Re: [qmailtoaster] forwarding to gmail address fails because of hard spf check
Hi Peter, What kind of malformed header cause it? I wonder whether I can drop such mail in /var/qmail/alias/.qmail-srs-default . -- AIZAWA Hiroshi 2023年2月23日(木) 20:32 Peter Peltonen : > > Ok good. > > I actually ran into a SRS related problem yesterday: i think a malformed > headers in spam msg caused to SRS to fail which put my qmail send process in > a loop with error > > No user in SRS0 address > > Qmail spawned more and more processes until my server got unresponsive and I > had to reboot the server. After qmail had started, the same thing happened > again. > > I had to disable SRS to get everything working. > > Very unfortunate, everything had worked so well until now. > > Peter > > to 23. helmik. 2023 klo 11.38 あいざわひろし kirjoitti: >> >> Hi guys >> >> Thanks to this thread, gmail.com now receives forwarded message from >> my mailserver . >> >> I noticed that mx.google.com says 'spf=neutral' in the header >> ARC-Authentication-Results >> I created SPF record for domain srs (in this example, srs.xyz.com) and now >> mx.google.com says 'spf=pass'. >> >> I think it is better to make the spf record for srs domain. >> >> -- >> AIZAWA Hiroshi >> >> 2023年1月3日(火) 18:23 Peter Peltonen : >> > >> > Googling "srs qmailtoaster" gave me this link: >> > >> > http://wiki.qmailtoaster.net/index.php/Configuring_SRS_on_Toaster_1.03-1.3.13%2B >> > >> > which does not work, it seems qmailtoaster.com should be used instead of >> > .net >> > >> > Okay now we have the instructions I guess I could try to test it, I have a >> > spare registered domain I could test with. Does this sound ok procedure: >> > >> > setup domain xyz.com with SPF with hard fail (-all) and the toaster as the >> > MX >> > send email from xyz.com to GMail through our toaster: should pass ok >> > setup forwarding from xyz.com to GMail >> > send email to xyz.com: should fail because GMail does not accept >> > setup SRS at toaster: >> > >> > create NS record for domain srs.xyz.com with MX pointing to our toaster >> > echo srs.xyz.com > /var/qmail/control/srs_domain >> > mkpasswd -l 32 > /var/qmail/control/srs_secrets >> > mkpasswd -l 32 >> /var/qmail/control/srs_secrets >> > (repeat mkpasswd as many times you need, not sure how many is really >> > needed?) >> > echo 7 > /var/qmail/control/srs_maxage >> > echo 8 > /var/qmail/control/srs_hashlength >> > qmailctl restart >> > echo srs.xyz.com >> /var/qmail/control/rcpthosts >> > echo srs.xyz.com:srs >> /var/qmail/control/virtualdomains >> > echo "| /var/qmail/bin/srsfilter" > /var/qmail/alias/.qmail-srs-default >> > (ownershp of other alias files on my server are user alias group nofiles, >> > so probably this should be changed to the same?) >> > >> > send email to xyz.com: should pass ok >> > >> > >> > What do you think Angus? >> > >> > Best, >> > Peter >> > >> > >> > On Mon, Jan 2, 2023 at 7:52 PM Angus McIntyre wrote: >> >> >> >> >> >> >> >> Peter Peltonen wrote on 1/2/23 11:57 AM: >> >> > Some of my toaster users have their email forwarded to Gmail ... Some >> >> > googling around tells me that SRS could be the solution for this >> >> > problem. >> >> > >> >> > There is info on this at Qmailtoaster Wiki, but the site seems to be >> >> > somehow broken. >> >> >> >> Which page are you looking at, and in what way does it seem broken? >> >> >> >> >> >> http://wiki.qmailtoaster.com/index.php/Configuring_SRS_on_Toaster_1.03-1.3.13%2B >> >> >> >> currently loads fine for me, and looks as if it has good information. >> >> >> >> I should stress that I haven't tried this yet. I didn't know about SRS >> >> until you posted this (thank you!) but I'm having the same issue as you >> >> and it sounds as if this might be just what I need. >> >> >> >> Would anyone who's actually implemented this care to comment? >> >> >> >> Angus >> >> >> >> >> >> - >> >> To unsubscribe, e-mail: qmailtoaster-list-unsubscr...@qmailtoaster.com >> >> For additional commands, e-mail: qmailtoaster-list-h...@qmailtoaster.com >> >> >> >> - >> To unsubscribe, e-mail: qmailtoaster-list-unsubscr...@qmailtoaster.com >> For additional commands, e-mail: qmailtoaster-list-h...@qmailtoaster.com >> - To unsubscribe, e-mail: qmailtoaster-list-unsubscr...@qmailtoaster.com For additional commands, e-mail: qmailtoaster-list-h...@qmailtoaster.com
Re: [qmailtoaster] forwarding to gmail address fails because of hard spf check
