|
|
|
|
|
|
|
|
symbol = "SPAMHAUS"; # Augmented by prefixes |
|
|
symbol = "SPAMHAUS"; # Augmented by prefixes |
|
|
rbl = "zen.spamhaus.org"; |
|
|
rbl = "zen.spamhaus.org"; |
|
|
# Check types |
|
|
# Check types |
|
|
received = true; |
|
|
|
|
|
from = true; |
|
|
|
|
|
|
|
|
checks = ['received', 'from']; |
|
|
|
|
|
|
|
|
symbols_prefixes = { |
|
|
symbols_prefixes = { |
|
|
received = 'RECEIVED', |
|
|
received = 'RECEIVED', |
|
|
|
|
|
|
|
|
symbol = "MAILSPIKE"; |
|
|
symbol = "MAILSPIKE"; |
|
|
rbl = "rep.mailspike.net"; |
|
|
rbl = "rep.mailspike.net"; |
|
|
is_whitelist = true; |
|
|
is_whitelist = true; |
|
|
from = true; # Check source IP address |
|
|
|
|
|
|
|
|
checks = ['from']; |
|
|
whitelist_exception = "MAILSPIKE"; |
|
|
whitelist_exception = "MAILSPIKE"; |
|
|
whitelist_exception = "RWL_MAILSPIKE_GOOD"; |
|
|
whitelist_exception = "RWL_MAILSPIKE_GOOD"; |
|
|
whitelist_exception = "RWL_MAILSPIKE_NEUTRAL"; |
|
|
whitelist_exception = "RWL_MAILSPIKE_NEUTRAL"; |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
senderscore { |
|
|
senderscore { |
|
|
symbol = "RBL_SENDERSCORE"; |
|
|
symbol = "RBL_SENDERSCORE"; |
|
|
from = true; # Check source IP address |
|
|
|
|
|
|
|
|
checks = ['from']; |
|
|
rbl = "bl.score.senderscore.com"; |
|
|
rbl = "bl.score.senderscore.com"; |
|
|
} |
|
|
} |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
symbol = "RBL_SEM"; |
|
|
symbol = "RBL_SEM"; |
|
|
rbl = "bl.spameatingmonkey.net"; |
|
|
rbl = "bl.spameatingmonkey.net"; |
|
|
ipv6 = false; |
|
|
ipv6 = false; |
|
|
from = true; # Check source IP address |
|
|
|
|
|
|
|
|
checks = ['from']; |
|
|
} |
|
|
} |
|
|
|
|
|
|
|
|
semIPv6 { |
|
|
semIPv6 { |
|
|
|
|
|
|
|
|
rbl = "bl.ipv6.spameatingmonkey.net"; |
|
|
rbl = "bl.ipv6.spameatingmonkey.net"; |
|
|
ipv4 = false; |
|
|
ipv4 = false; |
|
|
ipv6 = true; |
|
|
ipv6 = true; |
|
|
from = true; # Check source IP address |
|
|
|
|
|
|
|
|
checks = ['from']; |
|
|
} |
|
|
} |
|
|
|
|
|
|
|
|
dnswl { |
|
|
dnswl { |
|
|
symbol = "RCVD_IN_DNSWL"; |
|
|
symbol = "RCVD_IN_DNSWL"; |
|
|
rbl = "list.dnswl.org"; |
|
|
rbl = "list.dnswl.org"; |
|
|
ipv6 = true; |
|
|
ipv6 = true; |
|
|
from = true; # Check source IP address |
|
|
|
|
|
received = true; # Check source IP address |
|
|
|
|
|
|
|
|
checks = ['from', 'received']; |
|
|
is_whitelist = true; |
|
|
is_whitelist = true; |
|
|
whitelist_exception = "RCVD_IN_DNSWL"; |
|
|
whitelist_exception = "RCVD_IN_DNSWL"; |
|
|
whitelist_exception = "RCVD_IN_DNSWL_NONE"; |
|
|
whitelist_exception = "RCVD_IN_DNSWL_NONE"; |
|
|
|
|
|
|
|
|
