Unable to remove mail from queue
Hi All, I just noticed something strange on one of my mailservers running OpenSMTPd 6.7.0p1 (OpenBSD 6.7). The mailserver was trying to deliver a spam mailbounce to fedex, it kept failing so I removed it from the queue. The logs kept showing it was being delivered, eventhough nothing was showing in the queue. After a restart of smtpd the message did show up in the queue again. root@smtp1:~ # smtpctl show queue cd9b0933db878954|local|mta|auth|@|prvs=1417a4ec2a=bou...@nds.fedex.com|prvs=1417a4ec2a=bou...@nds.fedex.com|1590676002|1590676002|1590937323|0|inflight|99| root@smtp1:/var/spool/smtpd/queue/cd/cd9b0933 # smtpctl remove cd9b0933db878954 1 envelope removed root@smtp1:/var/spool/smtpd/queue/cd/cd9b0933 # smtpctl remove cd9b0933db878954 0 envelope removed root@smtp1:/var/spool/smtpd/queue/cd/cd9b0933 # ls -la total 52 drwx-- 2 _smtpq wheel512 May 28 16:26 . drwx-- 3 _smtpq wheel512 May 30 20:49 .. -rw--- 1 _smtpq wheel316 May 28 16:26 cd9b0933db878954 -rw--- 1 _smtpq wheel 19296 May 28 16:26 message root@smtp1:/var/spool/smtpd/queue/cd/cd9b0933 # smtpctl show queue root@smtp1:/var/spool/smtpd/queue/cd/cd9b0933 # rcctl restart smtpd smtpd(ok) smtpd(ok) root@smtp1:/var/spool/smtpd/queue/cd/cd9b0933 # smtpctl show queue cd9b0933db878954|local|mta|auth|@|prvs=1417a4ec2a=bou...@nds.fedex.com|prvs=1417a4ec2a=bou...@nds.fedex.com|1590676002|1590676002|1590937456|0|inflight|1| root@smtp1:/var/spool/smtpd/queue/cd/cd9b0933 # ls -la total 52 drwx-- 2 _smtpq wheel512 May 28 16:26 . drwx-- 3 _smtpq wheel512 May 30 20:49 .. -rw--- 1 _smtpq wheel316 May 28 16:26 cd9b0933db878954 -rw--- 1 _smtpq wheel 19296 May 28 16:26 message I assume this is not the expected result. :) What else can I collect to pinpoint what is going on, before I rm the files? Mischa
Re: please share your configuration files with us
Hi Gilles,
Here you go. I have redundant table config in there but this was to test for
the man rewrite/write up. :)
#filter filter-pause pause
#filter filter-regex regex
#filter filter-dnsbl-sorbs dnsbl
#filter filter-dnsbl-spamcop dnsbl "-h bl.spamcop.net"
#filter filter-dnsbl-spamhaus dnsbl "-h sbl-xbl.spamhaus.org"
#filter all chain filter-pause filter-regex filter-dnsbl-sorbs
filter-dnsbl-spamcop filter-dnsbl-spamhaus
#filter all chain filter-pause
pki mx1.runbsd.nl certificate "/etc/ssl//mx1.runbsd.nl.fullchain.pem"
pki mx1.runbsd.nl key "/etc/ssl/private/mx1.runbsd.nl.key"
pki mx1.high5.nl certificate "/etc/ssl//mx1.high5.nl.fullchain.pem"
pki mx1.high5.nl key "/etc/ssl/private/mx1.high5.nl.key"
table names file:/etc/mail/hostnames
table aliases file:/etc/mail/aliases
table www-relays file:/etc/mail/www-relays
table www-senders file:/etc/mail/www-senders
# sqlite
table domains sqlite:/etc/mail/sqlite.conf
table virtuals sqlite:/etc/mail/sqlite.conf
table credentials sqlite:/etc/mail/sqlite.conf
# mysql
#table domains mysql:/etc/mail/mysql.conf
#table virtuals mysql:/etc/mail/mysql.conf
#table credentials mysql:/etc/mail/mysql.conf
# pgsql
#table domains postgres:/etc/mail/pgsql.conf
#table virtuals postgres:/etc/mail/pgsql.conf
#table credentials postgres:/etc/mail/pgsql.conf
listen on lo0
listen on mx1.runbsd.nl port 25 tls pki mx1.runbsd.nl hostnames
listen on mx1.runbsd.nl port 587 tls-require pki mx1.runbsd.nl auth
hostnames
listen on mx1.high5.nl port 25 tls pki mx1.high5.nl hostnames
accept from local for any relay via secure://mail.high5.nl
accept from local for domain "*.high5.nl" relay via secure://mail.high5.nl
reject from source sender ! for any
accept from source sender for any relay
accept from any for domain virtual deliver to maildir
"/var/mail/virtual/%{dest:lowercase}/"
accept from local for any relay
Mischa
> On 3 Aug 2017, at 19:32, Gilles Chehade wrote:
>
> Hi,
>
> We're currently reworking the smtpd.conf grammar to solve some errors we
> made years ago and that are now in the way of many nice features.
>
> We would appreciate if AS MANY as you could send us your smtpd.conf, the
> goal being for me to translate them to the new grammar and check how the
> new smtpd.conf looks like for you.
