Search found 196 matches

by ras07
2019-09-27 05:16
Forum: General discussions
Topic: Value in having failed passwords in log files
Replies: 5
Views: 397

Re: Value in having failed passwords in log files

Just had a look through my logs this month Most of the AUTH PLAIN are from my own machine running thunderbird Interesting, I run Thunderbird also but it never tries AUTH PLAIN. Must be setting difference in there somewhere ... I block international connections to IMAP, POP3 and non-port-25 SMTP (eg...
by ras07
2019-09-26 02:26
Forum: General discussions
Topic: Value in having failed passwords in log files
Replies: 5
Views: 397

Re: Value in having failed passwords in log files

I could see some use for that data (I block port 25 AUTH though - so no value for me I don't think) But passwords attempted on IMAP or POP3 ports or SMTP other than port 25 would be interesting. I get a dozen IPs per day that I block by GEOIP I block AUTH on 25 too; still get dozens of attempts per...
by ras07
2019-09-26 01:39
Forum: General discussions
Topic: Value in having failed passwords in log files
Replies: 5
Views: 397

Value in having failed passwords in log files

I have plain text SMTP authentication disabled, but of course that doesn't stop the bots from trying it. Every now and again I grep my logs for AUTH PLAIN and base64-decode the payload, just to see what the script kiddies are trying these days. Most of these attempts either use generic frequently-us...
by ras07
2019-09-20 21:07
Forum: General discussions
Topic: Global Rule to delete spam
Replies: 23
Views: 530

Re: Global Rule to delete spam

Neither rules nor Spam Assassin are going to help you here. The suggestion of spamassassin is because it may pick or up based on ip and source reputation. Also, sa is very weary of 'image only' emails. [Entered by mobile. Excuse my spelling.] Understood; didn't mean that SA wouldn't catch it, just ...
by ras07
2019-09-20 20:45
Forum: General discussions
Topic: Global Rule to delete spam
Replies: 23
Views: 530

Re: Global Rule to delete spam

Wait, wait, wait. Reset. Content-Type: text/html; charset="iso-8859-1" Content-Transfer-Encoding: base64 PCFkb2N0eXBlIGh0bWw+DQo8aHRtbD4NCjxoZWFkPg0KPG1ldGEgY2hhcnNldD0idXRmLTgiPg0K PC9oZWFkPg0KPGJvZHk+DQo8dGFibGUgd2lkdGg9IjYwMCIgIGJvcmRlcj0iMCIgYWxpZ249ImNl bnRlciIgIHN0eWxlPSJmb250LWZhbWlseTogQXJpY...
by ras07
2019-09-05 06:50
Forum: General discussions
Topic: Using honeypots to catch spammers?
Replies: 16
Views: 599

Re: Using honeypots to catch spammers?

I used to use junkemailfilter.com as a backup mx but i was getting all spam messages through them sent to me, but get this - they would connect and the logs show the original sender but then the connection would mysteriously quit before actually transmitting the message. I emailed them about this b...
by ras07
2019-08-30 00:52
Forum: Off-topic discussions
Topic: August Windows Update - potential risk?
Replies: 7
Views: 625

Re: August Windows Update - potential risk?

I'm on Win7SP1 and it seems to be working fine. I did see that warning before I updated, so I ran a test machine for a few days before upgrading my main system. And triple-checked my backups. But I haven't seen any issues.
by ras07
2019-08-21 07:17
Forum: General discussions
Topic: DKIM and aliased domains
Replies: 4
Views: 276

Re: DKIM and aliased domains

mattg wrote:
2019-08-21 06:55
How many accounts do you that use that domain name alias?
A few dozen user accounts on 3 domains (all aliased together).
by ras07
2019-08-21 06:43
Forum: General discussions
Topic: DKIM and aliased domains
Replies: 4
Views: 276

Re: DKIM and aliased domains

mattg wrote:
2019-08-21 05:50
Personally I still believe that the D in DKIM is 'Domain' and that DKIM should be individualised per domain (FQDN)
Would be fine with me if it signed the message as the alias domain name, but used the same key
by ras07
2019-08-21 03:11
Forum: General discussions
Topic: DKIM and aliased domains
Replies: 4
Views: 276

