[qmailtoaster] suspect.zip
Dear All, I have a couple of Qmail Toasters. One server sends out digitally signed contract notes as attachments to the other server and those messages as bounced as follows. Hi. This is the qmail-send program at mail.server1.com. I'm afraid I wasn't able to deliver your message to the following addresses. This is a permanent error; I've given up. Sorry it didn't work out. [EMAIL PROTECTED]: User and password not set, continuing without authentication. [EMAIL PROTECTED] 121.xxx.xxx.xxx failed after I sent the message. Remote host said: 554 Your email was rejected because it contains the Suspect.Zip virus But the messages to other servers are delivered. I have the following installed autorespond-toaster-2.0.4-1.3.3 clamav-toaster-0.93-1.3.18 control-panel-toaster-0.5-1.3.4 courier-authlib-toaster-0.59.2-1.3.6 courier-imap-toaster-4.1.2-1.3.7 daemontools-toaster-0.76-1.3.3 ezmlm-cgi-toaster-0.53.324-1.3.3 ezmlm-toaster-0.53.324-1.3.3 isoqlog-toaster-2.1-1.3.4 libdomainkeys-toaster-0.68-1.3.3 libsrs2-toaster-1.0.18-1.3.3 maildrop-toaster-2.0.3-1.3.5 maildrop-toaster-devel-2.0.3-1.3.5 qmailadmin-toaster-1.2.11-1.3.4 qmailmrtg-toaster-4.2-1.3.3 qmail-pop3d-toaster-1.03-1.3.15 qmail-toaster-1.03-1.3.15 qmailtoaster-plus-0.3.0-1.4.4 qmailtoaster-plus.repo-0.1-1 ripmime-toaster-1.4.0.6-1.3.3 simscan-toaster-1.3.1-1.3.6 spamassassin-toaster-3.2.4-1.3.13 squirrelmail-toaster-1.4.9a-1.3.6 ucspi-tcp-toaster-0.88-1.3.5 vpopmail-toaster-5.4.17-1.3.4 vqadmin-toaster-2.3.4-1.3.3 Can anyone help me to solve the issue pls? Regards Biju Jose No virus found in this outgoing message. Checked by AVG. Version: 7.5.524 / Virus Database: 269.23.21/1457 - Release Date: 5/20/2008 4:45 PM
Re: [qmailtoaster] suspect.zip
I guess CLAMAV marks some password-protected archive-files as viruses. I have seen an option ArchiveBlockEncrypted in /etc/clamd.conf. Check that option! Best regards, Johannes Weberhofer Biju Jose wrote: Dear All, I have a couple of Qmail Toasters. One server sends out digitally signed contract notes as attachments to the other server and those messages as bounced as follows. Hi. This is the qmail-send program at mail.server1.com. I'm afraid I wasn't able to deliver your message to the following addresses. This is a permanent error; I've given up. Sorry it didn't work out. [EMAIL PROTECTED]: User and password not set, continuing without authentication. [EMAIL PROTECTED] 121.xxx.xxx.xxx failed after I sent the message. Remote host said: 554 Your email was rejected because it contains the Suspect.Zip virus But the messages to other servers are delivered. I have the following installed autorespond-toaster-2.0.4-1.3.3 clamav-toaster-0.93-1.3.18 control-panel-toaster-0.5-1.3.4 courier-authlib-toaster-0.59.2-1.3.6 courier-imap-toaster-4.1.2-1.3.7 daemontools-toaster-0.76-1.3.3 ezmlm-cgi-toaster-0.53.324-1.3.3 ezmlm-toaster-0.53.324-1.3.3 isoqlog-toaster-2.1-1.3.4 libdomainkeys-toaster-0.68-1.3.3 libsrs2-toaster-1.0.18-1.3.3 maildrop-toaster-2.0.3-1.3.5 maildrop-toaster-devel-2.0.3-1.3.5 qmailadmin-toaster-1.2.11-1.3.4 qmailmrtg-toaster-4.2-1.3.3 qmail-pop3d-toaster-1.03-1.3.15 qmail-toaster-1.03-1.3.15 qmailtoaster-plus-0.3.0-1.4.4 qmailtoaster-plus.repo-0.1-1 ripmime-toaster-1.4.0.6-1.3.3 simscan-toaster-1.3.1-1.3.6 spamassassin-toaster-3.2.4-1.3.13 squirrelmail-toaster-1.4.9a-1.3.6 ucspi-tcp-toaster-0.88-1.3.5 vpopmail-toaster-5.4.17-1.3.4 vqadmin-toaster-2.3.4-1.3.3 Can anyone help me to solve the issue pls? Regards Biju Jose No virus found in this outgoing message. Checked by AVG. Version: 7.5.524 / Virus Database: 269.23.21/1457 - Release Date: 5/20/2008 4:45 PM -- |- | weberhofer GmbH | Johannes Weberhofer | information technologies | Austria, 1080 Wien, Blindengasse 52/3 |--- - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
[qmailtoaster] Qmailtoaster custom patch question
patch to prevent domains not-existing on my server from relaying thru my server. a) i had a client who purchased a email hosting from me : domain1.com he created an [EMAIL PROTECTED] b) now using the SMTP authentication information for the above he also sends/relays emails from [EMAIL PROTECTED] which he has Not Hosted on my server. ie he sends email using the from id as [EMAIL PROTECTED] with SMTP auth as [EMAIL PROTECTED] c) this is a misuse of my email server which i want to prevent by ensuring that when an user SMTP authenticates as [EMAIL PROTECTED] then domain1.com should exist on the server. ie from emailid should be [EMAIL PROTECTED] i plan to patch qmail toaster for the above. as far as i think there should not be any problem. can other experienced people give a thought to this requirement and let me know of the possible problems i may face / care to be taken. raj - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [qmailtoaster] question ???
