))
return 0;
+ }
return 1;
}
--
Gilles Chehade
https://www.poolp.org @poolpOrg
are you unhappy with the defaults ?
--
Gilles Chehade
https://www.poolp.org @poolpOrg
to escape
452 4.5.3 Too many recipients: Too many messages sent ???
//mxb
On 8 dec 2014, at 11:14, Gilles Chehade gil...@poolp.org wrote:
On Mon, Dec 08, 2014 at 11:00:50AM +0100, mxb wrote:
Hello @list,
are there any plans for those constants to be configurable via smtpd.conf
On Sat, Nov 29, 2014 at 02:13:46AM +0200, Liviu Daia wrote:
On 28 November 2014, Gilles Chehade gil...@poolp.org wrote:
On Thu, Nov 27, 2014 at 10:00:19PM -0500, Hugo Villeneuve wrote:
[...]
No, it is not proper behavior. As a store and forward system with
potentially 4-5 days between
to prevent you from reevaluating mails that are already in
queue ?
Nope, but IMO the proper fix is not to turn the daemon into a smart guesser
but rather to enhance smtpctl so that when an admin makes a config change,
(s)he can decide to reevalute or not some envelopes or not.
--
Gilles Chehade
that first.)
Good luck.
Hopefully it will get fixed.
As I wrote in the other mail, I think the proper fix is to provide admin
the right tool.
--
Gilles Chehade
https://www.poolp.org @poolpOrg
=openbsd+git
2nd link.
--
Gilles Chehade
https://www.poolp.org @poolpOrg
we don't work as fast as you'd like but things are moving forward and
they do at our pace, asking again and again and again is not going to make a
change in how fast we work.
--
Gilles Chehade
https://www.poolp.org @poolpOrg
.
There is currently no way of specifying the delimiter, it can only be +
someone opened a ticket on our tracker and after we discuss it it might
change
--
Gilles Chehade
https://www.poolp.org @poolpOrg
, French researchers have found _at least_ one way to DDoS
this transport and make it unusable with very few resources:
http://french.about.com/od/vocabulary/a/operationescargot.htm
--
Gilles Chehade
https://www.poolp.org @poolpOrg
AMD64.
Kind regards,
Hi,
support for recipient using db tables has been added after 5.5:
http://www.openbsd.org/cgi-bin/cvsweb/src/usr.sbin/smtpd/table_db.c.diff?r1=1.5;r2=1.6;f=h
the diff will apply as is on smtpd from 5.5 so you can backport it
--
Gilles Chehade
https
On Mon, May 26, 2014 at 07:58:00AM -0600, Theo de Raadt wrote:
[...]
As far as I know, none of the developers are specifically working on
World Peace, either.
That was a work in progress, but it was aborted due to lack of general
interest :-/
--
Gilles Chehade
https://www.poolp.org
;
and that the moment which is lost is lost for ever.
-- Samuel Johnson
--
Gilles Chehade
https://www.poolp.org @poolpOrg
on wd0b dump on wd0b
--
Gilles Chehade
https://www.poolp.org @poolpOrg
On Mon, May 19, 2014 at 03:55:20PM +0200, David Coppa wrote:
On Mon, May 19, 2014 at 3:22 PM, Gilles Chehade gil...@poolp.org wrote:
Can you guys update to yesterday's snapshot and confirm that you still
experience this issue ?
Two people have told me they no longer experience the crash
if that caused any confusion.
