Thanks Jake
That's a pretty good way to do it. That is, until the sender is from aol.com or
[name other really bit network] and you get a message from their network every
few seconds. Oh well, if that's the best we can do.
Q
On Thu, 30 Nov 2006 20:32:42 -0500, Jake Vickers wrote:
Now you
When do the *.pem files change? I am using subversion to manage versions of my
config files, and I ran `svn st` on my /var/qmail/control directory today and
noticed the *.pem files have been modified:
[EMAIL PROTECTED]/0 control]$svn st
M dh1024.pem
M dh512.pem
M simversions.cdb
I'm trying to troubleshoot why messages sent from craigslist.org via
mxlogic.com to my server are not being received. I'm trying to use recordio,
but it isn't giving me any useful data. My smtp run file is:
exec /usr/bin/softlimit -m 1200 \
/usr/bin/tcpserver -v -R -H -l $HOSTNAME -x
...
On 9 декабря 2006 г., 5:48:53 you wrote:
If I move /usr/bin/recordio *after* the smptd, I don't see any detailed
output, and if I did I don't think it would be useful because I have
a feeling the message is being blocked during the smtp transaction.
What do you mean by moving recordio
Check this out -- qmail toaster running on 1,042 servers:
http://www.securityspace.com/s_survey/data/man.200611/mxsurvey.html
Quinn
-
QmailToaster hosted by: VR Hosted http://www.vr.org
cbl.abuseat.org is included as part of the zen.spamhaus.org zone, so listing
the two together is redundant.
Quinn
On Wed, 13 Dec 2006 10:09:42 -0500, Jake Vickers wrote:
Same here. I've got my blacklists file pruned down to:
-r zen.spamhaus.org -r relays.ordb.org -r list.dsbl.org -r
ordb.org RBL is closing today, December 18, 2006. Recommended to remove this
from /var/qmail/control/blacklists.
http://www.ordb.org/news/?id=38
Quinn
-
Strangecode :: Internet Consultancy
http://www.strangecode.com/
+1 530
Ronnie
Yes, there are docs, but here-and-there. It is mostly a DIY project. ;P
We've got ours setup to use per-user prefs. However a major caveat is that with
simscan + spamassassin the correct prefs will only be loaded for emails
matching the following requirements:
- Email has only
So you're still in? I'm in a rush out of the office, but here are some quick
steps:
=
REBUILDING SIMSCAN RPMs TO SUPPORT PER-USER SPAMC INVOCATION:
=
1. Install the RPMS files
I wrote a couple weeks ago about how best to trace the path of an email (an its
errors) through the different multilog files. It clearly isn't an easy task.
Whenever a customer asks me I lost an email I usually spend 10-30 minutes
greping, sorting, and cross-referencing log entries before I can
Splunk looks *awesome*!
Will: when/if you get this running please let us/me know how well it works with
qmail, et al.
All: I'll continue to research this, but for the next month or so Im pretty
booked with projects so I can't give no love here.
Quinn
On Tue, 19 Dec 2006 16:46:18 +,
Rats. You caught me! ;P
That was a copy-and-paste error on my part (copied the path to the spamassassin
RPM from a different document, then changed the file name to simscan leaving
the same version. Sorry for the confusion. ;P
Quinn
On Mon, 18 Dec 2006 18:49:34 -0800, Quinn Comendant wrote:
Are there any others?
Just to keep this info in the same thread, here is one that I had previously
mentioned...
John M. Simpson wrote:
This is a script that i run as a cron job every hour. it goes through
/service/*/log/main
On Tue, 19 Dec 2006 16:24:54 -0500, Jake Vickers wrote:
I have to agree. The logging in QMail plain sucks. It's almost made
me switch to Postfix a few times. Unfortunately, I don't see any way
of correlating the messages without modifying the patches, since
there is no common
Qmail-track is pretty much what I was looking for. Thanks Joseph!
With that and a tool for statistical summaries I'd say we'd have our log bases
covered.
Quinn
On Tue, 19 Dec 2006 13:03:50 -0800, Joseph Lundgren wrote:
The best tool that I found to get proper information about the
Thanks Jake
I noticed a couple things:
- dig times out at 5 seconds by default, so if anybody set CEILING at more than
5 it will fail anyways, but you could set the +time=$CEILING option.
