>
> DISCLAIMER:
> *******************************************************
> This email and any files transmitted with it may be confidential, 
legally
> privileged and protected in law and are intended solely for the use of 
the
>
> individual to whom it is addressed.
> This email was multiple times scanned for viruses. There should be no
> known virus in this email!
> *******************************************************
>
> 
------------------------------------------------------------------------------
> Let Crystal Reports handle the reporting - Free Crystal Reports 2008 
> 30-Day
> trial. Simplify your report design, integration and deployment - and 
focus 
> on
> what you do best, core application coding. Discover what's new with
> Crystal Reports now.  http://p.sf.net/sfu/bobj-july
> _______________________________________________
> Assp-test mailing list
> Assp-test@...
> https://lists.sourceforge.net/lists/listinfo/assp-test
> 


------------------------------------------------------------------------------
Let Crystal Reports handle the reporting - Free Crystal Reports 2008 
30-Day 
trial. Simplify your report design, integration and deployment - and focus 
on 
what you do best, core application coding. Discover what's new with 
Crystal Reports now.  http://p.sf.net/sfu/bobj-july
_______________________________________________
Assp-test mailing list
Assp-test@...
https://lists.sourceforge.net/lists/listinfo/assp-test




DISCLAIMER:
*******************************************************
This email and any files transmitted with it may be confidential, legally 
privileged and protected in law and are intended solely for the use of the 

individual to whom it is addressed.
This email was multiple times scanned for viruses. There should be no 
known virus in this email!
*******************************************************

Re: [Assp-test] Antwort: Re: Antwort: Re: staled connections

From: Konrad Olszewski <k@et...> - 2009-08-26 07:06

Sure - absolutelly k@... is awaiting for Your emails :D

look at this debug file
http://testweb.webtest.etop.pl/1251268870.txt

You can find other debug files in the directory also :D

Konrad


----- Original Message ----- 
From: "Thomas Eckardt/eck" <Thomas.Eckardt@...>
To: "ASSP development mailing list" <assp-test@...>
Sent: Wednesday, August 26, 2009 8:56 AM
Subject: [Assp-test] Antwort: Re: Antwort: Re: staled connections