thanks for your help 2008/5/21 Eric Shubert [EMAIL PROTECTED]: Ariel wrote: you can delete the content that is inside / var / qmail / simscam? ls -lah /var/qmail/simscam 1191595938.800430.10430 1195224345.50318.5 1168514964.810114.1026 1191595928.140878.10358 1167996442.589270.26093 1168515121.270204.2653 1191595427.934396.5668 1167996400.104964.25873 1192108271.518917.16959 1191595819.947716.9341 1167997754.114544.8890 1195176845.657536.9423 1173232130.140856.29163 1192055839.357248.8957 1162850350.251999.25118 1169755567.270201.23208 Yes, as long as it's not mail that's currently being processed. Check the dates. -- -Eric 'shubes' - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
[qmailtoaster] FYI - dsbl.org is having issues
The host www.dsbl.org is having hardware issues, and the ISP that gave it free hosting has seen enough internal changes that the staff who made the arrangments are no longer there to help out. So, as of early AM (US/Eastern) Monday, www.dsbl.org is down and the RBL is not getting updated. While the DNS servers are, as far as I know, still up and running, the data is getting somewhat stale. It may be prudent to disable dsbl.org lookups until the situation is resolved. If you are using SpamHaus Zen, the additional benefit of DSBL is very low. You could choose to discontinue using DSBL entirely. - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [qmailtoaster] POP3-SSL Problem
Gabriel Lai wrote: Hi all, I have the below error message when connecting via POP3-SSL connection. It terminated after a while. Please help @4000483382b925925ebc DEBUG: Unexpected SSL connection shutdown. @4000483382b925926a74 tcpserver: end 4195 status 256 @4000483382b925927244 tcpserver: status: 0/40 @4000483382cb0131b7ac tcpserver: status: 1/40 @4000483382cb0131c74c tcpserver: pid 4202 from 192.168.2.50 @4000483382cb0131cb34 tcpserver: ok 4202 mail.activ.com.my:192.168.2.250:995 :192.168.2.50::1937 We'll need some more information than that Is the SSL certificate on your server still valid? It may have expired.
RE: [qmailtoaster] suspect.zip
Thanks Johannes Weberhofer, I had changed /etc/clamd.conf as follows ScanArchive no ArchiveBlockEncrypted yes Now mails are getting delivered...But when the mail is opened the following is added to the top of the message, which is not elegant. Is there a way I can remove this? Suspicious files were found in the attachments. The file CN_20080520_HEXXS1_NSE3321_Signed.FTIL: Contains password-protected files The original message follows: The original Message Biju Jose -Original Message- From: Johannes Weberhofer, Weberhofer GmbH [mailto:[EMAIL PROTECTED] Sent: Wednesday, May 21, 2008 3:50 PM To: qmailtoaster-list@qmailtoaster.com Subject: Re: [qmailtoaster] suspect.zip I guess CLAMAV marks some password-protected archive-files as viruses. I have seen an option ArchiveBlockEncrypted in /etc/clamd.conf. Check that option! Best regards, Johannes Weberhofer Biju Jose wrote: Dear All, I have a couple of Qmail Toasters. One server sends out digitally signed contract notes as attachments to the other server and those messages as bounced as follows. Hi. This is the qmail-send program at mail.server1.com. I'm afraid I wasn't able to deliver your message to the following addresses. This is a permanent error; I've given up. Sorry it didn't work out. [EMAIL PROTECTED]: User and password not set, continuing without authentication. [EMAIL PROTECTED] 121.xxx.xxx.xxx failed after I sent the message. Remote host said: 554 Your email was rejected because it contains the Suspect.Zip virus But the messages to other servers are delivered. I have the following installed autorespond-toaster-2.0.4-1.3.3 clamav-toaster-0.93-1.3.18 control-panel-toaster-0.5-1.3.4 courier-authlib-toaster-0.59.2-1.3.6 courier-imap-toaster-4.1.2-1.3.7 daemontools-toaster-0.76-1.3.3 ezmlm-cgi-toaster-0.53.324-1.3.3 ezmlm-toaster-0.53.324-1.3.3 isoqlog-toaster-2.1-1.3.4 libdomainkeys-toaster-0.68-1.3.3 libsrs2-toaster-1.0.18-1.3.3 maildrop-toaster-2.0.3-1.3.5 maildrop-toaster-devel-2.0.3-1.3.5 qmailadmin-toaster-1.2.11-1.3.4 qmailmrtg-toaster-4.2-1.3.3 qmail-pop3d-toaster-1.03-1.3.15 qmail-toaster-1.03-1.3.15 qmailtoaster-plus-0.3.0-1.4.4 qmailtoaster-plus.repo-0.1-1 ripmime-toaster-1.4.0.6-1.3.3 simscan-toaster-1.3.1-1.3.6 spamassassin-toaster-3.2.4-1.3.13 squirrelmail-toaster-1.4.9a-1.3.6 ucspi-tcp-toaster-0.88-1.3.5 vpopmail-toaster-5.4.17-1.3.4 vqadmin-toaster-2.3.4-1.3.3 Can anyone help me to solve the issue pls? Regards Biju Jose No virus found in this outgoing message. Checked by AVG. Version: 7.5.524 / Virus Database: 269.23.21/1457 - Release Date: 5/20/2008 4:45 PM -- |- | weberhofer GmbH | Johannes Weberhofer | information technologies | Austria, 1080 Wien, Blindengasse 52/3 |--- - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] No virus found in this incoming message. Checked by AVG. Version: 7.5.524 / Virus Database: 269.23.21/1457 - Release Date: 5/20/2008 4:45 PM No virus found in this outgoing message. Checked by AVG. Version: 7.5.524 / Virus Database: 269.23.21/1457 - Release Date: 5/20/2008 4:45 PM - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [qmailtoaster] Qmailtoaster custom patch question