I'll have a look at this, thanks
--
Gilles Chehade
https://www.poolp.org @poolpOrg
), RF RT2528, address 00:18:39:1c:22:7a
vscsi0 at root
scsibus2 at vscsi0: 256 targets
softraid0 at root
scsibus3 at softraid0: 256 targets
root on wd0a (1b370bc9a7444b9f.a) swap on wd0b dump on wd0b
--
Gilles Chehade
https://www.poolp.org @poolpOrg
On Sun, May 18, 2014 at 07:37:26AM -0400, Kenneth Westerback wrote:
On 18 May 2014 05:37, Gilles Chehade gil...@poolp.org wrote:
On Sat, May 17, 2014 at 10:40:13PM -0400, Allan Streib wrote:
On Sat, May 17, 2014, at 05:30 PM, Allan Streib wrote:
Just upgraded to -current from my local
On Sun, May 18, 2014 at 08:03:59AM -0400, Kenneth Westerback wrote:
On 18 May 2014 07:52, Gilles Chehade gil...@poolp.org wrote:
On Sun, May 18, 2014 at 07:37:26AM -0400, Kenneth Westerback wrote:
On 18 May 2014 05:37, Gilles Chehade gil...@poolp.org wrote:
On Sat, May 17, 2014 at 10:40
On Mon, Apr 07, 2014 at 12:13:06PM +0300, Gregory Edigarov wrote:
Helio,
configs are just reduced to the famous
[...]
system is current as of Sat Apr 5 19:05:54 EEST 2014
Hi,
Did you follow the steps at:
http://www.openbsd.org/faq/current.html#20140313
--
Gilles Chehade
be files.
Gilles
Hello,
without commenting on the need for the utility itself, the code you have
provided does not respect the coding style of OpenBSD, and your main
function shouldn't be returning errno
Gilles
On 03/26/14 12:19, Dmitrij D. Czarkoff wrote:
Hello!
For some reason POSIX X/Open Systems
channel for the project is at:
#OpenSMTPD @ irc.freenode.net
Reporting Bugs:
===
Please read http://www.opensmtpd.org/report.html
Security bugs should be reported directly to secur...@opensmtpd.org
Other bugs may be reported to b...@opensmtpd.org
OpenSMTPD is brought to you by Gilles
of weeks), the python/perl bindings are just regular
filters, they are not part of smtpd itself, they rely on the C API so
they are as usable as the API itself ;-)
If you are interested in filters development, ping me off-list and I
can tell you where to get started.
--
Gilles Chehade
https
On Sun, Feb 16, 2014 at 12:37:08AM +0100, Gilles Chehade wrote:
On Sat, Feb 15, 2014 at 09:26:35PM +0100, Frank Brodbeck wrote:
Hi,
On Fri, Feb 14, 2014 at 07:24:32PM -0500, Ted Unangst wrote:
I would try using a full path.
pki example ca /etc/ssl/myca.pem
I already tried
that a client
provide a certificate that we can verify before a session can be started
whereas using a verify on a relay line will require that smtpd(8)'s own
client can verify a peer certificate before relaying a message.
--
Gilles Chehade
https://www.poolp.org
On Thu, Feb 13, 2014 at 02:42:58PM +0100, Gilles Chehade wrote:
On Thu, Feb 13, 2014 at 02:09:53AM -0500, Ted Unangst wrote:
Correct me if I'm wrong, but there's no way to find out what parts of
smtpd (mda, mta) are paused? I can always run smtpctl pause mta
again to get an error message
fatal: load_pki_tree: failed to load key file
$
--
Gilles Chehade
https://www.poolp.org @poolpOrg
be in the memory of processes facing the network. It
led to factor some code which allowed verify to work when sending peers
a certificate but not yet in the general case ...
It's coming next, no worries, I just want to avoid touching SSL related
code so close to a lock ;-)
--
Gilles Chehade
https
:
# smtpd -nf /etc/mail/smtpd.conf
Segmentation fault (core dumped)
While the test is more or less stupid I wasn't expecting a segfault ;-)
me neither, I'll fix this tomorrow, I'm currently away from home
--
Gilles Chehade
https://www.poolp.org
monitor would be nice.
Indeed, we'll add something :-)
--
Gilles Chehade
https://www.poolp.org @poolpOrg
it was Theo who explained this a while ago, but
if for example you are following an error path because someone managed
to corrupt your allocator's internal state, the last thing you want to
do is call free() in your error path to give him another chance at
exploiting the situation.
--
Gilles
it to ~root/.forward file?
or even better, add an alias for root to an unprivileged user and add it to
that user's ~/.forward so that gpg2 doesn't get executed as root :-)
--
Gilles Chehade
https://www.poolp.org @poolpOrg
to
OpenBSD very soon too
--
Gilles Chehade
https://www.poolp.org @poolpOrg
to sell CDs or teeshirts anymore, just coding, paying
electricity and coders.
