A similar patch for this was sent to tech@ by Renaud Allard, you might want to
go review the "sysupgrade: Allow to use another directory for data sets" thread
and comment it.
November 14, 2019 3:01 PM, "Raimo Niskanen"
wrote:
> The use case for this patch is that in our lab network we have NFS
November 24, 2019 4:34 PM, "Andrew Kanaber"
wrote:
> Hi,
>
> I'm setting up an embedded machine that won't be able to send mail to
> the internet and it seems excessive to leave smtpd running just so root
> can receive cron job output, but I can't see a way to cut smtpd out of
> the delivery ch
smtpd needs to be able to execute mda with user privileges to deliver mail to
them,
it cannot revoke all its privileges after binding ports. furthermore, mbox
needs to
be able to write to /var/mail forcing it to retain some privileges.
after I'm done dealing with the aftermath, i'll explain in a
January 29, 2020 7:00 PM, "Stuart Henderson" wrote:
>
> I hesitate to mention it in case it puts anyone off from updating (DON'T
> DO THAT, YOU SHOULD UPDATE!) but it is easy to configure to avoid the
> root-escalation aspect of this bug - and many readers will already be
> doing this, especiall
It depends on your configuration, not all setups are vulnerable.
I think I recall your name from the comments on my tutorial and this is a
setup that would not be vulnerable for example. The bug still exists, but
it can't be used to exploit the same code path.
You should update, this is not somet
ld.
>
As promised, I have written a (too much ?) detailed write-up about the recent
event:
https://poolp.org/posts/2020-01-30/opensmtpd-advisory-dissected/
Hope it clarifies what happened and plans for the future.
Gilles
February 1, 2020 9:11 AM, "Andreas Kusalananda Kähäri"
wrote:
> Hi,
>
> With the latest snapshot on amd64 (6.6 GENERIC.MP#627), using a "|"-line
> in one's ~/.forward makes delivery of mail fail with
>
> Feb 1 08:53:53 pooh smtpd[72575]: d9abac6b3d904e13 smtp connected
> address=local
> host=
February 1, 2020 2:01 PM, "Uwe Werler" wrote:
> Thank you very much Gilles for the insights.
>
> It's not really your fault because it's how our brain works. If we want to
> get things working we
> are concentrating to get them working - not how to break
sure dovecot-pigeonhole is installed and if that's the case, I'd uninstall
both
dovecot and dovecot-pigeonhole, move /etc/dovecot to /etc/dovecot.BAK, then go
again
from scratch in case you messed up something in the process.
Gilles
December 1, 2020 1:30 PM, "Aisha Tammy" wrote:
> On 12/1/20 1:31 AM, Martijn van Duren wrote:
>
>> Hello,
>>
>> There is table_ldap in the opensmtpd-extras package, but I've never used
>> it, it's undocumented and I've heard that the author sees it as a proof
>> of concept only at this point. S
od to deal with this? I certainly don't want to
> stop senderscore filtering, but I do want to receive emails from them.
>
You should probably look into the bypass keyword, it lets you create a
filter rule that will bypass a phase (ie: in phase connect, if ip addr
is X, then bypass the phase).
Gilles
workaround/good practice to have a ping -I always working as intended?
Thanks in advance.
--
Au revoir, 09 51 84 42 42
Gilles Lamiral. France, Baulon (35580) 06 20 79 76 06
rget it.
--
Au revoir, 09 51 84 42 42
Gilles Lamiral. France, Baulon (35580) 06 20 79 76 06
log quick on $ext_if1 from $ext_if2 route-to ($ext_if2 $ext_gw2)
pass out log quick on $ext_if2 from $ext_if1 route-to ($ext_if1 $ext_gw1)
pass out quick log
# end
--
Au revoir, 09 51 84 42 42
Gilles Lamiral. France, Baulon (35580) 06 20 79 76 06
; principle is not followed...
>
Interesting question ...
> Please read the thread in the:
>
> http://unix.stackexchange.com/questions/60175/why-does-time-ident-daytime-comsat-run-after-an-openbsd-5-2-install
>
> if further comments needed.
>
... by obv
machines.
