Ahoj,
Dňa Thu, 31 Jul 2025 09:41:18 +0100 Jeremy Harris via Exim-users
napísal:
> On 2025/07/28 5:50 PM, Andreas Metzler via Exim-users wrote:
> > * changing #define PDKIM_DEFAULT_SIGN_HEADERS in
> >src/src/miscmods/pdkim/pdkim.h
> > * Updating the docs, including a proper entry for
> > doc/
Dňa 29. júla 2025 6:38:44 UTC používateľ Evgeniy Berdnikov via Exim-users
napísal:
># exim4 -be '_DKIM_SIGN_HEADERS'
>2025-07-29 09:31:11.352 [152776] Exim configuration error in line 1190 of
>/var/lib/exim4/config.autogenerated:
> malformed macro definition
It is in 4.94 too, space (or anyth
Dňa 27. júla 2025 11:59:04 UTC používateľ Andreas Metzler via Exim-users
napísal:
>Or more generally speaking: I cannot think of a scenario when "+X-Foo"
>or "=X-Foo" would be not a better choice than "X-Foo", the latter is
>really strange (oversign absent header, but do not oversign preset
>hea
Ahoj,
Dňa 26 Jul 2025 22:08:42 -0400 John Levine via Exim-users
napísal:
> It appears that Slavko via Exim-users said:
> >_DKIM_SIGN_HEADERS=
> >From:Sender:Reply-To:Subject:Date:Message-ID:To:Cc:MIME-Version:
> >Content-Type:Content-Transfer-Encoding:Content-I
Ahoj,
Dňa Sat, 26 Jul 2025 11:04:53 +0200 Andreas Metzler via Exim-users
napísal:
> | * An integer underflow was fixed in libspf2's repository in
> response: |
> https://github.com/shevek/libspf2/commit/d14abff4b544cfc53a8b5ef54cbc2353866b5081
> | However, it is neither clear whether this is p
Ahoj,
Dňa 23 Jul 2025 17:10:37 +0200 John Levine via Exim-users
napísal:
> OK, that sounds about as wrong as I feared. I'll tell the guy it's
> a bug in Exim and if he cares about his mail, he should adjust the
> configuration to sign a reasonable set of headers.
i would appreciate if you can
Ahoj,
Dňa 23 Jul 2025 09:57:00 +0200 John Levine via Exim-users
napísal:
> I was tracing down a strange bug in which mail sent to a role account
> in an IETF working group was forwarded to the recipient's Gmail
> account and appeared with a big ugly security warning saying invalid
> DKIM signatu
Dňa 9. júna 2025 12:47:41 UTC používateľ Bill Cole via Exim-users
napísal:
>
>[...]
>> dig -t ptr 8.8.8.8
>>
>> ;; QUESTION SECTION:
>> ;8.8.8.8. IN PTR
>
>That's a query for a PTR record with the *NAME* 8.8.8.8.in-addr.arpa. It will
>ask whatever nameserver you have
Ahoj,
Dňa Sat, 7 Jun 2025 23:44:50 -0700 AC via Exim-users
napísal:
> Because according to the documentation that variable is set if it's
> more than just no rDNS but also a mismatch with a forward DNS query.
> Unless I'm misreading the below documentation this is not what I'm
> asking for.
IMO
Dňa 26. mája 2025 11:49:33 UTC používateľ Viktor Dukhovni via Exim-users
napísal:
>There are no known practical attacks on 3DES (112-bit keys) and SHA1
>(HMAC) in TLS in the context of SMTP. There are some browser-specific
>issues with CBC ciphers because TLS did MAC-then-encrypt rather than
>e
Dňa 25. mája 2025 18:17:47 UTC používateľ Bill Cole via Exim-users
napísal:
>> From my point of
>> view, first: it is not my problem, it is their decision (to use weak TLS).
