Re: SSL/TLS

2015-07-28 Thread Mariano Baragiola
In my experience, Thunderbird auto-configuration is not good.

Configure it manually, choosing STARTTLS as the encryption method.

-- 
You received this mail because you are subscribed to misc@opensmtpd.org
To unsubscribe, send a mail to: misc+unsubscr...@opensmtpd.org



Re: Crashing once a day and not auto-starting back

2016-05-05 Thread Mariano Baragiola

On 05/05/16 10:59, Edgar Pettijohn wrote:



How is it activated to do so?



I mean it autostarts when I reboot the VPS.
I did it with rcctl enable smtpd.
Shouldn't by this autostart when it crashes?
Perhaps coming from a Debian background I
got this wrong.



Turn up the verbosity.
smtpd_flags="-v"





Done, thank you.


--
You received this mail because you are subscribed to misc@opensmtpd.org
To unsubscribe, send a mail to: misc+unsubscr...@opensmtpd.org



Crashing once a day and not auto-starting back

2016-05-05 Thread Mariano Baragiola

Hello misc@, sending again from different account.
Sorry if duplicate.

I rented an OpenBSD 5.9-release amd64 VPS and updated it
to 5.9-stable with https://stable.mtier.org/openup.

Before submitting a ticket to the VPS provider, I wanted
to see if I'm doing something wrong.

Regularly, the smtpd service stops running and it
won't autostart back, although it is activated to
do so.

# smtpctl show status
smtpctl: smtpd doesn't seem to be running

# rcctl ls on
check_quotas
cron
ntpd
smtpd
sshd
syslogd

# rcctl ls started
cron
ntpd
sshd
syslogd

# rcctl start smtpd
smtpd(ok)

Below it is my smtpd.conf, edited to not show personal
details, it is a quite simple forwarding setup:

pki mydomain.com certificate "/etc/mail/tls/mycert.crt"
pki mydomain.com key "/etc/mail/tls/mykey.key"

table authtable file:/etc/mail/authtable
table vusers file:/etc/mail/vusers
table vdoms file:/etc/mail/vdoms

listen on all port 25 tls-require pki mydomain.com auth-optional
 \
hostname mydomain.com

accept from any for domain  virtual  deliver to mbox
accept from local for any relay

---

I ran chmod -R 0400 /etc/mail/tls/, if it helps to know that.

Both sending and receiving works fine when smtpd is running,
but it is the second time I woke up in the morning having
smtpd stopped with no apparent reason, and not autostarting
back. When I reboot the VPS, smtpd autostarts with no problems.

I don't know if I'm looking in the wrong place, but
/var/log/maillog isn't showing anything relevant.

Any help is appreciated, and thanks in advance for reading.



--
You received this mail because you are subscribed to misc@opensmtpd.org
To unsubscribe, send a mail to: misc+unsubscr...@opensmtpd.org



Re: Crashing once a day and not auto-starting back

2016-05-05 Thread Mariano Baragiola

On 05/05/16 11:51, Gilles Chehade wrote:


No it shouldn't autostart when it crashes.
It shouldn't crash either.

Can you provide more details ?
logs before the crash ?




Noted. Is it a way to autostart it again
if it crashes?

I just added the verbosity flag to smtpd,
so I guess I'll have more log details if
and as soon as it crashes again.


--
You received this mail because you are subscribed to misc@opensmtpd.org
To unsubscribe, send a mail to: misc+unsubscr...@opensmtpd.org



Re: Crashing once a day and not auto-starting back

2016-05-06 Thread Mariano Baragiola

On 06/05/16 04:56, Gilles Chehade wrote:

On Thu, May 05, 2016 at 04:51:35PM +0200, Gilles Chehade wrote:

On Thu, May 05, 2016 at 11:42:44AM -0300, Mariano Baragiola wrote:

On 05/05/16 10:59, Edgar Pettijohn wrote:



How is it activated to do so?



I mean it autostarts when I reboot the VPS.
I did it with rcctl enable smtpd.
Shouldn't by this autostart when it crashes?



No it shouldn't autostart when it crashes.
It shouldn't crash either.

Can you provide more details ?
logs before the crash ?



Any news ?




Yes. It crashes in the night (UTC-3).

Seeing the logs I see a pattern of what seems bots trying
to use my SMTP server to send phony emails.

OpenSMTPd successfuly rejects them, but somehow it crashes
at some point.

I guess I should be reading how to ban these people through
pf rules.

--
You received this mail because you are subscribed to misc@opensmtpd.org
To unsubscribe, send a mail to: misc+unsubscr...@opensmtpd.org