ASSP Is Getting Filled Up With @*.de Email Addresses
Mar 12, 2008
Every week or so, my whitelist in ASSP is getting filled up with @*.de email addresses. Coincidentally, at that same time, I start receiving massive amounts of spam because those addresses are whitelisted.
Has anyone ever had this happen to them? The list of addresses is the same every time it happens, but it really worries me that somehow my whitelist is getting modified without my permission. The assp web interface is disabled (blocked at the firewall) because I update the configuration by just editing the files. SSH access is completely disabled, save for key authentication...So my thoughts are that somehow, an external address is able to modify my whitelist...somehow.
Does anyone have any thoughts or troubleshooting ideas for me?
On one my servers, I'm receiving hundreds of spam emails that are clogging up the email queue to email addresses that do not exist.
For instance domain.com, I would get
bob@domain.com liz@domain.com 325235@domain.com
You get the picture. How do I setup my server so that if there isn't an email address setup the email automatically gets deleted instead of trying to attempt to deliver it?
There have been no changes made to any sites on my server for which I can pinpoint to be the cause of this problem...
Basically, I received notice that my TMP folder was full at 100%... so a look into what the heck was taking up all the space reveals several weird .MYI and .MYD files for which I have no idea about.
I cannot open them or view any of their contents. I cannot even edit them.
Does anyone have any information about what these are or why they are in my TMP folder?
I have a catchall for a domain that has been used for years, e.g. vendor1@mydomain.com, vendor2@mydomain.com. Unfortunately, thanks to the fact that maiming spammers is still against the law, I have to live with the fact that the world can no longer have catchall accounts with any usability. One particular jackass is using my domain to spoof numerous idiotic emails. He uses some combo of bulltek*****@mydomain.com. While I am transitioning all of my emails to either 1 account or forward individually each vendor account, how can I bounce emails using that set above?
I'm also looking for something better than spam assassin to prevent email and which will provide more options and a better interface.
Of note, this method of vendor@domain.com worked well because I was able to identify vendors who sold my email address to spam me...
I had a thread about this several years ago here but it petered out without a satisfactory resolution and when I tried to restart it the Sitepoint bot suggested I start a new thread . . .
Briefly, I'm into lots of stuff - software, art, poetry, business, etc, so I want to have different email addresses for each activity but I want them all to go to the same inbox so I don't have to log into n different accounts to check my email.
My website is hosted by HostMySite but their webmail offering ("Smartermail") is lame. I don't have the option of installing a different email client (at least not for what I'm paying) but I DO have the option of routing my email to a different provider while retaining my @pnArt.com email address.
Aliases don't solve this because if someone sends email to an alias, e.g., myalias@pnart.com it goes to my root account inbox, say, myroot@pnart.com so when I hit "reply" the recipient sees the mail coming from myroot@pnart.com, not myalias@pnart.com. Furthermore, if HE replies it goes to the global "reply-to" address which is a THIRD address because I don't want the root address in general circulation, to minimize spam to my root email.
I'm getting complaints from clients and customers about this because they're not sure which email address they're expected to use.. Is there any third-party email provider that lets me have multiple aliases or identities that I can process from ONE inbox, but where the alias or identity is applied in a consistent way so my clients see just ONE email address from me?
I am managing a newsletter list and would like to remove the email addresses of messages that have failed or bounced.
I have been sending my newsletter with inhouse software that bundles email in the bcc field. As a result each bounced email lists multiple bounced emails in the body of the returned email.
I have found software that can automatically go through an inbox and make a list of all the bounces however this only works when the bounced emails show up in the email field.
Is there any way that I can retrieve a list of bounced email addresses without manually opening each email and getting the address?
Sometime before users of my site were receiving mails properly but now they are complaining they are not receiving it. They have their own domains email addresses.
I confirmed with my personal Yahoo, Gmail and Hotmail addresses but I am receiving it well.
How can I confirm that the problem is with their mail servers not with mine?
I'm trying to see if it's possible to have 2 email addresses on the same domain (e.g. email1@domain.com and email2@domain.com) but are handled by 2 different email servers (e.g. mail.domain1.com and mail.domain2.com)?
To put it into context, I have a domain hosted on my dedicated server and a couple of email accounts set up on it. I also have another mail account set up on a different server but with the same domain. I was wondering if maybe something could be done with the DNS to allow the 'external' mail account to be handled by the other server?
