psychatter
06.07.05, 19:38
Hallo
ich bekomme einfach amavis nicht dazu die mails als Spam zu markieren! Nervt!
Ich bin für jede Hilfe dankbar!!!
paar Daten: gentoo-hardened 2.6 Kernel, postfix, courier-imap, amavis, clamav, spamassassin
Ich poste euch mal die wichten Teile der Konfiguration:
Falls ich was vergessen hab bitte sagen.
/etc/postfix/main.cf
content_filter = smtp-amavis:127.0.0.1:10024
mydomain = gentoo.XXXXXX.org
/etc/postfix/master.cf
smtp inet n - n - 50 smtpd
-o content_filter=smtp-amavis:127.0.0.1:10024
smtp-amavis unix - - y - 2 smtp
-o smtp_data_done_timeout=1200
-o smtp_send_xforward_command=yes
-o disable_dns_lookups=yes
-o max_use=20
127.0.0.1:10025 inet n - n - - smtpd
-o content_filter=
-o local_recipient_maps=
-o relay_recipient_maps=
-o smtpd_restriction_classes=
-o smtpd_delay_reject=no
-o smtpd_client_restrictions=permit_mynetworks,reject
-o smtpd_helo_restrictions=
-o smtpd_sender_restrictions=
-o smtpd_recipient_restrictions=permit_mynetworks,rej ect
-o mynetworks_style=host
-o mynetworks=127.0.0.0/8
-o strict_rfc821_envelopes=yes
-o smtpd_error_sleep_time=0
-o smtpd_soft_error_limit=1001
-o smtpd_hard_error_limit=1000
-o smtpd_client_connection_count_limit=0
-o smtpd_client_connection_rate_limit=0
-o receive_override_options=no_header_body_checks,no_ unknown_recipient_checks
/etc/amavid.conf
$mydomain = 'gentoo.XXXXXX.org';
$final_virus_destiny = D_DISCARD;
$final_banned_destiny = D_BOUNCE;
$final_spam_destiny = D_PASS;
$final_bad_header_destiny = D_PASS;
$warnvirussender = 1;
$warnspamsender = 1;
$warnbannedsender = 1;
$warnbadhsender = 1;
$X_HEADER_TAG = 'X-Virus-Scanned';
$X_HEADER_LINE = "by $myproduct_name using ClamAV at $mydomain";
$remove_existing_x_scanned_headers = 0;
$remove_existing_spam_headers = 0;
$sa_local_tests_only = 0;
$sa_auto_whitelist = 1;
$sa_mail_body_size_limit = 200*1024;
$sa_tag_level_deflt = -999;
$sa_tag2_level_deflt = 2.5;
$sa_kill_level_deflt = 20.0;
$sa_dsn_cutoff_level = undef;
$sa_spam_subject_tag = '***SPAM*** ';
$sa_spam_modifies_subj = 1;
$sa_spam_level_char = '*';
$sa_spam_report_header = 1;
$first_infected_stops_scan = 1;
@local_domains_maps = ( [".$mydomain"] );
@local_domains_acl = ( ".$mydomain");
Öhm ja das wars hmm
jetzt vielleich tnoch den header der mail:
Return-Path: <YYYYY@ircdeluxe.de>
X-Original-To: web1p1@gentoo.XXXXXX.org
Delivered-To: web1p1@gentoo.XXXXXX.org
Received: from localhost (localhost [127.0.0.1])
by mail.XXXXXX.org (Postfix) with ESMTP id 102A7189BB
for <web1p1@gentoo.XXXXXX.org>; Wed, 6 Jul 2005 20:17:32 +0200 (CEST)
Received: from mail.XXXXXX.org ([127.0.0.1])
by localhost (h479768 [127.0.0.1]) (amavisd-new, port 10024) with ESMTP
id 12491-01 for <web1p1@gentoo.XXXXXX.org>;
Wed, 6 Jul 2005 20:17:31 +0200 (CEST)
Received: from h5776.serverkompetenz.net (dip.creavix.de [81.169.175.146])
by mail.XXXXXX.org (Postfix) with ESMTP id 769F218928
for <jojo@XXXXXX.org>; Wed, 6 Jul 2005 20:17:31 +0200 (CEST)
Received: from [192.168.1.100] (p54933B0F.dip.t-dialin.net [84.147.59.15])
by h5776.serverkompetenz.net (Postfix) with ESMTP id 084D0A40E0
for <jojo@XXXXXX.org>; Wed, 6 Jul 2005 20:13:33 +0200 (CEST)
Message-ID: <42CC203C.60403@XXXXXX.com>
Date: Wed, 06 Jul 2005 20:17:32 +0200
From: Support <YYYYY@ircdeluxe.de>
Organization: YYYYY
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.1; de-AT; rv:1.7.6) Gecko/20050319
X-Accept-Language: de, en
MIME-Version: 1.0
To: jojo <jojo@XXXXXX.org>
Subject: Viagra GET IT HERE
X-Priority: 3)
Content-Type: multipart/alternative;
boundary="------------030702090503040008070404"
This is a multi-part message in MIME format.
