У меня проблемы со SpamAssassin; он присваивает электронные письма гораздо ниже, чем следовало бы. Кроме того, оценки, которые он присваивает при получении электронных писем, отличаются от результатов запуска. spamassassin -t
на том же электронном письме постфактум. Например, вот отчет об оценке спама, взятый из заголовков письма в моем почтовом клиенте:
Content analysis details: (1.3 points, 5.0 required)
pts rule name description
---- ---------------------- --------------------------------------------------
0.0 URIBL_BLOCKED ADMINISTRATOR NOTICE: The query to URIBL was blocked.
See
http://wiki.apache.org/spamassassin/DnsBlocklists#dnsbl-block
for more information.
[URIs: goatkoo.us]
-0.0 SPF_HELO_PASS SPF: HELO matches SPF record
0.0 DATE_IN_FUTURE_06_12 Date: is 6 to 12 hours after Received: date
-0.0 SPF_PASS SPF: sender matches SPF record
0.0 HTML_MESSAGE BODY: HTML included in message
0.0 HTML_FONT_LOW_CONTRAST BODY: HTML font color similar or identical to
background
1.3 RDNS_NONE Delivered to internal network by a host with no rDNS
0.0 T_REMOTE_IMAGE Message contains an external image
Между тем результаты spamassassin -t
:
Content analysis details: (4.5 points, 5.0 required)
pts rule name description
---- ---------------------- --------------------------------------------------
0.0 URIBL_BLOCKED ADMINISTRATOR NOTICE: The query to URIBL was blocked.
See
http://wiki.apache.org/spamassassin/DnsBlocklists#dnsbl-block
for more information.
[URIs: wilsonbiggs.com]
1.9 URIBL_ABUSE_SURBL Contains an URL listed in the ABUSE SURBL blocklist
[URIs: goatkoo.us]
1.2 RCVD_IN_BL_SPAMCOP_NET RBL: Received via a relay in bl.spamcop.net
[Blocked - see <http://www.spamcop.net/bl.shtml?185.73.200.38>]
-0.0 SPF_PASS SPF: sender matches SPF record
0.0 DATE_IN_FUTURE_06_12 Date: is 6 to 12 hours after Received: date
-0.0 SPF_HELO_PASS SPF: HELO matches SPF record
0.0 HTML_MESSAGE BODY: HTML included in message
0.0 HTML_FONT_LOW_CONTRAST BODY: HTML font color similar or identical to
background
1.3 RDNS_NONE Delivered to internal network by a host with no rDNS
0.0 T_REMOTE_IMAGE Message contains an external image
У меня нет специальных правил. У меня есть exim4 и courier, и я использую ajenti-v в качестве панели управления; в ajenti-v у меня настроена следующая конфигурация для exim4:
Индивидуальная конфигурация:
SMTP_PORT == 25:587
LOCAL_INTERFACES == <; 0.0.0.0.25 ; 0.0.0.0.587 ; 0.0.0.0.465 ; [::0]:25 ; [::0]:587 ; [::0]:465
smtp_accept_max = 50
spamd_address = 127.0.0.1 783
ACL_SMTP_DATA == acl_custom_check_data
USE = "exiscan"
Пользовательские ACL:
acl_custom_check_data:
deny
message = Message headers fail syntax check
!verify = header_syntax
warn spam = nobody:true
add_header = X-Spam-Score: $spam_score ($spam_bar)
add_header = X-Spam-Report: $spam_report
warn spam = nobody
remove_header = Subject
add_header = Subject: ***SPAM (score: $spam_score)*** $rh_Subject:
warn message = Content Policy Restriction: Mails to undisclosed recipients are not permitted
condition = ${if eq{$h_TO:}{undisclosed-recipients:;} {true}{false}}
accept
Пользовательские роутеры:
maildir_spam:
driver = accept
transport = maildir_spam_delivery
condition = ${if def:h_X-Spam_score: {true}}
Индивидуальные перевозки:
maildir_spam_delivery:
driver = appendfile
maildir_format = true
directory = /var/vmail/$domain/$local_part/.Spam
user = mail
create_directory
delivery_date_add
envelope_to_add
return_path_add
group = mail
mode = 0600
Из-за этих проблем я получаю более 120 спам-сообщений в день. Спасибо всем за помощь!