Anti-Spam SMTP Proxy Server

use the codepage 'cp...' for your language or 'utf8' if your system 
codepage is utf8

Thomas




Jérôme PHILIPPE <je_philippe@...> 
29.12.2009 20:15
Bitte antworten an
ASSP development mailing list <assp-test@...>


An
<assp-test@...>
Kopie

Thema
[Assp-test] charset






Hi all

 

With LogCharset:=iso-8859-1, I don’t see the exact subject :

 

[R clamez vos 1000 Euros gratuits maintenant]

 

Instead of : Réclamez…

 

And the regexbombs (bombSubjectRe) don’t work,

 

bombDataRe don’t match my charset éàù…

 

 

it’s a detail, i like “copy/paste” it’s more easy

 

Jérôme.

 

------------------------------------------------------------------------------
This SF.Net email is sponsored by the Verizon Developer Community
Take advantage of Verizon's best-in-class app development support
A streamlined, 14 day to market process makes app distribution fast and 
easy
Join now and get one step closer to millions of Verizon customers
http://p.sf.net/sfu/verizon-dev2dev 
_______________________________________________
Assp-test mailing list
Assp-test@...
https://lists.sourceforge.net/lists/listinfo/assp-test




DISCLAIMER:
*******************************************************
This email and any files transmitted with it may be confidential, legally 
privileged and protected in law and are intended solely for the use of the 

individual to whom it is addressed.
This email was multiple times scanned for viruses. There should be no 
known virus in this email!
*******************************************************

Hi Thomas !

Thanks, but with windows 2003 server french, not working, try it with LogCharset:=iso-8859-1 or utf=8 or cp1252 or SystemDefault... with restart ASSP...

Jérôme.

-----Message d'origine-----
De : Thomas Eckardt/eck [mailto:Thomas.Eckardt@...] 
Envoyé : mardi 29 décembre 2009 21:30
À : ASSP development mailing list
Objet : [Assp-test] Antwort: charset

use the codepage 'cp...' for your language or 'utf8' if your system 
codepage is utf8

Thomas




Jérôme PHILIPPE <je_philippe@...> 
29.12.2009 20:15
Bitte antworten an
ASSP development mailing list <assp-test@...>


An
<assp-test@...>
Kopie

Thema
[Assp-test] charset






Hi all

 

With LogCharset:=iso-8859-1, I don’t see the exact subject :

 

[R clamez vos 1000 Euros gratuits maintenant]

 

Instead of : Réclamez…

 

And the regexbombs (bombSubjectRe) don’t work,

 

bombDataRe don’t match my charset éàù…

 

 

it’s a detail, i like “copy/paste” it’s more easy

 

Jérôme.

 

------------------------------------------------------------------------------
This SF.Net email is sponsored by the Verizon Developer Community
Take advantage of Verizon's best-in-class app development support
A streamlined, 14 day to market process makes app distribution fast and 
easy
Join now and get one step closer to millions of Verizon customers
http://p.sf.net/sfu/verizon-dev2dev 
_______________________________________________
Assp-test mailing list
Assp-test@...
https://lists.sourceforge.net/lists/listinfo/assp-test




DISCLAIMER:
*******************************************************
This email and any files transmitted with it may be confidential, legally 
privileged and protected in law and are intended solely for the use of the 

individual to whom it is addressed.
This email was multiple times scanned for viruses. There should be no 
known virus in this email!
*******************************************************


------------------------------------------------------------------------------
This SF.Net email is sponsored by the Verizon Developer Community
Take advantage of Verizon's best-in-class app development support
A streamlined, 14 day to market process makes app distribution fast and easy
Join now and get one step closer to millions of Verizon customers
http://p.sf.net/sfu/verizon-dev2dev 
_______________________________________________
Assp-test mailing list
Assp-test@...
https://lists.sourceforge.net/lists/listinfo/assp-test

I'm unable to say if it is working in V1. Your setting for french on 
Windows should be.

ConsoleCharset:=cp863
LogCharset:=cp1252

If it does not work, leave the setting on 'system default', which meens - 
assp will work the old style (ASCII only).

Thomas




Jérôme PHILIPPE <je_philippe@...> 
29.12.2009 22:29
Bitte antworten an
ASSP development mailing list <assp-test@...>


An
"'ASSP development mailing list'" <assp-test@...>
Kopie

Thema
Re: [Assp-test] Antwort:  charset






Hi Thomas !

