[xmail] Re: Dynamic DNS / Don't use SPF
This 'forwarding' issue is resolved with 'SRS' (Sender Rewriting = Scheme) that complements SPF. In fact SPF allways need SRS :) (except on final smtp servers that you are sure it's not possible to = forward to foreign servers that are not controlled by you) The couple SPF + SRS can be called 'new' SPF, and many products = implementing SPF implement SRS too. Some info on SRS here : http://www.openspf.org/SRS Francis -Message d'origine- De : [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] la part de Ivo Smits Envoy=E9 : vendredi 27 avril 2007 01:17 =C0 : xmail@xmailserver.org Objet : [xmail] Re: Dynamic DNS / Don't use SPF Someone pointed out that SPF may cause other problems. A=20 recent example: I ([EMAIL PROTECTED]) tried to email some abuse department,=20 [EMAIL PROTECTED] This address was redirected to [EMAIL PROTECTED] My server delivers my email to MX1.example.com, which=20 redirects the email. MX1.isp.com sees a mail from the IP of MX1.example.com, with=20 the address=20 [EMAIL PROTECTED], it then checks the SPF record for UFO-Net.nl and notices that=20 MX1.example.com is not allowed to send this mail. So probably everyone will end up with a SPF record that tells=20 the other=20 mailserver to just accept email from everywhere (even GMail uses this=20 record!). The only use of SPF may be to skip some resource-expensive checks like = spamassassin. Ivo - To unsubscribe from this list: send the line unsubscribe xmail in the body of a message to [EMAIL PROTECTED] For general help: send the line help in the body of a message to [EMAIL PROTECTED]
[xmail] Re: Dynamic DNS / Don't use SPF
SRS has a couple of problems, which make me assume that it's not going to really get anywhere: 1) If you implement SPF, then you have to rely on the fact that forwarding services of your recipients implemented SRS. 2) The from address gets mocked up. Making it not very user readable. 3) The from address SRS created would change from time to time (it includes a time stamp). So the same person sending me two mails, has two different addresses. 4) The from address SRS created is meant to expire (otherwise abuse via such an address would be possible). So replying to that e-mail you received last week, won't work. Sure, you know all about SRS, so you're able to find out what the real address of the sender was. But will your mom be able to do so? Basically it comes down to this: If you implement SPF, then you could assume that e-mails you send from servers that are trusted according to SPF and that don't get forwarded, are more likely to get through the spam filters. But your SPF record is best to also allow mails from other servers simply because you never know if your recipient might be using forwarding. Sincerely, Bart Mortelmans CLEMENT Francis wrote: This 'forwarding' issue is resolved with 'SRS' (Sender Rewriting = Scheme) that complements SPF. In fact SPF allways need SRS :) (except on final smtp servers that you are sure it's not possible to = forward to foreign servers that are not controlled by you) The couple SPF + SRS can be called 'new' SPF, and many products = implementing SPF implement SRS too. Some info on SRS here : http://www.openspf.org/SRS Francis -Message d'origine- De : [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] la part de Ivo Smits Envoy=E9 : vendredi 27 avril 2007 01:17 =C0 : xmail@xmailserver.org Objet : [xmail] Re: Dynamic DNS / Don't use SPF Someone pointed out that SPF may cause other problems. A=20 recent example: I ([EMAIL PROTECTED]) tried to email some abuse department,=20 [EMAIL PROTECTED] This address was redirected to [EMAIL PROTECTED] My server delivers my email to MX1.example.com, which=20 redirects the email. MX1.isp.com sees a mail from the IP of MX1.example.com, with=20 the address=20 [EMAIL PROTECTED], it then checks the SPF record for UFO-Net.nl and notices that=20 MX1.example.com is not allowed to send this mail. So probably everyone will end up with a SPF record that tells=20 the other=20 mailserver to just accept email from everywhere (even GMail uses this=20 record!). The only use of SPF may be to skip some resource-expensive checks like = spamassassin. Ivo - To unsubscribe from this list: send the line unsubscribe xmail in the body of a message to [EMAIL PROTECTED] For general help: send the line help in the body of a message to [EMAIL PROTECTED] - To unsubscribe from this list: send the line unsubscribe xmail in the body of a message to [EMAIL PROTECTED] For general help: send the line help in the body of a message to [EMAIL PROTECTED]
[xmail] Re: Dynamic DNS / Don't use SPF
-Message d'origine- De : [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] la part de Bart Mortelmans Envoy=E9 : vendredi 27 avril 2007 09:41 =C0 : xmail@xmailserver.org Objet : [xmail] Re: Dynamic DNS / Don't use SPF SRS has a couple of problems, which make me assume that it's not going = to really get anywhere: 1) If you implement SPF, then you have to rely on the fact that=20 forwarding services of your recipients implemented SRS. The mail from rewrite done by srs on forwarded mails will be used as = is by any no 'srs' intermediate server on any next hops in the route to the = final server (that have not to be 'srs' too) 2) The from address gets mocked up. Making it not very user = readable. NO, it's the SMTP MAIL FROM that is changed NEVER the 'From' field in = the mail itself The 'user' never see the 'Mail From' in any mua 'normal' views, but = only when wanting to view de complete headers and if the smtp servers added = some info about the real 'mail from' used in the smtp transaction. The 'From' is not derived from the SMTP MAIL FROM, as the From is = allready in the mail header and written by the sender mua=20 3) The from