Re: HELP with email attachments ONLY clean up

[Benny Pedersen via dovecot]

Narcis Garcia via dovecot skrev den 2024-04-25 07:32:

Better place for CPanel support and/or feature requests:

https://support.cpanel.net/

This is a Dovecot mailing list.


so it is ?

free:

https://addons.thunderbird.net/en-US/thunderbird/addon/attachment-extractor/
https://www.softaken.com/guide/extract-attachments-from-multiple-emails-thunderbird/

Commercial:

https://www.aid4mail.com/

if cpanal was on gentoo i would recommend cpanel, sorry just kidding :)





___
dovecot mailing list -- dovecot@dovecot.org
To unsubscribe send an email to dovecot-le...@dovecot.org

Re: Debian, Postfix, Dovecot, MySQL, and argon2 password hashing scheme?

[Benny Pedersen via dovecot]

David Mehler via dovecot skrev den 2024-04-25 06:49:

Hello,

I have a quick question. Can Debian, and/or it's 
Postfix/Dovecot/MySQL/MariaDB packages support the argon2 password 
hashing scheme? I had a previously-working e-mail setup on a *BSD 
system, utilizing the argon2ID scheme with Dovecot, Postfix, and MySQL. 
Since changing systems to Debian 12.5 I can't send, though checking the 
password with a manual login to Dovecot works fine. I'm wondering if I 
have to migrate the passwords from argon2ID to SHA512-CRYPT?


tux ~ # euse -I argon2
global use flags (searching: argon2)

no matching entries found

local use flags (searching: argon2)

[- c] argon2 (dev-lang/php):
Enable password hashing algorithm from app-crypt/argon2

[- c] argon2 (net-mail/dovecot):
Add support for ARGON2 password schemes

[- c] argon2 (sys-fs/cryptsetup):
Enable password hashing algorithm from app-crypt/argon2

is what i see in gentoo

___
dovecot mailing list -- dovecot@dovecot.org
To unsubscribe send an email to dovecot-le...@dovecot.org

Re: HELP with email attachments ONLY clean up

[Narcis Garcia via dovecot]

Better place for CPanel support and/or feature requests:

https://support.cpanel.net/

This is a Dovecot mailing list.


El 25/4/24 a les 0:44, INFO @ TRIMLINE via dovecot ha escrit:

Hello Dovecot Dev team,

  


In my cpanel, we use your email management. This is what my hosting provider
has allowed.

  


Our problem:

Since the introduction of "hi def cameras on mobile phones", we are getting
emails with "huge attachments". The email which comes with the attachments
is also important. However, once we download the email (imap), using any of
the email clients (outlook, bluemail etc.) the mailbox still has these huge
attachments. Because of this, our mailbox storage gets filled up quickly. In
our email client software, we can delete (attachments only), and leave the
email in our mailbox. So this work around helps us keep our mailbox size
manageable. Unfortunately, not everyone does this "email attachment cleanup"
regularly and end up being locked out of email storage space and probably
lost a few hours of productive time.

  


Our dev Request:

Would it be possible to create a setting for end users in our Cpanel, in
which we can delete the attachments without deleting the actual message?

So query should have:

 (drop down selection, like you have it now)

*   Filter 01: Select Messages older than nnn days (where nnn would be
100 to 999 days) (so for the first 99 days, every imap client would have the
opportunity to download the email and the attachments)
*   From Filter 01 = Filter 02: Select messages which are >xxx Mb (where
xxx could be 001 to 999 Mb)
*   From Filter 02 = Filter 03: Select only messages which contain
attachments (Yes)
*   From Filter 03: Permanently Delete the attachments ONLY, So not
deleting the actual email msg (OK).

So on day 100 (or after the clean up is done), the imap email client will
now only get the email but not the attachments (in the event they need to
refresh their email setup).

  


If such a query can be created and installed on our Cpanel, we can run this
"clean up attachments" query regularly and as such reduce our mailbox size.

  


Q: Would it be possible to create such a clean up tool (pre-defined) so that
the cpanel web service admin user only has to enter (nnn and xxx and Yes) to
finally click on "OK" to delete the attachments?

  


If this would be possible, what will it cost us to have it installed on our
Cpanel?