Thanks, but with windows 2003 server french, not working, try it with 
LogCharset:=iso-8859-1 or utf=8 or cp1252 or SystemDefault... with restart 
ASSP...

Jérôme.

-----Message d'origine-----
De : Thomas Eckardt/eck [mailto:Thomas.Eckardt@...] 
Envoyé : mardi 29 décembre 2009 21:30
À : ASSP development mailing list
Objet : [Assp-test] Antwort: charset

use the codepage 'cp...' for your language or 'utf8' if your system 
codepage is utf8

Thomas




Jérôme PHILIPPE <je_philippe@...> 
29.12.2009 20:15
Bitte antworten an
ASSP development mailing list <assp-test@...>


An
<assp-test@...>
Kopie

Thema
[Assp-test] charset






Hi all

 

With LogCharset:=iso-8859-1, I don’t see the exact subject :

 

[R clamez vos 1000 Euros gratuits maintenant]

 

Instead of : Réclamez…

 

And the regexbombs (bombSubjectRe) don’t work,

 

bombDataRe don’t match my charset éàù…

 

 

it’s a detail, i like “copy/paste” it’s more easy

 

Jérôme.

 

------------------------------------------------------------------------------
This SF.Net email is sponsored by the Verizon Developer Community
Take advantage of Verizon's best-in-class app development support
A streamlined, 14 day to market process makes app distribution fast and 
easy
Join now and get one step closer to millions of Verizon customers
http://p.sf.net/sfu/verizon-dev2dev 
_______________________________________________
Assp-test mailing list
Assp-test@...
https://lists.sourceforge.net/lists/listinfo/assp-test




DISCLAIMER:
*******************************************************
This email and any files transmitted with it may be confidential, legally 
privileged and protected in law and are intended solely for the use of the 


individual to whom it is addressed.
This email was multiple times scanned for viruses. There should be no 
known virus in this email!
*******************************************************


------------------------------------------------------------------------------
This SF.Net email is sponsored by the Verizon Developer Community
Take advantage of Verizon's best-in-class app development support
A streamlined, 14 day to market process makes app distribution fast and 
easy
Join now and get one step closer to millions of Verizon customers
http://p.sf.net/sfu/verizon-dev2dev 
_______________________________________________
Assp-test mailing list
Assp-test@...
https://lists.sourceforge.net/lists/listinfo/assp-test


------------------------------------------------------------------------------
This SF.Net email is sponsored by the Verizon Developer Community
Take advantage of Verizon's best-in-class app development support
A streamlined, 14 day to market process makes app distribution fast and 
easy
Join now and get one step closer to millions of Verizon customers
http://p.sf.net/sfu/verizon-dev2dev 
_______________________________________________
Assp-test mailing list
Assp-test@...
https://lists.sourceforge.net/lists/listinfo/assp-test



DISCLAIMER:
*******************************************************
This email and any files transmitted with it may be confidential, legally 
privileged and protected in law and are intended solely for the use of the 

individual to whom it is addressed.
This email was multiple times scanned for viruses. There should be no 
known virus in this email!
*******************************************************

ASSP development mailing list <assp-test@...>
schreibt:
>DoPenaltyMakeTraps


Are you using UseTrapToCollect?

Would you please test what happens (two  tests)
1- if you disable UseTrapToCollect
2-if you set sendAllCollect

ASSP development mailing list <assp-test@...>
schreibt:
>[Whitelisted] 65.55.90.76 <user@...> to: “sendAllPostmaster:=” 
>whitelisted
>-- user@... on whitelist -- [essai];

what is in "sendAllPostmaster".

>what is in "sendAllPostmaster".

My personnal email

Jérôme.


----------------------------------------------------------------------------
--
This SF.Net email is sponsored by the Verizon Developer Community
Take advantage of Verizon's best-in-class app development support
A streamlined, 14 day to market process makes app distribution fast and easy
Join now and get one step closer to millions of Verizon customers
http://p.sf.net/sfu/verizon-dev2dev 
_______________________________________________
Assp-test mailing list
Assp-test@...
https://lists.sourceforge.net/lists/listinfo/assp-test

ASSP development mailing list <assp-test@...>
schreibt:
>Hello Fritz,
>
>Yes, UseTrapToCollect:=1


"spamtrapaddresses" need no valid recipient. 
"spamaddresses" need a valid recipient.

