Re: [SOGo] Antispam antivirus
On Wed, Aug 21, 2013 at 11:49:04PM +0200, Szládovics Péter wrote: 2013-08-21 23:21 keltezéssel, Jan-Frode Myklebust írta: On Wed, Aug 21, 2013 at 01:23:45PM +0200, Szládovics Péter wrote: SOGo is not a mailserver. SOGo just an groupware extension for _any_ mailserver backend. So, the question is not the antivirus and antispam for SOGo. The question is antivirus and antispam for mailserver. Antispam has a place in SOGo too. I'd like to have an interface for the users to select how strict the spam-filter should be by integrating with sieve-spamtest/rfc5235. Maybe a block sender function, that pushes out a sieve script to the server to drop/move-to-Spam messages from a given sender. Also it would be nice if the SOGo webinterface had a Spam/not-spam button that would move messages to/from the Spam-folder. This could be used by http://wiki2.dovecot.org/Plugins/Antispam to train the filter. Block senders? How many senders need to block for correct spam filtering. One node of one zombie network sends about 100 thousand spam emails per day with randomly generated senders. Are you sure, you can stopped them with this feature? I don't think so. Blocking sender is a helpfull feature against other kinds of spam than zombie networks.. F.ex. real businesses that picked up your email address during a website registration, and thinks that that's an invitation to be put on their advertising list. Example. My mail host gets about 250-300 clean, real mails per day (total incoming mail traffic is about 2000 mails/day - yes, 80-90% of them are absolutely spam). We deliver about 500.000 supposedly clean mails/day to our users inboxes, after virus/spam/greylisting/etc has done it's thing. The SA drops 5-10 mails into the quarantine per day (newsletters, advertisements, badly formatted mail contents - really spams, very rarely few false positive good mails). On our scale, managing a single quarantine doesn't really work, so we rather deliver the suspect messages to the users Spam-folder and give them an opportunity to check for false positives. All of others are back off to senders. Be careful with that, so you don't get on the backscatter lists.. The successful fight with spams there is at the gate, not at the mailbox. At the gate we can do general filtering, but we can't train a general filter to suit 100K's of users. A spam-filter individually trained (and customized) by each user can be much more effective. Training can be done by moving messages to/from Spam-folders, customisations can include blocking senders, or tuning spam-score. -jf -- users@sogo.nu https://inverse.ca/sogo/lists
Re: [SOGo] Antispam antivirus
2013-08-23 08:50 keltezéssel, Jan-Frode Myklebust írta: On Wed, Aug 21, 2013 at 11:49:04PM +0200, Szládovics Péter wrote: 2013-08-21 23:21 keltezéssel, Jan-Frode Myklebust írta: On Wed, Aug 21, 2013 at 01:23:45PM +0200, Szládovics Péter wrote: SOGo is not a mailserver. SOGo just an groupware extension for _any_ mailserver backend. So, the question is not the antivirus and antispam for SOGo. The question is antivirus and antispam for mailserver. Antispam has a place in SOGo too. I'd like to have an interface for the users to select how strict the spam-filter should be by integrating with sieve-spamtest/rfc5235. Maybe a block sender function, that pushes out a sieve script to the server to drop/move-to-Spam messages from a given sender. Also it would be nice if the SOGo webinterface had a Spam/not-spam button that would move messages to/from the Spam-folder. This could be used by http://wiki2.dovecot.org/Plugins/Antispam to train the filter. Block senders? How many senders need to block for correct spam filtering. One node of one zombie network sends about 100 thousand spam emails per day with randomly generated senders. Are you sure, you can stopped them with this feature? I don't think so. Blocking sender is a helpfull feature against other kinds of spam than zombie networks.. F.ex. real businesses that picked up your email address during a website registration, and thinks that that's an invitation to be put on their advertising list. Yes, it's true. Some senders can send unwanted advertisements to common email addresses (dom...