aboutsummaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
authorVsevolod Stakhov <vsevolod@highsecure.ru>2019-03-18 17:23:38 +0000
committerVsevolod Stakhov <vsevolod@highsecure.ru>2019-03-18 17:23:38 +0000
commit78a9afb714a54e3c40910973bea1ade927db8cc6 (patch)
treec090ec967a43b8848e93b72ed8744e75a8929a0c
parenta8eb1a9f1fd59741f4b4a8c1c79155161f574857 (diff)
downloadrspamd-78a9afb714a54e3c40910973bea1ade927db8cc6.tar.gz
rspamd-78a9afb714a54e3c40910973bea1ade927db8cc6.zip
[Feature] Replies: Filter replies sender to limit whitelisting to direct messages
-rw-r--r--src/plugins/lua/replies.lua69
1 files changed, 53 insertions, 16 deletions
diff --git a/src/plugins/lua/replies.lua b/src/plugins/lua/replies.lua
index 234a41ca3..48c760eed 100644
--- a/src/plugins/lua/replies.lua
+++ b/src/plugins/lua/replies.lua
@@ -32,6 +32,7 @@ local settings = {
action = nil,
expire = 86400, -- 1 day by default
key_prefix = 'rr',
+ key_size = 20,
message = 'Message is reply to one we originated',
symbol = 'REPLY',
score = -4, -- Default score
@@ -45,21 +46,49 @@ local settings = {
local N = "replies"
-local function make_key(goop)
+local function make_key(goop, sz, prefix)
local h = hash.create()
h:update(goop)
- local key = h:base32():sub(1, 20)
- key = settings['key_prefix'] .. key
+ local key
+ if sz then
+ key = h:base32():sub(1, sz)
+ else
+ key = h:base32()
+ end
+
+ if prefix then
+ key = prefix .. key
+ end
+
return key
end
local function replies_check(task)
+ local function check_recipient(stored_rcpt)
+ local real_rcpt = task:get_principal_recipient()
+
+ if real_rcpt then
+ local real_rcpt_h = make_key(real_rcpt:lower(), 8)
+ if real_rcpt_h == stored_rcpt then
+ return true
+ end
+
+ rspamd_logger.infox(task, 'ignoring reply as recipient %s is not matching hash %s',
+ real_rcpt, stored_rcpt)
+ else
+ rspamd_logger.infox(task, 'ignoring reply as recipient cannot be detected for hash %s',
+ stored_rcpt)
+ end
+
+ return false
+ end
+
local function redis_get_cb(err, data)
if err ~= nil then
rspamd_logger.errx(task, 'redis_get_cb received error: %1', err)
return
end
- if data == '1' then
+ if data and check_recipient(data) then
-- Hash was found
task:insert_result(settings['symbol'], 1.0)
if settings['action'] ~= nil then
@@ -80,7 +109,7 @@ local function replies_check(task)
return
end
-- Create hash of in-reply-to and query redis
- local key = make_key(irt)
+ local key = make_key(irt, settings.key_size, settings.key_prefix)
local ret = lua_redis.redis_make_request(task,
redis_params, -- connect params
@@ -117,18 +146,26 @@ local function replies_set(task)
return
end
-- Create hash of message-id and store to redis
- local key = make_key(msg_id)
+ local key = make_key(msg_id, settings.key_size, settings.key_prefix)
lua_util.debugm(N, task, 'storing message-id for replies check')
- local ret = lua_redis.redis_make_request(task,
- redis_params, -- connect params
- key, -- hash key
- true, -- is write
- redis_set_cb, --callback
- 'SETEX', -- command
- {key, tostring(settings['expire']), "1"} -- arguments
- )
- if not ret then
- rspamd_logger.errx(task, "redis request wasn't scheduled")
+
+ local value = task:get_reply_sender()
+
+ if value then
+ value = make_key(value:lower(), 8)
+ local ret = lua_redis.redis_make_request(task,
+ redis_params, -- connect params
+ key, -- hash key
+ true, -- is write
+ redis_set_cb, --callback
+ 'SETEX', -- command
+ {key, tostring(settings['expire']), value:lower()} -- arguments
+ )
+ if not ret then
+ rspamd_logger.errx(task, "redis request wasn't scheduled")
+ end
+ else
+ rspamd_logger.infox(task, "cannot find reply sender address")
end
end