What I just said. This is IMAP's ugly side. There's only one, very
specific way, to implement IMAP on the client that has any
reasonable chance of working with every IMAP server in existence.
And it's not very obvious what it should be, not obvious at all.
You can't rely on UIDNEXT. You
On 2015-04-02 12:59, Sam Varshavchik wrote:
Anders Le Chevalier writes:
What I just said. This is IMAP's ugly side. There's only one,
very specific way, to implement IMAP on the client that has
any reasonable chance of working with every IMAP server in
existence. And it's not very
On 2014-12-16 07:20, Mark Constable wrote:
...
Bonus question, aside from fail2ban, has anyone got any rules for iptables
to block/drop on an OS level any courier-related authdaemon logins and
these port 25 access attempts?
I used fail2ban some time ago. If you want to block failed
On 2014-05-02 12:59, Sam Varshavchik wrote:
Anders Le Chevalier writes:
On 2014-05-02 02:11, Sam Varshavchik wrote:
Anders Le Chevalier writes:
I checked with openssl s_client -connect domain.com:993 and
got the following error:
CONNECTED(0003) depth=2 C = IL, O = StartCom
I created a private key with GnuTLS certtool and had it signed by
StartSSL. When I try to use the signed certificate all connections to
courier (smtp or imap) fail with Decrypt errors. The log file has lines
like imapd-ssl: Decrypt error and esmtpd-ssl: Decrypt error
Tested with GnuTLS 3.2.13 and
On 2014-05-01 16:36, Hanno Böck wrote:
On Thu, 01 May 2014 15:13:29 +0200 Anders Le Chevalier
and...@lechevalier.se wrote:
Are there any limitations to the type of hash or other features
of the certificates that are supported by courier?
I'm not aware of any and I'm using startssl certs
On 2014-05-01 17:07, Anders Le Chevalier wrote:
On 2014-05-01 16:36, Hanno Böck wrote:
On Thu, 01 May 2014 15:13:29 +0200 Anders Le Chevalier
and...@lechevalier.se wrote:
Are there any limitations to the type of hash or other features
of the certificates that are supported by courier
On 2014-05-02 02:11, Sam Varshavchik wrote:
Anders Le Chevalier writes:
I checked with openssl s_client -connect domain.com:993 and got
the following error:
CONNECTED(0003) depth=2 C = IL, O = StartCom Ltd., OU =
Secure Digital Certificate Signing, CN = StartCom Certification
On 2014-03-05 08:07, Mark Constable wrote:
On 03/05/14 15:31, Anders Le Chevalier wrote:
Mar 5 06:08:05 e350 authdaemond: zero rows returned
Mar 5 06:08:05 e350 authdaemond: no password available to compare
Mar 5 06:08:05 e350 authdaemond: authmysql: REJECT - try next module
Mar 5 06:08
On 2014-03-04 09:01, Kristian Duus Østergaard wrote:
On 2014-03-04 06:43, Anders Le Chevalier wrote:
Yes, I recall that episode. crypt() was returning a null pointer.
What's happening is that the primary authentication module is not
one of the system authentication modules. It might
On 2014-03-04 01:03, Sam Varshavchik wrote:
Kristian Duus Østergaard writes:
I've seen the same with my courier-mta on Gentoo. What I found in
my search but haven't had time to try out is that there's an old
thread about not using libcrypt because it gives the above
errors. On my
On 2014-02-28 01:32, Sam Varshavchik wrote:
Anders Le Chevalier writes:
I have encountered an odd bug the last few weeks where
authdaemond causes segfaults in libc. I'll post the log at the
end of the message.
...
Compile courier-authlib with the -g flag, adjust ulimit to enable
core
On 2014-03-02 12:17, Anders Le Chevalier wrote:
On 2014-02-28 01:32, Sam Varshavchik wrote:
Anders Le Chevalier writes:
I have encountered an odd bug the last few weeks where
authdaemond causes segfaults in libc. I'll post the log at the
end of the message.
...
Compile courier
I have encountered an odd bug the last few weeks where authdaemond
causes segfaults in libc. I'll post the log at the end of the message.
I am using Gentoo with:
mail-mta/courier-0.71
net-libs/courier-authlib-0.65.0-r3
sys-libs/glibc-2.18-r1 (I have tried with default 2.17 with same
segfault
Hi!
I seem to have a problem with googlegroups.com and the pythonfilter-1.8
greylist module. the default is to block ip by 300 seconds. However,
googlegroups.com seem to use multiple ips, and so the greylisting
doesn't count down the seconds remaining.
Is there anyway around this, other than
Is there a complete step-by-step guide, including configuration examples
of courier as a complete email solution out there? With complete, I mean
ESMTP, IMAP/POP, virtual mail, DKIM, Spam filtering and virus checking.
