[Mdaemon-L] archives folder
On 21/05/2024 10:32, Tommy Scorpio wrote: Dear Pak Syafril, Mohon pencerahannya, apakah folder archives di mdaemon boleh kita remove ?, karena folder archives kapasitasnya sudah semakin besar . Terimakasih. Tommy Isi folder itu boleh saja didelete, tapi artinya kita sudah tidak punya backup email lagi (Email yg ada di folder user aman). Backup / archiving bawaan dari MD kurang efisien, size sangat besar. utk Backup saya pindah memakai MailStore link ke MD, hemat storage sampai 70% krn konsep backup yg berbeda Rgds, -- --[mdaemon-l]-- Milis ini untuk Diskusi antar pengguna MDaemon Mail Server di Indonesia Netiket: https://wiki.openstack.org/wiki/MailingListEtiquette Arsip: http://mdaemon-l.dutaint.com Dokumentasi : http://mdaemon.dutaint.com Berlangganan: Kirim mail ke mdaemon-l-subscr...@dutaint.com Henti Langgan: Kirim mail ke mdaemon-l-unsubscr...@dutaint.com Versi terakhir: MDaemon 23.5.3, SecurityGateway 10.0.0
[Mdaemon-L] Format SPF
On 15/05/2024 15:48, Syafril Hermansyah via Mdaemon-L wrote: On 5/15/24 15:44, Ivan Leonardo wrote: Saya ingin merubah SPF saya dengan menambahkan ip4 sebagai ip gateway cadangan. Misal : jika ip 117.102.88.187 offline maka email akan sending pakai ip 36.94.154.229 Apakah SPF dibawah ini sudah benar formatnya ? v=spf1 a:webmail.pttdp.com ip4:117.102.88.187 ip4:36.94.154.229 -all Sudah benar. Thanks Pak -- --[mdaemon-l]-- Milis ini untuk Diskusi antar pengguna MDaemon Mail Server di Indonesia Netiket: https://wiki.openstack.org/wiki/MailingListEtiquette Arsip: http://mdaemon-l.dutaint.com Dokumentasi : http://mdaemon.dutaint.com Berlangganan: Kirim mail ke mdaemon-l-subscr...@dutaint.com Henti Langgan: Kirim mail ke mdaemon-l-unsubscr...@dutaint.com Versi terakhir: MDaemon 23.5.3, SecurityGateway 10.0.0
[Mdaemon-L] Format SPF
Pak, Saya ingin merubah SPF saya dengan menambahkan ip4 sebagai ip gateway cadangan. Misal : jika ip 117.102.88.187 offline maka email akan sending pakai ip 36.94.154.229 Apakah SPF dibawah ini sudah benar formatnya ? v=spf1 a:webmail.pttdp.com ip4:117.102.88.187 ip4:36.94.154.229 -all Rgds, -- --[mdaemon-l]-- Milis ini untuk Diskusi antar pengguna MDaemon Mail Server di Indonesia Netiket: https://wiki.openstack.org/wiki/MailingListEtiquette Arsip: http://mdaemon-l.dutaint.com Dokumentasi : http://mdaemon.dutaint.com Berlangganan: Kirim mail ke mdaemon-l-subscr...@dutaint.com Henti Langgan: Kirim mail ke mdaemon-l-unsubscr...@dutaint.com Versi terakhir: MDaemon 23.5.3, SecurityGateway 10.0.0
[Mdaemon-L] Email selalu masuk ke Folder SPAM di Webmail
On 15/05/2024 08:46, Lim Ming An wrote: Dear Pak Syafril, Salah satu user kami email nya sering masuk ke Folder SPAM di Webmail, menurut info mereka sudah ditandai sebagai bukan SPAM, Tetapi masih masuk ke folder SPAM, Apakah ada cara supaya email - email tersebut tidak masuk ke Folder SPAM. Mohon bantuannya, Atas bantuannya diucapkan banyak Terima kasih. Regards, Ming An Kalau di cek ke antispam.log email tersebut dapat SPAM score berapa ? mungkin perlu disetting spam score limit nya CMIIW -- --[mdaemon-l]-- Milis ini untuk Diskusi antar pengguna MDaemon Mail Server di Indonesia Netiket: https://wiki.openstack.org/wiki/MailingListEtiquette Arsip: http://mdaemon-l.dutaint.com Dokumentasi : http://mdaemon.dutaint.com Berlangganan: Kirim mail ke mdaemon-l-subscr...@dutaint.com Henti Langgan: Kirim mail ke mdaemon-l-unsubscr...@dutaint.com Versi terakhir: MDaemon 23.5.3, SecurityGateway 10.0.0
[Mdaemon-L] Tidak terima email (account alias)
On 25/04/2024 14:59, Syafril Hermansyah via Mdaemon-L wrote: Di server yang membuat address aliases. Cek dimananya ya Pak ? Email lain yg ada alias juga tidak masalah Pak, hanya 1 email ini saja Saya cocokan dengan setting alias lain sudah sama semua Rgds, -- --[mdaemon-l]-- Milis ini untuk Diskusi antar pengguna MDaemon Mail Server di Indonesia Netiket: https://wiki.openstack.org/wiki/MailingListEtiquette Arsip: http://mdaemon-l.dutaint.com Dokumentasi : http://mdaemon.dutaint.com Berlangganan: Kirim mail ke mdaemon-l-subscr...@dutaint.com Henti Langgan: Kirim mail ke mdaemon-l-unsubscr...@dutaint.com Versi terakhir: MDaemon 23.5.3, SecurityGateway 9.5.3
[Mdaemon-L] Tidak terima email (account alias)
Pak, Saya ada case agak aneh. Misal : Akun a...@abc.com sebagai akun penerima dari alias x...@abc.com, x...@abc.com Jika dari Gmail saya kirim email ke a...@abc.com, emailnya tidak pernah bisa masuk, saya sudah cari di log tidak ada, dan saya juga tidak terima tolakan dari Gmail. Tapi : kalau saya send email dari Gmail ke X1 dan X2 @abc.com , email dari diterima normal di akun a...@abc.com krn aliasnya. Ini ada error dimana ya ? Rgds, -- --[mdaemon-l]-- Milis ini untuk Diskusi antar pengguna MDaemon Mail Server di Indonesia Netiket: https://wiki.openstack.org/wiki/MailingListEtiquette Arsip: http://mdaemon-l.dutaint.com Dokumentasi : http://mdaemon.dutaint.com Berlangganan: Kirim mail ke mdaemon-l-subscr...@dutaint.com Henti Langgan: Kirim mail ke mdaemon-l-unsubscr...@dutaint.com Versi terakhir: MDaemon 23.5.3, SecurityGateway 9.5.3
[Mdaemon-L] Kolom Last Access (Account Manager)
Pak, Kalau sy open webadmin di menu account manager, ada field last access. Apakah arti dari last access ini ? apakah alat ukurnya saat user terjadi session dengan MD (IMAP/SMTP) atau ada hal lainnya ? Asumsi saya : itu adalah tgl terakhir users punya session dengan MD, misal jika tertulis 30/11/2023 berarti terakhir user open email / terjadi session dengan MD di thn 2023 itu Rgds, -- --[mdaemon-l]-- Milis ini untuk Diskusi antar pengguna MDaemon Mail Server di Indonesia Netiket: https://wiki.openstack.org/wiki/MailingListEtiquette Arsip: http://mdaemon-l.dutaint.com Dokumentasi : http://mdaemon.dutaint.com Berlangganan: Kirim mail ke mdaemon-l-subscr...@dutaint.com Henti Langgan: Kirim mail ke mdaemon-l-unsubscr...@dutaint.com Versi terakhir: MDaemon 23.5.3, SecurityGateway 9.5.3
[Mdaemon-L] Email Pruning berdasarkan bulan tertentu
On 15/12/2023 08:42, Syafril Hermansyah via Mdaemon-L wrote: Tidak begitu, harus baca lengkap mailnya agar tidak salah konteks. Di kasus inikan sedang bicara soal message yang bernilai dan message umum/biasa. Message yang bernilai (valuable) dirasa perlu di pisahkan ke IMAP sub folder (diarsipkan), message yang umum (bisa juga berupa spam) dibiarkan di inbox (ter pruning nantinya) Domain pruning bisa diatur untuk menghapus juga isi IMAP subfolder, kalau memang diinginkan begitu. Begitu juga pruning per user bisa punya policy sendiri, tidak harus mengikuti setting pruning domain (default). Oh ok, Noted Pak Rgds, -- --[mdaemon-l]-- Milis ini untuk Diskusi antar pengguna MDaemon Mail Server di Indonesia Netiket: https://wiki.openstack.org/wiki/MailingListEtiquette Arsip: http://mdaemon-l.dutaint.com Dokumentasi : http://mdaemon.dutaint.com Berlangganan: Kirim mail ke mdaemon-l-subscr...@dutaint.com Henti Langgan: Kirim mail ke mdaemon-l-unsubscr...@dutaint.com Versi terakhir: MDaemon 23.5.1, SecurityGateway 9.5.1
[Mdaemon-L] Email Pruning berdasarkan bulan tertentu
On 14/12/2023 16:51, Syafril Hermansyah via Mdaemon-L wrote: Jika setting pruning di domain manager dan masing-masing akun sudah seperti diatas, maka semua isi IMAP sub folder tidak akan di pruning. Pak ini maksudnya : jika user buat sub folder di Imap mereka, maka sub folder tidak bisa kena pruning ? Jika ya akan jd problem nih, setiap user harus melakukan pruning manual sendiri di email client mereka. Rgds -- --[mdaemon-l]-- Milis ini untuk Diskusi antar pengguna MDaemon Mail Server di Indonesia Netiket: https://wiki.openstack.org/wiki/MailingListEtiquette Arsip: http://mdaemon-l.dutaint.com Dokumentasi : http://mdaemon.dutaint.com Berlangganan: Kirim mail ke mdaemon-l-subscr...@dutaint.com Henti Langgan: Kirim mail ke mdaemon-l-unsubscr...@dutaint.com Versi terakhir: MDaemon 23.5.1, SecurityGateway 9.5.1
[Mdaemon-L] 503 bad sequence of commands
Pak saya kirim ke 1 domain ini gagal tapi ke domain lain tidak ada yg masalah, dan aneh messagenya smtpout nya : Fri 2023-10-13 13:37:51.095: [03803601] REMOTE message: pd350193912.msg Fri 2023-10-13 13:37:51.095: [03803601] * Session 03803601; child 0001 Fri 2023-10-13 13:37:51.096: [03803601] * From: i...@pttdp.com Fri 2023-10-13 13:37:51.096: [03803601] * To: ptwa...@cbn.net.id Fri 2023-10-13 13:37:51.096: [03803601] * Subject: Test Fri 2023-10-13 13:37:51.096: [03803601] * Message-ID: Fri 2023-10-13 13:37:51.096: [03803601] * Size: 2835; Fri 2023-10-13 13:37:51.099: [03803601] Resolving MX record for cbn.net.id (DNS Server: 203.142.84.222)... Fri 2023-10-13 13:37:51.109: [03803601] * P=005 S=000 D=cbn.net.id TTL=(1440) MX=[mx.c6.icoremail.net] Fri 2023-10-13 13:37:51.109: [03803601] * P=010 S=001 D=cbn.net.id TTL=(1440) MX=[mx2.c6.icoremail.net] Fri 2023-10-13 13:37:51.109: [03803601] * P=020 S=002 D=cbn.net.id TTL=(1440) MX=[mx3.c6.icoremail.net] Fri 2023-10-13 13:37:51.110: [03803601] Attempting SMTP connection to mx.c6.icoremail.net Fri 2023-10-13 13:37:51.110: [03803601] Resolving A record for mx.c6.icoremail.net (DNS Server: 203.142.84.222)... Fri 2023-10-13 13:38:50.764: [03803601] * DNS: 60 second wait for DNS response exceeded (DNS Server: 203.142.84.222) Fri 2023-10-13 13:38:50.764: [03803601] Attempting SMTP connection to mx.c6.icoremail.net Fri 2023-10-13 13:38:50.764: [03803601] Resolving A record for mx.c6.icoremail.net (DNS Server: 192.168.100.217)... Fri 2023-10-13 13:39:01.676: [03803601] * DNS server reports that it is having technical problems Fri 2023-10-13 13:39:01.676: [03803601] Attempting SMTP connection to mx.c6.icoremail.net Fri 2023-10-13 13:39:01.676: [03803601] Resolving A record for mx.c6.icoremail.net (DNS Server: 203.142.82.222)... Fri 2023-10-13 13:39:01.678: [03803601] * D=mx.c6.icoremail.net TTL=(0) A=[114.119.187.154] Fri 2023-10-13 13:39:01.678: [03803601] Attempting SMTP connection to 114.119.187.154:25 Fri 2023-10-13 13:39:01.678: [03803601] Waiting for socket connection... Fri 2023-10-13 13:39:01.693: [03803601] * Connection established 192.168.10.2:51634 --> 114.119.187.154:25 Fri 2023-10-13 13:39:01.693: [03803601] Waiting for protocol to start... Fri 2023-10-13 13:39:01.708: [03803601] <-- 220 c6.icoremail.net Anti-spam GT for Coremail System (mispb-76b96e3b-3ecc-44d5-9200-de81e6d4c242-[20230203]) Fri 2023-10-13 13:39:01.709: [03803601] --> EHLO webmail.pttdp.com Fri 2023-10-13 13:39:01.724: [03803601] <-- 250-mail Fri 2023-10-13 13:39:01.724: [03803601] <-- 250-PIPELINING Fri 2023-10-13 13:39:01.724: [03803601] <-- 250-AUTH LOGIN PLAIN Fri 2023-10-13 13:39:01.724: [03803601] <-- 250-AUTH=LOGIN PLAIN Fri 2023-10-13 13:39:01.724: [03803601] <-- 250-coremail 1Uxr2xKj7kG0xkI17xGrU7I0s8FY2U3Uj8Cz28x1U7Ic2I0Y2Urshd15UCa0xDrj Fri 2023-10-13 13:39:01.724: [03803601] <-- 250-STARTTLS Fri 2023-10-13 13:39:01.724: [03803601] <-- 250-SMTPUTF8 Fri 2023-10-13 13:39:01.724: [03803601] <-- 250 8BITMIME Fri 2023-10-13 13:39:01.724: [03803601] --> STARTTLS Fri 2023-10-13 13:39:01.739: [03803601] <-- 220 Ready to start TLS Fri 2023-10-13 13:39:01.756: [03803601] SSL negotiation successful (TLS 1.3, TLS_AES_256_GCM_SHA384) Fri 2023-10-13 13:39:01.757: [03803601] SSL certificate is valid (matches mx.c6.icoremail.net and is signed by recognized CA) Fri 2023-10-13 13:39:01.757: [03803601] --> EHLO webmail.pttdp.com Fri 2023-10-13 13:39:01.772: [03803601] <-- 250-mail Fri 2023-10-13 13:39:01.772: [03803601] <-- 250-PIPELINING Fri 2023-10-13 13:39:01.772: [03803601] <-- 250-AUTH LOGIN PLAIN Fri 2023-10-13 13:39:01.772: [03803601] <-- 250-AUTH=LOGIN PLAIN Fri 2023-10-13 13:39:01.772: [03803601] <-- 250-coremail 1Uxr2xKj7kG0xkI17xGrU7I0s8FY2U3Uj8Cz28x1U7Ic2I0Y2Ur9fR5HUCa0xDrj Fri 2023-10-13 13:39:01.772: [03803601] <-- 250-STARTTLS Fri 2023-10-13 13:39:01.772: [03803601] <-- 250-SMTPUTF8 Fri 2023-10-13 13:39:01.772: [03803601] <-- 250 8BITMIME Fri 2023-10-13 13:39:01.772: [03803601] --> MAIL From: Fri 2023-10-13 13:39:01.772: [03803601] --> RCPT To: Fri 2023-10-13 13:39:01.772: [03803601] --> DATA Fri 2023-10-13 13:39:02.788: [03803601] <-- 550 User not found: i...@pttdp.com Fri 2023-10-13 13:39:02.788: [03803601] --> QUIT Fri 2023-10-13 13:39:02.793: [03803601] Creating delivery failure DSN... Fri 2023-10-13 13:39:02.793: [03803601] * Recipient: i...@pttdp.com Fri 2023-10-13 13:39:02.793: [03803601] * Session-ID: 03803601 Fri 2023-10-13 13:39:02.793: [03803601] * Queue-ID: pd350193912.msg Fri 2023-10-13 13:39:02.793: [03803601] * Message-ID: b7b5f3cf-b40c-43ba-8314-d95648e05...@pttdp.com Fri 2023-10-13 13:39:02.793: [03803601] --- End DSN message creation Fri 2023-10-13 13:39:02.793: [03803601] <-- 503 bad sequence of commands Fri 2023-10-13 13:39:02.793: [03803601] <-- 503 bad sequence of commands Fri 2023-10-13 13:39:02.804: [03803601] <-- 221 Bye Fri 2023-10-13 13:39:02.804: [03803601] SMTP session terminated (Bytes in/o
[Mdaemon-L] MailStore Archive
On 07/09/2023 13:42, E. Rusnadi via Mdaemon-L wrote: Terima kasih atas sharingnya pak. Jika boleh tanya : 1. Untuk licensenya bagaimana ya pak? Licensenya mengikuti jumlah license yang ada di MD pak, karena dia akan Sync ke Userlist MD 2. Lebih jauh fungsi dari mailstore sendiri apa ya pak? Apakah hanya sekedar buat archieving saja. Yes Pak, Hanya utk fungsi Archive saja, tapi utk managementnya lengkap krn memang focus utk fungsi tersebut. Jika user email sudah tidak ada, misal karyawan resign, maka akan di tampung di ID @CatchAll, jd license yg terpakai hanya utk email yg masih aktif 3. Skemanya jika disandingkan dengan Mdaemon server seperti apa? utk userid akan Sync ambil Userlist yg ada di MD, Proses Archive melalui IMAP ke useremail yg sudah kita buat sebagai tampungan di MD, jadi di content filter harus buat trigger copy all mail to email tampungan ini, yg nantinya akan ditarik oleh Mailstore by schedule yg kita buat, misal tiap 1 jam. Terima kasih. -- --[mdaemon-l]-- Milis ini untuk Diskusi antar pengguna MDaemon Mail Server di Indonesia Netiket: https://wiki.openstack.org/wiki/MailingListEtiquette Arsip: http://mdaemon-l.dutaint.com Dokumentasi : http://mdaemon.dutaint.co.id Berlangganan: Kirim mail ke mdaemon-l-subscr...@dutaint.com Henti Langgan: Kirim mail ke mdaemon-l-unsubscr...@dutaint.com Versi terakhir: MDaemon 23.0.2, SecurityGateway 9.0.3
[Mdaemon-L] MailStore Archive
Saya baru implementasi MailStore utk Mdaemon, Bagus sekali system ini. Storage managementnya hebat sekali, System Archieve default MD yg simpan file .MSG misal Total 1 bulan = 100Gb , setelah di export ke MailStore total size archive hemat bisa 60-70% nya, menjadi hanya 30Gb ( email attachment ikut) Jika ada yg mau tanya2, silahkan, saya akan share pengalaman saya Rgds, -- --[mdaemon-l]-- Milis ini untuk Diskusi antar pengguna MDaemon Mail Server di Indonesia Netiket: https://wiki.openstack.org/wiki/MailingListEtiquette Arsip: http://mdaemon-l.dutaint.com Dokumentasi : http://mdaemon.dutaint.co.id Berlangganan: Kirim mail ke mdaemon-l-subscr...@dutaint.com Henti Langgan: Kirim mail ke mdaemon-l-unsubscr...@dutaint.com Versi terakhir: MDaemon 23.0.2, SecurityGateway 9.0.3
[Mdaemon-L] Case Aneh
