Search found 1466 matches

by RvdH
2021-06-16 12:37
Forum: General discussions
Topic: Weird error cause minidumps with 5.6.8-B2555.Custom
Replies: 34
Views: 642

Re: Weird error cause minidumps with 5.6.8-B2555.Custom

Is that "X-Apple-Content-Length" header that is talked about on mailenable website present?
What if you would strip that header?

Code: Select all

	If oMessage.HeaderValue("X-Apple-Content-Length")<>"" Then
		oMessage.Headers.ItemByName("X-Apple-Content-Length").Delete
		oMessage.Save
	End If
by RvdH
2021-06-16 10:33
Forum: General discussions
Topic: Weird error cause minidumps with 5.6.8-B2555.Custom
Replies: 34
Views: 642

Re: Weird error cause minidumps with 5.6.8-B2555.Custom

SorenR wrote: ↑
2021-06-15 09:32
@RvdH Do you have any ideas?
Nope sorry... and can't really say i have seen this behavior before and I know for sure a client of ours uses the iCrap stuff ;)
by RvdH
2021-06-14 09:56
Forum: General discussions
Topic: problem with ssl
Replies: 46
Views: 7304

Re: problem with ssl

To date, I've been assuming this is an example of a hacker's attempt to connect, excepting this address comes from the US, not the Netherlands, Bulgaria, Russia whos ranges I have already blocked. Funny you list the Netherlands in same categorie as Bulgaria and Russia, especially as the 2nd biggest...
by RvdH
2021-06-14 09:05
Forum: General discussions
Topic: problem with ssl
Replies: 46
Views: 7304

Re: problem with ssl

Looking at the logs, I am also concerned about the large number of rejected connections on SMTP Port 25 when hMailServer demands SSL/TLS for authentication. Here is an example log. Should I be concerned about this failed connection sequence? It is all too common in the log? You should never require...
by RvdH
2021-06-13 17:22
Forum: General discussions
Topic: hMailServer 5.7 High Usage Memory
Replies: 46
Views: 498

Re: hMailServer 5.7 High Usage Memory

He got the vax? A cardiac arrest is from all times, i believe it is to easy to blame a vac for something unfortunate that can happen to all of us at any time, simply take notice those players are top athletes. For me as a AJAX fan it is like a replay of earlier cardiac events on the pitch, see: Dal...
by RvdH
2021-06-13 11:33
Forum: General discussions
Topic: hMailServer 5.7 High Usage Memory
Replies: 46
Views: 498

Re: hMailServer 5.7 High Usage Memory

Do you have an active IPv6 connection to your hMailserver? Nope. Aparently the Danish ISP's have plenty IPv4 for residential subscribers :mrgreen: [offtopic] Gutted to see what happened to Christian Eriksen yesterday, really thought it was literally "game over" for him... great to hear he's doing w...
by RvdH
2021-06-13 09:45
Forum: General discussions
Topic: hMailServer 5.7 High Usage Memory
Replies: 46
Views: 498

Re: hMailServer 5.7 High Usage Memory

@matt, https://www.hmailserver.com/forum/viewtopic.php?p=230593#p230593 Could it be due to Wait(sec)? Drop it or at least change it to another method, if i remember right a had mixed results using timeout.exe (eg: swallowing memory!) and used powershell.exe on Server 2016/2019 Do not use sleep.exe, ...
by RvdH
2021-05-30 10:07
Forum: General discussions
Topic: Weird error cause minidumps with 5.6.8-B2555.Custom
Replies: 34
Views: 642

Re: Weird error cause minidumps with 5.6.8-B2555.Custom

Note the difference in TLS renegotiation (generated using sslscan ) Testing SSL server mail.companyserver.com on port 993 using SNI name mail.companyserver.com (hMailServer 5.6.x) SSL/TLS Protocols: SSLv2 disabled SSLv3 disabled TLSv1.0 enabled TLSv1.1 enabled TLSv1.2 enabled TLSv1.3 enabled TLS Fa...
by RvdH
2021-05-30 09:53
Forum: General discussions
Topic: Weird error cause minidumps with 5.6.8-B2555.Custom
Replies: 34
Views: 642