- If a DNSBL is offline, won't dig return instantly with a NXDOMAIN? I guess
that doesn't matter since
I had a similar question once...then realized all the different tools available
that plug into SA. Now I obsessively follow the SA list to learn new tools for
blocking spam. Is there a term for that kind of person yet? Who spends several
hours optimizing SA so as to not be bothered with
On Fri, 22 Dec 2006 08:50:10 -0800, Jared Markell wrote:
When I try to su to vpopmail it says This account is currently not
available. That's weird coming from the multi-user mutli-tasking king
linux.. Maybe this error is why I can't tell sa-learn to use vpopmail,
maybe it gets a similar
Two more tools:
- A logwatch plugin that generates qmail log summaries. The default qmail
logwatch plugin requires syslog-style logging. This one is based on LWQ-style
multilog files.
http://midwales.com/downloads/pub/lin/logwatch/logwatch-qmail-1.1.0.tar.gz
- A tool to connect qmail logs to
I'm not sure if anybody here is responsible for this but I just though I'd
point out an oddity I discovered with the mail-archive.com archives for this
list. Compare the following Google cached page and the live page. Notice the
thread links at the bottom of the message are missing on the live
On Wed, 3 Jan 2007 19:41:52 +0700, Firdaus Tjahyadi wrote:
i have configure my /usr/share/spamassassin/70_sare_stocks.cf file like this
bodySARE_PHYA /Physicians Adult Daycare/i
describeSARE_PHYA PHYA
score SARE_PHYA 2.66
I'm getting this error in my pop3d-ssl and imap4-ssl logs:
2007-01-06 02:08:47.065522500 couriertls:
@localstatedir@/couriersslcache: No such file or directory
I found this post from last July:
http://www.mail-archive.com/qmailtoaster-list@qmailtoaster.com/msg05625.html
I
On Sat, 06 Jan 2007 10:00:47 -0700, Eric Shubes wrote:
Is this a bug in the newer version?
Apparently. It's occurred for me in the last two versions.
Q
-
Strangecode :: Internet Consultancy
http://www.strangecode.com/
+1 530
On Tue, 09 Jan 2007 17:22:09 +0100, Philip Nix Guru wrote:
look at point 3
3. The roaming system authorize a user who authentificated (pop3
before smtp)
to have tcp.smtp.cdb updated you need to check your mail with a
pop3 client
Also note that roaming access is only available to users
Y'all may have heard already (or even noticed directly, as I have) that
Spamhaus' PBL list has now become active as part of the zen.spamhous.org list.
http://www.spamhaus.org/pbl/
PUBLIC BETA NOW LIVE
Sat Jan 6 2007
17:30 UTC
Spamhaus is now serving PBL data in the DNSBL zone:
On Thu, 18 Jan 2007 09:58:38 -0700, Eric Shubes wrote:
It's there when I do:
# rpm -ivh simscan-toaster-1.3.1-1.3.3.src.rpm
Running rpm install/upgrade on a src.rpm file installs the spec file under
SPECS and the source code under SOURCES.
Note, it gets removed when the binary rpm is built.
See below.
Quinn
- Begin forwarded message -
Subject: NJABL announcement: dynablock Spamhaus PBL
Date: Fri, 19 Jan 2007 11:37:29 -0500 (EST)
From: [EMAIL PROTECTED]
To: [EMAIL PROTECTED]
With the advent of Spamhaus's PBL (http://spamhaus.org/pbl/),
dynablock.njabl.org has become
On Mon, 22 Jan 2007 15:31:18 -0500, Jake Vickers wrote:
Not sure how to do this on the wiki I guess I could write a
script that would download the qmail-toaster package and grab the
release notes (out of the SPEC file I imagine would be the best) then
(for simplicity) spit that back
On Mon, 22 Jan 2007 13:25:05 -0700, Eric Shubes wrote:
The main site (1.3.10) contains the latest DomainKey patches (more than just
logging).
Yes, but what ARE the patches? ;P That's exactly my point.
And Alexey mentioned once he would add a feature to disable
DomainKeys in the right way --
On Tue, 23 Jan 2007 00:40:08 +0300, Alexey Loukianov wrote:
Jake, hang on for a minute. Changelogs are basically the product of
development process itself, so they must be kept in track accordingly.
