It's interesting to have instruction for generating self-signed cert but
most people will want a cert that others will validate so it makes sense
to at least extend the man page (in another diff) in my opinion.
--
Gilles Chehade @poolpOrg
htt
hings to change in the API, and you should stay away
of it if you can't write code at the moment.
Some people already wrote a few useful filters and are using them daily,
so this is more than usable at this point, my plan is for the filter API
to be made rock-solid for 6
google and
they are pretty much identical in terms of configuration.
--
Gilles Chehade @poolpOrg
https://www.poolp.org tip me: https://paypal.me/poolpOrg
direction. This was exactly what I
> was looking for.
>
glad it helps, though keep in mind that I'm writing about code that is on
my laptop or that's very very very fresh and likely to change.
we're nearly a year apart from that post and I can't even remember all of
the changes, fixes and improvements.
--
Gilles Chehade @poolpOrg
https://www.poolp.org tip me: https://paypal.me/poolpOrg
searching (scratching my head) how
> to configure sendmail!?? A 4 line config file to have a functioning email
> configuration is pretty staggering!
>
Cheers :-)
--
Gilles Chehade @poolpOrg
https://www.poolp.org tip me: https://paypal.me/poolpOrg
ocmail without introducing special cases and ugly hacks such as having
explicit search for the string 'procmail' in .forward files.
it wasn't worth it when people can just pass procmail an option.
also don't use procmail, it's trash and there are far better options for
you
On Sat, Jan 26, 2019 at 09:23:37PM +1000, Stuart Longland wrote:
> Hi Gilles,
> On 25/1/19 11:29 pm, Gilles Chehade wrote:
> > On Fri, Jan 25, 2019 at 11:15:47PM +1000, Stuart Longland wrote:
> >> First and foremost is the issue of backscatter-prevention. I would like
>
wn,
> - placed in a special directory on the VPS for my server to later ciphon
> down using `rsync --remove-source-files` over SSH. (Basically, a bit
> like UUCP.)
>
no custom mail transports in smtpd.
a way to achieve what you want is to write a custom mda, and this is
actually how i
On Tue, Jan 22, 2019 at 01:11:44AM +0100, Eric Elena wrote:
> On Mon, 21 Jan 2019 11:08:02 +0100 Gilles Chehade wrote:
> > I may sound a bit harsh, but starting a thread with "this is my last try
> > or I'll switch" (as if it actually matters) right before telling som
t want to be "that asshole", although it seems I've succeeded again -
> sorry.
>
> Thank you for taking the time to reply. Now I'm going to go check that mail
> server a 7,000,000th time, this time to see what MTA is actually *running*,
you actually tried _nothing_ then blaming the
code improvements for a use-case that could have never worked because it
not only uses the wrong _documented_ mechanism but also because the code
to make your use-case work has never existed, kinds of irritates me.
I don't get royalties on s
cope, it can only expand it.
What you are describing has never existed in smtpd, there's never been
code to translate sender addresses and there's a good reason for that:
it not considered doable before the grammar change...
But sure, blame it on the grammar.
> (If anyone cares, the bad
t; send to external addresses, log:
> http://dpaste.com/2M8JMQC.txt
>
you need a rule that matches auth, for example:
match auth from any for any action "relay"
> On January 14, 2019 1:10:24 PM GMT+01:00, Gilles Chehade
> wrote:
> >On Mon, Jan 14, 2019 at 01:03:19
hat you're doing
can you setup a temporary account, with a temporary password, authenticate to it
using a regular MUA (whichever you want, just don't auth manually), then trash
the account and send us logs that aren't doctored ?
> On January 14, 2019 9:41:42 AM GMT+01:00, Gilles C
quot;535 Authentication failed"
>
Hi,
First of all, it should read mask-src and not mask-source, otherwise the
auth keyword is assuming a table containing literal string "mask-source"
and this will cause authentication to fail.
A good method to troubleshoot, is to run smtpd in
On Tue, Jan 01, 2019 at 01:14:54PM +0100, Walter Alejandro Iglesias wrote:
> On Fri, Dec 21, 2018 at 06:59:58PM +0100, Gilles Chehade wrote:
> > On Fri, Dec 21, 2018 at 06:56:57PM +0100, Walter Alejandro Iglesias wrote:
> > > Hello Gilles,
> > >
> > > In a
On Fri, Dec 21, 2018 at 06:56:57PM +0100, Walter Alejandro Iglesias wrote:
> Hello Gilles,
>
> In article <20181221145201.ga90...@ams-1.poolp.org> Gilles Chehade
> wrote:
> > On Fri, Dec 21, 2018 at 07:41:41AM -0700, Gilles Chehade wrote:
> > > CVSROOT:
initated the connection:
$ spamdb | grep -E '^(GREY|WHITE)\|' | cut -d\| -f1,2
Do not spam misc@ with that output, send it directly to me.
Thanks !
--
Gilles Chehade @poolpOrg
https://www.poolp.org tip me: https:/
xEm1K8sqrIraunJoXU1DeBwsRveIm9W8lQhrakOK5w/A
> > LP7NegSZljctRmTvLDkSwkgdR9mH18y/DFAjj+TlA3oLNB+EkKGRgBxuEddb
> > BgoAU+9+PSgpoAUGXeWGlp/Q0caUP7lM/VlovbBJF8l+1uEZtc1euwtw8fo/
> > +cxZXDiMzDbouZAvSqG/60E=
> > =5R2I
> > -END PGP SIGNATURE-
> >
> --
> Vijay
On Wed, Nov 21, 2018 at 09:21:46PM +0100, Thuban wrote:
> * Gilles Chehade le [21-11-2018 21:06:39 +0100]:
> > On Wed, Nov 21, 2018 at 06:38:43PM +0100, Thuban wrote:
> > > * Edgar Pettijohn le [21-11-2018 11:32:43
> > > -0600]:
> > > >
> &g
On Wed, Nov 21, 2018 at 09:21:46PM +0100, Thuban wrote:
> * Gilles Chehade le [21-11-2018 21:06:39 +0100]:
> > On Wed, Nov 21, 2018 at 06:38:43PM +0100, Thuban wrote:
> > > * Edgar Pettijohn le [21-11-2018 11:32:43
> > > -0600]:
> > > >
> &g
>
> I guess the "junk" keyword in smtpd.conf was written to be handy, so I miss
> something. Where ?
>
You didn't miss anything, the maildir agent only supports X-Spam headers
as of today so this will need a diff to support SpamAssassin if it can't
generate a X-Spam header.
SpamAssassin wasn't a target when I wrote that feature but it's just one
diff away ;-)
--
Gilles Chehade @poolpOrg
https://www.poolp.org tip me: https://paypal.me/poolpOrg
if it contains a positive X-Spam
> header.
>
>
> spams detected by spamassassin have multiple X-Spam-* headers, but aren't
> placed
> into Junk folder.
>
> Any advice ?
>
without seeing examples of these headers and your config,
is would be something like:
action relay_00 relay mail-from "@foobar.org"
match [...] action relay_00
--
Gilles Chehade @poolpOrg
https://www.poolp.org tip me: https://paypal.me/poolpOrg
ime.
>
> But you're right in principle -- I *should* really take the time out to
> recreate the list of domains that went into it and just re-generate with
> smtpctl spf walk something like once per day or once per week.
>
Like this ?
https://github.com/Mailbrix/lists
:-)
--
Gilles Chehade
https://www.poolp.org @poolpOrg
handling only some exit codes as tempfail
and all others as permfail.
diff going to the tree in a minute, tested by Atanas ;-)
--
Gilles Chehade
https://www.poolp.org @poolpOrg
on.
>
That is exactly the case.
I have a non-invasive implementation of filters which I'm happy with and
which I intend to commit shortly after OpenBSD 6.4 is tagged, so we have
a full release cycle to work on details, keywords and such, in order for
the feature to be production ready for 6.5.
On Mon, Sep 03, 2018 at 12:25:55PM +0200, d.rausch...@gmail.com wrote:
> Hi Gilles,
>
> On Sun, Sep 02, 2018 at 01:25:46PM +0200, Gilles Chehade wrote:
> > Can you provide me with the corrupt line procmail includes so I can
> > check if it is invalid indeed ?
>
> Th
rocmail".
If you're running current, you might want to try:
"|exec /usr/local/bin/procmail -f %{mbox.from} || exit 75"
in case it helps procmail produce a correct sender.
Can you provide me with the corrupt line procmail includes so I can
check if it is invalid indeed ?
--
Gilles Chehade
https://www.poolp.org @poolpOrg
buy a new one if only Steve Jobs would be alive and keeping
>>
>> Apple
>>> inspired. The new models are meticulously designed to make you
>>
>> suffer:
>>> expensive, slow cpu, soldered ram, soldered disk, small disk, bad
>>
>> keyboard
>>> keys, wifi only, must pay extra for standard connectors.
>>>
>>> I have 1500EUR for a new laptop. What would you buy with it?
--
Gilles Chehade
https://www.poolp.org @poolpOrg
x sugar too.
action foobar maildir = action foobar mda "/usr/libexec/mail.maildir ..."
action foobar maildir path = action foobar mda "/usr/libexec/mail.maildir
path ..."
lmtp is not easy, it requires multiple parameters and people have a lot
of different use-cases with it. I can't easily provide a syntaxic sugar
and we must expose -d, -f, rcpt-to, etc... this isn't acceptable for me
so if you manage to make all options fit in one STRING I will be ok but
if I have to add keywords specific I won't.
Something like:
> > > action "lmtp-local" lmtp "/var/dovecot/lmtp"
would be fine by me, but people are using other parameters than just the
lmtp socket, or maybe we can provide a syntaxic sugar for this case, and
people using any other option must use the longer option ?
--
Gilles Chehade
https://www.poolp.org @poolpOrg
On Thu, May 24, 2018 at 11:45:40AM -0700, Paul B. Henson wrote:
> > From: Gilles Chehade
> > Sent: Wednesday, May 23, 2018 1:20 PM
> >
> > That's bad but could easily be fixed if you want to help us
>
> So I dropped in the latest table-ldap from git, and it s
On Fri, May 25, 2018 at 09:37:07PM +0200, Walter Alejandro Iglesias wrote:
> On Fri, May 25, 2018 at 03:58:59PM +0300, Consus wrote:
> > On 14:31 Fri 25 May, Gilles Chehade wrote:
> > > On Fri, May 25, 2018 at 02:20:50PM +0200, Walter Alejandro Iglesias wrote:
> > > &g
On Fri, May 25, 2018 at 09:27:21AM -0400, Amelia A Lewis wrote:
> On Fri, 25 May 2018 16:15:00 +0300, Consus wrote:
> > On 15:14 Fri 25 May, Gilles Chehade wrote:
> >> On Fri, May 25, 2018 at 03:58:59PM +0300, Consus wrote:
> >>> On 14:31 Fri 25 May, Gilles Chehade
On Fri, May 25, 2018 at 04:15:00PM +0300, Consus wrote:
> On 15:14 Fri 25 May, Gilles Chehade wrote:
> > On Fri, May 25, 2018 at 03:58:59PM +0300, Consus wrote:
> > > On 14:31 Fri 25 May, Gilles Chehade wrote:
> > > > On Fri, May 25, 2018 at 02:20:50PM +0
On Fri, May 25, 2018 at 03:58:59PM +0300, Consus wrote:
> On 14:31 Fri 25 May, Gilles Chehade wrote:
> > On Fri, May 25, 2018 at 02:20:50PM +0200, Walter Alejandro Iglesias wrote:
> > > Could someone tell me if my changes below are OK. :-)
> > >
> > >
nder for any relay
no longer matches authenticated users
--
Gilles Chehade
https://www.poolp.org @poolpOrg
On Thu, May 24, 2018 at 04:38:17PM -0400, Rupert Gallagher wrote:
> On Thu, May 24, 2018 at 14:18, Gilles Chehade wrote:
>
> > In effect, instead of having:
> > accept from any for local deliver to mbox
> >
> > You will have:
> > action "my_action&
s well much safer, removed a lot of
very unpleasant side-effects most people didn't even realize existed ...
until they hit that one case for which we had no way to work around.
Anyways,
looking forward for you to test and report how it works for you :-)
-
On Wed, May 23, 2018 at 10:19:47PM +0200, Gilles Chehade wrote:
> On Tue, May 22, 2018 at 06:13:23PM -0700, Paul B. Henson wrote:
> > So I recently converted my opensmtpd server to use ldap as the backend
> > for user authentication. It seems it's a bit untol
7/27/2017, and the last github release seems to be
> 201601072302 (although the openbsd port appears to be 201703132115, I
> guess it's not downloading it from github?).
>
It's been a while since the last -extras release indeed,
I suppose the openbsd port pulls from github,
how we fought feature creep. I don't think you would
have a much simpler code path if you used OpenSMTPD or added server code
in front of this new SMTP client to allow enqueuing.
--
Gilles Chehade
https://www.poolp.org @poolpOrg
cause it's simple and you can easily set it up
from within a ~/.forward file rather than /etc/mail/aliases which has a
huge security benefit.
--
Gilles Chehade
https://www.poolp.org @poolpOrg
2.7-config /usr/local/bin/python-config
> ln -sf /usr/local/bin/pydoc2.7 /usr/local/bin/pydoc
> # rcctl restart smtpd
> smtpd(ok)
> #
>
>
> On 01/23/18 01:31, Gilles Chehade wrote:
> > On Tue, Jan 23, 2018 at 01:21:22AM -0800, Jordan Geoghegan wrote:
> > >
indeed exist.
>
> Thanks for the fast response!
>
you need to install the opensmtpd-extras package from ports to use
the table-passwd add-on
--
Gilles Chehade
https://www.poolp.org @poolpOrg
jor...@mydomain.ca
> postmas...@mydomain.cajor...@mydomain.ca
> webmas...@mydomain.ca jor...@mydomain.ca
> jor...@mydomain.cavmail
>
>
> *Dovecot starts without complaint with this config:*
>
>
> passdb {
> ar
> 250 HELP
>
> I think I should see a "SMTPUTF8" extension in this list. Is that correct?
>
smtpd doesn't support SMTPUTF8 yet, correct.
--
Gilles Chehade
https://www.poolp.org @poolpOrg
1.22
> +++ usr.sbin/ypldap/parse.y 19 Aug 2017 20:15:33 -
> @@ -171,7 +171,7 @@ port : PORT STRING
> {
> free($2);
> }
> | PORT NUMBER {
> - if ($2 <= 0 || $2 >= (int)USHRT_MAX) {
> + if ($2 <= 0 || $2 > (int)USHRT_MAX) {
> yyerror("invalid port: %lld", $2);
> YYERROR;
> }
>
--
Gilles Chehade
https://www.poolp.org @poolpOrg
but, usually, having the "from any for any"
rule in a config file is a sign that user failed to write ruleset and is
using this as a fallback. The earliest the rules match the envelope, the
better, as it indicates that the rule was written to match precisely.
Most rulesets should finish w
pt from any for domain [...]
accept from any for domain foobar.org [...]
with:
accept from any for any [...]
you will match all envelopes so you're essentially creating a catch-all.
virtual happens AFTER a rule has been matched so if you recipient is not
found the
On Wed, Aug 02, 2017 at 02:47:27PM +0200, Christian Gut wrote:
>
> > On 2.Aug. 2017, at 14:09, Gilles Chehade wrote:
> >
> > On Wed, Aug 02, 2017 at 01:47:09PM +0200, Kirill Miazine wrote:
> >> * Eric Faurot [2017-08-02 13:24]:
> >>> On Wed, Aug 02, 201
But it's quite a big change, and we can't
> > give an
> > ETA right now.
>
> what about defining a new name in DNS containing addresses of all
> smarthosts as a workaround for the OP for now?
>
This can work in some use-cases, this is exactly what a co-worker did to
work around the limitation.
--
Gilles Chehade
https://www.poolp.org @poolpOrg
ooks like and there
is no chance it can make it before 6.3
I have a big interest in this working so this is among my top prio work.
Gilles
--
Gilles Chehade
https://www.poolp.org @poolpOrg
less delivery method to being easier to manage as an admin.
That being said: no, no, no, * because I'm curious.
--
Gilles Chehade
https://www.poolp.org @poolpOrg
On Thu, May 25, 2017 at 04:20:37PM -0700, sharon s. wrote:
> At some point.. birthdays stop being happy. only speaking from
> experience.. :)
>
that reads like an early stage of depression ?
you may want to M-x doctor ;-)
--
Gilles Chehade
https://www.
;
> table aliases file:/etc/mail/aliases
> listen on lo0
> accept for local alias deliver to mbox
> accept from local for any relay
>
> Regards.
> --
> ~ajitabhpandey
>
> On Wed, May 10, 2017 at 5:25 PM, Gilles Chehade wrote:
>
>> On Wed, May 10, 2017
Obviously you don’t need to restart the daemon to pickup new aliases.
If you are using a plain file aliases map it can be reloaded atomically at
runtime using smtpctl.
If you are using a db file, it can be rebuilt using the newaliases / makemap
utility.
I can’t tell you which one to use because
think it is doing
--
Gilles Chehade
https://www.poolp.org @poolpOrg
t; Is it about my server cert or the remote one?
>
remote one, it means that when trying to verify the certificate that was
presented by the remote server, the verification failed
--
Gilles Chehade
https://www.poolp.org @poolpOrg
key "/etc/ssl/my-domain.com.key"
>
> table aliases file:/etc/mail/aliases
>
> accept from any for domain "my-domain.com" alias deliver to mbox
> accept for local alias deliver to mbox
> accept from local for any relay
>
... is not allowed to
more than
that to fix when they happen.
I can understand why someone would be reluctant to setup dmarc, but dkim
and spf are really a no brainer.
--
Gilles Chehade
https://www.poolp.org @poolpOrg
event=failed-command address=119.141.24.19 host=119.141.24.19 command="RCPT
> TO:" result="550 Invalid recipient"
> Nov 26 06:06:56 server smtpd[55880]: 3bcc430eee258cd7 smtp
> event=failed-command address=119.141.24.19 host=119.141.24.19 command="RCPT
> TO:" result="550 Invalid recipient"
> Nov 26 06:06:57 server smtpd[55880]: 3bcc430eee258cd7 smtp event=closed
> address=119.141.24.19 host=119.141.24.19 reason=disconnect
>
--
Gilles Chehade
https://www.poolp.org @poolpOrg
rypto
as I'm unable to reproduce with current smtpd and older libcrypto, and
able to reproduce with recent libcrypto.
I'm investigating this
--
Gilles Chehade
https://www.poolp.org @poolpOrg
mp;ctx, EVP_CTRL_GCM_SET_TAG, sizeof tag, tag);
@@ -304,7 +302,7 @@ crypto_decrypt_buffer(const char *in, si
len += olen;
/* finalize, write last chunk if any and perform authentication check */
- if (!EVP_DecryptFinal(&ctx, out + len, &olen))
+ if (!EVP_DecryptFinal_ex(&ctx, out + len, &olen))
goto end;
ret = len + olen;
--
Gilles Chehade
https://www.poolp.org @poolpOrg
;
> This is exactly why I hate DMARC. Some tiny bullshit change, that
> requires everyone in the world to catch up to it.
>
> Fuck you Google. Fuck you Yahoo. Clean up your own houses before you
> shit on ours.
>
so much hate :-p
--
Gilles
here are other alternatives with better hardware, services and policies
within the same price ranges. online.net to name one, hetzner.de to name
another one.
I'm only commenting because your mail didn't mention competitors and I'd
hate the idea that people went there by default, but I'm off this thread
now ;-)
--
Gilles Chehade
https://www.poolp.org @poolpOrg
sync with the kernel.
>
> Perhaps overloading kevent? EVFILT_IEEE80211?
>
:-|
--
Gilles Chehade
https://www.poolp.org @poolpOrg
the API.
If you need a stable setup, don't use filters before we announce that it
is a stable feature.
--
Gilles Chehade
https://www.poolp.org @poolpOrg
plied that it didn't accept your AUTH
which is basically your credentials
--
Gilles Chehade
https://www.poolp.org @poolpOrg
easy to predict the fate of that project.
>
aren't you guys even slightly tired of the bullshit ?
--
Gilles Chehade
https://www.poolp.org @poolpOrg
On Thu, May 19, 2016 at 10:57:57AM +0100, Kevin Chadwick wrote:
> Happy Birthday
>
>
>if (pledge("fun relax", NULL) == -1) {
> err(1, "pledge");
> }
>
KNF, dammit...
