ASSP Anti-spam
Jun 14, 2008
I am interested in ASSP as a anti-spam tool and have heard good things, but I have 1 question I can't seem to find an answer too.
With ASSP is there a way to screen image spam like you can with FuzzyOCR? With ASSP do you even need to scan images at all? Because it waits for the sending server to respond for authentication?
I was running MailScanner / SpamAssasin / FuzzyOCR combo with a couple of chron jobs (to sweep fake bounce email out of the mail que for example) with very effective results, but it took forever to tweak all three to reduce server load. MailScanner was breaking webmail randomly so I have it disabled currently so I get a lot more spam.
View 0 Replies
ADVERTISEMENT
May 27, 2013
It is possible to have anti-virus and anti-spam enabled by default when we go to "CREATE E-MAIL ADRESS" -> "SPAM FILTER" / "ANTI-VIRUS" is always disabled.
View 13 Replies
View Related
Mar 13, 2007
All of my forwarded spams to my spam box e-mail is not listed in errors/spam.
View 5 Replies
View Related
Jun 21, 2008
I am running Win2003 server with Plesk 8.3. Antivirus running is F-Prot. Me and my clients have been getting a lot of spam emails and I am looking for suggestions on how to stop them. Plesk seems to provide some options for checking blacklisted spam servers but I was not too satisfied with the result. Maybe I was not looking up the right urls?
So, any suggestions on blocking the spam would be welcome. I am ready to pay for it too...but I am on a very tight budget. A free solution would be the best for me at the moment.
I also used SpamAssasin for a time being but it did not work out to any of my client's satisfaction even after a month's "training" of SpamAssasin.
View 8 Replies
View Related
Oct 4, 2007
We recently had a problem with a mail spammer. He sent over 90,000 emails and had 20,000 in the queue. Is there anyway to possibly stop this as it was really lagging the server bad. So bad the softlayer took it offline for a while...
View 4 Replies
View Related
Jul 22, 2007
where i can buy some cheap spam protection appliance. Right now, we are buying from mailfoundry, but it is a little bit expensive. I send an email to can spam, but i was quoted 18 K anually, to protect 25K emails. Anyone, have a way to buy some cheap anti-spam appliances.
View 14 Replies
View Related
Jul 25, 2009
I thought I should share this among all.
You will find many Anti spam blocker tools available in market. I recently come to know about[url]
. It’s an excellent tool to encrypt your email account if you use to display it on your website.
Generally, spammers uses robots (some kind of crawler) to get email accounts from websites. Once they get it they start selling it to other spammers and will start sending spoofing emails.
This tool will help you to encrypt your email address and stop spam coming from your website
View 0 Replies
View Related
Apr 24, 2009
i have a ironport and its coming close to my renew, frankly for my 50 and less users its expensive and i end up with a so so of a server.
my goal would be to use a vm based one for power "green" and backups/migration needs.
im runing scalix with clamav/spamass
View 4 Replies
View Related
Jul 31, 2009
Does anyone have any experience to share concerning these devices?
I'm having some serious spam issues and would like to look into a better approach to preventing this than the typical SpamAssasin solution bundled with cPanel, Plesk and so on. SA seems rather inefficient, needs a lot of training, can get a lot of false positives, tends to break now and then, and so on.
Have any of you used either the Barracuda or the MailFoundry applicances, or even better - compared them first hand? Are there any similar solutions out there, perhaps cheaper/more cost effective in the long run?
$2000-3000+ for the hardware and around $500 a year for an anti-spam solution is a little steep in my opinion. Especially considering the old and cheap hardware for an example MailFoundry uses. How accurate they actually are in terms of false positives is also seemingly debated. MailFoundry promises a near 0 false positive rate, while some user-experiences suggest somewhere between 6-10% - which could represent an issue just as problematic as spam itself. Nobody wants to lose out on important email. To spend such an amount on a device and updates, it certainly needs to be worth it. Is it?
Are there any equally good or better software based solutions out there, that one could for an example use to set up a custom anti-spam server using existing hardware at the DC?
View 14 Replies
View Related
Dec 4, 2008
Does anybody know of any open source Anti Spam gateway for mail servers? I have used MailCleaner and know how it works. Is there any other available?
View 3 Replies
View Related
Nov 20, 2007
i was wondering if there is any other free anti-spam filter other than Spam Assassin that can be used on a VPS account?
