Control: severity -1 seriousOn Tue, 27 May 2025 17:24:20 +0200 Vincent Lefevre <[email protected]> wrote:
This actually allows many spam mails to pass through the filter, so I think the severity should be bumped.Package: spamassassin Version: 4.0.1-1~deb12u1 Severity: importantThere is now a low limit on the Validity requests. This yields RCVD_IN_VALIDITY_CERTIFIED_BLOCKED RCVD_IN_VALIDITY_RPBL_BLOCKED RCVD_IN_VALIDITY_SAFE_BLOCKED even on personal servers. To solve this issue, upstream has changed the Validity rules to have zero scores: https://lists.apache.org/thread/75rhgh5cmx5bcv0thsqwq1pkw80f90cn
X-Spam-Flag: NO X-Spam-Score: 4.082 X-Spam-Level: **** X-Spam-Status: No, score=4.082 tagged_above=2 required=5 tests=[DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_EF=-0.1, DMARC_REJECT=1.797, HEADER_FROM_DIFFERENT_DOMAINS=1, HTML_MESSAGE=0.001, MIME_HTML_ONLY=0.1, PDS_BRAND_SUBJ_NAKED_TO=1, RCVD_IN_MSPIKE_H2=-1, RCVD_IN_VALIDITY_CERTIFIED=-3, RCVD_IN_VALIDITY_RPBL=1.284, RCVD_IN_VALIDITY_SAFE=-2, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_DBL_PHISH=2.5, URIBL_DBL_SPAM=2.5] autolearn=no autolearn_force=noThis is a default rule and it reduces 5 points from the score and can seriously distort the overall spam score.
OpenPGP_0x8F53E0193B294B75.asc
Description: OpenPGP public key
OpenPGP_signature.asc
Description: OpenPGP digital signature
