Vsevolod Stakhov
e834cdb26d
[Minor] Oops, fix foldl call
2022-01-11 20:59:25 +00:00
Vsevolod Stakhov
c6f7b897d4
[Minor] Fix some issues in URI_COUNT_ODD rule
...
Issue: #4037
2022-01-11 20:25:52 +00:00
Vsevolod Stakhov
c23d728d75
[Minor] Fix rule
2021-11-30 13:51:54 +00:00
Vsevolod Stakhov
c1b3e4821a
[Rules] Remove ancient and inefficient rules
2021-11-29 17:26:27 +00:00
Vsevolod Stakhov
13dd78c687
[Rules] Fix old rules to stop global functions usage
2021-11-29 16:56:13 +00:00
Andrew Lewis
b7e3440024
[Feature] JSON endpoint for querying maps
2021-11-17 15:57:01 +02:00
Anton Yuzhaninov
98b205709f
[Minor] Skip bitcoin address check for very long words
...
Exclude very long words (which can be extracted e. g. from some text
attachments) from bitcoin address check to avoid excessive resource
usage.
2021-09-17 09:46:32 +01:00
Vsevolod Stakhov
d2ca787313
[Rules] Improve zero font rule
2021-09-07 15:01:30 +01:00
Sebastian Lipponer
44d83209e2
[Minor] Regexp: Extend upstream spam filter regexp
2021-08-21 11:43:30 +02:00
Anton Yuzhaninov
0248bd6615
[Rules] Micro-optimize X_PHP_EVAL
...
Remove /i flag from regexp string "eval()'d code" is always in
lower case. While here use long string format for readability.
2021-08-05 15:54:20 +01:00
Vsevolod Stakhov
dde092ef09
[Minor] Fix checks safety
2021-07-19 10:23:44 +01:00
Vsevolod Stakhov
7a181b1fe6
[Minor] Add safety guards
2021-07-08 15:45:06 +01:00
Andrew Lewis
8d22202dc9
[Fix] Fix an edge case in BITCOIN_ADDR rule
...
- when using PCRE
- and different address types are present
2021-06-23 11:26:40 +02:00
Vsevolod Stakhov
f1f2f27585
[Minor] Pet luacheck
2021-06-14 14:12:20 +01:00
Vsevolod Stakhov
ea35232b98
[Project] Rework html visibility rule
2021-06-14 14:07:29 +01:00
Vsevolod Stakhov
3e5cc9ef2d
[Rules] Fix zerofont rule (partially)
2021-06-12 14:40:26 +01:00
Anton Yuzhaninov
a4cfe5e270
[Rules] Extend OLD_X_MAILER
...
Add more old iPhone/iPad Mail versions to the regexp.
2021-05-22 16:47:38 +01:00
Anton Yuzhaninov
7c00342f85
[Rules] Extend FORGED_X_MAILER
...
Match in FORGED_X_MAILER fake iPhone Mail header with a random string in
place of iOS build number, e. g. iPhone Mail (WKN0M)
2021-05-22 16:47:31 +01:00
Vsevolod Stakhov
e40213cb54
[Rules] Fix CTYPE_MIXED_BOGUS for text attachments
...
Issue: #3748
2021-05-19 15:12:33 +01:00
Vsevolod Stakhov
0b88d35b45
[Minor] Fix bit operations logic
2021-05-13 21:36:05 +01:00
Vsevolod Stakhov
0604bcc851
[Minor] Filter urls for R_SUSPICIOUS_URL check
...
Suggested by: @citrin
2021-05-11 15:26:34 +01:00
Vsevolod Stakhov
deda62a64f
[Minor] Use numeric bit and for checking flags
2021-05-11 15:21:22 +01:00
Andrew Lewis
8a2ba3a5c3
[Minor] Fix REPLYTO_ADDR_EQ_FROM for normalised addresses
2021-04-29 10:31:59 +02:00
Anton Yuzhaninov
8a5448883e
[Rules] Add raw addresses to MULTIPLE_FROM options
...
It is confusing to have MULTIPLE_FROM with a single address in options,
which happens if one of addresses is empty - usually because of
misplaces <>. While here simplify condition.
2021-04-27 16:53:41 +01:00
Anton Yuzhaninov
b3d5173446
[Minor] Make HAS_PHPMAILER_SIG regexps more specific
...
Use stricter regexp to avoid false matches.
