Release 0.7.1
This commit is contained in:
Stuart Gathman
+34
-17
@@ -1,52 +1,66 @@
|
||||
# features intended to filter or block incoming mail
|
||||
[milter]
|
||||
# the socket used to communicate with sendmail. Must match sendmail.cf
|
||||
;socket=/var/run/milter/pythonsock
|
||||
# where to save original copies of defanged and failed messages
|
||||
tempdir = /var/log/milter/save
|
||||
# how long to wait for a response from sendmail before giving up
|
||||
;timeout=600
|
||||
|
||||
# do virus scanning on attached messages also
|
||||
scan_rfc822 = 1
|
||||
# can be CPU intensive
|
||||
# Comment out scripts in HTML attachments. Can be CPU intensive.
|
||||
scan_html = 0
|
||||
# reject asian fonts because we can't read them
|
||||
# reject messages with asian fonts because we can't read them
|
||||
block_chinese = 1
|
||||
# users who hate forwarded mail
|
||||
# list users who hate forwarded mail
|
||||
;block_forward = egghead@mycorp.com, busybee@mycorp.com
|
||||
log_headers = 0
|
||||
# Reject mail for domains mentioned unless user is mentioned here also
|
||||
;check_user = joe@mycorp.com, mary@mycorp.com, file:bigcorp.com
|
||||
# porn words are case insensitive
|
||||
# reject mail with these case insensitive strings in the subject
|
||||
porn_words = penis, breast, pussy, horse cock, porn, xenical, diet pill, d1ck,
|
||||
vi*gra, vi-a-gra, viag, tits, p0rn, hunza, horny, sexy, c0ck,
|
||||
p-e-n-i-s, hydrocodone, vicodin, xanax, vicod1n, x@nax, diazepam,
|
||||
v1@gra, xan@x, cialis, ci@lis, frëe, xãnax, valíum, vãlium, via-gra,
|
||||
x@n3x, vicod3n, penís, c0d1n, phentermine, en1arge, dip1oma, v1codin
|
||||
# spam words are case sensitive
|
||||
# reject mail with these case sensitive strings in the subject
|
||||
spam_words = $$$, !!!, XXX, FREE, HGH
|
||||
|
||||
# connection ips and hostnames are matched against this glob style list
|
||||
# to recognize internal senders
|
||||
;internal_connect = 192.168.*.*
|
||||
|
||||
# mail that is not an internal_connect and claims to be from an
|
||||
# internal domain is rejected.
|
||||
# internal domain is rejected. You should enable SPF instead if you can.
|
||||
# SPF is much more comprehensive and flexible.
|
||||
;internal_domains = mycorp.com
|
||||
|
||||
# connections from a trusted relay can trust the first Received header
|
||||
# SPF checks are bypassed for internal connections and trusted relays.
|
||||
;trusted_relay = 1.2.3.4, 66.12.34.56
|
||||
|
||||
# reject external senders with hello names no legit external sender would use
|
||||
# SPF will do this also, but listing your own domain and mailserver here
|
||||
# will save some DNS lookups when rejecting certain viruses.
|
||||
;hello_blacklist = mycorp.com, 66.12.34.56
|
||||
|
||||
# See http://bmsi.com/python/pysrs.html for details
|
||||
[srs]
|
||||
config=/etc/mail/pysrs.cfg
|
||||
# SRS options can be set here also, but must match the sendmail plugin
|
||||
;secret="shhhh!"
|
||||
;maxage=21
|
||||
;hashlength=4
|
||||
;database=/var/log/milter/srsdata
|
||||
;fwdomain = mydomain.com
|
||||
# turn this on after a grace period
|
||||
# turn this on after a grace period to reject spoofed DSNs
|
||||
reject_spoofed = 0
|
||||
|
||||
# See http://spf.pobox.com for more info on SPF.
|
||||
[spf]
|
||||
# namespace where SPF records can be supplied for domains without one
|
||||
# records are search for under _spf.domain.com
|
||||
# records are searched for under _spf.domain.com
|
||||
;delegate = domain.com
|
||||
# domains where a neutral SPF result should cause mail to be rejected
|
||||
;reject_neutral = aol.com
|
||||
@@ -57,9 +71,9 @@ reject_spoofed = 0
|
||||
|
||||
# features intended to clean up outgoing mail
|
||||
[scrub]
|
||||
# domains that stupidly block visible private nodes
|
||||
# domains that block visible private nodes
|
||||
;hide_path = jcpenney.com
|
||||
# block, don't just replace with warning, viruses from these domains
|
||||
# reject, don't just replace with warning, viruses from these domains
|
||||
;reject_virus_from = mycorp.com
|
||||
|
||||
# features intended for spying on users and coworkers
|
||||
@@ -88,16 +102,18 @@ blind = 1
|
||||
;walter1 = cust@othercorp.com,walter@bigcorp.com,boss@bigcorp.com,
|
||||
; walter@bigcorp.com
|
||||
|
||||
# See http://bmsi.com/python/dspam.html
|
||||
[dspam]
|
||||
# Select a well moderated dspam dictionary to reject spammy headers
|
||||
# dspam-python must be installed to use: http://bmsi.com/python/dspam.html
|
||||
# Select a well moderated dspam dictionary to reject spammy headers.
|
||||
# To filter on the entire message, use the full setup below.
|
||||
# only EXTERNAL messages are dspam filtered
|
||||
;dspam_dict=/var/lib/dspam/moderator.dict
|
||||
|
||||
# Opt-opt recipients from dspam screening and header triage
|
||||
;dspam_exempt=getitall@mycorp.com
|
||||
# Do not scan mail (ostensibly) from these senders
|
||||
;dspam_whitelist=getitall@sender.com
|
||||
# Reject spam to these domains, perhaps because we are a backup MX server
|
||||
# Reject spam to these domains instead of quarantining it.
|
||||
;dspam_reject=othercorp.com
|
||||
|
||||
# directory for dspam user quarantine, signature db, and dictionaries
|
||||
@@ -115,8 +131,9 @@ blind = 1
|
||||
;spam=spam@foocorp.com
|
||||
# address to forward false positives to. milter will process and not deliver
|
||||
;falsepositive=ham@foocorp.com
|
||||
# the dspam_screener is used to screen mail for all recipients who are
|
||||
# not dspam_users. Spam goes to the screeners quarantine, and the original
|
||||
# recipients saved so that false positives can be properly delivered.
|
||||
|
||||
# the dspam_screener is a list of dspam users who screen mail for all
|
||||
# recipients who are not dspam_users. Spam goes to the screeners quarantine,
|
||||
# and the original recipients are saved so that false positives can be properly
|
||||
# delivered.
|
||||
;dspam_screener=david,goliath
|
||||
# The dspam CGI can also be used: logins must match dspam users
|
||||
|
||||
Reference in New Issue
Block a user