Created
May 13, 2018 08:42
-
-
Save stephdl/9a399ef64beaa30c09940ed1dc75cc2f to your computer and use it in GitHub Desktop.
log rejection of maillog with rspamd-1.7.4
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| May 13 07:08:38 prometheus postfix/smtpd[9644]: warning: hostname savory.biscoplk.com does not resolve to address 76.164.201.135: Name or service not known | |
| May 13 07:08:38 prometheus postfix/smtpd[9644]: connect from unknown[76.164.201.135] | |
| May 13 07:08:38 prometheus rspamd[14962]: <2e2dd6>; proxy; proxy_accept_socket: accepted milter connection from /var/run/rspamd/worker-proxy port 0 | |
| May 13 07:08:39 prometheus postfix/smtpd[9644]: 25F3B18E0980D: client=unknown[76.164.201.135] | |
| May 13 07:08:39 prometheus rspamd[14962]: <2e2dd6>; milter; rspamd_milter_process_command: got connection from 76.164.201.135:43060 | |
| May 13 07:08:39 prometheus postfix/cleanup[9648]: 25F3B18E0980D: message-id=<850086082528-qwgnbsvlefkpmwdpmb@my.parchamibime.com> | |
| May 13 07:08:39 prometheus rspamd[14962]: <2e2dd6>; proxy; rspamd_mime_part_detect_language: detected part language: fr | |
| May 13 07:08:39 prometheus rspamd[14962]: <2e2dd6>; proxy; rspamd_message_parse: loaded message; id: <850086082528-qwgnbsvlefkpmwdpmb@my.parchamibime.com>; queue-id: <25F3B18E0980D>; size: 2896; checksum: <3715b143dcaade05f280b972aa03da6d> | |
| May 13 07:08:39 prometheus rspamd[14962]: <2e2dd6>; proxy; fuzzy_generate_commands: <850086082528-qwgnbsvlefkpmwdpmb@my.parchamibime.com>, part is shorter than 1000 bytes: 838 (419 * 2.00 bytes), skip fuzzy check | |
| May 13 07:08:39 prometheus rspamd[14962]: <2e2dd6>; proxy; fuzzy_generate_commands: <850086082528-qwgnbsvlefkpmwdpmb@my.parchamibime.com>, part is shorter than 1000 bytes: 838 (419 * 2.00 bytes), use direct hash | |
| May 13 07:08:39 prometheus rspamd[14962]: <2e2dd6>; surbl; process_dns_results: <850086082528-qwgnbsvlefkpmwdpmb@my.parchamibime.com> domain [parchamibime.com.multi.surbl.org] is in surbl multi.surbl.org(40) | |
| May 13 07:08:39 prometheus rspamd[14962]: <2e2dd6>; surbl; process_dns_results: <850086082528-qwgnbsvlefkpmwdpmb@my.parchamibime.com> domain [parchamibime.com.dbl.spamhaus.org] is in surbl dbl.spamhaus.org(201007f) | |
| May 13 07:08:39 prometheus rspamd[14962]: <2e2dd6>; surbl; process_dns_results: <850086082528-qwgnbsvlefkpmwdpmb@my.parchamibime.com> domain [parchamibime.com.multi.uribl.com] is in surbl multi.uribl.com(2) | |
| May 13 07:08:39 prometheus rspamd[14962]: <2e2dd6>; surbl; process_dns_results: <850086082528-qwgnbsvlefkpmwdpmb@my.parchamibime.com> domain [parchamibime.com] is in surbl sbl.spamhaus.org(200007f) | |
| May 13 07:08:39 prometheus rspamd[14962]: <2e2dd6>; proxy; rspamd_check_group_score: maximum group score 12.50 for group surbl has been reached, ignoring symbol URIBL_SBL with weight 6.50 | |
