systems, emc symmetrix would not be
an option anymore at all because of the hardware cost and tco).
Ahh, okay, I'm up to speed now. Sorry about that.
--
Russ Allbery ([EMAIL PROTECTED]) http://www.eyrie.org/~eagle/
-216-68-78.hinet-ip.hinet.net (HELO TmpStr) (61.216.68.78)
by muncher.math.uic.edu with SMTP; 8 May 2001 22:12:33 -
The spammer is sending mail directly from the above dialup account.
hinet.net is the place to complain to.
--
Russ Allbery ([EMAIL PROTECTED]) http://www.eyrie.org
sort of
storage.)
--
Russ Allbery ([EMAIL PROTECTED]) http://www.eyrie.org/~eagle/
.
--
Russ Allbery ([EMAIL PROTECTED]) http://www.eyrie.org/~eagle/
list server purposes
only.
Do you all agree with this opinion that qmail is best reserved for
mailing list server purposes only?
No.
--
Russ Allbery ([EMAIL PROTECTED]) http://www.eyrie.org/~eagle/
up some historical warts, not with introducing new features
(new features were specifically stated to be out of scope). As such,
there are no major changes from widespread practice in either, and they
are likely to have little effect on qmail.
--
Russ Allbery ([EMAIL PROTECTED]) http
against a mailing list..
bombing it with viruses to watch all the subscribers reject all the
viruses
Good reason to remove every person using such a scanner from the mailing
list.
--
Russ Allbery ([EMAIL PROTECTED]) http://www.eyrie.org/~eagle/
;, seconds, nanoseconds);
suppresses leading zeroes in the fractional part.
There is (finally) a fixed version of my C implementation of tai64nfrac on
ftp://ftp.eyrie.org/pub/software/misc/tai64nfrac.c.
--
Russ Allbery ([EMAIL PROTECTED]) http://www.eyrie.org/~eagle/
implement them. Not implementing those
extensions certainly doesn't make qmail a non-RFC-compliant e-mail system,
just one that doesn't implement some optional features.
--
Russ Allbery ([EMAIL PROTECTED]) http://www.eyrie.org/~eagle/
said, if I am missing some great GPL MUA, pray tell...
mutt is pretty popular and is what we now recommend over Pine for anyone
willing to change.
--
Russ Allbery ([EMAIL PROTECTED]) http://www.eyrie.org/~eagle/
Kris Kelley [EMAIL PROTECTED] writes:
Forgive me for opening this can of worms again, but I have something
that proves that the MAPS RSS *is* listing servers that it suspects are
open relays, even when they aren't.
Have you reported this to RSS?
--
Russ Allbery ([EMAIL PROTECTED
enough.
--
Russ Allbery ([EMAIL PROTECTED]) http://www.eyrie.org/~eagle/
that Bruce
Schneier is a security expert that people hire to perform such security
audits. He has a point, but it's also unsurprising that he's in favor of
the work that he personally does.
--
Russ Allbery ([EMAIL PROTECTED]) http://www.eyrie.org/~eagle/
the sorts of things that
you're talking about. I think his point is more that just having the
source available doesn't automatically mean that the software has been
audited. Having the source be closed is obviously worse, but open source
isn't a sufficient condition.
--
Russ Allbery ([EMAIL
ource
wasn't pursued) and both of them have been known to argue at great length
over the precise meaning of the terms with people who they feel are using
them incorrectly.
--
Russ Allbery ([EMAIL PROTECTED]) http://www.eyrie.org/~eagle/
to the MX record for
"domain." (and as a general rule, TLDs don't have MX records, although it
is technically legal).
--
Russ Allbery ([EMAIL PROTECTED]) http://www.eyrie.org/~eagle/
are not permitted.
(My guess is that djb would call an empty defaultdomain an unsupported
configuration.)
--
Russ Allbery ([EMAIL PROTECTED]) http://www.eyrie.org/~eagle/
be
established by using the qmail-queue interface directly.