address SRS created would change from time to time (it=20 includes a time stamp). So the same person sending me two=20 mails, has two=20 different addresses. Yes at smtp level, false at 'mua' level :) The final user see exactly the same address 4) The from address SRS created is meant to expire (otherwise=20 abuse via=20 such an address would be possible). So replying to that e-mail you=20 received last week, won't work. Sure, you know all about SRS,=20 so you're=20 able to find out what the real address of the sender was. But=20 will your=20 mom be able to do so? False, as said, the mua use the From and Reply-to 'mail header' fields, = not the smtp MAIL FROM that they dont know nothing. So replying is ok and never change. Basically it comes down to this: If you implement SPF, then you could assume that e-mails you send from = servers that are trusted according to SPF and that don't get=20 forwarded, are more likely to get through the spam filters. But your SPF record is best to also allow mails from other servers=20 simply because you never know if your recipient might be using=20 forwarding. Sincerely, Bart Mortelmans Francis - To unsubscribe from this list: send the line unsubscribe xmail in the body of a message to [EMAIL PROTECTED] For general help: send the line help in the body of a message to [EMAIL PROTECTED]
[xmail] Re: Dynamic DNS / Don't use SPF
Thanks for clearing that out! Then my next question would be: is there something that would implement SRS in forwarding within XMailserver? Sincerely, Bart Mortelmans CLEMENT Francis wrote: -Message d'origine- De : [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] la part de Bart Mortelmans Envoy=E9 : vendredi 27 avril 2007 09:41 =C0 : xmail@xmailserver.org Objet : [xmail] Re: Dynamic DNS / Don't use SPF SRS has a couple of problems, which make me assume that it's not going = to really get anywhere: 1) If you implement SPF, then you have to rely on the fact that=20 forwarding services of your recipients implemented SRS. The mail from rewrite done by srs on forwarded mails will be used as = is by any no 'srs' intermediate server on any next hops in the route to the = final server (that have not to be 'srs' too) 2) The from address gets mocked up. Making it not very user = readable. NO, it's the SMTP MAIL FROM that is changed NEVER the 'From' field in = the mail itself The 'user' never see the 'Mail From' in any mua 'normal' views, but = only when wanting to view de complete headers and if the smtp servers added = some info about the real 'mail from' used in the smtp transaction. The 'From' is not derived from the SMTP MAIL FROM, as the From is = allready in the mail header and written by the sender mua=20 3) The from address SRS created would change from time to time (it=20 includes a time stamp). So the same person sending me two=20 mails, has two=20 different addresses. Yes at smtp level, false at 'mua' level :) The final user see exactly the same address 4) The from address SRS created is meant to expire (otherwise=20 abuse via=20 such an address would be possible). So replying to that e-mail you=20 received last week, won't work. Sure, you know all about SRS,=20 so you're=20 able to find out what the real address of the sender was. But=20 will your=20 mom be able to do so? False, as said, the mua use the From and Reply-to 'mail header' fields, = not the smtp MAIL FROM that they dont know nothing. So replying is ok and never change. Basically it comes down to this: If you implement SPF, then you could assume that e-mails you send from = servers that are trusted according to SPF and that don't get=20 forwarded, are more likely to get through the spam filters. But your SPF record is best to also allow mails from other servers=20 simply because you never know if your recipient might be using=20 forwarding. Sincerely, Bart Mortelmans Francis - To unsubscribe from this list: send the line unsubscribe xmail in the body of a message to [EMAIL PROTECTED] For general help: send the line help in the body of a message to [EMAIL PROTECTED] - To unsubscribe from this list: send the line unsubscribe xmail in the body of a message to [EMAIL PROTECTED] For general help: send the line help in the body of a message to [EMAIL PROTECTED]
[xmail] Re: Dynamic DNS / Don't use SPF
-Message d'origine- De : [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] la part de Bart Mortelmans Envoy=E9 : vendredi 27 avril 2007 11:17 =C0 : xmail@xmailserver.org Objet : [xmail] Re: Dynamic DNS / Don't use SPF Thanks for clearing that out! Then my next question would be: is there something that would=20 implement=20 SRS in forwarding within XMailserver? Sincerely, Bart Mortelmans Davide wrote a perl filter for spf (smtp receiver side), but : 1 - I don't know if it implements 'srs type' checks on sender 'mail = from' email 2 - the srs 'rewriter' is difficult to implement in xmail now because = it have to be a replacement of the redirect/lredirect directives (in mailproc.tab files, cmdaliases, custdomains, ...) and possibly in ML = mail list accounts resending algo. At this time, I don't use spf/srs except writing the spf record for the domains we manage (it a good start :) ) Does anyone used successfully spf/srs on xmail ? Francis - To unsubscribe from this list: send the line unsubscribe xmail in the body of a message to [EMAIL PROTECTED] For general help: send the line help in the body of a message to [EMAIL PROTECTED]
[xmail] Re: Dynamic DNS