Re: Weird error cause minidumps with 5.6.8-B2555.Custom

I never said it was safe to use, but i suspect it is in there to be backward compatible with 5.6.7 (openssl 1.0.x) The hmailserver usage goes beyond SorenR preferences... and what's the point disabling it if you do not allow it anyway? I think that disabling weak ciphers stops TLS renegotiation to ...
by RvdH
2021-05-29 20:16
Forum: General discussions
Topic: Weird error cause minidumps with 5.6.8-B2555.Custom
Replies: 34
Views: 642

Re: Weird error cause minidumps with 5.6.8-B2555.Custom

You should also disable weak ciphers such as DES and RC4. DES can be broken in a few hours and RC4 has been found to be weaker than previously thought. In the past, RC4 was advised as a way to mitigate BEAST attacks. However, due to the latest attacks on RC4, Microsoft has issued an advisory agains...
by RvdH
2021-05-29 19:38
Forum: General discussions
Topic: Weird error cause minidumps with 5.6.8-B2555.Custom
Replies: 34
Views: 642

Re: Weird error cause minidumps with 5.6.8-B2555.Custom

Note that RC4 based cipher suites are not built into OpenSSL by default (see the enable-weak-ssl-ciphers option to Configure).
https://www.openssl.org/docs/man1.1.1/man1/ciphers.html
by RvdH
2021-05-29 19:17
Forum: General discussions
Topic: Weird error cause minidumps with 5.6.8-B2555.Custom
Replies: 34
Views: 642

Re: Weird error cause minidumps with 5.6.8-B2555.Custom

Do you know why openssl should be built with "enable-weak-ssl-ciphers" for 5.6.x and not for 5.7 ? Not sure, guess to not have to much different accepted ciphers between 5.6.7 and 5.6.8 and as 5.7 still isn't released and we have no idea when it eventually will you might think this simply uses high...
by RvdH
2021-05-29 18:52
Forum: General discussions
Topic: Weird error cause minidumps with 5.6.8-B2555.Custom
Replies: 34
Views: 642

Re: Weird error cause minidumps with 5.6.8-B2555.Custom

Do you know why openssl should be built with "enable-weak-ssl-ciphers" for 5.6.x and not for 5.7 ? Not sure, guess to not have to much different accepted ciphers between 5.6.7 and 5.6.8 and as 5.7 still isn't released and we have no idea when it eventually will you might think this simply uses high...
by RvdH
2021-05-29 16:36
Forum: General discussions
Topic: Weird error cause minidumps with 5.6.8-B2555.Custom
Replies: 34
Views: 642

Re: Weird error cause minidumps with 5.6.8-B2555.Custom

I have in the meantime done maintenance on my MySQL database without finding any issues ... BUT! Phone has been online from Mallorca - Telco is smart enough to run Roaming Internet on internal VPN to identify phone as DK (Denmark) origin so it is allowed access to my server. Alternative was an Expr...
by RvdH
2021-05-29 13:12
Forum: General discussions
Topic: Weird error cause minidumps with 5.6.8-B2555.Custom
Replies: 34
Views: 642

Re: Weird error cause minidumps with 5.6.8-B2555.Custom

Maybe related to https://github.com/hmailserver/hmailserver/issues/334? Maybe iPhone 12 i more strict in honor the BODY.PEEK size
by RvdH
2021-05-27 12:30
Forum: General discussions
Topic: reject spf softfail
Replies: 3
Views: 145

Re: reject spf softfail

glenluo wrote: ↑
2021-05-27 12:03
if hmailserver can design at config as below,that will be perfect

AntiSpamSPF=1 'Reject when SPF result FAIL
AntiSpamSPF=2 'Reject when SPF result FAIL or SOFTFAIL
Knock yourself out, as you know the source is available on github
by RvdH
2021-05-27 10:47
Forum: General discussions
Topic: Spamassassin block customer's answer to my mails
Replies: 25
Views: 449

