lfd notifications: flagged as spam - missing and malformed headers
Posted: 12 Nov 2015, 05:39
I recently began outgoing spam filtering on my server and with a score of 5. Lfd notifications are being picked up as spam because they are missing the date and message ID headers:
cached not
score=8.787
5 required
-1.00 ALL_TRUSTED
0.80 BAYES_50
1.08 FROM_IN_TO_AND_SUBJ
1.36 MISSING_DATE
1.60 MISSING_MID
0.10 TO_IN_SUBJ
2.10 TO_MALFORMED
0.00 TVD_SPACE_RATIO
2.75 TVD_SPACE_RATIO_MINFP
Here is the raw source of the notification that triggered the above. I've removed my server hostname, IP and internet connection hostname but it should still be understandable.
Received: from [127.0.0.1] (port=50999 helo=localhost.localdomain)
by host.server.com with esmtp (Exim 4.86)
(envelope-from <root@host.server.com>)
id 1ZwjIv-0014Lk-Vb
for root@host.server.com; Thu, 12 Nov 2015 00:46:10 -0330
From: root
To: root
Subject: lfd on host.server.com: WHM/cPanel root access alert from 1.1.1.1 (CA/Canada/<My internet connection naming>)
Time: Thu Nov 12 00:45:59 2015 -0330
IP: 1.1.1.1 (CA/Canada/<My internet connection naming>)
User: root
cached not
score=8.787
5 required
-1.00 ALL_TRUSTED
0.80 BAYES_50
1.08 FROM_IN_TO_AND_SUBJ
1.36 MISSING_DATE
1.60 MISSING_MID
0.10 TO_IN_SUBJ
2.10 TO_MALFORMED
0.00 TVD_SPACE_RATIO
2.75 TVD_SPACE_RATIO_MINFP
Here is the raw source of the notification that triggered the above. I've removed my server hostname, IP and internet connection hostname but it should still be understandable.
Received: from [127.0.0.1] (port=50999 helo=localhost.localdomain)
by host.server.com with esmtp (Exim 4.86)
(envelope-from <root@host.server.com>)
id 1ZwjIv-0014Lk-Vb
for root@host.server.com; Thu, 12 Nov 2015 00:46:10 -0330
From: root
To: root
Subject: lfd on host.server.com: WHM/cPanel root access alert from 1.1.1.1 (CA/Canada/<My internet connection naming>)
Time: Thu Nov 12 00:45:59 2015 -0330
IP: 1.1.1.1 (CA/Canada/<My internet connection naming>)
User: root