symbol = "RBL_VIRUSFREE_UNKNOWN"; |
|
|
symbol = "RBL_VIRUSFREE_UNKNOWN"; |
|
|
rbl = "bip.virusfree.cz"; |
|
|
rbl = "bip.virusfree.cz"; |
|
|
ipv6 = true; |
|
|
ipv6 = true; |
|
|
from = true; # Check source IP address |
|
|
|
|
|
|
|
|
checks = ['from']; |
|
|
returncodes { |
|
|
returncodes { |
|
|
RBL_VIRUSFREE_BOTNET = "127.0.0.2"; |
|
|
RBL_VIRUSFREE_BOTNET = "127.0.0.2"; |
|
|
} |
|
|
} |
|
|
|
|
|
|
|
|
symbol = "RBL_NIXSPAM"; |
|
|
symbol = "RBL_NIXSPAM"; |
|
|
rbl = "ix.dnsbl.manitu.net"; |
|
|
rbl = "ix.dnsbl.manitu.net"; |
|
|
ipv6 = true; |
|
|
ipv6 = true; |
|
|
from = true; # Check source IP address |
|
|
|
|
|
|
|
|
checks = ['from']; |
|
|
} |
|
|
} |
|
|
|
|
|
|
|
|
blocklistde { |
|
|
blocklistde { |
|
|
|
|
|
|
|
|
symbol = "BLOCKLISTDE"; |
|
|
symbol = "BLOCKLISTDE"; |
|
|
rbl = "bl.blocklist.de"; |
|
|
rbl = "bl.blocklist.de"; |
|
|
ipv6 = true; |
|
|
ipv6 = true; |
|
|
received = true; |
|
|
|
|
|
from = true; |
|
|
|
|
|
|
|
|
checks = ['from', 'received']; |
|
|
} |
|
|
} |
|
|
|
|
|
|
|
|
# Dkim whitelist |
|
|
# Dkim whitelist |
|
|
dnswl_dwl { |
|
|
dnswl_dwl { |
|
|
symbol = "DWL_DNSWL"; |
|
|
symbol = "DWL_DNSWL"; |
|
|
rbl = "dwl.dnswl.org"; |
|
|
rbl = "dwl.dnswl.org"; |
|
|
dkim = true; |
|
|
|
|
|
dkim_domainonly = false; |
|
|
|
|
|
dkim_match_from = true; |
|
|
|
|
|
|
|
|
checks = ['dkim']; |
|
|
ignore_whitelist = true; |
|
|
ignore_whitelist = true; |
|
|
unknown = false; |
|
|
unknown = false; |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
hash_format = "base32"; |
|
|
hash_format = "base32"; |
|
|
hash_len = 32; |
|
|
hash_len = 32; |
|
|
rbl = "email.rspamd.com"; |
|
|
rbl = "email.rspamd.com"; |
|
|
emails = true; # Emails in body |
|
|
|
|
|
replyto = true; # Email from reply-to header |
|
|
|
|
|
|
|
|
checks = ['emails', 'replyto']; |
|
|
hash = "blake2"; |
|
|
hash = "blake2"; |
|
|
returncodes = { |
|
|
returncodes = { |
|
|
RSPAMD_EMAILBL = "127.0.0.2"; |
|
|
RSPAMD_EMAILBL = "127.0.0.2"; |
|
|
|
|
|
|
|
|
ignore_whitelist = true; |
|
|
ignore_whitelist = true; |
|
|
ignore_defaults = true; |
|
|
ignore_defaults = true; |
|
|
rbl = "ebl.msbl.org"; |
|
|
rbl = "ebl.msbl.org"; |
|
|
emails = true; # Emails in body |
|
|
|
|
|
replyto = true; # Email from reply-to header |
|
|
|
|
|
|
|
|
checks = ['emails', 'replyto']; |
|
|
emails_domainonly = false; |
|
|
emails_domainonly = false; |
|
|
hash = "sha1"; |
|
|
hash = "sha1"; |
|
|
returncodes = { |
|
|
returncodes = { |
|
|
|
|
|
|
|
|
"SURBL_MULTI" { |
|
|
"SURBL_MULTI" { |
|
|
ignore_defaults = true; |
|
|
ignore_defaults = true; |
|
|
rbl = "multi.surbl.org"; |
