Bernd Wurst | 19 Nov 16:36 2014

Violation to RFC1035 (IP in MX)

Hi.

Courier rejects mail from domains that have MX records set up with plain
IP addresses. This is a valid check according to the RFC and I know
about that.

But I recently found out that the freaky "is my MX set up right" tool at
MX Toolbox (and no other tool I know) complains about IP address in MX
records. They state that this is completely ok. Not even a warning:
http://mxtoolbox.com/SuperTool.aspx?action=mx%3aisoloc.com&run=toolpage

That lead my to the question: WHY is it so bad to have IP addresses in
MX? Is whatever reason still valid in 2014? I did not find any ressource
describing a valid technical reason for this behaviour. Does anyone have
a good and understandable reason why this is such a bad idea?

It seems that today, most other major mail server software is happy with
domains that courier rejects.

I would appreciate if courier could be changed at least in this way:

If there is a valid MX record (maybe besides any invalid) with equal or
lower priority, courier should accept mail and route messages to the
valid MX and ignore the invalid. It should not matter if there is also
any bad record.

My current example is mail from the Domain "isoloc.com":
isoloc.com.		600	IN	MX	10 217.160.79.52.
isoloc.com.		600	IN	MX	10 smtp.isoloc.com.

(Continue reading)

NTPT | 14 Nov 08:42 2014
Picon

virtual email with fallback to classical maildir

Hi all.

I have a courier imapd and pop3d servers deployed  with classical maildir setup  so  mails are stored in /home/user/.maildir path.
Now I need to add some virtual users too witch mails are stored in /some/path/example.com/user/(.maildir)

I plan to have a virtual users in postgresql database. but what i need is some sort of fallback mechanizm so when user is NOT in virtual users database, (ie no virtual account)  courier imapd and pop3d treat this user as system users that store mail not in /some/path/example.com/user/ but  in  /home/user/.maildir.



thanx for help
------------------------------------------------------------------------------
Comprehensive Server Monitoring with Site24x7.
Monitor 10 servers for $9/Month.
Get alerted through email, SMS, voice calls or mobile push notifications.
Take corrective actions from your mobile device.
http://pubads.g.doubleclick.net/gampad/clk?id=154624111&iu=/4140/ostg.clktrk
_______________________________________________
courier-users mailing list
courier-users <at> lists.sourceforge.net
Unsubscribe: https://lists.sourceforge.net/lists/listinfo/courier-users
Stephan Knorr | 12 Nov 12:18 2014
Picon

Deny relay

Hi.

I am trying to deny authenticated  esmtp (on port 587) for local users who
have
configured their email-client with a foreign from-adress (not in our local
domain).

Is it possible and how? 
Maybe a really stupid question but ...

Any help appreciated.

Stephan

-------------------------------
Stephan Knorr  +41 44 265 64 48
IT Responsible
Kantonsschule MNG Raemibuehl
Raemistrasse 58
CH-8001 Zuerich, Switzerland
http://www.mng.ch
-------------------------------

------------------------------------------------------------------------------
Comprehensive Server Monitoring with Site24x7.
Monitor 10 servers for $9/Month.
Get alerted through email, SMS, voice calls or mobile push notifications.
Take corrective actions from your mobile device.
http://pubads.g.doubleclick.net/gampad/clk?id=154624111&iu=/4140/ostg.clktrk
_______________________________________________
courier-users mailing list
courier-users <at> lists.sourceforge.net
Unsubscribe: https://lists.sourceforge.net/lists/listinfo/courier-users

mariobetim | 11 Nov 13:33 2014
Picon

mailq - spool don't flush


Hi,
 
Is a strange situation in spool queue, mailq.
 
This occurs only with an email account between 1500 accounts.
 
All email's are delivered though the message does not get out of the spool.
 
I have a message in the queue since October 31.
 
Even using cancelmsg the message never leaves the spool.
 
 
Log message "looping"
 

 
Nov 11 10:17:54 mail courierd: completed,id=0000000000001955.00000000545405FE.00002BC1
Nov 11 10:17:54 mail courierd: started,id=0000000000001955.00000000545405FE.00002BC1,from=<>,module=dsn,host=,addr=<secretaria <at> servicosocial.uftm.edu.br>
Nov 11 10:17:55 mail courierd: completed,id=0000000000001955.00000000545405FE.00002BC1
Nov 11 10:23:01 mail courierd: completed,id=0000000000001955.00000000545405FE.00002BC1
Nov 11 10:23:01 mail courierd: started,id=0000000000001955.00000000545405FE.00002BC1,from=<>,module=dsn,host=,addr=<secretaria <at> servicosocial.uftm.edu.br>
Nov 11 10:23:01 mail courierd: completed,id=0000000000001955.00000000545405FE.00002BC1
Nov 11 10:28:01 mail courierd: completed,id=0000000000001955.00000000545405FE.00002BC1
Nov 11 10:28:02 mail courierd: started,id=0000000000001955.00000000545405FE.00002BC1,from=<>,module=dsn,host=,addr=<secretaria <at> servicosocial.uftm.edu.br>
Nov 11 10:28:02 mail courierd: completed,id=0000000000001955.00000000545405FE.00002BC1

 
 
 

-----------------------[ www.tvuniversal.com ]-----------
 "A graça de nosso Senhor Jesus Cristo seja com todos vós."

