1

Topic: URIBL URL Malware check

==== REQUIRED BASIC INFO OF YOUR IREDMAIL SERVER ====
- iRedMail version (check /etc/iredmail-release): 0.9.8 MYSQL edition
- Deployed with iRedMail Easy or the downloadable installer? downloadable installer
- Linux/BSD distribution name and version: Ubuntu 16.04.4 LTS
- Store mail accounts in which backend (LDAP/MySQL/PGSQL):  MySQL
- Web server (Apache or Nginx): Nginx
- Manage mail accounts with iRedAdmin-Pro? No
- [IMPORTANT] Related original log or error message is required if you're experiencing an issue.
====

Hello,

we have a Problem with the URIBL checks. We tried to increase the score of URIBL_DBL_ABUSE_MALW, because we receive a lot of mails with infected URLs. Meanwhile we saw that the URIBL_DBL_ABUSE_MALW check doesn't fire when sending a testmail containing an infected URL to an account - but it did one time today when an accountl received an mail by another external sender. How is that possible? We have no idea what we should look for to determinate why it doesn't fire.

Sorry for my bad english and thank you for your time!

----

Spider Email Archiver: On-Premises, lightweight email archiving software developed by iRedMail team. Supports Amazon S3 compatible storage and custom branding.

2

Re: URIBL URL Malware check

Please turn on debug mode in Amavisd to figure it out:
https://docs.iredmail.org/debug.amavisd.html