On Thu, 1 Apr 2021 09:43:21 -0500
wrote:
> My question also was what is going to happen to the data feeds we are
> getting.
I'm not sure what data feeds you're referring to. If you are referring to
the Roaring Penguin IP blocklists and/or the CanIt Bayes data feeds, those
are controlled by AppR
On Thu, 01 Apr 2021 11:13:48 -0400
"Bill Cole" wrote:
> There was an issue opened a month ago at
> https://github.com/The-McGrail-Foundation/MIMEDefang/issues/25
> stating that the list was down.
The list is still being run by AppRiver (Zix, now, I guess.)
> I attempted to post a test on March
I haven't seen traffic since December 2020... just pinging the list...
Regards,
Dianne.
___
NOTE: If there is a disclaimer or other legal boilerplate in the above
message, it is NULL AND VOID. You may ignore it.
Visit http://www.mimedefang.org and htt
On Tue, 1 Dec 2020 13:10:43 -0500
Joseph Brennan wrote:
> We used this to create an array of header information:
> if (open(IN, '<', './HEADERS')) {
> while() {
> chomp;
> if (/^(\S+):\s*(.*)/) {
> my $label = $1;
> my $data = $2;
On Thu, 26 Nov 2020 12:47:56 -0500
"Bill Cole" wrote:
[snip]
> That Received header is added by Sendmail *AFTER* all milters have
> done their end-of-data work. It is not present when MD sees the
> message.
So as per Bill Cole's analysis, it seems there were indeed no
Received: headers on the ma
On Wed, 25 Nov 2020 11:45:11 +0100
Andrea Venturoli wrote:
> > if (open(HF, "<./HEADERS")) {
> > my $head = Mail::Header->new([]);
> > close HF;
> > md_syslog('warning',"head = %$head");
You shouldn't really print "head = %$head" because you don't know
On Mon, 23 Nov 2020 12:41:00 -0500
Anne Bennett wrote:
> > The Perl code is atrocious.
> Give yourself a break. ;-)
Well, OK. :)
The code itself is not terrible. I like to write clear code that any
newbie can understand (for "newbie", read "myself in 6 months time...")
What I mean is the
On Sun, 22 Nov 2020 15:21:04 -0500
"Bill Cole" wrote:
[snipsnip...]
> Obviously OOPifying MD would be a v3 project, as it would break all
> existing mimedefang-filter.pl scripts.
That is an issue. Perhaps making an MD::Filter::Compat class that
lets old filter scripts keep working with minima
On Sun, 22 Nov 2020 13:24:24 -0500
Dianne Skoll wrote:
> Anyway... I'd really like to see MIMEDefang development activity pick
> up again. I'm hoping The McGrail Foundation will attract more
> interest in the project.
Specifically... these are things I would do differently
On Sun, 22 Nov 2020 19:20:00 +0100
Benny Pedersen via MIMEDefang
wrote:
> hope not to be enforced to use mimedefang, my simplest setup have
> being clamav-milter, spampd, and not more
That is a rather odd comment to post on the MIMEDefang mailing list, no?
Anyway... I'd really like to see MIMED
On Thu, 19 Nov 2020 19:46:14 +0100
Benny Pedersen via MIMEDefang
wrote:
> if mimedefang was writed in python i would have used it :=)
The multiplexor <-> filter protocol is simple and documented, so
have a go... :)
> hope for spamassassin writed in python is a long term dream, just
> like unifi
Hi,
> Maybe it's just you and me, Dianne, and I don't know why I'm still
> here after management moved us to Proofpoint.
I helped figure out the issue. All the mail was quarantined and should
come flooding into the list.
Regards,
Dianne.
___
NOTE: If
Hey, Bill! Long time no hear!
On Thu, 19 Nov 2020 12:11:00 +
"Brown, William" wrote:
> Apparently! Hope you and yours are staying safe and healthy.
We're all good. Hope you and yours are too.
Anyway, the list seems a bit messed up... looks like only my posts
are making it through. :( I
Hi, all,
I'm posting this on behalf of Kevin A. McGrail, whose posts seem
to be disappearing...
Regards,
Dianne.
===
Afternoon everyone!
Sorry for the radio silence. Many moons ago in the prepandemic times,
MIMEDefang was
Is this list still alive?
Regards,
Dianne.