On 21/08/2023 17:07, Syafril Hermansyah via Mdaemon-L wrote: On 8/21/23 16:08, Ivan Leonardo wrote: Incoming mail saya melalui secure gateway diluar MD pak, alias setting ada di secure gateway. ini contoh dr log MD smtpin yg saya kirim ke email alias dari Gmail Mon 2023-08-21 16:03:24.966: [03349004] <-- MAIL From: SIZE=3642 Mon 2023-08-21 16:03:24.971: [03349004] --> 250 2.1.0 Sender OK Mon 2023-08-21 16:03:24.985: [03349004] <-- RCPT To: Mon 2023-08-21 16:03:26.986: [03349004] --> 250 2.6.0 Ok, message saved <98df6600-23e8-8bde-df17-c088caa0e...@gmail.com>> Ini masuk. Memang sebenarnya bluesky1...@gmail.com kirim mail bukan ke adm...@pttdp.com? saya kirim ke i...@pttdp.com yg alias ke adm...@pttdp.com pak Message-ID:<98df6600-23e8-8bde-df17-c088caa0e...@gmail.com> Date: Mon, 21 Aug 2023 16:03:19 +0700 MIME-Version: 1.0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:102.0) Gecko/20100101 Thunderbird/102.14.0 Content-Language: en-US To:i...@pttdp.com From: Ivan Leonardo Subject: tes Content-Type: text/plain; charset=UTF-8; format=flowed Content-Transfer-Encoding: 7bit Coba periksa apakah mail ini bisa diterima oleh adm...@pttdp.com? Tidak ada email yg masuk ke adm...@pttdp.com pak, saya cek di log secure gateway juga tidak ada, hanya ada yg email alias saja yg masuk Tanyakan ke pengelola server SMTPrelay fortimailcloud.com. ini Cloudbase Pak, saya sudah cek ke log sama sekali tidak menyentuh log nya pak. Boleh liat SMTP-Out log yg dikirim ke adm...@pttdp.com Pak ? Mon 2023-08-21 15:05:50.364: -- Mon 2023-08-21 15:05:02.110: [64935523] REMOTE message: pd3501001928916.msg Mon 2023-08-21 15:05:02.110: [64935523] * Session 64935523; child 0006 Mon 2023-08-21 15:05:02.111: [64935523] * From: syaf...@dutaint.co.id Mon 2023-08-21 15:05:02.111: [64935523] * To: adm...@pttdp.com Mon 2023-08-21 15:05:02.111: [64935523] * Subject: Re: [Mdaemon-L] Case Aneh Mon 2023-08-21 15:05:02.111: [64935523] * Message-ID: Mon 2023-08-21 15:05:02.111: [64935523] * Size: 3366; Mon 2023-08-21 15:05:02.113: [64935523] Resolving TXT record for _mta-sts.pttdp.com (DNS Server: 203.190.55.210)... Mon 2023-08-21 15:05:02.314: [64935523] No MTA-STS TXT record found Mon 2023-08-21 15:05:02.322: [64935523] Resolving MX record for pttdp.com (DNS Server: 203.190.55.210)... Mon 2023-08-21 15:05:02.465: [64935523] * P=010 S=001 D=pttdp.com TTL=(60) MX=[pttdp-com-1.fortimailcloud.com] Mon 2023-08-21 15:05:02.465: [64935523] * P=020 S=000 D=pttdp.com TTL=(60) MX=[pttdp-com-2.fortimailcloud.com] Mon 2023-08-21 15:05:02.465: [64935523] Attempting SMTP connection to pttdp-com-1.fortimailcloud.com Mon 2023-08-21 15:05:02.465: [64935523] Resolving A record for pttdp-com-1.fortimailcloud.com (DNS Server: 203.190.55.210)... Mon 2023-08-21 15:05:03.110: [64935523] * D=pttdp-com-1.fortimailcloud.com TTL=(60) A=[154.52.16.132] Mon 2023-08-21 15:05:03.110: [64935523] Attempting SMTP connection to 154.52.16.132:25 Mon 2023-08-21 15:05:03.110: [64935523] Waiting for socket connection... Mon 2023-08-21 15:05:03.140: [64935523] * Connection established 180.235.150.138:20304 --> 154.52.16.132:25 Mon 2023-08-21 15:05:03.140: [64935523] Waiting for protocol to start... Mon 2023-08-21 15:05:03.365: [64935523] <-- 220 proxysg33.fortimailcloud.com ESMTP ready Mon 2023-08-21 15:05:03.366: [64935523] --> EHLO dip1.dutaint.com Mon 2023-08-21 15:05:03.542: [64935523] <-- 250-proxysg33.fortimailcloud.com Mon 2023-08-21 15:05:03.542: [64935523] <-- 250-SIZE 26214400 Mon 2023-08-21 15:05:03.542: [64935523] <-- 250-ENHANCEDSTATUSCODES Mon 2023-08-21 15:05:03.542: [64935523] <-- 250-8BITMIME Mon 2023-08-21 15:05:03.542: [64935523] <-- 250-DSN Mon 2023-08-21 15:05:03.542: [64935523] <-- 250 STARTTLS Mon 2023-08-21 15:05:03.542: [64935523] --> STARTTLS Mon 2023-08-21 15:05:03.939: [64935523] <-- 220 2.0.0 Start TLS Mon 2023-08-21 15:05:04.268: [64935523] SSL negotiation successful (TLS 1.2, TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) Mon 2023-08-21 15:05:50.086: [64935523] SSL certificate is valid (matches pttdp-com-1.fortimailcloud.com and is signed by recognized CA) Mon 2023-08-21 15:05:50.086: [64935523] --> EHLO dip1.dutaint.com Mon 2023-08-21 15:05:50.092: [64935523] <-- 250-proxysg33.fortimailcloud.com Mon 2023-08-21 15:05:50.092: [64935523] <-- 250-SIZE 26214400 Mon 2023-08-21 15:05:50.092: [64935523] <-- 250-ENHANCEDSTATUSCODES Mon 2023-08-21 15:05:50.092: [64935523] <-- 250-8BITMIME Mon 2023-08-21 15:05:50.092: [64935523] <-- 250-DSN Mon 2023-08-21 15:05:50.092: [64935523] <-- 250 AUTH PLAIN LOGIN Mon 2023-08-21 15:05:50.092: [64935523] --> MAIL From: SIZE=3366 Mon 2023-08-21 15:05:50.114: [64935523] <-- 250 2.0.0 OK Mon 2023-08-21 15:05:50.114: [64935523] --> RCPT To: Mon 2023-08-21 15:05:50.548: [64935523] <-- 250 2.1.5 ... Recipient ok Mon 2023-08-21 15:05:50.548: [64935523] --> DA
[Mdaemon-L] Case Aneh
On 21/08/2023 15:02, Syafril Hermansyah via Mdaemon-L wrote: On 8/21/23 10:43, Ivan Leonardo wrote: Contoh : email adm...@pttdp.com banyak menerima alias dari email address lain, misal A,B,C,dst @pttdp.com alias ke adm...@pttdp.com Perlihatkan message header dan transaksinya di smtp-in log. Incoming mail saya melalui secure gateway diluar MD pak, alias setting ada di secure gateway. ini contoh dr log MD smtpin yg saya kirim ke email alias dari Gmail Mon 2023-08-21 16:03:24.851: [03349004] Session 03349004; child 0001 Mon 2023-08-21 16:03:24.852: [03349004] Accepting SMTP connection from 154.52.16.131:33868 to 192.168.10.2:25 Mon 2023-08-21 16:03:24.854: [03349004] --> 220 webmail.pttdp.com ESMTP Mon, 21 Aug 2023 16:03:24 +0700 Mon 2023-08-21 16:03:24.867: [03349004] <-- EHLO pttdp-com-1.fortimailcloud.com Mon 2023-08-21 16:03:24.867: [03349004] --> 250-webmail.pttdp.com Hello pttdp-com-1.fortimailcloud.com [154.52.16.131], pleased to meet you Mon 2023-08-21 16:03:24.867: [03349004] --> 250-VRFY Mon 2023-08-21 16:03:24.867: [03349004] --> 250-EXPN Mon 2023-08-21 16:03:24.867: [03349004] --> 250-ETRN Mon 2023-08-21 16:03:24.867: [03349004] --> 250-AUTH LOGIN PLAIN Mon 2023-08-21 16:03:24.867: [03349004] --> 250-8BITMIME Mon 2023-08-21 16:03:24.867: [03349004] --> 250-ENHANCEDSTATUSCODES Mon 2023-08-21 16:03:24.867: [03349004] --> 250-PIPELINING Mon 2023-08-21 16:03:24.867: [03349004] --> 250-CHUNKING Mon 2023-08-21 16:03:24.867: [03349004] --> 250-STARTTLS Mon 2023-08-21 16:03:24.867: [03349004] --> 250 SIZE Mon 2023-08-21 16:03:24.882: [03349004] <-- STARTTLS Mon 2023-08-21 16:03:24.882: [03349004] --> 220 2.7.0 Ready to start TLS Mon 2023-08-21 16:03:24.937: [03349004] SSL negotiation successful (TLS 1.2, TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384_P256) Mon 2023-08-21 16:03:24.951: [03349004] <-- EHLO pttdp-com-1.fortimailcloud.com Mon 2023-08-21 16:03:24.951: [03349004] --> 250-webmail.pttdp.com Hello pttdp-com-1.fortimailcloud.com [154.52.16.131], pleased to meet you Mon 2023-08-21 16:03:24.951: [03349004] --> 250-VRFY Mon 2023-08-21 16:03:24.951: [03349004] --> 250-EXPN Mon 2023-08-21 16:03:24.951: [03349004] --> 250-ETRN Mon 2023-08-21 16:03:24.951: [03349004] --> 250-AUTH LOGIN PLAIN Mon 2023-08-21 16:03:24.951: [03349004] --> 250-8BITMIME Mon 2023-08-21 16:03:24.951: [03349004] --> 250-ENHANCEDSTATUSCODES Mon 2023-08-21 16:03:24.951: [03349004] --> 250-PIPELINING Mon 2023-08-21 16:03:24.951: [03349004] --> 250-CHUNKING Mon 2023-08-21 16:03:24.951: [03349004] --> 250-REQUIRETLS Mon 2023-08-21 16:03:24.951: [03349004] --> 250 SIZE Mon 2023-08-21 16:03:24.966: [03349004] <-- MAIL From: SIZE=3642 Mon 2023-08-21 16:03:24.971: [03349004] --> 250 2.1.0 Sender OK Mon 2023-08-21 16:03:24.985: [03349004] <-- RCPT To: Mon 2023-08-21 16:03:25.000: [03349004] --> 250 2.1.5 Recipient OK Mon 2023-08-21 16:03:25.000: [03349004] <-- DATA Mon 2023-08-21 16:03:25.003: [03349004] --> 354 Enter mail, end with . Mon 2023-08-21 16:03:25.231: [03349004] Message size: 3677 bytes Mon 2023-08-21 16:03:25.237: [03349004] Passing message through AntiVirus (Size: 3677)... Mon 2023-08-21 16:03:26.960: [03349004] * Message is clean (no viruses found) scanned by (IKARUS: clean (0.00356s)) (ClamAV: clean (0.13619s)) Mon 2023-08-21 16:03:26.960: [03349004] End AntiVirus results Mon 2023-08-21 16:03:26.961: [03349004] Outbreak Protection: Processing skipped. Trusted IP found. Mon 2023-08-21 16:03:26.986: [03349004] Message creation successful: e:\mdaemon\queues\inbound\md5001000432272.msg Mon 2023-08-21 16:03:26.986: [03349004] --> 250 2.6.0 Ok, message saved > Mon 2023-08-21 16:03:26.997: [03349004] <-- QUIT Mon 2023-08-21 16:03:26.997: [03349004] --> 221 2.0.0 See ya in cyberspace Mon 2023-08-21 16:03:26.998: [03349004] SMTP session successful (Bytes in/out: 5016/5034) Kalau dari Gmail saya kirim email ke A,B,C berhasil masuk ke adm...@pttdp.com TAPI kalau saya kirim dari Gmail langsung ke email adm...@pttdp.com tidak bisa masuk, tidak ada di log dan di gmail tidak ada tolakan. Saya tidak bisa cek SMTP out log dari Gmail. Kenapa bisa gini ya Pak? > Kalau test kirim dari Bapak ke email tersebut, SMTP outnya spt apa ya ? Coba periksa apakah mail ini bisa diterima oleh adm...@pttdp.com? Tidak ada email yg masuk ke adm...@pttdp.com pak, saya cek di log secure gateway juga tidak ada, hanya ada yg email alias saja yg masuk -- --[mdaemon-l]-- Milis ini untuk Diskusi antar pengguna MDaemon Mail Server di Indonesia Netiket: https://wiki.openstack.org/wiki/MailingListEtiquette Arsip: http://mdaemon-l.dutaint.com Dokumentasi : http://mdaemon.dutaint.co.id Berlangganan: Kirim mail ke mdaemon-l-subscr...@dutaint.com Henti Langgan: Kirim mail ke mdaemon-l-unsubscr...@dutaint.com Versi terakhir: MDaemon 23.0.2, SecurityGateway 9.0.3
[Mdaemon-L] Case Aneh
Pak, Contoh : email adm...@pttdp.com banyak menerima alias dari email address lain, misal A,B,C,dst @pttdp.com alias ke adm...@pttdp.com Kalau dari Gmail saya kirim email ke A,B,C berhasil masuk ke adm...@pttdp.com TAPI kalau saya kirim dari Gmail langsung ke email adm...@pttdp.com tidak bisa masuk, tidak ada di log dan di gmail tidak ada tolakan. Saya tidak bisa cek SMTP out log dari Gmail. Kenapa bisa gini ya Pak? Kalau test kirim dari Bapak ke email tersebut, SMTP outnya spt apa ya ? Rgds, -- --[mdaemon-l]-- Milis ini untuk Diskusi antar pengguna MDaemon Mail Server di Indonesia Netiket: https://wiki.openstack.org/wiki/MailingListEtiquette Arsip: http://mdaemon-l.dutaint.com Dokumentasi : http://mdaemon.dutaint.co.id Berlangganan: Kirim mail ke mdaemon-l-subscr...@dutaint.com Henti Langgan: Kirim mail ke mdaemon-l-unsubscr...@dutaint.com Versi terakhir: MDaemon 23.0.2, SecurityGateway 9.0.3
[Mdaemon-L] MailStore for MD
On 24/07/2023 14:06, Syafril Hermansyah via Mdaemon-L wrote: Mailstore tidak perlu ActiveDirectory untuk diinstall di server yang berbeda. https://help.mailstore.com/en/server/MDaemon_Integration Sudah ketemu pak solusinya, ternyata harus setting di menu Network share dulu baru bisa open di integration. Rgds, -- --[mdaemon-l]-- Milis ini untuk Diskusi antar pengguna MDaemon Mail Server di Indonesia Netiket: https://wiki.openstack.org/wiki/MailingListEtiquette Arsip: http://mdaemon-l.dutaint.com Dokumentasi : http://mdaemon.dutaint.co.id Berlangganan: Kirim mail ke mdaemon-l-subscr...@dutaint.com Henti Langgan: Kirim mail ke mdaemon-l-unsubscr...@dutaint.com Versi terakhir: MDaemon 23.0.2, SecurityGateway 9.0.3
[Mdaemon-L] SSL CERTIFICATE MultiDomain DV
Pak saya ada paket sectigo MultiDomain DV, Pertanyaan : Contoh : Saya ada 2 server fisik berbeda : MD dan Webserver Apps, Jika saya create CSR dari server WebApps lalu register domain MD dan domain Webapps di 1 certificate itu apakah certificate itu bisa dipakai/diinstall di MD ? Fasilitas dari Sectigo memang spt itu, hanya terima 1 CSR file dan domain yg didaftarkan digabung 1 certificate Rgds, -- --[mdaemon-l]-- Milis ini untuk Diskusi antar pengguna MDaemon Mail Server di Indonesia Netiket: https://wiki.openstack.org/wiki/MailingListEtiquette Arsip: http://mdaemon-l.dutaint.com Dokumentasi : http://mdaemon.dutaint.co.id Berlangganan: Kirim mail ke mdaemon-l-subscr...@dutaint.com Henti Langgan: Kirim mail ke mdaemon-l-unsubscr...@dutaint.com Versi terakhir: MDaemon 23.0.2, SecurityGateway 9.0.2
[Mdaemon-L] Webmail Login 2FA
Pak apakah setting 2FA ini bisa dibuat mandatory ? maksudnya user tidak bisa disable setting ini Rgds, -- --[mdaemon-l]-- Milis ini untuk Diskusi antar pengguna MDaemon Mail Server di Indonesia Netiket: https://wiki.openstack.org/wiki/MailingListEtiquette Arsip: http://mdaemon-l.dutaint.com Dokumentasi : http://mdaemon.dutaint.co.id Berlangganan: Kirim mail ke mdaemon-l-subscr...@dutaint.com Henti Langgan: Kirim mail ke mdaemon-l-unsubscr...@dutaint.com Versi terakhir: MDaemon 23.0.2, SecurityGateway 9.0.2
[Mdaemon-L] MailStore
On 09/06/2023 14:06, Syafril Hermansyah via Mdaemon-L wrote: Tidak, harus pilih salah satu. Pak saya terpikir ini : Archive feature MD tetap aktif, ke Folder archive per domain. Lalu MailStore tarik archive dari Folder file .MSG ini kalau saya baca2 kan ada feature ini di mailstore. Apakah memungkinkan ? dan jika bisa kira2 apa kekurangannya jika memakai strategy ini ? Rgds, -- --[mdaemon-l]-- Milis ini untuk Diskusi antar pengguna MDaemon Mail Server di Indonesia Netiket: https://wiki.openstack.org/wiki/MailingListEtiquette Arsip: http://mdaemon-l.dutaint.com Dokumentasi : http://mdaemon.dutaint.co.id Berlangganan: Kirim mail ke mdaemon-l-subscr...@dutaint.com Henti Langgan: Kirim mail ke mdaemon-l-unsubscr...@dutaint.com Versi terakhir: MDaemon 23.0.1, SecurityGateway 9.0.2
[Mdaemon-L] MailStore
On 09/06/2023 14:06, Syafril Hermansyah via Mdaemon-L wrote: Ya bisa. Yang terbaik MailStore diinstall di server terpisah dari MDaemon. Kira2 pertimbangannya apa saja Pak, sebaiknya diinstall terpisah ? Rgds, -- --[mdaemon-l]-- Milis ini untuk Diskusi antar pengguna MDaemon Mail Server di Indonesia Netiket: https://wiki.openstack.org/wiki/MailingListEtiquette Arsip: http://mdaemon-l.dutaint.com Dokumentasi : http://mdaemon.dutaint.co.id Berlangganan: Kirim mail ke mdaemon-l-subscr...@dutaint.com Henti Langgan: Kirim mail ke mdaemon-l-unsubscr...@dutaint.com Versi terakhir: MDaemon 23.0.1, SecurityGateway 9.0.2
[Mdaemon-L] MailStore
Pak saya ada beberapa pertanyaan : * Jika implement MailStore dengan MD, apakah system archive default MD bisa tetap dijalankan juga ? saya mau running 2 archive system * Apakah MailStore aman diinstall bersamaan dengan MD tapi dibedakan HDD nya ? misal 1 HD utk O/S, 1 HDD utk MD dan 1 HDD utk Mailstore. menurut saya MailStore akan jarang dibuka oleh user karena hanya berisi email umur > 3 thn * Jika semua user mau saya ubah access melalui WebMail semua (200 users) apakah webserver default MD masih sanggup atau harus pindah pakai IIS ? jika ya berapa batasan maksimalnya ? Rgds, -- --[mdaemon-l]-- Milis ini untuk Diskusi antar pengguna MDaemon Mail Server di Indonesia Netiket: https://wiki.openstack.org/wiki/MailingListEtiquette Arsip: http://mdaemon-l.dutaint.com Dokumentasi : http://mdaemon.dutaint.co.id Berlangganan: Kirim mail ke mdaemon-l-subscr...@dutaint.com Henti Langgan: Kirim mail ke mdaemon-l-unsubscr...@dutaint.com Versi terakhir: MDaemon 23.0.1, SecurityGateway 9.0.2
[Mdaemon-L] Auth Failure report
On 06/06/2023 09:53, Syafril Hermansyah via Mdaemon-L wrote: coba diperiksa apakah yusn...@pttdp.com adalah alias dari akun suti...@pttdp.com. Betul Pak, yusnadi sudah tidak aktif dan alias ke sutiono. Jadinya akun yusnadi ada yg coba login lalu messagenya masuk ke sutiono krn alias ? Rgds -- --[mdaemon-l]-- Milis ini untuk Diskusi antar pengguna MDaemon Mail Server di Indonesia Netiket: https://wiki.openstack.org/wiki/MailingListEtiquette Arsip: http://mdaemon-l.dutaint.com Dokumentasi : http://mdaemon.dutaint.co.id Berlangganan: Kirim mail ke mdaemon-l-subscr...@dutaint.com Henti Langgan: Kirim mail ke mdaemon-l-unsubscr...@dutaint.com Versi terakhir: MDaemon 23.0.1, SecurityGateway 9.0.2
[Mdaemon-L] Auth Failure report
Pak, saya bingung dari report ini. Subjectnya sutiono tapi logon used nya yusnadi, maksudnya proses kerjanya MD spt apa ya ? Rgds, -- --[mdaemon-l]-- Milis ini untuk Diskusi antar pengguna MDaemon Mail Server di Indonesia Netiket: https://wiki.openstack.org/wiki/MailingListEtiquette Arsip: http://mdaemon-l.dutaint.com Dokumentasi : http://mdaemon.dutaint.co.id Berlangganan: Kirim mail ke mdaemon-l-subscr...@dutaint.com Henti Langgan: Kirim mail ke mdaemon-l-unsubscr...@dutaint.com Versi terakhir: MDaemon 23.0.1, SecurityGateway 9.0.2
[Mdaemon-L] Disable Protocol outdated
On 30/05/2023 17:14, Syafril Hermansyah via Mdaemon-L wrote: BTW. Kenapa tidak diupgrade MDaemonnya? Setidaknya ke versi 19.59. https://mdaemon.com/pages/downloads-critical-updates Kalau MD sudah version terbaru apakah otomatis sudah memakai SSL & TLS versi terbaru Pak ? Rgds, -- --[mdaemon-l]-- Milis ini untuk Diskusi antar pengguna MDaemon Mail Server di Indonesia Netiket: https://wiki.openstack.org/wiki/MailingListEtiquette Arsip: http://mdaemon-l.dutaint.com Dokumentasi : http://mdaemon.dutaint.co.id Berlangganan: Kirim mail ke mdaemon-l-subscr...@dutaint.com Henti Langgan: Kirim mail ke mdaemon-l-unsubscr...@dutaint.com Versi terakhir: MDaemon 23.0.1, SecurityGateway 9.0.2
[Mdaemon-L] Socket Error
Pak ini Socket Error kenapa ya ? apakah problem disisi saya atau recipientnya ? 05-29 11:07:06.267: 01: [02619852] REMOTE message: pd900100129.msg Mon 2023-05-29 11:07:06.267: 01: [02619852] * Session 02619852; child 0001 Mon 2023-05-29 11:07:06.268: 01: [02619852] * From: pryta.liya...@pttdp.com Mon 2023-05-29 11:07:06.268: 01: [02619852] * To: alexandra.april...@combiphar.com Mon 2023-05-29 11:07:06.268: 01: [02619852] * Subject: CV Bu Herlih dan Christian Salim Mon 2023-05-29 11:07:06.268: 01: [ 02619852] * Message-ID: <5f15b874-da1a-991d-50f8-c8c30fb18...@pttdp.com> Mon 2023-05-29 11:07:06.268: 01: [02619852] * Size: 767161; Mon 2023-05-29 11:07:06.286: 05: [02619852] Resolving MX record for combiphar.com (DNS Server: 203.142.82.222)... Mon 2023-05-29 11:07:06.310: 05: [02619852] * P=010 S=000 D=combiphar.com TTL=(5) MX=[smtpmail.combiphar.com] Mon 2023-05-29 11:07:06.310: 05: [02619852] Attempting SMTP connection to smtpmail.combiphar.com Mon 2023-05-29 11:07:06.310: 05: [02619852] Resolving A record for smtpmail.combiphar.com (DNS Server: 203.142.82.222)... Mon 2023-05-29 11:07:06.538: 05: [02619852] * D=smtpmail.combiphar.com TTL=(5) A=[110.35.83.86] Mon 2023-05-29 11:07:06.538: 05: [02619852] Attempting SMTP connection to 110.35.83.86:25 Mon 2023-05-29 11:07:06.538: 05: [02619852] Waiting for socket connection... Mon 2023-05-29 11:07:27.536: 04: [02619852] * Socket error 10060 - The connection timed out. Mon 2023-05-29 11:07:27.536: 05: [02619852] * 110.35.83.86 added to connection failure cache for 5 minutes Mon 2023-05-29 11:07:27.537: 01: [02619852] * This message is 0 days old; it has 2 days left to get delivered Mon 2023-05-29 11:07:27.544: 04: [02619852] SMTP session terminated (Bytes in/out: 0/0) Rgds, -- --[mdaemon-l]-- Milis ini untuk Diskusi antar pengguna MDaemon Mail Server di Indonesia Netiket: https://wiki.openstack.org/wiki/MailingListEtiquette Arsip: http://mdaemon-l.dutaint.com Dokumentasi : http://mdaemon.dutaint.co.id Berlangganan: Kirim mail ke mdaemon-l-subscr...@dutaint.com Henti Langgan: Kirim mail ke mdaemon-l-unsubscr...@dutaint.com Versi terakhir: MDaemon 23.0.1, SecurityGateway 9.0.2
