For those, who are not satisfied with spamassassin, I like to share a documentation, how to install and activate rspamd on Plesk Obsidian >=18.0.39 and debian 10 (buster) on Intel/AMD compatible platform.
Disclosure: That procedure works perfectly on my virtual hosted server. However I cannot gurantee that it will work on all other platforms.
Plesk config:
- deinstall spamassassin via Plesk installer
- install firewall (in case not yet there) and limit port access to only used services
(important that rspamd config interface is not directly accessible from external)
- deactivate "Switch on server-wide greylisting spam protection" and "Apply individual settings to spam filtering" in "Spam Filter Settings"
View attachment 19831
- activate in section "DKIM spam protection" the options "Allow signing outgoing mail" and "Verify incoming mail" in "Server-Wide Mail Settings"
View attachment 19830
- Deactivate "SPF spam protection" in "Server-Wide Mail Settings"
SSH client for connection to your plesk server:
- configure port forwarding for port 11334 on your local ssh-client
That example in putty SSH-Tunnels definition would allow you to call the rspamd-config frontend on your local browser via http://localhost:7777View attachment 19829
Open terminal on your server and excute following steps:
1. rspamd source definition
2. ammend "[arch=amd64]"-setting in /etc/apt/sources.list.d/rspamd.list
(otherwise any follow update-process might take an eternity)
3. rspamd Installation
4. rspamd password generation provides hash .....
5. store generated password hash in /etc/rspamd/local.d/worker-controller.inc
6. configure /etc/rspamd/local.d/redis.conf
7. configure /etc/rspamd/local.d/classifier-bayes.conf
8. configure /etc/rspamd/local.d/logging.inc
9. configure /etc/rspamd/local.d/milter_headers.conf
10. configure /etc/redis/redis.conf
11. configure /etc/rspamd/local.d/classifier-bayes.conf
12. configure /etc/rspamd/local.d/dkim_signing.conf
13. create /etc/dovecot/conf.d/20-imap.conf
14. create /etc/dovecot/conf.d/95-plugin.conf
14b. set owership and rights
15. create /usr/local/etc/dovecot/sieve/global-spam.sieve
16. create /usr/local/etc/dovecot/sieve/report-spam.sieve
17. create /usr/local/etc/dovecot/sieve/report-ham.sieve
18. create /usr/local/etc/dovecot/sieve/sieve/sa-learn-ham.sh
19. create /usr/local/etc/dovecot/sieve/sa-learn-spam.sh
20. compile sieve scripts
in case error occurs try to restart dovecot before (/etc/init.d/dovecot restart)
20a. set rights
21. configure /etc/postfix/main.cf
look for existing entries and replace (if any)
22. Processes restart
DNS configuration change
might improve better resolution
1. change in /etc/bind/named.conf.options (changes in green)
2. make "/etc/resolv.conf" static
3. test of DNS resolver
should provide proper resolution
4. Ammend green section in "/etc/dhcp/dhclient.conf"
Good Luck!