RE: [qmailtoaster] Re: Weird Boucne Backs
Well Eric... Still stumped here...And I'm leaning away from Malware... Here's what I've determined for sure: The involved workstations at the client with the Exchange server are malware/virus free. I've scanned their machines six ways to Sunday, with nothing reported. I turned on logging on the Exchange server so that I could see all To, CC and BCC addresses on all outbound mail through the Exchange server. My thought here was, if something (Malware) was adding the addresses when the original e-mail was sent from Outlook, it would show in the Exchange outbound logs. There has only been one reported incident of getting bounces from addresses not sent to, and when checking the Exchange logs, only the original To address was logged. I then checked the qmail server that the e-mail was delivered to. This server shows the connection and one address for delivery. Now, if the Exchange server was the source of the additional e-mails, they should have shown up in the qmail server logs, or at least I would think they would. So, that leaves the qmail server being the source of injection of the additional e-mail addresses. What processes are involved from accepting the e-mail through handing it off to the destination server, and how might those be hijacked to be used to inject additional addresses? I'm assuming SpamDyke might be the first point where this could happen, but since the qmail smtp logs don't show anything, I would think it's occurring beyond that point. Any suggestions on where to look next? The particular server only provides qmail services, no webmail is in use. The server sits behind a load balancer that only allows ports 25 and 587 access from the outside world. Even ssh has to be done from within the core network. Mike -Original Message- From: Michael J. Colvin [mailto:mcol...@norcalisp.com] Sent: Tuesday, April 17, 2012 8:30 PM To: qmailtoaster-list@qmailtoaster.com Subject: RE: [qmailtoaster] Re: Weird Boucne Backs I guess QMT being compromised was my concern, but like I said, I've yet to get any of these, and I use the same server(s)... It is happening with two different users, or groups of users, on separate domains, but all using the same servers... I'm hoping it's malware, and will switch gears to try to confirm it's not before digging around in qmail anymore... I'll let you know. Thanks! Mike -Original Message- From: Eric Shubert [mailto:e...@shubes.net] Sent: Tuesday, April 17, 2012 8:15 PM To: qmailtoaster-list@qmailtoaster.com Subject: [qmailtoaster] Re: Weird Boucne Backs I think it's safe to say that this is malware, based on the alphabetical nature of the addresses. Question is, how are the messages getting into the queue? I suppose that your QMT could be compromised, but I have never heard of such a thing. Not outside of the realm of possibility, but given that the problem is limited to a single domain, I'd say not likely. My guess is that the client machines are infected with malware. What's perhaps worse is that the virus appears to be active in more than one host in the domain, which means it might be able to spread across their network. This could be difficult to rid. Does this happen on every message these clients send, or is the problem sporadic? If it's consistent (and perhaps even if it's not), you might try turning on spamdyke's detailed logging and have them submit on port 25. Then you'll see everything that's happening in the session, in detail. I would also recommend running malwarebytes on the client machines and see what that finds. Anti-virus programs don't catch all types of malware, and I think this might be a type that their anti-virus software isn't catching. -- -Eric 'shubes' On 04/17/2012 07:52 PM, Michael J. Colvin wrote: Have you identified the host which is connected to your QMT? Is it a client directly connecting, or are they coming in via an Exchange server? They are both... One is directly connecting to one of my Qmail servers, and the other client is coming from their Exchange server (They use us as a Smarthost). Here's the NDR from the other client: - -Original Message- From: mailer-dae...@mail.norcalisp.com [mailto:mailer-dae...@mail.norcalisp.com] Sent: Tuesday, April 17, 2012 11:01 AM To: g...@.com Subject: failure notice Hi. This is the qmail-send program at mail.norcalisp.com. I'm afraid I wasn't able to deliver your message to the following addresses. This is a permanent error; I've given up. Sorry it didn't work out. acamp...@yahoo.com: User and password not set, continuing without authentication. acamp...@yahoo.com 74.6.140.64 failed after I sent the message. Remote host said: 554 delivery error: dd This user doesn't have a yahoo.com account (acamp...@yahoo.com
[qmailtoaster] Weird Boucne Backs
Ok. I'm at my wits end. I've got two users, separate accounts, separate offices, that are getting bounce backs from our server indicating that the users they sent to are non-existant. The problem is, they never sent the e-mails to these addresses. But, they did send the e-mail that is attached to the NDR, so the e-mail is legit, just not all the recipient. I've checked the SMTP logs, and I can find the connections from the user, and the rcpt address they did send their e-mail to, but there's no sign of the appended addresses. I've tested and BCC and CC'd address do show in the logs, so if it was something on their clients appending the addresses (A virus or something), I should see that. I've looked through the SMTP with qmlog and the maillog. I can find the original message, but not where it sent to these other addresses. It's almost as if they are being added after qmail, but I don't see how. Here's a sample of the NDR. I've tried to leave it as intact as I can: --- -Original Message- From: mailer-dae...@mail.norcalisp.com [mailto:mailer-dae...@mail.norcalisp.com] Sent: Tuesday, April 17, 2012 3:56 PM To: Tiffany XX Subject: failure notice Hi. This is the qmail-send program at mail.norcalisp.com. I'm afraid I wasn't able to deliver your message to the following addresses. This is a permanent error; I've given up. Sorry it didn't work out. adrian1...@blueyonder.com: User and password not set, continuing without authentication. 216.139.51.4 does not like recipient. Remote host said: 550 Unknown User Giving up on 216.139.51.4. adria...@optonline.net: User and password not set, continuing without authentication. 167.206.4.77 does not like recipient. Remote host said: 550 5.1.1 unknown or illegal alias: adria...@optonline.net Giving up on 167.206.4.77. adr...@omi-ep.com: User and password not set, continuing without authentication. 64.26.60.153 does not like recipient. Remote host said: 550 5.7.1 adr...@omi-ep.com: Recipient address rejected: Invalid recipient Giving up on 64.26.60.153. adrian_crawfor...@yahoo.com: User and password not set, continuing without authentication. adrian_crawfor...@yahoo.com 98.139.175.225 failed after I sent the message. Remote host said: 554 delivery error: dd This user doesn't have a yahoo.com account (adrian_crawfor...@yahoo.com) [0] - mta1157.mail.bf1.yahoo.com adr...@evolveman.com: Sorry, I couldn't find any host named evolveman.com. (#5.1.2) adrian7...@yahoo.com: User and password not set, continuing without authentication. adrian7...@yahoo.com 98.139.54.60 failed after I sent the message. Remote host said: 554 delivery error: dd This user doesn't have a yahoo.com account (adrian7...@yahoo.com) [-5] - mta1247.mail.ac4.yahoo.com adr...@interprom.org: Sorry, I couldn't find any host named interprom.org. (#5.1.2) adria...@tesco.net: User and password not set, continuing without authentication. adria...@tesco.net 69.168.108.17 failed after I sent the message. Remote host said: 554 5.7.1 [P4] Message blocked due to spam content in the message. adr...@stewart9538.co.uk: Sorry, I couldn't find any host named stewart9538.co.uk. (#5.1.2) adriana_arno...@yahoo.com: User and password not set, continuing without authentication. adriana_arno...@yahoo.com 67.195.168.230 failed after I sent the message. Remote host said: 554 delivery error: dd Sorry your message to adriana_arno...@yahoo.com cannot be delivered. This account has been disabled or discontinued [#102]. - mta1002.mail.ac4.yahoo.com adr...@go-vcs.co.uk: Sorry, I couldn't find any host named go-vcs.co.uk. (#5.1.2) adrian_rami...@hotmail.com: User and password not set, continuing without authentication. 65.55.92.168 does not like recipient. Remote host said: 550 Requested action not taken: mailbox unavailable Giving up on 65.55.92.168. adrian110...@web.de: User and password not set, continuing without authentication. 213.165.67.104 does not like recipient. Remote host said: 552-Requested mail action aborted: exceeded storage allocation 552-Quota exceeded. 552 For explanation visit http://postmaster.web.de/error-messages Giving up on 213.165.67.104. adria...@ntlworld.co.uk: User and password not set, continuing without authentication. 81.103.221.10 does not like recipient. Remote host said: 550 Invalid recipient: adria...@ntlworld.co.uk Giving up on 81.103.221.10. adr...@limeway.freeserve.co.uk: User and password not set, continuing without authentication. 193.252.22.186 does not like recipient. Remote host said: 550 5.1.1 Adresse d au moins un destinataire invalide. Invalid recipient. OUK_416 [416] Giving up on 193.252.22.186. adr...@laurencelle.com: User and password not set, continuing without authentication. 75.127.253.122 does not like recipient. Remote host said: 550 5.1.1 User unknown Giving up
RE: [qmailtoaster] Re: Weird Boucne Backs
With the first client that reported this issue, I suspected malware also, and there's still that possibility. The similarity of the pool of addresses that are being sent to would tend to support this. But the second client is an office with at least 3 people reporting the issue, and I know they're anti-virus'are up to date and their clients are clean... The other client also claims to have up-to-date anti-virus, but I can't confirm this. The other thing is, the connections to Qmail don't show the additional rcpt addresses, only the actual intended rcpt. Malware, or not, shouldn't they show up in the logs? I guess the question is, how are they getting into the queue if they're never accepted (According to the logs) by Qmail? Perhaps I'm looking in the wrong logs? I've looked in the SMTP log and the maillog. Mike -Original Message- From: Eric Shubert [mailto:e...@shubes.net] Sent: Tuesday, April 17, 2012 6:59 PM To: qmailtoaster-list@qmailtoaster.com Subject: [qmailtoaster] Re: Weird Boucne Backs Based on the addresses, it appears to be malware. I'm not familiar with how any such things operate, so I'm not going to be of much help on this. The message got into your QMT queue somehow though, otherwise your QMT wouldn't have bounced it. Could this be a hint?: X-MimeOLE: Produced By Microsoft Exchange V6.5 This is the host that submitted the message to your QMT: Received: from unknown (HELO diamond..local) (XXX.106.67.7) Is this an Exchange server, or the user's host machine? FWIW, it appears odd to me that the message header doesn't indicate which client originated the message. My guess is that the machine at xxx.106.67.7 is likely infected. I'm not sure why the addresses aren't showing in the logs, but perhaps the malware is doing things in such a way that they don't show up. I really have no idea about that. -- -Eric 'shubes' On 04/17/2012 06:12 PM, Michael J. Colvin wrote: Ok. I'm at my wits end. I've got two users, separate accounts, separate offices, that are getting bounce backs from our server indicating that the users they sent to are non-existant. The problem is, they never sent the e-mails to these addresses. But, they did send the e-mail that is attached to the NDR, so the e-mail is legit, just not all the recipient. I've checked the SMTP logs, and I can find the connections from the user, and the rcpt address they did send their e-mail to, but there's no sign of the appended addresses. I've tested and BCC and CC'd address do show in the logs, so if it was something on their clients appending the addresses (A virus or something), I should see that. I've looked through the SMTP with qmlog and the maillog. I can find the original message, but not where it sent to these other addresses. It's almost as if they are being added after qmail, but I don't see how. Here's a sample of the NDR. I've tried to leave it as intact as I can: --- -Original Message- From: mailer-dae...@mail.norcalisp.com [mailto:mailer-dae...@mail.norcalisp.com] Sent: Tuesday, April 17, 2012 3:56 PM To: Tiffany XX Subject: failure notice Hi. This is the qmail-send program at mail.norcalisp.com. I'm afraid I wasn't able to deliver your message to the following addresses. This is a permanent error; I've given up. Sorry it didn't work out. adrian1...@blueyonder.com mailto:adrian1...@blueyonder.com: User and password not set, continuing without authentication. 216.139.51.4 does not like recipient. Remote host said: 550 Unknown User Giving up on 216.139.51.4. adria...@optonline.net mailto:adria...@optonline.net: User and password not set, continuing without authentication. 167.206.4.77 does not like recipient. Remote host said: 550 5.1.1 unknown or illegal alias: adria...@optonline.net mailto:adria...@optonline.net Giving up on 167.206.4.77. adr...@omi-ep.com mailto:adr...@omi-ep.com: User and password not set, continuing without authentication. 64.26.60.153 does not like recipient. Remote host said: 550 5.7.1 adr...@omi-ep.com mailto:adr...@omi-ep.com: Recipient address rejected: Invalid recipient Giving up on 64.26.60.153. adrian_crawfor...@yahoo.com mailto:adrian_crawfor...@yahoo.com: User and password not set, continuing without authentication. adrian_crawfor...@yahoo.com mailto:adrian_crawfor...@yahoo.com 98.139.175.225 failed after I sent the message. Remote host said: 554 delivery error: dd This user doesn't have a yahoo.com account (adrian_crawfor...@yahoo.com mailto:adrian_crawfor...@yahoo.com) [0] - mta1157.mail.bf1.yahoo.com adr...@evolveman.com mailto:adr...@evolveman.com: Sorry, I couldn't find any host named evolveman.com. (#5.1.2) adrian7...@yahoo.com mailto:adrian7...@yahoo.com: User and password not set, continuing without authentication. adrian7...@yahoo.com mailto:adrian7...@yahoo.com 98.139.54.60 failed after I sent
RE: [qmailtoaster] Re: Weird Boucne Backs
