I keep getting listed on the CBL list. I have been through all the
recommendations for checking my server, but can't seem to find anything
wrong. I'm sure it's something simple I'm overlooking. This all started
when I upgraded to the qmailtoaster, I previously ran Bill Shupp's
toaster and
Maxwell Smart wrote:
CBL usually means you have a spammer in your midst, have been hacked or
victim of malware, or are an open relay.
Gary Bowling wrote:
I keep getting listed on the CBL list. I have been through all the
recommendations for checking my server, but can't seem to find
anyt
...@qmailtoaster.com
For additional commands, e-mail:
qmailtoaster-list-h...@qmailtoaster.com
--
Gary Bowling
GBCO.US
g...@gbco.us
-
Qmailtoaster is sponsored by Vickers
I had an issue with a blackberry user, so I went to the video to
recompile the toaster to allow the / characters in the from address.
All went well with the recompile and subsequent re-install.
However, after the re-install I can no longer send or receive mail even
to a local user. It seems
I get nothing in the send log when I send a message. If I continue to
watch the send log as I do a qmailctl restart, it then logs all the
outgoing mail as normal.
Thanks,
Gary
Eric Shubert wrote:
Gary Bowling wrote:
I had an issue with a blackberry user, so I went to the video
Based on your last question, I have now also discovered that a
stop/start of send will also deliver the email.
svc -d /service/send
svc -u /service/send
and it clears the email. I can't find any errors in any log.
Thanks, Gary
Eric Shubert wrote:
Gary Bowling wrote:
I had an issue
) 29382 seconds
submission/log: up (pid 1323) 1420512 seconds
tmda-ofmipd/log: up (pid 1331) 1420512 seconds
tmda-ssl/log: up (pid 1311) 1420512 seconds
Eric Shubert wrote:
Yeah, I think that
# service qmail doqueue
would do the same thing.
What do you see from:
# service qmail stat
Gary Bowling
of that install touches any of the toaster files, it
just uses .qmail files in users directories to do it's thing.
Gary
Eric Shubert wrote:
Is the send daemon having a problem staying up? Or is that time simply
reflective of the last time you restarted it?
Gary Bowling wrote:
Here it is:
service
that mechanism works.
I wonder if there isn't a zombie process hanging around that's gumming
up the works. Have you (dare I say) rebooted?
Gary Bowling wrote:
Just reflective of the last restart. From looking at the server
everything seems to be operating as normal..
Also, just several FYIs
to 600
queue/intd/4260637 is mode 644, should be 600
changed queue/intd/4260637 mode to 600
There's a queue_repair.py script in QTP. I'd give that a shot (after
flushing the queue and stopping qmail). Just a swag at this point.
Gary Bowling wrote:
Yikes.. well, ok then. I rebooted
I just updated my OS to the latest version of Centos 5.5 and now I can't
send email. I am getting the error
an error occurred sending mail: the mail server sent an incorrect
greeting: unable to read controls (#4.3.0)
Then I get
The message could not be sent because the connection to SMTP
Shubert wrote:
Gary Bowling wrote:
I just updated my OS to the latest version of Centos 5.5 and now I
can't send email. I am getting the error
an error occurred sending mail: the mail server sent an incorrect
greeting: unable to read controls (#4.3.0)
Then I get
The message could
.
George
On 8/10/2010 8:22 AM, Gary Bowling wrote:
Thanks Eric, I may have found the problem, although it has been a bit
intermittent so I've not completely declared victory yet. I
re-generated my cert for the server and that seems to have resolved
it. I wonder if there is something in the new
I recently had some problems with some domain key errors. Following the
suggestions in the list, I tried to disable domain keys by doing a ln
-sf qmail-queue.orig qmail-queue
However, when I did this it completely broke my server, I could not send
or receive any email, I would get this
in my tcp.smtp or is it something else? For
now I have put it back to qmail-dk, at least I get most of the mail with
the hard rejects only happening on some emails.
Thanks, gb
On 6/26/2014 9:21 PM, Gary Bowling wrote:
I recently had some problems with some domain key errors. Following
On 6/26/2014 9:47 PM, Eric Shubert wrote:
On 06/26/2014 06:41 PM, Gary Bowling wrote:
Update, I just changed my tcp.smtp to what I have listed below and then
linked to qmail-queue.orig and continued to get these.
qmail-smtpd: qq soft reject (mail server temporarily rejected message
(#4.3.0
On 6/26/2014 9:47 PM, Eric Shubert wrote:
On 06/26/2014 06:41 PM, Gary Bowling wrote:
Update, I just changed my tcp.smtp to what I have listed below and then
linked to qmail-queue.orig and continued to get these.
qmail-smtpd: qq soft reject (mail server temporarily rejected message
(#4.3.0
On 5/22/2015 9:01 AM, Gary Bowling wrote:
On 5/22/2015 8:53 AM, Eric Broch wrote:
On 5/22/2015 6:16 AM, Gary Bowling
wrote:
Are
the toaster packages referenced with qtp-newmodel still being
updated
Are the toaster packages referenced with qtp-newmodel still being
updated? I run this every month to update my toaster, but haven't seen
any updates in a long time. Not even a spam update.