 
------------------------------------------------------------------------------
Comprehensive Server Monitoring with Site24x7.
Monitor 10 servers for $9/Month.
Get alerted through email, SMS, voice calls or mobile push notifications.
Take corrective actions from your mobile device.
http://pubads.g.doubleclick.net/gampad/clk?id=154624111&iu=/4140/ostg.clktrk
_______________________________________________
courier-users mailing list
courier-users <at> lists.sourceforge.net
Unsubscribe: https://lists.sourceforge.net/lists/listinfo/courier-users
Alessandro Vesely | 7 Nov 18:37 2014
Picon

avfilter-3.2

Some bug fixes/added option here:
http://www.tana.it/sw/avfilter/

It works with ClamAV 0.98.4

Ale

------------------------------------------------------------------------------
_______________________________________________
courier-users mailing list
courier-users <at> lists.sourceforge.net
Unsubscribe: https://lists.sourceforge.net/lists/listinfo/courier-users

mariobetim | 4 Nov 12:08 2014
Picon

Courier and rfc 4408 spf

Hi,
 
The problem occurs when the domain is in your SPF record on multiple lines for the TXT record.

Domain: algartelecom.com.br

TXT record:

         "v = spf1 ip4: 189.112.116.20 ip4: 200.170.137.98 ip4: 200 170 169 128 ip4: 20
0.225.197.0/24 ip4: 200 225 223 133 ip4: 201.16.216.25 ip4: 201.48.140.94 "
         "include: 17386.meuspf.com include: 21316.meuspf.com include: spf.protectio
n.outlook.com include: spf.virtualtarget.com.br a mx -all "

Error courier:

Nov 3 12:38:07 mail courieresmtpd: error, relay = :: ffff: 65.55.169.54, from = <marcelo <at> algartelecom.com.br>: 517 SPF neutral marcelo <at> algartelecom.com.br: Address does not pass the Sender Policy Framework

http://tools.ietf.org/html/rfc4408#section-3.1.4
 

3.1.3. Multiple Strings in a Single DNS record

As defined in [RFC1035] sections 3.3.14 and 3.3, a single text DNS record (either TXT or SPF RR types) can be composed of more than one string. If a published record contains multiple strings, then the record MUST be treated as if those strings are concatenated together without adding spaces. For example: IN TXT "v=spf1 .... first" "second string..." MUST be treated as equivalent to IN TXT "v=spf1 .... firstsecond string..." SPF or TXT records containing multiple strings are useful in constructing records that would exceed the 255-byte maximum length of a string within a single TXT or SPF RR record.


How to fix this error?


Thanks
 
 

-----------------------[ www.tvuniversal.com ]-----------
 "A graça de nosso Senhor Jesus Cristo seja com todos vós."

------------------------------------------------------------------------------
_______________________________________________
courier-users mailing list
courier-users <at> lists.sourceforge.net
Unsubscribe: https://lists.sourceforge.net/lists/listinfo/courier-users
Alessandro Vesely | 3 Nov 19:48 2014
Picon

Turning accounts into honeypots

Hi,
a mailbox of mines was compromised last week.  I hate that.  I changed the
password just before the automated limit blocked the account.  The spammer
seems to have a huge botnet, and I still see "535 Authentication failed" in the
logs.  I set DEBUG_LOGIN=2 to make sure they are using the old password rather
than trying and crack the new one.

Blocking accounts, like I do, is not very smart.  Some sort of "freeze" would
seem to be better.  Something like moderating posts on lists, maybe.

For example, as I use MySQL, I could add a "badpw" field in the user table, and
craft a select statement that returns the honeypot's username when the input
local_part matches the compromised password instead of the good one.  That way
I can also get rid of the verbose output of DEBUG_LOGIN=2, so long as 535s stay
limited to the usual, innocuous attempts.

A filter would shoot on sight at honeypot's authenticated posts, and direct
them to some script that either recognizes the spam template or keeps the
message quarantined.  The idea is to report the compromised web site appearing
in the message body, so as to cause some friction.  (The bot's IP could also be
reported --more easily-- but I'm not sure an ISP would bother acting on it.)

Maybe there's some better way to achieve the same result.  Thoughts?

Ale

------------------------------------------------------------------------------
_______________________________________________
courier-users mailing list
courier-users <at> lists.sourceforge.net
Unsubscribe: https://lists.sourceforge.net/lists/listinfo/courier-users

Neal Nelson | 31 Oct 14:48 2014
Picon

ESMTP configuration problem

Hi.

I've been using Courier for some years now without a problem, but I'm
just setting up a replacement mail system and I'm stumped.