___
NOTE: If there is a disclaimer or other legal boilerplate in the above
message, it is NULL AND VOID. You may ignore it.
Visit http://www.mimedefang.org and http://www.roaringpenguin.com
MIMEDefang mailing
On 2020-07-27 16:34, Joseph Brennan wrote:
> Hi Dianne I hope you're well. I'm saving your message just in case!
Heh. :)
> Only 20 years? Even so how well we know the satisfaction of spending
> a whole work day putting letters, numbers, and punctuation marks in
> just the right place in a line o
> I've recently taken a position at Best Practical Solutions (the folks
> who make RT / Request Tracker.) I actually have to integrate MIMEDefang
> with Postfix, which is not something I've done before, so I'm interested
> in hearing tips or pointers from people who have done this.
Well, it turn
Hi, everyone,
I've recently taken a position at Best Practical Solutions (the folks
who make RT / Request Tracker.) I actually have to integrate MIMEDefang
with Postfix, which is not something I've done before, so I'm interested
in hearing tips or pointers from people who have done this.
Regard
On 11/12/19 10:04 AM, Kenneth Irving wrote:
> Maillusc
Haha, +1, Puns are my weak spot.
Regards,
Dianne.
___
NOTE: If there is a disclaimer or other legal boilerplate in the above
message, it is NULL AND VOID. You may ignore it.
Visit http://www.mi
Oyster is cute, but likely overloaded. I know the London Underground
smartcard is called Oyster.
If you combine it with something else, it'd be better, I think. MailOyster
or something (that doesn't exactly trip off the tongue, but I'm sure
someone can come up with something that does.)
Regards
On 10/21/19 5:51 PM, Kevin A. McGrail wrote:
> Good Evening everyone,
> My name is Kevin A. McGrail. I've been a long-time user of MIMEDefang
> and I'd like to put myself forward to take the mantle of leadership from
> DFS now that she has moved on to other work. I don't envision it will
> be as
On 6/25/19 4:50 PM, Kevin A. McGrail wrote:
> It's an exim exploit CVE-2019-10149. MIMEDefang won't be affected but
> you are correct what it is trying to do.
> In filter_recipient, add this to reject this exploit attempt:
> #EXIM EXPLOIT 2019 June
> if ($recip =~ /root\+\$\{run/i) {
>
Hi,
Your starting point should be to look at https://metacpan.org/pod/Mail::GnuPG
Regards,
Dianne.
___
NOTE: If there is a disclaimer or other legal boilerplate in the above
message, it is NULL AND VOID. You may ignore it.
Visit http://www.mimedefang
Hi,
> What will happen to https://mimedefang.org/
Zix now owns that domain. You'd have to ask them what they want to
do with it.
> Are you open to continue to operate it, or transfer it to a group of
> volunteers who will continue the project? This current mailing list
> can also be migrated o
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Hi, everyone,
As many of you probably know, I sold Roaring Penguin Software about a
year ago. The company was acquired by AppRiver, and AppRiver was
subsequently acquired by Zix. I no longer work with the company
(or indeed in the anti-spam field.
On 4/7/19 5:09 AM, Kenneth Porter wrote:
> I just got a legitimate text vCard attachment in my quarantine with
> a .vcs extension. It's in the list of bad file extensions in the
> default filter. Why is that?
The default filter is really outdated and could use some revamping and
attention. If an
Hi,
> I just put DKIM on my mail system, but gmail rejects with "body hash did not
> verify", so something is wrong with how I'm hashing. Does this code look
> reasonable?
[snip]
The code looks fine. Do services other than Gmail report a valid DKIM
signature? I've observed occasional DKIM ver
On Fri, 11 Jan 2019 16:16:23 +0100
Riccardo Bicelli wrote:
> 1. Images
> With altermime is nearly impossible to add images as attached/boundary
> so I have to insert them as base64 ecoded in img tag. With mimedefang
> Is there a way to add images boundary in boilerplate?
> 2. Base64 encoded mess
On Mon, 26 Nov 2018 17:55:57 +0100
Marcus Schopen wrote:
> is always the same, but I can't catch it with blacklist_from. Can I get
> that from $entity->head->get('From') or any better ideas?
That should work, or you can open and read the file ./HEADERS, which
contains the message headers (unwrap
On Thu, 18 Oct 2018 09:57:40 -0400
John Von Essen wrote:
> If I call delete_recipient(); with no argument, does it act as a
> catch-all and delete ALL recipients?
