Re: [eug-lug]Store and Forward
On Sun, Mar 07, 2004 at 11:02:39PM +, Bob Crandell wrote: Hi, One of my clients is asking for a SPAM filter for his Exchange server. No wise cracks. He's stuck and he knows it. What I was planning on putting in was Sendmail/Procmail/SpamAssassin store and forward mail server. My question is can I and how do I do this without creating users on the mail server? Bob, I've done it with exchange/postfix. With my setup, Postfix accepts email only for users found on the exchange server. New account? Add it in exchange. Postfix will use ldap, or one can have a script that dumps ldap to a hash file for postfix. LDAP is built in to exchange. Cory -- Cory Petkovsek Adapting Information Adaptable IT ConsultingTechnology to Your (858) 705-1655 Business [EMAIL PROTECTED] www.AdaptableIT.com ___ EuG-LUG mailing list [EMAIL PROTECTED] http://mailman.efn.org/cgi-bin/listinfo/eug-lug
Re: [eug-lug]Store and Forward
On Sun, Mar 07, 2004 at 11:02:39PM +, Bob Crandell wrote: LDAP is built in to exchange. Cory Not totally correct. Active directory is based on ldap, and exchange 2000 is dependent on active directory. Exchange is also an active directory aware system. Now if this person were to be using exchange 5.5 or below, then the assumption that ldap is there would be incorrect. For the most part you are right though. :D Chris ___ EuG-LUG mailing list [EMAIL PROTECTED] http://mailman.efn.org/cgi-bin/listinfo/eug-lug
Re: [eug-lug]Store and Forward
Cory Petkovsek ([EMAIL PROTECTED]) wrote: On Sun, Mar 07, 2004 at 11:02:39PM +, Bob Crandell wrote: Hi, One of my clients is asking for a SPAM filter for his Exchange server. No wise cracks. He's stuck and he knows it. What I was planning on putting in was Sendmail/Procmail/SpamAssassin store and forward mail server. My question is can I and how do I do this without creating users on the mail server? Bob, I've done it with exchange/postfix. With my setup, Postfix accepts email only for users found on the exchange server. New account? Add it in exchange. Postfix will use ldap, or one can have a script that dumps ldap to a hash file for postfix. LDAP is built in to exchange. Cory EuG-LUG mailing list Hi, I don't have LDAP installed anywhere. So what you're saying is I need to install the users on the spam filter box in order for it to filter the mail that passes through it? Not a big deal but I was hoping against it. Thanks -- Assured Computing, Inc. When you need to be sure. http://www.assuredcomp.com/ P.O. Box 40814 Eugene, OR 97404 Voice - 541-868-0331 FAX - 541-463-1627 ___ EuG-LUG mailing list [EMAIL PROTECTED] http://mailman.efn.org/cgi-bin/listinfo/eug-lug
Re: [eug-lug]Store and Forward
Maybe a dumb question, but why does the customer want a separate box vs. installing something like netiq's mailmarshal right on the Exchange box? Is the Exchange box the mx? (I hope not) Is this solution being planned for the mx? This is what I'd tend to recommend (anti-spam on either the mx or the Exchange box), since I don't see a reason to add another box to the mix (unless they have a ton of mail traffic). J --- Bob Crandell [EMAIL PROTECTED] wrote: Cory Petkovsek ([EMAIL PROTECTED]) wrote: On Sun, Mar 07, 2004 at 11:02:39PM +, Bob Crandell wrote: Hi, One of my clients is asking for a SPAM filter for his Exchange server. No wise cracks. He's stuck and he knows it. What I was planning on putting in was Sendmail/Procmail/SpamAssassin store and forward mail server. My question is can I and how do I do this without creating users on the mail server? Bob, I've done it with exchange/postfix. With my setup, Postfix accepts email only for users found on the exchange server. New account? Add it in