@domain.tld, i...@domain.tld, etc.) as legal. These senders usually send emails with correct content, so filtering these we need to use 'Block Senders' like tools - eg. blacklists on postfix side, if we need to block them as systemwide. Example. My mail host gets about 250-300 clean, real mails per day (total incoming mail traffic is about 2000 mails/day - yes, 80-90% of them are absolutely spam). We deliver about 500.000 supposedly clean mails/day to our users inboxes, after virus/spam/greylisting/etc has done it's thing. This is the point. :) I thonk: you use _only_ 'block senders' tool for filtering spams. Apologize, I misunderstood your words. The SA drops 5-10 mails into the quarantine per day (newsletters, advertisements, badly formatted mail contents - really spams, very rarely few false positive good mails). On our scale, managing a single quarantine doesn't really work, so we rather deliver the suspect messages to the users Spam-folder and give them an opportunity to check for false positives. All of others are back off to senders. Be careful with that, so you don't get on the backscatter lists.. I mean - these mails are rejected not answered. The successful fight with spams there is at the gate, not at the mailbox. At the gate we can do general filtering, but we can't train a general filter to suit 100K's of users. A spam-filter individually trained (and customized) by each user can be much more effective. Training can be done by moving messages to/from Spam-folders, customisations can include blocking senders, or tuning spam-score. Ok, understood. I know my home system is little, it was just an example about rates. -- users@sogo.nu https://inverse.ca/sogo/lists
Re: [SOGo] SOGo + fail2ban
Can you post your apache config and a sample http request from a
client going to sogo on 127.0.0.1:2 ?
I'm using nginx, not apache, but the config is:
location /SOGo {
if ($scheme = 'http') {
#Insecure, lets go to https
rewrite ^/(.*)$ https://mail.vescent.com/$1 redirect;
}
proxy_pass http://127.0.0.1:2;
proxy_set_headerX-Real-IP $remote_addr;
proxy_set_headerX-Forwarded-For
$proxy_add_x_forwarded_for;
proxy_set_header Host$host;
proxy_set_header x-webobjects-server-protocolHTTP/1.0;
proxy_set_header x-webobjects-remote-host127.0.0.1;
proxy_set_header x-webobjects-server-name
$server_name;
proxy_set_header x-webobjects-server-url $scheme://$host;
proxy_connect_timeout 90;
proxy_send_timeout 90;
proxy_read_timeout 90;
proxy_buffer_size 4k;
proxy_buffers 4 32k;
proxy_busy_buffers_size 64k;
proxy_temp_file_write_size 64k;
client_max_body_size50m;
client_body_buffer_size 128k;
}
location /SOGo.woa/WebServerResources/ {
alias /usr/lib/GNUstep/SOGo/WebServerResources/;
}
location /SOGo/WebServerResources/ {
alias /usr/lib/GNUstep/SOGo/WebServerResources/;
}
location ^/SOGo/so/ControlPanel/Products/([^/]*)/Resources/(.*)$ {
alias /usr/lib/GNUstep/SOGo/$1.SOGo/Resources/$2;
}
You can use tcpflow -c -i lo port 2 for that.
(take care to remove the cookie before posting this)
Here's the traffic on port 2 when I attempt a (bad) login from SOGo
webmail from a computer with IP: 192.168.0.100:
server:/tmp# tcpflow -c -i lo port 2
tcpflow[30936]: listening on lo
127.000.000.001.50791-127.000.000.001.2: POST /SOGo/connect HTTP/1.0
X-Real-IP: 192.168.0.100
X-Forwarded-For: 192.168.0.100
Host: server.com
x-webobjects-server-protocol: HTTP/1.0
x-webobjects-remote-host: 127.0.0.1
x-webobjects-server-name: server.com
x-webobjects-server-url: https://server.com
Connection: close
Content-Length: 27
Origin: https://server.com
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36
(KHTML, like Gecko) Chrome/28.0.1500.95 Safari/537.36
Content-type: application/x-www-form-urlencoded
Accept: */*
Referer: https://server.com/SOGo/
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Cookie: REMOVED
userName=asdfpassword=asdf
127.000.000.001.2-127.000.000.001.50791: HTTP/1.1 403 Forbidden
127.000.000.001.2-127.000.000.001.50791: content-length: 34
content-type: application/json
127.000.000.001.2-127.000.000.001.50791: set-cookie:
127.000.000.001.2-127.000.000.001.50791: SOGoLogin=; expires=Wed,
21-Aug-2013 15:36:00 GMT; path=/SOGo/
127.000.000.001.2-127.000.000.001.50791:
127.000.000.001.2-127.000.000.001.50791: {LDAPPasswordPolicyError:
65535}
It seems SOGo has the ip address via either X-Real-IP or
X-Forwarded-For. But again, the sogo log for that attempt is:
Aug 22 09:36:00 sogod [13156]: SOGoRootPage Login from '127.0.0.1' for
user 'asdf' might not have worked - password policy: 65535 grace: -1
expire: -1 bound: 0
Thanks
Ben
--
users@sogo.nu
https://inverse.ca/sogo/lists
[SOGo] Problem with outlook conector
Hello, I installed and configured outlook with Sogo and everything works fine, but when time passes outlook disconnects and I can not reconnect. I tried to restart my server and reconnect outlook, but after some time off again. Connect only with outlook fails, the rest works perfectly. Can anyone help me. Thank you. -- users@sogo.nu https://inverse.ca/sogo/lists
Re: [SOGo] Signature link misssing
Hello Michael P
Am 2013-08-13 12:30, schrieb micha...@beekmangroup.com:
i am using sogo v2.0.7
I was trying to set up an html signature. i ended up pasting the html code
into
the dialog box on the sogo webmail interface. now i am unable to change my
signature on sogo as the link to alter signature has disappeared and my
signature is stuck as a bunch of html code.
How can i go about clearing/resetting my signature so that i can add a new
one?
On the command line you can use sogo-tool for that.
Read the current setting with:
/usr/sbin/sogo-tool user-preferences get defaults $userid SOGoMailSignature
Unset it with:
/usr/sbin/sogo-tool user-preferences unset defaults $userid
SOGoMailSignature
Set it with:
/usr/sbin/sogo-tool user-preferences set defaults $userid
SOGoMailSignature '{SOGoMailSignature:My new totally hip signature}'
You have to replace $userid with your user ID in SOGo.
Kind regards,
Christian Mack
--
Christian Mack
Gruppe Informationsdienste
Rechenzentrum Universität Konstanz
--
users@sogo.nu
https://inverse.ca/sogo/lists
Re: [SOGo] GUI Integration with Postfix Address Extension
Hello Brian DeRosa Am 2013-08-14 20:59, schrieb Brian DeRosa: I'm new to SOGo and have searched for an answer to this question, but haven't really found what I was looking for. I'm currently using a combination of Postfix and SquirrelMail for my user base. My users actively utilize Postfix's address extension function; they can dynamically create From addresses with whatever extension they like within SquirrelMail. My id is an example (using - vs the standard + that is suggested within Postfix's configuration). In looking at SOGo web client in the latest ZEG edition, I couldn't figure out an easy way to open up that functionality. Basically, letting my users define whatever complete list of From addresses they'd want to chose from. I tried allowing SOGoMailCustomFromEnabled within the config, but that only seemed to allow me to save a single alternative email address for selection. Is there a way of allowing multiple users to dynamically manage (create, update, and delete) a listing of From addresses? user-examp...@mydomain.com user-examp...@mydomain.com etc... Yes, that is possible, but you have to give them write access to your enterprise address book. There you can enter multiple email addresses (attribute: mail), which can then be selected on email composition. For example we use LDAP backend for authentication. We have multiple mail attributes per user in it. But setting these is done via our IDM system, not via SOGo, as we don't allow users to change LDAP entries. In SOGo you can allow users to edit these entries by listing them in modifiers. Be aware they then can change every attribute visible in the address book! Kind regards, Christian Mack -- Christian Mack Gruppe Informationsdienste Rechenzentrum Universität Konstanz -- users@sogo.nu https://inverse.ca/sogo/lists
Re: [SOGo] SOGo problems with sharing calendars and address book
