efa-project.org

good heavens! who actually looks at the login page?

i expected to see the version number after i logged in.

next you'll be telling me to read the manuals!

I just realized that I cannot find the efa version number in the mailscanner web ui either.

If sales@group goes to all members of that group, then I'd have to guess "yes"

*warning*

While this module is useful, it does not detect all the possible types of Microsoft files containing macro viruses. It only gets some.

See this issue , for example.
Update: there are quite a number of office documents with enabled macros that are not detected. Be warned that this ...

Ok, I've recieved the example excel spreadsheets and they passed right through the spamassassin macro detecting plugin without being detected.

I've submitted a bug report to the plugin author, but I am not sure how responsive he will be. Until then, be warned that the plugin fails on quite a number ...

Just out of curiosity, what was the body_check you were doing?

better yet, email it to me if you can and let's see if my system catches it. I'll send you a pm with my email address

email yourself a word document with an enabled macro and see if that is caught.

Did someone invoke my name?

ClamAV will block 100% of macro enabled word documents. So if you're happy doing that then set
OLE2BlockMacros yes

The plugin mentioned in https://forum.efa-project.org/viewtopic.php?t=1547 will catch some, but not all macro enabled word documents. So don't assume it ...

Thank you for that.

I use ~all instead of -all because sometimes sites send email for their domains from other servers. For non spf matches, I just increase the spam score and I rely on the Bayesian filtering to reduce the spam score in the cases where the Mail is coming no fry a non spf ...

Can you tell me what you did?

I understand what you are trying to do now, and I recommend you not do this.

The biggest problem is, how do you know which servers are allowed to send mail for your domain or not? For example, CompanyX might use google mail for hosting their mail. Their domain will be "companyx.com" but the mail ...

Oh my. Another plugin from Nicola to test and implement.

Thanks Nicola!

Sorry, I don't fully understand what you are trying to do.

Can you explain what conditions you want to accept or reject the mail?

Sure.

One obvious way is to take advantage of DNS round robin.

E.g. efa, accepts mail for example.com. In my mail transport settings, I have 3 hosts that will accept the mail for example.com and do the right thing. So in my dns, I might do the following:

10.10.1.1 A mail.example.com
10.10.1.2 A ...

Short answer: yes.

Long answer: that's a function of the mailer, in this case, postfix. If postfix is unable to deliver, it will retry at increasingly longer intervals until the maximum time is reached and then deliver a NDR to the sender.

What are the exact postfix settings? Not sure, I'll need ...

googling that smtp error code leads me to this
http://www.techieshelp.com/450-4-7-1-client-host-rejected-cannot-find-your-hostname/

short answer, the receiving mail server is doing a reverse ip lookup and is either not finding a match or it is finding a mismatch.

while i understand why people do ...

Even without saved php credentials, having that kind of tool accessible via the web interface leaves you subject to the bugs in the software, which could give access to the server is a bug is found. Once access is had, the rest opens up really quickly

If you've ever had the chance to watch a good ...

Also, it would be good to let us know what setting was causing the problem when you find the problem

I would actually recommend against it. phpmyadmin/adminer actually presents a large security hole if it ever becomes accessible to the outside world.

Instead, I prefer to make a tunnelled ssh connection for mysql to the database and then use a tool like mysqlworkbench to check my database. This is ...

oh, good. it's not just me then.

'But honestly it doesnt make much sense to convert the flat file into SQL insert / update statements - it should be rather that EFA is able to read the mysql DB for transport settings. Actually the reason why I want to accomplish this is so that the postfix transport settings can be centralized to ...

Interesting question.

Looking through my logs (mature server, greylisting databases already populated), I cannot find any recent entries showing greylisted connection attempts. Either the servers sending me mail are already known to me, or the spamming servers are getting stopped by postfix even ...

akl,

When you are dealing with someone with Atomic Grade Stupidity, the best thing to do is to let them hang themselves.

a) get it in writing from him that he understands the risks of accepting macros and that he will be fully responsible for the damage caused if said macros contain a virus ...