exchange. Postfix will use ldap, or one can have a script that dumps ldap to a hash file for postfix. LDAP is built in to exchange. Cory EuG-LUG mailing list Hi, I don't have LDAP installed anywhere. So what you're saying is I need to install the users on the spam filter box in order for it to filter the mail that passes through it? Not a big deal but I was hoping against it. Thanks -- Assured Computing, Inc. When you need to be sure. http://www.assuredcomp.com/ P.O. Box 40814 Eugene, OR 97404 Voice - 541-868-0331 FAX - 541-463-1627 ___ EuG-LUG mailing list [EMAIL PROTECTED] http://mailman.efn.org/cgi-bin/listinfo/eug-lug __ Do you Yahoo!? Yahoo! Search - Find what youre looking for faster http://search.yahoo.com ___ EuG-LUG mailing list [EMAIL PROTECTED] http://mailman.efn.org/cgi-bin/listinfo/eug-lug
Re: [eug-lug]Store and Forward
On Sun, Mar 07, 2004 at 11:02:39PM +, Bob Crandell wrote: Hi, One of my clients is asking for a SPAM filter for his Exchange server. No wise cracks. He's stuck and he knows it. What I was planning on putting in was Sendmail/Procmail/SpamAssassin store and forward mail server. My question is can I and how do I do this without creating users on the mail server? When I was running the network at NCC oh so many years ago, I solved this by putting what you might call a mail proxy server (at that time, Qmail on an OpenBSD box) in front of the Exchange server. Exchange sat safely inside the firewall, and only saw the stuff that made it through our Qmail filters. No users needed on the Qmail server; it just filtered stuff and passed it on in. Saved our butts numerous times. Ken -- An intellect does not function on the premise of its own impotence. -- Ayn Rand, Capitalism: The Unknown Ideal ___ EuG-LUG mailing list [EMAIL PROTECTED] http://mailman.efn.org/cgi-bin/listinfo/eug-lug
Re: [eug-lug]Store and Forward
I'm wanting a stand alone box more than he is. The Exchange server is SBS 2000 and is barely keeping up. My goal is to use them as a test bed to build a generic box that I can clone and plug into anybody's site and have it just work. The Exchange box is the mx. The spam filter is to become the mx. Thanks Jason ([EMAIL PROTECTED]) wrote: Maybe a dumb question, but why does the customer want a separate box vs. installing something like netiq's mailmarshal right on the Exchange box? Is the Exchange box the mx? (I hope not) Is this solution being planned for the mx? This is what I'd tend to recommend (anti-spam on either the mx or the Exchange box), since I don't see a reason to add another box to the mix (unless they have a ton of mail traffic). J --- Bob Crandell [EMAIL PROTECTED] wrote: Cory Petkovsek ([EMAIL PROTECTED]) wrote: On Sun, Mar 07, 2004 at 11:02:39PM +, Bob Crandell wrote: Hi, One of my clients is asking for a SPAM filter for his Exchange server. No wise cracks. He's stuck and he knows it. What I was planning on putting in was Sendmail/Procmail/SpamAssassin store and forward mail server. My question is can I and how do I do this without creating users on the mail server? Bob, I've done it with exchange/postfix. With my setup, Postfix accepts email only for users found on the exchange server. New account? Add it in exchange. Postfix will use ldap, or one can have a script that dumps ldap to a hash file for postfix. LDAP is built in to exchange. Cory EuG-LUG mailing list Hi, I don't have LDAP installed anywhere. So what you're saying is I need to install the users on the spam filter box in order for it to filter the mail that passes through it? Not a big deal but I was hoping against it. Thanks -- Assured Computing, Inc. When you need to be sure. http://www.assuredcomp.com/ P.O. Box 40814 Eugene, OR 