[xmail] Problems on xmail configuration
Hello. I've the problem that some servers out of any reason cant/does not send there mails to my xmail-accounts. these mails are rejected either by my xmail-server or the opposite uploading mailserver. I can's see anything in logfiles what says about why that problem is as it is. my domain is not blacklisted as far as I know. some people told me that they get any kind error-message when sending mail to me, on other people everything's ok. since i installed a graphical log-analyse-app I see that there are many bounces from time to time, even when myself does not access the pop3 or smtp. for example : on one of my own accounts i communicate with contacts problemless, but when I try to use that account for example for ebay-messages, ebay's account-verification mail does not receive to my mailbox. I believe, something is mal-configured. also in /var/Mailroot are massive spool-messages left inside the directory-tree, even if all mails are downloaded from all mailbox- accounts and was ordered to remove mails from server's account. where comes this from ? could anyone help me to fix this ? I've not so much experience with mail-servers like you. kind regards, ralf moeller ___ xmail mailing list xmail@xmailserver.org http://xmailserver.org/mailman/listinfo/xmail
[xmail] Problems on xmail configuration
Hello. I've the problem that some servers out of any reason cant/does not send there mails to my xmail-accounts. these mails are rejected either by my xmail-server or the opposite uploading mailserver. I can's see anything in logfiles what says about why that problem is as it is. my domain is not blacklisted as far as I know. some people told me that they get any kind error-message when sending mail to me, on other people everything's ok. since i installed a graphical log-analyse-app I see that there are many bounces from time to time, even when myself does not access the pop3 or smtp. for example : on one of my own accounts i communicate with contacts problemless, but when I try to use that account for example for ebay-messages, ebay's account-verification mail does not receive to my mailbox. I believe, something is mal-configured. also in /var/Mailroot are massive spool-messages left inside the directory-tree, even if all mails are downloaded from all mailbox- accounts and was ordered to remove mails from server's account. where comes this from ? could anyone help me to fix this ? I've not so much experience with mail-servers like you. kind regards, ralf moeller ___ xmail mailing list xmail@xmailserver.org http://xmailserver.org/mailman/listinfo/xmail
[xmail] setting up xmail 1.27 , needs help
Hi, I tried to install xmail 1.27 on my VPS. compiling was success then I copied MailRoot to /var/MailRoot and the /biniaries into /var/MailRoot/bin the unreal start/stop script copied to /etc/init.d but I need help in case of the base configuration, I changed xmailserver.test in server.tab to my domainname, but on triing xmail start it says starting up without errormessage but no xmail is in tasklist (ps -A) and tools like xmgr (winversion) seems to work only when xmail is started before (port 6017) help any1 helps to to understand the baseconfiguration and setting up a single useraccount ? regards, Ralf ___ xmail mailing list xmail@xmailserver.org http://xmailserver.org/mailman/listinfo/xmail
Re: [xmail] setting up xmail 1.27 , needs help
it works now, I didnt saw exim4 was running and blocking the ports. cause no logentry and no error-message was provided, I cannot know directly why it dont work. thanks anyway. :-) regards, ralf moeller Ralf Moeller schrieb: Hi, I tried to install xmail 1.27 on my VPS. compiling was success then I copied MailRoot to /var/MailRoot and the /biniaries into /var/MailRoot/bin the unreal start/stop script copied to /etc/init.d but I need help in case of the base configuration, I changed xmailserver.test in server.tab to my domainname, but on triing xmail start it says starting up without errormessage but no xmail is in tasklist (ps -A) and tools like xmgr (winversion) seems to work only when xmail is started before (port 6017) help any1 helps to to understand the baseconfiguration and setting up a single useraccount ? regards, Ralf -- MOELLER IT u. ELECTRONICS (In Gruendung) Ralf Moeller SchlachthofStr. 12A D-27576 Bremerhaven Telefon : +49-471-3095737 Mailbox : +49-471-3069320 http://devkit.gotdns.com ___ xmail mailing list xmail@xmailserver.org http://xmailserver.org/mailman/listinfo/xmail
[xmail] Zombie connections / Should SMTP=EERRS not lead to close(socket) ?