--
Au revoir, 09 51 84 42 42
Gilles Lamiral. France, Baulon (35580) 06 20 79 76 06
have fatal-ed with a different message.
We have fixed this and it'll be committed to -current soon, the message is
gone forever
Gilles
On Tue, Dec 31, 2013 at 05:58:32PM -0700, Joel Knight wrote:
I'll just add that I was testing this with the 5.3 release so it doesn't
appear to be related
smtp connection
for each of the messages? That could also be a problem.
No, smtpd will always try to group and reuse connections,
--
Gilles Chehade
https://www.poolp.org @poolpOrg
to be retried a few seconds later while
the ones before the error will be submitted. Isn't that what
is happening ?
If so, will smtpd create a new smtp connection
for each of the messages? That could also be a problem.
No, smtpd will always try to group and reuse connections,
--
Gilles Chehade
, the bigger my shitlist to test some
filters grows :-P
--
Gilles Chehade
https://www.poolp.org @poolpOrg
offended by those who feel offended about some man page.
Maybe we should remove them as they are causing controversy ?
--
Gilles Chehade
https://www.poolp.org @poolpOrg
on egress line should get you the desired
result
--
Gilles Chehade
https://www.poolp.org @poolpOrg
/certs/core.Techn0.eu.dh
[...]
can you try with an all-lowercase hostname ?
I think we're missing a call to lowercase() in our configuration parsing
and I'll have a fix for that in a few minutes if you can confirm that it
solves your issue too.
--
Gilles Chehade
https://www.poolp.org
enough to work with basic 2D, for people
stuck with Nvidia.
Thanks,
Gilles Cafedjian.
Le 2013-10-30 08:08, Matthieu Herrb a écrit :
On Tue, Oct 29, 2013 at 05:36:43PM +0100, Gilles Cafedjian wrote:
I have the same problem but on a dell laptop with integrated NVidia chip.
The chip
to 1024x768... if you
have any tips to allow 1440x900 with vesa, i take it...
Thanks
Morgan
Le 02/11/2013 16:10, Gilles Cafedjian a écrit :
Hello, Indeed, switching to vesa driver in xorg.conf removed all the windows
lags. I don't need any kind of 3D acceleration, so vesa is just enough
Hello,
I use Belkin Surf N300 USB WiFi with urtwn(4) driver. I bougth it
specially to work on my old laptop with OpenBSD and it work very well.
Don't forget to run fw_update(1) to get the firmware.
Le 2013-11-02 17:49, Alexander Pakhomov a écrit :
Hi! Have anybody got success with any modern
I forgot to say, the chip of the Belkin Surf N300 is Realtek RTL8192CU
revelent dmesg:
urtwn0 at uhub1 port 1 Realtek Belkin Wireless Adapter rev 2.00/2.00
addr 2
urtwn0: MAC/BB RTL8192CU, RF 6052 2T2R, address ff:ff:ff:ff:ff:ff
Le 2013-11-02 18:01, Gilles Cafedjian a écrit :
Hello,
I use
to get a working window manager back?
Thanks,
Gilles Cafedjian.
Le 2013-10-29 11:34, Peter J. Philipp a écrit :
On 10/28/13 11:44, Brett Mahar wrote:
On Mon, 28 Oct 2013 11:20:32 +0100 Peter J. Philipp p...@centroid.eu
wrote: | I remember someone else writing to this list before saying
absolutely not interesting to spend yours on this, It's a kid game. I
appraciate much more the work you do all on awsome project like OpenBSD
and YYCIX :)
Gilles Cafedjian.
Le 2013-09-30 08:29, John Tate a écrit :
I want to be able to log in as root by SSH with a specific IP address.
