ProHoster > Блог > labaran intanet > Sakin tsarin tace spam SpamAssassin 3.4.3

Sakin tsarin tace spam SpamAssassin 3.4.3

Bayan shekara guda na ci gaba akwai sakin dandalin tace spam - Assassin Spam 3.4.3. SpamAssassin yana aiwatar da hanyar da aka haɗa don yanke shawarar ko za a toshe: an ƙaddamar da saƙon zuwa adadin cak (binciken yanayi, jerin sunayen baƙi da fari na DNSBL, ƙwararrun ƙwararrun Bayesian da aka horar da su, duba sa hannu, tabbatar da mai aikawa ta amfani da SPF da DKIM, da sauransu). Bayan kimanta saƙon ta amfani da hanyoyi daban-daban, ana tattara takamaiman ma'aunin nauyi. Idan ƙididdigan ƙididdiga ta wuce ƙayyadaddun ƙira, an toshe saƙon ko alama a matsayin spam. Ana tallafawa kayan aikin sabunta ƙa'idodin tacewa ta atomatik. Ana iya amfani da kunshin akan tsarin abokin ciniki da tsarin uwar garke. An rubuta lambar SpamAssassin a cikin Perl kuma an rarraba ta ƙarƙashin lasisin Apache.

Fasali sabon saki:

  • Ƙara sabon plugin OLEVBMacro, wanda aka ƙera don gano macros OLE da lambar VB a cikin takardu;
  • An inganta sauri da tsaro na bincika manyan imel tare da saitunan body_part_scan_size da
    rawbody_part_scan_size saituna;

  • An ƙara goyon baya ga tutar "nosubject" a cikin ƙa'idodin sarrafa jikin wasiƙar don dakatar da neman taken taken a matsayin ɓangare na rubutun a jikin harafin;
  • Don dalilai na tsaro, an soke zaɓin 'sa-update --allowplugins';
  • An ƙara sabon maɓalli "subjprefix" zuwa saitunan don ƙara prefix zuwa batun harafin lokacin da aka kunna ƙa'idar. An ƙara alamar "_SUBJPREFIX_" a cikin samfuran, yana nuna ƙimar saitin "subjprefix";
  • An ƙara zaɓin rbl_headers zuwa plugin ɗin DNSEval don ayyana kanun labarai waɗanda yakamata a yi amfani da rajistan a cikin jerin RBL;
  • Ƙara check_rbl_ns_daga aiki don duba uwar garken DNS a cikin jerin RBL. Ƙara aikin check_rbl_rcvd don bincika yanki ko adiresoshin IP daga duk kanun labarai da aka karɓa a cikin RBL;
  • An ƙara zaɓuɓɓuka zuwa aikin check_hashbl_emails don tantance kanun labarai waɗanda ke buƙatar bincika abubuwan ciki a cikin RBL ko ACL;
  • Ƙara aikin check_hashbl_bodyre don bincika jikin saƙon imel ta amfani da furci na yau da kullun da duba matches da aka samo a cikin RBL;
  • Ƙara aikin check_hashbl_uris don gano URLs a jikin imel da duba su a cikin RBL;
  • An gyara wani rauni (CVE-2018-11805) wanda ke ba da izinin aiwatar da umarnin tsarin daga fayilolin CF (Faylolin sanyi na SpamAssassin) ba tare da nuna bayanai game da aiwatar da su ba;
  • Rashin lahani (CVE-2019-12420) wanda za'a iya amfani dashi don haifar da ƙin sabis lokacin sarrafa imel tare da wani yanki na Multipart da aka ƙera na musamman.

Masu haɓaka SpamAssassin sun kuma sanar da shirye-shiryen reshen 4.0, wanda zai aiwatar da cikakken ginanniyar aikin UTF-8. A ranar 2020 ga Maris, 1, buga dokoki tare da sa hannu bisa SHA-3.4.2 algorithm shima zai daina (a cikin sakin 1, SHA-256 da SHA-512 hash ayyuka sun maye gurbin SHA-XNUMX).

source: budenet.ru

Add a comment