Amavis fügt zum Glück nur Headerzeilen ein und verändert schlimmstensfalls den Betreff.
Natürlich ist das der Weg ;-)
welche Version von Suse/postfix/amavis/spamassassin verwendest du? 9.2; 2.1.5; 0.88; 3.0.0
Poste mal die Ausgabe von: grep -v "^#" /etc/amavisd.conf
linux:/var/virusmail # grep -v "^#" /etc/amavisd.conf use strict; $myhostname = 'sertrec.com'; $mydomain = 'sertrec.com'; $daemon_user = 'clamav'; $daemon_group = 'clamav'; $MYHOME = '/var/amavis'; $TEMPBASE = "$MYHOME/tmp"; $ENV{TMPDIR} = $TEMPBASE; $helpers_home = "$MYHOME/var"; $db_home = "$MYHOME/db"; $max_servers = 2; $enable_db = 1; $enable_global_cache = 1; read_hash(%local_domains, '/etc/postfix/virtualdomains'); $log_level = 3; $inet_socket_port = 10024; $final_virus_destiny = D_DISCARD; $final_banned_destiny = D_BOUNCE; $final_spam_destiny = D_BOUNCE; $final_bad_header_destiny = D_PASS; $virus_quarantine_method = 'local:virus-%m'; $spam_quarantine_method = 'local:spam-%m'; $banned_files_quarantine_method = 'local:banned-%m'; $bad_header_quarantine_method = 'local:badh-%m'; $QUARANTINEDIR = '/var/virusmail'; $quarantine_subdir_levels = 1; $virus_quarantine_to = 'virus'; # via %local_delivery_aliases $banned_quarantine_to = 'banned'; $bad_header_quarantine_to = 'badh'; $spam_quarantine_to = 'spam'; @virus_quarantine_to_maps = ($virus_quarantine_to); @banned_quarantine_to_maps = ($banned_quarantine_to); @bad_header_quarantine_to_maps = ($bad_header_quarantine_to); @spam_quarantine_to_maps = ($spam_quarantine_to); $mailfrom_to_quarantine = ''; $virus_admin = "virusalter@$mydomain"; $warnvirussender = 0; $warnspamsender = 0; $warnbannedsender = 0; $warnbadhsender = 0; $warnvirusrecip = 1; $warnbannedrecip = 1; $warnbadhrecip = 1; $insert_received_line = 1; $remove_existing_x_scanned_headers = 0; $remove_existing_spam_headers = 1; $X_HEADER_TAG = 'X-Virus-Scanned'; # after-default $X_HEADER_LINE = "$myproduct_name at $mydomain"; # after-default $defang_all = 0; $undecipherable_subject_tag = '***UNCHECKED*** '; $sa_spam_subject_tag = '*** S P A M *** '; $sa_spam_modifies_subj = 1; $sa_spam_level_char = '*'; $sa_spam_report_header = 1; @keep_decoded_original_maps = (...); $MAXLEVELS = 14; $MAXFILES = 1500; $MIN_EXPANSION_QUOTA = 100*1024; $MAX_EXPANSION_QUOTA = 300*1024*1024; $path = '/usr/local/sbin:/usr/local/bin:/usr/sbin:/sbin:/usr/bin:/bin'; @decoders = (...); @av_scanners = (...); @av_scanners_backup = (...); $first_infected_stops_scan = 0; @viruses_that_fake_sender_maps = (...); $banned_filename_re = new_RE(...); $sa_mail_body_size_limit = 200*1024; $sa_tag_level_deflt = -20; $sa_tag2_level_deflt = 2.0; $sa_kill_level_deflt = 20.0; @score_sender_maps = (...); 1;
Was steht im Log von Postfix