That's why I think that first we should discuss it with Erik and
Nick, and only then made any
: [simscan] attachment filename scanning bug report
Date: Mon, 22 Jan 2007 13:38:16 -0800
From: Quinn Comendant [EMAIL PROTECTED]
Reply-To: [EMAIL PROTECTED]
To: [EMAIL PROTECTED]
I found a problem with simscan's attachment scanning: the filename matching is
overly sensitive. I'm using version 1.2
On Tue, 23 Jan 2007 00:08:27 +0300, Alexey Loukianov wrote:
AFAIK, that's it. Qmail will not sort/uniq the recipients of the
message, it will simply forward it, resulting in dupes. If you need
another behavior, you will have either to write a custom patch for
ezmlm, implementing sublists
I found 8000+ entries in my logs like this:
2007-01-21 09:51:25.570281500 tcpserver: status: 200/200
2007-01-21 09:51:25.570410500 tcpserver: pid 28241 from 24.220.50.36
2007-01-21 09:51:25.571261500 tcpserver: ok 28241
two.strangecode.com:72.3.142.43:110
On Tue, 23 Jan 2007 02:30:34 +0300, Alexey Loukianov wrote:
I'm not sure procmail will be able to filter out such almost dupes,
but in any case James will be forced to modify each user separately
to filter out dupes, which is not the easiest thing to deploy and
administer.
The formail -D
On Tue, 23 Jan 2007 04:15:00 +0300, Alexey Loukianov wrote:
[...] The only trouble for this method I see then is
the relatively difficult deployment and administration (i.e. we are
adding another point for possible failures, and it will be harder for
us to check up why the hell user
On Mon, 22 Jan 2007 02:16:44 +0300, Alexey Loukianov wrote:
The Right Way (TM) is this:
# su vpopmail -c 'sa-learn --clear'
The Other Right Way (TM) if you don't give user vpopmail a valid shell is:
# sudo -H -u vpopmail sa-learn --clear
Quinn
...
On Fri, 19 Jan 2007 11:23:19 +0800, Edwin Casimero wrote:
- APF Firewall
Yes! Iptables in combination with a automatic too-many-failed-password-tempts
blocker such as fail2ban or snort.
- Mod Security
Definitely, if you need http at all. If you're not doing webmail then disable
On Wed, 24 Jan 2007 11:43:30 +0200, Peter Peltonen wrote:
On 1/22/07, Quinn Comendant [EMAIL PROTECTED] wrote:
FYI: I found an issue with simscan this morning that y'all should be
aware of. Read below...
Has this bug been confirmed?
I don't know. I emailed my bug report to the simscan
On Sat, 20 Jan 2007 13:27:14 +0200, Peter Peltonen wrote:
On 1/6/07, Quinn Comendant [EMAIL PROTECTED] wrote:
I discovered I could solve the issue by changing the TLS_CACHEFILE
value in /etc/courier/{pop3d-ssl,imap4-ssl} from:
In your experience, what is the impact of using Courier's TLS
Can we set the %config(noreplace) specification for a few more files?
Specifically, I found after upgrading spamassassin that my local.cf and run
files were hosed:
%{qdir}/supervise/spamd/run
%{_sysconfdir}/mail/spamassassin/local.cf
%{_sysconfdir}/mail/spamassassin/v310.pre
On Thu, 25 Jan 2007 19:22:30 -0700, Eric Shubes wrote:
%{qdir}/supervise/spamd/run
I don't think of this as a configuration file. [...]
It's not really a configuration file but because it is something that might
be fine-tuned there is a strong advantage to adding the %config(noreplace) flag
Typo in /home/vpopmail/domains/.overquota.msg:
This user has exceeded there mail quota.
there = their
I've reported this before...but?
It seems we could use a system for managing bugs tasks and issues. It could be
as easy as adding an ISSUES page to the wiki, although it could become
On Wed, 8 Nov 2006 22:37:45 -0800, Erik Espinoza wrote:
I will add support for qmailmrtg to monitor the submission logs once
this feature makes it to stable.
Thanks,
Erik
Just a reminder... ;P
Quinn
-
Strangecode ::
On Mon, 29 Jan 2007 10:07:08 -0700, Eric Shubes wrote:
Erik Espinoza wrote:
I put all of my custom conifg in myconfig.cf. It's easier that way,
just a thought.
