Impact of SSL renegotiation attacks on SMTP mail

Last week there was big news about a security hole in the TLS protocol that allows a man-in-the-middle to prepend data to a fully-secure TLS session. That is, the server certificate verifies, and therefore no-one can read or modify the network traffic. Or so we thought. http://www.ietf.org/mail-a

how to increase throughput of postfix to local user?

devel anaconda put forth on 11/8/2009 11:16 AM: > 06.11.09, 02:32, "Victor Duchovni" : >> You are not going to succeed without more spindles and likely more CPUs. >> Just launching a "Perl" hello-world script takes >10ms on a fast machine, >> do that 100 times a second and you've burned a CPU, and

Re: How to use direct delivery before relay?

Wietse Venema wrote: Mike Gering: Is there a way to configure postfix so that it will attempt to use direct delivery before relaying to another host? Postfix looks up MX records by default, and can be configured to add an "extra" MX host (with smtp_fallback_relay) that

Re: How to use direct delivery before relay?

Mike Gering: > Is there a way to configure postfix so that it will attempt to use > direct delivery before relaying to another host? Postfix looks up MX records by default, and can be configured to add an "extra" MX host (with smtp_fallback_relay) that is given the worst possible MX preference.

Re: How to use direct delivery before relay?

What i think you can try do is try creating multiple instance of postfix First Instance: Direct Delivery (If rejected forwarded and tried via Instance 2) Second Instance: Configured for only relay host I guess this should solve the problem. Rgds Dhiraj Stephen Leacock

How to use direct delivery before relay?

Is there a way to configure postfix so that it will attempt to use direct delivery before relaying to another host? I've built my webserver on Amazon EC2 which, even with static IP addresses, does not handle reverse DNS lookup, causing (relatively few) recipient servers reject the mail. We've

Re: how to increase throughput of postfix to local user?

08.11.09, 12:28, "James MacLachlan" : > Is your queue disk mounted aysnc? If so you are in ram for the most > part anyway, Well, actually - not. Yes, it's mounted with async. I straced the cleanup daemon. Two things slows down HDD's: write() and fsync() on each message. So, I disabled fsync(

Re: sending notification of new mail to cell phone

On 8-Nov-2009, at 10:13, Jon Musselwhite wrote: Hi, I've been searching everywhere for this and can't seem to find a solution. I'm runing a centos 5 server with postfix and cyrus on it and would like to send a notification email to a cell phone email address when new mail is received on a

Re: sending notification of new mail to cell phone

On Sunday 08 November 2009 11:13:36 Jon Musselwhite wrote: > Hi, I've been searching everywhere for this and can't seem to find > a solution. And your post might make matters worse, as no one can propose any solution without making wild (and likely wrong) guesses about your configuration. > I'm r

Re: how to increase throughput of postfix to local user?

06.11.09, 02:32, "Victor Duchovni" : > > That's why I use postfix and that's why I can't use pre-queued > > filter. I thought about different scheme, but postfix is the "easy way", > > so I'm trying speedup things a bit :) > You are not going to succeed without more spindles and likely more CPUs.

sending notification of new mail to cell phone

Hi, I've been searching everywhere for this and can't seem to find a solution. I'm runing a centos 5 server with postfix and cyrus on it and would like to send a notification email to a cell phone email address when new mail is received on a certain account. What is the best way to go about doing

Re: how to increase throughput of postfix to local user?

07.11.09, 13:41, "Stan Hoeppner" : > > Have you tried a filesystem other than ext3 like Reiser or XFS? The > > performance of ext3 really, really sucks if you have a lot of files in > > one directory as a mail spool is bound to have. > I'd stay away from Reiser, for multiple reasons, but XFS woul

Re: sending an email message based on a subject keyword to an external program

John Haggerty a écrit : > I was wondering if there is a possibility of using postfix to send a > message that has some Keyword in the subject line and send it to an > external program like gpg? I'm envisioning getting a sensitive set of > system messages to want to make them automated and encrypted

Re: Postfix header_checks and HOLD queue

On Saturday, November 07, 2009 at 21:10 CET, waltari2001 wrote: > Brian Evans - Postfix List wrote: > > > Suggestion: > > > > Look at the postsuper manual again and focus on the -H parameter. > > This assumes (maximal|bounce)_queue_lifetime is set much further > > than the HOLD time. > > I'v

Re: Virtual aliases and "Delivered-To:" header

Aleš Krajník a écrit : > Hi guys, > > I have a problem setting up my postfix so it records all (virtual) aliases' > expansions into e-mail headers. > > I have a postfix 2.6.5, amavis 2.6.3 and (virtual) delivery to dovecot 1.2.6 > (on Gentoo which is probably not important). > > The thing is tha

Re: outbound spam filtering

Phill Macey a écrit : > 2009/11/7 mouss : >> >> Most statistical anti-spam filters assume an inbound model. you can use >> a "global" bayes setup, but then I don't think you'll benefit from >> dspam/bogo/... >> > > Could you turn the outgoing mail around and make it inbound mail as > well? [snip]

Re: Problem using Postfix, saslauthd and pam_krb5

Viktor, Thanks a lot, I managed to solve the problem. I can now authenticate users using SASL, saslauthd, PAM and pam_krb5.so (and of cource Kerberos!) Thanks again. Kind Regards Ali Majdzadeh Kohbanani 2009/11/8 Ali Majdzadeh > Viktor, > Thanks a lot. You are very helpful. > > > Kind Regards >