This is so rsync can log in to the server easily and backup many files
owned by many different users and groups. Rather than a script on the
server logging into the server with
can do it on recent
versions by declaring a table (i'll use a static table for the example
but you can use a file, db, sqlite or ldap one):
$ encrypt
mypassword
$2a$06$BTOM8Ck.HEInGF888KbjiORoXSOFT.McbLZIS85gMSmHTPA5Tds2S
$
smtpd.conf:
table mycreds { gilles = gilles:$2a$06$BTO[...]PA5Tds2S
On Wed, Sep 25, 2013 at 01:03:45PM +0100, Craig R. Skinner wrote:
On 2013-09-25 Wed 11:39 AM |, Gilles Chehade wrote:
It's officially still true, unofficially you can do it on recent
versions by declaring a table (i'll use a static table for the example
but you can use a file, db, sqlite
could possibly happen with this code :-/
--
Gilles Chehade
https://www.poolp.org @poolpOrg
/2013/05/29/sharyl-attkisson-and-her-compromised-computers/
seriously, who fucking cares.
let this thread die
--
Gilles Chehade
https://www.poolp.org @poolpOrg
rbl and similar filters get implemented.
Just switched over from Postfix. Couldn't be happier.
Glad to hear ;)
--
Gilles Chehade
https://www.poolp.org @poolpOrg
have to do is setup the mailwrapper(8) and you
can then let your ruby app config reference sendmail
--
Gilles Chehade
https://www.poolp.org @poolpOrg
On Mon, Jun 24, 2013 at 01:41:49PM -0700, Scott Vanderbilt wrote:
On 6/24/2013 1:23 PM, Gilles Chehade wrote:
relay backup is used to setup secondary mail servers for a domain,
that is a server that accept mails for a domain and relay to MXs with
higher priority (i.e. lower preference in DNS
for domain foobar.org with the
same priority as mx2.example.org, only relaying to other MXs that have
a higher priority
--
Gilles Chehade
https://www.poolp.org @poolpOrg
On Tue, Jun 18, 2013 at 12:33:51PM -0700, William Orr wrote:
Thanks Gilles, first for the help and second for the fantastic software.
One last question - is there a way I can resend the mail stuck in
the queue? I've tried smtpctl schedule all, but it doesn't seem to
resolve the aliases
problem reading or opening the aliases file.
Here is my smtpd.conf:
# $OpenBSD: smtpd.conf,v 1.6 2013/01/26 09:38:25 gilles Exp $
# This is the smtpd server system-wide configuration file.
# See smtpd.conf(5) for more information.
av = amavis
originating = originating
dn
from opensmtpd.org and it will
run on top of OpenBSD 5.3
--
Gilles Chehade
https://www.poolp.org @poolpOrg
, No MX could be reached means that no MX willing to accept the
envelope could be reached. That can mean you have invalid credentials
and that none of the MX you contacted have accepted to establish a
session with you.
--
Gilles Chehade
https://www.poolp.org
to be done by 5.4
--
Gilles Chehade
https://www.poolp.org @poolpOrg
?
Oops, forgot to reply to this one.
If you're replacing sendmail with smtpd you can get rid of that entry in
root's crontab. If present, smtpd will ignore it, so you're not required
to remove it.
--
Gilles Chehade
https://www.poolp.org @poolpOrg
? Suggestions?
smtpd doesn't support address rewriting at the moment.
It will either use the local `hostname` or the one supplied by your MUA.
--
Gilles Chehade
https://www.poolp.org @poolpOrg
://www.opensmtpd.org/report.html
br /
Security bugs should be reported directly to secur...@opensmtpd.org
br /
Other bugs may be reported to b...@opensmtpd.org
br /
br /
OpenSMTPD is brought to you by Gilles Chehade, Eric Faurot and Charles
Longeau.
/div
/div
/div
/div
/div
-
--
Gilles Chehade
https://www.poolp.org @poolpOrg
://www.opensmtpd.org/report.html
Security bugs should be reported directly to secur...@opensmtpd.org
Other bugs may be reported to b...@opensmtpd.org
OpenSMTPD is brought to you by Gilles Chehade, Eric Faurot and Charles Longeau.
Hi all,
make a table, and have cron update the contents of this table with the
result of the latest resolved ip.