97404 Voice - 541-868-0331 FAX - 541-463-1627 ___ EuG-LUG mailing list [EMAIL PROTECTED] http://mailman.efn.org/cgi-bin/listinfo/eug-lug __ Do you Yahoo!? Yahoo! Search - Find what youre looking for faster http://search.yahoo.com ___ EuG-LUG mailing list [EMAIL PROTECTED] http://mailman.efn.org/cgi-bin/listinfo/eug-lug -- Assured Computing, Inc. When you need to be sure. http://www.assuredcomp.com/ P.O. Box 40814 Eugene, OR 97404 Voice - 541-868-0331 FAX - 541-463-1627 ___ EuG-LUG mailing list [EMAIL PROTECTED] http://mailman.efn.org/cgi-bin/listinfo/eug-lug
Re: [eug-lug]Store and Forward
Ah, SBS and Exchange is the mx. Zoinks! or, alternately, Yikes! Good plan for the spam/mx box; keep us posted (sorry I don't have any other assistance). J --- Bob Crandell [EMAIL PROTECTED] wrote: I'm wanting a stand alone box more than he is. The Exchange server is SBS 2000 and is barely keeping up. My goal is to use them as a test bed to build a generic box that I can clone and plug into anybody's site and have it just work. The Exchange box is the mx. The spam filter is to become the mx. Thanks Jason ([EMAIL PROTECTED]) wrote: Maybe a dumb question, but why does the customer want a separate box vs. installing something like netiq's mailmarshal right on the Exchange box? Is the Exchange box the mx? (I hope not) Is this solution being planned for the mx? This is what I'd tend to recommend (anti-spam on either the mx or the Exchange box), since I don't see a reason to add another box to the mix (unless they have a ton of mail traffic). J --- Bob Crandell [EMAIL PROTECTED] wrote: Cory Petkovsek ([EMAIL PROTECTED]) wrote: On Sun, Mar 07, 2004 at 11:02:39PM +, Bob Crandell wrote: Hi, One of my clients is asking for a SPAM filter for his Exchange server. No wise cracks. He's stuck and he knows it. What I was planning on putting in was Sendmail/Procmail/SpamAssassin store and forward mail server. My question is can I and how do I do this without creating users on the mail server? Bob, I've done it with exchange/postfix. With my setup, Postfix accepts email only for users found on the exchange server. New account? Add it in exchange. Postfix will use ldap, or one can have a script that dumps ldap to a hash file for postfix. LDAP is built in to exchange. Cory EuG-LUG mailing list Hi, I don't have LDAP installed anywhere. So what you're saying is I need to install the users on the spam filter box in order for it to filter the mail that passes through it? Not a big deal but I was hoping against it. Thanks -- Assured Computing, Inc. When you need to be sure. http://www.assuredcomp.com/ P.O. Box 40814 Eugene, OR 97404 Voice - 541-868-0331 FAX - 541-463-1627 ___ EuG-LUG mailing list [EMAIL PROTECTED] http://mailman.efn.org/cgi-bin/listinfo/eug-lug __ Do you Yahoo!? Yahoo! Search - Find what youre looking for faster http://search.yahoo.com ___ EuG-LUG mailing list [EMAIL PROTECTED] http://mailman.efn.org/cgi-bin/listinfo/eug-lug -- Assured Computing, Inc. When you need to be sure. http://www.assuredcomp.com/ P.O. Box 40814 Eugene, OR 97404 Voice - 541-868-0331 FAX - 541-463-1627 ___ EuG-LUG mailing list [EMAIL PROTECTED] http://mailman.efn.org/cgi-bin/listinfo/eug-lug __ Do you Yahoo!? Yahoo! Search - Find what youre looking for faster http://search.yahoo.com ___ EuG-LUG mailing list [EMAIL PROTECTED] http://mailman.efn.org/cgi-bin/listinfo/eug-lug
[eug-lug]second NIC for dedicated connection
I've added a second NIC to my fileserver and gamebox for dedicated connections. I can SSH into the fileserver over the dedicated connection but I can't connect via samba or NFS. I've already changed my /etc/hosts, hosts.allow, smb.conf, and exports files. Am I missing something else? Should I reboot {gasp} the fileserver? TIA, Mr O. __ Do you Yahoo!? Yahoo! Search - Find what youre looking for faster http://search.yahoo.com ___ EuG-LUG mailing list [EMAIL PROTECTED] http://mailman.efn.org/cgi-bin/listinfo/eug-lug