If a connection dies then xmail logs this with an SMTP=EERRS remark in the logs/smtp* file. But the funny thing is: the connection keeps staying in the ESTABLISHED state in linux system properties, ie. cat /proc/net/ip_conntrack shows it like this: tcp 6 381341 ESTABLISHED src=x.x.135.50 dst=y.y.188.67 sport=1384 dport=25 src=y.y.188.67 dst=x.x.135.50 sport=25 dport=1384 [ASSURED] use=1 These entries look like zombie connections, there's even no ping reply from them, and in this EASTABLISHED state they seem to stay forever it seems, because in the above example the log entry was yesterday and the net entry continues showing it even right now... Can it be that the socket gets not closed by xmail after such an EERRS error? ___ xmail mailing list xmail@xmailserver.org http://xmailserver.org/mailman/listinfo/xmail
Re: [xmail] 550 Relay denied
Kövesdi György wrote: So the target domain is local? How is it handled? Real domain or custom domain? Try a domainlist command with ctrlclnt to see if it's listed. That domain is listed in the file domains.tab, so I think it could be handled as a local domain. I don't know why it is rejected. BTW no log files are written at all while this problem exists. I think it also should be mentioned in the log file. I have not used the command CtrlClnt yet: now I don't know what username must be applied. K. Gy. Hi, I use the following linux script to print such info: #!/bin/sh ### ### xmail_showall.sh ### make this script executable by using chmod +x xmail_showall.sh ### fill the settings below ### execute this script from /var/MailRoot directory # # set these values: MAILDOMAIN=mydomain.com MAILHOST=myhost.mydomain.com ADMINUN=adminusername # see the ctrlaccounts.tab file ADMINPW=adminpassword # in clear format # CMDSTART=bin/CtrlClnt -s $MAILHOST -u $ADMINUN -p $ADMINPW echo --- domainlist --- $CMDSTART domainlist echo --- aliasdomainlist --- $CMDSTART aliasdomainlist echo --- userlist --- $CMDSTART userlist echo --- aliaslist --- $CMDSTART aliaslist echo - tree domains# optional ## end ___ xmail mailing list xmail@xmailserver.org http://xmailserver.org/mailman/listinfo/xmail
[xmail] Howto use specific IP instead of using all available IPs ?
Hi Davide et all, I have 2 public IPs on the machine where xmail is running. Currently xmail is reachable via both IPs (plus via localhost of course). Is it possible to say xmail to use only explicitly specified IPs? Best Regards, Ralf ___ xmail mailing list xmail@xmailserver.org http://xmailserver.org/mailman/listinfo/xmail
Re: [xmail] Bug: DisableEmitAuthUser in server.tab does not work
Davide Libenzi wrote: On Sun, 1 Feb 2009, Ralf wrote: Bug report for xmail v1.25: server.tab: DisableEmitAuthUser 1 DisableEmitAuthUser in server.tab does not work. Disabling it works only if that line is (also?) put into user.tab in the mailbox directory of the user. (Yes, the doc says that this setting in user.tab overrides that in server.tab, and that's ok). Just noticed that. You don't need to re-set it inside the user.tab. It's a bug that shows up only when the server uses STARTTLS. The session is reset too deep, and that flag is lost. It has been fixed now, and servers not using STARTTLS should not care about it. Thank you for the quick fix. How do you handle such bug reports and fixes? Is it ok to post such bug reports to the list or do you have maybe a special email-adress or a bug tracking site for it? And how do you distribute such fixed bugs? Is the fix now included in the source distribution at your web site or is there maybe a diff available? BTW, is svn access possible? Best Regards, Ralf amitrader.com ___ xmail mailing list xmail@xmailserver.org http://xmailserver.org/mailman/listinfo/xmail
[xmail] MAIL FROM: vs From and RCPT TO: vs To:
Hi Davide, just a newbie question regarding the SMTP standard: I wonder why besides MAIL FROM: and RCPT TO:, there are also these fields in the mail header: From:, To: (and optionally CC: and BCC:) When do these fields do differ from each other? I mean what's the difference between MAIL FROM: and From:, and the difference between RCPT TO: and To: ? Recently I received a spam mail which was in the To: field adressed to someone else at an other domain, but it was delivered to me because in RCPT TO: my email adress was specified. Is this case a bug of xmail or is it one of the shortcomings of the SMTP standard? TIA Ralf amitrader.com ___ xmail mailing list xmail@xmailserver.org http://xmailserver.org/mailman/listinfo/xmail
[xmail] xmail with ASSP
Hi, is anybody using xmail with ASSP ? (ASSP - Anti-Spam SMTP Proxy -- http://assp.sourceforge.net/ ) What's your experience with it? ___ xmail mailing list xmail@xmailserver.org http://xmailserver.org/mailman/listinfo/xmail
[xmail] Howto map system user accounts to domain email accounts?