> I've got a report from Matti yesterday evening that a prereleased 4.03 has
> possibly fixed the problem for him. I'm just doing some changes for the
> error handling and some testing.
> Keep the debug files. It is possible that I'll need them to compare 4.02
> to 4.03.
>
> Can I use your email address that is shown in this post to send you a new
> version?
>
> Thomas
>
>
>
>
> "Konrad Olszewski" <k@...>
> 26.08.2009 08:44
> Bitte antworten an
> ASSP development mailing list <assp-test@...>
>
>
> An
> "ASSP development mailing list" <assp-test@...>
> Kopie
>
> Thema
> Re: [Assp-test] Antwort: Re:  staled connections
>
>
>
>
>
>
> Hi Thomas
>
> i made tons of debug files - how to send them to You ?
>
>
> -- 
> Serdecznie pozdrawiam,
> Konrad Olszewski
>
> Etop Sp. z o.o.
> Al. Jerozolimskie 200, 02-222 Warszawa
> telefon 022-5780 100
> telefaks 022-5780 101 http://www.etop.pl
> Regon 016310320   NIP 522-25-50-755   KRS 0000029426
> Sad Rejonowy dla m. st. Warszawy, XIII Wydzial Gospodarczy KRS
> Kapital zakladowy 75000 PLN
> Raiffeisen Bank Polska S.A., konto nr 31 1750 0009 0000 0000 0697 4031
>
> ----- Original Message ----- 
> From: "Thomas Eckardt/eck" <Thomas.Eckardt@...>
> To: "Matti Haack" <m.haack@...>; "ASSP development mailing list"
> <assp-test@...>
> Sent: Tuesday, August 25, 2009 5:54 PM
> Subject: [Assp-test] Antwort: Re: staled connections
>
>
>> Konrad and Matti, please try to debug such a connection ! zip and send
> me
>> the file - thank you!
>>
>> Thomas
>>
>>
>>
>>
>> Matti Haack <m.haack@...>
>> 25.08.2009 11:11
>> Bitte antworten an
>> Matti Haack <m.haack@...>; Bitte antworten an
>> ASSP development mailing list <assp-test@...>
>>
>>
>> An
>> Matti Haack <m.haack@...>, ASSP development mailing list
>> <assp-test@...>
>> Kopie
>>
>> Thema
>> Re: [Assp-test] staled connections
>>
>>
>>
>>
>>
>>
>>
>>
>> KO>> i sill got this stalled connections  as below - with "QUIT (error)"
>> KO>> description
>> MH> I can confirm this... :(
>> MH> Same on my windows system.
>> And all Quit(error) connections seem to be invalid Helo Domains
>> (Looking like Dialup Domains)
>>
>> Matti
>>
>>
>> MH> Matti
>>
>>
>>
>>
>>
>>
>>
>> -- 
>> Matti Haack - Hit Haack IT Service Gmbh
>> Poltlbauer Weg 4, D-94036 Passau
>> +49 851 50477-22 Fax: +49 851 50477-29
>> http://www.haack-it.de
>>
>>
>>
>>
> ------------------------------------------------------------------------------
>> Let Crystal Reports handle the reporting - Free Crystal Reports 2008
>> 30-Day
>> trial. Simplify your report design, integration and deployment - and
> focus
>> on
>> what you do best, core application coding. Discover what's new with
>> Crystal Reports now.  http://p.sf.net/sfu/bobj-july
>> _______________________________________________
>> Assp-test mailing list
>> Assp-test@...
>> https://lists.sourceforge.net/lists/listinfo/assp-test
>>
>>
>>
>>
>> DISCLAIMER:
>> *******************************************************
>> This email and any files transmitted with it may be confidential,
> legally
>> privileged and protected in law and are intended solely for the use of
> the
>>
>> individual to whom it is addressed.
>> This email was multiple times scanned for viruses. There should be no
>> known virus in this email!
>> *******************************************************
>>
>>
> ------------------------------------------------------------------------------
>> Let Crystal Reports handle the reporting - Free Crystal Reports 2008
>> 30-Day
>> trial. Simplify your report design, integration and deployment - and
> focus
>> on
>> what you do best, core application coding. Discover what's new with
>> Crystal Reports now.  http://p.sf.net/sfu/bobj-july
>> _______________________________________________
>> Assp-test mailing list
>> Assp-test@...
>> https://lists.sourceforge.net/lists/listinfo/assp-test
>>
>
>
> ------------------------------------------------------------------------------
> Let Crystal Reports handle the reporting - Free Crystal Reports 2008
> 30-Day
> trial. Simplify your report design, integration and deployment - and focus
> on
> what you do best, core application coding. Discover what's new with
> Crystal Reports now.  http://p.sf.net/sfu/bobj-july
> _______________________________________________
> Assp-test mailing list
> Assp-test@...
> https://lists.sourceforge.net/lists/listinfo/assp-test
>
>
>
>
> DISCLAIMER:
> *******************************************************
> This email and any files transmitted with it may be confidential, legally
> privileged and protected in law and are intended solely for the use of the
>
> individual to whom it is addressed.
> This email was multiple times scanned for viruses. There should be no
> known virus in this email!
> *******************************************************
>
> ------------------------------------------------------------------------------
> Let Crystal Reports handle the reporting - Free Crystal Reports 2008 
> 30-Day
> trial. Simplify your report design, integration and deployment - and focus 
> on
> what you do best, core application coding. Discover what's new with
> Crystal Reports now.  http://p.sf.net/sfu/bobj-july
> _______________________________________________
> Assp-test mailing list
> Assp-test@...
> https://lists.sourceforge.net/lists/listinfo/assp-test
>

Re: [Assp-test] Antwort: Re: Assp-test Digest, Vol 25, Issue 27

From: Konrad Olszewski <k@et...> - 2009-08-25 06:37

version 4.01

SMTP Connections List
There are 15 SMTP sessions in threads (global 15, total 15) 
active.emails:3476/4 - average duration:8.63/4.89 - Tue Aug 25 08:35:32 2009
Connection Transfer: average count/time: all:3508/0.125 - with 
interrupt:2790/0.147 - without interrupt.:718/0.040 intSel:0.096 
intWait:0.051
running Workers: 5 - recommended Workers: 5
total physical-memory: 2020 MB - free physical-memory: 68 MB - total 
virtual-memory: 729 MB - free virtual-memory: 692 MB
      # TLS WKR(Con) Remote IP HELO From Rcpt CMD Rly/NP SPAM Bytes Duration 
Idle/Damping
      1 __ 2(1) 83.29.8.183 bns183.neoplus.adsl.tpnet pionnetj@... 
QUIT(error)   6099 1251182132 32702
      2 __ 4(1) 77.126.245.40 [77.126.245.40] Thao-deconven@... 
QUIT(error)   924 1251182132 5112
      3 __ 1(1) 76.19.110.45 c-76-19-110-45.hsd1.ma.co 
aframmel@...  QUIT(error)   3921 1251182132 21093
      4 __ 4(2) 91.138.149.224 ppp091138149224.dsl.hol.g 
stulevyn2004@...  QUIT(error)   4506 1251182132 24224
      5 __ 2(2) 91.124.91.117 148-41-124-91.pool.ukrtel 
etsoperb1997@...  QUIT(error)   5157 1251182132 27687
      6 __ 4(3) 71.125.29.31 pool-71-125-29-31.nycmny. 
Ok-stywisty@...  QUIT(error)   5703 1251182132 30606
      7 __ 1(2) 89.123.9.234 [89.123.9.234] teareghc@... 
QUIT(error)   5742 1251182132 30817
      8 __ 3(1) 95.56.14.153 [92.46.19.115] kcommam1955@.... 
QUIT(error)   552 1251182132 3119
      9 __ 2(3) 98.228.52.51 c-98-228-52-51.hsd1.il.co 
nenzolle2004@....  QUIT(error)   4749 1251182132 25512
      10 __ 2(4) 77.49.63.2 adsl96-2.kln.forthnet.gr 
rollerne1991@...  QUIT(error)   5109 1251182132 27422
      11 __ 3(2) 64.52.34.194 x403422c2.ip.e-nt.net lalla1987@... 
QUIT(error)   5250 1251182132 28181
      12 __ 3(3) 41.250.226.164 [41.250.226.164] nesleksd@... 
QUIT(error)   5241 1251182132 28126
      13 __ 3(4) 84.110.158.144 bzq-84-110-89-197.red.bez 
kvadrere@...  QUIT(error)   4971 1251182132 26696
      14 __ 1(3) 79.182.76.167 bzq-79-179-27-179.red.bez 
peltries@...  QUIT(error)   1272 1251182132 6965
      15 __ 3(5) 222.171.15.73 mail.virscan.org arcavir@... 
virus@... DATA(error)  1 3745523 149 0

seems like it stays forever blocking resources ....


-- 
Serdecznie pozdrawiam,
Konrad Olszewski

Etop Sp. z o.o.
Al. Jerozolimskie 200, 02-222 Warszawa
telefon 022-5780 100
telefaks 022-5780 101 http://www.etop.pl
Regon 016310320   NIP 522-25-50-755   KRS 0000029426
Sąd Rejonowy dla m. st. Warszawy, XIII Wydział Gospodarczy KRS
Kapitał zakładowy 75000 PLN
Raiffeisen Bank Polska S.A., konto nr 31 1750 0009 0000 0000 0697 4031


----- Original Message ----- 
From: "Thomas Eckardt/eck" <Thomas.Eckardt@...>
To: "ASSP development mailing list" <assp-test@...>
Sent: Monday, August 24, 2009 7:00 PM
Subject: [Assp-test] Antwort: Re: Assp-test Digest, Vol 25, Issue 27


