headers
Rasjid Wilcox | 2 Dec 2002 14:42

[Beta] qpsmtpd HOWTO and sql_maillog

I have a beta HOWTO on how to install qpsmtpd on SME.

The HOWTO is available at
http://www.openminddev.net/twiki/bin/view/Main/MitelSME

qpsmtpd is a qmail-smtpd replacement written in perl, written by Ask Bjørn 
Hansen.  Its main feature is that it is easy to create 'plugins' to do things 
with your mail.  A number of plugins for removing spam (including dropping it 
at the SMTP level) have been written (can query relays.ordb.org and 
spamsources.fabel.dk for example).  There is also a plugin for checking mail 
with clamav anti-virus, and a few people have written plugins for dropping 
mail to non-existant users.

I have not tested the spamassssin and clamav plugins on SME yet.  That is next 
on my TODO list.

[BETA] sql_maillog plugin for qpsmtpd.

I've done a plugin to qpsmtpd that logs a fair amount of connection info to a 
mysql database.  In particular it logs:
The time, remote_host dns name and ip address, the sender return address, the 
recipient, the size of the mail header and body, and the actual header of the 
mail.

This allows precise tracking of how much data an indiviual user is sending and 
receiving via email.

It also allows for dynamic spam blocking.  For example, if an IP address sends 
mail to 5 non-existant users, we could immediately add them to our personal 
'blacklist'.
(Continue reading)

Permalink | Reply | 18 comments |
headers
Filippo Carletti | 2 Dec 2002 16:54
Picon

[Announce] Updated e-smith-sarg package

I uploaded
e-smith-sarg-1.2.3-1.noarch.rpm
in my personal site
(http://www.mobilia.it/filippo/download/mitel/contrib/RPMS/noarch/)

As soon as Mitel mirror it you should find it also in my contrib area on
ftp.e-smith.org.

A great amount of work has been done by Pierluigi Miranda, who added
compatibility with e-smith 4.x and monthly archiving of squid logs.

Please note that version 1.2.1 had a bug in the rotation of squid access.log
which was never rotated.

Changelog:
* Tue Nov 05 2002 Filippo Carletti <carletti <at> mobilia.it> 1.2.3-1

- crontab now uses our sarg scripts (no save and restore)
- SSL access to squid panel
- monthly access log storage moved to /var/log/squid/monthly (viewlogfiles)
- all cron logging goes to /dev/null

Ciao,
Filippo

--
Please report bugs to bugs <at> e-smith.com
Please mail smesecurity <at> mitel.com (only) to discuss security issues
Support for registered customers and partners to smesupport <at> mitel.com
To unsubscribe, e-mail: devinfo-unsubscribe <at> lists.e-smith.org
(Continue reading)

Permalink | Reply | 7 comments |
headers
Rasjid Wilcox | 2 Dec 2002 22:29

Re: [Beta] qpsmtpd HOWTO and sql_maillog - NOW CONSIDERED ALPHA

On Tue, 3 Dec 2002 12:42 am, Rasjid Wilcox wrote:
> I have a beta HOWTO on how to install qpsmtpd on SME.
>
> The HOWTO is available at
> http://www.openminddev.net/twiki/bin/view/Main/MitelSME

### I have revised this HOWTO to ALPHA status ###

DO NOT USE ON A PRODUCTION SERVER.

It has been pointed out to me that this is forking a key component of SME 
(mailfront), and that it will not currently survive upgrades to either 
mailfront or SME in general.  Also, some of the steps are not the 'SME way' 
and may have unforseen consequences.  Thanks muchly to Darrell May for 
quickly bringing this to my attention.

* Assistance Sort *

I would be delighted by any assistance in integrating qpsmtpd into SME so that 
it conforms with the SME configuration format and will survive upgrades etc.

I see a lot of potential for qpsmtpd to help fight the SPAM problem and other 
useful things.

Thanks,

Rasjid.