Re: Spamassassin block customer's answer to my mails

Ehrmn... "WHITELIST" ... Did they not change that to "WELCOMELIST" to comply with people of colour ? Planned for version 4.x This will not work with 3.4.x I tried rewriting those rules recently....it already is in the default rules (that are being downloaded by sa-update), but you can not use then ...
by RvdH
2021-05-27 09:46
Forum: General discussions
Topic: reject spf softfail
Replies: 3
Views: 145

Re: reject spf softfail

in hmailserver you can not...you could use SpamAssassin and score high on SPF softfail
by RvdH
2021-05-27 09:44
Forum: General discussions
Topic: User email ID being auto banned due to unauthorised login attempts
Replies: 3
Views: 163

Re: User email ID being auto banned due to unauthorised login attempts

So? What is exactly the problem?
You have some bot trying to authenticate by either gamble, bruteforce (using previously leaked) credentials.... it fails and it is blocked as it is supposed to
by RvdH
2021-05-26 19:07
Forum: General discussions
Topic: Account signature don't append unless auth = From address
Replies: 8
Views: 260

Re: Account signature don't append unless auth = From address

PS, i think i know why account aliases are skipped, in signatures you can make use of Macro's, eg: It is possible to use the macros %User.FirstName%, %User.LastName% and %User.Address% in signatures. These macros will be replaced with the users first, last name and email address as specified in the ...
by RvdH
2021-05-26 18:34
Forum: General discussions
Topic: Account signature don't append unless auth = From address
Replies: 8
Views: 260

Re: Account signature don't append unless auth = From address

as far as understand, account signatures don't append unless authenticated user = From address. i.e. From address in client: name.surname@local.com (which is an alias in HMS) authenticates as nsurname@local.com (real account), account signature don't apply. does it make sense? From the code in DKIM...
by RvdH
2021-05-26 11:14
Forum: General discussions
Topic: DKIM not applying to some emails
Replies: 21
Views: 388

Re: DKIM not applying to some emails

symantec.efrecovery.com never submits a message to hmailserver...so the is nothing to sign with DKIM You have to find out why symantec.efrecovery.com immediately sends the QUIT command (instead the DATA command followed by the QUIT command) "DEBUG" 1428 "2021-05-25 13:30:24.935" "Creating session 6...
by RvdH
2021-05-26 10:44
Forum: General discussions
Topic: Account signature don't append unless auth = From address
Replies: 8
Views: 260

Re: Account signature don't append unless auth = From address

as far as understand, account signatures don't append unless authenticated user = From address. i.e. From address in client: name.surname@local.com (which is an alias in HMS) authenticates as nsurname@local.com (real account), account signature don't apply. does it make sense? Probably, DKIM is sig...
by RvdH
2021-05-26 09:23
Forum: General discussions
Topic: DKIM not applying to some emails
Replies: 21
Views: 388

Re: DKIM not applying to some emails

symantec.efrecovery.com never submits a message to hmailserver...so the is nothing to sign with DKIM You have to find out why symantec.efrecovery.com immediately sends the QUIT command (instead the DATA command followed by the QUIT command) "DEBUG" 1428 "2021-05-25 13:30:24.935" "Creating session 63...
by RvdH
2021-05-25 18:31
Forum: Off-topic discussions
Topic: SaneSecurity.Foxhole false positives on DMARK reports
Replies: 30
Views: 634

Re: SaneSecurity.Foxhole false positives on DMARK reports

@katip Spamassassin is also a daemon, but on windows that would mean you have to run it in a command Window all the time, hence the reason we are using NSSM and/or something alike to be able to run it as a service yes sure, i was using Nico's builds with a service wrapper. then i came across to Gia...
by RvdH
2021-05-25 12:35
Forum: Off-topic discussions
Topic: SaneSecurity.Foxhole false positives on DMARK reports
Replies: 30
Views: 634

