Virtual Architects Support Wiki

User Tools

Site Tools

You are here: start » internet » mail » mailcleaner_customize
Trace:
internet:mail:mailcleaner_customize

Differences

This shows you the differences between two versions of the page.

Link to this comparison view

Both sides previous revision Previous revision
Next revision 		Previous revision
internet:mail:mailcleaner_customize [2022/09/01 12:52]
gcooper 		internet:mail:mailcleaner_customize [2024/01/09 09:12] (current)
gcooper
Line 60: Line 60:
   * ''login.css''   * ''login.css''
   * ''navigation.css''   * ''navigation.css''
 +
 +===== Freemail Domains =====
 +
 +It's probably best to blacklist them.
  
 ===== SpamC Score ===== ===== SpamC Score =====
Line 89: Line 93:
 ===== Customize SpamAssassin ===== ===== Customize SpamAssassin =====
  
-Using the MailCleaner Admin web interface, **restart the Filtering Engine service** after making rule modifications.+<note tip>Copy customized rules to Mailcleaner cluster members.</note> 
 + 
 +<note tip>Using the MailCleaner Admin web interface, **restart the Filtering Engine service** after making rule modifications. 
 +</note>
  
 <file> <file>
Line 116: Line 123:
  
 /usr/mailcleaner/share/spamassassin/99_custom_rules_scores.cf /usr/mailcleaner/share/spamassassin/99_custom_rules_scores.cf
- 
-FIXME This worked pretty well, but getting more freemail spam all the time.  Adding freemail_domains here has no effect.  DOMAIN_NUM regex was broken or limited. 
  
 <file> <file>
-freemail_domains sharepointonline.com +score    DCC_CHECK       1.5 
 +score    ARC_SIGNED      0.001
 score    KHOP_BIG_TO_CC  2.0 score    KHOP_BIG_TO_CC  2.0
 +score    RCVD_IN_UCEPROTECT3  1.0
  
-score    FREEMAIL_FROM 2.0 +score    FREEMAIL_FROM   3.5
-score    FREEMAIL_ENVFROM_END_DIGIT  0.25 +
-score    FREEMAIL_REPLYTO_END_DIGIT  0.25 +
-score    FREEMAIL_FORGED_REPLYTO 3.0 +
-score    FREEMAIL_REPLYTO 2.5 +
-score    FREEMAIL_REPLY  1.0 +
- +
-score    MC_MANY_FREEMAIL_RCPT  2.5 +
- +
-rawbody   GOOGLE_APIS   /https?:\/\/storage\.googleapis\.com/+
-score     GOOGLE_APIS   1.5 +
-describe  GOOGLE_APIS   Has a hyperlink that points to Google APIs +
- +
-header    DOMAIN_NUM    From =~ /\@[\w+=\.]*\d{2,}[\w+=\.]*/ +
-score     DOMAIN_NUM    1.0 +
-describe  DOMAIN_NUM    Domain name has 2 or more numbers +
- +
-header    LONG_SUBJECT  Subject =~ /.{120,}/ +
-score     LONG_SUBJECT  1.0 +
-describe  LONG_SUBJECT  Subject line is very long +
-</file> +
- +
-FIXME Testing this due to more freemail spam: +
- +
-<file> +
-freemail_domains sharepointonline.com geeks-squadhub23.co +
- +
-score    KHOP_BIG_TO_CC  2.0 +
- +
-score    FREEMAIL_FROM 3.5+
 score    FREEMAIL_ENVFROM_END_DIGIT  1.0 score    FREEMAIL_ENVFROM_END_DIGIT  1.0
 score    FREEMAIL_REPLYTO_END_DIGIT  1.0 score    FREEMAIL_REPLYTO_END_DIGIT  1.0
-score    FREEMAIL_FORGED_REPLYTO 3.5 +score    FREEMAIL_FORGED_REPLYTO  3.5 
-score    FREEMAIL_REPLYTO 3.5+score    FREEMAIL_REPLYTO  3.5
 score    FREEMAIL_REPLY  3.5 score    FREEMAIL_REPLY  3.5
- 
 score    MC_MANY_FREEMAIL_RCPT  3.5 score    MC_MANY_FREEMAIL_RCPT  3.5
  
Line 174: Line 150:
 describe  LONG_SUBJECT  Subject line is very long describe  LONG_SUBJECT  Subject line is very long
  
-</file>+header    EMPTY_SUBJECT Subject =~ /^$/ 
 +score     EMPTY_SUBJECT 1.5 
 +describe  EMPTY_SUBJECT Subject header exists but is empty
  
 +header    ONMICROSOFT_FROM From =~ /onmicrosoft\.com/i
 +score     ONMICROSOFT_FROM 3.0
 +describe  ONMICROSOFT_FROM From header contains onmicrosoft.com domain
 +</file>
internet/mail/mailcleaner_customize.1662058369.txt.gz · Last modified: 2022/09/01 12:52 by gcooper

Page Tools

Except where otherwise noted, content on this wiki is licensed under the following license: CC Attribution-Share Alike 4.0 International
CC Attribution-Share Alike 4.0 International Donate Powered by PHP Valid HTML5 Valid CSS Driven by DokuWiki