Re: [toaster] toaster qmail patches
Hi, I hope I´m not too late, but I would like to sugest a patch to tcpserver to limit the number of concurrent conections per IP/subnet address. I´m using it and it really helps on smtp DOS... sorry, I dont have the URL but it´s not difficult to find it. Still in the subject of qmail patches, how difficult would be a ipv6 patch? On Saturday 08 May 2004 02:42, Bill Shupp wrote: [EMAIL PROTECTED] wrote: Spam Throttle does this, which has already been added in place of Tarpit. But it's based on IP/Network, not user account. Regards, Bill So is there any patch which may use user account instead of ip/network? Not that I am aware of. Regards, Bill -- Christian Lyra POP-PR - RNP http://lyra.soueu.com.br http://wecanstopspam.org Why are programmers non-productive? Because their time is wasted in meetings. Why are programmers rebellious? Because the management interferes too much. Why are the programmers resigning one by one? Because they are burnt out. Having worked for poor management, they no longer value their jobs. The Tao Of Programing
Re: [toaster] qmail patches
I Vote for SPF not for greylist.(could be optional like bill said) smtp auth + tls (maybe TLS can be optional if ppl think so). I think QMAILQUEUE patch works fine for SA or CLAM, i use a small C prog that calls a script that runs SA and CLAM, i don't need no qmailscanner or qscan, there is no need to add extra support for it hence vpopmail is also getting support for that. http://www.arda.homeunix.net/store/qmail/ is now the old qreqex patch unixpimps, but unixpimps patch has so many bugs. qmail bounce patch by Frank Denis. (allows you to set maxsize of bouncing mails, helps to stop abuse). /R
Re: [toaster] qmail patches
qmail-ldap is very interisting too. Look at http://www.nrg4u.com -- Jeronimo Zucco [EMAIL PROTECTED] PGP Public Key: www.riscozero.inf.br/pgp/jczucco.pgp --- Risco Zero - Suporte, Conectividade e Segurança da Informação Ltda. Av. Julio de Castilhos, 81/702 - B. Lourdes - Caxias do Sul - RS Fone/Fax: (54) 3028.5005 - [EMAIL PROTECTED] --- On Wednesday 05 May 2004 16:41, Bill Shupp wrote: All, I'm working on the 0.7 version of my netqmail patch. This time, I thought I'd poll this list to see if there are any useful patches out there that I might not be aware of... please post any suggestions here. So far, the patch will be pretty much the same, but with new versions. However, I'll be replacing the tarpit patch with the spam throttle patch, since the tarpit mechanism is easily (and often) circumvented. I'm contemplating adding the greylisting patch.. but will probably leave that as an optional add-on. Is anyone using the greylisting patch in production? Any thoughts on it? What about SPF? Regards, Bill Shupp
RE: [toaster] qmail patches
I find this idea very good... or for example - limit the number of messages per smtp connection - no mass mails allowed.. or something like that.. Sincerely -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Sent: Freitag, 7. Mai 2004 18:06 To: [EMAIL PROTECTED] Subject: Re: [toaster] qmail patches Not very useful. people can send lot of mails using one mailserver. -- Eero How about limit the number of sending messages of users? For example, new user can only send to 100 messages each day. I think this should prevent users to abuse the smtp server. Regards, Qing
Re: [toaster] qmail patches
All, I'm working on the 0.7 version of my netqmail patch. This time, I thought I'd poll this list to see if there are any useful patches out there that I might not be aware of... please post any suggestions here. So far, the patch will be pretty much the same, but with new versions. However, I'll be replacing the tarpit patch with the spam throttle patch, since the tarpit mechanism is easily (and often) circumvented. I'm contemplating adding the greylisting patch.. but will probably leave that as an optional add-on. Is anyone using the greylisting patch in production? Any thoughts on it? What about SPF? Regards, Bill Shupp I am using greylisting in 2 mail servers. It is good but some users do not like it because of the delay in recieving message. I would like to try SPF and spam throttle. I have read some information about spam throttle before but have no clue how to set it up. I also want to try some patch which may stop users to abuse my smtp server. For example, make sure the return email address of the user to be same as the authenicated username or add the authenicated username to the maessage so that we can find out the spammer easily. Have you ever tried smarter host patch? http://www.jcb-sc.com/qmail/patches/qmail-remote-fallback.html How about add it to the new toaster? Regards, Qing.
Re: [toaster] qmail patches
Edvin Seferovic wrote: http://www.pipeline.com.au/staff/mbowe/isp/webmail-server.htm Good web for spamassasin + virusscanner + razor2 install. They should be integrated to toaster instructions too. I have read greylisting mailing list, someone stated that razor2 can do even better than greylisting. I think it should be included in the new toaster. Regards, Qing.
