Hi Paul, ASSP 2.0.2_3.3.01
Not so hard to find, it is in the ASSP GUI, under 'infostats' then choose 'beta' [link]. To save your time, this is the link to the Devel ASSP site: (and I actually used this method yesterday' to update my ASSP to the latest) modversion = 3.3.01 http://assp.cvs.sourceforge.net/viewvc/assp/assp2/ The automatic ASSP download option 'kicks-in' typically 20+ hours after a new release. Peter ----- Original Message ----- From: "Paul Farrow" <[email protected]> To: "ASSP development mailing list" <[email protected]> Sent: Tuesday, October 04, 2011 1:16 PM Subject: Re: [Assp-test] Antwort: Re: Thunderbird SSL/TLS with ASSP Version 2 > > Ok please be gentle with me. I have looked at the settings I have for > Version 2 and I can't see any where how I can get it to download your > version 2.0.2_3.3.01 automatically (currently running 2.0.1(3.2.15)). I > thought there was a dev setting to get it to subscribe to the dev > downloads but I can't see that in this version. I also looked at the > logging settings and have the majority set to verbose or diagnostic and > I am not seeing any smtp conversations in the log to try to work out > what is going on - on my installation. No dbg files are being written > at all. Its like the early talker message happens before it does any > other logging etc etc. > > Your help is appreciated. > > Thanks > > Paul > > On Mon, 3 Oct 2011 14:42:32 +0200, Thomas Eckardt wrote: >> ASSP acts transparent in the greeting - what you see comes from your >> MTA. >> >> Paul download and try 2.0.2_3.3.01 and set 'etValencePB' to zero. >> >> Thomas >> >> >> >> >> Von: Paul Farrow <[email protected]> >> An: ASSP development mailing list >> <[email protected]> >> Datum: 03.10.2011 14:09 >> Betreff: Re: [Assp-test] Thunderbird SSL/TLS with ASSP Version >> 2 >> >> >> >> >> I take it other fokes can reproduce this problem I am seeing? >> >> If you definately think its a problem with TB will you raise a ticket >> with Mozilla? As I am kinda stuck with my TB clients using ASSP >> since I >> have updated to version 2. >> >> Thanks again >> >> Paul >> >> On Mon, 3 Oct 2011 11:50:03 +0200, Thomas Eckardt wrote: >>>>> Oct-01-11 20:58:06 [Worker_1] 10.1.10.149 [SMTP Error] 554 5.7.1 >>>>> Misbehaved SMTP session (EarlyTalker) >>> >>> What is assp doing? >>> ASSP analyzes the SMTP command handshake (sequence of command and >>> reply) >>> of the client and server. >>> Every client and server has to follow the SMTP RFC's. >>> >>> An valid SMTP session start looks as follows: >>> >>> 1. client connects to the server over TCP >>> 2. server sends '220 welcome or any other text' >>> it is also possible to send more than one line in the server >>> greeting >>> - >>> for example: >>> 220-welcome to me >>> 220-please follow the RFC >>> 220 mail server is now ready >>> >>> notice the '220-' and '220 ' - every client has to wait until he >>> receives >>> the line '220 ' (without the '-') >>> >>> If the client sends any command (the first has to be HELO or EHLO) >>> before >>> he received the '220 ....' greeting, this is a misbehave in SMTP and >>> this >>> is penalized by assp. >>> Currently all sessions with this misbehave are dropped immediatly. >>> >>> My idea was, to allow such a misbehave for all outgoing mails and >>> 'accepAllMail' IP's - but I'm not sure if this idea is a good one. >>> Because >>> if a local PC gets highjacked by a bot - this check could help to >>> ban >>> it. >>> >>> I'll revert my currently done code changes. ASSP should not allow >>> any >>> SMTP >>> misbehave - how ever, this check could be disabled in the next >>> release by >>> setting 'etValencePB' to zero. >>> >>> >>> Thomas >>> >>> >>> >>> >>> >>> Von: Paul Farrow <[email protected]> >>> An: ASSP development mailing list >>> <[email protected]> >>> Datum: 03.10.2011 03:33 >>> Betreff: Re: [Assp-test] Antwort: Re: Thunderbird SSL/TLS >>> with >>> ASSP >>> Version 2 >>> >>> >>> >>> >>> >>> Thanks Thomas >>> >>> What I don't understand is this is Thunderbird 7.0.1 we are talking >>> about not some unknown mail client. Surely its unlikely that the >>> client >>> is the problem is