test ------=_NextPart_000_004B_01C7FECF.9D5CF9B0 Content-Type: text/html; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN"> <HTML><HEAD> <META http-equiv=3DContent-Type content=3D"text/html; = charset=3Diso-8859-1"> <META content=3D"MSHTML 6.00.6000.16525" name=3DGENERATOR> <STYLE></STYLE> </HEAD> <BODY bgColor=3D#ffffff> <DIV><FONT face=3DArial size=3D2>test</FONT></DIV></BODY></HTML>
------=_NextPart_000_004B_01C7FECF.9D5CF9B0-- I can receive just fine, I think I was replying to the email, but sending a new email gets the same error. Here are the email headers:
Code: Return-path: <> Envelope-to: curt@precision-media.net Delivery-date: Mon, 24 Sep 2007 17:30:43 -0700 Received: from mailnull by server.precision-media.net with local (Exim 4.68) id 1IZyK3-0001rA-94 for curt@precision-media.net; Mon, 24 Sep 2007 17:30:43 -0700 X-Failed-Recipients: sasgdafsdfasd@sbcglobal.net Auto-Submitted: auto-replied From: Mail Delivery System <Mailer-Daemon@server.precision-media.net> To: curt@precision-media.net Subject: Mail delivery failed: returning message to sender Message-Id: <E1IZyK3-0001rA-94@server.precision-media.net> Date: Mon, 24 Sep 2007 17:30:43 -0700 X-Antivirus: avast! (VPS 000776-1, 09/24/2007), Inbound message X-Antivirus-Status: Clean
I have two sites that register a high amount to SMTP traffic. Both sited have only forwarding email addresses.
Do forwarding addresses accumulate SMTP traffic on the log?
Also, if a forwarding email is created without a mailbox is it necessary to add a password so that "others" cannot use the blank SMTP server to send email out?
I tried to understand ASSP by searching in your documentation but nowhere it mentions that when we use a mail client programs. For example:
I install ASSP correctly. I start it. Actually, our spam database is empty. From my understanding, ASSP still let spams and non spams e-mails go through to build its database.
My question is:
Is there a way to know our first 400 or 1000 e-mails are spams in despite to categorize them properly?
How to categorize them on our server when we use Kmail or Outlook to download e-mails from the server?
If I create two folders: spam and nonspam in Outlook or Kmail and move the e-mails to the prosper folders, will it be synchronized with the server automatically?
My host seem to like interfering with spam setting on the server. They had spamassasin installed which works perfectly and i haven't been getting any spam when i enable the software.
All of a sudden all my subscription and a lot of email is rejected and now perfectly legit email is marked as spam.
I fail to understand why use software that reject normal mail.
I have been running ASSP for a long time on a Fedora/Postfix box without a single problem. Recently, however, I have acquired a CentOS/Plesk/Qmail machine and I am having a terrible time getting ASSP to play nicely with qmail.
I am attempting to follow the directions on the assp wiki regarding plesk. I changed qmail to listen on 125 instead of 25 by editing /etc/services. I then restarted everything but it then appeared that mail was going through without authentication. I was successfully able to send mail from an internal address to an external one without a problem, but I think I was able to do so without authenticating myself.
However, when attempting to send mail from an outside address to an internal one, I get a relay denied error message. Obviously ASSP isn't aware of the addresses I have set up on the system.
Also - I attempted to manually run the sh scripts downloaded from the wiki entry, but I kept getting the error message that I couldn't execute binary file, even though I gave the file execute permissions. I even tried adding #!/bin/sh to the top of the file, to no avail....
If anyone has successfully installed assp with Plesk and has authentication and the plesk automation scripts running like they should, please let me know how you did it.
Right now this machine is processing about 3000 emails a day, 90% of which are spam, so I really need to get ASSP installed and running here.
I have a Windows 2003 server running Plesk 8.3, Mailenable with Horde IMP webmail client. I have installed Anti-Spam SMTP Proxy (ASSP) [url] on my server to counter SPAM.
I have configured it with the instructions found here - [url]This configuration works perfectly apart from one issue - whenever I try to send emails from my Horde IMP webmail interface, I get an error saying "unable to set sender to [emailaccount at domain]".
If I deactivate ASSP everything works fine.
I believe this is not an issue with ASSP since no one's complaining on ASSP forums. I posted this issue there and someone suggested it had something to do with how Horde IMP tries to send emails. I posted this to Horde's mailing list too but no one ever answered.
I am interested in ASSP as a anti-spam tool and have heard good things, but I have 1 question I can't seem to find an answer too.
With ASSP is there a way to screen image spam like you can with FuzzyOCR? With ASSP do you even need to scan images at all? Because it waits for the sending server to respond for authentication?
I was running MailScanner / SpamAssasin / FuzzyOCR combo with a couple of chron jobs (to sweep fake bounce email out of the mail que for example) with very effective results, but it took forever to tweak all three to reduce server load. MailScanner was breaking webmail randomly so I have it disabled currently so I get a lot more spam.
I followed the tutorial provided here for installing ASSP but am running into a small problem with exim failing on my vps. I am using ConfigServers csf and lfd and didn't know if there was more modifications needed for ASSP.
my exim panic log shows this:
2007-03-12 00:19:39 socket bind() to port 125 for address 127.0.0.1 failed: Address already in use: daemon abandoned
I think that it may have to be my exim.conf or assp.cfg, but both read the same.
