Search found 24 matches

by EduardoFoltran
2018-08-03 17:19
Forum: Feature requests
Topic: Minutes Between The Sending For IP Warming Up
Replies: 3
Views: 1251

Re: Minutes Between The Sending For IP Warming Up

Hi! Indeed! This is a very useful feature for those who want to use HMS to send spam. One is not blacklisted just for sending emails, but for sending lots of emails to spam traps. As my main goal for the last 8 months has being to fight spammers, I am very concerned about their behaviour and this im...
by EduardoFoltran
2018-07-31 15:46
Forum: Feature requests
Topic: SPF hard and softfail
Replies: 6
Views: 4691

Re: SPF hard and softfail

I believe any implementation that gives more fine tunning on spams is welcome. It may not be excencial and I am sure experienced people will always find a workarround, but having it easily configurable does help and saves a lot of time.
by EduardoFoltran
2018-07-30 19:49
Forum: Feature requests
Topic: Improved Auto-Ban
Replies: 3
Views: 1002

Re: Improved Auto-Ban

Hi Mattg and SorenR Thanks for the feedback! I blocked login from port 25 and it indeed had an impact on auto-ban. I am studying SorenR’s script to see if I can do something without the OnHelo event. I am using Matin’s compilation and I am not planning to change it in a near future. I believe such e...
by EduardoFoltran
2018-07-27 16:59
Forum: Feature requests
Topic: Improved Auto-Ban
Replies: 3
Views: 1002

Improved Auto-Ban

Hi! I would like to suggest an implementation to improve the auto-ban security feature but first I believe it should be useful to put this proposal under context. I had some users with a severe problem of spam. Despite my best effort, I could not make a sensible impact on the amount of spam these pa...
by EduardoFoltran
2018-01-20 15:59
Forum: General discussions
Topic: Intermitent problem with SSL comunication
Replies: 31
Views: 3679

Re: Intermitent problem with SSL comunication

Hi Matt It seems to me that neither HMS nor RC had anything to do with the problem. It is a OS "misconfiguration" caused by the update of last saturday. I had to do one more trick to put all back to track, that was update the RoundCube database in order to recover users contacts and configurations. ...
by EduardoFoltran
2018-01-20 13:19
Forum: General discussions
Topic: Intermitent problem with SSL comunication
Replies: 31
Views: 3679

Re: Intermitent problem with SSL comunication

Hi I have one more peace to this puzzle. I was looking for a solution on RoundCube forum and among the many connection failure posts I found one with a different error but the same symptons. External email clientes could connect to port 993, but RC could not. Some one sugested to use de FQDN in the ...
by EduardoFoltran
2018-01-20 11:21
Forum: General discussions
Topic: Intermitent problem with SSL comunication
Replies: 31
Views: 3679

Re: Intermitent problem with SSL comunication

@mattg, thanks for trying to help me. I have moderate a forum for about 7 year and I now how demanding it is. Shouldn't that be $config['default_host'] ='tls://localhost'; Although the fact that it is wrong may be why it is working Indeed. I had not noticed the misspelling. By changing to TLS it can...
by EduardoFoltran
2018-01-19 19:04
Forum: General discussions
Topic: Intermitent problem with SSL comunication
Replies: 31
Views: 3679

Re: Intermitent problem with SSL comunication

Update My users running W7 suddenly are able to connect again. I was preparing to transfer data to the new server in order to make more tests and after I enable file sharing on the server, no more than 20 minutes after that, a user/friend reported his Outlook was working again. I checked with severa...
by EduardoFoltran
2018-01-19 17:30
Forum: General discussions
Topic: Intermitent problem with SSL comunication
Replies: 31
Views: 3679

Re: Intermitent problem with SSL comunication

I'm assuming that port 143 is StartTLS Required on hMailserver (Diagnostics will confirm this and other relevant info, without disclosing private detail), and that roundcube is set to TLS. No, it is not. Port 143 is StartTLS Optional. I can't stablish a secure connection with RC. Before the issue b...
by EduardoFoltran
2018-01-18 15:24
Forum: General discussions
Topic: Intermitent problem with SSL comunication
Replies: 31
Views: 3679

Re: Intermitent problem with SSL comunication

And you still think that you don't need a rule in your AWS firewall to NOT inspect SSL traffic?? I am trying to understand your thinking. The AWS firewall sits on a virtual RRAS, wich has not been changed since I first subscribed to AWS. The rules were set about 5 years ago and never changed ever s...
by EduardoFoltran
2018-01-18 12:21
Forum: General discussions
Topic: Intermitent problem with SSL comunication
Replies: 31
Views: 3679

Re: Intermitent problem with SSL comunication

mattg wrote:Is this also an amazon server instance?
Yes, like the one before, that worked fine for one and a half years behind the same firewall.
by EduardoFoltran
2018-01-17 21:43
Forum: General discussions
Topic: suddenly i can't login via IMAP
Replies: 5
Views: 928

Re: suddenly i can't login via IMAP

I am facing a similar problem that started suddenly as well.

viewtopic.php?f=7&t=32268

I am clueless.
by EduardoFoltran
2018-01-17 19:35
Forum: General discussions
Topic: Intermitent problem with SSL comunication
Replies: 31
Views: 3679