I've installed Courier in a jail on FreeBSD 10.1 (Well, RC3, but it's as
good as). Previously I have been running happily on 9.2 with no
problems, albeit not in a jail.

I have set up a key and certificate and am able to connect to imapd
happily, but when trying to send mail I get the following problem:

Oct 31 12:45:42 mail courieresmtpd: started,ip=[10.0.0.3]
Oct 31 12:45:42 mail courieresmtpd: EHLO bollo2.home
Oct 31 12:45:42 mail courieresmtpd: STARTTLS
Oct 31 12:45:42 mail courieresmtpd: Permission denied
Oct 31 12:45:43 mail courieresmtpd: Permission denied
Oct 31 12:45:43 mail courieresmtpd: EHLO bollo2.home
Oct 31 12:45:43 mail courieresmtpd: MAIL FROM:<test <at> mail.home> SIZE=335
Oct 31 12:45:43 mail courieresmtpd: error,relay=10.0.0.3,msg="535
Authentication required.",cmd: MAIL FROM:<test <at> mail.home> SIZE=335
Oct 31 12:45:43 mail courieresmtpd: Permission denied
Oct 31 12:45:51 mail courieresmtpd: QUIT

Does anyone have an idea what might be causing this problem?

------------------------------------------------------------------------------
_______________________________________________
courier-users mailing list
courier-users <at> lists.sourceforge.net
Unsubscribe: https://lists.sourceforge.net/lists/listinfo/courier-users

Alexander Lehmann | 28 Oct 13:11 2014
Picon

problems when enabling tls only for pop3s/imaps

Following the poodle issue I disabled SSLv3 in my courier mail server by setting

TLS_PROTOCOL=TLS1

According the sslscan this disables all sslv3 connections, but allows tls1 connections on port 993. This works for most mail software, but is apparently failing for different versions of Outlook and Outlook Express.

I assume that Outlook in Windows XP will not support tls since it is too old, but it seems that newer Outlook versions do not work either.

I am currently using 4.8, maybe that is too old.


Thanks, Alexander

--
------------------------------------------------------------------------------
_______________________________________________
courier-users mailing list
courier-users <at> lists.sourceforge.net
Unsubscribe: https://lists.sourceforge.net/lists/listinfo/courier-users
Zenon Panoussis | 26 Oct 12:02 2014
Picon

RHEL7: Mail stays in spool, courierd isn't running


I had courier-0.73.1 running happily on an SL 6.5 box until the
other day when the box broke down. Motherboard, the whole machine
had to be replaced, completely different hardware, hence I couldn't
restore the entire system from backup. So I took the opportunity to
upgrade to Centos 7. Compiled courier-0.73.2 on the new system,
copied my /etc/courier from backup, done.

Or so I thought. My log started filling with entries like
  courieresmtpd: started,ip=[::ffff:91.227.208.147]
and then nothing. Mail was arriving, but it wasn't being delivered.
Vanishing into thin air, it seemed, until I found it in the spool.

Imapd was working fine and existing mailboxes were available, which
means that authlib was working fine and all paths and permissions
were fine. Nothing had changed there anyway, so they should be.

Having ripped most of my hair off, I realised that although courierd
was starting, it wasn't running. Then I tried strace and found the
reason:

[pid 30489] open("/etc/sysconfig/i18n", O_RDONLY) = -1 ENOENT (No such file or directory)

Some bright head (probably the same who thought systemd is a good
replacement for sysvinit) decided to rename /etc/sysconfig/i18n
to /etc/locale.conf.

Solution: edit /etc/courier/courierd accordningly to source the
file from its new location.

This cost me endless hours of barking up a forest of wrong trees,
so I hope that posting it will save others the same ordeal.

BTW, if you're planning a similar upgrade, take also into account
that UIDs 500-999 which were previously assigned to users, are now
reserved for system accounts. There's good potential for weird
troubles there too.

Z

------------------------------------------------------------------------------
_______________________________________________
courier-users mailing list
courier-users <at> lists.sourceforge.net
Unsubscribe: https://lists.sourceforge.net/lists/listinfo/courier-users

Lindsay Haisley | 24 Oct 21:51 2014

Custom address blocking

I'm dealing with some issues regarding migration of mailing lists and
would like to know if there's a quick way to set a custom 500 class
block for a specific address in courier with a custom message - kind of
the reverse of "courier clear user <at> domain".  This would return an error
after "rcpt to" something like:

550 Mailing list <mylist <at> frobniz.com> out of service for maintenance.  Please try again later.

I can usually figure this stuff out but I'm strapped for time and
thought maybe Sam or someone could shoot me a quick 'n easy solution.

--

-- 
Lindsay Haisley       | "UNIX is user-friendly, it just
FMP Computer Services |       chooses its friends."
512-259-1190          |          -- Andreas Bogk
http://www.fmp.com    |

------------------------------------------------------------------------------
_______________________________________________
courier-users mailing list
courier-users <at> lists.sourceforge.net
Unsubscribe: https://lists.sourceforge.net/lists/listinfo/courier-users


Gmane