postfix/smtpd[21750]: connect from bdu198.neoplus.adsl.tpnet.pl[83.28.6.198] postfix/smtpd[21750]: 16950255A4: client=bdu198.neoplus.adsl.tpnet.pl[83.28.6.198] postfix/cleanup[21751]: 16950255A4: message-id=<000001c62066$7f3b8d00$0100007f@sylwia> postfix/qmgr[20641]: 16950255A4: from=<adam@englishforum.biz>, size=6955, nrcpt=1 (queue active) amavis[21794]: (21794-01) loaded base policy bank amavis[21794]: (21794-01) lookup_ip_acl (inet_acl): key="127.0.0.1" matches "127.0.0.1", result=1 amavis[21794]: (21794-01) prolong_timer after new request - timer reset: remaining time = 480 s amavis[21794]: (21794-02) SMTP> 220 [127.0.0.1] ESMTP amavisd-new service ready amavis[21794]: (21794-02) prolong_timer after reading SMTP command: remaining time = 480 s amavis[21794]: (21794-02) SMTP< EHLO sertrec.com\r\n amavis[21794]: (21794-02) ESMTP> 250-[127.0.0.1] amavis[21794]: (21794-02) ESMTP> 250-PIPELINING amavis[21794]: (21794-02) ESMTP> 250-SIZE amavis[21794]: (21794-02) ESMTP> 250-8BITMIME amavis[21794]: (21794-02) ESMTP> 250-ENHANCEDSTATUSCODES amavis[21794]: (21794-02) ESMTP> 250 XFORWARD NAME ADDR PROTO HELO amavis[21794]: (21794-02) prolong_timer after reading SMTP command: remaining time = 480 s amavis[21794]: (21794-02) ESMTP< MAIL FROM:<adam@englishforum.biz> SIZE=6955\r\n amavis[21794]: (21794-02) prolong_timer after MAIL FROM received - timer reset: remaining time = 480 s amavis[21794]: (21794-02) check_mail_begin_task: task_count=2 amavis[21794]: (21794-02) lookup (debug_sender) => undef, "adam@englishforum.biz" does not match amavis[21794]: (21794-02) ESMTP> 250 2.1.0 Sender adam@englishforum.biz OK amavis[21794]: (21794-02) prolong_timer after reading SMTP command: remaining time = 480 s amavis[21794]: (21794-02) ESMTP< RCPT TO:<olaf.uhlemann@sertrec.com>\r\n amavis[21794]: (21794-02) ESMTP> 250 2.1.5 Recipient olaf.uhlemann@sertrec.com OK amavis[21794]: (21794-02) prolong_timer after reading SMTP command: remaining time = 480 s amavis[21794]: (21794-02) ESMTP< DATA\r\n amavis[21794]: (21794-02) prolong_timer after DATA received - timer reset: remaining time = 480 s amavis[21794]: (21794-02) ESMTP::10024 /var/amavis/tmp/amavis-20060123T224519-21794: <adam@englishforum.biz> -> <olaf.uhlemann@sertrec.com> Received: SIZE=6955 from sertrec.com ([127.0.0.1]) by localhost (sertrec.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 21794-02 for <olaf.uhlemann@sertrec.com>; Mon, 23 Jan 2006 22:47:15 +0100 (CET) amavis[21794]: (21794-02) ESMTP> 354 End data with <CR><LF>.<CR><LF> amavis[21794]: (21794-02) ESMTP< .\r\n amavis[21794]: (21794-02) setting body type: 7BIT (0,0) amavis[21794]: (21794-02) body hash: 704c509acc205e320fd7ba7ad1930d94 amavis[21794]: (21794-02) Original mail size: 6955; quota set to: 3477500 bytes amavis[21794]: (21794-02) Checking: 7LiInKuAVAk7 <adam@englishforum.biz> -> <olaf.uhlemann@sertrec.com> amavis[21794]: (21794-02) lookup (bypass_virus_checks) => undef, "olaf.uhlemann@sertrec.com" does not match amavis[21794]: (21794-02) Extracting mime components amavis[21794]: (21794-02) Issued a new file name: p001 amavis[21794]: (21794-02) Issued a new file name: p002 amavis[21794]: (21794-02) Issued a new pseudo part: p003 amavis[21794]: (21794-02) p003 1 Content-Type: multipart/alternative amavis[21794]: (21794-02) Charging 754 bytes to remaining quota 3477500 (out of 3477500, (0%)) - by mime_decode amavis[21794]: (21794-02) p001 1/1 Content-Type: text/plain, size: 754 B, name: amavis[21794]: (21794-02) Charging 4721 bytes to remaining quota 3476746 (out of 3477500, (0%)) - by mime_decode amavis[21794]: (21794-02) p002 1/2 Content-Type: text/html, size: 4721 B, name: amavis[21794]: (21794-02) prolong_timer after mime_decode-1: remaining time = 480 s amavis[21794]: (21794-02) decode_parts: level=1, #parts=3 : p001, p002, p003 amavis[21794]: (21794-02) lookup (map_full_type_to_short_type) => true, "ASCII text" matches, result="asc", matching_key="(?i-xsm:^(ASCII|text)\b)" amavis[21794]: (21794-02) File-type of p001: ASCII text; (asc) amavis[21794]: (21794-02) lookup (map_full_type_to_short_type) => true, "HTML document text" matches, result="html", matching_key="(?-xism:^HTML document text\b)" amavis[21794]: (21794-02) File-type of p002: HTML document text; (html) amavis[21794]: (21794-02) do_ascii: Decoding part p001 amavis[21794]: (21794-02) do_ascii: Decoding part p001 (0 items), uulib V0.5pl20 amavis[21794]: (21794-02) decompose_part: p001 - atomic amavis[21794]: (21794-02) decompose_part: p002 - atomic amavis[21794]: (21794-02) prolong_timer after parts_decode: remaining time = 480 s amavis[21794]: (21794-02) lookup (bypass_header_checks) => undef, "olaf.uhlemann@sertrec.com" does not match amavis[21794]: (21794-02) Checking for banned types and filenames amavis[21794]: (21794-02) lookup (bypass_banned_checks) => undef, "olaf.uhlemann@sertrec.com" does not match amavis[21794]: (21794-02) lookup (banned_filename), 1 matches for "olaf.uhlemann@sertrec.com", results: "(constant:DEFAULT)"=>"DEFAULT" amavis[21794]: (21794-02) collect banned table[0]: olaf.uhlemann@sertrec.com, tables: DEFAULT=>Amavis::Lookup::RE=ARRAY(0x84dc180) amavis[21794]: (21794-02) starting banned checks - traversing message structure tree amavis[21794]: (21794-02) check_for_banned (p003,p001) multipart/alternative | text/plain,.asc amavis[21794]: (21794-02) lookup (check_bann:olaf.uhlemann@sertrec.com) => undef, ["multipart/alternative","text/plain",".asc"] does not match amavis[21794]: (21794-02) p.path olaf.uhlemann@sertrec.com: "P=p003,L=1,M=multipart/alternative | P=p001,L=1/1,M=text/plain,T=asc" amavis[21794]: (21794-02) check_for_banned (p003,p002) multipart/alternative | text/html,.html amavis[21794]: (21794-02) lookup (check_bann:olaf.uhlemann@sertrec.com) => undef, ["multipart/alternative","text/html",".html"] does not match amavis[21794]: (21794-02) p.path olaf.uhlemann@sertrec.com: "P=p003,L=1,M=multipart/alternative | P=p002,L=1/2,M=text/html,T=html" amavis[21794]: (21794-02) banned check: any=0, all=N (1) amavis[21794]: (21794-02) lookup (keep_decoded_original) => undef, "MAIL" does not match amavis[21794]: (21794-02) Using ClamAV-clamd: (built-in interface) amavis[21794]: (21794-02) Using (ClamAV-clamd) on dir: CONTSCAN /var/amavis/tmp/amavis-20060123T224519-21794/parts\n