Hi, how can I map system user accounts (for example root, news, usenet etc.) to some domain email accounts? The local newsserver (inn2) posts daily status mails to the system user usenet. But xmail brings the following error: [00] XMail bounce: Rcpt=[usenet];Error=[The maximum number of delivery attempts has been reached] [01] Error sending message [1233371803906.3078945680.6.srv2.amitrader.com] from [amitrader.com]. ID:L56 Mail From: m...@localhost Rcpt To: usenet I guess one has to map such system accounts to real email accounts defined in xmail, but how to do it? Any HOWTO on this available? ___ xmail mailing list xmail@xmailserver.org http://xmailserver.org/mailman/listinfo/xmail
Re: [xmail] Howto map system user accounts to domain email accounts?
Davide Libenzi wrote: On Sat, 31 Jan 2009, Ralf wrote: Hi, how can I map system user accounts (for example root, news, usenet etc.) to some domain email accounts? The local newsserver (inn2) posts daily status mails to the system user usenet. But xmail brings the following error: [00] XMail bounce: Rcpt=[usenet];Error=[The maximum number of delivery attempts has been reached] [01] Error sending message [1233371803906.3078945680.6.srv2.amitrader.com] from [amitrader.com]. ID:L56 Mail From: m...@localhost Rcpt To: usenet I guess one has to map such system accounts to real email accounts defined in xmail, but how to do it? Any HOWTO on this available? What is inn2 using to send mail? `sendmail`? Did you setup XMail's `sendmail`? Yes, it is xmail's sendmail. I did it as described in the xmail doc. Did you configure inn2 to send to the corrent addresses? Unfortunately there seems to be no such setting in inn2. But the problem is a general one, for example also for the system root account. Here's my /etc/aliases file: # /etc/aliases # mailer-daemon: postmas...@amitrader.com postmaster: postmas...@amitrader.com nobody: postmas...@amitrader.com usenet: postmas...@amitrader.com news: postmas...@amitrader.com hostmaster: hostmas...@amitrader.com webmaster: hostmas...@amitrader.com www: hostmas...@amitrader.com ftp: hostmas...@amitrader.com abuse: postmas...@amitrader.com noc: hostmas...@amitrader.com security: hostmas...@amitrader.com root: hostmas...@amitrader.com But it seems to have no effect. I've also issued the 'newaliases' command on the Debian box as suggested when modifying the /etc/aliases file. Has nobody else had this problem? How to solve this? ___ xmail mailing list xmail@xmailserver.org http://xmailserver.org/mailman/listinfo/xmail
Re: [xmail] Howto map system user accounts to domain email accounts?
Davide Libenzi wrote: On Sat, 31 Jan 2009, Ralf wrote: You should really read Xmail's documentation. XMail has its own configuration, independent from the system one (since it runs on OSs other than Unix - and even though, most definitely every Unix is different from a configuration POV). In the xmail documentation the following is written under ALIASES.TAB : You can even have wildcards in the domain field, as: * postmasterpostmas...@domain.net So I stopped xmail, appended this entry to aliases.tab: *postmasterpostmas...@amitrader.com and there is already the following line amitrader.com postmasteradmin-mb (Oh yes, they contain hard tabs) Then I started xmail and on the command line (I'm logged in as root) I used mail postmaster to send a test mail, and also sendmail postmaster, but in both cases the mails bounce as follows: 00] XMail bounce: Rcpt=[postmaster];Error=[] [01] Error sending message [1233431322413.3079076752.5.srv2.amitrader.com] from [amitrader.com]. ID:L8C Mail From: r...@localhost Rcpt To: postmaster Any other tips on how to solve this problem? ___ xmail mailing list xmail@xmailserver.org http://xmailserver.org/mailman/listinfo/xmail
Re: [xmail] Howto map system user accounts to domain email accounts?
