[BlueOnyx:26556] Re: backup all DNS records of a specific domain

[Meaulnes Legler @ MailList via Blueonyx]

perfect! works out! removing and reinstalling ok.

Thank you Michael!

で⊃ Meaulnes Legler
Zurich, Switzerland
+41¦0 44 260-1660

On 26.10.23 09:36, Michael Stauber via Blueonyx wrote:

Hi Meaulnes,


After having transferred a domain to another domain host, I wanted to delete its DNS 
entries on my server in Server Management > Network Services > DNS > Select 
Domain...

Is there a way to previously backup all the records of that domain in one go 
for easy restore? Of course I could copy all the records as text files and 
restore them manually if required, but maybe there is a more efficient way?


In that case the easiest way would be to back up the DNS Zone files themselves.

You can find them in this directory on the BlueOnyx:

/var/named/chroot/var/named/

If the Vsite was named company.com, then these will be the files you need to 
backup:

/var/named/chroot/var/named/db.company.com
/var/named/chroot/var/named/db.company.com~
/var/named/chroot/var/named/db.company.com.include

If need be, you can import the DNS again form them by pointing 
/usr/sausalito/sbin/dnsImport.pl to the directory where you have these files.



___
Blueonyx mailing list
Blueonyx@mail.blueonyx.it
http://mail.blueonyx.it/mailman/listinfo/blueonyx

[BlueOnyx:26554] backup all DNS records of a specific domain

[Meaulnes Legler @ MailList via Blueonyx]

hello

After having transferred a domain to another domain host, I wanted to delete its DNS 
entries on my server in Server Management > Network Services > DNS > Select 
Domain...

Is there a way to previously backup all the records of that domain in one go 
for easy restore? Of course I could copy all the records as text files and 
restore them manually if required, but maybe there is a more efficient way?

Thank you and best regards

で⊃ Meaulnes Legler
Zurich, Switzerland
+41¦0 44 260-1660


___
Blueonyx mailing list
Blueonyx@mail.blueonyx.it
http://mail.blueonyx.it/mailman/listinfo/blueonyx

[BlueOnyx:26494] Re: POP sent to IMAP sent

[Meaulnes Legler @ MailList via Blueonyx]

thank you all

okaaay, me old man will comply and use the /en vogue/ IMAP 

best regards

で⊃ Meaulnes Legler
Zurich, Switzerland
+41¦0 44 260-1660

On 19.09.23 06:14, Michael Stauber via Blueonyx wrote:

Hi Meaulnes,


I guess all of you guys use IMAP on all of your computers, so you don't have 
this problem... I was looking for a solution for fetching my Sent folder 
contents automatically from my office desktop computer to the remote Sent 
folder on the server.


Like Taco and Chris have already mentioned: This day and age IMAP is really the 
best choice if you want to use the same account on multiple devices AND have 
all emails (sent and received) accessible everywhere.

I was in the same boat many years ago and was still using POP3 on an important 
account. Eventually it really became too much of an hassle when using multiple 
devices for checking emails.

Here is what I did: In Thunderbird I disabled the account that was still using POP3 and 
excluded it from being checked. I also renamed it to "usern...@server.com 
(POP3)" to make it really obvious: That's one old one.

Then I recreated the account in Thunderbird (using the same server, username 
and password), but configured it to use IMAP instead.

That way I now had two configurations in the email client for the very same 
account: An active one using IMAP, and a disabled one that used to use POP3 
before it got disabled and was now excluded from regular email checks.

Now there were a few recent messages (and replies of mine) that I wanted to be 
present on the server and accessible via IMAP. So in Thunderbird I selected 
those messages and copied them from the disabled POP3 account to the now active 
IMAP account. Which then uploaded the messages via IMAP to the server. Then I 
set up a sensible folder structure and sorted the messages into the right 
folders.

If there were still a message older than that which I needed? I still had the 
old POP3 account data in Thunderbird and could fetch 'em from there.

So it's really not too much hassle to switch from POP3 to IMAP in the 
email-client. To the contrary: That little discomfort during the switch is 
repaid tenfold from there on.

Also, when you do this: Email clients usually also allow you to configure how 
long they keep messages on the server before deleting them there, or what to do 
with messages after that expiry date. Especially with IMAP (which usually 
leaves emails on the server) you should set up some sensible expunging or 
archiving.

Depending on the accounts typical usage I leave emails on the server for a few 
days or so and then archive them into either an IMAP folder on the server, or a 
local folder on my PC.



___
Blueonyx mailing list
Blueonyx@mail.blueonyx.it
http://mail.blueonyx.it/mailman/listinfo/blueonyx

[BlueOnyx:26479] Re: POP sent to IMAP sent

[Meaulnes Legler @ MailList via Blueonyx]

thank you Michael

Yes I know it's an e-mail client thing, you can/have to instruct the app to 
keep a copy of the message in the Sent folder... Most e-mail clients can do 
this.

Let me define my problem in another way: using a POP-account on my office 
desktop computer, I can instruct the e-mail client (TB in my case) to keep a 
copy of the sent message in the *local folder on the office desktop computer*, 
but only there — I can't tell TB to have a copy *in the Sent folder on the 
remote server*. Only an IMAP-account can do this.

I guess all of you guys use IMAP on all of your computers, so you don't have 
this problem... I was looking for a solution for fetching my Sent folder 
contents automatically from my office desktop computer to the remote Sent 
folder on the server.
 
Thanks and best regards


.. Meaulnes Legler
⌣ Zurich, Switzerland
+41¦0 44 260-1660


On 14.09.23 17:51, Michael Stauber via Blueonyx wrote:

Hi Meaulnes,


You probably also were confronted with this situation: you left your office 
(where you use a desktop computer with a POP account) in a rush with your 
laptop under the arm. On the road, you miss the latest e-mails you sent, 
because there aren't in the IMAP Sent folder of that same account, they are in 
the POP Sent folder in your office.

By sending an e-mail from the office computer using a POP account, the mail 
client files a copy into the Sent folder. Is there a way to have the same copy 
in the IMAP's Sent folder on the server, too? It would then be visible on the 
laptop...

Any ideas?


Actually this is entirely a client side issue.

Emails are sent with SMTP or SMTPS. Not POP3 or IMAP. When an email is being 
sent, no copy is store anywhere. It comes in by SMTP(S) and goes out by 
SMTP(S). Done.

However: You can configure your email client(s) to keep a copy of the email. Either locally, or in a folder 
on the server. WHICH folder it uses to store the email can usually be configured somewhere. But there are 
also varying defaults such as "sent", "sent-email", "sent-mail" - even with 
varying capitalization. That entirely depends on the email client.

When you then access this mailbox with another client, that client may have 
different settings as to IF it stores sent emails and WHERE it does that.

This is easy to solve. Check your email client settings and make sure they all store sent 
emails in the same place. Also: Check which IMAP folders your email client is subscribed 
to. It could be that all you need is to include the "other" sent-email folder 
in your subscriptions to make it visible in the other email client.



___
Blueonyx mailing list
Blueonyx@mail.blueonyx.it
http://mail.blueonyx.it/mailman/listinfo/blueonyx

[BlueOnyx:26374] Re: Outlook cannot deliver to BO

[Meaulnes Legler @ MailList via Blueonyx]

On 29.07.23 17:16, Michael Stauber via Blueonyx wrote:

Hi Meaulnes,

I don't have Outlook, so I can't test this.


neither do I, but we are talking about the SMTP server at outlook.com, not 
about the Outlook mail client, right?
 

The relevant part of the error message is this:

7/13/2023 12:54:33 PM - Server at voncastelberg.com (94.103.99.71) returned 
'450 4.4.316 Connection refused [Message=Socket error code 10061] 
[LastAttemptedServerName=voncastelberg.com]

So the connection was refused on the BlueOnyx. But why was it refused? To know 
the exact issue we'd need the related log entries from /var/log/maillog that 
were written when Outlook tried to deliver this email.

That would tell us what we'd need to know in order to troubleshoot this 
further. But looking at the date? The logs might already be gone, so better 
check real quick and see if you still have 'em.

Well, as you suspected, the mail logs are gone, the oldest ones left are in 
/var/log/maillog-20230716.gz and the relevant mail was on 20230713...

So I'll have to wait for the next occurrence of a connection refused by BO.

Thank you and best regards

.. Meaulnes Legler
⌣ Zurich, Switzerland
+41¦0 44 260-1660



___
Blueonyx mailing list
Blueonyx@mail.blueonyx.it
http://mail.blueonyx.it/mailman/listinfo/blueonyx

[BlueOnyx:26372] Outlook cannot deliver to BO

[Meaulnes Legler @ MailList via Blueonyx]

hi Blues :-)

this was the greeting Dick Dolby used in his mail dated 27.01.2020: 
*[BlueOnyx:23611] Outlook email not being delivered*

Seeking for a solution because users of mine repeatedly reported the same 
problem having Outlook blocked, I searched in the maillist and found Dick's 
e-mail. Back then, his mail has not been answered.

Senders hosted at outlook.com are having their e-mails sent to a user hosted on 
a BO-box deferred with an error message like :


7/13/2023 1:04:47 PM - Server at PAXP194MB1359.EURP194.PROD.OUTLOOK.COM 
returned '550 5.4.316 Message expired, connection refused(Socket error code 
10061)'
7/13/2023 12:54:33 PM - Server at voncastelberg.com (94.103.99.71) returned 
'450 4.4.316 Connection refused [Message=Socket error code 10061] 
[LastAttemptedServerName=voncastelberg.com] [LastAttemptedIP=94.103.99.71:25] 
[SmtpSecurity=-2;-2] 
[AM7EUR03FT045.eop-EUR03.prod.protection.outlook.com2023-07-13T12:54:47.218Z 
08DB837809C57466](Socket error code 10061)'


The entire undeliverable message follows at the end, attached is also Dick's 
one dated 27.01.2020.

The recipient's address on my BO is ok and not blacklisted, sending to that 
address from other SMTP-servers like gmail works fine

What is blocking messages coming from outlook.com? Is it a configuration in 
postfix?

Thank you and best regards

.. Meaulnes Legler
⌣ Zurich, Switzerland
+41¦0 44 260-1660

I'm on *Wire* as @meaulnes — https://get.wire.com/
/no more Whatzap and so on!/




error message from my user, Dick's one further down


Fehler bei der Nachrichtenzustellung an folgende Empfänger oder Gruppen:
Ihre Nachricht wurde nicht zugestellt. Trotz wiederholter Zustellversuche für 
Ihre Nachricht hat das E-Mail-System des Empfängers die Annahme einer 
Verbindung von Ihrem E-Mail-System verweigert.
Wenden Sie sich auf andere Weise (z. B. telefonisch) an den Empfänger, und 
bitten Sie ihn, seinem E-Mail-Administrator mitzuteilen, dass sein 
E-Mail-System Verbindungen von Ihrem E-Mail-Server verweigert. Teilen Sie ihm 
die unten angezeigten Fehlerdetails mit. Es ist wahrscheinlich, dass der 
E-Mail-Administrator des Empfängers der einzige ist, der dieses Problem beheben 
kann.
Für E-Mail-Administratoren:
Es konnte keine Verbindung hergestellt werden, weil der Zielcomputer diese 
aktiv verweigert hat. Die Ursache hierfür ist normalerweise, dass versucht 
wird, eine Verbindung mit einem Dienst herzustellen, der auf dem Remotehost 
nicht aktiv ist – d. h. einem, auf dem keine Serveranwendung ausgeführt wird. 
Weitere Informationen und Tipps zur Behebung dieses Problems finden Sie in 
diesem Artikel: https://go.microsoft.com/fwlink/?LinkId=389361.

Diagnoseinformationen für Administratoren:
Generierender Server: PAXP194MB1359.EURP194.PROD.OUTLOOK.COM
Empfangender Server: PAXP194MB1359.EURP194.PROD.OUTLOOK.COM 
m...@voncastelberg.com

7/13/2023 1:04:47 PM - Server at PAXP194MB1359.EURP194.PROD.OUTLOOK.COM 
returned '550 5.4.316 Message expired, connection refused(Socket error code 
10061)'
7/13/2023 12:54:33 PM - Server at voncastelberg.com (94.103.99.71) returned 
'450 4.4.316 Connection refused [Message=Socket error code 10061] 
[LastAttemptedServerName=voncastelberg.com] [LastAttemptedIP=94.103.99.71:25] 
[SmtpSecurity=-2;-2] 
[AM7EUR03FT045.eop-EUR03.prod.protection.outlook.com2023-07-13T12:54:47.218Z 
08DB837809C57466](Socket error code 10061)'
Ursprüngliche Nachrichtenköpfe:
Received: from AS8P194MB1271.EURP194.PROD.OUTLOOK.COM (2603:10a6:20b:3c0::11)
 by PAXP194MB1359.EURP194.PROD.OUTLOOK.COM (2603:10a6:102:1a3::17) with
 Microsoft SMTP Server (version=TLS1_2,
 cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.6588.20; Thu, 13 Jul
 2023 01:02:51 +
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none;
 
b=m6U60uVieG+CFThOZ0lQVD5g1+7YLIy0yfY0jjmA4+jsC9M8V8CTmQ9hiSYuv0TUQk0Z8XbITCzLkDERnMPqHu03frKkp5beORGWDQDCkNrv0RK9SvWdwghFcFMfdsliF2FvQsU/Hk+VpmzJHSCMt450Nas23lSPn1dFls3MS8jXKpj9ZavKLoyccKRZ72V2KEbiAFda/BO/DP+++dkml/62e/a/EMoYRFNQPHRQ84fUHyQ5U3nhxfcCoCuWntNZsoN2KWs4dX5FbryaZy9djXS4iMHQReLvlWVqOMG9vz0NduwMGy0PSAthq1hpjZtUlsNRq7AubKjhKJW62FwsYQ==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com;
 s=arcselector9901;
 
h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1;
 bh=gKWDihxcSBeTHhUa78L+y0oit95eJoT+0w6F5wh4QJU=;
 
b=KJimbAfOOTSYkGnzxrRSpM2Nc3wiaL7rXHul9fiE+xIj/UA8btdOX71dpMz72ZA3Aoe92mqXEWp4i48Kj5+EkFRKCxxwtoZV2LGu2wSynDIgm3IB28/gYmJ7S225u10m3HRN3ldIaJabGaZEZ9otHwevTtfJzIoRdQZH6UFOL7248wn+S+AUqBPldxX2hvVrHCjZ0m6RJjAqct2Kic+QF3/MlkURKsx1zSoqjbfFMTBsYE4eYeD0FdB7IYJSVUUEJ8TLNFSQsNNNRYMHcqvfDbaTeGAWCyKuqIugDf38AhqQ5BpOWBV1k+V8YoviUbE53ZeZJsGHdbBZmOeLdwOv9Q==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=none; 

[BlueOnyx:26343] Re: Backscatter / user not found bounce

[Meaulnes Legler @ MailList via Blueonyx]

hi
I have the same question:

On 02.07.23 21:45, Colin Jack via Blueonyx wrote:

Hi Michael,

2.) Enable and configure SPF and switch it to "Sign & Verify" mode

This checks the SPF records of sender domains and if the senders
IP is not within the SPF records published by say hotmail.com, then
the email will be rejected at the MTA w/o bounce and NDN.

This may be a doh! question but where do I set this?
I can only see DKIM in the settings on the GUI.

Thanks

Colin


Thank you and best regards

で⊃ Meaulnes Legler
Zurich, Switzerland
+41¦0 44 260-1660



___
Blueonyx mailing list
Blueonyx@mail.blueonyx.it
http://mail.blueonyx.it/mailman/listinfo/blueonyx

[BlueOnyx:26321] Re: negative AV-Spam score

[Meaulnes Legler @ MailList via Blueonyx]

Michael and Juerg, thanks for the replies.

But I think my previously exposed solution doesn't resolve the problem 
sustainably, it won't work anymore if the hacker changes his bitcoin address.

Can someone help me to set up a rule that recognizes *the same from and to 
address* in the header? I'm not very skilled for this...

  From: 
  To: 
  Subject: Your account is hacked. Your data is stolen. Learn how to regain 
access.

I don't want to take @waveweb.ch out of the Welcomelist/Whitelist, it's where 
the users on my servers write to. A rule that would catch if from and to 
addresses are the same and then set a very high score would fix my problem.

Thank you and best regards

で⊃ Meaulnes Legler
Zurich, Switzerland
+41¦0 44 260-1660


On 22.06.23 19:05, Michael Stauber via Blueonyx wrote:

Hi Juerg and Meaulnes,


Rules are documented in the files Larry told you, maybe in another directory,  
but you can search for the filenames. Do not change the score in this file, 
because this files will be replaced after an update. You can create new score 
in the file you create your own rules (because I don't use the plugin I don't 
know it's location). Simple add a line:

score BAYES_00  -4

to overwrite score for BAYES_00.


Basically it works like this:

You can place your own (server wide) rules or score changes in a new file the 
directory /etc/mail/spamassassin/

Make sure the file name ends with *.cf and then do a "systemctl restart 
spamassassin" to put it into effect.

As long as you don't modify an existing file your own changes will survive 
through AV-SPAM and SpamAssassin updates.

User rules (which apply only to a single specific user) are located in 
~username/.spamassassin/user_rules and there is a GUI editor to modify them.



___
Blueonyx mailing list
Blueonyx@mail.blueonyx.it
http://mail.blueonyx.it/mailman/listinfo/blueonyx

[BlueOnyx:26314] Re: negative AV-Spam score

[Meaulnes Legler @ MailList via Blueonyx]

thank you Jürg, now I found the catch:

This clever jerk managed to send his blackmailing spam *from and to* my server 
administrator address. And since my server administrator address is in the 
whitelist (sorry! now politically correct: in the welcomelist:-) because I 
don't want to have my users to be blocklisted when I write them something, the 
e-mail got presumably this high negative score of -61.5

You might have noticed this HackersBitcoinAddress rule in the X-Spam-Status, 
it's a rule I created with this cool BO «SpamAssassin Rule Editor» in AV-Spam. 
In this rule, I inserted the long bitcoin wallet address (as Expression) to be 
searched in the message body. I gave it a score of 9. Now I increased the score 
to 100, hope that works out.

Do you know where all those rules and their dedicated scores are listed? Can 
they be edited?

Thank you and best regards

で⊃ Meaulnes Legler
Zurich, Switzerland


On 22.06.23 12:57, Juerg Sommer via Blueonyx wrote:

Hi Meaulnes


I'm confronted with a peculiar situation: spam slips untagged thru with a 
*negative* score

X-Spam-Status: No, score=-61.5 required=5.0 tests=BITCOIN_DEADLINE,
BITCOIN_MALF_HTML,BITCOIN_SPAM_07,DCC_CHECK,DIGEST_MULTIPLE,
DOS_OUTLOOK_TO_MX,FSL_BULK_SIG,HTML_EXTRA_CLOSE,HTML_MESSAGE,
HackersBitcoinAddress,NO_FM_NAME_IP_HOSTN,PDS_BTC_ID,PYZOR_CHECK,
RATS_NOPTR,RATWARE_NO_RDNS,RCVD_IN_PBL,RCVD_IN_SBL_CSS,RCVD_IN_XBL,
RDNS_NONE,SBLXBL_SPAM,SPF_SOFTFAIL,TO_EQ_FM_DIRECT_MX,TXREP,
T_SCC_BODY_TEXT_LINE,USER_IN_WELCOMELIST,USER_IN_WHITELIST
autolearn=no autolearn_force=no version=3.4.2
X-Spam-Relay-Country: TN

what's wrong here? I set the Required Reject Hits to 9 instead of 10 and that 
mail shouldn't have appeared at all if the score had been 61.5, but positive! 
How does it turn negative?


That's normal. SpamAssasin gives positive and negative points based on rules. 
There are some rules that indicates harmless mails (ex. BAYES score 1-10%), in 
your case USER_IN_WELCOMELIST  and USER_IN_WHITELIST. And some other rules, hat 
indicates spam like BITCOIN_DEADLINE. If the sum of all affected rules is 
greater than the defined score, the mail is marked as spam.

I don't know/use the BlueOnyx plugin for spam scanning. Perhaps you can define 
your Welcome-List Addresses in the gui and should check if this sender address 
is whitelisted. There's maybe a missconfiguration, but negative points are not 
generally a problem.

BTW: SpamAssassin has changed their wording (like many other companies). 
Whitelist is now welcomelist, blacklist is blocklist. So one of the rules above 
would be an alias of the other and I don't know how it's named in the GUI.

Best regards,
Juerg
___
Blueonyx mailing list
Blueonyx@mail.blueonyx.it
http://mail.blueonyx.it/mailman/listinfo/blueonyx


___
Blueonyx mailing list
Blueonyx@mail.blueonyx.it
http://mail.blueonyx.it/mailman/listinfo/blueonyx

[BlueOnyx:26312] negative AV-Spam score

[Meaulnes Legler @ MailList via Blueonyx]

hello

I'm confronted with a peculiar situation: spam slips untagged thru with a 
*negative* score

X-Spam-Status: No, score=-61.5 required=5.0 tests=BITCOIN_DEADLINE,
BITCOIN_MALF_HTML,BITCOIN_SPAM_07,DCC_CHECK,DIGEST_MULTIPLE,
DOS_OUTLOOK_TO_MX,FSL_BULK_SIG,HTML_EXTRA_CLOSE,HTML_MESSAGE,
HackersBitcoinAddress,NO_FM_NAME_IP_HOSTN,PDS_BTC_ID,PYZOR_CHECK,
RATS_NOPTR,RATWARE_NO_RDNS,RCVD_IN_PBL,RCVD_IN_SBL_CSS,RCVD_IN_XBL,
RDNS_NONE,SBLXBL_SPAM,SPF_SOFTFAIL,TO_EQ_FM_DIRECT_MX,TXREP,
T_SCC_BODY_TEXT_LINE,USER_IN_WELCOMELIST,USER_IN_WHITELIST
autolearn=no autolearn_force=no version=3.4.2
X-Spam-Relay-Country: TN

what's wrong here? I set the Required Reject Hits to 9 instead of 10 and that 
mail shouldn't have appeared at all if the score had been 61.5, but positive! 
How does it turn negative?

