==== REQUIRED BASIC INFO OF YOUR IREDMAIL SERVER ====
- iRedMail version 1.3.2:
- Deployed with iRedMail Easy or the downloadable installer?  Downloadable Installer vs 0.9.7
- Linux/BSD distribution name and version: CentOS 7
- Store mail accounts in which backend (LDAP/MySQL/PGSQL): MySQL
- Web server (Apache or Nginx): Apache
- Manage mail accounts with iRedAdmin-Pro? No
- [IMPORTANT] Related original log or error message is required if you're experiencing an issue.
====

SpamAssassin is flagging obvious Spam emails with an extremely low score of 0-1. 

/etc/amavisd/amavisd.conf:
$sa_tag_level_deflt  = -10;  # add spam info headers if at, or above that level
$sa_tag2_level_deflt = 6.2;  # add 'spam detected' headers at that level
$sa_kill_level_deflt = 6.9;  # triggers spam evasive actions (e.g. blocks mail)

Example Email Header:
X-Virus-Scanned: amavisd-new at mail.XXXX.net
X-Spam-Flag: NO
X-Spam-Score: 0.164
X-Spam-Level:
X-Spam-Status: No, score=0.164 tagged_above=-10 required=6.2
    tests=[DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1,
    HEADER_FROM_DIFFERENT_DOMAINS=0.249, HTML_IMAGE_RATIO_02=0.001,
    HTML_MESSAGE=0.001, SPF_HELO_NONE=0.001, SPF_NONE=0.001,
    T_REMOTE_IMAGE=0.01, URIBL_BLOCKED=0.001]
    autolearn=no autolearn_force=no
Authentication-Results: mail.XXXX.net (amavisd-new);
    dkim=pass (1024-bit key) header.d=leenom.com;
    domainkeys=pass (1024-bit key)
    header.from=personalizationmall@leenom.com header.d=leenom.com
Received: from mail.XXXX.net ([127.0.0.1])
    by mail.XXXX.net (mail.XXXX.net [127.0.0.1]) (amavisd-new, port 10024)
    with ESMTP id ANtJRxXLEXlm for <XXXX@XXXX.net>;
    Wed, 16 Dec 2020 15:35:42 -0500 (EST)
Received: from mail.leenom.com (web.tachyonsd.com [104.206.155.2])
    by mail.XXXX.net (Postfix) with ESMTP id 73C5D14F76
    for <XXXX@XXXX.net>; Wed, 16 Dec 2020 15:35:41 -0500 (EST)

Email itself in Plain Text:
Exclusive Designs on Dozens of Gifts with Fast Shipping
Contact photo
From Personalizationmall <personalizationmall@leenom.com> on 2020-12-16 15:36
Details HTML
Exclusive Designs on Dozens of Gifts with Fast Shipping

http://www.leenom.com/prefacing-proprie … 0GX6LML0ih

Update Preferences- http://www.leenom.com/e3U4S2395C8Jk617b … d-percents

I have implemented bayesian filters for SpamAssassin as of today, so they haven't had time to reach the required 200 Spam/Ham to start learning.  However, it seems to me that these emails should be flagged as spam, but they are getting a low score.  The emails are coming from multiple domains, multiple IP addresses, multiple senders.  This also seems to be affecting multiple users on multiple domains on the mail server.

Greylisting is also enabled, and functioning on the mail server.  Any assistance that you can provide would be appreciated.  Thanks!