Are you the publisher? Claim or contact us about this channel


Embed this content in your HTML

Search

Report adult content:

click to rate:

Account: (login)

More Channels


Showcase


Channel Catalog


Channel Description:

The most recent posts in iRedMail.

older | 1 | .... | 1318 | 1319 | (Page 1320) | 1321 | 1322 | .... | 1394 | newer

    0 0
  • 10/07/18--14:36: Re: Spamming issue
  • Dear all,

    I just improved iRedAPD to send notification email when someone exceeded the quota, it will be available in next release.


    0 0

    It occurred to me that the 0.9.8 distribution doesn't include a fail2ban jail for hacking attempts at the iredmail admin/management page. If anyone wants to add this you can set up a jail to monitor /var/log/uwsgi/app/iredadmin.log (Debian version) and use the filter:

    failregex = ^.+ \[.*\] <HOST> \(.*\) \{.*\} \[.*\] GET \/iredadmin\/login\?msg=INVALID_CREDENTIALS.*$

    This will ban after x bad password attempts at the web admin page. This might be good to add to the next release (unless it is already in there? I didn't see it.)

    Thanks for a great product!


    0 0

    Additionally, I now have zombie mlmmj processes running for some reason:

    [08:09:44 root@server ~]# ps aux --sort start_time|grep -i mlmmj
    mlmmj     1196  0.0  0.0 230904  3928 ?        Ss   Jun06   5:00 /usr/sbin/uwsgi --ini /opt/mlmmjadmin/rc_scripts/uwsgi/rhel.ini --pidfile /var/run/mlmmjadmin/mlmmjadmin.pid
    mlmmj     1275  0.0  0.0 233896  6020 ?        S    Jun06   0:00 /usr/sbin/uwsgi --ini /opt/mlmmjadmin/rc_scripts/uwsgi/rhel.ini --pidfile /var/run/mlmmjadmin/mlmmjadmin.pid
    mlmmj     1277  0.0  0.0 233896  5496 ?        S    Jun06   0:00 /usr/sbin/uwsgi --ini /opt/mlmmjadmin/rc_scripts/uwsgi/rhel.ini --pidfile /var/run/mlmmjadmin/mlmmjadmin.pid
    mlmmj     1278  0.0  0.0 233896  6056 ?        S    Jun06   0:00 /usr/sbin/uwsgi --ini /opt/mlmmjadmin/rc_scripts/uwsgi/rhel.ini --pidfile /var/run/mlmmjadmin/mlmmjadmin.pid
    mlmmj     1279  0.0  0.0 233896  5276 ?        S    Jun06   0:00 /usr/sbin/uwsgi --ini /opt/mlmmjadmin/rc_scripts/uwsgi/rhel.ini --pidfile /var/run/mlmmjadmin/mlmmjadmin.pid
    mlmmj     1280  0.0  0.0 233896  5100 ?        S    Jun06   0:00 /usr/sbin/uwsgi --ini /opt/mlmmjadmin/rc_scripts/uwsgi/rhel.ini --pidfile /var/run/mlmmjadmin/mlmmjadmin.pid
    mlmmj     7989  0.0  0.0      0     0 ?        Z    Oct07   0:00 [mlmmj-send] <defunct>
    mlmmj     7990  0.0  0.0      0     0 ?        Z    Oct07   0:00 [mlmmj-send] <defunct>
    mlmmj     7991  0.0  0.0      0     0 ?        Z    Oct07   0:00 [mlmmj-send] <defunct>
    mlmmj     7992  0.0  0.0      0     0 ?        Z    Oct07   0:00 [mlmmj-send] <defunct>
    mlmmj    23736  0.0  0.0      0     0 ?        Z    Oct07   0:00 [mlmmj-send] <defunct>
    mlmmj    24101  0.0  0.0      0     0 ?        Z    Oct07   0:00 [mlmmj-send] <defunct>
    root     25641  0.0  0.0 112704   996 pts/0    S+   08:11   0:00 grep --color=auto -i mlmmj
    [08:11:34 root@server ~]#

    This hasn't been an issue until now, even though there is another mlmmj list running on this server. Is this a known issue?


    Craig


    0 0

    Some mailing list service on Internet ( like MailChimp) have not this problem, when a user send a reply he reply to sender not to ML.
    If is not a bug, i think for a security/privacy reason i do not use this function


    0 0

    ==== REQUIRED BASIC INFO OF YOUR IREDMAIL SERVER ====
    - iRedMail version (check /etc/iredmail-release): 2.9
    - Linux/BSD distribution name and version: Ubuntu 16
    - Store mail accounts in which backend (LDAP/MySQL/PGSQL): Mysql
    - Web server (Apache or Nginx): Apache
    - Manage mail accounts with iRedAdmin-Pro? Yes
    - [IMPORTANT] Related original log or error message is required if you're experiencing an issue.
    ====

    I get an "internal server error" on the browser when trying to access domains after upgrading to the latest iRedMail and iRedAdmin.

    Below are the error logs from apache

    [Mon Oct 08 14:26:35.505409 2018] [wsgi:error] [pid 1434] [remote 31.166.107.107:38644] Traceback (most recent call last):
    [Mon Oct 08 14:26:35.505454 2018] [wsgi:error] [pid 1434] [remote 31.166.107.107:38644]   File "/usr/lib/python2.7/dist-packages/web/application.py", line 239, in process
    [Mon Oct 08 14:26:35.505462 2018] [wsgi:error] [pid 1434] [remote 31.166.107.107:38644]     return self.handle()
    [Mon Oct 08 14:26:35.505468 2018] [wsgi:error] [pid 1434] [remote 31.166.107.107:38644]   File "/usr/lib/python2.7/dist-packages/web/application.py", line 230, in handle
    [Mon Oct 08 14:26:35.505473 2018] [wsgi:error] [pid 1434] [remote 31.166.107.107:38644]     return self._delegate(fn, self.fvars, args)
    [Mon Oct 08 14:26:35.505479 2018] [wsgi:error] [pid 1434] [remote 31.166.107.107:38644]   File "/usr/lib/python2.7/dist-packages/web/application.py", line 420, in _delegate
    [Mon Oct 08 14:26:35.505485 2018] [wsgi:error] [pid 1434] [remote 31.166.107.107:38644]     return handle_class(cls)
    [Mon Oct 08 14:26:35.505490 2018] [wsgi:error] [pid 1434] [remote 31.166.107.107:38644]   File "/usr/lib/python2.7/dist-packages/web/application.py", line 396, in handle_class
    [Mon Oct 08 14:26:35.505496 2018] [wsgi:error] [pid 1434] [remote 31.166.107.107:38644]     return tocall(*args)
    [Mon Oct 08 14:26:35.505502 2018] [wsgi:error] [pid 1434] [remote 31.166.107.107:38644]   File "/opt/www/iredadmin/controllers/sql/user.py", line 322, in GET
    [Mon Oct 08 14:26:35.505507 2018] [wsgi:error] [pid 1434] [remote 31.166.107.107:38644]     _qr = mlmmj.get_subscribed_lists(mail=mail, query_all_lists=False)
    [Mon Oct 08 14:26:35.505513 2018] [wsgi:error] [pid 1434] [remote 31.166.107.107:38644]   File "/opt/www/iredadmin/libs/mlmmj/__init__.py", line 327, in get_subscribed_lists
    [Mon Oct 08 14:26:35.505518 2018] [wsgi:error] [pid 1434] [remote 31.166.107.107:38644]     r = requests.get(url, params=params, headers=api_headers, verify=_verify_ssl)
    [Mon Oct 08 14:26:35.505524 2018] [wsgi:error] [pid 1434] [remote 31.166.107.107:38644]   File "/usr/lib/python2.7/dist-packages/requests/api.py", line 67, in get
    [Mon Oct 08 14:26:35.505529 2018] [wsgi:error] [pid 1434] [remote 31.166.107.107:38644]     return request('get', url, params=params, **kwargs)
    [Mon Oct 08 14:26:35.505535 2018] [wsgi:error] [pid 1434] [remote 31.166.107.107:38644]   File "/usr/lib/python2.7/dist-packages/requests/api.py", line 53, in request
    [Mon Oct 08 14:26:35.505541 2018] [wsgi:error] [pid 1434] [remote 31.166.107.107:38644]     return session.request(method=method, url=url, **kwargs)
    [Mon Oct 08 14:26:35.505546 2018] [wsgi:error] [pid 1434] [remote 31.166.107.107:38644]   File "/usr/lib/python2.7/dist-packages/requests/sessions.py", line 468, in request
    [Mon Oct 08 14:26:35.505552 2018] [wsgi:error] [pid 1434] [remote 31.166.107.107:38644]     resp = self.send(prep, **send_kwargs)
    [Mon Oct 08 14:26:35.505557 2018] [wsgi:error] [pid 1434] [remote 31.166.107.107:38644]   File "/usr/lib/python2.7/dist-packages/requests/sessions.py", line 576, in send
    [Mon Oct 08 14:26:35.505563 2018] [wsgi:error] [pid 1434] [remote 31.166.107.107:38644]     r = adapter.send(request, **kwargs)
    [Mon Oct 08 14:26:35.505568 2018] [wsgi:error] [pid 1434] [remote 31.166.107.107:38644]   File "/usr/lib/python2.7/dist-packages/requests/adapters.py", line 437, in send
    [Mon Oct 08 14:26:35.505592 2018] [wsgi:error] [pid 1434] [remote 31.166.107.107:38644]     raise ConnectionError(e, request=request)
    [Mon Oct 08 14:26:35.505599 2018] [wsgi:error] [pid 1434] [remote 31.166.107.107:38644] ConnectionError: HTTPConnectionPool(host='127.0.0.1', port=7790): Max retries exceeded with url: /api/subscriber/abdullah@77-m.com/subscribed?query_all_lists=no&email_only=no (Caused by NewConnectionError('<reque$
    [Mon Oct 08 14:26:35.505614 2018] [wsgi:error] [pid 1434] [remote 31.166.107.107:38644]



    Please advise.


    0 0

    Hello! <a href=http://onlinepharmacycanadaus.com/>canadian online pharmacy</a> great website http://onlinepharmacycanadaus.com


    0 0
  • 10/08/18--07:20: Re: Blocking Fake Emails
  • Hello again.
    Blocking with "smtpd_helo_restrictions" will NOT solve this specific issue. Its just checks how the sending mail server identifies himself, not the actual sender individual or as the problem we have, the fake sender.

    Sequence: 1) helo_hostname (= sending mail server), 2) mail_from (=Mail Envelope sender name) -> 3) From: (=Mail Header sender name)
    The first two can filtered out with GreyList and various BlackLists, but the FROM: in the mail header will pass the postfix check without actions. You need  to use SpamAssassin rules to cope with  that (I guess, what I'm currently investigating)

    And another note: one has to be very carefull when modifying the smtpd_helo_restrictions. The lines are evaluated in order top to down. So in Your case, you first reject "reject_non_fqdn_helo_hostname" and then "permit_sasl_authenticated". I would perhaps do it the other way around, to allow what ever hostname as long as they can log in using SASL, and then reject. But that's really up to Your environment to figure out what fits the best.
    Regards, I


    0 0
  • 10/08/18--07:56: Re: Blocking Fake Emails
  • If you have set reject_sender_login_mismatch plugin activated then it will not allow such emails.

    https://docs.iredmail.org/manage.iredapd.html

    And another note: one has to be very carefull when modifying the smtpd_helo_restrictions. The lines are evaluated in order top to down. So in Your case, you first reject "reject_non_fqdn_helo_hostname" and then "permit_sasl_authenticated". I would perhaps do it the other way around, to allow what ever hostname as long as they can log in using SASL, and then reject. But that's really up to Your environment to figure out what fits the best.
    Regards,

    Yes I know the order and how it works, but if you want to stop majority of mismatching hosts that is the first point which will stop them. However in my case it is working flawlessly.


    0 0

    ==== REQUIRED BASIC INFO OF YOUR IREDMAIL SERVER ====
    - iRedMail version (check /etc/iredmail-release): 0.9.8
    - Linux/BSD distribution name and version:  Debian 9
    - Store mail accounts in which backend (LDAP/MySQL/PGSQL):  mysql
    - Web server (Apache or Nginx): apache
    - Manage mail accounts with iRedAdmin-Pro? yes, 2.9.0 (MySQL)
    - [IMPORTANT] Related original log or error message is required if you're experiencing an issue.
    ====

    I manage 2 domains: iccs.gr, its-hellas.gr
    Both domains have several mail aliases.
    I have a user: panagiotis@iccs.gr who is member in the mail alias: bod@its-hellas.gr

    When i am in the profile page of the user panagiotis@iccs.gr i can only see the mail aliases of iccs.gr (and not the mail aliases of its-hellas.gr)

    The problem is the following:
    Whenever, i press save changes in the profile page of panagiotis@iccs.gr, he is removed from the email aliases of its-hellas.gr

    So, it is either a bug that not all mail aliases appear under the user's profile page, or it is a bug that the user is removed from the other domain mail aliases.

    any help appreciated!


    0 0

    An update: 30 days ago I filed bug 231250 against amavisd-new in the FreeBSD bugzilla database, and contacted the port maintainer about a week before that. There's been no response to either post.

    Since then there has been a long thread on the amavisd-new mailing list concluding that further development of amavisd-new is dead.

    Postfix guru Ralf Hildebrandt noted that his organization, a German telecommunications company, recently migrated away from amavisd-new and now uses rspamd instead:

    https://github.com/rspamd/rspamd

    I have no experience with rspamd. What I can say at this point is that:

    (1) the root cause of the bad tags is in the way amavisd-new handles perl data types such as perl doubles;

    (2) the likelihood of a fix in amavisd-new is approximately 0.00 percent; and

    (3) it's probably time to start looking at alternatives to amavisd-new.

    Thanks!


    0 0

    ==== REQUIRED BASIC INFO OF YOUR IREDMAIL SERVER ====
    - iRedMail version (check /etc/iredmail-release):      0.9.8
    - Linux/BSD distribution name and version: CentOS Linux release 7.5.1804 (Core)
    - Store mail accounts in which backend (LDAP/MySQL/PGSQL):  LDAP
    - Web server (Apache or Nginx): Nginx
    - Manage mail accounts with iRedAdmin-Pro? - Yes
    - [IMPORTANT] Related original log or error message is required if you're experiencing an issue.
    ====

    Is there any way where we can re queue all emails that are in /var/vmail/mlmmj/maillistname/archive directory?

    The main thing is that all emails which are in archive folders are not delivered to end userlists and I am wondering what happened and why it was not sent. If we can requeue all emails and send again to respective lists / users then it will be huge help.


    0 0

    ketan.aagja wrote:

    Have you followed official documents for DKIM?

    Setup DNS records for your iRedMail server (A, PTR, MX, SPF, DKIM)
    https://docs.iredmail.org/setup.dns.htm … omain-name

    Sign DKIM signature on outgoing emails for new mail domain
    https://docs.iredmail.org/sign.dkim.sig … omain.html

    Thank you for reminding me of those documents. I have reviewed them and created a new DKIM key for the new domain. I appreciate your help.


    0 0

    ==== REQUIRED BASIC INFO OF YOUR IREDMAIL SERVER ====
    - iRedMail version (check /etc/iredmail-release): 0.9.8
    - Linux/BSD distribution name and version: Ubuntu 16.04
    - Store mail accounts in which backend (LDAP/MySQL/PGSQL): LDAP
    - Web server (Apache or Nginx): Apache
    - Manage mail accounts with iRedAdmin-Pro? Yes
    - [IMPORTANT] Related original log or error message is required if you're experiencing an issue.
    ====

    Hi,

    a client of mine is havin a very strange problem, where all emails of some users are marked as read directly when they recieve them. Out of 100 users this applies to ~5.
    We tried to sort out whats creating this error, but I cannot find it. We looked if it was the fault of Outlook for Windows or Android, but it seems thats not causing the error. If Outlook is closed on Windows and uninstalled on Android, all the new mails are still marked as read, if you login to SOGo after some hours.

    Right now I don't know what to do.

    I dont know if it's related, but the Apache error log is full of this:

    [Tue Oct 09 09:55:46.459438 2018] [proxy_http:error] [pid 33924] (70007)The timeout specified has expired: [client 192.168.X.X:63310] AH01102: error reading status line from remote server 127.0.0.1:20000
    [Tue Oct 09 09:55:46.459477 2018] [proxy:error] [pid 33924] [client 192.168.X.X:63310] AH00898: Error reading from remote server returned by /Microsoft-Server-ActiveSync

    0 0

    Hello command rejected still a problem I have tried all the options

    1. add  'check_helo_access' right after 'permit_sasl_authenticated' in main.cf
    2.add /^esa1\.diamondtrust\.co\.tz$/OK in /etc/postfix/helo_access.pcre
    3.Restart postfix

    still the same problem.


    0 0

    lug wrote:

    I dont know if it's related, but the Apache error log is full of this:

    Maybe related, but i'm not sure. You should try to increase the timeout in Apache config file for SOGo.

    Also, is there any (global or personal) mail filter rule (sieve) on server which marks the email as read automatically?


    0 0

    - try to run '/usr/bin/mlmmj-receive' command with proper arguments to re-deliver this email.
    - mlmmj logs to Postfix log file, is there any related error?


    0 0

    rspamd is on my radar. If no more development/maintenance happened to Amavisd-new, we may switch to rspamd in 2019.


    0 0

    Did you migrate mail accounts to iRedMail? It's likely you didn't generate required SQL records in different SQL tables.

    Check it with sql commands like below, replace '<mail>' by the real email address which disappeared after saving.

    USE vmail;
    SELECT address,forwarding FROM forwardings WHERE address='<mail>';

    0 0

    Hi,

    the mail server was setup from the beginning with iredmail. There was no migration at any point.
    The results of the command:
    MariaDB [vmail]> SELECT address,forwarding FROM forwardings WHERE address='panagiotis@iccs.gr';
    +-----------------------------+-----------------------------+
    | address                     | forwarding                  |
    +-----------------------------+-----------------------------+
    | panagiotis@iccs.gr | panagiotis@iccs.gr |
    +-----------------------------+-----------------------------+
    1 row in set (0.00 sec)

    Was there supposed to be more?


    0 0

    Ok, i've double the value now in /etc/apache2/conf-enabled/SOGo.conf

    ProxyPass /Microsoft-Server-ActiveSync \
     [url]http://127.0.0.1:20000/SOGo/Microsoft-Server-ActiveSync[/url] \
     retry=60 connectiontimeout=10 timeout=720
    # retry=60 connectiontimeout=5 timeout=360

    I've never set such an option, I didn't even know it existed.

    root@mail:/etc/dovecot# grep -r 'Seen' *
    conf.d/20-pop3.conf:# makes RSET command clear all \Seen flags from messages.
    dovecot.conf:#    # INDEX=: Per-user \Seen flag

    So, I guess no.

    Edit
    Doubling the default timeout doesn't work..


older | 1 | .... | 1318 | 1319 | (Page 1320) | 1321 | 1322 | .... | 1394 | newer