Davide Libenzi wrote: On Sat, 31 Jan 2009, Ralf wrote: Davide Libenzi wrote: On Sat, 31 Jan 2009, Ralf wrote: You should really read Xmail's documentation. XMail has its own configuration, independent from the system one (since it runs on OSs other than Unix - and even though, most definitely every Unix is different from a configuration POV). In the xmail documentation the following is written under ALIASES.TAB : You can even have wildcards in the domain field, as: * postmasterpostmas...@domain.net So I stopped xmail, appended this entry to aliases.tab: *postmasterpostmas...@amitrader.com and there is already the following line amitrader.com postmasteradmin-mb (Oh yes, they contain hard tabs) Then I started xmail and on the command line (I'm logged in as root) I used mail postmaster to send a test mail, and also sendmail postmaster, but in both cases the mails bounce as follows: 00] XMail bounce: Rcpt=[postmaster];Error=[] [01] Error sending message [1233431322413.3079076752.5.srv2.amitrader.com] from [amitrader.com]. ID:L8C Mail From: r...@localhost Rcpt To: postmaster Any other tips on how to solve this problem? The software you're using sends to postmaster with no domain. That's normal on Unix hosts. I cannot believe it doesn't have a configuration option, maybe you didn't look hard enough. Under Unix there are some predefined local users like news, mail, root etc. They all have by default mail capability. These users and their mail accounts existed even long before the domain name system. That apart, try to export DEFAULT_DOMAIN inside XMail's sendmail shell script. Yes, this works, but this is not documented in the manual! And the above said entry in aliases.tab is not neccessary. But the To: field is IMO not correctly set although the Received: line has it correct: Delivered-To: admin...@amitrader.com Received: from /spool/local by amitrader.com with [XMail 1.25 LMAIL Server] for postmas...@amitrader.com from r...@amitrader.com; Sat, 31 Jan 2009 21:55:54 +0100 To: postmaster Subject: test7a From: r...@amitrader.com Date: Sat, 31 Jan 2009 21:55:53 +0100 test7a ___ xmail mailing list xmail@xmailserver.org http://xmailserver.org/mailman/listinfo/xmail
Re: [xmail] SMTP error: 501 Syntax error in parameters or arguments: (-31)
Ralf wrote: While testing xmail I encountered the following: According to the following document Microsoft seems to use the following syntax in their mail clients: MAIL FROM:ad...@test.com RCPT TO: u...@domain.com Here is the above mentioned MS document: http://support.microsoft.com/kb/153119 The above forms of these commands are not recognized by xmail. xmail gives error 501 Syntax error in parameters or arguments: (-31) xmail accepts only the following form: MAIL FROM:ad...@test.com RCPT TO:u...@domain.com I don't know what the standard says, but I wouldn't be surpized if it's MS guilt. BTW, does xmail not have a debugging log where all commands exchanged with the other side get recorded, ie. something like this: 20:30:22 [65.15.47.74][2392] rsp: 220 Sending Mail Server 20:30:22 [65.15.47.74][2392] connected at 3/8/2005 8:30:22 PM 20:30:22 [65.15.47.74][2392] cmd: EHLO ComputerName 20:30:22 [65.15.47.74][2392] rsp: 250-ns1 Hello [xx.xx.xx.xx] 250-SIZE 31457280 250-AUTH LOGIN CRAM-MD5 250 OK 20:30:22 [65.15.47.74][2392] cmd: AUTH LOGIN 20:30:22 [65.15.47.74][2392] rsp: 334 VXNlcm5hbWU6 20:30:22 [65.15.47.74][2392] rsp: 334 UGFzc3dvcmQ6 20:30:22 [65.15.47.74][2392] rsp: 235 Authentication successful 20:30:22 [65.15.47.74][2392] cmd: MAIL FROM: u...@sendingdomain.com 20:30:22 [65.15.47.74][2392] rsp: 250 OK u...@sendingdomain.com Sender ok 20:30:22 [65.15.47.74][2392] cmd: RCPT TO: u...@aol.com 20:30:22 [65.15.47.74][2392] rsp: 250 OK u...@aol.com Recipient ok 20:30:22 [65.15.47.74][2392] cmd: DATA 20:30:22 [65.15.47.74][2392] rsp: 354 Start mail input; end with CRLF.CRLF 20:30:22 [65.15.47.74][2392] rsp: 250 OK 20:30:25 [65.15.47.74][2392] cmd: QUIT 20:30:25 [65.15.47.74][2392] rsp: 221 Service closing transmission channel 20:30:25 [65.15.47.74][2392] disconnected at 3/8/2005 8:30:25 PM ___ xmail mailing list xmail@xmailserver.org http://xmailserver.org/mailman/listinfo/xmail