Nope.
> Or do have do something like:
> foreach(@Recipients) { delete_recipient($_); }
Yup. You could wrap it in a delete_all_reci
Hi,
> if ($hits >= $req) {
> action_change_header("X-Spam-Score", "$hits ($score) $names");
> resend_message($SpamBox);
> action_discard();
> }
Rather than using resend_message to resend the message, if you have
a new-enough
On Fri, 24 Aug 2018 23:35:54 +0200
Marcus Schopen wrote:
> That might me right in most of the cases. But if you do a "silent"
> reject, this has to be communicated very clearly to the recipient, as
> well as rejecting at a spamassassin score of >= 5. This is nothing you
> can decide on your own a
On Fri, 24 Aug 2018 08:37:21 -0700
Jeff Makey wrote:
> If you are willing to risk the dangers of both bouncing and forwarding
> a message,
https://www.youtube.com/watch?v=koRRqOJcaHs
Regards,
Dianne.
___
NOTE: If there is a disclaimer or other legal
On Fri, 24 Aug 2018 12:10:41 +0200
Marcus Schopen wrote:
> That's why I want to reject it, but inform the recipient -
> not the sender - about the rejection.
I think this is a terrible idea for two reasons:
1) What is the recipient supposed to do with the notification? Most
recipients are not
On Thu, 23 Aug 2018 19:50:44 +0200
Benny Pedersen via MIMEDefang wrote:
> a REJECT is not a bounce, its a denied to accept it
A REJECT is potentially likely to cause a bounce, but yeah... it won't
be backscatter from your machine.
> i dont use mimedefang, its not very good examples of doing any
On Mon, 23 Jul 2018 03:31:06 -0500
Richard Laager wrote:
> I have attached updated systemd service files, with the PID file
> directly in /run, which I have tested with 2.84. This change also
> requires specifying a lock file in $SPOOLDIR.
Thanks! I'll put these in the next release.
Regards,
On Mon, 16 Jul 2018 11:01:27 -0400
Kris Deugau wrote:
> > document.write(' > src="https://2543611.fls.doubleclick.net/activityi;src=2543611;type=email011;cat=promo0;ord
> > =' + a + '?" width="1" height="1" frameborder="0"
> > style="display:none">');
Have a glass of poisoned statistics:
On Thu, 28 Jun 2018 10:57:06 +0300
Alexey Lobanov wrote:
> It is default code with extended extension list. Trojan writers like
> these file types novadays.
Ah, OK, the re_match routine in MIMEDefang won't handle wide characters
properly. I'll look into fixing it for a future release. I can't
Hi,
Can you post the relevant part of your filter code that triggers
this problem?
Also, MIME::tools 5.009 doesn't exist; I assume it was a typo and
you meant 5.509?
Regards,
Dianne.
___
NOTE: If there is a disclaimer or other legal boilerplate in th
On Mon, 14 May 2018 11:32:13 +
Thomas Kristensen wrote:
> What happens with the email, if there is a error in filter_begin? Ex.
> A database server offline and there is a query in filter_begin ?
It's up to you to catch the error and call action_tempfail (or whatever
you deem appropriate for
On Mon, 7 May 2018 18:31:18 +
Thomas Kristensen wrote:
> Then I dont understand the rebuild action.
action_rebuild does nothing except set a flag telling MIMEDefang that
the message must be regenerated and passed back to the milter
body-replacement function. The flag is checked when filter
On Mon, 7 May 2018 13:55:19 +
Thomas Kristensen wrote:
> If I use action_change_header in the begining of the filter_begin,
> will the header I add/change be readable later on?
No, not in MIMEDefang. MIMEDefang just makes a note to ask the
milter engine to add the header; Sendmail does the
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Hi, everyone,
A really minor release is available at https://mimedefang.org/download
Release notes are below,
Regards,
Dianne.
2018-03-21 Dianne Skoll
* MIMEDefang 2.84 RELEASED
* mimedefang.pl: Correctly use "$mon" r
On Fri, 23 Feb 2018 04:16:40 +0100
"Randy Candy" wrote:
> I have implemented the following subroutine dkim_sign (listed below)
> and call it from filter_end after I verify that specific criteria are
> met. Prior to calling dkim_sign I utilize append_text_boilerplate
> and then call action_rebuild
On Wed, 10 Jan 2018 11:20:50 -0500
Chip wrote:
> Are you saying that you are not actually using .procmail except to
> offload the processing to mail-filter.pl?
