Skip to content

Instantly share code, notes, and snippets.

@gleicon

gleicon/01 main.cf

Forked from kraba/01 main.cf
Created June 7, 2024 19:54
Show Gist options
  • Save gleicon/08c0927e7b7598e60891985292565b90 to your computer and use it in GitHub Desktop.
Save gleicon/08c0927e7b7598e60891985292565b90 to your computer and use it in GitHub Desktop.
Download ZIP
Postfix (RBL/DNSBL/BL) + Dovecot + Postgrey + Spamassassin + Clamav + Sieve + Roundcube + Postfixadmin : https://wiki.matteobasso.com/Postfix_%26_Dovecot_:_installation_procedure
Raw
01 main.cf
biff = no
myhostname = mail.mysite.org
mydomain = mysite.org
myorigin = /etc/mailname
mydestination = $myhostname, localhost.$mydomain, localhost
relayhost =
mynetworks = 127.0.0.0/8 [::ffff:127.0.0.0]/104 [::1]/128
mailbox_size_limit = 0
recipient_delimiter = +
inet_interfaces = all
inet_protocols = ipv4
alias_maps = hash:/etc/aliases
#alias_database = hash:/etc/aliases
#home_mailbox = Maildir/
smtp_host_lookup = native
# Do not append domain part to incomplete addresses (this is the MUA's job)
append_dot_mydomain = no
# Disable local transport (so that system accounts can't receive mail)
local_transport = error:Local Transport Disabled
compatibility_level=2
##### BLACKLIST
# Deny VRFY recipient checks
disable_vrfy_command = yes
# log recipient address information when rejecting a client name/address or sender address
smtpd_delay_reject = yes
# Require HELO
smtpd_helo_required = yes
# Reject email if remote hostname is not in fully-qualified domain form. Usually bots sending email don’t have FQDN names
# Reject all bots sending email from computers connected via DSL/ADSL computers. They don’t have valid internet hostname.
smtpd_helo_restrictions = permit_mynetworks,
reject_non_fqdn_hostname,
reject_invalid_hostname,
permit
# Limit incoming or receiving email rate to avoid spam
smtpd_error_sleep_time = 1s
smtpd_soft_error_limit = 10
smtpd_hard_error_limit = 20
# Header check - rejected
header_checks = regexp:/etc/postfix/header_check_file
smtpd_relay_restrictions =
permit_mynetworks,
permit_sasl_authenticated,
defer_unauth_destination
smtpd_recipient_restrictions =
permit_mynetworks,
permit_sasl_authenticated,
reject_unauth_pipelining,
reject_invalid_hostname,
reject_non_fqdn_hostname,
reject_non_fqdn_sender,
reject_non_fqdn_recipient,
reject_unknown_sender_domain,
reject_unauth_destination,
reject_unknown_recipient_domain,
reject_rbl_client zen.spamhaus.org,
reject_rbl_client bl.spamcop.net,
reject_rbl_client cbl.abuseat.org,
reject_rbl_client dnsbl.sorbs.net,
reject_rbl_client psbl.surriel.com,
reject_rbl_client b.barracudacentral.org,
check_client_access cidr:/etc/postfix/client_checks,
check_policy_service inet:127.0.0.1:10023,
permit
smtpd_sender_restrictions =
reject_non_fqdn_sender,
reject_unknown_sender_domain,
permit
##### TLS configuration
# Just to remember :
# smtpd --> handling/routing incoming mail
# smtp --> delivering mail
smtpd_use_tls = yes
smtp_use_tls = yes
# TSL Certificate location
smtpd_tls_key_file = /etc/letsencrypt/live/mail.mysite.org/privkey.pem
smtpd_tls_cert_file = /etc/letsencrypt/live/mail.mysite.org/fullchain.pem