Raj wrote: patch to prevent domains not-existing on my server from relaying thru my server. a) i had a client who purchased a email hosting from me : domain1.com he created an [EMAIL PROTECTED] b) now using the SMTP authentication information for the above he also sends/relays emails from [EMAIL PROTECTED] which he has Not Hosted on my server. ie he sends email using the from id as [EMAIL PROTECTED] with SMTP auth as [EMAIL PROTECTED] c) this is a misuse of my email server which i want to prevent by ensuring that when an user SMTP authenticates as [EMAIL PROTECTED] then domain1.com should exist on the server. ie from emailid should be [EMAIL PROTECTED] i plan to patch qmail toaster for the above. as far as i think there should not be any problem. can other experienced people give a thought to this requirement and let me know of the possible problems i may face / care to be taken. There is not a patch to do this that I know of. Are you the same user contacting me off-list for this same patch? Things to look out for would be to not stop users from sending to outside domains (relaying). I still also don't see how you would get around the user changing their reply-to address - while writing a patch to do the above would stop them sending email as domain2 through their domain1 account, if they change their reply-to address the end recipient would still be replying to the domain2 address anyway (and only see the reply-to address in their message unless they look at the headers). End result is still the same. - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [qmailtoaster] suspect.zip
Biju Jose wrote: Thanks Johannes Weberhofer, I had changed /etc/clamd.conf as follows ScanArchive no ArchiveBlockEncrypted yes Now mails are getting delivered...But when the mail is opened the following is added to the top of the message, which is not elegant. Is there a way I can remove this? Suspicious files were found in the attachments. The file CN_20080520_HEXXS1_NSE3321_Signed.FTIL: Contains password-protected files The original message follows: The original Message Can we see the full header to see if this was added by clamav? If it was, you'd need to ask the clamav people how to not add this header info. I was not aware clamav even added information to the emails in this manner. - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [qmailtoaster] Sendmail to Toaster Relay
Jake Vickers wrote: Ed Morrison wrote: Jake Vickers wrote: Ed Morrison wrote: Hi All: I am trying to setup my toaster to allow relaying from a Sendmail internal server. I can send email out to an external address like [EMAIL PROTECTED] but for my internal addresses I receive an error of unknown user (see below). Here are my configs. Anyone see what I am doing wrong? Toaster: TCP.SMTP 127.:allow,RELAYCLIENT=,DKSIGN=/var/qmail/control/domainkeys/%/private :allow,BADMIMETYPE=,SENDER_NOCHECK=1,BADLOADERTYPE=M,CHKUSER_RCPTLIMIT=50,CHKUSER_WRONGRCPTLIMIT=10,QMAILQUEUE=/var/qmail/bin/simscan #:allow,BADMIMETYPE=,BADLOADERTYPE=M,CHKUSER_RCPTLIMIT=50,CHKUSER_WRONGRCPTLIMIT=10,DKVERIFY=DEGIJKfh,QMAILQUEUE=/var/qmail/bin/simscan,DKQUEUE=/var/qmail/bin/qmail-queue.orig,DKSIGN=/var/qmail/control/domainkeys/%/private,NOP0FCHECK=1 10.0.2.:allow,RELAYCLIENT=,RBLSMTPD=,SENDER_NOCHECK=1,NOP0FCHECK=1 Linux in general uses the match-bail methodology, so it process the tcp.smtp file in this exact order: does a rule match the 127.* IP address? does a rule match a *.*.*.* IP address? (obviously everything does) does a rule match 10.0.2.*? So your 10.0.2. rule is never even being looked at. Move it to the top of the list and recompile the cdb and see if that resolves it (no, I didn't really even look at the rest of the message, so this may not be a total fix for you). Moving the line to the top of the file made it so that I could not send an email to outside the domain also. Thinking the problem lies with the Sendmail config. What does your tcp.smtp file look like now? I think you're missing the NOP0FCHECK from your :allow line. No, it is till there: 10.0.2.:allow,RELAYCLIENT=,RBLSMTPD=,SENDER_NOCHECK=1,NOP0FCHECK=1 127.:allow,RELAYCLIENT=,DKSIGN=/var/qmail/control/domainkeys/%/private :allow,BADMIMETYPE=,SENDER_NOCHECK=1,BADLOADERTYPE=M,CHKUSER_RCPTLIMIT=50,CHKUSER_WRONGRCPTLIMIT=10,QMAILQUEUE=/var/qmail/bin/simscan #:allow,BADMIMETYPE=,BADLOADERTYPE=M,CHKUSER_RCPTLIMIT=50,CHKUSER_WRONGRCPTLIMIT=10,DKVERIFY=DEGIJKfh,QMAILQUEUE=/var/qmail/bin/simscan,DKQUEUE=/var/qmail/bin/qmail-queue.orig,DKSIGN=/var/qmail/control/domainkeys/%/private,NOP0FCHECK=1 - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [qmailtoaster] Sendmail to Toaster Relay