Have you identified the host which is connected to your QMT? Is it a client directly connecting, or are they coming in via an Exchange server? They are both... One is directly connecting to one of my Qmail servers, and the other client is coming from their Exchange server (They use us as a Smarthost). Here's the NDR from the other client: - -Original Message- From: mailer-dae...@mail.norcalisp.com [mailto:mailer-dae...@mail.norcalisp.com] Sent: Tuesday, April 17, 2012 11:01 AM To: g...@.com Subject: failure notice Hi. This is the qmail-send program at mail.norcalisp.com. I'm afraid I wasn't able to deliver your message to the following addresses. This is a permanent error; I've given up. Sorry it didn't work out. acamp...@yahoo.com: User and password not set, continuing without authentication. acamp...@yahoo.com 74.6.140.64 failed after I sent the message. Remote host said: 554 delivery error: dd This user doesn't have a yahoo.com account (acamp...@yahoo.com) [-5] - mta1114.mail.sk1.yahoo.com acan...@telus.net: User and password not set, continuing without authentication. 204.209.205.52 does not like recipient. Remote host said: 550 5.1.1 acan...@telus.net recipient rejected Giving up on 204.209.205.52. acampbell...@yahoo.co: Sorry, I couldn't find any host named yahoo.co. (#5.1.2) acampo...@aol.com: User and password not set, continuing without authentication. 205.188.146.194 does not like recipient. Remote host said: 550 5.1.1 acampo...@aol.com: Recipient address rejected: aol.com Giving up on 205.188.146.194. acanue...@dryden.net: User and password not set, continuing without authentication. 216.40.42.4 does not like recipient. Remote host said: 554 5.7.1 acanue...@dryden.net: Recipient address rejected: user acanue...@dryden.net does not exist Giving up on 216.40.42.4. acampbell5...@insightbb.com: User and password not set, continuing without authentication. 208.47.185.21 does not like recipient. Remote host said: 550 5.1.1 Recipient acampbell5...@insightbb.com does not exist here Giving up on 208.47.185.21. acamp4...@aol.com: User and password not set, continuing without authentication. 205.188.190.1 does not like recipient. Remote host said: 550 5.1.1 acamp4...@aol.com: Recipient address rejected: aol.com Giving up on 205.188.190.1. acan...@hotmail.com: User and password not set, continuing without authentication. 65.55.37.88 does not like recipient. Remote host said: 550 Requested action not taken: mailbox unavailable Giving up on 65.55.37.88. acand54...@aol.com: User and password not set, continuing without authentication. 64.12.90.66 does not like recipient. Remote host said: 550 5.1.1 acand54...@aol.com: Recipient address rejected: aol.com Giving up on 64.12.90.66. acan...@hotmail.com: User and password not set, continuing without authentication. 65.55.37.72 does not like recipient. Remote host said: 550 Requested action not taken: mailbox unavailable Giving up on 65.55.37.72. acana...@cs.com: User and password not set, continuing without authentication. 205.188.103.1 does not like recipient. Remote host said: 550 5.1.1 acana...@cs.com: Recipient address rejected: cs.com Giving up on 205.188.103.1. acan...@cablelan.net: User and password not set, continuing without authentication. 64.18.5.10 does not like recipient. Remote host said: 550 Unrouteable address Giving up on 64.18.5.10. acampb...@oanet.com: User and password not set, continuing without authentication. acampb...@oanet.com 216.17.3.48 failed on DATA command. Remote host said: 554 no valid recipients, bye acandelar...@cox.net: User and password not set, continuing without authentication. 68.6.19.3 does not like recipient. Remote host said: 550 5.1.1 acandelar...@cox.net invalid recipient - Refer to Error Codes section at http://postmaster.cox.net/confluence/display/postmaster/Error+Codes for more information. Giving up on 68.6.19.3. acampb...@pdxinc.com: User and password not set, continuing without authentication. 63.237.119.43 does not like recipient. Remote host said: 550 #5.1.0 Address rejected. Giving up on 63.237.119.43. acamp...@aws.org: User and password not set, continuing without authentication. acamp...@aws.org 12.176.97.142 failed after I sent the message. Remote host said: 554 5.7.0 Reject, id=31447-18 - SPAM acanta...@optusnet.com.au: User and password not set, continuing without authentication. 211.29.133.14 does not like recipient. Remote host said: 553 5.3.0 acanta...@optusnet.com.au... No such user Giving up on 211.29.133.14. aca...@laposte.net: User and password not set, continuing without authentication. aca...@laposte.net 193.251.214.113 failed after I sent the message. Remote host said: 550 5.2.0 Mail rejete. Mail rejected. LPN_506 [506] ac...@vt.edu: User and password not set, continuing without authentication. 198.82.183.88 does not like recipient. Remote host said: 550 User unknown Giving up on 198.82.183.88. --- Below this
RE: [qmailtoaster] Re: Weird Boucne Backs
I guess QMT being compromised was my concern, but like I said, I've yet to get any of these, and I use the same server(s)... It is happening with two different users, or groups of users, on separate domains, but all using the same servers... I'm hoping it's malware, and will switch gears to try to confirm it's not before digging around in qmail anymore... I'll let you know. Thanks! Mike -Original Message- From: Eric Shubert [mailto:e...@shubes.net] Sent: Tuesday, April 17, 2012 8:15 PM To: qmailtoaster-list@qmailtoaster.com Subject: [qmailtoaster] Re: Weird Boucne Backs I think it's safe to say that this is malware, based on the alphabetical nature of the addresses. Question is, how are the messages getting into the queue? I suppose that your QMT could be compromised, but I have never heard of such a thing. Not outside of the realm of possibility, but given that the problem is limited to a single domain, I'd say not likely. My guess is that the client machines are infected with malware. What's perhaps worse is that the virus appears to be active in more than one host in the domain, which means it might be able to spread across their network. This could be difficult to rid. Does this happen on every message these clients send, or is the problem sporadic? If it's consistent (and perhaps even if it's not), you might try turning on spamdyke's detailed logging and have them submit on port 25. Then you'll see everything that's happening in the session, in detail. I would also recommend running malwarebytes on the client machines and see what that finds. Anti-virus programs don't catch all types of malware, and I think this might be a type that their anti-virus software isn't catching. -- -Eric 'shubes' On 04/17/2012 07:52 PM, Michael J. Colvin wrote: Have you identified the host which is connected to your QMT? Is it a client directly connecting, or are they coming in via an Exchange server? They are both... One is directly connecting to one of my Qmail servers, and the other client is coming from their Exchange server (They use us as a Smarthost). Here's the NDR from the other client: - -Original Message- From: mailer-dae...@mail.norcalisp.com [mailto:mailer-dae...@mail.norcalisp.com] Sent: Tuesday, April 17, 2012 11:01 AM To: g...@.com Subject: failure notice Hi. This is the qmail-send program at mail.norcalisp.com. I'm afraid I wasn't able to deliver your message to the following addresses. This is a permanent error; I've given up. Sorry it didn't work out. acamp...@yahoo.com: User and password not set, continuing without authentication. acamp...@yahoo.com 74.6.140.64 failed after I sent the message. Remote host said: 554 delivery error: dd This user doesn't have a yahoo.com account (acamp...@yahoo.com) [-5] - mta1114.mail.sk1.yahoo.com acan...@telus.net: User and password not set, continuing without authentication. 204.209.205.52 does not like recipient. Remote host said: 550 5.1.1acan...@telus.net recipient rejected Giving up on 204.209.205.52. acampbell...@yahoo.co: Sorry, I couldn't find any host named yahoo.co. (#5.1.2) acampo...@aol.com: User and password not set, continuing without authentication. 205.188.146.194 does not like recipient. Remote host said: 550 5.1.1acampo...@aol.com: Recipient address rejected: aol.com Giving up on 205.188.146.194. acanue...@dryden.net: User and password not set, continuing without authentication. 216.40.42.4 does not like recipient. Remote host said: 554 5.7.1acanue...@dryden.net: Recipient address rejected: user acanue...@dryden.net does not exist Giving up on 216.40.42.4. acampbell5...@insightbb.com: User and password not set, continuing without authentication. 208.47.185.21 does not like recipient. Remote host said: 550 5.1.1 Recipient acampbell5...@insightbb.com does not exist here Giving up on 208.47.185.21. acamp4...@aol.com: User and password not set, continuing without authentication. 205.188.190.1 does not like recipient. Remote host said: 550 5.1.1acamp4...@aol.com: Recipient address rejected: aol.com Giving up on 205.188.190.1. acan...@hotmail.com: User and password not set, continuing without authentication. 65.55.37.88 does not like recipient. Remote host said: 550 Requested action not taken: mailbox unavailable Giving up on 65.55.37.88. acand54...@aol.com: User and password not set, continuing without authentication. 64.12.90.66 does not like recipient. Remote host said: 550 5.1.1acand54...@aol.com: Recipient address rejected: aol.com Giving up on 64.12.90.66. acan...@hotmail.com: User and password not set, continuing without authentication. 65.55.37.72 does not like recipient. Remote host said: 550 Requested action not taken: mailbox unavailable Giving up on 65.55.37.72
RE: [qmailtoaster] Re: how to SMTPS submission/port 587
I'm not sure having any advantage was the issue. The OP just didn't want them to do it. J I personally don't see where it matters either way. For me, I just want customers using a specific server. Mike From: Tonix (Antonio Nati) [mailto:to...@interazioni.it] Sent: Saturday, January 21, 2012 3:16 AM To: qmailtoaster-list@qmailtoaster.com Subject: Re: [qmailtoaster] Re: how to SMTPS submission/port 587 Correction: :-) I don't understand why a user should have adavantage using it. Tonino Il 21/01/2012 12:08, Tonix (Antonio Nati) ha scritto: There is something I don't understand. An autenticated user, using relay, has no spam control, no grey list, as he is already authenticated. Only antivirus check. If the same user wants to send using MX, he gots spam control, grey list, etc... So, which is the advantage of using public mx? public mx is the most controlled I don't understand which a user should have adavantage using it. Tonino Il 21/01/2012 03:19, Michael J. Colvin ha scritto: If I understand you correctly though If I was clever enough of a user to figure out the IP of your incoming e-mail server, either on purpose or simply by accident, I could user port 25, authenticate, and send mail... Now, this isn't a big deal, I understand, but it provides the opportunity for someone to circumvent (Either intentionally or by accident) what the original poster was trying to block. Mike -Original Message- From: Tonix (Antonio Nati) [mailto:to...@interazioni.it] Sent: Friday, January 20, 2012 5:11 PM To: qmailtoaster-list@qmailtoaster.com Subject: Re: [qmailtoaster] Re: how to SMTPS submission/port 587 Il 21/01/2012 01:39, Eric Shubert ha scritto: On 01/20/2012 01:07 PM, Michael J. Colvin wrote: I believe you could use SpamDyke to block your users from sending via port 25... You could block via the domain name, you could block by IP address and rDNS, assuming your users have specific IP's (Or range of IP's) or rDNS information... You could do all three too... Or does authentication bypass SpamDyke? I forget. Authenticated connections bypass all filters. Sorry. ;) If it does, set up two servers... One for incoming mail, one for outgoing mail. Turn port 25 off on the outbound server, forcing users to use a port that's active, like 587. Inbound mail will come in via port 25 from outside mail servers, use smtproutes to forward it to your inside mail server via port 587, use SpamDyke to block your users' domain's in the From field (Works great for stopping a lot of SPAM too!) and then remove the ability to authenticate on 25 (No e-mail addresses on the server)... If server count is an issue, use a VM and put both servers on one physical server... Mike This took me a couple reads, but you know what? I think I get it, and I kinda like it! :) This definitely deserves to be hashed around a bit. Having 2 separate (QMT) hosts, one for outbound (submission) and one for inbound (smtp) makes some sense, if for no other reason than it's simply logical. One of QMT's weaknesses in the past has been that everything is tightly wound and interdependent, aka highly coupled (as we used to say about modules in structured programs). This is clearly a place where roles can, and probably should be delineated. Along the same lines as MUA, MSA, MTA, MDA. (see Nov'07 RFC5068 entitled Best Current Practice - Email Submission: http://tools.ietf.org/html/rfc5068) While I was looking for that RFC specifically, I came across this one: http://tools.ietf.org/html/rfc6409 from Nov'11. It's not easy keeping up with the times. :) I still need to read this one, but I'll go ahead and post this reply for the time being. If you have a thought or idea you'd like to share about this, please chime in! Eric, while I like this model (and we are already using it), I don't understand the request originatin this thread. We simply told our customers which address they could use for relaying (relay.yourdomain.com), with no antispam, and they all are using this relay, with their internal communication faster and trouble free. Probably our success point is we are using two different IP addresses for this purpose: - we receive mx on mx.yourdomain.com (free), port 25 - we accept relaying on relay.yourdomain.com (must auth), ports 25 and 587 Probably having two different addresses is much better then simply using different ports. Just tell your customers which address must be used for relaying, and use an mx name without telling them. Regards, Tonino Thanks. -- Inter@zioniInterazioni di Antonio Nati http://www.interazioni.it to...@interazioni.it
RE: [qmailtoaster] Re: how to SMTPS submission/port 587