View 13 Replies
View Related
Feb 20, 2008
I want to set up a dedicated server for spam and virus filtering (MX)
But i was wondering, is there a good opensource based tool for this?
View 14 Replies
View Related
May 2, 2007
for a server-wide anti-spam solution I can implement on a Linux server. The mail queues are constantly getting backlogged with thousands of messages which bring the servers to a crawl. There are really two issues the solution needs to address.
1) Spam
2) Spam sent to other people that have the from address forged with our clients' email addresses.
We have spam assassin installed for individuals to use, but there's got to be some sort of solution that can clear out the vast majority of the junk before it even gets to the queue.
It probably goes without saying, but the solution needs to be open-source or have a very inexpensive license.
View 5 Replies
View Related
Feb 7, 2007
Seems like I'm having considerable problems with APF's antidos feature. I keep getting legit users banned from my site, and don't know how to stop it (other than disabling antidos altogether, but I guess there should be another way).
I've already set:
TRIG="100"
SF_TRIG="100"
...in the antidos configuration file but I'm still seeing more and more legit IPs getting added to ad.rules. I've read that raising or lowering LN="100" is the other tweak I should try, but there simply is no such value defined in my conf.antidos file.
Another thing I noticed that, although I only got two notification mails telling me about "attackers" blocked by antidos, there are roughly 40 entries in ad.rules. As a matter of fact, I don't understand what antidos is doing there in the first place. Seems like iptables doesn't log to var/log/messages anyway, at least not on my machine - so where is antidos getting those ips from?
View 2 Replies
View Related
Mar 9, 2007
I tried to understand ASSP by searching in your documentation but nowhere it mentions that when we use a mail client programs. For example:
I install ASSP correctly. I start it. Actually, our spam database is empty. From my understanding, ASSP still let spams and non spams e-mails go through to build its database.
My question is:
Is there a way to know our first 400 or 1000 e-mails are spams in despite to categorize them properly?
How to categorize them on our server when we use Kmail or Outlook to download e-mails from the server?
If I create two folders: spam and nonspam in Outlook or Kmail and move the e-mails to the prosper folders, will it be synchronized with the server automatically?
View 6 Replies
View Related
Apr 9, 2009
I Want to use ASSP for a large number of server with different IP,
ASSP is use as SMTP proxy for the outbound traffic,
In Relaying > AcceptAllMail in put my network,
the question is : does the network will be scanned by assp, i have see that the network contribute to the whitelist?
View 4 Replies
View Related
Jul 16, 2008
My host seem to like interfering with spam setting on the server. They had spamassasin installed which works perfectly and i haven't been getting any spam when i enable the software.
All of a sudden all my subscription and a lot of email is rejected and now perfectly legit email is marked as spam.
I fail to understand why use software that reject normal mail.
View 3 Replies
View Related
Jul 16, 2007
I have been running ASSP for a long time on a Fedora/Postfix box without a single problem. Recently, however, I have acquired a CentOS/Plesk/Qmail machine and I am having a terrible time getting ASSP to play nicely with qmail.
I am attempting to follow the directions on the assp wiki regarding plesk. I changed qmail to listen on 125 instead of 25 by editing /etc/services. I then restarted everything but it then appeared that mail was going through without authentication. I was successfully able to send mail from an internal address to an external one without a problem, but I think I was able to do so without authenticating myself.
However, when attempting to send mail from an outside address to an internal one, I get a relay denied error message. Obviously ASSP isn't aware of the addresses I have set up on the system.
Also - I attempted to manually run the sh scripts downloaded from the wiki entry, but I kept getting the error message that I couldn't execute binary file, even though I gave the file execute permissions. I even tried adding #!/bin/sh to the top of the file, to no avail....
If anyone has successfully installed assp with Plesk and has authentication and the plesk automation scripts running like they should, please let me know how you did it.
Right now this machine is processing about 3000 emails a day, 90% of which are spam, so I really need to get ASSP installed and running here.
View 3 Replies
View Related
Sep 1, 2007
Anyone recommend using ASSP Deluxe for cpanel 11 on a shared server or even dedicated?
