Search found 227 matches

by henk
20 Jan 2019 23:51
Forum: 4.x Testing
Topic: EFA 4 beta
Replies: 36
Views: 464

Re: EFA 4 beta

I tested the kickstart again. :violin: 2019-01-20 22_59_50-sanspam_afa on T610.private.lan.png Nice to monitor the install with Alt+Tab 2019-01-20 23_20_16-sanspam_afa on T610.private.lan.png No issues, just 1 typo at the end ... Created symlink from /etc/systemd/system/multi-user.target.wants/firew...
by henk
20 Jan 2019 18:53
Forum: 4.x Testing
Topic: EFA 4 beta
Replies: 36
Views: 464

Re: EFA 4 beta

Did you use the kickstart script or the git clone - devbuild?

Didyou enable IPV6? I don't. aka Mysql/postfix/dovecot/unbound should also only use IPv4. (ipv6 disabled depending on the efa-configure)

If you check the logs I mentioned before, there are no issues?
by henk
20 Jan 2019 17:34
Forum: 4.x Testing
Topic: EFA 4 beta
Replies: 36
Views: 464

Re: EFA 4 beta

Hi jaimersoni,

If you use recursion, did you enter ipadress in the efa configure or fqdn for the mailserver?
My mailserver is on the internal network, and unbound needs some additional configuration to be able to resolve internal hosts. ( see maillog)
by henk
20 Jan 2019 17:25
Forum: 4.x Testing
Topic: EFA 4 beta
Replies: 36
Views: 464

Re: EFA 4 beta

Hi Shawn, Sure, see efa build beats tv and I learn something at the same time. :) Installing with git clone and the build script on a Centos 7 minimal template, ( having 'net.ifnames=0 ' in the boot options already) didn't work as mentioned before. With the kickstart script install I forgot to enter...
by henk
20 Jan 2019 15:34
Forum: 4.x Testing
Topic: EFA 4 beta
Replies: 36
Views: 464

Re: EFA 4 beta

did you have a look at https://www.howtoforge.com/community/threads/relay-access-denied-postfix-dovecot-554-5-7-1.72415/ and see the ssl log in my previous post about the CA As I still need to have a look at unbound, did you have unbound working corectly, resolving local hosts? or do you use IP adre...
by henk
20 Jan 2019 11:13
Forum: 3.x How-to
Topic: want to release bad content quarantined mail per mailwatch
Replies: 1
Views: 32

Re: want to release bad content quarantined mail per mailwatch

avidmar,

Please search this forum on questions first, as there are many posts on this topic.

howto: viewtopic.php?f=5&t=2974
by henk
20 Jan 2019 09:36
Forum: 4.x Testing
Topic: EFA 4 beta
Replies: 36
Views: 464

Re: EFA 4 beta

Just installed the beta. Watching the install is impressive :clap: I just post every step I did, some of them are no show stopper. ( the mysql changes or the proposal for defaults) When using the devbuild , The first time I cloned in /root/scripts and got the following error after the packages insta...
by henk
17 Jan 2019 08:52
Forum: Discussion
Topic: Cannot View Message Content
Replies: 5
Views: 73

Re: Cannot View Message Content

Besides the php warnings, Mysql.log shows some issues. 2019-01-14 19:28:32 7faef77f8700 InnoDB: FTS Optimize Removing table mailscanner/#sql2-6f2-194 2019-01-15 03:47:45 7faef77f8700 InnoDB: FTS Optimize Removing table mailscanner/#sql2-6f2-529 2019-01-16 04:03:57 7faef77f8700 InnoDB: FTS Optimize R...
by henk
16 Jan 2019 22:40
Forum: Discussion
Topic: Cannot View Message Content
Replies: 5
Views: 73

Re: Cannot View Message Content

Also checked the /var/log/httpd/ssl_error_log and the mysql log ( in /var/log or /var/lib/mysql)? This is happening for all my messages including ones that previously worked. What do you mean with: previously ? As I remember well you did install 3.0.2.5 and upgraded to 3.0.2.6. on Nov 29 and had som...
by henk
16 Jan 2019 18:09
Forum: 3.x Bugs
Topic: MailScanner - Empty regular expression (Solved)
Replies: 1
Views: 74

MailScanner - Empty regular expression (Solved)

When you login on the malscanner GUI, and toggle between the 'recent messages' and any other tab, you get the following PHP warnings ( read a lot) in the ssl error log. No clou why To reproduce, set tail on ssl error log and login to the GUI. tail -F /var/log/httpd/ssl_error_log [[Wed Jan 16 17:26:5...
by henk
16 Jan 2019 13:49
Forum: 3.x How-to
Topic: Outbound traffic issues
Replies: 5
Views: 116

Re: Outbound traffic issues

Did you configure the reverse DNS entries for the IP-addresses of your mailservers ? ( dig MX <<Domain>> | dig -x <<IP>>) A great free tool to check a lot: https://mxtoolbox.com/ https://unix.stackexchange.com/questions/145175/postfix-error-not-yet-authorized-to-deliver-mail https://marekbosman.com/...
by henk
16 Jan 2019 12:57
Forum: 3.x Bugs
Topic: Sophos AV does no more work !
Replies: 22
Views: 387

Re: Sophos AV does no more work !

