blob: 423b5e5ecb93685be9d9792a64ea34fcc51a6107 (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
|
# SpamAssassin rules file: default SPF welcomelists
#
# Please don't modify this file as your changes will be overwritten with
# the next update. Use @@LOCAL_RULES_DIR@@/local.cf instead.
# See 'perldoc Mail::SpamAssassin::Conf' for details.
#
# <@LICENSE>
# Licensed to the Apache Software Foundation (ASF) under one or more
# contributor license agreements. See the NOTICE file distributed with
# this work for additional information regarding copyright ownership.
# The ASF licenses this file to you under the Apache License, Version 2.0
# (the "License"); you may not use this file except in compliance with
# the License. You may obtain a copy of the License at:
#
# http://www.apache.org/licenses/LICENSE-2.0
#
# Unless required by applicable law or agreed to in writing, software
# distributed under the License is distributed on an "AS IS" BASIS,
# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
# See the License for the specific language governing permissions and
# limitations under the License.
# </@LICENSE>
ifplugin Mail::SpamAssassin::Plugin::SPF
###########################################################################
# SPF welcomelist rules
# 4.0 / Bug 7826 renames whitelist to welcomelist and blacklist to blocklist
if can(Mail::SpamAssassin::Conf::feature_welcomelist_blocklist)
header USER_IN_SPF_WELCOMELIST eval:check_for_spf_welcomelist_from()
describe USER_IN_SPF_WELCOMELIST From: address is in the user's SPF welcomelist
tflags USER_IN_SPF_WELCOMELIST userconf nice noautolearn net
score USER_IN_SPF_WELCOMELIST -100
reuse USER_IN_SPF_WELCOMELIST
# Backwards compatibility
# To disable set "enable_compat welcomelist_blocklist" in init.pre
if !can(Mail::SpamAssassin::Conf::compat_welcomelist_blocklist)
meta USER_IN_SPF_WHITELIST (USER_IN_SPF_WELCOMELIST)
describe USER_IN_SPF_WHITELIST DEPRECATED: See USER_IN_SPF_WELCOMELIST
tflags USER_IN_SPF_WHITELIST userconf nice noautolearn net
score USER_IN_SPF_WHITELIST -100
reuse USER_IN_SPF_WHITELIST
score USER_IN_SPF_WELCOMELIST -0.01
endif
header USER_IN_DEF_SPF_WL eval:check_for_def_spf_welcomelist_from()
describe USER_IN_DEF_SPF_WL From: address is in the default SPF welcome-list
tflags USER_IN_DEF_SPF_WL userconf nice noautolearn net
reuse USER_IN_DEF_SPF_WL
endif
if !can(Mail::SpamAssassin::Conf::feature_welcomelist_blocklist)
header USER_IN_SPF_WELCOMELIST eval:check_for_spf_whitelist_from()
describe USER_IN_SPF_WELCOMELIST From: address is in the user's SPF welcomelist
tflags USER_IN_SPF_WELCOMELIST userconf nice noautolearn net
score USER_IN_SPF_WELCOMELIST -0.01
reuse USER_IN_SPF_WELCOMELIST
meta USER_IN_SPF_WHITELIST (USER_IN_SPF_WELCOMELIST)
describe USER_IN_SPF_WHITELIST DEPRECATED: See USER_IN_SPF_WELCOMELIST
tflags USER_IN_SPF_WHITELIST userconf nice noautolearn net
score USER_IN_SPF_WHITELIST -100
reuse USER_IN_SPF_WHITELIST
header USER_IN_DEF_SPF_WL eval:check_for_def_spf_whitelist_from()
describe USER_IN_DEF_SPF_WL From: address is in the default SPF welcome-list
tflags USER_IN_DEF_SPF_WL userconf nice noautolearn net
reuse USER_IN_DEF_SPF_WL
endif
meta ENV_AND_HDR_SPF_MATCH (USER_IN_DEF_SPF_WL && __ENV_AND_HDR_FROM_MATCH)
describe ENV_AND_HDR_SPF_MATCH Env and Hdr From used in default SPF WL Match
tflags ENV_AND_HDR_SPF_MATCH userconf nice noautolearn net
###########################################################################
# Default welcomelists. These should be addresses which send mail that is often
# tagged (incorrectly) as spam; it also helps that they be addresses of big
# companies with lots of lawyers, so if spammers impersonate them, they'll get
# into big trouble, so it doesn't provide a shortcut around SpamAssassin.
#
# Whitelist and blacklist addresses are now file-glob-style patterns, so
# "friend@somewhere.com", "*@isp.com", or "*.domain.net" will all work.
#
# Please do not add unmoderated public mailing lists here. They are
# too easily abused by spammers.
if can(Mail::SpamAssassin::Conf::feature_welcomelist_blocklist)
def_welcomelist_from_spf *@nytimes.com
def_welcomelist_from_spf *@amazon.com
def_welcomelist_from_spf *@amazon.co.uk
def_welcomelist_from_spf *@*.amazon.co.uk
def_welcomelist_from_spf *@ora.com
def_welcomelist_from_spf *@*.ora.com
def_welcomelist_from_spf *@mypoints.com
def_welcomelist_from_spf *@*.mypoints.com
def_welcomelist_from_spf *@paypal.com
def_welcomelist_from_spf *@ebay.com
def_welcomelist_from_spf *@foolsubs.com
def_welcomelist_from_spf *@match.com
# bugtraq: can contain malicious Javascript etc.
def_welcomelist_from_spf *@securityfocus.com
def_welcomelist_from_spf *@mediaunspun.imakenews.net
# sender of Cringley newsletter
def_welcomelist_from_spf *@bdcimail.com
# Silicon.com newslettters - we see thousands of these
def_welcomelist_from_spf *@silicon.com
# C|Net news.com newsletters
def_welcomelist_from_spf *@newsletter.online.com
# bug 1348
def_welcomelist_from_spf *@enews.buy.com
def_welcomelist_from_spf *@palm.m0.net
def_welcomelist_from_spf *@handspring.4at1.com
endif
###
### For <4.0 compatibility
###
if !can(Mail::SpamAssassin::Conf::feature_welcomelist_blocklist)
def_whitelist_from_spf *@nytimes.com
def_whitelist_from_spf *@amazon.com
def_whitelist_from_spf *@amazon.co.uk
def_whitelist_from_spf *@*.amazon.co.uk
def_whitelist_from_spf *@ora.com
def_whitelist_from_spf *@*.ora.com
def_whitelist_from_spf *@mypoints.com
def_whitelist_from_spf *@*.mypoints.com
def_whitelist_from_spf *@paypal.com
def_whitelist_from_spf *@ebay.com
def_whitelist_from_spf *@foolsubs.com
def_whitelist_from_spf *@match.com
# bugtraq: can contain malicious Javascript etc.
def_whitelist_from_spf *@securityfocus.com
def_whitelist_from_spf *@mediaunspun.imakenews.net
# sender of Cringley newsletter
def_whitelist_from_spf *@bdcimail.com
# Silicon.com newslettters - we see thousands of these
def_whitelist_from_spf *@silicon.com
# C|Net news.com newsletters
def_whitelist_from_spf *@newsletter.online.com
# bug 1348
def_whitelist_from_spf *@enews.buy.com
def_whitelist_from_spf *@palm.m0.net
def_whitelist_from_spf *@handspring.4at1.com
endif
###
###
###
endif # Mail::SpamAssassin::Plugin::SPF
|
