SpamFilter.ini additional settings

[server settings]

;Set this to 1 if you want to disable EHLO extensions

DisableEHLO=0

;Any emails whose text portion exceeds this number of KB will not be scanned for keywords and Bayes

;Higher values *may* catch more spam but will cause higher load on processor

MaxMsgSizeForKeywordScan=64

;Set FilterBase64html to 1 if youwant to block any emails with Content-Transfer-Encoding=base64 andContent-Type=text/html or text/plain

FilterBase64html=0

;Set RequireHELOBeforeMAILFROM to0 if you do not want to require remote servers to issue a HELO or EHLOcommand before sending the email

RequireHELOBeforeMAILFROM=1

;Controls the minimum number of good and spam emails that must be received before the Bayesian filter kicks in

MinEmailsForBayesKickIn=5000

;by default SpamFilter will notallow any IP to relay thru it. Change DoNotTrustSelfByDefault to 1 ifyou want localhost to be able to relay

DoNotTrustSelfByDefault=0

;Remove any stale token in the corpus db.dat file that did not appear in incoming emails for the past n days

CleanUpCorpusIntervalDays=7

;Force disconnect of sessions after they have remained connected for this long

IdleDisconnectMinutesTimeout=15

;Force disconnect of sessions if a command has not been received within the last nn seconds

ReadTimeout=60

;Timeout when delivering emails to the destination SMTP server (in seconds)

ReadTimeoutOutgoing=60

;if turned on, this will cause tokens in incoming emails being logged to screen with relevant probabilities

ShowBayesianTokens=0

;Set TagSPAMAndQuarantine=1 ifyou want to prefix every quarantine subject line with the prefixspecified in SPAMTagPrefix ini parameter

TagSPAMAndQuarantine=0

;This SPAMTagPrefix will beprefixed to all subject lines marked for "mark as SPAM and deliver"along with the ation specified by TagSPAMAndQuarantine

SPAMTagPrefix=SPAM:

;Setting DoNotSendNDROnQuarantineto 1 will prevent generation of NDR when email are quarantined bycausing SpamFilter *not* to send an error code when quarantining emails

DoNotSendNDROnQuarantine=0

;If turned on, the threads that save to disk and load into memory the bayes corpus tokens will have increased priority

BoostBayesPriority=1

;if TrailingSQLSemiColon is setto 1 SpamFilter will add a ";" to the end of SQL statements. Disableonly to help solve problems with some databases.

TrailingSQLSemiColon=1

;If turned on, any quarantined(false positives) emails that the end user force-delivers will causethe sender to be automatically whitelisted

AutoWhiteListForceDeliveryEnabled=1

;if EnableBadMailDir is set to 1,this will cause all emails that generate a "server error" whenforwarded to your destination SMTP server will be saved in a"BadMailDir" for troubleshooting

EnableBadMailDir=0

;if ScanReceivedHeaders is set to1 SpamFilter will add the "Received:" headers to the text examined forkeywords and statistical Bayesian searches.

ScanReceivedHeaders=1

;if ScanAllHeaders is set to 1SpamFilter will add all email's headers to the text examined forkeywords and statistical Bayesian searches.

ScanAllHeaders=0

;Path to logfile directory

LogFilePath=

;Optional destination SMTP server where to forward SPAM emails only. Good emails are still forwarded to main SMTP server

DestSMTPServerForSPAM=

;The frequency in seconds forwhich the quarantine table is scanned to check for emails pendingdelivery - includes web-access password registration emails

QuarantineToDeliverCheckInterval=5

;By default the activity logfileis saved to disk every 60 seconds. Set RealtimeDiskLogging=1 to savethe log every time it is updated

RealtimeDiskLogging=0

;Add any IPs (separated by commas- no wildcards) that you do not wish to be automatically added to theHoneypot IP blacklist. This setting also prevents those IPs to be addedto the IP cache blacklist

DoNotAddIPToHoneypot=

;An alternate server for sendingNDR (non-delivery) notification emails can be used. Leave the"NotificationSMTPServer" value blank to use the default destinationSMTP server

NotificationSMTPServer=

NotificationSMTPServerPort=25

;Set EnableDbgLogs=1 to enable separate detailed logging for troubleshooting purposes

EnableDbgLogs=

;The timeout in milliseconds for all DNS-related queries.

DNSTimeout=5000

;If an IP sends more than this number of spams in a certain period of time then it is temporarily banned (blacklisted)

IPCacheLimboCountTrigger=3

;If an IP sends more than a certain number of spams during this number of minutes then it is temporarily banned (blacklisted)

IPCacheLimboTimeTrigger=10

;If an IP address was bannedbecause it sent too many spams in a certain time interval, it will beun-banned after this number of minutes

IPCacheBlacklistDuration=60

;You can force the antivirusplugin to block emails if they contain password protected archives thatcannot be tested for viruses by setting this to 1

BlockArchivesWithPassword=0

;By default SpamFilter will onlyperform DNS lookups when the reverse DNS filter is enabled. Changevalue to 1 to always perform a reverse lookup on connecting IPs

AlwaysDoReverseDNSLookups=0

;Specifies how often the logfilesare rotated (Min=1, Max=24). The default is 24 (rotates at midnight). Avalue of 1 means every hour at the hour, value of 2 means at 2am, 4am,6am etc...

