Search found 2805 matches

by shawniverson
18 Jul 2019 09:26
Forum: Introduction
Topic: Hello friends!
Replies: 1
Views: 49

Re: Hello friends!

:text-welcomewave:
by shawniverson
14 Jul 2019 14:17
Forum: 3.x How-to
Topic: eFa server failing PCI Compliance scan
Replies: 5
Views: 450

Re: eFa server failing PCI Compliance scan

Even the most recent vulnerability, CVE-2017-10140, has been fixed. v4 is running postfix version 3.3.0.

http://www.postfix.org/announcements/postfix-3.2.2.html
by shawniverson
14 Jul 2019 14:10
Forum: 3.x How-to
Topic: eFa server failing PCI Compliance scan
Replies: 5
Views: 450

Re: eFa server failing PCI Compliance scan

Many of these look like false positives based on the smtpd banner (?) and postfix has long since fixed these issues. For example... CVE-2009-2939 says that postfix has write access to pids in /var/spool/postfix/pid, but this is not the case. -rw-------. 1 root root 0 Jan 19 22:05 inet.smtp -rw------...
by shawniverson
11 Jul 2019 12:25
Forum: Discussion
Topic: qq.com and icu domains
Replies: 1
Views: 762

Re: qq.com and icu domains

If you are confident you will never receive legit mail on these domains, absolutely.
by shawniverson
10 Jul 2019 12:11
Forum: Discussion
Topic: Clamd update kills my EFA
Replies: 13
Views: 3220

Re: Clamd update kills my EFA

Code: Select all

rm /var/lib/clamav/*yar
rm /var/lib/clamav/*yara
by shawniverson
10 Jul 2019 10:20
Forum: 4.x Testing
Topic: Releasing mail from Quarantine
Replies: 3
Views: 729

Re: Releasing mail from Quarantine

Yes.

/var/www/html/mailscanner/conf.php

Code: Select all

define('QUARANTINE_USE_SENDMAIL', true);
by shawniverson
10 Jul 2019 10:18
Forum: 3.x How-to
Topic: eFa server failing PCI Compliance scan
Replies: 5
Views: 450

Re: eFa server failing PCI Compliance scan

Plan on moving to v4. :dance:
by shawniverson
09 Jul 2019 08:58
Forum: 4.x Testing
Topic: Something updated 8-Jul 8am GMT+10, now it's broken
Replies: 3
Views: 554

Re: Something updated 8-Jul 8am GMT+10, now it's broken

yum update

Yes, a production repo for v4 will be used for the release.
by shawniverson
08 Jul 2019 21:09
Forum: 4.x Testing
Topic: Something updated 8-Jul 8am GMT+10, now it's broken
Replies: 3
Views: 554

Re: Something updated 8-Jul 8am GMT+10, now it's broken

Force another update. That should fix your issue.

You need the following packages at these versions:

eFa-4.0.0-64.eFa.el7.x86_64
MailScanner-5.1.4-1.efa.2.noarch
by shawniverson
08 Jul 2019 09:49
Forum: 4.x Testing
Topic: Logwatch "unmatched" postfix messages
Replies: 1
Views: 556

Re: Logwatch "unmatched" postfix messages

So I installed logwatch and am seeing the same behavior. I'll research this. It seems that logwatch is not aware of the way mail is flowing through postfix via mailscanner.
by shawniverson
08 Jul 2019 08:43
Forum: 4.x Testing
Topic: eFa 4 - No LDAP Support in Postfix?
Replies: 1
Views: 517

Re: eFa 4 - No LDAP Support in Postfix?

postfix is compiled with ldap support in eFa4, I believe.
by shawniverson
06 Jul 2019 14:36
Forum: Discussion
Topic: http://www.backscatterer.org
Replies: 5
Views: 595

Re: http://www.backscatterer.org

Be sure to check that the ip range that eFa is not sending out bad smtp traffic as well, and make sure Notify Senders is off in MailScanner or set to only notify on your local domains with a ruleset.
by shawniverson
06 Jul 2019 14:34
Forum: 3.x Bugs
Topic: MailWatch does not log messages
Replies: 1
Views: 483

Re: MailWatch does not log messages

v4 does not have this issue, which I'm working on some more today :)
by shawniverson
06 Jul 2019 14:32
Forum: 3.x How-to
Topic: Postfix/TLS certificate requirements?
Replies: 1
Views: 427

Re: Postfix/TLS certificate requirements?

Hi Matt,

SMTP does not require a CA cert, except in special cases. You would probably be better off using a self-signed cert. My guess is that the 4096 bits is not playing nice with postfix.
by shawniverson
06 Jul 2019 14:30
Forum: Introduction
Topic: SMTP Authentication
Replies: 1
Views: 768

Re: SMTP Authentication

:text-welcomewave:

Maybe you need to forward 587 to your mail server, if it is handling authenticated requests?
by shawniverson
01 Jul 2019 20:32
Forum: Discussion
Topic: Greylist vs EFA vs spf.protection.outlook.com
Replies: 3
Views: 211

Re: Greylist vs EFA vs spf.protection.outlook.com

In the /etc/sqlgrey folder are the following files:

Code: Select all

clients_fqdn_whitelist.local
clients_ip_whitelist.local
Add protection.outlook.com to the clients_fqdn_whitelist.local and then run update_sqlgrey_config
by shawniverson
01 Jul 2019 16:58
Forum: Discussion
Topic: Additional ClamAV signatures?
Replies: 1
Views: 166

Re: Additional ClamAV signatures?

I would guess you could download them and drop them into /var/lib/clamav periodically.
by shawniverson
27 Jun 2019 17:37
Forum: Introduction
Topic: Hello from Philippines
Replies: 1
Views: 236

Re: Hello from Philippines

:text-welcomewave:
by shawniverson
22 Jun 2019 08:19
Forum: 4.x Testing
Topic: Fresh install, failing with virus scanning
Replies: 6
Views: 970

Re: Fresh install, failing with virus scanning

How much memory do you have?
by shawniverson
21 Jun 2019 09:02
Forum: Introduction
Topic: Hello From Rainy Indiana
Replies: 1
Views: 192

Re: Hello From Rainy Indiana

:text-welcomewave:
by shawniverson
13 Jun 2019 09:03
Forum: 4.x Testing
Topic: Quarantine Reports for non-added users?
Replies: 5
Views: 474

Re: Quarantine Reports for non-added users?

Thanks, so I assume that means there also isn't a way to send reports to any address the system sees that get's spam? It is something I am working toward. The problem is that we need recipient address verification or some form of check for this to work reliably. Otherwise, bogus user accounts and/o...
by shawniverson
13 Jun 2019 08:59
Forum: Introduction
Topic: Fail2ban on EFA MENU
Replies: 6
Views: 876

Re: Fail2ban on EFA MENU

Yep :D
by shawniverson
13 Jun 2019 08:59
Forum: Discussion
Topic: Resending legit emails
Replies: 3
Views: 278

Re: Resending legit emails

As long as you are storing non-spam emails, you can re-release those too from those sections.