Bug 48436 – Extend default sieve script to optionally discard/reject mails with a certain spam level

Bug 48436 - Extend default sieve script to optionally discard/reject mails with a certain spam level


Summary:	Extend default sieve script to optionally discard/reject mails with a certain...

Status:	RESOLVED WONTFIX

Product:	UCS
Classification:	Unclassified
Component:	Mail
Version:	UCS 4.3
Hardware:	Other Linux

Importance:	P5 normal (vote)
Target Milestone:	---
Assigned To:	Mail maintainers
QA Contact:	Mail maintainers

URL:
Keywords:

Depends on:
Blocks:
	Show dependency tree / graph

Reported:	2019-01-07 16:48 CET by Valentin Heidelberger
Modified:	2021-05-14 16:34 CEST (History)
CC List:	2 users (show)

See Also:
What kind of report is it?:	Feature Request
What type of bug is this?:	---
Who will be affected by this bug?:	---
How will those affected feel about the bug?:	---
User Pain:
Enterprise Customer affected?:
School Customer affected?:	Yes
ISV affected?:
Waiting Support:
Flags outvoted (downgraded) after PO Review:
Ticket number:
Bug group (optional):
Max CVSS v3 score:

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Valentin Heidelberger

2019-01-07 16:48:52 CET

A customer wanted the default sieve script to discard mails that exceed a certain spam level (10.0) in this case. The default sieve script is currently not able to do that. It can only move spam to another folder, if it exceeds a configurable spam level.

Comment 1 Sönke Schwardt-Krummrich

2019-01-13 21:20:33 CET

If I'm not wrong, removing any mail is a violation of the Post- und Fernmeldegeheimnisses here in Germany and you are with one foot in jail if you try this.

Comment 2 Valentin Heidelberger

2019-01-14 09:54:05 CET

(In reply to Sönke Schwardt-Krummrich from comment #1)
> If I'm not wrong, removing any mail is a violation of the Post- und
> Fernmeldegeheimnisses here in Germany and you are with one foot in jail if
> you try this.

That might be but I'm no lawyer... I think the customer told me that that only applies to mail that's already been delivered.

Comment 3 Michael Grandjean

2019-02-04 13:10:19 CET

No lawyer here, too, but iirc you need something called "Pre-Queue Filtering" to not violate german laws (https://www.uni-due.de/zim/services/e-mail/mailpolicy-details.php#pre-queue-filtering).
Sieve is too late in the process to be compliant.

Comment 4 Sönke Schwardt-Krummrich

2019-02-15 17:53:31 CET

> "Pre-Queue-Filtering"

Correct. In this case, the mail is scanned before it is transferred to your area of responsibility. If spam or viruses are detected, the mail server can reject the mail at the last moment without ever having been responsible for it.

Disadvantage of this method:
You have to use the same amount of resources to scan mails and deliver them locally, but the mails usually get into your own area of responsibility slower.

(In reply to Valentin Heidelberger from comment #2)
> That might be but I'm no lawyer... I think the customer told me that that
> only applies to mail that's already been delivered.

AFAIR something like this applies (or not... depending on what exactly your mailserver is doing):

§206 Abs. 2 Nr 2 StGB, Verletzung des Post- und Fernmeldegeheimnis durch Unterdrückung der Sendung

§303a Abs. 1 2 Var. StGB, Datenveränderung durch Unterdrückung

Comment 6 Ingo Steuwer

2021-05-14 15:42:03 CEST

This issue has been filed against UCS 4.3.

UCS 4.3 is out of maintenance and many UCS components have changed in later releases. Thus, this issue is now being closed.

If this issue still occurs in newer UCS versions, please use "Clone this bug" or reopen it and update the UCS version. In this case please provide detailed information on how this issue is affecting you.