Ed Morrison wrote: What does your tcp.smtp file look like now? I think you're missing the NOP0FCHECK from your :allow line. No, it is till there: 10.0.2.:allow,RELAYCLIENT=,RBLSMTPD=,SENDER_NOCHECK=1,NOP0FCHECK=1 127.:allow,RELAYCLIENT=,DKSIGN=/var/qmail/control/domainkeys/%/private :allow,BADMIMETYPE=,SENDER_NOCHECK=1,BADLOADERTYPE=M,CHKUSER_RCPTLIMIT=50,CHKUSER_WRONGRCPTLIMIT=10,QMAILQUEUE=/var/qmail/bin/simscan #:allow,BADMIMETYPE=,BADLOADERTYPE=M,CHKUSER_RCPTLIMIT=50,CHKUSER_WRONGRCPTLIMIT=10,DKVERIFY=DEGIJKfh,QMAILQUEUE=/var/qmail/bin/simscan,DKQUEUE=/var/qmail/bin/qmail-queue.orig,DKSIGN=/var/qmail/control/domainkeys/%/private,NOP0FCHECK=1 Sorry to be a pain in the butt, but wanted to make sure everything looked okay from the top down. On the sendmail machine, it looks to be sending to 2 different addresses: ay 20 13:21:27 ftp sendmail[6949]: m4KKLQbD006947: to=[EMAIL PROTECTED], ctladdr=[EMAIL PROTECTED] (0/0), delay=00:00:01, xdelay=00:00:01, mailer=relay, pri=120318, relay=mail.csdsinc.com. [10.0.2.8], dsn=5.1.3, stat=User unknown May 20 13:21:27 ftp sendmail[6949]: m4KKLQbD006947: m4KKLRbD006949: DSN: User unknown May 20 13:21:28 ftp sendmail[6949]: m4KKLRbD006949: [EMAIL PROTECTED], delay=00:00:01, xdelay=00:00:01, Do those accounts actually exist on the QMT machine? I don't know much about sendmail, so hopefully someone who has experience with sendmail can chime in. Is sendmail a requirement? Can I ask what you're trying to accomplish? - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [qmailtoaster] Sendmail to Toaster Relay
Jake Vickers wrote: Ed Morrison wrote: What does your tcp.smtp file look like now? I think you're missing the NOP0FCHECK from your :allow line. No, it is till there: 10.0.2.:allow,RELAYCLIENT=,RBLSMTPD=,SENDER_NOCHECK=1,NOP0FCHECK=1 127.:allow,RELAYCLIENT=,DKSIGN=/var/qmail/control/domainkeys/%/private :allow,BADMIMETYPE=,SENDER_NOCHECK=1,BADLOADERTYPE=M,CHKUSER_RCPTLIMIT=50,CHKUSER_WRONGRCPTLIMIT=10,QMAILQUEUE=/var/qmail/bin/simscan #:allow,BADMIMETYPE=,BADLOADERTYPE=M,CHKUSER_RCPTLIMIT=50,CHKUSER_WRONGRCPTLIMIT=10,DKVERIFY=DEGIJKfh,QMAILQUEUE=/var/qmail/bin/simscan,DKQUEUE=/var/qmail/bin/qmail-queue.orig,DKSIGN=/var/qmail/control/domainkeys/%/private,NOP0FCHECK=1 Sorry to be a pain in the butt, but wanted to make sure everything looked okay from the top down. On the sendmail machine, it looks to be sending to 2 different addresses: ay 20 13:21:27 ftp sendmail[6949]: m4KKLQbD006947: to=[EMAIL PROTECTED], ctladdr=[EMAIL PROTECTED] (0/0), delay=00:00:01, xdelay=00:00:01, mailer=relay, pri=120318, relay=mail.csdsinc.com. [10.0.2.8], dsn=5.1.3, stat=User unknown May 20 13:21:27 ftp sendmail[6949]: m4KKLQbD006947: m4KKLRbD006949: DSN: User unknown May 20 13:21:28 ftp sendmail[6949]: m4KKLRbD006949: [EMAIL PROTECTED], delay=00:00:01, xdelay=00:00:01, Do those accounts actually exist on the QMT machine? I don't know much about sendmail, so hopefully someone who has experience with sendmail can chime in. Is sendmail a requirement? Can I ask what you're trying to accomplish? No pain Jake. I appreciate the help. Yes, the accounts exist on QMT. Unfortunately, sendmail is required. It is for the our web store that is being developed for our new website. - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [qmailtoaster] Sendmail to Toaster Relay
Ed Morrison wrote: No pain Jake. I appreciate the help. Yes, the accounts exist on QMT. Unfortunately, sendmail is required. It is for the our web store that is being developed for our new website. Sorry if I missed something, but if the accounts exist on the system why are you trying to relay? Why are the messages not just addressed to the username, and from [EMAIL PROTECTED] They should be delivered like any normal incoming message then. - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
[qmailtoaster] Problem with signing messages with qmail-dk
