headers
Phil Pennock | 24 May 07:32
Favicon

Exim 4.80 RC5 uploaded

I have uploaded Exim 4.80 RC5 to:
        ftp://ftp.exim.org/pub/exim/exim4/test/

There is an attempt to resolve the compiler issues on some versions of
Linux, a fix for OpenBSD's resolver library not having an expected
typedef, and fixes to work on older OpenSSL libraries which lack SNI
support.  Everything else changed is documentation and test suite, so
I'm going to permit myself a little optimism that this will be the last
RC and that the final release can be cut late in the weekend, to await
people on Monday morning.

As an experiment, this time there are three versions of each file;
bzip2, gzip and lzip.  If you like lzip and want it to stay, please let
us know.  The main distribution is only 8% smaller than bzip2 (28%
smaller than gzip), but perhaps this will really add up.  I'm inclined
to put out the 4.80 release with lzip and see what the reaction is.

I'm also thinking that 4.80 might be the last release with SHA1
checksums in the release mails and that afterwards we'll stick to just
SHA256.  If there's a reason this would cause you problems, please do
let me know; the decision isn't by any means fixed yet.

The ChangeLog/NewStuff/README.UPDATING can be reviewed at:

        http://git.exim.org/exim.git/blob/exim-4_80_RC5:/src/README.UPDATING
        http://git.exim.org/exim.git/blob/exim-4_80_RC5:/doc/doc-txt/NewStuff
        http://git.exim.org/exim.git/blob/exim-4_80_RC5:/doc/doc-txt/ChangeLog

The files are signed with the PGP key 0x3903637F, which has a uid
"Phil Pennock <pdp <at> exim.org>".  Please use your own discretion in
(Continue reading)

Permalink | Reply | 16 comments |
headers
Regid Ichira | 23 May 12:03
Picon
Favicon

Am I right that no_more has no effect within the included simple routers?

  Consider the following two routers:

1) nonlocal:
      driver = redirect
      domains = ! +local_domains
      allow_fail
      data = :fail: Mailing to remote domains not supported
      no_more

2) dnslookup_relay_to_domains:
      driver = dnslookup
      domains = ! +local_domains : +relay_to_domains
      transport = remote_smtp
      same_domain_copy_routing = yes
      no_more

  Am I right that, in both cases, if the router run, it can not decline?
Therefore, the no_more has no effect.  It can be omitted without any
consequences.
  I think spec.txt mentions a similar situation in a discussion about the manualroute.
(Note that the following spec.txt discussion is about two other routers, not those
I showed above.) 

    $ grep -A34 '* The manualroute router' spec.txt | tail -10

    There is no difference in behaviour between these two routers as they
    stand. However, they behave differently if no_more is added to them. In the
    first example, the router is skipped if the domain does not match the
    domains precondition; the following router is always tried. If the router
    runs, it always matches the domain and so can never decline. Therefore,
(Continue reading)

Permalink | Reply | 2 comments |
headers
Abel Ferreira | 23 May 01:22
Picon

Exim4 Satellite Mode for two smtp servers

  Hello,

Anyone knows how to set two diferent smtp server at exim4 configured as 
satellite mode?
For example
for *@domain1.com use smtp1.server.com with a especific login/password
for any other doamin use smtp2.server.com with another password

today i use mutt to send emails from my script and just set this at the 
exim4 conf:

dc_eximconfig_configtype='satellite'
dc_other_hostnames=''
dc_local_interfaces='127.0.0.1'
dc_readhost='mydomain.com'
dc_relay_domains=''
dc_minimaldns='false'
dc_relay_nets=''
dc_smarthost='my.smtp.server::25'
CFILEMODE='644'
dc_use_split_config='false'
dc_hide_mailname='true'
dc_mailname_in_oh='true'
dc_localdelivery='mail_spool'

and have the login informations stored at passwd.client file.

Abel Ferreira

--

--
(Continue reading)

Permalink | Reply | 1 comment |
headers
Ron White | 22 May 18:42
Picon

hash{20}{62}

Good afternoon,

I came across this:

warn set acl_m4 = ${hash{20}{62}{$sender_address$recipients
$h_message-id:}}

...and realised I'd never seen it before.

My Googling to find out what the figures symbolise is getting me
nowhere, has anyone got a link to an explanation?

