Rspamd: Antivirus-Modul funktioniert nicht
Andreas
postfix at linuxmaker.de
Mo Mär 29 12:43:59 CEST 2021
Am Montag, 29. März 2021, 10:30:58 CEST schrieb André Peters:
> Das ist richtig, schau dir bitte mal die Rspamd Logs an. :) Welche Symbole
> hat er für die Mail hinzugefügt?
Das ist der Log, wenn ich eine Eicar-Testmail sende:
2021-03-29 12:43:37 #21119(rspamd_proxy) <f939bc>; proxy; proxy_accept_socket:
accepted milter connection from ::1 port 53138
2021-03-29 12:43:37 #21119(rspamd_proxy) <f939bc>; milter;
rspamd_milter_process_command: got connection from 193.99.144.71:48354
2021-03-29 12:43:37 #21119(rspamd_proxy) <f939bc>; proxy;
rspamd_message_parse: loaded message; id: <E1lQpMu-0008TH-
PH.octo05 at web.heise.de>; queue-id: <2D79712005D>; size: 1347; checksum:
<443fefbf795442a7c77d8e37f1173174>
2021-03-29 12:43:37 #21119(rspamd_proxy) <f939bc>; proxy;
rspamd_mime_text_part_utf8_convert: converted text part from ISO-8859-1
('iso-8859-1' announced) to UTF-8 inlen: 813, outlen: 820 (813 UTF16 chars)
2021-03-29 12:43:37 #21119(rspamd_proxy) <f939bc>; proxy;
rspamd_mime_part_detect_language: detected part language: de
2021-03-29 12:43:37 #21119(rspamd_proxy) <f939bc>; lua; spf.lua:159: use
cached record for ct.de (0x2b618ce2fac2c84f) in LRU cache for 391 seconds
2021-03-29 12:43:37 #21119(rspamd_proxy) <f939bc>; proxy;
rspamd_symcache_finalize_item: slow rule: SEM_URIBL_UNKNOWN(276): 339.92 ms;
enable slow timer delay
2021-03-29 12:43:37 #21119(rspamd_proxy) <f939bc>; proxy;
rspamd_symcache_finalize_item: slow rule: SEM_URIBL_FRESH15_UNKNOWN(263):
368.92 ms
2021-03-29 12:43:37 #21119(rspamd_proxy) <f939bc>; proxy;
rspamd_symcache_finalize_item: slow rule: SURBL_MULTI(273): 463.92 ms; enable
slow timer delay
2021-03-29 12:43:37 #21119(rspamd_proxy) <f939bc>; proxy;
rspamd_symcache_finalize_item: slow rule: URIBL_MULTI(272): 467.92 ms
2021-03-29 12:43:37 #21119(rspamd_proxy) <f939bc>; proxy;
rspamd_redis_connected: skip obtaining bayes tokens for BAYES_SPAM of
classifier bayes: not enough learns 12; 200 required
2021-03-29 12:43:37 #21119(rspamd_proxy) <f939bc>; proxy;
rspamd_redis_connected: skip obtaining bayes tokens for BAYES_HAM of
classifier bayes: not enough learns 0; 200 required
2021-03-29 12:43:37 #21119(rspamd_proxy) <f939bc>; proxy;
rspamd_stat_classifiers_process: skip statistics as SPAM class is missing
2021-03-29 12:43:37 #21119(rspamd_proxy) <f939bc>; lua; greylist.lua:318:
Score too low - skip greylisting
2021-03-29 12:43:37 #21119(rspamd_proxy) <f939bc>; proxy;
rspamd_task_write_log: id: <E1lQpMu-0008TH-PH.octo05 at web.heise.de>, qid:
<2D79712005D>, ip: 193.99.144.71, from: <emailcheck-robot at ct.de>, (default: F
(no action): [0.03/15.
00] [R_MIXED_CHARSET(0.83){subject;},RCVD_IN_DNSWL_HI(-0.50)
{193.99.144.71:from;},R_SPF_ALLOW(-0.20)
{+ip4:193.99.144.0/24:c;},MIME_GOOD(-0.10){text/plain;},ARC_NA(0.00)
{},ARC_SIGNED(0.00){linuxmaker.de:s=2021:i=1;},ASN(0.00){asn:12
306, ipnet:193.99.144.0/24, country:DE;},DMARC_NA(0.00)
{ct.de;},FROM_EQ_ENVFROM(0.00){},FROM_HAS_DN(0.00){},MIME_TRACE(0.00){0:
+;},RCPT_COUNT_ONE(0.00){1;},RCVD_COUNT_TWO(0.00){2;},RCVD_TLS_LAST(0.00)
{},RWL_MAILSPIKE_GOOD(0.00){193
.99.144.71:from;},R_DKIM_NA(0.00){},TO_DN_NONE(0.00)
{},TO_MATCH_ENVRCPT_ALL(0.00){}]), len: 1347, time: 633.894ms, dns req: 17,
digest: <443fefbf795442a7c77d8e37f1173174>, rcpts: <postfix at linuxmaker.de>,
mime_rcpts: <postfix at linuxmaker.de>
2021-03-29 12:43:37 #21119(rspamd_proxy) <f939bc>; proxy;
rspamd_protocol_http_reply: regexp statistics: 0 pcre regexps scanned, 4
regexps matched, 174 regexps total, 66 regexps cached, 0B scanned using pcre,
3.34KiB scanned total
2021-03-29 12:43:37 #21119(rspamd_proxy) <a620a8>; proxy;
proxy_milter_finish_handler: finished milter connection
-------------- nächster Teil --------------
Ein Dateianhang mit HTML-Daten wurde abgetrennt...
URL: <https://listi.jpberlin.de/pipermail/postfixbuch-users/attachments/20210329/b5a79451/attachment.htm>
Mehr Informationen über die Mailingliste Postfixbuch-users