I believe you could use SpamDyke to block your users from sending via port 25... You could block via the domain name, you could block by IP address and rDNS, assuming your users have specific IP's (Or range of IP's) or rDNS information... You could do all three too... Or does authentication bypass SpamDyke? I forget. If it does, set up two servers... One for incoming mail, one for outgoing mail. Turn port 25 off on the outbound server, forcing users to use a port that's active, like 587. Inbound mail will come in via port 25 from outside mail servers, use smtproutes to forward it to your inside mail server via port 587, use SpamDyke to block your users' domain's in the From field (Works great for stopping a lot of SPAM too!) and then remove the ability to authenticate on 25 (No e-mail addresses on the server)... If server count is an issue, use a VM and put both servers on one physical server... Mike -Original Message- From: Eric Shubert [mailto:e...@shubes.net] Sent: Friday, January 20, 2012 9:22 AM To: qmailtoaster-list@qmailtoaster.com Subject: [qmailtoaster] Re: how to SMTPS submission/port 587 On 01/20/2012 10:09 AM, Kalil Costa - Brasilsite wrote: Guys, How to configure my qmailtoaster to use port 587 SMTPS Submission for my clients and port 25 for other servers from internet ? Some like this --CLIENTS- port smtp/587- ** * SERVER * --OTHER INTERNET MAIL SERVERS --- port 25--- * QMAILTOASTER * * * --CLIENTS - port 25 ***BLOCKED*** *** Thanks for help Kalz - The stock QMT supports TLS on port 587 for submission, although there is no way to enforce TLS. Authentication is required though. SMTPS (port 465) is deprecated, and not implemented in the stock QMT. If you really need it, there are instructions for implementing it on the wiki. I don't know of a way to block clients from using port 25. Never heard of such a thing, and honestly can't think of a reason why you might want to do this. If a client uses port 25 and authenticates, I think the processing is the same as if they used port 587. Someone please correct me if I'm wrong about this. -- -Eric 'shubes' --- -- Qmailtoaster is sponsored by Vickers Consulting Group (www.vickersconsulting.com) Vickers Consulting Group offers Qmailtoaster support and installations. If you need professional help with your setup, contact them today! --- -- Please visit qmailtoaster.com for the latest news, updates, and packages. To unsubscribe, e-mail: qmailtoaster-list- unsubscr...@qmailtoaster.com For additional commands, e-mail: qmailtoaster-list- h...@qmailtoaster.com - Qmailtoaster is sponsored by Vickers Consulting Group (www.vickersconsulting.com) Vickers Consulting Group offers Qmailtoaster support and installations. If you need professional help with your setup, contact them today! - Please visit qmailtoaster.com for the latest news, updates, and packages. To unsubscribe, e-mail: qmailtoaster-list-unsubscr...@qmailtoaster.com For additional commands, e-mail: qmailtoaster-list-h...@qmailtoaster.com
RE: [qmailtoaster] Re: how to SMTPS submission/port 587
Ya.. Sorry about that Eric... I was in a hurry to get somewhere, but wanted to reply before I left...So, it may not have read very well. :-) Basically, this is what I'm doing now. I have two QMT hosts that accept inbound e-mail for all domains I host. They basically host spamdyke and act as filters for inbound mail. These servers use SMTPROUTES to send any mail that is accepted to the Customer e-mail server. Currently, this is actually an old QmailRocks server that I've just been to lazy to migrate off of... This server is the one my customers use to send and receive e-mail from. If there are issues with this server, mail is queued up in the Filter servers. If clients attempt to send or receive mail from the Filter servers, they can't, since SpamDyke blocks mail being sent From my hosted domains on these servers (You've mentioned doing this before to block spammers, and since these servers should only receive mail from other hosts using the MX record, there shouldn't be any mail coming in FROM my clients...) If the client tries to authenticate, they fail, since this server only accepts mail at the domain level and has no user information... On the Clients mail server, I block everything except from the Filter servers on port 25, forcing users to port 587... What's nice about this is, the Filter cluster is scalable as needed, and the customer side, once I get a chance, can be scaled, migrated, split, etc, all by changing the SMTPROUTES information... If I decide to move hosted domains to individual servers (Internal exchange servers, shared hosting on other servers, etc) I can do it pretty easily. I should add that I run load balancing in front of this whole mess, which provides some redundancy for the inbound mail servers and eventually the Customer facing servers... You could pretty easily do all this with two physical machines, two virtual servers on each, one handing inbound, one outbound, and have a pretty redundant setup. Add in Jake's multiple server idea, so that you can sync the backend of both of the customer servers, and you're set. :-) I probably didn't explain this much better than before...But, hey, it's Friday... What do you expect? :-) Mike -Original Message- From: Eric Shubert [mailto:e...@shubes.net] Sent: Friday, January 20, 2012 4:39 PM To: qmailtoaster-list@qmailtoaster.com Subject: [qmailtoaster] Re: how to SMTPS submission/port 587 On 01/20/2012 01:07 PM, Michael J. Colvin wrote: I believe you could use SpamDyke to block your users from sending via port 25... You could block via the domain name, you could block by IP address and rDNS, assuming your users have specific IP's (Or range of IP's) or rDNS information... You could do all three too... Or does authentication bypass SpamDyke? I forget. Authenticated connections bypass all filters. Sorry. ;) If it does, set up two servers... One for incoming mail, one for outgoing mail. Turn port 25 off on the outbound server, forcing users to use a port that's active, like 587. Inbound mail will come in via port 25 from outside mail servers, use smtproutes to forward it to your inside mail server via port 587, use SpamDyke to block your users' domain's in the From field (Works great for stopping a lot of SPAM too!) and then remove the ability to authenticate on 25 (No e-mail addresses on the server)... If server count is an issue, use a VM and put both servers on one physical server... Mike This took me a couple reads, but you know what? I think I get it, and I kinda like it! :) This definitely deserves to be hashed around a bit. Having 2 separate (QMT) hosts, one for outbound (submission) and one for inbound (smtp) makes some sense, if for no other reason than it's simply logical. One of QMT's weaknesses in the past has been that everything is tightly wound and interdependent, aka highly coupled (as we used to say about modules in structured programs). This is clearly a place where roles can, and probably should be delineated. Along the same lines as MUA, MSA, MTA, MDA. (see Nov'07 RFC5068 entitled Best Current Practice - Email Submission: http://tools.ietf.org/html/rfc5068) While I was looking for that RFC specifically, I came across this one: http://tools.ietf.org/html/rfc6409 from Nov'11. It's not easy keeping up with the times. :) I still need to read this one, but I'll go ahead and post this reply for the time being. If you have a thought or idea you'd like to share about this, please chime in! Thanks. -- -Eric 'shubes' --- -- Qmailtoaster is sponsored by Vickers Consulting Group (www.vickersconsulting.com) Vickers Consulting Group offers Qmailtoaster support and installations. If you need professional help with your setup, contact them today
RE: [qmailtoaster] Re: how to SMTPS submission/port 587
If I understand you correctly though If I was clever enough of a user to figure out the IP of your incoming e-mail server, either on purpose or simply by accident, I could user port 25, authenticate, and send mail... Now, this isn't a big deal, I understand, but it provides the opportunity for someone to circumvent (Either intentionally or by accident) what the original poster was trying to block. Mike -Original Message- From: Tonix (Antonio Nati) [mailto:to...@interazioni.it] Sent: Friday, January 20, 2012 5:11 PM To: qmailtoaster-list@qmailtoaster.com Subject: Re: [qmailtoaster] Re: how to SMTPS submission/port 587 Il 21/01/2012 01:39, Eric Shubert ha scritto: On 01/20/2012 01:07 PM, Michael J. Colvin wrote: I believe you could use SpamDyke to block your users from sending via port 25... You could block via the domain name, you could block by IP address and rDNS, assuming your users have specific IP's (Or range of IP's) or rDNS information... You could do all three too... Or does authentication bypass SpamDyke? I forget. Authenticated connections bypass all filters. Sorry. ;) If it does, set up two servers... One for incoming mail, one for outgoing mail. Turn port 25 off on the outbound server, forcing users to use a port that's active, like 587. Inbound mail will come in via port 25 from outside mail servers, use smtproutes to forward it to your inside mail server via port 587, use SpamDyke to block your users' domain's in the From field (Works great for stopping a lot of SPAM too!) and then remove the ability to authenticate on 25 (No e-mail addresses on the server)... If server count is an issue, use a VM and put both servers on one physical server... Mike This took me a couple reads, but you know what? I think I get it, and I kinda like it! :) This definitely deserves to be hashed around a bit. Having 2 separate (QMT) hosts, one for outbound (submission) and one for inbound (smtp) makes some sense, if for no other reason than it's simply logical. One of QMT's weaknesses in the past has been that everything is tightly wound and interdependent, aka highly coupled (as we used to say about modules in structured programs). This is clearly a place where roles can, and probably should be delineated. Along the same lines as MUA, MSA, MTA, MDA. (see Nov'07 RFC5068 entitled Best Current Practice - Email Submission: http://tools.ietf.org/html/rfc5068) While I was looking for that RFC specifically, I came across this one: http://tools.ietf.org/html/rfc6409 from Nov'11. It's not easy keeping up with the times. :) I still need to read this one, but I'll go ahead and post this reply for the time being. If you have a thought or idea you'd like to share about this, please chime in! Eric, while I like this model (and we are already using it), I don't understand the request originatin this thread. We simply told our customers which address they could use for relaying (relay.yourdomain.com), with no antispam, and they all are using this relay, with their internal communication faster and trouble free. Probably our success point is we are using two different IP addresses for this purpose: - we receive mx on mx.yourdomain.com (free), port 25 - we accept relaying on relay.yourdomain.com (must auth), ports 25 and 587 Probably having two different addresses is much better then simply using different ports. Just tell your customers which address must be used for relaying, and use an mx name without telling them. Regards, Tonino Thanks. -- Inter@zioniInterazioni di Antonio Nati http://www.interazioni.it to...@interazioni.it --- -- Qmailtoaster is sponsored by Vickers Consulting Group (www.vickersconsulting.com) Vickers Consulting Group offers Qmailtoaster support and installations. If you need professional help with your setup, contact them today! --- -- Please visit qmailtoaster.com for the latest news, updates, and packages. To unsubscribe, e-mail: qmailtoaster-list- unsubscr...@qmailtoaster.com For additional commands, e-mail: qmailtoaster-list- h...@qmailtoaster.com - Qmailtoaster is sponsored by Vickers Consulting Group (www.vickersconsulting.com) Vickers Consulting Group offers Qmailtoaster support and installations. If you need professional help with your setup, contact them today! - Please visit
RE: [qmailtoaster] Re: [?? Probable Spam] Re: [qmailtoaster] Re: [qmailtoaster] Re: How can I configure qmailtoaster to prevent outbound spamming/ set up throttling/filter inbound spam messages with k
-Original Message- From: Peter Peltonen [mailto:peter.pelto...@gmail.com] Sent: Tuesday, January 10, 2012 2:46 PM To: qmailtoaster-list@qmailtoaster.com Subject: Re: [qmailtoaster] Re: [?? Probable Spam] Re: [qmailtoaster] Re: [qmailtoaster] Re: How can I configure qmailtoaster to prevent outbound spamming/ set up throttling/filter inbound spam messages with keywords in subject, body, so on Hi, On Tue, Jan 10, 2012 at 2:23 PM, Amir Abbasi abb...@tebyanidc.ir wrote: Thanks, is there any throttling feature for qmail-toaster? Please, do not top post. Do you mean with throttling same as with bandwidth throttling: http://en.wikipedia.org/wiki/Bandwidth_throttling So that a server administrator may implement bandwidth throttling to control the number of requests a server responds to within a specified period of time? Interesting idea: to limit the load originating from brute-force attacks it might be a good idea to throttle the requests down during night time. But I have no idea how one might to accomplish this, at least there is no direct support in qmailtoaster for this, I assume? Fail2Ban, while not limiting brute force attacks by bandwidth, does a fantastic job of stopping brute force attacks. I've not implemented it on Qmail, but I believe there's an article in the Wiki. I have used it on Asterisk boxes, and it works really well... Potential issues when using with Qmail... If a user messes up setting up their e-mail client, and tries to log in too many times with the wrong username/password, their IP will get blocked. This may be an issue if you have a LOT of clients and they are... E-mail challenged. :-) You should be able to minimize these issues by setting the jail time to something fairly short, like 20 minutes or so. This will allow legitimate users to clear their IP's in a relatively short time, but will block unwanted IP's for a sufficient time that they move on to easier targets... You could also increase the number of failed attempts to a number that's acceptable for a user to attempt, but that beyond is more likely someone trying to brute force someone's username/password. Say something like 10 failed attempts, or may 20... That will limit the duration of the attack. Once they attacker hits these marks, they'll be stopped before even attempting to log in, which will take the load off of the MySQL server. Fail2Ban is the SpamDyke of brute force attacks. :-) - Qmailtoaster is sponsored by Vickers Consulting Group (www.vickersconsulting.com) Vickers Consulting Group offers Qmailtoaster support and installations. If you need professional help with your setup, contact them today! - Please visit qmailtoaster.com for the latest news, updates, and packages. To unsubscribe, e-mail: qmailtoaster-list-unsubscr...@qmailtoaster.com For additional commands, e-mail: qmailtoaster-list-h...@qmailtoaster.com
RE: [qmailtoaster] Re: qtp-prune-graylist
Not sure, but couldn't you copy the greylist tree to a usb, or back to the fs, reboot, then copy it back the tempfs? I'm not a linux guru at all, so it's more of a question than a suggestion. ;-) Mike -Original Message- From: Eric Shubert [mailto:e...@shubes.net] Sent: Friday, October 14, 2011 8:37 AM To: qmailtoaster-list@qmailtoaster.com Subject: [qmailtoaster] Re: qtp-prune-graylist On 10/13/2011 05:05 PM, Casey wrote: Anyone running qtp-prune-graylist from cron? If so, how frequently? -- Casey Smile Global Technical Support Submit or check trouble tickets http://billing.smileglobal.com www.smileglobal.com http://www.smileglobal.com I run it daily. This is where the qtp-install-spamdyke script automatically puts it. Are you having a problem with it running a long time (hours)? Speaking of this, has anyone considered or actually put the graylist tree in a tmpfs? Might be something to consider for ISP type configurations which have very high volumes. This should also speed up qtp-prune-graylist considerably. The only drawback I see would be that all graylisting would need to start all over when the machine is rebooted. That shouldn't be a show stopper though, should it? ;) -- -Eric 'shubes' - Qmailtoaster is sponsored by Vickers Consulting Group (www.vickersconsulting.com) Vickers Consulting Group offers Qmailtoaster support and installations. If you need professional help with your setup, contact them today! - Please visit qmailtoaster.com for the latest news, updates, and packages. To unsubscribe, e-mail: qmailtoaster-list-unsubscr...@qmailtoaster.com For additional commands, e-mail: qmailtoaster-list-h...@qmailtoaster.com - Qmailtoaster is sponsored by Vickers Consulting Group (www.vickersconsulting.com) Vickers Consulting Group offers Qmailtoaster support and installations. If you need professional help with your setup, contact them today! - Please visit qmailtoaster.com for the latest news, updates, and packages. To unsubscribe, e-mail: qmailtoaster-list-unsubscr...@qmailtoaster.com For additional commands, e-mail: qmailtoaster-list-h...@qmailtoaster.com