smtp_tls_key_file = /etc/letsencrypt/live/mail.mysite.org/privkey.pem
smtp_tls_cert_file = /etc/letsencrypt/live/mail.mysite.org/fullchain.pem
# CA location
# https://askubuntu.com/questions/73865/postfix-gmail-certificate-verification-failed
# prevent : Untrusted TLS connection established
smtp_tls_CApath = /etc/ssl/certs
smtp_tls_CAfile = /etc/ssl/certs/ca-certificates.crt
smtpd_tls_CAfile = /etc/ssl/certs/ca-certificates.crt
smtpd_tls_session_cache_database = btree:${data_directory}/smtpd_scache
smtp_tls_session_cache_database = btree:${data_directory}/smtp_scache
smtpd_tls_auth_only = yes
smtpd_tls_received_header = yes
smtpd_tls_session_cache_timeout = 3600s
smtp_tls_note_starttls_offer = yes
# Protocols
smtp_tls_mandatory_exclude_ciphers = MD5, DES, ADH, RC4, PSD, SRP, 3DES, eNULL
smtpd_tls_mandatory_exclude_ciphers = MD5, DES, ADH, RC4, PSD, SRP, 3DES, eNULL
smtpd_tls_exclude_ciphers = MD5, DES, ADH, RC4, PSD, SRP, 3DES, eNULL
smtp_tls_mandatory_protocols = !SSLv2, !SSLv3
smtpd_tls_mandatory_protocols = !SSLv2, !SSLv3
smtp_tls_protocols = !SSLv2, !SSLv3
smtpd_tls_protocols = !SSLv2, !SSLv3
# Randomizer for key creation
tls_random_source = dev:/dev/urandom
# Encrypt all messages to 3rd-party email server
smtpd_tls_security_level = may
smtp_tls_security_level = may
smtpd_tls_loglevel = 1
smtp_tls_loglevel = 1
# try to use strong ciphers
smtpd_tls_ciphers = high
smtp_tls_ciphers = high
##### SASL
smtpd_sasl_auth_enable = yes
smtpd_sasl_type = dovecot
smtpd_sasl_path = private/auth
smtpd_sasl_authenticated_header = yes
#smtp_sasl_auth_enable = yes
smtp_sasl_security_options = noanonymous
smtpd_sasl_local_domain =
broken_sasl_auth_clients = yes
##### Virtual mailbox settings
# vmail id 150 - gid 124
virtual_mailbox_domains = proxy:mysql:/etc/postfix/mysql_virtual_domains_maps.cf
virtual_mailbox_maps = proxy:mysql:/etc/postfix/mysql_virtual_mailbox_maps.cf
virtual_alias_maps = proxy:mysql:/etc/postfix/mysql_virtual_alias_maps.cf
virtual_mailbox_base = /var/mail/vmail
virtual_minimum_uid = 150
virtual_uid_maps = static:150
virtual_gid_maps = static:124
virtual_transport = spamassassin
# Spamassassin move spam to junk folder
spamassassin_destination_recipient_limit = 1
# Clamav AV
content_filter = scan:127.0.0.1:10026
receive_override_options = no_address_mappings
Raw
02 master.cf
# Postfix master process configuration file. For details on the format
# of the file, see the master(5) manual page (command: "man 5 master" or
# on-line: http://www.postfix.org/master.5.html).
#
# Do not forget to execute "postfix reload" after editing this file.
#
# ==========================================================================
# service type private unpriv chroot wakeup maxproc command + args
# (yes) (yes) (no) (never) (100)
# ==========================================================================
smtp inet n - y - - smtpd
-o content_filter=scan:127.0.0.1:10026
#smtp inet n - y - 1 postscreen
#smtpd pass - - y - - smtpd
#dnsblog unix - - y - 0 dnsblog
#tlsproxy unix - - y - 0 tlsproxy
submission inet n - y - - smtpd
-o syslog_name=postfix/submission
-o smtpd_tls_security_level=encrypt
-o smtpd_sasl_auth_enable=yes
-o smtpd_relay_restrictions=permit_sasl_authenticated,reject
