mirrors
/
rspamd
mirror of https://github.com/vstakhov/rspamd.git
Watch 1
Star 0
Fork 0
Code Issues 0 Releases 159 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
7792 Commits
28 Branches
Tree: 97250eea59
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '97250eea59'
${ noResults }
rspamd/src/plugins/lua/hfilter.lua

hfilter.lua 16KB
Raw Blame History

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390391392393394395396397398399400401402403404405406407408409410411412413414415416417418419420421422423424425426427428429430431432433434435436437438439440441442443444445446447448449450451452453454455456457458459460461462463464465466467468469470471472473474475476477478479480481482483484485486487488489490491492493494495496497498499500501502503504505506507508509510511512513514 
  1. --[[

  2. Copyright (c) 2011-2016, Vsevolod Stakhov <vsevolod@highsecure.ru>

  3. Copyright (c) 2013-2015, Alexey Savelyev <info@homeweb.ru>

  4. 

  5. Licensed under the Apache License, Version 2.0 (the "License");

  6. you may not use this file except in compliance with the License.

  7. You may obtain a copy of the License at

  8. 

  9.     http://www.apache.org/licenses/LICENSE-2.0

  10. 

  11. Unless required by applicable law or agreed to in writing, software

  12. distributed under the License is distributed on an "AS IS" BASIS,

  13. WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.

  14. See the License for the specific language governing permissions and

  15. limitations under the License.

  16. ]]--

  17. 

  18. 

  19. -- Weight for checks_hellohost and checks_hello: 5 - very hard, 4 - hard, 3 - meduim, 2 - low, 1 - very low.

  20. -- From HFILTER_HELO_* and HFILTER_HOSTNAME_* symbols the maximum weight is selected in case of their actuating.

  21. 

  22. 

  23. --local dumper = require 'pl.pretty'.dump

  24. local rspamd_regexp = require "rspamd_regexp"

  25. local rspamd_logger = require "rspamd_logger"

  26. local rspamc_local_helo = "rspamc.local"

  27. local checks_hellohost = {

  28.   ['[.-]gprs[.-]'] = 5, ['gprs[.-][0-9]'] = 5, ['[0-9][.-]?gprs'] = 5,

  29.   ['[.-]cdma[.-]'] = 5, ['cdma[.-][0-9]'] = 5, ['[0-9][.-]?cdma'] = 5,

  30.   ['[.-]homeuser[.-]'] = 5, ['homeuser[.-][0-9]'] = 5, ['[0-9][.-]?homeuser'] = 5,

  31.   ['[.-]dhcp[.-]'] = 5, ['dhcp[.-][0-9]'] = 5, ['[0-9][.-]?dhcp'] = 5,

  32.   ['[.-]catv[.-]'] = 5, ['catv[.-][0-9]'] = 5, ['[0-9][.-]?catv'] = 5,

  33.   ['[.-]wifi[.-]'] = 5, ['wifi[.-][0-9]'] = 5, ['[0-9][.-]?wifi'] = 5,

  34.   ['[.-]dial-?up[.-]'] = 5, ['dial-?up[.-][0-9]'] = 5, ['[0-9][.-]?dial-?up'] = 5,

  35.   ['[.-]dynamic[.-]'] = 5, ['dynamic[.-][0-9]'] = 5, ['[0-9][.-]?dynamic'] = 5,

  36.   ['[.-]dyn[.-]'] = 5, ['dyn[.-][0-9]'] = 5, ['[0-9][.-]?dyn'] = 5,

  37.   ['[.-]clients?[.-]'] = 1, ['clients?[.-][0-9]{2,}'] = 5, ['[0-9]{3,}[.-]?clients?'] = 5,

  38.   ['[.-]dynip[.-]'] = 5, ['dynip[.-][0-9]'] = 5, ['[0-9][.-]?dynip'] = 5,

  39.   ['[.-]broadband[.-]'] = 5, ['broadband[.-][0-9]'] = 5, ['[0-9][.-]?broadband'] = 5,

  40.   ['[.-]broad[.-]'] = 5, ['broad[.-][0-9]'] = 5, ['[0-9][.-]?broad'] = 5,

  41.   ['[.-]bredband[.-]'] = 5, ['bredband[.-][0-9]'] = 5, ['[0-9][.-]?bredband'] = 5,

