Re: [xmail] sendmail -io -t not working
On 21 Jul 2011, at 06:52, Marin, Patricia wrote: When I am using sendmail -io -t on a perl script or command line, the mail never get send but when I add -femail email is send. The configuration I have is windows with apache2triad from 2006. XMail's sendmail interface is a bit different than most others; check the docs. Also check that your script is giving the mail in on stdin; I know for a fact that Win32 does not handle pipes with grace. It may be easier to just convert to the use of SMTP on localhost:25. Cheers, Sabahattin ___ xmail mailing list xmail@xmailserver.org http://xmailserver.org/mailman/listinfo/xmail
[xmail] Long Delays Post RCPT, With Wildcards
I've discovered that, for some unknown reason (to me), a long pause (10+ seconds) ensues after an RCPT command where an alias containing a wildcard is being expanded to a mailbox. Does *anybody* have the slightest clue what's going on here? My thought is of some recently-update system library ... Cheers, Sabahattin ___ xmail mailing list xmail@xmailserver.org http://xmailserver.org/mailman/listinfo/xmail
Re: [xmail] xmail split multi mail to multi recipient
On 1 Mar 2011, at 13:50, Rittikorn wrote: I has 1 problem Now I setup Xmail like a Mail server and I has postfix do as mail gateway Why? Why not let XMail do direct MX deliveries? I use smtpfwd.tab to forward email to mail gateway, but I found problem when I send to multi recipient the email that send out from Xmail it split to one by one Yes. XMail's algorithm is somewhat blind. However, it is not configurable. Sorry! If it helps, we can discuss the utility in doing it the XMail way. If you set the number of threads quite high (command-line parameters), you can often achieve very good performance. (But with Postfix, you can get *excellent* performance.) ex. client send mail to 10 recipient 1 email smtp gateway receive email from XMail 10 Email I need smtp gateway receive only 1 Email from Xmail, How can i do, Thank you Sorry. Tweak parameters in Postfix main.cf to increase parallel deliveries, or use XMail directly for MX deliveries, or if you have some other need, please explain. Cheers, Sabahattin ___ xmail mailing list xmail@xmailserver.org http://xmailserver.org/mailman/listinfo/xmail
Re: [xmail] about IP MX record
On 8 Nov 2010, at 03:34, Chen Shihai wrote: Recent days, I found that XMail failed to send mail to a mailserver whose DNS MX is configured as IP instead of domain name. Could anyone tell me how to let xmail work with those mail servers? 1. Go to rfc-ignorant.org and report the domain name to the bogusmx list. 2. Contact the owner of the domain and tell him to use Internet standards. That's what they're there for! 3. Install dnscache from http://cr.yp.to/djbdns.html , and point XMail at it. That DNS server will convert IP-address-like domain names into A records whose value is the domain name (so a domain name of 1.2.3.4. resolves to address 1.2.3.4). It also speeds up your MX resolutions when you run it on the same box as XMail or in the same network. 4. Or use XMail tables to manually route mail to domain servers for those domains which are broken, and update them from time to time when the IP address changes. Cheers, Sabahattin ___ xmail mailing list xmail@xmailserver.org http://xmailserver.org/mailman/listinfo/xmail
Re: [xmail] problem with mx ip selection on retries
On 2 Nov 2010, at 11:25, fcxm...@aquinet.net fcxm...@aquinet.net wrote: I found an problem in xmail when re-trying to connect to mx with multiple ips Here is a sample : Assuming domain XX.com have this dns setup xx.commx 10 mx10.xx.com xx.com mx 20 mx20.xx.com mx10.xx.com A 10.10.10.1 mx10.xx.com A 10.10.10.2 mx10.xx.com A 10.10.10.3 mx20.xx.com A 20.20.20.1 mx20.xx.com A 20.20.20.2 supposing xmail have now to send a mail @xx.com on first try it use mx10.xx.com at 10.10.10.1 : now the tcp connection don't work then os same first try xmail use mx20 at 20.20.20.2 : suppose tcp connection don't work too ! What i see in a trace is that for ALL the others retries for this mail, xmail retries ONLY on SAME ips, 10.10.10.1 and 20.20.20.2 It never retry on others mx's ips !! And because there was no response from these two ips, mail bounced back to sender after all possible retries :-/ (i checked the others ips, they