aboutsummaryrefslogtreecommitdiffstats
path: root/conf/composites.conf
Commit message (Collapse)AuthorAgeFilesLines
* [Rework] Migrate from ip_score to reputationVsevolod Stakhov2019-07-171-1/+1
|
* [Conf] Add BROKEN_HEADERS_MAILLIST compositeVsevolod Stakhov2019-07-171-0/+7
|
* [Rules] Rework LEAKED_PASSWORD_SCAM rule one more timeVsevolod Stakhov2019-06-181-7/+0
|
* [Conf] Add IP_SCORE_FREEMAIL composite ruleVsevolod Stakhov2019-04-291-0/+7
|
* Add a reference to the doc of composite rulesEdmond2019-04-081-1/+2
|
* [Feature] Validate BTC addresses in LEAKED_PASSWORD_SCAMVsevolod Stakhov2019-03-191-0/+7
|
* fix typo in RCVD_UNAUTH_PBLheraklit2562019-02-131-1/+1
|
* [Rules] Add VIOLATED_DIRECT_SPF compositeVsevolod Stakhov2019-01-151-113/+120
|
* Merge pull request #2566 from heraklit256/composites-leaveVsevolod Stakhov2018-10-181-5/+10
|\ | | | | Minor Composite rule cleanup
| * lower score for PHISH_EMOTION to 1.0heraklit2562018-10-171-1/+1
| |
| * lower score for HAS_ANON_DOMAIN to 0.1heraklit2562018-10-171-1/+1
| |
| * Include ARC into AUTH_NA ruleheraklit2562018-10-041-2/+2
| |
| * Composite rules: Minor cleanupsheraklit2562018-10-041-1/+3
| | | | | | | | Added descriptions to some rules and unified AND operator.
| * leave original symbols for composite rulesheraklit2562018-10-041-0/+3
| | | | | | | | | | Removing original symbols if a composite rule triggers is kind of confusing and makes debugging harder.
* | [Conf] Extend BAD_POLICIES compositeVsevolod Stakhov2018-10-151-2/+2
| |
* | add HAS_ONION_URI to HAS_ANON_DOMAINheraklit2562018-10-131-1/+1
| |
* | [Minor] Fixes for the previous projectVsevolod Stakhov2018-10-091-2/+1
| |
* | [Conf] Add composite to negate policies when fuzzy/bayes foundVsevolod Stakhov2018-10-091-0/+6
| |
* | Merge pull request #2543 from heraklit256/extended-dnswl-scoresVsevolod Stakhov2018-10-081-2/+5
|\ \ | |/ |/| leaving original symbols if DNSWL composite rules are triggered
| * lower weight of RCVD_DKIM_ARC_DNSWL_HI to -1.0heraklit2562018-10-081-1/+1
| |
| * lower weight for RCVD_DKIM_ARC_DNSWL_MED and RCVD_DKIM_ARC_DNSWL_HIGHheraklit2562018-10-041-2/+2
| | | | | | | | | | | | | | These were too high as other symbols - such as ARC_ALLOW - already introduce some negative scores. Thanks to @moisseev for reporting this.
| * leaving original symbols if DNSWL composite rules are triggeredheraklit2562018-09-271-0/+3
| | | | | | | | | | | | Without policy = "leave", rspamd replaces the original symbols in log and message header (if enabled), which makes debugging more hard and is not used in this case.
* | Fix description for composite rule RBL_SPAMHAUS_XBL_ANYheraklit2562018-09-271-1/+1
| |
* | [Minor] Remove UNPRECISE_RCPT_DETAIL_FROM_SPAMMYAlexander Moisseev2018-09-251-5/+0
| |
* | add rule for domains trying to stay anonymousheraklit2562018-09-091-0/+5
| |
* | improve composite rules for phish messagesheraklit2562018-09-091-2/+2
| |
* | add some missing composite rule descriptionheraklit2562018-09-091-0/+2
| |
* | add rule for spammy mails with detailled sender but generic recipientsheraklit2562018-09-081-0/+6
| |
* | add rule for phish messages containing emotional subjectsheraklit2562018-09-081-0/+5
| |
* | add rule for spammy PHP generated mailsheraklit2562018-09-081-2/+7
|/
* also trigger DNSWL score rule in case mails are properly ARC signedheraklit2562018-08-271-6/+6
|
* add negative weight to DNSWL entriesheraklit2562018-08-071-2/+11
| | | | | | | | However, a message must be correctly DKIM signed to get some more negative weight in case an received IP is listed with medium or high trust at DNSWL. This supersedes a first patch without the DKIM condition.
* add rule for RCVD_UNAUTH_PBLheraklit2562018-05-211-0/+6
|
* [Minor] In *_FORWARDING composites remove only weightsAlexander Moisseev2018-05-201-0/+2
|
* [Minor] Suppress base64 symbols for mails sent with 1C v8Alexander Moisseev2017-08-231-0/+3
|
* [Minor] Suppress MIME_BASE64_TEXT for Mail.Ru MailerAlexander Moisseev2017-07-311-1/+1
|
* [Minor] Suppress CTYPE_MIXED_BOGUS for yandex.ru web-mailAlexander Moisseev2017-04-171-0/+3
|
* Updates to previous commitSteve Freegard2017-03-231-2/+4
|
* New rulesSteve Freegard2017-03-231-0/+10
|
* [Conf] Add composite for hacked wordpress phishingVsevolod Stakhov2017-03-091-0/+4
|
* [Rework] Composite configuration (#1270)Andrew Lewis2016-12-211-43/+46
|
* [Minor] Suppress SUBJ_EXCESS_BASE64 for Mail.Ru web-mail as wellAlexander Moisseev2016-12-121-1/+1
|
* [Minor] Suppress *_BASE64 for mails sent with Mail.Ru web-mail (#902)Alexander Moisseev2016-12-121-0/+3
|
* [Minor] Name composite in a proper wayVsevolod Stakhov2016-11-041-2/+1
|
* [Minor] Avoid removing SPF failure symbols in compositeAndrew Lewis2016-10-041-0/+1
|
* [Feature] Add R_DKIM_PERMFAIL symbolAndrew Lewis2016-09-191-0/+5
|
* [Minor] Fine-tune compositesAndrew Lewis2016-09-081-1/+3
|
* [Feature] Add R_DKIM_NA / R_SPF_NA / AUTH_NA symbolsAndrew Lewis2016-08-291-0/+4
|
* [Minor] Composite: Don't penalise for SPF/DKIM failure when DMARC passedAndrew Lewis2016-08-221-0/+3
|
* [Minor] Composite: Remove FORGED_RECIPIENTS if it's forwardingAndrew Lewis2016-08-221-0/+3
|