Mark | 22 May 01:09 2015

Connection Refused

I have dovecot, postfix and mailscanner. Everything runs fine, as soon i 
stop postfix and start mailscanner, no email comes through.
if i go to http://www.dnsqueries.com

and check my domain i get the follow error
under: Connect to mail servers
error: Failed to connect to mail.example.com.: Connection refused 
(Timeout was 5secs)

if I stop mailscanner and only run postfix alone, everything works again.

os: debian whezzy.

I see no erros in the log file everything looks peachy so no clue whats 
wrong

i have the same installation under fedora 15, and there all runs fine.

--

-- 
MailScanner mailing list
mailscanner <at> lists.mailscanner.info
http://lists.mailscanner.info/listinfo/mailscanner

Picon

MailScanner custom header modification

Hello.
We've deployed MailScanner as an email relay and virus/spam scanner.
We've encountered some messages that sent from various external servers with "from" header set to our domain and rcpt-to set to various free mailservers such as outlook.com. There is a plugin to spamassassin that detects such messages and increaces spam score.
There is need to somehow modify Subject of such emails with [FRAUD] stamp (for example) like SpamAssassin modifies it with [SPAM] stamp. Is it possible to do with MailScanner?
Or maybe there is another way to do it?

Thank you.

--

-- 
MailScanner mailing list
mailscanner <at> lists.mailscanner.info
http://lists.mailscanner.info/listinfo/mailscanner

Max Kipness | 19 May 17:27 2015

Question about per user Whitelists

Hi,

I'm about to enable per user whitelists. I'm assuming this is how it
works, but if each of your users has let's say 3 different email
addresses, you have to create and manage 3 different files for each? Or
is there some way to link them?

Thanks,
Max

--

-- 
MailScanner mailing list
mailscanner <at> lists.mailscanner.info
http://lists.mailscanner.info/listinfo/mailscanner

Kevin Miller | 17 May 00:16 2015

Installing on Debian Jessie

I'm doing a fresh install on a brand new gateway using the beta8 version.

The install instruction says these should be set in php.ini:

PHP should have the following set in php.ini (possibly others too....)
 safe_mode = Off
 register_globals = Off
 magic_quotes_gpc = Off
 magic_quotes_runtime = Off
 session.auto_start = 0

Only the last one exists in there.  In previous version of php they were in there.  Do I need to add them or can I
assume that since they're missing they're off by default.

I looked at the existing settings with (commented for safety):
  ;<?php
  ;phpinfo();
  ;?>
But they weren't listed.  Will this be an issue?

...Kevin
--
Kevin Miller
Network/email Administrator, CBJ MIS Dept.
155 South Seward Street
Juneau, Alaska 99801
Phone: (907) 586-0242, Fax: (907) 586-4500
Registered Linux User No: 307357 

--

-- 
MailScanner mailing list
mailscanner <at> lists.mailscanner.info
http://lists.mailscanner.info/listinfo/mailscanner

Kevin Miller | 16 May 00:40 2015

Postfix and MailScanner

I've been using MailScanner with sendmail historically, but have made the leap to postfix.  With sendmail,
I had to disable the init script (chkconfig sendmail off) so it didn't start and enable the MailScanner
init script (which started sendmail).  The instructions on the web page don't mention disabling the
postfix - they just say to start MailScanner and it should handle starting postfix.  Do I need to do anything
special to insure that MailScanner starts before and in place of postfix?

Any systemd issues or tweaks?

...Kevin
--
Kevin Miller
Network/email Administrator, CBJ MIS Dept.
155 South Seward Street
Juneau, Alaska 99801
Phone: (907) 586-0242, Fax: (907) 586-4500
Registered Linux User No: 307357 

--

-- 
MailScanner mailing list
mailscanner <at> lists.mailscanner.info
http://lists.mailscanner.info/listinfo/mailscanner

Kevin Miller | 14 May 23:52 2015

mailscanner-4.85.2-3 on Debian Jessie

I just tried installing 4.85.2-3 on Jessie and got the following at the end of the process.  Apparently it
didn't like that /etc/default/mailscanner didn't exist.
I created it manually.  Should I just rerun the installer?

=======================================================================
Installing the MailScanner .deb package ... 
Selecting previously unselected package mailscanner.
(Reading database ... 60187 files and directories currently installed.)
Preparing to unpack .../mailscanner-4.85.2-3-noarch.deb ...
cp: cannot stat '/etc/default/mailscanner': No such file or directory
dpkg: error processing archive
/root/Mail_Gateway/MailScanner-4.85.2-3/mailscanner-4.85.2-3-noarch.deb (--install):
 subprocess new pre-installation script returned error exit status 1
Errors were encountered while processing:
 /root/Mail_Gateway/MailScanner-4.85.2-3/mailscanner-4.85.2-3-noarch.deb

----------------------------------------------------------
Installation Error

The MailScanner package failed to install. Address the required
dependencies and run the installer again.

Note that Perl modules need to be available system-wide. A
common issue is that missing modules were installed in a 
user specific configuration.
=======================================================================

One thing I did do, was copy the /etc/MailScanner directory from one of my running servers so that I could
easily update MailScanner.conf.  I don't know if this threw anything off - it was just the stuff in
/etc/MailScanner, no binaries were on the system yet...

...Kevin
--
Kevin Miller
Network/email Administrator, CBJ MIS Dept.
155 South Seward Street
Juneau, Alaska 99801
Phone: (907) 586-0242, Fax: (907) 586-4500
Registered Linux User No: 307357 

--

-- 
MailScanner mailing list
mailscanner <at> lists.mailscanner.info
http://lists.mailscanner.info/listinfo/mailscanner

Jerry Benton | 3 May 16:14 2015

v4.85.2-3 Released

No change to the code, just an update to the installer.

https://www.mailscanner.info/downloads/

05/03/2015 Changes in    v4.85.2-3
==================================
*Updates*
- Added Postfix detection and update for master.cf to use
  FIFO instead of UNIX socket

-
Jerry Benton
www.mailborder.com

--

-- 
MailScanner mailing list
mailscanner <at> lists.mailscanner.info
http://lists.mailscanner.info/listinfo/mailscanner

michael pap | 3 May 05:56 2015
Picon

Testing V 4.85.2 postfix/showq[31416]: warning: hold/3519: uid 89: not a regular file

Did I something wrong ?

 

I am running 2 childs

 

[root <at> demo3 hold]# ls

3484  3519

 

By running the mailq command I get those errors?

 

[root <at> demo3 ~]# date

Sat May  2 23:44:19 EDT 2015

[root <at> demo3 ~]# mailq

Mail queue is empty

[root <at> demo3 ~]#

 

May  2 23:44:27 demo3 postfix/showq[32579]: warning: hold/3519: uid 89: not a regular file

May  2 23:44:27 demo3 postfix/showq[32579]: warning: hold/3484: uid 89: not a regular file

 

An postfix reload removes both files and then I get the next error …

 

[root <at> demo3 ~]# service postfix reload

Reloading postfix:                                         [  OK  ]

[root <at> demo3 ~]# ls /var/spool/postfix/hold/

[root <at> demo3 ~]#

 

May  2 23:48:53 demo3 MailScanner[3484]: Could not open file >/var/spool/postfix

/hold/3484/BF276E1B67.A91BF.header: No such file or directory

May  2 23:48:53 demo3 MailScanner[3484]: Cannot create + lock headers file /var/                              spool/postfix/hold/3484/BF276E1B67.A91BF.header,

May  2 23:48:56 demo3 MailScanner[3519]: Could not open file >/var/spool/postfix

/hold/3519/BF276E1B67.A91BF.header: No such file or directory

May  2 23:48:56 demo3 MailScanner[3519]: Cannot create + lock headers file /var/                                  spool/postfix/hold/3519/BF276E1B67.A91BF.header,

 

Sat May  2 23:51:33 EDT 2015

[root <at> demo3 ~]# ls /var/spool/postfix/hold/

1036  1093

 

Did somebody get the same result – or my configuration is wrong may there is a way to suppress the showq warnings?

 

Thank you,

mike

 

 

 

 

 

 

 

 

--This email has been scanned by the EMFABox eMail service.