That's exactly my concern. I could be paying 3 cents per recipient to have the mail relayed, just to have it blocked anyway since the recipient's server does not allow relayed traffic from any source.=20 I am looking for a better solution. JB Edmonds -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of CLEMENT Francis Sent: Thursday, April 26, 2007 10:39 AM To: 'xmail@xmailserver.org' Subject: [xmail] Re: Dynamic DNS Just notice that using a 'external' relay server (even if it is your =3D own isp) can also be denies at final destination servers if the external =3D relay server is not declared in some way to be 'legitimate' to send mails of behalf of the sending domain (I have in mind spf for example). So the relay provider or you will (on dns with spf record for spf =3D example) have to do some work ... If at this time spf and other 'sender server checks' algo are not =3D largely used, they will become. Francis -Message d'origine- De : [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] la part de Ivo Smits Envoy=3DE9 : jeudi 26 avril 2007 15:49 =3DC0 : xmail@xmailserver.org Objet : [xmail] Re: Dynamic DNS Rollernet (http://www.rollernet.us/) can provide you with=3D20 outgoing = SMTP=3D20 relay services (not free). Your ISP may also provide you=20 with=3D20 some (usually=3D20 free) email relay. It may even be possible (I'm not sure about=3D20 this) to get=3D20 some static IP address, over a VPN connection. Ivo - Original Message -=3D20 From: Robert Schiffman [EMAIL PROTECTED] To: xmail@xmailserver.org Sent: Thursday, April 26, 2007 3:24 PM Subject: [xmail] Re: Dynamic DNS If you are on Verizon DSL they should also provide you with email=20 accounts. If this is so, you could use their mail server as=3D20 a gateway for your mail server. I've done this in the past with a DSL=3D20 provider. Edmonds, J.B. wrote: Excuse me if this is a worn out topic but until recently I=3D20 had no reason to follow this. I am a network admin for a 1500 member non-profit who has=3D20 run its own web and email server for over 10 years. We recently relocated to a=20 Verizon area in the states that has only DSL available and=3D20 Static IP is NOT available. We decided to use DynDNS as our solution=3D20 and it works fine for web services. It works OK for email EXCEPT we=3D20 cannot deliver mail to AOL, Verizon, Comcast and Netzero customers, as=3D20 they apparently block dynamic address IP address ranges. If any of you have been, or are in this situation, can you=3D20 provide me some possible solutions. I have investigated relay via DynDNS and=20 SMTPAUTH but they charge by the recipient and one newsletter=20 distribution a month approaches the cost of having our=3D20 domain hosted by a commercial provider. I actually considered this option=3D20 until I see buried in the hosting sites and agreements a disclaimer=3D20 that they will not guarantee email delivery to AOL and Verizon. We have lots of=20 members with AOL, Verizon, Comcast and Netzero accounts. The obvious solution is to move the server offsite but this=3D20 doubles the cost of service. Do you have experience with relay service=3D20 providers and recommendations? JB Edmonds - To unsubscribe from this list: send the line unsubscribe xmail in=20 the body of a message to [EMAIL PROTECTED] For general help:=20 send the line help in the body of a message to=20 [EMAIL PROTECTED] --=3D20 Robert Schiffman Director of Technology Lounge Lizard Worldwide, Inc. 620 Johnson Ave. Suite 1B Bohemia, NY 11716 631-563-6165 ext. 21 631-563-6278 (fax) Email: [EMAIL PROTECTED] - To unsubscribe from this list: send the line unsubscribe xmail in =20 the body of a message to [EMAIL PROTECTED] For general help:=20 send the line help in the body of a message to =20 [EMAIL PROTECTED] =3D20 - To unsubscribe from this list: send the line unsubscribe xmail in the body of a message to [EMAIL PROTECTED] For general help: send the line help in the body of a message to [EMAIL PROTECTED] - To unsubscribe from this list: send the line unsubscribe xmail in the body of a message to [EMAIL PROTECTED] For general help: send the line help in the body of a message to [EMAIL PROTECTED] - To unsubscribe from this list: send the line unsubscribe xmail in the body of a message to [EMAIL PROTECTED] For general help: send the line help in the body of a message to [EMAIL PROTECTED]
[xmail] News DNS problem with 1.25pre09 not in 1.24
Hello Davide and list : I upgraded to 1.25pre09 from 1.24 to test new 'dns' resolver in xmail. Here is a report from xmail 1.25pre09 that I never get with 1.24 for the same destination domain : === [00] XMail bounce: [EMAIL PROTECTED];Error=[Recipient domain haworth.com does not exist (or it has a misconfigured DNS)] [01] Error sending message [1177664554001.2196.4ef.www00] from [groupeab.com]. ID:S27828C Mail From: [EMAIL PROTECTED] Rcpt To: [EMAIL PROTECTED] [02] The reason of the delivery failure was: Recipient domain haworth.com does not exist (or it has a misconfigured DNS) [05] Here is listed the initial part of the message: === Dns report ( http://www.dnsreport.com/tools/dnsreport.ch?domain=haworth.com ) show some 'lame' dns servers so I think the problem is here. For sure, the haworth.com dns zone seems not to be a well configured zone :( BUT doing a 'simple' mx nslookup on that domain on the xmail server (w2k sp4), i got a correct response with one entry : === haworth.com MX preference = 10, mail exchanger = mail.global.frontbridge.com mail.global.frontbridge.com internet address = 213.199.154.22 === And Dns report too got an mx entry even if some ns are 'lame'/'phantom'/'out of order'/... And 1.24 seems to be able to find this mx response as mails was delivered with it, but 1.25pre09 seems to stop at some level on the 'lame' dns servers problem. I temporarly bypassed 1.25pre09 using an smtpfwd.tab entry for 'haworth.com' domain. Francis - To unsubscribe from this list: send the line unsubscribe xmail in the body of a message to [EMAIL PROTECTED] For general help: send the line help in the body of a message to [EMAIL PROTECTED]
[xmail] Re: Testing after 1.24