This can be trouble if the other .cf and .pre files happen to appear (from
upgrading, etc) and your config values are supersceeded by
On Tue, 30 Jan 2007 02:33:24 +0300, Alexey Loukianov wrote:
AFAIK, it chooses the LAST available interface on the system (the
last one ifconfig shows). This behavior is something I dislike and
I'm thinking about implementing a patch allowing manual selection of
outgoing IP/port pair to send
On Tue, 30 Jan 2007 13:31:43 -0800, Erik Espinoza wrote:
Updated rules, catches more of the stock spam and what not.
It's nice. Read up at http://saupdates.openprotect.com/
I think ashok means he installed OpenProtect's software package (a collection
of programs that replaces
On Wed, 31 Jan 2007 15:13:46 +0100, Jean-Paul van de Plasse wrote:
Or to manualy change the run script by changing the line
REQUIRE_AUTH=1
to
export REQUIRE_AUTH=1
The smtp/run script maybe also has this but as it only has:
REQUIRE_AUTH=0
Quinn
FYI: a patch for autorespond to prevent spam from getting a reply. I would
recommend adding this to the toaster.
Quinn
-
Strangecode :: Internet Consultancy
http://www.strangecode.com/
+1 530 624 4410
- Begin forwarded
All
I found a possibly severe permissions issue. I've added this as a bug to the
bug tracker as ticket #6 but should be corrected asap on existing QT
installations.
The isoqlog cron script is installed writable by apache:
-rwxr-xr-x 1 apache apache 467 Jan 28 23:26
On Wed, 7 Mar 2007 12:05:19 -0800, Erik A. Espinoza wrote:
qmail-toaster (added bigdns patch, linefeed patch)
Which is the linefeed patch? Add details to:
http://wiki.qmailtoaster.com/index.php/Patches_included_with_QmailToaster
spamassassin-toaster (Upgraded to 3.1.8, Marked
- Begin forwarded message -
FS#23 - Update patches included in qmail toaster page
User who did this - Erik A. Espinoza (espinoza)
Reason for closing: Won't fix
Additional comments about closing: Wiki's can be edited by anyone.
Feel free to take care of this.
I would but I have no
On Wed, 4 Apr 2007 12:36:13 -0700, Erik A. Espinoza wrote:
rpm -q --changelog qmail-toaster
So far only bigdns and linefeed have been added.
I know, but...
http://www.google.com/search?q=qmail-smtpd-linefeed.patch
No matches. What is this patch?
Q
I wonder if anybody can comment on a client's request (below). Is there a
setting for MSP 587 timeout?
Quinn
- Begin forwarded message -
Subject: smtp port 587
Date: Wed, 18 Jul 2007 14:22:08 -0700
I am having problems using thunderbird, port 587, tls.
It works on most connections, but
On Thu, 15 Nov 2007 11:54:11 -0500, Kyle Quillen wrote:
I would love to be able to have users forward spam messages.
This can be done using SA too, via sa-learn injection. Just create two aliases:
sudo valias -i '|sa-learn --spam --no-sync /var/log/sa-learn-spam.log 21'
[EMAIL PROTECTED];
I've started getting this error when sending mail to my QT over port 587:
Communication Error: Cannot read data from socket (Resource temporarily
unavailable)
Message sending just stalls for 60 seconds or so. It happens to me a few times
a week, and sometimes I can't send mail at all,
I've started getting this error when sending mail to my QT over port 587:
Communication Error: Cannot read data from socket (Resource temporarily
unavailable)
Message sending just stalls for 60 seconds or so. It happens to me a few times
a week, and sometimes I can't send mail at all,
On Mon, 3 Mar 2008 21:34:01 -0800, Quinn Comendant wrote:
Communication Error: Cannot read data from socket (Resource
temporarily unavailable)
Two more bits of information:
1. Often the message *does* go through, even through my mail client says
sending failed.
2. If I restart qmail
On Tue, 04 Mar 2008 16:37:15 -0700, Eric Shubert wrote:
I used to see this problem (at least I think it's the same one) too. I
haven't seen it since I upgrade to the current packages, most notably
clamav. I'd upgrade all of them and see if the problem doesn't go away.
