Tag Archives: linux

.exe in url and Earth day ends!

Posted on April 23, 2008 by
No comments

So now that earth day is over, where to start. Spamassassin update, we are seeing a ton of emails with URL’s that end in .exe such as

http://stalmix02.nazwa.pl/video.exe

So this one isn’t a tough one and I don’t know who wrote this originally but here is the rule to catch this:

uri EXE_FILE /\w\.exe/i
score EXE_FILE 10.0
describe EXE_FILE Potential link to executable

I’ve also had a ton of backscatter hitting the servers. I was also having trouble getting it to go away, not even sure it is gone yet. These are the things I’ve done. Of course I recommend running the latest and greatest Spamassassin currently 3.2.4. First edit your v320.pre should be located in /etc/mail/spamassassin and make sure this is on:

# VBounce – anti-bounce-message rules, see rules/20_vbounce.cf # loadplugin Mail::SpamAssassin::Plugin::VBounce

Then in your local.cf again located in /etc/mail/spamassassin and place:

whitelist_bounce_relays yourdomain.com

So I hope you had a great Earth Day, I know I did. I made my contributions today. Last night I had 15 Bean Soup and tonight I had bean burrito’s. Sometimes I contribute silently and then sometimes the world knows of my contributions.

Technorati Tags: ,,,
Categories: Nerdology | Tags: email, linux, spam, Work

Linux Ad worth Watching

Posted on April 20, 2008 by
No comments

This is great, I love it! Now when will we see this on TV? Oh wait never… that is when.

Categories: Commentary, Nerdology | Tags: humor, linux

Announcing Birmingham Pulse – A "MicroPlanet" for Twitters in the Ham!

Posted on April 13, 2008 by
No comments

This is an aggregator for Birmingham Alabama Twitter users. With this you can keep up with what others in Birmingham are doing. You can also see all the other Birmingham Area Twitter out there. Think of it as a stream of consciousness.

Birmingham Pulse

I must give props to Justin Mason and Venus. I have used Justin’s implementation.

How to use it:

Add yourself: if you’re a Twitter user in the ham, follow bhampulse. This will add you to the sources list.

Publicize it: feel free to pass on the URL to other Birmingham Alabama users, and blog about it.

Read it: bookmark and take a look now and again!

Technorati Tags: ,,
Categories: Alabama | Tags: bhampulse, computer, linux

PC World – Linux Communications Suite Enters Beta

Posted on March 11, 2008 by
No comments

PC World – Linux Communications Suite Enters Beta

I can speak from experience here. We tried an alternative to Exchange. We searched and searched, we tried several and finally we found the one we thought would be it. We deployed it to several clients and all hell broke loose. First every couple of days there was an update. This required us to go on site and install and addon to outlook. Then the server would not work or would randomly disconnect. We purchased support from this company only to get the run around, another patch, or no answer at all. At one time Adobe wouldn’t work inside of outlook for a client that had the “addon” installed. No response, for 9 months. Then they got sold…

We are now selling hosted exchange, and I can say it works exactly how I would have expected. More important there is support and the clients are familiar with it.

Vista, and Mac support still not available in the other.

Categories: Nerdology | Tags: email, linux

Spamassassin & DNSBL

Posted on March 10, 2008 by
No comments

So here’s my idea. I’m sure others or someone has done it or something close. What I’m thinking is using Spamassassin when something scores over 50 go ahead and take the IP of the sending server and pass it to a database.  Then use this database to update a local DNSBL. This would be a cron job that would pull the database and create the records. I would also put a “expire” time that it would expire the entry. Then use the DNSBL at the front end of the smtp connection and block connections based on this. This can easily be done with qmail and postfix.

Would want to block with a url pointing the user to a way of requesting a removal of the block and information on the block. Also have a web front end so someone could make a block either permanent, whitelist, or remove it.

Why a score of 50+ on spamassassin, thats easy. Currently my 10 systems that are scanning if they score over 25 I am 100% sure it is spam. So just to be truly safe at 50 no doubt about it.

With 10 systems scanning 100′s of thousands of messages a day this would take a large amount of load and processing time from the spam scanning servers.

Categories: Nerdology | Tags: email, linux, spam
Previous Entries
Next Entries