Search found 63 matches

by stusmith
16 Mar 2017 18:10
Forum: Feature Requests
Topic: User Interface Requests
Replies: 2
Views: 3024

Re: User Interface Requests

COMPLETED TASKS added fields to database for 'released' and 'deleted' statuses created new table indexes for same modified quarantine_release and quarantine_delete to update fields appropriately This stinks ever so slightly because it seems to change the timestamp of the database... not sure if the...
by stusmith
16 Mar 2017 15:29
Forum: How-to
Topic: Email is not sent because of failed authentication
Replies: 4
Views: 3219

Re: Email is not sent because of failed authentication

volodya123 wrote: 16 Mar 2017 14:49 shawniverson

Thank you for your fast reply!

but is there a short how-to instruction exactly E.F.A. SASL setup?
Are you using Active Directory? Where are you user accounts stored?
by stusmith
14 Mar 2017 16:03
Forum: How-to
Topic: SPF problems?
Replies: 5
Views: 5153

Re: SPF problems?

Alas, the joys of bad SPF records. Really not an eFa specific problem, as a bad or malformed SPF is *supposed* to be a indicator of something fishy. But yes, too many organizations stink at writing good SPF records and/or fail to maintain them, meaning you have to do silly things to let the mail th...
by stusmith
14 Mar 2017 15:27
Forum: Discussion
Topic: unsual mail listing for users
Replies: 19
Views: 9245

Re: unsual mail listing for users

Is one of those users a Domain Administrator ( type 'D')?

Can you show the filters listed for that particular user?
by stusmith
14 Mar 2017 13:33
Forum: How-to
Topic: SPF problems?
Replies: 5
Views: 5153

Re: SPF problems?

/etc/mail/spamassassin/local.cf # ---------Handle Broken SPF---------- header __SPF_FF_PERMERROR Authentication-Results =~ /spf=permerror/i header __SPF_FF_TOOMANYRECORDS Authentication-Results =~ /two or more type TXT spf records found/i header __SPF_FF_TOOMANYLOOKUPS Authentication-Results =~ /to...
by stusmith
14 Mar 2017 13:30
Forum: How-to
Topic: SPF problems?
Replies: 5
Views: 5153

SPF problems?

Does anyone else have the problem that almost all of the small companies that they work with have terrible SPF records? The number one problem I have with the EFA at the moment ( in terms of e-mail being blocked ) is that I see so many terrible SPF records. Things like ?all. or -all" or two DNS...
by stusmith
13 Mar 2017 12:58
Forum: 3.x Bugs
Topic: MailWatch / Learning extremely slow
Replies: 6
Views: 4893

Re: MailWatch / Learning extremely slow

Are any of you using munin to monitor your MySQL server installs? I'm curious to see what the query times look like... I had some trouble with my learn+report throwing an error in IP::Country::Fast, but just the learning itself doesn't seem to complain. I'm going to try AITCS's fix and see if that r...
by stusmith
10 Mar 2017 22:08
Forum: Feature Requests
Topic: User Interface Requests
Replies: 2
Views: 3024

Re: User Interface Requests

It looks like the release functions are implemented at: functions.php:3178 function quarantine_release($list, $num, $to, $rpc_only = false) rpcserver.php:151 function rcp_quarantine_release($msg) auto-release.php:40 some autorelease stuff? So, if I can flag the message in the release functions, I sh...
by stusmith
10 Mar 2017 16:57
Forum: 3.x Bugs
Topic: 3.0.1.8 Performance issue
Replies: 1
Views: 2079

Re: 3.0.1.8 Performance issue

I've noticed that 3.0.1.8 has some performance issues. I upgrade about a week ago and since then i've seen a lot of situations where SpamAssassin is timing out. Once it happens 20 times, the mail is let through, even though it's spam. I can't put my finger on what causing the timeouts but it happen...
by stusmith
10 Mar 2017 16:32
Forum: Feature Requests
Topic: User Interface Requests
Replies: 2
Views: 3024

User Interface Requests

I have a couple of items that I'd like to suggest and that I'm trying to add myself. I will happily share what I've got done as I get it working in the hopes that it can be folded in upstream. Quarantine Summary Report Add a link to the bottom of the e-mail to allow the user to log in and view their...
by stusmith
09 Mar 2017 09:43
Forum: 3.x Bugs
Topic: No Spam checking ?
Replies: 1
Views: 2062

Re: No Spam checking ?

If you run the SpamAssassin lint from the MailScanner web interface it will time the tests. Possible info to be found there. I would also check munin for spikes in processor usage and/or DNS timeouts or query volume. You can also enable the MySQL plugin to check your database throughput... I'm a big...
by stusmith
08 Mar 2017 23:30
Forum: How-to
Topic: Configure Bounce from Relay server
Replies: 4
Views: 3649

Re: Configure Bounce from Relay server

ovizii wrote: 08 Mar 2017 21:53 I assume what he means is that his EFA doesn't sign outgoing emails with DKIm but lets hear what lecyberian says.
If that's the case, wouldn't a transport map with

Code: Select all

*    smtp:fallback.relayhost.domain.com
force the EFA to relay the 550 through the 'default' host?
by stusmith
08 Mar 2017 20:29
Forum: How-to
Topic: Outbound SMTP Smart Host
Replies: 8
Views: 8929

Re: Outbound SMTP Smart Host

I think that you can create a transport map to determine which way to forward your e-mail. Then you need to create a password map to authenticate. Port tcp:465 is the SMTPS protocol port. Port tcp:587 is the client submission port. Create a map file for your username/passwords to authenticate to you...
by stusmith
08 Mar 2017 19:30
Forum: How-to
Topic: Configure Bounce from Relay server
Replies: 4
Views: 3649

Re: Configure Bounce from Relay server

Can you post a sanitized header from one of the messages being stopped in the SPAM filter?

