Unable to remove mail from queue
Hi All, I just noticed something strange on one of my mailservers running OpenSMTPd 6.7.0p1 (OpenBSD 6.7). The mailserver was trying to deliver a spam mailbounce to fedex, it kept failing so I removed it from the queue. The logs kept showing it was being delivered, eventhough nothing was showing in the queue. After a restart of smtpd the message did show up in the queue again. root@smtp1:~ # smtpctl show queue cd9b0933db878954|local|mta|auth|@|prvs=1417a4ec2a=bou...@nds.fedex.com|prvs=1417a4ec2a=bou...@nds.fedex.com|1590676002|1590676002|1590937323|0|inflight|99| root@smtp1:/var/spool/smtpd/queue/cd/cd9b0933 # smtpctl remove cd9b0933db878954 1 envelope removed root@smtp1:/var/spool/smtpd/queue/cd/cd9b0933 # smtpctl remove cd9b0933db878954 0 envelope removed root@smtp1:/var/spool/smtpd/queue/cd/cd9b0933 # ls -la total 52 drwx-- 2 _smtpq wheel512 May 28 16:26 . drwx-- 3 _smtpq wheel512 May 30 20:49 .. -rw--- 1 _smtpq wheel316 May 28 16:26 cd9b0933db878954 -rw--- 1 _smtpq wheel 19296 May 28 16:26 message root@smtp1:/var/spool/smtpd/queue/cd/cd9b0933 # smtpctl show queue root@smtp1:/var/spool/smtpd/queue/cd/cd9b0933 # rcctl restart smtpd smtpd(ok) smtpd(ok) root@smtp1:/var/spool/smtpd/queue/cd/cd9b0933 # smtpctl show queue cd9b0933db878954|local|mta|auth|@|prvs=1417a4ec2a=bou...@nds.fedex.com|prvs=1417a4ec2a=bou...@nds.fedex.com|1590676002|1590676002|1590937456|0|inflight|1| root@smtp1:/var/spool/smtpd/queue/cd/cd9b0933 # ls -la total 52 drwx-- 2 _smtpq wheel512 May 28 16:26 . drwx-- 3 _smtpq wheel512 May 30 20:49 .. -rw--- 1 _smtpq wheel316 May 28 16:26 cd9b0933db878954 -rw--- 1 _smtpq wheel 19296 May 28 16:26 message I assume this is not the expected result. :) What else can I collect to pinpoint what is going on, before I rm the files? Mischa
Re: please share your configuration files with us
Hi Gilles, Here you go. I have redundant table config in there but this was to test for the man rewrite/write up. :) #filter filter-pause pause #filter filter-regex regex #filter filter-dnsbl-sorbs dnsbl #filter filter-dnsbl-spamcop dnsbl "-h bl.spamcop.net" #filter filter-dnsbl-spamhaus dnsbl "-h sbl-xbl.spamhaus.org" #filter all chain filter-pause filter-regex filter-dnsbl-sorbs filter-dnsbl-spamcop filter-dnsbl-spamhaus #filter all chain filter-pause pki mx1.runbsd.nl certificate "/etc/ssl//mx1.runbsd.nl.fullchain.pem" pki mx1.runbsd.nl key "/etc/ssl/private/mx1.runbsd.nl.key" pki mx1.high5.nl certificate "/etc/ssl//mx1.high5.nl.fullchain.pem" pki mx1.high5.nl key "/etc/ssl/private/mx1.high5.nl.key" table names file:/etc/mail/hostnames table aliases file:/etc/mail/aliases table www-relays file:/etc/mail/www-relays table www-senders file:/etc/mail/www-senders # sqlite table domains sqlite:/etc/mail/sqlite.conf table virtuals sqlite:/etc/mail/sqlite.conf table credentials sqlite:/etc/mail/sqlite.conf # mysql #table domains mysql:/etc/mail/mysql.conf #table virtuals mysql:/etc/mail/mysql.conf #table credentials mysql:/etc/mail/mysql.conf # pgsql #table domains postgres:/etc/mail/pgsql.conf #table virtuals postgres:/etc/mail/pgsql.conf #table credentials postgres:/etc/mail/pgsql.conf listen on lo0 listen on mx1.runbsd.nl port 25 tls pki mx1.runbsd.nl hostnames listen on mx1.runbsd.nl port 587 tls-require pki mx1.runbsd.nl auth hostnames listen on mx1.high5.nl port 25 tls pki mx1.high5.nl hostnames accept from local for any relay via secure://mail.high5.nl accept from local for domain "*.high5.nl" relay via secure://mail.high5.nl reject from source sender ! for any accept from source sender for any relay accept from any for domain virtual deliver to maildir "/var/mail/virtual/%{dest:lowercase}/" accept from local for any relay Mischa > On 3 Aug 2017, at 19:32, Gilles Chehade wrote: > > Hi, > > We're currently reworking the smtpd.conf grammar to solve some errors we > made years ago and that are now in the way of many nice features. > > We would appreciate if AS MANY as you could send us your smtpd.conf, the > goal being for me to translate them to the new grammar and check how the > new smtpd.conf looks like for you. > > The more I get, the faster I can move forward with this change that will > span over many months. This has no chance of hitting 6.2 whatsoever, but > if it is done by 6.2 it may hit 6.3 :-) > > Again, many many many features rely on this to be done first so... ;-) > > -- > Gilles Chehade > > https://www.poolp.org @poolpOrg > > -- > You received this mail because you are subscribed to misc@opensmtpd.org > To unsubscribe, send a mail to: misc+unsubscr...@opensmtpd.org > -- You received this mail because you are subscribed to misc@opensmtpd.org To unsubscribe, send a mail to: misc+unsubscr...@opensmtpd.org
Re: Filter withdrawals