Thanks, gary
-
To unsubscribe,
On 5/22/2015 8:53 AM, Eric Broch wrote:
On 5/22/2015 6:16 AM, Gary Bowling
wrote:
Are
the toaster packages referenced with qtp-newmodel still being
updated? I run this every month to update my toaster, but
haven't seen any
On 5/22/2015 10:22 AM, Eric Broch wrote:
On 5/22/2015 7:01 AM, Gary Bowling
wrote:
On 5/22/2015 8:53 AM, Eric Broch wrote:
On 5/22/2015 6:16 AM, Gary
Bowling wrote
On 5/22/2015 11:39 AM, Tony White wrote:
Hi Gary,
As an FYI it might worth adding the EPEL repo as it has later
update to the GeoIP rpm's and dependencies.
best wishes
Tony White
On 23/05/2015 01:25, Gary Bowling wrote
stable
and reliable. I hate to rock the boat right now.
Thanks for the help and for the product that is sooo good I
rarely have to send anything to this list!
--
Gary Bowling
the qmail
packages much only the peripheral packages...like clamav. If
you're using Dovecot, only up to ~2.10 is supported on CentOS 5.
On 3/6/2017 4:20 PM, Gary Bowling wrote:
I too have a Centos5 toaster and followed the notes
There used to be a bunch of utilities installed with the "plus"
packages. qtp-newmodel, qtp-backup, qtp-sa-update, etc.
What happened to all those? I can't seem to find them in my new
install on CentOS7.
Thanks, Gary
On 6/10/2017 12:52 PM, Gary Bowling wrote:
I recently upgraded my centos 5 to a new centos 7 box. This
also caused a change from courier imap to dovecot so some of my
issues have been with that move. I now have most things working
I recently upgraded my centos 5 to a new centos 7 box. This also
caused a change from courier imap to dovecot so some of my issues
have been with that move. I now have most things working
correctly. However I'm stumped on a problem with squirrelmail.
wever, I'm not sure this is really the best way to fix this.
Any suggestions?
Gary
On 6/10/2017 12:59 PM, Gary Bowling
wrote:
On 6/10/2017 12:52 PM, Gary Bowling wrote:
I recently u
the issue.
Thanks, Gary
On 6/11/2017 8:36 AM, Gary Bowling
wrote:
Since I upgraded my server to CentOS 7 and the latest toaster,
I'm getting sporadic failures logging in from squirrelmail.
They fail
en removed the maildir_broken_filename_sizes=yes from the
/etc/dovecot/toaster.conf file and all is well. So that problem is
resolved.
Thanks, Gary
On 6/10/2017 1:22 PM, Gary Bowling
wrote:
I found an error in dovecot.log say
Since I upgraded my server to CentOS 7 and the latest toaster,
I'm getting sporadic failures logging in from squirrelmail.
They fail about 30% of the time. When I get a failure it shows an
"auth failed" in the dovecot.log file even though the password
-remote.orig.bak) and replace it with the new binary.
On 4/26/2018 10:28 AM, Gary Bowling
wrote:
Seems like this should show up when I do a yum update if I
have the qmt.repo enabled. Or maybe it's still in testing
Seems like this should show up when I do a yum update if I have
the qmt.repo enabled. Or maybe it's still in testing? Which I
don't have enabled by default.
Gary
On 4/26/2018 10:53 AM, Eric Broch
wrote:
I moved from a CentOS-5 box to a CentOS-7 box last year, so I did
a full migration/upgrade. It works, but I just want to make sure I
did things the right way.
In my /etc/tcprules.d/tcp.smtp file I have
QMAILQUEUE="/var/qmail/bin/simscan"
I do
Per the previous thread, I tried updating to ClamAV 0.99.3-2 on
my CentOS 7 box.
The services are not created properly. I tried both the yum
update via the test repository and also tried downloading the RPM
from and installing via rpm
64.rpm
On 1/27/2018 8:30 AM, Gary Bowling wrote:
Per the previous thread, I tried updating to
ClamAV 0.99.3-2 on my Ce
old qmail servers with over a 1000
domains each.
