Rspamd 3.7.5 has been released

2023-12-15 00:00:00 +0000

Today we have released Rspamd 3.7.5; the second & likely final release from the stable 3.7 branch.

The following changes are new in 3.7.5:

Fixes:

  • Fixed logging in rspamadm (Reported by @cfasnacht)
  • Fixed logging when using systemd = true (Reported by @AdamMajer)
  • dkim_signing: signing_table: lowercase inputs before lookup (Reported by @EurenikZ)
  • Fixed build without hyperscan (Reported by @a16bitsysop)

Features:

  • Fix build on loongarch64 (Contributed by @wuruilong01)

Rspamd 3.7.4 has been released

2023-11-14 00:00:00 +0000

Today we have released Rspamd 3.7.4; the first release in the new stable branch of Rspamd 3.7.

The following changes are new in 3.7.4:

Fixes:

  • Fixed setproctitle on CentOS-likes
  • Fixes for hyperscan cache file handling
  • Fixed exclude_local in RBL module
  • Properly set config field when loading tasks from Lua
  • Set loaded variable explicitly

Features:

  • Enable fasttext on RPM based Linux
  • Improve FREEMAIL_AFF capture rates
  • Add rule for messages missing both X-Mailer and User-Agent header
  • Add composite rule for suspicious URLs in suspicious messages

Upgrading notes

The exclude_private_ips setting in RBL module no longer exists in this release (and was broken in previous releases), it can be removed from configuration. This setting is equivalent to exclude_local.

Rspamd 3.7.3 has been released

2023-10-27 00:00:00 +0000

Today we have released Rspamd 3.7.3; this release adds a fix for a regression in the short-lived 3.7.2 release.

The following changes are new in 3.7.2:

Fixes:

  • Deal with fmtlib exceptions properly
  • DMARC reporting: fix reporting for subdomains
  • DMARC: fix munging (by @dzjaivnt)
  • ICAP: restore old content-type behaviour; add use_specific_content_type setting
  • WebUI: Fix history table vanishing

Features:

  • WebUI: Add control to invert action filter
  • Rules: Blank spam detection
  • Rules: Tighten rspamd’s attachment policy (by @twesterhever)
  • RBL: support use of different matchers for return codes

Rspamd 3.7.1 has been released

2023-10-11 00:00:00 +0000

We are excited to introduce Rspamd 3.7.1, the latest iteration of our advanced spam filtering system. Rspamd continues to evolve as a robust and efficient spam filtering solution. This release is packed with new features, enhancements, and crucial bug fixes designed to elevate Rspamd’s performance, versatility, and security to new heights. Let’s delve into the key changes in this version:

Critical fixes:

  • Addressed a critical memory leak in the gzip function, ensuring more efficient resource management.

New Features:

  • Added support for ICAP Content-Type and Filename, expanding Rspamd’s capabilities for content analysis.
  • Introduced the logging->task_max_elts option, providing greater control over logging.
  • Added a utility for splitting strings within C++ code, simplifying string manipulation.
  • You can now set HTTP authentication parameters for maps, enhancing security.
  • Improved configuration error checking during configtest, facilitating the identification and resolution of plugin configuration issues.
  • Introduced the known_senders plugin, assisting in the management and recognition of known senders.
  • Transitioned to using backward-cpp instead of manual libunwind handling, enhancing code quality and reliability.
  • Enhanced RBL (Real-time Blackhole List) support to check numeric URLs individually, enhancing the accuracy of spam detection.