>> Second, weak TLS is IMO worse than plain text, as it provides false feel
>> of protection and i personaly prefer to avo
Dňa 25. mája 2025 11:54:29 UTC používateľ Mike Cardwell via Exim-users
napísal:
>I don't know what the generally accepted config is for SMTP TLS these
>days, but bare in mind that a connecting MTA may decide to fall back to
>plain text if it can't agree a protocol/cipher with you. I'd rather
>ha
Dňa 24. mája 2025 18:16:48 UTC používateľ Andrew C Aitchison via Exim-users
napísal:
>On Sat, 24 May 2025, Slawomir Dworaczek via Exim-users wrote:
>
>> How to disable depracated protocols Tls 1 and tls 1.1 and enable only strong
>> protocols
>
>Does your exim use GnuTLS or OpenSSL -
> exim -b
On 14. mája 2025 11:29:08 UTC, Cyborg via Exim-users
wrote:
>Means, when such an exchange wants a tls connection, it starts with the
>weakest instead of the strongest chiper ending up with a SSLv3 connection.
>That is nowadays not allowed anymore on linux systems, which means that this
>examp
On 14. mája 2025 11:29:08 UTC, Cyborg via Exim-users
wrote:
>IMHO the task was to have real encrypted traffic, not something a 15y old can
>crack on it's laptop. Do you agree? ;)
Good luck with "modern" versions of TLS, as top one can use
only AES cipher(suite), which is ~25 years old, and eve
Dňa 14. 5. o 9:51 Odhiambo Washington via Exim-users napísal(a):
On Wed, May 14, 2025 at 1:41 AM Jeremy Harris via Exim-users <
exim-users@lists.exim.org> wrote:
deny
condition = ${if and{ \
{!def:tls_in_cipher} \
{or{ \
{e
Ahoj,
Dňa Fri, 25 Apr 2025 14:38:03 -0400 Andy Firman via Exim-users
napísal:
> I love the block_hosts feature and it's always worked very well,
I have no idea what "block_host feature" is, perhaps something in your
config? But that doesn't matter, in this case...
> until the Russian spammers
On 20. apríla 2025 18:48:36 UTC, Sander ter Steege via Exim-users
wrote:
>This is great, thank you very much! I agree the docs are not very clear about
>this, they probably are when you already know what is happening, but they are
>a bit less easy to follow when you don’t.
No, doc is (almost)
On 20. apríla 2025 15:35:35 UTC, Sander ter Steege via Exim-users
wrote:
>Hi Slavko,
>
>Thanks for taking the time to look into this.
You are welcome
>> How you have currently set:
>>
>>control = submission
>>
>> With or without options?
>
>This is without options, when I add the 'domain
On 20. apríla 2025 14:15:34 UTC, Sander ter Steege via Exim-users
wrote:
>1322640 LOG: address_rewrite MAIN
>1322640 "testu...@example.com" from env-from rewritten as
>""testu...@example.com"@primary_hostname.com" by submission mode
>1322640 rewrite rules on sender address
>1322640 qualify an
Ahoj,
Dňa Sun, 20 Apr 2025 15:06:24 +0200 Sander ter Steege via Exim-users
napísal:
> SmtpClient.sys.mjs:1291:19 mailnews.smtp: RCPT TO done. Proceeding
> with payload. SmtpClient.sys.mjs:1294:19 mailnews.smtp: C: DATA
> SmtpClient.sys.mjs:677:19 mailnews.smtp: S: 354 Enter message, ending
> wit
Dňa 10. 4. o 23:04 Johnnie W Adams via Exim-users napísal(a):
The coding should take both of the 'foo's in, because they are the
credentials to be used in the ldapauth test. And they really shouldn't be
giving back a 235 Authentication succeeded under any circumstances.
that is main problem
Ahoj,
Dňa Sun, 23 Feb 2025 11:16:15 + Jeremy Harris via Exim-users
napísal:
> On 2/23/25 10:54 AM, Slavko via Exim-users wrote:
> > that one finds right retry
> > rule:
> >
> > exim -brt '@|process_dmarc.py'
> > Retry rule: ^\N\@\|.+$\N
Ahoj,
Dňa Sun, 23 Feb 2025 11:00:34 +0100 Heiko Schlittermann via Exim-users
napísal:
> And, of course, the format of the bogook file would change to include
> the full address or an asterisk as localpart:
This remind me one question, which i didn't ask ;-)
I have pipe transport (to process DM
On 21. februára 2025 8:44:22 UTC, Slawomir Dworaczek via Exim-users
wrote:
>heloo
>unfortunately still the same error, chatgpt and deepseek also failed at this
>and cannot solve the problem :)
Why do you expect, that we (people) could be better than AI?