--
Russ Allbery ([EMAIL PROTECTED]) http://www.eyrie.org/~eagle/
mine...
I'll find a workaround in the meantime, but, am I wrong to think its
allright to have a comma-delimited To: field?
Comma-delimited To: headers are fine. You can't send a comma-delimited
address in the MAIL TO command, but Net::SMTP may do the right thing
there.
--
Russ Allbery ([EMAIL
that sendmail does all sorts of bizarre things with locally
injected mail. It doesn't violate RFC 822 by doing so either.
Please become more familiar with the nature and scope of IETF standards
before using them as an arguing point.
--
Russ Allbery ([EMAIL PROTECTED]) http://www.eyrie.org
is valid.
There's a simple solution to that. Use user@domain as another spam trap
and have your *real* address that you give out to people who you want to
have a stable address be user-something@domain and be careful about
revealing that something. :)
--
Russ Allbery ([EMAIL PROTECTED
g the case).
That's a *huge* loss for the spammers; unless tons of people start doing
this (and even in that case), they just can't handle that complexity.
--
Russ Allbery ([EMAIL PROTECTED]) http://www.eyrie.org/~eagle/
the bounces and hope that someone will close the damn
relay and stop the spammer.
--
Russ Allbery ([EMAIL PROTECTED]) http://www.eyrie.org/~eagle/
). :)
--
Russ Allbery ([EMAIL PROTECTED]) http://www.eyrie.org/~eagle/
? Thanks.
It's been replaced by multilog, which is part of Dan's daemontools
package. See http://cr.yp.to/daemontools.html.
--
Russ Allbery ([EMAIL PROTECTED]) http://www.eyrie.org/~eagle/
Mark Walsh [EMAIL PROTECTED] writes:
What are other people using for EMAil on Win9x systems? Anything else
except Netscape?
Eudora is the one we support.
--
Russ Allbery ([EMAIL PROTECTED]) http://www.eyrie.org/~eagle/
and then just keep adjusting for that
drift. It only needs occasional external data to correct it's idea of the
internal drift, not constant data.
--
Russ Allbery ([EMAIL PROTECTED]) http://www.eyrie.org/~eagle/
or playing games (for
which clock synchronization doesn't really matter).
--
Russ Allbery ([EMAIL PROTECTED]) http://www.eyrie.org/~eagle/
systems if you
su to a user, you get that user's shell. If you set the shell to
/bin/true, it will then immediately exit, leaving you back as root again.
--
Russ Allbery ([EMAIL PROTECTED]) http://www.eyrie.org/~eagle/
is either corrupted or only
partially installed at a very fundamental level.
--
Russ Allbery ([EMAIL PROTECTED]) http://www.eyrie.org/~eagle/
box says that /usr/include/sys/types.h is part of glibc-devel.
Do you have that package installed?
--
Russ Allbery ([EMAIL PROTECTED]) http://www.eyrie.org/~eagle/
).
--
Russ Allbery ([EMAIL PROTECTED]) http://www.eyrie.org/~eagle/
. The
queue sub is the one that does what you're trying to do.
--
Russ Allbery ([EMAIL PROTECTED]) http://www.eyrie.org/~eagle/
overclocking,
that's the first place that I'd look.
See http://www.bitwizard.nl/sig11/.
--
Russ Allbery ([EMAIL PROTECTED]) http://www.eyrie.org/~eagle/
that stock qmail doesn't
provide, such as LDAP support or authenticated SMTP, but for
straightforward mail service you don't need any of them.
--
Russ Allbery ([EMAIL PROTECTED]) http://www.eyrie.org/~eagle/
Though "-" also indicates Universal Time, it is used to
| indicate that the time was generated on a system that may be in a local
| time zone other than Universal Time and therefore indicates that the
| date-time contains no information about the local time zone.
--
Russ Allbery ([EMAI
on't relay the mail. So it's not true that your tester is using the same
tests as ORBS is.