responded correctly :-/ but xmail never tried them ...) I think this is a major bug :( It's not violating the standard, but in the interests of robustness, I agree that it is a problem. See: http://tools.ietf.org/html/rfc5321#section-5 Another peculiar XMail behaviour is that even if the hostname in an MX record is unknown, XMail logs an error but then tries again. This only makes sense if the recipient fixes his MX records, which I think is more likely if the mail is permanently failed rather than temporarily. In Postfix, it's user-configurable which method is used. Again, no violation of the spec, but my preference is for a behaviour that is somewhat more robust, especially today with spam-filled queues everywhere. Cheers, Sabahattin ___ xmail mailing list xmail@xmailserver.org http://xmailserver.org/mailman/listinfo/xmail
Re: [xmail] Forcing Encrypted Session
On 16 Apr 2010, at 21:58, Eric Thompson wrote: I've built a new server, and installed xmail 1.27. I will need to allow connections from abroad, and I want to encrypt the sessions, authentication and mail. I've been testing, and while TLS will work for me if I set the client (seamonkey mail client on a remote server) to use it, xmail also seems to be cheerfully allowing me to connect without TLS. I've read through and tried so many tab-file settings, my eyes are falling out. I don't know what I'm missing. From the readme, I understood that the following entry, with empty string, would not allow connecting without some type of encryption. ??? SmtpNoTLSAuths That's true for SMTP. Setting that string empty just means that no authentication to SMTP is allowed unencrypted. But as of now, there's no way to do similarly with POP3. If your SMTP server accepts mail for your domain, of course it cannot refuse unencrypted SMTP or insist on authentication, else you won't get very much mail. :-) A quick fix for now is to just disable POP3 service but leave on POP3S (using the command line -P-); then, make your client use port 993, and do SSL immediately on connect. Cheers, Sabahattin ___ xmail mailing list xmail@xmailserver.org http://xmailserver.org/mailman/listinfo/xmail
Re: [xmail] Forcing Encrypted Session
On 16 Apr 2010, at 22:27, Sabahattin Gucukoglu wrote: A quick fix for now is to just disable POP3 service but leave on POP3S (using the command line -P-); then, make your client use port 993, and do SSL immediately on connect. Oops! Of course, I meant 995. Also switch to 465 for SMTP over SSL, which protects your SMTP sessions (but do not disable plain SMTP!). Cheers, Sabahattin smime.p7s Description: S/MIME cryptographic signature ___ xmail mailing list xmail@xmailserver.org http://xmailserver.org/mailman/listinfo/xmail
Re: [xmail] XMail + mlmmj
On 12 Apr 2010, at 01:29, Davide Libenzi wrote: On Thu, 8 Apr 2010, Sabahattin Gucukoglu wrote: #!/usr/bin/tclsh set user sgucukoglu set first [string first - [lindex $argv 1]] if {$first!=-1} { incr first set last [string last @ [lindex $argv 1]] if {$last==-1} { set env(EXT) [string range [lindex $argv 1] $first end] } else { incr last -1 set env(EXT) [string range [lindex $argv 1] $first $last] } } else { set env(EXT) } set env(HOME) /home/$user set env(SENDER) [lindex $argv 0] set env(RECIPIENT) [lindex $argv 1] Oh, TCL! Is likely 10+ years I haven't seen a line of it ;) Now you're just trolling. Stop it! :-) I know a lot of people don't have Tcl installed which is annoying, but I just can't stomach perl. It's too full of warts. Tcl just gets a load of stuff done really quickly without question. Cheers, Sabahattin ___ xmail mailing list xmail@xmailserver.org http://xmailserver.org/mailman/listinfo/xmail
[xmail] XMail + mlmmj