Thank you and best regards

で⊃ Meaulnes Legler
Zurich, Switzerland
+41¦0 44 260-1660

I'm on *Wire* as @meaulnes — https://get.wire.com/
/no more Whatzap and so on!/


___
Blueonyx mailing list
Blueonyx@mail.blueonyx.it
http://mail.blueonyx.it/mailman/listinfo/blueonyx

[BlueOnyx:26284] Re: Continuing Support for BlueOnyx: Your Help Makes a Difference!

[Meaulnes Legler @ MailList via Blueonyx]

sorry dear Michael, but the payment form at https://www.blueonyx.it/donations 
doesn't accept payments from my Swiss AmEx credit card, it falls back to PayPal 
(that I hate) in the United States without the possibility to use a Swiss phone 
number...

So let me know how I can proceed

で⊃ Meaulnes Legler
Zurich, Switzerland
+41¦0 44 260-1660

I'm on *Wire* as @meaulnes — https://get.wire.com/
/no more Whatzap and so on!/

On 04.06.23 19:21, Michael Stauber via Blueonyx wrote:

Dear BlueOnyx Community,

I hope this message finds you well. I am reaching out to you today with a 
humble request for your support to ensure the continued development and 
sustainability of the BlueOnyx project.

As you may know, BlueOnyx has always been an open-source endeavor, driven by 
the passion and dedication of individuals like yourself. Together, we have 
built a powerful and user-friendly platform that empowers countless users 
worldwide.

Over the past year, I have dedicated my energy to the development and release 
of BlueOnyx 5211R, a remarkable milestone in our journey. I take great pride in 
this accomplishment, knowing it has been made possible by the collective 
efforts of our passionate community. It is also great to see that BlueOnyx 
5211R found such widespread acceptance within our community and it has also 
attracted a small influx in new adopters.

However, I want to be transparent about the challenges we are currently facing. 
The sales figures for our commercial add-ons at SOLARSPEED.NET, our associated 
company, have not met our expectations. This has put both the BlueOnyx project 
and our company in a position of uncertainty when it comes to financial 
sustainability. In part our generous licensing that allows to use our software 
on all supported BlueOnyx versions meant that even the widespread adoption of 
BlueOnyx 5211R didn’t significantly result in new software purchases, as 
licenses are transferable from an old server to a new one. Likewise: 
Easy-Migrate works so well, that our offered migration services from older to 
newer BlueOnyx versions are now hardly ever needed or requested, which culled 
another source of regular income.

While we have made efforts to secure alternative sources of income, it is clear 
that we cannot continue without the support of our valued community members 
like you. Your contributions have always played a pivotal role in enabling us 
to provide a free and robust platform like BlueOnyx.

Today, I am reaching out to kindly request your support once again. If you have 
found value in BlueOnyx and believe in the project's mission, I kindly request 
that you consider making a donation to support our ongoing efforts or consider 
making a purchase in the BlueOnyx shop. Maybe you have a license that needs 
renewal or would like to try some of our software that you so far haven’t 
purchased? Your contributions, whether through a one-time donation, a small 
purchase or a monthly commitment, can truly make a difference. To make a 
donation securely and conveniently or consider a software purchase, please 
visit our donation page or our online shop:

https://www.blueonyx.it/donations
https://shop.blueonyx.it

I want to express my sincere gratitude to those who have already donated. Your 
generosity has been instrumental in our progress so far. Now, we humbly ask you 
to consider continuing your support and inspiring others to join our cause. 
Together, we can create a strong and sustainable foundation for BlueOnyx, 
fostering innovation and benefiting the entire community.

If you are unable to contribute financially at this time, we completely 
understand. There are still meaningful ways to help, such as spreading 
awareness about BlueOnyx, sharing your success stories, or contributing your 
skills to further enhance the project. Your active participation and engagement 
are invaluable to our community's growth and success.

Thank you for being a part of the BlueOnyx community and for considering our 
request. Together, we can overcome these challenges and continue building a 
platform that empowers individuals and businesses around the globe.

--
With sincere appreciation,

Michael Stauber
BlueOnyx Project Lead
___
Blueonyx mailing list
Blueonyx@mail.blueonyx.it
http://mail.blueonyx.it/mailman/listinfo/blueonyx


___
Blueonyx mailing list
Blueonyx@mail.blueonyx.it
http://mail.blueonyx.it/mailman/listinfo/blueonyx

[BlueOnyx:26006] Re: Active monitor warnings after AV-Spam update 5210R

[Meaulnes Legler @ MailList]

hi Michael

thank you so much for sharing your immense knowledge with us all day and night 
long!

Monitoring the list, I issued the command just for the sake
___

[root@vs ~] systemctl status spamass-milter
● spamass-milter.service - Mail filter for SpamAssassin
   Loaded: loaded (/usr/lib/systemd/system/spamass-milter.service; enabled; 
vendor preset: disabled)
   Active: active (running) since Sun 2023-02-26 10:22:18 CET; 8min ago
 Main PID: 1824577 (spamass-milter)
Tasks: 2 (limit: 104857)
   Memory: 1.5M
   CGroup: /system.slice/spamass-milter.service
   └─1824577 /usr/sbin/spamass-milter -g postfix -p 
/run/spamass-milter/postfix/sock -a -x -r 10.00 -u mailnull -i 127.0.0.1 -i ::1 
-i 94.103.99.71/32 -- -U /var/run/spamd.sock -s 5120

Feb 26 10:22:18 bleue.waveweb.ch systemd[1]: Started Mail filter for 
SpamAssassin.
Feb 26 10:22:18 bleue.waveweb.ch spamass-milter[1824577]: spamass-milter 0.4.0 
starting
Feb 26 10:23:17 bleue.waveweb.ch spamass-milter[1824577]: *Could not retrieve sendmail 
macro "i"!.  Please add it to confMILTER_MACROS_ENVFROM for better spamassassin 
results*

‾‾
Is the last line ok? Do I have to do something?

Thank you and best regards

で⊃ Meaulnes Legler
Zurich, Switzerland


On 26.02.23 09:38, JW Ronken wrote:

Hi Michael
Do you never sleep ;)

In /var/log/maillog I only see these many time
Feb 26 07:00:01 ds30 postfix/smtpd[138336]: warning: connect to Milter service 
unix:/run/spamass-milter/postfix/sock: No such file or directory
I've now rebooted the server one time and will keep an eye on it.
If it happens again  I'll send you the support request.
Many thanks and have a great Sunday.

Janwillem


On Sun, Feb 26, 2023 at 8:19 AM Michael Stauber mailto:mstau...@blueonyx.it>> wrote:

Hi Janwillem,

 > updated yesterday 2 x 5210R with the latest AV-Spam but one of of the
 > servers I get every x hours the mail from Active Monitor:
 > Active Monitor has detected recent changes in the state of your server
 > appliance.
 > For more details, please see the Active Monitor section of the Server
 > Desktop.
 >
 > Summary of changes:
 >
 > * The email system is operating normally.
 > - The SMTP server is operating normally.

There should also be an Active Monior entry for the AV-SPAM itself which
lists any issues it may have.

 > I do see a lot of;
 >
 > Feb 26 07:50:46 ds30 postfix/smtpd[145531]: warning: connect to Milter
 > service unix:/run/spamass-milter/postfix/sock: No such file or directory
 >
 >
 > And checking /usr/sausalito/sbin/avspam_init.pl  
>
 > -status shows:
  >
 > | Spamass-Milter | 1 |1 | 0|

The next time this happens, could you please check with this command and
report what it shows:

systemctl status spamass-milter

I'm especially interested at the log entries at the bottom of that command.

Or you can also find them in /var/log/maillog. That would help with the
debugging. Or you can send a "Support Request" via the GUI and tick the
checkbox "Allow Access" and I'll take a look at it.

-- 
With best regards


Michael Stauber
___
Blueonyx mailing list
Blueonyx@mail.blueonyx.it 
http://mail.blueonyx.it/mailman/listinfo/blueonyx 



___
Blueonyx mailing list
Blueonyx@mail.blueonyx.it
http://mail.blueonyx.it/mailman/listinfo/blueonyx


___
Blueonyx mailing list
Blueonyx@mail.blueonyx.it
http://mail.blueonyx.it/mailman/listinfo/blueonyx

[BlueOnyx:25996] Re: quota listing — thanks!

[Meaulnes Legler @ MailList]

On 24.02.23 01:06, Michael Stauber wrote:

/usr/sausalito/sbin/get_quotas.pl --help


yes! that's the one I was looking for, thank you!

and no, the GUI _does_ sort the columns ascending and descending in MB, that's 
true, but _not_ nicely! Michael, if you look at the listing closely, you'll 
note that the sorting isn't numerically by value (except in the rightmost 
percentage column), but numerically by figures, or «alphabetically», or however 
to name it... See the attached screenshot and its transcription:

▼ Disk Usage
964.39MB
94.62MB
92.14MB
903.92MB
90.24MB
9.71MB
83.62MB
822.09MB


On 23.02.23 15:07, Christoph Schneeberger wrote:

Try 'apropos quota' in a shell, which should report among others 'repquota' 
which is probably what you're looking for.


thank you Christoph! I didn't know that `apropos` command, /man lernt nie aus!/

Best regards
ヾ⊃ Meaulnes Legler
Zurich, Switzerland
+41¦0 44 260-1660

___
Blueonyx mailing list
Blueonyx@mail.blueonyx.it
http://mail.blueonyx.it/mailman/listinfo/blueonyx

[BlueOnyx:25992] quota listing

[Meaulnes Legler @ MailList]

hello

I forgot the command to list all quotas of all users...

In the GUI, one can get a list in Usage Information > Disk > All Users, but a 
correct sorted usage is only possible in the last column (⇕percentage), the other 
columns are sorted «alphabetically» and not numerically, that is like

bettina 6.13MB
franco  57.99MB 
alice   568.29MB
tim 56.76MB 

568.29MB should come first and 6.13MB last, right?

The command line output can be piped with cut and sort to have the desired 
listing

Thank you and best regards

で⊃ Meaulnes Legler
Zurich, Switzerland




___
Blueonyx mailing list
Blueonyx@mail.blueonyx.it
http://mail.blueonyx.it/mailman/listinfo/blueonyx

[BlueOnyx:25873] Re: DKIM , SPF und DMARC on BlueOnyx

[Meaulnes Legler @ MailList]

hello Chris, Neal & Michael

It's a while ago, I had this problem Chris mentioned — providers, e.g. gmail, 
tagged e-mails coming from my servers as spam and users complained that their 
mails weren't delivered anymore or landed in the Junk folder... So tried to 
find a remedy, asked the list in July and Michael installed then OpenDKIM.

Chris, your guide to install DKIM would have been very helpful at that time, I 
had to figure it all out the hard way... First generating the key and then 
inserting the TXT record into the DNS. And I wanted to do this for each domain.

Then it occurred to me that the SPF *and* the DMARC TXT records must also be 
entered into the DNS. Whether DKIM, SPF and DMARK are charlatan products is an 
open question, but installing all three «authentication techniques» 
significantly reduced spam tagging and undelivered mail on my servers.

So my message:
if you have a bunch of domains without those implementations, then do the 
following (as I did):
• create all DKIM keys
• prepare the DMARC TXT record for each domain (see NOTE 1)
• prepare the SPF TXT record for each domain (see NOTE 2)
Then you can switch to your DNS server and insert the three TXT records. It's 
some kind of a «/Das tapfere Schneiderlein/» (The Valiant Little Tailor) but 
with only tree flies:-)

You'll have to do this one by one, unfortunately  (I created a shell script 
that does this partially, see NOTE3)
• generate all DKIM keys for each domain into /etc/opendkim/keys → Steps 1 to 4 
in Chris' guide
• Step 5 is important: chown -R opendkim:opendkim /etc/opendkim (that was a 
tough one to find out:-)
• Step 6 and 7
Then you can switch to your DNS server for Step 8.

Browse thru each domain in [Select Domain... v] and add the three TXT records
• _dmarc . yourdomain.tld   TXT v=DMARC1; p=quarantine; 
rua=mailto:rep...@yourdomain.tld; ruf=mailto:rep...@yourdomain.tld
• yourdomain.tld.   TXT v=spf1 ip4:ip.ip.ip.ip1/32 ip4:ip.ip.ip.ip2/32 
include:_spf.google.com include:_spf.bluewin.ch ~all
• default._domainkey . yourdomain.tld   TXT v=DKIM1; k=rsa; 
p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDeQBM3pni6EN9A3+N47x10tiRHe3KUM4ciXUMBD9gABcv/dnpRQfdOXZOG1A8WrvwoKXywYIDv4MCyuBXgCHMppjkQ703lc8eKjuTZxGLheiQGQ/ISmTndbM2y+SG9tv+YvD9YwpVNLTuUJung3XpHeoiOXLr0HX8TfQPzG04hDQIDAQAB

Save the record, then save again for the domain, and when you went through all 
domains, restart the DNS server.

Goto Step 9 and test the DNS record using 
https://www.dmarcanalyzer.com/dkim/dkim-checker/ I noted it might take a while 
to get an ok, probably because of the DNS propagation.

Best regards

で⊃ Meaulnes Legler
Zurich, Switzerland
+41¦0 44 260-1660
I'm on *Wire* as @meaulnes — https://get.wire.com/
/no more Whatzap and so on!/

NOTE1   I'm not sure which arguments are the best, these rua= and ruf= 
addresses create errors, but they don't harm..

NOTE2   Also here I'm not sure: a? mx? ip4? Intuitively, I included 
_spf.google.com and _spf.bluewin.ch, a major telecom provider

NOTE3   My shell script checks OpenDKIM and Postfix configuration and lists all 
virtual servers, the ones with already installed DKIM keyfiles and and the ones 
without:

# ~/dkim_addDomain.sh
   OpenDKIM and Postfix configuration ok.
   ERROR: no domain specified to DKIM!
   dkim_addDomain.sh version 3 (9.2022) - Install DKIM record for a virtual 
domain.
   usage: /root/dkim_addDomain.sh domain.tld or sub.domain.tld
   List of 32 available domains on this server:
   ...
   List of 17 already installed domains with keyfiles:
   ...
   List of 15 domains that can be installed:
   ...

If someone wants it, write me directly @ i...@waveweb.ch. As Chris points it 
out: Keep in mind all the usual disclaimers, it's made available as a courtesy, 
not guaranteed to work for your production use, etc etc blah blah:-)


On 29.12.22 05:05, Chris Gebhardt - VIRTBIZ Internet wrote:

Hi Michael,

On 12/28/22 7:50 PM, Michael Stauber wrote:

All that out of the way, here's the guide for adding DKIM to a BlueOnyx VSITE:

https://www.virtbiz.com/client/index.php?rp=/knowledgebase/4996/Add-DKIM-for-BlueOnyx-VSITE.html


Ah, you know what? I guess it's not *that* much work, so I think I'll build it 
into the DNS GUI. I'll throw OpenDKIM in as mandatory RPM and provide the GUI 
to create/manage the keys and TXT DNS records.


And instantly make my guide obsolete?   Wh!   LOL, not really.   I think 
that's a great solution if it's easy enough to integrate, much like the SPF 
generator but a step beyond since it will have to handle the key integration.

I presume that will be something for 5211R and possibly backported to 5210R.   
If that's the case, I'll keep the guide active for those who want to run 
OpenDKIM for VSITEs on a 5209R, since those will still be knocking around for a 
while.    When the feature is released, I'll update my KB entry noting the 
obsolescence.



___
Blueonyx mailing list

[BlueOnyx:25855] Re: Mass SPF tool

[Meaulnes Legler @ MailList]

hello

you must strip the www. else dig won't read the spf record

for i in $(ls -1 /home/sites | sed 's/www.//g'); do echo $i ; dig $i txt | grep 
spf ; done

best regards

で⊃ Meaulnes Legler
Zurich, Switzerland
+41¦0 44 260-1660


On 27.12.22 20:59, neal pressman wrote:

quick script to check the vsites and see what does and does not have spf

#!/bin/bash

for i in $(ls -1 /home/sites); do

echo $i
dig $i txt | grep spf
done


--



-- Original Message ---
From: Chris Gebhardt - VIRTBIZ Internet 
To: BlueOnyx General Mailing List 
Sent: Tue, 27 Dec 2022 13:41:28 -0600
Subject: [BlueOnyx:25852] Mass SPF tool


Hi All,

I'm sure everyone has noticed Google has begun rejecting mail
altogether if there's no SPF record.  Typically this isn't a big
issue since we have set up AutoDNS in BlueOnyx to pre-configure a
SPF record on new site creations.   However, it appears we have a
lot of hosted sites that pre-date that.  So now we're getting a
number of tickets from customers with bouncing mail.

We're tackling these on a break-fix basis at the moment.   We
would love to do something more proactive, but manually going
through each vsite and creating a default SPF seems tedious.
Especially when there may be multiple alias domains.

Does anyone have a good idea for an automated process that would
search through configured vsites and check DNS for an SPF, then if
there is not a SPF record, create a basic one allowing for email
sent from the server's IP address or subnet?

I know I'm fishing... but thought I'd ask before we start a really
tedious and brain-numbing process over here.

--
Chris Gebhardt
VIRTBIZ Internet Services
Access, Web Hosting, Colocation, Dedicated
www.virtbiz.com | toll-free (866) 4 VIRTBIZ

___
Blueonyx mailing list
Blueonyx@mail.blueonyx.it
http://mail.blueonyx.it/mailman/listinfo/blueonyx

--- End of Original Message ---

___
Blueonyx mailing list
Blueonyx@mail.blueonyx.it
http://mail.blueonyx.it/mailman/listinfo/blueonyx


___
Blueonyx mailing list
Blueonyx@mail.blueonyx.it
http://mail.blueonyx.it/mailman/listinfo/blueonyx

[BlueOnyx:25712] Re: BlueOnyx 5211R Released

[Meaulnes Legler @ MailList]

hi Michael

I don't get this — on the first line, you say

On 22.11.22 17:27, Michael Stauber wrote:

Sadly BlueOnyx 5211R (or any EL 9 clone) won't run *on OpenVZ 7 or Aventurin{e} 
6109R* as Container.


then on the 2nd line, you say


It works in a VM *on OpenVZ 7 and Aventurin{e} 6109R*, though.


sorry for my ignorance, what does apply now?

I have an Aventurine{e} 6109R with five 5210R Virtual Machines. Are those 
Containers? Can I run 5211R?

Thank you and best regards

で⊃ Meaulnes Legler
Zurich, Switzerland
+41¦0 44 260-1660

___
Blueonyx mailing list
Blueonyx@mail.blueonyx.it
http://mail.blueonyx.it/mailman/listinfo/blueonyx

[BlueOnyx:25663] Re: ip address server-access blocks

[Meaulnes Legler @ MailList]

hello

if you have several servers and don't want to have to block an IP address / 
address range manually on each one of them, APF Firewall has a cool feature: 
External Resources

create your IP list of addresses to deny in a textfile, one IP per line, and 
upload it to a publicly accessible URL, like 
http://myserver.com/glob_deny.rules_all.txt

then in the GUI: Server Management > Security > APF Firewall > External Resources, 
add [myserver.com/glob_deny.rules_all.txt] into the Deny URL field with the http protocol 
and > [√Save]

of course you would have to do this on each server, but just once. Then, when 
you want to add a new address to block, just edit your list and the changes are 
applied to all servers the next day.

best regards

で⊃ Meaulnes Legler
Zurich, Switzerland
+41¦0 44 260-1660

___
Blueonyx mailing list
Blueonyx@mail.blueonyx.it
http://mail.blueonyx.it/mailman/listinfo/blueonyx

[BlueOnyx:25616] Re: BlueOnyx 5211R development - progress report — Adminica GUI ok!

[Meaulnes Legler @ MailList]

I think the actual Adminica GUI is just fine, no need for a new one, better to 
focus on the functionality and its coding...

On 17.09.22 03:41, Michael Stauber wrote:

But I'm open to suggestions and ideas. Or if you have some small HMTL or CSS 
optimizations for the current GUI? Send them over and I'll happily take a look 
and might build them in.


As I said, the only thing I'm missing is the ENTER key to log out... It's there 
for login, but not for logout, see both source codes below

Best regards

で⊃ Meaulnes Legler
Zurich, Switzerland
+41¦0 44 260-1660



view-source:https://bleue.waveweb.ch:81/
—

 
——


view-source:https://bleue.waveweb.ch:81/user/userList?group=site2
——


 
 
 
 aesthetica logged in on 
bleue.waveweb.ch
 
 Are you sure you want to logout of the 
system?
 
 
 
 
 Logout
 
 
 
 Cancel
 
 
 
 


——

___
Blueonyx mailing list
Blueonyx@mail.blueonyx.it
http://mail.blueonyx.it/mailman/listinfo/blueonyx

[BlueOnyx:25519] Re: Have you ever wanted to run BlueOnyx on a Blue Onyx?

[Meaulnes Legler @ MailList]

ha! isn't the name BlueOnyx trademarked? Even with one or two spaces in it?

What would happen if you would baptize 5211R something like RockyOnyx or 
AlmaOnyx? (I know you wouldn't anyway:-)

Best regards

ド⊃ Meaulnes Legler
Zurich, Switzerland
+41¦0 44 260-1660

On 21.07.22 05:02, Michael Stauber wrote:

Hi all,

Small excerpt from an article on "The Register":

--
The Rocky Linux Project has released version 9 of its RHEL-compatible distro 
and debuted its new build service.