RE: [qmailtoaster] Re: qtp-prune-graylist
Even a broken clock is right twice a day. :-) -Original Message- From: Eric Shubert [mailto:e...@shubes.net] Sent: Friday, October 14, 2011 11:22 AM To: qmailtoaster-list@qmailtoaster.com Subject: [qmailtoaster] Re: qtp-prune-graylist That would certainly be possible. A usb drive would be on the slow side. Might run a cron job to tar it up periodically to the HDD though, then restore it on reboot. Nice idea, Michael. :) On 10/14/2011 11:05 AM, Michael J. Colvin wrote: Not sure, but couldn't you copy the greylist tree to a usb, or back to the fs, reboot, then copy it back the tempfs? I'm not a linux guru at all, so it's more of a question than a suggestion. ;-) Mike -Original Message- From: Eric Shubert [mailto:e...@shubes.net] Sent: Friday, October 14, 2011 8:37 AM To: qmailtoaster-list@qmailtoaster.com Subject: [qmailtoaster] Re: qtp-prune-graylist On 10/13/2011 05:05 PM, Casey wrote: Anyone running qtp-prune-graylist from cron? If so, how frequently? -- Casey Smile Global Technical Support Submit or check trouble tickets http://billing.smileglobal.com www.smileglobal.comhttp://www.smileglobal.com I run it daily. This is where the qtp-install-spamdyke script automatically puts it. Are you having a problem with it running a long time (hours)? Speaking of this, has anyone considered or actually put the graylist tree in a tmpfs? Might be something to consider for ISP type configurations which have very high volumes. This should also speed up qtp-prune-graylist considerably. The only drawback I see would be that all graylisting would need to start all over when the machine is rebooted. That shouldn't be a show stopper though, should it? ;) -- -Eric 'shubes' - Qmailtoaster is sponsored by Vickers Consulting Group (www.vickersconsulting.com) Vickers Consulting Group offers Qmailtoaster support and installations. If you need professional help with your setup, contact them today! - Please visit qmailtoaster.com for the latest news, updates, and packages. To unsubscribe, e-mail: qmailtoaster-list-unsubscr...@qmailtoaster.com For additional commands, e-mail: qmailtoaster-list-h...@qmailtoaster.com - Qmailtoaster is sponsored by Vickers Consulting Group (www.vickersconsulting.com) Vickers Consulting Group offers Qmailtoaster support and installations. If you need professional help with your setup, contact them today! - Please visit qmailtoaster.com for the latest news, updates, and packages. To unsubscribe, e-mail: qmailtoaster-list-unsubscr...@qmailtoaster.com For additional commands, e-mail: qmailtoaster-list-h...@qmailtoaster.com
RE: [qmailtoaster] Re: app to tag emails that fail RBL
Personally, I find that spamdyke has very few false positives. In those few cases, I whitelist the domain (as a temporary measure) and notify the administrator of the offending domain that they have a problem. I understand that this process may not work so well for ISPs though. -- -Eric 'shubes' And I'm not sure I'd classify that as a false positive... It someone's got a screwed up DNS entry, no RDNS, or is blacklisted, that's not a false positive. It may be unintended blocking, but it's not a false positive, at least not in my mind. I actually find (As an ISP) that blocking stuff has netted me more new clients than cost me existing ones. Usually, the offending ISP/Hosting provider doesn't respond to their clients complaints, and when I do, they would rather do business with an ISP that is responsive to their clients than with one that isn't... I can usually give a pretty detailed reason why the e-mail was blocked, explain how it's likely affecting their mail to other domains, and how the issue is on their end. When they get It's not on our end, it must be someone else's problem from their ISP, it's an easy sale. :-) Mike - Qmailtoaster is sponsored by Vickers Consulting Group (www.vickersconsulting.com) Vickers Consulting Group offers Qmailtoaster support and installations. If you need professional help with your setup, contact them today! - Please visit qmailtoaster.com for the latest news, updates, and packages. To unsubscribe, e-mail: qmailtoaster-list-unsubscr...@qmailtoaster.com For additional commands, e-mail: qmailtoaster-list-h...@qmailtoaster.com
RE: [qmailtoaster] Re: Trash being emptied for some users but not all
You're missing something here... Not sure what, but something's missing. He's either using another mail client to check via IMAP from home, or something... Is he checking mail from his phone? Perhaps that client has something set. Does he use Squirrelmail? I believe there's a setting in there that empties the trash when logging off. I believe Outlook or Outlook Express also has settings that empty the trash when logging off... Drill him about where he checks mail from... All of the places he checks from. Or, switch up, and talk to the colleague that has the same thing. You might get more information from him. I agree with the previous post about getting them to change their method of handling mail and not trashing mail they want, but sometimes that's easier said than done... If you can find the offending culprit that's deleting the trash, you might save yourself some heartache. The thing I've never liked about having clients use IMAP is, they then store Gig's of worthless mail on my server, versus their PC... I usually set up their clients so that the POP the mail, leave it on the server for 10 days, then remove it. That usually gives them enough time to get their mail at home/office/phone, and prevents years worth of their porn links from piling up on my server... Any, keep looking. You'll find they both have second mail clients somewhere that are deleting the trash. Mike -Original Message- From: Dan McAllister [mailto:d...@it4soho.com] Sent: Monday, August 22, 2011 10:18 AM To: qmailtoaster-list@qmailtoaster.com Subject: Re: [qmailtoaster] Re: Trash being emptied for some users but not all On 8/22/2011 11:22 AM, Eric Shubert wrote: On 08/22/2011 08:04 AM, Maxwell Smart wrote: On 08/22/2011 07:31 AM, Dan McAllister wrote: Greetings QMailers... I have a client who's hopping mad because his Trash folder is being cleaned out periodically he clearly does not want this to happen. He reports that this is happening on his system and a colleagues, but not everyone on the domain. I suspect his Thunderbird client is doing some kind of trash management... but these are all IMAP accounts, so Thunderbird shouldn't be worrying about folder sizes... should it? Any ideas -- or anyone else chased this ghost -- would be greatly appreciated. Thanks Dan IT4SOHO There is a setting in Thunderbird under Account Settings Syncronization and Storage that could be your culprit. And which setting would that be? The Junk Mail and Synchronization Storage settings are all set to NEVER delete messages... And the qtp-clean-trash is NOT in my active cron folders... - Qmailtoaster is sponsored by Vickers Consulting Group (www.vickersconsulting.com) Vickers Consulting Group offers Qmailtoaster support and installations. If you need professional help with your setup, contact them today! - Please visit qmailtoaster.com for the latest news, updates, and packages. To unsubscribe, e-mail: qmailtoaster-list-unsubscr...@qmailtoaster.com For additional commands, e-mail: qmailtoaster-list-h...@qmailtoaster.com - Qmailtoaster is sponsored by Vickers Consulting Group (www.vickersconsulting.com) Vickers Consulting Group offers Qmailtoaster support and installations. If you need professional help with your setup, contact them today! - Please visit qmailtoaster.com for the latest news, updates, and packages. To unsubscribe, e-mail: qmailtoaster-list-unsubscr...@qmailtoaster.com For additional commands, e-mail: qmailtoaster-list-h...@qmailtoaster.com
RE: [qmailtoaster] Re: Trash being emptied for some users but not all
I agree with your points. I guess I should have been a little clearer. I was referring mainly to my ISP customers. I don't want to store their mail because I make so little off of their connectivity service (DSL or Dialup) and they don't pay for mail (accounts are included in the access), and with quota's broken, it can get to be a pain. J Luckily, most use Gmail/Yahoo/etc, so it's not as big of an issue as it used to be. These users also tend to be residential. For my business IT customers, yes, that's different, although most have an internal Exchange service, and I simply filter the mail, so none is stored on my end, and the backup occurs on their server. I still say look for him using another client somewhere.Phone, home, another PC somewhere. Mike From: Dan McAllister [mailto:d...@it4soho.com] Sent: Monday, August 22, 2011 1:57 PM To: qmailtoaster-list@qmailtoaster.com Subject: Re: [qmailtoaster] Re: Trash being emptied for some users but not all Michael, Your point about messages piling up on the server is valid -- except for two points: a) when they're using my server, they pay for storage, not numbers of accounts... more storage, more monthly cost (more income for the same infrastructure) b) when they're NOT using my server, they pay for management and don't want me talking to them about storage -- its their hardware -- but in that case, they're paying for backup on their server... and again, they pay for storage... more storage = more income for the same infrastructure! I PUSH (hard) for IMAP e-mail access -- for business reasons (their business, not mine)... either my server or theirs is backed up... if there is an issue on IMAP, I can ALWAYS recover the data because I have it backed up! If it's pop and their system isn't backed up, then its lost and if they lose the entire PST (or Thunderbird database), they've lost everything... with IMAP, all the data protection that goes into the design of the server applies to the e-mail just as it does to Word Excel files... As for retraining this user, he's adamant that he shouldn't have to learn a new way of doing things... so I'm definitely at a point where I need to find out WHAT is making the files disappear... For everyone who's replied so far -- please keep trying! I'm hoping ONE of the big, smart heads out there will see SOMETHING that I'm missing... Thanks Dan On 8/22/2011 2:28 PM, Michael J. Colvin wrote: You're missing something here... Not sure what, but something's missing. He's either using another mail client to check via IMAP from home, or something... Is he checking mail from his phone? Perhaps that client has something set. Does he use Squirrelmail? I believe there's a setting in there that empties the trash when logging off. I believe Outlook or Outlook Express also has settings that empty the trash when logging off... Drill him about where he checks mail from... All of the places he checks from. Or, switch up, and talk to the colleague that has the same thing. You might get more information from him. I agree with the previous post about getting them to change their method of handling mail and not trashing mail they want, but sometimes that's easier said than done... If you can find the offending culprit that's deleting the trash, you might save yourself some heartache. The thing I've never liked about having clients use IMAP is, they then store Gig's of worthless mail on my server, versus their PC... I usually set up their clients so that the POP the mail, leave it on the server for 10 days, then remove it. That usually gives them enough time to get their mail at home/office/phone, and prevents years worth of their porn links from piling up on my server... Any, keep looking. You'll find they both have second mail clients somewhere that are deleting the trash. Mike -Original Message- From: Dan McAllister [mailto:d...@it4soho.com] Sent: Monday, August 22, 2011 10:18 AM To: qmailtoaster-list@qmailtoaster.com Subject: Re: [qmailtoaster] Re: Trash being emptied for some users but not all On 8/22/2011 11:22 AM, Eric Shubert wrote: On 08/22/2011 08:04 AM, Maxwell Smart wrote: On 08/22/2011 07:31 AM, Dan McAllister wrote: Greetings QMailers... I have a client who's hopping mad because his Trash folder is being cleaned out periodically he clearly does not want this to happen. He reports that this is happening on his system and a colleagues, but not everyone on the domain. I suspect his Thunderbird client is doing some kind of trash management... but these are all IMAP accounts, so Thunderbird shouldn't be worrying about folder sizes... should it? Any ideas -- or anyone else chased this ghost -- would be greatly appreciated. Thanks Dan IT4SOHO There is a setting in Thunderbird under Account Settings Syncronization and Storage that could be your culprit. And which setting would that be? The Junk Mail and Synchronization Storage settings are all
RE: [qmailtoaster] Re: Migration to new server
Search through the archives... A couple months ago, I posted a link to a script that will migrate all e-mail from one server to another using IMAP. It will create any needed folders, etc, on the new server via IMAP. Just supply a file with a list of e-mail login's, passwords, the source server and destination, and let it go... If you can't find it in the archive, let me know and I'll look through links and see if I can find it. Mike -Original Message- From: sa...@magicwisp.com [mailto:sa...@magicwisp.com] Sent: Monday, July 18, 2011 8:10 PM To: qmailtoaster-list@qmailtoaster.com Subject: Re: [qmailtoaster] Re: Migration to new server On 07/18/2011 07:10 PM, sa...@magicwisp.com wrote: I have a toaster server that has been giving me fits. I decided it would be easiest just to build a new one and make some changes that I have wanted to make. I built the new server, and installed Dovecot on it. Then I thought - LOL. Can I migrate the existing email over, or do I have to migrate the email then convert to Dovecot? Jack Martin MagicWIPS - Dovecot's pretty forgiving. If the files it needs aren't there, it'll build/repair them on the fly. I expect the worst case would be that you might need to re-subscribe to folders using your client(s). -- -Eric 'shubes' - I haven't built the customer's folders yet - so they don't exist. I haven't even put the domains in place on the new server. I was going to use the backup script, but I just looked on the wiki, and the file isn't on the server that used to host it. What do you thing would be the best way would be to go about it? - Qmailtoaster is sponsored by Vickers Consulting Group (www.vickersconsulting.com) Vickers Consulting Group offers Qmailtoaster support and installations. If you need professional help with your setup, contact them today! - Please visit qmailtoaster.com for the latest news, updates, and packages. To unsubscribe, e-mail: qmailtoaster-list-unsubscr...@qmailtoaster.com For additional commands, e-mail: qmailtoaster-list-h...@qmailtoaster.com - Qmailtoaster is sponsored by Vickers Consulting Group (www.vickersconsulting.com) Vickers Consulting Group offers Qmailtoaster support and installations. If you need professional help with your setup, contact them today! - Please visit qmailtoaster.com for the latest news, updates, and packages. To unsubscribe, e-mail: qmailtoaster-list-unsubscr...@qmailtoaster.com For additional commands, e-mail: qmailtoaster-list-h...@qmailtoaster.com