The cause of not getting email from xmail-list after upgrade to 1.24 = will be that x35.xmailserver.org is attempting to negotiate TLS, when you do = not have TLS correctly configured - either fully off, or with correct certificates. Please search the archives to find the answers either way. http://www.mail-archive.com/xmail@xmailserver.org/index.html Rob :-) =20 _ Note To Self: Remember to put something witty here later... =20 -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] = On Behalf Of Davide Libenzi Sent: Friday, April 27, 2007 5:01 AM To: xmail@xmailserver.org Subject: [xmail] Re: Testing after 1.24 On Thu, 26 Apr 2007, Edinilson - ATINET wrote: This is a test because, for some reason, I=B4m not receiving messages = from Xmail=B4s list after upgrade to 1.24. Roger this. - Davide - To unsubscribe from this list: send the line unsubscribe xmail in the body of a message to [EMAIL PROTECTED] For general help: send the line help in the body of a message to [EMAIL PROTECTED] - To unsubscribe from this list: send the line unsubscribe xmail in the body of a message to [EMAIL PROTECTED] For general help: send the line help in the body of a message to [EMAIL PROTECTED]
[xmail] Re: XP Issue
Sorry but I did read the manual. The DLLs are properly placed and the environment variables as well as registry entries appear correct. I suspected a SSL issue but I followed the instructions. Is there a step to be assumed but unwritten? Am I missing a SERVER.TAB entry that is new?? -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Rob Arends Sent: Monday, April 16, 2007 6:44 PM To: xmail@xmailserver.org Subject: [xmail] Re: XP Issue READ THE MANUAL Look for the BUILD section. Subsection [Windows] Every Win install requires this library installed ever since xmail supports SSL Even if you do not use / want / configure SSL, you must install the library. Just install it, then use the xmail binaries as you always have. Rob :-) =20 _ Note To Self: Remember to put something witty here later... =20 -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Ivo Smits Sent: Tuesday, April 17, 2007 7:55 AM To: xmail@xmailserver.org Subject: [xmail] Re: XP Issue Do you have all windows updates and service packs installed? You can also try 1.25-pre06 from http://www.xmailserver.org/xmail-1.25-pre06.win32bin.zip Replacing the EXE and DLL files should be enough to test (if you want to USE 1.25-pre06, you should change your configuration). Ivo Smits - Original Message - From: Edmonds, J.B. [EMAIL PROTECTED] To: xmail@xmailserver.org Sent: Monday, April 16, 2007 9:38 PM Subject: [xmail] XP Issue This past week I built up a new Windows XP workstation and decided to move my Xmail server to it. I am running 1.22 and installed 1.24. I moved or re-created my TAB files, etc. When I went to install the service and run it, I get an error message that the program failed to load. Thinking I had a bad executable, I downloaded the files again and replaced all of the EXE and DLL files in \bin directory. Same error. Doesn't get far enough to generate a log or do anything. I copied the 1.22 xmail.exe file and the service starts perfectly. Replace it with 1.24 and it fails. I have not seen any reports from others with this problem. Any suggestion or help JB Edmonds - To unsubscribe from this list: send the line unsubscribe xmail in the body of a message to [EMAIL PROTECTED] For general help: send the line help in the body of a message to [EMAIL PROTECTED] =20 - To unsubscribe from this list: send the line unsubscribe xmail in the body of a message to [EMAIL PROTECTED] For general help: send the line help in the body of a message to [EMAIL PROTECTED] - To unsubscribe from this list: send the line unsubscribe xmail in the body of a message to [EMAIL PROTECTED] For general help: send the line help in the body of a message to [EMAIL PROTECTED] - To unsubscribe from this list: send the line unsubscribe xmail in the body of a message to [EMAIL PROTECTED] For general help: send the line help in the body of a message to [EMAIL PROTECTED]
[xmail] Re: Dynamic DNS
First thing to find out is if your ISP will allow you to relay for free. Second thing is, if you use SPF records, then include your ISP outgoing IP address(es) in your SPF record. Then if at least #1, then relay via ISP. Those MTAs that deny mail from dynamic IPs, must not deny from the MTAs of that ISP. Rob :-) _ Note To Self: Remember to put something witty here later... -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Edmonds, J.B. Sent: Friday, April 27, 2007 9:52 PM To: xmail@xmailserver.org Subject: [xmail] Re: Dynamic DNS That's exactly my concern. I could be paying 3 cents per recipient to have the mail relayed, just to have it blocked anyway since the recipient's server does not allow relayed traffic from any source.=20 I am looking for a better solution. JB Edmonds -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of CLEMENT Francis Sent: Thursday, April 26, 2007 10:39 AM To: 'xmail@xmailserver.org' Subject: [xmail] Re: Dynamic DNS Just notice that using a 'external' relay server (even if it is your =3D own isp) can also be denies at final destination servers if the external =3D relay server is not declared in some way to be 'legitimate' to send mails of behalf of the sending domain (I have in mind spf for example). So the relay provider or you will (on dns with spf record for spf =3D example) have to do some work ... If at this time spf and other 'sender server checks' algo are not =3D largely used, they will become. Francis -Message d'origine- De : [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] la part de Ivo Smits Envoy=3DE9 : jeudi 26 avril 2007 15:49 =3DC0 : xmail@xmailserver.org Objet : [xmail] Re: Dynamic DNS Rollernet (http://www.rollernet.us/) can provide