]>
source.dussan.org Git - rspamd.git/log
Vsevolod Stakhov [Sat, 11 Nov 2023 14:39:36 +0000 (14:39 +0000)]
[Minor] Bundle fasttext as linux distributives are just useless
Vsevolod Stakhov [Sat, 11 Nov 2023 13:35:10 +0000 (13:35 +0000)]
[Minor] Forgot it in one more place
Vsevolod Stakhov [Sat, 11 Nov 2023 12:29:53 +0000 (12:29 +0000)]
[Minor] Limit fasttext to amd64 only
Vsevolod Stakhov [Fri, 10 Nov 2023 15:32:58 +0000 (15:32 +0000)]
[Fix] Fix various issues with canonicalisation of the paths
Vsevolod Stakhov [Fri, 10 Nov 2023 13:50:20 +0000 (13:50 +0000)]
[Minor] Enable fasttext on RPM based linux
Vsevolod Stakhov [Fri, 10 Nov 2023 13:48:29 +0000 (13:48 +0000)]
Merge pull request #4694 from rspamd/vstakhov-fuzzy-ping
[Feature] Support ping command in fuzzy storage
Vsevolod Stakhov [Fri, 10 Nov 2023 10:25:36 +0000 (10:25 +0000)]
[Minor] Do something when no successful replies are detected
Vsevolod Stakhov [Fri, 10 Nov 2023 10:23:18 +0000 (10:23 +0000)]
[Project] Polish output modes
Vsevolod Stakhov [Fri, 10 Nov 2023 09:39:24 +0000 (09:39 +0000)]
[Minor] Fix override
Vsevolod Stakhov [Fri, 10 Nov 2023 09:34:55 +0000 (09:34 +0000)]
[Minor] Various fixes
Vsevolod Stakhov [Fri, 10 Nov 2023 09:34:40 +0000 (09:34 +0000)]
[Fix] Cleanup session on exit
Vsevolod Stakhov [Fri, 10 Nov 2023 09:05:31 +0000 (09:05 +0000)]
[Minor] Fix events mess
Vsevolod Stakhov [Fri, 10 Nov 2023 08:56:29 +0000 (08:56 +0000)]
[Fix] Fix bad access when printing pending events on failure path
Vsevolod Stakhov [Thu, 9 Nov 2023 17:57:21 +0000 (17:57 +0000)]
[Project] Add some major stuff to implement client side of the fuzzy ping
Vsevolod Stakhov [Thu, 9 Nov 2023 17:53:02 +0000 (17:53 +0000)]
[Fix] Properly set config field when creating tasks from Lua
Vsevolod Stakhov [Thu, 9 Nov 2023 16:23:50 +0000 (16:23 +0000)]
Merge pull request #4695 from fatalbanana/test_stability
[Minor] Try improve test stability
Andrew Lewis [Thu, 9 Nov 2023 15:49:12 +0000 (17:49 +0200)]
[Minor] Try improve test stability
Vsevolod Stakhov [Thu, 9 Nov 2023 15:17:03 +0000 (15:17 +0000)]
[Project] Add preliminary `rspamadm fuzzyping` command
Vsevolod Stakhov [Thu, 9 Nov 2023 15:16:33 +0000 (15:16 +0000)]
[Minor] Allow to list storages configured from Lua
Vsevolod Stakhov [Thu, 9 Nov 2023 14:52:46 +0000 (14:52 +0000)]
[Minor] Simplify
Vsevolod Stakhov [Thu, 9 Nov 2023 14:23:34 +0000 (14:23 +0000)]
[Feature] Support ping command in fuzzy storage
Vsevolod Stakhov [Thu, 9 Nov 2023 14:01:38 +0000 (14:01 +0000)]
Merge pull request #4691 from rspamd/vstakhov-gtube-patterns
[Feature] Reiterate on gtube patterns
Vsevolod Stakhov [Thu, 9 Nov 2023 13:48:59 +0000 (13:48 +0000)]
Merge pull request #4693 from fatalbanana/ksconfig
[Fix] known_senders: fix config handling
Vsevolod Stakhov [Thu, 9 Nov 2023 13:45:36 +0000 (13:45 +0000)]
[Minor] Document `gtube_patterns`
Andrew Lewis [Thu, 9 Nov 2023 11:30:29 +0000 (13:30 +0200)]
[Fix] known_senders: fix config handling
Vsevolod Stakhov [Wed, 8 Nov 2023 14:51:46 +0000 (14:51 +0000)]
[Minor] Fix unit tests
Vsevolod Stakhov [Wed, 8 Nov 2023 14:34:33 +0000 (14:34 +0000)]
[Feature] Reiterate on gtube patterns
Vsevolod Stakhov [Mon, 6 Nov 2023 14:24:33 +0000 (14:24 +0000)]