> p.s.: are you Gilles ( http://unix.stackexchange.com/users/885/gilles )?
>
No
--
Gilles Chehade
https://www.poolp.org @poolpOrg
Hi Vadim,
I only use ldapd in a local context but I'll have a look tomorrow and
come up with a diff for that.
Thanks,
Gilles
On Sat, Jan 19, 2013 at 01:56:12PM +0100, Vadim Agarkov wrote:
> Hello!
>
> Debian's (as well as Ubuntu's) openldap client is linked aga
guys,
no feedback on the diff I sent :/
On Sun, Jan 20, 2013 at 12:31:41PM +0100, Gilles Chehade wrote:
> Hi Vadim,
>
> I only use ldapd in a local context but I'll have a look tomorrow and
> come up with a diff for that.
>
> Thanks,
> Gilles
>
>
> On Sa
ng" primes were used to generate the DH parameters, it is
- * not strictly necessary to generate a new key for each handshake
- * but it does improve forward secrecy.
- *
- * These are the parameters used by both sendmail and openssl's
- * s_server.
- *
- * -- gilles@
Great thanks
On Mon, Jan 28, 2013 at 12:42:35PM +0100, Joel Carnat wrote:
> Built on source tree from 5.2: it works!
>
> Gotta switch back to SSL :))
> Thank you.
>
> Jo
>
> Le 28 janv. 2013 ? 12:31, Gilles Chehade a ?crit :
>
> > On Mon, Jan 28, 2013
what's in 5.2, you will love what's in -current !
--
Gilles Chehade
https://www.poolp.org @poolpOrg
On Sat, Feb 02, 2013 at 06:02:45PM -0500, bofh wrote:
> On Sat, Feb 2, 2013 at 6:00 PM, Gilles Chehade wrote:
> > Oh, and if you liked what's in 5.2, you will love what's in -current !
>
> Don't be a tease!! What's in -current? And I see 5.3-beta is tagged
On Sat, Feb 02, 2013 at 11:08:52PM +, Miod Vallat wrote:
> > Don't be a tease!! What's in -current?
>
> Ponies. Lots of'em.
>
folding ponies into envelopes turned out to be gross, we gave up.
--
Gilles Chehade
https://www.poolp.org @poolpOrg
Kind regards,
> Frank.
>
The syntax has changed slightly to allow for multiple credentials to be
used on the same MX, amongst other things.
I just committed a fix to the example in the man page, your line should
read as:
smtps+auth://la...@mail.split-brain.de
where "label"
gt; might be confusing for new users.
>
smtpd.conf(5) has been reworked in -current, it now provides an example to
setup your SSL enabled instance at the bottom of the page.
--
Gilles Chehade
https://www.poolp.org @poolpOrg
n on egress tls certificate domainname enable auth
> map aliases source db "/etc/mail/aliases.db"
>
> accept from all for local alias aliases deliver to mbox
> accept from all for domain domainname.nl alias aliases deliver to mbox
> accept for
On Thu, Feb 14, 2013 at 03:34:24PM +0100, Martijn van Duren wrote:
> On Thu, 2013-02-14 at 13:48 +0100, Gilles Chehade wrote:
> > On Thu, Feb 14, 2013 at 01:41:45PM +0100, Martijn van Duren wrote:
> > > > > [...]
> > > > > world. To do so I set up a
without, but without output I can't
> > help you troubleshoot
> >
>
> Since the problem resolved itself, I reckoned the output wouldn't be
> relevant (since everything does seem to work now). But my output was:
ok, issues that resolve themselves ar
;
> accept for any relay via my.isp.smtpserver
>
> What exact syntax should I use? Current, amd64.
> Best regards
>
You should really show the entire conf and the exact message
otherwise it's hard to know.
The line by itself seems correct
--
Gi
url: smtp.sbb.rs
>
> If needed, I will provide further info.
>
actually I didn't spot that you were -current:
accept for any relay via smtp://smtp.sbb.rs
--
Gilles Chehade
https://www.poolp.org @poolpOrg
eeds
> root privilages. Am I on the correct path for
> this?
