Google Groups no longer supports new Usenet posts or subscriptions. Historical content remains viewable.
Dismiss

[AMaViS-user] $sa_mail_body_size_limit

377 views
Skip to first unread message

Bernd Probst

unread,
Sep 17, 2009, 5:27:29 AM9/17/09
to
Hi all

Looking into directories of quarantined mails I realized that the file size
of some of these mails is larger than $sa_mail_body_size_limit. Some of the
larger mails have files attached, some of these mails are HTML Mails with or
without text-only part.

How does amavis calculate the size of a mail which is compared with
$sa_mail_body_size_limit?

My configuration is:
$sa_mail_body_size_limit = 100*1024;
amavis version is 2.6.4

---
Bernd Probst


------------------------------------------------------------------------------
Come build with us! The BlackBerry® Developer Conference in SF, CA
is the only developer event you need to attend this year. Jumpstart your
developing skills, take BlackBerry mobile applications to market and stay
ahead of the curve. Join us from November 9-12, 2009. Register now!
http://p.sf.net/sfu/devconf
_______________________________________________
AMaViS-user mailing list
AMaVi...@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/amavis-user
AMaViS-FAQ:http://www.amavis.org/amavis-faq.php3
AMaViS-HowTos:http://www.amavis.org/howto/

Michael Scheidell

unread,
Sep 17, 2009, 7:21:14 AM9/17/09
to
Bernd Probst wrote:
> Hi all
>
> Looking into directories of quarantined mails I realized that the file size
> of some of these mails is larger than $sa_mail_body_size_limit. Some of the
> larger mails have files attached, some of these mails are HTML Mails with or
> without text-only part.
>
>
sa_mail_body_limit doesn't limit the size of the quarantined email, it
limits the size that is sent to SA for processing.

if you want to block emails over a certain size, you can best do that in
the MTA.
If you want to quarantine emails over a certain size, you can use other
amavisd settings to do that.

if you want to delete (trim, truncate, muck up, screw up, trash) emails
over a certain size, you can do something like:

'delete from quarantine where /* partition_tag=$partition_tag and */
chunk_ind > 15'

(given each chunk is 1500 bytes, I think)

but if you DO that, you will most likely trash the email.


--
Michael Scheidell, CTO
Phone: 561-999-5000, x 1259
> *| *SECNAP Network Security Corporation

* Certified SNORT Integrator
* 2008-9 Hot Company Award Winner, World Executive Alliance
* Five-Star Partner Program 2009, VARBusiness
* Best Anti-Spam Product 2008, Network Products Guide
* King of Spam Filters, SC Magazine 2008


_________________________________________________________________________
This email has been scanned and certified safe by SpammerTrap(r).
For Information please see http://www.secnap.com/products/spammertrap/
_________________________________________________________________________

_________________________________________________________________________
This email has been scanned and certified safe by SpammerTrap(r).
For Information please see http://www.spammertrap.com
_________________________________________________________________________

Bernd Probst

unread,
Sep 17, 2009, 9:00:34 AM9/17/09
to
I do not want to block mails depending on size by amavis or spamassassin.

I'm worried about mails in quarantine that should not be processed at all by
spamassassin because mail size is greater than $sa_mail_body_size_limit

Bernd Probst wrote:

> | SECNAP Network Security Corporation

. Certified SNORT Integrator

. 2008-9 Hot Company Award Winner, World Executive Alliance

. Five-Star Partner Program 2009, VARBusiness

. Best Anti-Spam Product 2008, Network Products Guide

. King of Spam Filters, SC Magazine 2008

_____

This email has been scanned and certified safe by SpammerTrapR.

For Information please see http://www.secnap.com/products/spammertrap/

_____

_____

This email has been scanned and certified safe by SpammerTrapR.
For Information please see www.spammertrap.com

Michael Scheidell

unread,
Sep 17, 2009, 10:20:18 AM9/17/09
to

Bernd Probst wrote:
>
> I do not want to block mails depending on size by amavis or spamassassin.
>
> I'm worried about mails in quarantine that should not be processed at
> all by spamassassin because mail size is greater than
> $sa_mail_body_size_limit
>

Read the release notes.

--
Michael Scheidell, CTO
Phone: 561-999-5000, x 1259

> *| *SECNAP Network Security Corporation

* Certified SNORT Integrator
* 2008-9 Hot Company Award Winner, World Executive Alliance
* Five-Star Partner Program 2009, VARBusiness
* Best Anti-Spam Product 2008, Network Products Guide
* King of Spam Filters, SC Magazine 2008


_________________________________________________________________________
This email has been scanned and certified safe by SpammerTrap(r).
For Information please see http://www.spammertrap.com
_________________________________________________________________________

Mark Martinec

unread,
Sep 18, 2009, 9:48:17 AM9/18/09
to
Bernd,

> I'm worried about mails in quarantine that should not be processed at all
> by spamassassin because mail size is greater than $sa_mail_body_size_limit

As Michael pointed out, see release notes of a 2.6.4 release, starting with:

- large messages beyond $sa_mail_body_size_limit are now partially passed
to SpamAssassin and other spam scanners for checking: a copy passed to
a spam scanner is truncated near or slightly past the indicated limit.
Large messages are no longer given an almost free passage through spam
checks. [...]


The feature works best with the version 3.3.0 of SpamAssassin. With earlier
versions DKIM signatures are invalidated by message truncation, which can
fire some fraud protection rules (for large messages), which are based on
validity of a DKIM signature.

Mark

0 new messages