Hi all, I have problem with mail server setup using this guide for CentOS 5 http://wiki.qmailtoaster.com/index.php/CentOS_5_QmailToaster_Install The problem is that qmail-dk does not sign all outgoing messages. Everything in configuration seems to be ok and one of outgoing messages is signed but other not. I'm using the webtool below to check the domain key signature and also headers from gmail which says that the signature is pass or hardfail: http://www.skylist.net/resources/authentication.php A DomainKey policy record tester and selector record tester in http://domainkeys.sourceforge.net/ both says that everything is ok. begin:vcard fn:Salih Yakoubov n:Yakoubov;Salih org:Neterra Ltd. adr:;;Andrej Saharov Blvd.;Sofia;Sofia;1784;Bulgaria email;internet:[EMAIL PROTECTED] title:IT Security Specialist tel;work:+35929751616 tel;fax:+35929753436 tel;cell:+359888144906 x-mozilla-html:FALSE url:http://www.neterra.net version:2.1 end:vcard - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [qmailtoaster] FYI - dsbl.org is having issues
Jake Vickers wrote: The host www.dsbl.org is having hardware issues, and the ISP that gave it free hosting has seen enough internal changes that the staff who made the arrangments are no longer there to help out. So, as of early AM (US/Eastern) Monday, www.dsbl.org is down and the RBL is not getting updated. While the DNS servers are, as far as I know, still up and running, the data is getting somewhat stale. It may be prudent to disable dsbl.org lookups until the situation is resolved. If you are using SpamHaus Zen, the additional benefit of DSBL is very low. You could choose to discontinue using DSBL entirely. FWIW, I discontinued using dsbl.org earlier this year because it was blocking American Express statement notifications. -- -Eric 'shubes' - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [qmailtoaster] FYI - dsbl.org is having issues
It's been a year or so since I stopped using DNSBL and spamcop. ZEN.Spamhaus does great on it's own. Phil -Original message- From: Eric Shubert [EMAIL PROTECTED] Date: Wed, 21 May 2008 10:13:05 -0400 To: qmailtoaster-list@qmailtoaster.com Subject: Re: [qmailtoaster] FYI - dsbl.org is having issues Jake Vickers wrote: The host www.dsbl.org is having hardware issues, and the ISP that gave it free hosting has seen enough internal changes that the staff who made the arrangments are no longer there to help out. So, as of early AM (US/Eastern) Monday, www.dsbl.org is down and the RBL is not getting updated. While the DNS servers are, as far as I know, still up and running, the data is getting somewhat stale. It may be prudent to disable dsbl.org lookups until the situation is resolved. If you are using SpamHaus Zen, the additional benefit of DSBL is very low. You could choose to discontinue using DSBL entirely. FWIW, I discontinued using dsbl.org earlier this year because it was blocking American Express statement notifications. -- -Eric 'shubes' - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [qmailtoaster] Problem with signing messages with qmail-dk
Salih Yakoubov wrote: Hi all, I have problem with mail server setup using this guide for CentOS 5 http://wiki.qmailtoaster.com/index.php/CentOS_5_QmailToaster_Install The problem is that qmail-dk does not sign all outgoing messages. Everything in configuration seems to be ok and one of outgoing messages is signed but other not. I'm using the webtool below to check the domain key signature and also headers from gmail which says that the signature is pass or hardfail: http://www.skylist.net/resources/authentication.php A DomainKey policy record tester and selector record tester in http://domainkeys.sourceforge.net/ both says that everything is ok. The DomainKey implementation in QMT is broken. Incoming messages are intermittently checked erroneously (saying signature is invalid when it's valid). It also does not check/honor the testing indicator for the sending domain. I was not aware that there was a problem with outgoing signatures though. Given that the incoming problem is intermittent, I'm not surprised that this problem is intermittent too, as they both share the same code (why I'm not sure, because it's doing entirely different things depending on which end of the smtp session it's on). Anywise, I don't know of anyone working to fixing this. I think you'll either have to live with it as is or find a C programmer who can do the job. Note, there are instructions in the list archives for disabling DomainKeys, which many toaster admins have done. -- -Eric 'shubes' - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [qmailtoaster] Problem with signing messages with qmail-dk
Hi Eric, �Anywise, I don't know of anyone working to fixing this. I think you'll �either have to live with it as is or find a C programmer who can do the job. A few months ago, there was new found inspiration to work on a new GUI along with a few other things. There was a lot of talk, planning and so on but I've not seen a thing about that since then. Do you or anyone else on this list know if something new is being worked on which addresses some of these issues and others? Mike - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [qmailtoaster] Problem with signing messages with qmail-dk
