Re: [AMaViS-user] how to retrieve a false positive spam

This is a discussion on Re: [AMaViS-user] how to retrieve a false positive spam within the Amavis User forums, part of the Anti-Spam and Anti-Virus Related Forums category; At 05:18 PM 1/29/2007, Troy Piggins wrote: >[ Top-posting corrected ] >* Paul Barbeau is quoted & ...


Go Back   Usenet Forums > Anti-Spam and Anti-Virus Related Forums > Amavis User

Reload this Page Re: [AMaViS-user] how to retrieve a false positive spam

FAQ Members List Calendar Search Today's Posts Mark Forums Read

Reply

 

LinkBack Thread Tools Display Modes
  #1 (permalink)  
Old 01-29-2007
Noel Jones
 
Posts: n/a
Default Re: [AMaViS-user] how to retrieve a false positive spam
At 05:18 PM 1/29/2007, Troy Piggins wrote:
>[ Top-posting corrected ]
>* Paul Barbeau is quoted & my replies are inline below :
> >
> >> I have a message that was falsely detected as spam[1]. I have
> >> found the gzipped file in /var/virusmails/spam-xxxx.gz.
> >>
> >> Is there a simple way to retrieve it or pass it on to the
> >> intended recipient, or do I just have to manually process it?
> >>
> >> I gunzipped it and tried to read it with mutt, but it does not
> >> appear to be a legitimate email format. How do I make it so?
> >>
> >> [1] It was given a score of 8, but was legitimate mail! Not the
> >> fault of amavis or spamassassin - the mail was extremely poorly
> >> formed and included many spam-like words.
> >
> > What I do to release messages is the following (well something like it).
> >
> > zcat /var/virusmails/spam-xxxx.gz | sendmail troy@piggo.com
>
>Thanks. I just tried that, but that message got detected as spam
>again. I have pretty much a default amavis setup, so guess I'll
>need to add someone to the whitelist :) Now more reading to see
>how to do that.

It was detected as spam again because you have configured locally
submitted mail to be scanned. (that's a common enough configuration,
not necessarily an error).

Rather than using sendmail, use a minimal smtp client. I like mini_sendmail.

zcat /path/to/file | mini_sendmail -p 10025 recipient@example.com

Some notes:
- If the mail is multi-recipient, all the recipients will be listed
in X-Envelope-To: headers in the quarantine file. You might want to
clean those up before releasing the mail to protect BCC: privacy.
- The above assumes postfix is listening on port 10025, which is the
common setup.
- It's probably easier to use amavisd-release, which does the cleanup for you.

--
Noel Jones


-------------------------------------------------------------------------
Take Surveys. Earn Cash. Influence the Future of IT
Join SourceForge.net's Techsay panel and you'll get the chance to share your
opinions on IT & business topics through brief surveys - and earn cash
http://www.techsay.com/default.php?p...rge&CID=DEVDEV
_______________________________________________
AMaViS-user mailing list
AMaViS-user@lists.sourceforge.net
https://lists.sourceforge.net/lists/...fo/amavis-user
AMaViS-FAQ:http://www.amavis.org/amavis-faq.php3
AMaViS-HowTos:http://www.amavis.org/howto/
Reply With Quote
Reply

« Previous Thread | Next Thread »

Thread Tools
Display Modes
Linear Mode Linear Mode

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
vB code is On
Smilies are Off
[IMG] code is Off
HTML code is Off
Trackbacks are On
Pingbacks are On
Refbacks are On



All times are GMT +1. The time now is 11:39 AM.

Contact Us - Usenet Forums - Archive - Top

Powered by vBulletin® Version 3.6.8
Copyright ©2000 - 2008, Jelsoft Enterprises Ltd.
Content Relevant URLs by vBSEO 3.0.0