Re: SaneSecurity.Foxhole false positives on DMARK reports

Some signatures simply haven't been updated in ages, both on http(s) mirror as on official rsync server.... you never noticed that as you never looked at that before New Image https://imgur.com/a/1rfENCb Some How the list has been updated just now. :lol: Did you do it? :lol: (Just Joking) 👍
by RvdH
2021-05-25 12:06
Forum: Off-topic discussions
Topic: SaneSecurity.Foxhole false positives on DMARK reports
Replies: 30
Views: 634

Re: SaneSecurity.Foxhole false positives on DMARK reports

palinka wrote: ↑
2021-05-25 11:35
Clamd runs as a service with the official version and both versions work equally with hmailserver.
Just installed the official version, no way this install like a service....as daemon maybe (using an additional conhost process), but not as service
by RvdH
2021-05-25 11:58
Forum: Off-topic discussions
Topic: SaneSecurity.Foxhole false positives on DMARK reports
Replies: 30
Views: 634

Re: SaneSecurity.Foxhole false positives on DMARK reports

What is the benefit of using the official ClamAV distribution compared to the https://oss.netfarm.it/clamav/ which is optimized to run as a service under Windows? The official ClamAV distribution is missing functionality (under Windows) and that is exactly what Gianluigi's fork steps in. @gotspatel...
by RvdH
2021-05-25 11:42
Forum: Off-topic discussions
Topic: SaneSecurity.Foxhole false positives on DMARK reports
Replies: 30
Views: 634

Re: SaneSecurity.Foxhole false positives on DMARK reports

What is the benefit of using the official ClamAV distribution compared to the https://oss.netfarm.it/clamav/ which is optimized to run as a service under Windows? The official ClamAV distribution is missing functionality (under Windows) and that is exactly what Gianluigi's fork steps in. There's no...
by RvdH
2021-05-25 11:37
Forum: General discussions
Topic: Error smtp 554 too many errors detected from your IP with Free
Replies: 18
Views: 442

Re: Error smtp 554 too many errors detected from your IP with Free

You have to make sure the account(s) you are mailing to actually still exist on the receiving server, and if it doesn't fix your mailing(list) accordingly As i read and understand it you tried to send (too many) mail to non-existing users and therefore you are blocked Examine your bounces and delete...
by RvdH
2021-05-25 11:14
Forum: Off-topic discussions
Topic: SaneSecurity.Foxhole false positives on DMARK reports
Replies: 30
Views: 634

Re: SaneSecurity.Foxhole false positives on DMARK reports

What is the benefit of using the official ClamAV distribution compared to the https://oss.netfarm.it/clamav/ which is optimized to run as a service under Windows? The official ClamAV distribution is missing functionality (under Windows) and that is exactly what Gianluigi's fork steps in. @gotspatel ...
by RvdH
2021-05-24 10:55
Forum: Off-topic discussions
Topic: SaneSecurity.Foxhole false positives on DMARK reports
Replies: 30
Views: 634

Re: SaneSecurity.Foxhole false positives on DMARK reports

Only the versions found on https://oss.netfarm.it/clamav/ support to install clamd and freshclam as a service, if that would be possible with the 'original' version there was no need for Gianluigi to create/maintain his fork for Win32/64 systems, would it? it is even listed Gianluigi features listin...
by RvdH
2021-05-20 14:26
Forum: Off-topic discussions
Topic: IE retired
Replies: 5
Views: 244

Re: IE retired

johang wrote: ↑
2021-05-20 13:33
damn i might have to retire my chineese HilLook web/surveilance cameras then,, ( or just keep an win7 with old ie as a virtual client somewhere for configuring purposes of those cams )
I read somewhere, Edge (chromium based) get some kind of IE emulation mode...so you might be lucky ;)
by RvdH
2021-05-19 09:17
Forum: General discussions
Topic: Cant delete e-mail
Replies: 15
Views: 372

Re: Cant delete e-mail

KTS wrote: ↑
2021-05-19 08:36
what else could it be?
Umlaut in folder names the messages resides in perhaps? See: https://github.com/hmailserver/hmailserver/issues/293
by RvdH
2021-05-18 21:13
Forum: General discussions
Topic: Relay without authentication
Replies: 2
Views: 153