Re: [toaster] qmail patches
So far, the patch will be pretty much the same, but with new versions. However, I'll be replacing the tarpit patch with the spam throttle patch, since the tarpit mechanism is easily (and often) circumvented. I'm contemplating adding the greylisting patch.. but will probably leave that as an optional add-on. Is anyone using the greylisting patch in production? Any thoughts on it? What about SPF? I have a couple requests/recommendations. I brought this patch up a couple months ago on this list: http://qmail.deliver3.com/qmail-smtpd-viruscan-1.3.patch At the time I was told to get a real virus-scanner and I do run ClamAV through qscanq. I did get this patch to apply to toaster with some tweaking and I think it should be an option during toaster install because: 1) It provides protection against viruses that just broke where virus scanner maintainers have not yet had the chance to build a signature and distribute it. Unfortunately the virus scanner method relies on detecting a virus in the wild first, then building a signature and distributing it - meanwhile the virus has already been propogating. This patch offers an effective solution to this problem and therefore offers a very comprehensive anti-virus solution when used in combination with a qscanq + a good scanner like ClamAV. 2) It provides protection against the DOS that can result from an onslaught of SMTP connections like we had with SoBig. The problem you see with big outbreaks is that it really hits your mail server hard - especially when you have to scan each email coming in and you have sustained 250 incoming connections - all of which are mostly the virus. With this patch, you can easily block these viruses before it ever hits the scanner and therefore greatly reduces server load during big outbreaks. 3) It is a small patch and therefore, easy to maintain/integrate with toaster. It can be applied by default with an empty /var/qmail/control/signatures file so that it does not become effective until that file is populated with MIME signatures. 4) I have found it to be very effective - the only thing that really gets through it are the viruses that are zipped. I do not recommend using all of the signatures that are specified in the patch - more specifically, ditch the ZIP ones as they also block legitimate ZIP files. I would also like to see some instructions on integrating SpamAssassin and qscanq - this would have been helpful when I hooked these two up a while back. If it helps, here is how I did it: I moved qmail-queue to qmail-queue.orig and made my own qmail-queue that is simply a shell script (lame - I know, but it works fine). In the script (5 lines), I simply check for RELAYCLIENT and pipe to spamd if RELAYCLIENT is not present. I did have to email the qscanq author about the fact that it did not preserve the qmail ENV (in other words, qscanq was blowing away RELAYCLIENT) - which he fixed within three days and posted 0.41 - talk about service! Anyways, my way be a dumb way to do it, so if there is a better way (besides writing it in C instead of shell script), I would like to know and think it should be documented on the toaster docs so that everybody can know. My two cents. Mike
[toaster] qmail patches
All, I'm working on the 0.7 version of my netqmail patch. This time, I thought I'd poll this list to see if there are any useful patches out there that I might not be aware of... please post any suggestions here. So far, the patch will be pretty much the same, but with new versions. However, I'll be replacing the tarpit patch with the spam throttle patch, since the tarpit mechanism is easily (and often) circumvented. I'm contemplating adding the greylisting patch.. but will probably leave that as an optional add-on. Is anyone using the greylisting patch in production? Any thoughts on it? What about SPF? Regards, Bill Shupp
Re: [toaster] qmail patches
On Wednesday 05 May 2004 16:41, Bill Shupp wrote: All, I'm working on the 0.7 version of my netqmail patch. This time, I thought I'd poll this list to see if there are any useful patches out there that I might not be aware of... please post any suggestions here. So far, the patch will be pretty much the same, but with new versions. However, I'll be replacing the tarpit patch with the spam throttle patch, since the tarpit mechanism is easily (and often) circumvented. I'm contemplating adding the greylisting patch.. but will probably leave that as an optional add-on. Is anyone using the greylisting patch in production? Any thoughts on it? What about SPF? spf would be good :-) I found this patch set (http://night.rdslink.ro/dudu/qmail/2004_05_02) and the patch to check if the mail from is the same as the one used to authenticate seems to be very useful! Regards, Bill Shupp -- Christian Lyra POP-PR - RNP http://lyra.soueu.com.br http://wecanstopspam.org Thus spake the master programmer: ``A well-written program is its own heaven; a poorly-written program is its own hell.'' The Tao Of Programing