[Mdaemon-L] Archive Mail
Pak, Saat ini kami menjalankan archive standard feature dari MD. All IN & Out mail file disimpan di folder Archive yg telah ditentukan. Jika saya ingin memakai MailStore, apakah File Archive yg sudah ada sejak lama *.eml bisa di import ke MailStore ? Rgds, -- --[mdaemon-l]-- Milis ini untuk Diskusi antar pengguna MDaemon Mail Server di Indonesia Netiket: https://wiki.openstack.org/wiki/MailingListEtiquette Arsip: http://mdaemon-l.dutaint.com Dokumentasi : http://mdaemon.dutaint.co.id Berlangganan: Kirim mail ke mdaemon-l-subscr...@dutaint.com Henti Langgan: Kirim mail ke mdaemon-l-unsubscr...@dutaint.com Versi terakhir: MDaemon 23.0.1, SecurityGateway 9.0.2
[Mdaemon-L] email reject dari gmail
On 19/05/2023 16:34, Irwan R Jazir via Mdaemon-L wrote: gmail-smtp-in.l.google.com[74.125.130.26] said: 550-5.7.26 This mail is unauthenticated, which poses a security risk to the 550-5.7.26 sender and Gmail users, and has been blocked. The sender must 550-5.7.26 authenticate with at least one of SPF or DKIM. For this message, 550-5.7.26 DKIM checks did not pass and SPF check for [mandau.id] did not pass 550-5.7.26 with ip: [113.11.182.16]. The sender should visit 550-5.7.26 https://support.google.com/mail/answer/81126#authentication for 550 5.7.26 instructions on setting up authentication. t189-20020a6381c600b0053489d58e12si1004128pgd.772 - gsmtp (in reply to end of DATA command) bantu jawab ya Pak, Kalau saya cek SPF mandau.id = v=spf1 +mx +a +ip4:*184.170.148.125* ~all Sedangkan IP yg dipakai utk sending email memakai : Connection established*117.102.89.155*:52652 --> 74.125.68.27:25 mungkin karena ini tidak sama dengan ip SPF sehingga ditolak oleh Gmail. Maaf kalo solusinya salah Rgds, -- --[mdaemon-l]-- Milis ini untuk Diskusi antar pengguna MDaemon Mail Server di Indonesia Netiket: https://wiki.openstack.org/wiki/MailingListEtiquette Arsip: http://mdaemon-l.dutaint.com Dokumentasi : http://mdaemon.dutaint.co.id Berlangganan: Kirim mail ke mdaemon-l-subscr...@dutaint.com Henti Langgan: Kirim mail ke mdaemon-l-unsubscr...@dutaint.com Versi terakhir: MDaemon 23.0.1, SecurityGateway 9.0.2
[Mdaemon-L] Connection Hits
On 04/05/2023 09:05, Syafril Hermansyah via Mdaemon-L wrote: Koneksi yang aktifnya lama, tidak terputus. Misalkan koneksi POP3 yang usernya leave copy message on server. Kalau leave copy on server for 3 days only apakah juga masuk kategori koneksi yg aktifnya lama Pak ? Kalau IMAP tidak termasuk koneksi yg aktifnya lama kan pak ? Rgds, -- --[mdaemon-l]-- Milis ini untuk Diskusi antar pengguna MDaemon Mail Server di Indonesia Netiket: https://wiki.openstack.org/wiki/MailingListEtiquette Arsip: http://mdaemon-l.dutaint.com Dokumentasi : http://mdaemon.dutaint.co.id Berlangganan: Kirim mail ke mdaemon-l-subscr...@dutaint.com Henti Langgan: Kirim mail ke mdaemon-l-unsubscr...@dutaint.com Versi terakhir: MDaemon 23.0.1, SecurityGateway 9.0.2
[Mdaemon-L] Connection Hits
On 04/05/2023 08:50, Syafril Hermansyah via Mdaemon-L wrote: Mestinya tidak. Hacker akan pakai smtp port 25, sementara user sendiri mestinya pakai smtp port 587 yang mendapat prioritas lebih tinggi dibanding port 25. jdnya yg menyebabkan user sulit SMTP connection apa ya pak ? -- --[mdaemon-l]-- Milis ini untuk Diskusi antar pengguna MDaemon Mail Server di Indonesia Netiket: https://wiki.openstack.org/wiki/MailingListEtiquette Arsip: http://mdaemon-l.dutaint.com Dokumentasi : http://mdaemon.dutaint.co.id Berlangganan: Kirim mail ke mdaemon-l-subscr...@dutaint.com Henti Langgan: Kirim mail ke mdaemon-l-unsubscr...@dutaint.com Versi terakhir: MDaemon 23.0.1, SecurityGateway 9.0.2
[Mdaemon-L] Connection Hits
Kemarin bbrp user saya sulit utk sending mail SMTP failed, kalau saya check connection hits refuse sangat tinggi. Apakah penyebabnya ini ? hacker yg coba2 mau masuk ke MD. traffic tinggi ini tidak selalu tiap hari sih, ada musim2 nya. Apakah teman2 disini juga kadang mengalami hits tinggi spt ini juga ? Rgds, -- --[mdaemon-l]-- Milis ini untuk Diskusi antar pengguna MDaemon Mail Server di Indonesia Netiket: https://wiki.openstack.org/wiki/MailingListEtiquette Arsip: http://mdaemon-l.dutaint.com Dokumentasi : http://mdaemon.dutaint.co.id Berlangganan: Kirim mail ke mdaemon-l-subscr...@dutaint.com Henti Langgan: Kirim mail ke mdaemon-l-unsubscr...@dutaint.com Versi terakhir: MDaemon 23.0.1, SecurityGateway 9.0.2
[Mdaemon-L] DMARC Report Sehubungan DKIM
On 02/05/2023 09:54, Syafril Hermansyah via Mdaemon-L wrote: Itu mail forwarding, bukan dari direct delivery. Yang pass itu dkim milik domain yang melakukan forwarding mail dari pttdp.com. Ohhh DKIM sender yg melakukan Fwd, jadi kalau mau aman tidak bisa fwd harus set DMARC p=reject ya ? Tapi kalau DKIM milik sender kenapa tulisan selectornya benar punya saya ya Pak ? Rgds, -- --[mdaemon-l]-- Milis ini untuk Diskusi antar pengguna MDaemon Mail Server di Indonesia Netiket: https://wiki.openstack.org/wiki/MailingListEtiquette Arsip: http://mdaemon-l.dutaint.com Dokumentasi : http://mdaemon.dutaint.co.id Berlangganan: Kirim mail ke mdaemon-l-subscr...@dutaint.com Henti Langgan: Kirim mail ke mdaemon-l-unsubscr...@dutaint.com Versi terakhir: MDaemon 23.0.1, SecurityGateway 9.0.2
[Mdaemon-L] DMARC Report Sehubungan DKIM
Pak, saya terima DMARC report dari Google. Kalau dilihat status DKIM nya Pass dan SPF failed karena bukan server MD kami yg mengirim, kalau benar dari server kami pasti DKIM dan SPF Pass spt yg tanda centang merah. IP yg kuning bukan IP kami utk transaksi yg bukan dari IP kami itu kenapa status DKIM nya bisa pass ya ? apakah mereka bisa signing message memakai key MD kami ? Rgds, -- --[mdaemon-l]-- Milis ini untuk Diskusi antar pengguna MDaemon Mail Server di Indonesia Netiket: https://wiki.openstack.org/wiki/MailingListEtiquette Arsip: http://mdaemon-l.dutaint.com Dokumentasi : http://mdaemon.dutaint.co.id Berlangganan: Kirim mail ke mdaemon-l-subscr...@dutaint.com Henti Langgan: Kirim mail ke mdaemon-l-unsubscr...@dutaint.com Versi terakhir: MDaemon 23.0.1, SecurityGateway 9.0.2
[Mdaemon-L] Upgrade MDaemon v.22.0.2 ke v.23.0.1
On 28/04/2023 16:05, Syafril Hermansyah via Mdaemon-L wrote: Tidak ada informasi itu di release note MD v23.0.1 https://files.mdaemon.com/mdaemon/release/relnotes_en.html Hanya, khusus Thunderbird user, kalau ingin memanfaatkan Message Labeling tersimpan di IMAP server harus mengaktifkan IMAPKeywordFlags=Yes di mdaemon.ini [26778] IMAP keyword flags support can now be enabled or disabled via the setting [Special] IMAPKeywordFlags=Yes/No in \MDaemon\App\MDaemon.ini. IMAP keyword flags are disabled by default when updating MDaemon from a version before 23, to avoid the potential loss of message tags in Thunderbird mail clients. When Thunderbird connects to an IMAP server that supports keyword flags, it overwrites its local message tags with tags read from the server, which are initially blank. IMAP keyword flags are enabled by default for new installs and when updating from version 23.0.0. Seingat saya perubahan jumlah digit nama file dilakukan di MD lama, bukan diperpendek tetapi makin panjang untuk mengakomodasi jumlah file yang makin banyak. Wah saya baru tahu ini, sy lsg cek untung saja statusnya sudah yes dr awal -- --[mdaemon-l]-- Milis ini untuk Diskusi antar pengguna MDaemon Mail Server di Indonesia Netiket: https://wiki.openstack.org/wiki/MailingListEtiquette Arsip: http://mdaemon-l.dutaint.com Dokumentasi : http://mdaemon.dutaint.co.id Berlangganan: Kirim mail ke mdaemon-l-subscr...@dutaint.com Henti Langgan: Kirim mail ke mdaemon-l-unsubscr...@dutaint.com Versi terakhir: MDaemon 23.0.1, SecurityGateway 9.0.2
[Mdaemon-L] DKIM Failed
On 27/04/2023 09:27, Syafril Hermansyah via Mdaemon-L wrote: DNS DKIM record belum dibuatkan. $ host -t txt MDaemon._domainkey.pttdp.com Host MDaemon._domainkey.pttdp.com not found: 3(NXDOMAIN) Pak sudah didaftarkan ke DNS domain pttdp.com dan sudah berhasil status DKIMnya Lalu utk domain lain yg ada di MD yg signing memakai selector yg sama, pendaftaran ke DNS nya tetap pakai yg sama spt yg domain pttdp.com ? 27042023._domainkey.pttdp.com. IN TXT atau harus buat key baru ? Rgds -- --[mdaemon-l]-- Milis ini untuk Diskusi antar pengguna MDaemon Mail Server di Indonesia Netiket: https://wiki.openstack.org/wiki/MailingListEtiquette Arsip: http://mdaemon-l.dutaint.com Dokumentasi : http://mdaemon.dutaint.co.id Berlangganan: Kirim mail ke mdaemon-l-subscr...@dutaint.com Henti Langgan: Kirim mail ke mdaemon-l-unsubscr...@dutaint.com Versi terakhir: MDaemon 23.0.1, SecurityGateway 9.0.2
[Mdaemon-L] DKIM Failed
On 27/04/2023 08:28, Ivan Leonardo wrote: Pak saya coba mengaktifkan DKIM Signed di MD dengan memakai key default dari MD, Tapi hasil dari receiver server selalu Fial utk DKIM checknya. Ada salah setting dimana ya pak ? Berikut ini contoh log dari receivernya : ini dari Log DKIM MD : Thu 2023-04-27 08:13:47.515: 07: Performing DKIM signing (thread-ID: 17188) Thu 2023-04-27 08:13:47.515: 07: * File: e:\mdaemon\queues\remote\md350144383.msg Thu 2023-04-27 08:13:47.515: 07: * Work file: E:\MDaemon\CFilter\WORK\793329660\pd186669243.tmp Thu 2023-04-27 08:13:47.530: 07: * Message-ID: <0ce1b52f-16ee-539d-faf1-6f107a4c3...@pttdp.com> Thu 2023-04-27 08:13:47.530: 07: * From: i...@pttdp.com Thu 2023-04-27 08:13:47.530: 07: * Selector: MDaemon Thu 2023-04-27 08:13:47.530: 07: * Domain (d=): pttdp.com Thu 2023-04-27 08:13:47.530: 07: * Result: 0 (signed ok) ini dari Log server tujuan : Authentication-Results: spf=pass (sender IP is 117.102.88.187) smtp.mailfrom=pttdp.com; dkim=fail (no key for signature) header.d=pttdp.com;dmarc=pass action=none header.from=pttdp.com; Received-SPF: Pass (protection.outlook.com: domain of pttdp.com designates 117.102.88.187 as permitted sender) receiver=protection.outlook.com; client-ip=117.102.88.187; helo=webmail.pttdp.com; pr=C Received: from webmail.pttdp.com (117.102.88.187) by TYZAPC01FT016.mail.protection.outlook.com (10.118.152.163) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384) id 15.20.6340.22 via Frontend Transport; Thu, 27 Apr 2023 01:13:56 + DKIM-Signature: v=1; a=rsa-sha256; c=simple; d=pttdp.com; s=MDaemon; t=1682558027; x=1683162827; i=i...@pttdp.com; q=dns/txt; h=Message-ID:Date:MIME-Version:User-Agent: Content-Language:To:From:Subject:Content-Type: Content-Transfer-Encoding; bh=ZIwCX3Osxv4h/cv3+UTJ0SJuTqcR4eI/A1 Vfv2Ju5fc=; b=EzvIpo3ymmWl0Gh6ewryA1uWFqHWtjHUwqOPTLWkaRxJezPkYg rjRXhgSIPmNpqGfmQZOfs7ftrxHAjaYiEh7/cpTHe8S9o0Y+zN1uwgutekvqVWjV CJM2gL4xzFHrtCa8w4PoZjCiXdCJs6Ryw3oVA4VCfRAenABLVYPk0Uwt+hEX2gkK oZ02uDdSzdNwhD5LDodXCCUE0Uvno8R5uz/91A3c5dt46TCfLDRXHpaMkC2vLpR8 NLbegQea/eESGKmEstwDEeCcbsNBkark1hVqwCWjVD6WDfZCZ4mW3dk1+ZT85hf6 lWzzRF3OsM7DI8yG2yFb6HppmvENsUFBZrLw== -- --[mdaemon-l]-- Milis ini untuk Diskusi antar pengguna MDaemon Mail Server di Indonesia Netiket:https://wiki.openstack.org/wiki/MailingListEtiquette Arsip:http://mdaemon-l.dutaint.com Dokumentasi :http://mdaemon.dutaint.co.id Berlangganan: Kirim mail kemdaemon-l-subscr...@dutaint.com Henti Langgan: Kirim mail kemdaemon-l-unsubscr...@dutaint.com Versi terakhir: MDaemon 23.0.1, SecurityGateway 9.0.2 Sptnya file ini "E:\MDaemon\PEM\MDaemon\dns_readme.txt" harus didaftarkan ke Pengelola domain saya pak ? Jika di MD saya ada 3 domain apakah bisa memakai 1 DKIM key ini ? atau setiap domain harus pakai DKIM sendiri2 ? Rgds, -- --[mdaemon-l]-- Milis ini untuk Diskusi antar pengguna MDaemon Mail Server di Indonesia Netiket: https://wiki.openstack.org/wiki/MailingListEtiquette Arsip: http://mdaemon-l.dutaint.com Dokumentasi : http://mdaemon.dutaint.co.id Berlangganan: Kirim mail ke mdaemon-l-subscr...@dutaint.com Henti Langgan: Kirim mail ke mdaemon-l-unsubscr...@dutaint.com Versi terakhir: MDaemon 23.0.1, SecurityGateway 9.0.2
[Mdaemon-L] DKIM Failed
Pak saya coba mengaktifkan DKIM Signed di MD dengan memakai key default dari MD, Tapi hasil dari receiver server selalu Fial utk DKIM checknya. Ada salah setting dimana ya pak ? Berikut ini contoh log dari receivernya : ini dari Log DKIM MD : Thu 2023-04-27 08:13:47.515: 07: Performing DKIM signing (thread-ID: 17188) Thu 2023-04-27 08:13:47.515: 07: * File: e:\mdaemon\queues\remote\md350144383.msg Thu 2023-04-27 08:13:47.515: 07: * Work file: E:\MDaemon\CFilter\WORK\793329660\pd186669243.tmp Thu 2023-04-27 08:13:47.530: 07: * Message-ID: <0ce1b52f-16ee-539d-faf1-6f107a4c3...@pttdp.com> Thu 2023-04-27 08:13:47.530: 07: * From: i...@pttdp.com Thu 2023-04-27 08:13:47.530: 07: * Selector: MDaemon Thu 2023-04-27 08:13:47.530: 07: * Domain (d=): pttdp.com Thu 2023-04-27 08:13:47.530: 07: * Result: 0 (signed ok) ini dari Log server tujuan : Authentication-Results: spf=pass (sender IP is 117.102.88.187) smtp.mailfrom=pttdp.com; dkim=fail (no key for signature) header.d=pttdp.com;dmarc=pass action=none header.from=pttdp.com; Received-SPF: Pass (protection.outlook.com: domain of pttdp.com designates 117.102.88.187 as permitted sender) receiver=protection.outlook.com; client-ip=117.102.88.187; helo=webmail.pttdp.com; pr=C Received: from webmail.pttdp.com (117.102.88.187) by TYZAPC01FT016.mail.protection.outlook.com (10.118.152.163) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384) id 15.20.6340.22 via Frontend Transport; Thu, 27 Apr 2023 01:13:56 + DKIM-Signature: v=1; a=rsa-sha256; c=simple; d=pttdp.com; s=MDaemon; t=1682558027; x=1683162827; i=i...@pttdp.com; q=dns/txt; h=Message-ID:Date:MIME-Version:User-Agent: Content-Language:To:From:Subject:Content-Type: Content-Transfer-Encoding; bh=ZIwCX3Osxv4h/cv3+UTJ0SJuTqcR4eI/A1 Vfv2Ju5fc=; b=EzvIpo3ymmWl0Gh6ewryA1uWFqHWtjHUwqOPTLWkaRxJezPkYg rjRXhgSIPmNpqGfmQZOfs7ftrxHAjaYiEh7/cpTHe8S9o0Y+zN1uwgutekvqVWjV CJM2gL4xzFHrtCa8w4PoZjCiXdCJs6Ryw3oVA4VCfRAenABLVYPk0Uwt+hEX2gkK oZ02uDdSzdNwhD5LDodXCCUE0Uvno8R5uz/91A3c5dt46TCfLDRXHpaMkC2vLpR8 NLbegQea/eESGKmEstwDEeCcbsNBkark1hVqwCWjVD6WDfZCZ4mW3dk1+ZT85hf6 lWzzRF3OsM7DI8yG2yFb6HppmvENsUFBZrLw== -- --[mdaemon-l]-- Milis ini untuk Diskusi antar pengguna MDaemon Mail Server di Indonesia Netiket: https://wiki.openstack.org/wiki/MailingListEtiquette Arsip: http://mdaemon-l.dutaint.com Dokumentasi : http://mdaemon.dutaint.co.id Berlangganan: Kirim mail ke mdaemon-l-subscr...@dutaint.com Henti Langgan: Kirim mail ke mdaemon-l-unsubscr...@dutaint.com Versi terakhir: MDaemon 23.0.1, SecurityGateway 9.0.2
[Mdaemon-L] MDaemon dan Security Gateway Security Path Update MD041823
On 19/04/2023 13:56, Ivan Leonardo wrote: Pak utk Ikarusnya data signaturenya kenapa masih pakai yg 2012 ya ? Rgds, ternyata kalau open dari Webadmin sudah update Pak -- --[mdaemon-l]-- Milis ini untuk Diskusi antar pengguna MDaemon Mail Server di Indonesia Netiket: https://wiki.openstack.org/wiki/MailingListEtiquette Arsip: http://mdaemon-l.dutaint.com Dokumentasi : http://mdaemon.dutaint.co.id Berlangganan: Kirim mail ke mdaemon-l-subscr...@dutaint.com Henti Langgan: Kirim mail ke mdaemon-l-unsubscr...@dutaint.com Versi terakhir: MDaemon 23.0.1, SecurityGateway 9.0.2
[Mdaemon-L] MDaemon dan Security Gateway Security Path Update MD041823
On 18/04/2023 20:48, Syafril Hermansyah via Mdaemon-L wrote: Hallo, MDaemon developer publish Critical Update MD041823 sore ini. https://mdaemon.com/pages/downloads-critical-updates Update ini mencakup 2 hal utama: - Menghapus Cyren AV dan Cyren Outbreak Protection menggantinya dengan Ikarus AV. - bug fixed "Vulnerabilities for Denial of Service (DOS) and Cross-Site Request Forgery (CSRF)". Bagi yang run Windows Firewall dan Windows Antivirus di server MDaemon, maka perlu memasukkan task/service \\mdaemon\securityplus\Ikarus\scan.server\bin\scanserver_w64.exe dan \\mdaemon\securityplus\Ikarus\scan.server\bin\scupdate_w64.exe kedalam "allow apps or features through windows firewall" di Windows Defender Firewall dan "Process exclusions" di Windows Defender Antivirus. https://www.mail-archive.com/mdaemon-l@dutaint.com/msg47689.html Rekomendasi AV scanning yang diaktifkan: keduanya. http://mdaemon.dutaint.co.id/mdaemon/23.0.1/antivirus.html Virus Scanning Engines [x] Use the ClamAV engine to scan messages [x] Use the IKARUS Anti-Virus engine to scan messages Pak utk Ikarusnya data signaturenya kenapa masih pakai yg 2012 ya ? Rgds, -- --[mdaemon-l]-- Milis ini untuk Diskusi antar pengguna MDaemon Mail Server di Indonesia Netiket: https://wiki.openstack.org/wiki/MailingListEtiquette Arsip: http://mdaemon-l.dutaint.com Dokumentasi : http://mdaemon.dutaint.co.id Berlangganan: Kirim mail ke mdaemon-l-subscr...@dutaint.com Henti Langgan: Kirim mail ke mdaemon-l-unsubscr...@dutaint.com Versi terakhir: MDaemon 23.0.1, SecurityGateway 9.0.2
[Mdaemon-L] Cyren bermasalah ?
