mirrors
/
rspamd
mirror of https://github.com/vstakhov/rspamd.git
Watch 1
Star 0
Fork 0
Code Issues 0 Releases 159 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
3414 Commits
29 Branches
Tree: 8a0e533d92
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '8a0e533d92'
${ noResults }
rspamd/conf/modules.conf

modules.conf 6.3KB
Raw Blame History

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282 
  1. # Rspamd modules configuration

  2. fuzzy_check {

  3.     min_bytes = 300;

  4. 	rule {

  5. 		servers = "highsecure.ru:11335";

  6. 		symbol = "FUZZY_UNKNOWN";

  7. 		mime_types = "application/pdf";

  8. 		max_score = 20.0;

  9. 		read_only = yes;

  10. 		skip_unknown = yes;

  11. 		fuzzy_map = {

  12. 			FUZZY_DENIED {

  13. 				max_score = 20.0;

  14. 				flag = 1

  15. 			}

  16. 			FUZZY_PROB {

  17. 				max_score = 10.0;

  18. 				flag = 2

  19. 			}

  20. 			FUZZY_WHITE {

  21. 				max_score = 2.0;

  22. 				flag = 3

  23. 			}

  24. 		}

  25. 	}

  26. }

  27. forged_recipients {

  28.     symbol_sender = "FORGED_SENDER";

  29.     symbol_rcpt = "FORGED_RECIPIENTS";

  30. }

  31. maillist {

  32.     symbol = "MAILLIST";

  33. }

  34. surbl {

  35.     whitelist = "file://$CONFDIR/surbl-whitelist.inc";

  36.     exceptions = "file://$CONFDIR/2tld.inc";

  37. 

  38.     rule {

  39.         suffix = "multi.surbl.org";

  40.         symbol = "SURBL_MULTI";

  41.         bits {

  42.             JP_SURBL_MULTI = 64;

  43.             AB_SURBL_MULTI = 32;

  44.             MW_SURBL_MULTI = 16;

  45.             PH_SURBL_MULTI = 8;

  46.             WS_SURBL_MULTI = 4;

  47.             SC_SURBL_MULTI = 2;

  48.         }

  49.     }

  50.     rule {

  51.         suffix = "multi.uribl.com";

  52.         symbol = "URIBL_MULTI";

  53.         bits {

  54.             URIBL_BLACK = 2;

  55.             URIBL_GREY = 4;

  56.             URIBL_RED = 8;

  57.         }

  58.     }

  59.     rule {

  60.         suffix = "uribl.rambler.ru";

  61.         symbol = "RAMBLER_URIBL";

  62.     }

  63.     rule {

  64.         suffix = "dbl.spamhaus.org";

  65.         symbol = "DBL";

  66.         options = "noip";

  67.     }

  68.     rule {

  69.         suffix = "uribl.spameatingmonkey.net";

  70.         symbol = "SEM_URIBL_UNKNOWN";

  71.         bits {

  72.             SEM_URIBL = 2;

  73.         }

  74.         options = "noip";

  75.     }

  76.     rule {

  77.         suffix = "fresh15.spameatingmonkey.net";

  78.         symbol = "SEM_URIBL_FRESH15_UNKNOWN";

  79.         bits {

  80.             SEM_URIBL_FRESH15 = 2;

  81.         }

  82.         options = "noip";

  83.     }

  84. }

  85. rbl {

  86. 

  87.  default_from = true;

  88.  default_received = false;

  89.  default_exclude_users = true;

  90. 

  91.  private_ips = "127.0.0.0/8 10.0.0.0/8 192.168.0.0/16 169.254.0.0/16 172.16.0.0/12 100.64.0.0/10 fc00::/7 fe80::/10 fec0::/10 ::1";

  92. 

  93.  rbls {

  94. 	

  95.     spamhaus {

  96.         symbol = "RBL_SPAMHAUS";

  97.         rbl = "zen.spamhaus.org";

  98.         ipv6 = true;

  99.         returncodes {

  100.             RBL_SPAMHAUS_SBL = "127.0.0.2";

  101.             RBL_SPAMHAUS_CSS = "127.0.0.3";

  102.             RBL_SPAMHAUS_XBL = "127.0.0.4";

  103.             RBL_SPAMHAUS_XBL = "127.0.0.5";

  104.             RBL_SPAMHAUS_XBL = "127.0.0.6";

  105.             RBL_SPAMHAUS_XBL = "127.0.0.7";

  106.             RBL_SPAMHAUS_PBL = "127.0.0.10";

  107.             RBL_SPAMHAUS_PBL = "127.0.0.11";

  108.         }

  109.     }

  110. 

  111.     spamhaus_xbl {

  112.        symbol = "RECEIVED_SPAMHAUS_XBL";

  113.        rbl = "xbl.spamhaus.org";

  114.        ipv6 = true;

  115.        received = true;

  116.        from = false;

  117.     }

  118.     

  119.     spamhaus_swl {

  120.         symbol = "RWL_SPAMHAUS_WL";

  121.         rbl = "swl.spamhaus.org";

  122.         ipv6 = true;

  123.         returncodes {

  124.             RWL_SPAMHAUS_WL_IND = "127.0.2.2";

  125.             RWL_SPAMHAUS_WL_TRANS = "127.0.2.3";

  126.             RWL_SPAMHAUS_WL_IND_EXP = "127.0.2.102";

  127.             RWL_SPAMHAUS_WL_TRANS_EXP = "127.0.2.103";

  128.         }

  129.     }

  130. 