[xmail] Bug: DisableEmitAuthUser in server.tab does not work
Bug report for xmail v1.25: server.tab: DisableEmitAuthUser 1 DisableEmitAuthUser in server.tab does not work. Disabling it works only if that line is (also?) put into user.tab in the mailbox directory of the user. (Yes, the doc says that this setting in user.tab overrides that in server.tab, and that's ok). ___ xmail mailing list xmail@xmailserver.org http://xmailserver.org/mailman/listinfo/xmail
Re: [xmail] Help with XMail on XP
Chris Jones wrote: I have been running XMail on two servers. One at the office and one at home. I closed my office and tried to change the domain name of the home server to that of the office server. Now I can't connect to the home server. XMail version 1.22 XP Pro previous domain on home server: home.enersave.ca previous domain on office server: enersave.ca I deleted all the xmail files from the home server and copied in the xmail files from the office server to the home server. I started the service and it is running. Now I can't connect using my email client nor with XMail Manager. What have I done wrong? Have you updated the DNS record with your domain registrar? Ie. enersave.ca must now point to your home IP. For this to happen you must change it in the DNS database. You can diagnose it by using the IP adress first, ie. see if the command ping finds your IP. Then try the same with the domain name and check that it is going to the right IP. You can also enter the IP into your mail-client and connect via IP for such testing purposes. I think it is only a DNS problem; you must update your DNS record. Ask your registrar of your domain or the DNS admin for how to update the DNS record so that it now shows to your home IP. But if your home IP is a dynamic IP then things aren't that easy, see for example http://www.dnydns.com on how to overcome the limitations of dynamic IPs. Cheers, Ralf ___ xmail mailing list xmail@xmailserver.org http://xmailserver.org/mailman/listinfo/xmail
Re: [xmail] Logging of hack attempts and unauthorized relay attempts
Davide Libenzi wrote: On Wed, 28 Jan 2009, Ralf wrote: Hi, how can I enable verbose logging in xmail? I need especially to know about unauthorized connects to the mail/pop server (ie. mailbox hack attempts by trying many password), and also of unauthorized mail relaying/forwarding attempts. Do these events get logged? Yes, once you enable logging with the proper command line options: http://www.xmailserver.org/Readme.html#command_line Thanks Davide. I've now added the following options to the xmail start script (ie. /etc/init.d/xmail) and restarted xmail: XMAIL_CMD_LINE=-Pl -Sl -Ql -Ll -Fl -Cl -Yl Ok, now I'll have to do some test-connects and analyse the logs in the MailRoot/logs dir to locate the entries I need. Many thanks, xmail rocks! :-) ___ xmail mailing list xmail@xmailserver.org http://xmailserver.org/mailman/listinfo/xmail
[xmail] xmail in Debian pkg eats up more than 200 MB ! (maybe debug build? :-)
Here's an IMO interessting observation/experience I made when I installed xmail the first time on my Debian 4 (Etch) and 5 (Lenny) boxes: When I install it from the Debian repository (via apt-get or via aptitude etc.) then xmail eats up more than 200 MB RAM !!!. I couldn't believe it and have immediately deinstalled it! :-) But then I took a quick look into the source code and I couldn't believe that this clean C++ source really eats up that much memory (FYI I'm myself C++ programmer). Just for fun I compiled it myself and installed it and started it. What a surprize! xmail eats up only about 6 MB memory! Not 200 MB ! So, the xmail package maintainer at Debian must have done something badly wrong! Maybe you should inform the xmail package mainter at Debian. I've unfortunately no time at the moment because of switching my mail servers from qmail to xmail. FYI: This issue (6 MB vs 200 MB) is in my case very important because I run my mail servers on rented VPS boxes which have only 128 or 256 MB total RAM allocated for the whole VPS... cu ___ xmail mailing list xmail@xmailserver.org http://xmailserver.org/mailman/listinfo/xmail
Re: [xmail] Enabling SPF howto?