2021-04-27 16:53:22 +01:00
Vsevolod Stakhov
01c729e15e
[Rules] Fix FPs for CTYPE_MIXED_BOGUS
2021-04-11 21:13:42 +01:00
Vsevolod Stakhov
017d5a8d6a
[Rules] Fix HTTP_TO_HTTPS rule
2021-04-09 10:40:05 +01:00
Vsevolod Stakhov
8e9cde0829
[Rules] Do not trigger HTML_SHORT_LINK_IMG on external images
2021-04-08 17:55:17 +01:00
Kako, Chang
b48c6fbdbf
Fix typos in code comments
2021-04-07 13:00:14 +08:00
Vsevolod Stakhov
c9e91f011a
[Minor] Bitcoin: Another fix for bleach32 regexp
2021-03-30 16:44:32 +01:00
Richard Schwab
7f7d408876
[Minor] fix typo: obfusicated -> obfuscated
2021-03-24 23:41:56 +01:00
Vsevolod Stakhov
028e4ecefe
[Rules] Another fix to HTTP_TO_HTTPS rule
2021-03-16 11:39:10 +00:00
Vsevolod Stakhov
e2d44157b3
[Rules] Fix HTTP_TO_HTTPS rule
2021-03-13 10:43:10 +00:00
Vsevolod Stakhov
99c27fc7be
[Rules] Reduce default weight for R_MISSING_CHARSET
2021-03-12 21:29:01 +00:00
Vsevolod Stakhov
ba5b6773e2
[Minor] Fix OMOGRAPH_URL for the changes in the phished flag
2021-03-09 21:17:53 +00:00
Vsevolod Stakhov
cd151c848a
[Minor] Properly use task:set_recipients
2021-03-08 20:19:44 +00:00
Alexander Moisseev
4aebb2b5de
[Fix] Fix Mozilla Message-ID detection
...
The left part of the Mozilla Message-ID is a hexadecimal timestamp. The regexp was mistakenly limited to 2021-01-14.
2021-02-05 22:09:58 +03:00
Andrew Lewis
794bb6c241
[Fix] Avoid reinitialising neural settings
2021-02-05 14:37:43 +02:00
Vsevolod Stakhov
1daf44c4b1
[Minor] Add another bounce re
2021-02-04 19:17:04 +00:00
Pavel Rochnyack
4ea3250be3
Fix typos in code comments
2020-12-23 10:45:33 +07:00
Vsevolod Stakhov
2ce745e592
[Minor] Fix missing comma
2020-12-22 16:02:36 +00:00
Vsevolod Stakhov
f9736528ae
Merge pull request #3582 from citrin/x-mailer-rules
...
[Rules] X-Mailer rules update
2020-12-22 15:52:20 +00:00
Anton Yuzhaninov
38d347e23e
[Minor] Add rule for forged X-Mailer: Internet Mail Service
2020-12-22 14:16:12 +00:00
Anton Yuzhaninov
badadf5051
[Minor] Add {header} for header regexps
2020-12-22 13:29:20 +00:00
Anton Yuzhaninov
a9e9703a89
[Minor] Use task:has_header instead of task:get_header
...
Use task:has_header() to check if header is exists.
2020-12-22 13:05:58 +00:00
Anton Yuzhaninov
027453fe4a
[Minor] Remove R_SAJDING and SUSPICIOUS_OPERA_10W_MSGID
...
These rules are no longer relevant.
2020-12-21 20:05:45 +00:00
Anton Yuzhaninov
689c49dd1a
[Minor] Add FORGED_X_MAILER rule for X-Mailer used by spamboots
2020-12-21 18:40:41 +00:00
Vsevolod Stakhov
65f8e34178
Merge pull request #3577 from fatalbanana/http_headers_plugin
...
[Minor] Move http_headers to plugin
2020-12-19 21:03:57 +00:00
Vsevolod Stakhov
c3bbc67337
Merge pull request #3570 from fatalbanana/nn_training
...
[Feature] Add controller endpoint for training neural
2020-12-17 13:15:02 +00:00
Andrew Lewis
5104d145d7
[Minor] Move http_headers to plugin
...
- Support multiple DKIM results
- Insert DKIM trace symbols
- Always disable callbacks if we got a header
- Make the plugin default-disabled
- Disable callbacks instead of virtual symbols
2020-12-17 12:58:39 +02:00