Am 2013-08-20 02:10, schrieb kodb2...@icloud.com: Good evening. I have a working install of 2.0.7 on an HP DL380 server running Ubuntu 12.04.02 with latest updates. Email was installed from iRedMail-0.8.5 and authentication with Mysql from Ubuntu repos. I am able to login from outside the lan via internet and from inside the lan using the IP address IP.IPP.IPP.IP (numbers replaced for obvious reasons). The email virtualdomain is avv.xyz.local. We are using the web interface with Firefox 20 on Ubuntu 12.04 clients. The instance is working well except for one major issue: I cannot seem to reliably get sharing to work for user calendars and address books. I was able to share one address book using the all authenticated users option but only one of my 7 accounts was able to view/add this. I then tried to do some specific sharing of calendars and address books and failed on all permutations. I have used the sharing dialog to allow becky to share her personal address book with bob including checking the subscribe box on the dialog. When I try to have bob subscribe to that share I am able to search the user but I am presented with the message No possible subscriptions and the add button remains grayed out. I attempted multiple permutations of this with multiple users- same failure. When I looked at /var/log/sogo/sogo.log in this example of the above I find that when bob tries to subscribe to becky's calendar (that she set up to share with bob) the following was generated: IP.IPP.IPP.IP - - [19/Aug/2013:19:33:54 GMT] POST /SOGo/so/b...@avv.xyz.local/usersSearch?search=bec HTTP/1.1 200 174/0 0.003 - - 0 IP.IPP.IPP.IP - - [19/Aug/2013:19:33:55 GMT] POST /SOGo/so/be...@avv.xyz.local/foldersSearch?type=contact HTTP/1.1 200 0/0 0.004 - - 0 IP.IPP.IPP.IP - - [19/Aug/2013:19:34:03 GMT] GET /SOGo/so/b...@avv.xyz.local/preferences HTTP/1.1 200 13466/0 0.025 57526 76% 568K IP.IPP.IPP.IP- - [19/Aug/2013:19:42:36 GMT] POST /SOGo/so/be...@avv.xyz.local/foldersSearch?type=contact HTTP/1.1 200 0/0 0.031 - - 0 IP.IPP.IPP.IP - - [19/Aug/2013:19:42:37 GMT] POST /SOGo/so/be...@avv.xyz.local/foldersSearch?type=contact HTTP/1.1 200 0/0 0.003 - - 0 IP.IPP.IPP.IP - - [19/Aug/2013:19:42:37 GMT] POST /SOGo/so/be...@avv.xyz.local/foldersSearch?type=contact HTTP/1.1 200 0/0 0.003 - - 0 IP.IPP.IPP.IP - - [19/Aug/2013:19:43:25 GMT] POST /SOGo/so/b...@avv.xyz.local/Contacts/personal/view?noframe=1sort=c_cnasc=true HTTP/1.1 200 0/0 0.003 - - 0 Any ideas? I just put this up to replace an aging Citadel installation for our medical office with 11 total users and the plain jane email is great but we'd like to use some of the other nice features and I need to get the contacts and calendars working before moving on to setting up iPhones and Droids to acces the data. The above log messegas show nothing. What have you set for SOGoCalendarDefaultRoles and SOGoContactsDefaultRoles? Did you actually set some privileges, or did you only add the users under sharing to this address book? Kind regards, Christian Mack -- Christian Mack Gruppe Informationsdienste Rechenzentrum Universität Konstanz -- users@sogo.nu https://inverse.ca/sogo/lists
Re: [SOGo] SOGo + fail2ban
On 13-08-22 11:46 AM, Ben wrote: proxy_set_header x-webobjects-remote-host127.0.0.1; That is not good. remove that line and sogo will happily show you the remote host :-) -- users@sogo.nu https://inverse.ca/sogo/lists
Re: [SOGo] SOGo + fail2ban
On 13-08-23 8:39 AM, Jean Raby wrote: On 13-08-22 11:46 AM, Ben wrote: proxy_set_header x-webobjects-remote-host127.0.0.1; That is not good. remove that line and sogo will happily show you the remote host :-) In fact, you can either leave it out entirely and sogo will use x-forwarded-for, or you can set it to $remote_addr: proxy_set_header x-webobjects-remote-host$remote_addr; -- users@sogo.nu https://inverse.ca/sogo/lists
Re: [SOGo] Signature link misssing
Thank you, we managed to sort it out
On 23/08/2013 14:10, Christian Mack wrote:
Hello Michael P
Am 2013-08-13 12:30, schrieb micha...@beekmangroup.com:
i am using sogo v2.0.7
I was trying to set up an html signature. i ended up pasting the html code into
the dialog box on the sogo webmail interface. now i am unable to change my
signature on sogo as the link to alter signature has disappeared and my
signature is stuck as a bunch of html code.