On 18/04/2023 20:06, Syafril Hermansyah via Mdaemon-L wrote: MDaemon v23.0.1 dengan AV baru rencananya publish tanggal 18 April 2023 waktu Texas, Amerika atau 19 April 2023 Waktu Indonesia Barat. Untuk MDaemon versi sebelumnya akan diberikan Critical Updates version, yang juga akan mengubah Cyren AV dengan AV baru. Pak AV barunya pakai dari brand apa ya ? -- --[mdaemon-l]-- Milis ini untuk Diskusi antar pengguna MDaemon Mail Server di Indonesia Netiket: https://wiki.openstack.org/wiki/MailingListEtiquette Arsip: http://mdaemon-l.dutaint.com Dokumentasi : http://mdaemon.dutaint.co.id Berlangganan: Kirim mail ke mdaemon-l-subscr...@dutaint.com Henti Langgan: Kirim mail ke mdaemon-l-unsubscr...@dutaint.com Versi terakhir: MDaemon 23.0.1, SecurityGateway 9.0.2
[Mdaemon-L] Banyak terima email Delivery status
On 14/04/2023 11:52, Syafril Hermansyah via Mdaemon-L wrote: Kalau sudh tidak ada error di report by receiver maka sudah siap pakai policy=reject. Misalnya kalau masih ada error di report by receiver, tapi saya set polict "reject" efeknya apa ya pak ke pengiriman dan penerimaan email kami ? Rgds, -- --[mdaemon-l]-- Milis ini untuk Diskusi antar pengguna MDaemon Mail Server di Indonesia Netiket: https://wiki.openstack.org/wiki/MailingListEtiquette Arsip: http://mdaemon-l.dutaint.com Dokumentasi : http://mdaemon.dutaint.co.id Berlangganan: Kirim mail ke mdaemon-l-subscr...@dutaint.com Henti Langgan: Kirim mail ke mdaemon-l-unsubscr...@dutaint.com Versi terakhir: MDaemon 23.0.0, SecurityGateway 9.0.1
[Mdaemon-L] Inline AV Scan Failed
On 14/04/2023 13:08, Syafril Hermansyah via Mdaemon-L wrote: Perlihatkan transkrip logn lengkap 1 session untuk session-id [02256728]. ini Pak : Thu 2023-04-13 08:19:03.655: [02256728] Session 02256728; child 0007 Thu 2023-04-13 08:19:03.655: [02256728] Accepting SMTP connection from 154.52.16.131:52656 to 192.168.10.2:25 Thu 2023-04-13 08:19:03.659: [02256728] --> 220 webmail.pttdp.com ESMTP Thu, 13 Apr 2023 08:19:03 +0700 Thu 2023-04-13 08:19:03.673: [02256728] <-- EHLO pttdp-com-1.fortimailcloud.com Thu 2023-04-13 08:19:03.674: [02256728] --> 250-webmail.pttdp.com Hello pttdp-com-1.fortimailcloud.com [154.52.16.131], pleased to meet you Thu 2023-04-13 08:19:03.674: [02256728] --> 250-VRFY Thu 2023-04-13 08:19:03.674: [02256728] --> 250-EXPN Thu 2023-04-13 08:19:03.674: [02256728] --> 250-ETRN Thu 2023-04-13 08:19:03.674: [02256728] --> 250-AUTH LOGIN PLAIN Thu 2023-04-13 08:19:03.674: [02256728] --> 250-8BITMIME Thu 2023-04-13 08:19:03.674: [02256728] --> 250-ENHANCEDSTATUSCODES Thu 2023-04-13 08:19:03.674: [02256728] --> 250-PIPELINING Thu 2023-04-13 08:19:03.674: [02256728] --> 250-CHUNKING Thu 2023-04-13 08:19:03.674: [02256728] --> 250-STARTTLS Thu 2023-04-13 08:19:03.674: [02256728] --> 250 SIZE Thu 2023-04-13 08:19:03.689: [02256728] <-- STARTTLS Thu 2023-04-13 08:19:03.689: [02256728] --> 220 2.7.0 Ready to start TLS Thu 2023-04-13 08:19:03.742: [02256728] SSL negotiation successful (TLS 1.2, TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384_P256) Thu 2023-04-13 08:19:03.755: [02256728] <-- EHLO pttdp-com-1.fortimailcloud.com Thu 2023-04-13 08:19:03.756: [02256728] --> 250-webmail.pttdp.com Hello pttdp-com-1.fortimailcloud.com [154.52.16.131], pleased to meet you Thu 2023-04-13 08:19:03.756: [02256728] --> 250-VRFY Thu 2023-04-13 08:19:03.756: [02256728] --> 250-EXPN Thu 2023-04-13 08:19:03.756: [02256728] --> 250-ETRN Thu 2023-04-13 08:19:03.756: [02256728] --> 250-AUTH LOGIN PLAIN Thu 2023-04-13 08:19:03.756: [02256728] --> 250-8BITMIME Thu 2023-04-13 08:19:03.756: [02256728] --> 250-ENHANCEDSTATUSCODES Thu 2023-04-13 08:19:03.756: [02256728] --> 250-PIPELINING Thu 2023-04-13 08:19:03.756: [02256728] --> 250-CHUNKING Thu 2023-04-13 08:19:03.756: [02256728] --> 250-REQUIRETLS Thu 2023-04-13 08:19:03.756: [02256728] --> 250 SIZE Thu 2023-04-13 08:19:03.770: [02256728] <-- MAIL From: SIZE=782998 Thu 2023-04-13 08:19:03.774: [02256728] --> 250 2.1.0 Sender OK Thu 2023-04-13 08:19:03.788: [02256728] <-- RCPT To: Thu 2023-04-13 08:19:03.793: [02256728] --> 250 2.1.5 Recipient OK Thu 2023-04-13 08:19:03.793: [02256728] <-- DATA Thu 2023-04-13 08:19:03.806: [02256728] --> 354 Enter mail, end with . Thu 2023-04-13 08:19:03.933: [02256728] Message size: 793172 bytes Thu 2023-04-13 08:19:03.949: [02256728] Passing message through AntiVirus (Size: 793172)... Thu 2023-04-13 08:19:03.949: [02256728] * Error or timeout during inline virus scan Thu 2023-04-13 08:19:03.950: [02256728] Outbreak Protection: Processing skipped. Trusted IP found. Thu 2023-04-13 08:19:03.992: [02256728] Message creation successful: e:\mdaemon\queues\inbound\md5248812.msg Thu 2023-04-13 08:19:03.992: [02256728] --> 250 2.6.0 Ok, message saved > Thu 2023-04-13 08:19:04.004: [02256728] <-- QUIT Thu 2023-04-13 08:19:04.004: [02256728] --> 221 2.0.0 See ya in cyberspace Thu 2023-04-13 08:19:04.005: [02256728] SMTP session successful (Bytes in/out: 810941/5034) -- --[mdaemon-l]-- Milis ini untuk Diskusi antar pengguna MDaemon Mail Server di Indonesia Netiket: https://wiki.openstack.org/wiki/MailingListEtiquette Arsip: http://mdaemon-l.dutaint.com Dokumentasi : http://mdaemon.dutaint.co.id Berlangganan: Kirim mail ke mdaemon-l-subscr...@dutaint.com Henti Langgan: Kirim mail ke mdaemon-l-unsubscr...@dutaint.com Versi terakhir: MDaemon 23.0.0, SecurityGateway 9.0.1
[Mdaemon-L] Banyak terima email Delivery status
On 13/04/2023 13:09, Syafril Hermansyah via Mdaemon-L wrote: dutaservisindo.co.id masih transisi policynya, kalau dutaint.com sudah final. $ host -t txt _dmarc.dutaint.com _dmarc.dutaint.com descriptive text "v=DMARC1; p=reject; sp=none; aspf=s; rua=mailto:dmarc-repo...@dutaint.com"; dutaint.co.id menuju final $ host -t txt _dmarc.dutaint.co.id _dmarc.dutaint.co.id descriptive text "v=DMARC1; p=quarantine; aspf=s; sp=none; rua=mailto:dmarc-repo...@dutaint.co.id; ruf=mailto:dmarc-repo...@dutaint.co.id; pct=100; fo=1;" Pak contoh ini ada yg policy Reject dan Quarantine, apa yg menentukan sudah siap pakai reject dan quarantine ? apakah ada syarat khusus ? -- --[mdaemon-l]-- Milis ini untuk Diskusi antar pengguna MDaemon Mail Server di Indonesia Netiket: https://wiki.openstack.org/wiki/MailingListEtiquette Arsip: http://mdaemon-l.dutaint.com Dokumentasi : http://mdaemon.dutaint.co.id Berlangganan: Kirim mail ke mdaemon-l-subscr...@dutaint.com Henti Langgan: Kirim mail ke mdaemon-l-unsubscr...@dutaint.com Versi terakhir: MDaemon 23.0.0, SecurityGateway 9.0.1
[Mdaemon-L] Banyak terima email Delivery status
On 13/04/2023 12:23, Syafril Hermansyah via Mdaemon-L wrote: Mail domain @pttdp.com digunakan oleh orang lain yang tidak berhak karena protocol antispoofing DMARC policy nya memang membolehkan (dipalsu). $ host -t txt _dmarc.pttdp.com _DMARC.pttdp.com descriptive text "v=DMARC1; p=none; pct=100; rua=mailto:postmas...@pttdp.com"; Pak setting DMARC yg benar utk antispoofing ini bagaimana Pak ? Saya cek DMARC DutaServisindo mirip2 pak sama saya punya, mohon petunjuknya v=DMARC1; p=none; sp=none; rua=mailto:dmarc-repo...@dutaservisindo.co.id v=DMARC1; p=none; pct=100; rua=mailto:postmas...@pttdp.com -- --[mdaemon-l]-- Milis ini untuk Diskusi antar pengguna MDaemon Mail Server di Indonesia Netiket: https://wiki.openstack.org/wiki/MailingListEtiquette Arsip: http://mdaemon-l.dutaint.com Dokumentasi : http://mdaemon.dutaint.co.id Berlangganan: Kirim mail ke mdaemon-l-subscr...@dutaint.com Henti Langgan: Kirim mail ke mdaemon-l-unsubscr...@dutaint.com Versi terakhir: MDaemon 23.0.0, SecurityGateway 9.0.1
[Mdaemon-L] Inline AV Scan Failed
salah satu Contohnya : di Log Message saved dan smtp session successful tapi emailnya hilang tidak ada di recipient / archieve server, kacau deh gara2 cyren error Thu 2023-04-13 08:19:03.770: 02: [02256728] <-- MAIL From: SIZE=782998 Thu 2023-04-13 08:19:03.774: 03: [02256728] --> 250 2.1.0 Sender OK Thu 2023-04-13 08:19:03.788: 02: [02256728] <-- RCPT To: Thu 2023-04-13 08:19:03.793: 03: [02256728] --> 250 2.1.5 Recipient OK Thu 2023-04-13 08:19:03.793: 02: [02256728] <-- DATA Thu 2023-04-13 08:19:03.806: 03: [02256728] --> 354 Enter mail, end with . Thu 2023-04-13 08:19:03.933: 01: [02256728] Message size: 793172 bytes Thu 2023-04-13 08:19:03.949: 06: [02256728] Passing message through AntiVirus (Size: 793172)... Thu 2023-04-13 08:19:03.949: 04: [02256728] * Error or timeout during inline virus scan Thu 2023-04-13 08:19:03.950: 11: [02256728] Outbreak Protection: Processing skipped. Trusted IP found. Thu 2023-04-13 08:19:03.992: 01: [02256728] Message creation successful: e:\mdaemon\queues\inbound\md5248812.msg Thu 2023-04-13 08:19:03.992: 03: [02256728] --> 250 2.6.0 Ok, message saved > Thu 2023-04-13 08:19:04.004: 02: [02256728] <-- QUIT Thu 2023-04-13 08:19:04.004: 03: [02256728] --> 221 2.0.0 See ya in cyberspace Thu 2023-04-13 08:19:04.005: 01: [02256728] SMTP session successful (Bytes in/out: 810941/5034) On 13/04/2023 11:09, Ivan Leonardo wrote: setelah disable cyren skrg normal kembali, TAPI received email yg tadi saat cyren error jadi hilang ya tidak gantung di Queue, GAWATT nih -- --[mdaemon-l]-- Milis ini untuk Diskusi antar pengguna MDaemon Mail Server di Indonesia Netiket: https://wiki.openstack.org/wiki/MailingListEtiquette Arsip: http://mdaemon-l.dutaint.com Dokumentasi : http://mdaemon.dutaint.co.id Berlangganan: Kirim mail ke mdaemon-l-subscr...@dutaint.com Henti Langgan: Kirim mail ke mdaemon-l-unsubscr...@dutaint.com Versi terakhir: MDaemon 23.0.0, SecurityGateway 9.0.1
[Mdaemon-L] Inline AV Scan Failed
setelah disable cyren skrg normal kembali, TAPI received email yg tadi saat cyren error jadi hilang ya tidak gantung di Queue, GAWATT nih On 13/04/2023 10:24, Syafril Hermansyah via Mdaemon-L wrote: Kelihatannya ada masalah di antivirus. AV scanning pakai Cyren? Diganti saja AV nya pakai ClamAV (only) http://mdaemon.dutaint.co.id/mdaemon/23.0/antivirus.html Virus Scanning Engines [x] Use the ClamAV engine to scan messages [ ] Use the Cyren Anti-Virus engine to scan messages -- --[mdaemon-l]-- Milis ini untuk Diskusi antar pengguna MDaemon Mail Server di Indonesia Netiket: https://wiki.openstack.org/wiki/MailingListEtiquette Arsip: http://mdaemon-l.dutaint.com Dokumentasi : http://mdaemon.dutaint.co.id Berlangganan: Kirim mail ke mdaemon-l-subscr...@dutaint.com Henti Langgan: Kirim mail ke mdaemon-l-unsubscr...@dutaint.com Versi terakhir: MDaemon 23.0.0, SecurityGateway 9.0.1
[Mdaemon-L] Inline AV Scan Failed
Pak, internal user saya kirim email ke sesama internal dan ada error virus scan. Tapi kenapa sender tidak mendapat notification email ya ? Apakah ada problem dengan securityplusnya ? Thu 2023-04-13 08:49:56.336: [02257248] Authenticating nansie... Thu 2023-04-13 08:49:56.534: [02257248] Authenticated as nan...@pttdp.com Thu 2023-04-13 08:49:56.534: [02257248] --> 235 2.7.0 Authentication successful Thu 2023-04-13 08:49:56.543: [02257248] <-- MAIL FROM: BODY=8BITMIME SIZE=1072912 Thu 2023-04-13 08:49:56.544: [02257248] --> 250 2.1.0 Sender OK Thu 2023-04-13 08:49:56.545: [02257248] <-- RCPT TO: Thu 2023-04-13 08:49:56.554: [02257248] --> 250 2.1.5 Recipient OK Thu 2023-04-13 08:49:56.562: [02257248] <-- RCPT TO: Thu 2023-04-13 08:49:56.568: [02257248] --> 250 2.1.5 Recipient OK Thu 2023-04-13 08:49:56.571: [02257248] <-- DATA Thu 2023-04-13 08:49:56.584: [02257248] --> 354 Enter mail, end with . Thu 2023-04-13 08:49:56.772: [02257248] Message size: 1072912 bytes Thu 2023-04-13 08:49:56.789: [02257248] Passing message through AntiVirus (Size: 1072912)... Thu 2023-04-13 08:59:56.816: [02257248] * Error or timeout during inline virus scan Thu 2023-04-13 08:59:56.823: [02257248] --> 451 4.3.0 Please try later Thu 2023-04-13 09:04:01.168: [02257248] * Socket error 590615 - The sender has finished using the connection and has initiated a shutdown. Thu 2023-04-13 09:04:01.168: [02257248] SMTP session terminated (Bytes in/out: 1077427/5226) -- --[mdaemon-l]-- Milis ini untuk Diskusi antar pengguna MDaemon Mail Server di Indonesia Netiket: https://wiki.openstack.org/wiki/MailingListEtiquette Arsip: http://mdaemon-l.dutaint.com Dokumentasi : http://mdaemon.dutaint.co.id Berlangganan: Kirim mail ke mdaemon-l-subscr...@dutaint.com Henti Langgan: Kirim mail ke mdaemon-l-unsubscr...@dutaint.com Versi terakhir: MDaemon 23.0.0, SecurityGateway 9.0.1
[Mdaemon-L] Banyak terima email Delivery status
Pak ini saya kirimkan contoh Full Source Header dari contoh email yg beda ya : user Yanuar tidak pernah kirim email ke domain emirates.net.ae, sy sdh cek di SMTP out tidak ada yg ke emirates.net.ae X-MDAV-Result: clean X-MDAV-Processed: webmail.pttdp.com, Wed, 12 Apr 2023 02:13:11 +0700 Return-path: <> Authentication-Results: webmail.pttdp.com; iprev=pass policy.iprev=154.52.16.131 (MAIL ) Received: from pttdp-com-1.fortimailcloud.com [(154.52.16.131)] by webmail.pttdp.com (117.102.88.187) with ESMTPS id md5246569.msg; Wed, 12 Apr 2023 02:13:09 +0700 X-Spam-Processed: webmail.pttdp.com, Wed, 12 Apr 2023 02:13:09 +0700 (not processed: message from trusted or authenticated source) X-MDRemoteIP: 154.52.16.131 X-MDHelo: pttdp-com-1.fortimailcloud.com X-MDArrival-Date: Wed, 12 Apr 2023 02:13:09 +0700 X-Rcpt-To:yan...@pttdp.com X-MDRcpt-To:yan...@pttdp.com X-Return-Path: X-Envelope-From: X-MDaemon-Deliver-To:yan...@pttdp.com Received: from dbbmail1.emirates.net.ae (dbbmail1.emirates.net.ae [5.195.192.46]) by pttdp-com-1.fortimailcloud.com with ESMTP id 33BJE1tX013229-33BJE1tY013229 (version=TLSv1.3 cipher=TLS_AES_256_GCM_SHA384 bits=256 verify=OK) for; Wed, 12 Apr 2023 02:14:01 +0700 MIME-version: 1.0 Content-type: multipart/report; boundary="Boundary_(ID_fDRY0jWLiJN3SGdj55X+eg)"; report-type=delivery-status Received: from auhmc4.emirates.net.ae ([194.170.0.105]) by dbbmail1.emirates.net.ae (Oracle Communications Messaging Server 8.1.0.0.20190227 64bit (built Feb 27 2019)) with ESMTP id<0rsy020lftfch...@dbbmail1.emirates.net.ae> for yan...@pttdp.com; Tue, 11 Apr 2023 23:14:00 +0400 (+04) Received: from process-daemon.as6.emirates.net.ae by as6.emirates.net.ae (I&ES Mail Server 4.2) id<0rsy00m00sor4...@as6.emirates.net.ae> for yan...@pttdp.com; Tue, 11 Apr 2023 23:14:00 +0400 (GST) Received: from as6.emirates.net.ae (I&ES Mail Server 4.2) id<0rsy0075otfck...@as6.emirates.net.ae>; Tue, 11 Apr 2023 23:14:00 +0400 (GST) Date: Tue, 11 Apr 2023 23:14:00 +0400 (GST) From: "Internet Mail Delivery (postmas...@as6.emirates.net.ae)" Subject: Delivery Notification: Delivery has failed In-reply-to:<202311042012250859ee0e13-42d814d...@pttdp.com> To:yan...@pttdp.com Message-id:<0rsy0075qtfck...@as6.emirates.net.ae> References:<202311042012250859ee0e13-42d814d...@pttdp.com> X-FEAS-Client-IP: 5.195.192.46 X-FE-Last-Public-Client-IP: 5.195.192.46 X-FE-Envelope-From: X-FE-Spam-Sample-Account:adm...@pttdp.com X-FE-Policy-ID: 0:1:1:SYSTEM X-MDArchive-Copy: 1 --Boundary_(ID_fDRY0jWLiJN3SGdj55X+eg) Content-type: text/plain; CHARSET=US-ASCII Content-language: en-US Content-transfer-encoding: 7BIT CAUTION: This email originated from outside of the organization. Do not click links or open attachments unless you recognize the sender and know the content is safe. This report relates to a message you sent with the following header fields: Message-id:<202311042012250859ee0e13-42d814d...@pttdp.com> Date: Tue, 11 Apr 2023 20:12:25 +0200 From: Support - EIM To:ster...@emirates.net.ae Subject: Eim User Account Password Service. Tuesday, April 11, 2023 Your message cannot be delivered to the following recipients: Recipient address:ster...@eim.ae Reason: Over quota --Boundary_(ID_fDRY0jWLiJN3SGdj55X+eg) Content-type: message/delivery-status Reporting-MTA: dns;auhmc4.emirates.net.ae (ims-ms-daemon) Arrival-date: Tue, 11 Apr 2023 23:14:00 +0400 (GST) Original-recipient:rfc822;ster...@eim.ae Final-recipient:rfc822;ster...@eim.ae Action: failed Status: 4.2.2 (Over quota) --Boundary_(ID_fDRY0jWLiJN3SGdj55X+eg) Content-type: TEXT/RFC822-HEADERS Return-path: Received: from ims-ms-daemon.as6.emirates.net.ae by as6.emirates.net.ae (I&ES Mail Server 4.2) id<0rsy0075otfck...@as6.emirates.net.ae>; Tue, 11 Apr 2023 23:14:00 +0400 (GST) Received: from dfimail1.emirates.net.ae (fmhimail01.emirates.net.ae) by as6.emirates.net.ae (I&ES Mail Server 4.2) with ESMTP id<0rsy00cwttfc2...@as6.emirates.net.ae> forster...@eim.ae; Tue, 11 Apr 2023 23:14:00 +0400 (GST) Received: from mail0.awechtlaw.cloudns.ph (mail0.pls.cloudns.ph [8.28.175.69]) by dfimail1.emirates.net.ae with ESMTP id 33BJDtxM032454-33BJDtxQ032454 (version=TLSv1.3 cipher=TLS_AES_256_GCM_SHA384 bits=256 verify=NO) for; Tue, 11 Apr 2023 23:13:59 +0400 Date: Tue, 11 Apr 2023 20:12:25 +0200 From: Support - EIM Subject: Eim User Account Password Service. Tuesday, April 11, 2023 To:ster...@emirates.net.ae Message-id:<202311042012250859ee0e13-42d814d...@pttdp.com> MIME-version: 1.0 Content-type: TEXT/PLAIN Content-transfer-encoding: QUOTED-PRINTABLE X-FEAS-SPF-Spam: spf-result=fail, ip=8.28.175.69, helo=mail0.awechtlaw.cloudns.ph,mailFrom=yan...@pttdp.com X-FEAS-HASH: 200e7f9896809535253cbdf64a6a56a5:1:12011603 X-BM-Spam-test-Result: TRUE X-FE-Policy-ID: 5:2:1:SYSTEM Authentication-results: dfimail1.emirates.net.ae; spf=fail (emirates.net.ae: 8.28.175.69 is not permitted
[Mdaemon-L] Banyak terima email Delivery status
