you need to add the sending server to mynetworks in postfix main.cf, however I believe that it only accepts IP addresses, not hostnames, so you might need to write a script that updates the mynetworks section every time it detects a change in IP address for your host.
http://www.postfix.org/BASIC ...
Search found 26 matches
- 22 Dec 2023 09:57
- Forum: Discussion
- Topic: Problem Postfix cannot recive from smarthost emails
- Replies: 2
- Views: 5480
- 22 Dec 2023 09:44
- Forum: Discussion
- Topic: Is it possible?
- Replies: 1
- Views: 6864
Re: Is it possible?
There is a technique that has been exploited recently where messages can be bundled and one sneaks through.
There should be an update for postfix to catch this soon.
Also make sure that there is no way that someone can send mail directly to your mailserver from the internet, bypassing the eFa ...
There should be an update for postfix to catch this soon.
Also make sure that there is no way that someone can send mail directly to your mailserver from the internet, bypassing the eFa ...
- 22 Dec 2023 09:40
- Forum: Discussion
- Topic: How can i limit maximum messages / day ?
- Replies: 5
- Views: 48236
Re: How can i limit maximum messages / day ?
I'm not sure that this is a good idea even if it was possible.
Why would you want to do this?
Why would you want to do this?
- 22 Dec 2023 09:37
- Forum: Discussion
- Topic: EFA incorrect hostname
- Replies: 1
- Views: 6973
Re: EFA incorrect hostname
This is how I set the hostname in my (not eFa) build script on Debian 12.
This should be pretty close to working on RHEL clones
# Set Hostname etc.
hostnamectl set-hostname $FQDN
sleep 5
HN=$(hostname -s)
MYDOMAIN=$(hostname -d)
MYIP=$(hostname -I)
# Rebuild the hosts file
echo "127.0.0.1 ...
This should be pretty close to working on RHEL clones
# Set Hostname etc.
hostnamectl set-hostname $FQDN
sleep 5
HN=$(hostname -s)
MYDOMAIN=$(hostname -d)
MYIP=$(hostname -I)
# Rebuild the hosts file
echo "127.0.0.1 ...
- 30 Nov 2023 13:40
- Forum: Feature Requests
- Topic: Rocky Linux 8
- Replies: 17
- Views: 176197
Re: Rocky Linux 8
Honestly, I'd do a parallel install, then cut over... That migration sounds like it's way too much work...goldengate wrote: 18 Nov 2023 00:00 I have been idly considering how to migrate our small efa host from CentOS 7 to Rocky 8.
- 09 Nov 2023 16:39
- Forum: Feature Requests
- Topic: Rocky Linux 8
- Replies: 17
- Views: 176197
Re: Rocky Linux 8
Well Debian 12 works great, but what I have ended up with doesn't really resemble ESVA or EFA.
No Mailwatch, No MailScanner, No Quarantine, No WebMin, No Greylisting, no MySQL, no GUI...
It's a distributed system with the capability to have many parallel nodes so pretty scalable with no SPOF.
No Mailwatch, No MailScanner, No Quarantine, No WebMin, No Greylisting, no MySQL, no GUI...
It's a distributed system with the capability to have many parallel nodes so pretty scalable with no SPOF.
- 26 Oct 2023 11:35
- Forum: How-to
- Topic: How to filter ever changing subdomains
- Replies: 9
- Views: 27353
Re: How to filter ever changing subdomains
That'll work 

- 25 Oct 2023 16:15
- Forum: How-to
- Topic: How to filter ever changing subdomains
- Replies: 9
- Views: 27353
Re: How to filter ever changing subdomains
Frustrating...
The domains and senders usually end up on the realtime (paid) lists fairly quickly.
I'd suggest rather than blocking the domains, create a custom spamassassin rule that scores messages from those domains quite high - like 4.0 so they are at an immediate disadvantage. Anything minor ...
The domains and senders usually end up on the realtime (paid) lists fairly quickly.
I'd suggest rather than blocking the domains, create a custom spamassassin rule that scores messages from those domains quite high - like 4.0 so they are at an immediate disadvantage. Anything minor ...
