# Update to version 2.0.0## SpamAssassin user preferences -- Implementation

1. # Update to version 2.0.0
2.  
3. ## SpamAssassin user preferences -- Implementation details
4.  
5. In previous versions, the user preferences were been reset each time the plugin
6. was being reconfigured, which was a bad implementation. User preferences should
7. not be resetted when that is not explicitly requested by the administrator.
8.  
9. To solve this problem, the plugin configuration file has been fully rewritten,
10. now providing the administrator with an additional `enforce ` configuration
11. parameter that allows to force usage of a specific plugin.
12.  
13. In enforced mode, users won't be able to act on the plugin through the user
14. preferences interface that is provided by the Roundcube sauserprefs plugin and
15. any existing user preference for that plugin, excepted those which username is
16. `$GLOBAL`, will be deleted.
17.  
18. Note that the `enforce` configuration parameter is only provided for plugins
19. for which there is user preferences settable through the Roundcube sauserprefs
20. plugin.
21.  
22. To resume, the new policy is as follow:
23.  
24. - When a plugin is being enabled, never reset user preference, excepted if in `enforced`
25. mode.
26. - When a plugin is being disabled, never reset user preferences. This don't pose any
27. problem because the plugin will be disabled at site-wide .
28.  
29. ## New default configuration values
30.  
31. This new version comes with new default configuration values which better fit
32. with common usage of SpamAssassin in shared hosting environments.
33.  
34. ### Default policy for SPAM rejection
35.  
36. In previous versions, the default policy for SPAM messages was to reject them.
37. Doing this in shared hosting environments is really a bad practice as there can
38. always have false-positive results. A message could be seen as a SPAM when it
39. is not.
40.  
41. The common rule that dictate how SPAM must be handled by ISPs is to left the
42. decision to end-users. The new policy is to reject SPAM which score is higher
43. than `15`. That is a good compromise and greatly mitigates case of
44. false-positive results.
45.  
46. ### DKIM, SPF SpamAssassin plugins and RBL checks
47.  
48. Both DKIM and SPF SpamAssassin plugins and the SpamAssassin RBL checks are now
49. disabled by default, covering case where administrator already make usage of
50. other i-MSCP plugins:
51.  
52. - i-MSCP PolicydSPF plugin: Same as the SPF SpamAssassin plugin
53. - i-MSCP OpenDKIM plugin: Same as the DKIM SpamAssassin plugin
54. - i-MSCP Postscreen plugin: Same as the RBL checks provided by SpamAssassin
55. - i-MSCP PolicydWeight plugin: Same as the RBL checks provided by SpamAssassin
56.  
57. Excepted the i-MSCP Postscreen plugin usage case, best would be to de-install
58. the i-MSCP plugins listed above and enable their SpamAssassin counterparts.