--
Russ Allbery ([EMAIL PROTECTED]) http://www.eyrie.org/~eagle/
David Dyer-Bennet [EMAIL PROTECTED] writes:
In my years of working with computers, networks, and email, I don't
think I've *ever* seen an MUA that performs this theoretically
desirable function.
Gnus does, of course.
--
Russ Allbery ([EMAIL PROTECTED]) http://www.eyrie.org
grabbed
from CPAN, looking for validating code, and finding none whatsoever. Has
anyone experience with this modules?
Doesn't Mail::RFC822 have validation code? I thought it did.
--
Russ Allbery ([EMAIL PROTECTED]) http://www.eyrie.org/~eagle/
Ben Beuchler [EMAIL PROTECTED] writes:
I just implemented rblsmtpd using the MAPS DUL. I sent a message off to
Russ' testing bot and received the following reply:
MAPS has recently dropped the TXT entries from their zones due to zone
size problems; perhaps that's the problem?
--
Russ
.
--
Russ Allbery ([EMAIL PROTECTED]) http://www.eyrie.org/~eagle/
be replaced with all of the Perl development mailing lists, all of
which are using ezmlm-idx.
--
Russ Allbery ([EMAIL PROTECTED]) http://www.eyrie.org/~eagle/
multilog filter patterns don't work like filename globs. You want:
'-* * * * * *:216.243.128.254'
instead. (There are several other ways of writing it too.)
--
Russ Allbery ([EMAIL PROTECTED]) http://www.eyrie.org/~eagle/
Russ Allbery [EMAIL PROTECTED] writes:
Ben Beuchler [EMAIL PROTECTED] writes:
I'm trying to use multilog's pattern matching to not log the non-stop
health checks from our load balancers. This is the command line I'm
using:
exec /usr/local/bin/setuidgid qmaill /usr/local/bin/multilog t
at happens, the single message with multiple recipients ends up being
split apart into multiple messages.
I bet you could find ways of doing exactly the same thing to sendmail. I
really don't think this is a problem peculiar to qmail.
--
Russ Allbery ([EMAIL PROTECTED]) http://www.eyrie.org/~eagle/
question, I'd expect at least some folks at
vuurwerk.nl to have a bias, but I've yet to see anything from them that
didn't seem reasonable to some degree.
--
Russ Allbery ([EMAIL PROTECTED]) http://www.eyrie.org/~eagle/
. Have you mentioned that to
them?
(More to the point, though, can you get the RSS? That would be closer to
what ORBS is doing; getting the RBL gives you a bunch of networks and a
bunch of sites that aren't open relays and isn't nearly as directly
useful.)
--
Russ Allbery ([EMAIL PROTECTED
folks; I think that's a bad idea.
I know that you can "brute force" a zone transfer by just querying every
IP address, but this is also very detectable by the operator of the list,
and I'd *hope* that they'd block off sites that were doing that.
--
Russ Allbery ([EMAIL PROTECTED])
was making here. I
still find the ORBS approach a lot more blatant about helping spammers,
given that they offer a neat file download (most spammers have no clue as
to how to do a zone transfer), but I don't think either of them should be
offering the data in that form.
--
Russ Allbery ([EMAIL PROTECTED
n you have a number of hosts with mail setups like
that, it starts slowly adding up. And of course, their answer to it is to
just press delete.
--
Russ Allbery ([EMAIL PROTECTED]) http://www.eyrie.org/~eagle/
Internet routing works. This is one of
the things that's rather annoying those of us who have heard a lot of the
story from various sides.
--
Russ Allbery ([EMAIL PROTECTED]) http://www.eyrie.org/~eagle/
understand the
political reasons for not doing so given that Alan Brown seems to have an
endless capacity for duping people like yourself who aren't looking at
what's actually going on and are buying his stories hook, line, and
sinker.
