18
18
# limitations under the License.
21
# copied from 10_default_prefs.cf
23
report Spam detection software, running on the system "_HOSTNAME_", has
24
report identified this incoming email as possible spam. The original message
25
report has been attached to this so you can view it (if it isn't spam) or label
26
report similar future email. If you have any questions, see
27
report _CONTACTADDRESS_ for details.
29
report Content preview: _PREVIEW_
31
report Content analysis details: (_SCORE_ points, _REQD_ required)
33
report " pts rule name description"
34
report ---- ---------------------- --------------------------------------------------
37
report_contact @@CONTACT_ADDRESS@@
39
clear_unsafe_report_template
40
unsafe_report The original message was not completely plain text, and may be unsafe to
41
unsafe_report open with some email clients; in particular, it may contain a virus,
42
unsafe_report or confirm that your address can receive spam. If you wish to view
43
unsafe_report it, it may be safer to save it to a file and open it with an editor.
46
add_header all Checker-Version SpamAssassin _VERSION_ (_SUBVERSION_) on _HOSTNAME_
47
add_header spam Flag _YESNOCAPS_
48
add_header all Level _STARS(*)_
49
add_header all Status "_YESNO_, score=_SCORE_ required=_REQD_ tests=_TESTS_ autolearn=_AUTOLEARN_ version=_VERSION_"
53
ifplugin Mail::SpamAssassin::Plugin::TextCat
55
endif # Mail::SpamAssassin::Plugin::TextCat
57
ifplugin Mail::SpamAssassin::Plugin::AutoLearnThreshold
58
bayes_auto_learn_threshold_nonspam 0.1
59
bayes_auto_learn_threshold_spam 12.0
60
endif # Mail::SpamAssassin::Plugin::AutoLearnThreshold
23
67
header TEST_NOREALNAME From =~ /^["\s]*\<?\S+\@\S+\>?\s*$/
48
92
describe TEST_INVALID_DATE Invalid Date: header (not RFC 2822)
49
93
score TEST_INVALID_DATE 5
95
header TEST_MSGID_OUTLOOK_INVALID eval:check_outlook_message_id()
96
describe TEST_MSGID_OUTLOOK_INVALID Message-Id is fake (in Outlook Express format)
97
score TEST_MSGID_OUTLOOK_INVALID 5
99
ifplugin Mail::SpamAssassin::Plugin::Hashcash
100
header HASHCASH_20 eval:check_hashcash_value('20', '21')
101
header HASHCASH_21 eval:check_hashcash_value('21', '22')
102
header HASHCASH_22 eval:check_hashcash_value('22', '23')
103
header HASHCASH_23 eval:check_hashcash_value('23', '24')
104
header HASHCASH_24 eval:check_hashcash_value('24', '25')
105
header HASHCASH_25 eval:check_hashcash_value('25', '26')
106
header HASHCASH_HIGH eval:check_hashcash_value('26', '9999')
107
tflags HASHCASH_20 nice userconf
108
tflags HASHCASH_21 nice userconf
109
tflags HASHCASH_22 nice userconf
110
tflags HASHCASH_23 nice userconf
111
tflags HASHCASH_24 nice userconf
112
tflags HASHCASH_25 nice userconf
113
tflags HASHCASH_HIGH nice userconf
114
describe HASHCASH_20 Contains valid Hashcash token (20 bits)
115
describe HASHCASH_21 Contains valid Hashcash token (21 bits)
116
describe HASHCASH_22 Contains valid Hashcash token (22 bits)
117
describe HASHCASH_23 Contains valid Hashcash token (23 bits)
118
describe HASHCASH_24 Contains valid Hashcash token (24 bits)
119
describe HASHCASH_25 Contains valid Hashcash token (25 bits)
120
describe HASHCASH_HIGH Contains valid Hashcash token (>25 bits)
121
header HASHCASH_2SPEND eval:check_hashcash_double_spend()
122