But seriously, it seems that you lack ba
On 22. januára 2025 11:54:51 UTC, Odhiambo Washington via Exim-users
wrote:
>So is the correct retry I need written as F,1d,24h - to mean, retry every
>24hrs for 1d?
F,1d,24h:
+ F = retry at fixed intervals
+ 1d = retry for 1day, after that go to next definition or bounce
+ 24h = retry after e
On 22. januára 2025 10:32:40 UTC, Odhiambo Washington via Exim-users
wrote:
>the_local_p...@mydomain.name * sender@some_domain_name F,24h,1m
Try to use:
local@mydomain * senders=sender@domain ...
regards
--
Slavko
https://www.slavino.sk/
--
## subscription configuration (require
Dňa 22. 1. o 6:24 Martin Waschbüsch via Exim-users napísal(a):
Looking more closely, I found that all the sending domains I tested
had one common attribute: their MX points to the same fqdn.
Is it possible to use that information to block incoming mail from
any and all domains having that same
On 8. januára 2025 10:16:09 UTC, Viktor Dukhovni via Exim-users
wrote:
>On Wed, Jan 08, 2025 at 09:59:38AM +1000, Martin D Kealey via Exim-users wrote:
>As for NODATA, while legitimate mail domains with just A/ records
>and no MX records are are a small minority, they exist, and should
>not
On 8. januára 2025 9:41:41 UTC, Gandalf Corvotempesta via Exim-users
wrote:
>Il giorno mar 7 gen 2025 alle ore 15:58 Andrew C Aitchison
>Tried with "*", the ip, the hostname and so on, it's always ignored
I afraid, that IP will not work, the "*" is not good to use,
but can be really good while
On 3. januára 2025 23:44:48 UTC, Sebastian Nielsen via Exim-users
wrote:
>Whats the problem? Is it the linebreak in the From: that should have been
>soaked up by the MIME parser?
Exim is right, as usual, NULL MX:
lab.teledynevisionsolutions.com mail is handled by 0 .
regards
--
Slavko
On 29. decembra 2024 16:33:13 UTC, Andrew C Aitchison via Exim-users
wrote:
>spec.txt 14.23 Alphabetical list of main options
>(the first of two such entries), says:
> +---+
> |tls_alpn|Use: main|Type: string list*|Default: smtp : esmtp|
Hi all,
recently i decide to play with ALPN with exim on SubmissonS
(SMTPS, 465) port and i noticed strange behavior.
I use debian's exim 4.96, with default ALPN settings:
hosts_require_alpn =
tls_alpn = smtp:esmtp
Then i try to connect with simple python script. In python i
can set lis
Ahoj,
Dňa Mon, 23 Dec 2024 12:17:03 +0100 Slavko via Exim-users
napísal:
> It includes various Protect*= and Private*= options. IMO you can
> override that unit file (systemd edit ...) and try to disable them to
> find what collides with your settings. From my unit file (as shown by
Ahoj,
Dňa Mon, 23 Dec 2024 11:37:57 +0100 Kai Bojens via Exim-users
napísal:
> Am 23.12.24 um 11:17 schrieb Jeremy Harris via Exim-users:
>
> > I'd be tending to blame systemd, also. What has it started doing
> > differently?
>
> Debian 11 worked fine without any problems. The problems star
Ahoj,
Dňa Fri, 20 Dec 2024 10:50:09 -0500 haines--- via Exim-users
napísal:
> New installation of Debian Bookworm. For mail using mutt and exim4.
> No problem receiving mail, but cannot send it (disappears). So I am
> sending this message with mail.
>
> $ swaks
> To: hai...@histomat.net
>
On 15. decembra 2024 15:18:40 UTC, Andreas Barth via Exim-users
wrote:
>Does anybody know such tests?
Take look on bats, and use it with exim -bh ...
It will allow you to inspect command output and check
eg. if there is line with "XY". Or add some grep and check
its return code.