Hi guys Thanks to this thread, gmail.com now receives forwarded message from my mailserver . I noticed that mx.google.com says 'spf=neutral' in the header ARC-Authentication-Results I created SPF record for domain srs (in this example, srs.xyz.com) and now mx.google.com says 'spf=pass'. I think it is better to make the spf record for srs domain. -- AIZAWA Hiroshi 2023年1月3日(火) 18:23 Peter Peltonen : > > Googling "srs qmailtoaster" gave me this link: > > http://wiki.qmailtoaster.net/index.php/Configuring_SRS_on_Toaster_1.03-1.3.13%2B > > which does not work, it seems qmailtoaster.com should be used instead of .net > > Okay now we have the instructions I guess I could try to test it, I have a > spare registered domain I could test with. Does this sound ok procedure: > > setup domain xyz.com with SPF with hard fail (-all) and the toaster as the MX > send email from xyz.com to GMail through our toaster: should pass ok > setup forwarding from xyz.com to GMail > send email to xyz.com: should fail because GMail does not accept > setup SRS at toaster: > > create NS record for domain srs.xyz.com with MX pointing to our toaster > echo srs.xyz.com > /var/qmail/control/srs_domain > mkpasswd -l 32 > /var/qmail/control/srs_secrets > mkpasswd -l 32 >> /var/qmail/control/srs_secrets > (repeat mkpasswd as many times you need, not sure how many is really needed?) > echo 7 > /var/qmail/control/srs_maxage > echo 8 > /var/qmail/control/srs_hashlength > qmailctl restart > echo srs.xyz.com >> /var/qmail/control/rcpthosts > echo srs.xyz.com:srs >> /var/qmail/control/virtualdomains > echo "| /var/qmail/bin/srsfilter" > /var/qmail/alias/.qmail-srs-default > (ownershp of other alias files on my server are user alias group nofiles, so > probably this should be changed to the same?) > > send email to xyz.com: should pass ok > > > What do you think Angus? > > Best, > Peter > > > On Mon, Jan 2, 2023 at 7:52 PM Angus McIntyre wrote: >> >> >> >> Peter Peltonen wrote on 1/2/23 11:57 AM: >> > Some of my toaster users have their email forwarded to Gmail ... Some >> > googling around tells me that SRS could be the solution for this >> > problem. >> > >> > There is info on this at Qmailtoaster Wiki, but the site seems to be >> > somehow broken. >> >> Which page are you looking at, and in what way does it seem broken? >> >> >> http://wiki.qmailtoaster.com/index.php/Configuring_SRS_on_Toaster_1.03-1.3.13%2B >> >> currently loads fine for me, and looks as if it has good information. >> >> I should stress that I haven't tried this yet. I didn't know about SRS >> until you posted this (thank you!) but I'm having the same issue as you >> and it sounds as if this might be just what I need. >> >> Would anyone who's actually implemented this care to comment? >> >> Angus >> >> >> - >> To unsubscribe, e-mail: qmailtoaster-list-unsubscr...@qmailtoaster.com >> For additional commands, e-mail: qmailtoaster-list-h...@qmailtoaster.com >> - To unsubscribe, e-mail: qmailtoaster-list-unsubscr...@qmailtoaster.com For additional commands, e-mail: qmailtoaster-list-h...@qmailtoaster.com
Re: [qmailtoaster] qmailtoaster and clamav version: 0.102.2
thank you, Carl. my problem was spamdyke rejects all incoming messages. i turned off clamav scanning as https://www.mail-archive.com/qmailtoaster-list@qmailtoaster.com/msg35894.html says. 2020年2月20日(木) 1:03 CarlC Internet Services Service Desk : > > AIZAWA-san, > > While it's not the latest, it's still current enough to handle all the ClamAV > scanning. I'm sure Eric will give you a better explanation, but you are not > far behind in version and ability. > > Carl > > -Original Message- > From: あいざわひろし [mailto:cobo...@gmail.com] > Sent: Wednesday, February 19, 2020 10:05 AM > To: qmailtoaster-list@qmailtoaster.com > Subject: [qmailtoaster] qmailtoaster and clamav version: 0.102.2 > > hello qmailtoaster-list > > yesterday I found freshclam saying > |WARNING: Your ClamAV installation is OUTDATED! > |WARNING: Local version: 0.101.4 Recommended version: 0.102.2 > > but at > https://linkprotect.cudasvc.com/url?a=ftp%3a%2f%2fftp.qmailtoaster.org%2fpub%2frepo%2fqmt%2fCentOS%2f7%2ftesting%2fx86_64%2f=E,1,vMcygdpTSmtIjwVt8w2fkdLArmHTGyzMifDneQxTJSx-iH3iVhFmjZfyrY4KiPcbiMFSRBOKgWjvAG3nQeea8Dwq4U2soX1yjpJSeb2SeYNkZFqqqg1xFIzJpRFF=0 > clamav-0.101.4-10.qt.el7.x86_64.rpm > looks latest. > > How can I update clamav ? > > -- > AIZAWA Hiroshi > > - > To unsubscribe, e-mail: qmailtoaster-list-unsubscr...@qmailtoaster.com > For additional commands, e-mail: qmailtoaster-list-h...@qmailtoaster.com > > > - > To unsubscribe, e-mail: qmailtoaster-list-unsubscr...@qmailtoaster.com > For additional commands, e-mail: qmailtoaster-list-h...@qmailtoaster.com > - To unsubscribe, e-mail: qmailtoaster-list-unsubscr...@qmailtoaster.com For additional commands, e-mail: qmailtoaster-list-h...@qmailtoaster.com
[qmailtoaster] qmailtoaster and clamav version: 0.102.2
hello qmailtoaster-list yesterday I found freshclam saying |WARNING: Your ClamAV installation is OUTDATED! |WARNING: Local version: 0.101.4 Recommended version: 0.102.2 but at ftp://ftp.qmailtoaster.org/pub/repo/qmt/CentOS/7/testing/x86_64/ clamav-0.101.4-10.qt.el7.x86_64.rpm looks latest. How can I update clamav ? -- AIZAWA Hiroshi - To unsubscribe, e-mail: qmailtoaster-list-unsubscr...@qmailtoaster.com For additional commands, e-mail: qmailtoaster-list-h...@qmailtoaster.com