I'd like to put one of these guides together for the Gentoo wiki, but I
have
How would I go about logging TLS/SSL details such as ciphers, key exchange and
mac's negotiated with clients or other servers with courier? This would be very
useful to create statistics over what minimum security is used by clients etc...
~A
On 2013-09-11 03:20, Sam Varshavchik wrote:
Anders writes:
« HTML content follows »
Thank you. I will check that man page - I was looking at the
couriertls docs and didn't see this.
One note though. I do not want to disable RC4, but only keep it as
fallback. Is that possible
On 2013-09-11 08:52, Matthias Wimmer wrote:
Hi Anders,
El 2013-09-11 08:05:30, Anders escribió:
Although this doesn't fail, it still doesn't change the RC4-SHA that
Courier/ESMTPD uses against Gmail. Look at the following email header:
Received: from mail.tnonline.net
I have not tried it, but I think pythonfilter runs on all relayed email, even
outgoing? There is a setting whitelist_auth which could be disabled and
ratelimit enabled...
Mark Constable ma...@renta.net wrote:
Just a request to anyone who may have a working outgoing rate limiting
solution and
Since RC4/ARCFOUR has been in the news as breakable I was wondering if
it is possible to have courier prioritize AES in favour of RCA if supported?
For example, gmail uses RC4 by default, but does support AES:
# openssl s_client -connect gmail-smtp-in.l.google.com:25 -starttls smtp
Protocol :
Thank you. I will check that man page - I was looking at the couriertls docs
and didn't see this.
One note though. I do not want to disable RC4, but only keep it as fallback. Is
that possible?
~A
Sam Varshavchik mr...@courier-mta.com wrote:
Anders writes:
Since RC4/ARCFOUR has been
On 2013-09-05 03:07, Jeff Potter wrote:
Thanks, Alessandro -- looking through the documentation, I'm missing where it
defines what valid sources are for enablefiltering -- I tried courierd,
courierlocal and local, but no luck.
If it helps, here's the received header.
Thanks for any
On 2013-09-07 08:17, Mark Constable wrote:
On 07/09/13 16:10, Anders wrote:
How about using iptables and rate-limit? and log+reject the (uid) when
exceeded? something like :
-m state --state NEW -m recent --set
-m state --state NEW -m recent --update --seconds 3600 --hitcount 100 -j
NFLOG
On 2013-08-21 16:35, Bowie Bailey wrote:
K-9 Mail works well for me.
Is there a problem with the standard Email.apk that is usually included
in Android? A (less secure?) variant is available here:
http://forum.xda-developers.com/showthread.php?t=1965468
Not sure which backend FS you used, but perhaps you should look into
something with snapshotting possibility. That would make backups easy
and manageable. Another option is to run each server in its on VM,
enabling snapshotting and rolling back each configuration pretty easy too.
~A
On
On 2013-08-15 02:05, Sam Varshavchik wrote:
Anders writes:
Hi
Is there any way with Courier IMAP to implement server-side virtual
folders based on meta keywords, such as the Search Folders in
Thunderbird or Outlook?
The short answer is: no.
I guess one way to do this would be using
Hi
Is there any way with Courier IMAP to implement server-side virtual
folders based on meta keywords, such as the Search Folders in
Thunderbird or Outlook?
Client side search folders are not really useful since many clients do
not support them and are not portable (i.e bring the settings
=and...@lechevalier.se!!8!12!/var/mail/domains/lechevalier.se/anders!!,addr=and...@lechevalier.se
Jul 26 21:45:47 e350 courierd: Waiting. shutdown time=none, wakeup
time=none, queuedelivering=1, inprogress=1
Jul 26 21:45:47 e350 courierlocal:
id=00C804FC.51F2D1E6.3235,from
Hi,
I'll comment in-line.
I am using zdkimfilter-1.2 , provided by gentoo ebuild/portage. Compiler
is gcc 4.7.3
Thank you very much.
~A
On 2013-07-24 11:13, Alessandro Vesely wrote:
Hi,
On Wed 24/Jul/2013 00:17:17 +0200 Anders wrote:
So, now comes to testing it all... To summarize
On 2013-07-24 18:10, Alessandro Vesely wrote:
On Wed 24/Jul/2013 13:39:37 +0200 Anders wrote:
I'll comment in-line.
Yup :-)
I am using zdkimfilter-1.2 , provided by gentoo ebuild/portage. Compiler
is gcc 4.7.3
I haven't been able to find that version --see below.
I think that's because
:)
~A
On 2013-07-24 20:51, Anders wrote:
On 2013-07-24 18:10, Alessandro Vesely wrote:
On Wed 24/Jul/2013 13:39:37 +0200 Anders wrote:
I'll comment in-line.