[EMAIL PROTECTED] wrote: Hi Eric, �Anywise, I don't know of anyone working to fixing this. I think you'll �either have to live with it as is or find a C programmer who can do the job. A few months ago, there was new found inspiration to work on a new GUI along with a few other things. There was a lot of talk, planning and so on but I've not seen a thing about that since then. Do you or anyone else on this list know if something new is being worked on which addresses some of these issues and others? Yes there are. There are 2 GUI projects I'm aware of being worked on for QMT. One is going to be OSS (AFAIK) and the other will be closed source. I'm not sure as to what projected release dates are for either, but hopefully soon.
Re: [qmailtoaster] Problem with signing messages with qmail-dk
�Yes there are. �There are 2 GUI projects I'm aware of being worked on for �QMT. �One is going to be OSS (AFAIK) and the other will be closed source. � I'm not sure as to what projected release dates are for either, but �hopefully soon. Cool, the initiatives lived on. Nice to hear, thanks for the update. Mike - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [qmailtoaster] Forwarding Mails to another server (smtproutes)
Hello Eric, thank you for suggesting recordio! While debugging, I have recognized that on the receiving server the certificate.pem file was not readable for the smtp process. I decided to fix that and - voilà - the problem on forwarding mails is gone! Now I can forward the mails from one qmail-server to the Submission port of another qmail-server. Johannes Johannes Weberhofer, Weberhofer GmbH wrote: I have checked the sources and the qmail-remote-auth patch is definitely included. It can be found in qmailtoaster-1.3.1.patch.bz2 which patches qmail-1.03 to netqmail-1.05. I'll see to find time to test with recordio. Johannes Eric Shubert schrieb: Hmmm, that's interesting. I use smtproutes with authentication quite a bit with dyndns.org's outbound mailhop relay, which uses authentication. I've used this toaster feature for about 2 years now. So I'm pretty sure the patch is in there. What's maybe not working is when the toaster is on the relay (receiving) end. That I haven't done. Dan, can you put recordio on either end of your test and see what's going on? Dan McAllister wrote: I have done some testing... I don't know if the QMail-Remote-Auth patch is a part of QMT, but if so - then it is not working. What this patch is /supposed /to do is to allow the addition of username password info in the smtproutes file. The idea being, if I place in my smtproutes file a line like: *:mail.myserver.com [EMAIL PROTECTED] mypassword * which is actually 2 fields longer than a normal smtproutes line (the extra 2 lines being a username (which, in the case of QMT is an email address) and a password, then all my outbound emails should be routed to the server *mail.myserver.com* and when the connection is made, SMTP_AUTH is supposed to be used, using the credentials provided. Any chance someone better at this than I am could figure out how to add the QMail-Remote-Auth patch??? (Or figure out why it isn't working?) I [personally] think that this patch should be a permanent part of the Toaster... any comments? BTW: I tested this by adding a valid username/password entry to a server, then sending a test message, then checking the send log -- which indicates that the connection is still proceeding without the authentication (exact snippet from the log file is: *delivery 29: failure: User_and_password_not_set,_continuing_without_authentication.*) Cheers! Dan Daniel McAllister, President IT4SOHO, LLC 224 - 13th Avenue N St. Petersburg, FL 33701 877-IT4SOHO: Toll Free 727-647-7646 In Pinellas 813-464-2093 In Hillsborough 727-507-9435 Fax Only When did you do your last backup? Ask me about unattended offsite backup solutions... to protect your business, not just your data! Eric Shubert wrote: You got me, then. Maybe a TLS issue? I'd try turning on recordio to see what's happening. You can find instructions on using recordio in the list archives. It'd be nice to have a wiki page on that, but I don't recall anyone writing one yet. Johannes Weberhofer, Weberhofer GmbH wrote: Yes, the user/password is valid on the receiving server. Johannes Eric Shubert schrieb: Is that user/pw an account on the sending or receiving server? It needs to be an account on the receiving server. Johannes Weberhofer, Weberhofer GmbH wrote: Yes, it has (the line is: weberhofer.at:mail.weberhofer.at:587 [EMAIL