Hello,
I realise it's poor form to jump on a mailing list and immediately ask for
help, so I hope you will be forgiving.
I administer a system for a US non-profit organisation. The previous admin
chose to use Qmail and then QPSMTPD to allow the system to do greylisting.
We are experiencing
On 15-Aug-07, at 10:08 PM, John Peacock wrote:
The reason for this is that you only need to Trust forever the
server-signed
cert once, when you first configure your client to use TLS. After
that, I'm not
aware of any mail clients that even give you any feedback that you
are using a
TLS
three things spring to mind-
1. the greylisting plugin uses a lock on the dbm file to prevent the
processes from clobbering each other. the GL plugin could be
re-written to use an RDBMS instead, that might help.
2. the greylist db might be huge, i wrote a little script that prunes
the ancient
On 2007-08-16 00:21:35 -0400, John L wrote:
Just sbl.spamhaus.org in qpsmtpd, and then whatever SpamAssassin does.
Change from sbl to zen and you'll be amazed how much more spam it catches.
Yep. SBL contains networks of known spammers and spam-supporting ISPs.
It is pretty small and catches
Geoff Shang wrote:
My questions are these:
1. Does anyone have any idea why our system load is running so high?
and
2. Which version of qpsmtpd should I be running? There seems to be 4
different server programs now and I don't really appreciate the difference
between the various
1. the greylisting plugin uses a lock on the dbm file to prevent the
processes from clobbering each other. the GL plugin could be
re-written to use an RDBMS instead, that might help.
I have a well-known greylist patch for qmail-smtpd that I recently
ported over to qpsmtpd.
It uses UDP queries
On 8/16/07 9:06 AM, Robin Bowes [EMAIL PROTECTED] wrote:
I can guarantee you will cut down on load if you install some plugin
that checks for valid recipients before the msgs hit qmail.
Here's one: http://robinbowes.com/projects/check_validrcptto_cdb
View it here:
On 2007-08-15 20:27:24 -0400, Matt Sergeant wrote:
On 15-Aug-07, at 7:08 PM, Ed McLain wrote:
IS there any documentation anywhere on how and what needs to be
changed? I've looked on the wiki and don't see anything on there
about it. As an aside, I'll dig through the dnsbl plugin for async
On 2007-08-15 23:45:14 +0200, Stefan Priebe wrote:
But would be more luckier, if yome of the devolopers seem to care. Cause
qpsmtpd is a real great program i think... and it should be stable in a
new release and not that buggy as it is... i think this is really sad /
bad or whatever.
I
John Levine wrote:
1. the greylisting plugin uses a lock on the dbm file to prevent the
processes from clobbering each other. the GL plugin could be
re-written to use an RDBMS instead, that might help.
I have a well-known greylist patch for qmail-smtpd that I recently
ported over to qpsmtpd.
It uses UDP queries to a small server written in perl, which has
rather nice performance since the perl server keeps the greylist data
in an in-memory hash, UDP is pretty cheap, so the server just handles
the requests as they arrive, no locking needed. It also means that if
you have a pool
On 8/11/07, Matthew Harrell [EMAIL PROTECTED] wrote:
Oh and the attacks that I've been noticing like this are, as John calls
them, blowback from spam run. They're all to fake addresses on my domains
but the majority of them are from postmaster at what look like valid servers
Sometimes when
On Wed, 15 Aug 2007, Joe Schaefer wrote:
[EMAIL PROTECTED] (Charlie Brady) writes:
AFAICT, nobody has ever said what constitutes 'faster', or what
performance testing has been done forkserver v Apache::Qpsmtpd.
When SMTP transactions are measured in seconds, faster really
doesn't matter
Gavin Carr wrote:
Your issue is that because there's no core support for whitelisting, plugins
still have to support it explicitly. I can't find your rcpt_to plugin, but
I'm assuming it doesn't.
So (untested) you should just need to add something like:
return OK if
On 8/16/07 1:45 PM, Charlie Brady [EMAIL PROTECTED]
wrote:
On Wed, 15 Aug 2007, Joe Schaefer wrote:
[EMAIL PROTECTED] (Charlie Brady) writes:
AFAICT, nobody has ever said what constitutes 'faster', or what
performance testing has been done forkserver v Apache::Qpsmtpd.
When SMTP
JT Moree wrote:
to your rcpt_to plugin.
Thank you, I appreciate that but one more clarification. It's not MY
rcpt_to plugin. It came with the stock qpsmtpd .40 tarball that I
downloaded.
I'm sorry. It's rcpt_ok. NOT rctp_to
--
JT Moree
I actually run forkserver, now prefork, under daemon (
http://libslack.org/daemon/) which handles all of the logging to syslog, or
file, and restarting the process if it fails. Works great on our boxes and
is much easier to run than tcpserver or svscan. I use:
/usr/bin/daemon
On Thu, 16 Aug 2007, Peter Eisch wrote:
... and I have to go through some hoops to get it on there that include
some various acknowledgements to the author.
That's BS. Anyone is free to download tcpserver without any
acknowledgements. If you don't like the ucspi-tcp license you can use
On Thu, Aug 16, 2007 at 01:02:52PM -0700, JT Moree wrote:
Shouldn't the documentation for the whitelist_soft module mention that
it requires modifying the rest of the plugins?
Yes, probably. My current dev version does say:
=head1 BUGS/NOTES
Cross-hook whitelisting must be specifically
On Thu, 16 Aug 2007, Charlie Brady wrote:
On Thu, 16 Aug 2007, Peter Eisch wrote:
... and I have to go through some hoops to get it on there that include
some various acknowledgements to the author.
That's BS. Anyone is free to download tcpserver without any
acknowledgements. If you don't
On Thu, 2007-08-16 at 18:45 -0500, Peter A Eisch wrote:
That's BS. Anyone is free to download tcpserver without any
acknowledgements. If you don't like the ucspi-tcp license you can
use
ipsvd.
snip
Check out http://pkgsrc.org/ and try and install tcpserver without
jumping
through hoops
On 16-Aug-07, at 8:32 PM, Guy Hulbert wrote:
On Thu, 2007-08-16 at 18:45 -0500, Peter A Eisch wrote:
That's BS. Anyone is free to download tcpserver without any
acknowledgements. If you don't like the ucspi-tcp license you can
use
ipsvd.
snip
Check out http://pkgsrc.org/ and try and
22 matches
Mail list logo