I couldn't find any reviews, except a couple poor ones on the clone asspx
View 1 Replies
View Related
Mar 25, 2009
I have a Windows 2003 server running Plesk 8.3, Mailenable with Horde IMP webmail client. I have installed Anti-Spam SMTP Proxy (ASSP) [url] on my server to counter SPAM.
I have configured it with the instructions found here - [url]This configuration works perfectly apart from one issue - whenever I try to send emails from my Horde IMP webmail interface, I get an error saying "unable to set sender to [emailaccount at domain]".
If I deactivate ASSP everything works fine.
I believe this is not an issue with ASSP since no one's complaining on ASSP forums. I posted this issue there and someone suggested it had something to do with how Horde IMP tries to send emails. I posted this to Horde's mailing list too but no one ever answered.
View 0 Replies
View Related
Mar 13, 2007
I followed the tutorial provided here for installing ASSP but am running into a small problem with exim failing on my vps. I am using ConfigServers csf and lfd and didn't know if there was more modifications needed for ASSP.
my exim panic log shows this:
2007-03-12 00:19:39 socket bind() to port 125 for address 127.0.0.1 failed:
Address already in use: daemon abandoned
I think that it may have to be my exim.conf or assp.cfg, but both read the same.
Exim.conf
local_interfaces = 127.0.0.1.125
Assp.cfg
smtpDestination:=127.0.0.1:125
View 11 Replies
View Related
Jul 4, 2009
How can i completely uninstall ASSP from my windows 2008 server? i am using plesk with mailenable pro.
View 0 Replies
View Related
Jan 13, 2009
We have been more than 2 years with Liquidweb. Yes, great machine and datacenter. We were using spamassasin as bundled software on cpanel to fight with spammer, but it was not good enough.
1 year ago we decided to install ASSP Deluxe antispam on our dedicated server, bought from grscripts.com. Its powerful software against the spammer which succesfuly isolate them on a separate folder/email. And our clients happy working on emailing activity.
But in the early of 2009, liquidweb has terminated the software as it's not match with their TOS. Its a weird policy since we installed it 1 year ago.
Honestly, we want to keep you (liquidweb) as our valuable datacenter, but we need solution to keep running a business and stay alive on it. Otherwise we have no choice to migrate our dedicated server (consume a lot of time and energy).
View 0 Replies
View Related
Mar 12, 2008
Every week or so, my whitelist in ASSP is getting filled up with @*.de email addresses. Coincidentally, at that same time, I start receiving massive amounts of spam because those addresses are whitelisted.
Has anyone ever had this happen to them? The list of addresses is the same every time it happens, but it really worries me that somehow my whitelist is getting modified without my permission. The assp web interface is disabled (blocked at the firewall) because I update the configuration by just editing the files. SSH access is completely disabled, save for key authentication...So my thoughts are that somehow, an external address is able to modify my whitelist...somehow.
Does anyone have any thoughts or troubleshooting ideas for me?
View 14 Replies
View Related
Sep 10, 2008
I am looking for a VPS provider that can install ASSP instead
of SpamAssassin does anybody know of any?
View 0 Replies
View Related
Jul 21, 2007
I installed ASSP Deluxe for cPanel, but one missing feature/config I like, is only allow messages in English, and disregard all other langauges. No I am not reselling so English is fine. How would I change the ASSP config file to only allow English e-mails?
View 0 Replies
View Related
Jan 29, 2007
What is ASSP? ASSP is an Anti-Spam SMTP Proxy . The homepage can be found here. ASSP is a lightweight daemon that can filter mail based on various things such as SPF, RBLs, Bayesian word lists, as well as blocking email addresses from getting mail, or having mail filtered.
This tutorial will walk you through getting the admin interface for CPanel setup for ASSP. Currently, a paid user interface can be obtained here (note that I am in no way affiliated with, nor have I tried to use this UI, I am just offering the link to those that might find it useful)
Firstly, the setup:
You will need to activate Cpanel PRO (pro.cpanel.net/activate) for your server in order for this to fully work. This activation is currently free. Simply go to the previous mentioned URL and enter your IP address if you have not done so already.
Once you have activated CPanel PRO, go into whm->addon modules and check clamav connector, then click on "save". This will install clamav for you to use
Once you have done THIS, go to whm->service manager and UNcheck spamd (it is no longer necessary with ASSP), and again click on save/submit. Note that this IS optional, however the purpose of ASSP is to defeat spam before it GETS to SpamAssassin.
