aboutsummaryrefslogtreecommitdiffstats
path: root/rules
Commit message (Collapse)AuthorAgeFilesLines
* Merge pull request #4495 from twesterhever/temp-onoin-urlVsevolod Stakhov2023-06-041-1/+1
|\ | | | | [Minor] Move HAS_ONION_URI from "experimental" to "url" group
| * [Minor] Move HAS_ONION_URI from "experimental" to "url" grouptwesterhever2023-05-261-1/+1
| |
* | Apply suggestions from code reviewVsevolod Stakhov2023-06-032-3/+3
| |
* | [Minor] Fix description of MIME_HTML_ONLYtwesterhever2023-06-021-1/+1
| | | | | | | | Thanks, @moisseev!
* | [Minor] Improve various rule descriptionstwesterhever2023-05-265-75/+71
|/
* [Feature] Add controller endpoint to get fuzzy hashes from messagesVsevolod Stakhov2023-05-202-0/+47
| | | | | | | | | | | | | | | | | | | | | | | | | | | Sample usage: ``` curl -XPOST 'http://localhost:11334/plugins/fuzzy/hashes?flag=1' --data-binary '@-' < file ``` Sample output: ```json { "hashes": { "local": [ "24b6e7de2f489778d828c827079c48bacb086f816d0a7acabbe42e8d0da703b89b913176ad67eefaf5b54fa59f5e0ecfc7015846c4043fcfb0c7a4ed7a235025", "72789777cbec926f4143de4c08c87acc3fbf3b909b5c39f1edcf82ed12e2d8bc2f56be8d68ee681feccf44ca04e3eca5b8ec039cb84a0d40e22258c370a10cbb" ], "rspamd.com": [ "24b6e7de2f489778d828c827079c48bacb086f816d0a7acabbe42e8d0da703b89b913176ad67eefaf5b54fa59f5e0ecfc7015846c4043fcfb0c7a4ed7a235025", "72789777cbec926f4143de4c08c87acc3fbf3b909b5c39f1edcf82ed12e2d8bc2f56be8d68ee681feccf44ca04e3eca5b8ec039cb84a0d40e22258c370a10cbb" ], }, "success": true } ``` Issue: #4489
* [Minor] Account for one more undisclosed-recipients address variantAnton Yuzhaninov2023-02-251-1/+2
|
* Merge branch 'master' into temp-add-ipfs-heuristicsVsevolod Stakhov2023-02-209-12/+37
|\
| * add Betterbird to `user_agent_thunderbird`georglauterbach2023-02-191-1/+1
| | | | | | | | | | | | | | | | | | | | | | | | See https://github.com/Betterbird/thunderbird-patches/issues/125 for reference. This way, Rspamd will not add `FORGED_MUA_MOZILLA_MAIL_MSGID_UNKNOWN` to mails sent perfectly find with Betterbird. Betterbird (<https://www.betterbird.eu/>) is an adjusted version of Thunderbird, fixing many bugs and adding long-wanted features. It is a common and well-known alternative to Thunderbird, so I think the addition is justified.
| * Merge pull request #4397 from twesterhever/temp-misc-cleanups-and-housekeepingVsevolod Stakhov2023-02-176-6/+3
| |\ | | | | | | [Minor] Assorted cleanup and housekeeping of configuration files
| | * [Minor] Fix some whitespace issuestwesterhever2023-02-176-6/+3
| | |
| * | Merge pull request #4401 from twesterhever/temp-google-firebaseVsevolod Stakhov2023-02-171-0/+7
| |\ \ | | | | | | | | [Enhancement] Add rule to detect Google Firebase URLs
| | * | [Enhancement] Add rule to detect Google Firebase URLstwesterhever2023-02-171-0/+7
| | |/
| * / [Enhancement] Make Google URL redirection rules productivetwesterhever2023-02-171-5/+5
| |/
| * Fix pcall() argument in rspamd.luadpetrov672023-02-141-1/+1
| |
| * [Fix] received: filtering of artificial headerKako, Chang2023-01-121-1/+1
| |
| * [Rules] Mid: Add MID_END_EQ_FROM_USER_PART ruleVsevolod Stakhov2022-12-231-0/+21
| | | | | | | | Issue: #4299
| * [Minor] Use unicode property for currency detectionVsevolod Stakhov2022-10-291-1/+1
| | | | | | | | Issue: #4320
| * [Rules] Reduce score of HTTP_TO_HTTPS - subject to remove completelyVsevolod Stakhov2022-10-181-1/+1
| |
* | [Minor] Regexp is case-insensitive, omit redundant characterstwesterhever2022-11-061-1/+1
| |
* | [Minor] Fix rule commenttwesterhever2022-11-061-1/+1
| |
* | [Minor] Limit CIDv1 detection to 128 bytestwesterhever2022-11-061-1/+1
| | | | | | As requested by @vstakhov in https://github.com/rspamd/rspamd/pull/4310#pullrequestreview-1148226107, try to limit the performance impact of this regular expression. However, given that there does not seem to be a hard limit for CIDv1s in IPFS itself, using an hashing algorithm with large output my permit miscreants to get around this rule.