PROTECTED] password). Johannes Eric Shubert schrieb: Does his machine's smtproutes record include a username and password? It needs that in order to authenticate. I believe the wiki has details. Johannes Weberhofer, Weberhofer GmbH wrote: Hello everyone! I have a question related to the smtproutes. I want to force one of my customers to route external mails through my server, internal mails should stay within his office. I have set up an qmail-toaster within the office which operates perfectly. My server works perfectly, too. When I modify the smptroutes to forward all mails to my server's submission port the customer always gets an error message like this: - returning mail's content [EMAIL PROTECTED]: Connected to 80.237.247.145 but sender was rejected. Remote host said: 503 AUTH first (#5.5.1) - Do you have any ideas how this could be done? Unfortunately the sender does not have a fixed IP address, so he must send authenticated only. Also sending via port 25 does not work. Do you have any ideas? Below you see all the relevant settings and log-files. Best regards, Johannes Weberhofer - /var/qmail/control/smtproutes at my customer's server weberhofer.at:mail.weberhofer.at:587 [EMAIL PROTECTED] password - submission/current in my relaying mail server: @40004817317702ef9834 CHKUSER accepted sender: from [EMAIL PROTECTED]:: remote server.office.mycustomer.domain:unknown:YYY.YYY.YYY.YYY rcpt : sender accepted - smtp/current at my customer's server: @4000481731762d9096c4 status: local 0/10 remote 1/60 @40004817317701c5b27c
[qmailtoaster] qtp and spamdyke upgrade
Good day How would one go about upgrading spamdyke if it was installed with the qtp package? Sam announced on the spamdyke list that spamdyke version 3.1.8 is now available. Is there a proper way to upgrade with the qtp install? Or should I just download compile and replace the executable? DNK - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [qmailtoaster] qtp and spamdyke upgrade
dnk wrote: Good day How would one go about upgrading spamdyke if it was installed with the qtp package? Sam announced on the spamdyke list that spamdyke version 3.1.8 is now available. Is there a proper way to upgrade with the qtp install? Or should I just download compile and replace the executable? DNK Simply rerun the qtp-install-spamdyke script. That should do it (at least that was the intention). Please let us know how you make out with it. -- -Eric 'shubes' - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
RE: [qmailtoaster] suspect.zip
Jake Vickers Wrote : Can we see the full header to see if this was added by clamav? If it was, you'd need to ask the clamav people how to not add this header info. I was not aware clamav even added information to the emails in this manner. Dear Jake I had repeated the test and found that when the email is checked from Squirrelmail, the message is delivered without any alteration and when it is checked from Outlook Express the alert is there. I guess AVG Free 7.5 in the desktop machine is doing the modifications, which is ok with me. Thanks Jake for your support. Regards Biju Jose No virus found in this outgoing message. Checked by AVG. Version: 7.5.524 / Virus Database: 269.23.21/1457 - Release Date: 5/20/2008 4:45 PM - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [qmailtoaster] deferral: TLS_connect_failed;
Did anyone knows how to fix this or if nothing is wrong why it is happening??? I'm having the same problem right now. -- JO senthil vel wrote: Hi List, When i am sending mails to one domain(eyeheight.com http://eyeheight.com) the mail is going out from my server with out any problem. But it is not reaching the mail box of the user. But the mails sent from gmail are reaching that mail box without any problem. When analyzing the /var/log/qmal/send, I got the following log. I really cant rectify. Kindly help @4000480cadfa35ba20a4 starting delivery 27478: msg 1531782 to remote [EMAIL PROTECTED] mailto:[EMAIL PROTECTED] @4000480cadfa35ba5754 status: local 0/10 remote 1/60 @4000480cadfc383fba14 delivery 27478: deferral: TLS_connect_failed;_connected_to_217.207.53.130./ -- Thanks in advance -- Jose R. Ortiz Ubarri (CHEO), CS System Administrator / Scientific Programmer High Performance Computing facility - UPR Email: [EMAIL PROTECTED]|[EMAIL PROTECTED] Phone: 787-758-3054 Fax: 787-758-3058 - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [qmailtoaster] deferral: TLS_connect_failed;