  42.   ['[.-]nat[.-]'] = 5, ['nat[.-][0-9]'] = 5, ['[0-9][.-]?nat'] = 5,

  43.   ['[.-]pptp[.-]'] = 5, ['pptp[.-][0-9]'] = 5, ['[0-9][.-]?pptp'] = 5,

  44.   ['[.-]pppoe[.-]'] = 5, ['pppoe[.-][0-9]'] = 5, ['[0-9][.-]?pppoe'] = 5,

  45.   ['[.-]ppp[.-]'] = 5, ['ppp[.-][0-9]'] = 5, ['[0-9][.-]?ppp'] = 5,

  46.   ['[.-]modem[.-]'] = 5, ['modem[.-][0-9]'] = 5, ['[0-9][.-]?modem'] = 5,

  47.   ['[.-]cablemodem[.-]'] = 5, ['cablemodem[.-][0-9]'] = 5, ['[0-9][.-]?cablemodem'] = 5,

  48.   ['[.-]comcast[.-]'] = 5, ['comcast[.-][0-9]'] = 5, ['[0-9][.-]?comcast'] = 5,

  49.   ['[.-][a|x]?dsl-dynamic[.-]'] = 5, ['[a|x]?dsl-dynamic[.-]?[0-9]'] = 5, ['[0-9][.-]?[a|x]?dsl-dynamic'] = 5,

  50.   ['[.-][a|x]?dsl[.-]'] = 4, ['[a|x]?dsl[.-]?[0-9]'] = 4, ['[0-9][.-]?[a|x]?dsl'] = 4,

  51.   ['[.-][a|x]?dsl-line[.-]'] = 4, ['[a|x]?dsl-line[.-]?[0-9]'] = 4, ['[0-9][.-]?[a|x]?dsl-line'] = 4,

  52.   ['[.-]in-?addr[.-]'] = 4, ['in-?addr[.-][0-9]'] = 4, ['[0-9][.-]?in-?addr'] = 4,

  53.   ['[.-]pool[.-]'] = 4, ['pool[.-][0-9]'] = 4, ['[0-9][.-]?pool'] = 4,

  54.   ['[.-]fibertel[.-]'] = 4, ['fibertel[.-][0-9]'] = 4, ['[0-9][.-]?fibertel'] = 4,

  55.   ['[.-]fbx[.-]'] = 4, ['fbx[.-][0-9]'] = 4, ['[0-9][.-]?fbx'] = 4,

  56.   ['[.-]unused-addr[.-]'] = 3, ['unused-addr[.-][0-9]'] = 3, ['[0-9][.-]?unused-addr'] = 3,

  57.   ['[.-]cable[.-]'] = 3, ['cable[.-][0-9]'] = 3, ['[0-9][.-]?cable'] = 3,

  58.   ['[.-]kabel[.-]'] = 3, ['kabel[.-][0-9]'] = 3, ['[0-9][.-]?kabel'] = 3,

  59.   ['[.-]host[.-]'] = 2, ['host[.-][0-9]'] = 2, ['[0-9][.-]?host'] = 2,

  60.   ['[.-]customers?[.-]'] = 1, ['customers?[.-][0-9]'] = 1, ['[0-9][.-]?customers?'] = 1,

  61.   ['[.-]user[.-]'] = 1, ['user[.-][0-9]'] = 1, ['[0-9][.-]?user'] = 1,

  62.   ['[.-]peer[.-]'] = 1, ['peer[.-][0-9]'] = 1, ['[0-9][.-]?peer'] = 1

  63. }

  64. 

  65. local checks_hello = {

  66.   ['^[^\\.]+$'] = 5, -- for helo=COMPUTER, ANNA, etc... Without dot in helo

  67.   ['^(dsl)?(device|speedtouch)\\.lan$'] = 5,

  68.   ['\\.(lan|local|home|localdomain|intra|in-addr.arpa|priv|online|user|veloxzon)$'] = 5

  69. }

  70. 