- 25 Oct 2023 16:02
- Forum: Discussion
- Topic: efa in the cloud
- Replies: 4
- Views: 29484
Re: efa in the cloud
I'm kind of over hosting stuff on Azure. For quick tests I tend to fire up a local VM. If I need anything long term I add another VPS from my VPS provider, and if it's just a quick test that needs full inbound internet connectivity, then I will fire up an Azure VM for the few hours that I need it ...
- 25 Oct 2023 15:47
- Forum: Discussion
- Topic: EFA future Roadmap
- Replies: 8
- Views: 43401
Re: EFA future Roadmap
I'd suggest keeping it in the same family - stream 9 and rocky 9 are pretty much identical, but another distro family is always going to be a problem when there are as many moving parts as EFA. Trust me - I tried and failed miserably porting to Debian 12 Bookworm. MailScanner really did not want to ...
- 25 Oct 2023 15:39
- Forum: 4.x Bugs
- Topic: DKIM issue
- Replies: 6
- Views: 49539
Re: DKIM issue
In that case you can create a file with extension .cf in /etc/spamassassin and put a line like this in it so that spamassassin ignores your internal server.
Code: Select all
trusted_networks 12.34.56.78 #a.trusted.sender
- 25 Oct 2023 12:56
- Forum: 4.x Bugs
- Topic: DKIM issue
- Replies: 6
- Views: 49539
Re: DKIM issue
That's correct Shawn. I have an override score to 0.0 for that SpamAssassin rule
- 25 Oct 2023 12:50
- Forum: How-to
- Topic: How to filter ever changing subdomains
- Replies: 9
- Views: 27353
Re: How to filter ever changing subdomains
The commercial RBLs have a new domains filter.
You are unlikely to see legit mail from these scam sub domains anyway
You are unlikely to see legit mail from these scam sub domains anyway
- 25 Oct 2023 12:47
- Forum: How-to
- Topic: Anti-phishing tool
- Replies: 1
- Views: 3721
Re: Anti-phishing tool
You can add RBLs and other feeds, including non-standard ClamAV definitions.
If you are interested, I'm looking for beta testers for free on my commercial platform. I need to ad volume of real mail to fine-tune the platform and discover capacity and usability limits.
The platform is not based on ...
If you are interested, I'm looking for beta testers for free on my commercial platform. I need to ad volume of real mail to fine-tune the platform and discover capacity and usability limits.
The platform is not based on ...
- 25 Oct 2023 12:40
- Forum: How-to
- Topic: memory upgrade
- Replies: 3
- Views: 5177
Re: memory upgrade
Increase the number of children
- 15 Sep 2023 19:25
- Forum: How-to
- Topic: Detecting Quishing
- Replies: 0
- Views: 61035
Detecting Quishing
Here's a tricky one...
Does anyone know of a plugin or method for detecting QR codes in emails and if they are malicious or not (i guess the URL needs to be extracted and checked against the known phish/scam sites).
There is software that can read the QRcodes like zbarimg (in zbar-tools package in ...
Does anyone know of a plugin or method for detecting QR codes in emails and if they are malicious or not (i guess the URL needs to be extracted and checked against the known phish/scam sites).
There is software that can read the QRcodes like zbarimg (in zbar-tools package in ...
- 15 Sep 2023 05:52
- Forum: Feature Requests
- Topic: EFA(5)/Debian
- Replies: 10
- Views: 101190
Re: EFA(5)/Debian
So... Where to start...
After a few false starts and some late nights I have what I think is a good foundation.
I tried and failed with MailScanner - I don't think the problem is with MailScanner itself, but a lack of stability in perl modules, and perhaps MailScanner has kind of been superseded as ...
After a few false starts and some late nights I have what I think is a good foundation.
I tried and failed with MailScanner - I don't think the problem is with MailScanner itself, but a lack of stability in perl modules, and perhaps MailScanner has kind of been superseded as ...
- 07 Sep 2023 14:26
- Forum: 4.x Bugs
- Topic: DKIM broken since today
- Replies: 2
- Views: 21114
Re: DKIM broken since today
Not much help, but DKIM shouldn't be looking at anything except the headers...
