So now that earth day is over, where to start. Spamassassin update, we are seeing a ton of emails with URL’s that end in .exe such as
http://stalmix02.nazwa.pl/video.exe
So this one isn’t a tough one and I don’t know who wrote this originally but here is the rule to catch this:
uri EXE_FILE /w.exe/i
score EXE_FILE 10.0
describe EXE_FILE Potential link to executable
I’ve also had a ton of backscatter hitting the servers. I was also having trouble getting it to go away, not even sure it is gone yet. These are the things I’ve done. Of course I recommend running the latest and greatest Spamassassin currently 3.2.4. First edit your v320.pre should be located in /etc/mail/spamassassin and make sure this is on:
# VBounce – anti-bounce-message rules, see rules/20_vbounce.cf # loadplugin Mail::SpamAssassin::Plugin::VBounce
Then in your local.cf again located in /etc/mail/spamassassin and place:
whitelist_bounce_relays yourdomain.com
So I hope you had a great Earth Day, I know I did. I made my contributions today. Last night I had 15 Bean Soup and tonight I had bean burrito’s. Sometimes I contribute silently and then sometimes the world knows of my contributions.
spring