Rspamd 3.11.1 has been released

2025-03-10 00:00:00 +0000

The Rspamd team is pleased to announce the release of Rspamd 3.11.1. An overview of the changes in this release is presented below:

GPT plugin improvements

  • Added support for setting reasons for classification
  • Added compatibility with gpt4all, ollama
  • Added support for multiple model consensus

RBL module fixes

  • Removed nixspam RBL
  • Added support for disabling RBLs via map
  • Fixed content_urls and images checks
  • Fixed ipv4/ipv6 settings when used with resolve_ip
  • Allow images to be set inside checks

Other features

  • New redis caching framework for Lua plugins
  • Added ability to create timers via Lua
  • Support hashing arbitrary Lua types
  • Support LLM-based anonymization in rspamadm mime command
  • Per-key read_only support for fuzzy
  • Allow multiple Lua scripts for fuzzy storage
  • Support UTF8 sub and len variants for rspamd_text

Other fixes

  • Fixed adding footer to HTML parts with inline images
  • Better support for inline maps
  • Ham and spam sets for neural module are now expired
  • Fix crash when Rspamd is built without Hyperscan

See here for the full list of changes. Thank you to everyone who contributed to this release.

Rspamd 3.11.0 has been released

2024-12-16 00:00:00 +0000

Rspamd 3.11 Released: Major Updates to Elasticsearch Support, New Features and Important Fixes

The Rspamd team is pleased to announce the release of Rspamd 3.11, bringing significant improvements to the spam filtering system’s functionality, security, and performance.

Major Elasticsearch/OpenSearch Modernization

The most notable change in this release is the complete rework of the Elasticsearch/OpenSearch integration. The plugin now supports Elasticsearch 8 and OpenSearch 2, featuring:

  • Modern index management with automated retention policies
  • Improved data organization and storage efficiency
  • Updated configuration format for better clarity and control
  • Enhanced compatibility with modern Elasticsearch security features

Users upgrading from previous versions should review their Elasticsearch configurations as these changes are not backward compatible.

Enhanced Security and Performance Features

New Ratelimiting Capabilities

The release introduces helper tools to manage ratelimits:

  • LRU cache implementation for tracking recent ratelimit buckets
  • New management utilities for better control over ratelimits
  • Improved monitoring and administration tools via rspamadm

Architectural Improvements

  • Replacement of fastutf with simdutf library, providing:
    • Superior performance across different CPU architectures
    • Better support for non-x86 platforms
    • Enhanced UTF-8 processing capabilities

Message Processing Enhancements

  • New message anonymization tools for privacy-conscious deployments rspamadm mime anonymize
  • Addition of rspamadm mime strip for secure attachment handling

Critical Fixes and Security Updates

Several important security and functionality fixes have been implemented:

  • Improved upstream selection with smarter address rotation
  • Comprehensive fixes for RFC 2047 header encoding
  • Enhanced fuzzy storage security with improved dynamic key handling
  • Optimized TCP connection handling with cumulative timeouts
  • Strengthened DNS limit controls in SPF processing
  • Reduced false positives in phishing detection
  • Corrected DMARC structured headers encoding

Web Interface Improvements

The web interface received significant usability updates:

  • Redesigned symbol description system with improved hover functionality
  • Enhanced keyboard navigation for accessibility
  • Modernized symbol rendering system
  • Improved user experience with clearer information display

Configuration and Administration

New configuration capabilities have been added:

  • Introduction of lua.local.d folder to allow user’s plugins to be placed there
  • Extended configuration options for user based plugins and rules in conf.local.d/*.conf
  • Improved documentation and examples

Performance Optimizations

Several performance-focused improvements have been implemented:

  • Optimized RBL checking logic (e.g. received checks exclude from IP)
  • Refined multimap text part processing: so no more double scoring for multipart/alternative hits
  • Enhanced GPT module response parsing
  • Improved memory management and resource utilization

Installation and Upgrade Notes

Users upgrading to version 3.11 should:

  1. Review Elasticsearch/OpenSearch configurations if using these features (please bear in mind, that by default this module is disabled now, so you will need to enable it explicitly after review of the configuration, e.g. by specifying enabled = true).
  2. Review the new scores for multimap plugin if your score relied on double hits for multipart/alternative and content multimap type

The Rspamd team recommends testing the upgrade in a staging environment first, particularly if using the Elasticsearch integration.

Looking Forward

For detailed technical information and full changelog, please visit the Rspamd documentation website.

Rspamd 3.10.2 has been released

2024-10-20 00:00:00 +0000

Today we have released Rspamd 3.10.2, which is being maintained in the stable rspamd-3.10 branch.

The following fixes are included in this release:

  • Fix for ARC signing contributed by @jscissr
  • Added EOF to Prometheus metrics by @henry-spanka

Rspamd 3.10.1 has been released

2024-10-16 00:00:00 +0000

Today we have released Rspamd 3.10.1 featuring several important bug fixes.

  • Fixed Ragel state machine on ARM
  • Fixed OpenSSL-related crashes on RedHat systems
  • Fixed build with PUC-Rio Lua by @arkamar
  • Avoid null-bytes in Log-Tag header by @smarsching
  • Fixed incorrectly reported ASAN flag
  • Fixed counting of ham/spam learns
  • Updated to upstream hiredis removing all hacks

Rspamd 3.10.0 has been released

2024-09-30 00:00:00 +0000

Today we have released Rspamd 3.10.0; the most important new features and fixes are highlighted below.

Features

MIME UTF8 support:

Rspamd now correctly processes MIME UTF8 messages and doesn’t penalize them

Support for negative group score limits

Added the ability to set a negative group score limit using the min_score parameter.

Per key fuzzy ratelimit rules

It is now possible to set specific ratelimits and expiration for individual fuzzy encryption keys

Detect CPU using __builtin_cpu_supports where it’s possible

More portable way in some specific configurations

Sender Reputation Improvements:

Added SenderScore Reputation RBL and RPBL return codes to improve sender reputation checks.

Better OpenSSL 3.0 Support:

Introduced full support for OpenSSL 3.0, including integration for DKIM (DomainKeys Identified Mail).

Command Additions:

  • Added rspamadm secretbox command for secret key encryption/decryption.
  • Added tooling to allow string encryption in Lua scripts.

DMARC Enhancements:

  • Implemented a new reporting.only_domains setting for more granular DMARC reporting.

Fixes

  • Fixes for ARC and DMARC by @JasonStephenson and @spacefreak86
  • Fix Redis scripts uploading when Redis is not ready
  • Fixes for Redis configuration schema
  • Removed broken control block support
  • Fixed DCC rep handling
  • Fixed learning of empty tasks
  • ICAP: encode constructed path to be URL safe by @oliyks
  • Improved error reporting in lua_redis

Rules

Fixed and updated old rules to enhance overall system performance.

We extend our gratitude to everyone who contributed to this release.