-o milter_macro_daemon_name=ORIGINATING
-o smtpd_sasl_type=dovecot
-o smtpd_sasl_path=private/auth
-o smtpd_tls_wrappermode=no
# -o content_filter=spamassassin
#smtps inet n - y - - smtpd
# -o syslog_name=postfix/smtps
# -o smtpd_tls_wrappermode=yes
# -o smtpd_sasl_auth_enable=yes
# -o smtpd_reject_unlisted_recipient=no
# -o smtpd_client_restrictions=$mua_client_restrictions
# -o smtpd_helo_restrictions=$mua_helo_restrictions
# -o smtpd_sender_restrictions=$mua_sender_restrictions
# -o smtpd_recipient_restrictions=
# -o smtpd_relay_restrictions=permit_sasl_authenticated,reject
# -o milter_macro_daemon_name=ORIGINATING
#628 inet n - y - - qmqpd
pickup unix n - y 60 1 pickup
cleanup unix n - y - 0 cleanup
qmgr unix n - n 300 1 qmgr
#qmgr unix n - n 300 1 oqmgr
tlsmgr unix - - y 1000? 1 tlsmgr
rewrite unix - - y - - trivial-rewrite
bounce unix - - y - 0 bounce
defer unix - - y - 0 bounce
trace unix - - y - 0 bounce
verify unix - - y - 1 verify
flush unix n - y 1000? 0 flush
proxymap unix - - n - - proxymap
proxywrite unix - - n - 1 proxymap
smtp unix - - y - - smtp
relay unix - - y - - smtp
# -o smtp_helo_timeout=5 -o smtp_connect_timeout=5
showq unix n - y - - showq
error unix - - y - - error
retry unix - - y - - error
discard unix - - y - - discard
local unix - n n - - local
virtual unix - n n - - virtual
lmtp unix - - y - - lmtp
anvil unix - - y - 1 anvil
scache unix - - y - 1 scache
#
# ====================================================================
# Interfaces to non-Postfix software. Be sure to examine the manual
# pages of the non-Postfix software to find out what options it wants.
#
# Many of the following services use the Postfix pipe(8) delivery
# agent. See the pipe(8) man page for information about ${recipient}
# and other message envelope options.
# ====================================================================
#
# maildrop. See the Postfix MAILDROP_README file for details.
# Also specify in main.cf: maildrop_destination_recipient_limit=1
#
maildrop unix - n n - - pipe
flags=DRhu user=vmail argv=/usr/bin/maildrop -d ${recipient}
#
# ====================================================================
#
# Recent Cyrus versions can use the existing "lmtp" master.cf entry.
#
# Specify in cyrus.conf:
# lmtp cmd="lmtpd -a" listen="localhost:lmtp" proto=tcp4
#
# Specify in main.cf one or more of the following:
# mailbox_transport = lmtp:inet:localhost
# virtual_transport = lmtp:inet:localhost
#
# ====================================================================
#
# Cyrus 2.1.5 (Amos Gouaux)
# Also specify in main.cf: cyrus_destination_recipient_limit=1
#
#cyrus unix - n n - - pipe
# user=cyrus argv=/cyrus/bin/deliver -e -r ${sender} -m ${extension} ${user}
#
# ====================================================================
# Old example of delivery via Cyrus.
#
#old-cyrus unix - n n - - pipe
# flags=R user=cyrus argv=/cyrus/bin/deliver -e -m ${extension} ${user}
#
# ====================================================================
#
# See the Postfix UUCP_README file for configuration details.
#
uucp unix - n n - - pipe
flags=Fqhu user=uucp argv=uux -r -n -z -a$sender - $nexthop!rmail ($recipient)