Yes, exactly.
Regards,
Dianne.
___
NOTE: If there is a disclaimer or other legal boilerpla
On Wed, 10 Jan 2018 09:50:18 -0500
Chip wrote:
> Isn't procmail no longer maintained because of a vulneravblity?
I believe it's still maintained. However, procmail sucks (that's a
technical term.)
My .procmailrc looks like this:
:0
| /usr/bin/perl /home/dfs/.mail-filter.pl >> /home/dfs/.mail-
Hi,
As far as I'm aware, cPanel *requires* you to use the Exim MTA, and
MIMEDefang is not compatible with Exim. There is therefore no way to
install MIMEDefang on a machine running cPanel.
You need a different strategy. Maybe a commercial spam-filtering service,
which we do offer. :) sa...@roa
On Tue, 26 Dec 2017 00:59:23 +0100
Franz Schwartau wrote:
> After upgrading to 2.83 of mimedefang I'm wondering if "$min+1" should
> read "$mon+1" in hour_str():
It should; I have it fixed in git, but haven't made a new release of
MIMEDefang with the fix in place yet.
Regards,
Dianne.
On Thu, 14 Dec 2017 17:26:38 -0500
"Bill Cole" wrote:
> > This will cause other problems down the line. I suggest you
> > study the section "Byte and Character Semantics" in the perlunicode
> > man page.
> Thanks for the reference and for your patience with my confusion. I
> understand much
On Thu, 14 Dec 2017 08:52:32 -0800
Amit Gupta wrote:
> If I call action_rebuild() a couple times in my filter_end code, could
> it have different effects depending on when it's called?
Nope. All it does is set a flag informing mimedefang.pl it should rebuild
the message when filter_end is done.
On Wed, 13 Dec 2017 20:37:36 -0500
"Bill Cole" wrote:
> -return IO::File->new(\ $self->{MBS_Data}, $mode);
> +return IO::Scalar->new(\ $self->{MBS_Data}, $mode);
This will cause other problems down the line. I suggest you
study the section "Byte and Character Semantics" in the perlunico
On Wed, 13 Dec 2017 21:03:27 -0500
"Bill Cole" wrote:
> It is entirely possible (as stated explicitly in RFC2045) for a MIME
> entity to contain unencoded binary data: any arbitrary stream of
> bytes.
Stream of *bytes* yes. But Perl native characters > 0xFF are not bytes.
Regards,
Dianne.
__
On Wed, 13 Dec 2017 16:28:58 -0500
"Bill Cole" wrote:
> Unfortunately, I tested a bit more and found that bug is still extant
> in 5.509, when tested with the one-liner in that bug report.
That "bug" is a WONTFIX. You can NOT feed MIME::Entity->build()
data with raw characters > 0xFF. It doesn
On Tue, 12 Dec 2017 15:43:14 +0200
Mark Coetser wrote:
> Error from multiplexor: ERR No response from slave
> Reap: slave 1 (pid 15022) exited normally with status 22 (SLAVE DIED
> UNEXPECTEDLY)
I've never seen this before. I'm also not convinced it's related
to the UTF-8 issue. Could you pos
On Wed, 6 Dec 2017 01:37:39 +0100
Jan-Pieter Cornet wrote:
> Another bug with it's own logo and website has appeared:
> www.mailsploit.com.
Interesting. The code-injection part is worrying, but IMO the spoofing
part is completely uninteresting. There are so many ways to fool people
regarding D
On Fri, 24 Nov 2017 15:53:44 +0200
"Info @ brainwash" wrote:
> Hence, without the -d parameter, the issue is that the work folders
> are removed before clamd has a chance to scan them.
No, that is absolutely NOT the case. Something else has changed on your
system in the interim.
Take out the -
Hi,
> Actually, user is clamscan..
Did you restart ClamAV after adding clamscan to the defang group?
And did you ensure that AllowSupplementaryGroups in clamd.conf is set
to "yes" ?
Regards,
Dianne.