Yup :-)
I am using zdkimfilter-1.2 , provided by gentoo ebuild/portage. Compiler
is gcc 4.7.3
I haven't been able to find that version --see
On 2013-07-24 21:25, Alessandro Vesely wrote:
On Wed 24/Jul/2013 20:51:06 +0200 Anders wrote:
On 2013-07-24 18:10, Alessandro Vesely wrote:
The opendkim-2.2.2 version they used to build zdkimfilter seems to be
lost.
I realise I have a local overlay with zdkimfilter-1.2. I will revert to 1.1
, no mails are signed
because I think that zdkimfilter can't find anything suitable to match
domain/selector against. What can be the cause?
I have a test.mail file
==
Message-ID: 51eee029.8070...@lechevalier.se
Date: Tue, 23 Jul 2013 21:57:29 +0200
From: Anders and...@lechevalier.se
Hi,
Since I upgraded, pythonfilter-1,8 has stopped functioning. Is there a
known compatibility issue? I do not see anything in the logs that the
filter is even being considered/used.
Regards,
Anders
On 2013-03-06 03:15, Sam Varshavchik wrote:
Download: http://www.courier-mta.org/download.php
I found the problem. The /var/run/courier was not created with correct
owner by the init.d script (Gentoo). /run and /var/run are on tmpfs
since a while back in Gentoo so it has to be created with correct
permission and user/group by the init.d scripts.
On 2013-04-26 09:18, Anders wrote:
Hi
of
opendkim it works very well. Never had any troubles with it.
Hello,
Which version of OpenDKIM are you using?
I am Gentoo based and available versions are 2.4.3 and 2.5.2-r1 plus
unstable (2.6.0 2.6.1 2.6.3 2.6.4)
Regards,
Anders
Regards,
Matthias
a SMTP proxy, such as DKIMProxy
(http://sourceforge.net/projects/dkimproxy/) or ASSP/Anti-Spam SMTP
Proxy (http://sourceforge.net/projects/assp/). DKIMProxy seems simplest,
but hasn't been updated in a year.
Thanks for any thoughts.
//Anders
Hi,
Thanks for the reply. Indeed as a milter it would work fine, especially
with sendmail and such. I was looking at this possibility earlier too.
However, I am using Courier ESMTP on my system right now and I prefer
not changing this.
Regards,
Anders
On 2012-07-17 00:21, x...@padimail.de
to it.
What kind of encrytion does the authdaemon.mysql support? I know it likes
MD5 hashes
Would it be possible to add a feature to Courier-imap that makes it read MD4
hashes??
Thank you!
Kind Regards,
Anders
---
This SF.net email is sponsored
(courier still tries
to use cram-md5).
The reason I ask is because my current setup (Courier 0.40.1) relays all mail
through another mail server which advertises CRAM-MD5 but has a broken cram-md5
implementation.
/Anders
---
This SF.Net email
Sam Varshavchik wrote:
Anders K. Pedersen writes:
Almost - and that is, what I'm doing. But I need to allow clients with
Netscape to use $ in stead of @ in their usernames, and if I were to
If the client is incapale of using the '@' character in login IDs, then the
logical answer
actually need authpgsql to handle different domain separators, but I may
be able to make a query optimization later on with it.
Regards,
Anders K. Pedersen
---
This SF.NET email is sponsored by:
SourceForge Enterprise Edition + IBM + LinuxWorld
to sqwebmail from
another server...
/Anders
Samuel Penn writes:
Hi,
Does sqwebmail have to run on the same machine as the courier
mail server? I'd like to have webmail running on an OpenBSD
box, with Courier running on a different (Linux) box. I don't
want to mount network drives between the two
the correct filenames in Yahoo mail.
/Anders
List Manager writes:
Greetings!
I have a very interesting situation. Whenever we use webmail to attach a
binary file, the file is renamed to File.bin on the other end. This makes
it extremely difficult for the non-savvy users to know what
Anders Widman wrote:
am stuck at creating user accounts and virtual domains. I have got
the webadmin CFI working, and added the virtual domains to Locally
hosted domains.
Check whether these domains appear in /etc/courier/locals . If they do,
you need system accounts
On Sun, Oct 06, 2002 at 09:33:41PM +0200, Anders Widman wrote:
Hello,
I have been trying to configure Courier for POP, SMTP and webmail
access. So far I have got everything installed and running, but I
am stuck at creating user accounts and virtual domains. I have got
Anders Widman wrote:
am stuck at creating user accounts and virtual domains. I have got
the webadmin CFI working, and added the virtual domains to Locally
hosted domains.
Check whether these domains appear in /etc/courier/locals . If they do,
you need system accounts
/Anders
PS. I would like to take this opportunity to thank everbody who made Courier
Mail possible. I've just gotten Courier Mail running a few days ago for our
small company, and am extremely pleased with it. This is really a great
package!
Francisco Solsona writes:
Hello all,
We
49 matches
Mail list logo