  


There is so much information/documentation already on your website
(doc.dovecot.org) and I spent about 60 min looking for such a "clean up
tool" documentation, but started getting dizzy reading all that script
language etc. Not my cup of tea.

  


Please help.

  


Thank you for considering and reading this request.

  


Kind regards

  


M. Akil Walji

  


___
dovecot mailing list -- dovecot@dovecot.org
To unsubscribe send an email to dovecot-le...@dovecot.org


--

Narcis Garcia

__
I'm using this dedicated address because personal addresses aren't 
masked enough at this mail public archive. Public archive administrator 
should remove and omit any @, dot and mailto combinations against 
automated addresses collectors.

___
dovecot mailing list -- dovecot@dovecot.org
To unsubscribe send an email to dovecot-le...@dovecot.org

Debian, Postfix, Dovecot, MySQL, and argon2 password hashing scheme?

[David Mehler via dovecot]

Hello,

I have a quick question. Can Debian, and/or it's 
Postfix/Dovecot/MySQL/MariaDB packages support the argon2 password 
hashing scheme? I had a previously-working e-mail setup on a *BSD 
system, utilizing the argon2ID scheme with Dovecot, Postfix, and MySQL. 
Since changing systems to Debian 12.5 I can't send, though checking the 
password with a manual login to Dovecot works fine. I'm wondering if I 
have to migrate the passwords from argon2ID to SHA512-CRYPT?


Thanks.
Dave.

--
Sent from Mozilla Thunderbird 91.13.1
___
dovecot mailing list -- dovecot@dovecot.org
To unsubscribe send an email to dovecot-le...@dovecot.org

Re: Sieve: Avoiding duplicates in a folder while keeping in Inbox

[Nick Urbanik via dovecot]

On Tue, 2024-04-23 at 09:42 +1000, Nick Urbanik via dovecot wrote:
> Dear Folks,
> 
> I am in the process of learning Sieve, and want to be able to keep an
> email in Inbox, while also keeping *one* copy in another folder. 
> However, the same mail is copied from Inbox multiple times when I run
> sieve-filter -Wev .dovecot.sieve Inbox
> 
> My attempt to prevent this fails:
> ...
> } elsif header :comparator "i;octet" :contains "From"
> "pay...@paypal.com.au" {
>     if not duplicate {
>     fileinto "paypal";
>     }
>     keep;
> }
> 
> Please can anyone enlighten me?

If there is a Dovecot Sieve mailing list, please point me to it.
> ___
> dovecot mailing list -- dovecot@dovecot.org
> To unsubscribe send an email to dovecot-le...@dovecot.org

___
dovecot mailing list -- dovecot@dovecot.org
To unsubscribe send an email to dovecot-le...@dovecot.org

Re: Which DKIM application for postfix 3.9.0

[Benny Pedersen via dovecot]

Rupert Gallagher via dovecot skrev den 2024-04-23 15:46:
The developers of DKIM moved on to ARC, then they stopped working on 
ARC also.


No, score=-3.158 tagged_above=-999 required=5 
tests=[AUTHRES_DKIM_PASS=-0.5, AUTHRES_DMARC_PASS=-0.5, 
AUTHRES_SPF_PASS=-0.5, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, 
DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, KAM_ASCII_DIVIDERS=0.64, 
KAM_NUMSUBJECT=0.4, MAILING_LIST_MULTI=-0.1, RCVD_IN_DNSWL_MED=-2.3, 
RCVD_IN_MSPIKE_H4=0.001, RCVD_IN_MSPIKE_WL=0.001, SPF_HELO_PASS=-0.1, 
SPF_PASS=-0.1, URIBL_SBL_A=0.1] autolearn=unavailable autolearn_force=no


+1, thanks for dovecot maillist do it right, postfix maillist fails on 
spf



https://github.com/fastmail/authentication_milter


no gentoo ebuild yet sadly

___
dovecot mailing list -- dovecot@dovecot.org
To unsubscribe send an email to dovecot-le...@dovecot.org

HELP with email attachments ONLY clean up

[INFO @ TRIMLINE via dovecot]

Hello Dovecot Dev team,

 

In my cpanel, we use your email management. This is what my hosting provider
has allowed. 