I'll try that and report
This week we've received a flood of clients complaining about vpopmail's Your
mailbox on the server is now more than 90% full messages, when they were
nowhere near over quota. There have been about 3-people-a-day for the past week
noting this, and each time I check the `vuserinfo` command and
Hmmm. This should work but it doesn't.
I have a ezmlm list at [EMAIL PROTECTED] I wanted to create an alias to this
address so incoming messages are forwarded to a mailbox that is posted to a
blog.
Adding the alias using valias doesn't work:
vpopmailselect * from valias where domain =
Hi all,
Is there a way to have qmail-send check actual MX records for a domain before
deciding if it is local or not (instead of by (more)rcpthosts and
virtualdomains)?
An issue comes up occasionally when a domain is added on our server which is
currently hosted somewhere else (i.e. it's a
On Fri, 12 Sep 2008 10:26:13 -0400, Dan McAllister wrote:
I've had to deal with this... and if you have control of BOTH ends
(old server and new) it's much easier...
I almost never have access to the old server. Any other ideas?
Quinn
Does vpopmail use persistent mysql connections? To reduce mysql memory usage,
I'd like there to be fewer sleeping vpopmail db connections:
| Id | User | Host | db | Command | Time | State | Info
|
| 394 | vpopmail | localhost | vpopmail | Sleep | 10
Just a reminder to everybody that ClamAV 0.94.x is no longer supported by
signature file updates after 15 Apr 2010.
http://www.clamav.net/lang/en/2009/10/05/eol-clamav-094/
If you haven't yet upgraded to 0.95.x you need to do so now to process
signature updates provided through freshclam.
Here's a copy of all the latest QMT rpms on our CDN. Jake, feel free to link to
these for a few days if you need to relieve www.qmailtoster.com of its burden.
http://cdn.one.strangecode.com/qmt/autorespond-toaster-2.0.4-1.3.6.src.rpm
Anybody seen this before?
We have a client on our mail server who occasionally and randomly receives
emails which contain nothing other than the output from `spamc --help` (see
output at http://pastie.textmate.org/private/6gb0ymmqpyw7mee39sespg).
Nothing* in our log files match up with the
On Sat, 21 May 2011 19:37:19 -0700, Quinn Comendant wrote:
We have a client on our mail server who occasionally and randomly
receives emails which contain nothing other than the output from
`spamc --help`
I found the cause of this problem. The client was using a catch-all address
Eric
I've posted the raw email here:
http://pastie.textmate.org/private/68bokw2tmauf2soczq
I agree: the catch-all is not the problem; it is something to do with the way
simscan is passing the message to clamc that an email addressed to
--local@domain is interpreted as an invalid argument. This
We'll be deploying a mail server on a Rackspace cloud server, and they
suggested that because their offering is 'utility computing' the IP addresses
included are dirty (in a blacklist kind of way) and we should use a commercial
ESP such as SendGrid, PostMark, CritSend, CloudSMTP, or the like.
Natalio Gatti ngatti at gmail.com writes:
I need to buy a digital certificate for my qmail server. In the wiki there
is a link to DiscountWebCerts.
Do you still recomend them? Is there any other server?
And one more question: Those cheap RapidSSL certificates are fully
compatible with
Hi all,
We've been experiencing
CNAME_lookup_failed_temporarily._(#4.4.3)/I'm_not_going_to_try_again errors
when sending mail to @va.gov addresses. Since QMT includes the Big DNS Patch, a
DNS packet buffer overrun isn't the issue. I wonder if we might be experiencing
the other DNS issue
Hi all,
We've been experiencing
CNAME_lookup_failed_temporarily._(#4.4.3)/I'm_not_going_to_try_again errors
when sending mail to @va.gov addresses. Since QMT includes the Big DNS Patch, a
DNS packet buffer overrun isn't the issue. I wonder if we might be experiencing
the other DNS issue
Thanks Alex
I can confirm the ANY query failure now; it was working earlier today – it must
be an intermittent problem with their DNS. I've emailed the address listed in
the SOA.
It it still useful for qmail to make DNS ANY queries, or can they be disabled
as recommended at
Rackspace has corroborated our findings with the va.gov DNS misconfiguration
(their response pasted below). Which brings me back to my question: is there a
way to make qmail more resilient to these kind of DNS issues?
Quinn
- Forwarded message from supp...@rackspace.com, 21 Jul 2013
This may be related to the DNS 'ANY' query canonicalization issue I reported a
few weeks ago:
http://www.mail-archive.com/qmailtoaster-list@qmailtoaster.com/msg35790.html
Quinn
-
To unsubscribe, e-mail:
This is great Dan. Is this up on the wiki yet? Thanks!
Quinn
-
To unsubscribe, e-mail: qmailtoaster-list-unsubscr...@qmailtoaster.com
For additional commands, e-mail: qmailtoaster-list-h...@qmailtoaster.com
On Wed, 11 Sep 2013 15:07:31 +0200, Johannes Weberhofer wrote:
this line in the spec will remove CRAM-MD5 completely:
%{__perl} -pi -e s|\#define CRAM_MD5||g qmail-smtpd.c
I'd like to do this as well to remove the dependence on pw_clear_passwd. It's
really this easy? And the clients that
on this?
Thanks!
--
Quinn Comendant
Strangecode, LLC
http://www.strangecode.com/
+1 530 624 4410 mobile
+1 530 636 2633 office
@qc and @strangecode
-
To unsubscribe, e-mail: qmailtoaster-list-unsubscr...@qmailtoaster.com
After 7 years using qmailtoaster I only just realized some unexpected behavior
with `valias` versus aliases in .qmail files. I thought I'd mention this here
in case others also weren't aware of this, or if I'm wrong y'all can call me
crazy.
I discovered if you use `valias` to create a virtual
On Wed, 08 Jan 2014 11:17:11 -0700, Eric Shubert wrote:
Instead, if you modify a .qmail file to add `destinat...@addre.ss`
in addition to the local mail delivery rule (preferably through
vqadmin, which modifies the .qmail file for you)
Whoops I meant preferably through qmailadmin.
Quinn
On Wed, 08 Jan 2014 11:17:11 -0700, Eric Shubert wrote:
Instead, if you modify a .qmail file to add `destinat...@addre.ss`
in addition to the local mail delivery rule (preferably through
vqadmin, which modifies the .qmail file for you)
Whoops I meant preferably through qmailadmin.
Quinn
On Wed, 08 Jan 2014 11:17:11 -0700, Eric Shubert wrote:
I'm not positive about this. My understanding is that forwards are
now stored in the database instead of using .qmail files. Are you
sure that vqadmin modifies the .qmail file for the account?
It does create them. I just tested:
1.
to `qmail-dk` by default; I thought by default it would go to
`qmail-queue.orig` (the page above writes, This will be disabled in future
releases anyway).
Thanks,
--
Quinn Comendant
Strangecode, LLC
http://www.strangecode.com/
+1 530 624 4410 mobile
+1 530 636 2633 office
@qc and @strangecode
On Fri, 31 Jan 2014 08:13:01 -0700, Dave M wrote:
remionder Centos 6, not 100% yet
Is there a list of things that don't work on centos 6? If it's not 100%, is it
90%? 95%?
--
Quinn Comendant
Strangecode, LLC
http://www.strangecode.com/
+1 530 624 4410 mobile
+1 530 636 2633 office
@qc
I'm migrating a qmailtoaster installed in 2006 to a new server. I've come to an
issue where the vpopmail-toaster package creates user vpopmail with group
vchkpw:
{q@oak2/0 bin} groups vpopmail
vpopmail : vchkpw
However, on the old server, the vpopmail user was setup with group
On Sun, 20 Jun 2010 18:49:04 -0700 Scott Hughes wrote:
So far no luck. I can find bots, but none yet that log. I'm sure I'd
have to find a way to transfer the logs to some type of searchable
format, but one step at a time.
FWIW, there are plenty of free logging bot services, e.g.,
Hi Eric
On Sat, 11 Oct 2014 08:41:43 -0700, Eric Shubert wrote:
Recommended solution?
I'd simply chgrp -R /home/vpopmail/domains/* vchkpw after the rsync.
That's what I did. I also had to change the group IDs in
`/var/qmail/users/assign` and rehash the cdb:
sudo perl -pi.bak -e
On Sat, 11 Oct 2014 23:35:35 -0700, Eric Shubert wrote:
Did you use the --numeric-ids flag on rsync? Without it, user and
group ids can get changed from one host to another, depend on what
number is assigned to which name(s).
No, because I wanted files to retain same username ownership,
Hi Guys
I've been discussing on the us...@spamassassin.apache.org list about a minor
issue I'm having with SA, and it was noted by a couple people that the headers
of incoming mail indicates qmail is not doing DNS lookups correctly.
Specifically, it seems qmail is not recording the reverse dns
On Fri, 17 Oct 2014 10:52:12 +0300, Catalin Leanca wrote:
But how about SMTP ? How to disable SSLv3 over 587 submission port ?
I couldn't find the answer with 10 minutes of googling, but I did find this
(UNTESTED!):
How to take down SSLv3 in your network using iptables firewall:
On Tue, 21 Oct 2014 23:27:35 +0545, Quinn Comendant wrote:
On Fri, 17 Oct 2014 10:52:12 +0300, Catalin Leanca wrote:
But how about SMTP ? How to disable SSLv3 over 587 submission port ?
Here's a comprehensive list of how to disable SSLv3 in everything *except*
qmail:
http://askubuntu.com
On Tue, 21 Oct 2014 18:50:11 -0700, Eric Shubert wrote:
Personally, I think that's information that doesn't need to be in the
message header (along with the authenticated user's account id, but
that's another matter).
Apparently, that info is important for SA. Here's my discussion on the SA
On Tue, 21 Oct 2014 19:02:09 -0700, Eric Shubert wrote:
In order to disable SSL in dovecot, you could either block the SSL
ports (993, 995) in the firewall, or change /etc/dovecot/toaster.conf
file by adding :!SSLv3 to the list of ciphers:
ssl_cipher_list =
On Fri, 17 Oct 2014 10:52:12 +0300, Catalin Leanca wrote:
I managed to disable SSLv3 in /etc/courier/imapd-ssl and
/etc/courier/pop3-ssl
Changed TLS_PROTOCOL=SSLv3 to TLS_PROTOCOL=TLS1
Catalin (and others): have you succeeded in disabling SSLv3 in courier? When I
try this configuration, I am
On Wed, 22 Oct 2014 20:01:54 +0300, Catalin Leanca wrote:
For me , that command works.
I also modified IMAPDSSLSTART=NO and IMAP_TLS_REQUIRED=1
Ok, so I've set those variable too, and still not working. Sorry to bother, but
would you mind comparing your /etc/courier/imapd-ssl file with mine:
On Fri, 24 Oct 2014 13:53:24 +0545, Quinn Comendant wrote:
On Wed, 22 Oct 2014 20:01:54 +0300, Catalin Leanca wrote:
For me , that command works.
I also modified IMAPDSSLSTART=NO and IMAP_TLS_REQUIRED=1
Also, isn't it a little confusing that courier is accepting connections on port
993 at all
On Fri, 24 Oct 2014 14:09:46 +0545, Quinn Comendant wrote:
On Fri, 24 Oct 2014 13:53:24 +0545, Quinn Comendant wrote:
On Wed, 22 Oct 2014 20:01:54 +0300, Catalin Leanca wrote:
For me , that command works.
I also modified IMAPDSSLSTART=NO and IMAP_TLS_REQUIRED=1
Also, isn't it a little
Is spamdyke 5 production ready? I notice the qtp-install-spamdyke script uses
the 4.x branch.
BTW, in that script, I noticed these lines are wrapped, causing the comments to
be left out of the generated conf files:
echo # These are words which will reject the sender
It hasn't been mentioned on this list yet so I thought I would bring it up:
qmail exposes environment variables in a way that a vulnerable bash is
susceptible to CVE-2014-6271 (aka shellshock).
If you have a patched bash, don't worry. If you haven't patched for this, do.
This post includes a
On Thu, 30 Oct 2014 19:09:44 -0700, Eric Shubert wrote:
Not surprised that you missed it Quinn, but there was a post here on
9/25 about it. ;) Pretty serious vulnerability, but easily remedied.
Ok, glad it was brought up. I didn't see a match for shellshock in the QMT
list archives.
Q
101 - 200 of 229 matches
Mail list logo