ASSP V Spamassassin?

Use this forum if you have installed hMailServer and want to ask a question related to a production release of hMailServer. Before posting, please read the troubleshooting guide. A large part of all reported issues are already described in detail here.
Post Reply
phil54
Normal user
Normal user
Posts: 195
Joined: 2007-11-26 13:13
Location: UK :-)

ASSP V Spamassassin?

Post by phil54 » 2007-12-12 18:09

I've just managed to get ASSP setup on a test machine, quite straight forward to get it up and running via 127.0.0.1:55555, i've done no configuration yet.

Before i actually get this up and running in a proper test environment with an active domain or two, i'm wondering what are peoples thoughts on the two Hmail spam killers?

Which is best? What do people perfer? Whats most effective? etc etc

User avatar
martin
Developer
Developer
Posts: 6834
Joined: 2003-11-21 01:09
Location: Sweden
Contact:

Post by martin » 2007-12-13 20:53

Which is best? What do people perfer? Whats most effective?
That's almost entirely a matter of personal taste and how much work you want to spend with it. I'm guessing (not sure) that SpamAssassin have more built-in spam proteciton methods than ASSP but whether or not they are more effiicient in total I do not know.

phil54
Normal user
Normal user
Posts: 195
Joined: 2007-11-26 13:13
Location: UK :-)

Post by phil54 » 2007-12-14 16:22

Hi Martin, thanks for the reply.

I think i'm going to go with assp for now, i'll do some tests with hmail server and a couple of test domains, see how the spam likes that :)

bmorejon
Normal user
Normal user
Posts: 43
Joined: 2007-06-01 18:48

Post by bmorejon » 2007-12-14 22:58

ASSP works great for me.

iprat
Normal user
Normal user
Posts: 247
Joined: 2005-05-20 16:50
Location: Barcelona, EU
Contact:

Post by iprat » 2007-12-15 03:14

Here too ! Working great for more than a year.
My perfect combination:
hMailServer 5.6.1 (B2208), ASSP 1.3.3.8 (antispam), Clamav 0.98.6 (antivirus)

phil54
Normal user
Normal user
Posts: 195
Joined: 2007-11-26 13:13
Location: UK :-)

Post by phil54 » 2007-12-17 14:17

Sounds good guys, saying that the inbuilt spam software in Hmail Server is doing a great job as well.

When using Assp, do you turn off the inbuilt Hmail spam protection or use both at once?

iprat
Normal user
Normal user
Posts: 247
Joined: 2005-05-20 16:50
Location: Barcelona, EU
Contact:

Post by iprat » 2007-12-17 14:20

Yes, it is very important to turn off all of them: greylisting, DNS, tarpitting, etc...

iprat
Normal user
Normal user
Posts: 247
Joined: 2005-05-20 16:50
Location: Barcelona, EU
Contact:

Post by iprat » 2007-12-17 14:21

And remember that all external traffic will come from 127.0.0.1, so it is important to force authenticated SMTP on this range.

phil54
Normal user
Normal user
Posts: 195
Joined: 2007-11-26 13:13
Location: UK :-)

Post by phil54 » 2007-12-17 14:47

ah right i see, so just let assp do all the work?

iprat
Normal user
Normal user
Posts: 247
Joined: 2005-05-20 16:50
Location: Barcelona, EU
Contact:

Post by iprat » 2007-12-17 15:05

Basically all of spam work.

I just let one thing for hMailserver: send all spam messages I let get through ASSP for whatever reason in test mode into special IMAP foders of my users (a SPAM folder for every user). It's a rule very easy to write.

duke16
Normal user
Normal user
Posts: 40
Joined: 2007-03-20 12:13

Post by duke16 » 2007-12-18 16:03

iprat wrote:And remember that all external traffic will come from 127.0.0.1, so it is important to force authenticated SMTP on this range.
Can you explain this a little. I've had ASSP running for a year or so now and I don't believe I've changed any settings relating to this. I'm wondering if maybe I have something configured wrong.

iprat
Normal user
Normal user
Posts: 247
Joined: 2005-05-20 16:50
Location: Barcelona, EU
Contact:

Post by iprat » 2007-12-18 17:06

duke16 wrote:
iprat wrote:And remember that all external traffic will come from 127.0.0.1, so it is important to force authenticated SMTP on this range.
Can you explain this a little. I've had ASSP running for a year or so now and I don't believe I've changed any settings relating to this. I'm wondering if maybe I have something configured wrong.
When you run ASSP all external SMTP transactions come from 127.0.0.1 (localhost) if it is on the same server as hMailserver.

Say you have admin@yourdomain.com. It would be very easy to send email to another account if the SMTP server doesn't ask for SMTP authentication, I mean one just has figure some typical accounts like administrator@ or admin@ or support@ etc... and then try to deliver local-local emails using that trick.

I think it is the default configuration in hMailServer to not leave external-external deliveries without authentication, but usually (don't remember if it was default or not) internal-internal deliveries are allowed to be done without authentication, specially when it comes from your own LAN. As external deliveries of an spammer will come from ASSP proxy which is in 127.0.0.1, the delivery policies applied will be the one's of 127.0.0.1 range which a lot of people tend to relax allowing SMTP deliveries without any authentication to ease some configurations.

It is not a very high risk but I thought I should mention.
My perfect combination:
hMailServer 5.6.1 (B2208), ASSP 1.3.3.8 (antispam), Clamav 0.98.6 (antivirus)

mbreitba
Senior user
Senior user
Posts: 340
Joined: 2006-04-14 22:25

Post by mbreitba » 2007-12-18 22:02

Just an FYI - we tried running ASSP in front of our Hmail system, with greylisting enabled. We had an entire dedicated server (dual xeon 2.6g procs, 3GB RAM) and it couldn't keep up with our usage. Granted, our usage is excessive to say the least, but if you intend on scaling, ASSP does not appear to handle it well.

Post Reply