Ok, I was a quiet for a while because what started as a quick hack is now a
700+ line file :-) and I was recently pulling my hair because exim was
corrupting my buffers (turns out, it apparently reclaims memory allocated by
string_sprintf/copy after the local_scan function is run, even if the
process keeps running (I used static allocation in the function to store the
config file values instead of re-reading them every time))
Anyway, the code is hopefully ready for brave people to use (it's been
running on my mail server with no problems now), and it's easy to turn off
if needed. It can also pass on mails untouched if it hits any error (and I
check for just about any kind of error)
What you get is this:
----------------------------------------------------------------------------
mail from: merlin@gandalf
250 OK
rcpt to: merlin@gandalf
250 Accepted
data
354 Enter message, ending with "." on a line by itself
From: merlin@gandalf
To: merlin@gandalf
Subject: $$$ Make Money Fast $$$ !!!
viagra 100% GARANTEE AMAZING FULL REFUND
This is not spam
.
550-Heuristics guessed that this message was spam:
550 hits=14.8 required=1.0 trigger=12.0
----------------------------------------------------------------------------
Actually, you get more options, as shown here:
http://marc.merlins.org/linux/exim/demo.txt
You can find the code (source and pre-built debian package) here:
http://marc.merlins.org/linux/exim/sa.html
Cheers,
Marc
--
Microsoft is to operating systems & security ....
.... what McDonalds is to gourmet cooking
Home page:
http://marc.merlins.org/ | Finger marc_f@??? for PGP key