AFAIK, there
On 28. novembra 2024 12:23:45 UTC, Marco Gaiarin via Exim-users
wrote:
>What do you mean? Looking at docs
>(https://www.exim.org/exim-html-current/doc/html/spec_html/ch-generic_options_for_routers.html)
>we read for local_parts:
>
> The router is run only if the local part of the address matches
Dňa 4. októbra 2024 18:39:20 UTC používateľ Johnnie W Adams via Exim-users
napísal:
>The SIEM doesn't get that deep into the connection--it just gives
>source, destination, and port.
Thus IMO you have do it by self, eg. logging traffic in firewall or capturing
traffic to/from these ports. Captur
Dňa 4. októbra 2024 18:04:31 UTC používateľ Johnnie W Adams via Exim-users
napísal:
> I'm trying to interpret some results from an SIEM regarding our Exim
>servers and am having difficulty. The SIEM claims that ports 587 and 465
>are generating traffic on a high-numbered port. I think it's s
Dňa 23. 8. o 0:55 Marco Gaiarin via Exim-users napísal(a):
DKIM_DOMAIN = ${lc:${domain:$h_from:}}
The $h_from is untrusted, thus tainted, anything directly derived
(expanded) from it will be tainted too and you need to detaint it.
To detaint filename, the ${if exists ...} is not enough an
Dňa 22. augusta 2024 14:47:22 UTC používateľ Marco Gaiarin via Exim-users
napísal:
>clearly 'DKIM_DOMAIN' and 'DKIM_SELECTOR' are macros.
>
>How can i detaint it? Thanks.
Depend what is defined in these macros, show them.
regards
--
Slavko
https://www.slavino.sk/
--
## subscription config
Dňa 15. augusta 2024 13:42:44 UTC používateľ Christopher Curzio via Exim-users
napísal:
>Here's a copy of my exim.conf:
IMO it is better to extract particular part(s) of ACL and add
it directly in mail, imcluding relevant part(s) of data files.
regards
--
Slavko
https://www.slavino.sk/
--
Dňa 15. augusta 2024 8:30:33 UTC používateľ Julian Bradfield via Exim-users
napísal:
>Furthermore, a DMARC p=none means simply that the DMARC'ed domain does
>not request any special action to be taken. It does not request, let
>alone instruct, the receiver to deliver the mail. The receiver is (o
Dňa 14. augusta 2024 20:58:37 UTC používateľ Heiko Schlittermann via Exim-users
napísal:
>IMHO DMARC requires from: <-> DKIM alignment too, plus from: <->
>mail-from alignment, as someone else pointed out in this thread already.
AFAIK success DMARC requires:
(dkim AND align d= with MIME_Fro
Ahoj,
Dňa Fri, 9 Aug 2024 15:16:17 +0200 Jan Ingvoldstad via Exim-users
napísal:
> Please remember that in the absence of MX records, A record lookup(s)
> will be performed for email delivery.
more precise, A/ records...
regards
--
Slavko
https://www.slavino.sk
pgpuL0IXfqXUx.pgp
Descri
Dňa 7. augusta 2024 7:41:38 UTC používateľ Viktor Dukhovni via Exim-users
napísal:
>I am guessing Exim can probably do this, and this is not part of "sender
>verification", as such, but is likely just basic access control (as in
>that other MTA I use).
In default exim.conf docs one can read:
Dňa 5. augusta 2024 16:22:57 UTC používateľ Odhiambo Washington via Exim-users
napísal:
>I sent the mail via the Unix shell as shown:
>
># printf "This is a test" | mail -s "This is a test" odhia...@gmail.com
You have to be more specific, at least to show transport config and
mention which impl
Dňa 29. júla 2024 5:39:34 UTC používateľ Viktor Dukhovni via Exim-users
napísal:
>On Mon, Jul 29, 2024 at 03:24:35AM +, Thomas Krichel via Exim-users wrote:
>> root@tagol~# grep -c 'The TLS connection was non-properly terminated'
>> /var/log/exim4/mainlog.1
>> 645
>
>Perhaps, in that case,
Dňa 18. júla 2024 4:13:40 UTC používateľ Emilio Augusto Lazo Zaia via
Exim-users napísal:
>- It is a good idea checking sender this way?