  71. local checks_hello_badip = {

  72.   ['^0\\.'] = 5,

  73.   ['^::1$'] = 5, --loopback ipv4, ipv6

  74.   ['^127\\.'] = 5,

  75.   ['^10\\.'] = 5,

  76.   ['^192\\.168\\.'] = 5, --local ipv4

  77.   ['^172\\.1[6-9]\\.'] = 5,

  78.   ['^172\\.2[0-9]\\.'] = 5,

  79.   ['^172\\.3[01]\\.'] = 5,  --local ipv4

  80.   ['^169\\.254\\.'] = 5, --chanel ipv4

  81.   ['^192\\.0\\.0\\.'] = 5, --IETF Protocol

  82.   ['^192\\.88\\.99\\.'] = 5, --RFC3068

  83.   ['^100.6[4-9]\\.'] = 5,

  84.   ['^100.[7-9]\\d\\.'] = 5,

  85.   ['^100.1[01]\\d\\.'] = 5,

  86.   ['^100.12[0-7]\\d\\.'] = 5, --RFC6598

  87.   ['^\\d\\.\\d\\.\\d\\.255$'] = 5, --multicast ipv4

  88.   ['^192\\.0\\.2\\.'] = 5,

  89.   ['^198\\.51\\.100\\.'] = 5,

  90.   ['^203\\.0\\.113\\.'] = 5,  --sample

  91.   ['^fe[89ab][0-9a-f]::'] = 5,

  92.   ['^fe[cdf][0-9a-f]:'] = 5, --local ipv6 (fe80:: - febf::, fec0:: - feff::)

  93.   ['^2001:db8::'] = 5, --reserved RFC 3849 for ipv6

  94.   ['^fc00::'] = 5,

  95.   ['^ffxx::'] = 5 --unicast, multicast ipv6

  96. }

  97. 

  98. local checks_hello_bareip = {

  99.   '^\\d+[x.-]\\d+[x.-]\\d+[x.-]\\d+$', --bareip ipv4,

  100.   '^[0-9a-f]+:' --bareip ipv6

  101. }

  102. 

  103. -- Table of compiled regexps indexed by pattern

  104. local compiled_regexp = {

  105. }

  106. 

  107. local config = {

  108.   ['helo_enabled'] = false,

  109.   ['hostname_enabled'] = false,

  110.   ['from_enabled'] = false,

  111.   ['rcpt_enabled'] = false,

  112.   ['mid_enabled'] = false,

  113.   ['url_enabled'] = false

  114. }

  115. 

  116. local function check_regexp(str, regexp_text)

  117.   if not compiled_regexp[regexp_text] then

  118.     compiled_regexp[regexp_text] = rspamd_regexp.create(regexp_text, 'i')

  119.   end

  120. 

  121.   if compiled_regexp[regexp_text] then

  122.     return compiled_regexp[regexp_text]:match(str)

  123.   end

  124. 

  125.   return false

  126. end

  127. 

  128. local function check_fqdn(domain)

  129.   if check_regexp(domain, '(?=^.{4,253}$)(^((?!-)[a-zA-Z0-9-]{1,63}(?<!-)\\.)+[a-zA-Z0-9-]{2,63}\\.?$)') then

  130.     return true

  131.   end

  132.   return false

  133. end

  134. 

  135. -- host: host for check

  136. -- symbol_suffix: suffix for symbol

  137. -- eq_ip: ip for comparing or empty string

  138. -- eq_host: host for comparing or empty string

  139. local function check_host(task, host, symbol_suffix, eq_ip, eq_host)

  140.   local failed_address = 0

  141.   local resolved_address = {}

  142. 

  143.   local function check_host_cb_mx(resolver, to_resolve, results, err)

  144.     task:inc_dns_req()

  145.     if not results then

  146.       task:insert_result('HFILTER_' .. symbol_suffix .. '_NORES_A_OR_MX', 1.0)

  147.     else

  148.       for _,mx in pairs(results) do

  149.         if mx['name'] then

  150.           local failed_mx_address = 0

  151.           -- Capture failed_mx_address

  152.           local function check_host_cb_mx_a(resolver, to_resolve, results, err)

  153.             task:inc_dns_req()

  154. 

  155.             if not results then

  156.               failed_mx_address = failed_mx_address + 1

  157.             end

  158. 

  159.             if failed_mx_address >= 2 then

  160.               task:insert_result('HFILTER_' .. symbol_suffix .. '_NORESOLVE_MX', 1.0)

  161.             end

  162.           end

  163. 