Rocky Linux 9, codenamed "Blue Onyx", is here at last, some two months after 
the upstream distro on whose source code it is based. Its progenitor, Red Hat Enterprise 
Linux 9, was announced on May 10. The best-known other modern CentOS Linux replacement, 
AlmaLinux 9, went into beta in April, and shipped just over a fortnight after Red Hat.

Some other RHEL rebuilds seem to be struggling with version 9, too. Oracle 
released Oracle Linux 9 this month, and some of the lesser-known projects still 
haven't released their final versions. For instance, Virtuozzo's VzLinux 9 
remains in beta.

Source: https://www.theregister.com/2022/07/18/rocky_linux_9/
--

The Rocky Linux guys named their RHEL9 clone "Blue Onyx". How original! How 
groundbreaking! What a nice choice. /slow_clapping.gif

Eventually when 5211R is released, you may be able to run BlueOnyx on a Blue 
Onyx. I might even release a BlueOnyx 5211R package with two spaces in the 
name, so that you can install Blue   Onyx on a BlueOnyx that runs on a Blue 
Onyx. ;o)



___
Blueonyx mailing list
Blueonyx@mail.blueonyx.it
http://mail.blueonyx.it/mailman/listinfo/blueonyx

[BlueOnyx:25512] Re: stop receiving e-mail only

[Meaulnes Legler @ MailList]

On 19.07.22 17:36, Larry Smith wrote:

Meaulnes,
   Believe under the user edit, basic settings there is a disale users email.


yes you're right! I overlooked this one!

Basic Settings > Disable User's Email [√] allows a login to the user's mail and 
sending an e-mail to him generates:

554 5.7.1 : Recipient address rejected: Access denied

Thank you Larry and best regards

で⊃ Meaulnes Legler
Zurich, Switzerland
+41¦0 44 260-1660

___
Blueonyx mailing list
Blueonyx@mail.blueonyx.it
http://mail.blueonyx.it/mailman/listinfo/blueonyx

[BlueOnyx:25510] stop receiving e-mail only

[Meaulnes Legler @ MailList]

hello

I have a user that passed away and I would like to stop its incoming e-mail. Now this 
could be done at Site Management > User List > Suspended [√]. But this also 
suspends not only e-mail; the tooltip says:

«Suspending a user will prevent that user from accessing system services 
associated with that account such as telnet, FTP, mail, and Web access to their 
files. Email sent to the suspended user's account will be rejected and the 
sender will receive an error message.»

But the heirs still want to have access to this user's files via FTP. How can I 
just have the e-mail rejected (mbox doesn't grow anymore) and optionally have 
the sender receive an error message?

Thank you and best regards

で⊃ Meaulnes Legler
Zurich Switzerland
+41¦0 44 260-1660


___
Blueonyx mailing list
Blueonyx@mail.blueonyx.it
http://mail.blueonyx.it/mailman/listinfo/blueonyx

[BlueOnyx:25444] Re: Instagram blocks

[Meaulnes Legler @ MailList]

On 22.05.22 01:21, Chris Gebhardt - VIRTBIZ Internet wrote:

On 5/21/2022 11:08 AM, Michael Stauber wrote:

Hi Meaulnes,

Looking at the GUI again, there is the [√]Milter-Greylist [√]Milter-GeoIP 
[√]SpamAssassin [√]Clam AV page where those four services can be turned off — 
what I did.

If all that is turned off, then there is nothing AV-SPAM related in the way 
which could prevent email delivery.
So you should be able to receive these emails.

If I missed this in a previous message in the thread, please accept my apology.  
However, if you have enabled any RBL / blacklists in the GUI (outside of AV Spam, at 
Server Management > Network Services > Email > Blacklisting) then it's possible 
that the message could be coming from an IP address or block that is being blacklisted 
by one of the lists you have configured.

What I might suggest is watching the maillog at CLI with this command:

# tail -f /var/log/maillog

Then make your Instagram password reset request and see if you notice any 
activity that might indicate an attempt to send, or a cause for rejection.   If 
your server is the cause for the issue, then it will be noted in the log.


yeah, I tried this several times, with and without APF and AV-SPAM, there is 
absolutely no activity in /var/log/maillog nor in /var/log/messages... It must 
be Instagram that just doesn't send a message.

The domain is not blacklisted, I checked that. I also gave a try to add 
a:instagram.com to the spf1 TXT record in the domain's DNS, it didn't help 
either. And an additional include:_spf.instagram.com leads to the error: No 
valid TXT record was found for the domain _spf.instagram.com

So I'm stuck.

Thanks Larry, Michael and Chris for the help!

Best regards

で⊃ Meaulnes Legler
Zurich, Switzerland
+41¦0 44 260-1660

I'm on *Wire* as @meaulnes — https://get.wire.com/
/no more Whatzap and so on!/


___
Blueonyx mailing list
Blueonyx@mail.blueonyx.it
http://mail.blueonyx.it/mailman/listinfo/blueonyx

[BlueOnyx:25440] Re: Instagram blocks

[Meaulnes Legler @ MailList]

hi Larry, thanks for the reply

On 21.05.22 14:48, Larry Smith wrote:

do you perchance have the GEOIP service turned on


yes well I have no idea from which country those Instagram messages are 
supposed to come from, despite know if they have the @instagram.com sender 
address...

But I thought that by turning off the AV-SPAM, I would also disable the GEOIP 
service, wouldn't I?

Looking at the GUI again, there is the [√]Milter-Greylist [√]Milter-GeoIP 
[√]SpamAssassin [√]Clam AV page where those four services can be turned off — 
what I did.

And on the GEOIP page, there is «Blocking of all other SMTP connections:» and 
also «IP Address bans [√]» — I checked them all off → didn't help, no incoming 
e-mail.

Any other ideas?

Thank you and best regards

で⊃ Meaulnes Legler
Zurich, Switzerland
+41¦0 44 260-1660


___
Blueonyx mailing list
Blueonyx@mail.blueonyx.it
http://mail.blueonyx.it/mailman/listinfo/blueonyx

[BlueOnyx:25438] Instagram blocks

[Meaulnes Legler @ MailList]

hello

I have a customer who doesn't get recovery e-mails from Instagram to his 
account on a domain on my server. I couldn't find any instagram.com activity in 
the maillog, messages and error logs, I just can't figure out why he doesn't 
get these mails from Instagram. And of course, there is absolutely no support 
at Instagram, no way to change the recovery address...

I stooped to create an Instagram account myself using the same domain and, 
effectively, I didn't get any e-mail from them either.

I tried to completely turn off Security > APF (can't just whitelist instagram.com 
because the Allow Host Rules are obviously IP based only) and turned off also Network 
Services > AV-SPAM Services, that didn't help.

Any idea how I can resolve this conflict?

Thank you and best regards

で⊃ Meaulnes Legler
Zurich, Switzerland
+41¦0 44 260-1660

I'm on *Wire* as @meaulnes — https://get.wire.com/
/no more Whatzap and so on!/

___
Blueonyx mailing list
Blueonyx@mail.blueonyx.it
http://mail.blueonyx.it/mailman/listinfo/blueonyx

[BlueOnyx:25405] turn off greylisting just for specific users? #2

[Meaulnes Legler @ MailList]

in addition to my previous question, I might have found a workaround:

if I use e-mail forwarding (in Modify User Settings > Basic Settings > Email 
Forwarding > [√] Enable [√] Save Copy), will the forwarding occur *before* the 
greylisting? Trial & Error is a bit difficult in this case...

Thank you and best regards

で⊃ Meaulnes Legler
Zurich, Switzerland
+41¦0 44 260-1660



___
Blueonyx mailing list
Blueonyx@mail.blueonyx.it
http://mail.blueonyx.it/mailman/listinfo/blueonyx

[BlueOnyx:25404] turn off greylisting just for specific users?

[Meaulnes Legler @ MailList]

hello!

By default I turn on greylisting on my e-mail servers. But some users complain 
about this because they allegedly don't get expected mails...

Is there a way to turn off greylisting just for specific users?

Thank you and best regards

で⊃ Meaulnes Legler
Zurich, Switzerland
+41¦0 44 260-1660



___
Blueonyx mailing list
Blueonyx@mail.blueonyx.it
http://mail.blueonyx.it/mailman/listinfo/blueonyx

[BlueOnyx:25361] Re: Email was not accepted because WHOIS lists recent changes — solved!

[Meaulnes Legler @ MailList]

forget it, sorry, I found the issue: the smtp server stalled, I restarted it with 
`systemctl restart sendmail` and was then confronted with the exasperating 
certificate mismatch virtualserver_name<>senderserver_name, accepted that and 
now it works.

best regards

で⊃ Meaulnes Legler
Zurich, Switzerland
+41¦0 44 260-1660


On 18.03.22 14:21, Meaulnes Legler @ MailList wrote:

this is really strange and never noticed it until today

I renewed the domain name «domain.tld» at its registrar GoDaddy today. Then I 
wanted to send an e-mail from «m...@domain.tld» to «u...@domain.tld» and got 
the following message from my mail client:


Sending of the message failed.
An error occurred while sending mail. The mail server responded:
Email was not accepted at this time, because the WHOIS of your domain lists 
recent changes..
Please check the message recipient "u...@domain.tld" and try again.


What the heck? Whois reports the update that occurred today:


[Querying whois.publicinterestregistry.net]
[whois.publicinterestregistry.net]
Domain Name: DOMAIN.TLD
Registry Domain ID: D1702817-LROR
Registrar WHOIS Server: whois.godaddy.com
Registrar URL: http://www.whois.godaddy.com
Updated Date: 2022-03-18T09:01:23Z    <<--
Creation Date: 1998-05-07T04:00:00Z
Registry Expiry Date: 2023-05-06T04:00:00Z
Registrar Registration Expiration Date:
Registrar: GoDaddy.com, LLC
Registrar IANA ID: 146

...etc...

but why does this affect sending mails to that freshly updated domain? Sending 
an e-mail from another domain, as e.g. gmail, to that same address works, but 
from and to the same domain doesn't.

/var/log/maillog reports:


Mar 18 14:05:25 vs milter-geoip[3469741]: WHOIS_BLOCK: Domain of Sender's 
Email-Address: domain.tld - Registrar: GoDaddy.com, LLC - Update: Fri Mar 18 
09:01:20 2022 - TimeDiff: WARN: Reg younger than ONE WEEK!
Mar 18 14:05:25 vs postfix/smtpd[3827452]: NOQUEUE: milter-reject: RCPT from 
238.132.61.188.dynamic.wline.res.cust.swisscom.ch[188.61.132.238]: 541 5.4.1 Email was not accepted at 
this time, because the WHOIS of your domain lists recent changes.; from= 
to= proto=ESMTP helo=<[192.168.105.53]> sasl_username=


this «TimeDiff: WARN: Reg younger than ONE WEEK!» is odd... anyone can explain?

Thank you and best regards

で⊃ Meaulnes Legler
Zurich, Switzerland
+41¦0 44 260-1660





___
Blueonyx mailing list
Blueonyx@mail.blueonyx.it
http://mail.blueonyx.it/mailman/listinfo/blueonyx

[BlueOnyx:25360] Email was not accepted because WHOIS lists recent changes

[Meaulnes Legler @ MailList]

this is really strange and never noticed it until today

I renewed the domain name «domain.tld» at its registrar GoDaddy today. Then I 
wanted to send an e-mail from «m...@domain.tld» to «u...@domain.tld» and got 
the following message from my mail client:


Sending of the message failed.
An error occurred while sending mail. The mail server responded:
Email was not accepted at this time, because the WHOIS of your domain lists 
recent changes..
Please check the message recipient "u...@domain.tld" and try again.


What the heck? Whois reports the update that occurred today:


[Querying whois.publicinterestregistry.net]
[whois.publicinterestregistry.net]
Domain Name: DOMAIN.TLD
Registry Domain ID: D1702817-LROR
Registrar WHOIS Server: whois.godaddy.com
Registrar URL: http://www.whois.godaddy.com
Updated Date: 2022-03-18T09:01:23Z  <<--
Creation Date: 1998-05-07T04:00:00Z
Registry Expiry Date: 2023-05-06T04:00:00Z
Registrar Registration Expiration Date:
Registrar: GoDaddy.com, LLC
Registrar IANA ID: 146

...etc...

but why does this affect sending mails to that freshly updated domain? Sending 
an e-mail from another domain, as e.g. gmail, to that same address works, but 
from and to the same domain doesn't.

/var/log/maillog reports:


Mar 18 14:05:25 vs milter-geoip[3469741]: WHOIS_BLOCK: Domain of Sender's 
Email-Address: domain.tld - Registrar: GoDaddy.com, LLC - Update: Fri Mar 18 
09:01:20 2022 - TimeDiff: WARN: Reg younger than ONE WEEK!
Mar 18 14:05:25 vs postfix/smtpd[3827452]: NOQUEUE: milter-reject: RCPT from 
238.132.61.188.dynamic.wline.res.cust.swisscom.ch[188.61.132.238]: 541 5.4.1 Email was not accepted at 
this time, because the WHOIS of your domain lists recent changes.; from= 
to= proto=ESMTP helo=<[192.168.105.53]> sasl_username=


this «TimeDiff: WARN: Reg younger than ONE WEEK!» is odd... anyone can explain?

Thank you and best regards

で⊃ Meaulnes Legler
Zurich, Switzerland
+41¦0 44 260-1660



___
Blueonyx mailing list
Blueonyx@mail.blueonyx.it
http://mail.blueonyx.it/mailman/listinfo/blueonyx

[BlueOnyx:25335] Re: DKIM How To 5209R ?

[Meaulnes Legler @ MailList]

On 31.01.22 21:01, Michael Stauber wrote:

Here is a HowTo for CentOS 7 that kinda looks OK:

https://www.web-workers.ch/index.php/2019/10/21/how-to-configure-dkim-spf-dmarc-on-sendmail-for-multiple-domains-on-centos-7/

→ How to configure DKIM & SPF & DMARC on Sendmail for multiple domains on 
CentOS 7


If you want to sign outgoing emails via DKIM, then you need to install and 
configure OpenDKIM, which that guide explains.


the link says: How to configure DKIM & SPF & DMARC on *Sendmail* for multiple 
domains on CentOS 7

does this work on a 5210R and for Procmail, too?

thanks and best regards

で⊃ Meaulnes Legler
Zurich, Switzerland
+41¦0 44 260-1660


___
Blueonyx mailing list
Blueonyx@mail.blueonyx.it
http://mail.blueonyx.it/mailman/listinfo/blueonyx

[BlueOnyx:25289] Re: awstats

[Meaulnes Legler @ MailList]

On 05.01.22 16:52, Florian Arzberger wrote:


I believe it's more of a GUI issue. I cannot click on anything to specify
the period for example.


yes, same here

I wrote to Michael privately, giving him GUI access to look at it, he answered 
that he was sick (hopefully not Covid!) and would look at it in a couple of days

there is no hurry

best regards

で⊃ Meaulnes Legler
Zurich, Switzerland
+41¦0 44 260-1660


___
Blueonyx mailing list
Blueonyx@mail.blueonyx.it
http://mail.blueonyx.it/mailman/listinfo/blueonyx

[BlueOnyx:25285] Re: awstats

[Meaulnes Legler @ MailList]

Michael, thanks for the reply

well, configuration seems all good, Vsite Usage Information is 5 years, nothing 
is purged, and for each day of the year there is a round 22kb «web.cache» file, 
like .../var/logs/2021/10/11/web.cache

nevertheless the awstats data is empty since April 2021 and — strange enough — 
Webalizer *does* show continuous activity...

but also Site Management > Usage Information > Web says «No data were found for 
activity during the period specified. You may want to try another set of dates.» (see 
screenshots) and the same at Usage Information > Email, I can't get data either

what am I doing wrong? anyone else having this problem?

thanks and best regards

で⊃ Meaulnes Legler
Zurich, Switzerland
+41¦0 44 260-1660

I'm on *Wire* as @meaulnes — https://get.wire.com/
/no more Whatzap and so on!/

On 03.01.22 00:55, Michael Stauber wrote:

Hi Meaulnes,


hi folks! a Happy New Year!


Indeed! A Happy New Year to all!


as every year, I pull out the yearly awstats of some sites at Site
Management > Usage Information > AWStats > Reported Period: -Year- 2021
[OK]

unfortunately, something went havoc in March or April 2021, there is no
data saved since then, all values are zero (see attached ss)...

I guess that that data is gone, but I want to know what do I have to fix
in order to have the data for 2022, at least!


Please check under "Server Management" / "System Settings" / "Data
Retention" and see what the configuration there is. That defines if
logfiles are kept and for how long.

Next check in the logfile directory of the Vsite to see if there are
logfiles for the relevant period.

On a 5210R that would be these:

/home/sites//var/logs

And on older BlueOnyx it would be this:

/home/sites//logs

There should be a folder for 2021 with subfolders for each month.

___
Blueonyx mailing list
Blueonyx@mail.blueonyx.it
http://mail.blueonyx.it/mailman/listinfo/blueonyx

[BlueOnyx:25283] awstats

[Meaulnes Legler @ MailList]

hi folks! a Happy New Year!

as every year, I pull out the yearly awstats of some sites at Site Management > Usage 
Information > AWStats > Reported Period: -Year- 2021 [OK]

unfortunately, something went havoc in March or April 2021, there is no data 
saved since then, all values are zero (see attached ss)...

I guess that that data is gone, but I want to know what do I have to fix in 
order to have the data for 2022, at least!

thanks for any help and best regards

で⊃ Meaulnes Legler
Zurich, Switzerland
+41¦0 44 260-1660

I'm on *Wire* as @meaulnes — https://get.wire.com/
/no more Whatzap and so on!/

___
Blueonyx mailing list
Blueonyx@mail.blueonyx.it
http://mail.blueonyx.it/mailman/listinfo/blueonyx

[BlueOnyx:25210] Re: BlueOnyx 5210R: CentOS 8 to AlmaLinux 8 conversion — my 2nd experience

[Meaulnes Legler @ MailList]

On 10.11.21 07:21, Michael Stauber wrote:

Hi Meaulnes,
Many thanks for sharing this. Indeed, during the conversion pretty much
all OS RPMs get reinstalled. This can rock the boat a little as far as
some services are concerned.


since my feedback was appreciated, I report running the script again (with a 
timer) on two more fussy and larger servers:


# time /usr/sausalito/sbin/almalinux-deploy.sh | tee 
~/almalinux-deploy_output.txt
 ⋮
 ⋮
 ⋮
Complete!
Run dnf distro-sync -yOK
Restoring of alternatives is done OK
Install AlmaLinux kernel  OK
Generating grub configuration file ...
Found linux image: /boot/vmlinuz-4.18.0-305.25.1.el8_4.x86_64
Found initrd image: /boot/initramfs-4.18.0-305.25.1.el8_4.x86_64.img
done
grep: /boot/grub2/grubenv: No such file or directory
All Secure Boot related packages which were released by not AlmaLinux are 
reinstalledOK

Migration to AlmaLinux is completed

real6m52.457s
user2m38.189s
sys 0m56.677s


All good after almost 7mins! (the larger server had 7m20) Michael's fixes were 
effective.

This time, ssh wasn't stalled, only the AV-SPAM Services...
Those were running correctly only after several off/on attempts in the GUI and with 
flushing MySQL (in Network Services > AV-SPAM > MySQL) or maybe I rushed too 
much

Best regards

で⊃ Meaulnes Legler
Zurich, Switzerland
+41¦0 44 260-1660


___
Blueonyx mailing list
Blueonyx@mail.blueonyx.it
http://mail.blueonyx.it/mailman/listinfo/blueonyx

[BlueOnyx:25205] Re: BlueOnyx 5210R: CentOS 8 to AlmaLinux 8 conversion — my experience

[Meaulnes Legler @ MailList]

well me too, I tried the conversion on a server without too many fussy users — 
with success (except for a small glitch at the end). I take the liberty of 
sharing this:

# yum clean all
# yum update
# cat /etc/build
build 20210202 for a 5210R in en_US
# cat /etc/redhat-release
CentOS Linux release 8.4.2105

# /usr/sausalito/sbin/almalinux-deploy.sh | tee ~/almalinux-deploy_output.txt
...
/ very verbose for ~10min /
...
Running transaction check
Transaction check succeeded.
Running transaction test
The downloaded packages were saved in cache until the next successful 
transaction.
You can remove cached packages by executing 'dnf clean packages'.
Error: Transaction test error:
  file /usr/share/pixmaps/poweredby.png from install of 
almalinux-logos-httpd-84.4-1.1.el8.noarch conflicts with file from package 
blueonyx-logos-httpd-80.5-3.el8.noarch

Run dnf distro-sync -y. Exit code: 1  ERROR
# dnf distro-sync -y
...

• Michael Stauber said:
# rpm -e --nodeps --justdb blueonyx-logos-httpd
• and ran the script again (I did this *before* he mailed this, it's now 
probably unnecessary)

# /usr/sausalito/sbin/almalinux-deploy.sh | tee ~/almalinux-deploy_output2.txt

# reboot

• After that, AV-Spam services and the SSHd server didn't run, thus no ssh 
login possible
• restarted SSHd over GUI and could then login

# cat /etc/redhat-release
AlmaLinux release 8.4 (Electric Cheetah)
# cat /etc/os-release
NAME="AlmaLinux"
VERSION="8.4 (Electric Cheetah)"
ID="almalinux"
ID_LIKE="rhel centos fedora"
VERSION_ID="8.4"
PLATFORM_ID="platform:el8"
PRETTY_NAME="AlmaLinux 8.4 (Electric Cheetah)"
ANSI_COLOR="0;34"
CPE_NAME="cpe:/o:almalinux:almalinux:8.4:GA"
HOME_URL="https://almalinux.org/;
DOCUMENTATION_URL="https://wiki.almalinux.org/;
BUG_REPORT_URL="https://bugs.almalinux.org/;
ALMALINUX_MANTISBT_PROJECT="AlmaLinux-8"
ALMALINUX_MANTISBT_PROJECT_VERSION="8.4"

• Now Active Monitor still reported stalled AV-Spam services

#  systemctl restart avspam
Job for avspam.service canceled.

• So I turned it off and on in GUI at Network Services > AV-SPAM, then Active 
Monitor reported all ok.