--
Russ Allbery ([EMAIL PROTECTED]) http
Eric Cox [EMAIL PROTECTED] writes:
Russ Allbery wrote:
You're aware that some machines *which didn't relay* were being tested
by ORBS as frequently as once a *day*, aren't you? Or are you just
going by Alan Brown's account of what he does, which tends to be a
little... sanitized?
Once
consulting service
and as part of that service you publish vulnerabilities in commonly used
products, as well as provide a network scanner. Now suppose you find a
security vulnerability in someone else's network scanner. Do you publish
that vulnerability?
--
Russ Allbery ([EMAIL PROTECTED
rather like banging one's head
repeatedly against a brick wall.
--
Russ Allbery ([EMAIL PROTECTED]) http://www.eyrie.org/~eagle/
, not welcoming them. That means that he's likely to be
willing to break them without giving them a second thought in later
releases, whereas he may work closer with the ezmlm-idx folks if he
releases a new version of ezmlm.
--
Russ Allbery ([EMAIL PROTECTED]) http://www.eyrie.org/~eagle/
Petr Novotny [EMAIL PROTECTED] writes:
Please stop that. When was the last time you saw a crashed mailserver
due to getting too many mails? And what was the software?
It happens with sendmail all the time, which is most of what people are
running.
--
Russ Allbery ([EMAIL PROTECTED
. (I don't even mind
HTML e-mail as much any more; w3 mode does a nice job of it. And it does
an excellent job handling inline images, and a fantastic job of handling
multiple character sets.)
--
Russ Allbery ([EMAIL PROTECTED]) http://www.eyrie.org/~eagle/
Bruce Guenter [EMAIL PROTECTED] writes:
On Fri, Jul 14, 2000 at 06:28:44PM -0700, Russ Allbery wrote:
I consider it to be an absolute requirement for any autoresponder to
not reply to a message that isn't addressed to the recipient it is
acting on behalf of.
And that's part of why it's
if
the mailing list isn't "properly" tagging messages with a Precedence
header.
--
Russ Allbery ([EMAIL PROTECTED]) http://www.eyrie.org/~eagle/
Petr Novotny [EMAIL PROTECTED] writes:
That's a really easy way to unsubscribe: From your .qmail file, bounce
every message you receive from the list. ezmlm will unsubscribe you
automatically, and pretty fast.
Takes 20 days, actually, I believe.
--
Russ Allbery ([EMAIL PROTECTED
true; sendmail does way more inside that big monolithic black
box. But because it hides all the complexity, it scores some marketing
points.
--
Russ Allbery ([EMAIL PROTECTED]) http://www.eyrie.org/~eagle/
about the 1024 internally.
Raising the limit in this fashion is supported and should work correctly
for Solaris 7 or later, IIRC. It's a Solaris-specific hack, though.
(Solaris, being a SysV derivative, really wants you to convert your
software to use poll instead of select.)
--
Russ Allbery
? :)
--
Russ Allbery ([EMAIL PROTECTED]) http://www.eyrie.org/~eagle/
that's open regardless of
whether it's being abused or not (by design). I disagree with ORBS on a
lot of things, but it's good that this particular choice is available to
people.
--
Russ Allbery ([EMAIL PROTECTED]) http://www.eyrie.org/~eagle/
into a mailing list
without losing a lot of the strong points of the group, and similarly I
don't think this mailing list would convert to a newsgroup well. And I
don't think there's enough qmail discussion to really warrant both this
mailing list and a Big Eight newsgroup.
--
Russ Allbery ([EMAIL
://www.newsguy.com/ will let you purchase basic Usenet access using
your own ISP for Internet access for some fairly low price (something like
$30 a year). You can also use http://www.deja.com/ for free, but the
interface sucks.
--
Russ Allbery ([EMAIL PROTECTED]) http://www.eyrie.org/~eagle/
Darren Wyn Rees [EMAIL PROTECTED] writes:
On Tue, May 30, 2000 at 10:18:39PM -0700, Russ Allbery wrote:
I'm not sure this is a good idea, mostly because I don't see the
distinction between the newsgroup and this mailing list
^^^
Funnily enough, I don't see much of a distinction
in general a
cleaner and seemingly more reliable package.