Thanks all three for your answers.
--
Au revoir, 09 51 84 42 42
Gilles Lamiral. France, Baulon (35580) 06 20 79 76 06
understandable (reading
pf.conf).
Thanks in advance.
--
Au revoir, 09 51 84 42 42
Gilles Lamiral. France, Baulon (35580) 06 20 79 76 06
relay via my.isp.smtpserver
What exact syntax should I use? Current, amd64.
Best regards
You should really show the entire conf and the exact message
otherwise it's hard to know.
The line by itself seems correct
--
Gilles Chehade
https://www.poolp.org
, I will provide further info.
actually I didn't spot that you were -current:
accept for any relay via smtp://smtp.sbb.rs
--
Gilles Chehade
https://www.poolp.org @poolpOrg
on the correct path for
this?
Yes, wrong path, this is not how you do it.
You need to setup the mailwrapper: see mailwrapper(8) and mailer.conf(5)
Then smtpctl can be invoked as sendmail and will not require root privs.
--
Gilles Chehade
https://www.poolp.org
And here's wikipedia page on privilege separation
http://en.wikipedia.org/wiki/Privilege_separation
--
Gilles Chehade
https://www.poolp.org @poolpOrg
On Tue, Feb 26, 2013 at 11:57:29AM -0500, Scott McEachern wrote:
On 02/26/13 11:52, Gilles Chehade wrote:
Here's a schema I did of the layout a while ago:
Your diagram, with Charles, reminds me of a question I've always wondered:
What's with the name Charlie in a default install? Just
in -current, it now provides an example to
setup your SSL enabled instance at the bottom of the page.
--
Gilles Chehade
https://www.poolp.org @poolpOrg
from all for domain domainname.nl alias aliases deliver to mbox
accept for all relay
This sounds correct, can you provide the output of 'smtpd -dv' as you
reproduce the issue ?
--
Gilles Chehade
https://www.poolp.org @poolpOrg
On Thu, Feb 14, 2013 at 03:34:24PM +0100, Martijn van Duren wrote:
On Thu, 2013-02-14 at 13:48 +0100, Gilles Chehade wrote:
On Thu, Feb 14, 2013 at 01:41:45PM +0100, Martijn van Duren wrote:
[...]
world. To do so I set up a listen on interface with tls and enable
auth
you troubleshoot
Since the problem resolved itself, I reckoned the output wouldn't be
relevant (since everything does seem to work now). But my output was:
ok, issues that resolve themselves are the best
enjoy
--
Gilles Chehade
https://www.poolp.org
for multiple credentials to be
used on the same MX, amongst other things.
I just committed a fix to the example in the man page, your line should
read as:
smtps+auth://la...@mail.split-brain.de
where label is the key used to find credentials in the secrets table
--
Gilles Chehade
https
in -current !
--
Gilles Chehade
https://www.poolp.org @poolpOrg
On Sat, Feb 02, 2013 at 06:02:45PM -0500, bofh wrote:
On Sat, Feb 2, 2013 at 6:00 PM, Gilles Chehade gil...@poolp.org wrote:
Oh, and if you liked what's in 5.2, you will love what's in -current !
Don't be a tease!! What's in -current? And I see 5.3-beta is tagged
everything has been
On Sat, Feb 02, 2013 at 11:08:52PM +, Miod Vallat wrote:
Don't be a tease!! What's in -current?
Ponies. Lots of'em.
folding ponies into envelopes turned out to be gross, we gave up.
--
Gilles Chehade
https://www.poolp.org @poolpOrg
guys,
no feedback on the diff I sent :/
On Sun, Jan 20, 2013 at 12:31:41PM +0100, Gilles Chehade wrote:
Hi Vadim,
I only use ldapd in a local context but I'll have a look tomorrow and
come up with a diff for that.
Thanks,
Gilles
On Sat, Jan 19, 2013 at 01:56:12PM +0100, Vadim
, it is
- * not strictly necessary to generate a new key for each handshake
- * but it does improve forward secrecy.
- *
- * These are the parameters used by both sendmail and openssl's
- * s_server.