you with=3D20 outgoing = SMTP=3D20 relay services (not free). Your ISP may also provide you=20 with=3D20 some (usually=3D20 free) email relay. It may even be possible (I'm not sure about=3D20 this) to get=3D20 some static IP address, over a VPN connection. Ivo - Original Message -=3D20 From: Robert Schiffman [EMAIL PROTECTED] To: xmail@xmailserver.org Sent: Thursday, April 26, 2007 3:24 PM Subject: [xmail] Re: Dynamic DNS If you are on Verizon DSL they should also provide you with email=20 accounts. If this is so, you could use their mail server as=3D20 a gateway for your mail server. I've done this in the past with a DSL=3D20 provider. Edmonds, J.B. wrote: Excuse me if this is a worn out topic but until recently I=3D20 had no reason to follow this. I am a network admin for a 1500 member non-profit who has=3D20 run its own web and email server for over 10 years. We recently relocated to a=20 Verizon area in the states that has only DSL available and=3D20 Static IP is NOT available. We decided to use DynDNS as our solution=3D20 and it works fine for web services. It works OK for email EXCEPT we=3D20 cannot deliver mail to AOL, Verizon, Comcast and Netzero customers, as=3D20 they apparently block dynamic address IP address ranges. If any of you have been, or are in this situation, can you=3D20 provide me some possible solutions. I have investigated relay via DynDNS and=20 SMTPAUTH but they charge by the recipient and one newsletter=20 distribution a month approaches the cost of having our=3D20 domain hosted by a commercial provider. I actually considered this option=3D20 until I see buried in the hosting sites and agreements a disclaimer=3D20 that they will not guarantee email delivery to AOL and Verizon. We have lots of=20 members with AOL, Verizon, Comcast and Netzero accounts. The obvious solution is to move the server offsite but this=3D20 doubles the cost of service. Do you have experience with relay service=3D20 providers and recommendations? JB Edmonds - To unsubscribe from this list: send the line unsubscribe xmail in=20 the body of a message to [EMAIL PROTECTED] For general help:=20 send the line help in the body of a message to=20 [EMAIL PROTECTED] --=3D20 Robert Schiffman Director of Technology Lounge Lizard Worldwide, Inc. 620 Johnson Ave. Suite 1B Bohemia, NY 11716 631-563-6165 ext. 21 631-563-6278 (fax) Email: [EMAIL PROTECTED] - To unsubscribe from this list: send the line unsubscribe xmail in =20 the body of a message to [EMAIL PROTECTED] For general help:=20 send the line help in the body of a message to =20 [EMAIL PROTECTED] =3D20 - To unsubscribe from this list: send the line unsubscribe xmail in the body of a message to [EMAIL PROTECTED] For general help: send the line help in the body of a message to [EMAIL PROTECTED] - To unsubscribe from this list: send the line unsubscribe xmail in the body of a message to [EMAIL PROTECTED] For general help: send the line help in the body of a message to [EMAIL PROTECTED] - To unsubscribe from this list: send the line unsubscribe xmail in the body of a
[xmail] Dynamic DNS and Relay
I have identified a potential solution to my issue of email being blocked because of Dynamic DNS but having some difficulty understanding how to implement it in xmail I can route all outgoing traffic through another mail server (relay), however it requires me to authenticate (ID and Password). Can I set this us in xmail? In reading the manual, I don't see where I can set this up. JB Edmonds - To unsubscribe from this list: send the line unsubscribe xmail in the body of a message to [EMAIL PROTECTED] For general help: send the line help in the body of a message to [EMAIL PROTECTED]
[xmail] Re: XP Issue
J.B., The ONLY time I've had an error re: failed to load (etc.) is when I've missed the supporting library (required =1.24) My usual diagnosis, is to google the error text. What do you get when you do this? Rob :-) _ Note To Self: Remember to put something witty here later... -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Edmonds, J.B. Sent: Friday, April 27, 2007 11:06 PM To: xmail@xmailserver.org Subject: [xmail] Re: XP Issue Sorry but I did read the manual. The DLLs are properly placed and the environment variables as well as registry entries appear correct. I suspected a SSL issue but I followed the instructions. Is there a step to be assumed but unwritten? Am I missing a SERVER.TAB entry that is new?? -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Rob Arends Sent: Monday, April 16, 2007 6:44 PM To: xmail@xmailserver.org Subject: [xmail] Re: XP Issue READ THE MANUAL Look for the BUILD section. Subsection [Windows] Every Win install requires this library installed ever since xmail supports SSL Even if you do not use / want / configure SSL, you must install the library. Just install it, then use the xmail binaries as you always have. Rob :-) =20 _ Note To Self: Remember to put something witty here later... =20 -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Ivo Smits Sent: Tuesday, April 17, 2007 7:55 AM To: xmail@xmailserver.org Subject: [xmail] Re: XP Issue Do you have all windows updates and service packs installed? You can also try 1.25-pre06 from http://www.xmailserver.org/xmail-1.25-pre06.win32bin.zip Replacing the EXE and DLL files should be enough to test (if you want to USE 1.25-pre06, you should change your configuration). Ivo Smits - Original Message - From: Edmonds, J.B. [EMAIL PROTECTED] To: xmail@xmailserver.org Sent: Monday, April 16, 2007 9:38 PM Subject: [xmail] XP Issue This past week I built up a new Windows XP workstation and decided to move my Xmail server to it. I am running 1.22 and installed 1.24. I moved or re-created my TAB files, etc. When I went to install the service and run it, I get an error message that