|
|
rbl = "multi.surbl.org"; |
|
|
dkim = true; |
|
|
|
|
|
emails = true; |
|
|
|
|
|
urls = true; |
|
|
|
|
|
|
|
|
checks = ['emails', 'dkim', 'urls']; |
|
|
emails_domainonly = true; |
|
|
emails_domainonly = true; |
|
|
|
|
|
|
|
|
returnbits = { |
|
|
returnbits = { |
|
|
|
|
|
|
|
|
"URIBL_MULTI" { |
|
|
"URIBL_MULTI" { |
|
|
ignore_defaults = true; |
|
|
ignore_defaults = true; |
|
|
rbl = "multi.uribl.com"; |
|
|
rbl = "multi.uribl.com"; |
|
|
dkim = true; |
|
|
|
|
|
emails = true; |
|
|
|
|
|
urls = true; |
|
|
|
|
|
|
|
|
checks = ['emails', 'dkim', 'urls']; |
|
|
emails_domainonly = true; |
|
|
emails_domainonly = true; |
|
|
|
|
|
|
|
|
returnbits { |
|
|
returnbits { |
|
|
|
|
|
|
|
|
"RSPAMD_URIBL" { |
|
|
"RSPAMD_URIBL" { |
|
|
ignore_defaults = true; |
|
|
ignore_defaults = true; |
|
|
rbl = "uribl.rspamd.com"; |
|
|
rbl = "uribl.rspamd.com"; |
|
|
dkim = true; |
|
|
|
|
|
emails = true; |
|
|
|
|
|
urls = true; |
|
|
|
|
|
|
|
|
checks = ['emails', 'dkim', 'urls']; |
|
|
emails_domainonly = true; |
|
|
emails_domainonly = true; |
|
|
hash = 'blake2'; |
|
|
hash = 'blake2'; |
|
|
hash_len = 32; |
|
|
hash_len = 32; |
|
|
|
|
|
|
|
|
ignore_defaults = true; |
|
|
ignore_defaults = true; |
|
|
rbl = "dbl.spamhaus.org"; |
|
|
rbl = "dbl.spamhaus.org"; |
|
|
no_ip = true; |
|
|
no_ip = true; |
|
|
dkim = true; |
|
|
|
|
|
emails = true; |
|
|
|
|
|
|
|
|
checks = ['emails', 'dkim', 'urls']; |
|
|
emails_domainonly = true; |
|
|
emails_domainonly = true; |
|
|
urls = true; |
|
|
|
|
|
|
|
|
|
|
|
returncodes = { |
|
|
returncodes = { |
|
|
# spam domain |
|
|
# spam domain |
|
|
|
|
|
|
|
|
ignore_defaults = true; |
|
|
ignore_defaults = true; |
|
|
rbl = "uribl.spameatingmonkey.net"; |
|
|
rbl = "uribl.spameatingmonkey.net"; |
|
|
no_ip = true; |
|
|
no_ip = true; |
|
|
dkim = true; |
|
|
|
|
|
emails = true; |
|
|
|
|
|
|
|
|
checks = ['emails', 'dkim', 'urls']; |
|
|
emails_domainonly = true; |
|
|
emails_domainonly = true; |
|
|
urls = true; |
|
|
|
|
|
returnbits { |
|
|
returnbits { |
|
|
SEM_URIBL = 2; |
|
|
SEM_URIBL = 2; |
|
|
} |
|
|
} |
|
|
|
|
|
|
|
|
ignore_defaults = true; |
|
|
ignore_defaults = true; |
|
|
rbl = "fresh15.spameatingmonkey.net"; |
|
|
rbl = "fresh15.spameatingmonkey.net"; |
|
|
no_ip = true; |
|
|
no_ip = true; |
|
|
dkim = true; |
|
|
|
|
|
emails = true; |
|
|
|
|
|
|
|
|
checks = ['emails', 'dkim', 'urls']; |
|
|
emails_domainonly = true; |
|
|
emails_domainonly = true; |
|
|
urls = true; |
|
|
|
|
|
returnbits { |
|
|
returnbits { |
|
|
SEM_URIBL_FRESH15 = 2; |
|
|
SEM_URIBL_FRESH15 = 2; |
|
|
} |
|
|
} |