| May 13 07:08:40 prometheus rspamd[14962]: <2e2dd6>; lua; once_received.lua:68: SMTP resolver failed to resolve: 135.201.164.76.in-addr.arpa is savory.biscoplk.com | |
| May 13 07:08:40 prometheus rspamd[14962]: <2e2dd6>; lua; neural.lua:454: trained ANN rule RFANN, save spam vector, 253 bytes | |
| May 13 07:08:40 prometheus rspamd[14962]: <2e2dd6>; proxy; rspamd_task_write_log: id: <850086082528-qwgnbsvlefkpmwdpmb@my.parchamibime.com>, qid: <25F3B18E0980D>, ip: 76.164.201.135, from: <ariannefycybgkmarie@parchamibime.com>, (default: T (reject): [30.37/19.90] [DBL_SPAM(6.50){parchamibime.com.dbl.spamhaus.org;},ABUSE_SURBL(5.50){parchamibime.com.multi.surbl.org;},DATE_IN_FUTURE(4.00){},MX_MISSING(3.50){requested record is not found;},HFILTER_HOSTNAME_UNKNOWN(2.50){},IP_SCORE(2.39){ipnet: 76.164.192.0/19(7.93), asn: 36114(4.96), country: US(-0.93);},HTML_SHORT_LINK_IMG_1(2.00){},RBL_SPAMHAUS_CSS(2.00){135.201.164.76.zen.spamhaus.org : 127.0.0.3;},FROM_EXCESS_QP(1.20){},MX_INVALID(0.50){},URIBL_BLACK(0.50){parchamibime.com.multi.uribl.com;},DMARC_POLICY_ALLOW(-0.25){parchamibime.com;none;},MIME_HTML_ONLY(0.20){},R_DKIM_ALLOW(-0.20){parchamibime.com;},R_SPF_ALLOW(-0.20){+ip4:76.164.201.128/27;},BAYES_SPAM(0.14){65.65%;},ONCE_RECEIVED(0.10){},HAS_LIST_UNSUB(-0.01){},ASN(0.00){asn:36114, ipnet:76.164.192.0/19, country:US;},DKIM_TRACE(0.00){parchamibime.com:+;},FROM_EQ_ENVFROM(0.00){},FROM_HAS_DN(0.00){},HAS_REPLYTO(0.00){ariannefycybgkmarie@parchamibime.com;},HAS_X_PRIO_THREE(0.00){3;},RCPT_COUNT_ONE(0.00){1;},RCVD_COUNT_ZERO(0.00){0;},RCVD_TLS_ALL(0.00){},REPLYTO_ADDR_EQ_FROM(0.00){},TO_DN_NONE(0.00){},TO_MATCH_ENVRCPT_ALL(0.00){},URIBL_SBL(0.00){parchamibime.com;}]), len: 2896, time: 760.657ms real, 7.834ms virtual, dns req: 37, digest: <3715b143dcaade05f280b972aa03da6d>, rcpts: <stephdl@de-labrusse.fr>, mime_rcpts: <stephdl@de-labrusse.fr> | |
| May 13 07:08:40 prometheus rspamd[14962]: <2e2dd6>; proxy; rspamd_protocol_http_reply: regexp statistics: 56 pcre regexps scanned, 5 regexps matched, 172 regexps total, 11 regexps cached, 7.52k bytes scanned using pcre, 7.52k bytes scanned total | |
| May 13 07:08:40 prometheus postfix/cleanup[9648]: 25F3B18E0980D: milter-reject: END-OF-MESSAGE from unknown[76.164.201.135]: 5.7.1 Spam message rejected; from=<ariannefycybgkmarie@parchamibime.com> to=<stephdl@de-labrusse.fr> proto=ESMTP helo=<savory.parchamibime.com> | |
| May 13 07:08:40 prometheus postfix/smtpd[9644]: disconnect from unknown[76.164.201.135] | |
| May 13 07:08:40 prometheus rspamd[14962]: <0d88c9>; proxy; proxy_milter_finish_handler: finished milter connection |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment