-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512
FWIW, in the original advisory at [1], section 4, there is a snippet
of C you can use to test whether you are vulnerable. If you are, you
should probably upgrade asap. The fact that no exploit for a specific
program has been found is no final proof t
On 05.08.2014 20:08, Noel Jones wrote:
> On 8/5/2014 12:53 PM, M. Rodrigo Monteiro wrote:
>> 2014-08-05 14:47 GMT-03:00 Noel Jones :
>>> On 8/5/2014 12:23 PM, M. Rodrigo Monteiro wrote:
Hi!
This postfix act as a Relay.
From all servers, but one, the message size is 20MB. For the
On 22.07.2014 08:04, Chris wrote:
> Hello,
>
> to test my servers (that is:
> I've got one domain at namecheap. Using their SMTP to send mails but my
> own VPS for the apache hosting and I run an own Postfix SMTP on my
> domain3.de as well) I wanted to send one email from domain2.com to
> domain3.
On 22.07.2014 08:17, Nicolás wrote:
> Having this configuration, anyone using my mail server as the relayhost
> is able to send mails to the domains that I handle (not outside), even
> without SASL. I guess that behavior is determined by
> 'defer_unauth_destination', however, my aim is to specifica
On 24.05.2014 14:42, lst_ho...@kwsoft.de wrote:
>
> Zitat von lst_ho...@kwsoft.de:
>
>> Not sure if someone already noticed (in German):
>>
>> http://www.heise.de/newsticker/meldung/Bund-sichert-ueberraschend-Mailtransport-per-DANE-ab-2196565.html
>>
>>
>> Looks like the german government is at l
On 20.05.2014 15:11, Colin Fowler wrote:
> Thank you Viktor for your reply!
>
> On 20-05-2014 13:44, Viktor Dukhovni wrote:
>> On Tue, May 20, 2014 at 02:25:49PM +0200, Thomas Leuxner wrote:
>>
>>> In any case you miserably failed to elaborate how to mitigate
>>> the issue other than stating 'reve
On 09.05.2014 18:44, Andreas Schulze wrote:
> Viktor Dukhovni:
>> It may be simpler to upgrade your system.
> yes, upgrade would be best but sometimes,
> older crypto is not as painfull as it should be
Although older crypto saves you from heartbleeds. I think there are some
good reasons (not that
On 25.04.2014 17:00, Viktor Dukhovni wrote:
> If anyone else on this list has a DNSSEC signed domain and adds MX
> host TLSA records, please feel free to drop me a note. I'll connect
> to your domain from my home network a few times a year to test DANE
> interoperability, you will not be exposed t
Hi list,
I’m sorry that this question has been discussed before. I am aware of
the following posts and threads:
http://www.irbs.net/internet/postfix/0609/0648.html
(Backscatter from Delivered-To headers)
http://www.irbs.net/internet/postfix/0609/0487.html
(Preventing backscatter with
