Search found 16 matches

by elfranko
13 Sep 2020 09:57
Forum: How-to
Topic: Limit Outbound recipients
Replies: 1
Views: 237

Limit Outbound recipients

I have an issue, I have tried to search for an answer, but so far come up blank. Scenario: User enters email address and password in a phishing site. Roll on several weeks, and that users email account is used to send say 1000 emails with 1000 recipients. I want to be able to tell EFA that any more ...
by elfranko
13 Sep 2020 09:41
Forum: How-to
Topic: SMTP Logs
Replies: 3
Views: 524

Re: SMTP Logs

Download Putty, or your go to SSH tool. Log in (If you get to the menu press 1 for shell) the logs are in /var/log I use tail -f -n 300/var/log/maillog | grep "email@example.com" -f keeps the log rolling. -n 300 also loads the last x number of lines. And finally within the quotes is what i am lookin...
by elfranko
29 Mar 2020 11:03
Forum: How-to
Topic: eFA4 - root pwd changed or?
Replies: 9
Views: 1605

Re: eFA4 - root pwd changed or?

I wanted to upload some files to the box, and admin user was denied access to the /etc/postfix/ssl folder Using WinSCP My work around was to go into users in webmin and remove the tick from "Login temporarily disabled" from the root user. This allowed me to do what I needed to do. Hope this helps Fr...
by elfranko
03 Oct 2019 07:28
Forum: How-to
Topic: Converting a URL
Replies: 0
Views: 10225

Converting a URL

Hi, I currently have an issue where we get many emails with urls in. The general gist of them is Hi, Please go to the following url www.obviously.bogus to upgrade your email to the new corporate email entering your credentials when asked. Sadly there are still some users that blindly click on absolu...
by elfranko
03 Oct 2019 07:20
Forum: How-to
Topic: Disable TLS v1.0 & 1.1
Replies: 3
Views: 10942

Re: Disable TLS v1.0 & 1.1

Just checking, is that for disabling SSL etc on the website, what were you using to test. The information I posted was just for disabling the protocols on port 25 (Postfix) I used a linux script called testssl to check https://testssl.sh/ and https://www.ssllabs.com/ssltest/ for testing websites Hen...
by elfranko
20 Sep 2019 06:59
Forum: Discussion
Topic: Smarthost with TLS
Replies: 5
Views: 5642

Re: Smarthost with TLS

I use Exchange 2010 and then send it to EFA and that box does all the DKIM and TLS - Works OK Although I have 3 EFA Boxes. 2 to receive email, and one to send it out. The reason I did it that way was as follows. Mail was coming from Exchange to the outbound EFA and adding a disclaimer, and signing w...
by elfranko
02 Mar 2019 15:15
Forum: 3.x Bugs
Topic: SQLgrey encountered an SQL error ...
Replies: 28
Views: 50601

Re: SQLgrey encountered an SQL error ...

The massive amount ( 147148 ) off dcc logiles show the dcc cleanup cronjob in not in the daily cron, but in the montly cron. You need to move the montly dcc cronjob to the daily cron. to remove most logfiles exec: find /var/dcc/log -mtime +1 -print | xargs rm -f info https://forum.efa-project.org/v...
by elfranko
02 Mar 2019 13:31
Forum: 3.x Bugs
Topic: SQLgrey encountered an SQL error ...
Replies: 28
Views: 50601

Re: SQLgrey encountered an SQL error ...

Will do, Yes I have been getting them - to be fair the box with the errors is probably 100 times busier than the one that doesn't. If I recall correctly it happened after an update. It's quite random and more than anything it's just annoying - the volume of email it generates One email contains: SQL...
by elfranko
02 Mar 2019 12:52
Forum: How-to
Topic: Disable TLS v1.0 & 1.1
Replies: 3
Views: 10942

Disable TLS v1.0 & 1.1

Hi, We have been using these for a little while, and during a routine penetration test we were advised about still having Triple DES and also having TLS v1 & 1.1 enabled. So I took to google to find out, and not a lot was evident. However I have managed to disable Triple Des and also set my EFA to o...
by elfranko
02 Mar 2019 12:25
Forum: 3.x Bugs
Topic: SQLgrey encountered an SQL error ...
Replies: 28
Views: 50601

Re: SQLgrey encountered an SQL error ...

I have been having these for months. - only on one of the two EFA's I use. Can sometimes get 60+ at a time.

If you want some logs I can probably find some :)
by elfranko
03 Oct 2018 13:44
Forum: How-to
Topic: Regex, attachments and Spam
Replies: 13
Views: 3982

Re: Regex, attachments and Spam

I am the installer of the box, and I can confirm Recursion is enabled. cat /etc/EFA-Config returns RECURSION:ENABLED Here is a set of headers from an email: X-Greylist: from auto-whitelisted by SQLgrey-1.8.0 Received: from h2701864.stratoserver.net (unknown [85.214.33.48]) (using TLSv1.2 with cipher...
by elfranko
24 Sep 2018 13:34
Forum: How-to
Topic: Releasing blocked files
Replies: 3
Views: 1559

Re: Releasing blocked files

This works, but I have hit on a small issue. it releases the message and forwards it as an attachment just called message. Is there any way I can force it to add .eml to the end of it so it can be opened in Outlook. I have tried adding a couple of entries to the rules.conf rename to * *.eml or Vice ...
by elfranko
20 Sep 2018 11:32
Forum: How-to
Topic: Releasing blocked files
Replies: 3
Views: 1559

Re: Releasing blocked files

Just to confirm, all the mailscanner settings were in and as described on the linked page. I think this is the bit that fixed it: Also, are you using the following in /var/www/html/mailscanner/conf.php to send content as an attachment? (required for attachments)... define('QUARANTINE_USE_SENDMAIL', ...
by elfranko
19 Sep 2018 08:22
Forum: How-to
Topic: Releasing blocked files
Replies: 3
Views: 1559

Releasing blocked files

Hi I have created a blocked file rule in filenames.rules.conf deny \.doc$ Stop Older Office Docs coming in Older Office files in emails deny \.xls$ Stop Older Office Docs coming in Older Office files in emails deny \.ppt$ Stop Older Office Docs coming in Older Office files in emails deny \.pub$ Stop...
by elfranko
04 Sep 2018 06:47
Forum: How-to
Topic: Filtering based on both subject and recipient
Replies: 3
Views: 1430

Re: Filtering based on both subject and recipient

Prior to using the EFA we used a product from McAfee. A decision was made to swap - prior to this the setup was all the printers were set to use an internal relay and then forward on to the outbound box. The outbound box is now the EFA - so now it is MFD to Relay, to EFA, which would then either rou...
by elfranko
03 Sep 2018 08:37
Forum: How-to
Topic: Filtering based on both subject and recipient
Replies: 3
Views: 1430

Filtering based on both subject and recipient

Hi, I am relatively new to EFA, and I have hit upon a small problem I am not sure how to solve. Scenario: We have MFD Printers, they can scan to email. This is OK but we don't want users to be able to scan a document and send it straight out. (for data loss) eg: Scan a pdf- the printer sends it from...