#
# Other external delivery methods.
#
ifmail unix - n n - - pipe
flags=F user=ftn argv=/usr/lib/ifmail/ifmail -r $nexthop ($recipient)
bsmtp unix - n n - - pipe
flags=Fq. user=bsmtp argv=/usr/lib/bsmtp/bsmtp -t$nexthop -f$sender $recipient
scalemail-backend unix - n n - 2 pipe
flags=R user=scalemail argv=/usr/lib/scalemail/bin/scalemail-store ${nexthop} ${user} ${extension}
mailman unix - n n - - pipe
flags=FR user=list argv=/usr/lib/mailman/bin/postfix-to-mailman.py
${nexthop} ${user}
# Antivirus
scan unix - - n - 16 smtp
-o smtp_send_xforward_command=yes
# For injecting mail back into postfix from the filter
127.0.0.1:10025 inet n - n - 16 smtpd
-o content_filter=
-o receive_override_options=no_unknown_recipient_checks,no_header_body_checks
-o smtpd_helo_restrictions=
-o smtpd_client_restrictions=
-o smtpd_sender_restrictions=
-o smtpd_recipient_restrictions=permit_mynetworks,reject
-o mynetworks_style=host
-o smtpd_authorized_xforward_hosts=127.0.0.0/8
# Spamassassin
spamassassin unix - n n - - pipe
flags=DROhu user=vmail:vmail argv=/usr/bin/spamc -f -e /usr/lib/dovecot/deliver -f ${sender} -d ${user}@${nexthop}
Raw
03 dovecot.conf
# 2.2.22 (fe789d2): /etc/dovecot/dovecot.conf
# Pigeonhole version 0.4.13 (7b14904)
# OS: Linux 4.4.0-101-generic x86_64 Ubuntu 16.04.3 LTS ext4
auth_mechanisms = plain login
first_valid_uid = 150
last_valid_uid = 150
first_valid_gid = 124
last_valid_gid = 124
postmaster_address = postmaster@mysite.org
mail_location = maildir:/var/mail/vmail/%d/%n
# https://wiki2.dovecot.org/VirtualUsers/Home
# prevent lda(foo): Error: User foo doesn't have home dir set, disabling duplicate database
mail_home = /var/mail/vmail/%d/%n
mail_privileged_group = vmail
namespace {
inbox = yes
mailbox Archive {
auto = subscribe
special_use = \Archive
}
mailbox Drafts {
auto = subscribe
special_use = \Drafts
}
mailbox Junk {
auto = subscribe
special_use = \Junk
}
mailbox Sent {
auto = subscribe
special_use = \Sent
}
mailbox Trash {
auto = subscribe
special_use = \Trash
}
}
passdb {
args = /etc/dovecot/dovecot-mysql.conf
driver = sql
}
passdb {
driver = pam
}
plugin {
sieve = ~/.dovecot.sieve
sieve_dir = ~/sieve
sieve_after = /etc/dovecot/sieve/default.sieve
}
protocols = " imap lmtp pop3 "
service auth {
unix_listener /var/spool/postfix/private/auth {
group = postfix
mode = 0666
user = postfix
}
}
service lmtp {
unix_listener /var/spool/postfix/private/lmtp {
mode = 0600
user = postfix
group = postfix
}
}
ssl_ca = </etc/letsencrypt/live/mail.mysite.org/cert.pem
ssl_cert = </etc/letsencrypt/live/mail.mysite.org/fullchain.pem
ssl_key = </etc/letsencrypt/live/mail.mysite.org/privkey.pem
userdb {
args = /etc/dovecot/dovecot-mysql.conf
driver = sql
}
userdb {
driver = passwd
}
protocol lmtp {
mail_plugins = $mail_plugins sieve
postmaster_address = postmaster@mysite.org
}
protocol lda {
mail_plugins = $mail_plugins sieve
}
Raw
99 header_check_file
/^Subject: Virus Detected by Network Associates, Inc\. Webshield/ REJECT Spam detected
/^Subject: ---- Virus Detected ----$/ REJECT Spam detected
/^Subject: Virus detected$/ REJECT Spam detected
/^Subject: Virus Alert$/ REJECT Spam detected
/^Subject: InterScan NT Alert$/ REJECT Spam detected
/^Subject: Virus found in the message$/ REJECT Spam detected
/^Subject: Message quarantined$/ REJECT Spam detected
/^Subject: VIRUS ALERT!/ REJECT Spam detected
/^Subject: Virus found in e-mail \(/ REJECT Spam detected
/^Subject: MDaemon Warning - Virus Found/ REJECT Spam detected
/^Subject: Warning: E-mail viruses detected$/ REJECT Spam detected
/^Subject: ScanMail Message: To Sender virus found/ REJECT Spam detected
