| Andrew Cooke | Contents | Latest | RSS | Twitter | Previous | Next

C[omp]ute

Welcome to my blog, which was once a mailing list of the same name and is still generated by mail. Please reply via the "comment" links.

Always interested in offers/projects/new ideas. Eclectic experience in fields like: numerical computing; Python web; Java enterprise; functional languages; GPGPU; SQL databases; etc. Based in Santiago, Chile; telecommute worldwide. CV; email.

Personal Projects

Lepl parser for Python.

Colorless Green.

Photography around Santiago.

SVG experiment.

Professional Portfolio

Calibration of seismometers.

Data access via web services.

Cache rewrite.

Extending OpenSSH.

C-ORM: docs, API.

Last 100 entries

Your diamond is a beaten up mess; Maths Books; Good Bike Route from Providencia / Las Condes to Panul\; Iain Pears (Author of Complex Plots); Plum Jam; Excellent; More Recently; For a moment I forgot StackOverflow sucked; A Few Weeks On...; Chilean Book Recommendations; How To Write Shared Libraries; Jenny Erpenbeck (Author); Dijkstra, Coins, Tables; Python libraries error on OpenSuse; Deserving Trump; And Smugness; McCloskey Economics Trilogy; cmocka - Mocks for C; Concept Creep (Americans); Futhark - OpenCL Language; Moved / Gone; Fan and USB issues; Burgers in Santiago; The Origin of Icosahedral Symmetry in Viruses; autoenum on PyPI; Jars Explains; Tomato Chutney v3; REST; US Elections and Gender: 24 Point Swing; PPPoE on OpenSuse Leap 42.1; SuperMicro X10SDV-TLN4F/F with Opensuse Leap 42.1; Big Data AI Could Be Very Bad Indeed....; Cornering; Postcapitalism (Paul Mason); Black Science Fiction; Git is not a CDN; Mining of Massive Data Sets; Rachel Kaadzi Ghansah; How great republics meet their end; Raspberry, Strawberry and Banana Jam; Interesting Dead Areas of Math; Later Taste; For Sale; Death By Bean; It's Good!; Tomato Chutney v2; Time ATAC MX 2 Pedals - First Impressions; Online Chilean Crafts; Intellectual Variety; Taste + Texture; Time Invariance and Gauge Symmetry; Jodorowsky; Tomato Chutney; Analysis of Support for Trump; Indian SF; TP-Link TL-WR841N DNS TCP Bug; TP-Link TL-WR841N as Wireless Bridge; Sending Email On Time; Maybe run a command; Sterile Neutrinos; Strawberry and Banana Jam; The Best Of All Possible Worlds; Kenzaburo Oe: The Changeling; Peach Jam; Taste Test; Strawberry and Raspberry Jam; flac to mp3 on OpenSuse 42.1; Also, Sebald; Kenzaburo Oe Interview; Otake (Kitani Minoru) move Black 121; Is free speech in British universities under threat?; I am actually good at computers; Was This Mansplaining?; WebFaction / LetsEncrypt / General Disappointment; Sensible Philosophy of Science; George Ellis; Misplaced Intuition and Online Communities; More Reading About Japan; Visibilty / Public Comments / Domestic Violence; Ferias de Santiago; More (Clearly Deliberate); Deleted Obit Post; And then a 50 yo male posts this...; We Have Both Kinds Of Contributors; Free Springer Books; Books on Religion; Books on Linguistics; Palestinan Electronica; Books In Anthropology; Taylor Expansions of Spacetime; Info on Juniper; Efficient Stream Processing; The Moral Character of Crypto; Hearing Aid Info; Small Success With Go!; Re: Quick message - This link is broken; Adding Reverb To The Echo Chamber; Sox Audio Tools; Would This Have Been OK?; Honesty only important economically before institutions develop; Stegangraphy via PS4

© 2006-2015 Andrew Cooke (site) / post authors (content).

Enabling Network Spam Detection on SuSE

From: "andrew cooke" <andrew@...>

Date: Mon, 15 Jan 2007 11:34:02 -0300 (CLST)

I was revising my email processing (which uses procmail to combine a
variety of different checks, including DNS lookup, Vaipul's Razor, and
Spam Assassin) and realised that things could be much simpler - these days
(I've been using my procmail script for years) Spam Assassin can include
all the other sites, including those based on URL lookup (URL in the email
message are checked against a database - more reliable than IP checks
because it more directly identifies the sender).

To enable network based checks on SuSE you need to edit
/etc/sysconfig/spamd to remove "-L":

## Path:           Network/Mail/Spamassassin
## Description:    Arguments for the spam daemon
## Type:           string
## Default:        "-d -c -L"
## ServiceRestart: spamd
#
# The arguments passed to spamd.
# See spamd(1) man page.
# Default is "-d -c -L"
SPAMD_ARGS="-d -c"

And then that .procmail needs now for spam checking is:

:0fw
* < 100000
| spamc

:0
* ^X-Spam-Status: Yes
.Trash.spam-assassin/

And here's a typical spam header after processing - you can see that
various DNS and URL blacklists were used [I've had to edit the URLs with
.xxx in the log below as otherwise this email too is blocked...]:

Content analysis details:   (25.6 points, 5.0 required)

 pts rule name              description
---- ----------------------
--------------------------------------------------
 3.6 RATWARE_RCVD_PF        Bulk email fingerprint (Received PF) found 0.3
SUBJ_BUY               Subject line starts with Buy or Buying 1.3
INFO_TLD               URI: Contains an URL in the INFO top-level domain
-2.6 BAYES_00               BODY: Bayesian spam probability is 0 to 1%
                            [score: 0.0000]
 0.4 HTML_30_40             BODY: Message is 30% to 40% HTML
 0.0 HTML_MESSAGE           BODY: HTML included in message
 1.9 DNS_FROM_RFC_BOGUSMX   RBL: Envelope sender in
                            bogusmx.rfc-ignorant.org
 1.6 RCVD_IN_BL_SPAMCOP_NET RBL: Received via a relay in bl.spamcop.net
             [Blocked - see
<http://www.spamcop.net/bl.shtml?208.104.241.246>]
 1.6 URIBL_SBL              Contains an URL listed in the SBL blocklist
                            [URIs: wranyw.com.xxx moully.cd.xxx]
 3.8 URIBL_AB_SURBL         Contains an URL listed in the AB SURBL blocklist
                            [URIs: wranyw.com.xxx wowmojer.com.xxx
dutyrun.info.xxx] [moully.cd.xxx quiok.hk.xxx]
 4.1 URIBL_JP_SURBL         Contains an URL listed in the JP SURBL blocklist
                            [URIs: wranyw.com.xxx wowmojer.com.xxx
dutyrun.info.xxx] [moully.cd.xxx quiok.hk.xxx]
 2.1 URIBL_WS_SURBL         Contains an URL listed in the WS SURBL blocklist
                            [URIs: moully.cd.xxx]
 3.0 URIBL_OB_SURBL         Contains an URL listed in the OB SURBL blocklist
                            [URIs: wranyw.com.xxx]
 4.5 URIBL_SC_SURBL         Contains an URL listed in the SC SURBL blocklist
                            [URIs: wranyw.com.xxx wowmojer.com.xxx
moully.cd.xxx] [quiok.hk.xxx]

Andrew

Comment on this post