On Wed, May 18, 2016 at 06:08:52PM +0200, Joakim Frosteg??rd wrote:
>
> [...]
>
> @Gilles Chehade:
> If you're not being sarcastic, I would be happy to contribute to that
> project as well.
>
Didn't know I came off sarcastic naturally, achievement unloc
es, we would also need to make sure that the creator of
> the nice openbsd logo included is happy with us using it for
> the webpage. Apart from that, I would be happy to license
> my work under BSD, MIT or whatever you want.
>
I don't know if it's of any inter
ssages piped
> to spamassassin based on their size. The idea is:
> fewer/smaller mails are checked (fast),
> assuming that larger ones are rarely spam.
>
much better strategy, maybe it should also contain a max session count
to tempfail incoming mail if there are already enough pendi
aliases(5):
error:code message
A status code and message to return. The code must be 3 digits,
starting 4XX (TempFail) or 5XX (PermFail). The message must be
present and can be freely chosen.
note that only single-line messages a
r (b) not polished trying to try for 5.9
>
After reading the whole thread, I still don't understand your problem,
what you're trying to achieve and what information you're looking for.
> I would love to see someone reply telling me that I have bad eyes and a
> 5.9 is running and it's getting it correct.
>
I'd love to tell you that you have bad eyes, but not knowing what is
your problem nor what you're trying to achieve, I wouldn't know what
I should look for.
> Meanwhile I have to bring up a new server and Postfix seems to be the
> only candidate.
>
> At least I can build a mailserver that works on that.
>
Again, good choice, if you're comfortable with running Postfix and you
can't get OpenSMTPD running, I don't know why you're struggling :-)
> Sorry for the noise
>
np
--
Gilles Chehade
https://www.poolp.org @poolpOrg
On Thu, Mar 03, 2016 at 02:02:22PM -0600, Claus wrote:
> On 3/3/2016 3:14 AM, Gilles Chehade wrote:
> >On Thu, Mar 03, 2016 at 01:54:16AM +0100, ropers wrote:
> >Won't question your need however this + vs - thing has come up often and
> >I'd like to stress out th
On Thu, Mar 03, 2016 at 01:39:54PM -0700, Andy Bradford wrote:
> Thus said Gilles Chehade on Thu, 03 Mar 2016 10:14:48 +0100:
>
> > Who should get mail for foo-bar@ ?
>
> The MTA will decide who will get foo-bar@.
>
How ?
> > This just doesn't happen with
your issue is concerned, what you could do if you can't go
without - is to take an account anywhere that supports + then just setup
a simple mail forwarder at a vps host to rewrite - to +, this way you'll
be able to transition without being limited in hosting choices.
just my opinion ;)
--
Gilles Chehade
https://www.poolp.org @poolpOrg
to use after
> it wad configure. (:<
>
> Oh well.
>
> I will switch back to makemap then.
>
> I hope I understand your explication as this being still valid:
>
> table vusers db:/etc/mail/vusers.db
> table vdomains db:/etc/mail/vdomains.db
>
yes, this is still valid
--
Gilles Chehade
https://www.poolp.org @poolpOrg
hould use the 'recipient' keyword:
accept [...] for domain recipient [...]
Goal of aliases / virtual is to resolve a user-part/address into a
local delivery ... which makes no sense if your mail is not local.
--
Gilles Chehade
https://www.poolp.org @poolpOrg
many site
that people started telling me in private that a psycho had a grudge
against us.
At least be honest about your motives.
You told me once that you were a "security expert" and that we could
sit around a beer so you'd tell me what's wrong in our design. If it
is true that you want the project to succeed and if you really are a
security expert then the project would have surely made a better use
of a design analysis report than this mail.
--
Gilles Chehade
https://www.poolp.org @poolpOrg
unless you provide the full configuration file and some logs, this is
not enough to even begin to understand what happened.
on the top of my head: you're not matching the rule you think you are
--
Gilles Chehade
https://www.poolp.org @poolpOrg
On Fri, Jul 31, 2015 at 05:25:49PM -0300, listas...@dna.uba.ar wrote:
> Hello everybody
>
Hello,
> alias ducks='du -cks * |sort -rn |head -11'
>
I'm stealing this one ;-)
--
Gilles Chehade
https://www.poolp.org @poolpOrg
p us
and I think it's pretty clear to everyone that OpenBSD and all related
projects don't tend to hide issues under the carpet.