it??? >>> >>> My friend is using Thunderbird (although I don't know what version >>> at >>> this stage) and he doesn't appear to have this problem with ASSP >>> Version >>> 2 which is why I question is it something to do with my setup. >>> >>> Thanks >>> >>> Paul >>> >>> On Sun, 2 Oct 2011 18:51:03 +0200, Thomas Eckardt wrote: >>>>>that ASSP Version 2 has this issue >>>> >>>> This is not an ASSP issue - your client is doing bad SMTP. >>>> >>>>>when is the next release planned >>>> >>>> possibly tomorrow >>>> >>>> Thomas >>>> >>>> >>>> >>>> >>>> Von: Paul Farrow <[email protected]> >>>> An: ASSP development mailing list >>>> <[email protected]> >>>> Datum: 02.10.2011 13:43 >>>> Betreff: Re: [Assp-test] Thunderbird SSL/TLS with ASSP >>>> Version >>>> 2 >>>> >>>> >>>> >>>> >>>> >>>> Hi Thomas >>>> >>>> I kinda find it hard to believe that ASSP Version 2 has this issue, >>>> I >>>> wondered if it was something more to do with my setup. There must >>>> be >>>> lots of peeps out there that use Thunderbird. My next question is >>>> when >>>> is the next release planned as I would really like to get my >>>> Thunderbird >>>> clients working again without having to switch off SSL? >>>> >>>> Thanks for your quick reply and all you do for the ASSP project. >>>> >>>> Paul >>>> >>>> On Sun, 2 Oct 2011 11:21:06 +0200, Thomas Eckardt wrote: >>>>> Your client '10.1.10.149' is talking before the MTA has sent the >>>>> '220 >>>>> ...' >>>>> greeting - this is a SMTP misbehave. >>>>> The next release will ignore this mistake, if the mail is outgoing >>>>> or >>>>> the >>>>> sending IP matches accepAllMail. >>>>> >>>>> Thomas >>>>> >>>>> >>>>> >>>>> >>>>> Von: Paul Farrow <[email protected]> >>>>> An: <[email protected]> >>>>> Datum: 02.10.2011 03:09 >>>>> Betreff: [Assp-test] Thunderbird SSL/TLS with ASSP Version >>>>> 2 >>>>> >>>>> >>>>> >>>>> >>>>> >>>>> Hi Guys >>>>> >>>>> I have just switched from ASSP Version 1 to ASSP Version 2 and >>>>> can't >>>>> get my Thunderbird (Mac or PC) clients to authenticate over >>>>> SSL/TLS. >>>>> >>>>> The error I see is >>>>> >>>>> Oct-01-11 20:58:06 [Worker_1] Connected: 10.1.10.149:49514 > >>>>> 70.88.29.81:465 > 70.88.29.81:45014 > 70.88.29.81:125 , 7-16 >>>>> Oct-01-11 20:58:06 [Worker_1] 10.1.10.149 Message-Score: added 25 >>>>> for >>>>> EarlyTalker, total score for this message is now 25 >>>>> Oct-01-11 20:58:06 [Worker_1] 10.1.10.149 [SMTP Error] 554 5.7.1 >>>>> Misbehaved SMTP session (EarlyTalker) >>>>> Oct-01-11 20:58:06 [Worker_1] Disconnected: 10.1.10.149 - command >>>>> list >>>>> was 'n/a' - used 1 SocketCalls >>>>> >>>>> I have QMail as the MTA behind ASSP if that is a clue and my >>>>> android >>>>> phone authenticates over SSL/TLS no problem. >>>>> >>>>> It all worked fine over ASSP Version 1 except for the known odd >>>>> SSL >>>>> timeout error with attachments. >>>>> >>>>> Thanks in advance. >>>>> >>>>> Paul >>>>> >>>>> >>>>> >>>>> >>>>> >>>> >>>> >>> >>> >> >> ------------------------------------------------------------------------------ >>>>> All of the data generated in your IT infrastructure is seriously >>>>> valuable. >>>>> Why? It contains a definitive record of application performance, >>>>> security >>>>> threats, fraudulent activity, and more. Splunk takes this data and >>>>> makes >>>>> sense of it. IT sense. And common sense. >>>>> http://p.sf.net/sfu/splunk-d2dcopy2 >>>>> _______________________________________________ >>>>> Assp-test mailing list >>>>> [email protected] >>>>> https://lists.sourceforge.net/lists/listinfo/assp-test >>>>> >>>>> >>>>> >>>>> >>>>> DISCLAIMER: >>>>> ******************************************************* >>>>> This email and any files transmitted with it may be confidential, >>>>> legally >>>>> privileged and protected in law and are intended solely for the >>>>> use >>>>> of the >>>>> >>>>> individual to whom it is addressed. >>>>> This email was multiple times scanned for viruses. There should be >>>>> no >>>>> known virus in this email! >>>>> ******************************************************* >>>> >>>> >>>> >>>> >>>> >>> >>> >> >> ------------------------------------------------------------------------------ >>>> All of the data generated in your IT infrastructure is seriously >>>> valuable. >>>> Why? It contains a definitive record of application performance, >>>> security >>>> threats, fraudulent activity, and more. Splunk takes this data and >>>> makes >>>> sense of it. IT sense. And common sense. >>>> http://p.sf.net/sfu/splunk-d2dcopy2 >>>> _______________________________________________ >>>> Assp-test mailing list >>>> [email protected] >>>> https://lists.sourceforge.net/lists/listinfo/assp-test >>>> >>>> >>>> >>>> >>>> DISCLAIMER: >>>> ******************************************************* >>>> This email and any files transmitted with it may be confidential, >>>> legally >>>> privileged and protected in law and are intended solely for the use >>>> of the >>>> >>>> individual to whom it is addressed. >>>> This email was multiple times scanned for viruses. There should be >>>> no >>>> known virus in this email! >>>> ******************************************************* >>> >>> >>> >>> >>> >> >> ------------------------------------------------------------------------------ >>> All the data continuously generated in your IT infrastructure >>> contains a >>> definitive record of customers, application performance, security >>> threats, fraudulent activity and more. Splunk takes this data and >>> makes >>> sense of it. Business sense. IT sense. Common sense. >>> http://p.sf.net/sfu/splunk-d2dcopy1 >>> _______________________________________________ >>> Assp-test mailing list >>> [email protected] >>> https://lists.sourceforge.net/lists/listinfo/assp-test >>> >>> >>> >>> >>> DISCLAIMER: >>> ******************************************************* >>> This email and any files transmitted with it may be confidential, >>> legally >>> privileged and protected in law and are intended solely for the use >>> of the >>> >>> individual to whom it is addressed. >>> This email was multiple times scanned for viruses. There should be >>> no >>> known virus in this email! >>> ******************************************************* >> >> >> >> >> ------------------------------------------------------------------------------ >> All the data continuously generated in your IT infrastructure >> contains a >> definitive record of customers, application performance, security >> threats, fraudulent activity and more. Splunk takes this data and >> makes >> sense of it. Business sense. IT sense. Common sense. >> http://p.sf.net/sfu/splunk-d2dcopy1 >> _______________________________________________ >> Assp-test mailing list >> [email protected] >> https://lists.sourceforge.net/lists/listinfo/assp-test >> >> >> >> >> DISCLAIMER: >> ******************************************************* >> This email and any files transmitted with it may be confidential, >> legally >> privileged and protected in law and are intended solely for the use >> of the >> >> individual to whom it is addressed. >> This email was multiple times scanned for viruses. There should be no >> known virus in this email! >> ******************************************************* > > > > ------------------------------------------------------------------------------ > All the data continuously generated in your IT infrastructure contains a > definitive record of customers, application performance, security > threats, fraudulent activity and more. Splunk takes this data and makes > sense of it. Business sense. IT sense. Common sense. > http://p.sf.net/sfu/splunk-d2dcopy1 > _______________________________________________ > Assp-test mailing list > [email protected] > https://lists.sourceforge.net/lists/listinfo/assp-test > ------------------------------------------------------------------------------ All the data continuously generated in your IT infrastructure contains a definitive record of customers, application performance, security threats, fraudulent activity and more. Splunk takes this data and makes sense of it. Business sense. IT sense. Common sense. http://p.sf.net/sfu/splunk-d2dcopy1 _______________________________________________ Assp-test mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/assp-test
