Re: [SOGo] Issues with Apostrophe (Single Quote)

2019-11-26 Thread Anselm Martin Hoffmeister 

Hi Andrew,

I just tested writing a mail from SOGo webmail (4.1.0 in this case) to a 
fake version of my private account elsewhere, having inserted an 
apostrophe '. My private server rightfully refuses the (invalid) 
destination address - it seems SOGo does everything correctly here and 
hands through the apostrophe exactly as I would expect.


Trying to replicate the problem, doing the same with both the forward 
and backward tick ´` (single quotation marks or accent over blank, or 
whatever you call them), the same happens, SOGo hands through those 
mails and the destination server then refuses - the forward tick for 
"invalid postbox", the backtick as "restricted characters in address", 
and the non-delivery mail quotes the refused target address including 
the superfluous characters.


So it seems (my) SOGo 4.1.0 works correctly. But there may be other 
parties involved: Usually SOGo hands off the mail to a local running 
exim (or postfix), which then forwards the mail as applicable. There 
may be a different mail path between roundcube and SOGo, depending on 
your local configuration.


Can you find some relevant lines in the mail server logs? In exim case 
and on Debian(ish) Linuxes, /var/log/exim4/mainlog would be the place to 
investigate.


Also having details on the software version involved and perhaps the 
relevant parts of the SOGO config may be helpful.


Best regards

Anselm

Am 26.11.2019 um 13:37 schrieb Andrew Mogg (and...@logicomm.co.uk):


Hi

We are having issues with a particular email address which has a ‘ in 
its email address. Such as Dano’rou...@gmail.com


When the email is sent from SOGo, it removes the ‘ from the email 
address, so the email is actually sent to danorou...@gmail.com 
 and therefore fails (ie bounces). 
Interestingly, when I access the server via Roundcube and send, this 
does not happen, so its SOGo


Has anyone had any experience of this?


This email has been scanned for email related threats and delivered 
safely by Exascale.

For more information please visit https://www.exascale.co.uk


--
users@sogo.nu
https://inverse.ca/sogo/lists

--
users@sogo.nu
https://inverse.ca/sogo/lists

Re: [SOGo] Questions about SOGo

2019-11-06 Thread Anselm Martin Hoffmeister 

Hi Alwin,


we have quite a similar setup here. As most colleagues here have several 
"identities" (which is, they work for both companies sharing this office 
space) and mail should be sent with the corresponding signature, 
depending on the original incoming address, the mail program must select 
the correct identity on reply.


Luckily for us, Thunderbird does exactly this. As you noticed, the 
webmailer also looks into the original mail and selects an appropriate 
"identity".



So this is obviously a mail user agent thing, in the first place at 
least. I am aware of huge differences between Outlook versions out 
there, and at least that Outlook 2016 that my PC has (and that is not 
opened more than once a year, luckily) seems not to do a proper 
matching. I guess you should look into the options that Outlook 
(+AddOns) might offer here, rather than on the server-side.



It seems that some people achieved to have Thunderbird-like "identities" 
in Outlook by creating more that one account (and disabling all but the 
first one). I did not read though wether the automatic choice of sender 
address came with this.


You might want to have a look at 
https://www.ivasoft.com/smartreply2010.shtml (not affiliated to it, just 
a google result), which seems to quite match your request (add-on comes 
at 50$/workstation). So there seems to be a lack of functionality in 
Outlook, and someone makes a living off this.



For emClient, I cannot tell, as I never used that one, sorry.


On the other hand you can do all kinds of smart or stupid things in 
rewriting outgoing mails on the server. I would recommend against that 
approach, as the reply mail does not necessarily bear the information of 
the original target mail address. You would have to store this on the 
"way in", with the message id, and in the outgoing mail, lookup the 
"Message-Reply-ID" (or similar header field) and find the address to 
insert from your database. Yes this is possible, and a rather ugly hack! 
E.g. in an Exim setup, you might add a "router" there to pass your mail 
into some manipulation scripts, and probably insert some bad bugs into 
mail handling while doing so. BTDT.



BR

Anselm



Am 06.11.2019 um 08:44 schrieb "WebMan [Technik]" (tech...@webman.de):


Hello,

we are currently converting our mailsystem to SOGo. We have a few 
questions. Maybe someone can answer me if this is possible.


In our e-mails, we have tried to create a specific structure:

  * There is a main mailbox with some aliases (created in SOGo)
  * The mails sent to this alias are automatically moved to a
subfolder in the same mailbox

Now it gets difficult:

  * If one of these mails is answered, the client (for example,
Outlook or em Client) should automatically select the address to
which the mail was sent
  o The aliases (as sender addresses) could also be sent
automatically by the server to the client. Then he could make
the choice easily.
  + Is there perhaps a SOGo plugin to do that?
  + Where can I even see / browse the available SOGo plugins?
  o It would be okay to create the addresses manually, but the
client would still have to select them automatically (but
unfortunately that does not work right now).
  + Maybe there is an Outlook plugin?
  o There is this functionality in the webmailer. It just works
like we want it to.

If that does not work:

  * Is there a possibility to set a manually added sender address
(alias) as default? Unfortunately, I couldn’t find anything.
  * Is it possible to manipulate the sender address on server-side
(depending on the user and only if the receiver is external)

Thanks in Advance!

Greetings:
Alwin Sonnemann


--
users@sogo.nu
https://inverse.ca/sogo/lists

--
users@sogo.nu
https://inverse.ca/sogo/lists

Re: [SOGo] HTTPS switches to HTTP after login

2019-07-10 Thread Anselm Martin Hoffmeister 
Hi Paul,

please check your Apache configuration. As you want https, you might
have to set lines like
  RequestHeader set "x-webobjects-server-port" "443"
  RequestHeader set "x-webobjects-server-name" "%{HTTP_HOST}e" env=HTTP_HOST
  RequestHeader set "x-webobjects-server-url" "https://%{HTTP_HOST}e;
env=HTTP_HOST

In my configuration, those (in /etc/apache2/conf-available/SOGo.conf,
but my box is running Debian - might be a little different) were
surrounded by , so perhaps you also need to
enable that module (a2enmod headers).

Lacking those (or having them disabled, effectively), page redirects
might default to http on port 80, which you seem to experience.

Hope this helps!

Anselm

Am 10.07.19 um 21:25 schrieb "Webb, Paul" (pwebb0...@gmail.com):
>
> OS: Ubuntu 18.04.2 LTS
> Version: SOGo v4 Nightly Build
>
> Hi all,
>
> I've started over and built a SOGo server from the ground up. Apache2,
> MySQL 5.7.26, Postfix (latest from repos), Dovecot, etc.
>
> I've got a wildcard SSL certificate from Comodo and got my Apache2
> configuration working properly. I can visit
> https://[mx.domain.com]/SOGo and get a login page.
>
> I have a test user, sogoadmin, in the Mysql database with a password
> set for it.
>
> When I log in:
>
> https://[mx.domain.com]/SOGo/so/sogoadmin/Mail/
>
> I get "Authenticating" then "Welcome SOGo Admin" and then it spins
> for awhile.
>
> Eventually it errors out and the URL has changed to
>
> http://[mx.domain.com]/SOGo/so/sogoadmin/Mail/view#!/Mail/0/INBOX
>
> instead of
>
> https://[mx.domain.com]/SOGo/so/sogoadmin/Mail/view#!/Mail/0/INBOX.
>
> If I just add the s in after the http, it lets me continue on to the
> user inbox.
>
> Is there somewhere in the configuration that I need to tell SOGo that
> we're requiring HTTPS at all times?
>
> Thanks, all!
>
> -Paul
>
> -- 
> users@sogo.nu
> https://inverse.ca/sogo/lists


-- 
users@sogo.nu
https://inverse.ca/sogo/lists

Re: [SOGo] Extracting address books and calendars content

2019-06-12 Thread Anselm Martin Hoffmeister 
Hallo André,

I guess that CALDAV is the way to go (via HTTPS, preferrably). There are
php snippets that demonstrate Web DAV accesses, for example, so you
could "roll your own", for both data read and write, and have full
flexibility to access single items, while keeping sogo happy with
synchronizing changed data to whichever user/program/device needs it.
For mere backups though, the SQL database dump would be the obvious choice.

I admit that for a certain purpose I was a bit lazy and used a database
dump: We need a plain csv file of phone number and associated names for
our PABX to display caller names. There is some script that I will not
disclose (as it is not pretty at all), but it is fed with the output of

echo "SELECT c_content FROM sogoanshoffm00112288562" | mysql -u
sogodbuser thesogodb | parsevcardscript

where the table name has been hand-picked, obviously, and the mysql uses
an options file (which contains the password in this case).

The data is - you may have guesses - in vcard format, which to me seems
like the shabby brother of an LDAP record - it seems to have been kind
of a standard for some time, or rather, a set of "we use it like this"
that are mostly compatible. Don't trust much on any application to
behave, and with a large range of software and devices accessing your
sogo, you will for example have several TEL;TYPE= and EMAIL;TYPE=
variants that not every program uses in the same way. YMMV.

For restoring the complete dataset, I had to do this with several SOGo
instances a while back when changing hardware, and on that occasion
doing a full software install instead of just moving the root partition.
Just shutting down sogo, exporting the database, importing on the new
server and firing up sogo there with the mostly identical config file
worked as expected.

Best regards
Anselm


Am 12.06.19 um 19:18 schrieb André Rodier (an...@rodier.me):
> Hello, wonderful SOGo team,
>
> I need a way to export and import an address book, and maybe a
> calendar, from the command line.
>
> I am interested even if your answer is partial, for instance just the
> export. The bare minimum would be exporting an address book in a text
> file, in any appropriate format.
>
> I am happy to write SQL as well if this is necessary, although I would
> prefer use the http protocol.
>
> Also, can I restore, still using the command line, the user's data from
> a SOGo backup, or the whole database is the way to go.
>
> Thanks a lot for your hard work, this is great, and thanks to you and
> Debian, my project is taking shape.
>
> Thanks a lot for your hard work and your insights.





-- 
users@sogo.nu
https://inverse.ca/sogo/lists

Re: [SOGo] Different Apache configuration for internal/external requests

2013-01-20 Thread Anselm Martin Hoffmeister 

Am 20.01.2013 01:17, schrieb Holger A. Brinkhaus:

Hi all,

at the moment //etc/apache2/conf.d/SOGo.conf/ is configured for external
access (which works via DynDNS). This works fine but also means that
this is also used for my internal access. For this reason I am limited
to external bandwidth also for my internal accesses. Is there a
possibility to change this?

Best Regards
   Holger



Hi Holger,

what I suspect is happening in your case (at least it seemed to be like 
that in a setup here):


Internal access to Sogo: Packets sent to public IP address go to the DSL 
device, are forwarded to the internet, go back - and such traverse the 
slow DSL line twice. A bit weird that the DSL device would not recognize 
its own external IP there... but I tracerouted it once.


You obviously have a server machine running locally, in the LAN. Is 
having a DNS server running on that feasible? What did the trick for us 
was using the Linux box as DNS-server for the LAN (be sure to configure 
the DHCP-server accordingly, or tell the DSL router to use that machine 
instead of the provider's DNS servers).


With the ISC BIND (well, there are others - I just know BIND best) you 
can allow recursive requests - that is a good idea for the local 
network. Don't necessarily set any forwarders there, the BIND can very

well talk to the DNS root servers itself.

Also create a local zone for myaccount.dyndns.org with something like

myaccount.dyndns.org. 300 IN SOA .
myaccount.dyndns.org. 300 IN NS myaccount.dyndns.org.
myaccount.dyndns.org. 300 IN A 192.168.55.5
myaccount.dyndns.org. 300 IN  2001:db8:fe24:2ff1::3705


This should make all DNS requests be answered normally except those
for the single DNS record of your dyndns name, for which your LAN 
clients are served the local IP address. The Apache will not need
any special configuration as long as you don't have any IP-address based 
stuff in there but go through the FQDN in all cases.


You could still differentiate in Apache by the source IP address, if 
that is at all necessary.


In my opinion this is not the most ideal solution, but far easier than
having a second FQDN, and also easier than f*ix*ing the routing tables.
DSL devices tend to be suckers when it comes to accessing their external
IP address from the internal LAN and forwarding ports to internal.

