PHP-based spam & virus/worm filtering for POP3 email accounts. Designed to run as a cron job and catch spam based on links to blacklisted IPs, obfuscated words or blacklisted phrases; attached-image spam; email worms; corrupted or malformed emails.
Be the first to post a text review of phPOP3clean. Rate and review a project by clicking thumbs up or thumbs down in the right column.
phPOP3clean 0.9.17 adds much more automated support for automatic filtering without manually updating definitions or blacklists, thanks to support for DNSBL lookup, as well as behaviour-based blacklisting (e.g. domains that resolve to 20 random IPs).
v0.9.17 - April 17, 2008 domains that resolve to too many varied IPs (too many IPs, or too many different AMasks) are auto-blacklisted IPs are logged per message so that if an IP is later found to be in the DNSBL, already-scanned messages can be deleted banned Code now also checked against multipart headers plaintext phrase matching can be performed with all-but some characters stripped to match things like "s't.oc~k_re*por?t" * default SafeGetHostByNameL() changed to `host` for non-Windows systems, with a default timeout (PHPOP3CLEAN_DNS_TIMEOUT) of 2 seconds * auto-ban DNSBL and too-many-varied-IPs domains in admin add * allow "onlyid" values of ">x" and "<x" where x is an integer * change interval dropdown to textbox to allow >180 min interval * added config setting PHPOP3CLEAN_USE_TRUNCATED_HEADER * added config setting PHPOP3CLEAN_USE_INVALID_DATESTAMP * added warning against archiving/purging current month of data in phPOP3clean.emptycache.php * match hex-IP obfuscation like 0xC0.0xA80201 (192.168.2.1) * Bugfix: locally whitelisted IPs that also appear in DNSBL are no longer treated as bad * Bugfix: better matching of domains in HTTP email source * Bugfix: undefined index 'dotall' in creating new blackword * Bugfix: binary attachment scanning crashed on some versions of PHP (fread 4kB issue)
v0.9.16 - April 09, 2007 Added DNSBL lookup support (reduce human admin maintenace of IP blacklists) Word/Phrases no longer limited to 255 characters * Word/Phrases regexes are checked for validity before saving * Never-matched words will be purged after half the time set by PHPOP3CLEAN_KEEP_WORDS_* * Improved security against hacking attempts (thanks jrfusers*sourceforge*net) * Better matching of obfuscated URLs with invalid characters * Emails are now scanned in reverse order, ie newest first * Admin summary of matches phrases wraps to fit screen better * Admin login now redirects to page you were going to before login, so you can bookmark specific admin sections * Auto-banned domains will still be caught even if domain does not resolve to an IP * Domains/IPs in headers now scanned for banned IPs * changed PHPOP3CLEAN_TIMEOUT to PHPOP3CLEAN_PHP_TIMEOUT * added PHPOP3CLEAN_POP3_TIMEOUT to phPOP3clean.config.php * PHPOP3CLEAN_MAX_MESSAGE_SIZE now performed after header scans (DNSBL and SpamAssassin) so that large spam messages are also caught * BlackListedWordsCode efficiency improved (thanks jrfusers*sourceforge*net) * Bugfix: long login time would cause phPOP3clean to fail to login correctly * Bugfix: problems if message has no ID (thanks jrfusers*sourceforge*net) * Bugfix: magic_quotes_gpc-fixing was broken (thanks jrfusers*sourceforge*net) * Bugfix: autoban domains only counted first hit on domain per scan (thanks jrfusers*sourceforge*net) * Bugfix: only allow lowercase alphanumeric characters for autoban domains * Bugfix: emails consisting of attachments but no text body were not scanned correctly (thanks jrfusers*sourceforge*net) * Bugfix: suppress download links on virus and image admin pages when data not present * Bugfix: suppress invalid MD5 warning on virus and image patterns when data not present * Bugfix: some word/phrases with special characters couldn't be edited after creation * Bugfix: several admin screens would not sort on columns * Bugfix: IP filter type could not be set to whitlist * Bugfix: false translation of 7bit text by QuotedEntityDecode * Bugfix: false translation of 8bit text by QuotedEntityDecode * Bugfix: SpamAssassin-filtered messages were being reported as "virus" rather than "spam" in summary (thanks jrfusers*sourceforge*net) * Bugfix: PHPOP3CLEAN_HIDE_PASSWORDS ignored if login fails (thanks jrfusers*sourceforge*net) * Bugfix: broken link in saved excecutable attachment email * Bugfix: prevent caching malformed IPs from domain lookups * Bugfix: account-level whitelist email hits weren't recorded
Copyright © 2009 Geeknet, Inc. All rights reserved. Terms of Use
Thanks for your rating!
Would you also like to write a review?