Once you have done THAT, go into whm -> tweak settings and uncheck SpamAssassin and BoxTrapper mail.
Secondly, the requirements:
ASSP needs certain perl modules established To install these, simply login (as root) to your server, and type the following
Code:
/scripts/perlinstaller --force Compress::Zlib
/scripts/perlinstaller --force Email::Valid
/scripts/perlinstaller --force File::ReadBackwards
/scripts/perlinstaller --force File::Scan::ClamAV
/scripts/perlinstaller --force Mail::SPF::Query
/scripts/realperlinstaller --force Mail::SRS
/scripts/realperlinstaller --force Tie::RDBM
/scripts/realperlinstaller Sys::Syslog
/scripts/perlinstaller --force Net::LDAP
/scripts/perlinstaller --force Time::HiRes
/scripts/perlinstaller --force Tie::DBI
Note that the --force is optional, however it will make sure you've got it installed. Do these one at a time as some of these have configurable options to them.
One more perl module is needed. Since the later versions of Net::DNS are known to cause issues with RBLs, SPFs and the like, it is advised to use 0.57 . This can be obtained by doing the following:
Code:
mkdir /usr/local/assp
cd /usr/local/assp
mkdir /usr/local/assp/tmp
cd /usr/local/assp/tmp
wget [url]
tar xzf Net-DNS-0.57.tar.gz
cd Net-DNS-0.57
perl Makefile.PL
make
make test
make install
Do NOT remove the /usr/local/assp/tmp directory as when you update cpanel, it will try to auto update Net::DNS again, so you will want this intact.
Now, let's get with the program here and install ASSP:
Code:
cd /usr/local/assp
wget [url]
unzip -d /usr/local/assp /usr/local/assp/ASSP_1.2.6-Install.zip
mv --target-directory=/usr/local/assp /usr/local/assp/ASSP/*
mv --target-directory=/usr/local/assp /usr/local/assp/ASSP/.DS_Store
rm -rf /usr/local/assp/__MACOSX
rm -rf /usr/local/assp/ASSP
rm -f ASSP_1.2.6-Install.zip
rm -f Win32-quickstart-guide.txt;rm -f freshclam.bat
cd /usr/local/assp
mkdir pb
cd pb
touch denysmtp.txt
touch exportedextreme.txt
touch pbdb.black.db
touch pbdb.rbl.db
touch pbdb.white.db
cd /usr/local/assp
mkdir /usr/local/assp/notspam
mkdir /usr/local/assp/spam
mkdir /usr/local/assp/errors
mkdir /usr/local/assp/errors/notspam
cd /usr/local/assp
wget [url]
chmod 755 start
wget [url]
chmod 755 stop
cd /etc/rc.d/init.d
wget [url]
chmod 755 assp
The core of ASSP is now installed. However, the development versions have updated functions to use for users. Of course, this is completely optional, but is recommended completely. This can be done by the following in SSH
Code:
cd /usr/local/assp/
mv assp.pl assp.pl_old
mv spamdb spamdb.old
mv rebuildspamdb.pl rebuildspamdb.pl.old
mv repair.pl repair.pl.old
mkdir Data
mkdir Data/Lists
wget [url]
wget [url]
000F4555.2/rebuildspamdb.pl
wget [url]
wget [url]
mv assp.css images
wget [url]
cd Data/Lists
wget [url]
chmod u+x /usr/local/assp/*.pl
Now, let's get it up and running, and configure it, shall we?
Code:
cd /usr/local/assp
/etc/init.d/assp start
You'll see ASSP sending out some messages and then doing nothing. This is ok, and it's the expected response. Now, we need to edit some stuff. Hit ctrl-c (cancel) to shut down ASSP
once it's stopped, you'll see the following file in the assp directory - assp.cfg . Edit that with whatever you want for an editor, something like:
Code:
nano assp.cfg
You want to change a few options immediately just to get it working
Look for the lines that are something like:
Code:
runAsGroup:=
runAsUser:=
and change them to be:
Code:
runAsGroup:=root
runAsUser:=root
Then look for the line that is
Code:
AsADaemon:=
and change it to
Code:
AsADaemon:=1
Now, let's change the password just so that we're secure:
look for the line that is
Code:
webAdminPassword:=nospam4me
and change that to
Code:
webAdminPassword:=insertrandompasswordhere
Now, let's tell ASSP to setup and accept mail for our domains. Look for the line something like
Code:
localDomains:=
and change that to be
Code:
localDomains:=file:/etc/localdomains
Almost there, just a couple more changes needed.
