Search found 359 matches

by henk
15 May 2019 10:02
Forum: 3.x How-to
Topic: How to skip rbl check locally ?
Replies: 4
Views: 48

Re: How to skip rbl check locally ?

Just an idea: To bypass the uribl skipping issues, you could use EFA for inbound mail only.
by henk
14 May 2019 14:04
Forum: Discussion
Topic: question about user types
Replies: 5
Views: 113

Re: question about user types

as far as I remember, if I simply entered a domain as username and added an email to that user, that email would receive a quarantine report for that whole domain. You did remember well :D As I use fetchmail to fetch mail form external sources, I map that to a local user. So every mail user has a u...
by henk
13 May 2019 13:36
Forum: Discussion
Topic: question about user types
Replies: 5
Views: 113

Re: question about user types

Not sure if you mean this: https://forum.efa-project.org/viewtopic.php?t=3002 It's not recommended, but it works fine with me. /var/www/html/mailscanner/conf.php //Allow domain admins to create/edit/delete other domain admins from the same domain (not recommended, only for backward compatibility) de...
by henk
26 Apr 2019 12:11
Forum: 4.x Testing
Topic: efa4 Set default dcc servers
Replies: 0
Views: 88

efa4 Set default dcc servers

When setting the dcc servers, the dcc path in /var/eFa/lib/eFa-Configure/func_askdccservers is wrong [eFa] - Set DCC Server Pools [eFa] This option will allow you to set the DCC server [eFa] pools that you want to use. [eFa] The dcc-servers.net pool is limited use and what ships with dcc. [eFa] Choi...
by henk
20 Apr 2019 10:36
Forum: 4.x Testing
Topic: Mail delayed in Milter Incoming queue
Replies: 3
Views: 242

Re: Mail delayed in Milter Incoming queue

The discussion of firewalls is outside the scope of this forum, but as your first line of defense, it's worth the effort to pick a decent firewall. Can't say anything about the sophos firewall, but I'm a big fan of pfsense community edition. https://docs.netgate.com/ Easy to install/update/configure...
by henk
18 Apr 2019 18:02
Forum: 4.x Testing
Topic: Mail delayed in Milter Incoming queue
Replies: 3
Views: 242

Re: Mail delayed in Milter Incoming queue

The first tester that followed the requested format :dance: :clap: :violin: (I'm replacing email receipt currently handled by a Sophos firewall that's randomly breaking inbound emails Great firewall :whistle: "emails often sit in the Milter Incoming queue for 5 minutes or more before being processed...
by henk
18 Apr 2019 16:53
Forum: 3.x Bugs
Topic: Uribl Blocked also with dns recursive
Replies: 17
Views: 568

Re: Uribl Blocked also with dns recursive

*** Do you use ipv6? problem 1 "Y ou should also consider adding uri skips on your company domains. Especially if your mail clients append footers with your company url in each email. Because our DNS cache TTL is so low, each email containing your company domain could generate one or more queries. ...
by henk
18 Apr 2019 06:34
Forum: 3.x Bugs
Topic: Disk size /var suddenly increasing
Replies: 4
Views: 143

Re: Disk size /var suddenly increasing

You could check the cron maintenance jobs for errors. or consider to lower retension to less than 60 days. Did you move the dcc cron job from montly to daily? https://forum.efa-project.org/viewtopic.php?t=2610 Check number of dcc files: ls -l /var/dcc/log |wc -l Delete old files from /var/dcc/log ( ...
by henk
17 Apr 2019 20:12
Forum: 4.x Testing
Topic: EFA4 DNS config problem
Replies: 11
Views: 568

Re: EFA4 DNS config problem

Can you post:

Code: Select all

/etc/sysconfig/network-scripts/ifcfg-*
To prevent Network Manager to overwrite your resolv.conf changes, remove the DNS1, DNS2, ...
lines from /etc/sysconfig/network-scripts/ifcfg-*.
by henk
17 Apr 2019 20:07
Forum: 3.x Bugs
Topic: Uribl Blocked also with dns recursive
Replies: 17
Views: 568

Re: Uribl Blocked also with dns recursive

Before you can take action, you need to know the reason why you receive the URIBL_BLOCKED message.As there are many members processing huge amounts of mail, it could help others with the same issue. ***Just forgot to ask, do you use ipv6? *** Do you use efa only inbound? internal_networks and truste...
by henk
14 Apr 2019 11:08
Forum: 3.x How-to
Topic: Web interface username & password
Replies: 23
Views: 8134

Re: Web interface username & password

did the test, to be sure. Create user tempadm with password dirkjan /usr/bin/mysql -u mailwatch -p`cat /etc/EFA-Config | grep MAILWATCHSQLPWD | sed 's/.*://'` mailscanner -e "INSERT INTO users SET username = 'tempadm', password = MD5('<dirkjan>'), fullname = 'tempadm', type ='A'" Check if user is cr...
by henk
12 Apr 2019 23:09
Forum: Discussion
Topic: New method of spoofing?
Replies: 2
Views: 159

Re: New method of spoofing?

by henk
12 Apr 2019 22:59
Forum: 3.x How-to
Topic: Web interface username & password
Replies: 23
Views: 8134