Best regards

で⊃ Meaulnes Legler
Zurich, Switzerland
+41¦0 44 260-1660


• But strange enough, the service still reports:

# systemctl status avspam
● avspam.service - AV-SPAM
   Loaded: loaded (/usr/lib/systemd/system/avspam.service; disabled; vendor 
preset: disabled)
   Active: active (exited) since Tue 2021-11-09 18:08:30 CET; 4min 21s ago
  Process: 46064 ExecStart=/usr/sausalito/sbin/avspam_init.pl -start 
(code=exited, status=0/SUCCESS)
 Main PID: 46064 (code=exited, status=0/SUCCESS)
Tasks: 0 (limit: 104857)
   Memory: 0B
   CGroup: /system.slice/avspam.service

Nov 09 18:08:30 blue2.waveweb.ch avspam_init.pl[46064]: 
==
Nov 09 18:08:30 blue2.waveweb.ch avspam_init.pl[46064]: | Postfix|   1  
 |  0 | 0|
Nov 09 18:08:30 blue2.waveweb.ch avspam_init.pl[46064]: | Greylist   |   1  
 |  1 | 1|
Nov 09 18:08:30 blue2.waveweb.ch avspam_init.pl[46064]: | GeoIP  |   1  
 |  1 | 1|
Nov 09 18:08:30 blue2.waveweb.ch avspam_init.pl[46064]: | Spamassassin   |   1  
 |  1 | 1|
Nov 09 18:08:30 blue2.waveweb.ch avspam_init.pl[46064]: | Spamass-Milter |   1  
 |  1 | 1|
Nov 09 18:08:30 blue2.waveweb.ch avspam_init.pl[46064]: | ClamAV |   1  
 |  1 | 1|
Nov 09 18:08:30 blue2.waveweb.ch avspam_init.pl[46064]: | ClamAV-Milter  |   1  
 |  1 | 1|
Nov 09 18:08:30 blue2.waveweb.ch avspam_init.pl[46064]: 
==
Nov 09 18:08:30 blue2.waveweb.ch avspam_init.pl[46064]: AV-SPAM Email service 
are in failed state.



On 09.11.21 17:52, Michael Stauber wrote:

Hi Dirk, Hi Michael,


After the command " rpm -e --nodeps --justdb blueonyx-logos-httpd" the upgrade 
to alma linux 8 was successful and all services are running.


Very well.

I just published an updated base-swupdate for 5210R that contains a
slightly modified conversion script. That now automatically handles the
replacement of "blueonyx-logos-httpd" and "blueonyx-logos-ipa" with the
respective AlmaLinux RPMs.

That fixes the issue.



___
Blueonyx mailing list
Blueonyx@mail.blueonyx.it
http://mail.blueonyx.it/mailman/listinfo/blueonyx

[BlueOnyx:25169] Re: stalling SMTP

[Meaulnes Legler @ MailList]

Michael, thanks for the reply


In /var/log/maillog they usually show up like this:

Oct 13 20:02:38 sol sendmail[18277]: 19E12cNr018277: [104.200.146.41]
did not issue MAIL/EXPN/VRFY/ETRN during connection to MSA

Oct 14 10:53:46 sol sendmail[22421]: 19EFrLbF022421: [43.133.58.8] did
not issue MAIL/EXPN/VRFY/ETRN during connection to TLSMTA


did so, quite a lot showed up :-(


cat /var/log/maillog|grep ETRN | cut -d [ -f3| cut -d ] -f1 | grep ^[0-9] | 
sort -un
If I see repeat offenders *really* sticking their nose out, then I
usually do a WHOIS on the offending IP and block their whole network
address range in APF, Firewalld and/or Milter-GeoIP.


do so, too... I jot those IPs in a list and if I find IPs in the same class, I enter 
those with a netmask of /24, sometimes I even go down to a netmask of /18 (once /16!) in 
the Network Services > AV-SPAM > GeoIP > Blocked IP Address Ranges list

best regards

で⊃ Meaulnes Legler
Zurich, Switzerland
+41¦0 44 260-1660


___
Blueonyx mailing list
Blueonyx@mail.blueonyx.it
http://mail.blueonyx.it/mailman/listinfo/blueonyx

[BlueOnyx:25162] stalling SMTP

[Meaulnes Legler @ MailList]

hello

I lately get several times a day the Active Monitor message that the SMTP 
server isn't running and couldn't be restarted. 15min later the all-clear 
message drops in, everything ok. Thank you BO, Michael and all others for the 
automatic assistance!:-)

But I still wonder what's the cause of this... I browsed through the log files 
/var/log/maillog /var/log/messages /var/log/secure with no clues to anything 
suspicious (or I didn't know what to look for).

The GUI's Security > Failed Logins page mentioned several IPs and two users; I 
blocked IPs in the APF Firewall Blacklist and suspended the two users. That helped 
insofar that the SMTP stalls occurred now _only_ a couple of times a day instead 
of almost hourly...

Any hint what I could do else?

Thank you and best regards

で⊃ Meaulnes Legler
Zurich, Switzerland
+41¦0 44 260-1660

I'm on *Wire* as @meaulnes — https://get.wire.com/
/no more Whatzap and so on!/

___
Blueonyx mailing list
Blueonyx@mail.blueonyx.it
http://mail.blueonyx.it/mailman/listinfo/blueonyx

[BlueOnyx:25158] Re: Let's Encrypt CA cert expiry - fix for Apple devices

[Meaulnes Legler @ MailList]

On 01.10.21 20:07, Michael Aronoff wrote:

I have done a yum update but I am still having users with Apple devicesthat 
cannot check email. Anyone have any suggestions?

M Aronoff Out – maron...@gmail.com


the answer from Michael in the following mail suggesting to renew the LE 
certificates worked on Apple's *Firefox only* (strange enough, huh?), Safari, 
Chrome & Opera still showed the old R3 certificate and broke the chain of my 
Mac users. I thought it was a AdminServer problem, but it ain't,it's an 
Apple-LetsEncrypt idiosyncrasy, it took me a while to find out...

the fix for Mac users:
• download the ISRG Root X1 certificate file from 
https://letsencrypt.org/certs/isrgrootx1.pem
• download the LE's R3 certificate file from 
https://letsencrypt.org/certs/lets-encrypt-r3.pem
• open «Keychain Access.app» and select the System folder in the Keychains 
column on top left (not the System Roots folder)
• drag the two downloaded files isrgrootx1.pem and lets-encrypt-r3.pem file 
into the System folder's right pane, one must approve this action with the 
administrator password (Trust: Use System Defaults)

the ISRG Root X1 certificate should be listed as valid Root certificate 
authority expireing Monday, 4 June 2035 at 13:04:38 Central European Summer Time
the R3 certificate should be listed as valid «R3» Intermediate certificate 
authority expiring Monday, 15 September 2025 at 18:00:00 Central European 
Summer Time

now accessing the AdminServer over port :81 shouldn't throw an error on any 
browser of the Mac. I think it fixed AppleMail's certificate problem, too; it 
did it on Thunderbird

best regards
で⊃ Meaulnes Legler
Zurich, Switzerland
+41¦0 44 260-1660

I'm on *Wire* as @meaulnes — https://get.wire.com/
/no more Whatzap and so on!/




___
Blueonyx mailing list
Blueonyx@mail.blueonyx.it
http://mail.blueonyx.it/mailman/listinfo/blueonyx

[BlueOnyx:25154] Re: Let's Encrypt CA cert expiry - permanent fix published

[Meaulnes Legler @ MailList]

On 30.09.21 22:14, Michael Stauber wrote:

Hi all,

In response to [BlueOnyx:25128] (and following) I just published YUM
updates for BlueOnyx 5209R and 5210R:


hi Michael

thank you for the fix! Can you please also update the Aventurin{e} 6109R, too? 
I get there this expired error

Although, strange enough, a click on the browser certificate icon reads the 
following:

Issued by: R3
Expires: Wednesday, 8 December 2021 at 01:20:22 Central European 
Standard Time
(x) "R3" certificated has expired

Not Valid Before   Thursday, 9 September 2021 at 02:20:23 Central 
European Summer Time
Not Valid AfterWednesday, 8 December 2021 at 01:20:22 Central 
European Standard Time

The certificate isn't accepted although it has a valid date...

Thank you and best regards

で⊃ Meaulnes Legler
Zurich, Switzerland
+41¦0 44 260-1660


___
Blueonyx mailing list
Blueonyx@mail.blueonyx.it
http://mail.blueonyx.it/mailman/listinfo/blueonyx

[BlueOnyx:25064] dir listing of subfolders in a website

[Meaulnes Legler @ MailList]

hello

I'm getting old, forgot how to do it and didn't jot it down...

On the old BlueOnyx and RaQs, if one had a subdir without an index file, 
browsing there gave a listing of the files in that subdir, like in the example 
below. There was also a trick how to tamper this, maybe with an .htaccess file.

http://www.domain.tld/public/ =>
Index of /public
  Name  Last modified   SizeDescription
---
■ Parent Directory  -   
■ PHP-file_screenshot.png   2014-11-12 15:14150K
■ QNAP_TS-210_disk-usa..>2013-07-29 16:5460K 
■ TimeMachine_progress..>2013-07-29 16:5539K 

Of course, this wasn't very secure, but practical if handled with care. Now, on 
the new subdomains of a 5210R, this listing doesn't work work anymore, one gets 
only a «File not found». The index file in the root dir displays, tho, also 
addressing a file in the subdir

http://user.domain.tld/public/ =>
File not found.

http://www.domain.tld/ =>
index.html is rendered

http://user.domain.tld/public/Picture003.jpg =>
picture is displayed

The subdirs are readable by all:
ls -l
-rw-r--r-- 1 user site7 19,826 2003.11.02-00:00 Jack-O-Latern-2003.jpg
drwxr-sr-x 2 user site7  4,096 2015.02.19-15:31 NewZealand/
drwxrwsr-x 2 user site7  4,096 2017.05.24-12:12 public/

I couldn't find anything helping me out in the GUI... Could somebody please 
tell me how to get the dir listing of a subfolder when browsing there?

Thank you and best regards

で⊃ Meaulnes Legler
Zurich, Switzerland
+41¦0 44 260-1660

I'm on *Wire* as @meaulnes — https://get.wire.com/
/no more Whatzap and so on!/



___
Blueonyx mailing list
Blueonyx@mail.blueonyx.it
http://mail.blueonyx.it/mailman/listinfo/blueonyx

[BlueOnyx:24980] user wants his old e-mail from un...@domain.tld to new un...@uname.domain.tld

[Meaulnes Legler @ MailList]

hmmm, I have a tricky one here, I presume it isn't possible, but one can still 
ask, right?

on the 5209R, users had their own webspace reachable at www.domain.tld/~uname/

now on the 5210R, this isn't possible. So, for a specific user who wanted to 
regain his webspace at above address, I created a new virtual site called 
uname.domain.tld and transferred all files to that domain. I had to delete the 
user «uname» at domain.tld and set it up as new user «uname» at 
uname.domain.tld.

everything works fine except that his·her original e-mail address 
*un...@domain.tld* doesn't work anymore, the new working address is 
*un...@uname.domain.tld*

now: is there way to set up an alias at domain.tld the redirects 
*un...@domain.tld* to *un...@uname.domain.tld*?

thank you and best regards

で⊃ Meaulnes Legler
Zurich, Switzerland
+41¦0 44 260-1660

I'm on *Wire* as @meaulnes — https://get.wire.com/


PS: in the GUI of uname.domain.tld, at Site Management > User List > Sender 
Address, on can select from the drop-down one of the aliases as the Username, but of 
the the Domain is immutable, the drop-down shows *uname.domain.tld* as only choice, 
cannot choose *domain.tld* ...





___
Blueonyx mailing list
Blueonyx@mail.blueonyx.it
http://mail.blueonyx.it/mailman/listinfo/blueonyx

[BlueOnyx:24963] Re: URI_TRY_3LD

[Meaulnes Legler @ MailList]

thank you Larry, I did so and it seems that I get less tagged spam, now...

but it's strange, I expected to find that URI_TRY_3LD rule somewhere in 
/etc/mail/spamassassin/ and could change the value from 2.0 to 0.1 or whatever, 
but nope, no URI_TRY_3LD definition found anywhere in /etc...

but I found in /usr/share/spamassassin/72_active.cf

##{ URI_TRY_3LD
uri URI_TRY_3LD   
m,^https?://(?:try|start|get(?!\.adobe)|save|check(?!out)|act|compare|join|learn|request|visit(?!or)|my(?!sub|turbotax)\w)[^.]*\.[^/]+\.(?:com|net)\b,i
describeURI_TRY_3LD   "Try it" URI, suspicious hostname
#score   URI_TRY_3LD   2.000   # limit
tflags  URI_TRY_3LD   publish
##} URI_TRY_3LD

where the score of 2.0 seems to be disabled with a leading #
but in the spam headers it still reads

2.0 URI_TRY_3LD  "Try it" URI, suspicious hostname

Thanks again and best regards

で⊃ Meaulnes Legler
Zurich, Switzerland
+41¦0 44 260-1660

I'm on *Wire* as @meaulnes — https://get.wire.com/

On 10.06.21 18:27, Larry Smith wrote:


To essentially disable any particular rule,
create a file "custom.cf"  in the directory
/etc/mail/spamassassin/ and put the following
score  0

eg: for RATS_DYNA you would enter:
score RATS_DYNA 0

and then restart spamassassin (and the milter if running).




___
Blueonyx mailing list
Blueonyx@mail.blueonyx.it
http://mail.blueonyx.it/mailman/listinfo/blueonyx

[BlueOnyx:24960] spam and DBL blocklist and URI_TRY_3LD

[Meaulnes Legler @ MailList]

hello all

I have two questions regarding the AV-SPAM filter, I hope someone can help... I 
recurrently get tagged e-mails that shouldn't be tagged because of the two 
following rules with a score of 2.0:


1) 2.0 URIBL_DBLContains a URL listed in the DBL blocklist
[URIs: vs.legler.net]

A search for the DBL blocklist returns the site «DBL - The Spamhaus Project» at 
https://www.spamhaus.org/dbl/

But neither the domain legler.net nor its IP-address is listed there, it 
returns a succinct and sibylline «legler.net has no issues» with a smiling 
robot...

Am I looking into the correct database?


2) 2.0 URI_TRY_3LD  "Try it" URI, suspicious hostname

I couldn't find anything relevant on this rule and I want to disable it — how 
can I do this?

If I click on [SpamAssassin Rule Editor] in the GUI, the rule list is empty 
(but I could add a rule)

Where is this configured?


Thank you and best regards

で⊃ Meaulnes Legler
Zurich, Switzerland
+41¦0 44 260-1660


I'm on *Wire* as @meaulnes — https://get.wire.com/


___
Blueonyx mailing list
Blueonyx@mail.blueonyx.it
http://mail.blueonyx.it/mailman/listinfo/blueonyx

[BlueOnyx:24900] Re: Web FTP interface

[Meaulnes Legler @ MailList]

On 09.04.21 15:07, Colin Jack wrote:

We have a client that wants to set up a simple to use web based FTP interface 
to allow customers to upload artwork securely.
Our customer doesn’t want users to have to install Filezilla etc. but to have a 
web page with login that allows simple upload – similar to  uploading photos to 
Photobox for example.
Does anybody have any suggestions?


long time ago, I installed «gallery3» from the BlueOnyx Shop for customers 
uploading images, but didn't get an echo from them... not sure how it is now, 
nobody asked for it after the upgrade to 5210R

Best regards

で⊃ Meaulnes Legler
Zurich, Switzerland
+41¦0 44 260-1660


I'm on *Wire* https://get.wire.com/ as @meaulnes




I looked through the apps on BlueOnyx Shop to see if I could find anything 
suitable but couldn’t see anything?

Thanks

Colin


___
Blueonyx mailing list
Blueonyx@mail.blueonyx.it
http://mail.blueonyx.it/mailman/listinfo/blueonyx




___
Blueonyx mailing list
Blueonyx@mail.blueonyx.it
http://mail.blueonyx.it/mailman/listinfo/blueonyx

[BlueOnyx:24833] Re: Aventurine cached Licence file

[Meaulnes Legler @ MailList]

On 20.03.21 14:06, Colin Jack wrote:

I am having a senior moment here – I cannot remember ...


I like this one, *a senior moment*! I'm having it

#me too !

で⊃ Meaulnes Legler
Zurich, Switzerland
+41¦0 44 260-1660

I'm on *Wire* https://get.wire.com/ as @meaulnes



___
Blueonyx mailing list
Blueonyx@mail.blueonyx.it
http://mail.blueonyx.it/mailman/listinfo/blueonyx

[BlueOnyx:24756] Re: RoundCube mysteriously stopped working

[Meaulnes Legler @ MailList]

hello

just yesterday, a failed login happened to me, too... don't ask me why all of a 
sudden!

if the error displays:

DATABASE ERROR: CONNECTION FAILED!
Unable to connect to the database!
Please contact your server-administrator.

then the MySQL database has a glitch, maybe caused by the entries of a previous 
RC version.

• in phpMyAdmin, all databases are listed in its left column.
  All RC databases start with nwa_... (like nwa_pEswssHgtxvC)
  To find out which database is related to the current RC installation, then
  - check the config/config.inc.php file in the web/roundcube/ installation,
  - look for the line $config['db_dsnw'] =
  - at the end of the line you will find the database name: nwa_whatever

• in phpMyAdmin, select the above database
  open phpMyAdmin in a new browser window by clicking on the ↪︎ arrow on the 
upper right
  in the 1st tab «Structure», spot the last line «users»
  click on «Structure» (between Browse and Search)
  spot the 4th line «alias», its Default value is probably NONE
  click on the Action «Change»
  change the Default value in its [_dropdown_⬍] to NULL
  click (_Save_) at the lower right

The login into RC should work now.

hope that helps

で⊃ Meaulnes Legler
Zurich, Switzerland
+41¦0 44 260-1660


On 01.02.21 22:22, Adam Lepp wrote:

This morning, a client couldn't log in with outlook, but RC worked fine.  I 
remoted in  her computer and verified. And now the opposite problem has 
surfaced.
"welcome to 2020, part2"
At any rate, I'm sure you and your fellow smart people in Texas can figure this 
out and I await your reply.

-Original Message-
From: Blueonyx  On Behalf Of Chris Gebhardt 
- VIRTBIZ Internet
Sent: Monday, February 1, 2021 4:16 PM
To: blueonyx@mail.blueonyx.it
Subject: [BlueOnyx:24745] Re: RoundCube mysteriously stopped working


On 2/1/2021 2:58 PM, Adam Lepp wrote:


A client notified me that her RoundCube login failed.  Having
successfully logged in for my own email earlier today, I tried her
account, and mine, and both failed.  My Outlook works fine, and I was
able to access her mail via mail2web.com.

Is this a known issue? Don’t recall it ever happening in my 20+ years
of using these Cobalt/BQ/BO.

I haven’t restarted. Will try that after business hours.

BlueOnyx 5209R with BOPE, RC 1.2.0, at Virtbiz Server load, disk
space, etc., all fine.


We also had a report of a RoundCube user on 5209R with difficulty logging in 
via webmail.   The account authenticates with all other methods.   Just not 
from Roundcube.   This user's version is 1.4.10.

--
Chris Gebhardt
VIRTBIZ Internet Services
Access, Web Hosting, Colocation, Dedicated www.virtbiz.com | toll-free (866) 4 
VIRTBIZ

___
Blueonyx mailing list
Blueonyx@mail.blueonyx.it
http://mail.blueonyx.it/mailman/listinfo/blueonyx


___
Blueonyx mailing list
Blueonyx@mail.blueonyx.it
http://mail.blueonyx.it/mailman/listinfo/blueonyx




___
Blueonyx mailing list
Blueonyx@mail.blueonyx.it
http://mail.blueonyx.it/mailman/listinfo/blueonyx

[BlueOnyx:24729] Deferred: Connection timed out with mail.domain.tld — forgot signature!

[Meaulnes Legler @ MailList]

hello list

I don't get it: recently, e-mails sent from one virtual server to anotherone on 
the same 5209R box are rejected with the following:
_
**
**  THIS IS A WARNING MESSAGE ONLY  **
**  YOU DO NOT NEED TO RESEND YOUR MESSAGE  **
**

The original message was received at Wed, 20 Jan 2021 12:40:56 +0100
from 238.132.61.188.dynamic.wline.res.cust.swisscom.ch [188.61.132.238]

   - Transcript of session follows -
... Deferred: Connection timed out with mail.domain.tld.
Warning: message still undelivered after 4 hours
Will keep trying until message is 5 days old
_

• I couldn't find out from which senders domains it happens, fromgmail.com 
senders for instance it doesn't happen
• sendmail and dovecot are running without errors
• the senders aren't listed in the APF blacklist.
• after 5 days nothing is sent

I rebooted the servers but it didn't help, the e-mails sent from and to domains 
on the same 5209R box are deferred and not sent. If I send them from my gmail 
account, they are accepted.

any ideas what's going on?

thank you and best regards

で⊃ Meaulnes Legler
Zurich, Switzerland
+41¦0 44 260-1660


___
Blueonyx mailing list
Blueonyx@mail.blueonyx.it
http://mail.blueonyx.it/mailman/listinfo/blueonyx

[BlueOnyx:24728] Deferred: Connection timed out with mail.domain.tld

[Meaulnes Legler @ MailList]

hello list

I don't get it: recently, e-mails sent from one virtual server to another one 
on the same 5209R box are rejected with the following:
_
**
**  THIS IS A WARNING MESSAGE ONLY  **
**  YOU DO NOT NEED TO RESEND YOUR MESSAGE  **
**

The original message was received at Wed, 20 Jan 2021 12:40:56 +0100
from 238.132.61.188.dynamic.wline.res.cust.swisscom.ch [188.61.132.238]

   - Transcript of session follows -
... Deferred: Connection timed out with mail.domain.tld.
Warning: message still undelivered after 4 hours
Will keep trying until message is 5 days old
_

• I couldn't find out from which senders domains it happens, from gmail.com 
senders for instance it doesn't happen
• sendmail and dovecot are running without errors
• the senders aren't listed in the APF blacklist.
• after 5 days nothing is sent

I rebooted the servers but it didn't help, the e-mails sent from and to domains 
on the same 5209R box are deferred and not sent. If I send them from my gmail 
account, they are accepted.

any ideas what's going on?