--
Russ Allbery ([EMAIL PROTECTED]) http://www.eyrie.org/~eagle/
believe that publisher interest is the hold-up. To publish a
book, someone has to write it first, and one would hope that the people
doing so would actually know a decent amount about qmail. :) Those
people are somewhat rare; qmail hasn't been around for that long yet.
--
Russ Allbery ([EMAIL
it slower, and I really
don't mind the false positives. (And I do mind having the body scanning
be slower.)
In other words, it's possible for Claus's signature to show up as an
attachment in a non-borken mail reader; it's just not a big deal.
--
Russ Allbery ([EMAIL PROTECTED])
want to move to a
newsgroup. Without the core of people on this mailing list that know
qmail very well and answer most of the questions, the newsgroup is
unlikely to be all that useful, and I haven't heard much indication that
those people would really prefer a newsgroup.
--
Russ Allbery ([EMAIL
.
2.53 appears to be vulnerable.
Also, the advisory suggests upgrading to 3.1b1 (which i did) and says
that it's a safe version (for now, anyway)
The 3.x series has been having *tons* of security problems, including
stuff that was previously fixed in 2.x. I really don't trust it.
--
Russ Allbery
mechanisms
possible once you use SASL, including ones considerably better than APOP,
and POP3 definitely supports SASL.
You can definitely use POP3 without cleartext passwords.
--
Russ Allbery ([EMAIL PROTECTED]) http://www.eyrie.org/~eagle/
.
Anyway, that's also a bit apart from what Dan was talking about, as I
would assume that Dan was talking about the 8BITMIME SMTP extension, not
the MIME conventions for body labelling. The former is even less
necessary than the latter.
--
Russ Allbery ([EMAIL PROTECTED]) http
machine
physically?
Probably not. It's generally a good rule of thumb to run one major
service per machine if you can.
--
Russ Allbery ([EMAIL PROTECTED]) http://www.eyrie.org/~eagle/
more unwanted bytes in my mailbox than spam is. It's rather simple to
skip over the messages from the completely lost people; footers that any
intelligent person doesn't need are both intrusive and ugly.
--
Russ Allbery ([EMAIL PROTECTED]) http://www.eyrie.org/~eagle/
resending it to
the common POP account address. You also shouldn't need to; I presume
that the purpose is to support filtering, which you can just as easily do
based on the To and Cc headers (or even the Delivered-To header).
--
Russ Allbery ([EMAIL PROTECTED]) http://www.eyrie.org/~eagle/
the importance of having a chatserver, IRC channel,
or *something* like that real time where you can bitch about stuff with
other people without having to stop what you're doing.
--
Russ Allbery ([EMAIL PROTECTED]) http://www.eyrie.org/~eagle/
, and related subjects, see
http://cr.yp.to/proto/utctai.html.
--
Russ Allbery ([EMAIL PROTECTED]) http://www.eyrie.org/~eagle/
out bounce messages already has a queue
lifetime of just one day, but that's a special case (a very large number
of those messages will just double-bounce and get silently discarded).
--
Russ Allbery ([EMAIL PROTECTED]) http://www.eyrie.org/~eagle/
ndom trash in their envelope sender and never see any of their
bounces.
Ideally, I'd track down the double-bounces and get the user to fix their
configuration so that they see further bounces, but there really isn't
enough time in the day for any significant user base.
--
Russ Allbery ([EMAIL
le-bounces can't then bounce again and generate mail loops.
You apparently are forwarding postmaster mail to another system which is
doing resolveable name checks on envelope senders, and doesn't like
qmail's special double-bounce sender.
--
Russ Allbery ([EMAIL PROTECTED]) http://www
should now be going to the new machine.
--
Russ Allbery ([EMAIL PROTECTED]) http://www.eyrie.org/~eagle/
if a system goes down.