Re: Web interface username & password

show users and passwd's mysql -u root -p`cat /etc/EFA-Config | grep MYSQLROOTPWD | sed 's/.*://'` mailscanner -e "Select username, password from users" update password for username: adminefa /usr/bin/mysql -u root -p`cat /etc/EFA-Config | grep MYSQLROOTPWD | sed 's/.*://'` mailscanner -e "UPDATE use...
by henk
12 Apr 2019 22:38
Forum: 3.x Bugs
Topic: Uribl Blocked also with dns recursive
Replies: 17
Views: 568

Re: Uribl Blocked also with dns recursive

Quite sure the uribl will happen again soon on your efa public IP ... how many mails ( dns queries) a day? ( as mentioned the 100 k limit) Do you use efa only inbound? How many scanners active (clamav / sophos / sophosavi / ...) Also the number of dnbl lists that are configured will have an impact o...
by henk
10 Apr 2019 18:24
Forum: 3.x How-to
Topic: Web interface username & password
Replies: 23
Views: 8134

Re: Web interface username & password

the fieldname is username and not user select username, password from mailscanner.users; +-------------------+-----------------------------+ | username | password | +-------------------+-----------------------------+ | titi | $some password | | tata@testdomain | $another password |
by henk
10 Apr 2019 18:09
Forum: Discussion
Topic: Inbound mail queue has become slow
Replies: 5
Views: 244

Re: Inbound mail queue has become slow

:shhh: Not clear what you mean with: " It has since been moved to a physical drive - actually, 2 different drives for testing, " I use vmware, but the concept would be the same. There is no harm in udating mysql server a bit ( server config in the mysqld section ) https://forum.efa-project.org/viewt...
by henk
10 Apr 2019 17:41
Forum: 3.x Bugs
Topic: Uribl Blocked also with dns recursive
Replies: 17
Views: 568

Re: Uribl Blocked also with dns recursive

do you use more than 100K queries a day ? viewtopic.php?f=5&t=934&p=11365#p11365

point 6 Check caching, will give some ideas about the number of efa-unbound cached queries.
by henk
10 Apr 2019 15:08
Forum: Discussion
Topic: Inbound mail queue has become slow
Replies: 5
Views: 244

Re: Inbound mail queue has become slow

Just read back your post, and then try to give some advise.... :shifty: Somehow i've got the feeling that the answer on the question : What changed? is: Nothing "/var/log/messages looks clean" means there are no errors/warnings in the logs? As will try to help, can you post df -h and ls -l /var/dcc/...
by henk
10 Apr 2019 14:35
Forum: 3.x Bugs
Topic: Uribl Blocked also with dns recursive
Replies: 17
Views: 568

Re: Uribl Blocked also with dns recursive

1. Check against your dns server (dig dns.gruppocomet.it) host -t TXT 2.0.0.127.multi.uribl.com 195.120.124.2 2. Change forwarder to your dns server /etc/unbound/conf.d/forwarders.conf forward-zone: name: "." forward-addr: 195.120.124.2 forward-first: yes 3. restart unbound service unbound restart 4...
by henk
09 Apr 2019 16:34
Forum: 3.x Bugs
Topic: Uribl Blocked also with dns recursive
Replies: 17
Views: 568

Re: Uribl Blocked also with dns recursive

You did read the mentioned posts in 3 minutes?
by henk
09 Apr 2019 16:32
Forum: 3.x Feature Requests
Topic: dkimwl.org
Replies: 2
Views: 203

Re: dkimwl.org

Funny site, no way to register. You could be the first user :lol:

You could send a info request. https://dkimwl.org/contact

As they still provide http access, you could add some questions to this info request :idea: http://dkimwl.org/contact
by henk
09 Apr 2019 16:16
Forum: 3.x Bugs
Topic: Uribl Blocked also with dns recursive
Replies: 17
Views: 568

Re: Uribl Blocked also with dns recursive

Hi nicola, as you did not provide any info on your config, I can only assume your dns server is not using a public address. https://forum.efa-project.org/viewtopic.php?t=2565 https://forum.efa-project.org/viewtopic.php?t=934 https://forum.efa-project.org/viewtopic.php?t=1820 On top of that, a workin...
by henk
22 Mar 2019 10:19
Forum: Discussion
Topic: Remote users unable to access MailScanner web page
Replies: 3
Views: 176

Re: Remote users unable to access MailScanner web page

Hi 2 old for this ( a alias for henk:) As webmail is working, you already added a dns entry for you mailserver something like <mail.<yourdomain>.org to your wan address. Check dig MX <<your domain>> and dig <mail.<yourdomain>.org to resolve the ip. In the firewall Wan interface you should already ha...
by henk
16 Mar 2019 14:47
Forum: 4.x Testing
Topic: Testing RC3
Replies: 10
Views: 640

Re: Testing RC3

Only xymon is having an issue now /var/log/audit/audit.log ' type=USER_LOGIN msg=audit(1552742644.019:2379): pid=28441 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:sshd_t:s0-s0:c0.c1023 msg='op=login acct="(unknown)" exe="/usr/sbin/sshd" hostname=? addr=xxx.xxx.xxx.xxx terminal=ssh r...