RE: [qmailtoaster] Re: Migration to new server
The thread was around 3/22/2011, or at least my first post in that thread with a link to the script... Mike -Original Message- From: Michael J. Colvin [mailto:mcol...@norcalisp.com] Sent: Monday, July 18, 2011 11:45 PM To: qmailtoaster-list@qmailtoaster.com Subject: RE: [qmailtoaster] Re: Migration to new server Search through the archives... A couple months ago, I posted a link to a script that will migrate all e-mail from one server to another using IMAP. It will create any needed folders, etc, on the new server via IMAP. Just supply a file with a list of e-mail login's, passwords, the source server and destination, and let it go... If you can't find it in the archive, let me know and I'll look through links and see if I can find it. Mike -Original Message- From: sa...@magicwisp.com [mailto:sa...@magicwisp.com] Sent: Monday, July 18, 2011 8:10 PM To: qmailtoaster-list@qmailtoaster.com Subject: Re: [qmailtoaster] Re: Migration to new server On 07/18/2011 07:10 PM, sa...@magicwisp.com wrote: I have a toaster server that has been giving me fits. I decided it would be easiest just to build a new one and make some changes that I have wanted to make. I built the new server, and installed Dovecot on it. Then I thought - LOL. Can I migrate the existing email over, or do I have to migrate the email then convert to Dovecot? Jack Martin MagicWIPS - Dovecot's pretty forgiving. If the files it needs aren't there, it'll build/repair them on the fly. I expect the worst case would be that you might need to re-subscribe to folders using your client(s). -- -Eric 'shubes' - I haven't built the customer's folders yet - so they don't exist. I haven't even put the domains in place on the new server. I was going to use the backup script, but I just looked on the wiki, and the file isn't on the server that used to host it. What do you thing would be the best way would be to go about it? - Qmailtoaster is sponsored by Vickers Consulting Group (www.vickersconsulting.com) Vickers Consulting Group offers Qmailtoaster support and installations. If you need professional help with your setup, contact them today! - Please visit qmailtoaster.com for the latest news, updates, and packages. To unsubscribe, e-mail: qmailtoaster-list-unsubscr...@qmailtoaster.com For additional commands, e-mail: qmailtoaster-list-h...@qmailtoaster.com - Qmailtoaster is sponsored by Vickers Consulting Group (www.vickersconsulting.com) Vickers Consulting Group offers Qmailtoaster support and installations. If you need professional help with your setup, contact them today! - Please visit qmailtoaster.com for the latest news, updates, and packages. To unsubscribe, e-mail: qmailtoaster-list-unsubscr...@qmailtoaster.com For additional commands, e-mail: qmailtoaster-list-h...@qmailtoaster.com - Qmailtoaster is sponsored by Vickers Consulting Group (www.vickersconsulting.com) Vickers Consulting Group offers Qmailtoaster support and installations. If you need professional help with your setup, contact them today! - Please visit qmailtoaster.com for the latest news, updates, and packages. To unsubscribe, e-mail: qmailtoaster-list-unsubscr...@qmailtoaster.com For additional commands, e-mail: qmailtoaster-list-h...@qmailtoaster.com
RE: [qmailtoaster] Re: SPAM Designation Option
I agree with Eric on the Spamdyke portion. I was thinking the same thing, but didn't have an answer for the SpamAssassin portion, so I didn't reply! :-) I run SpamDyke more for the benefit of my server. The benefit for the client is secondary. If you disable it, your certainly going to increase the load on your server, requiring, at some point, you to either upgrade your server, or add another to handle the load. I'd second Eric's suggestion to simply not tell your client about SpamDyke and leave it in place, or charge the client more to cover the extra spam/mail your server is sure to get. Mike -Original Message- From: Eric Shubert [mailto:e...@shubes.net] Sent: Tuesday, May 03, 2011 9:32 AM To: qmailtoaster-list@qmailtoaster.com Subject: [qmailtoaster] Re: SPAM Designation Option On 05/03/2011 09:07 AM, Dan McAllister wrote: Greetings QMail list... I am in the unenviable position of admitting that some of my QMail is FM to me (FM is f***ing magic or, in plainer terms I know it works, I just don't know how) -- and that has me in a bit of a quandary I host web e-mail for some of my clients and I have a NEW customer, who has asked me to turn off the SpamAssassin ***SPAM*** insert in the subject line... in fact, he wants to turn off ALL SPAM blocking for his domain. So, how / where do I configure SpamAssassin (and SpamDyke, for that matter) to NOT process messages for his domain? Thanks in advance, Dan McAllister For SA, add a record to the beginning of /var/qmail/control/simcontrol: customdomain.com:clam=yes,spam=no then run service qmail cdb. Per-domain control in spamdyke is a little tricky. See spamdyke docs for that. Spamdyke false positives are practically nonexistent though, so you might want to just leave spamdyke active and not tell him about it. Then again, if he insists on receiving spam, I'd charge him extra for the load it'll cause on your server as well as the trouble of configuring spamdyke. ;) -- -Eric 'shubes' - Qmailtoaster is sponsored by Vickers Consulting Group (www.vickersconsulting.com) Vickers Consulting Group offers Qmailtoaster support and installations. If you need professional help with your setup, contact them today! - Please visit qmailtoaster.com for the latest news, updates, and packages. To unsubscribe, e-mail: qmailtoaster-list-unsubscr...@qmailtoaster.com For additional commands, e-mail: qmailtoaster-list-h...@qmailtoaster.com - Qmailtoaster is sponsored by Vickers Consulting Group (www.vickersconsulting.com) Vickers Consulting Group offers Qmailtoaster support and installations. If you need professional help with your setup, contact them today! - Please visit qmailtoaster.com for the latest news, updates, and packages. To unsubscribe, e-mail: qmailtoaster-list-unsubscr...@qmailtoaster.com For additional commands, e-mail: qmailtoaster-list-h...@qmailtoaster.com
RE: [qmailtoaster] Re: SPAM Designation Option
This is true, however a LARGE amount of spam is sent from IP's with no RDNS. By not blocking those e-mails, you're certainly forcing your mail server to deal with a MUCH larger amount of mail, most of which would be spam. I guess if you don't have a resource issue, and don't mind wasting resources on handling spam, that may or may not be rejected by SpamAssassin down the road, then that's fine. I agree that, if the customer wants the spam, I'm more than happy to let them have it. However, I won't do it at the detriment of other users. If you've never had a Spam Attack, where your server is constantly bombarded by spammers, then when you do, you'll wish you had SpamDyke. :-) When your server (Or the OP's server) is being hammered by a spammer, and comes here to complain about how his server is overloaded and legit e-mail is timing out because all of his SMTP ports are being bogarted, the first suggestion is going to be Are you running SpamDyke. And, yes... When a client is not getting e-mail because the sender's mail server (Usually an internal Exchange server) does not have an RDNS, I tell them that's why. I even have a form e-mail I send them to send the blocked person. I've actually picked up several consulting gigs (Fixing their RDNS issue) and spam filtering customers from this... Lack of RDNS is becoming a much more common antispam check. So, if you're blocking it, others are also likely blocking it, and, in the end, the offending server's admin is going to have to resolve the issue... Mike -Original Message- From: Peter Peltonen [mailto:peter.pelto...@gmail.com] Sent: Tuesday, May 03, 2011 10:38 AM To: qmailtoaster-list@qmailtoaster.com Subject: Re: [qmailtoaster] Re: SPAM Designation Option Hi, On Tue, May 3, 2011 at 7:31 PM, Eric Shubert e...@shubes.net wrote: that. Spamdyke false positives are practically nonexistent though, so you might want to just leave spamdyke active and not tell him about it. Then again, if he insists on receiving spam, I'd charge him extra for the load it'll cause on your server as well as the trouble of configuring spamdyke. ;) Even if Spamdyke is correct, it does not mean that the end behaviour is what the customer expects. I have ran into issues where customers haven't received email they were expecting because of Spamdyke rejecting a message because of missing reserve dns. And it does not help telling the customer that the sending server is not properly configured, if they can receive the same email with their Gmail or some other account... I have been playing around with an idea that I should create a page for each customer where they could check the sending addresses for denied messages. So if there is a real message denied I could then offer an option to white list that mail server or sending address, so that the customer could try contacting the sender again. Best, Peter - Qmailtoaster is sponsored by Vickers Consulting Group (www.vickersconsulting.com) Vickers Consulting Group offers Qmailtoaster support and installations. If you need professional help with your setup, contact them today! - Please visit qmailtoaster.com for the latest news, updates, and packages. To unsubscribe, e-mail: qmailtoaster-list-unsubscr...@qmailtoaster.com For additional commands, e-mail: qmailtoaster-list-h...@qmailtoaster.com - Qmailtoaster is sponsored by Vickers Consulting Group (www.vickersconsulting.com) Vickers Consulting Group offers Qmailtoaster support and installations. If you need professional help with your setup, contact them today! - Please visit qmailtoaster.com for the latest news, updates, and packages. To unsubscribe, e-mail: qmailtoaster-list-unsubscr...@qmailtoaster.com For additional commands, e-mail: qmailtoaster-list-h...@qmailtoaster.com
RE: [qmailtoaster] Re: qmailtoaster and no disk space
I'm pretty sure that when this happens, mail is lost. I've had it happen on occasion with an older server I have in service that I actually VM'd a couple years ago... It's got a small Disk, so it will occasionally fill up. When this happens, mail seems to get lost... If I recall right, it also kills of MySQL, which causes other issues too! :-) This is with a QmailRocks server, not a QMToaster, but I'd expect the result would be the same with a QMToaster. Mike -Original Message- From: Eric Shubert [mailto:e...@shubes.net] Sent: Thursday, April 28, 2011 1:51 PM To: qmailtoaster-list@qmailtoaster.com Subject: [qmailtoaster] Re: qmailtoaster and no disk space On 04/28/2011 01:57 AM, Peter Peltonen wrote: Hi, I run into situation where a server had run out of diskspace (df reported 100M available) and users reported about missing emails. What happens in this situtation? Will toaster keep accepting emails and if so, what happens to those emails if they cannot be written to disk? I don't know for sure what happens in this situation. I would expect that messages would be deferred with a 4xx error (temporary failure) of some sort if they can't be written to the queue. If the messages have already been accepted but cannot be delivered, they should still be in the local queue. qmHandle -l will show what's in the queues. What's the best way to act in situations like this? Do something to free up some disk space. ;) There might be some things (backups, logs, source rpms) in /usr/src/qtp-upgrade/ that you can get rid of in the short term. Regards, Peter - Qmailtoaster is sponsored by Vickers Consulting Group (www.vickersconsulting.com) Vickers Consulting Group offers Qmailtoaster support and installations. If you need professional help with your setup, contact them today! -- -Eric 'shubes' - Qmailtoaster is sponsored by Vickers Consulting Group (www.vickersconsulting.com) Vickers Consulting Group offers Qmailtoaster support and installations. If you need professional help with your setup, contact them today! - Please visit qmailtoaster.com for the latest news, updates, and packages. To unsubscribe, e-mail: qmailtoaster-list-unsubscr...@qmailtoaster.com For additional commands, e-mail: qmailtoaster-list-h...@qmailtoaster.com - Qmailtoaster is sponsored by Vickers Consulting Group (www.vickersconsulting.com) Vickers Consulting Group offers Qmailtoaster support and installations. If you need professional help with your setup, contact them today! - Please visit qmailtoaster.com for the latest news, updates, and packages. To unsubscribe, e-mail: qmailtoaster-list-unsubscr...@qmailtoaster.com For additional commands, e-mail: qmailtoaster-list-h...@qmailtoaster.com
RE: [qmailtoaster] Re: Mailing List Question
