Search found 21 matches
- 19 Feb 2024 05:47
- Forum: How-to
- Topic: How to Setup DomainKeys (DKIM) with Postfix on EFA 4
- Replies: 2
- Views: 25359
Re: How to Setup DomainKeys (DKIM) with Postfix on EFA 4
Hi, How many email domain (mail server) go through EFA? Based on my experience, if you have created and set DKIM, SPF and even DMARC on your Authoritative DNS server, then you don't need to set DKIM on EFA box. Moreover, if you have various email domains that pass through the EFA, then the reputatio...
- 16 Nov 2023 02:45
- Forum: Discussion
- Topic: EFA future Roadmap
- Replies: 8
- Views: 33089
Re: EFA future Roadmap
When I read a news a few months ago, that Rocky, Oracle and OpenSUSE joined OpenELA to develop Enterprise Linux, I thought that this was the most suitable operating system for EFA. https://openela.org I honestly admit that I choose Debian as the OS for EFA in the future, but considering that Debian ...
- 15 Nov 2023 15:55
- Forum: How-to
- Topic: Attempt to hide real filename extension problem
- Replies: 4
- Views: 13446
Re: Attempt to hide real filename extension problem
What about using only one line on your filename.rules.conf: allow \.shp\.xml$ - - (the spaces between the fields must be TAB characters and not SPACES) and delete the others (prevents MailScanner from having problems) CMIIW, if your file is on rar, add that line too on archives.filename.rules.conf
Re: SORBS
Hi, Since i dont know how many SORBS score you have and i assume that your matching rule of SORBS is RCVD_IN_SORBS; Put this on your local.cf header GMAIL_TLD From =~ /(gmail.com)/i describe GMAIL_TLD Gmail Trusted score GMAIL_TLD 0.0 meta CUSTOM_GMAIL_WHLST (GMAIL_TLD + RCVD_IN_SORBS) describe CUST...
- 07 Oct 2022 13:02
- Forum: How-to
- Topic: Enable TLS 1.3 on efa
- Replies: 6
- Views: 1784
Re: Enable TLS 1.3 on efa
Do you mind to tell us how do you setup your EFA Box to your exchange server?
Is that issue of STARTTLS coming from your exchange server or your MUA (user mail client)?
BR
Ary
Is that issue of STARTTLS coming from your exchange server or your MUA (user mail client)?
BR
Ary
- 20 Aug 2022 18:24
- Forum: How-to
- Topic: Limit login to localhost
- Replies: 21
- Views: 33552
Re: Limit login to localhost
Thats answering me, that you open port 587 to the outside and somebody brute force trying to make your EFA Box as SMTP Relay and your secure log is generating error report. Or you open port 587 cause you use authentication level on your mailserver to communicate to your EFA Box for outbound. [snip]...
- 19 Aug 2022 05:29
- Forum: How-to
- Topic: Limit login to localhost
- Replies: 21
- Views: 33552
Re: Limit login to localhost
Okay clear then, If from beginning i knew that you are using outgoing smarthost in front of your EFA Box, i won't continue to argue on this topic. I know that Postfix do not have authentication framework so it use Dovecot SASL (or Cyrus SASL) but i was kept scratch my head, try to understand what th...
- 18 Aug 2022 16:01
- Forum: How-to
- Topic: Limit login to localhost
- Replies: 21
- Views: 33552
Re: Limit login to localhost
Ooo Wow, Thats answering me, that you open port 587 to the outside and somebody brute force trying to make your EFA Box as SMTP Relay and your secure log is generating error report. Or you open port 587 cause you use authentication level on your mailserver to communicate to your EFA Box for outbound...
- 18 Aug 2022 14:06
- Forum: How-to
- Topic: Limit login to localhost
- Replies: 21
- Views: 33552
Re: Limit login to localhost
Thankyou pdwalker, I'm thinking like conventional mail server, Postfix SMTP server uses Dovecot SASL, and this Dovecot SASL Authentication to authenticate/validate POP/IMAP clients. CMIIW is that because the op open port dovecot to the outside on his Efa Box, that is why he saw authentication failur...
- 17 Aug 2022 15:52
- Forum: How-to
- Topic: Limit login to localhost
- Replies: 21
- Views: 33552
Re: Limit login to localhost
Interesting, and please bear with me guys. I dont understand this "dovecot is just acting as the authenticator" to the EFA Box. In my mind it come across of another concept of how to protect EFA Box or secure sent/received email from sentence above, or there is another concept of that? In ...
- 17 Aug 2022 08:27
- Forum: How-to
- Topic: Limit login to localhost
- Replies: 21
- Views: 33552
Re: Limit login to localhost
Just want to make clear here, since the op said that he use EFA as a mail gateway. I use efa pure as a mail gateway (with 8 mailserver behind) and open port to the outside world is based on https://wiki.efa-project.org/doku.php?id=firewall_ports, and for 2 years i've never saw log report like that b...
- 06 Jun 2022 12:16
- Forum: Discussion
- Topic: eFa Filter sudden restarts
- Replies: 18
- Views: 6232
Re: eFa Filter sudden restarts
Thats weird, your unbound cannot probe only to master K.ROOT-SERVERS.NET? What about A,B,C....M.ROOT-SERVERS.NET?
Try to ping K.ROOT-SERVERS.NET on IPv4 193.0.14.129 or IPv6 2001:7fd::1, and see if you can reach that.
And also try to update your unbound root.hints
Try to ping K.ROOT-SERVERS.NET on IPv4 193.0.14.129 or IPv6 2001:7fd::1, and see if you can reach that.
And also try to update your unbound root.hints
- 05 Mar 2022 07:52
- Forum: How-to
- Topic: can't change /etc/MailScanner/reports/en/inline.sig.html
- Replies: 3
- Views: 1016
Re: can't change /etc/MailScanner/reports/en/inline.sig.html
I sometimes edit local.cf (and many more), because of efa's ability to block spam by customizing it.
It's very easy to do file editing using FileZilla or WinSCP, so need root to easily get into it
# sudo passwd root
and enter new password
But please be careful
Regards,
Ary Firman
It's very easy to do file editing using FileZilla or WinSCP, so need root to easily get into it
# sudo passwd root
and enter new password
But please be careful
Regards,
Ary Firman
- 05 Mar 2022 07:20
- Forum: 4.x Bugs
- Topic: Error/Warning performing Mailscanner Lint
- Replies: 5
- Views: 2251
Re: Error/Warning performing Mailscanner Lint
Hi,
Just to make sure......have you entered the correct MaxMind GeoLite2 License Key on MailWatch settings?
regards
Ary Firman
Just to make sure......have you entered the correct MaxMind GeoLite2 License Key on MailWatch settings?
regards
Ary Firman
- 20 Oct 2021 06:43
- Forum: How-to
- Topic: How to prevent EFA to change the "mail from" address when deliver quarantined messages
- Replies: 3
- Views: 4796
Re: How to prevent EFA to change the "mail from" address when deliver quarantined messages
Login to this forum just to say THANK YOU Mail2GoCa.....Didn't know that the config is in web folder
Regards,
Ary Firman
Regards,
Ary Firman
- 12 Sep 2021 08:29
- Forum: How-to
- Topic: Why is this getting through?
- Replies: 6
- Views: 3869
Re: Why is this getting through?
Could you please put in here one of the header & body email from that spam mails?
Btw, you need to look this topic for some hints & tips:
viewtopic.php?t=2416
Btw, you need to look this topic for some hints & tips:
viewtopic.php?t=2416
- 10 Sep 2021 17:42
- Forum: Discussion
- Topic: Too many emails blocked tagged with spam since spamassassin update
- Replies: 6
- Views: 5854
Re: Too many emails blocked tagged with spam since spamassassin update
Put on local.cf eg: score RDNS_NONE 0.0 But like shawn wrote above and i fully agree that "These senders are breaking a basic rule of email that a reverse dns record must be present" What i suggest is just whitelist those senders domain, so another domain that do not have RDNS still get tr...
- 10 Sep 2021 17:32
- Forum: How-to
- Topic: Enforcing inbound DKIM / DMARC
- Replies: 2
- Views: 2779
Re: Enforcing inbound DKIM / DMARC
I suggest that you applied KAM.cf from https://mcgrail.com/downloads/
Then put high score on local.cf eg:
score KAM_DMARC_REJECT 10.0
score KAM_DMARC_QUARANTINE 3.0
Then put high score on local.cf eg:
score KAM_DMARC_REJECT 10.0
score KAM_DMARC_QUARANTINE 3.0
- 14 Feb 2021 11:28
- Forum: 4.x Bugs
- Topic: EFA4 -> Centos7 Error: Packagephp72u
- Replies: 17
- Views: 6958
Re: EFA4 -> Centos7 Error: Packagephp72u
Hello r00tsh3ll, Thank you for your info, yes.....GUI is accessible after systemctl enable php-fpm && systemctl start php-fpm but there is still "Error in the query:" on greylist menu. Fortunately, sqlgrey is still running on background. And also i have flood of notices in /var/log...
- 14 Feb 2021 04:22
- Forum: 4.x Bugs
- Topic: EFA4 -> Centos7 Error: Packagephp72u
- Replies: 17
- Views: 6958
Re: EFA4 -> Centos7 Error: Packagephp72u
Hi Shawn, Don't meant to hijack this topic, but suddenly this morning my efa gui shows: Service Unavailable The server is temporarily unable to service your request due to maintenance downtime or capacity problems. Please try again later. This is the error log i find on /var/log/httpd/ssl_error_log ...
- 04 Sep 2020 14:15
- Forum: Introduction
- Topic: Hello from Indonesia...
- Replies: 1
- Views: 2629
Hello from Indonesia...
I am from Jakarta, Indonesia.
i have implemented this email filter appliance for about 2 months. Wonderful job.....a million thanks to the dev team.
Kind Regards,
Ary Firman
i have implemented this email filter appliance for about 2 months. Wonderful job.....a million thanks to the dev team.
Kind Regards,
Ary Firman