Jeff
On 2/15/2018 9:31 AM, Gary Bowling
wrote:
For what it's worth, I was in the same boat last year and
made the decision to move it to a new
For what it's worth, I was in the same boat last year and made
the decision to move it to a new server. Set up a new CentOS 7 box
as a virtual server at linode. Which was very painless. The
install of the toaster on that box was a breeze, the guys have
Last time I checked it was either not possible or not easy to
implement password rules one the toaster. But that was a long time
ago.
Has anything changed in that regard?
--
Gary Bowling
On 4/5/2018 7:42 AM, Gary Bowling
wrote:
Thanks Jeff. Just to make sure, if I do that edit it doesn't
affect any existing passwords? Only inputting any new passwords
or changing any passwords?
Also, I guess
##X251. If anyone has a cheat sheet please share.
Jeff
On 4/5/2018 7:42 AM, Gary Bowling
wrote:
Thanks Jeff. Just to make sure, if I do that edit it
doesn't affect any existing passw
th messing with the templates is that
there is no table defining the hash mark codes like ##tt ##tu
##X251. If anyone has a cheat sheet please share.
Jeff
On 4/5/2018 7:42 AM, Gary Bowling
On 4/5/2018 10:39 AM, Gary Bowling
wrote:
Also, does the code below replace the old "password1"
section? Which l
/repo/qmt/CentOS/$releasever/development/$basearch/
enabled=0
gpgcheck=0
priority=7
On 1/10/2019 8:26 AM, Gary Bowling wrote:
Is the qmt.repo for centos 7 still valid? I don't think I've
Is the qmt.repo for centos 7 still valid? I don't think I've
received an update from that channel in a long time and seems like
the last time I updated clamav I did it manually.
Thanks, Gary
--
Gary
I looked into this at one point. But you can get a VPS at linode
for $25/month capable of running a full qmailtoaster. Obviously
not powerful enough for a million users, but I have over 1000
spread across 10 or so domains on it with no issues.
Good reminder to check my fail2ban config. I did and found that
it wasn't running since moving my config over to Centos 7 and
rebuilding my server.
The systemctl status fail2ban.service gives me no information as
to why it's not starting
: ssl3_get_client_hello:wrong version number
Any help would be appreciated.
Thanks, Gary
--
Gary Bowling
-
To unsubscribe, e
people would use for an up to
date Centos 7 server.
Thanks, Gary
On 9/3/2019 11:04 AM, Gary Bowling
wrote:
I had to get a new cert for my server, which I installed
yesterday. Now I'm having problems wi
ion [because
you had SSL 3.0/TLS 1.0 on].
Carl
From:
Gary Bowling [mailto:g...@gbco.us]
Sent: Tuesday, September 03, 2019 02:58 PM
To: qmailtoaster-list@qmailtoaster.
Success!
Gary
On 9/5/2019 10:27 AM, Eric Broch wrote:
mail
test
-
To unsubscribe, e-mail:
list than Qmail, that’s why you need to test
each port. I think you got the main idea of it now.
Carl
From:
Gary Bowling [mai
Carl, when I put that statement in my dovecot conf I get the
following in my log on startup.
Sep 04 13:39:41 config: Warning: Obsolete setting in
/etc/dovecot/local.conf:22: ssl_protocols has been replaced by
ssl_min_protocol
Sep 04
.
Removed
from my config as obsolete.
Carl
From:
Gary Bowling [mailto:g...@gbco.us]
Sent: Wednesday, September 04, 2019 01:44 PM
To: qmailtoaster-list@qmailtoaster.com
From:
Gary Bowling [mailto:g...@gbco.us]
Sent: Wednesday, September 04, 2019 09:19 AM
To: qmailtoaster-list@qmailtoaster.com
Subject: Re: [qmailtoaster] SSL Problem Dovecot
FYI. I wan
Thanks for that Carl. I will try that in my dovecot.
An interesting note.. The default dovecot ciphers are
ALL:!kRSA:!SRP:!kDHd:!DSS:!aNULL:!eNULL:!EXPORT:!DES:!3DES:!MD5:!PSK:!RC4:!ADH:!LOW@STRENGTH
When I did a
openssl ciphers
On 9/4/2019 8:04 AM, Gary Bowling
wrote:
That's excellent info Andy, many thanks for that!! I'm going to
have to go back and read it about 10 times and possibly go read
the referenced material too!
dovecot, you will want to also put the
ssl_cipher_list in /etc/dovecot/dovecot.conf as well as the
ssl_protocols list. This protects your IMAPS and POP3S
protocols. Again, OpenVAS is set to run against those protocols
as well.