>
Yes, wrong path, this is not how you do it.
You need to setup the mailwrapper: see mailwrapper(8) and mailer.conf(5)
Then smtpctl can be invoked as sendmail and will not require root privs.
-
//goo.gl/73UaI
And here's wikipedia page on "privilege separation"
http://en.wikipedia.org/wiki/Privilege_separation
--
Gilles Chehade
https://www.poolp.org @poolpOrg
On Tue, Feb 26, 2013 at 11:57:29AM -0500, Scott McEachern wrote:
> On 02/26/13 11:52, Gilles Chehade wrote:
> >Here's a schema I did of the layout a while ago:
>
> Your diagram, with "Charles", reminds me of a question I've always wondered:
>
> What'
icated and more understandable (reading
pf.conf).
Thanks in advance.
--
Au revoir, 09 51 84 42 42
Gilles Lamiral. France, Baulon (35580) 06 20 79 76 06
Bugs:
===
Please read http://www.opensmtpd.org/report.html
Security bugs should be reported directly to secur...@opensmtpd.org
Other bugs may be reported to b...@opensmtpd.org
OpenSMTPD is brought to you by Gilles Chehade, Eric Faurot and Charles Longeau.
Hi all,
> make a table, and have cron update the contents of this table with the
> result of the latest resolved ip.
Thanks all three for your answers.
--
Au revoir, 09 51 84 42 42
Gilles Lamiral. France, Baulon (35580) 06 20 79 76 06
: CVS: cvs.openbsd.org: www
CVSROOT:/cvs
Module name:www
Changes by: e...@cvs.openbsd.org2013/03/29 07:19:56
Modified files:
. : want.html
Log message:
I could need a new laptop
- End forwarded message -
--
Gilles Chehade
https://www.pool
r"
>
>
>
>
>
> Experimental:
>
>
>
> * SQLite lookup backend
>
> * LDAP lookup backend
>
>
>
>
>
> Portable:
>
>
>
> * Support for PAM authentication
>
> * Known to build and work on FreeBSD, Net
of smtpd on
> server 2 as well, that is the case.
>
> Ideas? Suggestions?
>
smtpd doesn't support address rewriting at the moment.
It will either use the local `hostname` or the one supplied by your MUA.
--
Gilles Chehade
https://www.poolp.org @poolpOrg
dited from
> the root's cronjob, right?
>
Oops, forgot to reply to this one.
If you're replacing sendmail with smtpd you can get rid of that entry in
root's crontab. If present, smtpd will ignore it, so you're not required
to remove it.
--
Gilles Chehade
https://www.poolp.org @poolpOrg
cronjobs, but not
> the daily/weekly/monthly/security scripts or anything else send to
> "root". Same goes for the MAILTO, which is ignored in those scripts as well.
>
> Is there any ETA when smtpd will properly handle rewriting the address?
>
It's high on the todo and very likely to be done by 5.4
--
Gilles Chehade
https://www.poolp.org @poolpOrg
ribes the
envelope before the rule you're showing, then we will not be able to
understand the issue.
Also, "No MX could be reached" means that no MX willing to accept the
envelope could be reached. That can mean you have invalid credentials
and that none
ver. The logs don't point
> to any problem reading or opening the aliases file.
>
> Here is my smtpd.conf:
> # $OpenBSD: smtpd.conf,v 1.6 2013/01/26 09:38:25 gilles Exp $
>
> # This is the smtpd server system-wide configuration file.
> # See smtpd.conf(5) for
ch a 5.3.3 stable tarball from opensmtpd.org and it will
run on top of OpenBSD 5.3
--
Gilles Chehade
https://www.poolp.org @poolpOrg
On Tue, Jun 18, 2013 at 12:33:51PM -0700, William Orr wrote:
> Thanks Gilles, first for the help and second for the fantastic software.