* | [Minor] Implement multibase prefixes for IPFS gateway URL ruletwesterhever2022-11-061-2/+2
| |
* | [Minor] Clarify that IPFS *gateway* URLs are likely considered malicioustwesterhever2022-11-061-2/+2
| |
* | [Enhancement] Add IPFS URL heuristictwesterhever2022-10-151-1/+16
|/
* [Rework] Reiterate on prioritiesVsevolod Stakhov2022-09-101-16/+16
|
* [Minor] Update more copyright years/emailVsevolod Stakhov2022-03-275-5/+5
|
* [Minor] Update my email and the copyright yearVsevolod Stakhov2022-03-259-9/+9
|
* [Rules] Slightly reduce MULTIPLE_FROM scoreVsevolod Stakhov2022-03-231-1/+1
|
* Spelling (#4086)Josh Soref2022-02-223-7/+7
| | | [Rework] Massive spelling fix from @jsoref
* [Minor] Oops, fix foldl callVsevolod Stakhov2022-01-111-1/+1
|
* [Minor] Fix some issues in URI_COUNT_ODD ruleVsevolod Stakhov2022-01-111-4/+2
| | | | Issue: #4037
* [Minor] Fix ruleVsevolod Stakhov2021-11-301-1/+1
|
* [Rules] Remove ancient and inefficient rulesVsevolod Stakhov2021-11-291-43/+0
|
* [Rules] Fix old rules to stop global functions usageVsevolod Stakhov2021-11-291-46/+72
|
* [Feature] JSON endpoint for querying mapsAndrew Lewis2021-11-171-1/+65
|
* [Minor] Skip bitcoin address check for very long wordsAnton Yuzhaninov2021-09-171-2/+4
| | | | | | Exclude very long words (which can be extracted e. g. from some text attachments) from bitcoin address check to avoid excessive resource usage.
* [Rules] Improve zero font ruleVsevolod Stakhov2021-09-071-2/+2
|
* [Minor] Regexp: Extend upstream spam filter regexpSebastian Lipponer2021-08-211-1/+3
|
* [Rules] Micro-optimize X_PHP_EVALAnton Yuzhaninov2021-08-051-1/+1
| | | | | Remove /i flag from regexp string "eval()'d code" is always in lower case. While here use long string format for readability.
* [Minor] Fix checks safetyVsevolod Stakhov2021-07-191-2/+4
|
* [Minor] Add safety guardsVsevolod Stakhov2021-07-081-2/+2
|
* [Fix] Fix an edge case in BITCOIN_ADDR ruleAndrew Lewis2021-06-231-2/+3
| | | | | - when using PCRE - and different address types are present
* [Minor] Pet luacheckVsevolod Stakhov2021-06-141-2/+0
|
* [Project] Rework html visibility ruleVsevolod Stakhov2021-06-141-34/+14
|
* [Rules] Fix zerofont rule (partially)Vsevolod Stakhov2021-06-121-1/+3
|
* [Rules] Extend OLD_X_MAILERAnton Yuzhaninov2021-05-221-3/+4
| | | | Add more old iPhone/iPad Mail versions to the regexp.
* [Rules] Extend FORGED_X_MAILERAnton Yuzhaninov2021-05-221-3/+10
| | | | | Match in FORGED_X_MAILER fake iPhone Mail header with a random string in place of iOS build number, e. g. iPhone Mail (WKN0M)
* [Rules] Fix CTYPE_MIXED_BOGUS for text attachmentsVsevolod Stakhov2021-05-191-1/+1
| | | | Issue: #3748
* [Minor] Fix bit operations logicVsevolod Stakhov2021-05-131-5/+6
|
generated by cgit v1.2.3 (git 2.39.1) at 2025-01-05 13:17:04 +0000