/^Subject: Norton Anti ?Virus detected/ REJECT Spam detected
/^Subject: VIRUS .*IN YOUR MAIL$/ REJECT Spam detected
/^Subject: Antigen found / REJECT Spam detected
/^Subject: Filter incident$/ REJECT Spam detected
/^Subject: Vírus figyelmeztetés! Virus warning!$/ REJECT Spam detected
/^Subject: Symantec AV?F detect/ REJECT Spam detected
/^Subject: ?Returned due to virus/ REJECT Spam detected
/^Subject: Anti-Virus Notification/ REJECT Spam detected
/^Subject: BANNED .* IN MAIL FROM YOU/ REJECT Spam detected
/^Subject: File blocked - ScanMail for Lotus/ REJECT Spam detected
/^Subject: NAV detected a virus/ REJECT Spam detected
/^Subject: VIRUS .+ IN MAIL FROM YOU/ REJECT Spam detected
/^Subject: Virus Notification:/ REJECT Spam detected
/^Subject: Virus found in a message you sent/ REJECT Spam detected
/^Subject: Virus found in sent message/ REJECT Spam detected
/^Subject: VIRUS EN SU CORREO/ REJECT Spam detected
/^Subject: Warning: antivirus system report$/ REJECT Spam detected
/^Subject: MDaemon Notification -- Attachment Removed$/ REJECT Spam detected
/^Subject: Information - Antivirus$/ REJECT Spam detected
/^Subject: Symantec AntiVirus detected a violation/ REJECT Spam detected
/^Subject: WARNING: YOU WERE SENT A VIRUS/ REJECT Spam detected
/^Subject: SAV detected a violation in a document/ REJECT Spam detected
/^Subject: MailMarshal has detected a suspect attachment/ REJECT Spam detected
/^Subject: A virus was detected in your m/ REJECT Spam detected
/^Subject: Recipient Virus-alert/ REJECT Spam detected
/^Subject: Virus Found in message/ REJECT Spam detected
/^Subject: E-?mail viruses detected/ REJECT Spam detected
/^Subject: Undelivered mail: VIRUS FOUND/ REJECT Spam detected
/^Subject: Quarantined Mail: virus from/ REJECT Spam detected
/^Subject: Attenzione Virus/ REJECT Spam detected
/^Subject: \[MailServer Notification\]To Sender virus found/ REJECT Spam detected
/^Subject: virus in verschickter Nachricht gefunden/ REJECT Spam detected
/^Subject: MailMarshal has detected a Virus in your message/ REJECT Spam detected
/^Subject: Virus encontrado en el mensaje enviado/ REJECT Spam detected
/^Subject: Security Alert - ScanMail for Lotus Notes/ REJECT Spam detected
/^Subject: Virus Infection Alert/ REJECT Spam detected
/^Subject: Warning - Virus Detected:/ REJECT Spam detected
/^Subject: Skynet Mail Protection scan results/ REJECT Spam detected
/^X-BLTSYMAVREINSERT/ REJECT Spam detected
/^X-Virus-Scan-Result: Repaired/ REJECT Spam detected
/^X-.*-MailScanner: Found to be infected/ REJECT Spam detected
/^X-Scanned: Symantec Antivirus Scan - Virus found/ REJECT Spam detected
/^X-Sender: NetMail AntiVirus Agent/ REJECT Spam detected
/^X-Auto-Generated: Sophos antivirus plugin/ REJECT Spam detected
/^Subject: Virusveszely! Virus warning!/ REJECT Spam detected
/^Subject: Virus in mail from you\./ REJECT Spam detected
/^Subject: Virus infection notice/ REJECT Spam detected
/^Subject: Possible virus found in message you sent/ REJECT Spam detected
/^Subject: AntiVir ALERT/ REJECT Spam detected
/^Subject: Centrale Anti-Virus melding/ REJECT Spam detected
/^Subject: Vexira ALERT/ REJECT Spam detected
/^X-ELTE-VirusStatus: was_infected/ REJECT Spam detected
/^Subject: You sent potentially unsafe content/ REJECT Spam detected
/^Subject: Hov, du har sendt Jubii en virus !!!$/ REJECT Spam detected
/^Subject: \[message from .*virus detect system\]$/ REJECT Spam detected
/^Subject: Net Integrator Virus Alert$/ REJECT Spam detected
/^Subject: AntiVirus Alert!$/ REJECT Spam detected