Look for the line that is something like
Code:
smtpDestination:=127.0.0.1:225
and change that to be
Code:
smtpDestination:=127.0.0.1:125
(or another port instead of 125, just REMEMBER the port!)
and one more change
change the line that looks like
Code:
listenPort:=125
to
Code:
listenPort:=25
Now save and exit the file. If you're using nano/pico, that would be ctrl-x , just make SURE to save the file before you exit!
Now, let's get ASSP fired up again
Code:
/etc/init.d/assp start
let's make sure you have assp starting on system boot:
Code:
chkconfig --add assp
Let's add a crontab to make sure that ASSP rebuilds the bayesian spam list
Quote:
crontab -e
Code:
10 4 * * * cd /usr/local/assp;/usr/local/assp/rebuildspamdb.pl
Occasionally, what I've seen is ASSP will get "hung" on certain things and just kill itself. This fix will work for this, and make sure your ASSP installation is running smoothly
Open up another file on the server, my example will be /bin/asspcheck. In this file, add the following contents
Code:
assplog=/usr/local/assp/check.log
DATE=`date "+%m-%d-%y [%k:%M]"`
pidof=/usr/local/assp/pid
thispid=`cat $pidof`
if [ ! -d /proc/$thispid ];then
rm -rf $pidof;
/etc/init.d/assp start
echo "$DATE - ASSP - restarted" >> $assplog
else
echo "$DATE - ASSP - ok" >> $assplog
fi
Now, chmod the file itself
Code:
chmod u+x /bin/asspcheck
Now, make sure it's called every 60 seconds. Add this to your root crontab
Quote:
crontab -e
Code:
* * * * * /bin/asspcheck
Now, let's go BACK into WHM and setup the variables needed to get exim to use ASSP
In exim configuration editor, click on "advanced editor"
Clear out EVERYTHING from all of the existing boxes. Keeping these with data can cause ASSP to not function as it should
When you've done that, add the following to the top box:
Code:
# assp
local_interfaces = 127.0.0.1.125
If you changed this variable to something else
Code:
smtpDestination:=127.0.0.1:125
put in the other port, NOT 125, so it would look like 127.0.0.1.whateverporthere
Click on Save
Exim will restart and you now have a working installation of assp
Now, let's go to it and work with it a bit, shall we?
go to [url], enter the user admin and the password you changed nospam4me to. This will get you logged in and you can tweak the settings as you feel necessary.
ASSP is a great and powerful proxy for any mail server, which blocks using RBLS, whitelists, etc. It is advisable to setup the email interface and let your customers know of this so that you can get them to help you in reporting and addressing spam.
Parts of this howto were taken from this page, however much of that data has been found to be outdated as far as downloads from CVS and the like go, and I've added quite a bit of useful information into it as well.
Go through the ASSP configuration VERY carefully, and ONLY change what you're sure of.
Start with the RBLs, increase the list to 5 and max hits to 2 as suggested.
If you notice problems with this or know how it might be better, hey, feel free to post in here and I'll keep it as updated as possible :)
View 14 Replies
View Related
May 28, 2008
How to install ASSP on linux system without cpanel.
View 2 Replies
View Related
Jun 12, 2007
One of my potential client is getting DDOS occassionally. According to the DCs-PCCW and Singtel, the attacks come from China mainly and the DDOS used up all the available bandwidth.
I have asked many DC in Hong Kong. Most of them said they will only null route their IPs and wait the DDOS gone. It seems that none of the DC in HK offer any sort of Anti-DDOS solution.
My client don't want their site completely offline every time they got attacked. So, could any professional suggest what we can do?
What I am thinking of is:
1. Getting 2 connection from different bandwidth providers
2. Using Geo DNS: [url]
Then, I can separate all China users by forcing them to use 1 connection. Will this work? Is there any potential problem here?
Also, I am also thinking of using BGP. Will that make us partially visible as well?
View 0 Replies
View Related
Mar 8, 2008
Can you recommend any anti DDOS provider that can help My servers are being attacked by low bandwidth, botnet attack.
View 14 Replies
View Related
