[vchkpw] New simscan 1.0.7 release
simscan 1.0.7 is now available. http://www.inter7.com/simscan/ Simscan is a simple program that enables qmail-smtpd to reject viruses, spam and block attachments during the SMTP conversation so the email never makes it into your computers. It is completely open source and uses other open source components. Very efficient and written in C. ChangeLog http://www.inter7.com/simscan/ChangeLog New Features/Changes in this version: Support for SpamAssassin 3.0 and Trophie virus scanner. Support to enable/disable any feature on a per user, per domain and system wide level. Received headers can contain version information for spamassassin and virus scanner. Three spamassassin settings 1) pass modified email through to user 2) block spam 3) block spam over a high water mark. List of optional attachments to block from a control file. Updated permission settings for better portability. New logging to show ip, to/from users in smtp log file for any blocked virus. Many new debugging statements that can be enabled by an environment variable. -- Ken Jones inter7.com
[vchkpw] chkuser and smtproutes
Greetings, I have been considering using the chkuser patch in conjunction with simscan. I've looked at the docs and FAQs, but can't find anything that talks about how chkuser works with a domain in smtproutes. Is there a way that chkuser could accept e-mail to any account in one particular domain? Is there support for smtproutes? I have a few domains that forward to exchange boxes. I did Google for smtproutes both on inter7.com and interazioni.it, finding nothing. Found two threads on the mailing list archives, but didn't get a distinct answer. Sorry if this is a FAQ. PK
Re: [vchkpw] chkuser and smtproutes
On Monday 01 November 2004 03:44 pm, Kleiner, Peter wrote: Greetings, I have been considering using the chkuser patch in conjunction with simscan. I've looked at the docs and FAQs, but can't find anything that talks about how chkuser works with a domain in smtproutes. Is there a way that chkuser could accept e-mail to any account in one particular domain? Is there support for smtproutes? I have a few domains that forward to exchange boxes. chkuser unconditionally accepts mail for domains in rcpthosts that are not in virtualdomains, and also if it is unable to read the vpopmail information (for instance, if you are running qmail-smtpd as the qmaild user) -Jeremy -- Jeremy Kitchen ++ Systems Administrator ++ Inter7 Internet Technologies, Inc. [EMAIL PROTECTED] ++ www.inter7.com ++ 866.528.3530 ++ 815.776.9465 int'l kitchen @ #qmail #gentoo on EFnet ++ scriptkitchen.com/qmail GnuPG Key ID: 481BF7E2 ++ scriptkitchen.com/kitchen.asc pgpCDrPX70CKZ.pgp Description: PGP signature
Re: [vchkpw] chkuser and smtproutes
On Monday 01 November 2004 03:44 pm, Kleiner, Peter wrote: Greetings, I have been considering using the chkuser patch in conjunction with simscan. I've looked at the docs and FAQs, but can't find anything that talks about how chkuser works with a domain in smtproutes. Is there a way that chkuser could accept e-mail to any account in one particular domain? Is there support for smtproutes? I have a few domains that forward to exchange boxes. I did Google for smtproutes both on inter7.com and interazioni.it, finding nothing. Found two threads on the mailing list archives, but didn't get a distinct answer. Sorry if this is a FAQ. You might be able to dump a list of the exchange users to a file. Then we have a patch to the old chk user that implements a check against domains in smtproutes and in the list of exchange users. Helps block dictionary spam attacks on your exchange accounts. Ken
[vchkpw] Advice Please
I seem to have discovered a relay vulnerability. It seems that a rcpt to: in the form of, spamlart.homeunix.org!spamtest65.223.68.197 Gets past. Any idea's?? I have checked as far as I can determine to eliminate this but it seems to still work. - Bill
Re: [vchkpw] chkuser and smtproutes
Jeremy Kitchen wrote: chkuser unconditionally accepts mail for domains in rcpthosts that are not in virtualdomains, and also if it is unable to read the vpopmail information (for instance, if you are running qmail-smtpd as the qmaild user) Jeremy, That's exactly the information I was searching for. Thanks to Ken also for his suggestion about exporting the Exchange list. Pete
[vchkpw] Sufix domain dir and domaindir independent patch
Here them shipment a patch to be able to choose any directory like directory domains (/emails,/hosts/emails not necessarily /home/vpopmail/emails) and in addition allows to place a directory suffix to the directory of dominions, example: home/testdomain.com/emails/postmaster instructions: patch is applied. autoconf. enable-domains-dir=/home forms enable-sufix-domains-dir=emails --. make make install and ready. Only tested for ldap backend Pablo Castorino PD: Sorry my english Desarrollador de CastorinoP Sistemas Mandrakelinux Community 10.1
Re: [vchkpw] Advice Please
On Monday 01 November 2004 05:47 pm, Bill Sappington wrote: I seem to have discovered a relay vulnerability. It seems that a rcpt to: in the form of, spamlart.homeunix.org!spamtest65.223.68.197 Gets past. Any idea's?? Check the log files to see if the email was actually relayed out. I have checked as far as I can determine to eliminate this but it seems to still work. I bet it is either a misconfiguration of your server or a bad interpretation of a relay test. -- Ken Jones inter7.com
Re: [vchkpw] Advice Please
Your question is not related to vpopmail in any way. I will assume that it's a qmail question and advise that you take any further correspondence with this post to the qmail list. That being said: On Mon, 2004-11-01 at 15:47 -0800, Bill Sappington wrote: I seem to have discovered a relay vulnerability. It seems that a rcpt to: in the form of, spamlart.homeunix.org!spamtest65.223.68.197 Gets past. Any idea's?? Right. There's no @. qmail will accept the message, try to deliver it locally to the value of the control/defaultdomain file (or control/me if the former doesn't exist), and subsequently bounces the message. Regardless, where would you expect that message to go? The envelope recipient has no information that would make qmail know where to deliver it. This is not a vulnerability. qmail is not doing anything bad here. -Jeremy -- Jeremy Kitchen ++ Systems Administrator ++ Inter7 Internet Technologies, Inc. [EMAIL PROTECTED] ++ www.inter7.com ++ 866.528.3530 ++ 815.776.9465 int'l kitchen @ #qmail #gentoo on EFnet ++ scriptkitchen.com/qmail GnuPG Key ID: 481BF7E2 ++ scriptkitchen.com/kitchen.asc signature.asc Description: This is a digitally signed message part