Re: [eug-lug]second NIC for dedicated connection
Any chance you have ipchains or IPtables running? Mr O [EMAIL PROTECTED] writes: % I've added a second NIC to my fileserver and gamebox for % dedicated connections. I can SSH into the fileserver over the % dedicated connection but I can't connect via samba or NFS. I've % already changed my /etc/hosts, hosts.allow, smb.conf, and % exports files. Am I missing something else? Should I reboot % {gasp} the fileserver? % % TIA, % % Mr O. % % __ % Do you Yahoo!? % Yahoo! Search - Find what youre looking for faster % http://search.yahoo.com % ___ % EuG-LUG mailing list % [EMAIL PROTECTED] % http://mailman.efn.org/cgi-bin/listinfo/eug-lug - John Sechrest . Helping people use . computers and the Internet .more effectively . . Internet: [EMAIL PROTECTED] . . http://www.peak.org/~sechrest ___ EuG-LUG mailing list [EMAIL PROTECTED] http://mailman.efn.org/cgi-bin/listinfo/eug-lug
Re: [eug-lug]Store and Forward
On Wed, Mar 10, 2004 at 08:49:57AM -0600, Christopher Forsythe wrote: On Sun, Mar 07, 2004 at 11:02:39PM +, Bob Crandell wrote: LDAP is built in to exchange. Cory Not totally correct. Active directory is based on ldap, and exchange 2000 is dependent on active directory. Exchange is also an active directory aware system. Now if this person were to be using exchange 5.5 or below, then the assumption that ldap is there would be incorrect. For the most part you are right though. :D Excuse me? When's the last time you've looked at an Exchange 5.5 server. It has a built in ldap server that ties in to all of the entries in the server. Try pointing an ldapsearch at it and see what comes out. Cory -- Cory Petkovsek Adapting Information Adaptable IT ConsultingTechnology to Your (858) 705-1655 Business [EMAIL PROTECTED] www.AdaptableIT.com ___ EuG-LUG mailing list [EMAIL PROTECTED] http://mailman.efn.org/cgi-bin/listinfo/eug-lug
Re: [eug-lug]Store and Forward
On Wed, Mar 10, 2004 at 11:48:20AM -0800, Jason wrote: Maybe a dumb question, but why does the customer want a separate box vs. installing something like netiq's mailmarshal right on the Exchange box? The customer probably wants a solution, not necessarily a separate box. How much does mailmarshall cost? I tried to find out, but apparently it costs too much to put the price tag on the website. Is the Exchange box the mx? (I hope not) Is this solution being planned for the mx? This is what I'd tend to recommend (anti-spam on either the mx or the Exchange box), since I don't see a reason to add another box to the mix (unless they have a ton of mail traffic). Here we are, $630 for 100 email boxes $230 for a 1 year upgrade plan for same. $65 for 1 year of tech support That price isn't bad, but I'd choose a separate box for the same reasons: - Because of more control, I find it more convenient to work in a unix environment. A client isn't going to work on it either way, so it doesn't matter to them. - Extended licensing costs are dollars they can pay me. They are likely going to pay me the same either way, commercial or OSS, so why not save them some money. - OSS is open source, completely trouble-shootable, free, Free, etc - Upgrades are free. - Additional mailboxes are free. - I can easily and quickly make the box a secure webserver too, add webmail for another hour. Want bar graphs of your internet traffic? - I can set it up or troubleshoot it remotely and securely with the default setup over a slow internet connection. You can do most of that with windows, but not all four. Cory -- Cory Petkovsek Adapting Information Adaptable IT ConsultingTechnology to Your (858) 705-1655 Business [EMAIL PROTECTED] www.AdaptableIT.com ___ EuG-LUG mailing list [EMAIL PROTECTED] http://mailman.efn.org/cgi-bin/listinfo/eug-lug