Davide Libenzi wrote: On Thu, 29 Jan 2009, Ralf wrote: I'm trying to switch from qmail to xmail. There I had SPF activated and would like to use SPF also in xmail. I saw that there is a perl script for SPF (http://www.xmailserver.org/xm-spf.pl), but how do I integrate it into xmail? Suggestion. Leave SPF alone. Nobody is using it and its contribution on SPAM-cutting on my servers was totally irrelevant WRT greylisting and RBLs. The whole SPF project tanked, badly. Sorry Davide, but I _must_ use SPF. That's the policy here. I would very much appreciate it if you could show me how to activate SPF in xmail (maybe you should include this info into the comment header of the xm-spf.pl file). Best Regards, Ralf ___ xmail mailing list xmail@xmailserver.org http://xmailserver.org/mailman/listinfo/xmail
Re: [xmail] Enabling SPF howto?
fred wrote: It might help you but this is the script that I have made / use: http://xmailforum.homelinux.net/index.php?showtopic=4260 Tnanks fred, but per our security policy I can use only C/C++ source and bash or perl scripts. But especially php and python aren't allowed on the Linux boxes where our mail servers run. Best Regards, Ralf -Original Message- From: xmail-boun...@xmailserver.org [mailto:xmail-boun...@xmailserver.org] On Behalf Of Ralf Sent: 28 janvier 2009 20:43 To: XMail Users Mailing List Subject: Re: [xmail] Enabling SPF howto? Davide Libenzi wrote: On Thu, 29 Jan 2009, Ralf wrote: I'm trying to switch from qmail to xmail. There I had SPF activated and would like to use SPF also in xmail. I saw that there is a perl script for SPF (http://www.xmailserver.org/xm-spf.pl), but how do I integrate it into xmail? Suggestion. Leave SPF alone. Nobody is using it and its contribution on SPAM-cutting on my servers was totally irrelevant WRT greylisting and RBLs. The whole SPF project tanked, badly. Sorry Davide, but I _must_ use SPF. That's the policy here. I would very much appreciate it if you could show me how to activate SPF in xmail (maybe you should include this info into the comment header of the xm-spf.pl file). Best Regards, Ralf ___ xmail mailing list xmail@xmailserver.org http://xmailserver.org/mailman/listinfo/xmail
Re: [xmail] Enabling SPF howto?
Davide Libenzi wrote: On Thu, 29 Jan 2009, Ralf wrote: fred wrote: It might help you but this is the script that I have made / use: http://xmailforum.homelinux.net/index.php?showtopic=4260 Tnanks fred, but per our security policy I can use only C/C++ source and bash or perl scripts. But especially php and python aren't allowed on the Linux boxes where our mail servers run. I really don't remember. I only briefly used it, given its complete failure to stop anything. You prolly want to use filters.post-rcpt.tab with something like: !aex[TAB]PATH/xm-spf.pl[TAB]--ip[TAB]$(REMOTEADDR)[TAB] \ --sender[TAB]$(FROM)[TAB]--rcpt-to[TAB]$(CRCPT) Where [TAB] is the *real* TAB character, and that's a single line (' \ ') trimmed. I cannot ensure you any success though :) Thanks, will try it out. Here are some examples of SPF catches by my other mail server. It shows that SPF indeed catches spammers who misusingly use the same domain name of the destination mail server or of the To-adress for their own machine to trick the mail server to believe he is from the same domain... SPF is not a spam solution, it just checks whether