# active ruleset list, automatically generated from http://ruleqa.spamassassin.org/ # with results from: day 1: alexb cthielen dos jm zmi; day 2: alexb cthielen dos jm zmi; day 3: alexb cthielen dos zmi # tflags userconf ALL_TRUSTED # tflags userconf AWL # good enough AXB_RCVD_ZOOBSEND # good enough AXB_RCVD_ZOONAT # good enough AXB_XMID_1212 # good enough BASE64_LENGTH_78_79 # tflags learn BAYES_00 # tflags learn BAYES_05 # tflags learn BAYES_20 # tflags learn BAYES_40 # tflags learn BAYES_50 # tflags learn BAYES_60 # tflags learn BAYES_80 # tflags learn BAYES_95 # tflags learn BAYES_99 # tflags userconf CHARSET_FARAWAY # tflags userconf CHARSET_FARAWAY_HEADER # tflags userconf CORRUPT_FROM_LINE_IN_HDRS # good enough DEAR_WINNER # tflags net DIGEST_MULTIPLE # tflags net DNS_FROM_AHBL_RHSBL # tflags net DNS_FROM_DOB # tflags net DNS_FROM_OPENWHOIS # tflags net DNS_FROM_RFC_BOGUSMX # tflags net DNS_FROM_RFC_DSN # tflags publish DOS_ANAL_SPAM_MAILER # good enough DOS_OE_TO_MX # good enough DOS_OE_TO_MX_IMAGE # good enough DOS_OUTLOOK_TO_MX # good enough DOS_OUTLOOK_TO_MX_IMAGE # good enough DVLABS_GOZI_PDF # good enough DYN_RDNS_AND_INLINE_IMAGE # good enough DYN_RDNS_SHORT_HELO_HTML # good enough DYN_RDNS_SHORT_HELO_IMAGE # tflags userconf ENV_AND_HDR_SPF_MATCH # tflags net FAKE_HELO_EMAIL_COM # tflags net FAKE_HELO_EXCITE # tflags net FAKE_HELO_LYCOS # tflags net FAKE_HELO_MAIL_COM # tflags net FAKE_HELO_MSN # tflags net FAKE_HELO_YAHOO_CA # good enough FB_ALMOST_SEX # good enough FB_CIALIS_LEO3 # good enough FB_EXTRA_INCHES # good enough FB_GVR # good enough FB_QUALITY_REPLICA # good enough FB_REPLIC_CAP # good enough FB_SMALL_PEN # good enough FB_SOFTTABS # good enough FB_YOUR_WOMAN # good enough FH_BAD_OEV1441 # good enough FH_DATE_IS_19XX # good enough FH_DATE_PAST_20XX # good enough FH_FAKE_RCVD_LINE # good enough FH_FROM_CASH # good enough FH_HELO_ALMOST_IP # good enough FH_HELO_ENDS_DOT # good enough FH_HELO_EQ_610HEX # good enough FH_HELO_EQ_CHARTER # good enough FH_HELO_EQ_D_D_D_D # good enough FH_HOST_EQ_DYNAMICIP # good enough FH_HOST_EQ_PACBELL_D # good enough FH_HOST_EQ_VERIZON_P # good enough FH_HOST_IN_ADDRARPA # good enough FH_MSGID_XXX # good enough FM_SEX_HELODDDD # good enough FM_XMAIL_F_OUT # tflags userconf FRAGMENTED_MESSAGE # good enough FRT_PENIS1 # good enough FRT_PRICE # good enough FRT_SEXUAL # good enough FS_ABIGGER # good enough FS_EJACULA # good enough FS_ERECTION # good enough FS_MORE_CONFIDENT # good enough FS_REPLICA # good enough FS_REPLICAWATCH # good enough FS_WILL_HELP # good enough FU_LONG_QUERY3 # tflags userconf GTUBE # tflags net HABEAS_ACCREDITED_COI # tflags net HABEAS_ACCREDITED_SOI # tflags net HABEAS_CHECKED # tflags userconf HASHCASH_20 # tflags userconf HASHCASH_21 # tflags userconf HASHCASH_22 # tflags userconf HASHCASH_23 # tflags userconf HASHCASH_24 # tflags userconf HASHCASH_25 # tflags userconf HASHCASH_2SPEND # tflags userconf HASHCASH_HIGH # good enough HDR_ORDER_FTSDMCXX_BAT # tflags userconf HEAD_LONG # good enough HELO_FRIEND # good enough HELO_LH_LD # good enough HELO_LOCALHOST # good enough HELO_OEM # tflags userconf HIGH_CODEPAGE_URI # good enough HS_INDEX_PARAM # tflags userconf HTML_CHARSET_FARAWAY # good enough JM_0800_GMT # good enough JM_FAKE_PSMTP_RCVD # good enough JM_GMT_RCVD # good enough JM_NICE_GIRL # good enough JM_PPYH_2 # good enough JM_RCVD_QMAILV1 # good enough JM_SOUGHT_1 # good enough JM_SOUGHT_2 # good enough JM_SOUGHT_3 # good enough JM_TORA_XM # good enough KAM_LOTTO1 # good enough KAM_LOTTO2 # tflags publish KAM_STOCKOTC # tflags publish KAM_STOCKTIP15 # good enough KB_DATE_CONTAINS_TAB # good enough KB_FAKED_THE_BAT # good enough LOTTERY_PH_004470 # good enough MID_DEGREES # tflags userconf MIME_CHARSET_FARAWAY # tflags userconf MISSING_HB_SEP # tflags net NO_DNS_FOR_FROM # tflags userconf NO_RECEIVED # tflags userconf NO_RELAYS # good enough OUTLOOK_3416 # tflags net PYZOR_CHECK # tflags net RAZOR2_CF_RANGE_51_100 # tflags net RAZOR2_CF_RANGE_E4_51_100 # tflags net RAZOR2_CF_RANGE_E8_51_100 # tflags net RAZOR2_CHECK # good enough RCVD_FORGED_WROTE # good enough RCVD_FORGED_WROTE2 # tflags net RCVD_IN_BL_SPAMCOP_NET # tflags net RCVD_IN_BSP_OTHER # tflags net RCVD_IN_BSP_TRUSTED # tflags net RCVD_IN_DNSWL_HI # tflags net RCVD_IN_DNSWL_LOW # tflags net RCVD_IN_DNSWL_MED # tflags net RCVD_IN_DOB # tflags net RCVD_IN_DSBL # tflags net RCVD_IN_IADB_DK # tflags net RCVD_IN_IADB_DOPTIN # tflags net RCVD_IN_IADB_DOPTIN_GT50 # tflags net RCVD_IN_IADB_DOPTIN_LT50 # tflags net RCVD_IN_IADB_EDDB # tflags net RCVD_IN_IADB_EPIA # tflags net RCVD_IN_IADB_GOODMAIL # tflags net RCVD_IN_IADB_LISTED # tflags net RCVD_IN_IADB_LOOSE # tflags net RCVD_IN_IADB_MI_CPEAR # tflags net RCVD_IN_IADB_MI_CPR_30 # tflags net RCVD_IN_IADB_MI_CPR_MAT # tflags net RCVD_IN_IADB_ML_DOPTIN # tflags net RCVD_IN_IADB_NOCONTROL # tflags net RCVD_IN_IADB_OOO # tflags net RCVD_IN_IADB_OPTIN # tflags net RCVD_IN_IADB_OPTIN_GT50 # tflags net RCVD_IN_IADB_OPTIN_LT50 # tflags net RCVD_IN_IADB_OPTOUTONLY # tflags net RCVD_IN_IADB_RDNS # tflags net RCVD_IN_IADB_SENDERID # tflags net RCVD_IN_IADB_SPF # tflags net RCVD_IN_IADB_UNVERIFIED_1 # tflags net RCVD_IN_IADB_UNVERIFIED_2 # tflags net RCVD_IN_IADB_UT_CPEAR # tflags net RCVD_IN_IADB_UT_CPR_30 # tflags net RCVD_IN_IADB_UT_CPR_MAT # tflags net RCVD_IN_IADB_VOUCHED # tflags net RCVD_IN_MAPS_DUL # tflags net RCVD_IN_MAPS_NML # tflags net RCVD_IN_MAPS_OPS # tflags net RCVD_IN_MAPS_RBL # tflags net RCVD_IN_MAPS_RSS # tflags net RCVD_IN_NJABL_CGI # tflags net RCVD_IN_NJABL_MULTI # tflags net RCVD_IN_NJABL_PROXY # tflags net RCVD_IN_NJABL_RELAY # tflags net RCVD_IN_NJABL_SPAM # tflags net RCVD_IN_PBL # tflags net RCVD_IN_SBL # tflags net RCVD_IN_SORBS_BLOCK # tflags net RCVD_IN_SORBS_DUL # tflags net RCVD_IN_SORBS_HTTP # tflags net RCVD_IN_SORBS_MISC # tflags net RCVD_IN_SORBS_SMTP # tflags net RCVD_IN_SORBS_SOCKS # tflags net RCVD_IN_SORBS_WEB # tflags net RCVD_IN_SORBS_ZOMBIE # tflags net RCVD_IN_SSC_TRUSTED_COI # tflags net RCVD_IN_XBL # tflags net ROUND_THE_WORLD # tflags net ROUND_THE_WORLD_LOCAL # good enough SHORT_HELO_AND_INLINE_IMAGE # good enough SPAMMY_XMAILER # tflags net SPF_FAIL # tflags net SPF_HELO_FAIL # tflags net SPF_HELO_NEUTRAL # tflags userconf SPF_HELO_PASS # tflags net SPF_HELO_SOFTFAIL # tflags net SPF_NEUTRAL # tflags userconf SPF_PASS # tflags net SPF_SOFTFAIL # tflags userconf SUBJECT_IN_BLACKLIST # tflags userconf SUBJECT_IN_WHITELIST # good enough TT_OBSCURED_VIAGRA # good enough TVD_PP_PHISH # good enough TVD_QUAL_MEDS # tflags net RCVD_IN_DSBL # tflags net RCVD_IN_MAPS_DUL # tflags net RCVD_IN_SORBS_DUL # tflags net RCVD_IN_XBL # tflags net WHOIS_MONIKER_ROLE # tflags userconf UNPARSEABLE_RELAY # tflags net URIBL_AB_SURBL # tflags net URIBL_BLACK # tflags net URIBL_GREY # tflags net URIBL_JP_SURBL # tflags net URIBL_OB_SURBL # tflags net URIBL_PH_SURBL # tflags net URIBL_RED # tflags net URIBL_RHS_AHBL # tflags net URIBL_RHS_DOB # tflags net URIBL_SBL # tflags net URIBL_SC_SURBL # tflags net URIBL_WS_SURBL # tflags userconf USER_IN_ALL_SPAM_TO # tflags userconf USER_IN_BLACKLIST # tflags userconf USER_IN_BLACKLIST_TO # tflags userconf USER_IN_DEF_SPF_WL # tflags userconf USER_IN_DEF_WHITELIST # tflags userconf USER_IN_MORE_SPAM_TO # tflags userconf USER_IN_SPF_WHITELIST # tflags userconf USER_IN_WHITELIST # tflags userconf USER_IN_WHITELIST_TO # tflags net WHOIS_1AND1PR # tflags net WHOIS_AITPRIV # tflags net WHOIS_CONTACTPRIV # tflags net WHOIS_DMNBYPROXY # tflags net WHOIS_DOMESCROW # tflags net WHOIS_DOMPRIVCORP # tflags net WHOIS_DREAMPRIV # tflags net WHOIS_DROA # tflags net WHOIS_DYNADOT # tflags net WHOIS_FINEXE # tflags net WHOIS_GKGPROXY # tflags net WHOIS_IDSHIELD # tflags net WHOIS_IDTHEFTPROT # tflags net WHOIS_KATZ # tflags net WHOIS_LISTINGAG # tflags net WHOIS_LNOA # tflags net WHOIS_MAPNAME # tflags net WHOIS_MONIKER_PRIV # tflags net WHOIS_MYPRIVREG # tflags net WHOIS_NAMEKING # tflags net WHOIS_NAMESECURE # tflags net WHOIS_NETID # tflags net WHOIS_NETSOLPR # tflags net WHOIS_NOLDC # tflags net WHOIS_NOMINET # tflags net WHOIS_PRIVACYPOST # tflags net WHOIS_PRIVDOMAIN # tflags net WHOIS_PRIVPROT # tflags net WHOIS_REGISTER4LESS # tflags net WHOIS_REGISTERFLY # tflags net WHOIS_REGTEK # tflags net WHOIS_SAFENAMES # tflags net WHOIS_SECINFOSERV # tflags net WHOIS_SECUREWHOIS # tflags net WHOIS_SPAMFREE # tflags net WHOIS_SRSPLUS # tflags net WHOIS_UNLISTED # tflags net WHOIS_WHOISGUARD # tflags net WHOIS_WHOISPROT # good enough XMAILER_MIMEOLE_OL_015D5 # good enough XMAILER_MIMEOLE_OL_07794 # good enough XMAILER_MIMEOLE_OL_22B61 # good enough XMAILER_MIMEOLE_OL_25340 # good enough XMAILER_MIMEOLE_OL_3857F # good enough XMAILER_MIMEOLE_OL_465CD # good enough XMAILER_MIMEOLE_OL_4B815 # good enough XMAILER_MIMEOLE_OL_4BF4C # good enough XMAILER_MIMEOLE_OL_4EEDB # good enough XMAILER_MIMEOLE_OL_4F240 # good enough XMAILER_MIMEOLE_OL_58CB5 # good enough XMAILER_MIMEOLE_OL_6554A # good enough XMAILER_MIMEOLE_OL_72641 # good enough XMAILER_MIMEOLE_OL_812FF # good enough XMAILER_MIMEOLE_OL_8627E # good enough XMAILER_MIMEOLE_OL_91287 # good enough XMAILER_MIMEOLE_OL_9B90B # good enough XMAILER_MIMEOLE_OL_ADFF7 # good enough XMAILER_MIMEOLE_OL_B30D1 # good enough XMAILER_MIMEOLE_OL_B4B40 # good enough XMAILER_MIMEOLE_OL_BC7E6 # good enough XMAILER_MIMEOLE_OL_C65FA # good enough XMAILER_MIMEOLE_OL_CF0C0 # good enough XMAILER_MIMEOLE_OL_F3B05 # good enough XMAILER_MIMEOLE_OL_F475E # good enough XMAILER_MIMEOLE_OL_F6D01 # tflags net __DNS_FROM_RFC_ABUSE # tflags net __DNS_FROM_RFC_POST # tflags net __DNS_FROM_RFC_WHOIS # tflags net __RCVD_IN_DNSWL # tflags net __RCVD_IN_DOB # tflags net __RCVD_IN_IADB # tflags net __RCVD_IN_NJABL # tflags net __RCVD_IN_SORBS # tflags net __RCVD_IN_ZEN # tflags net __RFC_IGNORANT_ENVFROM