Re: Relay without authentication

Maybe, if it doesn't take too much of your precious time you perhaps could read the docs?
And a bit more specifically the part about ip-ranges, deliveries & authentication
by RvdH
2021-05-17 10:49
Forum: General discussions
Topic: How to run three or more instances of hMailServer/different fqdn in HELO. How to?
Replies: 2
Views: 152

Re: How to run three or more instances of hMailServer/different fqdn in HELO. How to?

raleighwalter wrote: ↑
2021-05-17 10:20
I have 3 domains.
I need to servicing mail for each domain on one virtual machine, bind each domain to a different ip-adressess and each domain used a personal fqdn in HELO when sending messages to outside world.
May be to run 3 instances of hmailserver?
How to?

ThanX
Not possible
by RvdH
2021-05-14 11:23
Forum: General discussions
Topic: Auto-ban - IP range entries persist in UI
Replies: 2
Views: 152

Re: Auto-ban - IP range entries persist in UI

Select the IP Ranges panel, F5 = Refresh
by RvdH
2021-05-12 18:32
Forum: General discussions
Topic: Rules create copy and send, sending slow
Replies: 63
Views: 1816

Re: Rules create copy and send, sending slow

The 6 lines of code I posted earlier today strip away ALL HTML/Table/Document formatting. You are left with Plain Text and a lot of 0D0A's. In my classic asp days i used something like Function stripHTML(strHTML) 'Strips the HTML tags from strHTML Dim objRegExp, strOutput Set objRegExp = New Regexp...
by RvdH
2021-05-12 13:43
Forum: Scripting
Topic: Newbie help :-)
Replies: 6
Views: 283

Re: Newbie help :-)

Renaming, probably not...but i think it might be possible to save & rename the attachment, next delete the attachment and then re-attach the saved and renamed attachment
by RvdH
2021-05-12 12:22
Forum: Scripting
Topic: Newbie help :-)
Replies: 6
Views: 283

Re: Newbie help :-)

You probably have to loop trough all recipients and then (most likely) only save those attachments for local users, eg:

Code: Select all

For oRecipient = 0 to oMessage.Recipients.Count-1
	If oMessage.Recipients(oRecipient).IsLocalUser Then
	

	accountname = oMessage.Recipients(oRecipient).Address
	
	
	End if
Next
by RvdH
2021-05-11 18:32
Forum: General discussions
Topic: Problems with new Domain and Account
Replies: 27
Views: 669

Re: Problems with new Domain and Account

This is my last post on this topic. It is unfortunate that a Moderator of the forum is not as knowledgeable about how some portions of the software works as I have become and that lack of knowledge has resulted inaccurate information being presented as completely accurate, which may end up misleadi...
by RvdH
2021-05-11 15:36
Forum: Development & alpha discussions
Topic: Add TLS server cipher preference support to hMailServer 5.6.x
Replies: 1
Views: 152

Add TLS server cipher preference support to hMailServer 5.6.x

I am testing out this pull request made by SvenKiljan on github The first part of this pull request makes sense, eg: let the server decide what ciphers it prefers and not the client, which is a requirement for some SMTP security test like the one on: https://en.internet.nl/test-mail/ The second part...
by RvdH
2021-05-11 15:07
Forum: General discussions
Topic: URLHaus/SecuriteInfo ClamAV sigs anyone?
Replies: 8
Views: 343

Re: URLHaus/SecuriteInfo ClamAV sigs anyone?

katip wrote: ↑
2021-05-11 14:55
RvdH wrote: ↑
2021-05-07 20:45
FYI, > 5MB scans is now also possible with latest 5.7 Alpha build
can you pls confirm if this applies to 5.7 b2572 (which i see as latest build dated 25.04. on TeamCity)?
That is the latest, and i told it's available in the latest alpha build :wink:
by RvdH
2021-05-11 10:41
Forum: Development & alpha discussions
Topic: upgrade 5.6.8 x86 to 5.7 x64
Replies: 22
Views: 968

