* $Id$
*/
+function filters_SaveCache () {
+ global $data_dir, $SpamFilters_DNScache;
+
+ if (file_exists($data_dir . "/dnscache")) {
+ $fp = fopen($data_dir . "/dnscache", "r");
+ } else {
+ $fp = false;
+ }
+ if ($fp) {
+ flock($fp,LOCK_EX);
+ } else {
+ $fp = fopen($data_dir . "/dnscache", "w+");
+ fclose($fp);
+ $fp = fopen($data_dir . "/dnscache", "r");
+ flock($fp,LOCK_EX);
+ }
+ $fp1=fopen($data_dir . "/dnscache", "w+");
+
+ foreach ($SpamFilters_DNScache as $Key=> $Value) {
+ $tstr = $Key . ',' . $Value['L'] . ',' . $Value['T'] . "\n";
+ fputs ($fp1, $tstr);
+ }
+ fclose($fp1);
+ flock($fp,LOCK_UN);
+ fclose($fp);
+}
+
+
+function filters_LoadCache () {
+ global $data_dir, $SpamFilters_DNScache;
+
+ if (file_exists($data_dir . "/dnscache")) {
+ $SpamFilters_DNScache = array();
+ if ($fp = fopen ($data_dir . "/dnscache", "r")) {
+ flock($fp,LOCK_SH);
+ while ($data=fgetcsv($fp,1024)) {
+ if ($data[2] > time()) {
+ $SpamFilters_DNScache[$data[0]]['L'] = $data[1];
+ $SpamFilters_DNScache[$data[0]]['T'] = $data[2];
+ }
+ }
+
+ flock($fp,LOCK_UN);
+ }
+ }
+}
+
+function filters_bulkquery($filters_spam_scan, $filters, $read) {
+ global $SpamFilters_YourHop, $attachment_dir, $username,
+ $SpamFilters_DNScache, $SpamFilters_BulkQuery,
+ $SpamFilters_CacheTTL;
+
+ $IPs = array();
+ $i = 0;
+ while ($i < count($read)) {
+ // EIMS will give funky results
+ $Chunks = explode(' ', $read[$i]);
+ if ($Chunks[0] != '*') {
+ $i ++;
+ continue;
+ }
+ $MsgNum = $Chunks[1];
+
+ $i ++;
+ $Scan = 1;
+
+ // Check for normal IMAP servers
+ if ($filters_spam_scan == 'new') {
+ if (is_int(strpos($Chunks[4], '\Seen'))) {
+ $Scan = 0;
+ }
+ }
+
+ // Look through all of the Received headers for IP addresses
+ // Stop when I get ")" on a line
+ // Stop if I get "*" on a line (don't advance)
+ // and above all, stop if $i is bigger than the total # of lines
+ while (($i < count($read)) &&
+ ($read[$i][0] != ')' && $read[$i][0] != '*' &&
+ $read[$i][0] != "\n")) {
+ // Check to see if this line is the right "Received from" line
+ // to check
+ if (is_int(strpos($read[$i], $SpamFilters_YourHop))) {
+
+ // short-circuit and skip work if we don't scan this one
+ if ($Scan) {
+ $read[$i] = ereg_replace('[^0-9\.]', ' ', $read[$i]);
+ $elements = explode(' ', $read[$i]);
+ foreach ($elements as $value) {
+ if ($value != '' &&
+ ereg('[0-9]{1,3}\.[0-9]{1,3}\.[0-9]{1,3}\.[0-9]{1,3}',
+ $value, $regs)) {
+ $Chunks = explode('.', $value);
+ $IP = $Chunks[3] . '.' . $Chunks[2] . '.' .
+ $Chunks[1] . '.' . $Chunks[0];
+ foreach ($filters as $key => $value) {
+ if ($filters[$key]['enabled'] &&
+ $filters[$key]['dns']) {
+ if (strlen($SpamFilters_DNScache[$IP.'.'.$filters[$key]['dns']]) == 0) {
+ $IPs[$IP] = true;
+ break;
+ }
+ }
+ }
+ // If we've checked one IP and YourHop is
+ // just a space
+ if ($SpamFilters_YourHop == ' ') {
+ break; // don't check any more
+ }
+ }
+ }
+ }
+ }
+ $i ++;
+ }
+ }
+
+ if (count($IPs) > 0) {
+ $rbls = array();
+ foreach ($filters as $key => $value) {
+ if ($filters[$key]['enabled']) {
+ if ($filters[$key]['dns']) {
+ $rbls[$filters[$key]['dns']] = true;
+ }
+ }
+ }
+
+ $bqfil = $attachment_dir . $username . "-bq.in";
+ $fp = fopen($bqfil, "w");
+ fputs ($fp, $SpamFilters_CacheTTL . "\n");
+ foreach ($rbls as $key => $value) {
+ fputs ($fp, "." . $key . "\n");
+ }
+ fputs ($fp, "----------\n");
+ foreach ($IPs as $key => $value) {
+ fputs ($fp, $key . "\n");
+ }
+ fclose ($fp);
+ $bqout = array();
+ exec ($SpamFilters_BulkQuery . " < " . $bqfil, $bqout);
+ foreach ($bqout as $value) {
+ $Chunks = explode(',', $value);
+ $SpamFilters_DNScache[$Chunks[0]]['L'] = $Chunks[1];
+ $SpamFilters_DNScache[$Chunks[0]]['T'] = $Chunks[2] + time();
+ }
+ unlink($bqfil);
+ }
+}
+
+
function filters_sqimap_read_data ($imap_stream, $pre, $handle_errors, &$response, &$message) {
global $color, $squirrelmail_language, $imap_general_debug;
}
function filter_search_and_delete($imap, $where, $what, $where_to) {
- // Don't mess with the " characters on this fputs line!
- fputs ($imap, 'a001 SEARCH ALL ' . $where . ' "' . addslashes($what) .
- "\"\r\n");
+ global $languages, $squirrelmail_language;
+ if (isset($languages[$squirrelmail_language]['CHARSET']) &&
+ $languages[$squirrelmail_language]['CHARSET']) {
+ $search_str = "SEARCH CHARSET "
+ . strtoupper($languages[$squirrelmail_language]['CHARSET'])
+ . " ALL ";
+ } else {
+ $search_str = "SEARCH CHARSET US-ASCII ALL ";
+ }
+ if ($where == "Header") {
+ $what = explode(':', $what);
+ $where = trim($where . ' ' . $what[0]);
+ $what = addslashes(trim($what[1]));
+ }
+ $search_str .= $where . ' {' . strlen($what) . "}\r\n" . $what . "\r\n";
+
+ fputs ($imap, "a001 $search_str");
$read = filters_sqimap_read_data ($imap, 'a001', true, $response, $message);
// This may have problems with EIMS due to it being goofy
global $data_dir, $username;
global $SpamFilters_YourHop;
global $SpamFilters_DNScache;
+ global $SpamFilters_SharedCache;
+ global $SpamFilters_BulkQuery;
$filters_spam_scan = getPref($data_dir, $username, 'filters_spam_scan');
$filters_spam_folder = getPref($data_dir, $username, 'filters_spam_folder');
$filters = load_spam_filters();
+ if ($SpamFilters_SharedCache) {
+ filters_LoadCache();
+ }
+
$run = 0;
foreach ($filters as $Key=> $Value) {
return;
}
+ if (strlen($SpamFilters_BulkQuery) > 0) {
+ filters_bulkquery($filters_spam_scan, $filters, $read);
+ }
+
$i = 0;
while ($i < count($read)) {
// EIMS will give funky results
sqimap_mailbox_expunge($imap_stream, 'INBOX');
- session_register('SpamFilters_DNScache');
+ if ($SpamFilters_SharedCache) {
+ filters_SaveCache();
+ } else {
+ session_register('SpamFilters_DNScache');
+ }
}
// Does the loop through each enabled filter for the specified IP address.
// IP format: $a.$b.$c.$d
function filters_spam_check_site($a, $b, $c, $d, &$filters) {
- global $SpamFilters_DNScache;
+ global $SpamFilters_DNScache, $SpamFilters_CacheTTL;
foreach ($filters as $key => $value) {
if ($filters[$key]['enabled']) {
if ($filters[$key]['dns']) {
$filter_revip = $d . '.' . $c . '.' . $b . '.' . $a . '.' .
$filters[$key]['dns'];
- if (strlen($SpamFilters_DNScache[$filter_revip]) == 0) {
- $SpamFilters_DNScache[$filter_revip] =
+ if (strlen($SpamFilters_DNScache[$filter_revip]['L']) == 0) {
+ $SpamFilters_DNScache[$filter_revip]['L'] =
gethostbyname($filter_revip);
+ $SpamFilters_DNScache[$filter_revip]['T'] =
+ time() + $SpamFilters_CacheTTL;
}
- if ($SpamFilters_DNScache[$filter_revip] ==
+ if ($SpamFilters_DNScache[$filter_revip]['L'] ==
$filters[$key]['result']) {
return 1;
}
}
function load_spam_filters() {
- global $data_dir, $username;
-
- $filters['MAPS RBL']['prefname'] = 'filters_spam_maps_rbl';
- $filters['MAPS RBL']['name'] = 'MAPS Realtime Blackhole List';
- $filters['MAPS RBL']['link'] = 'http://www.mail-abuse.org/rbl/';
- $filters['MAPS RBL']['dns'] = 'blackholes.mail-abuse.org';
- $filters['MAPS RBL']['result'] = '127.0.0.2';
- $filters['MAPS RBL']['comment'] =
- _("COMMERCIAL - This list contains servers that are verified spam senders. It is a pretty reliable list to scan spam from.");
-
- $filters['MAPS RSS']['prefname'] = 'filters_spam_maps_rss';
- $filters['MAPS RSS']['name'] = 'MAPS Relay Spam Stopper';
- $filters['MAPS RSS']['link'] = 'http://www.mail-abuse.org/rss/';
- $filters['MAPS RSS']['dns'] = 'relays.mail-abuse.org';
- $filters['MAPS RSS']['result'] = '127.0.0.2';
- $filters['MAPS RSS']['comment'] =
- _("COMMERCIAL - Servers that are configured (or misconfigured) to allow spam to be relayed through their system will be banned with this. Another good one to use.");
-
- $filters['MAPS DUL']['prefname'] = 'filters_spam_maps_dul';
- $filters['MAPS DUL']['name'] = 'MAPS Dial-Up List';
- $filters['MAPS DUL']['link'] = 'http://www.mail-abuse.org/dul/';
- $filters['MAPS DUL']['dns'] = 'dialups.mail-abuse.org';
- $filters['MAPS DUL']['result'] = '127.0.0.3';
- $filters['MAPS DUL']['comment'] =
- _("COMMERCIAL - Dial-up users are often filtered out since they should use their ISP's mail servers to send mail. Spammers typically get a dial-up account and send spam directly from there.");
-
- $filters['MAPS RBLplus-RBL']['prefname'] = 'filters_spam_maps_rblplus_rbl';
- $filters['MAPS RBLplus-RBL']['name'] = 'MAPS RBL+ RBL List';
- $filters['MAPS RBLplus-RBL']['link'] = 'http://www.mail-abuse.org/';
- $filters['MAPS RBLplus-RBL']['dns'] = 'rbl-plus.mail-abuse.org';
- $filters['MAPS RBLplus-RBL']['result'] = '127.0.0.2';
- $filters['MAPS RBLplus-RBL']['comment'] =
- _("COMMERCIAL - RBL+ Blackhole entries.");
-
- $filters['MAPS RBLplus-RSS']['prefname'] = 'filters_spam_maps_rblplus_rss';
- $filters['MAPS RBLplus-RSS']['name'] = 'MAPS RBL+ List RSS entries';
- $filters['MAPS RBLplus-RSS']['link'] = 'http://www.mail-abuse.org/';
- $filters['MAPS RBLplus-RSS']['dns'] = 'rbl-plus.mail-abuse.org';
- $filters['MAPS RBLplus-RSS']['result'] = '127.0.0.2';
- $filters['MAPS RBLplus-RSS']['comment'] =
- _("COMMERCIAL - RBL+ OpenRelay entries.");
-
- $filters['MAPS RBLplus-DUL']['prefname'] = 'filters_spam_maps_rblplus_dul';
- $filters['MAPS RBLplus-DUL']['name'] = 'MAPS RBL+ List DUL entries';
- $filters['MAPS RBLplus-DUL']['link'] = 'http://www.mail-abuse.org/';
- $filters['MAPS RBLplus-DUL']['dns'] = 'rbl-plus.mail-abuse.org';
- $filters['MAPS RBLplus-DUL']['result'] = '127.0.0.3';
- $filters['MAPS RBLplus-DUL']['comment'] =
- _("COMMERCIAL - RBL+ Dial-up entries.");
+ global $data_dir, $username, $SpamFilters_ShowCommercial;
+
+ if ($SpamFilters_ShowCommercial) {
+ $filters['MAPS RBL']['prefname'] = 'filters_spam_maps_rbl';
+ $filters['MAPS RBL']['name'] = 'MAPS Realtime Blackhole List';
+ $filters['MAPS RBL']['link'] = 'http://www.mail-abuse.org/rbl/';
+ $filters['MAPS RBL']['dns'] = 'blackholes.mail-abuse.org';
+ $filters['MAPS RBL']['result'] = '127.0.0.2';
+ $filters['MAPS RBL']['comment'] =
+ _("COMMERCIAL - This list contains servers that are verified spam senders. It is a pretty reliable list to scan spam from.");
+
+ $filters['MAPS RSS']['prefname'] = 'filters_spam_maps_rss';
+ $filters['MAPS RSS']['name'] = 'MAPS Relay Spam Stopper';
+ $filters['MAPS RSS']['link'] = 'http://www.mail-abuse.org/rss/';
+ $filters['MAPS RSS']['dns'] = 'relays.mail-abuse.org';
+ $filters['MAPS RSS']['result'] = '127.0.0.2';
+ $filters['MAPS RSS']['comment'] =
+ _("COMMERCIAL - Servers that are configured (or misconfigured) to allow spam to be relayed through their system will be banned with this. Another good one to use.");
+
+ $filters['MAPS DUL']['prefname'] = 'filters_spam_maps_dul';
+ $filters['MAPS DUL']['name'] = 'MAPS Dial-Up List';
+ $filters['MAPS DUL']['link'] = 'http://www.mail-abuse.org/dul/';
+ $filters['MAPS DUL']['dns'] = 'dialups.mail-abuse.org';
+ $filters['MAPS DUL']['result'] = '127.0.0.3';
+ $filters['MAPS DUL']['comment'] =
+ _("COMMERCIAL - Dial-up users are often filtered out since they should use their ISP's mail servers to send mail. Spammers typically get a dial-up account and send spam directly from there.");
+
+ $filters['MAPS RBLplus-RBL']['prefname'] = 'filters_spam_maps_rblplus_rbl';
+ $filters['MAPS RBLplus-RBL']['name'] = 'MAPS RBL+ RBL List';
+ $filters['MAPS RBLplus-RBL']['link'] = 'http://www.mail-abuse.org/';
+ $filters['MAPS RBLplus-RBL']['dns'] = 'rbl-plus.mail-abuse.org';
+ $filters['MAPS RBLplus-RBL']['result'] = '127.0.0.2';
+ $filters['MAPS RBLplus-RBL']['comment'] =
+ _("COMMERCIAL - RBL+ Blackhole entries.");
+
+ $filters['MAPS RBLplus-RSS']['prefname'] = 'filters_spam_maps_rblplus_rss';
+ $filters['MAPS RBLplus-RSS']['name'] = 'MAPS RBL+ List RSS entries';
+ $filters['MAPS RBLplus-RSS']['link'] = 'http://www.mail-abuse.org/';
+ $filters['MAPS RBLplus-RSS']['dns'] = 'rbl-plus.mail-abuse.org';
+ $filters['MAPS RBLplus-RSS']['result'] = '127.0.0.2';
+ $filters['MAPS RBLplus-RSS']['comment'] =
+ _("COMMERCIAL - RBL+ OpenRelay entries.");
+
+ $filters['MAPS RBLplus-DUL']['prefname'] = 'filters_spam_maps_rblplus_dul';
+ $filters['MAPS RBLplus-DUL']['name'] = 'MAPS RBL+ List DUL entries';
+ $filters['MAPS RBLplus-DUL']['link'] = 'http://www.mail-abuse.org/';
+ $filters['MAPS RBLplus-DUL']['dns'] = 'rbl-plus.mail-abuse.org';
+ $filters['MAPS RBLplus-DUL']['result'] = '127.0.0.3';
+ $filters['MAPS RBLplus-DUL']['comment'] =
+ _("COMMERCIAL - RBL+ Dial-up entries.");
+ }
$filters['Osirusoft Relays']['prefname'] = 'filters_spam_maps_osirusoft_relay';
$filters['Osirusoft Relays']['name'] = 'Osirusoft Relay List';
$filters['ORDB']['comment'] =
_("FREE - ORDB was born when ORBS went off the air. It seems to have fewer false positives than ORBS did though.");
- $filters['ORBZ Inputs']['prefname'] = 'filters_spam_orbz';
- $filters['ORBZ Inputs']['name'] = 'ORBZ Inputs List';
- $filters['ORBZ Inputs']['link'] = 'http://www.orbz.org/';
- $filters['ORBZ Inputs']['dns'] = 'inputs.orbz.org';
- $filters['ORBZ Inputs']['result'] = '127.0.0.2';
- $filters['ORBZ Inputs']['comment'] =
- _("FREE - Another ORBS replacement (just the INPUTS database used here).");
-
- $filters['ORBZ Outputs']['prefname'] = 'filters_spam_orbz_outputs';
- $filters['ORBZ Outputs']['name'] = 'ORBZ Outputs List';
- $filters['ORBZ Outputs']['link'] = 'http://www.orbz.org/';
- $filters['ORBZ Outputs']['dns'] = 'outputs.orbz.org';
- $filters['ORBZ Outputs']['result'] = '127.0.0.2';
- $filters['ORBZ Outputs']['comment'] =
- _("FREE - Another ORBS replacement (just the OUTPUTS database used here).");
-
$filters['FiveTen Direct']['prefname'] = 'filters_spam_fiveten_src';
$filters['FiveTen Direct']['name'] = 'Five-Ten-sg.com Direct SPAM Sources';
$filters['FiveTen Direct']['link'] = 'http://www.five-ten-sg.com/blackhole.php';
setPref($data_dir, $username, 'filter' . $id1, $SecondFilter);
}
}
+
+/* This update the filter rules when
+ renaming or deleting folders */
+function update_for_folder ($args) {
+ $old_folder = $args[0];
+ $new_folder = $args[2];
+ $action = $args[1];
+ global $plugins, $data_dir, $username;
+ $filters = array();
+ $filters = load_filters();
+ $filter_count = count($filters);
+ $p = 0;
+ for ($i=0;$i<$filter_count;$i++) {
+ if (!empty($filters)) {
+ if ($old_folder == $filters[$i]['folder']) {
+ if ($action == 'rename') {
+ $filters[$i]['folder'] = $new_folder;
+ setPref($data_dir, $username, 'filter'.$i,
+ $filters[$i]['where'].','.$filters[$i]['what'].','.$new_folder);
+ }
+ elseif ($action == 'delete') {
+ remove_filter($p);
+ $p = $p-1;
+ }
+ }
+ $p++;
+ }
+ }
+}
?>