Morning Pak, ada 1 user saya yg banyak terima email delivery status, padahal sy cek di SMTP Out, user tsb tidak melakukan sending mail. Kenapa bisa spt ini ya Pak dan bagaimana blockingnya ini contoh email masuknya : Wed 2023-04-12 02:51:51.121: LOCAL message: pd5397204.msg Wed 2023-04-12 02:51:51.121: * From: "Mail Delivery Subsystem (mailer-dae...@googlemail.com)" Wed 2023-04-12 02:51:51.121: * To: yan...@pttdp.com Wed 2023-04-12 02:51:51.121: * Subject: Delivery Status Notification (Failure) Wed 2023-04-12 02:51:51.121: * Message-ID: <6435ba84.050a0220.274d5.4553@mx.google.com> Wed 2023-04-12 02:51:51.121: * Size: 12803; Wed 2023-04-12 02:51:51.121: -- Wed 2023-04-12 02:51:51.199: LOCAL message: pd5397205.msg Wed 2023-04-12 02:51:51.199: * From: "Mail Delivery Subsystem (mailer-dae...@googlemail.com)" Wed 2023-04-12 02:51:51.199: * To: yan...@pttdp.com Wed 2023-04-12 02:51:51.199: * Subject: Delivery Status Notification (Failure) Wed 2023-04-12 02:51:51.199: * Message-ID: <6435ba84.050a0220.cd63a.0957@mx.google.com> Wed 2023-04-12 02:51:51.199: * Size: 13072; Wed 2023-04-12 02:51:51.199: -- Wed 2023-04-12 02:51:51.271: LOCAL message: pd5397206.msg Wed 2023-04-12 02:51:51.271: * From: "Mail Delivery Subsystem (mailer-dae...@googlemail.com)" Wed 2023-04-12 02:51:51.271: * To: yan...@pttdp.com Wed 2023-04-12 02:51:51.271: * Subject: Delivery Status Notification (Failure) Wed 2023-04-12 02:51:51.271: * Message-ID: <6435ba86.ca0a0220.40aab.3810@mx.google.com> Wed 2023-04-12 02:51:51.271: * Size: 7785; Wed 2023-04-12 02:51:51.271: -- Rgds, -- --[mdaemon-l]-- Milis ini untuk Diskusi antar pengguna MDaemon Mail Server di Indonesia Netiket: https://wiki.openstack.org/wiki/MailingListEtiquette Arsip: http://mdaemon-l.dutaint.com Dokumentasi : http://mdaemon.dutaint.co.id Berlangganan: Kirim mail ke mdaemon-l-subscr...@dutaint.com Henti Langgan: Kirim mail ke mdaemon-l-unsubscr...@dutaint.com Versi terakhir: MDaemon 23.0.0, SecurityGateway 9.0.1
[Mdaemon-L] Ver 23.0.0 Webadmin bugs (location screening)
Pak Syafril, Saat setting location screening melalui webadmin, misal open/tidak centang thailand lalu saya click save. Saya coba logout webadmin dan login lagi dan cek ke location screening utk thailand ternyata kembali ter-centang lagi, padahal tadi sudah di remove centang dan save. Kalau saya lakukan langsung di MD Console di server, tidak ada masalah Rgds, -- --[mdaemon-l]-- Milis ini untuk Diskusi antar pengguna MDaemon Mail Server di Indonesia Netiket: https://wiki.openstack.org/wiki/MailingListEtiquette Arsip: http://mdaemon-l.dutaint.com Dokumentasi : http://mdaemon.dutaint.co.id Berlangganan: Kirim mail ke mdaemon-l-subscr...@dutaint.com Henti Langgan: Kirim mail ke mdaemon-l-unsubscr...@dutaint.com Versi terakhir: MDaemon 23.0.0, SecurityGateway 9.0.1
[Mdaemon-L] Error Webadmin New Account
On 13/03/2023 15:56, Syafril Hermansyah via Mdaemon-L wrote: Di server saya normal saja. Barusan test buat akun baru normal, ganti domain juga normal. Apakah kedua task itu dilakukan pada saat bersamaan? Tidak bersamaan pak, di MD saya ada 3 domain. saat masuk account manager saya lsg ganti field mainbox domain lsg muncul loading -- --[mdaemon-l]-- Milis ini untuk Diskusi antar pengguna MDaemon Mail Server di Indonesia Netiket: https://wiki.openstack.org/wiki/MailingListEtiquette Arsip: http://mdaemon-l.dutaint.com Dokumentasi : http://mdaemon.dutaint.co.id Berlangganan: Kirim mail ke mdaemon-l-subscr...@dutaint.com Henti Langgan: Kirim mail ke mdaemon-l-unsubscr...@dutaint.com Versi terakhir: MDaemon 23.0.0, SecurityGateway 9.0.1
[Mdaemon-L] Error Webadmin New Account
Pak saya pakai MD Ver 23.0.0 , saat mau add new account dan ganti domain muncul tulisan loading. Tapi kolom tetap bisa diisi, setelah Save & close, tulisan loading hilang. Sptnya ada sedikit bugs -- --[mdaemon-l]-- Milis ini untuk Diskusi antar pengguna MDaemon Mail Server di Indonesia Netiket: https://wiki.openstack.org/wiki/MailingListEtiquette Arsip: http://mdaemon-l.dutaint.com Dokumentasi : http://mdaemon.dutaint.co.id Berlangganan: Kirim mail ke mdaemon-l-subscr...@dutaint.com Henti Langgan: Kirim mail ke mdaemon-l-unsubscr...@dutaint.com Versi terakhir: MDaemon 23.0.0, SecurityGateway 9.0.1
[Mdaemon-L] Installer MD V23
Pak saya download installer MD V23 detected as virus oleh kaspersky apakah normal ? -- --[mdaemon-l]-- Milis ini untuk Diskusi antar pengguna MDaemon Mail Server di Indonesia Netiket: https://wiki.openstack.org/wiki/MailingListEtiquette Arsip: http://mdaemon-l.dutaint.com Dokumentasi : http://mdaemon.dutaint.co.id Berlangganan: Kirim mail ke mdaemon-l-subscr...@dutaint.com Henti Langgan: Kirim mail ke mdaemon-l-unsubscr...@dutaint.com Versi terakhir: MDaemon 23.0.0, SecurityGateway 9.0.1
[Mdaemon-L] Authentication does not match address given in MAIL command
Pak saya sedang test send notif email dari device firewall tapi gagal, ini salah dimana ya ? Thu 2023-01-05 14:36:49.218: [01038029] Authenticating adm...@pttdp.com... Thu 2023-01-05 14:36:49.395: [01038029] Authenticated as adm...@pttdp.com Thu 2023-01-05 14:36:49.395: [01038029] --> 235 2.7.0 Authentication successful Thu 2023-01-05 14:36:49.401: [01038029] <-- MAIL FROM: Thu 2023-01-05 14:36:49.402: [01038029] --> 550 5.7.0 Authentication rejected Thu 2023-01-05 14:36:49.402: [01038029] Authentication does not match address given in MAIL command Thu 2023-01-05 14:36:49.402: [01038029] <-- QUIT Thu 2023-01-05 14:36:49.402: [01038029] --> 221 2.0.0 See ya in cyberspace Thu 2023-01-05 14:36:49.404: [01038029] SMTP session terminated (Bytes in/out: 1428/4807) -- --[mdaemon-l]-- Milis ini untuk Diskusi antar pengguna MDaemon Mail Server di Indonesia Netiket: https://wiki.openstack.org/wiki/MailingListEtiquette Arsip: http://mdaemon-l.dutaint.com Dokumentasi : http://mdaemon.dutaint.co.id Berlangganan: Kirim mail ke mdaemon-l-subscr...@dutaint.com Henti Langgan: Kirim mail ke mdaemon-l-unsubscr...@dutaint.com Versi terakhir: MDaemon 22.0.3, SecurityGateway 8.5.3
[Mdaemon-L] Host Cant be Resolve
On 27/12/2022 11:00, Syafril Hermansyah via Mdaemon-L wrote: pmg.medionindonesia.com adalah identitas host sender server bukan identitas IP sender server [43.249.141.126]. Jadi masukkan di HELOlookupWL.dat. Jadinya rules utk kapan masuk ke ReverseXcpt atau HELOlookupWL gimana ya Pak. saat ini file HELOlookupWL blm ada isinya, hanya default isian saja. Rgds, -- --[mdaemon-l]-- Milis ini untuk Diskusi antar pengguna MDaemon Mail Server di Indonesia Netiket: https://wiki.openstack.org/wiki/MailingListEtiquette Arsip: http://mdaemon-l.dutaint.com Dokumentasi : http://mdaemon.dutaint.co.id Berlangganan: Kirim mail ke mdaemon-l-subscr...@dutaint.com Henti Langgan: Kirim mail ke mdaemon-l-unsubscr...@dutaint.com Versi terakhir: MDaemon 22.0.3, SecurityGateway 8.5.3
[Mdaemon-L] Host Cant be Resolve
Pak saya sudah masukkan ip pmg.medionindonesia.com [43.249.141.126] ke ReverseXcpt.Dat dan masukkan ke host screen all *medionindonesia.com accept all *pmg.medionindonesia.com accept tapi masih gagal juga kenapa ya ? Rgds, Tue 2022-12-27 09:53:57.364: [00912705] Session 00912705; child 0001 Tue 2022-12-27 09:53:57.364: [00912705] Accepting SMTP connection from 43.249.141.126:57574 to 192.168.10.2:25 Tue 2022-12-27 09:53:57.364: [00912705] Location Screen says connection is from Indonesia, Asia Tue 2022-12-27 09:53:57.381: [00912705] --> 220 webmail.pttdp.com ESMTP Tue, 27 Dec 2022 09:53:57 +0700 Tue 2022-12-27 09:53:57.389: [00912705] <-- EHLO pmg.medionindonesia.com Tue 2022-12-27 09:53:57.397: [00912705] --> 250-webmail.pttdp.com Hello pmg.medionindonesia.com [43.249.141.126], pleased to meet you Tue 2022-12-27 09:53:57.397: [00912705] --> 250-ETRN Tue 2022-12-27 09:53:57.398: [00912705] --> 250-AUTH LOGIN PLAIN Tue 2022-12-27 09:53:57.398: [00912705] --> 250-8BITMIME Tue 2022-12-27 09:53:57.398: [00912705] --> 250-ENHANCEDSTATUSCODES Tue 2022-12-27 09:53:57.398: [00912705] --> 250-PIPELINING Tue 2022-12-27 09:53:57.398: [00912705] --> 250-CHUNKING Tue 2022-12-27 09:53:57.398: [00912705] --> 250-STARTTLS Tue 2022-12-27 09:53:57.398: [00912705] --> 250 SIZE Tue 2022-12-27 09:53:57.406: [00912705] <-- STARTTLS Tue 2022-12-27 09:53:57.406: [00912705] --> 220 2.7.0 Ready to start TLS Tue 2022-12-27 09:53:57.442: [00912705] SSL negotiation successful (TLS 1.2, TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384_P256) Tue 2022-12-27 09:53:57.461: [00912705] <-- EHLO pmg.medionindonesia.com Tue 2022-12-27 09:53:57.469: [00912705] --> 250-webmail.pttdp.com Hello pmg.medionindonesia.com [43.249.141.126], pleased to meet you Tue 2022-12-27 09:53:57.469: [00912705] --> 250-ETRN Tue 2022-12-27 09:53:57.469: [00912705] --> 250-AUTH LOGIN PLAIN Tue 2022-12-27 09:53:57.469: [00912705] --> 250-8BITMIME Tue 2022-12-27 09:53:57.469: [00912705] --> 250-ENHANCEDSTATUSCODES Tue 2022-12-27 09:53:57.469: [00912705] --> 250-PIPELINING Tue 2022-12-27 09:53:57.469: [00912705] --> 250-CHUNKING Tue 2022-12-27 09:53:57.469: [00912705] --> 250-REQUIRETLS Tue 2022-12-27 09:53:57.469: [00912705] --> 250 SIZE Tue 2022-12-27 09:53:57.478: [00912705] <-- MAIL FROM: SIZE=2453 BODY=8BITMIME Tue 2022-12-27 09:53:57.486: [00912705] Performing IP lookup (pmg.medionindonesia.com) Tue 2022-12-27 09:53:57.859: [00912705] * DNS server reports domain name unknown Tue 2022-12-27 09:53:57.859: [00912705] End IP lookup results Tue 2022-12-27 09:53:57.859: [00912705] --> 501 5.7.0 pmg.medionindonesia.com host can't be resolved Tue 2022-12-27 09:53:57.860: [00912705] SMTP session terminated (Bytes in/out: 1021/4509) Tue 2022-12-27 09:53:57.860: -- -- --[mdaemon-l]-- Milis ini untuk Diskusi antar pengguna MDaemon Mail Server di Indonesia Netiket: https://wiki.openstack.org/wiki/MailingListEtiquette Arsip: http://mdaemon-l.dutaint.com Dokumentasi : http://mdaemon.dutaint.co.id Berlangganan: Kirim mail ke mdaemon-l-subscr...@dutaint.com Henti Langgan: Kirim mail ke mdaemon-l-unsubscr...@dutaint.com Versi terakhir: MDaemon 22.0.3, SecurityGateway 8.5.3
[Mdaemon-L] Cek Real Sender Domain
On 21/12/2022 15:02, Syafril Hermansyah via Mdaemon-L wrote: Mestinya masukkkan sender address kedalam blacklist by sender atau antispam block list by sender bukan pakai hostscreening karena sparkpostmail.com itu adalah List Server provider macam sendgrid.net mailchimp dll. Nah itu dia Pak, selama ini saya tidak tau kapan harus masuk di hostscreen atau blacklist, jadinya selalu saya masukkan ke hostscreen. efeknya apa ya pak kl masuk ke hostscreen ? Rgds -- --[mdaemon-l]-- Milis ini untuk Diskusi antar pengguna MDaemon Mail Server di Indonesia Netiket: https://wiki.openstack.org/wiki/MailingListEtiquette Arsip: http://mdaemon-l.dutaint.com Dokumentasi : http://mdaemon.dutaint.co.id Berlangganan: Kirim mail ke mdaemon-l-subscr...@dutaint.com Henti Langgan: Kirim mail ke mdaemon-l-unsubscr...@dutaint.com Versi terakhir: MDaemon 22.0.3, SecurityGateway 8.5.3
[Mdaemon-L] Cek Real Sender Domain
Pak saya mau masukkan domain sender ini ke hostscreen, tapi terlihat ada
2 domain, jdnya yg mana yg harus saya ambil ?
Rgds,
From - Wed Dec 21 09:50:45 2022
X-Account-Key: account1
X-UIDL: MD500102343:MSG:17833:31003878:4250771046
X-Mozilla-Status: 0001
X-Mozilla-Status2:
X-Mozilla-Keys:
X-MDAV-Result: clean
X-MDAV-Processed: webmail.pttdp.com, Wed, 21 Dec 2022 09:50:28 +0700
Return-path:
Authentication-Results: webmail.pttdp.com;
spf=passsmtp.mailfrom=msprvs1=19354bsSSz9ZP=bounces-325...@bounce.primelubes.in;
dkim=pass (good signature) header.d=bounce.primelubes.in
header.b=Kv1O+y9AXyheader.i=@bounce.primelubes.in;
dmarc=pass header.from=bounce.primelubes.in (p=none sampling=12
pct=100);
iprev=pass policy.iprev=156.70.150.192 (PTR
mta-70-150-192.sparkpostmail.com);
iprev=pass policy.iprev=156.70.150.192 (HELO
mta-70-150-192.sparkpostmail.com);
iprev=fail reason="does not match" policy.iprev=156.70.150.192
(MAILmsprvs1=19354bsSSz9ZP=bounces-325...@bounce.primelubes.in)
Received-SPF: pass (webmail.pttdp.com: domain bounce.primelubes.in
designates 156.70.150.192 as permitted sender)
receiver=webmail.pttdp.com; client-ip=156.70.150.192;
mechanism=exists:%{i}._spf.sparkpostmail.com;
envelope-from="msprvs1=19354bsSSz9ZP=bounces-325...@bounce.primelubes.in";
helo=mta-70-150-192.sparkpostmail.com;
Received: from mta-70-150-192.sparkpostmail.com
(mta-70-150-192.sparkpostmail.com [156.70.150.192])
by webmail.pttdp.com (117.102.88.187) with ESMTPS id
md500182984.msg;
Wed, 21 Dec 2022 09:50:27 +0700
--
--[mdaemon-l]--
Milis ini untuk Diskusi antar pengguna MDaemon Mail Server di Indonesia
Netiket: https://wiki.openstack.org/wiki/MailingListEtiquette
Arsip: http://mdaemon-l.dutaint.com
Dokumentasi : http://mdaemon.dutaint.co.id
Berlangganan: Kirim mail ke mdaemon-l-subscr...@dutaint.com
Henti Langgan: Kirim mail ke mdaemon-l-unsubscr...@dutaint.com
Versi terakhir: MDaemon 22.0.3, SecurityGateway 8.5.3
[Mdaemon-L] SMTP VRFY
On 20/12/2022 13:25, Syafril Hermansyah via Mdaemon-L wrote: Hanya kalau ada yang tanya (query) email address akan di konfirmasi ada/tidaknya. Oh ok, tdk terlalu fatal ya Pak. yg penting Password aman hehe -- --[mdaemon-l]-- Milis ini untuk Diskusi antar pengguna MDaemon Mail Server di Indonesia Netiket: https://wiki.openstack.org/wiki/MailingListEtiquette Arsip: http://mdaemon-l.dutaint.com Dokumentasi : http://mdaemon.dutaint.co.id Berlangganan: Kirim mail ke mdaemon-l-subscr...@dutaint.com Henti Langgan: Kirim mail ke mdaemon-l-unsubscr...@dutaint.com Versi terakhir: MDaemon 22.0.3, SecurityGateway 8.5.3
[Mdaemon-L] SMTP VRFY
On 19/12/2022 18:28, Syafril Hermansyah via Mdaemon-L wrote: Kalau MDaemon di LAN nantinya juga perlu diakses dari luar/internet secara langsung maka Minger lebih safe. hijack risknya itu email address list jadi ketahuan saja atau ada risk lain pak ? -- --[mdaemon-l]-- Milis ini untuk Diskusi antar pengguna MDaemon Mail Server di Indonesia Netiket: https://wiki.openstack.org/wiki/MailingListEtiquette Arsip: http://mdaemon-l.dutaint.com Dokumentasi : http://mdaemon.dutaint.co.id Berlangganan: Kirim mail ke mdaemon-l-subscr...@dutaint.com Henti Langgan: Kirim mail ke mdaemon-l-unsubscr...@dutaint.com Versi terakhir: MDaemon 22.0.3, SecurityGateway 8.5.3
[Mdaemon-L] SMTP VRFY
On 19/12/2022 18:28, Syafril Hermansyah via Mdaemon-L wrote: On 19/12/22 14.05, Ivan Leonardo wrote: Pak di setting VRFY ada tulisan Warning apakah bahaya jika mengaktifkan feature ini ? solusi amannya hanya pakai minger ? Kalau MDaemon di LAN nantinya juga perlu diakses dari luar/internet secara langsung maka Minger lebih safe. Pak utk service VRFY ini ada lognya kah ? supaya bisa cek ada ip mana saja yg melakukan query ke MD RGds, -- --[mdaemon-l]-- Milis ini untuk Diskusi antar pengguna MDaemon Mail Server di Indonesia Netiket: https://wiki.openstack.org/wiki/MailingListEtiquette Arsip: http://mdaemon-l.dutaint.com Dokumentasi : http://mdaemon.dutaint.co.id Berlangganan: Kirim mail ke mdaemon-l-subscr...@dutaint.com Henti Langgan: Kirim mail ke mdaemon-l-unsubscr...@dutaint.com Versi terakhir: MDaemon 22.0.3, SecurityGateway 8.5.3
[Mdaemon-L] SMTP VRFY
Pak di setting VRFY ada tulisan Warning apakah bahaya jika mengaktifkan feature ini ? solusi amannya hanya pakai minger ? Rgds -- --[mdaemon-l]-- Milis ini untuk Diskusi antar pengguna MDaemon Mail Server di Indonesia Netiket: https://wiki.openstack.org/wiki/MailingListEtiquette Arsip: http://mdaemon-l.dutaint.com Dokumentasi : http://mdaemon.dutaint.co.id Berlangganan: Kirim mail ke mdaemon-l-subscr...@dutaint.com Henti Langgan: Kirim mail ke mdaemon-l-unsubscr...@dutaint.com Versi terakhir: MDaemon 22.0.3, SecurityGateway 8.5.3
[Mdaemon-L] PTR Check Failed
On 13/12/2022 12:22, Syafril Hermansyah via Mdaemon-L wrote: IP lookup di check setelah PTR lookup. Kalau tidak melakukan PTR check artinya check itu di skip karena sender IP sudah masuk kedalam exempt list. Noted Pak -- --[mdaemon-l]-- Milis ini untuk Diskusi antar pengguna MDaemon Mail Server di Indonesia Netiket: https://wiki.openstack.org/wiki/MailingListEtiquette Arsip: http://mdaemon-l.dutaint.com Dokumentasi : http://mdaemon.dutaint.co.id Berlangganan: Kirim mail ke mdaemon-l-subscr...@dutaint.com Henti Langgan: Kirim mail ke mdaemon-l-unsubscr...@dutaint.com Versi terakhir: MDaemon 22.0.3, SecurityGateway 8.5.3
[Mdaemon-L] PTR Check Failed