--
Russ Allbery ([EMAIL PROTECTED]) http://www.eyrie.org/~eagle/
the remote
SMTP server. Default: me, if that is supplied; otherwise
qmail-remote refuses to run.
--
Russ Allbery ([EMAIL PROTECTED]) http://www.eyrie.org/~eagle/
up in ORBS.
Sounds like your problem is with your sendmail box. Why don't you turn
off !-addressing on your sendmail system? That would seem to neatly solve
the problem.
--
Russ Allbery ([EMAIL PROTECTED]) http://www.eyrie.org/~eagle/
John White [EMAIL PROTECTED] writes:
On Wed, Apr 12, 2000 at 12:07:09AM -0700, Russ Allbery wrote:
None. By the time the message reaches the SMTP level, VERP has already
been done. VERP is not an SMTP feature.
*cough*
Actually, you can use the user-@domain-@[] format when talking
-mail is *all* HTML, then mutt (by default) is
SOL.
Ever since Gnus added the ability to render HTML using w3-mode, these
discussions tend to surprise me becaues I don't even notice the original
was in HTML. :)
--
Russ Allbery ([EMAIL PROTECTED]) http://www.eyrie.org/~eagle/
R-2
/var/qmail/bin/qmail-queue R
/var/qmail/control/badmailfrom L-i
!/var/qmail/queue
That checks all the man pages, which is probably unnecessary (although it
is possible to do shell escapes from inside *roff, so...).
--
Russ Allbery ([EMAIL PROTECTED]) http
of putting the
mail queue in /var like it normally is and keeping all of qmail together
in the same place.
--
Russ Allbery ([EMAIL PROTECTED]) http://www.eyrie.org/~eagle/
.
--
Russ Allbery ([EMAIL PROTECTED]) http://www.eyrie.org/~eagle/
"this goes to stderr" 2 ) /dev/null 21
$ ( echo "this goes to stderr" 2 ) 21 /dev/null
this goes to stderr
Order is significant in Bourne shell I/O redirection.
--
Russ Allbery ([EMAIL PROTECTED]) http://www.eyrie.org/~eagle/
Adam McKenna [EMAIL PROTECTED] writes:
No. If you installed qmail correctly, you would have created an account
called mailer-daemon, which is required to be RFC compliant.
I believe the only required e-mail account is postmaster.
--
Russ Allbery ([EMAIL PROTECTED]) http
name.iad.gblx.net 3600 A 204.152.166.155
12 17.191.71.204.in-addr.arpa 209.130.187.10
ALERT: lame server; refers to .
12 17.191.71.204.in-addr.arpa 206.165.6.10
ALERT: resolution took more than 1 second
ALERT: lame server; refers to .
--
Russ Allbery ([EMAIL
front again.
--
Russ Allbery ([EMAIL PROTECTED]) http://www.eyrie.org/~eagle/
SMTP to a mail server when it actually wasn't speaking SMTP at
all (it probably also expects unqualified addresses to work). The
solution may be to run ofmipd for such clients, from the mess822 package.
--
Russ Allbery ([EMAIL PROTECTED]) http://www.eyrie.org/~eagle/
ail-remote), you can get 100%
amplification easily (compared to your own network traffic).
100% amplification isn't particularly interesting. Most of the existing
DoS attacks give you an order of magnitude of amplification or more.
--
Russ Allbery ([EMAIL PROTECTED]) http://www
points you directly at the compromised hosts, making this
inherently inferior from the cracker's standpoint than any attack which
can be performed with forged source addresses.
--
Russ Allbery ([EMAIL PROTECTED]) http://www.eyrie.org/~eagle/
Russell Nelson [EMAIL PROTECTED] writes:
Russ Allbery writes:
TAG [EMAIL PROTECTED] writes:
Is there a way of specifying a subject and attaching files using
qmail-inject from the command line - the man page is not helpful in
this respect??
No. qmail-inject doesn't know enough about
1 - 100 of 258 matches
Mail list logo