> And keep in mind - this is normal for all dropped connections for spam
> mails!
>
> Thomas
>
>
>
>
> Đức Nguyễn Anh <duc.nguyen@...>
> 24.08.2009 18:53
> Bitte antworten an
> ASSP development mailing list <assp-test@...>
>
>
> An
> assp-test@...
> Kopie
>
> Thema
> Re: [Assp-test] Assp-test Digest, Vol 25, Issue 27
>
>
>
>
>
>
> I still have those errors after running RC0.4.00
>
> fixed:
>
> - mails ending after the DATA command or host getting 5xx errors - mails
> are resend infinity
>
> On Mon, Aug 24, 2009 at 9:48 PM,
> <assp-test-request@...:
>
> Message: 1
> Date: Sun, 23 Aug 2009 17:17:14 +0200
> From: Thomas Eckardt/eck <Thomas.Eckardt@...>
> Subject: [Assp-test] fixes in assp 2.0.1_RC0.4.00
> To: ASSP development mailing list <assp-test@...>
> Message-ID:
>       <
> tITC.848602e4f4.OF2C6D836E.76093734-ONC125761B.0052A58D-C125761B.0053F9DD@...
>>
>
> Content-Type: text/plain; charset="US-ASCII"
>
> Hi all,
>
> fixed:
>
> - mails ending after the DATA command or host getting 5xx errors - mails
> are resend infinity - TLS/SSL session are broken or timedout
> - if send250ok or send250okISP is used, the QUIT command is ignored by
> ASSP
> - DoNotCollectBounces is not working
>
> changed:
>
> - the resend function in maillog tail now checks the message for a local
> TO: address and warns on this
>
> added:
>
> - the literal 'SESSIONID' will be replaced in all configurable replies by
> the unique message identifier
>
>
> Thomas
> ------------------------------------------------------------------------------
> Let Crystal Reports handle the reporting - Free Crystal Reports 2008
> 30-Day
> trial. Simplify your report design, integration and deployment - and focus
> on
> what you do best, core application coding. Discover what's new with
> Crystal Reports now.  http://p.sf.net/sfu/bobj-july
> _______________________________________________
> Assp-test mailing list
> Assp-test@...
> https://lists.sourceforge.net/lists/listinfo/assp-test
>
>
>
>
> DISCLAIMER:
> *******************************************************
> This email and any files transmitted with it may be confidential, legally
> privileged and protected in law and are intended solely for the use of the
>
> individual to whom it is addressed.
> This email was multiple times scanned for viruses. There should be no
> known virus in this email!
> *******************************************************
>
>
> ------------------------------------------------------------------------------
> Let Crystal Reports handle the reporting - Free Crystal Reports 2008 
> 30-Day
> trial. Simplify your report design, integration and deployment - and focus 
> on
> what you do best, core application coding. Discover what's new with
> Crystal Reports now.  http://p.sf.net/sfu/bobj-july
> _______________________________________________
> Assp-test mailing list
> Assp-test@...
> https://lists.sourceforge.net/lists/listinfo/assp-test
>

Re: [Assp-test] Antwort: Spambomb problems and suggestions.

From: Hilário Fochi Silveira <assp-test@so...> - 2009-08-24 20:22

I assign a value of 30 to bayes and I never let 
an email to be blocked on Bayes alone. I would have a ton of false positives.
Bayes filters implementations are different one from the other.
I believe one of the best is CRM114 (that I do 
not use in its original incarnation), but that 
I've been told is used in the Eudora client 
application. Even it has some false positives (but really rare)

Thus concluding that nothing is perfect in the 
world, I use spambomb to complement ASSP functionality.
I assure you that me ASSP server's performance is 
much better with my ton of spambomb regex than without it.
Thus spambombs are a good additional resource.

Spambombs is what I see as ASSP own version of 
spamassassin (with the vantages of the proxy 
features of ASSP before receiving the entire e-mail etc. etc.)
More small sums etc, is the philosophy of spamassassin. It is good idea.
The entire ASSP structure also is a lot of small sums (all the valences etc).
I only mentioned spamassassin in order to be fair 
with them and not pretend it was my own conception..

Hilário Fochi Silveira

At 16:47 2009-08-24, you wrote:
>ASSP development mailing list <assp-test@...>
>schreibt:
> >Hi my reasons are:
> >- More small sums added gives more reliability
> >and less false positives than a large amount
> >added just once. Thus more files, more reliability.
>
>
>Therefore we have Bayesian.

Next Messages