I'm trying to come up to speed with spamassassin, so apologies if
I ask some ignorant questions. I've checked the FAQ and haven't
found what I'm looking for.
The situation is that we have spamassassin installed here site-wide.
The problem is that a *lot* of spam gets through, scored fairly
lowly. Is this a common problem? Probably 50% of what appears to
the eye as obvious spam gets scored in the 0.4 to 4.9 range. We
had some that scored around -4.x because it had Habeas headers in
it that apparently were not detected as fake.
Is this (missing a lot of spam) a common occurence? Our site config is:
rewrite_subject 0
report_safe 0
skip_rbl_checks 1
use_razor2 0
use_bayes 1
bayes_path /opt/spamassassin/db/bayesdb
bayes_file_mode 666
bayes_auto_learn 1
use_pyzor 0
dns_available test: skuld.ucsd.edu noc.ucsd.edu ucsd.ucsd.edu
use_dcc 0
allow_user_rules 0
So we're using default scoring for almost everything, and would
rather stay with the defaults as much as possible rather than start
hacking at scoring to artificially inflate the scores.
For the most part, bayes is not a factor (I'm hand-running messages
with the -D flag to try to see what's going on).
Any pointers on what else to check?
Thanks much!
-glenn
I ask some ignorant questions. I've checked the FAQ and haven't
found what I'm looking for.
The situation is that we have spamassassin installed here site-wide.
The problem is that a *lot* of spam gets through, scored fairly
lowly. Is this a common problem? Probably 50% of what appears to
the eye as obvious spam gets scored in the 0.4 to 4.9 range. We
had some that scored around -4.x because it had Habeas headers in
it that apparently were not detected as fake.
Is this (missing a lot of spam) a common occurence? Our site config is:
rewrite_subject 0
report_safe 0
skip_rbl_checks 1
use_razor2 0
use_bayes 1
bayes_path /opt/spamassassin/db/bayesdb
bayes_file_mode 666
bayes_auto_learn 1
use_pyzor 0
dns_available test: skuld.ucsd.edu noc.ucsd.edu ucsd.ucsd.edu
use_dcc 0
allow_user_rules 0
So we're using default scoring for almost everything, and would
rather stay with the defaults as much as possible rather than start
hacking at scoring to artificially inflate the scores.
For the most part, bayes is not a factor (I'm hand-running messages
with the -D flag to try to see what's going on).
Any pointers on what else to check?
Thanks much!
-glenn