--
Gilles Chehade
https://www.poolp.org @poolpOrg
local [...] - no
accept for local [...] - no
reject from any for any - yes
Your ruleset doesn't allow for your own users to send mail to anything
but your local domains.
You need a rule that states:
accept from local for any relay
It needs to be
?
>
> [Owner is the same, there is no change.]
>
> Thank fro reply.
>
wheel is the new root.
https://en.wikipedia.org/wiki/Wheel_(Unix_term)
--
Gilles Chehade
https://www.poolp.org @poolpOrg
enerated by myself on a safe machine, so there's
very very low chances "millions of servers" are sharing the same ones ;)
The article suggests that 1024-bits DH isn't enough and that you need it
to be at least 2048-bits, however before we bump this default, we need a
fair amoun
*p = '\0';
+ }
if (strcasecmp(m1.user, m2.user))
return 0;
+ }
return 1;
}
--
Gilles Chehade
https://www.poolp.org @poolpOrg
backup
a full domain or specific untagged recipients.
This doesn't seem too hard to implement though, I'll see if I can get it
done this week.
--
Gilles Chehade
https://www.poolp.org @poolpOrg
its for those two in order to escape
> "452 4.5.3 Too many recipients: Too many messages sent ???
>
> //mxb
>
> > On 8 dec 2014, at 11:14, Gilles Chehade wrote:
> >
> > On Mon, Dec 08, 2014 at 11:00:50AM +0100, mxb wrote:
> >> Hello @list,
> >
of curiosity, why are you unhappy with the defaults ?
--
Gilles Chehade
https://www.poolp.org @poolpOrg
On Sat, Nov 29, 2014 at 02:13:46AM +0200, Liviu Daia wrote:
> On 28 November 2014, Gilles Chehade wrote:
> > On Thu, Nov 27, 2014 at 10:00:19PM -0500, Hugo Villeneuve wrote:
> [...]
> > > No, it is not proper behavior. As a store and forward system with
> > >
"smtpctl
> show queue" output, pick field 1,5,6 and then refeed the output of
> "smtpctl show message field1" to "sendmail -f field5 -- field6" for
> each line. Then delete the stuck ones. (Yeah test that first.)
>
> Good luck.
>
> Hopefully it will get fixed.
>
As I wrote in the other mail, I think the proper fix is to provide admin
the right tool.
--
Gilles Chehade
https://www.poolp.org @poolpOrg
hen an admin makes a config change,
(s)he can decide to reevalute or not some envelopes or not.
--
Gilles Chehade
https://www.poolp.org @poolpOrg
http://www.lmgtfy.com/?q=openbsd+git
2nd link.
--
Gilles Chehade
https://www.poolp.org @poolpOrg
ll be a nice test case for the filter framework."
>
>
There you go.
I know we don't work as fast as you'd like but things are moving forward and
they do at our pace, asking again and again and again is not going to make a
change in how fast we work.
--
Gilles Chehade
https://www.poolp.org @poolpOrg
be a bare userid,
> and putting a "+" in there causes newaliases(8) to fail. Not sure why that
> would be intended behaviour, but not sure it's a bug either.
>
There is currently no way of specifying the delimiter, it can only be +
someone opened a ticket on our tracker and after we discuss it it might
change
--
Gilles Chehade
https://www.poolp.org @poolpOrg
>
Sadly, French researchers have found _at least_ one way to DDoS
this transport and make it unusable with very few resources:
http://french.about.com/od/vocabulary/a/operationescargot.htm
--
Gilles Chehade
https://www.poolp.org @poolpOrg
> accept from any for any recipient relay via ...
>
> OS: OpenBSD 5.5 AMD64.
>
> Kind regards,
>
Hi,
support for "recipient" using db tables has been added after 5.5:
http://www.openbsd.org/cgi-bin/cvsweb/src/usr.sbin/smtpd/table_db.c.diff?r1=1.5;r2=1.
1 - 100 of 507 matches
Mail list logo