/^Subject: \{ALERTA DE VIRUS\}/ REJECT Spam detected
/^Subject: Virus in una mail per lei/ REJECT Spam detected
/^Subject: .*AntiVirus scan results/ REJECT Spam detected
/^X-Mailer: ravmd\// REJECT Spam detected
/^Subject:.*ALERTE \- Vous avez envoye un mail avec virus/ REJECT Spam detected
/^Subject:.*ALERTE\: un virus a / REJECT Spam detected
/^Subject:.*ALERT\! Virus found in your mail/ REJECT Spam detected
/^Subject:.*Anti-Virus Notification/ REJECT Spam detected
/^Subject:.*Antigen Notification/ REJECT Spam detected
/^Subject:.*Antigen found VIRUS/ REJECT Spam detected
/^Subject:.*Antivirus stopped your message/ REJECT Spam detected
/^Subject:.*Email Quarantined Due to Virus/ REJECT Spam detected
/^Subject:.*Failed to clean virus file/ REJECT Spam detected
/^Subject:.*Inflex scan report \[\d+\]/ REJECT Spam detected
/^Subject:.*InterScan NT Alert/ REJECT Spam detected
/^Subject:.*MMS Notification/ REJECT Spam detected
/^Subject:.*MailSure Virus Alert/ REJECT Spam detected
/^Subject:.*Ochrona antywirusowa/ REJECT Spam detected
/^Subject:.*\! Virus Notify \!/ REJECT Spam detected
/^Subject:.*SAV detected a violation in a / REJECT Spam detected
/^Subject:.*VIRUS NO SEU EMAIL/ REJECT Spam detected
/^Subject:.*Virus Check Alert/ REJECT Spam detected
/^Subject:.*Virus Notification from Redstone/ REJECT Spam detected
/^Subject:.*Virus Quarantine Notification/ REJECT Spam detected
/^Subject:.*Virus in Ihrer Nachricht/ REJECT Spam detected
/^Subject:.*Votre message contient un virus/ REJECT Spam detected
/^Subject:.*Warning\: E-mail viruses detected/ REJECT Spam detected
/^Subject:.*WorldSecure Server notification/ REJECT Spam detected
/^Subject:.*\[SmartFilter\] Virus Alert / REJECT Spam detected
/^Subject:.*\[Virus detected\]/ REJECT Spam detected
/^Subject:.*virus trouve dans le message envoye/ REJECT Spam detected
/^Subject:.*virus trovato in un messaggio inviato/ REJECT Spam detected
/^Subject: HBOS plc Automated Email Administrator/ REJECT Spam detected
/^Subject: Virus found:/ REJECT Spam detected
/^Subject: Your mail server sent us a virus/ REJECT Spam detected
/^Subject: This is an alert from eSafe$/ REJECT Spam detected
/^Subject: Virus encontrado/ REJECT Spam detected
/^Subject: Notification du serveur antivirus/ REJECT Spam detected
/^Subject: NAV ha rilevato un virus in un documento inviato$/ REJECT Spam detected
/^Subject: Network Associates Webshield - e-mail Content Alert$/ REJECT Spam detected
/^Subject: Symantec AntiVirus\/Filtering for Domino detected a virus/ REJECT Spam detected
/^Subject: Eclipse Internet VIRUSshield detected VIRUS/ REJECT Spam detected
/^Subject: VIRUS MESSAGE$/ REJECT Spam detected
/^Subject: Internet Mail Failure - Virus Alert$/ REJECT Spam detected
/^Subject: FOUND VIRUS IN YOUR MAIL TO:/ REJECT Spam detected
/^Subject: ALERT - Virus .+ found/ REJECT Spam detected
/^Subject: Suppresion du Virus/ REJECT Spam detected
/^Subject: Tipo de arquivo anexo nao permitido!/ REJECT Spam detected
/^Subject: \[.+: Virus detected\]$/ REJECT Spam detected
/^Subject: RAV[0-9]+ Antivirus notification/ REJECT Spam detected
/^Subject: ATTENZIONE: Ricevuto VIRUS da/ REJECT Spam detected
/^Subject: Warning: antivirus system report/ REJECT Spam detected
/^Subject: WARNING: We blocked a virus that was sent to you/ REJECT Spam detected
/^Subject: ScanMail Message: To Sender, virus found and action taken/ REJECT Spam detected
/^Subject: Warning: A possible virus has been detected in one of your/ REJECT Spam detected
/^Subject: Symantec har fundet en virus i den mail du har sendt/ REJECT Spam detected