Success! Mlmmj requires that the Return-Path and Delivered-To headers show the envelope return and forward addresses. In XMail create a user, alias user+* to it, and then use a script from mailproc.tab to add these headers (removing any existing ones) and append the spool file's contents past MAIL-DATA. That's it! This does VERP all by itself, no requirement of the MTA (though it doesn't mention it in the docs, duh). If you were using my TMDA tip, the script modified for use with TMDA and mlmmj called from TMDA is below. This script is improved: it uses fcopy to do zero-copy between disk and pipe and it handles headers in-line. Feature requests of XMail: SMTP VERP extension, delivery to pipes for Unix mailers! Cheers, Sabahattin #!/usr/bin/tclsh set user sgucukoglu set first [string first - [lindex $argv 1]] if {$first!=-1} { incr first set last [string last @ [lindex $argv 1]] if {$last==-1} { set env(EXT) [string range [lindex $argv 1] $first end] } else { incr last -1 set env(EXT) [string range [lindex $argv 1] $first $last] } } else { set env(EXT) } set env(HOME) /home/$user set env(SENDER) [lindex $argv 0] set env(RECIPIENT) [lindex $argv 1] set infile [open [lindex $argv 2]] fconfigure $infile -encoding binary -translation crlf while {[gets $infile] ne MAIL-DATA} continue set outpipe [open |/usr/bin/setuidgid $user /usr/bin/tmda-filter w] fconfigure $outpipe -encoding binary -translation crlf -buffering none puts $outpipe From [expr {[lindex $argv 0] eq ?MAILER-DAEMON:[lindex $argv 0]}] [clock format [clock seconds]] puts $outpipe Return-Path: [lindex $argv 0] puts $outpipe Delivered-To: [lindex $argv 1] while {![eof $infile]} { gets $infile line if {$line eq } {puts $outpipe $line;break} if {[string equal -nocase -length 12 Return-Path: $line]} continue if {[string equal -nocase -length 13 Delivered-To: $line]} continue if {[string equal -nocase -length 5 From $line]} continue puts $outpipe $line } fcopy $infile $outpipe close $infile close $outpipe ___ xmail mailing list xmail@xmailserver.org http://xmailserver.org/mailman/listinfo/xmail
Re: [xmail] Large Queue Of Tempfails
On 1 Apr 2010, at 19:45, Davide Libenzi wrote: On Thu, 1 Apr 2010, Sabahattin Gucukoglu wrote: At any given time I have about 100 mails destined to go nowhere due to forged mail setting off a challenge, because the MX record is just . or sometimes dev.null. It would be nice if such errors were detected immediately. When these mails are in the queue, any new mail arriving by SMTP is delayed quite noticeably. Is there anything I can do about this except find /var/xmail/MailRoot/spool ! -type d -delete from time to time? Would it be possible to deal with new mail received by SMTP first, then the stuff in rsnd directories? The command above would be a really bad idea, as it'd nuke the spool :) On top of that, if you do that when XMail is running, you are going to mess up with it, since you are removing content from within its domain. At the moment you'd need to do it externally, by parsing the spool. But if you want to remove stuff from it, you better stop XMail before, and clean all the associated files inside the spool. Yep, XMail stopped by first touching MailRoot/.shutdown and waiting for the file to disappear for a few seconds. Then the above command, after checking that the files are only slog/* and rsnd/*, i.e., mails being retransmitted which I know I didn't send. The directories are left alone. Then restart, and it's snappy again. I will look at increasing the number of queue threads if it keeps happening. Cheers, Sabahattin smime.p7s Description: S/MIME cryptographic signature ___ xmail mailing list xmail@xmailserver.org http://xmailserver.org/mailman/listinfo/xmail
[xmail] Large Queue Of Tempfails
Hi, At any given time I have about 100 mails destined to go nowhere due to forged mail setting off a challenge, because the MX record is just . or sometimes dev.null. It would be nice if such errors were detected immediately. When these mails are in the queue, any new mail arriving by SMTP is delayed quite noticeably. Is there anything I can do about this except find /var/xmail/MailRoot/spool ! -type d -delete from time to time? Would it be possible to deal with new mail received by SMTP first, then the stuff in rsnd directories? Cheers, Sabahattin smime.p7s Description: S/MIME cryptographic signature ___ xmail mailing list xmail@xmailserver.org http://xmailserver.org/mailman/listinfo/xmail
Re: [xmail] Disable POP3 Locking