Re: upgrade 5.6.8 x86 to 5.7 x64

Interesting... I wonder if Martin did put the "App can handle >2gb address space" flag in 5.7 otherwise you are still limited to 1.7 GB... https://www.hmailserver.com/forum/viewtopic.php?p=160610#p160610 https://stackoverflow.com/questions/3109543/what-to-do-to-make-application-large-address-aware ...
by RvdH
2021-05-10 11:27
Forum: General discussions
Topic: False positive SURBL match
Replies: 26
Views: 6068

Re: False positive SURBL match

glenluo wrote: ↑
2021-05-10 10:56
Server setting is the correct spelling,wrong spelling here,haha.
Not only here on the forum, your nslookup screenshot also says otherwise, so your testing it with wrong data....duh!

dig amazonaws.com.dbl.spamhaus.org A => NXDOMAIN => not listed
by RvdH
2021-05-10 00:58
Forum: General discussions
Topic: False positive SURBL match
Replies: 26
Views: 6068

Re: False positive SURBL match

Even the USA server check,it returns public IP address. For example: amazonaws.com.dbl.spamhous.org You will get result: 103.224.212.220 In that case,SURBL match. hmailserver need to improve to check the return value to match the result. spamhous.org...really??? :mrgreen: Just a suggestion, but may...
by RvdH
2021-05-07 20:45
Forum: General discussions
Topic: URLHaus/SecuriteInfo ClamAV sigs anyone?
Replies: 8
Views: 343

Re: URLHaus/SecuriteInfo ClamAV sigs anyone?

Securitinfo drains too much RAM. I used it 1 year or so and dropped a while ago, it wasn't feasible at all. yes, centralizing SA & ClamAV on a seperate system is really a good approach. i have both on an Ubuntu VM. lately i replaced x64 HMS with 5.6.8, just to evaluate those >5MB scans. it rocks. m...
by RvdH
2021-05-07 17:02
Forum: General discussions
Topic: URLHaus/SecuriteInfo ClamAV sigs anyone?
Replies: 8
Views: 343

Re: URLHaus/SecuriteInfo ClamAV sigs anyone?

Geez this is really shocking :shock:
Memory usage of ClamAV and these and sanesecurity sigs > 1700MB

That is outrageous :!:
by RvdH
2021-05-07 16:57
Forum: User-submitted tutorials
Topic: HOW TO run Clamwin and have a ClamAV system SERVICE
Replies: 221
Views: 281968

Re: HOW TO run Clamwin and have a ClamAV system SERVICE

# Sanesecurity + Foxhole DatabaseCustomURL https://ftp.swin.edu.au/sanesecurity/junk.ndb DatabaseCustomURL https://ftp.swin.edu.au/sanesecurity/jurlbl.ndb DatabaseCustomURL https://ftp.swin.edu.au/sanesecurity/phish.ndb DatabaseCustomURL https://ftp.swin.edu.au/sanesecurity/rogue.hdb DatabaseCustom...
by RvdH
2021-05-06 16:55
Forum: General discussions
Topic: Attack by SYN_RCVD
Replies: 21
Views: 7293

Re: Attack by SYN_RCVD

Anyone else struggling with SYN_RCVD flood attacks again? Noticed when trying to pause/resume server...it completely hang :evil: https://www.abuseipdb.com/check/162.0.227.30 https://www.abuseipdb.com/check/162.0.227.31 https://www.abuseipdb.com/check/198.187.28.105 https://www.abuseipdb.com/check/19...
by RvdH
2021-05-05 17:36
Forum: General discussions
Topic: Antivirus not delete attachment for CC account
Replies: 23
Views: 549

Re: Antivirus not delete attachment for CC account

If the sending MTA splits the email into multiple deliveries for each recipient, even when they are at the same domain, then hMailServer will see multiple copies of the same dataset and run AV on each. You need to review logs to determine if that is what happened in the case you are describing. +1 ...
by RvdH
2021-05-05 09:39
Forum: General discussions
Topic: Antivirus not delete attachment for CC account
Replies: 23
Views: 549

