Known senders module
The known_senders module maintains a Redis-backed set of hashed sender addresses for a configured set of domains. It lets you:
- mark messages from previously seen senders as known
- flag first-time senders from those domains
- verify inbound replies using data produced by the
repliesmodule (global and per-sender local checks)
Requires Redis; optional support for RedisBloom.
How it works
- For SMTP and MIME
Fromaddresses belonging to the configureddomains, Rspamd hashes the full address and checks storage:- with
use_bloom = false: a Redis ZSET named byredis_key - with
use_bloom = true: a RedisBloom filter named byredis_key
- with
- If found, Rspamd inserts
symbol(defaultKNOWN_SENDER). If not found, it insertssymbol_unknownand stores the sender, trimming tomax_senders. - If the
repliesmodule is enabled, two additional checks are available:symbol_check_mail_global: sender exists in the global replies setsymbol_check_mail_local: at least one of current recipients exists in the sender’s local replies set
Result options indicate which key matched, e.g. smtp:<hash> or mime:<hash>.
Configuration
Add configuration to /etc/rspamd/local.d/known_senders.conf (or configure Redis globally):
known_senders {
enabled = true;
# Redis (can be configured globally as well)
#servers = 127.0.0.1:6379;
# Domains to track senders (map or list)
domains = "https://maps.rspamd.com/freemail/free.txt.zst";
# Storage
use_bloom = false; # requires RedisBloom if true
redis_key = "rs_known_senders";
max_senders = 100000; # max elements kept in set/filter
#max_ttl = 30d; # when not using Bloom filters
# Symbols
symbol = "KNOWN_SENDER";
symbol_unknown = "UNKNOWN_SENDER";
symbol_check_mail_global = "INC_MAIL_KNOWN_GLOBALLY";
symbol_check_mail_local = "INC_MAIL_KNOWN_LOCALLY";
# Replies-related (must match settings in the replies module when changed)
sender_prefix = "rsrk";
sender_key_global = "verified_senders";
sender_key_size = 20;
max_recipients = 15; # recipients to verify for local set
# Optional privacy for reply sender before hashing
reply_sender_privacy = false;
reply_sender_privacy_alg = "blake2";
reply_sender_privacy_prefix = "obf";
reply_sender_privacy_length = 16;
}
You should also assign weights to the inserted symbols in your metrics if needed.
Symbols
KNOWN_SENDER(configurable viasymbol): sender already knownUNKNOWN_SENDER(viasymbol_unknown): first-time sender stored nowINC_MAIL_KNOWN_GLOBALLY(viasymbol_check_mail_global): sender verified by global replies setINC_MAIL_KNOWN_LOCALLY(viasymbol_check_mail_local): at least one recipient verified by the sender’s local replies set
Requirements
- Redis: configure Redis servers globally or per-module, see Redis configuration
- RedisBloom (optional): required if
use_bloom = true. Enable in Redis, e.g. inredis.conf:
loadmodule /path/to/redisbloom.so
Notes
- If you change
sender_prefixinlocal.d/replies.conf, change it here as well to keep sets aligned. domainsaccepts the same map forms used elsewhere (file/HTTP/HTTPS, compressed maps, etc.).