This email has been scanned by the EMFABox eMail service. --------------------------------------------------------- ID: 732CF42689.AB3C2


--

-- 
MailScanner mailing list
mailscanner <at> lists.mailscanner.info
http://lists.mailscanner.info/listinfo/mailscanner

Philip Parsons | 29 Apr 20:52 2015

I think I must have missed something

Read 0 hostnames from the phishing blacklists

 

 

Is this list no longer working ? or do I need to change something

 

 

Thank you.
Philip Parsons

 


--

-- 
MailScanner mailing list
mailscanner <at> lists.mailscanner.info
http://lists.mailscanner.info/listinfo/mailscanner

Datasoft-India | 29 Apr 05:35 2015
Picon

Yahoo Bouncing mails with trailing spaces in subject

Hi All,
I have gone through the threads in the archive list. However I have finally nailed down the problem to the following condition. No matter what, whenever we compose a mail with an extra space at the end of the subject, a Duplicate Subject line gets added at the top of the header and the mail is bounced by Yahoo. with the following message.
<xxxxxyy-/E1597aS9LQAvxtiuMwx3w@public.gmane.org>: host mta5.am0.yahoodns.net[98.138.112.35] said: 554 Message not allowed – Headers are not RFC compliant[291] (in reply to end of DATA command).

Sample header shown below.

Return-Path: <xx-wV4RUdHHV6pBDgjK7y7TUQ@public.gmane.org>
X-Spam-Status: No
Subject: test 10
X-securemailhub-MailScanner-From: xx-wV4RUdHHV6pBDgjK7y7TUQ@public.gmane.org
X-securemailhub-MailScanner-SpamCheck: not spam, SpamAssassin (not cached,
<snip>

Output of MailScanner -V

This is CentOS release 5.11 (Final)
This is Perl version 5.008008 (5.8.8)
This is MailScanner version 4.84.6

Question2) Is the Latest version of MailScanner 4.85.2-2 supported on the CentOS release 5.11 (Final) and Perl version 5.008008 without issues.

Can you help through some light on this.?

Thanks/DP


--

-- 
MailScanner mailing list
mailscanner <at> lists.mailscanner.info
http://lists.mailscanner.info/listinfo/mailscanner

Art Stephens | 16 Apr 23:03 2015

Problem messages

I keep getting these emails from MailScanner

Archive:

Number of messages: 1
Tries Message Last Tried
===== ======= ==========
6 DBCA82040EB.A9AA7 Thu Apr 16 09:45:57 2015

I have followed instructions on how to remove these but they keep occurring every time we receive an email addressed to a non existent user.

Log entries
Apr 16 09:24:19 retail MailScanner[17702]: Making attempt 2 at processing message DBCA82040EB.A9AA7
Apr 16 09:24:23 retail MailScanner[17702]: SpamAssassin cache hit for message DBCA82040EB.A9AA7
Apr 16 09:28:10 retail MailScanner[18268]: Making attempt 3 at processing message DBCA82040EB.A9AA7
Apr 16 09:28:14 retail MailScanner[18268]: SpamAssassin cache hit for message DBCA82040EB.A9AA7
Apr 16 09:32:25 retail MailScanner[18318]: Making attempt 4 at processing message DBCA82040EB.A9AA7
Apr 16 09:32:29 retail MailScanner[18318]: SpamAssassin cache hit for message DBCA82040EB.A9AA7
Apr 16 09:37:12 retail MailScanner[17699]: Making attempt 5 at processing message DBCA82040EB.A9AA7
Apr 16 09:37:16 retail MailScanner[17699]: SpamAssassin cache hit for message DBCA82040EB.A9AA7
Apr 16 09:40:33 retail MailScanner[18427]: Making attempt 6 at processing message DBCA82040EB.A9AA7
Apr 16 09:40:36 retail MailScanner[18427]: SpamAssassin cache hit for message DBCA82040EB.A9AA7
Apr 16 09:40:36 retail MailScanner[18217]: Warning: skipping message DBCA82040EB.A9AA7 as it has been attempted too many times
Apr 16 09:40:36 retail MailScanner[18217]: Quarantined message DBCA82040EB.A9AA7 as it caused MailScanner to crash several times
Apr 16 09:40:36 retail MailScanner[18217]: Saved entire message to /var/spool/MailScanner/quarantine/20150416/DBCA82040EB.A9AA7

Running on
Linux retail.ptera.net 2.6.33.6-147.fc13.x86_64 #1 SMP Tue Jul 6 22:32:17 UTC 2010 x86_64 x86_64 x86_64 GNU/Linux
This is Fedora release 13 (Goddard)
This is Perl version 5.010001 (5.10.1)

This is MailScanner version 4.84.6

Any fix?