On 21 Mar 2010, at 02:33, Davide Libenzi wrote: On Thu, 18 Mar 2010, Sabahattin Gucukoglu wrote: Would it be possible to have the option in XMail to disable POP3 locks altogether? So long as every session maintains its state and no mails were removed externally or by the quitting of another POP3 session, multiple client connections shouldn't be a problem, and would be very useful for for instance cell phones that poll while desktops fetch new mail, or 3G connections which are highly flaky and by which their interruption leaves a lock that takes forever to clear. You are making assumption that are not true. But sure, if you want to do it in your code, just make UsrPOP3Lock() and UsrPOP3Unlock() inside UsrUtils.cpp be NOOP. I don't think it's really dangerous unless users do something silly like delete mails from both clients. Dovecot's POP3 defaults to this behaviour, in fact: http://wiki.dovecot.org/POP3Server I don't use that POP3 server though because it would waste resources while my mails are all in maildirs with CR+LF and all mail is always deleted. But thanks for the info, I will patch. Cheers, Sabahattin ___ xmail mailing list xmail@xmailserver.org http://xmailserver.org/mailman/listinfo/xmail
[xmail] Disable POP3 Locking
Hi, Would it be possible to have the option in XMail to disable POP3 locks altogether? So long as every session maintains its state and no mails were removed externally or by the quitting of another POP3 session, multiple client connections shouldn't be a problem, and would be very useful for for instance cell phones that poll while desktops fetch new mail, or 3G connections which are highly flaky and by which their interruption leaves a lock that takes forever to clear. Cheers, Sabahattin smime.p7s Description: S/MIME cryptographic signature ___ xmail mailing list xmail@xmailserver.org http://xmailserver.org/mailman/listinfo/xmail
Re: [xmail] XMail + Dovecot
What, exactly, is the problem? How do you want Dovecot and XMail to work together? I am setting up Dovecot to read from standard Maildirs in user home directories, because I am using a separate delivery agent (TMDA but would work for maildrop, Dovecot's deliver program and others) to deliver mails using mailproc.tab. So, even while XMail runs as root, Dovecot need not and there is no problem getting it to work just like with other MTAs. XMail can't help with delivery to Maildir because it runs as root, and unless you mess about with packet filters to non-root it you'll still end up using for instance XACLs to allow Dovecot to read the mails. For authentication of XMail to Dovecot you would have to write external authentication helpers that use Dovecot's protocol. Or, you can use checkpassword or PAM-POP3 or something else to try getting Dovecot to authenticate against the active XMail list of users. Or you can just do what I do, maintain two databases and keep them in sync. Cheers, Sabahattin smime.p7s Description: S/MIME cryptographic signature ___ xmail mailing list xmail@xmailserver.org http://xmailserver.org/mailman/listinfo/xmail
[xmail] Running TMDA With XMail
In case anybody needs it, here's how to run the TMDA challenge-response and mail filtering system under XMail. This assumes Unix where users have home directories of their own, with different privileges. TMDA doesn't work on Windows. Home page: http://www.tmda.net/ 1. Get and configure TMDA. For outgoing mail you use smtp because the sendmail interface doesn't (yet) work (it needs to send from which uses a separate argument). You must also set the CONFIRM_ADDRESS, USERNAME and HOSTNAME to refer to your full address if they are different in XMail than your local system. Use sendmail as MAIL_TRANSFER_AGENT and set the delimiter to '-'. 2. Call, using mailproc.tab from your user's directory, the script pasted below. You need Dan Bernstein's daemontools for the setuidgid program, or modify it to use something else. Modify the script to refer to yourself instead of sgucukoglu my local username for my email account. The script is written in Tcl, so get and install it. This parses the spool file format for the raw message, then calls TMDA with sender set to the first argument, recipient the second, the spool file the third, extension separated by a hyphen and parsed out of the recipient, and your home directory. Mailproc.tab uses the external command to pass $(FROM), $(RCPT) and $(FILE). 