Re: restart necessary on certificate upgrade (letsencrypt)?

2022-01-09 Thread Maarten de Vries
the same private key. And since the certificate is not sensitive, there is normally no problem with that being world readable. So while reloading the private key has some security issues to consider, reloading the certificate is quite easy and is sufficient for most if not all real world renewals. Kind regards, Maarten de Vries

Re: max-message-size

2021-07-12 Thread Maarten de Vries
On Mon, 12 Jul 2021 at 20:36, Pete wrote: > Would it be possible to add an max-msgsize option to the match clause to > get the desired result? > > > That might be a potential footgun if it means messages that are too large end up with a subsequent match. Although careful documentation could

Re: Microsoft 365 - Mail always goes to Junk

2021-06-04 Thread Maarten de Vries
On 04-06-2021 10:39, Nick Ryan wrote: I have this as well, I think it's Sender Reputation too - they use Senderscore and I know my mailservers don't send enough mails to get a rating. Oddly, I have no problems sending to the free hotmail & outlook addresses. I don't have a solution apart

Re: Adrift with DKIM Signing on FreeBSD

2020-07-31 Thread Maarten de Vries
On Fri, 24 Jul 2020 at 03:00, Sam Vaughan wrote: > > On 24 Jul 2020, at 7:52 am, William Carson wrote: > > > >> On Jul 22, 2020, at 9:43 PM, Sam Vaughan wrote: > >> > >> > >> > >> I see that everything’s good on OpenBSD thanks to Martijn’s dkim > filter, but there's no port of it on FreeBSD

Re: Adrift with DKIM Signing on FreeBSD

2020-07-23 Thread Maarten de Vries
Just so you know, you're not alone on this. I deal with both inbound and outbound mail, and I still think rspamd is a sledgehammer. I'd much prefer to use a separate dkim-sign and even dkim-verify filter. -- Maarten On Thu, 23 Jul 2020 at 05:00, Sam Vaughan wrote: > Hi all, > > I’ve been very

Re: openssl support

2019-05-17 Thread Maarten de Vries
On 17-05-2019 14:13, Harald Dunkel wrote: Hi Gilles, I understand that ssl support is a highly complex issue, making it necessary to focus and to get rid of the cruft. It would be a pity if opensmtpd becomes "OpenBSD-only", though. Regards Harri It's quite possible to build and use

Re: Rule to prevent spam from my domain

2018-12-20 Thread Maarten de Vries
On Thu, 20 Dec 2018 at 04:05, Edgar Pettijohn wrote: > > On Wed, Dec 19, 2018 at 11:37:31PM +, Mik J wrote: > > Hello, > > > > I have wrote rules for my opensmtpd but some spams are passing through. > > > > The ones that I go through have a source like em...@mydomain.org and are > > sent to

Re: OpenSMTPD SRS

2017-03-24 Thread Maarten de Vries
On 24 March 2017 at 20:36, Jason A. Donenfeld wrote: > See below. Does OpenSMTPD support SRS yet? Or can I just never receive > email from people anymore with OpenSMTPD? > > ​Have you seen the recent update regarding plans for 2017 [1]? It outlines the current priorities.

Re: The death of TLSv1.0

2016-01-09 Thread Maarten de Vries
On 9 January 2016 at 10:18, Clint Pachl wrote: > With that said, I do respect Gilles decision for not implementing knobs. > What do you guys think? What are some solutions? > > ​Seems to me that if there can be a one-size-fits-all then a knob is not needed. However, it also

Re: smtpd fails on automatic startup

2015-10-16 Thread Maarten de Vries
On 16 October 2015 at 21:17, Kevin Chadwick wrote: > > > > > > For testing purposes, I changed my smtpd.conf to listen on 127.0.0.1 > > > instead of enp0s4 and it did not crash on startup, so that tells me > that > > > our > > > troubleshooting is on the right track. > > > >

Re: smtpd fails on automatic startup

2015-10-14 Thread Maarten de Vries
On 14 October 2015 at 17:21, Seth wrote: > On Wed, 14 Oct 2015 05:45:05 -0700, Allyn Bottorff > wrote: > > Unless you use a service that actually provides it, a target will do >>> absolutely nothing on its own. So how is using the proper things "not an >>>

Re: smtpd fails on automatic startup

2015-10-13 Thread Maarten de Vries
On 13 October 2015 at 14:21, Allyn Bottorff <abotto...@gmail.com> wrote: > On Tue, Oct 13, 2015 at 11:10:47AM +0200, Maarten de Vries wrote: > >> On 13 October 2015 at 04:11, Holger Jahn <li...@loomsday.co.nz> wrote: >> >> On 10/12/2015 09:47 PM,

Re: smtpd fails on automatic startup

2015-10-11 Thread Maarten de Vries
On 11 October 2015 at 21:34, Allyn Bottorff wrote: > > Your firewall could prevent smtpd from starting if you have a default > "drop all" rule, then you start smtpd and finally your firewall loads the > correct rules. > > I had a similar problem in the past due to that and

Re: smtpd fails on automatic startup

2015-10-11 Thread Maarten de Vries
On 11 October 2015 at 22:39, Holger Jahn wrote: > Does anyone know what specifically causes this error? >> >> Oct 11 14:14:10 shadesmar smtpd[3086]: fatal: smtpd: bind: Cannot assign >> requested address >> > > Means SMTPD cannot attach itself as a listener to the specified

Re: What's the idea behind not enough disk space temporarily rejecting messages

2014-05-10 Thread Maarten de Vries
Rejecting messages when disk space is getting scarce is a good thing, but a hardcoded percentage is not really optimal. Having 200GB left doesn't seem like a reason to reject messages to me. On 10 May 2014 15:50, Barbier, Jason jab...@serversave.us wrote: Well the idea is much like what the