RotateLogsEveryNNhours=24

;Change DoNotStartWithoutAV to 1 if you do not want SpamFilter to start/run if there is an error with the Antivirus plugin.

DoNotStartWithoutAV=0

;Number of hours SpamFilter willretry to deliver messages in queue to your destination SMTP server ifit was unreachable. Enter 0 to try forever until back online.

ExpireRetryQueueHours=0

;Determines if SpamFilter shouldhold in the queue emails that were rejected by the destination SMTPserver with an error in the 4xy range

QueueIfDestinationError400=true

;Determines if SpamFilter shouldhold in the queue emails that were rejected by the destination SMTPserver with an error in the 5xy range

QueueIfDestinationError500=false

;Determines if SpamFilter shouldremove from the queue emails that could not be delivered to thedestination SMTP server due to a "Read Timeout" (an NDR is sent if theemail is removed from the queue)

DoNotQueueIfReadTimeout=false

;Image filter threshold. Higher values indicate a more aggressive filter. 0 disables the filter. Min=0, Max=15

SpamImageThreshold=10

;Image filter color sensitivity. Used internally to detect color shades

SpamImageColorSensitivity=20

;Images embedded in email's html having a width smaller than this will not be scanned. Useful to bypass signatures and logos

SpamImageMinWidth=300

;Images embedded in email's html having a height smaller than this will not be scanned. Useful to bypass signatures and logos

SpamImageMinHeight=300

;Determines the number of points that will be scanned in a image to process it for spam

SpamImageSamplingPoints=200

;to reduce false positives, emails with multiple inline images can bypass the image filter by setting this value to 1

SpamImagePassMultiImage=1

;Specify the max number of pagesa PDF document must contain in order to be scanned for spam signatures.The scan will be skipped altogether if there are more than this numberof pages

SpamPDFMaxPagesToScan=2

;Specify the max number height inpixel of a PDF pages that will be scanned for spam signatures. Toreduce false positives, pages taller than this will not be scanned

SpamPDFMaxPixelHeight=800

;SpamFilter can block emails thatcontain only an empty, blank body and one of the following attachment.Clear the list if you don't want to stop such emails. Specify multipleattachments separated by commas

BlockBlankEmailsWithAttachments=*.pdf

;Set this to 0 to prevent queuedemails to be spooled to memory, and force spooling to disk. While lessefficient, spooling to disk helps allow existing antivirus software todetect and block some infected email files

SpoolQueueFilesToMemory=1

;If the private key of the SSL certificate is protected by a password, enter is here

SSLCertificatePassword=

;Some older email clients have abug that requires them to see "AUTH=LOGIN" in the EHLo response ratherthan "AUTH LOGIN". Set this to 1 to add the incorrect syntax to theEHLO output. Changes to this setting require SpamFilter to be restarted

AddIncorrectAUTHLOGINEHLOEntry=0

;Timeout in seconds used in the some SQL commands (Ex. inserting a new record in the tblQuarantine table)

MiscSQLTimeout=1

;SpamFilter Enterprise willdelete temporary entries in the tblReloadTableInfo after they have beenkept for this long. This parameter is used to allow multipleinstallations of SpamFilter Enterprise to maintain their settings insync. It can be reduced to 5-10 seconds for installations running onlyone instance of SpamFilter Enterprise

SecondsToHoldEntriesIntblReloadTableInfo=600

;If the "AuthorizedTO" whitelistis used to specify the list of valid email addresses that can beaccepted, by default SpamFilter will terminate a connection when theremote server specifies an invalid address in the RCPT TO command. Youcan use the following option to disable this forced disconnect, andcause SpamFilter to simply reject the invalid recipient, and continueto accept additional ones

DisconnectOnNonAuthorizedTO=true

;Use this option to preventSpamFilter from performing the routine cleanup of the quarantinedatabase by deleting old archived emails. Useful if admins want toperform their own cleanup

DoNotDeleteExpiredEmailsFromQuarantine=false

;SpamFilter is able to blockblank emails that contain specific attachments. This parameter is usedto specify the threshold of characters below which an email isconsidered blank

MaxLettersToConsiderEmailBlank=2

;SpamFilter uses the http andhttps protocols to query the SFDB database and to download antivirusupdates. You can specify a proxy to use for these operations the theoption in the [proxy settings] section

[proxy settings]

ProxyServer=

ProxyUsername=

ProxyPassword=

ProxyPort=0

ProxyBasicAuthentication=0

[authentication settings]

;By setting this parameter to 1,SpamFilter will automatically add the Active Directory domain nameprefix to the username. For example, if the AD domain is logsat.com,and the username is JohnW, SpamFilter will automatically authenticatethe user as logsat.com\JohnW

ActiveDirectoryAuthPrefixDefaultDomain=0

;By setting this parameter to 1,SpamFilter will automatically add the Active Directory domain namesuffix to the username. For example, if the AD domain is logsat.com,and the username is JohnW, SpamFilter will automatically authenticatethe user as JohnW@logsat.com

ActiveDirectoryAuthAppendDefaultDomain=0