Self-hosted AnonAddy rspamd tags internal emails with PHISHING
Closed this issue · 2 comments
Description of issue
Self-hosted Anonaddy (https://github.com/anonaddy/docker) rspamd marks emails sent by anonaddy as phishing due to them including the url "addy.io".
The rebrand update changed the notification subject to include the "addy.io" link: anonaddy/anonaddy@8d6ddb4#diff-55811b899995a514d3305ac08653f9052c14f061aa020047908dd146553f8e97R62.
Rspamd phishing module docs: https://tonygravagno.github.io/rspamd.com/doc/modules/phishing.html
Possible fix
One option would be to take the link from APP_NAME env variable like so:
->subject('New failed delivery on ' . env('APP_NAME', 'addy.io'))The application contains a number of other places where addy.io is hardcoded:
- https://github.com/anonaddy/anonaddy/blob/e7045cc7f7066b320dba42e7244251b2c52110ee/resources/views/mail/domain_mx_records_invalid.blade.php#L5
- https://github.com/anonaddy/anonaddy/blob/e7045cc7f7066b320dba42e7244251b2c52110ee/resources/views/auth/backup_code.blade.php#L7
I wonder whether these could be changed too? I'm open to creating a PR that changes these to read the value from APP_NAME.
It isn't classed as phishing because of "addy.io" specifically, it looks as if you have some configuration error.
You can see the FORGED_SENDER shows example.com too, you need to make sure you have APP_URL correctly set in your .env file and that you have cleared the cache php artisan config:cache.
Fair enough, this might be due to a configuration error. But looking through the code the email title's have "addy.io" hardcoded in them, shouldn't they be using APP_URL?