mirrors
/
rspamd
mirror of https://github.com/vstakhov/rspamd.git
Watch 1
Star 0
Fork 0
Code Issues 0 Releases 159 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
13895 Commits
28 Branches
Tree: e59e7c632a
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from 'e59e7c632a'
${ noResults }
rspamd/rules/mid.lua

mid.lua 4.1KB
Raw Blame History

1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859606162636465666768697071727374757677787980818283848586878889909192939495 
  1. --[[

  2. Copyright (c) 2016, Vsevolod Stakhov <vsevolod@highsecure.ru>

  3. Copyright (c) 2016, Steve Freegard <steve@freegard.name>

  4. 

  5. Licensed under the Apache License, Version 2.0 (the "License");

  6. you may not use this file except in compliance with the License.

  7. You may obtain a copy of the License at

  8. 

  9.     http://www.apache.org/licenses/LICENSE-2.0

  10. 

  11. Unless required by applicable law or agreed to in writing, software

  12. distributed under the License is distributed on an "AS IS" BASIS,

  13. WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.

  14. See the License for the specific language governing permissions and

  15. limitations under the License.

  16. ]]--

  17. 

  18. local function mid_check_func(task)

  19.   local mid = task:get_header('Message-ID')

  20.   if not mid then return false end

  21.   -- Check for 'bare' IP addresses in RHS

  22.   if mid:find("@%d+%.%d+%.%d+%.%d+>$") then

  23.     task:insert_result('MID_BARE_IP', 1.0)

  24.   end

  25.   -- Check for non-FQDN RHS

  26.   if mid:find("@[^%.]+>?$") then

  27.     task:insert_result('MID_RHS_NOT_FQDN', 1.0)

  28.   end

  29.   -- Check for missing <>'s

  30.   if not mid:find('^<[^>]+>$') then

  31.     task:insert_result('MID_MISSING_BRACKETS', 1.0)

  32.   end

  33.   -- Check for IP literal in RHS

  34.   if mid:find("@%[%d+%.%d+%.%d+%.%d+%]") then

  35.     task:insert_result('MID_RHS_IP_LITERAL', 1.0)

  36.   end

  37.   -- Check From address attributes against MID

  38.   local from = task:get_from(2)

  39.   local fd

  40.   if (from and from[1] and from[1].domain and from[1].domain ~= '') then

  41.     fd = from[1].domain:lower()

  42.     local _,_,md = mid:find("@([^>]+)>?$")

  43.     -- See if all or part of the From address

  44.     -- can be found in the Message-ID

  45.     if (mid:lower():find(from[1].addr:lower(),1,true)) then

  46.       task:insert_result('MID_CONTAINS_FROM', 1.0)

  47.     elseif (md and fd == md:lower()) then

  48.       task:insert_result('MID_RHS_MATCH_FROM', 1.0)

  49.     end

  50.   end

  51.   -- Check To address attributes against MID

  52.   local to = task:get_recipients(2)

  53.   if (to and to[1] and to[1].domain and to[1].domain ~= '') then

  54.     local td = to[1].domain:lower()

  55.     local _,_,md = mid:find("@([^>]+)>?$")

  56.     -- Skip if from domain == to domain

  57.     if ((fd and fd ~= td) or not fd) then

  58.       -- See if all or part of the To address

  59.       -- can be found in the Message-ID

  60.       if (mid:lower():find(to[1].addr:lower(),1,true)) then

  61.         task:insert_result('MID_CONTAINS_TO', 1.0)

  62.       elseif (md and td == md:lower()) then

  63.         task:insert_result('MID_RHS_MATCH_TO', 1.0)

  64.       end

  65.     end

  66.   end

  67. end

  68. 

  69. -- MID checks from Steve Freegard

  70. local check_mid_id = rspamd_config:register_symbol({

  71.   name = 'CHECK_MID',

  72.   score = 0.0,

  73.   group = 'mid',

  74.   type = 'callback',

  75.   callback = mid_check_func

  76. })

  77. rspamd_config:register_virtual_symbol('MID_BARE_IP', 1.0, check_mid_id)

  78. rspamd_config:set_metric_symbol('MID_BARE_IP', 2.0, 'Message-ID RHS is a bare IP address', 'default', 'Message ID')

  79. rspamd_config:register_virtual_symbol('MID_RHS_NOT_FQDN', 1.0, check_mid_id)

  80. rspamd_config:set_metric_symbol('MID_RHS_NOT_FQDN', 0.5,

  81.     'Message-ID RHS is not a fully-qualified domain name', 'default', 'Message ID')

  82. rspamd_config:register_virtual_symbol('MID_MISSING_BRACKETS', 1.0, check_mid_id)

  83. rspamd_config:set_metric_symbol('MID_MISSING_BRACKETS', 0.5, 'Message-ID is missing <>\'s', 'default', 'Message ID')

  84. rspamd_config:register_virtual_symbol('MID_RHS_IP_LITERAL', 1.0, check_mid_id)

  85. rspamd_config:set_metric_symbol('MID_RHS_IP_LITERAL', 0.5, 'Message-ID RHS is an IP-literal', 'default', 'Message ID')

  86. rspamd_config:register_virtual_symbol('MID_CONTAINS_FROM', 1.0, check_mid_id)

  87. rspamd_config:set_metric_symbol('MID_CONTAINS_FROM', 1.0, 'Message-ID contains From address', 'default', 'Message ID')

  88. rspamd_config:register_virtual_symbol('MID_RHS_MATCH_FROM', 1.0, check_mid_id)

  89. rspamd_config:set_metric_symbol('MID_RHS_MATCH_FROM', 0.0,

  90.     'Message-ID RHS matches From domain', 'default', 'Message ID')

  91. rspamd_config:register_virtual_symbol('MID_CONTAINS_TO', 1.0, check_mid_id)

  92. rspamd_config:set_metric_symbol('MID_CONTAINS_TO', 1.0, 'Message-ID contains To address', 'default', 'Message ID')

  93. rspamd_config:register_virtual_symbol('MID_RHS_MATCH_TO', 1.0, check_mid_id)

  94. rspamd_config:set_metric_symbol('MID_RHS_MATCH_TO', 1.0, 'Message-ID RHS matches To domain', 'default', 'Message ID')