I'm not sure what you mean about the DKIM not being for EFA causing messages to be blocked. Can you elaborate? Maybe diagram your mailflow and server setup so that it's easier to understand how you're set up?
by stusmith
08 Mar 2017 19:24
Forum: How-to
Topic: Receipient verification
Replies: 4
Views: 3821

Re: Receipient verification

Okay, since you listed Exchange in your first post, I would look at the post here, which has a number of good instructions to follow https://forum.efa-project.org/viewtopic.php?f=14&t=1484 /etc/postfix/main.cf relay_recipient_maps = ldap:/etc/postfix/ldap_relay_recipient_maps.cf, hash:/etc/posti...
by stusmith
08 Mar 2017 18:57
Forum: How-to
Topic: Receipient verification
Replies: 4
Views: 3821

Re: Receipient verification

http://www.postfix.org/ADDRESS_VERIFICATION_README.html

This is a good place to start. Are you trying to verify the "From:" addresses for e-mail sent to your domains or the "To:" addresses?
by stusmith
08 Mar 2017 16:29
Forum: 3.x Bugs
Topic: SQLGrey and only 3 octects in src
Replies: 1
Views: 2173

SQLGrey and only 3 octects in src

I've noticed some strange behavior with sqlgrey. I see a number of 'waiting' addresses in the greylist with only 3 octets in the ip address of the src. https://forum.efa-project.org/download/file.php?mode=view&id=224&sid=1f415297b6b69eea3c565b9c3f8bc11f I've verified this by connecting to my...
by stusmith
07 Mar 2017 19:51
Forum: Discussion
Topic: IPtables
Replies: 1
Views: 2284

Re: IPtables

I'm running iptables on my EFA without any issue. Just make sure you leave ports for administration open from specific IPs - like your router or DMZ,
by stusmith
06 Mar 2017 18:57
Forum: 3.x Bugs
Topic: Greylisting Toggle menu not working properly
Replies: 10
Views: 6419

Re: Greylisting Toggle menu not working properly

Current Status : [efa@efa ~]$ sudo service sqlgrey status [sudo] password for efa: sqlgrey is stopped [efa@efa ~]$ sudo chkconfig sqlgrey --list sqlgrey 0:off 1:off 2:off 3:off 4:off 5:off 6:off [efa@efa ~]$ -------------------- efa menu says : [EFA] Greylisting is currently ENABLED [EFA] Would you...
by stusmith
06 Mar 2017 17:57
Forum: 3.x Bugs
Topic: Greylisting Toggle menu not working properly
Replies: 10
Views: 6419

Re: Greylisting Toggle menu not working properly

Also, if you want to get really nasty, you could always: /etc/sqlgrey/clients_fqdn_whitelist.local /.*/ that should match any possible domain and 'whitelist' them in sqlgrey ( bypass greylisting for matches ). it's a dirty workaround, but I've already found a ton of providers who don't resend via th...
by stusmith
06 Mar 2017 17:51
Forum: 3.x Bugs
Topic: Greylisting Toggle menu not working properly
Replies: 10
Views: 6419

Re: Greylisting Toggle menu not working properly

Same here - cant disable greylisting in 3.0.1.8 ! ------------- [EFA] Greylisting is currently ENABLED [EFA] Would you like to DISABLE greylisting? [y/N/c]: Y postfix/postfix-script: refreshing the Postfix mail system Shutting down SQLgrey: Coudn't read pidfile: /var/run/sqlgrey.pid [ OK ] [EFA] Gr...
by stusmith
03 Mar 2017 13:38
Forum: Feature Requests
Topic: DNSBL and stuff
Replies: 17
Views: 18612

Re: DNSBL and stuff

Hola, Anyone wants to share their postfix relay restrictions? And anyone set up postscreen to complement postfix? I use abuseat.org, spamhaus and barracuda for DNSBL. Anyone has some more/better? spamhaus needs full recursion though... See if we can work out a good postfix defense, 1st line of defe...
by stusmith
03 Mar 2017 13:36
Forum: Feature Requests
Topic: DNSBL and stuff
Replies: 17
Views: 18612

Re: DNSBL and stuff

To reject spam before it's filter by mailscanner or spamassasin put this on file /etc/postfix/main.cf : smtpd_client_restrictions = permit_sasl_authenticated reject_rbl_client sbl.spamhaus.org reject_rbl_client cbl.abuseat.org reject_rbl_client all.spam-rbl.fr reject_rbl_client bl.spamcop.net rejec...
by stusmith
03 Mar 2017 13:33
Forum: Feature Requests
Topic: DNSBL and stuff
Replies: 17
Views: 18612

Re: DNSBL and stuff

--EDITED--: fixed a problem with the iptables-allports-log.conf file Sure, no problem. I fixed the above problem by changing everything from "auto" backend to "pynotify". I also split out the logfiles because it's easier to search when the information is dropped into it's own fi...
by stusmith
02 Mar 2017 21:27
Forum: How-to
Topic: {Spam not delivered} and "lower scoring spam"
Replies: 4
Views: 3440

Re: {Spam not delivered} and "lower scoring spam"

Thank you for your reply. Yesterday I got 48 mail rated spam from 4 to 6.99 but I got only 39 notifications and the highest rating mail notified was rated 6.99. This tells me two things: 1. Any mail rated spam triggers the notification. Rated from 4 to 6.99. 2. Some notifications are not sent. Yest...