>
> The more I get, the faster I can move forward with this change that will
> span over many months. This has no chance of hitting 6.2 whatsoever, but
> if it is done by 6.2 it may hit 6.3 :-)
>
> Again, many many many features rely on this to be done first so... ;-)
>
> --
> Gilles Chehade
>
> https://www.poolp.org @poolpOrg
>
> --
> You received this mail because you are subscribed to misc@opensmtpd.org
> To unsubscribe, send a mail to: misc+unsubscr...@opensmtpd.org
>
--
You received this mail because you are subscribed to misc@opensmtpd.org
To unsubscribe, send a mail to: misc+unsubscr...@opensmtpd.org
Re: Filter withdrawals
You mean for people that don't read disclaimers, read me's, release notes? :) Mischa -- > On 11 Sep 2016, at 13:01, Gilles Chehade wrote: > >> On Tue, Sep 06, 2016 at 09:10:40AM -0500, Edgar Pettijohn wrote: >> I'm thinking of starting a support group for others suffering from filter >> withdrawal. Upgraded to 6.0 over the weekend and went back to using spampd >> and sieve. Is there any other options besides amavis? I really miss >> filter-regex. Haven't had any luck finding a replacement just curious if >> anyone out there has any suggestions. >> > > we should also start a support group for people suffering from other > people running filters that are not ready ;-) > > -- > Gilles Chehade > > https://www.poolp.org @poolpOrg > > -- > You received this mail because you are subscribed to misc@opensmtpd.org > To unsubscribe, send a mail to: misc+unsubscr...@opensmtpd.org > -- You received this mail because you are subscribed to misc@opensmtpd.org To unsubscribe, send a mail to: misc+unsubscr...@opensmtpd.org
Re: Greylisting
Hi Peter, That is indeed a great article. Thank you for writing it. It gave me a new appreciation for spamd again. :) Mischa > On 11 Sep 2016, at 12:17, Peter N. M. Hansteen wrote: > >> On 09/10/16 19:10, Silvio Siefke wrote: >> I search with google but I found nothing with greylisting and most about >> spam is with shell scripts and pf. > > If all you've found is 'shell scripts and pf' I don't think you've > looked very closely. > > As Mischa mentioned earlier, on OpenBSD and other OSes with PF there's > spamd(8), which was (for example) quite capable of shielding all my > users from the recent 'voicemail' scam using only its default > greylisting (see > http://bsdly.blogspot.com/2016/08/the-voicemail-scammers-never-got-past.html > about that particular incident, links to other articles about spamd(8) > greylisting and related topics therein). > > - Peter > -- > Peter N. M. Hansteen, member of the first RFC 1149 implementation team > http://bsdly.blogspot.com/ http://www.bsdly.net/ http://www.nuug.no/ > "Remember to set the evil bit on all malicious network traffic" > delilah spamd[29949]: 85.152.224.147: disconnected after 42673 seconds. > > -- > You received this mail because you are subscribed to misc@opensmtpd.org > To unsubscribe, send a mail to: misc+unsubscr...@opensmtpd.org >
Re: Greylisting
Hi Silvio, Have a look at spamd. https://www.openbsd.org/spamd/index.html Also runs on non-OpenBSD. Mischa > On 10 Sep 2016, at 19:10, Silvio Siefke wrote: > > Hello, > > is greylisting available in opensmtpd? I have so much spam and I use > blacklist but it will not really work. > > > triolan.net.ua > tpasites.com > sak-ura.net > zwaan.nl > ibece.net > mccurdycandler.com > fischbach.co.uk > hv.be > outlook.com > fischbach.co.uk > ecolelasource.ch > bvniel...@ymail.com > > Can i write so or must be complete address? > > > # Deliver locally messages coming back in from scanner > accept tagged Scanned from local for domain virtual deliver > to maildir "~/maildir" > accept from local for local alias deliver to maildir "~/maildir" > reject tagged Scanned > > I search with google but I found nothing with greylisting and most about > spam is with shell scripts and pf. > > Nice day > Silvio > > -- > You received this mail because you are subscribed to misc@opensmtpd.org > To unsubscribe, send a mail to: misc+unsubscr...@opensmtpd.org >
Re: Crashing once a day and not auto-starting back
Hi All, There was an awesome utility once, daedalus. Written in Ruby though. :) http://portsmon.freebsd.org/portoverview.py?category=sysutils&portname=daedalus Mischa -- > On 05 May 2016, at 17:30, Edgar Pettijohn wrote: > > You could have a cron job check that it's running and if not restart it. Plus > the email cron sends would give you a time frame to look for in the logs. > > Sent from my iPhone > >>> On May 5, 2016, at 9:58 AM, Mariano Baragiola >>> wrote: >>> >>> On 05/05/16 11:51, Gilles Chehade wrote: >>> >>> No it shouldn't autostart when it crashes. >>> It shouldn't crash either. >>> >>> Can you provide more details ? >>> logs before the crash ? >> >> Noted. Is it a way to autostart it again >> if it crashes? >> >> I just added the verbosity flag to smtpd, >> so I guess I'll have more log details if >> and as soon as it crashes again. >> >> >> -- >> You received this mail because you are subscribed to misc@opensmtpd.org >> To unsubscribe, send a mail to: misc+unsubscr...@opensmtpd.org > > > -- > You received this mail because you are subscribed to misc@opensmtpd.org > To unsubscribe, send a mail to: misc+unsubscr...@opensmtpd.org > -- You received this mail because you are subscribed to misc@opensmtpd.org To unsubscribe, send a mail to: misc+unsubscr...@opensmtpd.org
