Search found 21 matches

by Aryfir
19 Feb 2024 05:47
Forum: How-to
Topic: How to Setup DomainKeys (DKIM) with Postfix on EFA 4
Replies: 2
Views: 13059

Re: How to Setup DomainKeys (DKIM) with Postfix on EFA 4

Hi, How many email domain (mail server) go through EFA? Based on my experience, if you have created and set DKIM, SPF and even DMARC on your Authoritative DNS server, then you don't need to set DKIM on EFA box. Moreover, if you have various email domains that pass through the EFA, then the reputatio...
by Aryfir
16 Nov 2023 02:45
Forum: Discussion
Topic: EFA future Roadmap
Replies: 8
Views: 27590

Re: EFA future Roadmap

When I read a news a few months ago, that Rocky, Oracle and OpenSUSE joined OpenELA to develop Enterprise Linux, I thought that this was the most suitable operating system for EFA. https://openela.org I honestly admit that I choose Debian as the OS for EFA in the future, but considering that Debian ...
by Aryfir
15 Nov 2023 15:55
Forum: How-to
Topic: Attempt to hide real filename extension problem
Replies: 4
Views: 10867

Re: Attempt to hide real filename extension problem

What about using only one line on your filename.rules.conf: allow \.shp\.xml$ - - (the spaces between the fields must be TAB characters and not SPACES) and delete the others (prevents MailScanner from having problems) CMIIW, if your file is on rar, add that line too on archives.filename.rules.conf
by Aryfir
25 Mar 2023 03:58
Forum: How-to
Topic: SORBS
Replies: 3
Views: 1343

Re: SORBS

Hi, Since i dont know how many SORBS score you have and i assume that your matching rule of SORBS is RCVD_IN_SORBS; Put this on your local.cf header GMAIL_TLD From =~ /(gmail.com)/i describe GMAIL_TLD Gmail Trusted score GMAIL_TLD 0.0 meta CUSTOM_GMAIL_WHLST (GMAIL_TLD + RCVD_IN_SORBS) describe CUST...
by Aryfir
07 Oct 2022 13:02
Forum: How-to
Topic: Enable TLS 1.3 on efa
Replies: 6
Views: 1721

Re: Enable TLS 1.3 on efa

Do you mind to tell us how do you setup your EFA Box to your exchange server?

Is that issue of STARTTLS coming from your exchange server or your MUA (user mail client)?

BR
Ary
by Aryfir
20 Aug 2022 18:24
Forum: How-to
Topic: Limit login to localhost
Replies: 21
Views: 32117

Re: Limit login to localhost

Thats answering me, that you open port 587 to the outside and somebody brute force trying to make your EFA Box as SMTP Relay and your secure log is generating error report. Or you open port 587 cause you use authentication level on your mailserver to communicate to your EFA Box for outbound. [snip]...
by Aryfir
19 Aug 2022 05:29
Forum: How-to
Topic: Limit login to localhost
Replies: 21
Views: 32117

Re: Limit login to localhost

Okay clear then, If from beginning i knew that you are using outgoing smarthost in front of your EFA Box, i won't continue to argue on this topic. I know that Postfix do not have authentication framework so it use Dovecot SASL (or Cyrus SASL) but i was kept scratch my head, try to understand what th...
by Aryfir
18 Aug 2022 16:01
Forum: How-to
Topic: Limit login to localhost
Replies: 21
Views: 32117

Re: Limit login to localhost

Ooo Wow, Thats answering me, that you open port 587 to the outside and somebody brute force trying to make your EFA Box as SMTP Relay and your secure log is generating error report. Or you open port 587 cause you use authentication level on your mailserver to communicate to your EFA Box for outbound...
by Aryfir
18 Aug 2022 14:06
Forum: How-to
Topic: Limit login to localhost
Replies: 21
Views: 32117

Re: Limit login to localhost

Thankyou pdwalker, I'm thinking like conventional mail server, Postfix SMTP server uses Dovecot SASL, and this Dovecot SASL Authentication to authenticate/validate POP/IMAP clients. CMIIW is that because the op open port dovecot to the outside on his Efa Box, that is why he saw authentication failur...
by Aryfir
17 Aug 2022 15:52
Forum: How-to
Topic: Limit login to localhost
Replies: 21
Views: 32117

Re: Limit login to localhost

Interesting, and please bear with me guys. I dont understand this "dovecot is just acting as the authenticator" to the EFA Box. In my mind it come across of another concept of how to protect EFA Box or secure sent/received email from sentence above, or there is another concept of that? In ...
by Aryfir
17 Aug 2022 08:27
Forum: How-to
Topic: Limit login to localhost
Replies: 21
Views: 32117

Re: Limit login to localhost

Just want to make clear here, since the op said that he use EFA as a mail gateway. I use efa pure as a mail gateway (with 8 mailserver behind) and open port to the outside world is based on https://wiki.efa-project.org/doku.php?id=firewall_ports, and for 2 years i've never saw log report like that b...
by Aryfir
06 Jun 2022 12:16
Forum: Discussion
Topic: eFa Filter sudden restarts
Replies: 18
Views: 5753

Re: eFa Filter sudden restarts

Thats weird, your unbound cannot probe only to master K.ROOT-SERVERS.NET? What about A,B,C....M.ROOT-SERVERS.NET?

Try to ping K.ROOT-SERVERS.NET on IPv4 193.0.14.129 or IPv6 2001:7fd::1, and see if you can reach that.

And also try to update your unbound root.hints
by Aryfir
05 Mar 2022 07:52
Forum: How-to
Topic: can't change /etc/MailScanner/reports/en/inline.sig.html
Replies: 3
Views: 994

Re: can't change /etc/MailScanner/reports/en/inline.sig.html

I sometimes edit local.cf (and many more), because of efa's ability to block spam by customizing it.

It's very easy to do file editing using FileZilla or WinSCP, so need root to easily get into it

# sudo passwd root
and enter new password

But please be careful

Regards,
Ary Firman
by Aryfir
05 Mar 2022 07:20
Forum: 4.x Bugs
Topic: Error/Warning performing Mailscanner Lint
Replies: 5
Views: 2139

Re: Error/Warning performing Mailscanner Lint

Hi,

Just to make sure......have you entered the correct MaxMind GeoLite2 License Key on MailWatch settings?

regards
Ary Firman
by Aryfir
20 Oct 2021 06:43
Forum: How-to
Topic: How to prevent EFA to change the "mail from" address when deliver quarantined messages
Replies: 3
Views: 4694

Re: How to prevent EFA to change the "mail from" address when deliver quarantined messages

Login to this forum just to say THANK YOU Mail2GoCa.....Didn't know that the config is in web folder

Regards,
Ary Firman
by Aryfir
12 Sep 2021 08:29
Forum: How-to
Topic: Why is this getting through?
Replies: 6
Views: 3778

Re: Why is this getting through?

Could you please put in here one of the header & body email from that spam mails?

Btw, you need to look this topic for some hints & tips:
viewtopic.php?t=2416
by Aryfir
10 Sep 2021 17:42
Forum: Discussion
Topic: Too many emails blocked tagged with spam since spamassassin update
Replies: 6
Views: 5728

Re: Too many emails blocked tagged with spam since spamassassin update

Put on local.cf eg: score RDNS_NONE 0.0 But like shawn wrote above and i fully agree that "These senders are breaking a basic rule of email that a reverse dns record must be present" What i suggest is just whitelist those senders domain, so another domain that do not have RDNS still get tr...
by Aryfir
10 Sep 2021 17:32
Forum: How-to
Topic: Enforcing inbound DKIM / DMARC
Replies: 2
Views: 2731

Re: Enforcing inbound DKIM / DMARC

I suggest that you applied KAM.cf from https://mcgrail.com/downloads/

Then put high score on local.cf eg:
score KAM_DMARC_REJECT 10.0
score KAM_DMARC_QUARANTINE 3.0
by Aryfir
14 Feb 2021 11:28
Forum: 4.x Bugs
Topic: EFA4 -> Centos7 Error: Packagephp72u
Replies: 17
Views: 6856

Re: EFA4 -> Centos7 Error: Packagephp72u

Hello r00tsh3ll, Thank you for your info, yes.....GUI is accessible after systemctl enable php-fpm && systemctl start php-fpm but there is still "Error in the query:" on greylist menu. Fortunately, sqlgrey is still running on background. And also i have flood of notices in /var/log...
by Aryfir
14 Feb 2021 04:22
Forum: 4.x Bugs
Topic: EFA4 -> Centos7 Error: Packagephp72u
Replies: 17
Views: 6856

Re: EFA4 -> Centos7 Error: Packagephp72u

Hi Shawn, Don't meant to hijack this topic, but suddenly this morning my efa gui shows: Service Unavailable The server is temporarily unable to service your request due to maintenance downtime or capacity problems. Please try again later. This is the error log i find on /var/log/httpd/ssl_error_log ...
by Aryfir
04 Sep 2020 14:15
Forum: Introduction
Topic: Hello from Indonesia...
Replies: 1
Views: 2600

Hello from Indonesia...

I am from Jakarta, Indonesia.

i have implemented this email filter appliance for about 2 months. Wonderful job.....a million thanks to the dev team.

Kind Regards,

Ary Firman