Fixes:

  • Addressed various issues in CMakeLists.txt to prevent test failures related to whitespace.
  • Corrected the location of the Date: header to conform with RFC standards.
  • Ensured the correct format pattern for RE tree tempfile names.
  • Fixed format string and length issues, contributing to code stability.
  • Improved grammar definitions for content-disposition attributes.
  • Enhanced the logic for Redis parameters in the Lua schema enrichment process.
  • Resolved a Lua stack corruption issue when logging large tables.
  • Fixed the utility for merging tables.
  • Ensured the correct output of non-RSA DKIM keys.
  • Addressed various corner cases related to parsing single-host URLs.
  • Corrected several issues in the url_redirector plugin, improving its functionality.
  • Prevented DNSWL (DNS-based Whitelist) sabotage, enhancing spam filtering.
  • Resolved dependency registration issues in the RBL plugin when using symbols prefixes.
  • Improved the behavior of the rspamadm mime command to avoid conflicts with arguments starting with the letter ‘t’.
  • Prevented the matching of messages from the Android GMail app in the MISSING_MIMEOLE check.

Rework

  • Reverted to semantic versioning (semver) to provide better versioning consistency.
  • Transferred RCL (Rspamd Configuration Language) logic to C++, streamlining configuration processing.

Rspamd 3.7.1 represents another significant stride forward in our ongoing commitment to providing an efficient, reliable, and feature-rich spam filtering solution. We encourage you to upgrade to this latest version to take advantage of these improvements and ensure the continued security of your email communications.

Rspamd 3.6 has been released

2023-08-06 00:00:00 +0000

We are excited to present the latest version of Rspamd - version 3.6. This release brings a host of new features, enhancements, and fixes to improve further the performance, flexibility, and security of the Rspamd email scanning system. With additions like language detection configuration, dynamic multimap symbol registration, and enhanced fuzzy storage options, Rspamd continues to evolve as a powerful and reliable solution for filtering and classifying messages.

New Features:

  • Added one_shot option to specific multimap rules for improved rule behavior
  • Introduced language detection configuration and associated attributes
  • Added sentinel_password option to enhance Redis sentinel password protection
  • Enabled denial of specific fuzzy flags by default for better control over fuzzy storage
  • Implemented a controller endpoint to retrieve fuzzy hashes from messages
  • Added extra symbol for URL redirector when reaching nested limit for easier identification
  • Included a function to transliterate utf8 to ascii with normalization for text processing
  • Added html parsing limit and set order to urls structure for improved handling
  • Expanded functionality of lua_rsa library with additional functions
  • Enabled fuzzy workers to exchange blocked information
  • Allowed weak flags in fuzzy storage for more versatile fuzzy matching
  • Enabled reading options from maps in the multimap plugin for dynamic configuration
  • Provided alternative methods when fasttext detection is enabled
  • Enabled counting stats per key per flag for better statistics tracking
  • Completed implementation of dynamic composites for more flexible rule composition
  • Improved processing of HTML parts before text ones for better text extraction
  • Reorganized struct rspamd_url for reduced memory footprint
  • Implemented saving fuzzy ratelimit buckets for rate control
  • Added ip_map strategy to external_relay plugin for more versatile IP handling
  • Implemented on_load support for maps to perform actions on map loading

Fixes:

  • Addressed race condition between config new/free using a counter to ensure stability
  • Enhanced fasttext language model with pre-tokenized words for improved detection
  • Fixed issues with rspamd_has_only_html_part for accurate HTML detection
  • Resolved order of destruction race between Redis pool and Lua for stable behavior
  • Addressed parsing of invalid mask values for proper configuration handling
  • Adjusted header parsing to include the last character when no value is present
  • Addressed various issues with fuzzystat for accurate fuzzy storage behavior
  • Corrected counter usage for more accurate counting
  • Implemented measures to clean pending bucket and remove bad hyperscan files
  • Updated stats before encryption to ensure accurate data representation
  • Improved DMARC grammar by allowing spaces before ;
  • Fixed registration issue in RBL plugin when using symbols_prefixes
  • Removed obsolete files related to rspamd-redirector

Project Enhancements:

  • Enabled dynamic registration of multimap symbols for flexible rule management
  • Implemented fasttext language detection for efficient language classification
  • Refactored default max shots to avoid interfering with options
  • Rewrote dkim keygen tool in Lua for better performance and functionality
  • Added thread hijacking composite rule for improved rule handling

Please note that this is not an exhaustive list of changes and other minor improvements, bug fixes and optimizations have also been included in this release.