--------------030702090503040008070404
Content-Type: text/plain; charset=us-ascii; format=flowed
Content-Transfer-Encoding: 7bit
Dann noch ein Auzug von der
/var/log/amavisd.log
Bin mir nicht so sicher was ich da kopieren soll...
lookup_hash(web1p1@gentoo.XXXXXX.org), no matches
lookup_acl(web1p1@gentoo.XXXXXX.org) matches key ".", result=1
lookup (bypass_virus_checks) => true, "web1p1@gentoo.XXXXXX.org" matches, result="1", matching_key="."
lookup (bypass_header_checks) => undef, "web1p1@gentoo.XXXXXX.org" does not match
lookup (bypass_spam_checks) => true, "web1p1@gentoo.XXXXXX.org" matches, result="1", matching_key="."
lookup (spam_kill_level) => true, "web1p1@gentoo.XXXXXX.org" matches, result="20", matching_key="(constant:20)"
Falls irgendwas fehlt sagen!
Ich bin für jede Hilfe dankbar!!!
ich bekomme einfach amavis nicht dazu die mails als Spam zu markieren! Nervt!
Ich bin für jede Hilfe dankbar!!!
paar Daten: gentoo-hardened 2.6 Kernel, postfix, courier-imap, amavis, clamav, spamassassin
Ich poste euch mal die wichten Teile der Konfiguration:
Falls ich was vergessen hab bitte sagen.
/etc/postfix/main.cf
content_filter = smtp-amavis:127.0.0.1:10024
mydomain = gentoo.XXXXXX.org
/etc/postfix/master.cf
smtp inet n - n - 50 smtpd
-o content_filter=smtp-amavis:127.0.0.1:10024
smtp-amavis unix - - y - 2 smtp
-o smtp_data_done_timeout=1200
-o smtp_send_xforward_command=yes
-o disable_dns_lookups=yes
-o max_use=20
127.0.0.1:10025 inet n - n - - smtpd
-o content_filter=
-o local_recipient_maps=
-o relay_recipient_maps=
-o smtpd_restriction_classes=
-o smtpd_delay_reject=no
-o smtpd_client_restrictions=permit_mynetworks,reject
-o smtpd_helo_restrictions=
-o smtpd_sender_restrictions=
-o smtpd_recipient_restrictions=permit_mynetworks,rej ect
-o mynetworks_style=host
-o mynetworks=127.0.0.0/8
-o strict_rfc821_envelopes=yes
-o smtpd_error_sleep_time=0
-o smtpd_soft_error_limit=1001
-o smtpd_hard_error_limit=1000
-o smtpd_client_connection_count_limit=0
-o smtpd_client_connection_rate_limit=0
-o receive_override_options=no_header_body_checks,no_ unknown_recipient_checks
/etc/amavid.conf
$mydomain = 'gentoo.XXXXXX.org';
$final_virus_destiny = D_DISCARD;
$final_banned_destiny = D_BOUNCE;
$final_spam_destiny = D_PASS;
$final_bad_header_destiny = D_PASS;
$warnvirussender = 1;
$warnspamsender = 1;
$warnbannedsender = 1;
$warnbadhsender = 1;
$X_HEADER_TAG = 'X-Virus-Scanned';
$X_HEADER_LINE = "by $myproduct_name using ClamAV at $mydomain";
$remove_existing_x_scanned_headers = 0;
$remove_existing_spam_headers = 0;
$sa_local_tests_only = 0;
$sa_auto_whitelist = 1;