Merge pull request #4687 from fatalbanana/doxydown
[Minor] doxydown: fix elements containing few spaces
Andrew Lewis [Mon, 6 Nov 2023 12:17:58 +0000 (14:17 +0200)]
[Minor] lua_maps docs: apply formatting
Andrew Lewis [Mon, 6 Nov 2023 12:15:01 +0000 (14:15 +0200)]
[Minor] doxydown: fix elements containing few spaces
Vsevolod Stakhov [Sat, 4 Nov 2023 12:28:23 +0000 (12:28 +0000)]
[Minor] Update version to 3.8 as we have too many new features
Vsevolod Stakhov [Sat, 4 Nov 2023 12:24:22 +0000 (12:24 +0000)]
Merge pull request #4685 from fatalbanana/force_actions_group
[Minor] force_actions: set a group for symbols
Andrew Lewis [Sat, 4 Nov 2023 10:51:18 +0000 (12:51 +0200)]
[Minor] force_actions: set a group for symbols
Vsevolod Stakhov [Fri, 3 Nov 2023 17:40:12 +0000 (17:40 +0000)]
Merge pull request #4678 from fatalbanana/rbl_exclude_local
[Fix] rbl: unbreak `exclude_local`
Vsevolod Stakhov [Fri, 3 Nov 2023 15:28:50 +0000 (15:28 +0000)]
Merge pull request #4683 from twesterhever/temp-improve-freemail-aff
[Minor] Improve FREEMAIL_AFF capture rates
Andrew Lewis [Fri, 3 Nov 2023 15:26:53 +0000 (17:26 +0200)]
[Fix] rbl: fix `exclude_local`
Vsevolod Stakhov [Fri, 3 Nov 2023 15:25:41 +0000 (15:25 +0000)]
Merge pull request #4681 from twesterhever/temp-suspicious-url-composite
[Enhancement] Add composite rule for suspicious URLs in suspicious messages
Andrew Lewis [Fri, 3 Nov 2023 15:13:57 +0000 (17:13 +0200)]
[Test] Break test
Vsevolod Stakhov [Fri, 3 Nov 2023 14:46:14 +0000 (14:46 +0000)]
Merge pull request #4680 from twesterhever/temp-zpaq
[Minor] Treat *.zpaq attachments as archives and harmful
Vsevolod Stakhov [Fri, 3 Nov 2023 14:41:16 +0000 (14:41 +0000)]
Merge pull request #4682 from twesterhever/temp-no-ua
[Minor] Add rule for messages missing both X-Mailer and User-Agent header
twesterhever [Fri, 3 Nov 2023 14:06:56 +0000 (14:06 +0000)]
[Minor] Improve FREEMAIL_AFF capture rates
twesterhever [Fri, 3 Nov 2023 14:01:07 +0000 (14:01 +0000)]
[Minor] Add rule for messages missing both X-Mailer and User-Agent header
twesterhever [Fri, 3 Nov 2023 13:48:58 +0000 (13:48 +0000)]
[Enhancement] Add composite rule for suspicious URLs in suspicious messages
twesterhever [Fri, 3 Nov 2023 13:38:05 +0000 (13:38 +0000)]
[Minor] Treat *.zpaq attachments as archives and harmful
Rationale: https://dshield.org/diary/Malware+Dropped+Through+a+ZPAQ+Archive/30366/
Vsevolod Stakhov [Thu, 2 Nov 2023 14:53:54 +0000 (14:53 +0000)]
[Feature] Allow to set `max_users` for Redis bayes backend
Issue: #4659
Vsevolod Stakhov [Thu, 2 Nov 2023 14:17:34 +0000 (14:17 +0000)]
[Conf] Add note
Issue: #4677
Vsevolod Stakhov [Wed, 1 Nov 2023 12:24:50 +0000 (12:24 +0000)]
[Minor] Improve diagnostic by rising log level
Vsevolod Stakhov [Wed, 1 Nov 2023 11:03:53 +0000 (11:03 +0000)]
Merge pull request #4675 from arkamar/algorithm
[Minor] Add missing <algorithm> include for gcc 14
Petr Vaněk [Wed, 1 Nov 2023 10:28:53 +0000 (11:28 +0100)]
[Minor] Add missing <algorithm> include for gcc 14
This commit addresses a compilation issue when using GCC 14. According
to GCC 14's porting guide [1], some C++ Standard Library headers no
longer include other headers they used to use internally. Specifically,
<algorithm> must now be explicitly included.
