Solved

Spamassassin spamd basic configuration

Posted on 2004-08-02
3
829 Views
Last Modified: 2008-02-01
I am running suse openexchange which uses spamassassin spamd version 2.6.3.
spamd is started with the options '-d -c -a -L -u nobody'.

spamassassic configuration file contains :-
# rewrite the Subject: line with ****SPAM**** .* if set to 1 (default=1)
rewrite_subject 0
# report briefly, recommended for report_header==1 (default=0)
use_terse_report 1

Currently spamassassin is only detecting about 30% of spam which is quite poor.
Openexchange does have some strange defaults in some places and I am questioning the use of the '-L' parameter which disables network based checks.
I have looked in /usr/share/smapassassin at the 20_dnsbl_tests.cf and 50_scores.cf files.
1) Spamassassin checks some RBL lists and the -L parameter will effectivly disable this?
2) I would imaging that enabling these checks will make quite a significant difference?

We have an 1024/256 ADSL line and get approx 1500 emails a day (just over 1 per minute).
The mail server runs its own DNS with no forwarders defined.
3) Will there be a lot of additional load on the ADSL with these additinal checks which I believe are normally DNS based?
0
Comment
Question by:grblades
  • 2
3 Comments
 
LVL 20

Accepted Solution

by:
Gns earned 250 total points
ID: 11692235
1) not too sure, but it might be that amavisd-new is supposed to do some RBL lookups, in which case it'd be slightly "wasteful" to do them again in spamassassin.
2) Not necessarily... It ups the chance that spam will be detected, yes... But for me the real "clincher" has been the addition of DCC, Pyzor and Razor in addition to spamassassin (and some whitelisting:-)... Not sure how to enable these for amavisd-new though.
3) Well, extra RBL checks would (as you assume) mean some added load... But not that much really. Razor, Pyzor and DCC are even less, so these I'd really recommend... Let's see if I can find some links... http://razor.sf.net is Razor, http://pyzor.sf.net is Pyzor and http://www.rhyolite.com/anti-spam/dcc/ is DCC...

-- Glenn
0
 
LVL 36

Author Comment

by:grblades
ID: 11692467
Thanks. I have the spam filtering in amavis turned off as I am using the existing postgres configuration to send the emails onto spamd after they have been virus checked.

I'll have a look at Razor, Pyzor and DCC
0
 
LVL 36

Author Comment

by:grblades
ID: 11818929
Gns,
I have another question you should be able to answer.
http://www.experts-exchange.com/Operating_Systems/Linux/Q_21096391.html
Thanks
Gareth
0

Featured Post

Why You Should Analyze Threat Actor TTPs

After years of analyzing threat actor behavior, it’s become clear that at any given time there are specific tactics, techniques, and procedures (TTPs) that are particularly prevalent. By analyzing and understanding these TTPs, you can dramatically enhance your security program.

Join & Write a Comment

Currently, there is not an RPM package available under the RHEL/Fedora/CentOS distributions that gives you a quick and easy way to allow PHP to interface with Oracle. As a result, I have included a set of instructions on how to do this with minimal …
Linux users are sometimes dumbfounded by the severe lack of documentation on a topic. Sometimes, the documentation is copious, but other times, you end up with some obscure "it varies depending on your distribution" over and over when searching for …
Learn how to find files with the shell using the find and locate commands. Use locate to find a needle in a haystack.: With locate, check if the file still exists.: Use find to get the actual location of the file.:
Get a first impression of how PRTG looks and learn how it works.   This video is a short introduction to PRTG, as an initial overview or as a quick start for new PRTG users.

747 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

11 Experts available now in Live!

Get 1:1 Help Now