On 12/12/2022 17:18, Ivan Leonardo wrote: Mon 2022-12-12 16:46:29.172: [00734955] Session 00734955; child 0001 Mon 2022-12-12 16:46:29.173: [00734955] Accepting SMTP connection from 103.164.114.226:34430 to 192.168.10.2:25 Mon 2022-12-12 16:46:29.173: [00734955] Location Screen says connection is from Indonesia, Asia Mon 2022-12-12 16:46:29.176: [00734955] --> 220 webmail.pttdp.com ESMTP Mon, 12 Dec 2022 16:46:29 +0700 Mon 2022-12-12 16:46:29.191: [00734955] <-- EHLO mail.phapros.co.id Mon 2022-12-12 16:46:29.199: [00734955] --> 250-webmail.pttdp.com Hello mail.phapros.co.id [103.164.114.226], pleased to meet you Mon 2022-12-12 16:46:29.199: [00734955] --> 250-ETRN Mon 2022-12-12 16:46:29.199: [00734955] --> 250-AUTH LOGIN PLAIN Mon 2022-12-12 16:46:29.199: [00734955] --> 250-8BITMIME Mon 2022-12-12 16:46:29.199: [00734955] --> 250-ENHANCEDSTATUSCODES Mon 2022-12-12 16:46:29.199: [00734955] --> 250-PIPELINING Mon 2022-12-12 16:46:29.199: [00734955] --> 250-CHUNKING Mon 2022-12-12 16:46:29.199: [00734955] --> 250-STARTTLS Mon 2022-12-12 16:46:29.199: [00734955] --> 250 SIZE 36864000 Mon 2022-12-12 16:46:29.212: [00734955] <-- MAIL FROM: SIZE=1863752 Mon 2022-12-12 16:46:29.223: [00734955] Performing PTR lookup (226.114.164.103.IN-ADDR.ARPA) Mon 2022-12-12 16:46:29.229: [00734955] * D=226.114.164.103.IN-ADDR.ARPA TTL=(60) PTR=[mail.phapros.co.id] Mon 2022-12-12 16:46:29.231: [00734955] * D=mail.phapros.co.id TTL=(234) A=[103.41.204.10] Mon 2022-12-12 16:46:29.231: [00734955] * MDaemon configured to drop connection on PTR record mismatch Mon 2022-12-12 16:46:29.231: [00734955] End PTR results Mon 2022-12-12 16:46:29.231: [00734955] --> 501 5.7.0 Domain must resolve Mon 2022-12-12 16:46:29.232: [00734955] SMTP session terminated (Bytes in/out: 111/313) Hari ini sudah berhasil masuk Pak, tapi kenapa di section PTR lookupnya beda ya sama yg kemarin ? *yg kemarin performing PTR Lookup dan yg today Performing ip lookup* Tue 2022-12-13 10:27:13.420: [00743584] Session 00743584; child 0001 Tue 2022-12-13 10:27:13.420: [00743584] Accepting SMTP connection from 103.164.114.226:52648 to 192.168.10.2:25 Tue 2022-12-13 10:27:13.420: [00743584] Location Screen says connection is from Indonesia, Asia Tue 2022-12-13 10:27:13.434: [00743584] --> 220 webmail.pttdp.com ESMTP Tue, 13 Dec 2022 10:27:13 +0700 Tue 2022-12-13 10:27:13.446: [00743584] <-- EHLO mail.phapros.co.id Tue 2022-12-13 10:27:13.454: [00743584] --> 250-webmail.pttdp.com Hello mail.phapros.co.id [103.164.114.226], pleased to meet you Tue 2022-12-13 10:27:13.454: [00743584] --> 250-ETRN Tue 2022-12-13 10:27:13.454: [00743584] --> 250-AUTH LOGIN PLAIN Tue 2022-12-13 10:27:13.454: [00743584] --> 250-8BITMIME Tue 2022-12-13 10:27:13.454: [00743584] --> 250-ENHANCEDSTATUSCODES Tue 2022-12-13 10:27:13.454: [00743584] --> 250-PIPELINING Tue 2022-12-13 10:27:13.454: [00743584] --> 250-CHUNKING Tue 2022-12-13 10:27:13.454: [00743584] --> 250-STARTTLS Tue 2022-12-13 10:27:13.454: [00743584] --> 250 SIZE 36864000 Tue 2022-12-13 10:27:13.466: [00743584] <-- MAIL FROM: SIZE=1861697 Tue 2022-12-13 10:27:13.474: [00743584] Performing IP lookup (mail.phapros.co.id) Tue 2022-12-13 10:27:13.476: [00743584] * D=mail.phapros.co.id TTL=(1288) A=[103.41.204.10] Tue 2022-12-13 10:27:13.476: [00743584] End IP lookup results Tue 2022-12-13 10:27:13.476: [00743584] Performing IP lookup (phapros.co.id) Tue 2022-12-13 10:27:13.487: [00743584] * D=phapros.co.id TTL=(1440) A=[38.9.140.96] Tue 2022-12-13 10:27:13.491: [00743584] * P=010 S=001 D=phapros.co.id TTL=(1440) MX=[mx01.phapros.co.id] Tue 2022-12-13 10:27:13.491: [00743584] * P=020 S=002 D=phapros.co.id TTL=(1440) MX=[mx02.phapros.co.id] Tue 2022-12-13 10:27:13.491: [00743584] * P=030 S=000 D=phapros.co.id TTL=(1440) MX=[mx03.phapros.co.id] Tue 2022-12-13 10:27:13.514: [00743584] * D=mx01.phapros.co.id TTL=(1440) A=[103.164.114.230] Tue 2022-12-13 10:27:13.536: [00743584] * D=mx02.phapros.co.id TTL=(1440) A=[103.164.114.230] Tue 2022-12-13 10:27:13.552: [00743584] * D=mx03.phapros.co.id TTL=(1440) A=[103.41.204.10] Tue 2022-12-13 10:27:13.552: [00743584] End IP lookup results -- --[mdaemon-l]-- Milis ini untuk Diskusi antar pengguna MDaemon Mail Server di Indonesia Netiket: https://wiki.openstack.org/wiki/MailingListEtiquette Arsip: http://mdaemon-l.dutaint.com Dokumentasi : http://mdaemon.dutaint.co.id Berlangganan: Kirim mail ke mdaemon-l-subscr...@dutaint.com Henti Langgan: Kirim mail ke mdaemon-l-unsubscr...@dutaint.com Versi terakhir: MDaemon 22.0.3, SecurityGateway 8.5.3
[Mdaemon-L] PTR Check Failed
On 12/12/2022 20:33, Syafril Hermansyah via Mdaemon-L wrote: Bagaimana cara memasukkannya? Spt di gambar yg saya attach pak, saya masuk melaui menu Security-Reverse-exempt list saya tambahkan ip nya misal 103.164.114.226 #phapros.co.id , Apakah nama domain setelah tanda # harus nama jelas domainnya ? yaitu #mail.phapros.co.id -- --[mdaemon-l]-- Milis ini untuk Diskusi antar pengguna MDaemon Mail Server di Indonesia Netiket: https://wiki.openstack.org/wiki/MailingListEtiquette Arsip: http://mdaemon-l.dutaint.com Dokumentasi : http://mdaemon.dutaint.co.id Berlangganan: Kirim mail ke mdaemon-l-subscr...@dutaint.com Henti Langgan: Kirim mail ke mdaemon-l-unsubscr...@dutaint.com Versi terakhir: MDaemon 22.0.3, SecurityGateway 8.5.3
[Mdaemon-L] PTR Check Failed
On 12/12/2022 17:03, Syafril Hermansyah via Mdaemon-L wrote: MDaemon PTR check mencheck reverse-confirm reverse DNS, membandingkan HELO FQDN dengan PTR record. https://en.wikipedia.org/wiki/Forward-confirmed_reverse_DNS Sudah dibuatkan pengecualian dan diupdate ke http://ftp.dutaint.com/altn-mdaemon/miscl/ReverseXcpt.dat Sebelum email bapak ini masuk saya sudah masukkan ke file reversexcpt.dat dan di hostscreen.dat juga sudah saya add accept, tapi masih gagal Mon 2022-12-12 16:46:29.172: [00734955] Session 00734955; child 0001 Mon 2022-12-12 16:46:29.173: [00734955] Accepting SMTP connection from 103.164.114.226:34430 to 192.168.10.2:25 Mon 2022-12-12 16:46:29.173: [00734955] Location Screen says connection is from Indonesia, Asia Mon 2022-12-12 16:46:29.176: [00734955] --> 220 webmail.pttdp.com ESMTP Mon, 12 Dec 2022 16:46:29 +0700 Mon 2022-12-12 16:46:29.191: [00734955] <-- EHLO mail.phapros.co.id Mon 2022-12-12 16:46:29.199: [00734955] --> 250-webmail.pttdp.com Hello mail.phapros.co.id [103.164.114.226], pleased to meet you Mon 2022-12-12 16:46:29.199: [00734955] --> 250-ETRN Mon 2022-12-12 16:46:29.199: [00734955] --> 250-AUTH LOGIN PLAIN Mon 2022-12-12 16:46:29.199: [00734955] --> 250-8BITMIME Mon 2022-12-12 16:46:29.199: [00734955] --> 250-ENHANCEDSTATUSCODES Mon 2022-12-12 16:46:29.199: [00734955] --> 250-PIPELINING Mon 2022-12-12 16:46:29.199: [00734955] --> 250-CHUNKING Mon 2022-12-12 16:46:29.199: [00734955] --> 250-STARTTLS Mon 2022-12-12 16:46:29.199: [00734955] --> 250 SIZE 36864000 Mon 2022-12-12 16:46:29.212: [00734955] <-- MAIL FROM: SIZE=1863752 Mon 2022-12-12 16:46:29.223: [00734955] Performing PTR lookup (226.114.164.103.IN-ADDR.ARPA) Mon 2022-12-12 16:46:29.229: [00734955] * D=226.114.164.103.IN-ADDR.ARPA TTL=(60) PTR=[mail.phapros.co.id] Mon 2022-12-12 16:46:29.231: [00734955] * D=mail.phapros.co.id TTL=(234) A=[103.41.204.10] Mon 2022-12-12 16:46:29.231: [00734955] * MDaemon configured to drop connection on PTR record mismatch Mon 2022-12-12 16:46:29.231: [00734955] End PTR results Mon 2022-12-12 16:46:29.231: [00734955] --> 501 5.7.0 Domain must resolve Mon 2022-12-12 16:46:29.232: [00734955] SMTP session terminated (Bytes in/out: 111/313) -- --[mdaemon-l]-- Milis ini untuk Diskusi antar pengguna MDaemon Mail Server di Indonesia Netiket: https://wiki.openstack.org/wiki/MailingListEtiquette Arsip: http://mdaemon-l.dutaint.com Dokumentasi : http://mdaemon.dutaint.co.id Berlangganan: Kirim mail ke mdaemon-l-subscr...@dutaint.com Henti Langgan: Kirim mail ke mdaemon-l-unsubscr...@dutaint.com Versi terakhir: MDaemon 22.0.3, SecurityGateway 8.5.3
[Mdaemon-L] PTR Check Failed
Pak ada domain phapros.co.id failed PTR check MD, tapi kalau saya check di web MXTOOLS reverselookup ip tersebut benar mengarah ke domain tersebut. Kenapa di MD gagal ya ? Mon 2022-12-12 13:21:48.513: [00731297] Session 00731297; child 0002 Mon 2022-12-12 13:21:48.513: [00731297] Accepting SMTP connection from 103.164.114.226:58180 to 192.168.10.2:25 Mon 2022-12-12 13:21:48.513: [00731297] Location Screen says connection is from Indonesia, Asia Mon 2022-12-12 13:21:48.532: [00731297] --> 220 webmail.pttdp.com ESMTP Mon, 12 Dec 2022 13:21:48 +0700 Mon 2022-12-12 13:21:48.552: [00731297] <-- EHLO mail.phapros.co.id Mon 2022-12-12 13:21:48.580: [00731297] --> 250-webmail.pttdp.com Hello mail.phapros.co.id [103.164.114.226], pleased to meet you Mon 2022-12-12 13:21:48.580: [00731297] --> 250-ETRN Mon 2022-12-12 13:21:48.580: [00731297] --> 250-AUTH LOGIN PLAIN Mon 2022-12-12 13:21:48.580: [00731297] --> 250-8BITMIME Mon 2022-12-12 13:21:48.580: [00731297] --> 250-ENHANCEDSTATUSCODES Mon 2022-12-12 13:21:48.580: [00731297] --> 250-PIPELINING Mon 2022-12-12 13:21:48.580: [00731297] --> 250-CHUNKING Mon 2022-12-12 13:21:48.580: [00731297] --> 250-STARTTLS Mon 2022-12-12 13:21:48.580: [00731297] --> 250 SIZE 36864000 Mon 2022-12-12 13:21:48.599: [00731297] <-- MAIL FROM: SIZE=1861024 Mon 2022-12-12 13:21:48.611: [00731297] Performing PTR lookup (226.114.164.103.IN-ADDR.ARPA) Mon 2022-12-12 13:21:48.639: [00731297] * D=226.114.164.103.IN-ADDR.ARPA TTL=(60) PTR=[mail.phapros.co.id] Mon 2022-12-12 13:21:48.642: [00731297] * D=mail.phapros.co.id TTL=(1122) A=[103.41.204.10] Mon 2022-12-12 13:21:48.642: [00731297] * MDaemon configured to drop connection on PTR record mismatch Mon 2022-12-12 13:21:48.642: [00731297] End PTR results Mon 2022-12-12 13:21:48.642: [00731297] --> 501 5.7.0 Domain must resolve Mon 2022-12-12 13:21:48.642: [00731297] SMTP session terminated (Bytes in/out: 114/313) -- --[mdaemon-l]-- Milis ini untuk Diskusi antar pengguna MDaemon Mail Server di Indonesia Netiket: https://wiki.openstack.org/wiki/MailingListEtiquette Arsip: http://mdaemon-l.dutaint.com Dokumentasi : http://mdaemon.dutaint.co.id Berlangganan: Kirim mail ke mdaemon-l-subscr...@dutaint.com Henti Langgan: Kirim mail ke mdaemon-l-unsubscr...@dutaint.com Versi terakhir: MDaemon 22.0.3, SecurityGateway 8.5.3
[Mdaemon-L] PTR Google mail not found
On 09/12/2022 15:29, Syafril Hermansyah via Mdaemon-L wrote: Ini problem idle time out terlalu kecil. http://mdaemon.dutaint.co.id/mdaemon/22.0/default-domain-and-servers_timouts.html Wait 60 seconds for A/ responses di Setting ini idealnya 60 sec semua Pak ? -- --[mdaemon-l]-- Milis ini untuk Diskusi antar pengguna MDaemon Mail Server di Indonesia Netiket: https://wiki.openstack.org/wiki/MailingListEtiquette Arsip: http://mdaemon-l.dutaint.com Dokumentasi : http://mdaemon.dutaint.co.id Berlangganan: Kirim mail ke mdaemon-l-subscr...@dutaint.com Henti Langgan: Kirim mail ke mdaemon-l-unsubscr...@dutaint.com Versi terakhir: MDaemon 22.0.3, SecurityGateway 8.5.3
[Mdaemon-L] PTR Google mail not found
Pak ini kenapa PTR google bisa not found ya ? apakah DNS saya yg problem ? Thu 2022-12-08 15:18:50.547: [00674010] Session 00674010; child 0003 Thu 2022-12-08 15:18:50.547: [00674010] Accepting SMTP connection from 209.85.208.174:46715 to 192.168.10.2:25 Thu 2022-12-08 15:18:50.547: [00674010] Location Screen says connection is from United States, North America Thu 2022-12-08 15:18:50.560: [00674010] --> 220 webmail.pttdp.com ESMTP Thu, 08 Dec 2022 15:18:50 +0700 Thu 2022-12-08 15:18:50.894: [00674010] <-- EHLO mail-lj1-f174.google.com Thu 2022-12-08 15:18:50.905: [00674010] --> 250-webmail.pttdp.com Hello mail-lj1-f174.google.com [209.85.208.174], pleased to meet you Thu 2022-12-08 15:18:50.905: [00674010] --> 250-ETRN Thu 2022-12-08 15:18:50.905: [00674010] Location Screening hiding AUTH from country United States, North America Thu 2022-12-08 15:18:50.905: [00674010] --> 250-8BITMIME Thu 2022-12-08 15:18:50.905: [00674010] --> 250-ENHANCEDSTATUSCODES Thu 2022-12-08 15:18:50.905: [00674010] --> 250-PIPELINING Thu 2022-12-08 15:18:50.905: [00674010] --> 250-CHUNKING Thu 2022-12-08 15:18:50.905: [00674010] --> 250-STARTTLS Thu 2022-12-08 15:18:50.905: [00674010] --> 250 SIZE 11264000 Thu 2022-12-08 15:18:51.239: [00674010] <-- STARTTLS Thu 2022-12-08 15:18:51.239: [00674010] --> 220 2.7.0 Ready to start TLS Thu 2022-12-08 15:18:52.252: [00674010] SSL negotiation successful (TLS 1.2, TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA_P256) Thu 2022-12-08 15:18:52.586: [00674010] <-- EHLO mail-lj1-f174.google.com Thu 2022-12-08 15:18:52.596: [00674010] --> 250-webmail.pttdp.com Hello mail-lj1-f174.google.com [209.85.208.174], pleased to meet you Thu 2022-12-08 15:18:52.596: [00674010] --> 250-ETRN Thu 2022-12-08 15:18:52.596: [00674010] Location Screening hiding AUTH from country United States, North America Thu 2022-12-08 15:18:52.596: [00674010] --> 250-8BITMIME Thu 2022-12-08 15:18:52.596: [00674010] --> 250-ENHANCEDSTATUSCODES Thu 2022-12-08 15:18:52.596: [00674010] --> 250-PIPELINING Thu 2022-12-08 15:18:52.596: [00674010] --> 250-CHUNKING Thu 2022-12-08 15:18:52.596: [00674010] --> 250-REQUIRETLS Thu 2022-12-08 15:18:52.596: [00674010] --> 250 SIZE 11264000 Thu 2022-12-08 15:18:52.931: [00674010] <-- MAIL FROM: SIZE=263977 Thu 2022-12-08 15:18:52.943: [00674010] Performing PTR lookup (174.208.85.209.IN-ADDR.ARPA) Thu 2022-12-08 15:19:02.945: [00674010] * DNS: 10 second wait for DNS response exceeded (DNS Server: 203.142.82.222) Thu 2022-12-08 15:19:12.946: [00674010] * DNS: 10 second wait for DNS response exceeded (DNS Server: 192.168.100.217) Thu 2022-12-08 15:19:22.947: [00674010] * DNS: 10 second wait for DNS response exceeded (DNS Server: 203.142.84.222) Thu 2022-12-08 15:19:22.947: [00674010] * No PTR records found Thu 2022-12-08 15:19:22.947: [00674010] * MDaemon configured to drop connection when no PTR records found Thu 2022-12-08 15:19:22.947: [00674010] End PTR results Thu 2022-12-08 15:19:22.947:[00674010] --> 501 5.7.0 209.85.208.174 does not have valid PTR record Thu 2022-12-08 15:19:22.949: [00674010] SMTP session terminated (Bytes in/out: 894/4369) -- --[mdaemon-l]-- Milis ini untuk Diskusi antar pengguna MDaemon Mail Server di Indonesia Netiket: https://wiki.openstack.org/wiki/MailingListEtiquette Arsip: http://mdaemon-l.dutaint.com Dokumentasi : http://mdaemon.dutaint.co.id Berlangganan: Kirim mail ke mdaemon-l-subscr...@dutaint.com Henti Langgan: Kirim mail ke mdaemon-l-unsubscr...@dutaint.com Versi terakhir: MDaemon 22.0.3, SecurityGateway 8.5.3
[Mdaemon-L] Relay MD
On 09/12/2022 12:46, Syafril Hermansyah via Mdaemon-L wrote: Saat SG kirim mail ke MD bisa pakai port 587 (authenticate) seolah clientnya MD sehingga akan bypass macam-macam spam filter/restriction. http://mdaemon.dutaint.co.id/sg/8.5/edit_mail_server.html Pak berarti di MD harus create 1 account tambahan khusus utk smtp auth ini ya ? Rgds, -- --[mdaemon-l]-- Milis ini untuk Diskusi antar pengguna MDaemon Mail Server di Indonesia Netiket: https://wiki.openstack.org/wiki/MailingListEtiquette Arsip: http://mdaemon-l.dutaint.com Dokumentasi : http://mdaemon.dutaint.co.id Berlangganan: Kirim mail ke mdaemon-l-subscr...@dutaint.com Henti Langgan: Kirim mail ke mdaemon-l-unsubscr...@dutaint.com Versi terakhir: MDaemon 22.0.3, SecurityGateway 8.5.3
[Mdaemon-L] Relay MD
On 09/12/2022 09:52, Syafril Hermansyah via Mdaemon-L wrote: Di SG ada fasilitas whitelist (dan Blacklist). http://mdaemon.dutaint.co.id/sg/8.5/whitelists.html http://mdaemon.dutaint.co.id/sg/8.5/blacklists.html Maksud saya setting di MD Pak, agar traffic email dari SG tidak perlu ada pemeriksaan lagi, lsg saja masuk ke receive Queue di MD Rgds -- --[mdaemon-l]-- Milis ini untuk Diskusi antar pengguna MDaemon Mail Server di Indonesia Netiket: https://wiki.openstack.org/wiki/MailingListEtiquette Arsip: http://mdaemon-l.dutaint.com Dokumentasi : http://mdaemon.dutaint.co.id Berlangganan: Kirim mail ke mdaemon-l-subscr...@dutaint.com Henti Langgan: Kirim mail ke mdaemon-l-unsubscr...@dutaint.com Versi terakhir: MDaemon 22.0.3, SecurityGateway 8.5.3
[Mdaemon-L] Relay MD
On 07/12/2022 14:05, Syafril Hermansyah via Mdaemon-L wrote: Saya tidak tahu soal Fortimail, besar kemungkinan tidak support Minger. Pak masih sehubungan dengan Relay ini, Bagaimana setting incoming mail / traffic dari SG ini ke MD exclude dari checking AV, SPAM, dll nya ? Rgds, -- --[mdaemon-l]-- Milis ini untuk Diskusi antar pengguna MDaemon Mail Server di Indonesia Netiket: https://wiki.openstack.org/wiki/MailingListEtiquette Arsip: http://mdaemon-l.dutaint.com Dokumentasi : http://mdaemon.dutaint.co.id Berlangganan: Kirim mail ke mdaemon-l-subscr...@dutaint.com Henti Langgan: Kirim mail ke mdaemon-l-unsubscr...@dutaint.com Versi terakhir: MDaemon 22.0.3, SecurityGateway 8.5.3
[Mdaemon-L] Relay MD
On 07/12/2022 11:11, Syafril Hermansyah via Mdaemon-L wrote: Minger (Mail Finger) memberikan informasi lebih rinci dibanding SMTP Callforward (callback), misalkan informasi user yang overquota (akan ditolak oleh SG saat terima mail dari internet), sender address masuk dalam Whitelist Contact (bypass Spam Filtering di SG) dls. Nah menarik sekali Minger ini, tapi saya baca2 di sisi SG harus setting port dan password utk konek ke minger server MD ya ? Saya cari2 di SG yg saya coba (Fortimail) tidak ada setting Minger ini ya, mungkin istilah nya berbeda. kalau di SG biasa pakai istilahnya apa ya pak utk minger ini ? Rgds, -- --[mdaemon-l]-- Milis ini untuk Diskusi antar pengguna MDaemon Mail Server di Indonesia Netiket: https://wiki.openstack.org/wiki/MailingListEtiquette Arsip: http://mdaemon-l.dutaint.com Dokumentasi : http://mdaemon.dutaint.co.id Berlangganan: Kirim mail ke mdaemon-l-subscr...@dutaint.com Henti Langgan: Kirim mail ke mdaemon-l-unsubscr...@dutaint.com Versi terakhir: MDaemon 22.0.3, SecurityGateway 8.5.3
[Mdaemon-L] Relay MD
On 06/12/2022 20:35, Syafril Hermansyah via Mdaemon-L wrote:
Yang paling lugu (berlaku umum untuk semua mail server) seperti ini:
1. Outgoing mail
Aktifkan smarthost di domain manager
http://mdaemon.dutaint.co.id/mdaemon/22.0/domain-manager_smart-host.html
[x] Configure smart host for this domain
Smart host: smarthostSG.pttdp.com:587
[x] Use SMTP authentication
User name: pttdp.com
Password: {sesuai akun diatas}
2. incoming mail
Aktifkan Account Verify dan List Verify.
http://mdaemon.dutaint.co.id/mdaemon/22.0/default-domain-and-servers_servers.html
[x] Enable VRFY
[x] Enable EXPN
Assumsi: di Securitygateway pakai konfigurasi smtp call forward untuk
source verification.
http://mdaemon.dutaint.co.id/sg/8.5/verification_source_edit.html
Pilihan lain untuk VRY/EXPN adalah mengaktifkan Minger Server
http://mdaemon.dutaint.co.id/mdaemon/22.0/minger.html
[x] Enable Minger server
[x] Minger queries require a shared secret
Sorry pak mungkin saya salah menjelaskan, kebutuhan saya :
Setiap email masuk dan email keluar akan melalui security email gateway,
jdj nantinya domain saya utk MX, spf record, DKIM akan pointing ke
Securitygateway tersebut.
Apakah setting yg Bapak jelaskan di atas sesuai utk kebutuhan ini ?
apakah flow spt ini memakai smarthost atau cukup setting di Relay
Control saja ?