describe HASHCASH_2SPEND Hashcash token already spent in another mail
123
tflags HASHCASH_2SPEND userconf
124
endif # Mail::SpamAssassin::Plugin::Hashcash
126
header MISSING_HB_SEP eval:check_msg_parse_flags('missing_head_body_separator')
127
describe MISSING_HB_SEP Missing blank line between message header and body
128
tflags MISSING_HB_SEP userconf
130
header X_MESSAGE_INFO exists:X-Message-Info
131
describe X_MESSAGE_INFO Bulk email fingerprint (X-Message-Info) found
133
header SORTED_RECIPS eval:sorted_recipients()
134
describe SORTED_RECIPS Recipient list is sorted by address
136
header SUSPICIOUS_RECIPS eval:similar_recipients('0.65','undef')
137
describe SUSPICIOUS_RECIPS Similar addresses in recipient list
139
body GTUBE /XJS\*C4JDBQADN1\.NSBN3\*2IDNEN\*GTUBE-STANDARD-ANTI-UBE-TEST-EMAIL\*C\.34X/
140
describe GTUBE Generic Test for Unsolicited Bulk Email
142
tflags GTUBE userconf noautolearn
144
body BAYES_99 eval:check_bayes('0.99', '1.00')
145
tflags BAYES_99 learn
146
describe BAYES_99 Bayes spam probability is 99 to 100%
147
score BAYES_99 0 0 3.5 3.5
149
ifplugin Mail::SpamAssassin::Plugin::WLBLEval
150
header USER_IN_WHITELIST eval:check_from_in_whitelist()
151
tflags USER_IN_WHITELIST userconf nice noautolearn
152
score USER_IN_WHITELIST -100.000
153
header USER_IN_DEF_WHITELIST eval:check_from_in_default_whitelist()
154
tflags USER_IN_DEF_WHITELIST userconf nice noautolearn
155
score USER_IN_DEF_WHITELIST -15.000
156
header USER_IN_WHITELIST_TO eval:check_to_in_whitelist()
157
tflags USER_IN_WHITELIST_TO userconf nice noautolearn
158
score USER_IN_WHITELIST_TO -6.000
159
header USER_IN_BLACKLIST eval:check_from_in_blacklist()
160
tflags USER_IN_BLACKLIST userconf noautolearn
161
score USER_IN_BLACKLIST 100.000
162
header USER_IN_BLACKLIST_TO eval:check_to_in_blacklist()
163
tflags USER_IN_BLACKLIST_TO userconf noautolearn
164
score USER_IN_BLACKLIST_TO 10.000
165
endif # Mail::SpamAssassin::Plugin::WLBLEval
167
ifplugin Mail::SpamAssassin::Plugin::WhiteListSubject
168
header SUBJECT_IN_WHITELIST eval:check_subject_in_whitelist()
169
tflags SUBJECT_IN_WHITELIST userconf nice noautolearn
170
header SUBJECT_IN_BLACKLIST eval:check_subject_in_blacklist()
171
tflags SUBJECT_IN_BLACKLIST userconf noautolearn
172
score SUBJECT_IN_BLACKLIST 100
173
score SUBJECT_IN_WHITELIST -100
174
endif # Mail::SpamAssassin::Plugin::WhiteListSubject
176
header __HAS_MSGID MESSAGEID =~ /\S/
177
header __SANE_MSGID MESSAGEID =~ /^<[^<>\\ \t\n\r\x0b\x80-\xff]+\@[^<>\\ \t\n\r\x0b\x80-\xff]+>\s*$/m
178
header __MSGID_COMMENT MESSAGEID =~ /\(.*\)/m
179
meta INVALID_MSGID __HAS_MSGID && !(__SANE_MSGID || __MSGID_COMMENT)
180
describe INVALID_MSGID Message-Id is not valid, according to RFC 2822
181
score INVALID_MSGID 2.999 2.603 2.489 1.900
183
header TEST_MSGID_SPAM_CAPS Message-ID =~ /^\s*<?[A-Z]+\@(?!(?:mailcity|whowhere)\.com)/
184
score TEST_MSGID_SPAM_CAPS 5
186
header INVALID_DATE Date !~ /^\s*(?:(?i:Mon|Tue|Wed|Thu|Fri|Sat|Sun),\s)?\s*(?:[12]\d|3[01]|0?[1-9])\s+(?i:Jan|Feb|Ma[ry]|Apr|Ju[nl]|Aug|Sep|Oct|Nov|Dec)\s+(?:19[7-9]\d|2\d{3})\s+(?:[01]?\d|2[0-3])\:[0-5]\d(?::(?:[0-5]\d|60))?(?:\s+[AP]M)?(?:\s+(?:[+-][0-9]{4}|UT|[A-Z]{2,3}T|0000 GMT|"GMT"))?(?:\s*\(.*\))?\s*$/m [if-unset: Wed, 31 Jul 2002 16:41:57 +0200]
187