I use LMTP to dovecot over TCP, thus i can do callout to it.
By that, my exim have not to care where user's mailbox is at all.
regards
--
Slavko
https://
Dňa 15. júla 2024 17:43:52 UTC používateľ Jeremy Harris via Exim-users
napísal:
>Sounds like they changed what their output looks like.
Hmm, i upgraded rspamd on debian stable to 3.9 some days ago,
and i don't see any problems, mails are filtered as expected.
regards
--
Slavko
https://www.s
Dňa 15. júla 2024 16:26:41 UTC používateľ Wolfgang via Exim-users
napísal:
>and make sure, that it persists: `options trust-ad` See man resolv.conf for
>details.
>Without this setting glibc drops the ad-bit from your authoritative nameserver
>and exim is therefore unable, to establish DANE sec
Dňa 15. júla 2024 7:26:06 UTC používateľ Grand Master via Exim-users
napísal:
># condition = ${if
>match{${extract{1}{:}{${lookup{$sender_address}lsearch{/usr/local/etc/exim/db/known}{no}
>{yes}{no}}
lsearch will not work, it is "literaly search", looking of exact key match
>##
Dňa 8. júla 2024 15:31:11 UTC používateľ Sander Smeenk via Exim-users
napísal:
>Notice the 'none' result in $dkim_verify_status. I am almost certain
>this is what breaks DMARC because when i set 'dkim_verify_minimal' to
>'false', i get:
I have not direct answer from sources, but i understand it
Dňa 8. júla 2024 13:02:35 UTC používateľ Wolfgang via Exim-users
napísal:
>I checked into that already also. First I used my own nameserver, where the
>output just looks as
>yours.
> dig +noall +stats +comment -t mx et.lindenberg.one | grep -E '^;;
> (flags|SERVER):'
> ;; flags: qr rd ra ad;
Dňa 7. júla 2024 8:36:48 UTC používateľ Jeremy Harris via Exim-users
napísal:
>If we have to, we can extend debugging to see the each certificate in
>the chain being verified... but finding the right places in a Debian
>config will be quite a lot of effort.
I can try to help to find proper plac
Dňa 5. júna 2024 10:41:41 UTC používateľ Dominic Preston via Exim-users
napísal:
> warn
>log_message = Sender is ${run{/usr/bin/echo ${if
>def:sender_address {$sender_address
Try to quote param, AFAIK they are separed by space othervise:
${run{/usr/bin/echo "${if def:sender_addres
Dňa 17. mája 2024 16:31:08 UTC používateľ Andreas Metzler via Exim-users
napísal:
>ametzler@argenau:~$ /usr/sbin/exim -be "\${if crypteq {blah}{\N$(mkpasswd
>--method=bcrypt blah)\N}{yes}{no}}"
>yes
Eh, yes, that works. When i test that with -be i did mistake with escaping
of $ in hash...
IM
Dňa 16. mája 2024 12:39:02 UTC používateľ Odhiambo Washington via Exim-users
napísal:
> I think you could do proxy authentication with a local instance of Dovecot
>running on your Exim server.
>https://fuerstnet.de/post/2021-07-30-proxy-imap-pop-smtp-using-dovecot-and-postfix/
Or do UDS -> soca
Dňa 13. mája 2024 16:32:43 UTC používateľ francois via Exim-users
napísal:
>Debian has read access to the keys (public and private)
Debian??? Exim must have acess to read it.
>DKIM_DOMAIN = ${lc:${domain:$h_from:}}
This is only one dynamic setting, it can fail (be empty) in some
border cases,
Dňa 2. mája 2024 9:19:43 UTC používateľ Jeremy Harris via Exim-users
napísal:
>On 02/05/2024 03:38, Thomas Krichel via Exim-users wrote:
>The From: header is distinct from the envelope-from in
>a message. SPF only cares about it for bounces (when the
>envelope-from is empty).