$sa_mail_body_size_limit = 200*1024;
$sa_tag_level_deflt = -999;
$sa_tag2_level_deflt = 2.5;
$sa_kill_level_deflt = 20.0;
$sa_dsn_cutoff_level = undef;
$sa_spam_subject_tag = '***SPAM*** ';
$sa_spam_modifies_subj = 1;
$sa_spam_level_char = '*';
$sa_spam_report_header = 1;
$first_infected_stops_scan = 1;
@local_domains_maps = ( [".$mydomain"] );
@local_domains_acl = ( ".$mydomain");
Öhm ja das wars hmm
jetzt vielleich tnoch den header der mail:
Return-Path: <YYYYY@ircdeluxe.de>
X-Original-To: web1p1@gentoo.XXXXXX.org
Delivered-To: web1p1@gentoo.XXXXXX.org
Received: from localhost (localhost [127.0.0.1])
by mail.XXXXXX.org (Postfix) with ESMTP id 102A7189BB
for <web1p1@gentoo.XXXXXX.org>; Wed, 6 Jul 2005 20:17:32 +0200 (CEST)
Received: from mail.XXXXXX.org ([127.0.0.1])
by localhost (h479768 [127.0.0.1]) (amavisd-new, port 10024) with ESMTP
id 12491-01 for <web1p1@gentoo.XXXXXX.org>;
Wed, 6 Jul 2005 20:17:31 +0200 (CEST)
Received: from h5776.serverkompetenz.net (dip.creavix.de [81.169.175.146])
by mail.XXXXXX.org (Postfix) with ESMTP id 769F218928
for <jojo@XXXXXX.org>; Wed, 6 Jul 2005 20:17:31 +0200 (CEST)
Received: from [192.168.1.100] (p54933B0F.dip.t-dialin.net [84.147.59.15])
by h5776.serverkompetenz.net (Postfix) with ESMTP id 084D0A40E0
for <jojo@XXXXXX.org>; Wed, 6 Jul 2005 20:13:33 +0200 (CEST)
Message-ID: <42CC203C.60403@XXXXXX.com>
Date: Wed, 06 Jul 2005 20:17:32 +0200
From: Support <YYYYY@ircdeluxe.de>
Organization: YYYYY
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.1; de-AT; rv:1.7.6) Gecko/20050319
X-Accept-Language: de, en
MIME-Version: 1.0
To: jojo <jojo@XXXXXX.org>
Subject: Viagra GET IT HERE
X-Priority: 3)
Content-Type: multipart/alternative;
boundary="------------030702090503040008070404"
This is a multi-part message in MIME format.
--------------030702090503040008070404
Content-Type: text/plain; charset=us-ascii; format=flowed
Content-Transfer-Encoding: 7bit
Dann noch ein Auzug von der
/var/log/amavisd.log
Bin mir nicht so sicher was ich da kopieren soll...
lookup_hash(web1p1@gentoo.XXXXXX.org), no matches
lookup_acl(web1p1@gentoo.XXXXXX.org) matches key ".", result=1
lookup (bypass_virus_checks) => true, "web1p1@gentoo.XXXXXX.org" matches, result="1", matching_key="."
lookup (bypass_header_checks) => undef, "web1p1@gentoo.XXXXXX.org" does not match
lookup (bypass_spam_checks) => true, "web1p1@gentoo.XXXXXX.org" matches, result="1", matching_key="."
lookup (spam_kill_level) => true, "web1p1@gentoo.XXXXXX.org" matches, result="20", matching_key="(constant:20)"
Falls irgendwas fehlt sagen!
Ich bin für jede Hilfe dankbar!!!