SpamAssassin An Introduction PacNOG I Workshop June 20, 2005 Nadi, Fiji Hervey Allen.

Slides:



Advertisements
Similar presentations
Filtragem Filtragem de com Red Hat Linux Implementações Práticas e Apresentação de Laboratórios Ruben Oliveira RHCE RHCX MCSE MCITP.
Advertisements

Justin Mason, SpamAssassin Project & Deersoft
Methods for Stopping Spam James Lick
----Presented by Di Xu  Introduction  Overview of Spam  Solutions to Spam  Conclusion.
Building Your Own Firewall Chapter 10. Learning Objectives List and define the two categories of firewalls Explain why desktop firewalls are used Explain.
Exchange 2003 and SPAM Fighting Emmanuel Ormancey, Rafal Otto Internet Services Group Department of Information Technology CERN 3 June 2015.
The Apache Web Server  Started in April 1996 as an open source multiplatform web server (Windows, FreeBSD, UNIX, and Linux compatible).  Now the world’s.
Spam Resources How can I help you? William Stearns
Pro Exchange SPAM Filter An Exchange 2000 based spam filtering solution.
Kaspersky Open Space Security: Release 2 World-class security solution for your business.
Empirical Analysis of Denial of Service Attack Against SMTP Servers Boldizsár BENCSÁTH, Laboratory of Cryptography and System Security (CrySyS) Budapest.
Fighting Spam Enterprise Spam Filtering Using Open Source Tools.
23 October 2002Emmanuel Ormancey1 Spam Filtering at CERN Emmanuel Ormancey - 23 October 2002.
Spam Reduction Techniques Using greylisting and SpamAssassin.
Network Perimeter Security Yu Wang. Main Topics Border Router Firewall IPS/IDS VLAN SPAM AAA Q/A.
CT NIKHEF Nov Mail NIKHEF CT system support.
September 16, 2009 SpamAssassin Way more than the Mac OS X Server GUI shows Presented by: Kevin A. McGrail Project Management Committee Member of the Apache.
The World's Most Secured Browsing Solution COCKPIT4i is a radically new, powerful solution that protects against the security risks posed by exposure to.
Filtering with Open Source Software OLUG – June 7, 2005.
May 23, Filtering s for Viruses and Spam at DESY Wolfgang Friebel.
Update Unix Users Feb 2006 Kevin Hill. Update Spam Cop (We’ve been busted!) Greylisting- Next Generation Spam Fighting.
Stop Spam by using SpamAssassin and Procmail ! Mark Kushinsky – MDS Computer Solutions
Antispam GARR Michele Michelotto Hepix Karlsruhe, 11 May 2005.
Information Technology Services 1 Copyright Copyright Marc Wallman and Theresa Semmens, This work is the intellectual property of the authors. Permission.
11 SECURING INTERNET MESSAGING Chapter 9. Chapter 9: SECURING INTERNET MESSAGING2 CHAPTER OBJECTIVES  Explain basic concepts of Internet messaging. 
Packet Filtering. 2 Objectives Describe packets and packet filtering Explain the approaches to packet filtering Recommend specific filtering rules.
Mail Server Three major components MTA MUA MDA Mail Transfer Agent
Mail Services.
The Linux Operating System Lecture 7: Tonga Institute of Higher Education.
IST346 – Servies Agenda  What is ?  Policies  The technical side of  Components  Protocols  architecture  Security.
CSIE 1 Filtering mail Speaker: Chung yu Wu Adviser: Quincy Wu Date: 2005/12/07.
Chapter 6: Packet Filtering
ISQS server attacks Presented by Deven Patel.
© Toronto Area Security Klatch 2007 A drop-in anti-spam solution A 15 minute speed talk by Paul Wouters.
Pg 1 Information Technology Overview. Pg 2 Infrastructure Current website code is the result of 4+ years of accumulated band-aids, hurried projects, and.
Introduction to Internet Mail Abridged & Updated by Hervey Allen Noah Sematimba Based on Materials by Philip Hazel.
Mail Service Mail Service using Postfix Campus-Booster ID : **XXXXX
1 SCOoffice Server for OpenServer Technical Overview.
Filtering spam at the ISP Patrick J Okui Ayitey Bulley (Liberal Borrowing from Brian Candler)
ClamAV An Introduction PacNOG I Workshop June 21, 2005 Nadi, Fiji Hervey Allen.
PacNOG 6: Nadi, Fiji UNIX ™ /Linux Overview Hervey Allen Network Startup Resource Center.
1 Electronic Messaging Module - Electronic Messaging ♦ Overview Electronic messaging helps you exchange messages with other computer users anywhere in.
Filtering Mail with Mail::Audit and Mail::SpamAssassin Creede Lambard penguinsinthenight.com 20 August 2002.
Anti-Spam Tagging Al Lilianstrom. Spam Tagging The Computing Division is testing a Spam Tagging solution Based on SpamAssassin All incoming mail to the.
SpamAssassin Filter Rodney Weakly April 26, 2006.
1 Adding Secure and Collaboration to Your Business with SCOoffice Server 4.1.
Spam Solutions Group 7 Leo Leung Peter Gorzkowski Seema Yadav Tobby Mathew You’ve Got Mail!
Update on  Mail Gateways  Servers  Spam Tagging  Anti-Virus  IMAP  Web Mail  LISTSERV  POP.
Countermeasures of Spam over Internet Telephony in SIP.edu Campuses with MySQL and LDAP Support Speaker: Chang-Yu Wu Adviser: Dr. Quincy Wu School: National.
E- SAFETY GROUP MEMBERS:  MALINI A/P KUMAR  PREMA A/P PARAMASIVAN.
Spam from an ISP perspective Simon Lyall, Ihug Uniforum NZ NetForum Conference July 2003.
Silicon & Software Systems (S3)‏ Copyright © Silicon & Software Systems Limited Antispam protection IT Department 20/03/2008 Ondrej Valousek.
1 COP 4343 Unix System Administration Unit 14: – send and receive mail – mail filtering – mail server – mailing lists.
Source pictures for document ”Thoughts about increasing spam annoyance” by License: This material may be distributed only subject.
LinxChix And Exim. Mail agents MUA = Mail User Agent Interacts directly with the end user  Pine, MH, Elm, mutt, mail, Eudora, Marcel, Mailstrom,
Homework 04 Hint Mail System. Computer Center, CS, NCTU 2 Software  Postfix mail/postfix  POP/IMAP mail/dovecot  MTA filter security/amavisd-new 
1 Hosted security and continuity. 2 GFI MAX MailProtection overview GFI MAX MailProtection is a cloud-based security solution » Inbound .
SMTP Tapu Ahmed Jeremy Nunn. Basics Responsible for electronic mail delivery. Responsible for electronic mail delivery. Simple ASCII protocol that runs.
Apache Web Server Architecture Chaitanya Kulkarni MSCS rd April /23/20081Apache Web Server Architecture.
Linux Operations and Administration Chapter Twelve Configuring a Mail Server.
PINE. What is PINE? PINE is a light weight yet very powerful open source console based client developed by the University of Washington. It has.
554 Access Denied Fermilab’s Experiences with Spamcop.net Kevin Hill Ray Pasetes Jack Schmidt.
[1] Control Spam by the Use of Greylisting Torgny Hallenmark LDC - Computing Center Lund University, Sweden TERENA Networking.
FNAL Central Systems Jack Schmidt, Al Lilianstrom, Ray Pasetes, and Kevin Hill (Fermi National Accelerator Laboratory) Introduction The FNAL .
Spamfilter Relay Mailserver Mark McSweeney CentraLUG, February 1, 2010.
28th March 2003 SPAM Presenter: Matthew Sullivan.
SUBMITTED BY: NAIMISHYA ATRI(7TH SEM) IT BRANCH
IS3440 Linux Security Unit 9 Linux System Logging and Monitoring
has many aspects that work together to give people almost instant communication from any computer on the internet to any other computer There.
Spam Fighting at CERN 12 January 2019 Emmanuel Ormancey.
Presentation transcript:

SpamAssassin An Introduction PacNOG I Workshop June 20, 2005 Nadi, Fiji Hervey Allen

What is it? From SpamAssassin is an Apache Software Foundation project and is released under the Apache License....[it] is a mail filter to identify spam. It is an intelligent filter which uses a diverse range of tests to identify unsolicited bulk , more commonly known as Spam. These tests are applied to headers and content to classify using advanced statistical methods. In addition, SpamAssassin has a modular architecture that allows other technologies to be quickly wielded against spam and is designed for easy integration into virtually any system.

What is it...Our description? From Philip Hazel (Author of Exim): SpamAssassin is a content-based filtering system. It is written in Perl, and is very CPU-intensive. SpamAssassin can perform a number of network- based lookup checks that can take a long time to complete. It may therefore not be suitable for high- volume mail systems. The configuration is complex, though a basic installation using the ports system is straighforward.

How can I use it? ● Integrated with DNS Blocklists ● Using checksum/digest based systems ● Integrated with an MTA (exim, sendmail, qmail, postfix, etc.) ● Single user installs under Unix ● With Procmail ● As a proxy server ● Against remote IMAP folders ● Integrated in commercial products

Where does it fit? Generally speaking you should filter incoming mail to a server like this: – Blacklists – Whitelists – Content-based solution (like SpamAssassin) Then decide how you wish to integrate SpamAssassin in to your MTA. Using Exim there are several ways...

Where does it fit into Exim? 1.As of Exim 4.50, by compiling Exim using WITH_CONTENT_SCAN=yes. As an Exim 4.4x Exiscan-extended ACL condition stack, Exim can reject spam after reading the body, but before Exim acknowledges acceptance of the . 2.As an Exim 4.x loadable module or local_scan.c replacement. SA-Exim also allows SpamAssassin to reject spam before its accepted by your MTA. 3.As an Exim transport. From

With Exim we won't use... These integrated SpamAssassin features: ● DCC ● Pyzor ● Razor ● RBL checks ● Bayesian analysis But, you can use them if you wish, or if they work for your situation.

Why not use...? ● DCC: Distruted Checksum Clearinghouses – ● Razor: Vipul's Razor Version 2 – ● Pyzor – All are separate modules that must be installed to work with SpamAssassin. You should investigate and decide for yourself.

Why not use (2)...? ● Realtime Blacklist Checks (RBL) ● Bayesian logic checking system Exim can already do RBL mail filtering for us as part of its basic configuration. You can turn on Bayesian logic checking, but this is CPU-intensive. On a heavily loaded system this may cause problems. Test for yourself.

More resources ● SpamAssassin Configuration Generator (version 2.5): – ● Using SpamAssassin: – ● SpamAssassin AutoWhitelist explained: –