Thanks for the one-liner fix :clap: Completely off topic, but as the one-liner remark activated some presumed lost memory braincells, it's quite strange you can trigger a long term memory restore in just a split second, without any backup... :doh: For those who love the early days of computing and p...
by henk
16 Jan 2019 11:59
Forum: 3.x How-to
Topic: quarantine and release of virusses
Replies: 2
Views: 21

Re: quarantine and release of virusses

Hi Stefan, let efa quarantine "blocked e-mails and containing virusses / banned content" and have it appear in the quarantine pages so that i and customers can release the e-mail and whitelist the sender? Reading your question more than once, gives me some strange feeling about customers to be able ...
by henk
16 Jan 2019 11:37
Forum: 3.x How-to
Topic: Virus Scan Time
Replies: 1
Views: 19

Re: Virus Scan Time

Hi Nicola, scan only messages that have attachments ? No idea, but to cut down scan time, the shortcut option is still the way to go, I think. You need to define your trusted_networks https://spamassassin.apache.org/full/3.4.x/doc/Mail_SpamAssassin_Conf.html (If trusted_networks is not set and inter...
by henk
16 Jan 2019 10:58
Forum: 3.x How-to
Topic: How to use phishing.safe.sites.custom ?
Replies: 3
Views: 232

Re: How to use phishing.safe.sites.custom ?

As I was looking for something completely different, I found this: https://www.real-world-systems.com/docs/spamassassinConf.html Whitelist and Blacklist options unwhitelist_from uname@domain.com Overrides a default whitelist_from entry, for example a distribution whitelist_from can be overridden in ...
by henk
15 Jan 2019 09:54
Forum: Discussion
Topic: Cannot View Message Content
Replies: 5
Views: 73

Re: Cannot View Message Content

1. Did you check the log(s) for issues, as you had some issues after the 3.0.2.5 -> 3.0.2.6 update :?:
2. Just one message or all messages :?:
by henk
15 Jan 2019 09:33
Forum: 3.x Bugs
Topic: Sophos AV does no more work !
Replies: 22
Views: 387

Re: Sophos AV does no more work !

Version?
MailWatch- MailScanner-Version-information.png
MailWatch- MailScanner-Version-information.png (16.51 KiB) Viewed 127 times
by henk
15 Jan 2019 08:43
Forum: 3.x Bugs
Topic: Sophos AV does no more work !
Replies: 22
Views: 387

Re: Sophos AV does no more work !

Besides lots of coffee :) , until there is an answer, it makes sense to temp disable Sophos and the rule that generates the looping messages https://forum.efa-project.org/viewtopic.php?t=3304 --- /etc/MailScanner/conf.d/01_MailScanner.conf #Notices To = postmaster@private.lan #Local Postmaster = pos...
by henk
15 Jan 2019 08:13
Forum: 3.x Bugs
Topic: GeoIP not working
Replies: 4
Views: 114

Re: GeoIP not working

I attached the GEOIP files. ( from Dec 17 2018). Since the files are to big to attach, I needed to compress the files a bit. export GZIP='--best' tar -c -z -f geoip.tar.gz /root/backup/geoip Result: [root@sansspam geoip]# ls -l total 5492 -rw-r--r-- 1 apache apache 1242574 Dec 17 14:33 GeoIP.dat -rw...
by henk
10 Jan 2019 11:28
Forum: 3.x Feature Requests
Topic: Supported Antivirus Consideration & Question
Replies: 2
Views: 133

Re: Supported Antivirus Consideration & Question

Hi Nicola, let's hope Shawn can manage to spend time to work on the new EFA/Mailwatch/MailsScanner, as it's a hell of off a job and there must be somesort of balance between EFA, work, sleep, eat, family. Take a look at the near future: https://github.com/MailScanner/v5/tree/master/common/usr/lib/Ma...
by henk
10 Jan 2019 11:07
Forum: 3.x How-to
Topic: Outbound traffic issues
Replies: 5
Views: 116

Re: Outbound traffic issues

Hi Justin, As there are many members using exchange, and EFA for in en outbound, there should be some response.. Long time ago, you posted this question before: https://forum.efa-project.org/viewtopic.php?&t=2041 Somewhat confusing authentication: Exchange -> EFA ( authenticated with SMTP ISP ) -> D...
by henk
10 Jan 2019 10:01
Forum: 3.x Bugs
Topic: rep_sa_rule_hits.php no data after sa-update sa-compile
Replies: 12
Views: 267

Re: rep_sa_rule_hits.php no data after sa-update sa-compile

Weird? Welcome to IT :whistle: As you mentioned mailgraph was stopped, did you stop it, or did it fail to start at boot? Did php -l on the original rep_sa_score_dist.php show errors? Do you use webmin? Consider ( read switch ) to use SSH to access EFA (or any other Linux machine) How do you compare ...
by henk
08 Jan 2019 22:18
Forum: 3.x Bugs
Topic: rep_sa_rule_hits.php no data after sa-update sa-compile
Replies: 12
Views: 267

Re: rep_sa_rule_hits.php no data after sa-update sa-compile

I have two EFA running and on the second One everything works
The fast solution is to copy the file from the second efa machine, and replace it on the first one. Assuming that's the only file changed. :oops:
by henk
08 Jan 2019 11:10
Forum: 3.x Bugs
Topic: rep_sa_rule_hits.php no data after sa-update sa-compile
Replies: 12
Views: 267

Re: rep_sa_rule_hits.php no data after sa-update sa-compile

Did not understand the last part of your answer. It is to add that part to updates_spamassassin_org/72_active.cf file? The last part is just to mention the cause of the looping messages, that's all The solution, as mentioned, is to disable the specific test, by setting in /etc/mail/spamassassin/loc...
by henk
07 Jan 2019 21:16
Forum: 3.x Bugs
Topic: rep_sa_rule_hits.php no data after sa-update sa-compile
Replies: 12
Views: 267

Re: rep_sa_rule_hits.php no data after sa-update sa-compile

This is weird, I have two EFA running and on the second One everything works. If you run on the other EFA machine, you don't have the same output? spamassassin --lint --debug Compair the to EFA configs and look in the logfiles to find the difference(s). To disable the duplicate messages ( disable t...