mirrors
/
rspamd
miroir de https://github.com/vstakhov/rspamd.git
Suivre 1
Ajouter aux favoris 0
Bifurcation 0
Code Tickets 0 Versions 159 Wiki Activité
Vous ne pouvez pas sélectionner plus de 25 sujets Les noms de sujets doivent commencer par une lettre ou un nombre, peuvent contenir des tirets ('-') et peuvent comporter jusqu'à 35 caractères.
6994 Révisions
29 Branches
Aborescence: 1c356c51a9
Branches Tags
${ item.name }
Créer la branche ${ searchTerm }
de '1c356c51a9'
${ noResults }
rspamd/utils/rspamd_stats.pl

rspamd_stats.pl 4.3KB
Brut Annotations Historique

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173 
  1. #!/usr/bin/env perl

  2. 

  3. use Data::Dumper;

  4. use Getopt::Long;

  5. use warnings;

  6. use strict;

  7. use Time::Piece;

  8. 

  9. my @symbols_search;

  10. my $start = "";

  11. my $end = "";

  12. my $reject_score = 30.0;

  13. my $junk_score = 7.5;

  14. my $log_file = "/var/log/rspamd/rspamd.log";

  15. my $dateformat = "%Y-%m-%d %H:%M:%S";

  16. 

  17. GetOptions(

  18.   "reject-score=f" => \$reject_score,

  19.   "junk-score=f" => \$junk_score,

  20.   "start=s" => \$start,

  21.   "end=s" => \$end,

  22.   "symbol=s@" => \@symbols_search,

  23.   "log=s" => \$log_file,

  24.   "dateformat=s" => \$dateformat);

  25. 

  26. # Global vars

  27. my $total = 0;

  28. my $total_spam = 0;

  29. my $total_junk = 0;

  30. my $junk_symbols = 0;

  31. my $spam_symbols = 0;

  32. my $ham_symbols = 0;

  33. my $ham_spam_change = 0;

  34. my $ham_junk_change = 0;

  35. my $diff_alpha = 0.1;

  36. my %sym_res;

  37. 

  38. my $st = 0;

  39. my $ed = 0;

  40. 

  41. if ($start ne "") {

  42.   $st = Time::Piece->strptime($start, $dateformat);

  43. }

  44. 

  45. if ($end ne "") {

  46.   $ed = Time::Piece->strptime($end, $dateformat);

  47. }

  48. 

  49. my $rspamd_log;

  50. 

  51. if ($log_file eq '-') {

  52.   $rspamd_log = \*STDIN;

  53. }

  54. else {

  55.   open($rspamd_log, '<', $log_file) or die "cannot open $log_file";

  56. }

  57. 

  58. foreach my $s (@symbols_search) {

  59.   $sym_res{$s} = {

  60.     hits => 0,

  61.     spam_hits => 0,

  62.     junk_hits => 0,

  63.     spam_change => 0,

  64.     junk_change => 0,

  65.     weight => 0,

  66.   };

  67. }

  68. 

  69. while(<$rspamd_log>) {

  70.   if (/^.*rspamd_task_write_log.*$/) {

  71.     my @elts = split /\s+/;

  72.     my $ts = $elts[0] . ' ' . $elts[1];

  73. 

  74.     if ($st or $ed) {

  75.       my $dt = Time::Piece->strptime($ts, $dateformat) or die "cannot parse $ts";

  76. 

  77.       if ($dt) {

  78.         if ($st != 0 && $dt < $st) {

  79.           next;

  80.         }

  81.         if ($ed != 0 && $dt > $ed) {

  82.           next;

  83.         }

  84.       }

  85.     }

  86. 

  87.     if ($_ !~ /\[(-?\d+(?:\.\d+)?)\/(-?\d+(?:\.\d+)?)\]\s+\[([^\]]+)\]/) {

  88.       #print "BAD\n";

  89.       next;

  90.     }

  91. 

