我有一个使用iRedMailbuild立的邮件服务器,它使用postfix,mysql作为虚拟域名,amavis-new,spamassassin和其他一些工具。
有很多垃圾邮件正在通过垃圾邮件filter,但是当我通过spamassassin手动运行邮件时,它会被标记为垃圾邮件。
根据最终的垃圾邮件分数,两项testing(URIBL_DBL_SPAM和RCVD_IN_SBL_CSS)分别为5.8分,弥补了这一差异。
通过postfix通过amavis发送邮件的头文件:
X-Spam-Flag: NO X-Spam-Score: 1.592 X-Spam-Level: * X-Spam-Status: No, score=1.592 tagged_above=-15 required=6.31 tests=[BAYES_50=0.8, RDNS_NONE=0.793, SPF_HELO_PASS=-0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=no autolearn_force=no 在命令行中通过spamassassin运行相同消息的头文件:
X-Spam-Flag: YES X-Spam-Level: ******* X-Spam-Status: Yes, score=7.4 required=5.0 tests=BAYES_50,RCVD_IN_SBL_CSS, RDNS_NONE,SPF_HELO_PASS,URIBL_BLOCKED,URIBL_DBL_SPAM autolearn=no autolearn_force=no version=3.4.0 X-Spam-Report: * 0.0 URIBL_BLOCKED ADMINISTRATOR NOTICE: The query to URIBL was blocked. * See http://wiki.apache.org/spamassassin/DnsBlocklists#dnsbl-block * for more information. * [URIs: understandbrainhealth.top] * 2.5 URIBL_DBL_SPAM Contains a spam URL listed in the DBL blocklist * [URIs: understandbrainhealth.top] * 3.3 RCVD_IN_SBL_CSS RBL: Received via a relay in Spamhaus SBL-CSS * [173.242.114.32 listed in zen.spamhaus.org] * -0.0 SPF_HELO_PASS SPF: HELO matches SPF record * 0.8 BAYES_50 BODY: Bayes spam probability is 40 to 60% * [score: 0.5409] * 0.8 RDNS_NONE Delivered to internal network by a host with no rDNS
我已经确保networkingtesting不被禁用:
amavis/conf.d/20-debian_defaults: $sa_local_tests_only = 0;
编辑:
我通过邮件进行search,发现URIBL_DBL_SPAM和RCVD_IN_SBL_CSS有时会列在发送邮件的垃圾邮件报告中。 我知道这些testing中有一些是实时的,并且在交付时黑名单中可能不会显示一条消息,但稍后会在手动运行testing时出现。 但是我注意到一个IP地址会被多次捕获,而且之后的消息将会继续传送。
我build议为Amavis启用详细的日志logging,以便精确地查看SpamAssassintesting的结果以及结果。
我看到你正在使用Debian,所以编辑/etc/amavis/conf.d/50-user有:
# Amavis logging $log_level = 5;
重新启动Amavis并查看你的邮件日志输出(/var/log/mail.log这里),你会看到一个负载的信息。 例如,在我的系统上,当它执行Spamhaus Zen检查(包括SBLCSS)时,您应该看到如下行:
Jan 4 10:08:18 psiren amavis[6331]: (06331-04) SA dbg: dns: dns reply to 46728/IN/A/26.11.24.104.zen.spamhaus.org: NXDOMAIN
希望你能确认这个检查是否正确完成,是否得到正确的响应(如果列表中是127.0.xy,如果不是,则是NXDOMAIN)。