the program failed to load. Thinking I had a bad executable, I downloaded the files again and replaced all of the EXE and DLL files in \bin directory. Same error. Doesn't get far enough to generate a log or do anything. I copied the 1.22 xmail.exe file and the service starts perfectly. Replace it with 1.24 and it fails. I have not seen any reports from others with this problem. Any suggestion or help JB Edmonds - To unsubscribe from this list: send the line unsubscribe xmail in the body of a message to [EMAIL PROTECTED] For general help: send the line help in the body of a message to [EMAIL PROTECTED] =20 - To unsubscribe from this list: send the line unsubscribe xmail in the body of a message to [EMAIL PROTECTED] For general help: send the line help in the body of a message to [EMAIL PROTECTED] - To unsubscribe from this list: send the line unsubscribe xmail in the body of a message to [EMAIL PROTECTED] For general help: send the line help in the body of a message to [EMAIL PROTECTED] - To unsubscribe from this list: send the line unsubscribe xmail in the body of a message to [EMAIL PROTECTED] For general help: send the line help in the body of a message to [EMAIL PROTECTED] - To unsubscribe from this list: send the line unsubscribe xmail in the body of a message to [EMAIL PROTECTED] For general help: send the line help in the body of a message to [EMAIL PROTECTED]
[xmail] Re: Dynamic DNS
Thanks, it appears I can relay but must logon, presenting a different setup up problem. How to do this in xmail?=20 -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Rob Arends Sent: Friday, April 27, 2007 10:01 AM To: xmail@xmailserver.org Subject: [xmail] Re: Dynamic DNS First thing to find out is if your ISP will allow you to relay for free. Second thing is, if you use SPF records, then include your ISP outgoing IP address(es) in your SPF record. Then if at least #1, then relay via ISP. Those MTAs that deny mail from dynamic IPs, must not deny from the MTAs of that ISP. Rob :-) =20 _ Note To Self: Remember to put something witty here later... =20 -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Edmonds, J.B. Sent: Friday, April 27, 2007 9:52 PM To: xmail@xmailserver.org Subject: [xmail] Re: Dynamic DNS That's exactly my concern. I could be paying 3 cents per recipient to have the mail relayed, just to have it blocked anyway since the recipient's server does not allow relayed traffic from any source.=3D20 I am looking for a better solution. JB Edmonds -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of CLEMENT Francis Sent: Thursday, April 26, 2007 10:39 AM To: 'xmail@xmailserver.org' Subject: [xmail] Re: Dynamic DNS Just notice that using a 'external' relay server (even if it is your = =3D3D own isp) can also be denies at final destination servers if the external = =3D3D relay server is not declared in some way to be 'legitimate' to send mails of behalf of the sending domain (I have in mind spf for example). So the relay provider or you will (on dns with spf record for spf =3D3D example) have to do some work ... If at this time spf and other 'sender server checks' algo are not =3D3D largely used, they will become. Francis -Message d'origine- De : [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] la part de Ivo Smits Envoy=3D3DE9 : jeudi 26 avril 2007 15:49 =3D3DC0 : xmail@xmailserver.org Objet : [xmail] Re: Dynamic DNS Rollernet (http://www.rollernet.us/) can provide you with=3D3D20 = outgoing =3D SMTP=3D3D20 relay services (not free). Your ISP may also provide = you=3D20=20 with=3D3D20 some (usually=3D3D20 free) email relay. It may even be possible (I'm not sure about=3D3D20 this) to get=3D3D20 some static IP address, over a VPN connection. Ivo - Original Message -=3D3D20 From: Robert Schiffman [EMAIL PROTECTED] To: xmail@xmailserver.org Sent: Thursday, April 26, 2007 3:24 PM Subject: [xmail] Re: Dynamic DNS If you are on Verizon DSL they should also provide you with = email=3D20=20 accounts. If this is so, you could use their mail server as=3D3D20 a gateway for your mail server. I've done this in the past with a DSL=3D3D20 provider. Edmonds, J.B. wrote: Excuse me if this is a worn out topic but until recently I=3D3D20 had no reason to follow this. I am a network admin for a 1500 member non-profit who has=3D3D20 run its own web and email server for over 10 years. We recently relocated to=20 a=3D20 Verizon area in the states that has only DSL available = and=3D3D20 Static IP is NOT available. We decided to use DynDNS as our solution=3D3D20 and it works fine for web services. It works OK for email EXCEPT we=3D3D20 cannot deliver mail to AOL, Verizon, Comcast and Netzero customers, as=3D3D20 they apparently block dynamic address IP address ranges. If any of you have been, or are in this situation, can you=3D3D20 provide me some possible solutions. I have investigated relay via DynDNS=20 and=3D20 SMTPAUTH but they charge by the recipient and one=20 newsletter=3D20 distribution a month approaches the cost of having=20 our=3D3D20 domain hosted by a commercial provider. I actually considered this option=3D3D20 until I see buried in the hosting sites and agreements a disclaimer=3D3D20 that they will not guarantee email delivery to AOL and Verizon. We have lots = of=3D20 members with AOL, Verizon, Comcast and Netzero accounts. The obvious solution is to move the server offsite but this=3D3D20 doubles the cost of service. Do you have experience with relay service=3D3D20 providers and recommendations? JB Edmonds - To unsubscribe from this list: send the line unsubscribe xmail=20 in=3D20 the body of a message to [EMAIL PROTECTED] For general = help:=3D20 send the line help in the body of a message to=3D20=20 [EMAIL PROTECTED] --=3D3D20 Robert Schiffman Director of Technology Lounge Lizard Worldwide, Inc. 620 Johnson Ave. Suite 1B Bohemia, NY 11716 631-563-6165 ext. 21 631-563-6278 (fax) Email: [EMAIL PROTECTED] - To unsubscribe from this list: send the line unsubscribe xmail in=20 =3D20 the body of a message to [EMAIL PROTECTED] For general=20 help:=3D20 send the line help in the body of a message to =3D20=20 [EMAIL PROTECTED] =3D3D20 - To