 

Our problem: 

Since the introduction of "hi def cameras on mobile phones", we are getting
emails with "huge attachments". The email which comes with the attachments
is also important. However, once we download the email (imap), using any of
the email clients (outlook, bluemail etc.) the mailbox still has these huge
attachments. Because of this, our mailbox storage gets filled up quickly. In
our email client software, we can delete (attachments only), and leave the
email in our mailbox. So this work around helps us keep our mailbox size
manageable. Unfortunately, not everyone does this "email attachment cleanup"
regularly and end up being locked out of email storage space and probably
lost a few hours of productive time.

 

Our dev Request:

Would it be possible to create a setting for end users in our Cpanel, in
which we can delete the attachments without deleting the actual message? 

So query should have: 

 (drop down selection, like you have it now)

*   Filter 01: Select Messages older than nnn days (where nnn would be
100 to 999 days) (so for the first 99 days, every imap client would have the
opportunity to download the email and the attachments)
*   From Filter 01 = Filter 02: Select messages which are >xxx Mb (where
xxx could be 001 to 999 Mb)
*   From Filter 02 = Filter 03: Select only messages which contain
attachments (Yes)
*   From Filter 03: Permanently Delete the attachments ONLY, So not
deleting the actual email msg (OK).

So on day 100 (or after the clean up is done), the imap email client will
now only get the email but not the attachments (in the event they need to
refresh their email setup).

 

If such a query can be created and installed on our Cpanel, we can run this
"clean up attachments" query regularly and as such reduce our mailbox size.

 

Q: Would it be possible to create such a clean up tool (pre-defined) so that
the cpanel web service admin user only has to enter (nnn and xxx and Yes) to
finally click on "OK" to delete the attachments?

 

If this would be possible, what will it cost us to have it installed on our
Cpanel?

 

There is so much information/documentation already on your website
(doc.dovecot.org) and I spent about 60 min looking for such a "clean up
tool" documentation, but started getting dizzy reading all that script
language etc. Not my cup of tea.

 

Please help.

 

Thank you for considering and reading this request.

 

Kind regards

 

M. Akil Walji

 

___
dovecot mailing list -- dovecot@dovecot.org
To unsubscribe send an email to dovecot-le...@dovecot.org

Re: Uppercase username emails are rejected

[Simon B via dovecot]

On Wed, 17 Apr 2024 at 05:42, Peter via dovecot  wrote:
>
> On 17/04/24 00:51, John Stoffel via dovecot wrote:
> >> "Peter" == Peter via dovecot  writes:
> >
> >> On 14/04/24 12:09, John Stoffel via dovecot wrote:
> >>> I think you need to update both places, so that your username and
> >>> password checks are done with lowercase usernames.
> >
> >> Generally speaking you want auth to be case-sensitive, but go ahead and
> >> try it to see if it fixes the issue.
> >
> > Umm... not for emails you don't.  Since the j...@stoffel.org and
> > j...@stoffel.org and j...@stoffel.org are all the same email
> > address... should they be different logins?  Not for email...
>
> There is a difference between expecting $random_stranger to get the case
> correct on an email address and expecting a user to get his own email
> address correct for the purpose of logging in, also keeping in mind that
> the user will generally get it entered *once* in their MUA and the MUA
> will store it for future logins expecting the case to be correct is not
> a huge ask in this scenario.
>
> Also keep in mind that the username is not always going to be the same
> as the email address, in fact Dovecot is perfectly capable of having
> usernames that are entirely different to the email address that is
> associated with them.
>
> > In general, usernames should NOT be case sensitive, that way leads
> > madness.  Passwords on the other hand...
>
> Both usernames and passwords are part of the authentication credentials.
>   When you allow any authentication credential to be case-insensitive
> then you decrease the difficulty of any brute-force attack by quite a
> bit.  There is no good reason to make usernames case-insensitive and
> very good reasons not to.

I cannot semantically argue with your wording, they are indeed both
"part of the authentication credentials.",but usernames are
IDENTIFICATION, not AUTHENTICATION.

And in the same way you do not have a case sensitive name,  you should
not have a case sensitive username.   (Society's convention is that
your name is capitalised in Proper Noun format, from a information
technology perspective, all lowercase is the same convention).