describe INVALID_DATE Invalid Date: header (not RFC 2822)
188
score INVALID_DATE 2.303 1.651 1.329 1.245
190
ifplugin Mail::SpamAssassin::Plugin::SPF
191
header SPF_PASS eval:check_for_spf_pass()
192
header SPF_NEUTRAL eval:check_for_spf_neutral()
193
header SPF_FAIL eval:check_for_spf_fail()
194
header SPF_SOFTFAIL eval:check_for_spf_softfail()
195
header SPF_HELO_PASS eval:check_for_spf_helo_pass()
196
header SPF_HELO_NEUTRAL eval:check_for_spf_helo_neutral()
197
header SPF_HELO_FAIL eval:check_for_spf_helo_fail()
198
header SPF_HELO_SOFTFAIL eval:check_for_spf_helo_softfail()
199
tflags SPF_PASS nice userconf net
200
tflags SPF_HELO_PASS nice userconf net
201
tflags SPF_NEUTRAL net
203
tflags SPF_SOFTFAIL net
204
tflags SPF_HELO_NEUTRAL net
205
tflags SPF_HELO_FAIL net
206
tflags SPF_HELO_SOFTFAIL net
207
header USER_IN_SPF_WHITELIST eval:check_for_spf_whitelist_from()
208
tflags USER_IN_SPF_WHITELIST userconf nice noautolearn
209
header USER_IN_DEF_SPF_WL eval:check_for_def_spf_whitelist_from()
210
tflags USER_IN_DEF_SPF_WL userconf nice noautolearn
211
endif # Mail::SpamAssassin::Plugin::SPF
213
ifplugin Mail::SpamAssassin::Plugin::AWL
214
header AWL eval:check_from_in_auto_whitelist()
215
describe AWL From: address is in the auto white-list
216
tflags AWL userconf noautolearn
218
endif # Mail::SpamAssassin::Plugin::AWL
220
redirector_pattern /^http:\/\/chkpt\.zdnet\.com\/chkpt\/\w+\/(.*)$/i
221
redirector_pattern /^http:\/\/www(?:\d+)?\.nate\.com\/r\/\w+\/(.*)$/i
222
redirector_pattern /^http:\/\/.+\.gov\/(?:.*\/)?externalLink\.jhtml\?.*url=(.*?)(?:&.*)?$/i
223
redirector_pattern /^http:\/\/redir\.internet\.com\/.+?\/.+?\/(.*)$/i
224
redirector_pattern /^http:\/\/(?:.*?\.)?adtech\.de\/.*(?:;|\|)link=(.*?)(?:;|$)/i
225
redirector_pattern m'^http.*?/redirect\.php\?.*(?<=[?&])goto=(.*?)(?:$|[&\#])'i
226
redirector_pattern m'^https?:/*(?:[^/]+\.)?emf\d\.com/r\.cfm.*?&r=(.*)'i
228
ifplugin Mail::SpamAssassin::Plugin::DCC
229
full DCC_CHECK eval:check_dcc()
230
describe DCC_CHECK Listed in DCC (http://rhyolite.com/anti-spam/dcc/)
235
ifplugin Mail::SpamAssassin::Plugin::DKIM
236
full DKIM_SIGNED eval:check_dkim_signed()
237
full DKIM_VALID eval:check_dkim_valid()
238
full DKIM_VALID_AU eval:check_dkim_valid_author_sig()
239
header DKIM_ADSP_NXDOMAIN eval:check_dkim_adsp('N')
240
header DKIM_ADSP_DISCARD eval:check_dkim_adsp('D')
241
header DKIM_ADSP_ALL eval:check_dkim_adsp('A')
242
header DKIM_ADSP_CUSTOM_LOW eval:check_dkim_adsp('1')
243
header DKIM_ADSP_CUSTOM_MED eval:check_dkim_adsp('2')
244
header DKIM_ADSP_CUSTOM_HIGH eval:check_dkim_adsp('3')
245
adsp_override sa-test-nxd.spamassassin.org nxdomain
246
adsp_override sa-test-unk.spamassassin.org unknown
247
adsp_override sa-test-all.spamassassin.org all
248
adsp_override sa-test-dis.spamassassin.org discardable
249
adsp_override sa-test-di2.spamassassin.org
252
ifplugin Mail::SpamAssassin::Plugin::Shortcircuit
253
header SHORTCIRCUIT eval:check_shortcircuit()
254
describe SHORTCIRCUIT Not all rules were run, due to a shortcircuited rule
255
tflags SHORTCIRCUIT userconf noautolearn
259
ifplugin Mail::SpamAssassin::Plugin::Razor2
261
full RAZOR2_CHECK eval:check_razor2()
262
describe RAZOR2_CHECK Listed in Razor2 (http://razor.sf.net/)
263
tflags RAZOR2_CHECK net