Connect. Communicate. Collaborate. Securely.

Home » Kerio User Forums » Kerio Connect » Yahoo messages blocked (increase in blocked yahoo)
  •  
Jason1234

Messages: 8
Karma: 1
Send a private message to this user
I am having a big increase in messages sent from yahoo being blocked. These are legitimate messages and they are often replies. Example headers at bottom.

The two big scores are forged mozilla mua see bug here:
https://bz.apache.org/SpamAssassin/show_bug.cgi?id=7411

and the forged yahoo recvd bug here:
http://spamassassin.1065346.n5.nabble.com/Bug-5561-FORGED-YA HOO-RCVD-false-positive-td133587.html

My question is how long before Kerio fixes the issue in their product and what are we to do in the meantime?




X-Spam-Status: Yes, hits=6.0 required=3.9
tests=AWL: -0.238, BAYES_50: 1.567, FORGED_MUA_MOZILLA: 2.309,
FORGED_YAHOO_RCVD: 1.63, HTML_MESSAGE: 0.001, NO_RDNS_DOTCOM_HELO: 0.823,
TOTAL_SCORE: 6.092,autolearn=no
X-Spam-Flag: YES
X-Spam-Level: ******
Received: from sonic327-24.consmr.mail.bf2.yahoo.com ([74.6.131.150])
by KMS.mwsco.com with ESMTPS
(using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256 bits))
for <email address removed>;
Wed, 7 Jun 2017 10:59:13 -0500
Received: from sonic.gate.mail.ne1.yahoo.com by sonic327.consmr.mail.bf2.yahoo.com with HTTP; Wed, 7 Jun 2017 15:58:53 +0000
MIME-Version: 1.0
Content-Type: multipart/alternative;
boundary="----=_Part_3743600_1342773726.1496851132544"
X-Mailer: WebService/1.1.9778 YMailNorrin Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.36
Content-Length: 3045




[Updated on: Wed, 07 June 2017 18:15]

  •  
jonelli

Messages: 35
Karma: 0
Send a private message to this user
What is the status on this? Is it a BitDefender issue?
  •  
freakinvibe

Messages: 1524
Karma: 60
Send a private message to this user
This is a Spamassassin issue, not a Bit Defender issue.

Kerio only rarely updates the Spamassissin rules. I would do the following (until this is fixed by Kerio:

Set the score for the 2 rules to 0.00.

In the spamassissin / rules directory, open the file

local.cf

Search for the rule names. Overwrite the scores with 0


score FORGED_YAHOO_RCVD 0
score FORGED_MUA_MOZILLA 0

Restart the mailserver service.



Dexion AG - The Blackberry Specialists in Switzerland
https://dexionag.ch
  •  
Jason1234

Messages: 8
Karma: 1
Send a private message to this user
I did open a case with Kerio. They expect to update in the new release. In the meantime, their official recommendation was to create a new custom rule where domain contains yahoo.com and increase score by negative of the value triggered. (-3.9)

That rule did resolve the issue in my case. This is a workaround until Kerio releases a proper fix for the spam rules.

  •  
freakinvibe

Messages: 1524
Karma: 60
Send a private message to this user
A good solution as it uses the GUI, so it is easier to implement than changing the local.cf file.

But we have the problem that we get many mails from international Yahoo domains like

yahoo.fr
yahoo.de

and others. So I just set the score to 0 for the both faulty rules and that works for me.

Dexion AG - The Blackberry Specialists in Switzerland
https://dexionag.ch
  •  
jonelli

Messages: 35
Karma: 0
Send a private message to this user
Jason1234 wrote on Tue, 11 July 2017 15:31
I did open a case with Kerio. They expect to update in the new release. In the meantime, their official recommendation was to create a new custom rule where domain contains yahoo.com and increase score by negative of the value triggered. (-3.9)

That rule did resolve the issue in my case. This is a workaround until Kerio releases a proper fix for the spam rules.



Great suggestion. That works for me for now. Thanks.
Previous Topic: Using cleanup-agent after migration from Exchange
Next Topic: 9.2.4 - Log - IM external process is not responding or is not running, trying to start it again...
Goto Forum:
  


Disclaimer:
Kerio discussion forums are intended for open communication between forum members and may contain information and material posted by members which may be useful in learning about Kerio products. The discussion forums are not intended to provide technical support for any specific product. Any information implied or expressed in the discussion forums is that of the posting member. Kerio is in no way responsible for the information posted in the forums, or its accuracy. Kerio employees may participate in the discussions, but their postings do not represent an offical position of the company on any issues raised or discussed. Kerio reserves the right to monitor and maintain the forums to promote free and accurate exchange of information.

Current Time: Wed Sep 20 09:34:19 CEST 2017

Total time taken to generate the page: 0.00445 seconds
.:: Contact :: Home ::.
Powered by: FUDforum 3.0.4.