Re: relay from authenticated users only
Den 2019-07-03 kl. 11:06, skrev Selmeci Tamás: That's the answer to my question. So there's no easy way for me to force plain text auth with OpenSMTPD. I'll consider setting up at least self-signed certificates etc. Have you considered using letsencypt certificates instead of self-signed? Regards, Oscar -- You received this mail because you are subscribed to misc@opensmtpd.org To unsubscribe, send a mail to: misc+unsubscr...@opensmtpd.org
Re: RBLs?
> Am 03.07.2019 um 10:26 schrieb Gilles Chehade : >> On Wed, Jul 03, 2019 at 08:22:59AM +, mabi wrote: >>> On Wednesday, July 3, 2019 9:39 AM, Giovanni Bechis >>> wrote: >>> >>> I think it could be possible to write a filter-spamassassin, that way smtpd >>> could reject based on SpamAssassin tags. >> > > yes, that is definitely doable I have done that already: https://www.umaxx.net/dl/filter-spamassassin-0.1.tar.gz
looking for OpenSmtpd + sqlite + Dovecot + spamd
Hi
Does anyone have an working OpenSmtpd + sqlite + Dovecot + spamd configuration.
I have tried following the table_sqlite, but it also has the old syntax e.g:
accept from any for domain virtual deliver to mbox
Gotten to the point where nothing is running now.
What I am looking for is a server configuration, that can host multible virtual
domains and multible virtual email accounts.
opensmtpd 6.5 server configured eg.
tls support
spamd
example.com
example.net
example.org
us...@example.com
us...@example.com
us...@example.net
us...@example.org
Aliases
root -> us...@example.com
maildir "/var/mail/%{user.username}/Inbox” (or similar alternative mail
storage)
Dovecot support.
Sincerely
Ian
Re: relay from authenticated users only
On Wed, 3 Jul 2019 10:22:48 +0200 Gilles Chehade wrote: > i don't know what version you are using, what system you are using, if a > package was used or if you built yourself, etc... so i'll just guess the > configure options used to build opensmtpd were not correct if auth isn't > using your system users out of the box. OpenSMTPD-6.0.3p1 compiled by me, self-made embedded linux distribution (kernel 4.18.9) on an Itead-A20 ARM board. I believe auth uses /etc/passwd as it should, but not for plain text attempts. > no, OpenSMTPD will not advertise AUTH over plaintext channels. > > it is not an SMTP limitation, it is a decision we made years ago and you > will not have a work-around for this. That's the answer to my question. So there's no easy way for me to force plain text auth with OpenSMTPD. I'll consider setting up at least self-signed certificates etc. Regards, -- Selmeci Tamás http://www.486.hu/ -- You received this mail because you are subscribed to misc@opensmtpd.org To unsubscribe, send a mail to: misc+unsubscr...@opensmtpd.org
Re: RBLs?
On Wed, Jul 03, 2019 at 08:22:59AM +, mabi wrote: > ? Original Message ? > On Wednesday, July 3, 2019 9:39 AM, Giovanni Bechis > wrote: > > > I think it could be possible to write a filter-spamassassin, that way smtpd > > could reject based on SpamAssassin tags. > yes, that is definitely doable > Good idea, I might look at this alternative when I have a moment to write > something in Ruby interfacing OpenSMTPD<->SA. Is there any documentation > available to the filter "API"? I didn't find anything on opensmtpd.org. Or > should I just check the source code of already existing filters as example? > the filter API is not yet documented, i'm working on it at the moment. if you plan on working on filters, you should join our IRC channel or be prepared to face subtle changes that aren't documented yet ;-) -- Gilles Chehade @poolpOrg https://www.poolp.orgpatreon: https://www.patreon.com/gilles -- You received this mail because you are subscribed to misc@opensmtpd.org To unsubscribe, send a mail to: misc+unsubscr...@opensmtpd.org
Re: RBLs?
‐‐‐ Original Message ‐‐‐ On Wednesday, July 3, 2019 9:39 AM, Giovanni Bechis wrote: > I think it could be possible to write a filter-spamassassin, that way smtpd > could reject based on SpamAssassin tags. Good idea, I might look at this alternative when I have a moment to write something in Ruby interfacing OpenSMTPD<->SA. Is there any documentation available to the filter "API"? I didn't find anything on opensmtpd.org. Or should I just check the source code of already existing filters as example? -- You received this mail because you are subscribed to misc@opensmtpd.org To unsubscribe, send a mail to: misc+unsubscr...@opensmtpd.org
Re: relay from authenticated users only
On Wed, Jul 03, 2019 at 07:36:43AM +0200, Selmeci Tam?s wrote: > Somebody suggested me to have a look at OpenSMTPD-extras. It contains > table-passwd. I've got an idea. What if I wrote a custom module that is > about to be called by OpenSMTPD upon authentication like table-passwd? > (table-passwd requires another file to store credentials in, and I > insist on using /etc/passwd only). > auth uses the system users by default so you don't need a custom module. i don't know what version you are using, what system you are using, if a package was used or if you built yourself, etc... so i'll just guess the configure options used to build opensmtpd were not correct if auth isn't using your system users out of the box. > The only question is that is it possible to perform this kind of > authentication in plain text? In other words, will OpenSMTPD call my > module if plain text authentication is tried by the client? (I don't > have enough capacity now to play with self-signed certificates, TLS > etc) Yes, I know, there are security concerns... But technically, is it > possible with OpenSMTPD? > no, OpenSMTPD will not advertise AUTH over plaintext channels. it is not an SMTP limitation, it is a decision we made years ago and you will not have a work-around for this. there's no excuse in 2019 to allow AUTH over plaintext :-) -- Gilles Chehade @poolpOrg https://www.poolp.orgpatreon: https://www.patreon.com/gilles -- You received this mail because you are subscribed to misc@opensmtpd.org To unsubscribe, send a mail to: misc+unsubscr...@opensmtpd.org
Re: RBLs?
On 7/2/19 10:31 PM, mabi wrote: > ‐‐‐ Original Message ‐‐‐ > On Tuesday, July 2, 2019 11:44 AM, Gilles Chehade wrote: > >> if you configure rspamd to flag spam mail as reject, smtpd will reject them. > > Glad to hear that this is possible with rspamd! Because with SpamAssassin it > is only possible to tag the mail as spam but not to reject it upfront. I want > to reject the mail immediately if it detected as spam so that it does not get > relayed further (out to another mail server). > I think it could be possible to write a filter-spamassassin, that way smtpd could reject based on SpamAssassin tags. Giovanni -- You received this mail because you are subscribed to misc@opensmtpd.org To unsubscribe, send a mail to: misc+unsubscr...@opensmtpd.org