Rgds,
--
--[mdaemon-l]--
Milis ini untuk Diskusi antar pengguna MDaemon Mail Server di Indonesia
Netiket: https://wiki.openstack.org/wiki/MailingListEtiquette
Arsip: http://mdaemon-l.dutaint.com
Dokumentasi : http://mdaemon.dutaint.co.id
Berlangganan: Kirim mail ke mdaemon-l-subscr...@dutaint.com
Henti Langgan: Kirim mail ke mdaemon-l-unsubscr...@dutaint.com
Versi terakhir: MDaemon 22.0.3, SecurityGateway 8.5.3
[Mdaemon-L] Relay MD
Pak saya ingin coba relay penerimaan dan pengiriman email melalui Email Secure gateway. Di sisi MD harus di settting apa saja ya ? Rgds, -- --[mdaemon-l]-- Milis ini untuk Diskusi antar pengguna MDaemon Mail Server di Indonesia Netiket: https://wiki.openstack.org/wiki/MailingListEtiquette Arsip: http://mdaemon-l.dutaint.com Dokumentasi : http://mdaemon.dutaint.co.id Berlangganan: Kirim mail ke mdaemon-l-subscr...@dutaint.com Henti Langgan: Kirim mail ke mdaemon-l-unsubscr...@dutaint.com Versi terakhir: MDaemon 22.0.3, SecurityGateway 8.5.3
[Mdaemon-L] PTR Check
Pak, sehubungan baru aktifkan Reverse Lookup, ada case yg mau saya tanyakan : Case Sender Unknown ini sebenarnya sender valid vendor kami, agar bisa lolos apakah saya masukkan ke IP nya ke ReverseXcpt.dat ? ada 2 IP yg mana yg saya masukkan ? Fri 2022-12-02 14:26:18.464: <-- MAIL FROM: SIZE=4456 BODY=7BIT Fri 2022-12-02 14:26:18.476: Performing PTR lookup (164.223.248.60.IN-ADDR.ARPA) Fri 2022-12-02 14:26:18.609: * D=164.223.248.60.in-addr.arpa TTL=(1440) PTR=[60-248-223-164.hinet-ip.hinet.net] Fri 2022-12-02 14:26:18.670: * D=60-248-223-164.hinet-ip.hinet.net TTL=(1440) A=[60.248.223.164] Fri 2022-12-02 14:26:18.670: End PTR results Fri 2022-12-02 14:26:18.670: Performing IP lookup (mail.honchuan.com.tw) Fri 2022-12-02 14:26:18.751: * D=mail.honchuan.com.tw TTL=(60) A=[60.248.223.168] Fri 2022-12-02 14:26:18.751: End IP lookup results Fri 2022-12-02 14:26:18.752: --> 550 5.7.1 Sender unknown Kalau case ini bedanya apa dengan yg sender unknown ? apakah dimasukkan ke ReverseXcpt juga ? Jika seandainya memang valid sender. Fri 2022-12-02 18:22:07.756: <-- MAIL FROM: SIZE=1344679 Fri 2022-12-02 18:22:07.774: Performing PTR lookup (174.233.123.195.IN-ADDR.ARPA) Fri 2022-12-02 18:22:08.240: * D=174.233.123.195.IN-ADDR.ARPA TTL=(60) PTR=[vds1067043.hosted-by-itldc.com] Fri 2022-12-02 18:22:21.744: * No A/ records found Fri 2022-12-02 18:22:21.744: * MDaemon configured to drop connection on PTR record mismatch Fri 2022-12-02 18:22:21.744: End PTR results Fri 2022-12-02 18:22:21.744: --> 501 5.7.0 Domain must resolve -- --[mdaemon-l]-- Milis ini untuk Diskusi antar pengguna MDaemon Mail Server di Indonesia Netiket: https://wiki.openstack.org/wiki/MailingListEtiquette Arsip: http://mdaemon-l.dutaint.com Dokumentasi : http://mdaemon.dutaint.co.id Berlangganan: Kirim mail ke mdaemon-l-subscr...@dutaint.com Henti Langgan: Kirim mail ke mdaemon-l-unsubscr...@dutaint.com Versi terakhir: MDaemon 22.0.3, SecurityGateway 8.5.3
[Mdaemon-L] Analisa Message Source SPAM
On 02/12/2022 13:46, Syafril Hermansyah via Mdaemon-L wrote: Saya sudah minta ke MDaemon Developer agar diberikan opsi delay bounce serta ada notification ke postmaster. Pada prinsipnya developer sudah menyetujuinya dan akan di implementasi di MDaemon versi berikutnya. Mantap Pak, Delay bounce itu spt masuk di folder Holding queue dulu ya ? -- --[mdaemon-l]-- Milis ini untuk Diskusi antar pengguna MDaemon Mail Server di Indonesia Netiket: https://wiki.openstack.org/wiki/MailingListEtiquette Arsip: http://mdaemon-l.dutaint.com Dokumentasi : http://mdaemon.dutaint.co.id Berlangganan: Kirim mail ke mdaemon-l-subscr...@dutaint.com Henti Langgan: Kirim mail ke mdaemon-l-unsubscr...@dutaint.com Versi terakhir: MDaemon 22.0.3, SecurityGateway 8.5.3
[Mdaemon-L] Analisa Message Source SPAM
On 02/12/2022 12:58, Syafril Hermansyah via Mdaemon-L wrote: Lihat dan baca tautan (URL link) mail archive berikut https://www.mail-archive.com/mdaemon-l@dutaint.com/msg47675.html Sudah saya aktifkan Pak, jika ada email ditolak reverseLookup sender akan dapat notif kan pak ? Apakah bisa dibuatkan content filter jika ada tolakan reverselookup ini, email notif yg dikirim ke sender cc ke postmaster ? Rgds, -- --[mdaemon-l]-- Milis ini untuk Diskusi antar pengguna MDaemon Mail Server di Indonesia Netiket: https://wiki.openstack.org/wiki/MailingListEtiquette Arsip: http://mdaemon-l.dutaint.com Dokumentasi : http://mdaemon.dutaint.co.id Berlangganan: Kirim mail ke mdaemon-l-subscr...@dutaint.com Henti Langgan: Kirim mail ke mdaemon-l-unsubscr...@dutaint.com Versi terakhir: MDaemon 22.0.3, SecurityGateway 8.5.3
[Mdaemon-L] Analisa Message Source SPAM
On 02/12/2022 09:22, Syafril Hermansyah via Mdaemon-L wrote: kelihatanya server webmail.pttdp.com tidak melakukan legalitas check dengan lengkap sehingga sender yang tidak punya PTR record tidak ditolak. http://mdaemon.dutaint.co.id/mdaemon/22.0/security--reverse_lookup.html nah iya sptnya kurang lengkap setting saya, sebaiknya yg mana saja yg wajib di centang ya Pak ? dan kalau ada sender yg kena reject PTR check ini ada di log mana pak ? -- --[mdaemon-l]-- Milis ini untuk Diskusi antar pengguna MDaemon Mail Server di Indonesia Netiket: https://wiki.openstack.org/wiki/MailingListEtiquette Arsip: http://mdaemon-l.dutaint.com Dokumentasi : http://mdaemon.dutaint.co.id Berlangganan: Kirim mail ke mdaemon-l-subscr...@dutaint.com Henti Langgan: Kirim mail ke mdaemon-l-unsubscr...@dutaint.com Versi terakhir: MDaemon 22.0.3, SecurityGateway 8.5.3
[Mdaemon-L] refused to talk to me: 530 5.7.1 Connection refused
On 29/11/2022 09:47, Ivan Leonardo wrote: Saya cek ke Firewall saya trafficnya rendah pak, utk traffic ke MD jg aman, antivirus di server MD juga sudah exclude MD, setting spt ini sudah berjalan selama bbrp tahun tanpa masalah. Minggu lalu, cust/vendor kami yg rutin kirim email setiap hari tidak ada yg masalah, baru sejak kemarin bbrp customer/vendor complaint kena connection refused. Yang susahnya lagi, semua yg connection refused tidak ada yg bisa/mau memberikan SMTP-Out Log utk email tersebut, makin susah utk analisa problemnya Rgds, Saya ingat2 lagi case ini terjadi sejak saya open location screening utk US, dan barusan saya coba utk close lagi location screen US dan email dari vendor kami di luar negeri sudah banyak yg berhasil masuk. Tidak tahu apakah location screening US ini penyebabnya atau bukan, masih saya pantau lebih lanjut. Kalau saya lihat di dynamic blacklist ada bbrp IP dr US yg di block krn 101 attempt in 3 minutes Thanks utk Teman2 yang sudah membantu mengirim test mail ke saya Rgds, -- --[mdaemon-l]-- Milis ini untuk Diskusi antar pengguna MDaemon Mail Server di Indonesia Netiket: https://wiki.openstack.org/wiki/MailingListEtiquette Arsip: http://mdaemon-l.dutaint.com Dokumentasi : http://mdaemon.dutaint.co.id Berlangganan: Kirim mail ke mdaemon-l-subscr...@dutaint.com Henti Langgan: Kirim mail ke mdaemon-l-unsubscr...@dutaint.com Versi terakhir: MDaemon 22.0.3, SecurityGateway 8.5.3
[Mdaemon-L] SMTP-Out Log
Dear teman Milist, Jika berkenan saya ingin minta bantuan utk kirim test email ke adm...@pttdp.com, jika ada notif failed boleh tolong dikirimkan SMTP-Out log dr server MD nya utk email yg failed ini, Japri ke bluesky1...@gmail.com. Agar saya bisa menganalisa problemnya. Terima kasih atas bantuannya Rgds, -- --[mdaemon-l]-- Milis ini untuk Diskusi antar pengguna MDaemon Mail Server di Indonesia Netiket: https://wiki.openstack.org/wiki/MailingListEtiquette Arsip: http://mdaemon-l.dutaint.com Dokumentasi : http://mdaemon.dutaint.co.id Berlangganan: Kirim mail ke mdaemon-l-subscr...@dutaint.com Henti Langgan: Kirim mail ke mdaemon-l-unsubscr...@dutaint.com Versi terakhir: MDaemon 22.0.3, SecurityGateway 8.5.3
[Mdaemon-L] refused to talk to me: 530 5.7.1 Connection refused
On 29/11/2022 09:19, Syafril Hermansyah via Mdaemon-L wrote: Yang refused bisa MDaemon atau Firewall (windows firewall, antivirus proxy atau hardware firewall). Kelihatannya server Anda lambat responsenya. Saya cek ke Firewall saya trafficnya rendah pak, utk traffic ke MD jg aman, antivirus di server MD juga sudah exclude MD, setting spt ini sudah berjalan selama bbrp tahun tanpa masalah. Minggu lalu, cust/vendor kami yg rutin kirim email setiap hari tidak ada yg masalah, baru sejak kemarin bbrp customer/vendor complaint kena connection refused. Yang susahnya lagi, semua yg connection refused tidak ada yg bisa/mau memberikan SMTP-Out Log utk email tersebut, makin susah utk analisa problemnya Rgds, -- --[mdaemon-l]-- Milis ini untuk Diskusi antar pengguna MDaemon Mail Server di Indonesia Netiket: https://wiki.openstack.org/wiki/MailingListEtiquette Arsip: http://mdaemon-l.dutaint.com Dokumentasi : http://mdaemon.dutaint.co.id Berlangganan: Kirim mail ke mdaemon-l-subscr...@dutaint.com Henti Langgan: Kirim mail ke mdaemon-l-unsubscr...@dutaint.com Versi terakhir: MDaemon 22.0.3, SecurityGateway 8.5.3
[Mdaemon-L] refused to talk to me: 530 5.7.1 Connection refused
On 29/11/2022 08:53, Syafril Hermansyah via Mdaemon-L wrote: Belum diperbaiki ya? $ host -v -t mx pttdp.com ns2.cbn.net.id Trying "pttdp.com" Using domain server: Name: ns2.cbn.net.id Address: 202.158.40.1#53 Aliases: Host pttdp.com not found: 5(REFUSED) Received 27 bytes from 202.158.40.1#53 in 16 ms Pak seandainya lambat spt ini, bukannya sender akan error MX atau domain not found ? tapi semua sender mendapat error messagenya : Connection refuse , padahal tidak ada di Log MD kalau direfuse oleh MD jd bingung -- --[mdaemon-l]-- Milis ini untuk Diskusi antar pengguna MDaemon Mail Server di Indonesia Netiket: https://wiki.openstack.org/wiki/MailingListEtiquette Arsip: http://mdaemon-l.dutaint.com Dokumentasi : http://mdaemon.dutaint.co.id Berlangganan: Kirim mail ke mdaemon-l-subscr...@dutaint.com Henti Langgan: Kirim mail ke mdaemon-l-unsubscr...@dutaint.com Versi terakhir: MDaemon 22.0.3, SecurityGateway 8.5.3
[Mdaemon-L] refused to talk to me: 530 5.7.1 Connection refused
On 29/11/2022 08:53, Syafril Hermansyah via Mdaemon-L wrote: Belum diperbaiki ya? $ host -v -t mx pttdp.com ns2.cbn.net.id Trying "pttdp.com" Using domain server: Name: ns2.cbn.net.id Address: 202.158.40.1#53 Aliases: Host pttdp.com not found: 5(REFUSED) Received 27 bytes from 202.158.40.1#53 in 16 ms Saya sudah lapor ke support CBN, hanya NS1 yg bisa resolve, NS2 nya refused tapi pihak CBN malah alasannya MX bukan ada di pihak mereka. MX memang benar saya pakai IP Biznet tapi kan domain semua ada di CBN harusnya problem NS nya ada di CBN kan ? bener begitu Pak ? Rgds, -- --[mdaemon-l]-- Milis ini untuk Diskusi antar pengguna MDaemon Mail Server di Indonesia Netiket: https://wiki.openstack.org/wiki/MailingListEtiquette Arsip: http://mdaemon-l.dutaint.com Dokumentasi : http://mdaemon.dutaint.co.id Berlangganan: Kirim mail ke mdaemon-l-subscr...@dutaint.com Henti Langgan: Kirim mail ke mdaemon-l-unsubscr...@dutaint.com Versi terakhir: MDaemon 22.0.3, SecurityGateway 8.5.3
[Mdaemon-L] refused to talk to me: 530 5.7.1 Connection refused
On 28/11/2022 17:45, Syafril Hermansyah via Mdaemon-L wrote: On 11/28/22 17:32, Ivan Leonardo wrote: Ditunggu dulu, resend itu tidak instan. saya sudah non aktifkan smtp screen, lalu sender resend dan cc ke gmail saya. yg di gmail sudah masuk tapi yg ke domain saya masih blm bisa pak. Harus lebih lama menunggunya, karena Name Server domain pttdp.com bermasalah sehingga terkadang host mx1.pttdp.com bisa di resolve saat lain gagal. $ host -t ns pttdp.com pttdp.com name server ns2.cbn.net.id. pttdp.com name server ns1.cbn.net.id. $ host -t mx pttdp.com ns2.cbn.net.id Using domain server: Name: ns2.cbn.net.id Address: 202.158.40.1#53 Aliases: Host pttdp.com not found: 5(REFUSED) $ host -t mx pttdp.com ns1.cbn.net.id Using domain server: Name: ns1.cbn.net.id Address: 202.158.20.1#53 Aliases: pttdp.com mail is handled by 10 mx1.pttdp.com. Td sy juga sdh cek2 MX di web mxtools tapi normal dikenal di mxtools. Jadinya cbn sebagai domain hosting saya yg sedang tidak stabil ya Pak ? Saya coba tanyakan ke support mereka Rgds, -- --[mdaemon-l]-- Milis ini untuk Diskusi antar pengguna MDaemon Mail Server di Indonesia Netiket: https://wiki.openstack.org/wiki/MailingListEtiquette Arsip: http://mdaemon-l.dutaint.com Dokumentasi : http://mdaemon.dutaint.co.id Berlangganan: Kirim mail ke mdaemon-l-subscr...@dutaint.com Henti Langgan: Kirim mail ke mdaemon-l-unsubscr...@dutaint.com Versi terakhir: MDaemon 22.0.3, SecurityGateway 8.5.3
[Mdaemon-L] refused to talk to me: 530 5.7.1 Connection refused
On 28/11/2022 17:26, Syafril Hermansyah via Mdaemon-L wrote: On 11/28/22 16:59, Ivan Leonardo wrote: Apakah setelah dynamic block list dihapus masih belum bisa terima? Tetap tidak bisa pak Ditunggu dulu, resend itu tidak instan. saya sudah non aktifkan smtp screen, lalu sender resend dan cc ke gmail saya. yg di gmail sudah masuk tapi yg ke domain saya masih blm bisa pak. Periksa lagi ke smtp-in log, cari dengan katakunci ".263.net". Di log hanya ada sg-smtp01.263.net (email berbeda, kl muncul di log artinya tidak masalah bs diterima) bukannya tyo-smtp01.263.net Pak. Server 263.net itu SMTPRelay provider, menangani banyak domain, sehingga punya banyak smtp-outbound yang berbeda-beda nama hostnya. Ya pak, ini salah satu saja masih ada bbrp domain yg kena reject : @163.com , @vip.tjpc.com.cn , @xiangyu.cn , @muprofood.com , @outlook.com email sender nya saya input ke hostscreen.dat sbg "accept" juga tidak bisa Pak, jd apa ya yg melakkkukan reject ? SMTPScreening atau sender time out karena koneksi lambat antara sender dengan receiver. server 263.net itu lokasinya ada di china. -- --[mdaemon-l]-- Milis ini untuk Diskusi antar pengguna MDaemon Mail Server di Indonesia Netiket: https://wiki.openstack.org/wiki/MailingListEtiquette Arsip: http://mdaemon-l.dutaint.com Dokumentasi : http://mdaemon.dutaint.co.id Berlangganan: Kirim mail ke mdaemon-l-subscr...@dutaint.com Henti Langgan: Kirim mail ke mdaemon-l-unsubscr...@dutaint.com Versi terakhir: MDaemon 22.0.3, SecurityGateway 8.5.3
[Mdaemon-L] refused to talk to me: 530 5.7.1 Connection refused
On 28/11/2022 17:08, Syafril Hermansyah via Mdaemon-L wrote: Non aktifkan SMTPScreening, karena nilainya terlalu kecil. saya coba non aktifkan pak, tapi case ini random Pak, tidak semua email di reject Hari jumat semua masih berjalan normal dan saya tidak melakukan perubahan setting MD. Rgds, -- --[mdaemon-l]-- Milis ini untuk Diskusi antar pengguna MDaemon Mail Server di Indonesia Netiket: https://wiki.openstack.org/wiki/MailingListEtiquette Arsip: http://mdaemon-l.dutaint.com Dokumentasi : http://mdaemon.dutaint.co.id Berlangganan: Kirim mail ke mdaemon-l-subscr...@dutaint.com Henti Langgan: Kirim mail ke mdaemon-l-unsubscr...@dutaint.com Versi terakhir: MDaemon 22.0.3, SecurityGateway 8.5.3
[Mdaemon-L] refused to talk to me: 530 5.7.1 Connection refused
On 28/11/2022 16:39, Syafril Hermansyah via Mdaemon-L wrote: Apakah setelah dynamic block list dihapus masih belum bisa terima? Tetap tidak bisa pak Periksa lagi ke smtp-in log, cari dengan katakunci ".263.net". Di log hanya ada sg-smtp01.263.net (email berbeda, kl muncul di log artinya tidak masalah bs diterima) bukannya tyo-smtp01.263.net Pak. email sender nya saya input ke hostscreen.dat sbg "accept" juga tidak bisa Pak, jd apa ya yg melakkkukan reject ? -- --[mdaemon-l]-- Milis ini untuk Diskusi antar pengguna MDaemon Mail Server di Indonesia Netiket: https://wiki.openstack.org/wiki/MailingListEtiquette Arsip: http://mdaemon-l.dutaint.com Dokumentasi : http://mdaemon.dutaint.co.id Berlangganan: Kirim mail ke mdaemon-l-subscr...@dutaint.com Henti Langgan: Kirim mail ke mdaemon-l-unsubscr...@dutaint.com Versi terakhir: MDaemon 22.0.3, SecurityGateway 8.5.3
[Mdaemon-L] refused to talk to me: 530 5.7.1 Connection refused
On 28/11/2022 14:59, Ivan Leonardo wrote: On 28/11/2022 14:50, Syafril Hermansyah via Mdaemon-L wrote: Coba dihapus isian dynamic block list. http://mdaemon.dutaint.co.id/mdaemon/22.0/dynamic-screening_dynamic-blacklist.html boleh dicatat isian dynamic block list isinya IP berapa saja dan apa "comment" nya sebelum di clear up. Kalau setelah itu jadi bisa terima, bisa periksa ke berapa sender IP yang digunakan untuk kirim lalu cocokkan ke screening log. ini Pak isinya : Spambot statusnya Disable Pak, -- --[mdaemon-l]-- Milis ini untuk Diskusi antar pengguna MDaemon Mail Server di Indonesia Netiket:https://wiki.openstack.org/wiki/MailingListEtiquette Arsip:http://mdaemon-l.dutaint.com Dokumentasi :http://mdaemon.dutaint.co.id Berlangganan: Kirim mail kemdaemon-l-subscr...@dutaint.com Henti Langgan: Kirim mail kemdaemon-l-unsubscr...@dutaint.com Versi terakhir: MDaemon 22.0.3, SecurityGateway 8.5.3 Pak yg case ini jadinya bagaimana ya ? Maaf urgent soalnya Rgds, -- --[mdaemon-l]-- Milis ini untuk Diskusi antar pengguna MDaemon Mail Server di Indonesia Netiket: https://wiki.openstack.org/wiki/MailingListEtiquette Arsip: http://mdaemon-l.dutaint.com Dokumentasi : http://mdaemon.dutaint.co.id Berlangganan: Kirim mail ke mdaemon-l-subscr...@dutaint.com Henti Langgan: Kirim mail ke mdaemon-l-unsubscr...@dutaint.com Versi terakhir: MDaemon 22.0.3, SecurityGateway 8.5.3
[Mdaemon-L] refused to talk to me: 530 5.7.1 Connection refused
On 28/11/2022 14:50, Syafril Hermansyah via Mdaemon-L wrote: Coba dihapus isian dynamic block list. http://mdaemon.dutaint.co.id/mdaemon/22.0/dynamic-screening_dynamic-blacklist.html boleh dicatat isian dynamic block list isinya IP berapa saja dan apa "comment" nya sebelum di clear up. Kalau setelah itu jadi bisa terima, bisa periksa ke berapa sender IP yang digunakan untuk kirim lalu cocokkan ke screening log. tambahan info dari sender lain, semua errornya sama : * This is the mail system at host tyo-smtp01.263.net. * host mx1.pttdp.com[117.102.88.187] refused to talk to me: 530 5.7.1 Connection refused * host mx1.pttdp.com[117.102.88.187] refused to talk to me: 530 5.7.1 Connection refused * host mx1.pttdp.com[117.102.88.187] refused to talk to me: 530 5.7.1 Connection refused * host mx1.pttdp.com[117.102.88.187] refused to talk to me: 530 5.7.1 Connection refused * host mx1.pttdp.com[117.102.88.187] refused to talk to me: 530 5.7.1 Connection refused -- --[mdaemon-l]-- Milis ini untuk Diskusi antar pengguna MDaemon Mail Server di Indonesia Netiket: https://wiki.openstack.org/wiki/MailingListEtiquette Arsip: http://mdaemon-l.dutaint.com Dokumentasi : http://mdaemon.dutaint.co.id Berlangganan: Kirim mail ke mdaemon-l-subscr...@dutaint.com Henti Langgan: Kirim mail ke mdaemon-l-unsubscr...@dutaint.com Versi terakhir: MDaemon 22.0.3, SecurityGateway 8.5.3
[Mdaemon-L] refused to talk to me: 530 5.7.1 Connection refused
On 28/11/2022 14:50, Syafril Hermansyah via Mdaemon-L wrote: Coba dihapus isian dynamic block list. http://mdaemon.dutaint.co.id/mdaemon/22.0/dynamic-screening_dynamic-blacklist.html boleh dicatat isian dynamic block list isinya IP berapa saja dan apa "comment" nya sebelum di clear up. Kalau setelah itu jadi bisa terima, bisa periksa ke berapa sender IP yang digunakan untuk kirim lalu cocokkan ke screening log. ini Pak isinya : Spambot statusnya Disable Pak, -- --[mdaemon-l]-- Milis ini untuk Diskusi antar pengguna MDaemon Mail Server di Indonesia Netiket: https://wiki.openstack.org/wiki/MailingListEtiquette Arsip: http://mdaemon-l.dutaint.com Dokumentasi : http://mdaemon.dutaint.co.id Berlangganan: Kirim mail ke mdaemon-l-subscr...@dutaint.com Henti Langgan: Kirim mail ke mdaemon-l-unsubscr...@dutaint.com Versi terakhir: MDaemon 22.0.3, SecurityGateway 8.5.3
[Mdaemon-L] refused to talk to me: 530 5.7.1 Connection refused