Response from Forum...

Make sure you have tnef installed. Then check your tnef settings. Also make sure your directory permissions and the user to run as are set correctly. If you need more help, please use the mailing list.

OK Thanks

Expand TNEF = yes
Use TNEF Contents = replace
Deliver Unparsable TNEF = no
#TNEF Expander  = internal
TNEF Expander = /usr/bin/tnef --maxsize=100000000
TNEF Timeout = 120

perl-Convert-TNEF 0.17-11.fc13
tnef 1.4.5-1

And I get this emal sent to me:

The original message was received at Thu, 16 Apr 2015 12:48:49 -0700
from postfix <at> localhost
with id t3GJmn2a020753

   ----- The following addresses had permanent fatal errors -----
    (reason: 554 5.7.1 <160-92248047-23-f.trowridge=guitarfranks.com-0pQPA1qlGEwpWEwJ+7R8na35v1XWdZp1@public.gmane.org>: Relay access denied)
    (expanded from: 160-92248047-23-f.trowridge=guitarfranks.com <at> mail.mybusinesshomes.com)

   ----- Transcript of session follows -----
... while talking to [127.0.0.1]:
>>> DATA
<<< 554 5.7.1 <160-92248047-23-f.trowridge=guitarfranks.com-0pQPA1qlGEwpWEwJ+7R8na35v1XWdZp1@public.gmane.org>: Relay access denied
554 5.0.0 Service unavailable
<<< 554 5.5.1 Error: no valid recipients

Final-Recipient: RFC822; 160-92248047-23-f.trowridge=guitarfranks.com-0pQPA1qlGEwpWEwJ+7R8na35v1XWdZp1@public.gmane.org
Action: failed
Status: 5.7.1
Remote-MTA: DNS; [127.0.0.1]
Diagnostic-Code: SMTP; 554 5.7.1 <160-92248047-23-f.trowridge=guitarfranks.com-0pQPA1qlGEwpWEwJ+7R8na35v1XWdZp1@public.gmane.org>: Relay access denied
Last-Attempt-Date: Thu, 16 Apr 2015 12:48:49 -0700


---------- Forwarded message ----------
From: MailScanner <postmaster>
To: 160-92248047-23-f.trowridge=guitarfranks.com <at> mail.mybusinesshomes.com
Cc: 
Date: Thu, 16 Apr 2015 12:48:49 -0700
Subject: Warning: E-mail error detected
Our virus detector failed to completely analyse a message you sent:-
  Subject: New Mortgage Lows
  Date: Thu Apr 16 12:48:49 2015
Any parts of the message that could not be analysed will not have been
delivered.

If you are using Microsoft Outlook, we strongly recommend you change your
outgoing message format from "Rich Text" to "HTML" or "Plain Text".

1) Click on the "Tools" menu and choose "Options..."
2) Go to the "Mail Format" tab
3) For message format, select "HTML" or "Plain text"
4) Click OK

The virus detector said this about the message:
Report: Report: MailScanner: Message attempted to kill MailScanner


--
MailScanner
Email Virus Scanner
Ptera Wireless Internet Inc.

For all your IT requirements visit: http://www.transtec.co.uk

Totally stumped on how to proceed to fix this....

--
Arthur Stephens
Senior Networking Technician
Ptera Inc.
PO Box 135
24001 E Mission Suite 50
Liberty Lake, WA 99019 
509-927-7837 
 ----------------------------------------------------------------------------- 
"This message may contain confidential and/or propriety information, and is intended for the person/entity to whom it was originally addressed. 
Any use by others is strictly prohibited. Please note that any views or opinions presented in this email are solely those of the author and are not intended to represent those of the company." 

--

-- 
MailScanner mailing list
mailscanner <at> lists.mailscanner.info
http://lists.mailscanner.info/listinfo/mailscanner


Gmane