Re: Intermitent problem with SSL comunication

I wish to thanks all of you for the tips so far. Although they have not solved the problem, they helped me to better understand what is going on. Not knowing anything about AWS, I just did some research and it seems to me that it does inbound and outbound packet inspection for SSL connections - This...
by EduardoFoltran
2018-01-16 20:19
Forum: General discussions
Topic: Intermitent problem with SSL comunication
Replies: 31
Views: 3679

Re: Intermitent problem with SSL comunication

My server runs in a EC2 instance at Amazon AWS. The only thing accesseble by the outside world are the ports needed to perform e-mail operation. Every day I find some stange IP from China or Russia on the blocking list. Of course, they have to guess user name and password in order to invade an accou...
by EduardoFoltran
2018-01-16 17:44
Forum: General discussions
Topic: Intermitent problem with SSL comunication
Replies: 31
Views: 3679

Re: Intermitent problem with SSL comunication

Do you run some fancy sort of Deep Packet inspection or Intrusion Detection Firewall? If the Client doesnt abort the connection by itself, typically a Firewall can intercept any connection and close ports or reject specific IPs according to your Firewall Rules. No, just regular Windows Server Firew...
by EduardoFoltran
2018-01-16 13:57
Forum: General discussions
Topic: Intermitent problem with SSL comunication
Replies: 31
Views: 3679

Re: Intermitent problem with SSL comunication

So you don't have antivirus installed on that machine? I do. Clamwin is working fine and no virus or other issues detected. Here is the debug log: RoundCube [16-Jan-2018 09:44:54 -0200]: <emblcv14> IMAP Error: Login failed for eduardo@MyDomain.com from 187.xx.xx.26. Could not connect to ssl://local...
by EduardoFoltran
2018-01-16 10:51
Forum: General discussions
Topic: Intermitent problem with SSL comunication
Replies: 31
Views: 3679

Re: Intermitent problem with SSL comunication

Hi! At this point, I'm going to guess that you have software doing a man-in-middle, that takes connections from your clients and connects to your server. Antivirus software on the server that does mail inspection will do this. Check your anti-virus on your hmailserver for settings like 'check encryp...
by EduardoFoltran
2018-01-15 21:41
Forum: General discussions
Topic: Intermitent problem with SSL comunication
Replies: 31
Views: 3679

Re: Intermitent problem with SSL comunication

I checked the IMAP interface with the Comodo Tool. No problem detected. Cipher Suites Enabled Name (ID) Key Size (in bits) TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384 (0xC030) 256 ECDH 256-bit (P-256) TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384 (0xC028) 256 ECDH 256-bit (P-256) TLS_ECDHE_RSA_WITH_AES_256_CBC_SH...
by EduardoFoltran
2018-01-15 19:41
Forum: General discussions
Topic: Intermitent problem with SSL comunication
Replies: 31
Views: 3679

Re: Intermitent problem with SSL comunication

I already tryed to rollback all the updates, but the problem continues. Any change the update made remains even when it is removed. I received a feedback from a user that says she has two computers. Boths running Outlook 2016, but one on windows 10 and the other on windows 7. Outlook works on W10, b...
by EduardoFoltran
2018-01-15 17:37
Forum: General discussions
Topic: Intermitent problem with SSL comunication
Replies: 31
Views: 3679

Re: Intermitent problem with SSL comunication

Hi! Nop. IPv6 has nothing to do. Things work the same with or without it. This are de errors I get: From RoundCube: [15-Jan-2018 13:27:57 -0200]: <fs2jni9d> IMAP Error: Login failed for MyEmail@MyDomain.com from 187.xx.xx.26. Could not connect to ssl://localhost:993: Unknown reason in C:\inetpub\www...
by EduardoFoltran
2018-01-15 15:22
Forum: General discussions
Topic: Intermitent problem with SSL comunication
Replies: 31
Views: 3679

Intermitent problem with SSL comunication

Hi! Since saturday I have been struggling with my server. There was a routine update on Windows Server 2008 and after that I have a strange behaviour on secure ports. I have RoundCube as webmail software and it was the first I noticed a problem. It can no longer connect on IMAP port 993. I by-passed...
by EduardoFoltran
2017-12-09 12:21
Forum: User-submitted tutorials
Topic: HOW TO: get gMail certificates to validate
Replies: 11
Views: 6355

Re: HOW TO: get gMail certificates to validate

I would add that SSL v3 must be enable for it to work properly.Eduardo SSLv3.0 is very old, and completely broken - do not use it , do not enable it on your server, as some hacks start with highest security then downgrade security to lowest level then exploit it, or use low security to start with, ...
by EduardoFoltran
2017-12-08 21:07
Forum: User-submitted tutorials
Topic: HOW TO: get gMail certificates to validate
Replies: 11
Views: 6355

Re: HOW TO: get gMail certificates to validate

PS

Also it is needed to allow less secure apps in your Google account.
by EduardoFoltran
2017-12-08 17:58
Forum: User-submitted tutorials
Topic: HOW TO: get gMail certificates to validate
Replies: 11
Views: 6355

Re: HOW TO: get gMail certificates to validate

Thanks a lot for this post! Since last week I have been knocking my head on the wall trying to get emails from Gmail. Now it is working just fine!
I would add that SSL v3 must be enable for it to work properly.

Eduardo