amavis[21794]: (21794-02) ClamAV-clamd: Connecting to socket /var/run/clamav/clamd amavis[21794]: (21794-02) ClamAV-clamd: Sending CONTSCAN /var/amavis/tmp/amavis-20060123T224519-21794/parts\n to UNIX socket /var/run/clamav/clamd amavis[21794]: (21794-02) ask_av (ClamAV-clamd) result: /var/amavis/tmp/amavis-20060123T224519-21794/parts: OK\n amavis[21794]: (21794-02) ask_av (ClamAV-clamd): /var/amavis/tmp/amavis-20060123T224519-21794/parts CLEAN amavis[21794]: (21794-02) ClamAV-clamd result: clean amavis[21794]: (21794-02) prolong_timer after virus_scan: remaining time = 480 s amavis[21794]: (21794-02) lookup (bypass_virus_checks) => undef, "olaf.uhlemann@sertrec.com" does not match amavis[21794]: (21794-02) lookup (bypass_spam_checks) => undef, "olaf.uhlemann@sertrec.com" does not match amavis[21794]: (21794-02) wbl: checking sender <adam@englishforum.biz> amavis[21794]: (21794-02) lookup (blacklist_recip<olaf.uhlemann@sertrec.com>) => undef, "olaf.uhlemann@sertrec.com" does not match amavis[21794]: (21794-02) lookup (blacklist_sender) => undef, "adam@englishforum.biz" does not match amavis[21794]: (21794-02) lookup (whitelist_recip<olaf.uhlemann@sertrec.com>) => undef, "olaf.uhlemann@sertrec.com" does not match amavis[21794]: (21794-02) lookup (whitelist_sender) => undef, "adam@englishforum.biz" does not match amavis[21794]: (21794-02) lookup (score_sender), 1 matches for "olaf.uhlemann@sertrec.com", results: "."=>[Amavis::Lookup::RE=ARRAY(0x84dab78),HASH(0x84dab90)] amavis[21794]: (21794-02) lookup (score_sender<adam@englishforum.biz>) => undef, "adam@englishforum.biz" does not match amavis[21794]: (21794-02) CALLING SA check postfix/smtpd[21750]: disconnect from bdu198.neoplus.adsl.tpnet.pl[83.28.6.198] amavis[21794]: (21794-02) RETURNED FROM SA check, time left: 28 s amavis[21794]: (21794-02) prolong_timer after spam_scan_SA: remaining time = 480 s amavis[21794]: (21794-02) spam_scan: score=20.145 tests=[DRUGS_ANXIETY=0,DRUGS_ANXIETY_EREC=0,DRUGS_DIET=0.415,DRUGS_ERECT ILE=0.026,DRUGS_MANYKINDS=2.734,DRUGS_PAIN=0.041,DRUGS_SLEEP=0.107,DRUGS _SLEEP_EREC=2.719,DRUG_ED_GENERIC=1.181,HG_HORMONE=1.252,HTML_FONT_BIG=0 .232,HTML_MESSAGE=0.001,HTML_TAG_EXIST_TBODY=0.233,INFO_TLD=0.481,RCVD_I N_NJABL_DUL=1.655,URIBL_AB_SURBL=2.007,URIBL_OB_SURBL=1.996,URIBL_SBL=0. 629,URIBL_SC_SURBL=3.897,URIBL_WS_SURBL=0.539] amavis[21794]: (21794-02) prolong_timer after spam_scan: remaining time = 480 s amavis[21794]: (21794-02) lookup (spam_kill_level) => true, "olaf.uhlemann@sertrec.com" matches, result="20", matching_key="(constant:20)" amavis[21794]: (21794-02) lookup (spam_lovers) => undef, "olaf.uhlemann@sertrec.com" does not match amavis[21794]: (21794-02) SPAM-KILL, <adam@englishforum.biz> -> <olaf.uhlemann@sertrec.com>, score=20.145+0, kill=20 amavis[21794]: (21794-02) lookup (spam_tag_level) => true, "olaf.uhlemann@sertrec.com" matches, result="-20", matching_key="(constant:-20)" amavis[21794]: (21794-02) lookup (spam_tag2_level) => true, "olaf.uhlemann@sertrec.com" matches, result="2", matching_key="(constant:2)" amavis[21794]: (21794-02) lookup (spam_kill_level) => true, "olaf.uhlemann@sertrec.com" matches, result="20", matching_key="(constant:20)" amavis[21794]: (21794-02) lookup (spam_quarantine_bysender_to) => undef, "adam@englishforum.biz" does not match amavis[21794]: (21794-02) lookup (spam_quarantine_to) => true, "olaf.uhlemann@sertrec.com" matches, result="spam", matching_key="(constant:spam)" amavis[21794]: (21794-02) lookup (spam_quarantine_cutoff_level) => undef, "olaf.uhlemann@sertrec.com" does not match amavis[21794]: (21794-02) lookup (spam_admin) => undef, "olaf.uhlemann@sertrec.com" does not match amavis[21794]: (21794-02) no key 'spam' in %local_delivery_aliases, skip local delivery amavis[21794]: (21794-02) skip local delivery(1): <> -> <spam> amavis[21794]: (21794-02) SPAM, <adam@englishforum.biz> -> <olaf.uhlemann@sertrec.com>, Yes, score=20.145 tag=-20 tag2=2 kill=20 tests=[DRUGS_ANXIETY=0, DRUGS_ANXIETY_EREC=0, DRUGS_DIET=0.415, DRUGS_ERECTILE=0.026, DRUGS_MANYKINDS=2.734, DRUGS_PAIN=0.041, DRUGS_SLEEP=0.107, DRUGS_SLEEP_EREC=2.719, DRUG_ED_GENERIC=1.181, HG_HORMONE=1.252, HTML_FONT_BIG=0.232, HTML_MESSAGE=0.001, HTML_TAG_EXIST_TBODY=0.233, INFO_TLD=0.481, RCVD_IN_NJABL_DUL=1.655, URIBL_AB_SURBL=2.007, URIBL_OB_SURBL=1.996, URIBL_SBL=0.629, URIBL_SC_SURBL=3.897, URIBL_WS_SURBL=0.539], autolearn=spam, quarantine 7LiInKuAVAk7 (spam) amavis[21794]: (21794-02) Skip spam admin notification, no administrators amavis[21794]: (21794-02) prolong_timer after checking_sender_ip: remaining time = 480 s amavis[21794]: (21794-02) warnsender_with_pass= (0,0,0,0), dsn_needed=1, cnt=, exit=0, 250 2.5.0 Ok, id=21794-02, BOUNCE amavis[21794]: (21794-02) lookup (spam_dsn_cutoff_level) => true, "olaf.uhlemann@sertrec.com" matches, result="25", matching_key="(constant:25)" amavis[21794]: (21794-02) notification chosen: OutDsnSpamMsgs, SCALAR(0x877a780) amavis[21794]: (21794-02) lookup_ip_acl (publicnetworks): key="83.28.6.198" matches "[::FFFF:0:0]/96", result=1 amavis[21794]: (21794-02) (about to connect to [127.0.0.1]:10025) SEND via SMTP: <> -> <adam@englishforum.biz> postfix/smtpd[21755]: connect from localhost[127.0.0.1] amavis[21794]: (21794-02) prolong_timer after fwd-connect: remaining time = 480 s amavis[21794]: (21794-02) AUTH not needed, user='', MTA offers 'LOGIN' amavis[21794]: (21794-02) prolong_timer after fwd-mail-from: remaining time = 480 s postfix/smtpd[21755]: AADB0262B4: client=localhost[127.0.0.1] amavis[21794]: (21794-02) response to RCPT TO for <adam@englishforum.biz>: "250 Ok" amavis[21794]: (21794-02) prolong_timer after fwd-rcpt-to: remaining time = 480 s amavis[21794]: (21794-02) response to DATA: "354 End data with <CR><LF>.<CR><LF>" amavis[21794]: (21794-02) prolong_timer after fwd-data: remaining time = 480 s postfix/cleanup[21751]: AADB0262B4: message-id=<SS7LiInKuAVAk7@linux> postfix/qmgr[20641]: AADB0262B4: from=<>, size=2530, nrcpt=1 (queue active) amavis[21794]: (21794-02) prolong_timer after fwd-data-end: remaining time = 480 s amavis[21794]: (21794-02) response to data end: "250 Ok: queued as AADB0262B4" amavis[21794]: (21794-02) prolong_timer after fwd-rundown-1: remaining time = 480 s postfix/smtpd[21755]: disconnect from localhost[127.0.0.1] amavis[21794]: (21794-02) SEND via SMTP: <> -> <adam@englishforum.biz>, 250 2.6.0 Ok, id=21794-02, from MTA([127.0.0.1]:10025): 250 Ok: queued as AADB0262B4 amavis[21794]: (21794-02) prolong_timer after delivery-notification: remaining time = 480 s amavis[21794]: (21794-02) lookup (spam_tag2_level) => true, "olaf.uhlemann@sertrec.com" matches, result="2", matching_key="(constant:2)" amavis[21794]: (21794-02) lookup_ip_acl (publicnetworks): key="83.28.6.198" matches "[::FFFF:0:0]/96", result=1 amavis[21794]: (21794-02) Blocked SPAM, [83.28.6.198] <adam@englishforum.biz> -> <olaf.uhlemann@sertrec.com>, Message-ID: <000001c62066$7f3b8d00$0100007f@sylwia>, mail_id: 7LiInKuAVAk7, Hits: 20.145, 2602 ms amavis[21794]: (21794-02) lookup (local_domains) => undef, "olaf.uhlemann@sertrec.com" does not match amavis[21794]: (21794-02) lookup (spam_tag_level) => true, "olaf.uhlemann@sertrec.com" matches, result="-20", matching_key="(constant:-20)" amavis[21794]: (21794-02) lookup (spam_tag2_level) => true, "olaf.uhlemann@sertrec.com" matches, result="2", matching_key="(constant:2)" amavis[21794]: (21794-02) lookup (spam_kill_level) => true, "olaf.uhlemann@sertrec.com" matches, result="20", matching_key="(constant:20)" amavis[21794]: (21794-02) Blocked SPAM, <adam@englishforum.biz> -> <olaf.uhlemann@sertrec.com>, Hits: 20.145, tag=-20, tag2=2, kill=20, 0/Y/Y/Y amavis[21794]: (21794-02) sending SMTP response: "250 2.5.0 Ok, id=21794-02, BOUNCE" amavis[21794]: (21794-02) strip_tempdir: /var/amavis/tmp/amavis-20060123T224519-21794 amavis[21794]: (21794-02) rmdir_recursively: /var/amavis/tmp/amavis-20060123T224519-21794/parts, excl=1 amavis[21794]: (21794-02) TIMING [total 2609 ms] - SMTP EHLO: 3 (0%)0, SMTP pre-MAIL: 1 (0%)0, SMTP pre-DATA-flush: 3 (0%)0, SMTP DATA: 78 (3%)3, body_digest: 1 (0%)3, gen_mail_id: 0 (0%)3, mime_decode: 14 (1%)4, get-file-type2: 8 (0%)4, decompose_part: 1 (0%)4, parts_decode: 0 (0%)4, AV-scan-1: 11 (0%)5, spam-wb-list: 3 (0%)5, SA msg read: 1 (0%)5, SA parse: 1 (0%)5, SA check: 2332 (89%)94, update_cache: 1 (0%)94, save-to-local-mailbox: 4 (0%)94, post-do_spam: 1 (0%)94, fwd-connect: 15 (1%)95, fwd-mail-from: 1 (0%)95, fwd-rcpt-to: 2 (0%)95, write-header: 1 (0%)95, fwd-data: 3 (0%)95, fwd-data-end: 103 (4%)99, fwd-rundown: 2 (0%)99, main_log_entry: 17 (1%)100, update_snmp: 1 (0%)100, unlink-2-files: 1 (0%)100, rundown: 0 (0%)100 amavis[21794]: (21794-02) ESMTP> 250 2.5.0 Ok, id=21794-02, BOUNCE postfix/smtp[21763]: 16950255A4: to=<olaf.uhlemann@sertrec.com>, orig_to=<post@sertrec.de>, relay=127.0.0.1[127.0.0.1], delay=4, status=sent (250 2.5.0 Ok, id=21794-02, BOUNCE) postfix/qmgr[20641]: 16950255A4: removed Olaf uhlemann