--

-- 
Rasjid Wilcox
(Continue reading)

Permalink | Reply | 17 comments |
headers
Charlie Brady | 2 Dec 2002 22:53
Favicon

Re: [Beta] qpsmtpd HOWTO and sql_maillog - NOW CONSIDERED ALPHA


On Tue, 3 Dec 2002, Rasjid Wilcox wrote:

> On Tue, 3 Dec 2002 12:42 am, Rasjid Wilcox wrote:
> > I have a beta HOWTO on how to install qpsmtpd on SME.
> >
> > The HOWTO is available at
> > http://www.openminddev.net/twiki/bin/view/Main/MitelSME
> 
> ### I have revised this HOWTO to ALPHA status ###
> 
> DO NOT USE ON A PRODUCTION SERVER.

Be especially careful to not create an open mail relay.

> It has been pointed out to me that this is forking a key component of SME 
> (mailfront),

No, it doesn't fork mailfront, it creates an alternative to it. Just as 
obtuse-smtpd was an alternative for qmail-smtpd, and mailfront was for 
obtuse-smtpd.

> and that it will not currently survive upgrades to either 
> mailfront or SME in general.

Yes, mailfront will be upgraded when SME is upgraded, but if it is marked 
as disabled it will stay marked as disabled.

>  Also, some of the steps are not the 'SME way' 
> and may have unforseen consequences.  Thanks muchly to Darrell May for
(Continue reading)

Permalink | Reply | 16 comments |
headers
Roger Wrethman | 3 Dec 2002 07:45
Picon

External ISDN

Hi Guys/Ladies

Not sure if this is really still a development question, but since the
support does not seem to be built in.

How do I get an EXTERNAL ISDN TA that is connected to /dev/ttyS1 to work.

Currently developing in SME 5.5

Thanks

Roger Wrethman

--
Please report bugs to bugs <at> e-smith.com
Please mail smesecurity <at> mitel.com (only) to discuss security issues
Support for registered customers and partners to smesupport <at> mitel.com
To unsubscribe, e-mail: devinfo-unsubscribe <at> lists.e-smith.org
For additional commands, e-mail: devinfo-help <at> lists.e-smith.org
Searchable archive at http://www.mail-archive.com/devinfo%40lists.e-smith.org
Permalink | Reply | 2 comments |
headers
Michael Doerner | 3 Dec 2002 09:53
Picon

Re: [Announce] Updated e-smith-sarg package

Hi Filippo,

thanks for your work on the sarg integration into SME, it's much
appreciated. I just updated from version 1.2.1 on a SME 5.5 test server
and ran into a small problem (ssl access related):

When you enable ssl access for specific SINGLE IPs in the server
manager's control panel, the variable $externalSSLAccess resolves ie.
222.55.44.66/255.255.255.255 and Apache doesn't like that syntax for the
netmask.

Exactly the same problem was recently discovered for the "user manager"
access via ssl and Shad Lords has written the code to fix that which 
works very well for ssl access to the user-manager contrib.

I just tried to integrate Shad's code into your sarg template fragment 
but I am not a programmer and struggled with it.

Maybe Shad (!?) might read this post and help to adapt his changes into 
the sarg fragment as well?

Kind Regards,
Michael Doerner

Filippo Carletti wrote:
> I uploaded
> e-smith-sarg-1.2.3-1.noarch.rpm
> in my personal site
> (http://www.mobilia.it/filippo/download/mitel/contrib/RPMS/noarch/)
>
(Continue reading)

Permalink | Reply | 6 comments |
headers
Charlie Brady | 3 Dec 2002 14:30
Favicon

Re: External ISDN


On Tue, 3 Dec 2002, Roger Wrethman wrote:

> Not sure if this is really still a development question, but since the
> support does not seem to be built in.

Doesn't it?

> How do I get an EXTERNAL ISDN TA that is connected to /dev/ttyS1 to work.

Plug it in, and treat it like any other modem. You may need an INIT 
string. Search the bulletin boards for some specific advice.

