Bjorn, have a look at this from the opensmtpd mailling list.
https://www.mail-archive.com/misc@opensmtpd.org/msg05278.html
The message from Eric has how to downgrade the smtpd listener to use all
TLS and compatible ciphers.
Regards.
On 13/05/2021 07:31, Bjorn Ketelaars wrote:
I have a smtp
nding match is:
match tag "SPAM_IN" from any for domain action "lmtp-local"
Hopefully this might help someone in the future.
Regards - Nick
On 28/05/2018 16:48, Nick Ryan wrote:
Hi Mark, viq, did either of you get it to work with the virtual table?
Mine mostly works with:
actio
18 10:48, Nick Ryan wrote:
Hi Mark, viq, did either of you get it to work with the virtual table?
Mine mostly works with:
action "lmtp-local" mda "/usr/libexec/mail.lmtp -d
unix:/var/dovecot/lmtp -f %{sender} %{rcpt}" virtual
but it ignores the virtual table completely.
If
Hi Mark, viq, did either of you get it to work with the virtual table?
Mine mostly works with:
action "lmtp-local" mda "/usr/libexec/mail.lmtp -d
unix:/var/dovecot/lmtp -f %{sender} %{rcpt}" virtual
but it ignores the virtual table completely.
If I miss out the ${rcpt}, I get a no recipient s
That seems to be normal. Mine is currently 61.5 degrees and it's
currently not under any load.
Mine runs cooler if it's standing on its edge vertically, it just seems
to help the airflow around the case at the expense of looking a bit odd.
Regards - Nick
On 20/06/2014 10:40, Roger Wiklund w
On 7 Jun 2014, at 23:35, Mattieu Baptiste wrote:
> On Sat, Jun 7, 2014 at 8:51 PM, JB M wrote:
>
>> I'm having troubles installing OpenBSD 5.5 (amd64) on a mSATA SSD card (
>> http://pcengines.ch/msata16a.htm) PC Engines APU.1C device (
>> http://pcengines.ch/apu.htm) with the most recent BIOS
Apologies, I wasn't trying to be funny. There's a few bits of
troubleshooting at
http://trac.roundcube.net/wiki/Howto_Config#ConfiguringforVirtualUsers
where it looks like they describe a similar issue to the one you're
having.
Can't help any more than that though.
On 14/12/2011 10:20,
Wesley M
I've a VPS OpenBSD server at www.arpnetworks.com [1] - they're a
good price and I've had no problems with them if it helps.
I know it's
a VPS rather than a dedicated server but it might be worth a look.
Regards - Nick
On Wed, 27 Apr 2011 07:20:26 +, Nigel Horne
wrote:
> Hello the list.
you'd need to add routes and rules into that.
Hope some of this helps.
On 30 May 2009, at 21:19, patrick keshishian wrote:
On Sat, May 30, 2009 at 11:09 AM, Nick Ryan wrote:
There's a tickbox on the windows vpn client to tick.
It's quite well hidden.
To get to it, do properties
There's a tickbox on the windows vpn client to tick.
It's quite well hidden.
To get to it, do properties on your VPN connection, then click the
networking tab. Then do properties on the TCPIP protocol, then click
advanced and select the Use Default Gateway On Remote Network Option.
It's ha
Sorry pppoe in that example should have been $pppoe and it should
correspond to the interface you're using for pppoe and declared in the
pf.conf file. It's in the man pages anyway.
On 29 Jan 2009, at 10:06, Nick Ryan wrote:
I'd try manually changing the interface media ty
I'd try manually changing the interface media type just in case it's
that. I've seen odd things happen if you have it autodetect compared
to manually setting it to 100mbTX full duplex... (and vice versa)
Then I'd look at cables, try switching out the network card for
another, that sort of t
is pf enabled? sounds like it's just acting as a router at the mo to
me...
pf -ef /etc/pf.conf
On 2 Dec 2008, at 15:10, - Tethys wrote:
Hi...
The hard drive on my firewall machine died overnight, so I rebuilt
it with a new hard drive this morning. I grabbed the most recent
OpenBSD CD I ha
man 4 pppoe - you're missing part of the pf.conf file:
MTU/MSS ISSUES
Problems can arise on machines with private IPs connecting to the
Inter-
net via a machine running both Network Address Translation (NAT) and
pppoe. Standard Ethernet uses a Maximum Transmission Unit (MTU) of
15
Make sure that the windows 2003 firewall isn't set up to block web
access. It's caught me out before in the past, although that was on
SBS2003.
See if you can telnet to port 80 from the OpenBSD firewall to the
external interface on the windows box.
On 8 Jan 2008, at 17:04, Sewan wrote:
err. Maybe it's me but to answer his original question - it's more
than likely a DNS lookup issue.
Have a look in /etc/ssh/sshd_config and add in:
UseDNS no
restart the sshd daemon with a kill -HUP command and you should have
no problems.
Alternatively, you could fix your dns lookup issu
I second using PF and transparent squid. It works extremely well and
is pretty much foolproof.
This is what I use at work and it's blocking sites by domain name,
regex matching, flash videos, mp3 sites and also limiting filetype
downloads.
The interesting bit of squid.conf is here:
acl a
If you haven't already seen it on undeadly.org this might be what
you're after:
http://spootnik.org/hoststated/hoststated_introduction.html
Cheers
On 18 Jan 2007, at 18:08, Jeff Simmons wrote:
I'm setting up some auto-failover web servers (load balancing isn't
needed).
CARP would seem ide
> We have a problem getting mail from gmail through spamd. Google's gmail
> public mail service use a large number of smtp servers. The first time
> gmail tries to contact our smtp, it is being greylisted on our spamd
> server. The problem is the next time it tries to repeat the
> transmission, it
table is instantly updated as the person is scanning and
the logfile is created later on. If you do it the other way you're back
with the problem of how to import the logfile into the table quickly
enough to stop the scanning.
Cheers. Nick
Rico wrote:
Hi Nick
Nick Ryan wrote:
Strange. It&
sist file "/root/pf/sshdhackers"'
I don't get any entries in the sshdhackers file and I don't get
blocked from the system.
I also use AllowUsers
Would you mind explaining a bit more about your setup?
Friendly
Rico.
Nick Ryan wrote:
What you could also do is install swatch f
What you could also do is install swatch from ports or packages and have
a table in your pf.conf like this:
table persist
and a rule
#stop ssh trolls
block in log quick on $EXT_IF inet proto {tcp,udp} from to
$EXT_IF port ssh label "SSHDTrolls"
A swatchrc file of:
watchfor /Failed passw
You could use pf to block linux ssh access.
block in log quick on $EXT_IF inet proto tcp from any os "Linux" to port
22 label "Blocked Linux ssh access: "
That'll reduce it quite a lot.
John Marten wrote:
You know what i mean? Every day I get some script kiddie, or adult
trying to guess u
er)
- I used the IP 192.168.1.50 (conecting the PC directly to the hub
-the internal LAN where is also connected my wife's PC)
And with both IP the nslookup works correctly, I can t understand why
if I do the nslookup from the firewall says all the time "connection
timed out; no
The static route you'll need to add will be for your internal lan eg:
192.168.1.0 netmask 255.255.255.0 gateway 192.168.0.9
This'll tell your adsl router that to get to the 192.168.1. network it
needs to go through the 192.168.0.9 interface of your openbsd box. Note
this is outside interface IP
25 matches
Mail list logo
