Hi,
A patch to get away from SHA1 in spamd
Index: sync.c
===
RCS file: /cvs/src/libexec/spamd/sync.c,v
retrieving revision 1.12
diff -u -p -r1.12 sync.c
--- sync.c 20 Oct 2016 21:09:46 - 1.12
+++ sync.c 25 Feb 201
erver (produces 2 ip addresses via 'host')
This pf rule subset seems to pass the sync as now the sync_trap messages
on 1 box have corresponding 'new TRAP from' messages on the other:
# spamd-sync:
pass in log on $ext_if inet proto udp from mx-backup port > 1023 \
to
You need to change those to the correct IPs or hostnames for your
configuration.
On 2013 Jul 31 (Wed) at 13:10:40 +0100 (+0100), Craig R. Skinner wrote:
:When attempting to sync spamd between 2 hosts via unicast, I see this
:error when starting spamd:
:
:spamd: sync init: Device not configured
When attempting to sync spamd between 2 hosts via unicast, I see this
error when starting spamd:
spamd: sync init: Device not configured
Web searching with this phrase didn't yeild useful pointers.
In /etc/rc.conf.local I have:
spamd_flags="-y smtp.example.com -Y mx-backup.example.com
I'm trying to confirm that spamd is syncing the db properly between 2
hosts. When I startup spamd I get:
listening for incoming connections.
in /var/log/spamd; but nothing else. There is a lot of UDP traffic on 8025
between the 2 hosts but the databases are still different sizes.
I'm starting
Hi,
I apologize to replying to myself. I am just trying to
provide more info about my question so that maybe someone
will be able to give an answer.
1)
I wanted to run the new version of spamd (with the up to
date sync protocol) without having to upgrade to CURRENT.
I guess I can not or should no
I forgot to mention that both bridges will run i386
kernel.
If anyone with experience in this kind of setup
would like to comment, I would appreciate.
Regards,
Jose
--
See Exclusive Videos: 10th Annual Young Hollywood Awards
http://www.hollywoodlife.net/younghollywoodawards2008/
Hi,
I am working to setup a spamd environment where we will have
two OpenBSD/spamd bridges running in synchronization mode, one
at each Internet link we have.
One of these bridges is already running and has already its
white and grey lists populated.
I now plan to active the second bridge, and I
A heads up about spamd.
For those heavily using spamd in sync mode, the protocol has changed
to fix a few bugs.
The protocol has a version number and we incrememnted it as a result.
You will need to update all your spamd sync boxes at the same time
(or, older boxes and newer boxes will ignore
> > Just copy /var/db/spamd from the old to the new host, so you get all other
> > information as well (WHITE, SPAMTRAP, GREY, expire records).
> >
> Can i reliably copy /var/db/spamd while spamd/spamlogd are still running
> or must they be stopped first?
The code sync's the database after each
Olli Hauer wrote:
Jacob Yocom-Piatt wrote:
swapped out a spamd host last night and ended up doing some ksh
scripting to get the spamdb up to date on the new machine. also have
connected the old host with the new one using the sync (-y & -Y)
options for spamd and spamlogd, and these options are
Jacob Yocom-Piatt wrote:
Olli Hauer wrote:
Jacob Yocom-Piatt wrote:
swapped out a spamd host last night and ended up doing some ksh
scripting to get the spamdb up to date on the new machine. also have
connected the old host with the new one using the sync (-y & -Y)
options for spamd and spaml
Olli Hauer wrote:
Jacob Yocom-Piatt wrote:
swapped out a spamd host last night and ended up doing some ksh
scripting to get the spamdb up to date on the new machine. also have
connected the old host with the new one using the sync (-y & -Y)
options for spamd and spamlogd, and these options are
Jacob Yocom-Piatt wrote:
swapped out a spamd host last night and ended up doing some ksh
scripting to get the spamdb up to date on the new machine. also have
connected the old host with the new one using the sync (-y & -Y) options
for spamd and spamlogd, and these options are working fine and a
swapped out a spamd host last night and ended up doing some ksh
scripting to get the spamdb up to date on the new machine. also have
connected the old host with the new one using the sync (-y & -Y) options
for spamd and spamlogd, and these options are working fine and are quite
neat.
a couple
ernel for CARP, oppose
to here, witch (uses a raw socket). I accept my stupidity here for sure,
but it just didn't occur to me as I didn't make the link between
multicast use for CARP and multicast use here for spamd-sync that needed
something else, specially that I saw in my tests the
On Wed, Jun 27, 2007 at 04:05:06PM -0400, Daniel Ouellet wrote:
>
> Thanks for the clarification Claudio!
>
> May be a suggestion, a quick addition to man 8 spamd in regards "to
> enable ip multicast on the systems" might be welcome. I sure overlook
> that for sure and looking at the man page a
Claudio Jeker wrote:
The reject route only triggers for UDP traffic. So carp (which runs inside
the kernel) and ospfd (uses a raw socket) are not affected. On the other
hand ripd/routed and other tools using multicast over UDP hit that route
and when sending all packets are discrded.
Thanks for
On Wed, Jun 27, 2007 at 02:37:25PM -0400, Daniel Ouellet wrote:
> Reyk Floeter wrote:
> >you have to enable ip multicast on the systems.
>
> Shouldn't it be included in the man page then? May be I miss it, but I
> read them many times over to try to figure it out. I sure will test
> tonight when
thing here?
try to set
multicast_host=dc0
in /etc/rc.conf or /etc/rc.conf.local
I sure will try. In any case, I sure can use unicast only as well. But I
will try to know for sure.
did you upgrade it to 4.1-stable? there was a minor fix for spamd-sync
after the release.
No yet. (;< I ins
hi!
On Tue, Jun 26, 2007 at 07:04:29PM -0400, Daniel Ouellet wrote:
> I setup the spamd sync feature between two servers running 4.1 and I
> observe the following issues with the setup itself. Some setup based on
> the man page do not work for me anyway and some are not always reliab
Hi,
I setup the spamd sync feature between two servers running 4.1 and I
observe the following issues with the setup itself. Some setup based on
the man page do not work for me anyway and some are not always reliable
and some always work. See below.
Example
Interface facing the Internet
On Tue, 2005-09-20 at 22:29:16 -0400, Mike Spenard proclaimed...
> Has anyone written a utility to keep /var/db/spamd in sync across multiple
> spamd servers?
Answer: Yes!
Question: Have you thought about checking the archives?
Has anyone written a utility to keep /var/db/spamd in sync across multiple
spamd servers?
Mike Spenard
24 matches
Mail list logo