Is it the opendkim milter or is it MailScanner/spamassassin that's killing the message?
I guess if you're seeing it in Mailwatch, then it's not the milter because that would kill the message before it hits MailScanner...
Is it the opendkim milter or is it MailScanner/spamassassin that's killing the message?
I guess if you're seeing it in Mailwatch, then it's not the milter because that would kill the message before it hits MailScanner...
- 03 Sep 2023 21:20
- Forum: Feature Requests
- Topic: EFA(5)/Debian
- Replies: 10
- Views: 101190
Re: EFA(5)/Debian
Jumpstarting this necro-thread.
Long story short, I'm working on a Debian 12 based build. It's a bit rough around the edges at the moment, but I'm just about ready to move it from the lab onto an external test server once I resolve a clamav issue.
There's no MailWatch yet, and it's also missing a ...
Long story short, I'm working on a Debian 12 based build. It's a bit rough around the edges at the moment, but I'm just about ready to move it from the lab onto an external test server once I resolve a clamav issue.
There's no MailWatch yet, and it's also missing a ...
- 02 Sep 2023 22:01
- Forum: Feature Requests
- Topic: MailWatch UI tweak
- Replies: 1
- Views: 19121
MailWatch UI tweak
You know what would be great?
A tweak to MailWatch to show not only the load averages and disk space, but the memory consumption and disk queues...
A tweak to MailWatch to show not only the load averages and disk space, but the memory consumption and disk queues...
- 02 Sep 2023 21:55
- Forum: Feature Requests
- Topic: Rocky Linux 8
- Replies: 17
- Views: 176197
Re: Rocky Linux 8
Just one more thing - These kind of projects are run by people on a voluntary basis - no-one is getting rich from something that no-one pays for. We all have day jobs, some of us run our own businesses and this is all in everyone's spare time, or whatever is shared by people making changes for their ...
- 02 Sep 2023 21:52
- Forum: Feature Requests
- Topic: Rocky Linux 8
- Replies: 17
- Views: 176197
Re: Rocky Linux 8
I tried it on Stream 9 and it broke spectacularly... So I'm going to say no.
I've been getting pretty annoyed with a bunch of broken stuff in the redhat stack - just simple stuff like adding users to the OS on a clean install throws up error that have persisted for years.
I've been using Debian 12 ...
I've been getting pretty annoyed with a bunch of broken stuff in the redhat stack - just simple stuff like adding users to the OS on a clean install throws up error that have persisted for years.
I've been using Debian 12 ...
- 28 Aug 2023 16:54
- Forum: Discussion
- Topic: Future of eFa on RedHat-like systems
- Replies: 2
- Views: 4900
Re: Future of eFa on RedHat-like systems
I like the RedHat ecosystem, however I've been using Debian 12 for a project lately, and I'm kind of liking it...
Thinking I might have a stab at recreating things on Debian to see what roadblocks I come up against at some stage in the future. I'm pretty sure the eFa build scripts can be tweaked to ...
Thinking I might have a stab at recreating things on Debian to see what roadblocks I come up against at some stage in the future. I'm pretty sure the eFa build scripts can be tweaked to ...
- 18 Aug 2023 15:36
- Forum: Discussion
- Topic: efa in the cloud
- Replies: 4
- Views: 29484
Re: efa in the cloud
Sorry to resurrect this necro-thread, but I'm going through some sizing exercises at the moment.
I guess it's going to depend mostly on the number of MailScanner threads you elect to run and your users appetite for delays if mail starts backing up.
I'd start by looking at the actual load on your ...
I guess it's going to depend mostly on the number of MailScanner threads you elect to run and your users appetite for delays if mail starts backing up.
I'd start by looking at the actual load on your ...
- 18 Aug 2023 08:32
- Forum: How-to
- Topic: Install eFa using sudo
- Replies: 0
- Views: 58753
Install eFa using sudo
Good security practice means not logging in directly as root, which means that the installer for eFa won't run as the standard command.
It's simple to get it to work though rather than switching to the root account or having to force a root password change in order to switch using su...
sudo curl ...
It's simple to get it to work though rather than switching to the root account or having to force a root password change in order to switch using su...
sudo curl ...