You are viewing a plain text version of this content. The canonical link for it is here.
Posted to commits@spamassassin.apache.org by sp...@apache.org on 2023/01/13 08:30:11 UTC

svn commit: r1906652 - /spamassassin/trunk/rules/active.list

Author: spamassassin_role
Date: Fri Jan 13 08:30:11 2023
New Revision: 1906652

URL: http://svn.apache.org/viewvc?rev=1906652&view=rev
Log:
promotions validated

Modified:
    spamassassin/trunk/rules/active.list

Modified: spamassassin/trunk/rules/active.list
URL: http://svn.apache.org/viewvc/spamassassin/trunk/rules/active.list?rev=1906652&r1=1906651&r2=1906652&view=diff
==============================================================================
--- spamassassin/trunk/rules/active.list (original)
+++ spamassassin/trunk/rules/active.list Fri Jan 13 08:30:11 2023
@@ -248,7 +248,7 @@ BITCOIN_XPRIO
 # tflags publish
 BITCOIN_YOUR_INFO
 
-# tflags net
+# tflags publish
 BODY_URI_ONLY
 
 # tflags publish
@@ -305,6 +305,9 @@ DAY_I_EARNED
 # good enough
 DEAR_BENEFICIARY
 
+# good enough
+DEAR_EMAIL_USER
+
 # tflags net
 DIGEST_MULTIPLE
 
@@ -452,10 +455,10 @@ FONT_INVIS_POSTEXTRAS
 # tflags net
 FORGED_SPF_HELO
 
-# tflags net
+# tflags publish
 FORM_FRAUD
 
-# tflags net
+# tflags publish
 FORM_FRAUD_3
 
 # tflags publish
@@ -479,6 +482,9 @@ FREEM_FRNUM_UNICD_EMPTY
 # tflags publish
 FRNAME_IN_MSG_XPRIO_NO_SUB
 
+# good enough
+FROM_2_EMAILS_SHORT
+
 # tflags publish
 FROM_ADDR_WS
 
@@ -527,7 +533,7 @@ FROM_MISSP_FREEMAIL
 # good enough
 FROM_MISSP_MSFT
 
-# tflags net
+# good enough
 FROM_MISSP_REPLYTO
 
 # tflags net
@@ -716,9 +722,6 @@ HAS_X_NO_RELAY
 # tflags publish
 HAS_X_OUTGOING_SPAM_STAT
 
-# tflags net
-HDRS_LCASE
-
 # tflags publish
 HDRS_MISSP
 
@@ -803,7 +806,7 @@ HTML_OFF_PAGE
 # tflags publish
 HTML_SHRT_CMNT_OBFU_MANY
 
-# tflags net
+# tflags publish
 HTML_SINGLET_MANY
 
 # good enough
@@ -872,15 +875,9 @@ MALWARE_PASSWORD
 # tflags publish
 MALW_ATTACH
 
-# tflags net
-MANY_HDRS_LCASE
-
 # tflags publish
 MANY_SPAN_IN_TEXT
 
-# tflags net
-MAY_BE_FORGED
-
 # tflags publish
 MILLION_HUNDRED
 
@@ -1035,15 +1032,18 @@ PDS_BTC_MSGID
 PDS_DBL_URL_TNB_RUNON
 
 # tflags net
-PDS_FROM_2_EMAILS
-
-# tflags net
 PDS_HELO_SPF_FAIL
 
 # good enough
 PDS_NO_FULL_NAME_SPOOFED_URL
 
 # good enough
+PDS_PHPEXP_BOT
+
+# good enough
+PDS_PHP_EVAL
+
+# good enough
 PDS_RDNS_DYNAMIC_FP
 
 # good enough
@@ -1067,6 +1067,9 @@ PHP_NOVER_MUA
 # tflags publish
 PHP_ORIG_SCRIPT
 
+# good enough
+PHP_ORIG_SCRIPT_EVAL
+
 # tflags publish
 PHP_SCRIPT
 
@@ -1503,9 +1506,6 @@ SUBJECT_IN_WELCOMELIST
 SUBJ_BRKN_WORDNUMS
 
 # tflags net
-SUBJ_UNNEEDED_HTML
-
-# tflags net
 SURBL_BLOCKED
 
 # good enough
@@ -1526,13 +1526,13 @@ TAGSTAT_IMG_NOT_RCVD_TGST
 # tflags publish
 TARINGANET_IMG_NOT_RCVD_TN
 
-# tflags net
+# tflags publish
 TEQF_USR_IMAGE
 
 # tflags publish
 TEQF_USR_MSGID_HEX
 
-# tflags net
+# tflags publish
 TEQF_USR_MSGID_MALF
 
 # tflags publish
@@ -1592,12 +1592,6 @@ TVD_IP_OCT
 # good enough
 TVD_RCVD_SPACE_BRACKET
 
-# tflags net
-TVD_SPACE_RATIO_MINFP
-
-# tflags net
-TVD_SUBJ_NUM_OBFU_MINFP
-
 # good enough
 TVD_VISIT_PHARMA
 
@@ -1760,7 +1754,7 @@ URI_MALWARE_SCMS
 # tflags userconf
 URI_NOVOWEL
 
-# tflags net
+# tflags publish
 URI_ONLY_MSGID_MALF
 
 # tflags publish
@@ -1790,7 +1784,7 @@ URI_WP_DIRINDEX
 # tflags net
 URI_WP_HACKED
 
-# tflags net
+# tflags publish
 URI_WP_HACKED_2
 
 # tflags publish