>
> One last question - is there a way I can resend the mail stuck in
> the queue? I've tried smtpctl schedule all, but it doesn't seem to
ain
than the one specified in mx. [...]
therefore:
accept for domain foobar.org relay backup mx2.example.org
will turn your machine as a backup mx for domain foobar.org with the
same priority as mx2.example.org, only relaying to other MXs that have
a higher priority
--
Gilles Chehade
https://www.poolp.org @poolpOrg
On Mon, Jun 24, 2013 at 01:41:49PM -0700, Scott Vanderbilt wrote:
> On 6/24/2013 1:23 PM, Gilles Chehade wrote:
>
> >>>"relay backup" is used to setup secondary mail servers for a domain,
> >>>that is a server that accept mails for a domain and relay to M
t won't
take long before rbl and similar filters get implemented.
> Just switched over from Postfix. Couldn't be happier.
>
Glad to hear ;)
--
Gilles Chehade
https://www.poolp.org @poolpOrg
(8) knows when it is invoked as "sendmail" and will work just the
way you'd expect. All you have to do is setup the mailwrapper(8) and you
can then let your ruby app config reference sendmail
--
Gilles Chehade
https://www.poolp.org @poolpOrg
by the troll, but it turned
> out that the whole sentence is missing from original interview.
>
> [0]
> http://www.washingtonpost.com/blogs/erik-wemple/wp/2013/05/29/sharyl-attkisson-and-her-compromised-computers/
>
seriously, who fucking cares.
let this thread die
--
Gilles Chehade
https://www.poolp.org @poolpOrg
g/cgi-bin/cvsweb/src/usr.sbin/smtpd/delivery_mbox.c.diff?r1=1.8;r2=1.9;f=h
I don't see how your issue could possibly happen with this code :-/
--
Gilles Chehade
https://www.poolp.org @poolpOrg
&w=2
>
It's officially still true, unofficially you can do it on recent
versions by declaring a table (i'll use a static table for the example
but you can use a file, db, sqlite or ldap one):
$ encrypt
mypassword
$2a$06$BTOM8Ck.HEInGF888KbjiORoXSOFT.McbLZIS85gMSmHTPA5Tds2S
$
smtpd.
On Wed, Sep 25, 2013 at 01:03:45PM +0100, Craig R. Skinner wrote:
> On 2013-09-25 Wed 11:39 AM |, Gilles Chehade wrote:
> >
> > It's officially still true, unofficially you can do it on recent
> > versions by declaring a table (i'll use a static table for the exa
Le 2013-09-30 08:29, John Tate a écrit :
> I want to be able to log in as root by SSH with a specific IP address.
> This is so rsync can log in to the server easily and backup many files
> owned by many different users and groups. Rather than a script on the
> server logging into the server with
nothing. It's
absolutely not interesting to spend yours on this, It's a kid game. I
appraciate much more the work you do all on awsome project like OpenBSD
and YYCIX :)
Gilles Cafedjian.
a solution to get a working window manager back?
Thanks,
Gilles Cafedjian.
Le 2013-10-29 11:34, Peter J. Philipp a écrit :
> On 10/28/13 11:44, Brett Mahar wrote:
>
>> On Mon, 28 Oct 2013 11:20:32 +0100 "Peter J. Philipp"
>> wrote: | I remember someone else
just good enough to work with basic 2D, for people
stuck with Nvidia.
Thanks,
Gilles Cafedjian.
Le 2013-10-30 08:08, Matthieu Herrb a écrit :
> On Tue, Oct 29, 2013 at 05:36:43PM +0100, Gilles Cafedjian wrote:
>
>> I have the same problem but on a dell laptop with integrated NVidia
> Hello,
> I've tried vesa too and it works but it is limited to 1024x768... if you
> have any tips to allow 1440x900 with vesa, i take it...
>
> Thanks
>
> Morgan
>
> Le 02/11/2013 16:10, Gilles Cafedjian a écrit :
>
>> Hello, Indeed, switching to ves
Hello,
I use Belkin Surf N300 USB WiFi with urtwn(4) driver. I bougth it
specially to work on my old laptop with OpenBSD and it work very well.
Don't forget to run fw_update(1) to get the firmware.