Are you sure with
Dňa 1. mája 2024 16:52:04 UTC používateľ halbtaxabo-jnq--- via Exim-users
napísal:
>DKIM_DOMAIN = ${lookup{$domain:$h_from:}lsearch{/etc/exim4/dkim/domainslist}}
lsearch lookup key in fike and returns its value, thus it expects:
key: value
The value can be empty, i guess that your file has
Dňa 29. apríla 2024 11:48:18 UTC používateľ Jeremy Harris via Exim-users
napísal:
>So that they are not taken as expansion-markers on that line,
Ah, they are expanded later, many thanks
regards
--
Slavko
https://www.slavino.sk/
--
## subscription configuration (requires account):
## htt
Dňa 29. 4. o 0:52 Jeremy Harris via Exim-users napísal(a):
accept set acl_m_tmp = \${certextract {subj_altname,dns}{\$$acl_arg2}}
please, can you explain me why the $ are escaped?
If i understand it correctly, the "\$$acl_arg2" part is about sending
variable name in acl_arg2, but the esca
Dňa 10. 4. o 8:28 Evgeniy Berdnikov via Exim-users napísal(a):
I've looked, but found no answer what's bad. Probably domain is hashed.
Maybe you want an explicit domain string?
The answer is in docs, search for details in add/remove headers, more
precise when they are removed/added.
I h
Dňa 10. 3. o 14:31 Jeremy Harris via Exim-users napísal(a):
That matches my code-diving. You can't use (transport) header manipulation
results in the transport's dkim-control options (but the changed values
are what gets signed, if any such headers are included in the definition
for the signatu
Dňa 17. 3. o 11:53 Hardy via Exim-users napísal(a):
Ich behaupte, Slavko via Exim-users behauptete am 17.03.24:
are you sure, that your version supports it?
exim -bP macro _ACL_COND_SEEN
_ACL_COND_SEEN=y
Errm.. no. I use the Debian distro package.
The previous output was from
Ahoj,
Dňa Sat, 16 Mar 2024 12:22:40 +0100 Hardy via Exim-users
napísal:
> what am I missing?
are you sure, that your version supports it?
exim -bP macro _ACL_COND_SEEN
_ACL_COND_SEEN=y
regards
--
Slavko
https://www.slavino.sk
pgpIk3_MbY735.pgp
Description: Digit??lny podpis OpenP
Dňa 10. marca 2024 14:36:16 UTC používateľ graeme vetterlein via Exim-users
napísal:
>So, taken together:
>
>1: Set /etc/mailname to "home"
>2: Set dc_other_hostnames=" ... home" and few similar names but NOT
>"mydomain.com"
>3: Set dc_readhost=mydomain.com and dc_hide_mailname=true
>
>So insid
Ahoj,
Dňa Sat, 9 Mar 2024 15:38:43 + Jeremy Harris via Exim-users
napísal:
> However, the text of the headers (and body) of the message used as
> input for the various hashes and signatures of the DKIM signing *is*
> the output of any transport filter (this adds significant coding and
I wil
Dňa 9. marca 2024 15:38:43 UTC používateľ Jeremy Harris via Exim-users
napísal:
>However, the text of the headers (and body) of the message used as input
>for the various hashes and signatures of the DKIM signing *is* the
>output of any transport filter (this adds significant coding and cpu
>ove
Dňa 9. marca 2024 7:15:17 UTC používateľ Andreas Metzler via Exim-users
napísal:
>The DKIM section of "DKIM, SPF, SRS and DMARC" starts with
>| Exim’s DKIM implementation allows for
>|
>| 1. Signing outgoing messages: This function is implemented in the
>|SMTP transport. It can co-e
Dňa 8. marca 2024 20:12:08 UTC používateľ Jeremy Harris via Exim-users
napísal:
>DKIM signing is done after a transport filter.
Please, is that documented somewhere? I fail to find that,
and headers add/remove/rewrite in too.
I roughly remember from tests: "do not rewrite headers" in
signing t
Dňa 1. marca 2024 19:06:22 UTC používateľ Ian Z via Exim-users
napísal:
>There is definitely some overhead with the embedded perl approach,
Yes, i mean that overhead.
regards
--
Slavko
https://www.slavino.sk/
--
## subscription configuration (requires account):
## https://lists.exim.org
Dňa 29. februára 2024 6:42:38 UTC používateľ Jasen Betts via Exim-users
napísal:
>On 2024-02-28, Slavko via Exim-users wrote:
>I see what you mean, "${if inlist" doesn't seem to work inside "${reduce"
Not exactly, you can use inlist inside reduce just fain,
Dňa 28. februára 2024 18:07:47 UTC používateľ Ian Z via Exim-users
napísal:
>I have no real solution, but as tricky as it seems to be, I think a
>new built-in expansion operator to uniquify a list would be a good
>thing.