[xmail] Re: Testing after 1.24
You are right! Thanks for you help.. Regards Edinilson - ATINET-Professional Web Hosting Tel Voz: (0xx11) 4412-0876 http://www.atinet.com.br - Original Message - From: Rob Arends [EMAIL PROTECTED] To: xmail@xmailserver.org Cc: 'Edinilson - ATINET' [EMAIL PROTECTED] Sent: Friday, April 27, 2007 9:53 AM Subject: [xmail] Re: Testing after 1.24 The cause of not getting email from xmail-list after upgrade to 1.24 = will be that x35.xmailserver.org is attempting to negotiate TLS, when you do = not have TLS correctly configured - either fully off, or with correct certificates. Please search the archives to find the answers either way. http://www.mail-archive.com/xmail@xmailserver.org/index.html Rob :-) =20 _ Note To Self: Remember to put something witty here later... =20 -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] = On Behalf Of Davide Libenzi Sent: Friday, April 27, 2007 5:01 AM To: xmail@xmailserver.org Subject: [xmail] Re: Testing after 1.24 On Thu, 26 Apr 2007, Edinilson - ATINET wrote: This is a test because, for some reason, I=B4m not receiving messages = from Xmail=B4s list after upgrade to 1.24. Roger this. - Davide - To unsubscribe from this list: send the line unsubscribe xmail in the body of a message to [EMAIL PROTECTED] For general help: send the line help in the body of a message to [EMAIL PROTECTED] - To unsubscribe from this list: send the line unsubscribe xmail in the body of a message to [EMAIL PROTECTED] For general help: send the line help in the body of a message to [EMAIL PROTECTED] - To unsubscribe from this list: send the line unsubscribe xmail in the body of a message to [EMAIL PROTECTED] For general help: send the line help in the body of a message to [EMAIL PROTECTED]
[xmail] 1.25pre09 on Windows 2000
Davide, which configurations in server.tab do you want to test 1.25pre09 on Windows 2000 (Xmail Win32)? I was stucked here for a while and now I could upgrade and test this newer version on a very busy server (and report you problems). Edinilson - ATINET-Professional Web Hosting Tel Voz: (0xx11) 4412-0876 http://www.atinet.com.br - To unsubscribe from this list: send the line unsubscribe xmail in the body of a message to [EMAIL PROTECTED] For general help: send the line help in the body of a message to [EMAIL PROTECTED]
[xmail] Re: Dynamic DNS and Relay
See section SMTP CLIENT AUTHENTICATION in xmail doc to do outgoing = AUTH As noted : If your 'relayer' host server have the name thegoodrelayserver.somegoodisp.com then added a file named 'thegoodrelayserver.somegoodisp.com.tab' in mailroot/userauth/smtp subdirectory and in this file set the line(s) to provide username and password : PLAIN[TAB]username[TAB]password or LOGIN[TAB]username[TAB]password or CRAM-MD5[TAB]username[TAB]password Davide can correct me if i'm wrong :) Francis -Message d'origine- De : [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] la part de Edmonds, J.B. Envoy=E9 : vendredi 27 avril 2007 16:05 =C0 : xmail@xmailserver.org Objet : [xmail] Dynamic DNS and Relay I have identified a potential solution to my issue of email being blocked because of Dynamic DNS but having some difficulty = understanding how to implement it in xmail I can route all outgoing traffic through another mail server (relay), however it requires me to authenticate (ID and Password). Can I set this us in xmail? In reading the manual, I don't see where I can set this up. =20 JB Edmonds - To unsubscribe from this list: send the line unsubscribe xmail in the body of a message to [EMAIL PROTECTED] For general help: send the line help in the body of a message to [EMAIL PROTECTED] - To unsubscribe from this list: send the line unsubscribe xmail in the body of a message to [EMAIL PROTECTED] For general help: send the line help in the body of a message to [EMAIL PROTECTED]
[xmail] Re: Dynamic DNS
See here: http://www.xmailserver.org/Readme.html#smtp_client_authentication Either set up server.tab defaultsmtpgateway[tab]mail.isp.com Or add to smtpgw.tab *[tab]mail.isp.com Then in $mailroot/userauth/smtp create file mail.isp.com.tab In it add LOGIN[tab]username[tab]password Now, I've never tried this, but the doco is clear. Note: that LOGIN may be substituted as per the doco. I expect that if you use an IP Address for the gateway, then the userauth/smtp file would be 1.2.3.4.tab (just guessing). Note that the smtpgw.tab file method gives greater granularity in case you want to send mail for some domains to another relay. Rob :-) _ Note To Self: Remember to put something witty here later... -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Edmonds, J.B. Sent: Saturday, April 28, 2007 12:06 AM To: xmail@xmailserver.org Subject: [xmail] Re: Dynamic DNS Thanks, it appears I can relay but must logon, presenting a different setup up problem. How to do this in xmail?=20 -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Rob Arends Sent: Friday, April 27, 2007 10:01 AM To: xmail@xmailserver.org Subject: [xmail] Re: Dynamic DNS First thing to find out is if your ISP will allow you to relay for free. Second thing is, if you use SPF records, then include your ISP outgoing IP address(es) in your SPF record. Then if at least #1, then relay via ISP. Those MTAs that deny mail from dynamic IPs, must not deny from the MTAs of that ISP. Rob :-) =20 _ Note To Self: Remember to put something witty here later... =20 -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Edmonds, J.B. Sent: Friday, April 27, 2007 9:52 PM To: xmail@xmailserver.org Subject: [xmail] Re: Dynamic DNS That's exactly my concern. I could be paying 3 cents per recipient to have the mail relayed, just to have it blocked anyway since the recipient's server does not allow relayed traffic from any source.