___
Blueonyx mailing list
Blueonyx@mail.blueonyx.it
http://mail.blueonyx.it/mailman/listinfo/blueonyx

[BlueOnyx:24726] Re: Block By Domain Name Extension

[Meaulnes Legler @ MailList]

just for the sake, here is my /etc/mail/access snippet:

# exclude TLDs Begin
# inserted on Michael's advice by ml 10.5.2019, 8.2019, 10.2019, 1.2020
icu 550 Mail rejected from junk TLD
pro 550 Mail rejected from junk TLD
top 550 Mail rejected from junk TLD
faith   550 Mail rejected from junk TLD
best550 Mail rejected from junk TLD
show550 Mail rejected from junk TLD
xyz 550 Mail rejected from junk TLD
club550 Mail rejected from junk TLD
site550 Mail rejected from junk TLD
# inserted 1.1.2021
co  550 Mail rejected from junk TLD
legler.co   OK
guru550 Mail rejected from junk TLD
buzz550 Mail rejected from junk TLD
cyou550 Mail rejected from junk TLD
monster 550 Mail rejected from junk TLD
casa550 Mail rejected from junk TLD
today   550 Mail rejected from junk TLD
work550 Mail rejected from junk TLD
surf550 Mail rejected from junk TLD
rest550 Mail rejected from junk TLD
# exclude TLDs End

the .co domains are rejected, but legler.co isn't (if I did it right)

best regards

で⊃ Meaulnes Legler
Zurich, Switzerland
+41¦0 44 260-1660

On 19.01.21 20:58, David Hahn wrote:

On 1/19/2021 12:24 PM, Michael Stauber wrote:


Hi David,


Is this something that gets over written on a update and works with
postfix?

It'll work in Postfix as well.

Put the lines Larry suggested in /etc/mail/access and then restart
Postfix (if you're using Postfix):

systemctl restart postfix

Restarting Postfix will cause it to parse the sendmail configs and it'll
incorporate these changes into the Postfix config as well.


Thank you Michael and Larry.

These are the steps I used on the 5210R

MAIL ACCESS
# block access to top level domains
cd /etc/mail
vi access

# add this below the local host section
# TLD's We Don't Allow Begin
asia    REJECT
best    REJECT
casa    REJECT
cyou    REJECT
live    REJECT
work    REJECT
# TLD's We Don't Allow End

# hash
makemap hash access.db < access

# restart postfix
systemctl restart postfix




___
Blueonyx mailing list
Blueonyx@mail.blueonyx.it
http://mail.blueonyx.it/mailman/listinfo/blueonyx

[BlueOnyx:24556] Re: APF Firewall deletes Whitelist entry

[Meaulnes Legler @ MailList]

thank you Michael

I haven't Fail2ban enabled because I can't restart it (version 0.9.6-4 on 
5209R), but Dfix2 that says in /etc/apf/deny_hosts.rules:

# added 84.226.70.22 on 12/02/20 09:39:32 with comment: dFixblock2
84.226.70.22

maybe Dfix2 messed around with the Whitelist...

anyway, the user confessed he's running an NT machine (remember?:-) which is 
known not to be patched anymore, so I told him to deconnect it from his network.

the log files weren't revealing, just that 84.226.70.22 was whitelisted: 
apf(23931): {trust IPv4} allow all to/from 84.226.70.22

best regards

で⊃ Meaulnes Legler
Zurich, Switzerland
+41¦0 44 260-1660

On 04.12.20 17:01, Michael Stauber wrote:

Hi Meaulnes,


• how comes an entry in Allow Host Rules isn't permanent and can get
ignored?

• how can I find out which device behind this router using that
offending IP is abusing the output flow rating? E-mail clients usually
list in their outgoing mails the app name and the platform, can I read
such data in some APF log?


Entries in the APF Allow Host Rules are permanent and I don't know how
these could get lost.

However, there is a rare race-time issue where Fail2ban might order an
IP to be blocked and APF will erroneously block it even if the IP has
been whitelisted. Like said: This is rare, but I have seen it happen. :-/

If you have Fail2ban, then you might want to go to "Server Management" /
"Security" / "Fail2ban" and add the whitelisted IP(s) to "Ignore IP's".
That will make sure Fail2ban doesn't blacklist them at all.

As for logfiles: /var/log/messages and /var/log/fail2ban.log might shed
some light on what happened. Just grep these for the IP in question to
see how, why and when this happened.




___
Blueonyx mailing list
Blueonyx@mail.blueonyx.it
http://mail.blueonyx.it/mailman/listinfo/blueonyx

[BlueOnyx:24551] APF Firewall deletes Whitelist entry

[Meaulnes Legler @ MailList]

hello

this happened already a couple of times: the router IP of a customer got 
blacklisted from the APF Firewall for an unknown reason, no new iPhone 
configuration nor new mailer setup, the users just using standard Internet 
activities like chat, e-mail or browsing.

after a routing reset, the new IP got again blacklisted after a while. I 
deleted that IP from the Deny Host Rules and added it to the whitelist Allow 
Host Rules, the users could surf again.

not a week went by and the same IP got _again_ blacklisted — the weird thing is 
that the IP entry disappeared from the whitelist, meaning somehow: «you may NOT 
allow this IP, it's just too evil» :-)

• how comes an entry in Allow Host Rules isn't permanent and can get ignored?

• how can I find out which device behind this router using that offending IP is 
abusing the output flow rating? E-mail clients usually list in their outgoing 
mails the app name and the platform, can I read such data in some APF log?

thank you and best regards

で⊃ Meaulnes Legler
Zurich, Switzerland
+41¦0 44 260-1660



___
Blueonyx mailing list
Blueonyx@mail.blueonyx.it
http://mail.blueonyx.it/mailman/listinfo/blueonyx

[BlueOnyx:24419] Re: 5210 Database management

[Meaulnes Legler @ MailList]

On 27.10.20 10:36, Florian Arzberger wrote:

a)
Is there a way to find out which (if any) vsite a given db is tied to?


if the name of the database isn't self-explanatory, I guess you have to dig 
into the configuration files of the specific application running on a vsite...

so for RoundCube, for instance, that runs a separate database for each vsite (e.g. 
nwa_0GnFGYyH4IWq), one can read its name in 
/roundcube/config/config.inc.php

hope that answers your question


b)
Is there a way to tie an existing db to an existing vsite without
deleting/re-creating?


what are you trying to do? don't break anything!:-)

best regards

で⊃ Meaulnes Legler
Zurich, Switzerland
+41¦0 44 260-1660




___
Blueonyx mailing list
Blueonyx@mail.blueonyx.it
http://mail.blueonyx.it/mailman/listinfo/blueonyx




___
Blueonyx mailing list
Blueonyx@mail.blueonyx.it
http://mail.blueonyx.it/mailman/listinfo/blueonyx

[BlueOnyx:24344] php 7.1 topmost

[Meaulnes Legler @ MailList]

hello

a user on a 5209R is complaining that he cannot run a higher php version as 
7.1.25 for his Wordpress installation (would require 7.4)...

is this an issue? his WP webpages are running fine...

is php 7.4 available on 5210R?

Thank you and best regards

で⊃ Meaulnes Legler
Zurich, Switzerland
+41¦0 44 260-1660



___
Blueonyx mailing list
Blueonyx@mail.blueonyx.it
http://mail.blueonyx.it/mailman/listinfo/blueonyx

[BlueOnyx:24238] Re: Personal web pages in 5210R

[Meaulnes Legler @ MailList]

On 31.08.20 00:57, Ernie wrote:

Very interesting.
I will have to study up on the AliasMatch function, looks like it might solve
my problem

you're welcome!


The 5210R has a different directory structure to the 5109R, so you will have to 
modify your
rules. I am still tackling the auto addition of subdomains for 100+ users
where the DNS is on another server.
- Ernie.


please let me know what you could find out, I'm very interested for that setup 
for my future 5210Rs...

Best regards

で⊃ Meaulnes Legler
Zurich, Switzerland
+41¦0 44 260-1660
bluel...@waveweb.ch






hello

I also run 5209Rs (looking forward to upgrade to 5210R!:-) and also used a 
similar «rigging» that Michael proposed.

For many users, specially those with foreign keyboards, the use of the ~ tilde 
is too intricate and/or they aren't able to type it... So I added this line in 
httpd.conf (actually in /etc/httpd/conf/vhosts/site#.include where # is the 
site number) so one could use a - hyphen instead of a ~ tilde to open its 
personal web:

AliasMatch ^/~([^/]+)(/(.*))? /home/.sites/###/site#/users/$1/web/$3
AliasMatch ^/-([^/]+)(/(.*))? /home./sites/###/site#/users/$1/web/$3

That works fine. But unfortunately the redirection to the subdomain from 
name/domain/tld to domain.tld/~name didn't work, maybe because of recent https 
installation. Hopefully with 5210R?

Best regards

で⊃ Meaulnes Legler
Zurich, Switzerland
+41¦0 44 260-1660


On 28.08.20 20:58, Michael Stauber wrote:

Hi Ernie,


so how do I intercept the http://FQDN/~username requests, and force them to
redirect to a subdomain?


A mod_rewrite rule could do that. On 5209R and older the following rule
redirecs /~username to where it needs to go:

AliasMatch ^/~([^/]+)(/(.*))? /home/.sites/75/site8/users/$1/web/$3

So $1 is the username and $3 the file name (if any). Based on that I'd
say something like this might work:

RewriteCond %{REQUEST_URI} ^/~([^/]+)(/(.*))? [NC]
RewriteRule (.*) http://$1\.example\.com/$3 [R=301,L]




___
Blueonyx mailing list
Blueonyx@mail.blueonyx.it
http://mail.blueonyx.it/mailman/listinfo/blueonyx

___
Blueonyx mailing list
Blueonyx@mail.blueonyx.it
http://mail.blueonyx.it/mailman/listinfo/blueonyx




___
Blueonyx mailing list
Blueonyx@mail.blueonyx.it
http://mail.blueonyx.it/mailman/listinfo/blueonyx

[BlueOnyx:24229] Re: Personal web pages in 5210R

[Meaulnes Legler @ MailList]

hello

I also run 5209Rs (looking forward to upgrade to 5210R!:-) and also used a 
similar «rigging» that Michael proposed.

For many users, specially those with foreign keyboards, the use of the ~ tilde 
is too intricate and/or they aren't able to type it... So I added this line in 
httpd.conf (actually in /etc/httpd/conf/vhosts/site#.include where # is the 
site number) so one could use a - hyphen instead of a ~ tilde to open its 
personal web:

AliasMatch ^/~([^/]+)(/(.*))? /home/.sites/###/site#/users/$1/web/$3
AliasMatch ^/-([^/]+)(/(.*))? /home./sites/###/site#/users/$1/web/$3

That works fine. But unfortunately the redirection to the subdomain from 
name/domain/tld to domain.tld/~name didn't work, maybe because of recent https 
installation. Hopefully with 5210R?

Best regards

で⊃ Meaulnes Legler
Zurich, Switzerland
+41¦0 44 260-1660


On 28.08.20 20:58, Michael Stauber wrote:

Hi Ernie,


so how do I intercept the http://FQDN/~username requests, and force them to
redirect to a subdomain?


A mod_rewrite rule could do that. On 5209R and older the following rule
redirecs /~username to where it needs to go:

AliasMatch ^/~([^/]+)(/(.*))? /home/.sites/75/site8/users/$1/web/$3

So $1 is the username and $3 the file name (if any). Based on that I'd
say something like this might work:

RewriteCond %{REQUEST_URI} ^/~([^/]+)(/(.*))? [NC]
RewriteRule (.*) http://$1\.example\.com/$3 [R=301,L]




___
Blueonyx mailing list
Blueonyx@mail.blueonyx.it
http://mail.blueonyx.it/mailman/listinfo/blueonyx

[BlueOnyx:24208] Re: help with crontab <- archive

[Meaulnes Legler @ MailList]

thank you Michael for the fast reply!

BTW, I guess you had to answer this question already in the past, like probably 
other questions...

There is this BlueOnyx archive at https://mail.blueonyx.it/pipermail/blueonyx/

But one cannot browse thru the whole archive to dig for tips and tricks, one 
has to seek in each monthly [Thread] or [Subject] or download the zip-file and 
search there...

This is very cumbersome and then it's easier to ask on the list — what isn't 
very efficient (from your point of view, I presume:-)

Isn't there a better way?

Thanks again and best regards

ベ⊃ Meaulnes Legler
Zurich, Switzerland
+41¦0 44 260-1660


On 23.08.20 21:21, Michael Stauber wrote:

Hi Meaulnes,


I want to install a shell script that runs every day with crontab.

Now I know there is some catch on BlueOnyx for doing that but I didn't
jot it down.


So there*is*  a crontab file but I can't edit it the normal way... can I
just edit /etc/crontab and add my line like
5 4 * * * root /root/myScript.sh    # run myScript.sh every day at 04:05
without breaking anything?
Do I have to restart some service?

There are a couple of different ways how this can be done.

You can use "crontab -e" to create a new Root cronjob. There isn't one
already, but when you use "crontab -e" it'll fire up the VIM editor,
allows you to specify your cronjob and when you than save it, you can
see it in being present when you run "crontab -l".

Or you can put the cronjob into a file like /root/mycron and can then
run "crontab /root/mycron" to put it into effect. Likewise: Afterwards
"crontab -l" will show that cronjob as being present.

Another way is to put your cronjob into one of the existing config
directories of cron:

[root@5209r ~]# tree -d /etc/cron*|grep -v error
/etc/cron.d
/etc/cron.daily
/etc/cron.half-hourly
/etc/cron.hourly
/etc/cron.monthly
/etc/cron.quarter-daily
/etc/cron.quarter-hourly
/etc/cron.weekly

Take a look at the scripts that are already in these directories to get
some idea. Whatever is in /etc/cron.daily gets executed once per day.

Whatever is in/etc/cron.d/  gets executed by the time configured in the
config files.

Example:

[root@5209r ~]# cat /etc/cron.d/swatch.cron
# swatch is the system watcher
*/15 * * * *root/usr/sausalito/sbin/swatch.sh >/dev/null 2>&

As you can see there, /etc/cron.d/swatch.cron makes sure that
/usr/sausalito/sbin/swatch.sh gets executed every 15 minutes.

Typically when I add cronjobs, I just put a config file like this into
/etc/cron.d/, as it's the easiest and most transparent way.

When you create such a new config file, it is best to restart crond like
this: "systemct restart crond".

-- With best regards Michael Stauber



___
Blueonyx mailing list
Blueonyx@mail.blueonyx.it
http://mail.blueonyx.it/mailman/listinfo/blueonyx

[BlueOnyx:24203] help with crontab

[Meaulnes Legler @ MailList]

hello

I want to install a shell script that runs every day with crontab.

Now I know there is some catch on BlueOnyx for doing that but I didn't jot it 
down.

[root@vs ~] # crontab -l
returns nothing

[root@vs ~] # crontab -u admin -l
no crontab for admin

[root@vs ~] # crontab -e
edits an empty file

[root@vs ~] # ls -l /etc/crontab
-rw-r--r-- 1 root root 620 2017.03.28-02:57 /etc/crontab


[root@vs ~] # less /etc/crontab
SHELL=/bin/bash
PATH=/sbin:/bin:/usr/sbin:/usr/bin
MAILTO=root

# For details see man 4 crontabs

# Example of job definition:
# . minute (0 - 59)
# |  .- hour (0 - 23)
# |  |  .-- day of month (1 - 31)
# |  |  |  .--- month (1 - 12) OR jan,feb,mar,apr ...
# |  |  |  |  . day of week (0 - 6) (Sunday=0 or 7) OR 
sun,mon,tue,wed,thu,fri,sat
# |  |  |  |  |
# *  *  *  *  * user-name  command to be executed

04,34 * * * * root run-parts /etc/cron.half-hourly
03,18,33,48 * * * * root run-parts /etc/cron.quarter-hourly
46 0,6,12,18 * * * root run-parts /etc/cron.quarter-daily
/etc/crontab lines 1-18/18 (END)


So there *is* a crontab file but I can't edit it the normal way... can I just 
edit /etc/crontab and add my line like
5 4 * * * root /root/myScript.sh# run myScript.sh every day at 04:05
without breaking anything?
Do I have to restart some service?

Thank you and best regards

で⊃ Meaulnes Legler
Zurich, Switzerland
+41¦0 44 260-1660


___
Blueonyx mailing list
Blueonyx@mail.blueonyx.it
http://mail.blueonyx.it/mailman/listinfo/blueonyx

[BlueOnyx:24151] caughtspam

[Meaulnes Legler @ MailList]

hello

in the GUI, a user can individually configure his SPAM Action as

 * SPAM-Filter disabled
 * Deliver, but mark as SPAM
 * Move to folder 'caughtspam'
 * Delete SPAM on the server

this is fine, but is it possible to globally change the name of the IMAP-folder 
/caughtspam/ to something else, like /Junk/?

this would match the default setting in the webmailer Roundcube for storing 
spam/junk-mail. Of course, one can configure in the RC settings the junk folder 
to use the caughtspam folder instead, but this is asked too much for most of 
the ordinary users...

Thank you and best regards

ベ⊃ Meaulnes Legler
Zurich, Switzerland
+41¦0 44 260-1660

PS some digging in the system didn't help to find an easy way:

*# grep -r /usr/ -e caughtspam*
/usr/sausalito/handlers/solarspeed/av_spam/userconf-runner.pl:print PFILE 
"mail/caughtspam\n";
/usr/sausalito/ui/chorizo/extensions/User.Email/30_SPAM.php:
if (preg_match('/^mail\/caughtspam/', $line)) {
Binary file /usr/share/locale/fr_FR/LC_MESSAGES/solarspeed-av_spam.mo matches
Binary file /usr/share/locale/da_DK/LC_MESSAGES/solarspeed-av_spam.mo matches
Binary file /usr/share/locale/en_US/LC_MESSAGES/solarspeed-av_spam.mo matches
Binary file /usr/share/locale/es_ES/LC_MESSAGES/solarspeed-av_spam.mo matches
Binary file /usr/share/locale/ja_JP/LC_MESSAGES/solarspeed-av_spam.mo matches
Binary file /usr/share/locale/it_IT/LC_MESSAGES/solarspeed-av_spam.mo matches
Binary file /usr/share/locale/nl_NL/LC_MESSAGES/solarspeed-av_spam.mo matches
Binary file /usr/share/locale/pt_PT/LC_MESSAGES/solarspeed-av_spam.mo matches
Binary file /usr/share/locale/de_DE/LC_MESSAGES/solarspeed-av_spam.mo matches
/usr/share/doc/spamassassin-3.4.0/USAGE:a folder called "caughtspam" in 
your home directory.


___
Blueonyx mailing list
Blueonyx@mail.blueonyx.it
http://mail.blueonyx.it/mailman/listinfo/blueonyx

[BlueOnyx:24138] *bump* mail directly to all users of a domain

[Meaulnes Legler @ MailList]

hello again, maybe my question wasn't noticed...

is there a possibility for an admin to send an e-mail directly, or internally, 
to all users mboxes? Quasi inject the message into the mbox without using the 
Internet?

thank you and best regards

で⊃ Meaulnes Legler
Zurich, Switzerland
+41¦0 44 260-1660





___
Blueonyx mailing list
Blueonyx@mail.blueonyx.it
http://mail.blueonyx.it/mailman/listinfo/blueonyx

[BlueOnyx:24103] sending an e-mail *directly* to all users of a domain

[Meaulnes Legler @ MailList]

hello

picking up the spam theme, all users of a domain on one of my servers got one 
of these blackmailing e-mails frightening them that they managed to peek into 
their computer and so on...

so, pulling out the list of all users with the reliable `ls ... mbox` method, I 
sent a clearance message to the hundreds of users, raising the stacks that the 
domain name gets blacklisted by SpamCop & co.

Instead of sending out all those mails worldwide, isn't there a way to send 
them directly, or internally, to the users? Quasi inject the message into the 
mbox?

Thank you and best regards

で⊃ Meaulnes Legler
Zurich, Switzerland
+41¦0 44 260-1660



___
Blueonyx mailing list
Blueonyx@mail.blueonyx.it
http://mail.blueonyx.it/mailman/listinfo/blueonyx

[BlueOnyx:24064] online?

[Meaulnes Legler @ MailList]

hello

is the mailing list online? the last message I got was dated July 1st, the 
memberships reminder six days ago...

Thank you and best regards

で⊃ Meaulnes Legler
Zurich, Switzerland
+41¦0 44 260-1660



___
Blueonyx mailing list
Blueonyx@mail.blueonyx.it
http://mail.blueonyx.it/mailman/listinfo/blueonyx

[BlueOnyx:24059] read disk quota of a user from the command line

[Meaulnes Legler @ MailList]

hello

the disk quota information of a user is stored somewhere in the filesystems 
quota database, I guess.

Does anyone know how to read the assigned disk quota of a user from the command 
line?