You mean for people that don't read disclaimers, read me's, release notes? :) Mischa -- > On 11 Sep 2016, at 13:01, Gilles Chehade wrote: > >> On Tue, Sep 06, 2016 at 09:10:40AM -0500, Edgar Pettijohn wrote: >> I'm thinking of starting a support group for others suffering from filter >> withdrawal. Upgraded to 6.0 over the weekend and went back to using spampd >> and sieve. Is there any other options besides amavis? I really miss >> filter-regex. Haven't had any luck finding a replacement just curious if >> anyone out there has any suggestions. >> > > we should also start a support group for people suffering from other > people running filters that are not ready ;-) > > -- > Gilles Chehade > > https://www.poolp.org @poolpOrg > > -- > You received this mail because you are subscribed to misc@opensmtpd.org > To unsubscribe, send a mail to: misc+unsubscr...@opensmtpd.org > -- You received this mail because you are subscribed to misc@opensmtpd.org To unsubscribe, send a mail to: misc+unsubscr...@opensmtpd.org
Re: Greylisting
Hi Peter, That is indeed a great article. Thank you for writing it. It gave me a new appreciation for spamd again. :) Mischa > On 11 Sep 2016, at 12:17, Peter N. M. Hansteen wrote: > >> On 09/10/16 19:10, Silvio Siefke wrote: >> I search with google but I found nothing with greylisting and most about >> spam is with shell scripts and pf. > > If all you've found is 'shell scripts and pf' I don't think you've > looked very closely. > > As Mischa mentioned earlier, on OpenBSD and other OSes with PF there's > spamd(8), which was (for example) quite capable of shielding all my > users from the recent 'voicemail' scam using only its default > greylisting (see > http://bsdly.blogspot.com/2016/08/the-voicemail-scammers-never-got-past.html > about that particular incident, links to other articles about spamd(8) > greylisting and related topics therein). > > - Peter > -- > Peter N. M. Hansteen, member of the first RFC 1149 implementation team > http://bsdly.blogspot.com/ http://www.bsdly.net/ http://www.nuug.no/ > "Remember to set the evil bit on all malicious network traffic" > delilah spamd[29949]: 85.152.224.147: disconnected after 42673 seconds. > > -- > You received this mail because you are subscribed to misc@opensmtpd.org > To unsubscribe, send a mail to: misc+unsubscr...@opensmtpd.org >
Re: Greylisting
Hi Silvio, Have a look at spamd. https://www.openbsd.org/spamd/index.html Also runs on non-OpenBSD. Mischa > On 10 Sep 2016, at 19:10, Silvio Siefke wrote: > > Hello, > > is greylisting available in opensmtpd? I have so much spam and I use > blacklist but it will not really work. > > > triolan.net.ua > tpasites.com > sak-ura.net > zwaan.nl > ibece.net > mccurdycandler.com > fischbach.co.uk > hv.be > outlook.com > fischbach.co.uk > ecolelasource.ch > bvniel...@ymail.com > > Can i write so or must be complete address? > > > # Deliver locally messages coming back in from scanner > accept tagged Scanned from local for domain virtual deliver > to maildir "~/maildir" > accept from local for local alias deliver to maildir "~/maildir" > reject tagged Scanned > > I search with google but I found nothing with greylisting and most about > spam is with shell scripts and pf. > > Nice day > Silvio > > -- > You received this mail because you are subscribed to misc@opensmtpd.org > To unsubscribe, send a mail to: misc+unsubscr...@opensmtpd.org >
Re: Crashing once a day and not auto-starting back
Hi All, There was an awesome utility once, daedalus. Written in Ruby though. :) http://portsmon.freebsd.org/portoverview.py?category=sysutils&portname=daedalus Mischa -- > On 05 May 2016, at 17:30, Edgar Pettijohn wrote: > > You could have a cron job check that it's running and if not restart it. Plus > the email cron sends would give you a time frame to look for in the logs. > > Sent from my iPhone > >>> On May 5, 2016, at 9:58 AM, Mariano Baragiola >>> wrote: >>> >>> On 05/05/16 11:51, Gilles Chehade wrote: >>> >>> No it shouldn't autostart when it crashes. >>> It shouldn't crash either. >>> >>> Can you provide more details ? >>> logs before the crash ? >> >> Noted. Is it a way to autostart it again >> if it crashes? >> >> I just added the verbosity flag to smtpd, >> so I guess I'll have more log details if >> and as soon as it crashes again. >> >> >> -- >> You received this mail because you are subscribed to misc@opensmtpd.org >> To unsubscribe, send a mail to: misc+unsubscr...@opensmtpd.org > > > -- > You received this mail because you are subscribed to misc@opensmtpd.org > To unsubscribe, send a mail to: misc+unsubscr...@opensmtpd.org > -- You received this mail because you are subscribed to misc@opensmtpd.org To unsubscribe, send a mail to: misc+unsubscr...@opensmtpd.org