I'm sorry... I've never used the mailing list functions, so I'm not a lot of help and am probably asking stupid questions How is the mailing list Stored? Flat file, cdb, MySQL? How does qmailadmin delete it? IE, can you take code from qmailadmin and reuse it? Or, maybe even call it from command line? (I know qmailadmin is gui, but I've hardly every used it...) Mike -Original Message- From: Scott Hughes [mailto:sc...@renshawauto.net] Sent: Saturday, April 16, 2011 5:54 AM To: qmailtoaster-list@qmailtoaster.com Subject: Re: [qmailtoaster] Re: Mailing List Question I have not been able to find a way to automatically delete the mailing list in question. I did find a way to create a mailing list from the command line but of course without deleting it first that does no good. I just manually deleted the mailing list using qmailadmin, re-created it, then let my script re-populate it. Also, I've move the list-create script to cron.daily instead of cron.hourly. No use taking up CPU cycles! Thanks all! Scott On 4/15/11 3:22 PM, Michael J. Colvin wrote: Why can't you have your script Rebuild the mailing list everytime it runs. That way, it adds new accounts and purges old ones..??? There's got to be a way to delete all of the address on the list, and then you can use your script to repopulate it. Mike -Original Message- From: Scott Hughes [mailto:sc...@renshawauto.net] Sent: Friday, April 15, 2011 1:18 PM To: qmailtoaster-list@qmailtoaster.com Subject: RE: [qmailtoaster] Re: Mailing List Question Eric, I looked at and tried the 'built-in' function and it was horrible. It didn't work correctly at all. I cannot currently find any documentation on it (looking in the wiki). If you (or anyone) happens to know the name and location of said function, I'll gladly take a look at it. Thanks, Scott -Original Message- From: Eric Shubert [mailto:e...@shubes.net] Sent: Friday, April 15, 2011 3:10 PM To: qmailtoaster-list@qmailtoaster.com Subject: [qmailtoaster] Re: Mailing List Question On 04/15/2011 12:58 PM, Scott Hughes wrote: Is it possible to have the mailing list software that comes with QMT to automatically remove a subscriber if the email bounces back to the server? Example: I have created a script that runs once a day and gathers all of the email addresses of my domains and if they aren't already, subscribes them to a mailing list. This way if I need to email all users because of, say, a planned outage, all the email addresses are there. However, as people leave the company I delete their email account but they remain on the mailing list. Any suggestions? Thanks, Scott There's a function built in to send an email to everyone in a domain. I don't know how well that works or not though. I think I'd look at modifying that capability to do it for all domains on the server. That way you shouldn't need to mess with ezmlm or subscriptions. - Qmailtoaster is sponsored by Vickers Consulting Group (www.vickersconsulting.com) Vickers Consulting Group offers Qmailtoaster support and installations. If you need professional help with your setup, contact them today! - Please visit qmailtoaster.com for the latest news, updates, and packages. To unsubscribe, e-mail: qmailtoaster-list-unsubscr...@qmailtoaster.com For additional commands, e-mail: qmailtoaster-list-h...@qmailtoaster.com - Qmailtoaster is sponsored by Vickers Consulting Group (www.vickersconsulting.com) Vickers Consulting Group offers Qmailtoaster support and installations. If you need professional help with your setup, contact them today! - Please visit qmailtoaster.com for the latest news, updates, and packages. To unsubscribe, e-mail: qmailtoaster-list-unsubscr...@qmailtoaster.com For additional commands, e-mail: qmailtoaster-list-h...@qmailtoaster.com
RE: [qmailtoaster] Re: Mailing List Question
LOL! That made my day! Mike From: Scott Hughes [mailto:sonicscott9...@gmail.com] Sent: Saturday, April 16, 2011 2:04 PM To: qmailtoaster-list@qmailtoaster.com Subject: Re: [qmailtoaster] Re: Mailing List Question Just so Eric won't have to ask me (har har har): http://wiki.qmailtoaster.com/index.php/How_to_set_up_a_mail_list_so_that_you _can_email_ALL_of_your_domains_at_one_time Thanks, Scott On 4/16/11 3:49 PM, Scott Hughes wrote: On 4/16/11 1:55 PM, Pak Ogah wrote: On 04/17/11 0:16, Michael J. Colvin wrote: I'm sorry... I've never used the mailing list functions, so I'm not a lot of help and am probably asking stupid questions How is the mailing list Stored? Flat file, cdb, MySQL? How does qmailadmin delete it? IE, can you take code from qmailadmin and reuse it? Or, maybe even call it from command line? (I know qmailadmin is gui, but I've hardly every used it...) Mike cmiiw this will forcefully deleted the subscriber from ezmlm-list # cd /home/vpopmail/domains/domain.com/listname/subscribers/ # rm -rf * Yep. That worked. Thanks Pak! Here is the updated script if anyone would like to use it. #!/bin/sh # 06/15/2010 - Scott Hughes mailto:sc...@renshawauto.net sc...@renshawauto.net # Initial creation of script to create an import text file of all # users on system and then import it into an already created # ezmlm mailing list. # # 04/16/2011 - Scott Hughes mailto:sc...@renshawauto.net sc...@renshawauto.net # Added the complete removal of list subscribers before list # generation to take care of deleted accounts. Thanks to Pak Ogah # for the idea. echo All user mailing list generation... # Deleting current subscribers from mailing list rm -f /home/vpopmail/domains/domain name/list name/* # Generate mailing list import file #/home/vpopmail/bin/vpopbull -n -V ~/alluserslist.txt # Import List into ezmlm mailing list ~vpopmail/bin/vpopbull -n -V | ezmlm-sub ~vpopmail/domains/domain name/list name exit 0 Thanks, Scott - Qmailtoaster is sponsored by Vickers Consulting Group (www.vickersconsulting.com) Vickers Consulting Group offers Qmailtoaster support and installations. If you need professional help with your setup, contact them today! - Please visit qmailtoaster.com for the latest news, updates, and packages. To unsubscribe, e-mail: qmailtoaster-list-unsubscr...@qmailtoaster.com For additional commands, e-mail: qmailtoaster-list-h...@qmailtoaster.com
RE: [qmailtoaster] Re: Mailing List Question
Why can't you have your script Rebuild the mailing list everytime it runs. That way, it adds new accounts and purges old ones..??? There's got to be a way to delete all of the address on the list, and then you can use your script to repopulate it. Mike -Original Message- From: Scott Hughes [mailto:sc...@renshawauto.net] Sent: Friday, April 15, 2011 1:18 PM To: qmailtoaster-list@qmailtoaster.com Subject: RE: [qmailtoaster] Re: Mailing List Question Eric, I looked at and tried the 'built-in' function and it was horrible. It didn't work correctly at all. I cannot currently find any documentation on it (looking in the wiki). If you (or anyone) happens to know the name and location of said function, I'll gladly take a look at it. Thanks, Scott -Original Message- From: Eric Shubert [mailto:e...@shubes.net] Sent: Friday, April 15, 2011 3:10 PM To: qmailtoaster-list@qmailtoaster.com Subject: [qmailtoaster] Re: Mailing List Question On 04/15/2011 12:58 PM, Scott Hughes wrote: Is it possible to have the mailing list software that comes with QMT to automatically remove a subscriber if the email bounces back to the server? Example: I have created a script that runs once a day and gathers all of the email addresses of my domains and if they aren't already, subscribes them to a mailing list. This way if I need to email all users because of, say, a planned outage, all the email addresses are there. However, as people leave the company I delete their email account but they remain on the mailing list. Any suggestions? Thanks, Scott There's a function built in to send an email to everyone in a domain. I don't know how well that works or not though. I think I'd look at modifying that capability to do it for all domains on the server. That way you shouldn't need to mess with ezmlm or subscriptions. -- -Eric 'shubes' - Qmailtoaster is sponsored by Vickers Consulting Group (www.vickersconsulting.com) Vickers Consulting Group offers Qmailtoaster support and installations. If you need professional help with your setup, contact them today! - Please visit qmailtoaster.com for the latest news, updates, and packages. To unsubscribe, e-mail: qmailtoaster-list-unsubscr...@qmailtoaster.com For additional commands, e-mail: qmailtoaster-list-h...@qmailtoaster.com - Qmailtoaster is sponsored by Vickers Consulting Group (www.vickersconsulting.com) Vickers Consulting Group offers Qmailtoaster support and installations. If you need professional help with your setup, contact them today! - Please visit qmailtoaster.com for the latest news, updates, and packages. To unsubscribe, e-mail: qmailtoaster-list-unsubscr...@qmailtoaster.com For additional commands, e-mail: qmailtoaster-list-h...@qmailtoaster.com - Qmailtoaster is sponsored by Vickers Consulting Group (www.vickersconsulting.com) Vickers Consulting Group offers Qmailtoaster support and installations. If you need professional help with your setup, contact them today! - Please visit qmailtoaster.com for the latest news, updates, and packages. To unsubscribe, e-mail: qmailtoaster-list-unsubscr...@qmailtoaster.com For additional commands, e-mail: qmailtoaster-list-h...@qmailtoaster.com
RE: [qmailtoaster] Re: Dovecot 2.0.11 rpms for QMT available
So Scott... Did you use any of these scripts? Did they work? Mike -Original Message- From: Scott Hughes [mailto:sonicscott9...@gmail.com] Sent: Wednesday, March 23, 2011 9:10 AM To: qmailtoaster-list@qmailtoaster.com Subject: Re: [qmailtoaster] Re: Dovecot 2.0.11 rpms for QMT available Thanks!! On Mar 23, 2011, at 10:37 AM, Michael J. Colvin mcol...@norcalisp.com wrote: Take a look at migrateIMAP.pl. You can find it here: http://www.athensfbc.com/imap_tools/, not to mention a lot of other IMAP tools. I've used this specific script to migrate users from a competitors mail servers to mine when moving a virtual ISP. Worked like a charm. That time, I ran it on my server and pulled the mail, folders and read status over. The customer's never knew they moved... I've used it to move from one server to another on the same network too. Mike -Original Message- From: Scott Hughes [mailto:sonicscott9...@gmail.com] Sent: Wednesday, March 23, 2011 4:07 AM To: qmailtoaster-list@qmailtoaster.com Subject: Re: [qmailtoaster] Re: Dovecot 2.0.11 rpms for QMT available Yes, they both support imap. On Mar 22, 2011, at 8:07 PM, Michael J. Colvin mcol...@norcalisp.com wrote: Scott: I may have missed what you are trying to do, but I think you're trying to move actual mail folder content from one server to another, one being a QMT and one Modus. Is that right? If so, do they both support IMAP? Mike -Original Message- From: Eric Shubert [mailto:e...@shubes.net] Sent: Tuesday, March 22, 2011 4:48 PM To: qmailtoaster-list@qmailtoaster.com Subject: [qmailtoaster] Re: Dovecot 2.0.11 rpms for QMT available To run rsync on windoze, you can install cygwin, and then rsync for cygwin. This would only work with maildir mailboxes. No telling what dovecot would do with that junk once it got into the maildirs on QMT. You might still have a problem there. I'd lean toward fetchmail. Fetchmail will retrieve messages via pop3 or imap, and pass them on to qmail-smtpd for scanning and delivery. It's really pretty easy to set up. Here's a sample /root/.fetchmailrc (config) file: [root@tacs-wan ~]# cat .fetchmailrc # These are global options set no bouncemail set postmaster postmas...@mydomain.com set syslog # These are server/user options poll remote.domain.com \ protocol pop3 \ timeout 120 username myuser there \ is myu...@mydomain.com here \ antispam 554 \ fetchall \ password mypass \ smtphost localhost \ ssl \ sslcertck We should have a wiki page on using fetchmail, if we don't already. It's really pretty versatile. -- -Eric 'shubes' On 03/22/2011 02:43 PM, Scott Hughes wrote: My old email is a windows based server called ModusMail by a company called Vircom. In looking at rsync, I'm not sure if it would work or not. I can't seem to find and RFCs on the IMAP flags. Strange. Thanks, Scott -Original Message- From: Eric Shubert [mailto:e...@shubes.net] Sent: Tuesday, March 22, 2011 4:33 PM To: qmailtoaster-list@qmailtoaster.com Subject: [qmailtoaster] Re: Dovecot 2.0.11 rpms for QMT available rsync would probably be simplest if your old server was using maildir format. Good for doing preliminary runs too before cutting over, so there's not much mail to migrate after the change. Otherwise, I think I'd try fetchmail. - Qmailtoaster is sponsored by Vickers Consulting Group (www.vickersconsulting.com) Vickers Consulting Group offers Qmailtoaster support and installations. If you need professional help with your setup, contact them today! - Please visit qmailtoaster.com for the latest news, updates, and packages. To unsubscribe, e-mail: qmailtoaster-list-unsubscr...@qmailtoaster.com For additional commands, e-mail: qmailtoaster-list-h...@qmailtoaster.com - Qmailtoaster is sponsored by Vickers Consulting Group (www.vickersconsulting.com) Vickers Consulting Group offers Qmailtoaster support and installations. If you need professional help with your setup, contact them today! - Please visit qmailtoaster.com for the latest news, updates, and packages. To unsubscribe, e-mail: qmailtoaster-list-unsubscr...@qmailtoaster.com For additional commands, e-mail: qmailtoaster-list-h...@qmailtoaster.com - Qmailtoaster is sponsored by Vickers Consulting Group (www.vickersconsulting.com) Vickers Consulting Group offers Qmailtoaster support and installations. If you need
RE: [qmailtoaster] Re: Dovecot 2.0.11 rpms for QMT available
No problem. Let me know. I like to keep track of scripts that I use to see if they work for others too. Mike -Original Message- From: Scott Hughes [mailto:sonicscott9...@gmail.com] Sent: Monday, March 28, 2011 4:28 PM To: qmailtoaster-list@qmailtoaster.com Subject: Re: [qmailtoaster] Re: Dovecot 2.0.11 rpms for QMT available The HDD on my laptop died an ugly death mid last week, so I've had to take care of that first. I hope to be back into this by mid to late this week. Thanks for again for the link and for checking back! Scott On Mar 28, 2011, at 4:44 PM, Michael J. Colvin mcol...@norcalisp.com wrote: So Scott... Did you use any of these scripts? Did they work? Mike -Original Message- From: Scott Hughes [mailto:sonicscott9...@gmail.com] Sent: Wednesday, March 23, 2011 9:10 AM To: qmailtoaster-list@qmailtoaster.com Subject: Re: [qmailtoaster] Re: Dovecot 2.0.11 rpms for QMT available Thanks!! On Mar 23, 2011, at 10:37 AM, Michael J. Colvin mcol...@norcalisp.com wrote: Take a look at migrateIMAP.pl. You can find it here: http://www.athensfbc.com/imap_tools/, not to mention a lot of other IMAP tools. I've used this specific script to migrate users from a competitors mail servers to mine when moving a virtual ISP. Worked like a charm. That time, I ran it on my server and pulled the mail, folders and read status over. The customer's never knew they moved... I've used it to move from one server to another on the same network too. Mike -Original Message- From: Scott Hughes [mailto:sonicscott9...@gmail.com] Sent: Wednesday, March 23, 2011 4:07 AM To: qmailtoaster-list@qmailtoaster.com Subject: Re: [qmailtoaster] Re: Dovecot 2.0.11 rpms for QMT available Yes, they both support imap. On Mar 22, 2011, at 8:07 PM, Michael J. Colvin mcol...@norcalisp.com wrote: Scott: I may have missed what you are trying to do, but I think you're trying to move actual mail folder content from one server to another, one being a QMT and one Modus. Is that right? If so, do they both support IMAP? Mike -Original Message- From: Eric Shubert [mailto:e...@shubes.net] Sent: Tuesday, March 22, 2011 4:48 PM To: qmailtoaster-list@qmailtoaster.com Subject: [qmailtoaster] Re: Dovecot 2.0.11 rpms for QMT available To run rsync on windoze, you can install cygwin, and then rsync for cygwin. This would only work with maildir mailboxes. No telling what dovecot would do with that junk once it got into the maildirs on QMT. You might still have a problem there. I'd lean toward fetchmail. Fetchmail will retrieve messages via pop3 or imap, and pass them on to qmail-smtpd for scanning and delivery. It's really pretty easy to set up. Here's a sample /root/.fetchmailrc (config) file: [root@tacs-wan ~]# cat .fetchmailrc # These are global options set no bouncemail set postmaster postmas...@mydomain.com set syslog # These are server/user options poll remote.domain.com \ protocol pop3 \ timeout 120 username myuser there \ is myu...@mydomain.com here \ antispam 554 \ fetchall \ password mypass \ smtphost localhost \ ssl \ sslcertck We should have a wiki page on using fetchmail, if we don't already. It's really pretty versatile. -- -Eric 'shubes' On 03/22/2011 02:43 PM, Scott Hughes wrote: My old email is a windows based server called ModusMail by a company called Vircom. In looking at rsync, I'm not sure if it would work or not. I can't seem to find and RFCs on the IMAP flags. Strange. Thanks, Scott -Original Message- From: Eric Shubert [mailto:e...@shubes.net] Sent: Tuesday, March 22, 2011 4:33 PM To: qmailtoaster-list@qmailtoaster.com Subject: [qmailtoaster] Re: Dovecot 2.0.11 rpms for QMT available rsync would probably be simplest if your old server was using maildir format. Good for doing preliminary runs too before cutting over, so there's not much mail to migrate after the change. Otherwise, I think I'd try fetchmail. - Qmailtoaster is sponsored by Vickers Consulting Group (www.vickersconsulting.com) Vickers Consulting Group offers Qmailtoaster support and installations. If you need professional help with your setup, contact them today! - Please visit qmailtoaster.com for the latest news, updates, and packages. To unsubscribe, e-mail: qmailtoaster-list-unsubscr...@qmailtoaster.com For additional commands, e-mail: qmailtoaster-list-h...@qmailtoaster.com - Qmailtoaster is sponsored by Vickers Consulting Group (www.vickersconsulting.com) Vickers Consulting Group offers Qmailtoaster support and installations. If you need professional help