[1] https://gcc.gnu.org/gcc-14/porting_to.html
See-also: https://bugs.gentoo.org/916438
Signed-off-by: Petr Vaněk <arkamar@atlas.cz>
Vsevolod Stakhov [Tue, 31 Oct 2023 15:18:22 +0000 (15:18 +0000)]
[Minor] Add selector transformer `filter_method`
Vsevolod Stakhov [Mon, 30 Oct 2023 17:19:02 +0000 (17:19 +0000)]
Merge pull request #4674 from rspamd/log_json
[Project] Support of JSON logging
Vsevolod Stakhov [Mon, 30 Oct 2023 17:15:26 +0000 (17:15 +0000)]
[Minor] Use floating point ts instead of microseconds
Vsevolod Stakhov [Mon, 30 Oct 2023 17:11:13 +0000 (17:11 +0000)]
[Fix] Do not cleanup hyperscan files unless new ones are loaded
Vsevolod Stakhov [Mon, 30 Oct 2023 16:37:59 +0000 (16:37 +0000)]
Merge pull request #4672 from fatalbanana/robot_export_vars
[Minor] Make Robot Framework loop unfunny
Vsevolod Stakhov [Mon, 30 Oct 2023 16:35:36 +0000 (16:35 +0000)]
[Feature] Escape JSON when needed
Vsevolod Stakhov [Mon, 30 Oct 2023 15:48:52 +0000 (15:48 +0000)]
[Minor] Fix some minor issues
Vsevolod Stakhov [Mon, 30 Oct 2023 15:32:35 +0000 (15:32 +0000)]
[Project] Preliminary support of JSON logging
Andrew Lewis [Mon, 30 Oct 2023 07:50:02 +0000 (09:50 +0200)]
[Minor] Make Robot Framework loop unfunny
Vsevolod Stakhov [Sat, 28 Oct 2023 19:15:56 +0000 (20:15 +0100)]
Merge pull request #4668 from moisseev/webui
[WebUI] Update map editor
moisseev [Fri, 27 Oct 2023 13:57:15 +0000 (16:57 +0300)]
[WebUI] Update map editor
CodeJar 3.7.0 -> 4.2.0
Vsevolod Stakhov [Fri, 27 Oct 2023 07:39:28 +0000 (08:39 +0100)]
[Minor] Update version
Vsevolod Stakhov [Fri, 27 Oct 2023 07:38:19 +0000 (08:38 +0100)]
Release 3.7.3
* [Fix] Emergency fix for the hyperscan path error
Vsevolod Stakhov [Fri, 27 Oct 2023 07:20:48 +0000 (08:20 +0100)]
[Minor] Really fix the issue
Vsevolod Stakhov [Fri, 27 Oct 2023 07:12:16 +0000 (08:12 +0100)]
[Fix] A workaround for brain-damaged std::filesystem behaviour
Issue: #4665
Vsevolod Stakhov [Thu, 26 Oct 2023 13:31:03 +0000 (14:31 +0100)]
[Minor] Update version
Vsevolod Stakhov [Thu, 26 Oct 2023 13:30:21 +0000 (14:30 +0100)]
Release 3.7.2
* [Feature] rbl: support checking returncodes by CIDR
* [Feature] rbl: support checking returncodes by regex
* [Feature] rbl: support globbed return codes
* [Fix] DMARC reporting: fix reporting for subdomains
* [Fix] Deal with fmtlib exceptions properly
* [Fix] backport fix for dlfcn.h from backward-cpp
* [Rules] Blank spam detection
Vsevolod Stakhov [Thu, 26 Oct 2023 10:06:25 +0000 (11:06 +0100)]
Merge pull request #4657 from fatalbanana/rbl_matchers
[Feature] rbl: support use of different matchers for return codes
Andrew Lewis [Thu, 26 Oct 2023 06:40:00 +0000 (08:40 +0200)]
[Minor] Reiterate on the previous changes
- Demote message to info level
- Name it returncodes_matcher for better specificity