Thank you and best regards

で⊃ Meaulnes Legler
Zurich, Switzerland
+41¦0 44 260-1660

___
Blueonyx mailing list
Blueonyx@mail.blueonyx.it
http://mail.blueonyx.it/mailman/listinfo/blueonyx

[BlueOnyx:23980] Re: 5210R Updates: Postfix, SNI for Email and Maildir

[Meaulnes Legler @ MailList]

On 12.06.20 04:56, Michael Stauber wrote:

Hi all,
I just released the 5210R updates that allow to use Postfix (with SNI)
instead of Sendmail and which allow you to switch from Mbox to Maildir.
For more information please see here:
https://www.blueonyx.it/news/267/15/5210R-Postfix-SNI-for-email-and-Maildir/
To accompany this release three new PKGs have also been made
Postfix-aware and are now available in the BlueOnyx shop for 5210R:
- AV-SPAM v7.1.0-1
- Clam AV v0.102.3-1
- Fail2ban v0.10.5-5


woah! great and apparently labor-intensive work! thank you Michael!

looking forward to install 5210R...

で⊃ Meaulnes Legler
Zurich, Switzerland
+41¦0 44 260-1660


___
Blueonyx mailing list
Blueonyx@mail.blueonyx.it
http://mail.blueonyx.it/mailman/listinfo/blueonyx

[BlueOnyx:23758] Re: Fail2ban cannot be restarted

[Meaulnes Legler @ MailList]

thank you Michael!

# systemctl status fail2ban
* fail2ban.service - Fail2Ban Service
   Loaded: loaded (/usr/lib/systemd/system/fail2ban.service; enabled; vendor 
preset: disabled)
   Active: failed (Result: exit-code) since Thu 2020-03-19 17:30:02 CET; 11min 
ago
 Docs: man:fail2ban(1)
  Process: 26370 ExecStop=/usr/bin/fail2ban-client stop (code=exited, 
status=255)
  Process: 26348 ExecStart=/usr/bin/fail2ban-server -xf start (code=exited, 
status=255)
  Process: 26341 ExecStartPre=/bin/mkdir -p /run/fail2ban (code=exited, 
status=0/SUCCESS)
 Main PID: 26348 (code=exited, status=255)

Mar 19 17:30:02 vs fail2ban-server[26348]: 2020-03-19 17:30:02,434 
fail2ban.configreader   [26348]: ERROR   Found no accessible config files for 
'filter.d/sshd-ddos' under /etc/fail2ban
Mar 19 17:30:02 vs fail2ban-server[26348]: 2020-03-19 17:30:02,434 
fail2ban.jailreader [26348]: ERROR   Unable to read the filter 'sshd-ddos'
Mar 19 17:30:02 vs fail2ban-server[26348]: 2020-03-19 17:30:02,434 
fail2ban.jailsreader    [26348]: ERROR   Errors in jail 'sshd-ddos'. Skipping...
Mar 19 17:30:02 vs fail2ban-server[26348]: 2020-03-19 17:30:02,439 fail2ban 
   [26348]: ERROR   There is no directory /var/run/fail2ban to contain 
the socket file /var/run/fail2ban/fail2ban.sock.
Mar 19 17:30:02 vs fail2ban-server[26348]: 2020-03-19 17:30:02,448 fail2ban 
   [26348]: ERROR   Async configuration of server failed
Mar 19 17:30:02 vs systemd[1]: fail2ban.service: main process exited, 
code=exited, status=255/n/a
Mar 19 17:30:02 vs fail2ban-client[26370]: 2020-03-19 17:30:02,534 fail2ban 
   [26370]: ERROR   Failed to access socket path: 
/var/run/fail2ban/fail2ban.sock. Is fail2ban running?
Mar 19 17:30:02 vs systemd[1]: fail2ban.service: control process exited, 
code=exited status=255
Mar 19 17:30:02 vs systemd[1]: Unit fail2ban.service entered failed state.
Mar 19 17:30:02 vs systemd[1]: fail2ban.service failed.

# tail -20 /var/log/fail2ban.log
2020-03-19 05:53:55,694 fail2ban.filter [27646]: INFO [dovecot] Found 
185.228.4.38
2020-03-19 05:53:56,413 fail2ban.filter [27646]: INFO [dovecot] Found 
185.228.4.38
2020-03-19 05:56:24,056 fail2ban.filter [27646]: INFO [pam-generic] 
Found 218.64.57.12
2020-03-19 05:56:24,059 fail2ban.filter [27646]: INFO [dovecot] Found 
218.64.57.12
2020-03-19 05:56:28,649 fail2ban.filter [27646]: INFO [dovecot] Found 
218.64.57.12
2020-03-19 05:58:02,286 fail2ban.filter [27646]: INFO [sshd] Found 
112.78.1.247
2020-03-19 05:58:02,297 fail2ban.filter [27646]: INFO [sshd] Found 
112.78.1.247
2020-03-19 05:58:02,303 fail2ban.filter [27646]: INFO [pam-generic] 
Found 112.78.1.247
2020-03-19 05:58:04,279 fail2ban.filter [27646]: INFO [sshd] Found 
112.78.1.247
2020-03-19 06:00:58,077 fail2ban.actions    [27646]: NOTICE [pam-generic] 
Unban 185.228.4.38
2020-03-19 06:04:10,324 fail2ban.server [27646]: INFO Stopping all jails
2020-03-19 06:04:11,262 fail2ban.jail   [27646]: INFO Jail 'sshd' 
stopped
2020-03-19 06:04:11,598 fail2ban.jail   [27646]: INFO Jail 
'pam-generic' stopped
2020-03-19 06:04:12,264 fail2ban.jail   [27646]: INFO Jail 
'sendmail-auth' stopped
2020-03-19 06:04:13,266 fail2ban.jail   [27646]: INFO Jail 'proftpd' 
stopped
2020-03-19 06:04:14,267 fail2ban.jail   [27646]: INFO Jail 'dovecot' 
stopped
2020-03-19 06:04:15,267 fail2ban.jail   [27646]: INFO Jail 'sshd-ddos' 
stopped
2020-03-19 06:04:16,268 fail2ban.jail   [27646]: INFO Jail 
'sendmail-reject' stopped
2020-03-19 06:04:16,401 fail2ban.server [27646]: INFO Exiting Fail2ban
2020-03-19 06:04:16,513 fail2ban.server [27646]: INFO Stopping all jails


On 19.03.20 17:18, Michael Stauber wrote:

Hi Meaulnes,


«Fail2ban is not running and could not be restarted. Please try to
restart the service fail2ban manually.»

does anyone encounter this, too?

restarting fail2ban over the GUI doesn't change anything and I don't
know to do it from the command line.


The command for that is "systemctl restart fail2ban" and you can also
check its status with "systemctl status fail2ban".

An updated Fail2ban hit the YUM repositories for 5209R yesterday, so
this is certainly related to that. Let me know what "systemctl status
fail2ban" reports and also maybe the last couple of lines from
/var/log/fail2ban.log.



___
Blueonyx mailing list
Blueonyx@mail.blueonyx.it
http://mail.blueonyx.it/mailman/listinfo/blueonyx

[BlueOnyx:23756] Fail2ban cannot be restarted

[Meaulnes Legler @ MailList]

hello all

since 07:30 CET Active Monitor publishes on all five servers running 5209R the 
following message:

«Fail2ban is not running and could not be restarted. Please try to restart the 
service fail2ban manually.»

does anyone encounter this, too?

restarting fail2ban over the GUI doesn't change anything and I don't know to do 
it from the command line.

it elapsed six hours now, shall I just wait longer?

thank you and best regards

で⊃ Meaulnes Legler
Zurich, Switzerland
+41¦0 44 260-1660



___
Blueonyx mailing list
Blueonyx@mail.blueonyx.it
http://mail.blueonyx.it/mailman/listinfo/blueonyx

[BlueOnyx:23614] Re: Webmail

[Meaulnes Legler @ MailList]

On 27.01.20 17:39, Richard Sidlin wrote:

I require a webmail facility on my 5210R. I see that the only up to date piece 
of software for the BO servers is RoundCubemail. Can anyone confirm that this 
is fine to use? One other thing, it doesn’t have 5210R listed as a compatible 
server. Will this version work or is this work in progress?


hm this is interesting, I'm glad you brought this up... I was considering 
upgrading my 5209Rs to 5210R, but if it's true that 5210R don't have RC webmail 
— what I nearly can't believe — then I'll postpone it.

で⊃ Meaulnes Legler
Zurich, Switzerland
+41¦0 44 260-1660



Thanks.

___
Blueonyx mailing list
Blueonyx@mail.blueonyx.it
http://mail.blueonyx.it/mailman/listinfo/blueonyx





___
Blueonyx mailing list
Blueonyx@mail.blueonyx.it
http://mail.blueonyx.it/mailman/listinfo/blueonyx

[BlueOnyx:23512] ftp logs

[Meaulnes Legler @ MailList]

hello

where can I find the logs of FTP user activity?

/var/log/xferlog and its .zip from the previous days are empty and I can't find 
relevant data in /var/log/proftpd

I tried to configure a report in the GUI in SiteManagement > www.site.tld> 
UsageInformation > FTP, but the page returned «No data were foundfor activity during 
the period specified. You may want to try another set of dates.»

Thank you and best regards

ベ⊇ Meaulnes Legler
CH-8006 Zürich
+41¦0 44 2601660





___
Blueonyx mailing list
Blueonyx@mail.blueonyx.it
http://mail.blueonyx.it/mailman/listinfo/blueonyx

[BlueOnyx:23505] ftp logs

[Meaulnes Legler @ MailList]

hello

where can I find the logs of FTP user activity?

/var/log/xferlog and the .zip from the previous days are empty, can't find 
relevant data in /var/log/proftpd/

I tried to configure a report in the GUI in SiteManagement > www.site.tld > 
UsageInformation > FTP, but the page returned «No data were found for activity during 
the period specified. You may want to try another set of dates.»

ベ⊇ Meaulnes Legler
CH-8006 Zürich
+41¦0 44 2601660



___
Blueonyx mailing list
Blueonyx@mail.blueonyx.it
http://mail.blueonyx.it/mailman/listinfo/blueonyx

[BlueOnyx:23426] Re: 5210R and WordPress

[Meaulnes Legler @ MailList]

yeah, it's bit tricky, I had to search, too...

on a 5209R (I guess it's the same on a 5210R): Site Management > edit [pencil on the right] 
the virtual site that needs WP > Services > Web Applications > Blog WordPress 
[pencil] > install.

WP will be installed in the Install Path, I chose «wp» instead of «wordpress».

で⊃ Meaulnes Legler
Zürich Switzerland
+41¦0 44 2601660

On 12.11.19 12:08, Lee Redmayne wrote:


Hello all

I've just built a 5210R box from scratch, bought and installed the PHP/MySQL 
and WordPress addons from the store, however the WordPress will not show as 
installed - no matter what I do.

Any suggestions?


___
Blueonyx mailing list
Blueonyx@mail.blueonyx.it
http://mail.blueonyx.it/mailman/listinfo/blueonyx




___
Blueonyx mailing list
Blueonyx@mail.blueonyx.it
http://mail.blueonyx.it/mailman/listinfo/blueonyx

[BlueOnyx:23392] Re: ban e-mails from TLD part three

[Meaulnes Legler @ MailList]

dear Michael

I asked you a while ago on how to block entire TLDs from accepting e-mail. You 
suggested the an entry in /etc/mail/access like, for *.icu domains:

icu 550 Mail rejected from junk TLD (with a TAB between icu and 550)

I first thought it would work only for three letter TLDs, not for domains like 
*.best or *faith and sent a notice last week.

But actually it *does* work for any TLD regardless of its length — I had a mess 
in my configurations, sorry.

Just wanted to let you know.

Thank you and best regards

_⌢_  Meaulnes Legler
'¿') Zurich, Switzerland.
`-´  +41¦0 44 260-1660


On 17.10.19 18:06, Michael Stauber wrote:

Hi Meaulnes,


you told me how to block entire TLD's: edit /etc/mail/access and put
this line into it:

icu 550 Mail rejected from junk TLD (with a TAB between icu and 550)

I did this and inserted also other TLDs.

icu 550 Mail rejected from junk TLD
pro 550 Mail rejected from junk TLD
best    550 Mail rejected from junk TLD
top 550 Mail rejected from junk TLD

That works for .icu, .pro, .top, but not for the four letter *.best*
TLD, e-mails from such domains are still pouring into the Mail Delivery
Subsystem...


Hmmm ... I'm not sure I have an answer to that at the moment, sorry.

Next week I'll be doing an overhaul of the AV-SPAM for 5210R and the new
code will then also be backported to the 5209R AV-SPAM. The Milter-GeoIP
in there will receive some code that I've been running myself for the
last year. That new code allows to block certain TLDs at the MTA level
via the milter.

It also does WHOIS lookups and you can block domains that are freshly
registered or can block domains that have been registered with
registries you don't like.

I once added that because a particularly annoying spammer was using
throw away hosting accounts and was cycling through >200 GoDaddy
registered domains he had lined up for that. Once I had identified this
behavior I could say: "If registered at GoDaddy and the last change is
newer than 7 days: Go away!"





___
Blueonyx mailing list
Blueonyx@mail.blueonyx.it
http://mail.blueonyx.it/mailman/listinfo/blueonyx

[BlueOnyx:23385] Re: can't create new user - solved

[Meaulnes Legler @ MailList]

all-clear, I got it solved. Incredible, I found the solution at virtbiz.com:

https://www.virtbiz.com/client/index.php?rp=/knowledgebase/27/Sorry-an-error-occurred-while-trying-to-create-an-email-server-map-file.html

Thank you and best regards

ヾ⊃ Meaulnes Legler
Zürich Switzerland
+41¦0 44 2601660

On 21.10.19 11:20, Meaulnes Legler @ MailList wrote:

hello

on a 5209R, I get the following error when I want to add a new user to a domain:

Sorry, an error occurred while trying to create an email server map file. If 
mail server configuration files were removed or manually modified, please 
restore the original versions and try again.

This occurs on any domain of that server. I'm not aware of having changed any 
«mail server configuration files» (which are those?) and didn't had to add a 
new user since a long time.

What can I do? Shall I upgrade to the first release candidate of 5210R? I'm a 
bit scared to do so and not sure how to...

Thank you and best regards

ベ⊃ Meaulnes Legler
Zürich Switzerland
+41¦0 44 2601660




___
Blueonyx mailing list
Blueonyx@mail.blueonyx.it
http://mail.blueonyx.it/mailman/listinfo/blueonyx




___
Blueonyx mailing list
Blueonyx@mail.blueonyx.it
http://mail.blueonyx.it/mailman/listinfo/blueonyx

[BlueOnyx:23384] can't create new user

[Meaulnes Legler @ MailList]

hello

on a 5209R, I get the following error when I want to add a new user to a domain:

Sorry, an error occurred while trying to create an email server map file. If 
mail server configuration files were removed or manually modified, please 
restore the original versions and try again.

This occurs on any domain of that server. I'm not aware of having changed any 
«mail server configuration files» (which are those?) and didn't had to add a 
new user since a long time.

What can I do? Shall I upgrade to the first release candidate of 5210R? I'm a 
bit scared to do so and not sure how to...

Thank you and best regards

ベ⊃ Meaulnes Legler
Zürich Switzerland
+41¦0 44 2601660




___
Blueonyx mailing list
Blueonyx@mail.blueonyx.it
http://mail.blueonyx.it/mailman/listinfo/blueonyx

[BlueOnyx:23367] Re: ban e-mails from top level domains part two

[Meaulnes Legler @ MailList]

Michael, thank you for your reply.

well then I tried a workaround. I listed all sender domains by concatenating 
all Mail Delivery Subsystem e-mails in one file «best.txt» (141 entries since 
two days), extracted 47 domains with

cat best.txt | grep -o "@.*\.best>" | sort -u | sed 's/@//' | sed 's/>//'

and inserted them in the list Server Management > E-mail > Advanced > Block 
Email From Hosts/Domains.

This isn't optimal, I'm sure those guys have more the 47 domain names /in 
petto/ but it will reduce the load a bit...

Best regards

_⌢_  Meaulnes Legler
'¿') Zurich, Switzerland.
`-´  +41¦0 44 260-1660 fax:-1661


On 17.10.19 18:06, Michael Stauber wrote:

Hi Meaulnes,


you told me how to block entire TLD's: edit /etc/mail/access and put
this line into it:

icu 550 Mail rejected from junk TLD (with a TAB between icu and 550)

I did this and inserted also other TLDs.

icu 550 Mail rejected from junk TLD
pro 550 Mail rejected from junk TLD
best    550 Mail rejected from junk TLD
top 550 Mail rejected from junk TLD

That works for .icu, .pro, .top, but not for the four letter *.best*
TLD, e-mails from such domains are still pouring into the Mail Delivery
Subsystem...


Hmmm ... I'm not sure I have an answer to that at the moment, sorry.

Next week I'll be doing an overhaul of the AV-SPAM for 5210R and the new
code will then also be backported to the 5209R AV-SPAM. The Milter-GeoIP
in there will receive some code that I've been running myself for the
last year. That new code allows to block certain TLDs at the MTA level
via the milter.

It also does WHOIS lookups and you can block domains that are freshly
registered or can block domains that have been registered with
registries you don't like.

I once added that because a particularly annoying spammer was using
throw away hosting accounts and was cycling through >200 GoDaddy
registered domains he had lined up for that. Once I had identified this
behavior I could say: "If registered at GoDaddy and the last change is
newer than 7 days: Go away!"




___
Blueonyx mailing list
Blueonyx@mail.blueonyx.it
http://mail.blueonyx.it/mailman/listinfo/blueonyx

[BlueOnyx:23351] ban e-mails from top level domains part two

[Meaulnes Legler @ MailList]

hello Michael

you told me how to block entire TLD's: edit /etc/mail/access and put this line 
into it:

icu 550 Mail rejected from junk TLD (with a TAB between icu and 550)

I did this and inserted also other TLDs.

icu 550 Mail rejected from junk TLD
pro 550 Mail rejected from junk TLD
best550 Mail rejected from junk TLD
top 550 Mail rejected from junk TLD

That works for .icu, .pro, .top, but not for the four letter *.best* TLD, 
e-mails from such domains are still pouring into the Mail Delivery Subsystem...

any idea?

Thank you and best regards
_⌢_  Meaulnes Legler
'¿') Zurich, Switzerland.
`-´  +41¦0 44 260-1660


___
Blueonyx mailing list
Blueonyx@mail.blueonyx.it
http://mail.blueonyx.it/mailman/listinfo/blueonyx

[BlueOnyx:23265] Re: redirect to https

[Meaulnes Legler @ MailList]

thanks Brent!

yeah I tried several .htaccess configurations, but always got the 500 Internal 
Server Error error...

with your approch, /var/log/httpd/error_log reports:

/home/.sites//web/.htaccess: Options not allowed here

same with AllowOverride All, for instance.

I'm a bit scared to go into the site's Apache configuration in 
/etc/httpd/conf/vhosts...

Any other idea? I thought there is an option to click in the GUI?

Thank you and best regards

(ツ) Meaulnes Legler
Zurich, Switzerland.
+41¦0 44 260-1660

On 24.09.19 17:49, Brent Epp wrote:

You can achieve this quite simply with an .htaccess in the document root:

Options +FollowSymLinks
RewriteEngine on
RewriteBase /
RewriteCond %{HTTPS} off
RewriteRule ^ https://%{HTTP_HOST}%{REQUEST_URI} [L,R=301]

This requires mod_rewrite for Apache, which I believe is standard with BlueOnyx.

 - Brent

On 2019-09-24 06:14, Meaulnes Legler @ MailList wrote:

hello

the Let's Encrypt feature is really cool and simple, https://mysite.tld comes 
up right away.

what I'm missing is the automatic redirect from http:// to https://... If one 
enters http://mysite.tld it stays in the insecure protocol instead of changing 
to https://mysite.tld

how can I achieve this?

Thank you and best regards

(ツ) Meaulnes Legler
Zurich, Switzerland.
+41¦0 44 260-1660




___
Blueonyx mailing list
Blueonyx@mail.blueonyx.it
http://mail.blueonyx.it/mailman/listinfo/blueonyx


___
Blueonyx mailing list
Blueonyx@mail.blueonyx.it
http://mail.blueonyx.it/mailman/listinfo/blueonyx




___
Blueonyx mailing list
Blueonyx@mail.blueonyx.it
http://mail.blueonyx.it/mailman/listinfo/blueonyx

[BlueOnyx:23261] redirect to https

[Meaulnes Legler @ MailList]

hello

the Let's Encrypt feature is really cool and simple, https://mysite.tld comes 
up right away.

what I'm missing is the automatic redirect from http:// to https://... If one 
enters http://mysite.tld it stays in the insecure protocol instead of changing 
to https://mysite.tld

how can I achieve this?

Thank you and best regards

(ツ) Meaulnes Legler
Zurich, Switzerland.
+41¦0 44 260-1660




___
Blueonyx mailing list
Blueonyx@mail.blueonyx.it
http://mail.blueonyx.it/mailman/listinfo/blueonyx

[BlueOnyx:23204] dig in BlueOnyx Maillist archives

[Meaulnes Legler @ MailList]

hello all

before posting a question to the list, I want to check if my issue wasn't 
already covered in the past. So I searched for the BlueOnyx Maillist archives:

https://mail.blueonyx.it/pipermail/blueonyx/

unfortunately, the archives are packed in monthly containers

September 2019: [ Thread ] [ Subject ] [ Author ] [ Date ]  [ Gzip'd Text 
12 KB ]
August 2019:[ Thread ] [ Subject ] [ Author ] [ Date ]  [ Gzip'd Text 
39 KB ]
July 2019:  [ Thread ] [ Subject ] [ Author ] [ Date ]  [ Gzip'd Text 
31 KB ]
June 2019:  [ Thread ] [ Subject ] [ Author ] [ Date ]  [ Gzip'd Text 
25 KB ]
... snip ...

so one has to search individually each Thread or Subject and then the message 
itself for some keyword...

Isn't there a place where I can globally search all threads and messages, say 
all in 2019, for instance?