If you set  "Use Penalty Trap Addresses To Collect (UseTrapToCollect)" 
you use spamtrapaddresses as spamaddresses and therefore a valid
recipient is needed.

ASSP picks an address in this way:

sendAllCollect  or sendAllPostmaster or sendAllSpam or
"postmaster@..."

Thanks a lot

I put this "old" adresses in : noPenaltyMakeTraps

ASSP development mailing list <assp-test@...>
schreibt:
>Does this only work for 2+ addresses if I allow pipelining or is 
>there another issue?

Pipelining is skipped by ASSP. But sorry, I have no clue what happens
in your configuration. I cannot reproduce it.
May be you test to send all spam via sendAllDestination.

Philipp,

frist - changing the IP's in the log will break many features in ASSP.

>At least in germany it's not allowed to save personal data

This is not absolute correct. You are allowed to store personal data as 
long as you need them to do your business (deliver mails) and you have to 
delete them if no more needed. eg. Every mail header contains all hop-IP's 
- and nobody is allowed to delete them (RFC). This is the same like if the 
Post/DHL ... is delivering a packet. They store your personal data for 
revision purposes even if they have delivered the packet. Or: all german 
ISP's storing personal mails for there customers (containing all data) on 
there server (for there business).

I don't know any mailserver, that is not writing log files, which contains 
email addresses and/or IP's. So it should be not allowed to use any mail 
server in germany!?
ASSP stores IP's and email addresses to do it's (your) business (spam 
detection). If configured, all uneeded data (logs and email files) are 
deleted after some time (the time you need them to do your business).

The document in your link belongs to ISP - dynamic IP's (and IP's on 
webpages) - which are no longer allowed to store. I think this does not 
belong to email delivery.

But how ever - if you think you have to do it, add the following line to 
sub mlog  (found at the end of the sub)

    $m =~ s/(\d+\.\d+)\.\d+\.\d+/$1.0.0/g;  # <-- add this line
    threads->yield();
    $mlogQueue->enqueue("$m");

don't forget to disable griplist, griplistupload and heloblack - they are 
build form the logfiles and will contain wrong data.

Thomas




Philipp Niethammer <webmaster@...> 
28.12.2009 23:55
Bitte antworten an
ASSP development mailing list <assp-test@...>


An
Assp-test@...
Kopie

Thema
[Assp-test] Anonymisation of IPs in logfiles






-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Hi there,

At least in germany it's not allowed to save personal data [1]. Thus we 
are in 
the progress to make all our log files anonymous. In fact that means that 
we 
have to delete the last two bytes of IPs before writing them to the disk 
(i.e. 
123.45.0.0 instead of 123.45.67.89).

Is there a way to do this for ASSP? May be it's worth a feature request? 
Or is 
there any other way you can think of?

We're using the newest 2.0.1*

Thanks for helping and for your great work!

Regards,
Philipp

[1] 
http://www.daten-speicherung.de/index.php/speicherung-von-ip-adressen-ist-
unzulaessig-auch-auf-websites/

- -- 
Philipp Niethammer               nochwer.de
Birkenwaldstr. 204                               guite.de
D-70191 Stuttgart
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)

iEYEARECAAYFAks5MuoACgkQOw1zFs7lUln+xwCeMsgBC0ypckrkSAmSF+tFW7hT
FtAAn1Xmtm0Jx5V9zVQCc58aFCPHukNX
=ESnX
-----END PGP SIGNATURE-----

------------------------------------------------------------------------------
This SF.Net email is sponsored by the Verizon Developer Community
Take advantage of Verizon's best-in-class app development support
A streamlined, 14 day to market process makes app distribution fast and 
easy
Join now and get one step closer to millions of Verizon customers
http://p.sf.net/sfu/verizon-dev2dev 
_______________________________________________
Assp-test mailing list
Assp-test@...
https://lists.sourceforge.net/lists/listinfo/assp-test




DISCLAIMER:
*******************************************************
This email and any files transmitted with it may be confidential, legally 
privileged and protected in law and are intended solely for the use of the 

individual to whom it is addressed.
This email was multiple times scanned for viruses. There should be no 
known virus in this email!
*******************************************************

ASSP development mailing list <assp-test@...>
schreibt:
>I don't know any mailserver, that is not writing log files, which
>contains 
>email addresses and/or IP's. So it should be not allowed to use any
>mail 
>server in germany!?


No. The ruling does not say that. In fact it does not mention server
to server use and it does not mention email at all!!!