3. If you want to use POP3 with XMail's built-in server you will create a symlink inside your XMail home directory that refers to the Maildir you configure TMDA to deliver to. (Hint: if you use IMAP you can browse your pending queue with it, because TMDA can store pending mail in a Maildir also.) 4. Use aliases.tab to make local-* at your domain an alias for local. Local is the part before the @ in your email address that XMail accepts mail for. 5. You may want to clear ErrorsAdmin and TempErrorsAdmin in server.tab, so as to avoid a ton of copied bounces sent by XMail to the addresses for deliveries made by TMDA (MAIL FROM:). You want to avoid spam, so you don't really want to know when mail goes nowhere. Besides, you'll have to whitelist such messages, and TMDA provides better support using tmda-ofmipd and Dated addresses for your own bounces. It makes sense also not to whitelist yourself, or , as some spammers have worked that out. 6. Set up other countermeasures. TMDA sends pretend bounces, which may well go to innocent sites. You absolutely must do everything else to prevent accepting bad mail, virus checks, SPF, etc, as befits your policy. If you don't want mail from IP addresses or email addresses, use XMail's features, not TMDA. I enjoyed doing this, but it took some trial and error and a bit of lost mail. I think the documentation in particular on mailproc.tab needs to explicitly say that spool files are used for local deliveries rather than as done to the Maildir dropbox. And we already know about the sendmail wrapper. Cheers, Sabahattin Here is the script, tmda-proc: #!/usr/bin/tclsh set user sgucukoglu set first [string first - [lindex $argv 1]] if {$first!=-1} { incr first set last [string last @ [lindex $argv 1]] if {$last==-1} { set env(EXT) [string range [lindex $argv 1] $first end] } else { incr last -1 set env(EXT) [string range [lindex $argv 1] $first $last] } } else { set env(EXT) } set env(HOME) /home/$user set env(SENDER) [lindex $argv 0] set env(RECIPIENT) [lindex $argv 1] set infile [open [lindex $argv 2]] fconfigure $infile -encoding binary -translation crlf while {[gets $infile] ne MAIL-DATA} continue set msg [read $infile] close $infile set outpipe [open |/usr/bin/setuidgid $user /usr/local/bin/tmda-filter w] fconfigure $outpipe -encoding binary -translation crlf -buffering none puts $outpipe Return-Path: [lindex $argv 0] puts -nonewline $outpipe $msg close $outpipe smime.p7s Description: S/MIME cryptographic signature ___ xmail mailing list xmail@xmailserver.org http://xmailserver.org/mailman/listinfo/xmail
Re: [xmail] sendmail wrapper, -oi option
On 9 Mar 2010, at 01:34, Davide Libenzi wrote: On Sun, 7 Mar 2010, Davide Libenzi wrote: On Sun, 7 Mar 2010, Sabahattin Gucukoglu wrote: What does -F control in XMail? If used will it override what is already in the From: field? -f should only change the envelope sender otherwise unless From: doesn't exist, in which case create it. Sendmail (the real thing) also added Date: and Message-ID, if not present. Did you actually tried it, before posting this? TMDA doesn't give control over sendmail's arguments, but actually I tried using all options together, and it broke the wrapper: sendmail -...@somewhere.invalid -F'Real Name' m...@sabahattin-gucukoglu.com For me this creates a file in spool/temp that is empty, and doesn't move it. When I lose the -F, it works just fine. I didn't try it before asking though because ... OTOH I noticed that the documentation about XMail's `sendmail` is quite outdated. Need to be sync with the implementation. I checked the sources and the TMDA scripts in the end to work what was happening. Here is the excellent manual page for Courier's sendmail wrapper that gives you an idea why I need so many answers: http://www.courier-mta.org/sendmail.html Cheers, Sabahattin ___ xmail mailing list xmail@xmailserver.org http://xmailserver.org/mailman/listinfo/xmail
[xmail] sendmail wrapper, -oi option
Please can we have the sendmail wrapper know -oi to be synonymous with -i? In practice I don't know any program that uses the sendmail SMTP-style end-of-message indicator; you could probably get by just supporting -t and -f. In the real sendmail, -oi means -O IgnoreDots=True. What does -F control in XMail? If used will it override what is already in the From: field? -f should only change the envelope sender otherwise unless From: doesn't exist, in which case create it. Sendmail (the real thing) also added Date: and Message-ID, if not present. Cheers, Sabahattin smime.p7s Description: S/MIME cryptographic signature ___ xmail mailing list xmail@xmailserver.org http://xmailserver.org/mailman/listinfo/xmail
[xmail] Prerelease Versions