Thank you and best regards

_⌢_  Meaulnes Legler
'¿') Zurich, Switzerland.
`-´  +41¦0 44 260-1660


___
Blueonyx mailing list
Blueonyx@mail.blueonyx.it
http://mail.blueonyx.it/mailman/listinfo/blueonyx

[BlueOnyx:22992] Mail Delivery Subsystem error — received from localhost

[Meaulnes Legler @ MailList]

hello

I get quite often burst of Mail Delivery error messages, hundreds in a minute 
or two like the one below, addressed to «myhostname».localdomain. Then it stops 
by itself and restarts a couple of days later.

Weird is the line: Received-From-MTA: DNS; localhost

Any idea from where this comes from? and how to prevent this?

Thank you and best regards

_⌢_  Meaulnes Legler
'¿') Zurich, Switzerland.
`-´  +41¦0 44 260-1660 fax:-1661

——begin———

The original message was received at Mon, 1 Jul 2019 05:00:21 +0200
from localhost
with id x6130LRY022291

   - The following addresses had permanent fatal errors -

(reason: 550 Host unknown)

   - Transcript of session follows -
550 5.1.2 ... Host unknown (Name server: 
bleue.localdomain: host not found)


Reporting-MTA: dns; bleue.waveweb.ch
Received-From-MTA: DNS; localhost
Arrival-Date: Mon, 1 Jul 2019 05:00:21 +0200

Final-Recipient: RFC822; mailman-bounces@bleue.localdomain
Action: failed
Status: 5.1.2
Remote-MTA: DNS; bleue.localdomain
Diagnostic-Code: SMTP; 550 Host unknown
Last-Attempt-Date: Mon, 1 Jul 2019 05:00:21 +0200


Return-Path: 
Received: from localhost (localhost)
by bleue.waveweb.ch (8.14.7/8.14.7) id x6130LRY022291;
Mon, 1 Jul 2019 05:00:21 +0200
Date: Mon, 1 Jul 2019 05:00:21 +0200
From: Mail Delivery Subsystem 
Message-Id: <201907010300.x6130lry022...@bleue.waveweb.ch>
To: 
MIME-Version: 1.0
Content-Type: multipart/report; report-type=delivery-status;
boundary="x6130LRY022291.1561950021/bleue.waveweb.ch"
Subject: Returned mail: see transcript for details
Auto-Submitted: auto-generated (failure)

——end———


___
Blueonyx mailing list
Blueonyx@mail.blueonyx.it
http://mail.blueonyx.it/mailman/listinfo/blueonyx

[BlueOnyx:22959] Re: BlueOnyx 5210R TLSv1.3 support

[Meaulnes Legler @ MailList]

for me too, running mostly Macs from OSX 10.11 (El Capitan with Safari 11) to 
OSX 10.14 (Mojave with Safari 12.1), sometimes Windoof 7 and 10 with IE 11, I 
don't have problems logging into a BlueOnyx 5209R.

is BlueOnyx 5219R available yet?

Best regards

_⌢_  Meaulnes Legler
'¿') Zurich, Switzerland.
`-´  +41¦0 44 260-1660


On 19.06.19 03:56, Michael Stauber wrote:

Hi all,

I'm currently locking down the SSL protocols and ciphers for BlueOnyx
5210R in Apache and Nginx.

The good news is: TLSv1.3 does indeed work with the Apache 2.4.35 that
ships with RHEL8. They must have backported the missing elements from
Apache 2.4.36, which officially is the first version of Apache where
TLSv1.3 ought to work. The included OpenSSL-1.1.1 is also (barely) good
enough for TLSv1.3.

Below is a preliminary SSL-Labs check for HTTPS on 5210R with the stock
Apache 2.4.35:

https://www.ssllabs.com/ssltest/analyze.html?d=5210r.smd.net=on

The result for the included Nginx SSL proxy is identical except for one
minor detail: Under TLSv1.3 the CHACHA20_POLY1305 cipher is in 2nd place
and not in first place.

Question:
==

As you can see in the URL above, the following browsers are no longer
supported:

- IE 11 / Win Phone 8.1
- Safari 6 / iOS 6.0.1
- Safari 7 / iOS 7.1
- Safari 7 / OS X 10.9
- Safari 8 / iOS 8.4
- Safari 8 / OS X 10.10

The best available cipher that these support would be this:

TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384

And that uses the "weak" CBC mechanism, which we might want to avoid.

Does anyone have objections for no longer supporting these older
browsers via HTTPS? Or do we still need to drag them along?




___
Blueonyx mailing list
Blueonyx@mail.blueonyx.it
http://mail.blueonyx.it/mailman/listinfo/blueonyx

[BlueOnyx:22924] Re: APF mystery - blocking BlueOnyx

[Meaulnes Legler @ MailList]

Hello Colin

there were some posts about DFix2/APF round May 5-6 in this list, read what 
happened there...

I was running APF, Dfix2 and Fail2ban on my servers, but I turned Dfix2 off 
because it is too fussy with users who entered a false password (e.g. 
connecting an old device or setting up a new one, at the Internet Café etc.), 
one's connection is banned by Dfix2 already after two attempts.

less /etc/apf/deny_hosts.rules
# added 83.76.86.xxx on 12/04/18 12:09:33 with comment: dFixblock2
83.76.86.xxx

Dfix2 is very compelling, but just too strict. And since I couldn't find out 
how to edit the rules in /etc/sec, I turned it off keeping APF and Fail2ban 
only.

No problems anymore. Until the next hack?:-(

Best regards

_⌢_
'¿')
`-´  Meaulnes Legler

 Zurich, Switzerland

+41¦0 44 260 16 60


On 26.05.19 09:16, Colin Jack wrote:


Hi Greg,

Hi Colin.

Look at /var/log/sec for anything that might indicate if it was dFix that 
blocked. If you see something there, we can tune to prevent that happening 
again.

GK

I did grep the log for the BX IPs but no result.

It is very weird – but I do like to run DFix2/APF on all my VPS and this is the 
only one doing strange stuff.

I will have another look and see if I can locate anything.

Thanks

Colin

On 23 May 2019, at 3:27 am, Colin Jack mailto:co...@mainline.co.uk>> wrote:

I have a problem with one 5209R VPS that I cannot fathom.

I would be interested in some feedback.

I am running DFix2 / APF and APF appears to be blocking access to 
Blueonyx.it and also the Letsencrypt servers.

The GUI cannot get BX News or the shop.

LE renewals fail.

I haven’t touched any of the rules.

If I flush iptables it all starts working for a few hours.

If I disable AFP it all works.

I have looked in iptables for the BX IP but nothing.

Same with APF blacklist. Not listed.

I run DFix2 / APF on all my servers and don’t have a problem - except on 
this one.

Any thoughts (Michael/Greg)?

I have tried removing APF and re-installing without any luck.

Regards

Colin

___
Blueonyx mailing list
Blueonyx@mail.blueonyx.it 
http://mail.blueonyx.it/mailman/listinfo/blueonyx


___
Blueonyx mailing list
Blueonyx@mail.blueonyx.it
http://mail.blueonyx.it/mailman/listinfo/blueonyx
___
Blueonyx mailing list
Blueonyx@mail.blueonyx.it
http://mail.blueonyx.it/mailman/listinfo/blueonyx

[BlueOnyx:22890] ban e-mails from *.icu domains

[Meaulnes Legler @ MailList]

hello

lately the Mail Delivery Subsystem gets flooded with e-mails sent to none 
existing addresses, all ending in .icu


 - The following addresses had permanent fatal errors -

(reason: 550-5.1.1 The email account that you tried to reach does not 
exist. Please try)


cat /var/log/maillog | grep "\.icu" lists a plethora of domains all ending in 
«.icu»

a good practice I use to ban recurrent e-mail servers sending their junk is to 
add their domain address in the GUI in the list at
Server Management > Email > Advanced > Block Email From Hosts/Domains

this works quite fine since entering for instance «autobiz.com» bans also 
«campaigns-autobiz.com» as also «sales-autobiz.com».

But I can't enter a regular expression like *\.icu or [a-z]\.icu

Any ideas how I can ban all .icu domains?

Thank you and best regards

_⌢_  Meaulnes Legler
'¿') Zurich, Switzerland.
`-´  +41¦0 44 260-1660 fax:-1661


___
Blueonyx mailing list
Blueonyx@mail.blueonyx.it
http://mail.blueonyx.it/mailman/listinfo/blueonyx

[BlueOnyx:22886] Re: Dfix2 & APF

[Meaulnes Legler @ MailList]

On 06.05.19 02:50, Michael Stauber wrote:

Hi Greg,

Michael actually agrees with you, which is why he built BFD as an
alternative to dfix. By all means, try it instead.

Correction: That should be "Fail2ban", not "Bfd".
I find that Fail2ban works a lot more gracefully and especially for
email related attacks it has a great detection rate.


okayyy, I see that I have, along with APF, both services on, Dfix2 and Fail2ban 
— I guess this is an overkill...

I'll turn Dfix2 off. Configuration with sec seems a bit complicated anyway:-(

Thank you and best regards

_⌢_  Meaulnes Legler
'¿') Zurich, Switzerland
`-´  +41¦0 44 260-1660


___
Blueonyx mailing list
Blueonyx@mail.blueonyx.it
http://mail.blueonyx.it/mailman/listinfo/blueonyx

[BlueOnyx:22883] Dfix2 & APF

[Meaulnes Legler @ MailList]

hello

Dfix2 is too strict, the external IP of users get blocked in APF after just a 
few false login attempts or because they connected some device with old 
credentials...

Also — I don't know if it's Dfix2 who does it — an IP entered in APF Firewall's 
Whitelist gets deleted after a while...

I forgot: how and where can I fine tune Dfix2 ?

Thank you and best regards

_⌢_
'¿')
`-´  Meaulnes Legler

 Zurich, Switzerland

+41¦0 44 260 16 60


___
Blueonyx mailing list
Blueonyx@mail.blueonyx.it
http://mail.blueonyx.it/mailman/listinfo/blueonyx

[BlueOnyx:22750] Re: Roundcube issue : Dirk's fix

[Meaulnes Legler @ MailList]

Hi Richard

I was abroad on a crappy Internet connection and saw your mail only now. I had 
the same problem with RCafter installing the new version 1.3.7: users couldn't 
login and new users got a database error.

The problem seems to be a glitch in some of RC's databases, the «alias» field 
is empty instead of carrying NULL. Dirk Estenfeld sent me instructions for a 
fix, but I had difficulties finding the belonging database. After finding the 
catch, it worked out and users could log in again.

Either read our exchanges in the maillist around October 11, 2018 
«/[BlueOnyx:22441] Re: new RoundCube version»/ or read an extract below.

Best regards

_~_
'¿')
`-´  Meaulnes Legler

 Zurich, Switzerland

+41¦0 44 260 16 60


On 25.02.19 23:14, Richard Barker wrote:


We have a VPS 5209R that has roundcube installed and has 22 domain on with 
roundcube installed all roundcube logins work except one vsite, access_logs 
show logged in errors_logs show no errors message shows no error or issues.
I have un-installed and re-installed roundcube on that vsite multiple time and 
even removed the database and user for it and still now able to login yet the 
21 other sites work.
What in the world am I not seeing?
/*Richard C. Barker Sr.
CEO & President
1-813-873-8942
ProBass Networks Inc. */
www.probassnetworks.net <http://www.probassnetworks.net>
www.probass.net <http://www.probass.net>



--

Subject: Re: [BlueOnyx:22437] Re: new RoundCube version - solved! From: "Meaulnes Legler @ 
MailList" 
Date: 14.10.18, 10:47
To: blueonyx@mail.blueonyx.it
CC: "SolarSpeed M. Stauber" 

hey Dirk

thanks to your help, I could fix the issue that after installing the new 
RoundCube version 1.3.7, users couldn't login (and new users got a database 
error).

My problem was that I couldn't find the site's database in phpMyAdmin (I could 
find it in mysql in a shell, but didn't know the mysql commands to execute your 
suggested procedure). I couldn't find it because that server had so many databases 
that phpMyAdmin displayed them on *three pages* and I didn't notice the little 
dropdown 1▴▾>≫ to access the next page (this dropdown appears only on servers 
with lots of databases).

After finding the correct database for the faulting site, it was a piece of 
cake to fix the issue according to your instructions below.

Thanks again and best regards

_~_
'¿')
`-´  Meaulnes Legler
 Zurich, Switzerland
+41\0 44 260 16 60

PS: for those who are interested in more details, see further below.


On 11.10.18 15:37, Dirk Estenfeld wrote:


Hello Meaulnes,

here is the way to correct it.
Check the config/config.inc.php file in the roundcube installation.
Look for the line $config['db_dsnw'] =
At the end of the line you will find the database name: nwa_whatever

Now you login to Blueonyx backend as admin and go to personal profile -> programs 
-> phpmyadmin (use “open in new window” link)
Open Tab databases in the top and click on the name of the database you did 
find in config/config.inc.php
Look for table users and klick structure.
Click checkbox before alias and select edit under tables.
Now set standard to NULL and save.
That’s it. Now you can login again.

Best regards,

Dirk

 ---


If one has to fix this issue for several sites, one has to find our in which 
databases the alias field has to be set to NULL. In a shell:

# for i in `find /home/.sites/ -name config.inc.php` ; do echo -en "$i\t" ; grep -e 
"\$config\['db_dsnw'\]" $i ; done
/home/.sites/28/site1/web/roundcube.1.2.4/config/config.inc.php 
$config['db_dsnw'] = 
'mysql://nwa_ULSKqxvfRb2j:zRTEnOLoRsbOq4yy@127.0.0.1/nwa_XMGovCPOISij';
/home/.sites/28/site1/web/roundcube.1.3.4/config/config.inc.php 
$config['db_dsnw'] = 
'mysql://nwa_bBGj30wcVIQu:Cq3gyZuOutGeegFd@127.0.0.1/nwa_YjeFtoceIsfN';
/home/.sites/132/site21/web/roundcube/config/config.inc.php 
$config['db_dsnw'] = 
'mysql://nwa_ULSKqxvfRb2j:zRTEnOLoRsbOq4yy@127.0.0.1/nwa_XMGovCPOI

[BlueOnyx:22607] Re: Letsencrypt - update is in Testing-Repo

[Meaulnes Legler @ MailList]

On 23.01.19 10:07, Colin Jack wrote:

Hi Michael,

I spent all day on it today and I now have a version for 5209R ready which
replaces CertBot with ACME.sh

You are a star! Thanks for getting on this - probably time for a few more 
donations to your coffers?
We all really appreciate your dedication and hard work.


yes indeed! me too (no reference to the movement:-)

_~_
'¿')
`-´  Meaulnes Legler

 Zurich, Switzerland

+41¦0 44 260 16 60




All the best

Colin

___
Blueonyx mailing list
Blueonyx@mail.blueonyx.it
http://mail.blueonyx.it/mailman/listinfo/blueonyx

___
Blueonyx mailing list
Blueonyx@mail.blueonyx.it
http://mail.blueonyx.it/mailman/listinfo/blueonyx

[BlueOnyx:22594] searching archives

[Meaulnes Legler @ MailList]

Hi all -

Chris Gebhart wrote:


I've been searching the archives ...


how do you do that? I found the BlueOnyx mailing list archive at 
mail.blueonyx.it/pipermail/blueonyx 
. But there, one can only search 
for a keyword on a *per month* base. It's a hassle to check each month one after the 
other...

Isn't there a global archive that is searchable?

Thank you and best regards

_~_
'¿')
`-´  Meaulnes Legler

 Zurich, Switzerland

+41¦0 44 260 16 60


___
Blueonyx mailing list
Blueonyx@mail.blueonyx.it
http://mail.blueonyx.it/mailman/listinfo/blueonyx

[BlueOnyx:22544] Re: suspending e-mail accounts

[Meaulnes Legler @ MailList]

On 13.12.18 16:42, Ken Hohhof wrote:

If you are locking the subscriber out and bouncing incoming mail, why do you want to 
"suspend" the account and not just delete it? Is this just temporary to get the 
subscriber to pay his bill?


well, yes and no, those are also users who deceased and their partners still 
want to access posthum their e-mail and have their webpage running... But the 
incoming mail should stop, senders should be notified that the user doesn't 
exist anymore.

best regards

Meaulnes Legler

___

Blueonyx mailing list
Blueonyx@mail.blueonyx.it
http://mail.blueonyx.it/mailman/listinfo/blueonyx


___
Blueonyx mailing list
Blueonyx@mail.blueonyx.it
http://mail.blueonyx.it/mailman/listinfo/blueonyx

[BlueOnyx:22541] Re: suspending e-mail accounts

[Meaulnes Legler @ MailList]

On 12.12.18 01:52, Michael Stauber wrote:

When an account is suspended a few things happen: - /usr/sbin/usermod -L 
 is used to lock the account. - The password-hash of the user gets 
prefixed with ! to disable logins. - Email forwarding/autoresponder are turned off.

That's now been fixed on 5207R, 5208R and 5209R. I also had to update the 
AV-SPAM, as a certain handler will run (if the AV-SPAM is installed) that 
messes with the home directory of users on suspend/unsuspend. That also wasn't 
applying the correct permissions when a user was getting suspended. Both 
updates are now available via YUM for all relevant platforms.


thank you Michael!

of course, users that were previously suspended had to *be enabled again and 
then re-suspended* for a successful ban.

But: isn't the Procmail bump message a bit too verbose? Why is the full path of 
the user displayed?

The original message was received at Wed, 12 Dec 2018 09:48:49 +0100
from mail-ed1-f43.google.com [209.85.208.43]
   - The following addresses had permanent fatal errors -

(reason: Can't create output)
   - Transcript of session follows -
procmail: Lock failure on "/home/.sites/112/site7/.users/39/claude/mbox.lock" procmail: 
Error while writing to "/home/.sites/112/site7/.users/39/claude/mbox"
550 5.0.0 ... Can't create output

Can one edit a configuration file to tamper this?

I would prefer that the message would read «no such user here». Can I achieve 
this?

Or can I spoof Procmail/Sendmail to assume that that user doesn't exist? The not 
suspended user could still login and view his files, just not send & receive 
e-mail... I tried User List > Basic Settings > Disable User's Email [√] but it 
doesn't prevent the mbox to get mails...

Thank you and best regards

_~_
'¿')
`-´  Meaulnes Legler

 Zurich, Switzerland

+41¦0 44 260 16 60


___
Blueonyx mailing list
Blueonyx@mail.blueonyx.it
http://mail.blueonyx.it/mailman/listinfo/blueonyx

[BlueOnyx:22536] greylist gone ?

[Meaulnes Legler @ MailList]

hello

I have a user who doesn't get an e-mail from a specific sender — latter says, 
the mail was returned with the comment «Warning: message 1gWGNB-000Ome-Jv 
delayed 24 hours».

I thought the user might be greylisting. But there is no more greylist settings 
in the GUI anymore or I'm looking at the wrong place...

Is greylisting now obsolete?

_~_
'¿')
`-´  Meaulnes Legler

 Zurich, Switzerland

+41¦0 44 260 16 60


___
Blueonyx mailing list
Blueonyx@mail.blueonyx.it
http://mail.blueonyx.it/mailman/listinfo/blueonyx

[BlueOnyx:22532] suspending e-mail accounts

[Meaulnes Legler @ MailList]

hello it's me again with another question:

I'm mucking out old e-mail accounts and, instead of deleting them, I clicked in 
the GUI on Suspended [√] where a tool-tip says:

Suspending a user will prevent that user from accessing system services
associated with that account such as telnet, FTP, mail, and Web access to
their files.Email sent to the suspended user's account will be rejected and the 
sender will receive an error message.

Unfortunately, the users _are_ banned but the e-mails are still pouring in and 
the mailbox growing... The sender doesn't get an error message, I tried it out.

From the command line, how can I have the incoming mails rejected with an error 
message delivered to the sender?

I think I could chown the mbox to root but I guess this isn't very graceful...

Thank you and best regards

_~_
'¿')
`-´  Meaulnes Legler

 Zurich, Switzerland

+41¦0 44 260 16 60


___
Blueonyx mailing list
Blueonyx@mail.blueonyx.it
http://mail.blueonyx.it/mailman/listinfo/blueonyx

[BlueOnyx:22531] Re: APF & Dfix2

[Meaulnes Legler @ MailList]

On 04.12.18 17:51, Michael Stauber wrote:

Hi Meaulnes,

# added 83.76.86.xxx on 12/04/18 12:09:33 with comment: dFixblock2
#83.76.86.xxx

It would be interesting to see why you got blocked in first place. The
logfile /var/log/secure or /var/log/messages has more info on that.