RE: [toaster] qmail patches
How about a patch for an antivirus software? Or spammassasin... I ( for example ) have troubles installing them, and getting them to work with qmail... is there any chance to see those two topics in your toaster? Sincerely Edvin Seferovic -Original Message- From: Christian Lyra [mailto:[EMAIL PROTECTED] Sent: Mittwoch, 5. Mai 2004 22:23 To: [EMAIL PROTECTED] Subject: Re: [toaster] qmail patches On Wednesday 05 May 2004 16:41, Bill Shupp wrote: All, I'm working on the 0.7 version of my netqmail patch. This time, I thought I'd poll this list to see if there are any useful patches out there that I might not be aware of... please post any suggestions here. So far, the patch will be pretty much the same, but with new versions. However, I'll be replacing the tarpit patch with the spam throttle patch, since the tarpit mechanism is easily (and often) circumvented. I'm contemplating adding the greylisting patch.. but will probably leave that as an optional add-on. Is anyone using the greylisting patch in production? Any thoughts on it? What about SPF? spf would be good :-) I found this patch set (http://night.rdslink.ro/dudu/qmail/2004_05_02) and the patch to check if the mail from is the same as the one used to authenticate seems to be very useful! Regards, Bill Shupp -- Christian Lyra POP-PR - RNP http://lyra.soueu.com.br http://wecanstopspam.org Thus spake the master programmer: ``A well-written program is its own heaven; a poorly-written program is its own hell.'' The Tao Of Programing
Re: [toaster] qmail patches
Edvin Seferovic wrote: How about a patch for an antivirus software? Or spammassasin... I ( for example ) have troubles installing them, and getting them to work with qmail... is there any chance to see those two topics in your toaster? Most popular scanners use the QMAILQUEUE patch, like qmail-scanner, and qscanq (optionally). The next version will cover using ClamAV, SpamAssassin, and qscanq together. Regards, Bill Shupp
Re: [toaster] qmail patches
In netqmail-1.0.5, smtp authentication not work, but only work with qmail-1.0.3, without any difference in configuration. You can post a how-to-do a qmail-smtp with AUTH and pop and smtp crypto. Thanks -- Jeronimo Zucco [EMAIL PROTECTED] PGP Public Key: www.riscozero.inf.br/pgp/jczucco.pgp --- Risco Zero - Suporte, Conectividade e Segurança da Informação Ltda. Av. Julio de Castilhos, 81/702 - B. Lourdes - Caxias do Sul - RS Fone/Fax: (54) 3028.5005 - [EMAIL PROTECTED] --- On Wednesday 05 May 2004 16:41, Bill Shupp wrote: All, I'm working on the 0.7 version of my netqmail patch. This time, I thought I'd poll this list to see if there are any useful patches out there that I might not be aware of... please post any suggestions here. So far, the patch will be pretty much the same, but with new versions. However, I'll be replacing the tarpit patch with the spam throttle patch, since the tarpit mechanism is easily (and often) circumvented. I'm contemplating adding the greylisting patch.. but will probably leave that as an optional add-on. Is anyone using the greylisting patch in production? Any thoughts on it? What about SPF? Regards, Bill Shupp
Re: [toaster] qmail patches
Jeronimo Zucco wrote: In netqmail-1.0.5, smtp authentication not work, but only work with qmail-1.0.3, without any difference in configuration. You can post a how-to-do a qmail-smtp with AUTH and pop and smtp crypto. Thanks ? smtp-auth works just fine with netqmail-1.05 + the toaster patch. It also works with encryption as well. Regards, Bill
Re: [toaster] qmail patches
Can you have a link with a how-to do this piece work (SMTP-AUTH)? I have some dificulties with netqmail, but with qmail-1.0.3 works fine. Thank you -- Jeronimo Zucco [EMAIL PROTECTED] PGP Public Key: www.riscozero.inf.br/pgp/jczucco.pgp --- Risco Zero - Suporte, Conectividade e Segurança da Informação Ltda. Av. Julio de Castilhos, 81/702 - B. Lourdes - Caxias do Sul - RS Fone/Fax: (54) 3028.5005 - [EMAIL PROTECTED] --- On Wednesday 05 May 2004 17:37, Bill Shupp wrote: Jeronimo Zucco wrote: In netqmail-1.0.5, smtp authentication not work, but only work with qmail-1.0.3, without any difference in configuration. You can post a how-to-do a qmail-smtp with AUTH and pop and smtp crypto. Thanks ? smtp-auth works just fine with netqmail-1.05 + the toaster patch. It also works with encryption as well. Regards, Bill
Re: [toaster] qmail patches
