I follow this howto: http://www.howtoforge.com/virtual-users-and-domains-with-postfix-ubuntu-7.10 Everything works fine but there is a lot of mail that amavis is blocking. Put them in /var/lib/amavis/virusmails. Amavis block all mail above "$sa_tag_level_deflt = 3.0;" and never add spam headers. example of Blocked Code: amavis[14933]: (14933-03) Blocked SPAM, [x.x.x.x] [x.x.x.x] <xxx> -> <xxx>,quarantine: spam-AK2SLUgDFlKF.gz, Message-ID: <xxx>, mail_id: AK2SLUgDFlKF, Hits: 11.253, 6447 ms My config files: Code: # more /etc/amavis/conf.d/20-debian_defaults use strict; $QUARANTINEDIR = "$MYHOME/virusmails"; $log_recip_templ = undef; # disable by-recipient level-0 log entries $DO_SYSLOG = 1; # log via syslogd (preferred) $syslog_ident = 'amavis'; # syslog ident tag, prepended to all messages $syslog_facility = 'mail'; $syslog_priority = 'debug'; # switch to info to drop debug output, etc $enable_db = 1; # enable use of BerkeleyDB/libdb (SNMP and nanny) $enable_global_cache = 1; # enable use of libdb-based cache if $enable_db=1 $inet_socket_port = 10024; # default listenting socket $sa_spam_subject_tag = '***SPAM*** '; $sa_tag_level_deflt = 3.0; # add spam info headers if at, or above that level $sa_tag2_level_deflt = 16.31; # add 'spam detected' headers at that level $sa_kill_level_deflt = 20.31; # triggers spam evasive actions $sa_dsn_cutoff_level = 25; # spam level beyond which a DSN is not sent $sa_mail_body_size_limit = 200*1024; # don't waste time on SA if mail is larger $sa_local_tests_only = 0; # only tests which do not require internet access? $final_virus_destiny = D_DISCARD; # (data not lost, see virus quarantine) $final_banned_destiny = D_BOUNCE; # D_REJECT when front-end MTA $final_spam_destiny = D_BOUNCE; $final_bad_header_destiny = D_PASS; # False-positive prone (for spam) Code: # more /etc/amavis/conf.d/50-user use strict; # # Place your configuration directives here. They will override those in # earlier files. # # See /usr/share/doc/amavisd-new/ for documentation and examples of # the directives you can use in this file # $pax='pax'; #------------ Do not modify anything below this line ------------- 1; # insure a defined return Code: # more /etc/amavis/conf.d/15-content_filter_mode use strict; # You can modify this file to re-enable SPAM checking through spamassassin # and to re-enable antivirus checking. # # Default antivirus checking mode # Uncomment the two lines below to enable it back # @bypass_virus_checks_maps = ( \%bypass_virus_checks, \@bypass_virus_checks_acl, \$bypass_virus_checks_re); # # Default SPAM checking mode # Uncomment the two lines below to enable it back # @bypass_spam_checks_maps = ( \%bypass_spam_checks, \@bypass_spam_checks_acl, \$bypass_spam_checks_re); 1; # insure a defined return I test the solutions given here http://www.howtoforge.com/forums/showthread.php?t=16133&highlight=headers+amavis and here http://www.howtoforge.com/forums/showthread.php?t=15505&highlight=headers+amavis but they do not work for me. any idea? sorry for long post.
I have the same problem. Resolved adding the line into /etc/amavis/conf.f/50-user: Code: $sa_tag_level_deflt = undef;
Besides, I sugest you to set $sa_tag2_level_deflt to 5! 16.31 I think is too high value! I set my server to 5, and still receive some spams without SPAM flag!
thanks alex_bueno, but it do not work for me. $sa_tag2_level_deflt to 16.31 was just a test. I am testing amavis, i use this just for test only, my 20-debian_defaults: Code: $sa_spam_subject_tag = '***SPAM*** '; $sa_tag_level_deflt = 5.0; # add spam info headers if at, or above that level $sa_tag2_level_deflt = 16.31; # add 'spam detected' headers at that level $sa_kill_level_deflt = 30.31; # triggers spam evasive actions $sa_dsn_cutoff_level = 45; # spam level beyond which a DSN is not sent but when i check the spam, the X-Spam-Status is like this: Code: X-Spam-Status Yes, score=6.519 tag=2 tag2=6.31 kill=6.31 tests=[AWL=0.790, BAYES_00=-2.599, DNS_FROM_RFC_BOGUSMX=1.482, HTML_MESSAGE=0.001, MIME_HEADER_CTYPE_ONLY=0.56, MIME_HTML_ONLY=1.457, SPF_PASS=-0.001, SUBJ_ALL_CAPS=2.077, X_LIBRARY=2.752] the problem is the mail over 6,31 is block as spam,but i do not really understand why if my 20-debian_defaults set tag2_level 16,31. any idea?
E-mail over 5 will receive spam headers ($sa_tag_level_deflt = 5.0; ), but just will add ***SPAM*** in the subject over 16.31 ($sa_tag2_level_deflt = 16.31; ). In my case all e-mails receive spam headers ($sa_tag_level_deflt = undef; ), like this: Code: X-Spam-Score: -3.018 X-Spam-Level: X-Spam-Status: No, score=-3.018 required=5 tests=[AWL=0.580, BAYES_00=-2.599, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_LOW=-1] And when e-mail is spam: Code: X-Spam-Flag: YES X-Spam-Score: 19.761 X-Spam-Level: ******************* X-Spam-Status: Yes, score=19.761 required=5 tests=[BAYES_99=3.5, BR_ADJUST_2=2, BR_APENAS=0.8, BR_CURSO_BODY=0.1, BR_CURSO_SUBJ=0.1, BR_PERDER_TEMPO=0.3, BR_SPAMMER_URI=2, BR_VISITE=0.3, DIGEST_MULTIPLE=0.001, HTML_MESSAGE=0.001, MIME_HTML_ONLY=1.457, MISSING_MIMEOLE=0.001, PYZOR_CHECK=3.7, RAZOR2_CF_RANGE_51_100=0.5, RAZOR2_CF_RANGE_E4_51_100=1.5, RAZOR2_CF_RANGE_E8_51_100=1.5, RAZOR2_CHECK=0.5, URIBL_OB_SURBL=1.5, URIBL_RED=0.001]
i am not talking about sapm-flag,or spam-status, my problem is that in my 20-debian_defaults i have: Code: $sa_spam_subject_tag = '***SPAM*** '; $sa_tag_level_deflt = 5.0; # add spam info headers if at, or above that level $sa_tag2_level_deflt = 16.31; # add 'spam detected' headers at that level $sa_kill_level_deflt = 30.31; # triggers spam evasive actions $sa_dsn_cutoff_level = 45; # spam level beyond which a DSN is not sent but if u look at the headers of my mails marked as spam Code: X-Spam-Status Yes, score=6.519 tag=2 tag2=6.31 kill=6.31 tests=[AWL=0.790, BAYES_00=-2.599, DNS_FROM_RFC_BOGUSMX=1.482, HTML_MESSAGE=0.001, MIME_HEADER_CTYPE_ONLY=0.56, MIME_HTML_ONLY=1.457, SPF_PASS=-0.001, SUBJ_ALL_CAPS=2.077, X_LIBRARY=2.752] u can see that the levels are not that i just config in the 20-debian_defaults. it is like amavis still use the default config for level_deftl instead of the current config.