/^Subject: Rejected Mail: attachment from/ REJECT Spam detected
/^Subject: Returned mail: Possible Virus Infection/ REJECT Spam detected
/^Subject: VIRUS \(.*\) FROM <.*>/ REJECT Spam detected
/^Subject: Symantec Mail Security detected/ REJECT Spam detected
/^Subject: Attachments not Delivered by MailScan/ REJECT Spam detected
/^Subject: .+action taken by attachment blocking feature/ REJECT Spam detected
/^Subject: You sent infected message/ REJECT Spam detected
/^Subject: .+e-mail Content Alert$/ REJECT Spam detected
/^Subject: VIRUSALARM/ REJECT Spam detected
/^Subject: Virusdetection:/ REJECT Spam detected
/^Subject: Recipient Virus-alert/ REJECT Spam detected
/^Subject: Norton AntiVirus quarantined an attachment in a message/ REJECT Spam detected
/^Subject: MailMonitor for Exchange has processed a suspicious mail/ REJECT Spam detected
/^Subject: WARNING: YOU MAY HAVE A VIRUS/ REJECT Spam detected
/^X-Tnz-Problem-Type: 40/ REJECT Spam detected
/^Subject: Discarded Mail: virus from/ REJECT Spam detected
/^Subject: SafeInternetEmail Notification/ REJECT Spam detected
/^Subject: Subject: CMC MAIL GATEWAY ALERT/ REJECT Spam detected
/^Subject: Warning: Possible Virus Infection/ REJECT Spam detected
/^Subject: .*\/ VIRUS SENT FROM YOUR ADDRESS/ REJECT Spam detected
/^Subject: virus encontrado/ REJECT Spam detected
/^Subject: .*virus detectado/ REJECT Spam detected
/^Subject: virus interceptado/ REJECT Spam detected
/^Subject: Virus en un correo electr/ REJECT Spam detected
/^Subject: virus de e-mail detectado/ REJECT Spam detected
/^Subject: virus en su correo/ REJECT Spam detected
/^Subject: incidencia de virus/ REJECT Spam detected
/^Subject: violaci[oó]n de contenido/ REJECT Spam detected
/^Subject: contenido no permitido/ REJECT Spam detected
/^Subject: alerta del antivirus/ REJECT Spam detected
/^Subject: VIRUS .* EN CORREO PRESUMIBLEMENTE SUYO/ REJECT Spam detected
/^Subject: detectado un virus en su mensaje/ REJECT Spam detected
/^Subject: fichero adjunto no permitido encontrado/ REJECT Spam detected
/^Subject: Antigen encontr[oó] el fichero/ REJECT Spam detected
/^Subject: Quarantined Mail: attachment from/ REJECT Spam detected
/^Subject: GWAVA Sender Notification (Virus infection)/ REJECT Spam detected
/^Subject: ?BitDefender found an infected/ REJECT Spam detected
/^Subject: \[Virus\] Policy Violation/ REJECT Spam detected
/^Subject: Non delivery report: 5.*(Virus infection)/ REJECT Spam detected
/^(Received|Message-Id|X-(Mailer|Sender)):.*\b(AutoMail|E-Broadcaster|Emailer Platinum|Thunder Server|eMarksman|Extractor|e-Merge|from stealth[^.]|Global Messenger|GroupMaster|Mailcast|MailKing|Match10|MassE-Mail|massmail\.pl|News Breaker|Powermailer|Quick Shot|Ready Aim
Fire|WindoZ|WorldMerge|Yourdora|Lite)\b/ REJECT No mass mailers allowed. You are probably sending spam
/^X-Mailer:.*\b(Aristotle|Avalanche|Blaster|Bomber|DejaVu|eMerge|Extractor|UltraMail|Sonic|Floodgate|GeoList|Mach10|MegaPro|Aureate|MultiMailer|Bluecom|Achi-Kochi Mail|Direct Email|Andrew's SuperCool Blastoise|MailerGear|Advanced Mass Sender|SpireMail|MailWorkZ|UltimDBMa
il|Mabry|Lite)\b/ REJECT No mass mailers allowed. You are probably sending spam.
/^(To|From|Cc|Reply-To):.*@optonline/ REJECT Sorry, your message is probably spam
/^Subject: =?EUC-KR?/ REJECT Korean encoding not allowed by this server
/^Subject: =?Windows-1251?/ REJECT Russian encoding not allowed by this server
/^Subject: =\?KOI8-R\?/ REJECT Russian encoding not allowed by this server
/^Subject: ADV:/ REJECT Advertisements not accepted by this server
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment