X-Git-Url: https://vcs.fsf.org/?p=squirrelmail.git;a=blobdiff_plain;f=plugins%2Ffilters%2Ffilters.php;h=5b9ebdc90e033073ae31e0afea7a3d9cc51dee94;hp=c8aa414cf53c83d94420fa929fe4558e509699f2;hb=0a1dc88e11c9c6b1734eaa35849e3476dc425c6d;hpb=10a26cea2cb9d20f002c2d8fab00e5db22b36bd9 diff --git a/plugins/filters/filters.php b/plugins/filters/filters.php index c8aa414c..5b9ebdc9 100644 --- a/plugins/filters/filters.php +++ b/plugins/filters/filters.php @@ -1,9 +1,8 @@ $Value) { + $tstr = $Key . ',' . $Value['L'] . ',' . $Value['T'] . "\n"; + fputs ($fp1, $tstr); + } + fclose($fp1); + flock($fp,LOCK_UN); + fclose($fp); +} - if (ereg("^\\* [0-9]+ FETCH.*\\{([0-9]+)\\}", $read, $regs)) { - $size = $regs[1]; - if ($imap_general_debug) { - echo "Size is $size
\n"; +/** + * FIXME: Undocumented function + * @access private + */ +function filters_LoadCache () { + global $data_dir, $SpamFilters_DNScache; + + if (file_exists($data_dir . '/dnscache')) { + $SpamFilters_DNScache = array(); + if ($fp = fopen ($data_dir . '/dnscache', 'r')) { + flock($fp,LOCK_SH); + while ($data=fgetcsv($fp,1024)) { + if ($data[2] > time()) { + $SpamFilters_DNScache[$data[0]]['L'] = $data[1]; + $SpamFilters_DNScache[$data[0]]['T'] = $data[2]; + } } - $total_size = 0; - do { - $read = fgets($imap_stream, 9096); - if ($imap_general_debug) { - echo "$read
\n"; - flush(); - } - $data[] = $read; - $total_size += strlen($read); - } while ($total_size < $size); - - $size = 0; + flock($fp,LOCK_UN); } - // For debugging purposes - if ($imap_general_debug) { - echo "$read
\n"; - flush(); - } - } while (true); - - $response = $regs[1]; - $message = trim($regs[2]); - - if ($imap_general_debug) { - echo '--
'; } +} - if (!$handle_errors) { - return $data; - } +/** + * FIXME: Undocumented function + * @access private + */ +function filters_bulkquery($filters, $IPs) { + global $SpamFilters_YourHop, $attachment_dir, $username, + $SpamFilters_DNScache, $SpamFilters_BulkQuery, + $SpamFilters_CacheTTL; + + if (count($IPs) > 0) { + $rbls = array(); + foreach ($filters as $key => $value) { + if ($filters[$key]['enabled']) { + if ($filters[$key]['dns']) { + $rbls[$filters[$key]['dns']] = true; + } + } + } - if ($response == 'NO') { - // ignore this error from m$ exchange, it is not fatal (aka bug) - if (strstr($message, 'command resulted in') === false) { - set_up_language($squirrelmail_language); - echo "
\n" . - _("ERROR : Could not complete request.") . - "
\n" . - _("Reason Given: ") . - $message . "
\n"; - exit; + $bqfil = $attachment_dir . $username . '-bq.in'; + $fp = fopen($bqfil, 'w'); + fputs ($fp, $SpamFilters_CacheTTL . "\n"); + foreach ($rbls as $key => $value) { + fputs ($fp, '.' . $key . "\n"); + } + fputs ($fp, "----------\n"); + foreach ($IPs as $key => $value) { + fputs ($fp, $key . "\n"); } - } else if ($response == 'BAD') { - set_up_language($squirrelmail_language); - echo "
\n" . - _("ERROR : Bad or malformed request.") . - "
\n" . - _("Server responded: ") . - $message . "
\n"; - exit; + fclose ($fp); + $bqout = array(); + exec ($SpamFilters_BulkQuery . ' < ' . $bqfil, $bqout); + foreach ($bqout as $value) { + $Chunks = explode(',', $value); + $SpamFilters_DNScache[$Chunks[0]]['L'] = $Chunks[1]; + $SpamFilters_DNScache[$Chunks[0]]['T'] = $Chunks[2] + time(); + } + unlink($bqfil); } - - return $data; } - +/** + * FIXME: Undocumented function + * @access private + */ function start_filters() { - global $mailbox, $username, $key, $imapServerAddress, $imapPort, $imap, - $imap_general, $filters, $imap_stream, $imapConnection, - $UseSeparateImapConnection, $AllowSpamFilters; + global $mailbox, $imapServerAddress, $imapPort, $imap, + $imap_general, $filters, $imap_stream, $imapConnection, + $UseSeparateImapConnection, $AllowSpamFilters; + + sqgetGlobalVar('username', $username, SQ_SESSION); + sqgetGlobalVar('key', $key, SQ_COOKIE); - if ($mailbox == 'INBOX') { +# if ($mailbox == 'INBOX') { // Detect if we have already connected to IMAP or not. // Also check if we are forced to use a separate IMAP connection if ((!isset($imap_stream) && !isset($imapConnection)) || @@ -140,84 +162,144 @@ function start_filters() { if (!$previously_connected) { sqimap_logout($stream); } - } +# } } - +/** + * FIXME: Undocumented function + * @access private + */ function user_filters($imap_stream) { + global $data_dir, $username; $filters = load_filters(); if (! $filters) return; + $filters_user_scan = getPref($data_dir, $username, 'filters_user_scan'); sqimap_mailbox_select($imap_stream, 'INBOX'); - + $expunge = false; // For every rule - for ($i=0; $i < count($filters); $i++) { + for ($i=0, $num = count($filters); $i < $num; $i++) { // If it is the "combo" rule if ($filters[$i]['where'] == 'To or Cc') { /* * If it's "TO OR CC", we have to do two searches, one for TO * and the other for CC. */ - filter_search_and_delete($imap_stream, 'TO', - $filters[$i]['what'], $filters[$i]['folder']); - filter_search_and_delete($imap_stream, 'CC', - $filters[$i]['what'], $filters[$i]['folder']); + $expunge = filter_search_and_delete($imap_stream, 'TO', + $filters[$i]['what'], $filters[$i]['folder'], $filters_user_scan, $expunge); + $expunge = filter_search_and_delete($imap_stream, 'CC', + $filters[$i]['what'], $filters[$i]['folder'], $filters_user_scan, $expunge); } else { /* * If it's a normal TO, CC, SUBJECT, or FROM, then handle it * normally. */ - filter_search_and_delete($imap_stream, $filters[$i]['where'], - $filters[$i]['what'], $filters[$i]['folder']); + $expunge = filter_search_and_delete($imap_stream, $filters[$i]['where'], + $filters[$i]['what'], $filters[$i]['folder'], $filters_user_scan, $expunge); } } // Clean out the mailbox whether or not auto_expunge is on // That way it looks like it was redirected properly - sqimap_mailbox_expunge($imap_stream, 'INBOX'); + if ($expunge) { + sqimap_mailbox_expunge($imap_stream, 'INBOX'); + } } -function filter_search_and_delete($imap, $where, $what, $where_to) { - // Don't mess with the " characters on this fputs line! - fputs ($imap, 'a001 SEARCH ALL ' . $where . ' "' . addslashes($what) . - "\"\r\n"); - $read = filters_sqimap_read_data ($imap, 'a001', true, $response, $message); +/** + * FIXME: Undocumented function + * @access private + */ +function filter_search_and_delete($imap_stream, $where, $what, $where_to, $user_scan, + $should_expunge) { + global $languages, $squirrelmail_language, $allow_charset_search, $imap_server_type; + + if ($user_scan == 'new') { + $category = 'UNSEEN'; + } else { + $category = 'ALL'; + } + + if ($allow_charset_search && + isset($languages[$squirrelmail_language]['CHARSET']) && + $languages[$squirrelmail_language]['CHARSET']) { + $search_str = 'SEARCH CHARSET ' + . strtoupper($languages[$squirrelmail_language]['CHARSET']) + . ' ' . $category; + } else { + $search_str = 'SEARCH CHARSET US-ASCII ' . $category; + } + if ($where == 'Header') { + $what = explode(':', $what); + $where = trim($where . ' ' . $what[0]); + $what = addslashes(trim($what[1])); + } + + if ($imap_server_type == 'macosx') { + $search_str .= ' ' . $where . ' ' . $what; + } else { + $search_str .= ' ' . $where . ' {' . strlen($what) . "}\r\n" + . $what . "\r\n"; + } + + /* read data back from IMAP */ + $read = sqimap_run_command($imap_stream, $search_str, true, $response, $message, TRUE); // This may have problems with EIMS due to it being goofy - for ($r=0; $r < count($read) && + for ($r=0, $num = count($read); $r < $num && substr($read[$r], 0, 8) != '* SEARCH'; $r++) {} if ($response == 'OK') { $ids = explode(' ', $read[$r]); - if (sqimap_mailbox_exists($imap, $where_to)) { - for ($j=2; $j < count($ids); $j++) { + + if (sqimap_mailbox_exists($imap_stream, $where_to)) { + $del_id = array(); + for ($j=2, $num = count($ids); $j < $num; $j++) { $id = trim($ids[$j]); - sqimap_messages_copy ($imap, $id, $id, $where_to); - sqimap_messages_flag ($imap, $id, $id, 'Deleted'); + if (is_numeric($id)) { + $del_id[] = $id; + } + } + if (count($del_id)) { + $should_expunge = true; + sqimap_msgs_list_move ($imap_stream, $del_id, $where_to); + // sqimap_mailbox_expunge($imap_stream, 'INBOX'); } } } + return $should_expunge; } -// These are the spam filters +/** + * FIXME: Undocumented function + * @access private + */ function spam_filters($imap_stream) { global $data_dir, $username; global $SpamFilters_YourHop; global $SpamFilters_DNScache; + global $SpamFilters_SharedCache; + global $SpamFilters_BulkQuery; + global $SpamFilters_CacheTTL; $filters_spam_scan = getPref($data_dir, $username, 'filters_spam_scan'); $filters_spam_folder = getPref($data_dir, $username, 'filters_spam_folder'); $filters = load_spam_filters(); - $run = 0; + if ($SpamFilters_SharedCache) { + filters_LoadCache(); + } + + $run = false; - foreach ($filters as $Key=> $Value) { + foreach ($filters as $Key => $Value) { if ($Value['enabled']) { - $run ++; + $run = true; + break; } } // short-circuit - if ($run == 0) { + if (!$run) { return; } @@ -225,108 +307,121 @@ function spam_filters($imap_stream) { // Ask for a big list of all "Received" headers in the inbox with // flags for each message. Kinda big. - fputs($imap_stream, 'A3999 FETCH 1:* (FLAGS BODY.PEEK[HEADER.FIELDS ' . - "(RECEIVED)])\r\n"); - - $read = filters_sqimap_read_data ($imap_stream, 'A3999', true, - $response, $message); - - if ($response != 'OK') { + + // MGK, removed FLAGS from query. It wasn't used. + if ($filters_spam_scan != 'new') { + $query = 'FETCH 1:* (BODY.PEEK[HEADER.FIELDS (Received)])'; + } else { + $read = sqimap_run_command($imap_stream, 'SEARCH UNSEEN', true, $response, $message, TRUE); + if ($response != 'OK' || trim($read[0]) == '* SEARCH') { + $query = 'FETCH 1:* (BODY.PEEK[HEADER.FIELDS (RECEIVED)])'; + } else { + if (isset($read[0])) { + if (preg_match("/^\* SEARCH (.+)$/", $read[0], $regs)) { + $search_array = preg_split("/ /", trim($regs[1])); + } + } + $msgs_str = sqimap_message_list_squisher($search_array); + $query = 'FETCH ' . $msgs_str . ' (BODY.PEEK[HEADER.FIELDS (RECEIVED)])'; + } + } + $headers = filter_get_headers ($imap_stream, $query); + if (!$headers) { return; } - - $i = 0; - while ($i < count($read)) { - // EIMS will give funky results - $Chunks = explode(' ', $read[$i]); - if ($Chunks[0] != '*') { - $i ++; - continue; - } - $MsgNum = $Chunks[1]; - - $IPs = array(); - $i ++; - $IsSpam = 0; - $Scan = 1; - - // Check for normal IMAP servers - if ($filters_spam_scan == 'new') { - if (is_int(strpos($Chunks[4], '\Seen'))) { - $Scan = 0; - } + + $bulkquery = (strlen($SpamFilters_BulkQuery) > 0 ? true : false); + $IPs = array(); + $aSpamIds = array(); + foreach ($headers as $id => $aValue) { + if (isset($aValue['UID'])) { + $MsgNum = $aValue['UID']; + } else { + $MsgNum = $id; } - // Look through all of the Received headers for IP addresses - // Stop when I get ")" on a line - // Stop if I get "*" on a line (don't advance) - // and above all, stop if $i is bigger than the total # of lines - while (($i < count($read)) && - ($read[$i][0] != ')' && $read[$i][0] != '*' && - $read[$i][0] != "\n") && (! $IsSpam)) { - // Check to see if this line is the right "Received from" line - // to check - if (is_int(strpos($read[$i], $SpamFilters_YourHop))) { - - // short-circuit and skip work if we don't scan this one - if ($Scan) { - $read[$i] = ereg_replace('[^0-9\.]', ' ', $read[$i]); - $elements = explode(' ', $read[$i]); - foreach ($elements as $value) { - if ($value != '' && - ereg('[0-9]{1,3}\.[0-9]{1,3}\.[0-9]{1,3}\.[0-9]{1,3}', - $value, $regs)) { - $Chunks = explode('.', $value); - if (filters_spam_check_site($Chunks[0], - $Chunks[1], $Chunks[2], $Chunks[3], - $filters)) { - $IsSpam ++; - break; // no sense in checking more IPs - } - // If we've checked one IP and YourHop is - // just a space - if ($SpamFilters_YourHop == ' ') { - break; // don't check any more + if (isset($aValue['HEADER']['Received'])) { + foreach ($aValue['HEADER']['Received'] as $received) { + // Check to see if this line is the right "Received from" line + // to check + + // $aValue['HEADER']['Received'] is an array with all the received lines. + // We should check them from bottom to top and only check the first 2. + // Currently we check only the header where $SpamFilters_YourHop in occures + + if (is_int(strpos($received, $SpamFilters_YourHop))) { + if (preg_match('/([0-9]{1,3})\.([0-9]{1,3})\.([0-9]{1,3})\.([0-9]{1,3})/',$received,$aMatch)) { + $isspam = false; + if (filters_spam_check_site($aMatch[1],$aMatch[2],$aMatch[3],$aMatch[4],$filters)) { + $aSpamIds[] = $MsgNum; + $isspam = true; + } + if ($bulkquery) { + array_shift($aMatch); + $IP = explode('.',$aMatch); + foreach ($filters as $key => $value) { + if ($filters[$key]['enabled'] && $filters[$key]['dns']) { + if (strlen($SpamFilters_DNScache[$IP.'.'.$filters[$key]['dns']]) == 0) { + $IPs[$IP] = true; + break; + } + } } } + // If we've checked one IP and YourHop is + // just a space + if ($SpamFilters_YourHop == ' ' || $isspam) { + break; // don't check any more + } } } } - $i ++; - } - - // Lookie! It's spam! Yum! - if ($IsSpam) { - if (sqimap_mailbox_exists($imap_stream, $filters_spam_folder)) { - sqimap_messages_copy ($imap_stream, $MsgNum, $MsgNum, - $filters_spam_folder); - sqimap_messages_flag ($imap_stream, $MsgNum, $MsgNum, - 'Deleted'); - } - } else { } } + // Lookie! It's spam! Yum! + if (count($aSpamIds) && sqimap_mailbox_exists($imap_stream, $filters_spam_folder)) { + sqimap_msgs_list_move ($imap_stream, $aSpamIds, $filters_spam_folder); + sqimap_mailbox_expunge($imap_stream, 'INBOX'); + } - sqimap_mailbox_expunge($imap_stream, 'INBOX'); + if ($bulkquery && count($IPs)) { + filters_bulkquery($filters, $IPs); + } - session_register('SpamFilters_DNScache'); + if ($SpamFilters_SharedCache) { + filters_SaveCache(); + } else { + sqsession_register($SpamFilters_DNScache, 'SpamFilters_DNScache'); + } } - -// Does the loop through each enabled filter for the specified IP address. -// IP format: $a.$b.$c.$d +/** + * FIXME: Undocumented function + * Does the loop through each enabled filter for the specified IP address. + * IP format: $a.$b.$c.$d + * @access private + */ function filters_spam_check_site($a, $b, $c, $d, &$filters) { - global $SpamFilters_DNScache; + global $SpamFilters_DNScache, $SpamFilters_CacheTTL; foreach ($filters as $key => $value) { if ($filters[$key]['enabled']) { if ($filters[$key]['dns']) { $filter_revip = $d . '.' . $c . '.' . $b . '.' . $a . '.' . $filters[$key]['dns']; - if (strlen($SpamFilters_DNScache[$filter_revip]) == 0) { - $SpamFilters_DNScache[$filter_revip] = - gethostbyname($filter_revip); + + if(!isset($SpamFilters_DNScache[$filter_revip]['L'])) + $SpamFilters_DNScache[$filter_revip]['L'] = ''; + + if(!isset($SpamFilters_DNScache[$filter_revip]['T'])) + $SpamFilters_DNScache[$filter_revip]['T'] = ''; + + if (strlen($SpamFilters_DNScache[$filter_revip]['L']) == 0) { + $SpamFilters_DNScache[$filter_revip]['L'] = + gethostbyname($filter_revip); + $SpamFilters_DNScache[$filter_revip]['T'] = + time() + $SpamFilters_CacheTTL; } - if ($SpamFilters_DNScache[$filter_revip] == + if ($SpamFilters_DNScache[$filter_revip]['L'] == $filters[$key]['result']) { return 1; } @@ -336,8 +431,13 @@ function filters_spam_check_site($a, $b, $c, $d, &$filters) { return 0; } +/** + * FIXME: Undocumented function + * @access private + */ function load_filters() { global $data_dir, $username; + $filters = array(); for ($i=0; $fltr = getPref($data_dir, $username, 'filter' . $i); $i++) { $ary = explode(',', $fltr); @@ -348,120 +448,62 @@ function load_filters() { return $filters; } +/** + * FIXME: Undocumented function + * @access private + */ function load_spam_filters() { - global $data_dir, $username; - - $filters['MAPS RBL']['prefname'] = 'filters_spam_maps_rbl'; - $filters['MAPS RBL']['name'] = 'MAPS Realtime Blackhole List'; - $filters['MAPS RBL']['link'] = 'http://www.mail-abuse.org/rbl/'; - $filters['MAPS RBL']['dns'] = 'blackholes.mail-abuse.org'; - $filters['MAPS RBL']['result'] = '127.0.0.2'; - $filters['MAPS RBL']['comment'] = - _("COMMERCIAL - This list contains servers that are verified spam senders. It is a pretty reliable list to scan spam from."); - - $filters['MAPS RSS']['prefname'] = 'filters_spam_maps_rss'; - $filters['MAPS RSS']['name'] = 'MAPS Relay Spam Stopper'; - $filters['MAPS RSS']['link'] = 'http://www.mail-abuse.org/rss/'; - $filters['MAPS RSS']['dns'] = 'relays.mail-abuse.org'; - $filters['MAPS RSS']['result'] = '127.0.0.2'; - $filters['MAPS RSS']['comment'] = - _("COMMERCIAL - Servers that are configured (or misconfigured) to allow spam to be relayed through their system will be banned with this. Another good one to use."); - - $filters['MAPS DUL']['prefname'] = 'filters_spam_maps_dul'; - $filters['MAPS DUL']['name'] = 'MAPS Dial-Up List'; - $filters['MAPS DUL']['link'] = 'http://www.mail-abuse.org/dul/'; - $filters['MAPS DUL']['dns'] = 'dialups.mail-abuse.org'; - $filters['MAPS DUL']['result'] = '127.0.0.3'; - $filters['MAPS DUL']['comment'] = - _("COMMERCIAL - Dial-up users are often filtered out since they should use their ISP's mail servers to send mail. Spammers typically get a dial-up account and send spam directly from there."); - - $filters['MAPS RBLplus-RBL']['prefname'] = 'filters_spam_maps_rblplus_rbl'; - $filters['MAPS RBLplus-RBL']['name'] = 'MAPS RBL+ RBL List'; - $filters['MAPS RBLplus-RBL']['link'] = 'http://www.mail-abuse.org/'; - $filters['MAPS RBLplus-RBL']['dns'] = 'rbl-plus.mail-abuse.org'; - $filters['MAPS RBLplus-RBL']['result'] = '127.0.0.2'; - $filters['MAPS RBLplus-RBL']['comment'] = - _("COMMERCIAL - RBL+ Blackhole entries."); - - $filters['MAPS RBLplus-RSS']['prefname'] = 'filters_spam_maps_rblplus_rss'; - $filters['MAPS RBLplus-RSS']['name'] = 'MAPS RBL+ List RSS entries'; - $filters['MAPS RBLplus-RSS']['link'] = 'http://www.mail-abuse.org/'; - $filters['MAPS RBLplus-RSS']['dns'] = 'rbl-plus.mail-abuse.org'; - $filters['MAPS RBLplus-RSS']['result'] = '127.0.0.2'; - $filters['MAPS RBLplus-RSS']['comment'] = - _("COMMERCIAL - RBL+ OpenRelay entries."); - - $filters['MAPS RBLplus-DUL']['prefname'] = 'filters_spam_maps_rblplus_dul'; - $filters['MAPS RBLplus-DUL']['name'] = 'MAPS RBL+ List DUL entries'; - $filters['MAPS RBLplus-DUL']['link'] = 'http://www.mail-abuse.org/'; - $filters['MAPS RBLplus-DUL']['dns'] = 'rbl-plus.mail-abuse.org'; - $filters['MAPS RBLplus-DUL']['result'] = '127.0.0.3'; - $filters['MAPS RBLplus-DUL']['comment'] = - _("COMMERCIAL - RBL+ Dial-up entries."); - - $filters['Osirusoft Relays']['prefname'] = 'filters_spam_maps_osirusoft_relay'; - $filters['Osirusoft Relays']['name'] = 'Osirusoft Relay List'; - $filters['Osirusoft Relays']['link'] = 'http://relays.osirusoft.com/'; - $filters['Osirusoft Relays']['dns'] = 'relays.osirusoft.com'; - $filters['Osirusoft Relays']['result'] = '127.0.0.2'; - $filters['Osirusoft Relays']['comment'] = - _("FREE - Osirusoft Relays - Osirusofts list of verified open relays. Seems to include servers used by abuse@uunet.net auto-replies too."); - - $filters['Osirusoft DUL']['prefname'] = 'filters_spam_maps_osirusoft_dul'; - $filters['Osirusoft DUL']['name'] = 'Osirusoft Dialup List'; - $filters['Osirusoft DUL']['link'] = 'http://relays.osirusoft.com/'; - $filters['Osirusoft DUL']['dns'] = 'relays.osirusoft.com'; - $filters['Osirusoft DUL']['result'] = '127.0.0.3'; - $filters['Osirusoft DUL']['comment'] = - _("FREE - Osirusoft Dialups - Osirusofts Dialup Spam Source list."); - - $filters['Osirusoft Spam Source']['prefname'] = 'filters_spam_maps_osirusoft_rc'; - $filters['Osirusoft Spam Source']['name'] = 'Osirusoft Confirmed Spam Source List'; - $filters['Osirusoft Spam Source']['link'] = 'http://relays.osirusoft.com/'; - $filters['Osirusoft Spam Source']['dns'] = 'relays.osirusoft.com'; - $filters['Osirusoft Spam Source']['result'] = '127.0.0.4'; - $filters['Osirusoft Spam Source']['comment'] = - _("FREE - Osirusoft Confirmed Spam Source - Sites that continually spam and have been manually added after multiple nominations. Use with caution. Seems to catch abuse auto-replies from some ISPs."); - - $filters['Osirusoft Smart Host']['prefname'] = 'filters_spam_maps_osirusoft_sh'; - $filters['Osirusoft Smart Host']['name'] = 'Osirusoft Smart Host List'; - $filters['Osirusoft Smart Host']['link'] = 'http://relays.osirusoft.com/'; - $filters['Osirusoft Smart Host']['dns'] = 'relays.osirusoft.com'; - $filters['Osirusoft Smart Host']['result'] = '127.0.0.5'; - $filters['Osirusoft Smart Host']['comment'] = - _("FREE - Osirusoft Smart Hosts - List of hosts that are secure but relay for other mail servers that are not secure."); - - $filters['Osirusoft SPAMware']['prefname'] = 'filters_spam_maps_osirusoft_ss'; - $filters['Osirusoft SPAMware']['name'] = 'Osirusoft Spamware Developers List'; - $filters['Osirusoft SPAMware']['link'] = 'http://relays.osirusoft.com/'; - $filters['Osirusoft SPAMware']['dns'] = 'relays.osirusoft.com'; - $filters['Osirusoft SPAMware']['result'] = '127.0.0.6'; - $filters['Osirusoft SPAMware']['comment'] = - _("FREE - Osirusoft Spamware Developers - It is believed that these are IP ranges of companies that are known to produce spam software. Seems to catch abuse auto-replies from some ISPs."); - - $filters['Osirusoft Unc. OptIn']['prefname'] = 'filters_spam_maps_osirusoft_sl'; - $filters['Osirusoft Unc. OptIn']['name'] = 'Osirusoft Unconfirmed OptIn Server List'; - $filters['Osirusoft Unc. OptIn']['link'] = 'http://relays.osirusoft.com/'; - $filters['Osirusoft Unc. OptIn']['dns'] = 'relays.osirusoft.com'; - $filters['Osirusoft Unc. OptIn']['result'] = '127.0.0.7'; - $filters['Osirusoft Unc. OptIn']['comment'] = - _("FREE - Osirusoft Unconfirmed OptIn Servers - List of listservers that opt users in without confirmation."); - - $filters['Osirusoft Insecure Formmail']['prefname'] = 'filters_spam_maps_osirusoft_fm'; - $filters['Osirusoft Insecure Formmail']['name'] = 'Osirusoft Insecure formmail.cvi Script List'; - $filters['Osirusoft Insecure Formmail']['link'] = 'http://relays.osirusoft.com/'; - $filters['Osirusoft Insecure Formmail']['dns'] = 'relays.osirusoft.com'; - $filters['Osirusoft Insecure Formmail']['result'] = '127.0.0.8'; - $filters['Osirusoft Insecure Formmail']['comment'] = - _("FREE - Osirusoft Insecure formmail.cgi scripts - List of insecure formmail.cgi scripts. (planned)."); - - $filters['Osirusoft Open Proxy']['prefname'] = 'filters_spam_maps_osirusoft_op'; - $filters['Osirusoft Open Proxy']['name'] = 'Osirusoft Open Proxy Server List'; - $filters['Osirusoft Open Proxy']['link'] = 'http://relays.osirusoft.com/'; - $filters['Osirusoft Open Proxy']['dns'] = 'relays.osirusoft.com'; - $filters['Osirusoft Open Proxy']['result'] = '127.0.0.9'; - $filters['Osirusoft Open Proxy']['comment'] = - _("FREE - Osirusoft Open Proxy Servers - List of Open Proxy Servers."); + global $data_dir, $username, $SpamFilters_ShowCommercial; + + if ($SpamFilters_ShowCommercial) { + $filters['MAPS RBL']['prefname'] = 'filters_spam_maps_rbl'; + $filters['MAPS RBL']['name'] = 'MAPS Realtime Blackhole List'; + $filters['MAPS RBL']['link'] = 'http://www.mail-abuse.org/rbl/'; + $filters['MAPS RBL']['dns'] = 'blackholes.mail-abuse.org'; + $filters['MAPS RBL']['result'] = '127.0.0.2'; + $filters['MAPS RBL']['comment'] = + _("COMMERCIAL - This list contains servers that are verified spam senders. It is a pretty reliable list to scan spam from."); + + $filters['MAPS RSS']['prefname'] = 'filters_spam_maps_rss'; + $filters['MAPS RSS']['name'] = 'MAPS Relay Spam Stopper'; + $filters['MAPS RSS']['link'] = 'http://www.mail-abuse.org/rss/'; + $filters['MAPS RSS']['dns'] = 'relays.mail-abuse.org'; + $filters['MAPS RSS']['result'] = '127.0.0.2'; + $filters['MAPS RSS']['comment'] = + _("COMMERCIAL - Servers that are configured (or misconfigured) to allow spam to be relayed through their system will be banned with this. Another good one to use."); + + $filters['MAPS DUL']['prefname'] = 'filters_spam_maps_dul'; + $filters['MAPS DUL']['name'] = 'MAPS Dial-Up List'; + $filters['MAPS DUL']['link'] = 'http://www.mail-abuse.org/dul/'; + $filters['MAPS DUL']['dns'] = 'dialups.mail-abuse.org'; + $filters['MAPS DUL']['result'] = '127.0.0.3'; + $filters['MAPS DUL']['comment'] = + _("COMMERCIAL - Dial-up users are often filtered out since they should use their ISP's mail servers to send mail. Spammers typically get a dial-up account and send spam directly from there."); + + $filters['MAPS RBLplus-RBL']['prefname'] = 'filters_spam_maps_rblplus_rbl'; + $filters['MAPS RBLplus-RBL']['name'] = 'MAPS RBL+ RBL List'; + $filters['MAPS RBLplus-RBL']['link'] = 'http://www.mail-abuse.org/'; + $filters['MAPS RBLplus-RBL']['dns'] = 'rbl-plus.mail-abuse.org'; + $filters['MAPS RBLplus-RBL']['result'] = '127.0.0.2'; + $filters['MAPS RBLplus-RBL']['comment'] = + _("COMMERCIAL - RBL+ Blackhole entries."); + + $filters['MAPS RBLplus-RSS']['prefname'] = 'filters_spam_maps_rblplus_rss'; + $filters['MAPS RBLplus-RSS']['name'] = 'MAPS RBL+ List RSS entries'; + $filters['MAPS RBLplus-RSS']['link'] = 'http://www.mail-abuse.org/'; + $filters['MAPS RBLplus-RSS']['dns'] = 'rbl-plus.mail-abuse.org'; + $filters['MAPS RBLplus-RSS']['result'] = '127.0.0.2'; + $filters['MAPS RBLplus-RSS']['comment'] = + _("COMMERCIAL - RBL+ OpenRelay entries."); + + $filters['MAPS RBLplus-DUL']['prefname'] = 'filters_spam_maps_rblplus_dul'; + $filters['MAPS RBLplus-DUL']['name'] = 'MAPS RBL+ List DUL entries'; + $filters['MAPS RBLplus-DUL']['link'] = 'http://www.mail-abuse.org/'; + $filters['MAPS RBLplus-DUL']['dns'] = 'rbl-plus.mail-abuse.org'; + $filters['MAPS RBLplus-DUL']['result'] = '127.0.0.3'; + $filters['MAPS RBLplus-DUL']['comment'] = + _("COMMERCIAL - RBL+ Dial-up entries."); + } $filters['ORDB']['prefname'] = 'filters_spam_ordb'; $filters['ORDB']['name'] = 'Open Relay Database List'; @@ -471,22 +513,6 @@ function load_spam_filters() { $filters['ORDB']['comment'] = _("FREE - ORDB was born when ORBS went off the air. It seems to have fewer false positives than ORBS did though."); - $filters['ORBZ Inputs']['prefname'] = 'filters_spam_orbz'; - $filters['ORBZ Inputs']['name'] = 'ORBZ Inputs List'; - $filters['ORBZ Inputs']['link'] = 'http://www.orbz.org/'; - $filters['ORBZ Inputs']['dns'] = 'inputs.orbz.org'; - $filters['ORBZ Inputs']['result'] = '127.0.0.2'; - $filters['ORBZ Inputs']['comment'] = - _("FREE - Another ORBS replacement (just the INPUTS database used here)."); - - $filters['ORBZ Outputs']['prefname'] = 'filters_spam_orbz_outputs'; - $filters['ORBZ Outputs']['name'] = 'ORBZ Outputs List'; - $filters['ORBZ Outputs']['link'] = 'http://www.orbz.org/'; - $filters['ORBZ Outputs']['dns'] = 'outputs.orbz.org'; - $filters['ORBZ Outputs']['result'] = '127.0.0.2'; - $filters['ORBZ Outputs']['comment'] = - _("FREE - Another ORBS replacement (just the OUTPUTS database used here)."); - $filters['FiveTen Direct']['prefname'] = 'filters_spam_fiveten_src'; $filters['FiveTen Direct']['name'] = 'Five-Ten-sg.com Direct SPAM Sources'; $filters['FiveTen Direct']['link'] = 'http://www.five-ten-sg.com/blackhole.php'; @@ -565,7 +591,135 @@ function load_spam_filters() { $filters['SPAMcop']['dns'] = 'bl.spamcop.net'; $filters['SPAMcop']['result'] = '127.0.0.2'; $filters['SPAMcop']['comment'] = - _("FREE, for now - SPAMCOP - An interesting solution that lists servers that have a very high spam to legit email ratio (85% or more)."); + _("FREE, for now - SPAMCOP - An interesting solution that lists servers that have a very high spam to legit email ratio (85 percent or more)."); + + $filters['dev.null.dk']['prefname'] = 'filters_spam_devnull'; + $filters['dev.null.dk']['name'] = 'dev.null.dk Lists'; + $filters['dev.null.dk']['link'] = 'http://dev.null.dk/'; + $filters['dev.null.dk']['dns'] = 'dev.null.dk'; + $filters['dev.null.dk']['result'] = '127.0.0.2'; + $filters['dev.null.dk']['comment'] = + _("FREE - dev.null.dk - I don't have any detailed info on this list."); + + $filters['visi.com']['prefname'] = 'filters_spam_visi'; + $filters['visi.com']['name'] = 'visi.com Relay Stop List'; + $filters['visi.com']['link'] = 'http://relays.visi.com'; + $filters['visi.com']['dns'] = 'relays.visi.com'; + $filters['visi.com']['result'] = '127.0.0.2'; + $filters['visi.com']['comment'] = + _("FREE - visi.com - Relay Stop List. Very conservative OpenRelay List."); + + $filters['ahbl.org Open Relays']['prefname'] = 'filters_spam_2mb_or'; + $filters['ahbl.org Open Relays']['name'] = 'ahbl.org Open Relays List'; + $filters['ahbl.org Open Relays']['link'] = 'http://www.ahbl.org/'; + $filters['ahbl.org Open Relays']['dns'] = 'dnsbl.ahbl.org'; + $filters['ahbl.org Open Relays']['result'] = '127.0.0.2'; + $filters['ahbl.org Open Relays']['comment'] = + _("FREE - ahbl.org Open Relays - Another list of Open Relays."); + + $filters['ahbl.org SPAM Source']['prefname'] = 'filters_spam_2mb_ss'; + $filters['ahbl.org SPAM Source']['name'] = 'ahbl.org SPAM Source List'; + $filters['ahbl.org SPAM Source']['link'] = 'http://www.ahbl.org/'; + $filters['ahbl.org SPAM Source']['dns'] = 'dnsbl.ahbl.org'; + $filters['ahbl.org SPAM Source']['result'] = '127.0.0.4'; + $filters['ahbl.org SPAM Source']['comment'] = + _("FREE - ahbl.org SPAM Source - List of Direct SPAM Sources."); + + $filters['ahbl.org SPAM ISPs']['prefname'] = 'filters_spam_2mb_isp'; + $filters['ahbl.org SPAM ISPs']['name'] = 'ahbl.org SPAM-friendly ISP List'; + $filters['ahbl.org SPAM ISPs']['link'] = 'http://www.ahbl.org/'; + $filters['ahbl.org SPAM ISPs']['dns'] = 'dnsbl.ahbl.org'; + $filters['ahbl.org SPAM ISPs']['result'] = '127.0.0.7'; + $filters['ahbl.org SPAM ISPs']['comment'] = + _("FREE - ahbl.org SPAM ISPs - List of SPAM-friendly ISPs."); + + $filters['Leadmon DUL']['prefname'] = 'filters_spam_lm_dul'; + $filters['Leadmon DUL']['name'] = 'Leadmon.net DUL List'; + $filters['Leadmon DUL']['link'] = 'http://www.leadmon.net/spamguard/'; + $filters['Leadmon DUL']['dns'] = 'spamguard.leadmon.net'; + $filters['Leadmon DUL']['result'] = '127.0.0.2'; + $filters['Leadmon DUL']['comment'] = + _("FREE - Leadmon DUL - Another list of Dial-up or otherwise dynamically assigned IPs."); + + $filters['Leadmon SPAM Source']['prefname'] = 'filters_spam_lm_ss'; + $filters['Leadmon SPAM Source']['name'] = 'Leadmon.net SPAM Source List'; + $filters['Leadmon SPAM Source']['link'] = 'http://www.leadmon.net/spamguard/'; + $filters['Leadmon SPAM Source']['dns'] = 'spamguard.leadmon.net'; + $filters['Leadmon SPAM Source']['result'] = '127.0.0.3'; + $filters['Leadmon SPAM Source']['comment'] = + _("FREE - Leadmon SPAM Source - List of IPs Leadmon.net has received SPAM directly from."); + + $filters['Leadmon Bulk Mailers']['prefname'] = 'filters_spam_lm_bm'; + $filters['Leadmon Bulk Mailers']['name'] = 'Leadmon.net Bulk Mailers List'; + $filters['Leadmon Bulk Mailers']['link'] = 'http://www.leadmon.net/spamguard/'; + $filters['Leadmon Bulk Mailers']['dns'] = 'spamguard.leadmon.net'; + $filters['Leadmon Bulk Mailers']['result'] = '127.0.0.4'; + $filters['Leadmon Bulk Mailers']['comment'] = + _("FREE - Leadmon Bulk Mailers - Bulk mailers that do not require confirmed opt-in or that have allowed known spammers to become clients and abuse their services."); + + $filters['Leadmon Open Relays']['prefname'] = 'filters_spam_lm_or'; + $filters['Leadmon Open Relays']['name'] = 'Leadmon.net Open Relays List'; + $filters['Leadmon Open Relays']['link'] = 'http://www.leadmon.net/spamguard/'; + $filters['Leadmon Open Relays']['dns'] = 'spamguard.leadmon.net'; + $filters['Leadmon Open Relays']['result'] = '127.0.0.5'; + $filters['Leadmon Open Relays']['comment'] = + _("FREE - Leadmon Open Relays - Single Stage Open Relays that are not listed on other active RBLs."); + + $filters['Leadmon Multi-stage']['prefname'] = 'filters_spam_lm_ms'; + $filters['Leadmon Multi-stage']['name'] = 'Leadmon.net Multi-Stage Relay List'; + $filters['Leadmon Multi-stage']['link'] = 'http://www.leadmon.net/spamguard/'; + $filters['Leadmon Multi-stage']['dns'] = 'spamguard.leadmon.net'; + $filters['Leadmon Multi-stage']['result'] = '127.0.0.6'; + $filters['Leadmon Multi-stage']['comment'] = + _("FREE - Leadmon Multi-stage - Multi-Stage Open Relays that are not listed on other active RBLs and that have sent SPAM to Leadmon.net."); + + $filters['Leadmon SpamBlock']['prefname'] = 'filters_spam_lm_sb'; + $filters['Leadmon SpamBlock']['name'] = 'Leadmon.net SpamBlock Sites List'; + $filters['Leadmon SpamBlock']['link'] = 'http://www.leadmon.net/spamguard/'; + $filters['Leadmon SpamBlock']['dns'] = 'spamguard.leadmon.net'; + $filters['Leadmon SpamBlock']['result'] = '127.0.0.7'; + $filters['Leadmon SpamBlock']['comment'] = + _("FREE - Leadmon SpamBlock - Sites on this listing have sent Leadmon.net direct SPAM from IPs in netblocks where the entire block has no DNS mappings. It's a list of BLOCKS of IPs being used by people who have SPAMmed Leadmon.net."); + + $filters['NJABL Open Relays']['prefname'] = 'filters_spam_njabl_or'; + $filters['NJABL Open Relays']['name'] = 'NJABL Open Relay/Direct Spam Source List'; + $filters['NJABL Open Relays']['link'] = 'http://www.njabl.org/'; + $filters['NJABL Open Relays']['dns'] = 'dnsbl.njabl.org'; + $filters['NJABL Open Relays']['result'] = '127.0.0.2'; + $filters['NJABL Open Relays']['comment'] = + _("FREE, for now - Not Just Another Blacklist - Both Open Relays and Direct SPAM Sources."); + + $filters['NJABL DUL']['prefname'] = 'filters_spam_njabl_dul'; + $filters['NJABL DUL']['name'] = 'NJABL Dial-ups List'; + $filters['NJABL DUL']['link'] = 'http://www.njabl.org/'; + $filters['NJABL DUL']['dns'] = 'dnsbl.njabl.org'; + $filters['NJABL DUL']['result'] = '127.0.0.3'; + $filters['NJABL DUL']['comment'] = + _("FREE, for now - Not Just Another Blacklist - Dial-up IPs."); + + $filters['Conf DSBL.ORG Relay']['prefname'] = 'filters_spam_dsbl_conf_ss'; + $filters['Conf DSBL.ORG Relay']['name'] = 'DSBL.org Confirmed Relay List'; + $filters['Conf DSBL.ORG Relay']['link'] = 'http://www.dsbl.org/'; + $filters['Conf DSBL.ORG Relay']['dns'] = 'list.dsbl.org'; + $filters['Conf DSBL.ORG Relay']['result'] = '127.0.0.2'; + $filters['Conf DSBL.ORG Relay']['comment'] = + _("FREE - Distributed Sender Boycott List - Confirmed Relays"); + + $filters['Conf DSBL.ORG Multi-Stage']['prefname'] = 'filters_spam_dsbl_conf_ms'; + $filters['Conf DSBL.ORG Multi-Stage']['name'] = 'DSBL.org Confirmed Multi-Stage Relay List'; + $filters['Conf DSBL.ORG Multi-Stage']['link'] = 'http://www.dsbl.org/'; + $filters['Conf DSBL.ORG Multi-Stage']['dns'] = 'multihop.dsbl.org'; + $filters['Conf DSBL.ORG Multi-Stage']['result'] = '127.0.0.2'; + $filters['Conf DSBL.ORG Multi-Stage']['comment'] = + _("FREE - Distributed Sender Boycott List - Confirmed Multi-stage Relays"); + + $filters['UN-Conf DSBL.ORG']['prefname'] = 'filters_spam_dsbl_unc'; + $filters['UN-Conf DSBL.ORG']['name'] = 'DSBL.org UN-Confirmed Relay List'; + $filters['UN-Conf DSBL.ORG']['link'] = 'http://www.dsbl.org/'; + $filters['UN-Conf DSBL.ORG']['dns'] = 'unconfirmed.dsbl.org'; + $filters['UN-Conf