Kind regards
Ron

--

-- 
## List details at https://lists.exim.org/mailman/listinfo/exim-users
## Exim details at http://www.exim.org/
## Please use the Wiki with this list - http://wiki.exim.org/
Permalink | Reply | 2 comments |
headers
fmendez73 | 21 May 22:44
Favicon

SPF, DKIM and DomainKeys activation for signout

 Hello everyone.
 I've just got into this following issue with versions 4.69 and 4.77.
 How can I activate SPF, DKIM and DomainKeys (if possible the three at
the same time) in exim and to signout each sent mail and check each
incoming mail.
 Thanks.
--

-- 
## List details at https://lists.exim.org/mailman/listinfo/exim-users
## Exim details at http://www.exim.org/
## Please use the Wiki with this list - http://wiki.exim.org/
Permalink | Reply | 1 comment |
headers
Phil Pennock | 21 May 07:00
Favicon

Exim 4.80 RC4 uploaded

I have uploaded Exim 4.80 RC4 to:
        ftp://ftp.exim.org/pub/exim/exim4/test/

There was no RC3; there are some changes since RC2 worthy of note.

There is a new option "tls_dh_max_bits" which affects TLS; with OpenSSL,
it may cause a "tls_dhparams" file to be ignored.  With GnuTLS, the
number of bits GnuTLS recommends be used for Diffie-Hellman generation
will be clamped to at most this value.  The default "tls_dh_max_bits" is
the current maximum allowed by the NSS security library used by Mozilla
products such as Thunderbird.  This resolves a GnuTLS vs NSS
interoperability problem.

Exim will now check the configured value of "tls_require_ciphers" at
startup; what was an error that would cause Exim to fail STARTTLS will
instead cause Exim to fail to start.  This exposes latent
misconfiguration and makes it clearer that something is going wrong.
This also avoids the risk of crashes while talking to a remote server,
if there are library linkage problems, reducing the chances of anything
being exploitable.

The ChangeLog/NewStuff/README.UPDATING can be reviewed at:

        http://git.exim.org/exim.git/blob/exim-4_80_RC4:/doc/doc-txt/ChangeLog
        http://git.exim.org/exim.git/blob/exim-4_80_RC4:/doc/doc-txt/NewStuff
        http://git.exim.org/exim.git/blob/exim-4_80_RC4:/src/README.UPDATING

The files are signed with the PGP key 0x3903637F, which has a uid
"Phil Pennock <pdp <at> exim.org>".  Please use your own discretion in
assessing what trust paths you might have to this uid.
(Continue reading)

Permalink | Reply | 17 comments |
headers
eximmail | 20 May 03:34

Weird Characters

I have started seeing these weird characters in a couple of emails. On 
this list anything W B Hacker sends I can't read his mail at all! I have 
to go to the board to read them. This just started in the last week or 
so and I am at a loss as to why it is happening at all. This also 
happened on an online purchase and every email they sent me was the same 
weird characters.

can anyone explain why this is happening?

��z{i���{

�1��1��=��z\+�׈���i���v'^j�,��^r�aj�Z��Z�Z'�ȧq��z{Z��ڲ�b��Z��B�{^�֧j

\���^�����v�����v�ꮊ����+�W�jg�z�+��b�}t�D�D�V��,��

�&i�kz�"�)��z�0�+^�+-��@`D���`�z�)jjk����X��+8��:��(��9�MV*�'�)Z�t��׏w��z�ޭ�lr(��ܢe�

2��ԭj۬P)!��5�Ɍ�()5�Ɍ�A�ɭ����ɽє�(�$���ٔ�����܁ݕ�ɐ������()$������Ёѡ�Ё��Ё��́�����ͥ���������х�����̀��ѥ�ձ�ѕ������((촤

((��ݽձ���������͵��Ё9L�͕�ٕȁ���ͽ���ͽ��(�Ѽ��ձ���Ё�����
�ͥ����䁱

���������ȁ���ɽ�Ʌ���������������ѡ�Ё�����(�

9L�������́��͕���(�(�!�ɔ�́����ͥ�����ᅵ����Q��ɔ��ɔ�͕�ٕ�́��Ёѡ�ɔ�ѡ�Ёɕ��ɸ(�չ�� 
䁍���́���%@����ɕ�̸͕�
�Ёݡ�Ё����Ё����չ��䁍

������ȁ������(���e�ԁݽձ����ٔ�Ѽ�������%@����������ѡ�����Ё����ѡ����͔�ѡ��%@(�Ѽ���Ё����չ��
(Continue reading)

Permalink | Reply | 6 comments |
headers
Brian Spraker | 19 May 23:33
Picon
Favicon

Log Spamassassin Rejects

Hi all -

Another question for the group.