HTH
AMH
--
users@sogo.nu
https://inverse.ca/sogo/lists

Re: [SOGo] https, carddav and caldav config with SSL - any working example

2013-01-11 Thread Anselm Martin Hoffmeister 

Am 11.01.2013 11:13, schrieb Götz Reinicke - IT Koordinator:

Am 11.01.13 10:55, schrieb Thoralf Schulze:

hi,

Am 11.01.2013 10:41 schrieb Götz Reinicke - IT Koordinator:

For the LIVE system we like to have sogo running as a virtual apache
host and secure as much as possible by using ssl.


hth, we are using debian squeeze.

with kind regards,
t.



Wow hi big kòutóu :) I think that will help a lot!

Thanks and regards . Götz


Hi Götz, hi Thoralf,

that setup looks quite similar to mine, but with two obvious differences:

1st/ I had to restrict my setup to one port for HTTPS. So I do not
have those additional HTTPS ports available.

2nd/ For those iDevices out there, and also the Android CalDAV
connector that I can highly recommend, I implemented the .well-known
setting in the web root. You can do that with Apache config files,
or just create a directory .well-known in the web root and add
some mini PHP files that redirect to the intended location as
caldav.php and carddav.php (I have multiviews on in that VM, so
the request /.well-known/carddav works). Files might look like
? header(Location: https://sogo.-mydomain-.de/SOGo/dav/;); ?

This might also be handy when you have a multi-domain setup where
everyone just enters his own domain name (where the web-space
lives on HTTP only, probably, and no multi-domain certificate is
availble for) and is magically redirected to the SOGo service on the
right domain name, such that certificates work correctly etc.

BR
AMH
--
users@sogo.nu
https://inverse.ca/sogo/lists

Re: [SOGo] Only the last line of SMTP answer is returned - so SOGo fails to see AUTH PLAIN - sending fails

2013-01-06 Thread Anselm Martin Hoffmeister 

Am 06.01.2013 16:45, schrieb John Bieling:

Am 06.01.2013 14:40, schrieb John Bieling:

Hi,

using sogo 2.0.3 with

sogod SOGoSMTPAuthenticationType PLAIN

enabled. This is the SMTP reply after EHLO with telnet

open smtp.wordlserver.net 25

220 mail01.worldserver.net ESMTP Speedbone Mailservice
EHLO sogoserver
250-mail01.worldserver.net
250-PIPELINING
250-SIZE 69730304
250-VRFY
250-ETRN
250-STARTTLS
250-AUTH PLAIN LOGIN CRAM-MD5
250-AUTH=PLAIN LOGIN CRAM-MD5


This is not RFC compliant, if I understand the spec correctly (see 
http://tools.ietf.org/html/rfc5321 page 33). It seems some mailservers

send that AUTH=PLAIN to support old Outlook Express clients that need
this for authentication to work (cf. http://www.wogri.at/248.html?L=1 ).

It would by nice if SOGo went the extra mile to accept this
non-standard but obviously existant line. Being RFC compliant is not a 
bug, though :-)


BR
-AMH-
--
users@sogo.nu
https://inverse.ca/sogo/lists

Re: [SOGo] access multiple users per Thunderbird account with connector

2012-03-12 Thread Anselm Martin Hoffmeister 

Am 12.03.2012 11:47, schrieb Peter Schmidt:

Hi Martin!

You could do a nicer workaround and create two profiles in 
thunderbird, one for each Sogo user.


I think you can even run them simultaneously but i'm not sure now. 
This seems to me to be a bit cleaner than choosing the sogo account 
at login time.


Depends on your needs... Just a suggestion.


I expect the username/password combo relates to the hostname of the sogo 
server. If you are not in VirtualHost hell (or rather, your sogo server 
is not *g*), you could use another hostname pointing to the same IP 
address, or just the literal IP address...?


I had a Thunderbird setup that way with Lightning for a while, no idea 
about Connector though. Worth a try?


Another way would be to grant the ID A access to ID B's address 
books / calendar and only ever connect as ID A

(That was what I did later).

BR
A.M.H.
--
users@sogo.nu
https://inverse.ca/sogo/lists