--
Charlie Brady                         charlie_brady <at> mitel.com
Lead Product Developer
Network Server Solutions Group
Mitel Networks Corporation      http://www.mitel.com/smallbusiness
Phone: +1 (613) 592 5660 or 592 2122  Fax: +1 (613) 592 1175

--
Please report bugs to bugs <at> e-smith.com
Please mail smesecurity <at> mitel.com (only) to discuss security issues
Support for registered customers and partners to smesupport <at> mitel.com
To unsubscribe, e-mail: devinfo-unsubscribe <at> lists.e-smith.org
For additional commands, e-mail: devinfo-help <at> lists.e-smith.org
Searchable archive at http://www.mail-archive.com/devinfo%40lists.e-smith.org
Permalink | Reply | 1 comment |
headers
Les Mikesell | 3 Dec 2002 15:47
Picon

Re: [Beta] qpsmtpd HOWTO and sql_maillog - NOW CONSIDERED ALPHA

>From: "Charlie Brady" <charlie_brady <at> mitel.com>

> > I see a lot of potential for qpsmtpd to help fight the SPAM problem and
other
> > useful things.
>
> Something to bear in mind is that you are replacing a small fast program
> (mailfront) with a very large slow-to-startup program (a perl
> interpreter). I wouldn't use this on a busy mail server.
>
> Have you had a look at messagewall (http://www.messagewall.org)?

If you plan to run SpamAssassin per message you are going to end
up starting perl anyway so it might as well be invoked as a module
in qpsmtpd.   However, it is hard to beat the combination of:
 sendmail  (8.12.x+)
  MimeDefang (running concurrently with sendmail with the 'milter' interface)
  SpamAssassin (run internally by MimeDefang)
  Clam Antivirus (running as the 'clamd' daemon)
Mimedefang and clamd run as daemons communicating over sockets
back to sendmail during the SMTP conversation so (a) you don't
start and initialize big programs for each message and (b) you
can tell sendmail to reject or alter handling of a message based on
the scan results - other methods force you to accept it first and
then deal with generating a bounce message if you want to reject it.

A few years ago a decision to replace sendmail probably made sense
but now, especially with the split between inbound and outbound
queues, none of the old reasons apply.   If I had some reason to
use all-SME instead of running a stock RedHat as an inbound relay
(Continue reading)

Permalink | Reply | 7 comments |
headers
Darrell May | 3 Dec 2002 16:38

Re: [Announce] Updated e-smith-sarg package


Michael Doerner <michael <at> baypc.co.nz> said:

> Maybe Shad (!?) might read this post and help to adapt his changes into
> the sarg fragment as well?

Thanks for the report Michael. I've just sent the changes to Fillipo :-)

Regards,

--
Darrell May
DMC Netsourced.com
http://myEZserver.com

--
Please report bugs to bugs <at> e-smith.com
Please mail smesecurity <at> mitel.com (only) to discuss security issues
Support for registered customers and partners to smesupport <at> mitel.com
To unsubscribe, e-mail: devinfo-unsubscribe <at> lists.e-smith.org
For additional commands, e-mail: devinfo-help <at> lists.e-smith.org
Searchable archive at http://www.mail-archive.com/devinfo%40lists.e-smith.org
Permalink | Reply | 1 comment |
headers
Shad L. Lords | 3 Dec 2002 17:08

Re: [Announce] Updated e-smith-sarg package

> > Maybe Shad (!?) might read this post and help to adapt his changes into
> > the sarg fragment as well?
> 
> Thanks for the report Michael. I've just sent the changes to Fillipo :-)

As did I.  ;)

-Shad

--
Please report bugs to bugs <at> e-smith.com
Please mail smesecurity <at> mitel.com (only) to discuss security issues
Support for registered customers and partners to smesupport <at> mitel.com
To unsubscribe, e-mail: devinfo-unsubscribe <at> lists.e-smith.org
For additional commands, e-mail: devinfo-help <at> lists.e-smith.org
Searchable archive at http://www.mail-archive.com/devinfo%40lists.e-smith.org
Permalink | Reply | 0 comments |

Gmane