Amavis fügt zum Glück nur Headerzeilen ein und
verändert schlimmstensfalls den Betreff.
Natürlich ist das der Weg ;-)
welche Version von Suse/postfix/amavis/spamassassin verwendest du?
9.2; 2.1.5; 0.88; 3.0.0
Poste mal die Ausgabe von: grep -v "^#" /etc/amavisd.conf
linux:/var/virusmail # grep -v "^#" /etc/amavisd.conf
use strict;
$myhostname = 'sertrec.com';
$mydomain = 'sertrec.com';
$daemon_user = 'clamav';
$daemon_group = 'clamav';
$MYHOME = '/var/amavis';
$TEMPBASE = "$MYHOME/tmp";
$ENV{TMPDIR} = $TEMPBASE;
$helpers_home = "$MYHOME/var";
$db_home = "$MYHOME/db";
$max_servers = 2;
$enable_db = 1;
$enable_global_cache = 1;
read_hash(\%local_domains, '/etc/postfix/virtualdomains');
$log_level = 3;
$inet_socket_port = 10024;
$final_virus_destiny = D_DISCARD;
$final_banned_destiny = D_BOUNCE;
$final_spam_destiny = D_BOUNCE;
$final_bad_header_destiny = D_PASS;
$virus_quarantine_method = 'local:virus-%m';
$spam_quarantine_method = 'local:spam-%m';
$banned_files_quarantine_method = 'local:banned-%m';
$bad_header_quarantine_method = 'local:badh-%m';
$QUARANTINEDIR = '/var/virusmail';
$quarantine_subdir_levels = 1;
$virus_quarantine_to = 'virus'; # via
%local_delivery_aliases
$banned_quarantine_to = 'banned';
$bad_header_quarantine_to = 'badh';
$spam_quarantine_to = 'spam';
@virus_quarantine_to_maps = (\$virus_quarantine_to);
@banned_quarantine_to_maps = (\$banned_quarantine_to);
@bad_header_quarantine_to_maps = (\$bad_header_quarantine_to);
@spam_quarantine_to_maps = (\$spam_quarantine_to);
$mailfrom_to_quarantine = '';
$virus_admin = "virusalter\@$mydomain";
$warnvirussender = 0;
$warnspamsender = 0;
$warnbannedsender = 0;
$warnbadhsender = 0;
$warnvirusrecip = 1;
$warnbannedrecip = 1;
$warnbadhrecip = 1;
$insert_received_line = 1;
$remove_existing_x_scanned_headers = 0;
$remove_existing_spam_headers = 1;
$X_HEADER_TAG = 'X-Virus-Scanned'; #
after-default
$X_HEADER_LINE = "$myproduct_name at $mydomain"; #
after-default
$defang_all = 0;
$undecipherable_subject_tag = '***UNCHECKED*** ';
$sa_spam_subject_tag = '*** S P A M *** ';
$sa_spam_modifies_subj = 1;
$sa_spam_level_char = '*';
$sa_spam_report_header = 1;
@keep_decoded_original_maps = (...);
$MAXLEVELS = 14;
$MAXFILES = 1500;
$MIN_EXPANSION_QUOTA = 100*1024;
$MAX_EXPANSION_QUOTA = 300*1024*1024;
$path =
'/usr/local/sbin:/usr/local/bin:/usr/sbin:/sbin:/usr/bin:/bin';
@decoders = (...);
@av_scanners = (...);
@av_scanners_backup = (...);
$first_infected_stops_scan = 0;
@viruses_that_fake_sender_maps = (...);
$banned_filename_re = new_RE(...);
$sa_mail_body_size_limit = 200*1024;
$sa_tag_level_deflt = -20;
$sa_tag2_level_deflt = 2.0;
$sa_kill_level_deflt = 20.0;
@score_sender_maps = (...);
1;
Was steht im Log von Postfix
postfix/smtpd[21750]: connect from
bdu198.neoplus.adsl.tpnet.pl[83.28.6.198]
postfix/smtpd[21750]: 16950255A4:
client=bdu198.neoplus.adsl.tpnet.pl[83.28.6.198]
postfix/cleanup[21751]: 16950255A4:
message-id=<000001c62066$7f3b8d00$0100007f@sylwia>
postfix/qmgr[20641]: 16950255A4: from=,
size=6955, nrcpt=1 (queue active)
amavis[21794]: (21794-01) loaded base policy bank
amavis[21794]: (21794-01) lookup_ip_acl (inet_acl): key="127.0.0.1"
matches "127.0.0.1", result=1
amavis[21794]: (21794-01) prolong_timer after new request - timer reset:
remaining time = 480 s
amavis[21794]: (21794-02) SMTP> 220 [127.0.0.1] ESMTP amavisd-new
service ready
amavis[21794]: (21794-02) prolong_timer after reading SMTP command:
remaining time = 480 s
amavis[21794]: (21794-02) SMTP< EHLO sertrec.com\r\n
amavis[21794]: (21794-02) ESMTP> 250-[127.0.0.1]
amavis[21794]: (21794-02) ESMTP> 250-PIPELINING
amavis[21794]: (21794-02) ESMTP> 250-SIZE
amavis[21794]: (21794-02) ESMTP> 250-8BITMIME
amavis[21794]: (21794-02) ESMTP> 250-ENHANCEDSTATUSCODES
amavis[21794]: (21794-02) ESMTP> 250 XFORWARD NAME ADDR PROTO HELO
amavis[21794]: (21794-02) prolong_timer after reading SMTP command:
remaining time = 480 s
amavis[21794]: (21794-02) ESMTP< MAIL FROM:
SIZE=6955\r\n
amavis[21794]: (21794-02) prolong_timer after MAIL FROM received - timer
reset: remaining time = 480 s
amavis[21794]: (21794-02) check_mail_begin_task: task_count=2
amavis[21794]: (21794-02) lookup (debug_sender) => undef,
"adam@englishforum.biz" does not match
amavis[21794]: (21794-02) ESMTP> 250 2.1.0 Sender adam@englishforum.biz
OK
amavis[21794]: (21794-02) prolong_timer after reading SMTP command:
remaining time = 480 s
amavis[21794]: (21794-02) ESMTP< RCPT TO:\r\n
amavis[21794]: (21794-02) ESMTP> 250 2.1.5 Recipient
olaf.uhlemann@sertrec.com OK
amavis[21794]: (21794-02) prolong_timer after reading SMTP command:
remaining time = 480 s
amavis[21794]: (21794-02) ESMTP< DATA\r\n
amavis[21794]: (21794-02) prolong_timer after DATA received - timer
reset: remaining time = 480 s
amavis[21794]: (21794-02) ESMTP::10024
/var/amavis/tmp/amavis-20060123T224519-21794: ->
Received: SIZE=6955 from sertrec.com
([127.0.0.1]) by localhost (sertrec.com [127.0.0.1]) (amavisd-new, port
10024) with ESMTP id 21794-02 for ; Mon, 23
Jan 2006 22:47:15 +0100 (CET)
amavis[21794]: (21794-02) ESMTP> 354 End data with <CR><LF>.<CR><LF>
amavis[21794]: (21794-02) ESMTP< .\r\n
amavis[21794]: (21794-02) setting body type: 7BIT (0,0)
amavis[21794]: (21794-02) body hash: 704c509acc205e320fd7ba7ad1930d94
amavis[21794]: (21794-02) Original mail size: 6955; quota set to:
3477500 bytes
amavis[21794]: (21794-02) Checking: 7LiInKuAVAk7
->
amavis[21794]: (21794-02) lookup (bypass_virus_checks) => undef,
"olaf.uhlemann@sertrec.com" does not match
amavis[21794]: (21794-02) Extracting mime components
amavis[21794]: (21794-02) Issued a new file name: p001
amavis[21794]: (21794-02) Issued a new file name: p002
amavis[21794]: (21794-02) Issued a new pseudo part: p003
amavis[21794]: (21794-02) p003 1 Content-Type: multipart/alternative
amavis[21794]: (21794-02) Charging 754 bytes to remaining quota 3477500
(out of 3477500, (0%)) - by mime_decode
amavis[21794]: (21794-02) p001 1/1 Content-Type: text/plain, size: 754
B, name:
amavis[21794]: (21794-02) Charging 4721 bytes to remaining quota 3476746
(out of 3477500, (0%)) - by mime_decode
amavis[21794]: (21794-02) p002 1/2 Content-Type: text/html, size: 4721
B, name:
amavis[21794]: (21794-02) prolong_timer after mime_decode-1: remaining
time = 480 s
amavis[21794]: (21794-02) decode_parts: level=1, #parts=3 : p001, p002,
p003
amavis[21794]: (21794-02) lookup (map_full_type_to_short_type) => true,
"ASCII text" matches, result="asc",
matching_key="(?i-xsm:^(ASCII|text)\\b)"
amavis[21794]: (21794-02) File-type of p001: ASCII text; (asc)
amavis[21794]: (21794-02) lookup (map_full_type_to_short_type) => true,
"HTML document text" matches, result="html", matching_key="(?-xism:^HTML
document text\\b)"
amavis[21794]: (21794-02) File-type of p002: HTML document text; (html)
amavis[21794]: (21794-02) do_ascii: Decoding part p001
amavis[21794]: (21794-02) do_ascii: Decoding part p001 (0 items), uulib
V0.5pl20
amavis[21794]: (21794-02) decompose_part: p001 - atomic
amavis[21794]: (21794-02) decompose_part: p002 - atomic
amavis[21794]: (21794-02) prolong_timer after parts_decode: remaining
time = 480 s
amavis[21794]: (21794-02) lookup (bypass_header_checks) => undef,
"olaf.uhlemann@sertrec.com" does not match
amavis[21794]: (21794-02) Checking for banned types and filenames
amavis[21794]: (21794-02) lookup (bypass_banned_checks) => undef,
"olaf.uhlemann@sertrec.com" does not match
amavis[21794]: (21794-02) lookup (banned_filename), 1 matches for
"olaf.uhlemann@sertrec.com", results: "(constant:DEFAULT)"=>"DEFAULT"
amavis[21794]: (21794-02) collect banned table[0]:
olaf.uhlemann@sertrec.com, tables:
DEFAULT=>Amavis::Lookup::RE=ARRAY(0x84dc180)
amavis[21794]: (21794-02) starting banned checks - traversing message
structure tree
amavis[21794]: (21794-02) check_for_banned (p003,p001)
multipart/alternative | text/plain,.asc
amavis[21794]: (21794-02) lookup (check_bann:olaf.uhlemann@sertrec.com)
=> undef, ["multipart/alternative","text/plain",".asc"] does not match
amavis[21794]: (21794-02) p.path olaf.uhlemann@sertrec.com:
"P=p003,L=1,M=multipart/alternative | P=p001,L=1/1,M=text/plain,T=asc"
amavis[21794]: (21794-02) check_for_banned (p003,p002)
multipart/alternative | text/html,.html
amavis[21794]: (21794-02) lookup (check_bann:olaf.uhlemann@sertrec.com)
=> undef, ["multipart/alternative","text/html",".html"] does not match
amavis[21794]: (21794-02) p.path olaf.uhlemann@sertrec.com:
"P=p003,L=1,M=multipart/alternative | P=p002,L=1/2,M=text/html,T=html"
amavis[21794]: (21794-02) banned check: any=0, all=N (1)
amavis[21794]: (21794-02) lookup (keep_decoded_original) => undef,
"MAIL" does not match
amavis[21794]: (21794-02) Using ClamAV-clamd: (built-in interface)
amavis[21794]: (21794-02) Using (ClamAV-clamd) on dir: CONTSCAN
/var/amavis/tmp/amavis-20060123T224519-21794/parts\n
amavis[21794]: (21794-02) ClamAV-clamd: Connecting to socket
/var/run/clamav/clamd
amavis[21794]: (21794-02) ClamAV-clamd: Sending CONTSCAN
/var/amavis/tmp/amavis-20060123T224519-21794/parts\n to UNIX socket
/var/run/clamav/clamd
amavis[21794]: (21794-02) ask_av (ClamAV-clamd) result:
/var/amavis/tmp/amavis-20060123T224519-21794/parts: OK\n
amavis[21794]: (21794-02) ask_av (ClamAV-clamd):
/var/amavis/tmp/amavis-20060123T224519-21794/parts CLEAN
amavis[21794]: (21794-02) ClamAV-clamd result: clean
amavis[21794]: (21794-02) prolong_timer after virus_scan: remaining time
= 480 s
amavis[21794]: (21794-02) lookup (bypass_virus_checks) => undef,
"olaf.uhlemann@sertrec.com" does not match
amavis[21794]: (21794-02) lookup (bypass_spam_checks) => undef,
"olaf.uhlemann@sertrec.com" does not match
amavis[21794]: (21794-02) wbl: checking sender
amavis[21794]: (21794-02) lookup
(blacklist_recip) => undef,
"olaf.uhlemann@sertrec.com" does not match
amavis[21794]: (21794-02) lookup (blacklist_sender) => undef,
"adam@englishforum.biz" does not match
amavis[21794]: (21794-02) lookup
(whitelist_recip) => undef,
"olaf.uhlemann@sertrec.com" does not match
amavis[21794]: (21794-02) lookup (whitelist_sender) => undef,
"adam@englishforum.biz" does not match
amavis[21794]: (21794-02) lookup (score_sender), 1 matches for
"olaf.uhlemann@sertrec.com", results:
"."=>[Amavis::Lookup::RE=ARRAY(0x84dab78),HASH(0x84dab90)]
amavis[21794]: (21794-02) lookup (score_sender)
=> undef, "adam@englishforum.biz" does not match
amavis[21794]: (21794-02) CALLING SA check
postfix/smtpd[21750]: disconnect from
bdu198.neoplus.adsl.tpnet.pl[83.28.6.198]
amavis[21794]: (21794-02) RETURNED FROM SA check, time left: 28 s
amavis[21794]: (21794-02) prolong_timer after spam_scan_SA: remaining
time = 480 s
amavis[21794]: (21794-02) spam_scan: score=20.145
tests=[DRUGS_ANXIETY=0,DRUGS_ANXIETY_EREC=0,DRUGS_DIET=0.415,DRUGS_ERECT
ILE=0.026,DRUGS_MANYKINDS=2.734,DRUGS_PAIN=0.041,DRUGS_SLEEP=0.107,DRUGS
_SLEEP_EREC=2.719,DRUG_ED_GENERIC=1.181,HG_HORMONE=1.252,HTML_FONT_BIG=0
.232,HTML_MESSAGE=0.001,HTML_TAG_EXIST_TBODY=0.233,INFO_TLD=0.481,RCVD_I
N_NJABL_DUL=1.655,URIBL_AB_SURBL=2.007,URIBL_OB_SURBL=1.996,URIBL_SBL=0.
629,URIBL_SC_SURBL=3.897,URIBL_WS_SURBL=0.539]
amavis[21794]: (21794-02) prolong_timer after spam_scan: remaining time
= 480 s
amavis[21794]: (21794-02) lookup (spam_kill_level) => true,
"olaf.uhlemann@sertrec.com" matches, result="20",
matching_key="(constant:20)"
amavis[21794]: (21794-02) lookup (spam_lovers) => undef,
"olaf.uhlemann@sertrec.com" does not match
amavis[21794]: (21794-02) SPAM-KILL, ->
, score=20.145+0, kill=20
amavis[21794]: (21794-02) lookup (spam_tag_level) => true,
"olaf.uhlemann@sertrec.com" matches, result="-20",
matching_key="(constant:-20)"
amavis[21794]: (21794-02) lookup (spam_tag2_level) => true,
"olaf.uhlemann@sertrec.com" matches, result="2",
matching_key="(constant:2)"
amavis[21794]: (21794-02) lookup (spam_kill_level) => true,
"olaf.uhlemann@sertrec.com" matches, result="20",
matching_key="(constant:20)"
amavis[21794]: (21794-02) lookup (spam_quarantine_bysender_to) => undef,
"adam@englishforum.biz" does not match
amavis[21794]: (21794-02) lookup (spam_quarantine_to) => true,
"olaf.uhlemann@sertrec.com" matches, result="spam",
matching_key="(constant:spam)"
amavis[21794]: (21794-02) lookup (spam_quarantine_cutoff_level) =>
undef, "olaf.uhlemann@sertrec.com" does not match
amavis[21794]: (21794-02) lookup (spam_admin) => undef,
"olaf.uhlemann@sertrec.com" does not match
amavis[21794]: (21794-02) no key 'spam' in %local_delivery_aliases, skip
local delivery
amavis[21794]: (21794-02) skip local delivery(1): <> -> <spam>
amavis[21794]: (21794-02) SPAM, ->
, Yes, score=20.145 tag=-20 tag2=2 kill=20
tests=[DRUGS_ANXIETY=0, DRUGS_ANXIETY_EREC=0, DRUGS_DIET=0.415,
DRUGS_ERECTILE=0.026, DRUGS_MANYKINDS=2.734, DRUGS_PAIN=0.041,
DRUGS_SLEEP=0.107, DRUGS_SLEEP_EREC=2.719, DRUG_ED_GENERIC=1.181,
HG_HORMONE=1.252, HTML_FONT_BIG=0.232, HTML_MESSAGE=0.001,
HTML_TAG_EXIST_TBODY=0.233, INFO_TLD=0.481, RCVD_IN_NJABL_DUL=1.655,
URIBL_AB_SURBL=2.007, URIBL_OB_SURBL=1.996, URIBL_SBL=0.629,
URIBL_SC_SURBL=3.897, URIBL_WS_SURBL=0.539], autolearn=spam, quarantine
7LiInKuAVAk7 (spam)
amavis[21794]: (21794-02) Skip spam admin notification, no
administrators
amavis[21794]: (21794-02) prolong_timer after checking_sender_ip:
remaining time = 480 s
amavis[21794]: (21794-02) warnsender_with_pass= (0,0,0,0), dsn_needed=1,
cnt=, exit=0, 250 2.5.0 Ok, id=21794-02, BOUNCE
amavis[21794]: (21794-02) lookup (spam_dsn_cutoff_level) => true,
"olaf.uhlemann@sertrec.com" matches, result="25",
matching_key="(constant:25)"
amavis[21794]: (21794-02) notification chosen: OutDsnSpamMsgs,
SCALAR(0x877a780)
amavis[21794]: (21794-02) lookup_ip_acl (publicnetworks):
key="83.28.6.198" matches "[::FFFF:0:0]/96", result=1
amavis[21794]: (21794-02) (about to connect to [127.0.0.1]:10025) SEND
via SMTP: <> ->
postfix/smtpd[21755]: connect from localhost[127.0.0.1]
amavis[21794]: (21794-02) prolong_timer after fwd-connect: remaining
time = 480 s
amavis[21794]: (21794-02) AUTH not needed, user='', MTA offers 'LOGIN'
amavis[21794]: (21794-02) prolong_timer after fwd-mail-from: remaining
time = 480 s
postfix/smtpd[21755]: AADB0262B4: client=localhost[127.0.0.1]
amavis[21794]: (21794-02) response to RCPT TO for
: "250 Ok"
amavis[21794]: (21794-02) prolong_timer after fwd-rcpt-to: remaining
time = 480 s
amavis[21794]: (21794-02) response to DATA: "354 End data with
<CR><LF>.<CR><LF>"
amavis[21794]: (21794-02) prolong_timer after fwd-data: remaining time =
480 s
postfix/cleanup[21751]: AADB0262B4: message-id=
postfix/qmgr[20641]: AADB0262B4: from=<>, size=2530, nrcpt=1 (queue
active)
amavis[21794]: (21794-02) prolong_timer after fwd-data-end: remaining
time = 480 s
amavis[21794]: (21794-02) response to data end: "250 Ok: queued as
AADB0262B4"
amavis[21794]: (21794-02) prolong_timer after fwd-rundown-1: remaining
time = 480 s
postfix/smtpd[21755]: disconnect from localhost[127.0.0.1]
amavis[21794]: (21794-02) SEND via SMTP: <> -> ,
250 2.6.0 Ok, id=21794-02, from MTA([127.0.0.1]:10025): 250 Ok: queued
as AADB0262B4
amavis[21794]: (21794-02) prolong_timer after delivery-notification:
remaining time = 480 s
amavis[21794]: (21794-02) lookup (spam_tag2_level) => true,
"olaf.uhlemann@sertrec.com" matches, result="2",
matching_key="(constant:2)"
amavis[21794]: (21794-02) lookup_ip_acl (publicnetworks):
key="83.28.6.198" matches "[::FFFF:0:0]/96", result=1
amavis[21794]: (21794-02) Blocked SPAM, [83.28.6.198]
-> , Message-ID:
<000001c62066$7f3b8d00$0100007f@sylwia>, mail_id: 7LiInKuAVAk7, Hits:
20.145, 2602 ms
amavis[21794]: (21794-02) lookup (local_domains) => undef,
"olaf.uhlemann@sertrec.com" does not match
amavis[21794]: (21794-02) lookup (spam_tag_level) => true,
"olaf.uhlemann@sertrec.com" matches, result="-20",
matching_key="(constant:-20)"
amavis[21794]: (21794-02) lookup (spam_tag2_level) => true,
"olaf.uhlemann@sertrec.com" matches, result="2",
matching_key="(constant:2)"
amavis[21794]: (21794-02) lookup (spam_kill_level) => true,
"olaf.uhlemann@sertrec.com" matches, result="20",
matching_key="(constant:20)"
amavis[21794]: (21794-02) Blocked SPAM, ->
, Hits: 20.145, tag=-20, tag2=2, kill=20,
0/Y/Y/Y
amavis[21794]: (21794-02) sending SMTP response: "250 2.5.0 Ok,
id=21794-02, BOUNCE"
amavis[21794]: (21794-02) strip_tempdir:
/var/amavis/tmp/amavis-20060123T224519-21794
amavis[21794]: (21794-02) rmdir_recursively:
/var/amavis/tmp/amavis-20060123T224519-21794/parts, excl=1
amavis[21794]: (21794-02) TIMING [total 2609 ms] - SMTP EHLO: 3 (0%)0,
SMTP pre-MAIL: 1 (0%)0, SMTP pre-DATA-flush: 3 (0%)0, SMTP DATA: 78
(3%)3, body_digest: 1 (0%)3, gen_mail_id: 0 (0%)3, mime_decode: 14
(1%)4, get-file-type2: 8 (0%)4, decompose_part: 1 (0%)4, parts_decode: 0
(0%)4, AV-scan-1: 11 (0%)5, spam-wb-list: 3 (0%)5, SA msg read: 1 (0%)5,
SA parse: 1 (0%)5, SA check: 2332 (89%)94, update_cache: 1 (0%)94,
save-to-local-mailbox: 4 (0%)94, post-do_spam: 1 (0%)94, fwd-connect: 15
(1%)95, fwd-mail-from: 1 (0%)95, fwd-rcpt-to: 2 (0%)95, write-header: 1
(0%)95, fwd-data: 3 (0%)95, fwd-data-end: 103 (4%)99, fwd-rundown: 2
(0%)99, main_log_entry: 17 (1%)100, update_snmp: 1 (0%)100,
unlink-2-files: 1 (0%)100, rundown: 0 (0%)100
amavis[21794]: (21794-02) ESMTP> 250 2.5.0 Ok, id=21794-02, BOUNCE
postfix/smtp[21763]: 16950255A4: to=,
orig_to=, relay=127.0.0.1[127.0.0.1], delay=4,
status=sent (250 2.5.0 Ok, id=21794-02, BOUNCE)
postfix/qmgr[20641]: 16950255A4: removed
Olaf uhlemann