Where are prerelease versions announced and made available from? I don't want to have to keep patching. Cheers, Sabahattin ___ xmail mailing list xmail@xmailserver.org http://xmailserver.org/mailman/listinfo/xmail
Re: [xmail] Certificate Chains
On 23 Feb 2010, at 15:40, Davide Libenzi wrote: On Tue, 23 Feb 2010, Sabahattin Gucukoglu wrote: I'm afraid I overlooked something: certificate chains in server.cert. I add multiple PEM-encoded certificates together, but XMail only presents one of them, the top-most. How can I provide my certificate followed by an intermediate CA certificate, whose signer is known to OS trust roots? In case you're wondering, the cert is from startcom.org. A certificate itself, already contains a chain. So you set your cert as server.cert, and add (if not already there) your roots into the certs subdirectory: http://www.xmailserver.org/Readme.html#ssl_configuration My certificate is signed by an intermedia CA which is signed by the root that everybody trusts. So I have to send to remotely connecting peers a valid chain containing my cert and then the intermediate and they can check that the signer of the intermediate is trustable. The SslUseCertsDir seems to just be used for client verification, that I do not need, I only want to present a server cert (I don't know any client that supports supplying a client cert, actually). The usual way to do it is to cat together all the pems in the chain, cert followed by signer followed by signer ... and that works for my web server and stunnel, both using OpenSSL. But it doesn't seem to work for XMail. Cheers, Sabahattin ___ xmail mailing list xmail@xmailserver.org http://xmailserver.org/mailman/listinfo/xmail
Re: [xmail] Certificate Chains
On 23 Feb 2010, at 17:06, Sabahattin Gucukoglu wrote: On 23 Feb 2010, at 15:40, Davide Libenzi wrote: On Tue, 23 Feb 2010, Sabahattin Gucukoglu wrote: I'm afraid I overlooked something: certificate chains in server.cert. I add multiple PEM-encoded certificates together, but XMail only presents one of them, the top-most. How can I provide my certificate followed by an intermediate CA certificate, whose signer is known to OS trust roots? In case you're wondering, the cert is from startcom.org. A certificate itself, already contains a chain. So you set your cert as server.cert, and add (if not already there) your roots into the certs subdirectory: http://www.xmailserver.org/Readme.html#ssl_configuration My certificate is signed by an intermedia CA which is signed by the root that everybody trusts. So I have to send to remotely connecting peers a valid chain containing my cert and then the intermediate and they can check that the signer of the intermediate is trustable. The SslUseCertsDir seems to just be used for client verification, that I do not need, I only want to present a server cert (I don't know any client that supports supplying a client cert, actually). The usual way to do it is to cat together all the pems in the chain, cert followed by signer followed by signer ... and that works for my web server and stunnel, both using OpenSSL. But it doesn't seem to work for XMail. I found it: XMail is using SSL_CTX_use_certificate_file, when it wants to use SSL_CTX_use_certificate_chain_file. That will give you the behaviour you should have and what I needed. Please consider that for the next version. For now I'll just disable STARTTLS in SMTP so remote peers don't try using it and get a broken, unverifiable cert. Cheers, Sabahattin ___ xmail mailing list xmail@xmailserver.org http://xmailserver.org/mailman/listinfo/xmail
[xmail] IPv6 And IPv4
Hi all, I am all set up now except for IPv6. I want to bind to all IPv4 and all IPv6 addresses. If I use the -x6 options, I bind to IPv6 only; if I don't, I bind to IPv4 only. I try not specifying -x6 (x=protocol) and then -xI :: -xI 0.0.0.0 but this fails spectacularly. How can I just bind to all IPv4 and all IPv6 addresses? Shouldn't binding to v6 addresses automatically give me v4-mapped addresses? Linux 2.6.31. Cheers, Sabahattin ___ xmail mailing list xmail@xmailserver.org http://xmailserver.org/mailman/listinfo/xmail
Re: [xmail] IPv6 And IPv4
