efa-project.org

Hi,
I never gave SELinux a thought, but I do now vaguely remember having to do something like that when I set up the EFA 3.

Upshot being:
Disable SELinux
Reboot
Test
Test successful
(Although I didn't have the files listed like your example)

[root@smtp domain.uk]# ll
total 16
-rw-------. 1 ...

Before I start, I have firstly already setup DKIM on the old EFA 3 and 4 boxes we have used. And before I realised there was an EFA 5 I have built an Ubuntu Box and installed Postfix / opendkim from scratch (This is currently doing my signing as my old EFA box threw its hand in.
(Which isn't the ...

To set up razor the appliance needs to access the internet using port TCP 2703
The only way you know it hasn't worked is the error message in the original post.

Once I enabled outbound access for TCP/2703 on the firewall it was a happy machine.

The only other thing I would add is that for many the ...

Interestingly it is getting stopped at the firewall.
It is in a rule "IP to Any service and any destination allow" towards the top of the ruleset
Yet it is hitting the deny all last rule - with a layer 7 deny rule for the application cloudmark-desktop using port 2703

so I will investigate further ...

So my lab EFA set up with no apparent issue.
Next is try and work out why the production test failed.

TIA
elfranko

Hi,

It's been a while since I was here, as my appliances just work. However with the impending demise of Centos 7 I have looked at upgrading my appliances.
Just in case anyone else has encountered this and it is straightforward and I have missed something obvious:
I am getting an "error ...

Hi,
I have an issue, that I want to try and get rid of.
Someone has signed up to a mailing list, and subsequently moved on. we get emails to them sent from a noreply@mailinglist.com
and the NDR for these get stuck in our outgoing queue.

So i'd like to be able to create a rule that says any email to ...

This may be too much to ask, but if anyone is willing to perform a dump on their sqlgrey database or allow a remote session, please let me know. I'm having a hard time reproducing the issue in my environment because I'm running on CentOS 8 and my CentOS 7 builds have an emtpy sqlgrey database. If ...

I had this error, but did nothing and now I can log in again. Just have a small issue with GreyListing

ElFranko

I have an issue, I have tried to search for an answer, but so far come up blank.
Scenario:
User enters email address and password in a phishing site.
Roll on several weeks, and that users email account is used to send say 1000 emails with 1000 recipients.
I want to be able to tell EFA that any more ...

Download Putty, or your go to SSH tool.
Log in (If you get to the menu press 1 for shell)
the logs are in /var/log
I use tail -f -n 300/var/log/maillog | grep "email@example.com"
-f keeps the log rolling.
-n 300 also loads the last x number of lines.
And finally within the quotes is what i am ...

I wanted to upload some files to the box, and admin user was denied access to the /etc/postfix/ssl folder Using WinSCP
My work around was to go into users in webmin and remove the tick from "Login temporarily disabled" from the root user.
This allowed me to do what I needed to do.

Hope this helps ...

Hi,
I currently have an issue where we get many emails with urls in.

The general gist of them is

Hi,
Please go to the following url www.obviously.bogus to upgrade your email to the new corporate email entering your credentials when asked.

Sadly there are still some users that blindly click on ...

Just checking, is that for disabling SSL etc on the website, what were you using to test. The information I posted was just for disabling the protocols on port 25 (Postfix)
I used a linux script called testssl to check https://testssl.sh/ and https://www.ssllabs.com/ssltest/ for testing websites ...

I use Exchange 2010 and then send it to EFA and that box does all the DKIM and TLS - Works OK
Although I have 3 EFA Boxes. 2 to receive email, and one to send it out.
The reason I did it that way was as follows.
Mail was coming from Exchange to the outbound EFA and adding a disclaimer, and signing ...

The massive amount ( 147148 ) off dcc logiles show the dcc cleanup cronjob in not in the daily cron, but in the montly cron.

You need to move the montly dcc cronjob to the daily cron.

to remove most logfiles exec: find /var/dcc/log -mtime +1 -print | xargs rm -f
info https://forum.efa-project ...

Will do, Yes I have been getting them - to be fair the box with the errors is probably 100 times busier than the one that doesn't. If I recall correctly it happened after an update. It's quite random and more than anything it's just annoying - the volume of email it generates
One email contains ...

Hi,
We have been using these for a little while, and during a routine penetration test we were advised about still having Triple DES and also having TLS v1 & 1.1 enabled.
So I took to google to find out, and not a lot was evident. However I have managed to disable Triple Des and also set my EFA to ...

I have been having these for months. - only on one of the two EFA's I use. Can sometimes get 60+ at a time.

If you want some logs I can probably find some

I am the installer of the box, and I can confirm Recursion is enabled.

cat /etc/EFA-Config
returns
RECURSION:ENABLED

Here is a set of headers from an email:
X-Greylist: from auto-whitelisted by SQLgrey-1.8.0
Received: from h2701864.stratoserver.net (unknown [85.214.33.48])
(using TLSv1.2 ...

This works, but I have hit on a small issue. it releases the message and forwards it as an attachment just called message. Is there any way I can force it to add .eml to the end of it so it can be opened in Outlook.

I have tried adding a couple of entries to the rules.conf

rename to * *.eml
or ...

Just to confirm, all the mailscanner settings were in and as described on the linked page.

I think this is the bit that fixed it:
Also, are you using the following in /var/www/html/mailscanner/conf.php to send content as an attachment? (required for attachments)...

define('QUARANTINE_USE ...

Hi
I have created a blocked file rule in filenames.rules.conf
deny \.doc$ Stop Older Office Docs coming in Older Office files in emails
deny \.xls$ Stop Older Office Docs coming in Older Office files in emails
deny \.ppt$ Stop Older Office Docs coming in Older Office files in emails
deny \.pub ...

Prior to using the EFA we used a product from McAfee. A decision was made to swap - prior to this the setup was all the printers were set to use an internal relay and then forward on to the outbound box.
The outbound box is now the EFA - so now it is MFD to Relay, to EFA, which would then either ...

Hi,
I am relatively new to EFA, and I have hit upon a small problem I am not sure how to solve.
Scenario:
We have MFD Printers, they can scan to email. This is OK but we don't want users to be able to scan a document and send it straight out. (for data loss)
eg: Scan a pdf- the printer sends it ...