Is spamdyke installed on either one of these toasters? Jose R. Ortiz Ubarri wrote: Did anyone knows how to fix this or if nothing is wrong why it is happening??? I'm having the same problem right now. -- JO senthil vel wrote: Hi List, When i am sending mails to one domain(eyeheight.com http://eyeheight.com) the mail is going out from my server with out any problem. But it is not reaching the mail box of the user. But the mails sent from gmail are reaching that mail box without any problem. When analyzing the /var/log/qmal/send, I got the following log. I really cant rectify. Kindly help @4000480cadfa35ba20a4 starting delivery 27478: msg 1531782 to remote [EMAIL PROTECTED] mailto:[EMAIL PROTECTED] @4000480cadfa35ba5754 status: local 0/10 remote 1/60 @4000480cadfc383fba14 delivery 27478: deferral: TLS_connect_failed;_connected_to_217.207.53.130./ -- Thanks in advance -- -Eric 'shubes' - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [qmailtoaster] deferral: TLS_connect_failed;
If it is not in the qmailtoaster packages then it is not in my toasters. Eric Shubert wrote: Is spamdyke installed on either one of these toasters? Jose R. Ortiz Ubarri wrote: Did anyone knows how to fix this or if nothing is wrong why it is happening??? I'm having the same problem right now. -- JO senthil vel wrote: Hi List, When i am sending mails to one domain(eyeheight.com http://eyeheight.com) the mail is going out from my server with out any problem. But it is not reaching the mail box of the user. But the mails sent from gmail are reaching that mail box without any problem. When analyzing the /var/log/qmal/send, I got the following log. I really cant rectify. Kindly help @4000480cadfa35ba20a4 starting delivery 27478: msg 1531782 to remote [EMAIL PROTECTED] mailto:[EMAIL PROTECTED] @4000480cadfa35ba5754 status: local 0/10 remote 1/60 @4000480cadfc383fba14 delivery 27478: deferral: TLS_connect_failed;_connected_to_217.207.53.130./ -- Thanks in advance - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [qmailtoaster] Problem with Submission Port (Internally and Externally)
I have some clients (using Outlook 2003) who couldn't send email by using port 587. After appling SP2 to their machines, it works a little better, but they still have intermittent problems. I use Thunderbird most of the time and it works fine. So it gives me a feeling that it should still be a mail client problem. Finally I have to ask my clients to uncheck the This server requires a secure connection(SSL) option for the SMTP. Best regards, Bill On Wed, May 21, 2008 at 12:43 PM, Helmut Fritz [EMAIL PROTECTED] wrote: you client error message says it is on port 25... -- *From:* Gabriel Lai [mailto:[EMAIL PROTECTED] *Sent:* Tuesday, May 20, 2008 8:26 PM *To:* qmailtoaster-list@qmailtoaster.com *Subject:* Re: [qmailtoaster] Problem with Submission Port (Internally and Externally) Yes, the problem happens not every time... It's intermittent... I've configured the client to use 587... any clues? - Original Message From: Helmut Fritz [EMAIL PROTECTED] To: qmailtoaster-list@qmailtoaster.com Sent: Wednesday, May 21, 2008 10:57:35 AM Subject: RE: [qmailtoaster] Problem with Submission Port (Internally and Externally) do you mean a problem with the submission port, 587? if so your client is still set for regular smtp - 25. at least that is what the message says... -- *From:* Gabriel Lai [mailto:[EMAIL PROTECTED] *Sent:* Tuesday, May 20, 2008 6:59 PM *To:* qmailtoaster-list@qmailtoaster.com *Subject:* [qmailtoaster] Problem with Submission Port (Internally and Externally) Hello all, I have the attached error message. Anyone had this before?? I've tried internally and externally, both doesn't work. Cheers Gabriel
Re: [qmailtoaster] deferral: TLS_connect_failed;
What are the permissions of your .pem files? (ls -l /var/qmail/control/*.pem) Jose R. Ortiz Ubarri wrote: If it is not in the qmailtoaster packages then it is not in my toasters. Eric Shubert wrote: Is spamdyke installed on either one of these toasters? Jose R. Ortiz Ubarri wrote: Did anyone knows how to fix this or if nothing is wrong why it is happening??? I'm having the same problem right now. -- JO senthil vel wrote: Hi List, When i am sending mails to one domain(eyeheight.com http://eyeheight.com) the mail is going out from my server with out any problem. But it is not reaching the mail box of the user. But the mails sent from gmail are reaching that mail box without any problem. When analyzing the /var/log/qmal/send, I got the following log. I really cant rectify. Kindly help @4000480cadfa35ba20a4 starting delivery 27478: msg 1531782 to remote [EMAIL PROTECTED] mailto:[EMAIL PROTECTED] @4000480cadfa35ba5754 status: local 0/10 remote 1/60 @4000480cadfc383fba14 delivery 27478: deferral: TLS_connect_failed;_connected_to_217.207.53.130./ -- Thanks in advance - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] -- -Eric 'shubes' - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]