___
NOTE: If there is a disclaimer or other legal b
On Thu, 23 Nov 2017 20:36:50 +0200
"Info @ brainwash" wrote:
> Tried the commands you mention.. to no effect however.. :(
Please post the output of these commands:
id clamav
ls -ld / /var /var/spool /var/spool/MIMEDefang/
Regards,
Dianne.
___
NOTE:
On Thu, 23 Nov 2017 14:25:28 +0200
"Info @ brainwash" wrote:
> mimedefang with the -G option and have the clamav user as member of
> the defang group. In particular, the startup parameters of both
[...]
> .. and I get the issues with the Work files creation as initially
> mentioned, even though
Hi,
You should either add the ClamAV user to the "defang" group and
use the "-G" option to have mimedefang create group-accessible files, or
simply run clamd as the "defang" user directly.
Regards,
Dianne.
> Clam has been unable to scan for e-mails when received by MIMEDefang,
> producing the f
On Sun, 19 Nov 2017 10:39:56 +1100
Bill Maidment wrote:
> In recent times I have noticed that the quarantine directory name has
> been generated incorrectly using the minute value instead of the
> month value. The problem appears to be in mimedefang.pl subroutine
> hour_str where it returns $min+
On Fri, 17 Nov 2017 08:34:50 -0800
"Michael Fox" wrote:
> In other words, if the top-level headers can't be replaced by new
> values in the MIME::Entity->build() method, then why do I still need
> to include them when building the new entity?
Ah, I guess you don't. But I'd do it anyway just for
On Fri, 17 Nov 2017 07:46:00 -0800
"Michael Fox" wrote:
> 1) When building $new_entity, does every field need to be included?
Yes.
> Or will extra info be copied from the existing $entity?
No, unless you arrange for that in your code.
> 2) I can't figure out how to replace the Subject header
On Fri, 10 Nov 2017 18:44:20 -0500
Robert Theisen wrote:
> Did you find anything of concern in the mimedefang process on your
> host that was consuming 8GB RAM?
No, and here's the weird thing. I attached using gdb and forced a
core dump. The core file was only 98MB in size. I have no idea wha
On Fri, 10 Nov 2017 13:18:15 -0500
Robert Theisen wrote:
> {
> struct privdata *data;
> char *val;
> char buf[256];
> if (*macro && *(macro+1)) {
> /* Longer than 1 char -- use curlies */
> snprintf(buf, sizeof(buf), "{%s}", macro);
> val = smfi_getsymval(c
Hi again,
What version of libmilter are you linking against? There was a memory leak
in libmilter in versions older then 8.14.4.
https://groups.google.com/forum/#!topic/linux.debian.bugs.dist/I3QpUbpdwSM
Regards,
Dianne.
___
NOTE: If there is a discl
On Fri, 10 Nov 2017 10:33:10 -0500
Robert Theisen wrote:
[snip]
> and that macro gets copied to dbuf at line 952
>
> /* Write the standard macros */
> macro = StandardSendmailMacros;
> while (*macro) {
> append_macro_value(&dbuf, ctx, *macro);
> macro++;
> }
>
On Wed, 8 Nov 2017 18:49:01 -0500
"Kevin A. McGrail" wrote:
> I'm trying to rip out attachments that are inline as well as
> attachments from emails.
Inline attachments are not special; they're just like regular attachments
except they have a Content-Disposition: of inline and quite likely
have
On November 4, 2017 9:25:20 PM EDT, Amit Gupta wrote:
>Thank you Dianne! This is going to sound silly, but what I'm looking
>for is a function like
>$parent_part = get_parent ($top_entity, $part);
No such function exists. That's why you have to do it the way I illustrated.
You could probably
On Fri, 3 Nov 2017 22:37:46 -0700
Amit Gupta wrote:
> When iterating through the parts of a MIME::Entity using parts_DFS,
> what would be the best way to get a reference to a part's parent
> entity or parent entity type?
Pass it in when you recurse.
sub process {
my ($entity, $parent_en
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Hello,
MIMEDefang 2.83 is released and available at the download page:
https://mimedefang.org/download
Release notes follow.
Regards,
Dianne.
2017-10-30 Dianne Skoll
* MIMEDefang 2.83 RELEASED
* mimedefang.pl: Do not add a
On Fri, 13 Oct 2017 10:20:04 -0400
Dianne Skoll wrote:
> # non-recursive case: Single part.