RE: [qmailtoaster] Re: Dovecot 2.0.11 rpms for QMT available
Just the one I recommended to Scott... I've used it a couple times to migrate users from one server to another, usually from a server I don't control to one I do...when acquiring new users from another ISP... But, it's also good for migrating from non-qmail servers where filesystems, etc are different... There's one other that I use that does single accounts. I use this when someone moves to our service and wants to pull their existing mail from another provider and maintain the folder structure... Since both of these work by basically logging in via IMAP and pulling the mail, it seems to work pretty reliably, although it's been a while since I've needed to use them for moving people. Seems most people don't use their ISP mail anymore, preferring to use Gmail or something. But, I do find it useful for pulling hosting customer's mail... But, if you look through that page, you might find some that you can think of that may be useful for other people/other implementations of QMT. There are scripts to sync accounts, moving from maildir and Mbox to IMAP, etc...Although I've never used them. The creator of the scripts is/was very helpful. I had an issue with one of the scritps, e-mailed him, and we went back/forth for a few day with him making changes, and me testing until it worked... I was kind of surprised. :-) http://www.athensfbc.com/imap_tools Mike -Original Message- From: Eric Shubert [mailto:e...@shubes.net] Sent: Monday, March 28, 2011 4:59 PM To: qmailtoaster-list@qmailtoaster.com Subject: [qmailtoaster] Re: Dovecot 2.0.11 rpms for QMT available On 03/28/2011 04:51 PM, Michael J. Colvin wrote: No problem. Let me know. I like to keep track of scripts that I use to see if they work for others too. Mike Mike, Are there any you have of know of which would be appropriate additions to QTP? -- -Eric 'shubes' - Qmailtoaster is sponsored by Vickers Consulting Group (www.vickersconsulting.com) Vickers Consulting Group offers Qmailtoaster support and installations. If you need professional help with your setup, contact them today! - Please visit qmailtoaster.com for the latest news, updates, and packages. To unsubscribe, e-mail: qmailtoaster-list-unsubscr...@qmailtoaster.com For additional commands, e-mail: qmailtoaster-list-h...@qmailtoaster.com - Qmailtoaster is sponsored by Vickers Consulting Group (www.vickersconsulting.com) Vickers Consulting Group offers Qmailtoaster support and installations. If you need professional help with your setup, contact them today! - Please visit qmailtoaster.com for the latest news, updates, and packages. To unsubscribe, e-mail: qmailtoaster-list-unsubscr...@qmailtoaster.com For additional commands, e-mail: qmailtoaster-list-h...@qmailtoaster.com
RE: [qmailtoaster] Re: Dovecot 2.0.11 rpms for QMT available
Take a look at migrateIMAP.pl. You can find it here: http://www.athensfbc.com/imap_tools/, not to mention a lot of other IMAP tools. I've used this specific script to migrate users from a competitors mail servers to mine when moving a virtual ISP. Worked like a charm. That time, I ran it on my server and pulled the mail, folders and read status over. The customer's never knew they moved... I've used it to move from one server to another on the same network too. Mike -Original Message- From: Scott Hughes [mailto:sonicscott9...@gmail.com] Sent: Wednesday, March 23, 2011 4:07 AM To: qmailtoaster-list@qmailtoaster.com Subject: Re: [qmailtoaster] Re: Dovecot 2.0.11 rpms for QMT available Yes, they both support imap. On Mar 22, 2011, at 8:07 PM, Michael J. Colvin mcol...@norcalisp.com wrote: Scott: I may have missed what you are trying to do, but I think you're trying to move actual mail folder content from one server to another, one being a QMT and one Modus. Is that right? If so, do they both support IMAP? Mike -Original Message- From: Eric Shubert [mailto:e...@shubes.net] Sent: Tuesday, March 22, 2011 4:48 PM To: qmailtoaster-list@qmailtoaster.com Subject: [qmailtoaster] Re: Dovecot 2.0.11 rpms for QMT available To run rsync on windoze, you can install cygwin, and then rsync for cygwin. This would only work with maildir mailboxes. No telling what dovecot would do with that junk once it got into the maildirs on QMT. You might still have a problem there. I'd lean toward fetchmail. Fetchmail will retrieve messages via pop3 or imap, and pass them on to qmail-smtpd for scanning and delivery. It's really pretty easy to set up. Here's a sample /root/.fetchmailrc (config) file: [root@tacs-wan ~]# cat .fetchmailrc # These are global options set no bouncemail set postmaster postmas...@mydomain.com set syslog # These are server/user options poll remote.domain.com \ protocol pop3 \ timeout 120 username myuser there \ is myu...@mydomain.com here \ antispam 554 \ fetchall \ password mypass \ smtphost localhost \ ssl \ sslcertck We should have a wiki page on using fetchmail, if we don't already. It's really pretty versatile. -- -Eric 'shubes' On 03/22/2011 02:43 PM, Scott Hughes wrote: My old email is a windows based server called ModusMail by a company called Vircom. In looking at rsync, I'm not sure if it would work or not. I can't seem to find and RFCs on the IMAP flags. Strange. Thanks, Scott -Original Message- From: Eric Shubert [mailto:e...@shubes.net] Sent: Tuesday, March 22, 2011 4:33 PM To: qmailtoaster-list@qmailtoaster.com Subject: [qmailtoaster] Re: Dovecot 2.0.11 rpms for QMT available rsync would probably be simplest if your old server was using maildir format. Good for doing preliminary runs too before cutting over, so there's not much mail to migrate after the change. Otherwise, I think I'd try fetchmail. - Qmailtoaster is sponsored by Vickers Consulting Group (www.vickersconsulting.com) Vickers Consulting Group offers Qmailtoaster support and installations. If you need professional help with your setup, contact them today! - Please visit qmailtoaster.com for the latest news, updates, and packages. To unsubscribe, e-mail: qmailtoaster-list-unsubscr...@qmailtoaster.com For additional commands, e-mail: qmailtoaster-list-h...@qmailtoaster.com - Qmailtoaster is sponsored by Vickers Consulting Group (www.vickersconsulting.com) Vickers Consulting Group offers Qmailtoaster support and installations. If you need professional help with your setup, contact them today! - Please visit qmailtoaster.com for the latest news, updates, and packages. To unsubscribe, e-mail: qmailtoaster-list-unsubscr...@qmailtoaster.com For additional commands, e-mail: qmailtoaster-list-h...@qmailtoaster.com - Qmailtoaster is sponsored by Vickers Consulting Group (www.vickersconsulting.com) Vickers Consulting Group offers Qmailtoaster support and installations. If you need professional help with your setup, contact them today! - Please visit qmailtoaster.com for the latest news, updates, and packages. To unsubscribe, e-mail: qmailtoaster-list-unsubscr...@qmailtoaster.com For additional commands, e-mail: qmailtoaster-list-h...@qmailtoaster.com
RE: [qmailtoaster] Re: Block with no reverse dns
I would revisit why you had issues when you had SpamDyke installed. My personal experience has been the exact opposite. Prior to SpamDyke, my sever at the time was getting hammered, and the resulting SpamAssassin processes were killing it. I put SpamDyke on it, and dropped the utilization by 75%. Milked another year out of that server. :P I agree with Eric... I would never put up another Qmail server w/o Spamdyke. And, once it's installed (Trivial as Eric mentioned), doing what you're asking about is even more trivial... Mike -Original Message- From: Kalil Costa - Brasilsite [mailto:ka...@brasilsite.com.br] Sent: Tuesday, March 22, 2011 12:07 PM To: qmailtoaster-list@qmailtoaster.com Subject: Re: [qmailtoaster] Re: Block with no reverse dns i used spamdyke and unfortunately the processes increased, so much processing. I thought it would be another solution Em 22-03-2011 16:02, Eric Shubert escreveu: Not that I'm aware of. Why wouldn't you want to use spamdyke? I wouldn't run any QMT host w/out it. Installation is absolutely trivial. - Qmailtoaster is sponsored by Vickers Consulting Group (www.vickersconsulting.com) Vickers Consulting Group offers Qmailtoaster support and installations. If you need professional help with your setup, contact them today! - Please visit qmailtoaster.com for the latest news, updates, and packages. To unsubscribe, e-mail: qmailtoaster-list-unsubscr...@qmailtoaster.com For additional commands, e-mail: qmailtoaster-list-h...@qmailtoaster.com - Qmailtoaster is sponsored by Vickers Consulting Group (www.vickersconsulting.com) Vickers Consulting Group offers Qmailtoaster support and installations. If you need professional help with your setup, contact them today! - Please visit qmailtoaster.com for the latest news, updates, and packages. To unsubscribe, e-mail: qmailtoaster-list-unsubscr...@qmailtoaster.com For additional commands, e-mail: qmailtoaster-list-h...@qmailtoaster.com
RE: [qmailtoaster] Re: Dovecot 2.0.11 rpms for QMT available
Scott: I may have missed what you are trying to do, but I think you're trying to move actual mail folder content from one server to another, one being a QMT and one Modus. Is that right? If so, do they both support IMAP? Mike -Original Message- From: Eric Shubert [mailto:e...@shubes.net] Sent: Tuesday, March 22, 2011 4:48 PM To: qmailtoaster-list@qmailtoaster.com Subject: [qmailtoaster] Re: Dovecot 2.0.11 rpms for QMT available To run rsync on windoze, you can install cygwin, and then rsync for cygwin. This would only work with maildir mailboxes. No telling what dovecot would do with that junk once it got into the maildirs on QMT. You might still have a problem there. I'd lean toward fetchmail. Fetchmail will retrieve messages via pop3 or imap, and pass them on to qmail-smtpd for scanning and delivery. It's really pretty easy to set up. Here's a sample /root/.fetchmailrc (config) file: [root@tacs-wan ~]# cat .fetchmailrc # These are global options set no bouncemail set postmaster postmas...@mydomain.com set syslog # These are server/user options poll remote.domain.com \ protocol pop3 \ timeout 120 username myuser there \ is myu...@mydomain.com here \ antispam 554 \ fetchall \ password mypass \ smtphost localhost \ ssl \ sslcertck We should have a wiki page on using fetchmail, if we don't already. It's really pretty versatile. -- -Eric 'shubes' On 03/22/2011 02:43 PM, Scott Hughes wrote: My old email is a windows based server called ModusMail by a company called Vircom. In looking at rsync, I'm not sure if it would work or not. I can't seem to find and RFCs on the IMAP flags. Strange. Thanks, Scott -Original Message- From: Eric Shubert [mailto:e...@shubes.net] Sent: Tuesday, March 22, 2011 4:33 PM To: qmailtoaster-list@qmailtoaster.com Subject: [qmailtoaster] Re: Dovecot 2.0.11 rpms for QMT available rsync would probably be simplest if your old server was using maildir format. Good for doing preliminary runs too before cutting over, so there's not much mail to migrate after the change. Otherwise, I think I'd try fetchmail. - Qmailtoaster is sponsored by Vickers Consulting Group (www.vickersconsulting.com) Vickers Consulting Group offers Qmailtoaster support and installations. If you need professional help with your setup, contact them today! - Please visit qmailtoaster.com for the latest news, updates, and packages. To unsubscribe, e-mail: qmailtoaster-list-unsubscr...@qmailtoaster.com For additional commands, e-mail: qmailtoaster-list-h...@qmailtoaster.com - Qmailtoaster is sponsored by Vickers Consulting Group (www.vickersconsulting.com) Vickers Consulting Group offers Qmailtoaster support and installations. If you need professional help with your setup, contact them today! - Please visit qmailtoaster.com for the latest news, updates, and packages. To unsubscribe, e-mail: qmailtoaster-list-unsubscr...@qmailtoaster.com For additional commands, e-mail: qmailtoaster-list-h...@qmailtoaster.com
RE: [qmailtoaster] Re: SpamAssassin not being invoked by SimContro