the sending machine has been authorized (via DNS SPF/TXT record) to send mail for that domain. So it catches those spammers who illegally use other domain names in their own hostname / mail domain name... Log excerpt: Received-SPF: softfail (srv3.amitrader.com: transitioning SPF record at blue.plala.or.jp does not designate 92.39.220.216 as permitted sender) Received-SPF: softfail (srv3.amitrader.com: transitioning SPF record at dvdownunder.com.au does not designate 91.124.168.23 as permitted sender) Received-SPF: softfail (srv3.amitrader.com: transitioning SPF record at msn.com does not designate 213.21.33.60 as permitted sender) The return values (above softfail; there are some more) can help to decide whether to accept or reject mail from such a sender... In the above cases my mail server rejected to accept mail from those spammers. BTW, here is your own SPF entry: :-) Received-SPF: pass (srv3.amitrader.com: SPF record at xmailserver.org designates 64.71.152.41 as permitted sender) Received: (qmail 23732 invoked from network); 29 Jan 2009 03:18:32 +0100 Received: from x35.xmailserver.org (64.71.152.41) by srv3.amitrader.com with (DHE-RSA-AES256-SHA encrypted) SMTP; 29 Jan 2009 03:18:32 +0100 Received-SPF: pass (srv3.amitrader.com: SPF record at xmailserver.org designates 64.71.152.41 as permitted sender) Received: from x35.xmailserver.org ([:::127.0.0.1]:50052) by x35.xmailserver.org with [XMail 1.26 ESMTP Server] id S2CB6CA for r...@amitrader.com from xmail-boun...@xmailserver.org; Wed, 28 Jan 2009 21:17:44 -0500 X-AuthUser: davi...@xmailserver.org Received: from alien.or.mcafeemobile.com by x35.xmailserver.org with [XMail 1.26 ESMTP Server] id S2CB6C7 for xmail@xmailserver.org from davi...@xmailserver.org; Wed, 28 Jan 2009 21:17:29 -0500 Date: Wed, 28 Jan 2009 18:17:28 -0800 (PST) From: Davide Libenzi davi...@xmailserver.org X-X-Sender: dav...@alien.or.mcafeemobile.com To: XMail Users Mailing List xmail@xmailserver.org In-Reply-To: 49810ea6.4090...@amitrader.com Message-ID: alpine.deb.1.10.0901281810160.21...@alien.or.mcafeemobile.com References: 4980fb23.6070...@amitrader.com alpine.deb.1.10.0901281704560.21...@alien.or.mcafeemobile.com 49810994.4020...@amitrader.com 004901c981b3$9abf30c0$d03d92...@com 49810ea6.4090...@amitrader.com User-Agent: Alpine 1.10 (DEB 962 2008-03-14) X-GPG-FINGRPRINT: CFAE 5BEE FD36 F65E E640 56FE 0974 BF23 270F 474E X-GPG-PUBLIC_KEY: http://www.xmailserver.org/davidel.asc MIME-Version: 1.0 Subject: Re: [xmail] Enabling SPF howto? X-BeenThere: xmail@xmailserver.org X-Mailman-Version: 2.1.11 Precedence: list Reply-To: XMail Users Mailing List xmail@xmailserver.org List-Id: XMail Users Mailing List xmail.xmailserver.org List-Unsubscribe: http://xmailserver.org/mailman/options/xmail, mailto:xmail-requ...@xmailserver.org?subject=unsubscribe List-Archive: http://xmailserver.org/pipermail/xmail List-Post: mailto:xmail@xmailserver.org List-Help: mailto:xmail-requ...@xmailserver.org?subject=help List-Subscribe: http://xmailserver.org/mailman/listinfo/xmail, mailto:xmail-requ...@xmailserver.org?subject=subscribe Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: xmail-boun...@xmailserver.org Errors-To: xmail-boun...@xmailserver.org snip ___ xmail mailing list xmail@xmailserver.org http://xmailserver.org/mailman/listinfo/xmail
Re: [xmail] Enabling SPF howto?
