1 Topic by Bronko (edited by Bronko 2016-07-08 00:27:03)

  • Bronko
  • Member
  • Offline
  • Registered: 2009-10-20
  • Posts: 112

Topic: Scoring for SPF

================ Required information ====
- iRedMail version (check /etc/iredmail-release): 0.9.0
- Linux/BSD distribution name and version: Ubuntu 12.04.5 LTS
- Store mail accounts in which backend (LDAP/MySQL/PGSQL): LDAP
- Web server (Apache or Nginx): Apache
- Manage mail accounts with iRedAdmin-Pro? Yes
- Related log if you're reporting an issue:
====

Hi,
which file adjust the scoring for the SpamAssassin rules for testing SPF compliance on received emails?
Is it /etc/mail/spamassassin/local.cf?
The SpamAssassin Mail Filter Daemon is disabled, because of ENABLED=0 in /etc/default/spamassassin.

Currently I see these in my Content analysis details:

0.0 SPF_FAIL               SPF: sender does not match SPF record (fail)

----

Spider Email Archiver: On-Premises, lightweight email archiving software developed by iRedMail team. Supports Amazon S3 compatible storage and custom branding.

2 Reply by Bronko

  • Bronko
  • Member
  • Offline
  • Registered: 2009-10-20
  • Posts: 112

Re: Scoring for SPF

Ok, with the setup from above these lines in /etc/mail/spamassassin/local.cf controls the scoring:

score SPF_FAIL 7
score SPF_SOFTFAIL 4.5
score SPF_NEUTRAL 3

3 Reply by ZhangHuangbin

  • ZhangHuangbin
  • ZhangHuangbin
  • iRedMail Developers
  • Offline
  • Registered: 2009-05-06
  • Posts: 30,787

Re: Scoring for SPF

Thanks for sharing.

But not all senders have correct SPF record, high SPF_FAIL score (7) may be not ideal. I'd like to hear from you after running with this score setting for some time.

4 Reply by Bronko

  • Bronko
  • Member
  • Offline
  • Registered: 2009-10-20
  • Posts: 112

Re: Scoring for SPF

It works fine until now, no mismatch! My main intention was to mark all mails which claim to be from my own domain as spam.

5 Reply by ZhangHuangbin

  • ZhangHuangbin
  • ZhangHuangbin
  • iRedMail Developers
  • Offline
  • Registered: 2009-05-06
  • Posts: 30,787

Re: Scoring for SPF

Bronko wrote:

My main intention was to mark all mails which claim to be from my own domain as spam.

iRedAPD plugin 'reject_sender_login_mismatch' can do this for you. It will detect whether sender is hosted on localhost, if sender didn't perform smtp auth, it will be rejected.

6 Reply by Bronko

  • Bronko
  • Member
  • Offline
  • Registered: 2009-10-20
  • Posts: 112

Re: Scoring for SPF

ZhangHuangbin wrote:

iRedAPD plugin 'reject_sender_login_mismatch' can do this for you. It will detect whether sender is hosted on localhost, if sender didn't perform smtp auth, it will be rejected.

Ok, the same as here: http://www.iredmail.org/forum/topic1139 … login.html

But I willed reject with SPF check for what it is originary: reject mails from my own domain name, sent from a different server.