  164.           task:get_resolver():resolve('a', {

  165.             task=task,

  166.             name = mx['name'],

  167.             callback = check_host_cb_mx_a

  168.           })

  169.           task:get_resolver():resolve('aaaa', {

  170.             task = task,

  171.             name = mx['name'],

  172.             callback = check_host_cb_mx_a

  173.           })

  174.         end

  175.       end

  176.     end

  177.   end

  178.   local function check_host_cb_a(resolver, to_resolve, results, err)

  179.     task:inc_dns_req()

  180. 

  181.     if not results then

  182.       failed_address = failed_address + 1

  183.     else

  184.       for _,result in pairs(results) do

  185.         table.insert(resolved_address, result:to_string())

  186.       end

  187.     end

  188. 

  189.     if failed_address >= 2 then

  190.       -- No A or AAAA records

  191.       if eq_ip and eq_ip ~= '' then

  192.         for _,result in pairs(resolved_address) do

  193.           if result == eq_ip then

  194.             return true

  195.           end

  196.         end

  197.         task:insert_result('HFILTER_' .. symbol_suffix .. '_IP_A', 1.0)

  198.       end

  199.       task:get_resolver():resolve_mx({

  200.         task = task,

  201.         name = host,

  202.         callback = check_host_cb_mx

  203.       })

  204.     end

  205.   end

  206. 

  207.   if host then

  208.     host = string.lower(host)

  209.   else

  210.     return false

  211.   end

  212.   if eq_host then

  213.     eq_host = string.lower(eq_host)

  214.   else

  215.     eq_host = ''

  216.   end

  217. 

  218.   if check_fqdn(host) then

  219.     if eq_host == '' or eq_host ~= 'unknown' or eq_host ~= host then

  220.       task:get_resolver():resolve('a', {

  221.         task=task,

  222.         name = host,

  223.         callback = check_host_cb_a

  224.       })

  225.       -- Check ipv6 as well

  226.       task:get_resolver():resolve('aaaa', {

  227.         task = task,

  228.         name = host,

  229.         callback = check_host_cb_a

  230.       })

  231.     end

  232.   else

  233.     task:insert_result('HFILTER_' .. symbol_suffix .. '_NOT_FQDN', 1.0)

  234.   end

  235. 

  236.   return true

  237. end

  238. 

  239. --

  240. local function hfilter(task)

  241.   -- Links checks

  242.   if config['url_enabled'] then

  243.     local parts = task:get_text_parts()

  244.     if parts then

  245.       local plain_text_part = nil

  246.       local html_text_part = nil

  247.       for _,p in ipairs(parts) do

  248.         if p:is_html() then

  249.           html_text_part = p

  250.         else

  251.           plain_text_part = p

  252.         end

  253.       end

  254. 

  255.       if html_text_part then

  256.         local hc = html_text_part:get_html()

  257.         if hc then

  258.           local url_len = 0

  259.           hc:foreach_tag('a', function(tag, len)

  260.             url_len = url_len + len

  261.             return false

  262.           end)

  263. 

  264.           local plen = html_text_part:get_length()

  265. 

  266.           if url_len > 0 and plen > 0 then

  267.             local rel = url_len / plen

  268.             if rel > 0.8 then

  269.               local sc = (rel - 0.8) * 5.0

  270.               if sc > 1.0 then sc = 1.0 end

  271.               task:insert_result('HFILTER_URL_ONLY', sc)

  272.               local lines =  html_text_part:get_lines_count()

  273.               if lines > 0 and lines < 2 then

  274.                 task:insert_result('HFILTER_URL_ONELINE', 1.00)

  275.               end

  276.             end

  277.           end

  278.         elseif plain_text_part then

  279.           local url_len = plain_text_part:get_urls_length()

  280.           local plen = plain_text_part:get_length()

  281. 

  282.           if plen > 0 and url_len > 0 then

  283.             local rel = url_len / plen

  284.             if rel > 0.8 then

  285.               task:insert_result('HFILTER_URL_ONLY', (rel - 0.8) * 5.0)

  286.               local lines =  plain_text_part:get_lines_count()

  287.               if lines > 0 and lines < 2 then

  288.                 task:insert_result('HFILTER_URL_ONELINE', 1.00)

  289.               end

  290.             end

  291.           end

  292.         end

  293.       end

  294.     end

  295.   end

  296. 