Vsevolod Stakhov [Wed, 25 Oct 2023 17:55:43 +0000 (18:55 +0100)]
Merge pull request #4656 from twesterhever/temp-tighten-attachment-policy
Tighten rspamd's attachment policy
Vsevolod Stakhov [Wed, 25 Oct 2023 17:51:25 +0000 (18:51 +0100)]
Merge pull request #4661 from moisseev/webui
[WebUI] Fix history table vanishing
Andrew Lewis [Wed, 25 Oct 2023 13:00:08 +0000 (15:00 +0200)]
[Feature] rbl: support globbed return codes
twesterhever [Wed, 25 Oct 2023 12:42:44 +0000 (12:42 +0000)]
[Minor] Remove duplicate *.app attachment type
Reported by @fatalbanana.
Andrew Lewis [Wed, 25 Oct 2023 12:34:47 +0000 (14:34 +0200)]
[Feature] rbl: support checking returncodes by CIDR
moisseev [Wed, 25 Oct 2023 10:14:38 +0000 (13:14 +0300)]
[WebUI] Fix history table vanishing
on repeated rows per page input
Vsevolod Stakhov [Tue, 24 Oct 2023 15:02:59 +0000 (16:02 +0100)]
[Minor] Improve diagnostics
twesterhever [Tue, 24 Oct 2023 12:58:13 +0000 (12:58 +0000)]
Revert "[Minor] Increase scoring of *.exe attachments"
Reverted based on feedback by @moisseev.
This reverts commit
8171424d846a3e33b5d0f9f7f4ee09ec8d553a03 .
Andrew Lewis [Tue, 24 Oct 2023 11:53:03 +0000 (13:53 +0200)]
[Feature] rbl: support checking returncodes by regex
Andrew Lewis [Tue, 24 Oct 2023 11:23:13 +0000 (13:23 +0200)]
[Minor] rbl: support use of different matchers for return codes
Vsevolod Stakhov [Mon, 23 Oct 2023 20:58:57 +0000 (21:58 +0100)]
[Fix] Deal with fmtlib exceptions properly
twesterhever [Sun, 22 Oct 2023 20:25:31 +0000 (20:25 +0000)]
[Minor] Add additional bad attachment types
- app: Executable Application, blocked in Outlook by default
- aspx: Active Server Page Extended, blocked in Outlook by default
- dll: Dynamic-link Library
- dqy: Microsoft Query File, blocking recommended in MS365
- iqy: ditto
- mht: MHTML File, often abused for phishing and exploit attempts
- mhtml: ditto
- oqy: Microsoft Query File, blocking recommended in MS365
- rqy: ditto
- slk: Microsoft Symbolic Link
- wim: Windows Imaging Format
twesterhever [Sun, 22 Oct 2023 20:24:23 +0000 (20:24 +0000)]
[Minor] Increase scoring of *.exe attachments
These are already banned in most environments, including GMail and
Outlook. We may as well bump this score up to 4 eventually.
twesterhever [Sun, 22 Oct 2023 20:19:25 +0000 (20:19 +0000)]
[Minor] Incorporate additional bad attachments from Microsoft
These are as follows:
- htc: HTML Component File
- pyc: Compiled Python Script
- pyo: Optimized Compiled Python Module
- pyw: Python Script To Be Executed With Suppressed Terminal Window
- pyz: Python Zip Application
- pyzw: Python Zip Application
- vhd: Virtual Hard Disk
- vhdx: Virtual Hard Disk Extended
- wsf: Windows Script File
Note that the Python file types remain unscored in archives, so
distribution of these in source tarballs and the like is not affected by
this commit.