On 22 Feb 2010, at 08:09, Sabahattin Gucukoglu wrote: I am all set up now except for IPv6. I want to bind to all IPv4 and all IPv6 addresses. If I use the -x6 options, I bind to IPv6 only; if I don't, I bind to IPv4 only. I try not specifying -x6 (x=protocol) and then -xI :: -xI 0.0.0.0 but this fails spectacularly. How can I just bind to all IPv4 and all IPv6 addresses? Shouldn't binding to v6 addresses automatically give me v4-mapped addresses? Linux 2.6.31. I didn't mention: Debian. That's Debian, for The distribution that changes things, just because it can. :-( Well, I apologise once again. I must learn patience. rm /etc/sysctl.d/bind_v6only and then shutdown -r now does the trick. Really, I can't think why they had to change the default (the comment says to make it match other OSs). Cheers, Sabahattin ___ xmail mailing list xmail@xmailserver.org http://xmailserver.org/mailman/listinfo/xmail
[xmail] POP3 Server: Disable Plaintext Login
Hi, It would be nice to have the option of disabling plain USER/PASS POP3 logins, without forcing the use of POP3s. It supports APOP, and STLS, so just as with the control in server.tab over SMTP AUTH mechanisms shown during plain negotiation, it would be nice to offer POP3 capability APOP and STLS, not USER, when TLS is not in use; when TLS comes into use, of course, plain logins are allowed again. This would be very nice in particular if using POP-before-SMTP, since then nearly any piece of software can provide authentication for relaying by POP login first. Cheers, Sabahattin ___ xmail mailing list xmail@xmailserver.org http://xmailserver.org/mailman/listinfo/xmail
[xmail] Certificate Chains
Hi all, I'm afraid I overlooked something: certificate chains in server.cert. I add multiple PEM-encoded certificates together, but XMail only presents one of them, the top-most. How can I provide my certificate followed by an intermediate CA certificate, whose signer is known to OS trust roots? In case you're wondering, the cert is from startcom.org. Cheers, Sabahattin ___ xmail mailing list xmail@xmailserver.org http://xmailserver.org/mailman/listinfo/xmail
[xmail] POP3 Links and Delivered-To, Default User
Hi, Is there any way to make the POP3 sync module perform routing to mailboxes based on arbitrary headers, like the Postfix Delivered-To: header, rather than just To, CC, BCC? This would be good for Domain mailboxes where all mail for a domain goes to one place, where mailing list traffic may end up, and where it's important to route mail somewhere even if it doesn't match To, CC or BCC. And if mail doesn't match even those headers and any custom ones, it should go to a default user, so he can handle it rather than it getting lost. Cheers, Sabahattin ___ xmail mailing list xmail@xmailserver.org http://xmailserver.org/mailman/listinfo/xmail
Re: [xmail] POP3 Links and Delivered-To, Default User
On 13 Feb 2010, at 11:21, Sabahattin Gucukoglu wrote: Is there any way to make the POP3 sync module perform routing to mailboxes based on arbitrary headers, like the Postfix Delivered-To: header, rather than just To, CC, BCC? This would be good for Domain mailboxes where all mail for a domain goes to one place, where mailing list traffic may end up, and where it's important to route mail somewhere even if it doesn't match To, CC or BCC. And if mail doesn't match even those headers and any custom ones, it should go to a default user, so he can handle it rather than it getting lost. Okay, sorry, looked more carefully at server.tab, and sure enough there is FetchHdrTags to solve the first half. So now, how do I specify the default drop behaviour? Is there something here with custom mail processing to do it with the @domain syntax? Cheers, Sabahattin ___ xmail mailing list xmail@xmailserver.org http://xmailserver.org/mailman/listinfo/xmail
Re: [xmail] POP3 Links and Delivered-To, Default User