I found solution (workaround) -- move $value outside of inlist:
INLIS
Hi all,
i found in ML archives recipe how to remove duplicates from list,
i tried it in that form in file used -be input:
APPEND_ITEM = ${if def:value {$value,$item}{$item}}
INLIST = inlist{$item}{<,$value}
${reduce{<, item1, item2, item1}\
{}\
{${if INLIS
Dňa 27. februára 2024 12:36:23 UTC používateľ graeme vetterlein via Exim-users
napísal:
>+ in /etc/default/exim (set COMMONOPTIONS='' ..to -d and =d+all)
I didn't investigate why, but that doesn't work, i guess that it can
be something with mixing systemd & sysv. As debug usually is not
good
Dňa 3. februára 2024 7:52:07 UTC používateľ mouse via Exim-users
napísal:
>The problem is - at malware scanning time the "X-ACL-Data" header does not
>exist in a message. But it DOES exist when a message is finally delivered to
>recipient.
It is clearly documented, all headers added/removed i
Dňa 21. januára 2024 19:03:17 UTC používateľ Ronaldo Luiz de Carvalho
napísal:
>I didn't find how to include it on cPanel Exim Configuration.
I never used cpanel. Ask (or search) in its support.
regards
--
Slavko
https://www.slavino.sk/
--
## subscription configuration (requires account):
Dňa 21. januára 2024 17:06:30 UTC používateľ Ronaldo Luiz
napísal:
>I want to know the time that the message is in the mail server. The time
>between received and read. This time will show me the delay time of the mail
>server.
Perhaps do you mean time between receiving and delivering? Or, in
Ahoj,
Dňa Sun, 21 Jan 2024 12:32:59 -0300 Ronaldo Luiz via Exim-users
napísal:
> How can I know the time when an email was read by the recipient?
Ask him :-D
regards
--
Slavko
https://www.slavino.sk
pgpNvWCNiDyr6.pgp
Description: Digit??lny podpis OpenPGP
--
## subscription configuration
Dňa 14. januára 2024 20:34:12 UTC používateľ Jeremy Harris via Exim-users
napísal:
>Longterm, I'd think something like using the experimental
>queuefile transport would be simplest. You can either manually
>copy the spool file pair back to the main spooldir, or
>just use a directory suitable fo
Dňa 14. januára 2024 19:16:17 UTC používateľ Jeremy Harris via Exim-users
napísal:
>On 1/14/24 18:30, Ken via Exim-users wrote:
>> Once in a while a legitimate sender manages to send an important message
>> that really, really looks like spam, so it gets saved (for a little while)
>> in /var/sp
Dňa 5. januára 2024 13:15:37 UTC používateľ Cyborg via Exim-users
napísal:
>Exim(-> openssl) does not accept one specific TLS 1.2 cipher on incoming
>connections anymore.
>Fact checked with s_client -tls1_2 -cipher ECDHE-RSA-AES256-GCM-SHA384
Do you use EC(DSA) or RSA certificate?
regard
Dňa 27. decembra 2023 14:28:23 UTC používateľ Hardy via Exim-users
napísal:
>I put example.com to the "local-dkim-daomains" for testing.
>It selects the correct router and transport. It seems just to ignore
>"allow_localhost"
Is not the allow_localhost transport option?
regards
--
Slavko
h
Dňa 19. decembra 2023 17:56:37 UTC používateľ Ray O'Donnell via Exim-users
napísal:
>On 19/12/2023 17:36, Andrew C Aitchison via Exim-users wrote:
>> On Tue, 19 Dec 2023, Odhiambo Washington via Exim-users wrote:
>>
>>> Does this imply that Debian-ists are scared of running anything
>>> outside
Dňa 19. novembra 2023 19:33:12 UTC používateľ Viktor Dukhovni via Exim-users
napísal:
>It is possible for the path unit to fail to run, but the ACME client
>believes it is done. Does systemd's path unit guarantee "at least once"
>execution.