=3D20 I am looking for a better solution. JB Edmonds -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of CLEMENT Francis Sent: Thursday, April 26, 2007 10:39 AM To: 'xmail@xmailserver.org' Subject: [xmail] Re: Dynamic DNS Just notice that using a 'external' relay server (even if it is your = =3D3D own isp) can also be denies at final destination servers if the external = =3D3D relay server is not declared in some way to be 'legitimate' to send mails of behalf of the sending domain (I have in mind spf for example). So the relay provider or you will (on dns with spf record for spf =3D3D example) have to do some work ... If at this time spf and other 'sender server checks' algo are not =3D3D largely used, they will become. Francis -Message d'origine- De : [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] la part de Ivo Smits Envoy=3D3DE9 : jeudi 26 avril 2007 15:49 =3D3DC0 : xmail@xmailserver.org Objet : [xmail] Re: Dynamic DNS Rollernet (http://www.rollernet.us/) can provide you with=3D3D20 = outgoing =3D SMTP=3D3D20 relay services (not free). Your ISP may also provide = you=3D20=20 with=3D3D20 some (usually=3D3D20 free) email relay. It may even be possible (I'm not sure about=3D3D20 this) to get=3D3D20 some static IP address, over a VPN connection. Ivo - Original Message -=3D3D20 From: Robert Schiffman [EMAIL PROTECTED] To: xmail@xmailserver.org Sent: Thursday, April 26, 2007 3:24 PM Subject: [xmail] Re: Dynamic DNS If you are on Verizon DSL they should also provide you with = email=3D20=20 accounts. If this is so, you could use their mail server as=3D3D20 a gateway for your mail server. I've done this in the past with a DSL=3D3D20 provider. Edmonds, J.B. wrote: Excuse me if this is a worn out topic but until recently I=3D3D20 had no reason to follow this. I am a network admin for a 1500 member non-profit who has=3D3D20 run its own web and email server for over 10 years. We recently relocated to=20 a=3D20 Verizon area in the states that has only DSL available = and=3D3D20 Static IP is NOT available. We decided to use DynDNS as our solution=3D3D20 and it works fine for web services. It works OK for email EXCEPT we=3D3D20 cannot deliver mail to AOL, Verizon, Comcast and Netzero customers, as=3D3D20 they apparently block dynamic address IP address ranges. If any of you have been, or are in this situation, can you=3D3D20 provide me some possible solutions. I have investigated relay via DynDNS=20 and=3D20 SMTPAUTH but they charge by the recipient and one=20 newsletter=3D20 distribution a month approaches the cost of having=20 our=3D3D20 domain hosted by a commercial provider. I actually considered this option=3D3D20 until I see buried in the hosting sites and agreements a disclaimer=3D3D20 that they will not guarantee email delivery to
[xmail] Re: News DNS problem with 1.25pre09 not in 1.24
On Fri, 27 Apr 2007, CLEMENT Francis wrote: Hello Davide and list : I upgraded to 1.25pre09 from 1.24 to test new 'dns' resolver in xmail. Here is a report from xmail 1.25pre09 that I never get with 1.24 for the same destination domain : === [00] XMail bounce: [EMAIL PROTECTED];Error=[Recipient domain haworth.com does not exist (or it has a misconfigured DNS)] [01] Error sending message [1177664554001.2196.4ef.www00] from [groupeab.com]. ID:S27828C Mail From: [EMAIL PROTECTED] Rcpt To: [EMAIL PROTECTED] [02] The reason of the delivery failure was: Recipient domain haworth.com does not exist (or it has a misconfigured DNS) [05] Here is listed the initial part of the message: === Dns report ( http://www.dnsreport.com/tools/dnsreport.ch?domain=haworth.com ) show some 'lame' dns servers so I think the problem is here. For sure, the haworth.com dns zone seems not to be a well configured zone :( BUT doing a 'simple' mx nslookup on that domain on the xmail server (w2k sp4), i got a correct response with one entry : You must have a magic DNS resolver :) $ dig haworth.com mx +trace +all [going in infinte loop] dig: too many lookups Their dca-ans-01.inet.qwest.net. NS server, when asked for the MX record, it returns no answer, and returns the list of root servers as authority section!!! - Davide - To unsubscribe from this list: send the line unsubscribe xmail in the body of a message to [EMAIL PROTECTED] For general help: send the line help in the body of a message to [EMAIL PROTECTED]
[xmail] Re: Dynamic DNS / Don't use SPF
On Fri, 27 Apr 2007, CLEMENT Francis wrote: Davide wrote a perl filter for spf (smtp receiver side), but : No it did not. I also stopped using it. For me RBLs+GLST do the job and are less error prone. - Davide - To unsubscribe from this list: send the line unsubscribe xmail in the body of a message to [EMAIL PROTECTED] For general help: send the line help in the body of a message to [EMAIL PROTECTED]
[xmail] Re: 1.25pre09 on Windows 2000
On Fri, 27 Apr 2007, Edinilson - ATINET wrote: Davide, which configurations in server.tab do you want to test 1.25pre09 on Windows 2000 (Xmail Win32)? I was stucked here for a while and now I could upgrade and test this newer version on a very busy server (and report you problems). I think the specific DNS tests have been already done. I'd say just use it and report if there're problems. On xmailserver.org is running fine from day one. - Davide - To unsubscribe from this list: send the line unsubscribe xmail in the body of a message to [EMAIL PROTECTED] For general help: send the line help in the body of a message to [EMAIL PROTECTED]