我受到了垃圾邮件发送者的猛烈攻击,他们发送的邮件由于某种原因并没有真正得分:
X-Spam-Score: 5
X-Spam-Bar: /
X-Spam-Report: Spam detection software, running on the system "brian2022.newbyhost.com",
has NOT identified this incoming email as spam. The original
message has been attached to this so you can view it or label
similar future email. If you have any questions, see
@@CONTACT_ADDRESS@@ for details.
Content preview: ety ykjebe vehlej ety ykjebe vehlej
Content analysis details: (0.5 points, 4.0 required)
pts rule name description
---- ---------------------- --------------------------------------------------
0.5 RCVD_IN_DNSWL_NONE RBL: Sender listed at https://www.dnswl.org/,
no trust
[40.92.21.79 listed in list.dnswl.org]
我认为部分问题是内容太少:
<html>
<head>
<meta http-equiv=3D"Content-Type" content=3D"text/html; charset=3Diso-8859-=
1">
<style type=3D"text/css" style=3D"display:none;"> P {margin-top:0;margin-bo=
ttom:0;} </style>
</head>
<body dir=3D"ltr">
<div style=3D"font-family: Calibri, Arial, Helvetica, sans-serif; font-size=
: 12pt; color: rgb(0, 0, 0);">
ety ykjebe vehlej </div>
</body>
</html>
(它有一个附件,我猜里面有一个他们网站的链接 - 但我还是敢打开它!)
我希望可以过滤的一件事是,当列中有(例如)5 个人或更多人时To:。我尝试在线查找是否存在针对此情况的现有规则,但一无所获。
这可能吗?
答案1
好吧,从技术上讲,这并没有回答我的问题,但它确实满足了我在相同结局下的需求。我意识到我可以在我的/etc/exim4/exim4.conf.模板文件,它将拒绝任何包含太多“收件人”地址的电子邮件:
deny message = Too many recipients
condition = ${if >{ ${listcount:${addresses:$h_To:,$h_Cc:}} }{5} {yes}{no}}
现在它完全按照我想要的方式工作了,并且它们会反弹:
SMTP error from remote mail server after pipelined end of data:
550 Too many recipients
希望这可以帮助其他人尝试实现同样的目标