Le 2013-11-02 17:49, Alexander Pakhomov a écrit :
> Hi! Have anybody got success with any modern
I forgot to say, the chip of the Belkin Surf N300 is Realtek RTL8192CU
revelent dmesg:
urtwn0 at uhub1 port 1 "Realtek Belkin Wireless Adapter" rev 2.00/2.00
addr 2
urtwn0: MAC/BB RTL8192CU, RF 6052 2T2R, address ff:ff:ff:ff:ff:ff
Le 2013-11-02 18:01, Gilles Cafedjian a écrit :
&g
ts/core.Techn0.eu.key"
> pki core.Techn0.eu dhparams "/etc/mail/certs/core.Techn0.eu.dh"
>
> [...]
>
can you try with an all-lowercase hostname ?
I think we're missing a call to lowercase() in our configuration parsing
and I'll have a fix for that in a few minu
b:/etc/mail/aliases.db
> accept from any for domain { kma.mydomain.net,
> prv.mydomain.net,mydomain.net } virtual { "@" => didier } deliver to mbox
> accept for local alias deliver to mbox
> accept for any relay
>
Adding "auth" on the "listen on egress" line should get you the desired
result
--
Gilles Chehade
https://www.poolp.org @poolpOrg
.
>
I feel offended by those who feel offended about some man page.
Maybe we should remove them as they are causing controversy ?
--
Gilles Chehade
https://www.poolp.org @poolpOrg
tually, the longer it runs, the bigger my shitlist to test some
filters grows :-P
--
Gilles Chehade
https://www.poolp.org @poolpOrg
smtpd will always try to group and reuse connections,
--
Gilles Chehade
https://www.poolp.org @poolpOrg
resend the failed ones,
> only to be told again that there are
> "too many recipients".
>
So not a single recipient is ever accepted ?
If that's the case, I'll tell you in private how to fix this and we will
have to find a way that works f
have fatal-ed with a different message.
We have fixed this and it'll be committed to -current soon, the message is
gone forever
Gilles
On Tue, Dec 31, 2013 at 05:58:32PM -0700, Joel Knight wrote:
> I'll just add that I was testing this with the 5.3 release so it doesn't
> ap
prising!, that is what I still benefit every day.
You won't have to sell CDs or teeshirts anymore, just coding, paying
electricity and coders.
--
Au revoir, 09 51 84 42 42
Gilles Lamiral. France, Baulon (35580) 06 20 79 76 06
es which should be committed to
OpenBSD very soon too
--
Gilles Chehade
https://www.poolp.org @poolpOrg
ostname` daily insecurity output" root
> >
> >While it perfectly does what I want, I consider it bad habit to change
> >/etc/daily itself and would like to know if there is any preferred
> >solution to this issue?
>
> add it to ~r
to
do is call free() in your error path to give him another chance at
exploiting the situation.
--
Gilles Chehade
https://www.poolp.org @poolpOrg
ething like a one shot monitor would be nice.
>
Indeed, we'll add something :-)
--
Gilles Chehade
https://www.poolp.org @poolpOrg
wrong here?
>
> Trying to test my thesis I created two empty files: foo.pem and foo.key
> and used them in my pki statement with some astonishing result:
>
> # smtpd -nf /etc/mail/smtpd.conf
> Segmentation fault (core dumped)
>
> While the test is more or less stu
On Sun, Feb 16, 2014 at 12:37:08AM +0100, Gilles Chehade wrote:
> On Sat, Feb 15, 2014 at 09:26:35PM +0100, Frank Brodbeck wrote:
> > Hi,
> >
> > On Fri, Feb 14, 2014 at 07:24:32PM -0500, Ted Unangst wrote:
> > > I would try using a full path.
> > >
elaying messages.
using the "verify" keyword on a listen line will require that a client
provide a certificate that we can verify before a session can be started
whereas using a verify on a relay line will require that smtpd(8)'s own
client can verify a peer certificate before relaying a message.
