Search found 24 matches

by BOOZy
14 Feb 2020 08:57
Forum: Feature Requests
Topic: eFa MailWatch HTTPS Port 8080
Replies: 2
Views: 1065

Re: eFa MailWatch HTTPS Port 8080

I'd rather see the option to set an ACL for the MailWatch page. Through the SSH CLI menu would be easiest to implement I gather.
by BOOZy
14 Nov 2019 08:59
Forum: 4.x Bugs
Topic: Serious bug, SPAM getting through
Replies: 2
Views: 444

Serious bug, SPAM getting through

I'm seeing spam that seems to originate from our domain getting through without a problem. SPF for our domain is set as strict as possible with -all to hardfail on no match. At closer inspection of the headers and how EFA checks SPF the issue seems clear: EFA is not checking the domain in the 'From'...
by BOOZy
14 Nov 2019 08:13
Forum: How-to
Topic: Extreme paranoid mode
Replies: 3
Views: 259

Re: Extreme paranoid mode

shawniverson wrote:
13 Nov 2019 15:56
X-Spam-Status:yes headers on all email!

:lol: :lol: :lol: :lol: :dance:
That's close enough, he wanted me to restrict external email to smartphones.
by BOOZy
13 Nov 2019 14:07
Forum: How-to
Topic: Extreme paranoid mode
Replies: 3
Views: 259

Extreme paranoid mode

Hello all, I have a client who is extremely paranoid about getting malware through email. Do you guys have any tips on specific settings that can do: 1 - filter or mark all hyper-links except white-listed ones 2 - filter all attachments except white-listed ones. 3 - any other settings you'd deem nec...
by BOOZy
12 Mar 2019 10:23
Forum: 4.x Bugs
Topic: How to install EFA4 Beta RC2/RC3 on Hyper-V 2016
Replies: 4
Views: 1382

Re: How to install EFA4 Beta RC2 on Hyper-V 2016

Just a reminder to my future self as I'm going to forget this and Google it again. If you forget to add the script at install and end up with a clean and functional Centos machine. You can download the cfg and manually install the packages and execute the post install commands as they're defined ins...
by BOOZy
11 Mar 2019 09:06
Forum: 3.x Bugs
Topic: [re-fixed] Outgoing mail stuck in queue
Replies: 1
Views: 841

[re-fixed] Outgoing mail stuck in queue

Mail is stuck in queue, postfix -f doesn't do anything. However, if I reboot the first 30 queued emails are sent then the rest gets stuck again. I have diverted outgoing mail to a different route so the queue is not growing. But with 2000 emails stuck I'd need to reboot another 67 times to get them ...
by BOOZy
08 Mar 2019 16:15
Forum: 3.x Bugs
Topic: Can't view headers
Replies: 1
Views: 855

Can't view headers

The little "i" button next the processed messages doesn't show any headers, only the date/time and source IP address.
System messages do give me full header information though.
by BOOZy
25 Jan 2019 08:51
Forum: 3.x Bugs
Topic: Overzealous double extension filter
Replies: 2
Views: 906

Overzealous double extension filter

Hi All, I often see emails being blocked that trigger the double extension filter that a human viewer can instantly recognize as a false positive. For example: 'itinerary j.doe.pdf' will get filtered. Since both '.doe' and '.pdf' are safe extensions this shouldn't happen. I have manually added a few...
by BOOZy
12 Dec 2018 13:19
Forum: Feature Requests
Topic: Skip greylisting on matching SPF record
Replies: 1
Views: 2670

Skip greylisting on matching SPF record

I'd like to speed up mail delivery from sources that have properly configured SPF records. This would greatly reduce waiting and administration time, especial with mail from Office 365 as Microsoft seems to have a zillion mail servers and their auto balance algorithm conflicts with greylisting in ge...
by BOOZy
24 Sep 2018 07:30
Forum: 3.x Bugs
Topic: mysql overloading system cpu/IO
Replies: 34
Views: 26612

Re: mysql overloading system cpu/IO

And it went away... All by itself.
by BOOZy
21 Sep 2018 14:48
Forum: 3.x Bugs
Topic: mysql overloading system cpu/IO
Replies: 34
Views: 26612

Re: mysql overloading system cpu/IO

And when I/O is low: +-------+-----------+-----------+-------------+---------+------+-------+------------------+----------+ | Id | User | Host | db | Command | Time | State | Info | Progress | +-------+-----------+-----------+-------------+---------+------+-------+------------------+----------+ | 14...
by BOOZy
21 Sep 2018 12:17
Forum: 3.x Bugs
Topic: mysql overloading system cpu/IO
Replies: 34
Views: 26612

Re: mysql overloading system cpu/IO

Ok. It took some time to unpack the mysqladmin line and why it wouldn't work but I got it now. Result: +-------+-----------+-----------+-------------+---------+------+-----------+------------------------------------------------------------------------------------------------------+----------+ | Id |...
by BOOZy
20 Sep 2018 10:48
Forum: 3.x Bugs
Topic: mysql overloading system cpu/IO
Replies: 34
Views: 26612

Re: mysql overloading system cpu/IO

error: 'Access denied for user 'root'@'localhost' (using password: YES)'

Now what? :(
by BOOZy
20 Sep 2018 10:17
Forum: 3.x Bugs
Topic: mysql overloading system cpu/IO
Replies: 34
Views: 26612

Re: mysql overloading system cpu/IO

Since about a week I'm seeing the same thing, MySQL I/O and CPU are really high. My setup is running on VMWare ESXi as well, with 8GB of RAM. ESXi reports that slightly more than 2GB is actively used. One thing I have noticed that it's not constant but with a certain interval. I see 40 minutes of hi...
by BOOZy
13 Jun 2018 10:06
Forum: Feature Requests
Topic: Greylist management improvements
Replies: 0
Views: 3642

Greylist management improvements

I'd like to propose two changes in greylist management: 1 - List 'waiting' by date (newest first) by default 2 - Allow for single click domain/subnet whitelisting Point 2 needs some elaboration. I quite often have problems with domains that do auto-load-balancing; the sending server will be a differ...
by BOOZy
07 Dec 2017 13:39
Forum: Discussion
Topic: RBL check question
Replies: 6
Views: 1953

Re: RBL check question

A developer with too much time on their hands could add an option to specify an incoming relay server, thus making the system aware of the need to process the second to last hop instead of the last.
Other than that you're SOL.
by BOOZy
07 Dec 2017 10:37
Forum: Discussion
Topic: RBL check question
Replies: 6
Views: 1953

Re: RBL check question

Your only option is to cut out the relay server and make EFA the first server that receives email.
This is kind of how mail filtering appliances work in general.
by BOOZy
07 Dec 2017 09:54
Forum: Discussion
Topic: Mailsploit
Replies: 2
Views: 1082

Re: Mailsploit

I reckon it shouldn't be too hard to mitigate this:

1 - Check if the From header contains more than one @
2 - Check if the domains match if there is
3 - Up the spam score if they don't

The logic would be pretty easy, programming the scripts and adding GUI elements is most of the work I gather.
by BOOZy
09 Nov 2017 09:56
Forum: Discussion
Topic: Best way to backup and restore?
Replies: 28
Views: 6372

Re: Best way to backup and restore?

If you're using VMWare, why aren't you using Veeam?
Or the free edition of you can't afford it.
by BOOZy
08 Nov 2017 08:31
Forum: Discussion
Topic: [fixed]Double extension filtering exception
Replies: 2
Views: 1487

Re: Double extension filtering exception

Thanks!
I had to tweak it a bit but eventually I got it to work.

Code: Select all

allow	.\net\.pdf	-	-
by BOOZy
07 Nov 2017 14:02
Forum: Discussion
Topic: Spam getting through with spamassasin score of 0.00
Replies: 6
Views: 2645

Re: Spam getting through with spamassasin score of 0.00

I'm curious about the content of this email message.
If all images are remote, how does it get this big?
Can you post it somewhere as .eml?
by BOOZy
07 Nov 2017 13:55
Forum: Discussion
Topic: [fixed]Double extension filtering exception
Replies: 2
Views: 1487

[fixed]Double extension filtering exception

Hello all. We're having a bit of a problem with the filtering rule for double extensions (eg. .pdf.exe). The rule is a bit too strict. Let me elaborate on this. Our company name is 'Company.net'. Quite often we get attachments -usually PDF- which are auto-generated as companyname.pdf, thus resulting...
by BOOZy
05 Oct 2017 07:06
Forum: 3.x Bugs
Topic: STARTTLS Let's Encrypt bug (and manual fix).
Replies: 3
Views: 1536

Re: STARTTLS Let's Encrypt bug (and manual fix).

That was quick. Thanks!
by BOOZy
04 Oct 2017 13:33
Forum: 3.x Bugs
Topic: STARTTLS Let's Encrypt bug (and manual fix).
Replies: 3
Views: 1536

STARTTLS Let's Encrypt bug (and manual fix).

STARTTLS fails with "4.7.0 TLS not available due to local problem" after running the Let's Encrypt installation. The Let's Encrypt generator script works fine for the webinterface but makes a small error in the Postfix config if the system name contains any capital letters. The generated directory d...