  297.   --No more checks for auth user

  298.   if task:get_user() ~= nil then

  299.     return false

  300.   end

  301. 

  302.   --local message = task:get_message()

  303.   local ip = false

  304.   local rip = task:get_from_ip()

  305.   if rip and rip:is_valid() then

  306.     ip = rip:to_string()

  307.   end

  308. 

  309.   -- Check's HELO

  310.   local weight_helo = 0

  311.   if config['helo_enabled'] then

  312.     local helo = task:get_helo()

  313.     if helo then

  314.       if helo ~= rspamc_local_helo then

  315.         helo = string.gsub(helo, '[%[%]]', '')

  316.         -- Regexp check HELO (checks_hello_badip)

  317.         local find_badip = false

  318.         for regexp,weight in pairs(checks_hello_badip) do

  319.           if check_regexp(helo, regexp) then

  320.             task:insert_result('HFILTER_HELO_BADIP', 1.0)

  321.             find_badip = true

  322.             break

  323.           end

  324.         end

  325. 

  326.         -- Regexp check HELO (checks_hello_bareip)

  327.         local find_bareip = false

  328.         if not find_badip then

  329.           for _,regexp in pairs(checks_hello_bareip) do

  330.             if check_regexp(helo, regexp) then

  331.               task:insert_result('HFILTER_HELO_BAREIP', 1.0)

  332.               find_bareip = true

  333.               break

  334.             end

  335.           end

  336.         end

  337. 

  338.         if not find_badip and not find_bareip then

  339.           -- Regexp check HELO (checks_hello)

  340.           for regexp,weight in pairs(checks_hello) do

  341.             if check_regexp(helo, regexp) then

  342.               weight_helo = weight

  343.               break

  344.             end

  345.           end

  346.           -- Regexp check HELO (checks_hellohost)

  347.           for regexp,weight in pairs(checks_hellohost) do

  348.             if check_regexp(helo, regexp) then

  349.               if weight > weight_helo then

  350.                 weight_helo = weight

  351.               end

  352.               break

  353.             end

  354.           end

  355.           --FQDN check HELO

  356.           if ip and helo and weight_helo == 0 then

  357.             check_host(task, helo, 'HELO', ip)

  358.           end

  359.         end

  360.       end

  361.     end

  362.   end

  363. 

  364.   -- Check's HOSTNAME

  365.   local weight_hostname = 0

  366.   if config['hostname_enabled'] then

  367.     local hostname = task:get_hostname()

  368.     if hostname then

  369.       -- Check regexp HOSTNAME

  370.       if hostname == 'unknown' then

  371.         task:insert_result('HFILTER_HOSTNAME_UNKNOWN', 1.00)

  372.       else

  373.         for regexp,weight in pairs(checks_hellohost) do

  374.           if check_regexp(hostname, regexp) then

  375.             weight_hostname = weight

  376.             break

  377.           end

  378.         end

  379.       end

  380.     end

  381.   end

  382. 

  383.   --Insert weight's for HELO or HOSTNAME

  384.   if weight_helo > 0 and weight_helo >= weight_hostname then

  385.     task:insert_result('HFILTER_HELO_' .. weight_helo, 1.0)

  386.   elseif weight_hostname > 0 and weight_hostname > weight_helo then

  387.     task:insert_result('HFILTER_HOSTNAME_' .. weight_hostname, 1.0)

  388.   end

  389. 

  390.   -- MAILFROM checks --

  391.   local frombounce = false

  392.   if config['from_enabled'] then

  393.     local from = task:get_from(1)

  394.     if from then

  395.       --FROM host check

  396.       for _,fr in ipairs(from) do

  397.         local fr_split = rspamd_str_split(fr['addr'], '@')

  398.         if #fr_split == 2 then

  399.           check_host(task, fr_split[2], 'FROMHOST', '', '')

  400.           if fr_split[1] == 'postmaster' then

  401.             frombounce = true

  402.           end

  403.         end

  404.       end

  405.     else

  406.       if helo and helo ~= rspamc_local_helo then

  407.         task:insert_result('HFILTER_FROM_BOUNCE', 1.00)

  408.         frombounce = true

  409.       end

  410.     end

  411.   end

  412. 

