Etusivu Tutki Apua
Kirjaudu sisään
mirrors
/
mailcow-dockerized
peilaus alkaen https://github.com/mailcow/mailcow-dockerized
2
0
Haarauta 0
Tiedostot Esitykset 0 Wiki
Puu: 2fbbbbe9a9
Haarat Tunnisteet
mailcow-dockeri...
/
data
/
Dockerfiles
/
dovecot
/
quarantine_notify.py

quarantine_notify.py 6.3 KB
Historia Raaka

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174 
  1. #!/usr/bin/python3
    2. 

  2. 

  3. import smtplib
    4. 

  4. import os
    5. 

  5. import sys
    6. 

  6. import MySQLdb
    7. 

  7. from email.mime.multipart import MIMEMultipart
    8. 

  8. from email.mime.text import MIMEText
    9. 

  9. from email.utils import COMMASPACE, formatdate
    10. 

  10. import jinja2
    11. 

  11. from jinja2 import TemplateError
    12. 

  12. from jinja2.sandbox import SandboxedEnvironment
    13. 

  13. import json
    14. 

  14. import redis
    15. 

  15. import time
    16. 

  16. import html2text
    17. 

  17. import socket
    18. 

  18. 

  19. pid = str(os.getpid())
    20. 

  20. pidfile = "/tmp/quarantine_notify.pid"
    21. 

  21. 

  22. if os.path.isfile(pidfile):
    23. 

  23.   print("%s already exists, exiting" % (pidfile))
    24. 

  24.   sys.exit()
    25. 

  25. 

  26. pid = str(os.getpid())
    27. 

  27. f = open(pidfile, 'w')
    28. 

  28. f.write(pid)
    29. 

  29. f.close()
    30. 

  30. 

  31. try:
    32. 

  32. 

  33.   while True:
    34. 

  34.     try:
    35. 

  35.       r = redis.StrictRedis(host='redis', decode_responses=True, port=6379, db=0, password=os.environ['REDISPASS'])
    36. 

  36.       r.ping()
    37. 

  37.     except Exception as ex:
    38. 

  38.       print('%s - trying again...'  % (ex))
    39. 

  39.       time.sleep(3)
    40. 

  40.     else:
    41. 

  41.       break
    42. 

  42. 

  43.   time_now = int(time.time())
    44. 

  44.   mailcow_hostname = os.environ.get('MAILCOW_HOSTNAME')
    45. 

  45. 

  46.   max_score = float(r.get('Q_MAX_SCORE') or "9999.0")
    47. 

  47.   if max_score == "":
    48. 

  48.     max_score = 9999.0
    49. 

  49. 

  50.   def query_mysql(query, headers = True, update = False):
    51. 

  51.     while True:
    52. 

  52.       try:
    53. 

  53.         cnx = MySQLdb.connect(user=os.environ.get('DBUSER'), password=os.environ.get('DBPASS'), database=os.environ.get('DBNAME'), charset="utf8mb4", collation="utf8mb4_general_ci")
    54. 

  54.       except Exception as ex:
    55. 

  55.         print('%s - trying again...'  % (ex))
    56. 

  56.         time.sleep(3)
    57. 

  57.       else:
    58. 

  58.         break
    59. 

  59.     cur = cnx.cursor()
    60. 

  60.     cur.execute(query)
    61. 

  61.     if not update:
    62. 

  62.       result = []
    63. 

  63.       columns = tuple( [d[0] for d in cur.description] )
    64. 

  64.       for row in cur:
    65. 

  65.         if headers:
    66. 

  66.           result.append(dict(list(zip(columns, row))))
    67. 

  67.         else:
    68. 

  68.           result.append(row)
    69. 

  69.       cur.close()
    70. 

  70.       cnx.close()
    71. 

  71.       return result
    72. 

  72.     else:
    73. 

  73.       cnx.commit()
    74. 

  74.       cur.close()
    75. 

  75.       cnx.close()
    76. 

  76. 

  77.   def notify_rcpt(rcpt, msg_count, quarantine_acl, category):
    78. 

  78.     if category == "add_header": category = "add header"
    79. 

  79.     meta_query = query_mysql('SELECT SHA2(CONCAT(id, qid), 256) AS qhash, id, subject, score, sender, created, action FROM quarantine WHERE notified = 0 AND rcpt = "%s" AND score < %f AND (action = "%s" OR "all" = "%s")' % (rcpt, max_score, category, category))
    80. 

  80.     print("%s: %d of %d messages qualify for notification" % (rcpt, len(meta_query), msg_count))
    81. 

  81.     if len(meta_query) == 0:
    82. 

  82.       return
    83. 

  83.     msg_count = len(meta_query)
    84. 

  84.     env = SandboxedEnvironment()
    85. 

  85.     if r.get('Q_HTML'):
    86. 

  86.         try:
    87. 

  87.             template = env.from_string(r.get('Q_HTML'))
    88. 

  88.         except Exception:
    89. 

  89.             print("Error: Cannot parse quarantine template, falling back to default template.")
    90. 

  90.             with open('/templates/quarantine.tpl') as file_:
    91. 

  91.                 template = env.from_string(file_.read())
    92. 

  92.     else:
    93. 

  93.         with open('/templates/quarantine.tpl') as file_:
    94. 

  94.             template = env.from_string(file_.read())
    95. 