Besides the mentioned perl module there is also a native C library for SPF/SRS (and also a prebuilt package in the Debian repository), called libspf2, so it would IMO make sense to add native SPF capability into xmail. http://packages.debian.org/unstable/source/libspf2 Source Package: libspf2 (1.2.9-1) Homepage www.libspf2.org The following binary packages are built from this source package: libspf2-2 library for validating mail senders with SPF libspf2-dev Header and development libraries for libspf2 spfquery query SPF (Sender Policy Framework) to validate mail senders The Sender Policy Framework (SPF) is one part of the SPF/SRS protocol pair. SPF allows email systems such as Sendmail, Postfix, Exim, Zmailer and MS Exchange to check SPF records and make sure that the email is authorized by the domain name that it is coming from. This prevents email forgery, commonly used by spammers, scammers and email viruses/worms. This package contains simple utilities that use libspf2 to test and query SPF records. And here is a list of mail servers with SPF-support: http://www.openspf.org/Implementations Ralf wrote: Davide Libenzi wrote: On Thu, 29 Jan 2009, Ralf wrote: fred wrote: It might help you but this is the script that I have made / use: http://xmailforum.homelinux.net/index.php?showtopic=4260 Tnanks fred, but per our security policy I can use only C/C++ source and bash or perl scripts. But especially php and python aren't allowed on the Linux boxes where our mail servers run. I really don't remember. I only briefly used it, given its complete failure to stop anything. You prolly want to use filters.post-rcpt.tab with something like: !aex[TAB]PATH/xm-spf.pl[TAB]--ip[TAB]$(REMOTEADDR)[TAB] \ --sender[TAB]$(FROM)[TAB]--rcpt-to[TAB]$(CRCPT) Where [TAB] is the *real* TAB character, and that's a single line (' \ ') trimmed. I cannot ensure you any success though :) Thanks, will try it out. Here are some examples of SPF catches by my other mail server. It shows that SPF indeed catches spammers who misusingly use the same domain name of the destination mail server or of the To-adress for their own machine to trick the mail server to believe he is from the same domain... SPF is not a spam solution, it just checks whether the sending machine has been authorized (via DNS SPF/TXT record) to send mail for that domain. So it catches those spammers who illegally use other domain names in their own hostname / mail domain name... Log excerpt: Received-SPF: softfail (srv3.amitrader.com: transitioning SPF record at blue.plala.or.jp does not designate 92.39.220.216 as permitted sender) Received-SPF: softfail (srv3.amitrader.com: transitioning SPF record at dvdownunder.com.au does not designate 91.124.168.23 as permitted sender) Received-SPF: softfail (srv3.amitrader.com: transitioning SPF record at msn.com does not designate 213.21.33.60 as permitted sender) The return values (above softfail; there are some more) can help to decide whether to accept or reject mail from such a sender... In the above cases my mail server rejected to accept mail from those spammers. BTW, here is your own SPF entry: :-) Received-SPF: pass (srv3.amitrader.com: SPF record at xmailserver.org designates 64.71.152.41 as permitted sender) Received: (qmail 23732 invoked from network); 29 Jan 2009 03:18:32 +0100 Received: from x35.xmailserver.org (64.71.152.41) by srv3.amitrader.com with (DHE-RSA-AES256-SHA encrypted) SMTP; 29 Jan 2009 03:18:32 +0100 Received-SPF: pass (srv3.amitrader.com: SPF record at xmailserver.org designates 64.71.152.41 as permitted sender) Received: from x35.xmailserver.org ([:::127.0.0.1]:50052) by x35.xmailserver.org with [XMail 1.26 ESMTP Server] id S2CB6CA for r...@amitrader.com from xmail-boun...@xmailserver.org; Wed, 28 Jan 2009 21:17:44 -0500 X-AuthUser: davi...@xmailserver.org Received: from alien.or.mcafeemobile.com by x35.xmailserver.org with [XMail 1.26 ESMTP Server] id S2CB6C7 for xmail@xmailserver.org from davi...@xmailserver.org; Wed, 28 Jan 2009 21:17:29 -0500 Date: Wed, 28 Jan 2009 18:17:28 -0800 (PST) From: Davide Libenzi davi...@xmailserver.org X-X-Sender: dav...@alien.or.mcafeemobile.com To: XMail Users Mailing List xmail@xmailserver.org In-Reply-To: 49810ea6.4090...@amitrader.com Message-ID: alpine.deb.1.10.0901281810160.21...@alien.or.mcafeemobile.com References: 4980fb23.6070...@amitrader.com alpine.deb.1.10.0901281704560.21...@alien.or.mcafeemobile.com 49810994.4020...@amitrader.com 004901c981b3$9abf30c0$d03d92...@com 49810ea6.4090...@amitrader.com User-Agent: Alpine 1.10 (DEB 962 2008-03-14) X-GPG-FINGRPRINT: CFAE 5BEE FD36 F65E E640 56FE 0974 BF23 270F 474E X-GPG-PUBLIC_KEY: http://www.xmailserver.org/davidel.asc MIME-Version: 1.0 Subject: Re: [xmail] Enabling SPF howto? X-BeenThere: xmail@xmailserver.org X-Mailman-Version: 2.1.11 Precedence: list Reply-To: XMail Users Mailing List xmail