I've increasingly been rejecting good messages and am trying to find out why.  However, when looking at the
rejectlog, it mentions why it was rejected (spam points) - but it doesn't show me how the e-mail qualified
with that many points.

Is there a way in Exim to set it so that it will log all of the rules that matched the e-mail into the rejectlog -
indicating how the message got to that point level?

Trying to look up information from the spamassassin website - and they mention a logging module to add to the
local.cf file - but it doesn't seem to do anything different.

Thank you!

Brian S.

--

-- 
## List details at https://lists.exim.org/mailman/listinfo/exim-users
## Exim details at http://www.exim.org/
## Please use the Wiki with this list - http://wiki.exim.org/
Permalink | Reply | 4 comments |
headers
W B Hacker | 19 May 01:51

Re: Tricky DNS servers [OT]

Phil Pennock wrote:
> On 2012-05-18 at 22:45 +0000, W B Hacker wrote:
>> Hi Marc,
>>
>> Marc Perkel wrote:
>>> I have a few weird ideas
>>
>> I suspect that part has long-since been taken as 'stipulated'....
>
> Although not really conducive to civil discourse, I must thank you for
> the amusement.  I needed that laugh.  :)
>
> Strange.  Every time I see one of your posts now, I think of
> accept_8bitmime being turned on by default and think of the alcohol
> cupboard.  Pavlovian, almost.  The whiskey didn't tip the balance in the
> decision but is still appreciated. :)
>
> -Phil
>
>

LOL!

Marc and I BOTH have 'weird ideas'. His are just more often published, 
while mine are quietly JFDI'.

As to alcohol.....

# telnet conducive.org smtp
Trying 203.194.153.81...
(Continue reading)

Permalink | Reply | 0 comments |
headers
Marc Perkel | 18 May 23:59

Tricky DNS servers [OT]

I have a few weird ideas and would need a smart DNS server of some sort 
to pull it off. Basically looking for a programmable backend that might 
do DNS lookups itself.

Here's a possible example. There are servers out there that return 
country codes of IP addresses. But what about a country code for a host 
name? You would have to do an IP lookup on the host and then use the IP 
to get a country code.

So - is there source code for something like this or a DNS server with a 
scripting language?

--

-- 
## List details at https://lists.exim.org/mailman/listinfo/exim-users
## Exim details at http://www.exim.org/
## Please use the Wiki with this list - http://wiki.exim.org/
Permalink | Reply | 8 comments |
headers
Phil Pennock | 18 May 05:55
Favicon

Exim 4.80 RC1 uploaded

I have uploaded Exim 4.80 RC1 to:
	ftp://ftp.exim.org/pub/exim/exim4/test/

This release contains a number of backwards-incompatible changes, for
both OpenSSL and GnuTLS, in the name of security (about the only reason
we normally accept for being backwards incompatible).  Please read over
README.UPDATING carefully!  We have jumped from 4.77 to 4.80 for this
reason.

This is the first release of Exim to support OpenSSL 1.0.1+.  This
release of Exim abandons maintaining hard-coded lists of ciphers for
GnuTLS in favour of honouring GnuTLS library policy, so MD5-based
certificates will no longer work and are not supported.  The GnuTLS
support has been re-written and there is the possibility of bugs.

When building, please do not just recycle your previous Local/Makefile;
there are a number of new possibilities in this release which may make
your life easier, as support for using pkg-config to query CFLAGS/LIBS
for various pieces of software has been added.

Please join me in welcoming Jeremy Harris and Todd Lyons to the Exim
Maintainers team.

The ChangeLog/NewStuff/README.UPDATING can be reviewed at:

	http://git.exim.org/exim.git/blob/exim-4_80_RC1:/doc/doc-txt/ChangeLog
	http://git.exim.org/exim.git/blob/exim-4_80_RC1:/doc/doc-txt/NewStuff
	http://git.exim.org/exim.git/blob/exim-4_80_RC1:/src/README.UPDATING

The files are signed with the PGP key 0x3903637F, which has a uid
(Continue reading)

Permalink | Reply | 55 comments |

Gmane