Source: https://support.microsoft.com/en-us/office/blocked-attachments-in-outlook-
434752e1 -02d3-4e90-9124-
8b81e49a8519 ?ui=en-us&rs=en-us&ad=us
twesterhever [Sun, 22 Oct 2023 20:18:40 +0000 (20:18 +0000)]
[Minor] Refer to third parties for attachment handling whenever possible
This avoids confusion and enqueries to the rspamd project, if it is made
clear that the decision to score certain attachments high has been
incorporated from a well-known third party, such as Google's or
Microsoft's attachment handling policy.
Vsevolod Stakhov [Sun, 22 Oct 2023 17:51:05 +0000 (18:51 +0100)]
[Minor] Try to fix ICAP scanners by adding use_specific_content_type parameter
Issue: #4643
Vsevolod Stakhov [Sat, 21 Oct 2023 13:07:30 +0000 (14:07 +0100)]
[Minor] Simplify by using <filesystem>
Vsevolod Stakhov [Tue, 17 Oct 2023 13:59:56 +0000 (14:59 +0100)]
Merge pull request #4649 from fatalbanana/rspamd_sharedir
[Minor] RSPAMD_SHAREDIR is called SHAREDIR in configuration
Andrew Lewis [Tue, 17 Oct 2023 13:57:48 +0000 (15:57 +0200)]
[Minor] RSPAMD_SHAREDIR is called SHAREDIR in configuration
Vsevolod Stakhov [Tue, 17 Oct 2023 13:47:28 +0000 (14:47 +0100)]
Merge pull request #4648 from fatalbanana/luacheck
[Test] Banish luacheck from functional tests
Andrew Lewis [Mon, 16 Oct 2023 17:50:56 +0000 (19:50 +0200)]
[Test] Banish luacheck from functional tests
- Use luacheck from GitLab
Vsevolod Stakhov [Mon, 16 Oct 2023 18:10:33 +0000 (19:10 +0100)]
Merge pull request #4587 from fatalbanana/dmarc_subdomains
[Fix] DMARC reporting: fix reporting for subdomains
Andrew Lewis [Mon, 16 Oct 2023 09:04:25 +0000 (11:04 +0200)]
[Fix] DMARC reporting: fix reporting for subdomains
- Reported by: @bilym
Vsevolod Stakhov [Mon, 16 Oct 2023 07:27:33 +0000 (08:27 +0100)]
Merge pull request #4645 from moisseev/webui
[WebUI] Add control to invert action filter
moisseev [Sun, 15 Oct 2023 16:58:20 +0000 (19:58 +0300)]
[WebUI] Add control to invert action filter
to scan results and history tables
Issue: #4098
Vsevolod Stakhov [Sat, 14 Oct 2023 13:15:22 +0000 (14:15 +0100)]
[Minor] Do not use `setproctitle` on Linux
Issue: #4634
Vsevolod Stakhov [Sat, 14 Oct 2023 08:31:19 +0000 (09:31 +0100)]
Merge pull request #4640 from dzjaivnt/dzjaivnt-patch-1
Dzjaivnt patch 1
Vsevolod Stakhov [Fri, 13 Oct 2023 18:57:13 +0000 (19:57 +0100)]
Merge pull request #4642 from twesterhever/temp-cue-attachments
[Minor] Treat *.cue attachments as harmful
Vsevolod Stakhov [Fri, 13 Oct 2023 18:56:58 +0000 (19:56 +0100)]
Merge pull request #4644 from fatalbanana/blankspam
[Rules] Blank spam detection
Andrew Lewis [Fri, 13 Oct 2023 15:01:50 +0000 (17:01 +0200)]
[Rules] Blank spam detection
twesterhever [Fri, 13 Oct 2023 10:30:02 +0000 (10:30 +0000)]
[Minor] Treat *.cue attachments as harmful
Rationale: https://arstechnica.com/information-technology/2023/10/one-click-remote-code-exploit-in-cd-cue-files-affects-most-gnome-based-linux-distros/
Vsevolod Stakhov [Thu, 12 Oct 2023 14:31:09 +0000 (15:31 +0100)]
[Minor] Fix build on some systems