> # If $in_entity is base-64 encoded, make a new $new_entity
> # that is qp-encoded and call $out_entity->attach($new_entity)
> # and return 1 to indicate that a
On Fri, 13 Oct 2017 06:53:33 -0700
"Michael Fox" wrote:
> While I appreciate everyone's attempt to warn me that "there be
> dragons", the facts are that the client is what it is, it serves
> hundreds of people (in my location alone), and the problem needs
> solving.
OK. You will most likely h
On Tue, 10 Oct 2017 16:11:07 -0400
Joseph Brennan wrote:
> On Tue, Oct 10, 2017 at 1:48 PM, Michael Fox wrote:
> > I need to convert base64 to something readable.
> To be honest I can't think of a reason to do this. Any client from
> this century can read base64. Mimedefang and Spamassassin can
Hi,
> Shouldn't filter() and filter_multipart() simply use "return;" (with
> no return value)? If not, please help me understand.
The return value of filter and filter_multipart is ignored.
I sometimes write:
return action_accept();
as shorthand for:
action_accept();
return;
> Issue
On Thu, 5 Oct 2017 14:04:59 +0200
Mark Coetser wrote:
> Pretty sure the filetype matching is done by checking the actual mime
> type of the file not just what the file extension is, so just
> renaming the file will still not allow the file through.
The sample filter doesn't do that; it only loo
On Wed, 4 Oct 2017 18:58:39 -0500
Richard Laager wrote:
> I have submitted the slightly updated versions to Debian:
> https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=877663
> Dianne, you may want to ship these (or similar) upstream, but that's
> obviously up to you. It doesn't make any differe
On Tue, 03 Oct 2017 03:18:37 -0400
"Bill Cole" wrote:
> OR if you are not using the mimedefang-multiplexor (which I think
> everyone should...)
MIMEDefang hasn't supported *not* using the multiplexor for ages, since
at least version 2.51 released in February 2005.
Regards,
Dianne.
___
On Thu, 28 Sep 2017 23:11:18 -0500
Richard Laager wrote:
> 1) Is it necessary to rm $SOCKET and $MX_SOCKET *before starting*?
It's best to do so because if mimedefang or mimedefang-multiplexor
crashes, the socket files will be left lying around and startup will likely
fail.
> 2) Is it necessary
On Tue, 26 Sep 2017 21:53:14 -0700
"Michael Fox" wrote:
> Does there exist a repository of functions written by folks for MD?
> It sure would help us noobs to not have to re-invent the wheel.
MIME::tools is what you want; it's a prerequisite for MIMEDefang
and is therefore already installed. m
On Tue, 26 Sep 2017 15:48:42 -0400
"Bill Cole" wrote:
> I'm uneasy telling any author that they're wrong about their own code
> but as far as I can tell, that is only conditionally true:
Oh dear... you are correct. :)
Seeing as I don't use those scripts myself, I've never encountered the
probl
On Tue, 26 Sep 2017 09:38:18 -0400
"Bill Cole" wrote:
> bigsky:mimedefang-2.82 bill$ grep -A3 'stop)'
The stop_it function in init-script.in and the stop function in
redhat/mimedefang-init.in both wait for the daemons to exit.
Regards,
Dianne.
___
NO
On Tue, 26 Sep 2017 09:05:01 +0200 (CEST)
Steffen Kaiser wrote:
> Honestly, I would de-MIME the whole message, re-format it and replace
> the entire message with the new one.
Honestly, *I* would tell anyone using ancient non-MIME-aware software
"too bad; update your software to 1999 standards, p
On Mon, 25 Sep 2017 16:08:46 -0500
Richard Laager wrote:
> There are a couple ways to address this. As discussed, the init script
> can be changed to always wait on stop. Then the automatic mapping in
> systemd should Just Work.
The sample init script that ships with MIMEDefang does wait on stop
On Mon, 25 Sep 2017 10:46:01 -0700
"Michael Fox" wrote:
> I'd like to be able to deliver HTML and Base64 messages to those
> clients.
You can do it by throwing away non-text/plain parts where a text/plain part
exists. Decoding base-64 is simply a matter of rewriting the attachment
and forcing t
On Fri, 22 Sep 2017 23:59:38 -0700
"Michael Fox" wrote:
> This seems like a clear bug in MIMEDefang.