ACME client doesn't need (nor is) to know about that.
Ahoj,
Dňa Thu, 16 Nov 2023 15:12:15 -0500 Viktor Dukhovni via Exim-users
napísal:
> I don't recommend DANE-TA(2), and encourage use of DANE-EE(3) instead.
I am far from DANE expert, but my understanding is, that DANE-TA is
good for own CAs, where one have full control on (intermediate) CA's
cer
Dňa 15. novembra 2023 23:14:39 UTC používateľ Viktor Dukhovni via Exim-users
napísal:
>If you're using Let's Encrypt as your CA and prefer to publish
>DANE-TA(2), rather than DANE-EE(3) TLSA records, please look over:
Just curious. Enough recent certbot provides --reuse-key and --new-key
(or so
Dňa 3. novembra 2023 16:18:05 UTC používateľ Chris Siebenmann via Exim-users
napísal:
>(In practice it's very rare and generally alarming to see multiple
>instances of most headers.)
AFAIK it was way to trick MUAs to show different value in eg.
From: or Subject: fields. Without oversign, some M
Dňa 23. októbra 2023 12:28:50 UTC používateľ Markus Reschke via Exim-users
napísal:
>I'm also looking into optimizing my DKIM configuration, especially which
>headers to sign.
I use this macro:
DKIM_SIGN_HEADERS =
+From:+Reply-To:+Sender:+Subject:+To:+Cc:+Date:+MIME-Version\
${if def:h_Messa
Dňa 20. 10. o 11:45 brunoc68 via Exim-users napísal(a):
Actually the filter works fine : whether one sets up DKIM or not, the
outgoing email gets both disclaimers (txt + html).
However, DKIM check fails (only) when the disclaimers are added.
IMO, the DKIM signature is done before filter (and
Dňa 15. októbra 2023 18:37:54 UTC používateľ Andrew C Aitchison via Exim-users
napísal:
>Sadly no. Ubuntu 23-10/mantic (released last week) still has:
>Debian is similar.
I contacted debian's security team about week ago with this.
The response was (in that time), that it is unknown if this
pat
Dňa 15. októbra 2023 17:07:00 UTC používateľ Jeremy Harris via Exim-users
napísal:
>A resolver that you trust to only send properly-structured DNS responses
>towards you. As opposed to crafted responses with interally-inconsistent
>data, which the resolver access library functions (at least in
Dňa 15. októbra 2023 16:17:32 UTC používateľ Heiko Schlittermann via Exim-users
napísal:
>today we released 2 more fixes for the issues mentioned in the recent
>CVEs.
Nice job, thanks.
>- We fixed issues in the `dnsdb` lookup subsystem.
Please, can you now elaborate more about "trusted resolv
Dňa 8. októbra 2023 13:53:31 UTC používateľ u34--- via Exim-users
napísal:
>Making the whole system treats self signed certificates in the same manner
>as it treats other certificate authorities is distribution dependent.
Self signed certificate is basically CA root certificate directly used
b
Dňa 6. októbra 2023 16:24:27 UTC používateľ Andreas Metzler via Exim-users
napísal:
>On 2023-10-06 Slavko via Exim-users wrote:
>[...]
>> hmm, i still cannot get how "network adjacent" is related to root
>> privileges. But my head never was good for attacks...
>
Dňa 6. októbra 2023 2:22:10 UTC používateľ Jasen Betts via Exim-users
napísal:
>> Please, do you want to tell, that having resolver on localhost prevents
>> to exploit this?
>
>It does not prevent the exploit, but to execute the exploit you'd need
>root permissions, which kind of makes it moot,
Dňa 5. októbra 2023 13:29:46 UTC používateľ Mario Emmenlauer via Exim-users
napísal:
>Yes, this is something I did not really consider :( But after the
>suggestions here on the list I can value this. I'll go for an approach
>that keeps the addresses routable. Thanks for pointing that out!
I use
1 - 100 of 158 matches
Mail list logo