  413.   -- Recipients checks --

  414.   if config['rcpt_enabled'] then

  415.     local rcpt = task:get_recipients()

  416.     if rcpt then

  417.       local count_rcpt = #rcpt

  418.       if frombounce then

  419.         if count_rcpt > 1 then

  420.           task:insert_result('HFILTER_RCPT_BOUNCEMOREONE', 1.00)

  421.         end

  422.       end

  423.     end

  424.   end

  425. 

  426.   --Message ID host check

  427.   if config['mid_enabled'] then

  428.     local message_id = task:get_message_id()

  429.     if message_id then

  430.       local mid_split = rspamd_str_split(message_id, '@')

  431.       if #mid_split == 2 and not string.find(mid_split[2], 'local') then

  432.         check_host(task, mid_split[2], 'MID')

  433.       end

  434.     end

  435.   end

  436. 

  437.   return false

  438. end

  439. 

  440. local symbols_enabled = {}

  441. 

  442. local symbols_helo = {

  443.   "HFILTER_HELO_BAREIP",

  444.   "HFILTER_HELO_BADIP",

  445.   "HFILTER_HELO_1",

  446.   "HFILTER_HELO_2",

  447.   "HFILTER_HELO_3",

  448.   "HFILTER_HELO_4",

  449.   "HFILTER_HELO_5",

  450.   "HFILTER_HELO_NORESOLVE_MX",

  451.   "HFILTER_HELO_NORES_A_OR_MX",

  452.   "HFILTER_HELO_IP_A",

  453.   "HFILTER_HELO_NOT_FQDN"

  454. }

  455. local symbols_hostname = {

  456.   "HFILTER_HOSTNAME_1",

  457.   "HFILTER_HOSTNAME_2",

  458.   "HFILTER_HOSTNAME_3",

  459.   "HFILTER_HOSTNAME_4",

  460.   "HFILTER_HOSTNAME_5",

  461.   "HFILTER_HOSTNAME_UNKNOWN"

  462. }

  463. local symbols_rcpt = {

  464.   "HFILTER_RCPT_BOUNCEMOREONE"

  465. }

  466. local symbols_mid = {

  467.   "HFILTER_MID_NORESOLVE_MX",

  468.   "HFILTER_MID_NORES_A_OR_MX",

  469.   "HFILTER_MID_NOT_FQDN"

  470. }

  471. local symbols_url = {

  472.   "HFILTER_URL_ONLY",

  473.   "HFILTER_URL_ONELINE"

  474. }

  475. local symbols_from = {

  476.   "HFILTER_FROMHOST_NORESOLVE_MX",

  477.   "HFILTER_FROMHOST_NORES_A_OR_MX",

  478.   "HFILTER_FROMHOST_NOT_FQDN",

  479.   "HFILTER_FROM_BOUNCE"

  480. }

  481. 

  482. local opts = rspamd_config:get_all_opt('hfilter')

  483. if opts then

  484.   for k,v in pairs(opts) do

  485.     config[k] = v

  486.   end

  487. end

  488. 

  489. local function append_t(t, a)

  490.   for _,v in ipairs(a) do table.insert(t, v) end

  491. end

  492. if config['helo_enabled'] then

  493.   append_t(symbols_enabled, symbols_helo)

  494. end

  495. if config['hostname_enabled'] then

  496.   append_t(symbols_enabled, symbols_hostname)

  497. end

  498. if config['from_enabled'] then

  499.   append_t(symbols_enabled, symbols_from)

  500. end

  501. if config['rcpt_enabled'] then

  502.   append_t(symbols_enabled, symbols_rcpt)

  503. end

  504. if config['mid_enabled'] then

  505.   append_t(symbols_enabled, symbols_mid)

  506. end

  507. if config['url_enabled'] then

  508.   append_t(symbols_enabled, symbols_url)

  509. end

  510. 

  511. --dumper(symbols_enabled)

  512. if #symbols_enabled > 0 then

  513.   rspamd_config:register_symbols(hfilter, 1.0, "HFILTER", symbols_enabled);

  514. end