本周我在 CentOS 7 上搭建了一个 Postfix 服务器。它可以完美地拦截垃圾邮件,但是我在处理一些绕过 SpamAssassin 的电子邮件地址时遇到了一些问题:
Jan 9 04:49:14 gauss postfix/qmgr[29958]: 59CF75C7B69: from=<[email protected]>, size=13995, nrcpt=3 (queue active)
Jan 9 04:49:14 gauss postfix/qmgr[29958]: 2ED385C7B6A: from=<[email protected]>, size=13995, nrcpt=2 (queue active)
Jan 9 04:49:14 gauss postfix/qmgr[29958]: 300835C7B6B: from=<[email protected]>, size=13995, nrcpt=1 (queue active)
Jan 9 04:49:15 gauss postfix/smtp[5982]: 300835C7B6B: host gmail-smtp-in.l.google.com[74.125.22.26] said: 421-4.7.0 [144.217.165.242 15] Our system has detected that this message is 421-4.7.0 suspicious due to the nature of the content and/or the links within. 421-4.7.0 To best protect our users from spam, the message has been blocked. 421-4.7.0 Please visit 421 4.7.0 https://support.google.com/mail/answer/188131 for more information. x67si2021254qka.111 - gsmtp (in reply to end of DATA command)
Jan 9 04:49:15 gauss postfix/smtp[5981]: 2ED385C7B6A: host gmail-smtp-in.l.google.com[74.125.22.26] said: 421-4.7.0 [144.217.165.242 15] Our system has detected that this message is 421-4.7.0 suspicious due to the nature of the content and/or the links within. 421-4.7.0 To best protect our users from spam, the message has been blocked. 421-4.7.0 Please visit 421 4.7.0 https://support.google.com/mail/answer/188131 for more information. h27si55978305qth.307 - gsmtp (in reply to end of DATA command)
Jan 9 04:49:15 gauss postfix/smtp[5980]: 59CF75C7B69: host gmail-smtp-in.l.google.com[74.125.22.26] said: 421-4.7.0 [144.217.165.242 15] Our system has detected that this message is 421-4.7.0 suspicious due to the nature of the content and/or the links within. 421-4.7.0 To best protect our users from spam, the message has been blocked. 421-4.7.0 Please visit 421 4.7.0 https://support.google.com/mail/answer/188131 for more information. v7si2253295qta.64 - gsmtp (in reply to end of DATA command)
Jan 9 04:49:18 gauss postfix/smtp[5981]: 2ED385C7B6A: to=<[email protected]>, orig_to=<[email protected]>, relay=alt1.gmail-smtp-in.l.google.com[64.233.190.26]:25, delay=63302, delays=63299/0.1/2.6/0.85, dsn=4.7.0, status=deferred (host alt1.gmail-smtp-in.l.google.com[64.233.190.26] said: 421-4.7.0 [144.217.165.242 15] Our system has detected that this message is 421-4.7.0 suspicious due to the nature of the content and/or the links within. 421-4.7.0 To best protect our users from spam, the message has been blocked. 421-4.7.0 Please visit 421 4.7.0 https://support.google.com/mail/answer/188131 for more information. y42si393157qtc.47 - gsmtp (in reply to end of DATA command))
Jan 9 04:49:18 gauss postfix/smtp[5980]: 59CF75C7B69: to=<[email protected]>, orig_to=<[email protected]>, relay=alt1.gmail-smtp-in.l.google.com[64.233.186.26]:25, delay=63306, delays=63302/0.63/2.6/0.86, dsn=4.7.0, status=deferred (host alt1.gmail-smtp-in.l.google.com[64.233.186.26] said: 421-4.7.0 [144.217.165.242 15] Our system has detected that this message is 421-4.7.0 suspicious due to the nature of the content and/or the links within. 421-4.7.0 To best protect our users from spam, the message has been blocked. 421-4.7.0 Please visit 421 4.7.0 https://support.google.com/mail/answer/188131 for more information. o67si46102547qka.120 - gsmtp (in reply to end of DATA command))
Jan 9 04:49:18 gauss postfix/smtp[5982]: 300835C7B6B: to=<[email protected]>, relay=alt1.gmail-smtp-in.l.google.com[64.233.190.26]:25, delay=63301, delays=63298/0.1/2.6/0.85, dsn=4.7.0, status=deferred (host alt1.gmail-smtp-in.l.google.com[64.233.190.26] said: 421-4.7.0 [144.217.165.242 15] Our system has detected that this message is 421-4.7.0 suspicious due to the nature of the content and/or the links within. 421-4.7.0 To best protect our users from spam, the message has been blocked. 421-4.7.0 Please visit 421 4.7.0 https://support.google.com/mail/answer/188131 for more information. 65si46223303qth.15 - gsmtp (in reply to end of DATA command))
但通常情况下,SpamAssassin 对收到的电子邮件采取如下操作:
Jan 9 04:58:55 gauss postfix/pipe[6214]: AB4D86A96E6: to=<[email protected]>, orig_to=<[email protected]>, relay=spamassassin, delay=4.4, delays=0.38/0.04/0/3.9, dsn=2.0.0, status=sent (delivered via spamassassin service)
Jan 9 04:58:55 gauss postfix/pickup[3283]: 0B3766A96EE: uid=5001 from=<[email protected]>
Jan 9 04:58:55 gauss postfix/cleanup[6210]: 0B3766A96EE: message-id=<[email protected]>
Jan 9 04:58:55 gauss opendkim[1038]: 0B3766A96EE: no signing table match for '[email protected]'
Jan 9 04:58:55 gauss opendkim[1038]: 0B3766A96EE: DKIM verification successful
Jan 9 04:58:55 gauss postfix/qmgr[29958]: 0B3766A96EE: from=<[email protected]>, size=4043, nrcpt=1 (queue active)
Jan 9 04:58:55 gauss spamd[439]: spamd: setuid to spamd succeeded
Jan 9 04:58:56 gauss postfix/smtp[6220]: 0B3766A96EE: to=<[email protected]>, relay=gmail-smtp-in.l.google.com[74.125.22.27]:25, delay=1.4, delays=0.51/0.03/0.54/0.27, dsn=2.0.0, status=sent (250 2.0.0 OK 1483955936 p56si5198118qtc.217 - gsmtp)
Jan 9 04:58:56 gauss postfix/qmgr[29958]: 0B3766A96EE: removed
Jan 9 04:58:58 gauss spamd[439]: spamd: processing message <[email protected]> for spamd:5001
Jan 9 04:59:01 gauss spamd[439]: spamd: clean message (1.3/5.0) for spamd:5001 in 8.3 seconds, 3542 bytes.
Jan 9 04:59:01 gauss spamd[439]: spamd: result: . 1 - DATE_IN_PAST_06_12,DKIM_SIGNED,DKIM_VALID,DKIM_VALID_AU,RCVD_IN_MSPIKE_H3,RCVD_IN_MSPIKE_WL,RP_MATCHES_RCVD,SPF_PASS,TVD_SPACE_RATIO,URIBL_BLOCKED scantime=8.3,size=3542,user=spamd,uid=5001,required_score=5.0,rhost=localhost,raddr=::1,rport=57088,mid=<[email protected]>,autolearn=unavailable autolearn_force=no
我在配置中遗漏了什么吗?如何让 SpamAssassin 分析来自“[电子邮件保护]“ 例如 ?
非常感谢,祝您有愉快的一天!