On 6/19/11, jason hirsh wrote: > I am running > >> amavisd-new 2.6.4_10.1 >> Postfix 2.9 >> Mysql server 5..5 > Freebsd 8.1 > > > I am trying to find a way to blacklist specified domains and email address.. > > > Mu current effort was tp try to block one of my own webmail accounts > [email protected] > > > This is what I put in amavisd.conf > > @score_sender_maps = ({ # a by-recipient hash lookup table > > # # per-recipient personal tables (NOTE: positive: black, negative: white) > # '[email protected]' => [{'[email protected]' => 10.0}], > # '[email protected]' => [{'.ebay.com' => -3.0}], > # '[email protected]' => [{'[email protected]' => -7.0, > # '.cleargreen.com' => -5.0}], > > # site-wide opinions about senders (the '.' matches any recipient) > '.' => [ # the _first_ matching sender determines the score boost > > new_RE( # regexp-type lookup table, just happens to be all > soft-blacklist > [qr'^(bulkmail|offers|cheapbenefits|earnmoney|foryou)@'i => > 5.0], > [qr'^(greatcasino|investments|lose_weight_today|market\.alert)@'i=> > 5.0], > [qr'^(money2you|MyGreenCard|new\.tld\.registry|opt-out|opt-in)@'i=> > 5.0], > [qr'^(optin|saveonlsmoking2002k|specialoffer|specialoffers)@'i => > 5.0], > [qr'^(stockalert|stopsnoring|wantsome|workathome|yesitsfree)@'i => > 5.0], > [qr'^(your_friend|greatoffers)@'i => > 5.0], > [qr'^(inkjetplanet|marketopt|MakeMoney)\d*@'i => > 5.0], > ), > > # read_hash("/var/amavis/sender_scores_sitewide"), > > { # a hash-type lookup table (associative array) > '[email protected]' => -3.0, > '[email protected]' => -3.0, > '[email protected]' => -3.0, > '[email protected]' => -3.0, > 'securityfocus.com' => -3.0, > '[email protected]' => -3.0, > '[email protected]' => -3.0, > '[email protected]' => -3.0, > '[email protected]'=> -3.0, > '[email protected]' => -3.0, > 'spamassassin.apache.org' => -3.0, > '[email protected]' => -3.0, > '[email protected]' => -3.0, > '[email protected]' => -3.0, > '[email protected]' => -3.0, > '[email protected]' => -3.0, > '[email protected]' => -3.0, > '[email protected]' => -3.0, > '[email protected]' => -3.0, > '[email protected]' => -3.0, > '[email protected]' => -3.0, > '[email protected]' => -3.0, > '[email protected]' => -3.0, > '[email protected]' => -3.0, > '[email protected]' => -3.0, > '[email protected]' => -5.0, > '[email protected]' => -3.0, > 'returns.groups.yahoo.com' => -3.0, > '[email protected]' => -3.0, > lc('[email protected]') => -3.0, > lc('[email protected]') => -5.0, > #blacklist test > # soft-blacklisting (positive score) > '[email protected]' => 4.0, > '.example.net' => 1.0, > > }, > ], # end of site-wide tables > }); > > I went this approach to try to keep me from messing up to far > > with the other checks this should be anough an email from this address into > spam > but the score remains at 2.092 > > i can any one tell from this info what I am doing wrong?
Did you remember to reload amavisd-new? I would look at the headers of the message to see what rules did hit. I would also set: $sa_tag_level_deflt = undef; so that all messages address to local domaions will have the X-Spam headers inserted, which can be useful when trying to debug which rules hit. You may also choose to set: # If sender matches ACL, turn debugging fully up, just for this one message @debug_sender_maps = ( ['[email protected]'] ); so you get full debugging for a message sent from [email protected]. -- Gary V
