Hi all,
Some users complain about still receiving email from email addresses they have added in the blacklist of spamassassin from their DA control panel.
After some testing, it appears that either
In the rspamd logs, I can see that rspamd first treats the mail with "default: F (no action)" and later "default: T (reject)" although I had already made the change before the first try.
Has anyone had the same issue?
We are thinking about configuring a cronjob that runs every 15 minutes (or less, or more) calling "systemctl reload rspamd". Would that be a reasonable solution according to you?
Some users complain about still receiving email from email addresses they have added in the blacklist of spamassassin from their DA control panel.
After some testing, it appears that either
- rspamd must be reloaded or
- one or a couple of mails from the blacklisted address must reach the mailbox
In the rspamd logs, I can see that rspamd first treats the mail with "default: F (no action)" and later "default: T (reject)" although I had already made the change before the first try.
Code:
2025-02-10 11:41:06 #2919873(normal) <c1bf61>; task; rspamd_task_write_log: id: <[email protected]>, qid: <1thRDu-0000000CGov-0hHY>, ip: 1.2.3.4, from: <[email protected]>, (default: F (no action): [0.90/15.00] [AUTH_NA(1.00){},MIME_GOOD(-0.10){text/plain;},ARC_NA(0.00){},ASN(0.00){asn:6696, ipnet:1.2.3.0/24, country:XX;},DMARC_NA(0.00){domain1.com;},FROM_EQ_ENVFROM(0.00){},FROM_NO_DN(0.00){},MIME_TRACE(0.00){0:+;},MISSING_XM_UA(0.00){},RBL_SENDERSCORE_REPUT_BLOCKED(0.00){1.2.3.4:from;},RCPT_COUNT_ONE(0.00){1;},RCVD_COUNT_ONE(0.00){1;},RCVD_TLS_ALL(0.00){},R_DKIM_NA(0.00){},R_SPF_NA(0.00){no SPF record;},SINGLE_SHORT_PART(0.00){},TO_DN_NONE(0.00){},TO_MATCH_ENVRCPT_ALL(0.00){}]), len: 730, time: 205.116ms, dns req: 21, digest: <fd7d4f357f6a4c662c1d41ceff2609d2>, rcpts: <[email protected]>, mime_rcpts: <[email protected]>, settings_id: test2_prefs
2025-02-10 11:41:22 #2919873(normal) <ccfdbf>; task; rspamd_task_write_log: id: <[email protected]>, qid: <1thREA-0000000CGwW-0pA0>, ip: 1.2.3.4, from: <[email protected]>, (default: F (no action): [0.90/15.00] [AUTH_NA(1.00){},MIME_GOOD(-0.10){text/plain;},ARC_NA(0.00){},ASN(0.00){asn:6696, ipnet:1.2.3.0/24, country:XX;},DMARC_NA(0.00){domain1.com;},FROM_EQ_ENVFROM(0.00){},FROM_NO_DN(0.00){},MIME_TRACE(0.00){0:+;},MISSING_XM_UA(0.00){},RBL_SENDERSCORE_REPUT_BLOCKED(0.00){1.2.3.4:from;},RCPT_COUNT_ONE(0.00){1;},RCVD_COUNT_ONE(0.00){1;},RCVD_TLS_ALL(0.00){},R_DKIM_NA(0.00){},R_SPF_NA(0.00){no SPF record;},SINGLE_SHORT_PART(0.00){},TO_DN_NONE(0.00){},TO_MATCH_ENVRCPT_ALL(0.00){}]), len: 730, time: 119.442ms, dns req: 21, digest: <fd7d4f357f6a4c662c1d41ceff2609d2>, rcpts: <[email protected]>, mime_rcpts: <[email protected]>, settings_id: test2_prefs
2025-02-10 11:41:55 #2925189(normal) <3926ac>; task; rspamd_task_write_log: id: <[email protected]>, qid: <1thREg-0000000CHCs-3thQ>, ip: 1.2.3.4, from: <[email protected]>, (default: T (reject): [0.90/-999.00] [AUTH_NA(1.00){},MIME_GOOD(-0.10){text/plain;},ARC_NA(0.00){},ASN(0.00){asn:6696, ipnet:1.2.3.0/24, country:XX;},DMARC_NA(0.00){domain1.com;},MIME_TRACE(0.00){0:+;},RBL_SENDERSCORE_REPUT_BLOCKED(0.00){1.2.3.4:from;},R_DKIM_NA(0.00){},R_SPF_NA(0.00){no SPF record;}]), len: 730, time: 131.399ms, dns req: 17, digest: <fd7d4f357f6a4c662c1d41ceff2609d2>, rcpts: <[email protected]>, mime_rcpts: <[email protected]>, settings_id: test2_blacklistHas anyone had the same issue?
We are thinking about configuring a cronjob that runs every 15 minutes (or less, or more) calling "systemctl reload rspamd". Would that be a reasonable solution according to you?