# less /var/log/secure | grep 83.76.86.xxx
Dec  3 13:37:41 vs sshd[2067]: Accepted password for root from 83.76.86.xxx 
port 64321 ssh2
Dec  3 14:29:59 vs sshd[2067]: Received disconnect from 83.76.86.xxx port 
64321:11: disconnected by user
Dec  3 14:29:59 vs sshd[2067]: Disconnected from 83.76.86.xxx port 64321
Dec  3 14:30:07 vs sshd[8076]: Accepted password for root from 83.76.86.xxx 
port 65345 ssh2
Dec  3 16:21:02 vs sshd[20793]: Accepted password for root from 83.76.86.xxx 
port 50320 ssh2
Dec 3 18:53:12 vs sshd[6062]: Connection closed by 83.76.86.xxx port 52402 
[preauth]
Dec  4 07:23:52 vs sshd[26926]: Accepted password for root from 83.76.86.xxx 
port 57483 ssh2
Dec  4 07:43:26 vs sshd[26926]: Received disconnect from 83.76.86.xxx port 
57483:11: disconnected by user
Dec  4 07:43:26 vs sshd[26926]: Disconnected from 83.76.86.xxx port 57483
Dec  4 07:47:37 vs sshd[28629]: Accepted password for root from 83.76.86.xxx 
port 57648 ssh2
Dec  4 08:11:56 vs sshd[28629]: Received disconnect from 83.76.86.xxx port 
57648:11: disconnected by user
Dec  4 08:11:56 vs sshd[28629]: Disconnected from 83.76.86.xxx port 57648
Dec  4 12:09:33 vs sshd[16055]: Failed password for root from 83.76.86.xxx port 
59640 ssh2
Dec  4 12:31:20 vs sshd[22456]: Accepted password for root from 83.76.86.xxx 
port 59828 ssh2
Dec  4 13:00:48 vs sshd[22456]: Received disconnect from 83.76.86.xxx port 
59828:11: disconnected by user
Dec  4 13:00:48 vs sshd[22456]: Disconnected from 83.76.86.xxx port 59828
Dec  4 15:56:40 vs sshd[11876]: Accepted password for root from 83.76.86.xxx 
port 61100 ssh2
Dec  4 17:49:28 vs sshd[21364]: Accepted password for root from 83.76.86.xxx 
port 49728 ssh2
Dec  4 19:52:24 vs sshd[21364]: Received disconnect from 83.76.86.xxx port 
49728:11: disconnected by user
Dec  4 19:52:24 vs sshd[21364]: Disconnected from 83.76.86.xxx port 49728

I don't see anything special except maybe the [preauth] line... Here the 
adjacent lines:

Dec  3 18:49:25 vs auth: pam_unix(dovecot:auth): authentication failure; 
logname= uid=0 euid=0 tty=dovecot ruser=gast rhost=89.248.162.159
Dec  3 18:52:59 vs sshd[29989]: Received disconnect from 94.103.my.ip port 
39294:11: disconnected by user
Dec  3 18:52:59 vs sshd[29989]: Disconnected from 94.103.my.ip port 39294
Dec  3 18:52:59 vs sshd[29989]: pam_unix(sshd:session): session closed for user 
root
Dec 3 18:53:12 vs sshd[6062]: Connection closed by 83.76.86.xxx port 52402 
[preauth]
Dec  3 18:54:10 vs auth: pam_unix(dovecot:auth): authentication failure; 
logname= uid=0 euid=0 tty=dovecot ruser=operator rhost=89.248.162.159  
user=operator

/var/log/messages looks pretty harmless:

# less /var/log/messages | grep 83.76.86.xxx
Dec  2 14:30:35 vs apf: apf(13325): {trust IPv4} allow all to/from 83.76.86.xxx
Dec  2 14:31:25 vs apf: apf(15388): {trust IPv4} allow all to/from 83.76.86.xxx
Dec  2 15:42:05 vs apf: apf(22135): {trust IPv4} allow all to/from 83.76.86.xxx
Dec  2 15:42:24 vs apf: apf(24164): {trust IPv4} allow all to/from 83.76.86.xxx
Dec  3 13:31:24 vs apf: apf(32208): {trust IPv4} allow all to/from 83.76.86.xxx
Dec  3 17:58:25 vs apf: apf(32315): {trust IPv4} allow all to/from 83.76.86.xxx
Dec  4 12:12:00 vs apf: apf(18790): {trust IPv4} allow all to/from 83.76.86.xxx
Dec  4 15:43:57 vs apf: apf(9099): {trust IPv4} allow all to/from 83.76.86.xxx


Other than that: Please consider uninstall Dfix2 and to switch to
Fail2ban, whose ruleset causes fewer false positives and detects more stuff.


will do.

Thank you Michael

_~_
'¿')
`-´  Meaulnes Legler

 Zurich, Switzerland

+41¦0 44 260 16 60


___
Blueonyx mailing list
Blueonyx@mail.blueonyx.it
http://mail.blueonyx.it/mailman/listinfo/blueonyx

[BlueOnyx:22530] Re: NewLinQ issues - being worked on

[Meaulnes Legler @ MailList]

but there is a nice video at www.blueonyx.it  ! It's 
new, right? didn't see it before...

On 04.12.18 17:26, Michael Stauber wrote:


Hi all,
NewLinQ is currently down and we're working on it. It should return to
service sometime later today. Apologies for the inconvenience.

Regards
Meaulnes Legler
___
Blueonyx mailing list
Blueonyx@mail.blueonyx.it
http://mail.blueonyx.it/mailman/listinfo/blueonyx

[BlueOnyx:22526] APF & Dfix2

[Meaulnes Legler @ MailList]

hello

I'm trying out login scripts and configuring RoundCube on a virtual server. This 
generates often false logins and my IP gets banned by Dfix2 & APF — which is 
normal and ok. After accessing the vs from another IP, editing 
/etc/apf/deny_hosts.rules, commenting out my IP and restarting APF, everything is 
fine again.

# added 83.76.86.xxx on 12/04/18 12:09:33 with comment: dFixblock2
#83.76.86.xxx

In order to keep Dfix2 and APF running and to avoid each time this cumbersome dodge 
procedure, I entered my IP in Server Management > Security > APF Firewall > 
Whitelist. But that didn't help, I got banned again.

I noticed then that the line with the IP I entered in the whitelist gets 
deleted. Same happens with the line and IP in the blacklist above.

Any clue why APF's Whitelist doesn't keep the IP?

Thank you and best regards

_~_
'¿')
`-´  Meaulnes Legler

 Zurich, Switzerland

+41¦0 44 260 16 60


___
Blueonyx mailing list
Blueonyx@mail.blueonyx.it
http://mail.blueonyx.it/mailman/listinfo/blueonyx

[BlueOnyx:22519] SMTP on & off

[Meaulnes Legler @ MailList]

hello

since yesterday, sendmail on one of my virtual servers constantly, once every 
one or two hours, fails its service. Active monitor reports:

* There is a severe problem with the email system.
 - The SMTP server is not running and could not be restarted. The SMTP server 
may shut itself down temporarily under extreme load. Check the CPU load on the 
server. If the load does not appear to be the problem, go to the Server Desktop 
and try turning the SMTP server off then on again to see if this corrects the 
problem. If the SMTP server is still unable to start, try rebooting the server 
itself by clicking the Reboot Now button in the Power menu under System 
Settings. If the SMTP server is still unable to start, please 
referhttp://BlueOnyx.it/  for technical support.

After a while, the system manages to restart sendmail and everything is fine again — 
until the next failure... It's a nuisance. The e-mail load doesn't appear to be 
excessive, as far I can see there are peaks with about 35 messages an hour = 2.5 MB 
(Server Management > Usage Information > E-Mail), but this doesn't seem to be 
much, or is it?

Anybody encountering this, too? Any ideas for a remedy?

Thank you and best regards

Meaulnes Legler

~ ~ ~ ~ ~ ~ ~ ~ ~ ~ ~
~  www.WaveWeb.ch  ~
~ ~ ~ ~ ~ ~ ~ ~ ~ ~ ~
~ Zurich, Switzerland ~
~ tel: +41 44 2601660 ~


___
Blueonyx mailing list
Blueonyx@mail.blueonyx.it
http://mail.blueonyx.it/mailman/listinfo/blueonyx

[BlueOnyx:22459] Re: removed from list?

[Meaulnes Legler @ MailList]

On 25.10.18 00:03, Michael Stauber wrote:

Your message got to the list just fine.

yes thank you!


Check the headers of the notification email you've got to see if it was
really from lists.blueonyx.it.

as I recall, the header was very similar, but not exactly the same, that was 
why I dumped it. I was just a bit puzzled about the coincidence of the maillist 
inactivity since then.

Speaks for a worry-free system :-)

Best regards
Meaulnes Legler
___
Blueonyx mailing list
Blueonyx@mail.blueonyx.it
http://mail.blueonyx.it/mailman/listinfo/blueonyx

[BlueOnyx:22457] removed from list?

[Meaulnes Legler @ MailList]

hello

Last week I got a strange message saying that I'm about to be removed from this 
mailing list. Considering I never got such a mail since my registration, I 
didn't take it seriously and dumped it. Since then there is no activity 
anymore...

Am I still a member? Let's see if this message gets published.

Thank you and best regards
_~_
'¿')
`-´  Meaulnes Legler

 Zurich, Switzerland

+41¦0 44 260 16 60


___
Blueonyx mailing list
Blueonyx@mail.blueonyx.it
http://mail.blueonyx.it/mailman/listinfo/blueonyx

[BlueOnyx:22441] Re: new RoundCube version - solved!

[Meaulnes Legler @ MailList]

hey Dirk

thanks to your help, I could fix the issue that after installing the new 
RoundCube version 1.3.7, users couldn't login (and new users got a database 
error).

My problem was that I couldn't find the site's database in phpMyAdmin (I could 
find it in mysql in a shell, but didn't know the mysql commands to execute your 
suggested procedure). I couldn't find it because that server had so many databases 
that phpMyAdmin displayed them on *three pages* and I didn't notice the little 
dropdown 1▴▾>≫ to access the next page (this dropdown appears only on servers 
with lots of databases).

After finding the correct database for the faulting site, it was a piece of 
cake to fix the issue according to your instructions below.

Thanks again and best regards

_~_
'¿')
`-´  Meaulnes Legler
 Zurich, Switzerland
+41\0 44 260 16 60

PS: for those who are interested in more details, see further below.


On 11.10.18 15:37, Dirk Estenfeld wrote:


Hello Meaulnes,

here is the way to correct it.
Check the config/config.inc.php file in the roundcube installation.
Look for the line $config['db_dsnw'] =
At the end of the line you will find the database name: nwa_whatever

Now you login to Blueonyx backend as admin and go to personal profile -> programs 
-> phpmyadmin (use “open in new window” link)
Open Tab databases in the top and click on the name of the database you did 
find in config/config.inc.php
Look for table users and klick structure.
Click checkbox before alias and select edit under tables.
Now set standard to NULL and save.
That’s it. Now you can login again.

Best regards,

Dirk

---


If one has to fix this issue for several sites, one has to find our in which 
databases the alias field has to be set to NULL. In a shell:

# for i in `find /home/.sites/ -name config.inc.php` ; do echo -en "$i\t" ; grep -e 
"\$config\['db_dsnw'\]" $i ; done
/home/.sites/28/site1/web/roundcube.1.2.4/config/config.inc.php 
$config['db_dsnw'] = 
'mysql://nwa_ULSKqxvfRb2j:zRTEnOLoRsbOq4yy@127.0.0.1/nwa_XMGovCPOISij';
/home/.sites/28/site1/web/roundcube.1.3.4/config/config.inc.php 
$config['db_dsnw'] = 
'mysql://nwa_bBGj30wcVIQu:Cq3gyZuOutGeegFd@127.0.0.1/nwa_YjeFtoceIsfN';
/home/.sites/132/site21/web/roundcube/config/config.inc.php 
$config['db_dsnw'] = 
'mysql://nwa_ULSKqxvfRb2j:zRTEnOLoRsbOq4yy@127.0.0.1/nwa_XMGovCPOISij';
/home/.sites/132/site12/web/roundcube/config/config.inc.php 
$config['db_dsnw'] = 
'mysql://nwa_ULSKqxvfRb2j:zRTEnOLoRsbOq4yy@127.0.0.1/nwa_XMGovCPOISij';
/home/.sites/106/site15/web/roundcube/config/config.inc.php 
$config['db_dsnw'] = 
'mysql://nwa_ULSKqxvfRb2j:zRTEnOLoRsbOq4yy@127.0.0.1/nwa_XMGovCPOISij';
/home/.sites/106/site3/web/roundcube/config/config.inc.php  
$config['db_dsnw'] = 
'mysql://nwa_2ECOMKARcX4p:NWBbiLxXsNEHbcdO@127.0.0.1/nwa_xUF15UKWqakQ';
/home/.sites/39/site17/web/roundcube/config/config.inc.php  
$config['db_dsnw'] = 
'mysql://nwa_ULSKqxvfRb2j:zRTEnOLoRsbOq4yy@127.0.0.1/nwa_XMGovCPOISij';
/home/.sites/39/site9/web/roundcube/config/config.inc.php   
$config['db_dsnw'] = 
'mysql://nwa_ULSKqxvfRb2j:zRTEnOLoRsbOq4yy@127.0.0.1/nwa_XMGovCPOISij';
/home/.sites/95/site29/web/roundcube/config/config.inc.php  
$config['db_dsnw'] = 
'mysql://nwa_fxYroFBHBjVa:meEVbYaRTgypGmEq@127.0.0.1/nwa_WXECNYqBlGyK';
/home/.sites/64/site14/web/roundcube/config/config.inc.php  
$config['db_dsnw'] = 
'mysql://nwa_ULSKqxvfRb2j:zRTEnOLoRsbOq4yy@127.0.0.1/nwa_XMGovCPOISij';
/home/.sites/85/site23/web/roundcube/config/config.inc.php  
$config['db_dsnw'] = 
'mysql://nwa_ULSKqxvfRb2j:zRTEnOLoRsbOq4yy@127.0.0.1/nwa_XMGovCPOISij';
/home/.sites/22/site13/web/roundcube/config/config.inc.php  
$config['db_dsnw'] = 
'mysql://nwa_ULSKqxvfRb2j:zRTEnOLoRsbOq4yy@127.0.0.1/nwa_XMGovCPOISij';
/home/.sites/123/site19/web/roundcube/config/config.inc.php 
$config['db_dsnw'] = 
'mysql://nwa_ULSKqxvfRb2j:zRTEnOLoRsbOq4yy@127.0.0.1/nwa_XMGovCPOISij';
/home/.sites/38/site25/web/roundcube/config/config.inc.php  
$config['db_dsnw'] = 
'mysql://nwa_ULSKqxvfRb2j:zRTEnOLoRsbOq4yy@127.0.0.1/nwa_XMGovCPOISij';
/home/.sites/33/site5/web/roundcube/config/config.inc.php   
$config['db_dsnw'] = 
'mysql://nwa_ULSKqxvfRb2j:zRTEnOLoRsbOq4yy@127.0.0.1/nwa_XMGovCPOISij';
/home/.sites/33/site22/web/roundcube/config/config.inc.php  
$config['db_dsnw'] = 
'mysql://nwa_ULSKqxvfRb2j:zRTEnOLoRsbOq4yy@127.0.0.1/nwa_XMGovCPOISij';
/home/.sites/80/site20/web/roundcube/config/config.inc.php  
$config['db_dsnw'] = 
'mysql://nwa_ULSKqxvfRb2j:zRTEnOLoRsbOq4yy@127.0.0.1/nwa_XMGovCPOISij';
/home/.sites/70/site4/web/roundcube/config/config.inc.php   
$config['db_dsnw'] = 
'mysql://nwa_ULSKqxvfRb2j:zRTEnOLoRsbOq4yy@127.0.0.1/nwa_XMGovCPOISij';
/home/.sites/90/site11/web/roundcube/config/config.inc.php  
$config['db_dsnw'] = 
'mysql://nwa_ULSKqxvfRb2j:zRTEnOLoRsbOq4yy@127.0.0.1/nwa_XMGovCPOISij';
/home/.sites/90/site26/web/roundcube/config/config.inc.php  
$config['db_dsnw'] = 

[BlueOnyx:22439] Re: LetsEncrypt Automatic Renewals

[Meaulnes Legler @ MailList]

On 11.10.18 18:16, Colin Jack wrote:

Manual renewal works fine. So just the auto renew seems to have stopped working.


sorry Colin, I didn't see you managed to auto renew manually...

Best regards

Meaulnes



Anybody any ideas why?
Thanks
Colin
___
Blueonyx mailing list
Blueonyx@mail.blueonyx.it
http://mail.blueonyx.it/mailman/listinfo/blueonyx


___
Blueonyx mailing list
Blueonyx@mail.blueonyx.it
http://mail.blueonyx.it/mailman/listinfo/blueonyx

[BlueOnyx:22438] Re: LetsEncrypt Automatic Renewals

[Meaulnes Legler @ MailList]

yes I have the same problem here on two servers, the certificates expired on 
October 3rd:

*Invalid Certificate*
*vs.domain.tld*
Issued by: Let's Encrypt Authority X3
Expired: Wednesday, 3 October 2018 at 02:09:35 Central European Summer Time

In the GUI, I went to Server Management > Security > SSL 
(https://vs.domain.tld:81/ssl/siteSSL) > [ ˆ 'Let's Encrypt!' ], then checkbox [ Request 
or Renew Certificate ] > Save

That seemed to do the trick, now it displays *Certificate Expiration Date:* 
January 11 2019

Why it didn't auto renew, dunno, the *Automatic Renewal* checkbox was enabled...

The other problem that emerges again is that the mail server doesn't accept the 
certificate because it's tied to vs.domain.tld and not to mail.domain.tld (if 
that's your mail server). Michael explained the infeasibility to solve this... 
But Let's Encrypt! started to issue wildcard certificates this year, maybe 
there is a solution there. Until then, one has to accept the security exception 
from the mail client.

Thank you and best regards

_~_
'¿')
`-´  Meaulnes Legler
 Zurich, Switzerland
+41\0 44 260 16 60


On 11.10.18 18:16, Colin Jack wrote:

Not sure what is happening but al LE auto renewals have stopped working on 
multiple servers.
Had a shed load of these through in the last few days:
  
Let's Encrypt certificate expiration notice for domain "domain.com" (and 1 more)

Your certificate (or certificates) for the names listed below will expire in 19 
days (on 31 Oct 18 16:10 +). Please make sure to renew your certificate 
before then, or visitors to your website will encounter errors.
  
All are set to auto renew and have done in the past.

Manual renewal works fine. So just the auto renew seems to have stopped working.
  
Anybody any ideas why?
  
Thanks
  
Colin

___
Blueonyx mailing list
Blueonyx@mail.blueonyx.it
http://mail.blueonyx.it/mailman/listinfo/blueonyx


___
Blueonyx mailing list
Blueonyx@mail.blueonyx.it
http://mail.blueonyx.it/mailman/listinfo/blueonyx

[BlueOnyx:22437] Re: new RoundCube version

[Meaulnes Legler @ MailList]

hi Dirk, thanks for the instructions!

unfortunately, the database named in config.inc.php doesn't exist in the 
personal profile phpMyAdmin, not even in the server's phpMyAdmin...

$config['db_dsnw'] = 
'mysql://nwa_2ECOMKARcX4p:NWBbiLxXsNEHbcdO@127.0.0.1/nwa_xUF15UKWqakQ';

this means user:password@host/database, but how do I access that database? I 
guess I would have to enter SQL commands but I have find out how. I deleted the 
RC installation and reinstalled it, I get then a new user, pw and database — 
still doesn't show up in phpMyAdmin.

Other working RoundCubes with version 1.2.4. have also database names in their 
config.inc.php, but none of them appear in phpMyAdmin.

Then I found out that I noted how to access MySQL from the command line: mysql 
-u root -p

With MariaDB [(none)]> show databases I get a much longer list of databases and 
— look there — the nwa_xUF15UKWqakQ database is listed!

MariaDB [(none)]> show tables from nwa_xUF15UKWqakQ
-> ;
++
| Tables_in_nwa_xUF15UKWqakQ |
++
| cache  |
| cache_index|
| cache_messages |
| cache_thread   |
| contactgroupmembers|
| contactgroups  |
| contacts   |
| dictionary |
| identities |
| searches   |
| session|
| users  |
++
12 rows in set (0.00 sec)
MariaDB [(none)]> show table status from nwa_xUF15UKWqakQ;
+-++-++--++-+-+--+---++-+-++---+--++-+
| Name| Engine | Version | Row_format | Rows | Avg_row_length | 
Data_length | Max_data_length | Index_length | Data_free | Auto_increment | 
Create_time | Update_time | Check_time | Collation | 
Checksum | Create_options | Comment |
+-++-++--++-+-+--+---++-+-++---+--++-+
| cache   | InnoDB |  10 | Dynamic|0 |  0 | 
  16384 |   0 |32768 | 0 |  1 | 
2018-10-12 22:21:46 | NULL| NULL   | utf8_general_ci   |
 NULL || |
| cache_index | InnoDB |  10 | Dynamic|0 |  0 | 
  16384 |   0 |16384 | 0 |   NULL | 
2018-10-12 22:21:46 | NULL| NULL   | utf8_general_ci   |
 NULL || |
| cache_messages  | InnoDB |  10 | Dynamic|0 |  0 | 
  16384 |   0 |16384 | 0 |   NULL | 
2018-10-12 22:21:46 | NULL| NULL   | utf8_general_ci   |
 NULL || |
| cache_thread| InnoDB |  10 | Dynamic|0 |  0 | 
  16384 |   0 |16384 | 0 |   NULL | 
2018-10-12 22:21:46 | NULL| NULL   | utf8_general_ci   |
 NULL || |
| contactgroupmembers | InnoDB |  10 | Dynamic|0 |  0 | 
  16384 |   0 |16384 | 0 |   NULL | 
2018-10-12 22:21:46 | NULL| NULL   | latin1_swedish_ci |
 NULL || |
| contactgroups   | InnoDB |  10 | Dynamic|0 |  0 | 
  16384 |   0 |16384 | 0 |  1 | 
2018-10-12 22:21:46 | NULL| NULL   | utf8_general_ci   |
 NULL || |
| contacts| InnoDB |  10 | Dynamic|0 |  0 | 
  16384 |   0 |16384 | 0 |  1 | 
2018-10-12 22:21:46 | NULL| NULL   | utf8_general_ci   |
 NULL || |
| dictionary  | InnoDB |  10 | Dynamic|0 |  0 | 
  16384 |   0 |16384 | 0 |   NULL | 
2018-10-12 22:21:46 | NULL| NULL   | utf8_general_ci   |
 NULL || |
| identities  | InnoDB |  10 | Dynamic|0 |  0 | 
  16384 |   0 |16384 | 0 |  1 | 
2018-10-12 22:21:46 | NULL| NULL   | utf8_general_ci   |
 NULL || |
| searches| InnoDB |  10 | Dynamic|0 |  0 | 
  16384 |   0 |16384 | 0 |  1