On 14 Feb 2010, at 01:00, Davide Libenzi wrote: On Sat, 13 Feb 2010, Sabahattin Gucukoglu wrote: On 13 Feb 2010, at 11:21, Sabahattin Gucukoglu wrote: Is there any way to make the POP3 sync module perform routing to mailboxes based on arbitrary headers, like the Postfix Delivered-To: header, rather than just To, CC, BCC? This would be good for Domain mailboxes where all mail for a domain goes to one place, where mailing list traffic may end up, and where it's important to route mail somewhere even if it doesn't match To, CC or BCC. And if mail doesn't match even those headers and any custom ones, it should go to a default user, so he can handle it rather than it getting lost. Okay, sorry, looked more carefully at server.tab, and sure enough there is FetchHdrTags to solve the first half. So now, how do I specify the default drop behaviour? Is there something here with custom mail processing to do it with the @domain syntax? Pop3SyncErrorAccount? I've since realised that the sample tabfiles and docs don't match up, so I've reread them all over. Thanks, this works, although feature request might be, that if you specify a default user for each pop3links.tab entry, it apply only for that entry, that POP server. This way you can manage multiple domain drops with Unknown destinations, or /dev/null them. Cheers, Sabahattin ___ xmail mailing list xmail@xmailserver.org http://xmailserver.org/mailman/listinfo/xmail
Re: [xmail] Cannot relay - 1.26
On 8 Feb 2010, at 16:36, Davide Libenzi wrote: On Mon, 8 Feb 2010, Zilon X wrote: Oh no.. It's not so simple at all - no host can relay since configured as single host (/32). Is it a bug?? Sure, thousands of users use it just fine, but you, that probably haven't even read a single line of the documentation, say it is a bug. What you have done below, is configure localhost to relay, not the other hosts on your network. How about reading the smtprelay.tab section of the documentation, or using SMTP authentication? Hmm. In his example, he shows that localhost can relay only when the netmask isn't all ones (/32). I haven't tested it, but if that were true, indeed it is a bug, unless of course his loopback is running on an address that isn't 127.0.0.1 (very, very unlikely). FWIW: loopback is 127/8, which is fine as now configured for local relay (not 127.0.0/24 that some people think it is). Also, almost no software uses anything other than the first address in that range, and IPv6 only has one, ::1. Cheers, Sabahattin ___ xmail mailing list xmail@xmailserver.org http://xmailserver.org/mailman/listinfo/xmail
[xmail] Debian XMail Packages Outdated
Not counting the prerelease versions, the Debian package for xmail and xmail-doc is one minor version out of date (1.25 vs 1.26), in repository unstable. Cheers, Sabahattin ___ xmail mailing list xmail@xmailserver.org http://xmailserver.org/mailman/listinfo/xmail
Re: [xmail] Speed
On 31 Jan 2010, at 14:58, Davide Libenzi wrote: On Sat, 30 Jan 2010, David Lord wrote: On 30 Jan 2010 at 12:25, Sabahattin Gucukoglu wrote: By all reasonable accounts, XMail is fast. Does anybody know how it stacks up against the competition? Postfix, in particular, has held the speed crown for a good while now. But XMail with this fast thread startup and connection reuse could, I'm sure, be made to outflank Postfix even under stress and with its connection cache enabled. Here on my minimal server it's filters that take most of resources by orders of magnitude I'd guess. That is indeed what todays is the limiting factor of MTA's performance. Pretty much everyone runs some sort of filters, checks RBLs, and so on, which end up limiting performance far more than thread pooling and connection caching. Unless you use an MTA which run no filter, which perform no DNS resolution, which does no RDNS checks,, which checks no RBLs, and so on. That might be an ideal relay-only site, actually. If you had multiple MTAs, you could devote those with fewer such checks to outbound-only deliveries, mailing lists in particular. Then, spending as little time wasting remote SMTP startup/shutdown and new processes probably makes much more sense. I've already optimised DNS using large local caches, and would be willing to do almost no checks on client deliveries, only inbound SMTP server sessions. Those are always slow, because of authentication, TLS, mail processing, etc. Cheers, Sabahattin ___ xmail mailing list xmail@xmailserver.org http://xmailserver.org/mailman/listinfo/xmail
[xmail] Speed
Hi all, By all reasonable accounts, XMail is fast. Does anybody know how it stacks up against the competition? Postfix, in particular, has held the speed crown for a good while now. But XMail with this fast thread startup and connection reuse could, I'm sure, be made to outflank Postfix even under stress and with its connection cache enabled. Cheers, Sabahattin ___ xmail mailing list xmail@xmailserver.org http://xmailserver.org/mailman/listinfo/xmail