- *
- * -- gilles@
- */
-
-unsigned char dh512_p[] = {
-0xDA,0x58,0x3C
Great thanks
On Mon, Jan 28, 2013 at 12:42:35PM +0100, Joel Carnat wrote:
Built on source tree from 5.2: it works!
Gotta switch back to SSL :))
Thank you.
Jo
Le 28 janv. 2013 ? 12:31, Gilles Chehade gil...@poolp.org a ?crit :
On Mon, Jan 28, 2013 at 12:28:58PM +0100, Joel
Hi Vadim,
I only use ldapd in a local context but I'll have a look tomorrow and
come up with a diff for that.
Thanks,
Gilles
On Sat, Jan 19, 2013 at 01:56:12PM +0100, Vadim Agarkov wrote:
Hello!
Debian's (as well as Ubuntu's) openldap client is linked against
GnuTLS library in contrast
...
Please read the thread in the:
http://unix.stackexchange.com/questions/60175/why-does-time-ident-daytime-comsat-run-after-an-openbsd-5-2-install
if further comments needed.
... by obvious know-it-all troll.
--
Gilles Chehade
https://www.poolp.org
Gilles ( http://unix.stackexchange.com/users/885/gilles )?
No
--
Gilles Chehade
https://www.poolp.org @poolpOrg
$ext_gw1)
pass out quick log
# end
--
Au revoir, 09 51 84 42 42
Gilles Lamiral. France, Baulon (35580) 06 20 79 76 06
, 09 51 84 42 42
Gilles Lamiral. France, Baulon (35580) 06 20 79 76 06
a ping -I always working as intended?
Thanks in advance.
--
Au revoir, 09 51 84 42 42
Gilles Lamiral. France, Baulon (35580) 06 20 79 76 06
and the process will be killed after a few
minutes.
I don't understand why delivery to user_b doesn't take place though,
can you provide logs ?
--
Gilles Chehade
https://www.poolp.org @poolpOrg
for local alias aliases deliver to mbox
accept for all relay
--
Gilles Chehade
https://www.poolp.org @poolpOrg
own a 150). But it's cool (a sparc64 laptop!) :)
:)
Yep, sparc64 laptop would be 3
--
Gilles Chehade
https://www.poolp.org @poolpOrg
: 256 targets
softraid0 at root
scsibus2 at softraid0: 256 targets
bootpath: /pci@1f,0/ide@d,0/disk@0,0
root on wd0a (66dd7746863e7550.a) swap on wd0b dump on wd0b
Max
--
Gilles Chehade
https://www.poolp.org @poolpOrg
smtpd.conf(5) claims?
Can anyone clarify?
A bit old, but as I'm cleaning my mbox ...
A fix was committed yesterday which updates code and clarifies the
situation in the man page. You should update to -current and update
your smtpd.conf
Gilles
--
Gilles Chehade
https://www.poolp.org
On Fri, Sep 07, 2012 at 12:02:13PM +0930, David Walker wrote:
Gilles Chehade gilles () poolp ! org
We are getting closer to a stable version of OpenSMTPD
Which to my mind raises the question of how OpenSMTPD is to be
implemented alongside Sendmail in the base system.
Presumably, as per
wondering if disposable addresses
was on it or would that be in a galaxy far away?
What do you mean by disposable ?
--
Gilles Chehade
https://www.poolp.org @poolpOrg
on.
There will be no major feature written and committed for our very first
release, so just make sure that you test it enough so that we can reach
the quality you'd expect from us.
Please let us know if it works fine for you or if you hit bugs. You can
mail us three (eric@, chl@, gilles@). Do
I use it on 5.1 but it requires a -current checkout of both src/usr.sbin/smtpd
and src/lib/libc/asr
bofh goodb...@gmail.com a écrit :
On Mon, Aug 20, 2012 at 5:01 PM, Gilles Chehade gil...@poolp.org wrote:
Dear misc@ and tech@,
We are getting closer to a stable version of OpenSMTPD and now
101 - 200 of 529 matches
Mail list logo