This is actually a very good question.

The English version of the Data Protection Act requires that systems  
are registered that they contain personal data. However, what  
"personal" data would be registered by an ASSP system? An email  
address? Questionalbly personal. An IP address? Again, I wouldn't say  
this was personal...

But, in either case, (as far as my memory of the UK DPA goes), as long  
as the system is registered, it can store whatever data you want. You  
must be ready to provide users with any personal data you may have  
stored on your server if/when the user requests it.

Taking it a stage further, if the German equivilent if RIPN couldn't  
store the IP addresses/user details of IP's allocated, then "whois"  
would cease to work in Germany.

Steve

Sent from my iPhone

On 29.12.2009, at 10:24, "Thomas Eckardt/eck" <Thomas.Eckardt@... 
 > wrote:

> Philipp,
>
> frist - changing the IP's in the log will break many features in ASSP.
>
>> At least in germany it's not allowed to save personal data
>
> This is not absolute correct. You are allowed to store personal data  
> as
> long as you need them to do your business (deliver mails) and you  
> have to
> delete them if no more needed. eg. Every mail header contains all  
> hop-IP's
> - and nobody is allowed to delete them (RFC). This is the same like  
> if the
> Post/DHL ... is delivering a packet. They store your personal data for
> revision purposes even if they have delivered the packet. Or: all  
> german
> ISP's storing personal mails for there customers (containing all  
> data) on
> there server (for there business).
>
> I don't know any mailserver, that is not writing log files, which  
> contains
> email addresses and/or IP's. So it should be not allowed to use any  
> mail
> server in germany!?
> ASSP stores IP's and email addresses to do it's (your) business (spam
> detection). If configured, all uneeded data (logs and email files) are
> deleted after some time (the time you need them to do your business).
>
> The document in your link belongs to ISP - dynamic IP's (and IP's on
> webpages) - which are no longer allowed to store. I think this does  
> not
> belong to email delivery.
>
> But how ever - if you think you have to do it, add the following  
> line to
> sub mlog  (found at the end of the sub)
>
>    $m =~ s/(\d+\.\d+)\.\d+\.\d+/$1.0.0/g;  # <-- add this line
>    threads->yield();
>    $mlogQueue->enqueue("$m");
>
> don't forget to disable griplist, griplistupload and heloblack -  
> they are
> build form the logfiles and will contain wrong data.
>
> Thomas
>
>
>
>
> Philipp Niethammer <webmaster@...>
> 28.12.2009 23:55
> Bitte antworten an
> ASSP development mailing list <assp-test@...>
>
>
> An
> Assp-test@...
> Kopie
>
> Thema
> [Assp-test] Anonymisation of IPs in logfiles
>
>
>
>
>
>
> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
>
> Hi there,
>
> At least in germany it's not allowed to save personal data [1]. Thus  
> we
> are in
> the progress to make all our log files anonymous. In fact that means  
> that
> we
> have to delete the last two bytes of IPs before writing them to the  
> disk
> (i.e.
> 123.45.0.0 instead of 123.45.67.89).
>
> Is there a way to do this for ASSP? May be it's worth a feature  
> request?
> Or is
> there any other way you can think of?
>
> We're using the newest 2.0.1*
>
> Thanks for helping and for your great work!
>
> Regards,
> Philipp
>
> [1]
> http://www.daten-speicherung.de/index.php/speicherung-von-ip-adressen-ist-
> unzulaessig-auch-auf-websites/
>
> - --
> Philipp Niethammer               nochwer.de
> Birkenwaldstr. 204                               guite.de
> D-70191 Stuttgart
> -----BEGIN PGP SIGNATURE-----
> Version: GnuPG v1.4.9 (GNU/Linux)
>
> iEYEARECAAYFAks5MuoACgkQOw1zFs7lUln+xwCeMsgBC0ypckrkSAmSF+tFW7hT
> FtAAn1Xmtm0Jx5V9zVQCc58aFCPHukNX
> =ESnX
> -----END PGP SIGNATURE-----
>
> --- 
> --- 
> --- 
> ---------------------------------------------------------------------
> This SF.Net email is sponsored by the Verizon Developer Community
> Take advantage of Verizon's best-in-class app development support
> A streamlined, 14 day to market process makes app distribution fast  
> and
> easy
> Join now and get one step closer to millions of Verizon customers
> http://p.sf.net/sfu/verizon-dev2dev
> _______________________________________________
> Assp-test mailing list
> Assp-test@...
> https://lists.sourceforge.net/lists/listinfo/assp-test
>
>
>
>
> DISCLAIMER:
> *******************************************************
> This email and any files transmitted with it may be confidential,  
> legally
> privileged and protected in law and are intended solely for the use  
> of the
>
> individual to whom it is addressed.
> This email was multiple times scanned for viruses. There should be no
> known virus in this email!
> *******************************************************
>
>
> --- 
> --- 
> --- 
> ---------------------------------------------------------------------
> This SF.Net email is sponsored by the Verizon Developer Community
> Take advantage of Verizon's best-in-class app development support
> A streamlined, 14 day to market process makes app distribution fast  
> and easy
> Join now and get one step closer to millions of Verizon customers
> http://p.sf.net/sfu/verizon-dev2dev
> _______________________________________________
> Assp-test mailing list
> Assp-test@...
> https://lists.sourceforge.net/lists/listinfo/assp-test