Carl
ng dovecot, you will want to also put the
ssl_cipher_list in /etc/dovecot/dovecot.conf as well as the
ssl_protocols list. This protects your IMAPS and POP3S
protocols. Again, OpenVAS is set to run against those
protocols as well.
Carl
*Fr
That's what I have with the exception of testing being "enabled =
0"
Gary
On 9/9/2019 5:08 AM, Philip wrote:
I was wondering what is actually the "official" yum repo file ?
I am using this :
Agreed. Checked my old backups, I've not had qtp Listed
anywhere in any of the repo files in years. And have had no
problem with yum updates.
Gary
On 9/9/2019 8:23 AM, Eric Broch wrote:
There
is a web page pointed to
checking?
All discussion and help is greatly appreciated!
Thanks Gary
--
Gary Bowling
The
Moderns on Spotify
If you've installed certbot from the repository, you don't need a
cron job. Just enable the certbot timer with:
systemctl enable certbot-renew.timer
Gary
On 12/6/2019 12:22 AM,
ChandranManikandan wrote:
Have you also made sure the box is listening on the ports in
question?
Do this command
netstat -an | egrep
'0.0.0.0:25|0.0.0.0:80|0.0.0.0:110|0.0.0.0:143'
You should get this in return if the services are running
Nice, interested to learn if this might eventually be added to
the repo for general use or if we will have to download and custom
build?
thanks
On 5/4/2020 8:50 AM, Roberto
Puzzanghera wrote:
Hi all,
You need to create the right cert for the toaster from the
renewed cert from letsencrypt.
Something like this:
cat
/etc/letsencrypt/live/mail.yourdomain.com/{cert,chain,fullchain,privkey}.pem
> /var/qmail/control/servercert.pem
I don't know anything about eset. But, if I were looking for a
paid alternative for virus, I would look at relay services.
A relay service that provides virus scanning makes things very
simple and once configured makes your email server
Good to know Eric. I'm about to do the same.
Gary
On 9/22/2020 11:02 AM, Eric Broch
wrote:
I
have all un-secure protocols turned off and always have.
On 9/22/2020 8:59 AM, Gary Bowling wrote
Question for others using the toaster.
Are you still supporting non-secure protocols? Such as pop3 on
port 110 or imap on port 143?
My concern is this. If you have non-secure protocols configured
on your phone, tablet, laptop, etc.
I've done in CentOS 8, and
use the stock rpm from EPEL.
I think you can override default scoring for DKIM in
/etc/spamassassin/local.cf on COS7 and
/etc/mail/spamassassin/local.cf on COS8.
Eric
On 6/2/2020 8:09 AM, Gary Bowling
wrote
from what I can tell, it really does
nothing. Seems to me DKIM is nothing more than an exercise in
futility and extra work for postmasters :)
--
________
Gary Bowling
The
--nofiles --nodigest
--
________
Gary Bowling
The
Moderns on Spotify
-
To unsubscribe, e-mail: qmailtoaster-list-unsubscr...@qmailtoaster.com
For additio
:
add --disablerepo=qmt-current
On 8/10/2020 5:57 PM, Gary Bowling
wrote:
Just tried "yum updating" my server. I recall some notes back
and forth about updating clamav since we're moving to the epel
ver
?
On 8/10/2020 6:26 PM, Gary Bowling
wrote:
Thanks Eric, that worked a charm.
However, the update busted httpd. Turns out the httpd.conf
file had this at the end.
Include /etc
mctl disable mailman.
Thanks, Gary
On 8/10/2020 8:49 PM, r...@mattei.org
wrote:
That should not depend on clamav
Remo
Il giorno 10 ago 2020, alle ore 17:26,
Gary
the future?
Gary
On 8/10/2020 9:01 PM, Gary Bowling
wrote:
No, didn't know about that. Guess I need to go back and read
the list :)
Do I need to run it?
Gary
On 8
--
Gary Bowling
The
Moderns on Spotify
-
To unsubscribe, e-mail: qmailtoaster-list-unsubscr...@qmailtoaster.com
For additional commands, e-mail: qmailtoaster-list-h
ave a look
On 6/3/2020 8:52 AM, Gary Bowling
wrote:
Further to this subject. I am learning that there are more
pieces that can help us out. Spamassassin gives us a way to
assign a spam score to messages with va
SPF_PASS) &&
__DMARC_POLICY_QUAR
score DMARC_QUAR 5
meta DMARC_NONE !(DKIM_VALID_AU || SPF_PASS) &&
__DMARC_POLICY_NONE
score DMARC_NONE 0.1
endif # Mail::SpamAssassin::Plugin::AskDNS
, Gary Bowling
wrote:
Thanks Eric. What is the config setting in local.cf to change
the DKIM scoring? I don't find any setting in my
/etc/spamassassin/ directories that sets that score. Is the
scoring for the stock EPEL
m/fail2ban-increased-ban-times-for-repeat-offenders/
This article describes how to build a series of increased jail
times for a habitual offender. Eventually culminating in a year
jail time.