--
Gilles Chehade
https://www.poolp.org @poolpOrg
On Thu, Feb 13, 2014 at 02:42:58PM +0100, Gilles Chehade wrote:
> On Thu, Feb 13, 2014 at 02:09:53AM -0500, Ted Unangst wrote:
> > Correct me if I'm wrong, but there's no way to find out what parts of
> > smtpd (mda, mta) are paused? I can always run smtpctl pause mta
or: ssl_load_key: error:0906D06C:PEM
routines:PEM_read_bio:no start line
fatal: load_pki_tree: failed to load key file
$ sudo smtpd -nf /etc/mail/smtpd.conf
fatal: load_pki_tree: failed to load key file
$
--
Gilles Chehade
https://www.poolp.org @poolpOrg
or some code which allowed verify to work when sending peers
a certificate but not yet in the general case ...
It's coming next, no worries, I just want to avoid touching SSL related
code so close to a lock ;-)
--
Gilles Chehade
https://www.poolp.org @poolpOrg
he API is supposed to be usable by a larger audience very soon (we're
talking in matter of weeks), the python/perl bindings are just regular
filters, they are not part of smtpd itself, they rely on the C API so
they are as usable as the API itself ;-)
If you are interested in filters developme
brought to you by Gilles Chehade, Eric Faurot and Charles Longeau.
--
Gilles Chehade
https://www.poolp.org @poolpOrg
Hello,
without commenting on the need for the utility itself, the code you have
provided does not respect the coding style of OpenBSD, and your main
function shouldn't be returning errno
Gilles
On 03/26/14 12:19, Dmitrij D. Czarkoff wrote:
Hello!
For some reason POSIX X/Open Sy
me that some symlinks
should be files.
Gilles
On Mon, Apr 07, 2014 at 12:13:06PM +0300, Gregory Edigarov wrote:
> Helio,
>
> configs are just reduced to the famous
>
> [...]
>
> system is current as of Sat Apr 5 19:05:54 EEST 2014
>
Hi,
Did you follow the steps at:
http://www.openbsd.org/faq/current.ht
ent" I meant "snapshot" sorry if that caused any confusion.
>
I'll have a look at this, thanks
--
Gilles Chehade
https://www.poolp.org @poolpOrg
ot;Intel UHCI root hub" rev 1.00/1.00 addr 1
> usb3 at uhci2: USB revision 1.0
> uhub3 at usb3 "Intel UHCI root hub" rev 1.00/1.00 addr 1
> usb4 at uhci3: USB revision 1.0
> uhub4 at usb4 "Intel UHCI root hub" rev
On Sun, May 18, 2014 at 07:37:26AM -0400, Kenneth Westerback wrote:
> On 18 May 2014 05:37, Gilles Chehade wrote:
> > On Sat, May 17, 2014 at 10:40:13PM -0400, Allan Streib wrote:
> >> On Sat, May 17, 2014, at 05:30 PM, Allan Streib wrote:
> >>
> >> >
On Sun, May 18, 2014 at 08:03:59AM -0400, Kenneth Westerback wrote:
> On 18 May 2014 07:52, Gilles Chehade wrote:
> > On Sun, May 18, 2014 at 07:37:26AM -0400, Kenneth Westerback wrote:
> >> On 18 May 2014 05:37, Gilles Chehade wrote:
> >> > On Sat, May 17, 2014 at
B revision 1.0
> uhub4 at usb4 "Intel UHCI root hub" rev 1.00/1.00 addr 1
> isa0 at pcib0
> isadma0 at isa0
> pcppi0 at isa0 port 0x61
> spkr0 at pcppi0
> uhub5 at uhub0 port 2 "Apple, Inc. Keyboard Hub" rev 2.00/96.15 addr 2
> uhidev0 at uhub5 port 2 configuration 1 interface 0 "Apple, Inc Apple
> Keyboard" rev 2.00/0.69 addr 3
> uhidev0: iclass 3/1
> ukbd0 at uhidev0: 8 variable keys, 5 key codes, country code 33
> wskbd0 at ukbd0: console keyboard, using wsdisplay0
> uhidev1 at uhub5 port 2 configuration 1 interface 1 "Apple, Inc Apple
> Keyboard" rev 2.00/0.69 addr 3
> uhidev1: iclass 3/0
> uhid0 at uhidev1: input=1, output=0, feature=0
> uhidev2 at uhub5 port 3 configuration 1 interface 0 "Primax Electronics Apple
> Optical USB Mouse" rev 1.10/1.10 addr 4
> uhidev2: iclass 3/1
> ums0 at uhidev2: 4 buttons, Z and W dir
> wsmouse0 at ums0 mux 0
> rum0 at uhub0 port 5 "Cisco-Linksys Compact Wireless-G USB Adapter" rev
> 2.00/0.01 addr 5
> rum0: MAC/BBP RT2573 (rev 0x2573a), RF RT2528, address 00:18:39:1c:22:7a
> vscsi0 at root
> scsibus2 at vscsi0: 256 targets
> softraid0 at root
> scsibus3 at softraid0: 256 targets
> root on wd0a (1b370bc9a7444b9f.a) swap on wd0b dump on wd0b
>
--
Gilles Chehade
https://www.poolp.org @poolpOrg
On Mon, May 19, 2014 at 03:55:20PM +0200, David Coppa wrote:
> On Mon, May 19, 2014 at 3:22 PM, Gilles Chehade wrote:
> > Can you guys update to yesterday's snapshot and confirm that you still
> > experience this issue ?