Re: [eug-lug]second NIC for dedicated connection
On Wed, Mar 10, 2004 at 09:09:27PM -0800, Mr O wrote: I've added a second NIC to my fileserver and gamebox for dedicated connections. I can SSH into the fileserver over the dedicated connection but I can't connect via samba or NFS. I've already changed my /etc/hosts, hosts.allow, smb.conf, and exports files. Am I missing something else? Should I reboot {gasp} the fileserver? Did you reboot when you put the card in? ;) Running redhat? Check your firewall. Are the servers listening on all the interfaces? netstat is your friend. You should see: 0.0.0.0:139 for samba on all interfaces, or 10.0.0.5:139 for samba on one interface/ip. Show output of netstat -nltup. Cory -- Cory Petkovsek Adapting Information Adaptable IT ConsultingTechnology to Your (858) 705-1655 Business [EMAIL PROTECTED] www.AdaptableIT.com ___ EuG-LUG mailing list [EMAIL PROTECTED] http://mailman.efn.org/cgi-bin/listinfo/eug-lug
Re: [eug-lug]Store and Forward
On Wed, Mar 10, 2004 at 06:54:02PM +, Bob Crandell wrote: Hi, I don't have LDAP installed anywhere. So what you're saying is I need to install the users on the spam filter box in order for it to filter the mail that passes through it? Not a big deal but I was hoping against it. Thanks No, this is what I have at one site: 1) Postfix+amavisd-new+spamassassin on one server 2) default exchange 5.5 on another server 3) script that dumps ldap entries from exchange to a text file that postfix reads. Easy as one, two, three. It provides these benefits over other solutions I've seen: - All users modification is done on the exchange server. #3 takes care of new/removed users. No user accounts on the postfix server - Postfix accepts mail _only_ for valid email accounts on the exchange server. Previous email filters I've worked with accepted all mail at the filter level. Then crap stayed in the filter for days on end because NDR reports to nonexistant.domain.com failed to go. - Postfix allows checking via perl compatible regular expressions. That is very cool. Cory -- Cory Petkovsek Adapting Information Adaptable IT ConsultingTechnology to Your (858) 705-1655 Business [EMAIL PROTECTED] www.AdaptableIT.com ___ EuG-LUG mailing list [EMAIL PROTECTED] http://mailman.efn.org/cgi-bin/listinfo/eug-lug
Re: [eug-lug]second NIC for dedicated connection
route -an fs:ifconfig -a gbox:ifconfig -a list routes on both boxes are you sure that ssh is in fact going over the dedicated connection? On Wednesday, March 10, 2004, at 09:09 PM, Mr O wrote: I've added a second NIC to my fileserver and gamebox for dedicated connections. I can SSH into the fileserver over the dedicated connection but I can't connect via samba or NFS. I've already changed my /etc/hosts, hosts.allow, smb.conf, and exports files. Am I missing something else? Should I reboot {gasp} the fileserver? TIA, Mr O. __ Do you Yahoo!? Yahoo! Search - Find what youre looking for faster http://search.yahoo.com ___ EuG-LUG mailing list [EMAIL PROTECTED] http://mailman.efn.org/cgi-bin/listinfo/eug-lug -- Metaphors for system administration --- bailing the titanic with paper cups: or polishing the deck chairs thereof steering an iceberg with a broom: nonexciting challenges await you capturing runaway bulldozers:once is chance, twice coincidence, ... ___ EuG-LUG mailing list [EMAIL PROTECTED] http://mailman.efn.org/cgi-bin/listinfo/eug-lug