How can i go about clearing/resetting my signature so that i can add a new one?
On the command line you can use sogo-tool for that.
Read the current setting with:
/usr/sbin/sogo-tool user-preferences get defaults $userid SOGoMailSignature
Unset it with:
/usr/sbin/sogo-tool user-preferences unset defaults $userid
SOGoMailSignature
Set it with:
/usr/sbin/sogo-tool user-preferences set defaults $userid
SOGoMailSignature '{SOGoMailSignature:My new totally hip signature}'
You have to replace $userid with your user ID in SOGo.
Kind regards,
Christian Mack
--
users@sogo.nu
https://inverse.ca/sogo/lists
Re: [SOGo] TextCha in the Wiki
On 22/08/13 03:53, ABBAS Alain wrote: the question is : TextChat(Required) : /Can this be an impossible question? _ and i don t know what to respond , tried many things but wrong each time I would guess the answer is no but I don't know what many things you have tried. Hope that helps, -- MJ Ray (slef), member of www.software.coop, a for-more-than-profit co-op http://koha-community.org supporter, web and library systems developer. In My Opinion Only: see http://mjr.towers.org.uk/email.html Available for hire (including development) at http://www.software.coop/ -- users@sogo.nu https://inverse.ca/sogo/lists
Re: [SOGo] SOGo + fail2ban
On 8/23/2013 6:42 AM, Jean Raby wrote: On 13-08-23 8:39 AM, Jean Raby wrote: On 13-08-22 11:46 AM, Ben wrote: proxy_set_header x-webobjects-remote-host 127.0.0.1; That is not good. remove that line and sogo will happily show you the remote host :-) In fact, you can either leave it out entirely and sogo will use x-forwarded-for, or you can set it to $remote_addr: proxy_set_header x-webobjects-remote-host$remote_addr; Thanks! That fixed it. Ben -- users@sogo.nu https://inverse.ca/sogo/lists
Re: [SOGo] TextCha in the Wiki
HelloI tested and retested no doesn t workthis is a shame that i can t participate , nobody from inverse responded to mewe wrote some documentations t issued of our experiences with our customers-kolab+ Sogo , how to integrate Sogo in Kolab mail system and replace Kolab groupware part with it-Nginx configuration-How to make a proxy to control external users for Sogo and Imaps/Smtps-how to deploy easy the xpi with scriptsand i simply can t because to a silly textcha i cant creat ean accountreally dissappointed .Le Vendredi 23 Aot 2013 14:04 CEST, MJ Ray m...@phonecoop.coop a crit:On 22/08/13 03:53, ABBAS Alain wrote: the question is : TextChat(Required) : /Can this be an impossible question? _ and i don t know what to respond , tried many things but wrong each timeI would guess the answer is no but I dont know what many things youhave tried.Hope that helps,--MJ Ray (slef), member of www.software.coop, a for-more-than-profit co-ophttp://koha-community.org supporter, web and library systems developer.In My Opinion Only: see http://mjr.towers.org.uk/email.htmlAvailable for hire (including development) at http://www.software.coop/--users@sogo.nuhttps://inverse.ca/sogo/lists
Re: [SOGo] TextCha in the Wiki
On 2013-08-23 7:30 PM, ABBAS Alain wrote: and i simply can t because to a silly textcha i cant creat ean account try: You better ask the right guy to have an account in this wiki. isn't it trivial? :-P -- Ludovic Marcotte lmarco...@inverse.ca :: +1.514.755.3630 :: http://inverse.ca Inverse inc. :: Leaders behind SOGo (http://sogo.nu) and PacketFence (http://packetfence.org) -- users@sogo.nu https://inverse.ca/sogo/lists