Regards

Simon
___
dovecot mailing list -- dovecot@dovecot.org
To unsubscribe send an email to dovecot-le...@dovecot.org

Re: Which DKIM application for postfix 3.9.0

[Jack Raats via dovecot]

I'm using dkimproxy together with postfix/dovecot

Gr.,
Jack

Op 24-04-2024 om 11:03 schreef Jean-Daniel Dupas via dovecot:

Talking about completeness, you can also use rspamd (https://www.rspamd.com 
).
While it it design to to more than DKIM, it can be use for it.

I have an internal mailer relay based on postfix and rspamd that works great.



Le 24 avr. 2024 à 09:40, infoomatic via dovecot  a écrit :

Just for completeness sake I will throw some in:

*) https://launchpad.net/dkimpy-milter
*) https://lib.rs/crates/dkim-milter
*) https://github.com/fastmail/authentication_milter

I have not yet had time to look at them, so no comment on their usability.

regards,
Robert


On 24.04.24 00:06, Joseph Tam via dovecot wrote:

On Tue, Apr 23, 2024 at 7:33 AM  wrote:


I am upgrading to postfix 3.9.0. I have not used DKIM in previous postfix 
installs, but I
would like to start now with the new google rules. I have done some research 
and opendkim
  is the most recommended, however, other research states the opendkim has been
abandoned by it's maintainers. So I am looking for a good alternative dkim 
software
that will work with postfix that I can compile myself. I do not run on any linux
version, so therefore I can not just apt-get a new dkim application.
I run Solaris and therefore need to compile my applications, postfix and dkim.
Any good suggestions will be appreciated.

I just rolled out a locally compiled opendkim on my mail server. It
works, but there
are a few gotchas.

Although it seems like a moribund project, there is a late beta
version that includes
some important patches, most notably the "Header:\n LongHeaderValue" bug that
needs fixing.  You can look at

 https://sourceforge.net/p/opendkim/patches/

to find that patch, as well as others you deem important.  As DKIM standards
are not going to change soon, having end-of-line software is not as
bad as it seems
unless you need particular enhancements to make it work better in your
circumstances.
Once you get your setup dialed, you can probably set it and forget it.

Most of the headaches have actually been internal: local mail
injection via sendmail
would skip miltering, From header canonicalization by the MTA would not be
seen by the opendkim milter thereby creating messages with missing or invalid
signatures, and mailing list/auto reply/forwarder software mangling messages.

I think Postfix does a better job in this regard, so these issues may
not present itself.
(I did a Postfix/opendkim milter on an Ubuntu system and it was much
less hassle.)

You should look at *lots* of DMARC RUA reports.  People are doing crazy batsh*t
stuff with your mail domain.

Joseph Tam 
___
dovecot mailing list -- dovecot@dovecot.org
To unsubscribe send an email to dovecot-le...@dovecot.org

___
dovecot mailing list -- dovecot@dovecot.org
To unsubscribe send an email to dovecot-le...@dovecot.org

___
dovecot mailing list -- dovecot@dovecot.org
To unsubscribe send an email to dovecot-le...@dovecot.org

___
dovecot mailing list -- dovecot@dovecot.org
To unsubscribe send an email to dovecot-le...@dovecot.org

Re: Which DKIM application for postfix 3.9.0

[Jean-Daniel Dupas via dovecot]

Talking about completeness, you can also use rspamd (https://www.rspamd.com 
).
While it it design to to more than DKIM, it can be use for it.

I have an internal mailer relay based on postfix and rspamd that works great.