  95.     try:
    96. 

  96.         html = template.render(meta=meta_query, username=rcpt, counter=msg_count, hostname=mailcow_hostname, quarantine_acl=quarantine_acl)
    97. 

  97.     except (jinja2.exceptions.SecurityError, TemplateError) as ex:
    98. 

  98.         print(f"SecurityError or TemplateError in template rendering: {ex}")
    99. 

  99.         return
    100. 

  100.     text = html2text.html2text(html)
    101. 

  101.     count = 0
    102. 

  102.     while count < 15:
    103. 

  103.       count += 1
    104. 

  104.       try:
    105. 

  105.         server = smtplib.SMTP('postfix', 590, 'quarantine')
    106. 

  106.         server.ehlo()
    107. 

  107.         msg = MIMEMultipart('alternative')
    108. 

  108.         msg_from = r.get('Q_SENDER') or "quarantine@localhost"
    109. 

  109.         # Remove non-ascii chars from field
    110. 

  110.         msg['From'] = ''.join([i if ord(i) < 128 else '' for i in msg_from])
    111. 

  111.         msg['Subject'] = r.get('Q_SUBJ') or "Spam Quarantine Notification"
    112. 

  112.         msg['Date'] = formatdate(localtime = True)
    113. 

  113.         text_part = MIMEText(text, 'plain', 'utf-8')
    114. 

  114.         html_part = MIMEText(html, 'html', 'utf-8')
    115. 

  115.         msg.attach(text_part)
    116. 

  116.         msg.attach(html_part)
    117. 

  117.         msg['To'] = str(rcpt)
    118. 

  118.         bcc = r.get('Q_BCC') or ""
    119. 

  119.         redirect = r.get('Q_REDIRECT') or ""
    120. 

  120.         text = msg.as_string()
    121. 

  121.         if bcc == '':
    122. 

  122.           if redirect == '':
    123. 

  123.             server.sendmail(msg['From'], str(rcpt), text)
    124. 

  124.           else:
    125. 

  125.             server.sendmail(msg['From'], str(redirect), text)
    126. 

  126.         else:
    127. 

  127.           if redirect == '':
    128. 

  128.             server.sendmail(msg['From'], [str(rcpt)] + [str(bcc)], text)
    129. 

  129.           else:
    130. 

  130.             server.sendmail(msg['From'], [str(redirect)] + [str(bcc)], text)
    131. 

  131.         server.quit()
    132. 

  132.         for res in meta_query:
    133. 

  133.          query_mysql('UPDATE quarantine SET notified = 1 WHERE id = "%d"' % (res['id']), update = True)
    134. 

  134.         r.hset('Q_LAST_NOTIFIED', record['rcpt'], time_now)
    135. 

  135.         break
    136. 

  136.       except Exception as ex:
    137. 

  137.         server.quit()
    138. 

  138.         print('%s'  % (ex))
    139. 

  139.         time.sleep(3)
    140. 

  140. 

  141.   records = query_mysql('SELECT IFNULL(user_acl.quarantine, 0) AS quarantine_acl, count(id) AS counter, rcpt FROM quarantine LEFT OUTER JOIN user_acl ON user_acl.username = rcpt WHERE notified = 0 AND score < %f AND rcpt in (SELECT username FROM mailbox) GROUP BY rcpt' % (max_score))
    142. 

  142. 

  143.   for record in records:
    144. 

  144.     attrs = ''
    145. 

  145.     attrs_json = ''
    146. 

  146.     time_trans = {
    147. 

  147.       "hourly": 3600,
    148. 

  148.       "daily": 86400,
    149. 

  149.       "weekly": 604800
    150. 

  150.     }
    151. 

  151.     try:
    152. 

  152.       last_notification = int(r.hget('Q_LAST_NOTIFIED', record['rcpt']))
    153. 

  153.       if last_notification > time_now:
    154. 

  154.         print('Last notification is > time now, assuming never')
    155. 

  155.         last_notification = 0
    156. 

  156.     except Exception as ex:
    157. 

  157.       print('Could not determine last notification for %s, assuming never' % (record['rcpt']))
    158. 

  158.       last_notification = 0
    159. 

  159.     attrs_json = query_mysql('SELECT attributes FROM mailbox WHERE username = "%s"' % (record['rcpt']))
    160. 

  160.     attrs = attrs_json[0]['attributes']
    161. 

  161.     if isinstance(attrs, str):
    162. 

  162.       # if attr is str then just load it
    163. 

  163.       attrs = json.loads(attrs)
    164. 

  164.     else:
    165. 

  165.       # if it's bytes then decode and load it
    166. 

  166.       attrs = json.loads(attrs.decode('utf-8'))
    167. 

  167.     if attrs['quarantine_notification'] not in ('hourly', 'daily', 'weekly'):
    168. 

  168.       continue
    169. 

  169.     if last_notification == 0 or (last_notification + time_trans[attrs['quarantine_notification']]) <= time_now:
    170. 

  170.       print("Notifying %s: Considering %d new items in quarantine (policy: %s)" % (record['rcpt'], record['counter'], attrs['quarantine_notification']))
    171. 

  171.       notify_rcpt(record['rcpt'], record['counter'], record['quarantine_acl'], attrs['quarantine_category'])
    172. 

  172. 

  173. finally:
    174. 

  174.   os.unlink(pidfile)
    175.