Pak, hari ini random bbrp customer tidak bisa mengirim email ke kami. Saya cek di log tidak ada yg berhubungan. kira2 kenapa ya ? customer hanya mengirimkan info ini saya, saya sedang berusaha minta SMTP-out log dari server mereka Final-Recipient: rfc822; al...@pttdp.com Original-Recipient: rfc822;al...@pttdp.com Action: failed Status: 4.7.1 Remote-MTA: dns; mx1.pttdp.com Diagnostic-Code: smtp; 530 5.7.1 Connection refused X-Reason: host mx1.pttdp.com[117.102.88.187] refused to talk to me: 530 5.7.1 Connection refused -- --[mdaemon-l]-- Milis ini untuk Diskusi antar pengguna MDaemon Mail Server di Indonesia Netiket: https://wiki.openstack.org/wiki/MailingListEtiquette Arsip: http://mdaemon-l.dutaint.com Dokumentasi : http://mdaemon.dutaint.co.id Berlangganan: Kirim mail ke mdaemon-l-subscr...@dutaint.com Henti Langgan: Kirim mail ke mdaemon-l-unsubscr...@dutaint.com Versi terakhir: MDaemon 22.0.3, SecurityGateway 8.5.3
[Mdaemon-L] Email Tidak Terima
On 25/11/2022 15:37, Syafril Hermansyah via Mdaemon-L wrote: Screening log hanya mencatat IP address saja, karena itu adalah mail firewal. Cari IP 185.201.16.0/22 (185.201.16.0 - 185.201.19.255). saya cari words 182.201.16 dan 185.201.19 tidak ketemu Pak -- --[mdaemon-l]-- Milis ini untuk Diskusi antar pengguna MDaemon Mail Server di Indonesia Netiket: https://wiki.openstack.org/wiki/MailingListEtiquette Arsip: http://mdaemon-l.dutaint.com Dokumentasi : http://mdaemon.dutaint.co.id Berlangganan: Kirim mail ke mdaemon-l-subscr...@dutaint.com Henti Langgan: Kirim mail ke mdaemon-l-unsubscr...@dutaint.com Versi terakhir: MDaemon 22.0.3, SecurityGateway 8.5.3
[Mdaemon-L] Email Tidak Terima
On 25/11/2022 15:14, Syafril Hermansyah via Mdaemon-L wrote: Periksa ke screening log. Tidak ditemukan words otto pak di log ini. Saat ini sender sudah berhasil lagi kirim email ke kami, hanya problem di 1 email tadi saja. Makanya bingung apa penyebabnya Rgds, -- --[mdaemon-l]-- Milis ini untuk Diskusi antar pengguna MDaemon Mail Server di Indonesia Netiket: https://wiki.openstack.org/wiki/MailingListEtiquette Arsip: http://mdaemon-l.dutaint.com Dokumentasi : http://mdaemon.dutaint.co.id Berlangganan: Kirim mail ke mdaemon-l-subscr...@dutaint.com Henti Langgan: Kirim mail ke mdaemon-l-unsubscr...@dutaint.com Versi terakhir: MDaemon 22.0.3, SecurityGateway 8.5.3
[Mdaemon-L] Email Tidak Terima
Pak, saya ada case, sender mendapat tolakan saat kirim ke domain kami sbb : -Original Message- From: Mail Delivery System Sent: 25 November 2022 13:13 To:mich...@ottopharm.com Subject: Mail delivery failed: returning message to sender This message was created automatically by mail delivery software. A message that you sent could not be delivered to one or more of its recipients. This is a permanent error. The following address(es) failed: dary...@pttdp.com host mx1.pttdp.com [117.102.88.187] SMTP error from remote mail server after initial connection: 530 5.7.1 Connection refused tapi saya cek di SMTP-In Log, sptnya berhasil tapi email tidak kami terima : Error dimana ya ? Saya juga sudah cek di Routing Log tidak ada dari ottopharm.com ini, hanya ada di SMTP-in Log Fri 2022-11-25 13:54:24.481: Session 00462250; child 0016 Fri 2022-11-25 13:54:24.481: Accepting SMTP connection from 185.201.18.53:51046 to 192.168.10.2:25 Fri 2022-11-25 13:54:24.481: Location Screen says connection is from United States, North America Fri 2022-11-25 13:54:24.494: --> 220 webmail.pttdp.com ESMTP Fri, 25 Nov 2022 13:54:24 +0700 Fri 2022-11-25 13:54:24.950: <-- EHLO out16-53.antispamcloud.com Fri 2022-11-25 13:54:24.959: --> 250-webmail.pttdp.com Hello out16-53.antispamcloud.com [185.201.18.53], pleased to meet you Fri 2022-11-25 13:54:24.959: --> 250-ETRN Fri 2022-11-25 13:54:24.959: --> 250-AUTH LOGIN PLAIN Fri 2022-11-25 13:54:24.959: --> 250-8BITMIME Fri 2022-11-25 13:54:24.959: --> 250-ENHANCEDSTATUSCODES Fri 2022-11-25 13:54:24.959: --> 250-PIPELINING Fri 2022-11-25 13:54:24.959: --> 250-CHUNKING Fri 2022-11-25 13:54:24.959: --> 250-STARTTLS Fri 2022-11-25 13:54:24.959: --> 250 SIZE 11264000 Fri 2022-11-25 13:54:25.417: <-- STARTTLS Fri 2022-11-25 13:54:25.418: --> 220 2.7.0 Ready to start TLS Fri 2022-11-25 13:54:26.663: SSL negotiation successful (TLS 1.2, TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384_P256) Fri 2022-11-25 13:54:27.119: <-- EHLO out16-53.antispamcloud.com Fri 2022-11-25 13:54:27.124: --> 250-webmail.pttdp.com Hello out16-53.antispamcloud.com [185.201.18.53], pleased to meet you Fri 2022-11-25 13:54:27.124: --> 250-ETRN Fri 2022-11-25 13:54:27.124: --> 250-AUTH LOGIN PLAIN Fri 2022-11-25 13:54:27.124: --> 250-8BITMIME Fri 2022-11-25 13:54:27.124: --> 250-ENHANCEDSTATUSCODES Fri 2022-11-25 13:54:27.124: --> 250-PIPELINING Fri 2022-11-25 13:54:27.124: --> 250-CHUNKING Fri 2022-11-25 13:54:27.124: --> 250-REQUIRETLS Fri 2022-11-25 13:54:27.124: --> 250 SIZE 11264000 Fri 2022-11-25 13:54:27.577: <-- MAIL FROM: SIZE=13164 Fri 2022-11-25 13:54:27.589: Performing PTR lookup (53.18.201.185.IN-ADDR.ARPA) Fri 2022-11-25 13:54:27.603: * D=53.18.201.185.IN-ADDR.ARPA TTL=(10) PTR=[out16-53.antispamcloud.com] Fri 2022-11-25 13:54:27.619: * D=out16-53.antispamcloud.com TTL=(10) A=[185.201.18.53] Fri 2022-11-25 13:54:27.619: End PTR results Fri 2022-11-25 13:54:27.619: Performing IP lookup (out16-53.antispamcloud.com) Fri 2022-11-25 13:54:27.636: * D=out16-53.antispamcloud.com TTL=(10) A=[185.201.18.53] Fri 2022-11-25 13:54:27.636: End IP lookup results Fri 2022-11-25 13:54:27.645: Performing IP lookup (ottopharm.com) Fri 2022-11-25 13:54:37.646: * DNS: 10 second wait for DNS response exceeded (DNS Server: 203.142.82.222) Fri 2022-11-25 13:54:37.654: * D=ottopharm.com TTL=(60) A=[49.128.186.146] Fri 2022-11-25 13:54:37.829: * P=010 S=002 D=ottopharm.com TTL=(60) MX=[mx.spamexperts.com] Fri 2022-11-25 13:54:37.829: * P=020 S=000 D=ottopharm.com TTL=(60) MX=[fallbackmx.spamexperts.eu] Fri 2022-11-25 13:54:37.829: * P=030 S=001 D=ottopharm.com TTL=(60) MX=[lastmx.spamexperts.net] Fri 2022-11-25 13:54:37.832: * D=mx.spamexperts.com TTL=(1) A=[130.117.54.106] Fri 2022-11-25 13:54:37.839: * D=fallbackmx.spamexperts.eu TTL=(3) A=[130.117.54.106] Fri 2022-11-25 13:54:37.839: * D=fallbackmx.spamexperts.eu TTL=(3) A=[149.13.75.27] Fri 2022-11-25 13:54:37.839: * D=fallbackmx.spamexperts.eu TTL=(3) A=[130.117.53.188] Fri 2022-11-25 13:54:37.867: * D=lastmx.spamexperts.net TTL=(5) A=[130.117.53.188] Fri 2022-11-25 13:54:37.867: * D=lastmx.spamexperts.net TTL=(5) A=[38.89.254.156] Fri 2022-11-25 13:54:37.867: * D=lastmx.spamexperts.net TTL=(5) A=[149.13.75.27] Fri 2022-11-25 13:54:37.867: * D=lastmx.spamexperts.net TTL=(5) A=[38.111.198.185] Fri 2022-11-25 13:54:37.867: End IP lookup results Fri 2022-11-25 13:54:37.868: Performing SPF lookup (out16-53.antispamcloud.com / 185.201.18.53) Fri 2022-11-25 13:54:38.033: * Result: none; no SPF record in DNS Fri 2022-11-25 13:54:38.033: End SPF results Fri 2022-11-25 13:54:38.033: Performing SPF lookup (ottopharm.com / 185.201.18.53) Fri 2022-11-25 13:54:38.039: * Policy: v=spf1 +a +mx +ip4:116.204.249.48 +ip4:45.126.132.223 +include:spf.antispamcloud.com ~all Fri 2022-11-25 13:54:48.044: * DNS: 10 second wait for DNS response exceeded (DNS Server: 203.142.82.222) Fri 2022-11-25 13:54:48.045: * Evaluating +a:
[Mdaemon-L] DMARC Report
Pak, kadang ada bbrp recipient yg auto mengirimkan report DMARC dengan subject spt ini : Report Domain: pttdp.com Submitter: yahoo.com Report-ID: <1669252414.645335> dan terdapat attachment berupa xml file ini artinya apa ya ? Rgds, -- --[mdaemon-l]-- Milis ini untuk Diskusi antar pengguna MDaemon Mail Server di Indonesia Netiket: https://wiki.openstack.org/wiki/MailingListEtiquette Arsip: http://mdaemon-l.dutaint.com Dokumentasi : http://mdaemon.dutaint.co.id Berlangganan: Kirim mail ke mdaemon-l-subscr...@dutaint.com Henti Langgan: Kirim mail ke mdaemon-l-unsubscr...@dutaint.com Versi terakhir: MDaemon 22.0.3, SecurityGateway 8.5.3
[Mdaemon-L] Outbreak Protection
Pak utk OP ini, utk menghindari false positif/negatif apakah sebaiknya di setting : accepted for filtering dan quarantine ? Jika message ditolak oleh OP ini apakah ada notif ke sendernya ? dan apakah ada log nya ? Rgds, -- --[mdaemon-l]-- Milis ini untuk Diskusi antar pengguna MDaemon Mail Server di Indonesia Netiket: https://wiki.openstack.org/wiki/MailingListEtiquette Arsip: http://mdaemon-l.dutaint.com Dokumentasi : http://mdaemon.dutaint.co.id Berlangganan: Kirim mail ke mdaemon-l-subscr...@dutaint.com Henti Langgan: Kirim mail ke mdaemon-l-unsubscr...@dutaint.com Versi terakhir: MDaemon 22.0.3, SecurityGateway 8.5.3
[Mdaemon-L] Email Scam lolos masuk
On 09/11/2022 10:42, Syafril Hermansyah via Mdaemon-L wrote: lalu utk mencegah email spt ini harus ada tools utk screening message body ya ? spt pakai email secure gateway ? Tidak akan effektif sekalipun pakai SMTPrelay (edge, gateway), first attempt spam macam ini tetap akan diterima, tetapi berikutnya akan terblock (setelah dilakukan action blocking). Berikutnya akan terblock maksudnya yg karena ditambahkan ke hostscreen itu pak ? Koneksi ke cyren.com Spam database bermasalah, bisa karena kanal sibuk atau SSL/TLS connection truncate. Coba di restart MDaemon service dari windows service control panel apakah masih muncul error itu. Bisa periksa ke MDaemon plugin log untuk melihat sejak kapan error itu terjadi dan frekwensinya. Ternyata dari tgl 7-11-2022 error Pak Plugin nya, setelah direstart MD service baru online kembali. Kenapa bisa gitu ya Pak ? Pakai OS Windows apa? Apakah ada antivirus for file terinstall di MDaemon server atau firewall menerapkan tcp filtering untuk http/https (port 80/443)? AV pakai Kaspersky (MD sudah trusted apps) , kalau di Firewall device port 80/443 sudah open apa adayg perlu di cek lagi ? hrsnya sih open ya port umum itu. -- --[mdaemon-l]-- Milis ini untuk Diskusi antar pengguna MDaemon Mail Server di Indonesia Netiket: https://wiki.openstack.org/wiki/MailingListEtiquette Arsip: http://mdaemon-l.dutaint.com Dokumentasi : http://mdaemon.dutaint.co.id Berlangganan: Kirim mail ke mdaemon-l-subscr...@dutaint.com Henti Langgan: Kirim mail ke mdaemon-l-unsubscr...@dutaint.com Versi terakhir: MDaemon 22.0.3, SecurityGateway 8.5.3
[Mdaemon-L] Email Scam lolos masuk
On 09/11/2022 08:19, Ivan Leonardo wrote: Ternyata dari tgl 7-11-2022 error Pak Plugin nya, setelah direstart MD service baru online kembali. Kenapa bisa gitu ya Pak ? jd selama off efeknya spam banyak masuk ? Wed 2022-11-09 08:14:14.557: I [4C7B11A8] MDPGP plug-in loaded in slot 6 Wed 2022-11-09 08:14:14.557: I [4C7B11A9] Installing plug-in (Outbreak Protection) Wed 2022-11-09 08:14:14.557: I [4C7B11A9] E:\MDaemon\SecurityPlus\mdop.dll Wed 2022-11-09 08:14:14.559: I [4C7B11A9] MDOP, 1.3.8 Wed 2022-11-09 08:14:14.576: I [4C7B11A9] Outbreak Protection::StartupFuncName @07FEDBE5D750 Wed 2022-11-09 08:14:14.576: I [4C7B11A9] Outbreak Protection::ConfigFuncName @07FEDBE5DEB0 Wed 2022-11-09 08:14:14.576: I [4C7B11A9] Outbreak Protection::SMTPMessageFuncName2 @07FEDBE5DF30 Wed 2022-11-09 08:14:14.576: I [4C7B11A9] Outbreak Protection::ShutdownFuncName @07FEDBE5DD80 Wed 2022-11-09 08:14:14.576: I [4C7B11A9] Initializing Outbreak Protection plug-in Wed 2022-11-09 08:14:14.576: * Outbreak Protection engine is starting up... Wed 2022-11-09 08:14:16.812: * Outbreak Protection engine version: 8.02..10 Wed 2022-11-09 08:14:16.814: * Outbreak Protection engine is ready for use. Wed 2022-11-09 08:14:16.814: I [4C7B11A9] Outbreak Protection plug-in loaded in slot 7 Wed 2022-11-09 08:14:16.832: I [4C7B11A3] Creating service object Wed 2022-11-09 08:14:16.832: I [4C7B11A3] Starting management thread Wed 2022-11-09 08:14:16.833: I [4C7B11A3] Starting client thread Wed 2022-11-09 08:14:16.833: I [4C7B11A3] Started Rgds, Hanya bertahan 1 menit, error lagi Pak, smp saat ini masih error. saya tidak restart service lagi. 2022-11-09 08:15:54.366: * Outbreak Protection Error: Unable to comply with the request because you are not licensed for the antispam or VOD service. Contact your service provider to enable the service -- --[mdaemon-l]-- Milis ini untuk Diskusi antar pengguna MDaemon Mail Server di Indonesia Netiket: https://wiki.openstack.org/wiki/MailingListEtiquette Arsip: http://mdaemon-l.dutaint.com Dokumentasi : http://mdaemon.dutaint.co.id Berlangganan: Kirim mail ke mdaemon-l-subscr...@dutaint.com Henti Langgan: Kirim mail ke mdaemon-l-unsubscr...@dutaint.com Versi terakhir: MDaemon 22.0.3, SecurityGateway 8.5.3
[Mdaemon-L] Email Scam lolos masuk
On 08/11/2022 21:02, Syafril Hermansyah via Mdaemon-L wrote: On 08/11/22 20.05, Ivan Leonardo wrote: Pak email ini kenapa bisa lolos diterima MD ya ? Karena mail nya legal (menurut internet): sender domain registered, sender host memenuhi standard legalitas internet mail dan isi/content mailnya tidak bervirus dan spam scorenya dibawah nilai ambang (+12.0). Email legal tetap kirim scam artinya account tersebut kena hijack pak ? lalu utk mencegah email spt ini harus ada tools utk screening message body ya ? spt pakai email secure gateway ? dan di log ada message ini artinya apa ya ? Outbreak Protection Error: Unable to comply with the request because you are not licensed for the antispam or VOD service. Contact your service provider to enable the service. Koneksi ke cyren.com Spam database bermasalah, bisa karena kanal sibuk atau SSL/TLS connection truncate. Coba di restart MDaemon service dari windows service control panel apakah masih muncul error itu. Bisa periksa ke MDaemon plugin log untuk melihat sejak kapan error itu terjadi dan frekwensinya. Ternyata dari tgl 7-11-2022 error Pak Plugin nya, setelah direstart MD service baru online kembali. Kenapa bisa gitu ya Pak ? jd selama off efeknya spam banyak masuk ? Wed 2022-11-09 08:14:14.557: I [4C7B11A8] MDPGP plug-in loaded in slot 6 Wed 2022-11-09 08:14:14.557: I [4C7B11A9] Installing plug-in (Outbreak Protection) Wed 2022-11-09 08:14:14.557: I [4C7B11A9] E:\MDaemon\SecurityPlus\mdop.dll Wed 2022-11-09 08:14:14.559: I [4C7B11A9] MDOP, 1.3.8 Wed 2022-11-09 08:14:14.576: I [4C7B11A9] Outbreak Protection::StartupFuncName @07FEDBE5D750 Wed 2022-11-09 08:14:14.576: I [4C7B11A9] Outbreak Protection::ConfigFuncName @07FEDBE5DEB0 Wed 2022-11-09 08:14:14.576: I [4C7B11A9] Outbreak Protection::SMTPMessageFuncName2 @07FEDBE5DF30 Wed 2022-11-09 08:14:14.576: I [4C7B11A9] Outbreak Protection::ShutdownFuncName @07FEDBE5DD80 Wed 2022-11-09 08:14:14.576: I [4C7B11A9] Initializing Outbreak Protection plug-in Wed 2022-11-09 08:14:14.576: * Outbreak Protection engine is starting up... Wed 2022-11-09 08:14:16.812: * Outbreak Protection engine version: 8.02..10 Wed 2022-11-09 08:14:16.814: * Outbreak Protection engine is ready for use. Wed 2022-11-09 08:14:16.814: I [4C7B11A9] Outbreak Protection plug-in loaded in slot 7 Wed 2022-11-09 08:14:16.832: I [4C7B11A3] Creating service object Wed 2022-11-09 08:14:16.832: I [4C7B11A3] Starting management thread Wed 2022-11-09 08:14:16.833: I [4C7B11A3] Starting client thread Wed 2022-11-09 08:14:16.833: I [4C7B11A3] Started Rgds, -- --[mdaemon-l]-- Milis ini untuk Diskusi antar pengguna MDaemon Mail Server di Indonesia Netiket: https://wiki.openstack.org/wiki/MailingListEtiquette Arsip: http://mdaemon-l.dutaint.com Dokumentasi : http://mdaemon.dutaint.co.id Berlangganan: Kirim mail ke mdaemon-l-subscr...@dutaint.com Henti Langgan: Kirim mail ke mdaemon-l-unsubscr...@dutaint.com Versi terakhir: MDaemon 22.0.3, SecurityGateway 8.5.3
[Mdaemon-L] Email Scam lolos masuk
Pak email ini kenapa bisa lolos diterima MD ya ? dan di log ada message ini artinya apa ya ? padahal saya kan punya license antivirus, apakah antispam beda license lagi ? setahu saya jadi satu. Outbreak Protection Error: Unable to comply with the request because you are not licensed for the antispam or VOD service. Contact your service provider to enable the service. Tue 2022-11-08 13:55:49.122: 05: Session 00206295; child 0003 Tue 2022-11-08 13:55:49.122: 05: Accepting SMTP connection from 213.162.246.250:34997 to 192.168.10.2:25 Tue 2022-11-08 13:55:49.122: 07: Location Screen says connection is from Norway, Europe Tue 2022-11-08 13:55:49.127: 03: --> 220 webmail.pttdp.com ESMTP Tue, 08 Nov 2022 13:55:49 +0700 Tue 2022-11-08 13:55:49.321: 02: <-- EHLO evenuems.nl Tue 2022-11-08 13:55:49.321: 03: --> 250-webmail.pttdp.com Hello evenuems.nl [213.162.246.250], pleased to meet you Tue 2022-11-08 13:55:49.321: 03: --> 250-ETRN Tue 2022-11-08 13:55:49.321: 07: Location Screening hiding AUTH from country Norway, Europe Tue 2022-11-08 13:55:49.321: 03: --> 250-8BITMIME Tue 2022-11-08 13:55:49.321: 03: --> 250-ENHANCEDSTATUSCODES Tue 2022-11-08 13:55:49.321: 03: --> 250-PIPELINING Tue 2022-11-08 13:55:49.321: 03: --> 250-CHUNKING Tue 2022-11-08 13:55:49.321: 03: --> 250-STARTTLS Tue 2022-11-08 13:55:49.321: 03: --> 250 SIZE 10342400 Tue 2022-11-08 13:55:49.525: 02: <-- STARTTLS Tue 2022-11-08 13:55:49.525: 03: --> 220 2.7.0 Ready to start TLS Tue 2022-11-08 13:55:50.121: 01: SSL negotiation successful (TLS 1.2, TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384_P256) Tue 2022-11-08 13:55:50.315: 02: <-- EHLO evenuems.nl Tue 2022-11-08 13:55:50.316: 03: --> 250-webmail.pttdp.com Hello evenuems.nl [213.162.246.250], pleased to meet you Tue 2022-11-08 13:55:50.316: 03: --> 250-ETRN Tue 2022-11-08 13:55:50.316: 07: Location Screening hiding AUTH from country Norway, Europe Tue 2022-11-08 13:55:50.316: 03: --> 250-8BITMIME Tue 2022-11-08 13:55:50.316: 03: --> 250-ENHANCEDSTATUSCODES Tue 2022-11-08 13:55:50.316: 03: --> 250-PIPELINING Tue 2022-11-08 13:55:50.316: 03: --> 250-CHUNKING Tue 2022-11-08 13:55:50.316: 03: --> 250-REQUIRETLS Tue 2022-11-08 13:55:50.316: 03: --> 250 SIZE 10342400 Tue 2022-11-08 13:55:50.510: 02: <-- MAIL FROM: SIZE=6753 Tue 2022-11-08 13:55:50.510: 05: Performing PTR lookup (250.246.162.213.IN-ADDR.ARPA) Tue 2022-11-08 13:55:50.707: 05: * D=250.246.162.213.IN-ADDR.ARPA TTL=(240) PTR=[evenuems.nl] Tue 2022-11-08 13:55:50.948: 05: * D=evenuems.nl TTL=(15) A=[213.162.246.250] Tue 2022-11-08 13:55:50.948: 05: End PTR results Tue 2022-11-08 13:55:50.948: 05: Performing IP lookup (evenuems.nl) Tue 2022-11-08 13:55:50.950: 05: * D=evenuems.nl TTL=(15) A=[213.162.246.250] Tue 2022-11-08 13:55:50.950: 05: End IP lookup results Tue 2022-11-08 13:55:50.951: 05: Performing IP lookup (evenuems.nl) Tue 2022-11-08 13:55:51.136: 05: * D=evenuems.nl TTL=(15) A=[213.162.246.250] Tue 2022-11-08 13:55:51.136: 05: End IP lookup results Tue 2022-11-08 13:55:51.137: 09: Performing SPF lookup (evenuems.nl / 213.162.246.250) Tue 2022-11-08 13:55:51.687: 09: * Result: none; no SPF record in DNS Tue 2022-11-08 13:55:51.687: 09: End SPF results Tue 2022-11-08 13:55:51.687: 03: --> 250 2.1.0 Sender OK Tue 2022-11-08 13:55:51.687: 02: <-- RCPT TO: Tue 2022-11-08 13:55:51.700: 03: --> 250 2.1.5 Recipient OK Tue 2022-11-08 13:55:51.700: 02: <-- DATA Tue 2022-11-08 13:55:51.720: 03: --> 354 Enter mail, end with . Tue 2022-11-08 13:55:52.112: 01: Message size: 7381 bytes Tue 2022-11-08 13:55:52.113: 10: Performing DKIM verification Tue 2022-11-08 13:55:52.113: 10: * File: e:\mdaemon\queues\temp\md5001000113059.tmp Tue 2022-11-08 13:55:52.113: 10: * Message-ID: <20221107225353.fbde0e8358316...@evenuems.nl> Tue 2022-11-08 13:55:52.310: 10: * DKIM-Signature 1: v=1; a=rsa-sha256; c=relaxed/relaxed; d=evenuems.nl; s=default; t=1667890440; b h=From:To:Subject; Tue 2022-11-08 13:55:52.310: 10: * Verification result: good signature Tue 2022-11-08 13:55:52.311: 10: * Result: pass Tue 2022-11-08 13:55:52.311: 10: End DKIM results Tue 2022-11-08 13:55:52.320: 19: Performing DMARC processing Tue 2022-11-08 13:55:52.320: 19: * File: e:\mdaemon\queues\temp\md5001000113059.tmp Tue 2022-11-08 13:55:52.320: 19: * Message-ID: <20221107225353.fbde0e8358316...@evenuems.nl> Tue 2022-11-08 13:55:52.320: 19: * Author domain: evenuems.nl Tue 2022-11-08 13:55:52.320: 19: * Organizational domain: evenuems.nl Tue 2022-11-08 13:55:52.320: 19: * Query domain: _dmarc.evenuems.nl Tue 2022-11-08 13:55:52.487: 19: * Policy record: v=DMARC1; p=none Tue 2022-11-08 13:55:52.487: 19: * Checking authentication mechanisms for DMARC alignment Tue 2022-11-08 13:55:52.487: 19: * SPF: no SPF policy found Tue 2022-11-08 13:55:52.488: 19: * DKIM: domain "evenuems.nl" (from d= of signature #1) verified; and domain is DMARC aligned Tue 2022-11-08 13:55:52.488: 19: * Result: pass Tue 2022-