Re: Antivirus not delete attachment for CC account

Basically there are 2 issues with using Defender as AV It doesn't properly distinguish return types Nothing is logged once you enable -DisableRemediation Return code is 0 if no malware is found or malware is successfully remediated and no additional user action is required 2 if malware is found and ...
by RvdH
2021-05-04 23:05
Forum: General discussions
Topic: Antivirus not delete attachment for CC account
Replies: 23
Views: 549

Re: Antivirus not delete attachment for CC account

paolo_c wrote: ↑
2021-05-04 22:39
BTW... Is still not clear why for the email with CC, where all recipients are on the same email server, just for one recipient the attachment is deleted.
No, but with a AV that triggers false positives you never know, therefor my initial reply was pick another AV
by RvdH
2021-05-04 23:03
Forum: General discussions
Topic: Antivirus not delete attachment for CC account
Replies: 23
Views: 549

Re: Antivirus not delete attachment for CC account

I still believe the code here is responsible for the false positives reported by Windows Defender, perhaps the *.tmp file is not created if the mimepart contains "invalid/reserved" characters..eg: Return code 2: if malware is found and not remediated or additional user action is required to complet...
by RvdH
2021-05-04 20:52
Forum: General discussions
Topic: Antivirus not delete attachment for CC account
Replies: 23
Views: 549

Re: Antivirus not delete attachment for CC account

Ok now I'm more confused... On this thread ( https://answers.microsoft.com/en-us/protect/forum/mse-protect_scanning-windows_7/add-additional-return-code-for-mpcmdrun-custom/2b93f70b-3f98-4ef7-96e8-11bfc2657ff6 ) I found a post by [RvdH] where he claim: "...each e-mail delivered through hMailServer ...
by RvdH
2021-05-04 20:45
Forum: User-submitted tutorials
Topic: HOW TO run Clamwin and have a ClamAV system SERVICE
Replies: 221
Views: 281968

Re: HOW TO run Clamwin and have a ClamAV system SERVICE

Regardless the spam/junk/virus ... should not hMailServer AND SpamAssassin receive the same reply from ClamAV? Is this a virus?? That depends....how are both instances called compared to each other? Same params? Same 'Max Message Size to Scan' configures in HMS between virus/spam scans? Or perhaps ...
by RvdH
2021-05-04 20:06
Forum: User-submitted tutorials
Topic: HOW TO run Clamwin and have a ClamAV system SERVICE
Replies: 221
Views: 281968

Re: HOW TO run Clamwin and have a ClamAV system SERVICE

You may ask WHY do I scan files twice ... Well, no more than 10 minutes ago my server received an email that hMailServer says is clean but SpamAssassin says - X-Spam-Virus: Yes (Porcupine.Junk.40702.UNOFFICIAL(9503bd3aef746a857a71d39bd001380e:1653)) You have to question if junk (Porcupine.Junk) det...
by RvdH
2021-05-04 19:56
Forum: General discussions
Topic: Antivirus not delete attachment for CC account
Replies: 23
Views: 549

Re: Antivirus not delete attachment for CC account

IIRC %FILE% passes the filename of the .eml file, not the attachment. So your script could use the hMailServer API to save each attachment to a temporary file, delete it from the message, rename the file if a problem filename is detected, scan the file, and only re-attach the file if it is clean. R...
by RvdH
2021-05-04 19:45
Forum: User-submitted tutorials
Topic: HOW TO run Clamwin and have a ClamAV system SERVICE
Replies: 221
Views: 281968

Re: HOW TO run Clamwin and have a ClamAV system SERVICE

You may ask WHY do I scan files twice ... Well, no more than 10 minutes ago my server received an email that hMailServer says is clean but SpamAssassin says - X-Spam-Virus: Yes (Porcupine.Junk.40702.UNOFFICIAL(9503bd3aef746a857a71d39bd001380e:1653)) You have to question if junk (Porcupine.Junk) det...