> Le 24 avr. 2024 à 09:40, infoomatic via dovecot  a écrit 
> :
> 
> Just for completeness sake I will throw some in:
> 
> *) https://launchpad.net/dkimpy-milter
> *) https://lib.rs/crates/dkim-milter
> *) https://github.com/fastmail/authentication_milter
> 
> I have not yet had time to look at them, so no comment on their usability.
> 
> regards,
> Robert
> 
> 
> On 24.04.24 00:06, Joseph Tam via dovecot wrote:
>> On Tue, Apr 23, 2024 at 7:33 AM  wrote:
>> 
 I am upgrading to postfix 3.9.0. I have not used DKIM in previous postfix 
 installs, but I
 would like to start now with the new google rules. I have done some 
 research and opendkim
  is the most recommended, however, other research states the opendkim has 
 been
 abandoned by it's maintainers. So I am looking for a good alternative dkim 
 software
 that will work with postfix that I can compile myself. I do not run on any 
 linux
 version, so therefore I can not just apt-get a new dkim application.
 I run Solaris and therefore need to compile my applications, postfix and 
 dkim.
 Any good suggestions will be appreciated.
>> 
>> I just rolled out a locally compiled opendkim on my mail server. It
>> works, but there
>> are a few gotchas.
>> 
>> Although it seems like a moribund project, there is a late beta
>> version that includes
>> some important patches, most notably the "Header:\n LongHeaderValue" bug that
>> needs fixing.  You can look at
>> 
>> https://sourceforge.net/p/opendkim/patches/
>> 
>> to find that patch, as well as others you deem important.  As DKIM standards
>> are not going to change soon, having end-of-line software is not as
>> bad as it seems
>> unless you need particular enhancements to make it work better in your
>> circumstances.
>> Once you get your setup dialed, you can probably set it and forget it.
>> 
>> Most of the headaches have actually been internal: local mail
>> injection via sendmail
>> would skip miltering, From header canonicalization by the MTA would not be
>> seen by the opendkim milter thereby creating messages with missing or invalid
>> signatures, and mailing list/auto reply/forwarder software mangling messages.
>> 
>> I think Postfix does a better job in this regard, so these issues may
>> not present itself.
>> (I did a Postfix/opendkim milter on an Ubuntu system and it was much
>> less hassle.)
>> 
>> You should look at *lots* of DMARC RUA reports.  People are doing crazy 
>> batsh*t
>> stuff with your mail domain.
>> 
>> Joseph Tam 
>> ___
>> dovecot mailing list -- dovecot@dovecot.org
>> To unsubscribe send an email to dovecot-le...@dovecot.org
> ___
> dovecot mailing list -- dovecot@dovecot.org
> To unsubscribe send an email to dovecot-le...@dovecot.org

___
dovecot mailing list -- dovecot@dovecot.org
To unsubscribe send an email to dovecot-le...@dovecot.org

Re: Which DKIM application for postfix 3.9.0

[infoomatic via dovecot]

Just for completeness sake I will throw some in:

*) https://launchpad.net/dkimpy-milter
*) https://lib.rs/crates/dkim-milter
*) https://github.com/fastmail/authentication_milter

I have not yet had time to look at them, so no comment on their usability.

regards,
Robert


On 24.04.24 00:06, Joseph Tam via dovecot wrote:

On Tue, Apr 23, 2024 at 7:33 AM  wrote:


I am upgrading to postfix 3.9.0. I have not used DKIM in previous postfix 
installs, but I
would like to start now with the new google rules. I have done some research 
and opendkim
  is the most recommended, however, other research states the opendkim has been
abandoned by it's maintainers. So I am looking for a good alternative dkim 
software
that will work with postfix that I can compile myself. I do not run on any linux
version, so therefore I can not just apt-get a new dkim application.
I run Solaris and therefore need to compile my applications, postfix and dkim.
Any good suggestions will be appreciated.


I just rolled out a locally compiled opendkim on my mail server. It
works, but there
are a few gotchas.

Although it seems like a moribund project, there is a late beta
version that includes
some important patches, most notably the "Header:\n LongHeaderValue" bug that
needs fixing.  You can look at

 https://sourceforge.net/p/opendkim/patches/

to find that patch, as well as others you deem important.  As DKIM standards
are not going to change soon, having end-of-line software is not as
bad as it seems
unless you need particular enhancements to make it work better in your
circumstances.
Once you get your setup dialed, you can probably set it and forget it.

Most of the headaches have actually been internal: local mail
injection via sendmail
would skip miltering, From header canonicalization by the MTA would not be
seen by the opendkim milter thereby creating messages with missing or invalid
signatures, and mailing list/auto reply/forwarder software mangling messages.

I think Postfix does a better job in this regard, so these issues may
not present itself.
(I did a Postfix/opendkim milter on an Ubuntu system and it was much
less hassle.)

You should look at *lots* of DMARC RUA reports.  People are doing crazy batsh*t
stuff with your mail domain.

Joseph Tam 
___
dovecot mailing list -- dovecot@dovecot.org
To unsubscribe send an email to dovecot-le...@dovecot.org

___
dovecot mailing list -- dovecot@dovecot.org
To unsubscribe send an email to dovecot-le...@dovecot.org