Not at all. This problem is not present with Sendmail, so I have no
idea what would cause it with Postfix. Removing the MIMEDefang socket
prior to starting MIMEDefang should fix this. The samp
On Thu, 14 Sep 2017 10:16:16 -0700
Amit Gupta wrote:
> If I have a .eml raw file of an email, is there a simple way to run it
> through a mimedefang.pl/mimedefang-filter process and get the output?
Nope. There's no test framework to simulate all the milter callbacks.
> I wanted to created a ve
On Mon, 11 Sep 2017 23:38:32 -0500
Richard Laager wrote:
> > Nothing at all. There's no Message-ID header in the message that
> > gets passed to SpamAssassin.
> Are you sure?
> spam_assassin_mail() calls gen_msgid_header().
Ah... apparently I was wrong.
I think that's a bug. I'm going to del
On Mon, 11 Sep 2017 16:26:38 -0400
Joseph Brennan wrote:
> When a message comes in with no Message-ID header, and MD passes it to
> SpamAssassin, what is in the Message-ID that SA sees?
Nothing at all. There's no Message-ID header in the message that gets passed
to SpamAssassin.
Regards,
Dian
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Hello,
MIMEDefang 2.82 is released and available at the download page:
https://mimedefang.org/download
Release notes follow.
Regards,
Dianne.
2017-09-08 Dianne Skoll
* MIMEDefang 2.82 RELEASED
* Update contrib/graphdefang with
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Hello,
MIMEDefang 2.81 is released and available at the download page:
https://mimedefang.org/download
Release notes follow.
Regards,
Dianne.
2017-08-31 Dianne Skoll
* MIMEDefang 2.81 RELEASED
* Don't barf if the inst
+++ b/Changelog
@@ -2,6 +2,18 @@ WARNING: Before upgrading MIMEDefang, please search this file
for
*** NOTE INCOMPATIBILITY ** to see if anything has changed that might
affect your filter.
+2017-08-31 Dianne Skoll
+
+ * Make mimedefang and mimedefang-multiplexor write their PID files
Hi,
The patch I posted earlier does not completely fix the problem.
True, the pid file is owned by root, but it's created in a directory
owned by defang, so there's still a way for the "defang" user to
subvert this.
I will have a patch by tomorrow that separates out the pid file (which
will be r
On Thu, 31 Aug 2017 12:11:05 -0400
Michael Orlitzky wrote:
> Hmmm, in that case, maybe the PID file is being reused for a purpose
> that it isn't really suited for? The contents of the PID file are
> slightly sensitive, since init scripts tend to trust them -- but the
> contents of a lock file ar
On Thu, 31 Aug 2017 11:38:25 -0400
Michael Orlitzky wrote:
> You'll have to forgive the stupid question since I'm not a regular
> user of MIMEDefang, but what's the purpose of the file lock? Is it to
> prevent multiple daemons from running at the same time when they're
> not managed by an init sy
elog
+++ b/Changelog
@@ -2,6 +2,11 @@ WARNING: Before upgrading MIMEDefang, please search this file
for
*** NOTE INCOMPATIBILITY ** to see if anything has changed that might
affect your filter.
+2017-08-31 Dianne Skoll
+
+ * Make mimedefang and mimedefang-multiplexor write their PID files
+
Hi,
> The MIMEDefang daemons should create their PID files before dropping
> privileges. This represents a minor security issue; additional factors
> are needed to make it exploitable.
I have made a patch to open the PID files as root. However, since the
process has to keep the file descriptor o
On Mon, 28 Aug 2017 20:49:41 -0700
Amit Gupta wrote:
> Regarding your comment about the downside is that it would "Hold open
> more connections and use more milter threads." I wasn't quite sure
> what you meant by "using more milter threads"?
mimedefang (the C program, as distinct from mimedefa
On Sat, 26 Aug 2017 22:52:15 -0700
Amit Gupta wrote:
> Assume a burst of emails comes in and all 20 md processes are busy
> working.
> 1) What should the 21st and higher connecting clients
> experience?
Sendmail will appear to respond more slowly than usual.
> 2) Is there a configurable limit
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Hello,
MIMEDefang 2.80 is available at http://mimedefang.org/download
Release notes follow.
Regards,
Dianne.
2017-07-24 Dianne Skoll
* MIMEDefang 2.80 RELEASED
* md-mx-ctrl: Add newline to mimedefang-multiplexor output that
1 - 100 of 214 matches
Mail list logo