> No. The ruling does not say that. In fact it does not mention 
> server to server use and it does not mention email at all!!!

yes, but ... what about authenticated connections to a mail
server (either POP3, SMTP or IMAP) ? In such a case the
logs would contain the user ID and the connecting IP, also,
in case someone connects to SMTP (also through ASSP)
and authenticates to send a message, the logs will carry
the user/IP and the email headers will contain the originating
IP in the first "received" header... the whole thing sounds
pretty much crazy to me, not allowing to log IPs means that
it will be impossible to track an abuse, to trace a spammer
or even to use a blacklist to filter spamming IPs

GrayHat <grayhat@...> schreibt:
>yes, but ... what about authenticated connections to a mail
>server (either POP3, SMTP or IMAP) ? In such a case the
>logs would contain the user ID and the connecting IP, also,
>in case someone connects to SMTP (also through ASSP)
>and authenticates to send a message, 


The ruling is solely about www access and puts restrictions to storing
data about website-use (which is a good thing).

Lets discuss email if there is a ruling about it.

> The ruling is solely about www access and puts restrictions 
> to storing data about website-use (which is a good thing).

well... while the document talks about www it also refers to
IPs "in general" (at least if I did read it correctly) which in
turn /may/ also impact on email traffic... withouth to say
that www also means webmail (used for spamming as
well), blog "comment spam", website attacks, people
upping child porn to web space and more... while the 
intentions behind such a law were probably good the 
law itself doesn't sound so good to me... oh well but
then that's just me btw :)
 
> Lets discuss email if there is a ruling about it.

agreed, stopping here (for the moment) :)

>well... while the document talks about www it also refers to
>IPs "in general" 


It does not.

On 2009-12-28, Fritz Borgstedt (fb@...) wrote:
> It does duplicate all of the original headers. The
> X-Assp-Envelope-From stores additional the envelope "mail from". So it
> seems quite logical to resend "from" the address in this header.

As long as the 'From' header is also there so that it will 'appear' the
same to the recipient (displaying the same 'From' header) as if ASSP
hadn't ever seen it, then yes, I would agree.

-- 

Best regards,

Charles

I think we're all saying the same thing.

However, what I saw twice when I resent to myself from the admin
interface (not from the block report email), was the from line being
only from: <sender@...> whereas the original blocked email has
from: "sender name" <sender@...>


On Mon, Dec 28, 2009 at 2:15 PM, Charles Marcus
<CMarcus@...> wrote:
> On 2009-12-28, Fritz Borgstedt (fb@...) wrote:
>> It does duplicate all of the original headers. The
>> X-Assp-Envelope-From stores additional the envelope "mail from". So it
>> seems quite logical to resend "from" the address in this header.
>
> As long as the 'From' header is also there so that it will 'appear' the
> same to the recipient (displaying the same 'From' header) as if ASSP
> hadn't ever seen it, then yes, I would agree.
>
> --
>
> Best regards,
>
> Charles
>
> ------------------------------------------------------------------------------
> This SF.Net email is sponsored by the Verizon Developer Community
> Take advantage of Verizon's best-in-class app development support
> A streamlined, 14 day to market process makes app distribution fast and easy
> Join now and get one step closer to millions of Verizon customers
> http://p.sf.net/sfu/verizon-dev2dev
> _______________________________________________
> Assp-test mailing list
> Assp-test@...
> https://lists.sourceforge.net/lists/listinfo/assp-test
>