mod_anti_spam

This module aims to provide an all-in-one spam filter for any kind of Prosody deployment.

What is spam?

You’re lucky if you have to ask! But it’s worth explaining, so we can be clear about what the module does (and does not).

Similar to every other popular communication network, there are people who try to exploit XMPP for sending unsolicited messages - usually advertisements for products and services. These people have gathered large lists of user addresses, e.g. by searching and “scraping” websites for contact info.

If your address has not been discovered by the spammers, you won’t receive any spam. Prosody does not reveal user addresses (except, obviously, to people who you communicate with). So to avoid it being picked up by spammers, be careful about posting it unprotected on websites, etc.

However, if get unlucky and your address is discovered by spammers, you may receive dozens of spam messages per day. mod_anti_spam is designed to filter these annoying messages to prevent them from reaching you.

How does it work?

mod_anti_spam uses a variety of techniques to identify likely spam. Just as the behaviour of spammers changes, The exact methods used to detect spam may evolve over time in future updates.

If the sender is in the recipient’s contact list already, no filtering will be performed.

Otherwise, if the sender is a “stranger” to the recipient, the module will perform some checks, and decide whether to let the message or contact request through.

Shared block lists

mod_anti_spam can subscribe to Real-Time Block Lists (RTBLs) such as those published by xmppbl.org. This is a highly effective measure to reduce spam from the network.

To enable this feature, you need to specify one or more compatible spam services in the config file:

anti_spam_services = { "xmppbl.org" }

Content filters

mod_anti_spam also supports optionally filtering messages with specific content or matching certain patterns.

A list of strings to block can be specified in the config file like so:

anti_spam_block_strings = {
  -- Block messages containing the text "exploit"
  "exploit";
}

Alternatively, you can specify a list of Lua patterns. These are similar to regular expressions you may be familiar with from tools like grep, but differ in a number of ways. Lua patterns are faster, but have fewer features. The syntax is not fully compatible with other more widely-used regular expression syntaxes. Read the Lua manual for full details.

anti_spam_block_patterns = {
  -- Block OTR handshake greetings (modern XMPP clients do not use OTR)
  "^%?OTRv2?3?%?";
}

There are no string or pattern filters in the module by default.

Handling reports

We recommend setting up Prosody to allow spam reporting, in case any spam still gets through. Documentation can be found on xmppbl.org’s site.

Compatibility

Compatible with Prosody 0.12 and later.

Installation

With the plugin installer in Prosody 0.12 you can use:

sudo prosodyctl install --server=https://modules.prosody.im/rocks/ mod_anti_spam

For earlier versions see the documentation for installing 3rd party modules

Latest changes

prosody 0.12 compat 2025-01-19
Fix generation of error bounce stanzas 2025-01-17
Don't consider pre-approved contacts as strangers 2025-01-17
Also consider not a stranger if we have a pending (out) sub request 2025-01-17
Optimization to avoid needless string concatenation 2025-01-17