  131.     mailspike {

  132.        symbol = "RBL_MAILSPIKE";

  133.        rbl = "rep.mailspike.net";

  134.          returncodes {

  135.             #http://mailspike.net/usage.html

  136.             RBL_MAILSPIKE_WORST = "127.0.0.10"

  137.             RBL_MAILSPIKE_VERYBAD = "127.0.0.11"

  138.             RBL_MAILSPIKE_BAD = "127.0.0.12"

  139.             RBL_MAILSPIKE_SUSP = "127.0.0.13"

  140.             RBL_MAILSPIKE_PROB = "127.0.0.14"

  141.             RWL_MAILSPIKE_POSSIBLE = "127.0.0.17"

  142.             RWL_MAILSPIKE_GOOD = "127.0.0.18"

  143.             RWL_MAILSPIKE_VERYGOOD = "127.0.0.19"

  144.             RWL_MAILSPIKE_EXCELLENT = "127.0.0.20"

  145.          }

  146.     }

  147.     

  148.     senderscore {

  149.        symbol = "RBL_SENDERSCORE";

  150.        rbl = "bl.score.senderscore.com";

  151.     }

  152.     

  153.     abusech {

  154.        symbol = "RBL_ABUSECH";

  155.        rbl = "spam.abuse.ch";

  156.     }

  157.     

  158.     uceprotect1 {

  159.        symbol = "RBL_UCEPROTECT_LEVEL1";

  160.        rbl = "dnsbl-1.uceprotect.net";

  161.     }

  162.     

  163.     sorbs {

  164.        symbol = "RBL_SORBS";

  165.        rbl = "dnsbl.sorbs.net";

  166.        returncodes {

  167.             #http://www.sorbs.net/general/using.shtml

  168.             RBL_SORBS_HTTP = "127.0.0.2"

  169.             RBL_SORBS_SOCKS = "127.0.0.3"

  170.             RBL_SORBS_MISC = "127.0.0.4"

  171.             RBL_SORBS_SMTP = "127.0.0.5"

  172.             RBL_SORBS_RECENT = "127.0.0.6"

  173.             RBL_SORBS_WEB = "127.0.0.7"

  174.             RBL_SORBS_DUL = "127.0.0.10"

  175.             RBL_SORBS_BLOCK = "127.0.0.8"

  176.             RBL_SORBS_ZOMBIE = "127.0.0.9"

  177.        }

  178.     }

  179.     

  180.     sem {

  181.         symbol = "RBL_SEM";

  182.         rbl = "bl.spameatingmonkey.net";

  183.     }

  184.     

  185.     semIPv6 {

  186.         symbol = "RBL_SEM_IPV6";

  187.         rbl = "bl.ipv6.spameatingmonkey.net";

  188.         ipv4 = false;

  189.         ipv6 = true;

  190.     }

  191. 

  192.     dnswl {

  193.         symbol = "RCVD_IN_DNSWL";

  194.         rbl = "list.dnswl.org";

  195.         ipv6 = true;

  196.         returncodes {

  197.             RCVD_IN_DNSWL_NONE = "127.0.%d+.0";

  198.             RCVD_IN_DNSWL_LOW = "127.0.%d+.1";

  199.             RCVD_IN_DNSWL_MED = "127.0.%d+.2";

  200.             RCVD_IN_DNSWL_HI  = "127.0.%d+.3";

  201.             DNSWL_BLOCKED = "127.0.0.255";

  202.         }

  203.     }

  204. 

  205.     rambleremails {

  206.         symbol = RAMBLER_EMAILBL;

  207.         rbl = email-bl.rambler.ru;

  208.         from = false;

  209.         emails = true;

  210.         exclude_users = false;

  211.         exclude_private_ips = false;

  212.         exclude_local = false;

  213.     }

  214. 

  215.  }

  216. }

  217. 

  218. chartable {

  219.     threshold = 0.300000;

  220.     symbol = "R_MIXED_CHARSET";

  221. }

  222. once_received {

  223.     good_host = "mail";

  224.     bad_host = "static";

  225.     bad_host = "dynamic";

  226.     symbol_strict = "ONCE_RECEIVED_STRICT";

  227.     symbol = "ONCE_RECEIVED";

  228. }

  229. 

  230. #multimap {

  231. #}

  232. 

  233. phishing {

  234.     symbol = "PHISHING";

  235. }

  236. #emails {

  237. #}

  238. spf {

  239.     spf_cache_size = 2k;

  240.     spf_cache_expire = 1d;

  241. }

  242. dkim {

  243.     dkim_cache_size = 2k;

  244.     dkim_cache_expire = 1d;

  245.     time_jitter = 6h;

  246.     trusted_only = false;

  247.     skip_multi = false;

  248. }

  249. 

  250. ratelimit {

  251.     limit = "to:100:0.033333333";

  252.     limit = "to_ip:30:0.025";

  253.     limit = "to_ip_from:20:0.01666666667";

  254.     limit = "bounce_to:10:0.000555556";

  255.     limit = "bounce_to_ip:5:0.000277778";

  256.     limit = "user:20:0.01666666667";

  257.     whitelisted_rcpts = "postmaster,mailer-daemon";

  258.     max_rcpt = 5;

  259. }

  260. 

  261. regexp {

  262.     max_size = 1M;

  263. }

  264. 

  265. ip_score {

  266. #	servers = "localhost";

  267. #   treshold = 100;

  268. #   reject_score = 3;

  269. #   no_action_score = -2;

  270. #   add_header_score = 1;

  271. #   whitelist = "file:///ip_map";

  272. }

  273. 

  274. hfilter {

  275.     helo_enabled = true;

  276.     hostname_enabled = true;

  277.     url_enabled = true;

  278.     from_enabled = true;

  279.     rcpt_enabled = true;

  280.     mid_enabled = true;

  281.     rcpt_enabled = true;

  282. }