> >
> > Two people have told me they no l
n, that time once past never returns;
and that the moment which is lost is lost for ever."
-- Samuel Johnson
--
Gilles Chehade
https://www.poolp.org @poolpOrg
On Mon, May 26, 2014 at 07:58:00AM -0600, Theo de Raadt wrote:
>
> [...]
>
> As far as I know, none of the developers are specifically working on
> World Peace, either.
>
That was a work in progress, but it was aborted due to lack of general
interest :-/
--
Gil
> accept from any for any recipient relay via ...
>
> OS: OpenBSD 5.5 AMD64.
>
> Kind regards,
>
Hi,
support for "recipient" using db tables has been added after 5.5:
http://www.openbsd.org/cgi-bin/cvsweb/src/usr.sbin/smtpd/table_db.c.diff?r1=1.5;r2=1.
>
Sadly, French researchers have found _at least_ one way to DDoS
this transport and make it unusable with very few resources:
http://french.about.com/od/vocabulary/a/operationescargot.htm
--
Gilles Chehade
https://www.poolp.org @poolpOrg
be a bare userid,
> and putting a "+" in there causes newaliases(8) to fail. Not sure why that
> would be intended behaviour, but not sure it's a bug either.
>
There is currently no way of specifying the delimiter, it can only be +
someone opened a ticket on our tracker and after we discuss it it might
change
--
Gilles Chehade
https://www.poolp.org @poolpOrg
Hi,
I have no idea about monit but I have a piece of code that might do what
you want:
http://u.poolp.org/~gilles/projects/procstated/
However that's just a hack, the proper fix is to provide us with the output
from 'smtpd -dv' so we can fix the corrupt session bug ;-)
Gille
it that isn't already explained in the man pages. It is still work
in progress, private and not very valuable.
When I think it is a worthy complement to the official docs, I will let
misc@ and tech@ know. For now you can assume it does not exist, I don't
know when it'll be re
On Thu, Nov 17, 2011 at 10:30:55AM +0100, Antoine Jacoutot wrote:
> On Thu, Nov 17, 2011 at 10:24:39AM +0100, Gilles Chehade wrote:
> > When I think it is a worthy complement to the official docs, I will let
> > misc@ and tech@ know. For now you can assume it does not exist, I don&
On Wed, Nov 23, 2011 at 12:54:32PM +, sc...@web.de wrote:
>
> [...] blabla [...]
>
> I cannot see any reason not to forward OpenBSD anouncements to
> comp.unix.bsd.openbsd.announce.
>
Feel free
--
Gilles Chehade
http://www.poolp.org@poolpOrg
ewsgroup that no one seems to care about ?
--
Gilles Chehade
http://www.poolp.org@poolpOrg
cause...no negativity is allowed.
>
> http://johntate.org/node/29
>
> Perhaps it's time for the aspiring novelist/philosopher to learn some new
> words.
>
.. byebye misc@, too much spam ...
--
Gilles Chehade
http://www.poolp.org@poolpOrg
1 - 100 of 536 matches
Mail list logo