DSBL.ORG']['result'] = '127.0.0.2'; + $filters['UN-Conf DSBL.ORG']['comment'] = + _("FREE - Distributed Sender Boycott List - UN-Confirmed Relays"); foreach ($filters as $Key => $Value) { $filters[$Key]['enabled'] = getPref($data_dir, $username, @@ -575,6 +729,10 @@ function load_spam_filters() { return $filters; } +/** + * FIXME: Undocumented function + * @access private + */ function remove_filter ($id) { global $data_dir, $username; @@ -587,6 +745,10 @@ function remove_filter ($id) { removePref($data_dir, $username, 'filter' . $id); } +/** + * FIXME: Undocumented function + * @access private + */ function filter_swap($id1, $id2) { global $data_dir, $username; @@ -598,4 +760,169 @@ function filter_swap($id1, $id2) { setPref($data_dir, $username, 'filter' . $id1, $SecondFilter); } } + +/** + * This update the filter rules when renaming or deleting folders + * @param array $args + */ +function update_for_folder ($args) { + $old_folder = $args[0]; + $new_folder = $args[2]; + $action = $args[1]; + global $plugins, $data_dir, $username; + $filters = array(); + $filters = load_filters(); + $filter_count = count($filters); + $p = 0; + for ($i=0;$i<$filter_count;$i++) { + if (!empty($filters)) { + if ($old_folder == $filters[$i]['folder']) { + if ($action == 'rename') { + $filters[$i]['folder'] = $new_folder; + setPref($data_dir, $username, 'filter'.$i, + $filters[$i]['where'].','.$filters[$i]['what'].','.$new_folder); + } + elseif ($action == 'delete') { + remove_filter($p); + $p = $p-1; + } + } + $p++; + } + } +} + +/** + * Function extracted from sqimap_get_small_header_list. + * The unused FETCH arguments and HEADERS are disabled. + * @access private + */ +function filter_get_headers ($imap_stream, $query) { + /* Get the small headers for each message in $msg_list */ + + $read_list = sqimap_run_command_list ($imap_stream, $query, false, $response, $message, TRUE); + + if (isset($response) && $response != 'OK') { + return false; + } + + + foreach ($read_list as $r) { + $read = implode('',$r); + /* + * #idFETCH( + */ + /* extract the message id */ + $i_space = strpos($read,' ',2); + $id = substr($read,2,$i_space-2); + $fetch = substr($read,$i_space+1,5); + if (!is_numeric($id) && $fetch !== 'FETCH') { + set_up_language($squirrelmail_language); + echo '
' . + _("ERROR : Could not complete request.") . + '
' . + _("Unknown response from IMAP server: ") . ' 1.' . + htmlspecialchars($read) . "
\n"; + break; + } + $i = strpos($read,'(',$i_space+5); + $read = substr($read,$i+1); + $i_len = strlen($read); + $i = 0; + while ($i < $i_len && $i !== false) { + /* get argument */ + $read = trim(substr($read,$i)); + $i_len = strlen($read); + $i = strpos($read,' '); + $arg = substr($read,0,$i); + ++$i; + switch ($arg) + { + case 'UID': + $i_pos = strpos($read,' ',$i); + if (!$i_pos) { + $i_pos = strpos($read,')',$i); + } + if ($i_pos) { + $unique_id = substr($read,$i,$i_pos-$i); + $i = $i_pos+1; + } else { + break 3; + } + $msgs[$id]['UID'] = $unique_id; + break; + // case 'FLAGS': + // $flags = parseArray($read,$i); + // if (!$flags) break 3; + // $msgs[$id]['FLAGS'] = $flags; + // break; + // case 'RFC822.SIZE': + // $i_pos = strpos($read,' ',$i); + // if (!$i_pos) { + // $i_pos = strpos($read,')',$i); + // } + // if ($i_pos) { + // $size = substr($read,$i,$i_pos-$i); + // $i = $i_pos+1; + // } else { + // break 3; + // } + // $msgs[$id]['SIZE'] = $size; + // + // break; + // case 'INTERNALDATE': + // $msgs[$id]['INTERNALDATE'] = parseString($read,$i); + // break; + case 'BODY.PEEK[HEADER.FIELDS': + case 'BODY[HEADER.FIELDS': + $i = strpos($read,'{',$i); + $header = parseString($read,$i); + if ($header === false) break 3; + /* First we unfold the header */ + $hdr = trim(str_replace(array("\r\n\t", "\r\n "),array('', ''), $header)); + /* Now we can make a new header array with */ + /* each element representing a headerline */ + $hdr = explode("\r\n" , $hdr); + foreach ($hdr as $line) { + $pos = strpos($line, ':'); + if ($pos > 0) { + $field = strtolower(substr($line, 0, $pos)); + if (!strstr($field,' ')) { /* valid field */ + $value = trim(substr($line, $pos+1)); + switch($field) { + case 'received': $msgs[$id]['HEADER']['Received'][] = $value; break; + // case 'to': $msgs[$id]['HEADER']['To']= $value; break; + // case 'cc': $msgs[$id]['HEADER']['Cc'] = $value; break; + // case 'from': $msgs[$id]['HEADER']['From'] = $value; break; + // case 'date': $msgs[$id]['HEADER']['Date'] = $value; break; + // case 'x-priority': $msgs[$id]['HEADER']['Prio'] = $value; break; + // case 'subject': $msgs[$id]['HEADER']['Subject'] = $value; break; + // case 'content-type':$msgs[$id]['HEADER']['Content-Type'] = $value; break; + default: break; + } + } + } + } + break; + default: + ++$i; + break; + } + } + } + return $msgs; +} + +/** + * Display formated error message + * @param string $string text message + * @return string html formated text message + * @access private + */ +function do_error($string) { + global $color; + echo "

"; + echo $string; + echo "

\n"; +} ?>