On Wed, 2004-05-05 at 15:41, Bill Shupp wrote: All, I'm working on the 0.7 version of my netqmail patch. This time, I thought I'd poll this list to see if there are any useful patches out there that I might not be aware of... please post any suggestions here. So far, the patch will be pretty much the same, but with new versions. However, I'll be replacing the tarpit patch with the spam throttle patch, since the tarpit mechanism is easily (and often) circumvented. I'm contemplating adding the greylisting patch.. but will probably leave that as an optional add-on. Is anyone using the greylisting patch in production? Any thoughts on it? What about SPF? I am! I'm using the greylisting patch on 2 servers... It seems to be working well, however, there are drawbacks to it's use... I created a squirrelmail plugin (www.godshell.com/toaster) that allows a user to add in whitelist entries... SPF sounded very interested and it's something I'd like to try out... Of all the patches thus far, I think both chkusr and greylist had the greatest effect ... spam was reduced by a LOT... Regards, Bill Shupp -- --- Jason 'XenoPhage' Frisvold Engine / Technology Programmer [EMAIL PROTECTED] RedHat Certified - RHCE # 803004140609871 MySQL Pro Certified - ID# 207171862 MySQL Core Certified - ID# 205982910 --- Something mysterious is formed, born in the silent void. Waiting alone and unmoving, it is at once still and yet in constant motion. It is the source of all programs. I do not know its name, so I will call it the Tao of Programming. signature.asc Description: This is a digitally signed message part
RE: [toaster] qmail patches
Thats what I ment.. how to use them and combine with this toaster.. Regards Edvin S. -Original Message- From: Jeff Koch [mailto:[EMAIL PROTECTED] Sent: Mittwoch, 5. Mai 2004 23:20 To: [EMAIL PROTECTED] Subject: RE: [toaster] qmail patches Hi: I disagree. Spamassassin and qmail-scanner do a great job of handling viruses and spam and they are easy to install with plenty of options and add-ons including SPF. Let them handle spam and viruses. You could add them to the toaster but please don't add patches to take over their functions. Otherwise you'd need to change the name from Toaster to Kitchen Sink. At 04:27 PM 5/5/2004, you wrote: How about a patch for an antivirus software? Or spammassasin... I ( for example ) have troubles installing them, and getting them to work with qmail... is there any chance to see those two topics in your toaster? Sincerely Edvin Seferovic -Original Message- From: Christian Lyra [mailto:[EMAIL PROTECTED] Sent: Mittwoch, 5. Mai 2004 22:23 To: [EMAIL PROTECTED] Subject: Re: [toaster] qmail patches On Wednesday 05 May 2004 16:41, Bill Shupp wrote: All, I'm working on the 0.7 version of my netqmail patch. This time, I thought I'd poll this list to see if there are any useful patches out there that I might not be aware of... please post any suggestions here. So far, the patch will be pretty much the same, but with new versions. However, I'll be replacing the tarpit patch with the spam throttle patch, since the tarpit mechanism is easily (and often) circumvented. I'm contemplating adding the greylisting patch.. but will probably leave that as an optional add-on. Is anyone using the greylisting patch in production? Any thoughts on it? What about SPF? spf would be good :-) I found this patch set (http://night.rdslink.ro/dudu/qmail/2004_05_02) and the patch to check if the mail from is the same as the one used to authenticate seems to be very useful! Regards, Bill Shupp -- Christian Lyra POP-PR - RNP http://lyra.soueu.com.br http://wecanstopspam.org Thus spake the master programmer: ``A well-written program is its own heaven; a poorly-written program is its own hell.'' The Tao Of Programing Best Regards, Jeff Koch, Intersessions
Re: [toaster] qmail patches
It would be very nice if the toaster could reject messages for over quota users instead of bouncing them. My experience told me that 99% of bouncing messages are due to over quota reasons and almost all will be returned to sender. This is the opinion of a guy running a free mail service with more than 100 000 users paying a big bill for the traffic. Two problems I found with the current version: - If you use it with chkusr patch (mysql, in my case), all messages will be rejected with a 550 error until you delete the domain from /var/qmail/control/locals wich is created by config-fast. - chkusr patch will not work if .qmail-default doesn't contain the string bounce (bounce-no-mailbox). I guess this is the way to find if the domain has a catch-all account but users should be aware of that.
Re: [toaster] qmail patches
Edvin Seferovic wrote: How about a patch for an antivirus software? Or spammassasin... I ( for example ) have troubles installing them, and getting them to work with qmail... is there any chance to see those two topics in your toaster? http://www.pipeline.com.au/staff/mbowe/isp/webmail-server.htm Good web for spamassasin + virusscanner + razor2 install. They should be integrated to toaster instructions too. -- Eero