  92.     $total ++;

  93.     my $score = $1 * 1.0;

  94. 

  95.     if ($score >= $reject_score) {

  96.       $total_spam ++;

  97.     }

  98.     elsif ($score >= $junk_score) {

  99.       $total_junk ++;

  100.     }

  101. 

  102.     # Symbols

  103.     my @symbols = split /,/, $3;

  104. 

  105.     foreach my $s (@symbols_search) {

  106.       my @selected = grep /$s/, @symbols;

  107. 

  108.       if (scalar(@selected) > 0) {

  109.         $selected[0] =~ /^[^\(]+\(([^\)]+)\).*$/;

  110.         my $sym_score = $1;

  111. 

  112.         if ($sym_score < $diff_alpha) {

  113.           next;

  114.         }

  115. 

  116.         my $r = $sym_res{$s};

  117.         $r->{hits} ++;

  118.         $r->{weight} += $sym_score;

  119.         my $is_spam = 0;

  120.         my $is_junk = 0;

  121. 

  122.         if ($score >= $reject_score) {

  123.           $is_spam = 1;

  124.           $r->{spam_hits} ++;

  125.         }

  126.         elsif ($score >= $junk_score) {

  127.           $is_junk = 1;

  128.           $r->{junk_hits} ++;

  129.         }

  130. 

  131.         my $score_without = $score - $sym_score;

  132. 

  133.         if ($is_spam && $score_without < $reject_score) {

  134.           $r->{spam_change} ++;

  135.         }

  136.         if ($is_junk && $score_without < $junk_score) {

  137.           $r->{junk_change} ++;

  138.         }

  139.       }

  140.     }

  141.   }

  142. }

  143. 

  144. my $total_ham = $total - ($total_spam + $total_junk);

  145. 

  146. if ($total > 0) {

  147.   while (my ($s, $r) = each(%sym_res)) {

  148.     if ($r->{hits} > 0) {

  149.       my $th = $r->{hits};

  150.       my $sh = $r->{spam_hits};

  151.       my $jh = $r->{junk_hits};

  152.       my $hh = $r->{hits} - $sh - $jh;

  153.       my $htp = $hh * 100.0 / $total_ham if $total_ham != 0;

  154.       my $stp = $sh * 100.0 / $total_spam if $total_spam != 0;

  155.       my $jtp = $jh * 100.0 / $total_junk if $total_junk != 0;

  156.       printf "Symbol: %s (weight %.3f) (%d hits, %.3f%%)\nHam hits: %d (%.3f%%), total ham: %d (ham with $s: %.3f%%)\nSpam hits: %d (%.3f%%), total spam: %d (spam with $s: %.3f%%)\nJunk hits: %d (%.3f%%), total junk: %d (junk with $s: %.3f%%)\n",

  157.           $s, $r->{weight} / $r->{hits}, $th, ($th / $total * 100.0),

  158.           $hh, ($hh / $th * 100.0), $total_ham, ($htp or 0),

  159.           $sh, ($sh / $th * 100.0), $total_spam, ($stp or 0),

  160.           $jh, ($jh / $th * 100.0), $total_junk, ($jtp or 0);

  161.       my $schp = $r->{spam_change} / $total_spam * 100.0 if $total_spam;

  162.       my $jchp = $r->{junk_change} / $total_junk * 100.0 if $total_junk;

  163.       printf "Spam changes (ham/junk -> spam): %d (%.3f%%), total percentage (changes / spam hits): %.3f%%\nJunk changes (ham -> junk): %d (%.3f%%), total percentage (changes / junk hits): %.3f%%\n",

  164.           $r->{spam_change}, ($r->{spam_change} / $th * 100.0), ($schp or 0),

  165.           $r->{junk_change}, ($r->{junk_change} / $th * 100.0), ($jchp or 0);

  166.     }

  167.     else {

  168.       print "Symbol $s has not been met\n";

  169.     }

  170. 

  171.     print '*' x 20 . "\n";

  172.   }

  173. }