OK. Tcp.smtp now looks like: :allow,BADMIMETYPE=,SENDER_NOCHECK=1,BADLOADERTYPE=M,QMAILQUEUE=/var/ qmail/bin/simscan,NOP0FCHECK=1 Header information is still the same: Received: (qmail 28565 invoked by uid 1010); 11 Jan 2011 04:41:02 -0800 Received: from 192.168.100.122 by mail.norcalisp.com (envelope-from norcalinter...@gmail.com, uid 1008) with qmail-scanner-1.25-st-qms (clamdscan: 0.91.2/1082. spamassassin: 3.2.0. perlscan: 1.25-st-qms. Clear:RC:1(192.168.100.122):. Processed in 0.066093 secs); 11 Jan 2011 12:41:02 - X-Antivirus-NorCalISP-Mail-From: norcalinter...@gmail.com via mail.norcalisp.com X-Antivirus-NorCalISP: 1.25-st-qms (Clear:RC:1(192.168.100.122):. Processed in 0.066093 secs Process 28558) Received: from unknown (HELO mail.norcalisp.com) (192.168.100.122) by mail.norcalisp.com with SMTP; 11 Jan 2011 04:41:02 -0800 Received: (qmail 12610 invoked by uid 89); 11 Jan 2011 12:41:01 - Received: by simscan 1.4.0 ppid: 12605, pid: 12606, t: 0.0623s scanners: attach: 1.4.0 clamav: 0.96.3/m:53/d:12505 Received: from unknown (HELO mail-iw0-f177.google.com) (209.85.214.177) by mail.norcalisp.com with SMTP; 11 Jan 2011 12:41:01 - Received: by iwn38 with SMTP id 38so21353335iwn.36 for mcol...@norcalisp.com; Tue, 11 Jan 2011 04:40:29 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:mime-version:received:received:date:message-id :subject:from:to:content-type; bh=4s2kmb0Iocy2ztenUiYdvwfIbdXrWGJeKE8RR03gj6M=; b=AeiBKelfTf69Q/7TaoVAOqclbwmsAtr9RHblGmZZ5oL2ItVlbR3QbvwR2P0mijE3BM KT9zmta/DCJW18pRpoKgLalMbWis+Uc7DBF1wPG+cbKidqL0aIctyYzASvBT93LYtepG cVdflalC1w9g0xudt1bjHwJkg4FmtC0EkoZ9A= DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=mime-version:date:message-id:subject:from:to:content-type; b=pFOBpl0EItTK62RMwoCVcr8N0UknO/Rwu9KA9n4puf1BIOTWDBWLhUqThVh1DXvTjY jibiALvAE5jyGJCwqA2UgmqdcvNSeZQ7ylhYp5KLxYoa9CqyX0qohG9Xvn4M0g3dX/yJ M1bLffv+FTJoqp9sKJ0ro4s/+EhvWQpm2cQGs= MIME-Version: 1.0 Received: by 10.42.241.199 with SMTP id lf7mr4139326icb.93.1294749629840; Tue, 11 Jan 2011 04:40:29 -0800 (PST) Received: by 10.42.230.5 with HTTP; Tue, 11 Jan 2011 04:40:29 -0800 (PST) Date: Tue, 11 Jan 2011 04:40:29 -0800 Message-ID: aanlktimo65iopgbztonw-opm2d7cvp4xhydcmbg4u...@mail.gmail.com Subject: Testing From: NorCal Internet norcalinter...@gmail.com To: Michael Colvin mcol...@norcalisp.com Content-Type: multipart/alternative; boundary=20cf305496a9c27d9b04999163ea No change on the simscan line... I still don't see anything in qmlog spamd, other than the Startup stuff that was there from my last post... In fact, there's nothing but what I posted last time, since the server hasn't restarted... There's been no log entries in spamd since 1/9/2011... SpamAssassin is On in the default QMT, right? I mean, it's obviously installed on the system, and SimScan is running... It just seems like something is missing, and it's on both servers... I know this is going to end in one of those Duh! moments... :-) Mike -Original Message- From: Eric Shubert [mailto:e...@shubes.net] Sent: Monday, January 10, 2011 8:39 AM To: qmailtoaster-list@qmailtoaster.com Subject: [qmailtoaster] Re: SpamAssassin not being invoked by SimContro On 01/09/2011 09:17 PM, Michael J. Colvin wrote: Have you run # qmailctl cdb recently? Several times, and even rebooted the whole server (Both of them) to make sure the new cdb files were loaded. The cdb file's date stamp is being updated when I run qmailctl cdb. Again, what I think is the strangest part is, this is happening on two totally separate machines, both with basically Stock ISO installs on them... If it was happening to just one, I'd lean towards a config error... But with two of them, it's either something I did too both of them (Possible, of course) or something else... And, like I said, I haven't changed much from the stock install... Just the rcpthosts, smtproutes, tcp.smtp (As posted) and I think that's about it.. (Shrug)... Mike Here's my tcp.smtp entry: :allow,BADMIMETYPE=,BADLOADERTYPE=M,CHKUSER_RCPTLIMIT=50,CHKUSER_WRONG RCPTLIMIT=10,QMAILQUEUE=/var/qmail/bin/simscan,DKSIGN=/var/qmail/contro l/domainkeys/%/private,NOP0FCHECK=1 You appear to be missing NOP0FCHECK=1 in your configuration. IIRC, you really need that. I don't recall what happens w/out it, but I'd put it in and see if that fixes things. -- -Eric 'shubes' - Qmailtoaster is sponsored by Vickers Consulting Group (www.vickersconsulting.com) Vickers Consulting Group offers Qmailtoaster support and installations. If you need professional help with your setup, contact them today! - Please visit qmailtoaster.com
[qmailtoaster] SpamAssassin not being invoked by SimContro
I did some checking in the archives, but didn't find a solution, although I found some similar items, none of them seemed to point me in the right direction. I just realized that, for some reason, mail on two newly created servers is not being scanned by SpamAssassin, or at least it appears as though it isn't. E-mails arrive with the following contained in the headers: Received: by simscan 1.4.0 ppid: 2790, pid: 2791, t: 0.0720s scanners: attach: 1.4.0 clamav: 0.96.3/m:53/d:12497 Which leads me to believe that only attach and clamav are being invoked. Here's my tcp.smtp: 127.:allow,RELAYCLIENT=,DKSIGN=/var/qmail/control/domainkeys/%/private :allow,BADMIMETYPE=,SENDER_NOCHECK=1,BADLOADERTYPE=M,QMAILQUEUE=/var/ qmail/bin/simscan Here's simcontrol: :clam=yes,spam=yes,spam_hits=12,attach=.mp3:.src:.bat:.pif I've got two servers, both new builds using the ISO, that are behaving identical. Obviously, I made some changes to tcp.smtp, but other than that, I haven't made any changes to any files that I'm aware of, that effect invoking simscan, and then spamassassin.. Any thoughts? Additional info: qtp-whatami v0.3.7 Sun Jan 9 16:18:36 PST 2011 DISTRO=CentOS OSVER=5.5 QTARCH=i686 QTKERN=2.6.18-194.8.1.el5 BUILD_DIST=cnt50 BUILD_DIR=/usr/src/redhat Thanks in advance! Mike
RE: [qmailtoaster] Re: SpamAssassin not being invoked by SimContro
Thanks for the replay Eric. Here's the full header: Received: (qmail 11511 invoked by uid 1010); 9 Jan 2011 16:09:23 -0800 Received: from 192.168.100.122 by mail.norcalisp.com (envelope-from michael.col...@gmail.com, uid 1008) with qmail-scanner-1.25-st-qms (clamdscan: 0.91.2/1082. spamassassin: 3.2.0. perlscan: 1.25-st-qms. Clear:RC:1(192.168.100.122):. Processed in 0.094059 secs); 10 Jan 2011 00:09:23 - X-Antivirus-NorCalISP-Mail-From: michael.col...@gmail.com via mail.norcalisp.com X-Antivirus-NorCalISP: 1.25-st-qms (Clear:RC:1(192.168.100.122):. Processed in 0.094059 secs Process 11504) Received: from unknown (HELO mail.norcalisp.com) (192.168.100.122) by mail.norcalisp.com with SMTP; 9 Jan 2011 16:09:23 -0800 Received: (qmail 2795 invoked by uid 89); 10 Jan 2011 00:09:21 - Received: by simscan 1.4.0 ppid: 2790, pid: 2791, t: 0.0720s scanners: attach: 1.4.0 clamav: 0.96.3/m:53/d:12497 Received: from unknown (HELO mail-yi0-f49.google.com) (209.85.218.49) by mail.norcalisp.com with SMTP; 10 Jan 2011 00:09:21 - Received: by yib2 with SMTP id 2so5429037yib.36 for mcol...@norcalisp.com; Sun, 09 Jan 2011 16:08:50 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:mime-version:received:received:date:message-id :subject:from:to:content-type; bh=GMPLCtUDsw0tenqLVZLtyBTLSH7m83E9a36NIFIzX9g=; b=bWDAXb5wt2YuhvYKE7ro9LDiNbkPOGFqmKDyzpOJjorI1+fPSMQeg4O9y8xKt2WXRM dUeOdL8G59F79xUsHPTDODYlT1pL6/PCDS9dONYO4LRce/OACwGjn+sn+vA1xrOMcasi 45mLzT4w+UxhAjN474zs8TBauKQtTxYJwoXPI= DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=mime-version:date:message-id:subject:from:to:content-type; b=Tai3/7m8KcMRAUo7vQvthAx35Er2+qbRq+OsI548wcn3rH9m/3wvFrP3MPhkShqa35 Zhv9HOjRaxuw4w+afZhYWdwF53IkzI77UYQ5UZTIgVvpDSAfP61wmAOwSS7PcMdBOT25 NOxzSWtxSdbj9D9wFQ+ULFH5OAUp5P85IBvOQ= MIME-Version: 1.0 Received: by 10.100.48.4 with SMTP id v4mr488017anv.47.1294618130674; Sun, 09 Jan 2011 16:08:50 -0800 (PST) Received: by 10.100.120.20 with HTTP; Sun, 9 Jan 2011 16:08:50 -0800 (PST) Date: Sun, 9 Jan 2011 16:08:50 -0800 Message-ID: aanlkti=tmjszfszjr7ngoxjhcar4meaorua2jxhz1...@mail.gmail.com Subject: Testing From: Michael Colvin michael.col...@gmail.com To: Michael Colvin mcol...@norcalisp.com Content-Type: multipart/alternative; boundary=0016e642d6a8cc75ba049972c53e This message is sent, obviously, from Gmail, so it's not an intra-host e-mail, and no authentication is involved... Qmlog spamd shows: 01-09 16:01:46 [2113] info: spamd: server started on port 783/tcp (running version 3.2.5) 01-09 16:01:46 [2113] info: spamd: server pid: 2113 01-09 16:01:46 [2113] info: spamd: server successfully spawned child process, pid 2387 01-09 16:01:46 [2113] info: spamd: server successfully spawned child process, pid 2388 01-09 16:01:46 [2113] info: prefork: child states: II These are the only entries since the last reboot... Shouldn't the header line: scanners: attach: 1.4.0 clamav: 0.96.3/m:53/d:12497 also show spamd though? In other posts that I'd found in the archive, there was a notation on that line that indicated spamassassin was invoked... To me, it looks like qmlog spamd doesn't have any errors, but should it show that messages were scanned too? I don't think spamassassin isn't running, it just doesn't look like simscan is sending messages from qmail to spamassassin... That's just a guess though... Thanks again for your input! Mike -Original Message- From: Eric Shubert [mailto:e...@shubes.net] Sent: Sunday, January 09, 2011 5:12 PM To: qmailtoaster-list@qmailtoaster.com Subject: [qmailtoaster] Re: SpamAssassin not being invoked by SimContro On 01/09/2011 05:24 PM, Michael J. Colvin wrote: I did some checking in the archives, but didn't find a solution, although I found some similar items, none of them seemed to point me in the right direction. I just realized that, for some reason, mail on two newly created servers is not being scanned by SpamAssassin, or at least it appears as though it isn't. E-mails arrive with the following contained in the headers: Received: by simscan 1.4.0 ppid: 2790, pid: 2791, t: 0.0720s scanners: attach: 1.4.0 clamav: 0.96.3/m:53/d:12497 Which leads me to believe that only attach and clamav are being invoked. Here's my tcp.smtp: 127.:allow,RELAYCLIENT=,DKSIGN=/var/qmail/control/domainkeys/%/private :allow,BADMIMETYPE=,SENDER_NOCHECK=1,BADLOADERTYPE=M,QMAILQUEUE=/var/ qmail/bin/simscan Here's simcontrol: :clam=yes,spam=yes,spam_hits=12,attach=.mp3:.src:.bat:.pif I've got two servers, both new builds using the ISO, that are behaving identical. Obviously, I made some changes to tcp.smtp, but other than that, I haven't made any changes to any files that I'm aware of, that effect invoking simscan, and then spamassassin.. Any thoughts? Additional info: qtp-whatami v0.3.7 Sun
RE: [qmailtoaster] Re: SpamAssassin not being invoked by SimContro
Have you run # qmailctl cdb recently? -- -Eric 'shubes' Several times, and even rebooted the whole server (Both of them) to make sure the new cdb files were loaded. The cdb file's date stamp is being updated when I run qmailctl cdb. Again, what I think is the strangest part is, this is happening on two totally separate machines, both with basically Stock ISO installs on them... If it was happening to just one, I'd lean towards a config error... But with two of them, it's either something I did too both of them (Possible, of course) or something else... And, like I said, I haven't changed much from the stock install... Just the rcpthosts, smtproutes, tcp.smtp (As posted) and I think that's about it.. (Shrug)... Mike - Qmailtoaster is sponsored by Vickers Consulting Group (www.vickersconsulting.com) Vickers Consulting Group offers Qmailtoaster support and installations. If you need professional help with your setup, contact them today! - Please visit qmailtoaster.com for the latest news, updates, and packages. To unsubscribe, e-mail: qmailtoaster-list-unsubscr...@qmailtoaster.com For additional commands, e-mail: qmailtoaster-list-h...@qmailtoaster.com
RE: [qmailtoaster] Something wrong in wiki land!
I saw that today too while looking for answers to my issue. I didn't look into it, but saw the link and thought..Hmmm.. I'm going to have to come back and see what that's about. J Mike From: Scott Hughes [mailto:sonicscott9...@gmail.com] Sent: Sunday, January 09, 2011 7:31 PM To: qmailtoaster-list@qmailtoaster.com Subject: [qmailtoaster] Something wrong in wiki land! I was just looking at our QMT wiki pages and noticed that someone or something had added a new section. It's title: Halloween Contact Lenses I could be WAY off base here, but I do not think that this is a viable topic for QMT. The page is: http://wiki.qmailtoaster.com/index.php/Main_Page#User_Tips_.26_Tricks Scott
RE: [qmailtoaster] Opinions Please
If I follow you right, the biggest issue would be the TTL of the DNS records. If you're using ns1, and everything resolves to the addresses contained in it at location 1, then if failover occurs to ns2, and thus site 2, that would work for new requests for DNS information. But, cached information, which is usually at least an hour or more, would still try to resolve to the old IP's. If site 1 is down, then traffic bound for site 1 (Cached requests) would fail. I may not have understood what you were trying to say though.. Mike -Original Message- From: South Computers [mailto:i...@southcomputers.com] Sent: Sunday, May 30, 2010 11:17 AM To: qmailtoaster-list@qmailtoaster.com Subject: Re: [qmailtoaster] Opinions Please That looks interesting. Been thinking about this myself a lot lately (failover, not load balancing, especially for http). Being in hurricane alley I think about this this time every year. Not too worried about mail, as I just use smtp routes to point everything back to primary mail server(s). I use dnsmadeeasy's failover services for my must be up sites, but wondering.. I have a sneaky idea. Maybe. Might I be cheating a bit if I were to: Setup a couple of domains on dnsmadeeasy (or any service that does failover reliably), and add failover service to each. Add records for ns1, ns2, whatever to each. Setup a dns server on each machine (different geographical locations). Each dns server would be configured to point to it's own set of records (for that location) Setup failover for ns1, ns2, etc at failover dns service to rollover to the live dns server, thus effectively failovering all records for everything on the dns server. With hundreds of domains, this could save a lot of money paying for individual failover service. Does this make sense? Thoughts? Scott Hughes wrote: I am considering setting up a second QMT server using Jake's replicated server tutorial. These servers will be in two different cities for maximum redundancy. If I remember correctly, Jake mentioned setting up DNS round robin to balance the two QMT servers. My question is this: Is DNS better for load balancing, or would it be better to utilize a load balancing program like 'balance' (http://www.inlab.de/balance.html) ? Or does it really make a difference for this application. I would be balancing IMAP (993) / SMTP (25) / POP3 (110). Thanks, Scott - Qmailtoaster is sponsored by Vickers Consulting Group (www.vickersconsulting.com) Vickers Consulting Group offers Qmailtoaster support and installations. If you need professional help with your setup, contact them today! - Please visit qmailtoaster.com for the latest news, updates, and packages. To unsubscribe, e-mail: qmailtoaster-list-unsubscr...@qmailtoaster.com For additional commands, e-mail: qmailtoaster-list-h...@qmailtoaster.com - Qmailtoaster is sponsored by Vickers Consulting Group (www.vickersconsulting.com) Vickers Consulting Group offers Qmailtoaster support and installations. If you need professional help with your setup, contact them today! - Please visit qmailtoaster.com for the latest news, updates, and packages. To unsubscribe, e-mail: qmailtoaster-list-unsubscr...@qmailtoaster.com For additional commands, e-mail: qmailtoaster-list-h...@qmailtoaster.com