Thanks, Gary
--
____
vpopmail rules for fail2ban, config and
regex?
On 6/3/2020 5:48 PM, Gary Bowling
wrote:
FYI in case someone else can use this info.
In my recent review of my server and trying to tighten up
security
like
the maillog where there seems to be an endless list of bots
hacking away.
Gary
On 6/3/2020 8:37 PM, Eric Broch wrote:
Nice, easier than mine.
On 6/3/2020 6:27 PM, Gary Bowling
wrote
t be wrong.
Anyone else have quota display working in squirrelmail?
Thanks, Gary
--
____
Gary Bowling
The
Moderns
Yes, this is why I would like to get the quota graph working in
squirrelmail again. This was the easy place for customers to see
if they actually had a quota problem if they got these scam
messages.
Gary
On 12/4/2020
Maybe it's time to move to a new distribution, looks like we have
at least until 2024 to do it.
Maybe arch linux? Or is there something similar to the original
CentOS project?
Gary
On 12/9/2020 11:29 AM,
One issue I have is that my toaster is hosted on a virtual
machine at Linode. Others may use virtual solutions as well.
These services offer virtual machines of several popular flavors,
but you have to use whatever they offer. Linode offers
On 12/11/2020 10:21 AM, Eric Broch
wrote:
What's the cost?
On 12/11/2020 8:14 AM, Gary Bowling
wrote:
Yes, they give you an OS, with the amount of
MEM/disk/processors/etc that you
On 12/11/2020 10:01 AM, Eric Broch
wrote:
Do they allow you to control the repos from which you update?
If so there should not be problem if Rocky is done by then.
On 12/11/2020 7:45 AM, Gary Bowling
wrote
I see where Chandran had this same issue a few weeks ago. What
did you do to resolve it?
Thanks, Gary
On 7/11/2021 1:03 PM, Gary Bowling
wrote:
Running a toaster on CentOS 7, with everything updated every
Running a toaster on CentOS 7, with everything updated every
couple of months. Just did an update on my server. The update took
me from
clamav-update-0.103.2-1.el7.x86_64 >
clamav-update-0.103.2-2.el7.x86_64
All the other clamav packages are also
.
On 7/11/2021 1:55 PM, Gary Bowling wrote:
Thanks Eric.
So I kinda of like having the service show up in toaststat as
it's an easy way to check things. Which would encourage me to
take option 1
On 7/11/2021 11:11 AM, Gary Bowling wrote:
I see where Chandran had this same issue a few weeks ago. What
did you do to resolve it?
Thanks, Gary
On 7/11/2021 1
Another point, I guess if we leave the cron in place.
It looks to me like we can just disable the
clamav-freshclam.service.
Is that correct?
Thanks, Gary
On 7/11/2021 4:03 PM, Gary Bowling
You can literally get something that will do that for $5/month
from linode.com. Reliable service and great prices.
I have one from there that hosts about 4 domains and about 1000
users for $20/month! And I've never had a problem.
I
I have an issue with mail getting rejected from a specific
domain. It's getting rejected due to Spamdyke and RDNS. Here's the
line out of the log.
Jul 16 09:02:41 vm1 spamdyke[32358]: DENIED_RDNS_RESOLVE from:
***@**nd.com to:
1 11:42 AM, Eric Broch
wrote:
whitelist
it in spamdyke
On 7/16/2021 8:28 AM, Gary Bowling wrote:
I have an issue with mail getting rejected from a specific
domain. It's getting rejected due to Spamdyke and RD
In my maillog I get messages like this. The user/domain/ip have
been changed, but they are all valid:
spamdyke[10162]: DENIED_RDNS_RESOLVE from: fromu...@domain.com
to: tou...@otherdomain.com origin_ip: 162.xxx.sss.yyy origin_rdns:
.net/en-US/thunderbird/102.0.1/releasenotes/
At least until this is fixed.
Does it happen every time you send mail?
On 7/7/2022 7:05 AM, Gary Bowling
wrote:
Thanks for that Finn, so maybe I have tw
1 - 100 of 175 matches
Mail list logo