DKIM and aliased domains

I have hMailServer set up with a single domain, call it xyz.com. I have xyz.org and xyz.net as domain name aliases (configured in Domains | xyz.com , Names tab). The appropriate DNS TXT records are all set for xyz.com, xzy.org, and xyz.net. (All set to the same key.) DKIM works fine for email sent f...
by ras07
2019-08-20 23:06
Forum: General discussions
Topic: Lego: Windows-based auto-renewal of Let's Encrypt certs, including wildcards
Replies: 6
Views: 1083

Re: Lego: Windows-based auto-renewal of Let's Encrypt certs, including wildcards

IMPORTANT UPDATE: TL;DR : add -k rsa4096 to each of the lego commands in the above scripts to support encryption of email coming in from Outlook and Hotmail users. DETAILS : After running this for a few months, I noticed that I was getting more "no shared cipher" errors than I used to. Most of the ...
by ras07
2019-08-20 22:40
Forum: General discussions
Topic: Possible gotcha with Let's Encrypt certs
Replies: 0
Views: 430

Possible gotcha with Let's Encrypt certs

If you're using Let's Encrypt certificates with hMailServer, you might want to search your logs for "no shared cipher" messages. If you're getting a lot of these, it may be because certain LetsEncrypt clients have started defaulting to generating Elliptical Curve Certificates (ECC), rather than RSA ...
by ras07
2019-07-08 17:17
Forum: Development & alpha discussions
Topic: Sub OnHELO(oClient) progress?
Replies: 197
Views: 42793

Re: Sub OnHELO(oClient) progress?

Installed and using, no problems so far - thanks!
by ras07
2019-04-27 05:31
Forum: Development & alpha discussions
Topic: Sub OnHELO(oClient) progress?
Replies: 197
Views: 42793

Re: Sub OnHELO(oClient) progress?

Anyone who wish to help, can just create a Github Account and join the HCD Github Organization, so it doesnt depends all on 1 single person. ... Ok, there is a hell lot of work todo, but i think its totally worth it. Hey, I'd be in. It's been years (ok, decades) since I did anything serous in c/c++...
by ras07
2019-04-20 04:00
Forum: Development & alpha discussions
Topic: Sub OnHELO(oClient) progress?
Replies: 197
Views: 42793

Re: Sub OnHELO(oClient) progress?

Is it possible to tell OnHELO to reply with an SMTP code other than 542? I'm thinking that 421 might be useful, probably others ...
by ras07
2019-04-17 19:54
Forum: General discussions
Topic: Lego: Windows-based auto-renewal of Let's Encrypt certs, including wildcards
Replies: 6
Views: 1083

Re: Lego: Windows-based auto-renewal of Let's Encrypt certs, including wildcards

Is it compatible for those of us running Windows DNS server (not 'bind')? [Entered by mobile. Excuse my spelling.] Can you do a split horizon with MS DNS? As I read it Lego needs to play with the public DNS to add some stuff to it. Lego... I have fond memories of my kids playing with Lego all over ...
by ras07
2019-04-17 17:18
Forum: General discussions
Topic: Lego: Windows-based auto-renewal of Let's Encrypt certs, including wildcards
Replies: 6
Views: 1083

Re: Lego: Windows-based auto-renewal of Let's Encrypt certs, including wildcards

Is it compatible for those of us running Windows DNS server (not 'bind')? I'm not sure. It looks like Windows DNS server supports RFC2136 but not TSIG authentication. If your hMailServer machine can authenticate through Active Directory there might be a way to do it. Or, Lego has an external progra...
by ras07
2019-04-17 10:05
Forum: General discussions
Topic: Lego: Windows-based auto-renewal of Let's Encrypt certs, including wildcards
Replies: 6
Views: 1083

Lego: Windows-based auto-renewal of Let's Encrypt certs, including wildcards

I've been using Let's Encrypt certs for several years now. Their certs are only good for 90 days, and while there are some well-known ways to auto-renew them on Linux (which is what I've been doing, and then copying them over to my hMailServer machine) Windows support is pretty hit-or-miss. I wanted...
by ras07
2019-04-16 20:26
Forum: General discussions
Topic: SSL/TLS cert for multiple domains?
Replies: 6
Views: 955

Re: SSL/TLS cert for multiple domains?

It's not "client dependent", it's server dependent. Well, no, it's client dependent. You can write software to do whatever you want, and if you want it to ignore cert ownership, you certainly can. I know of at least several that do; the one on my Android phone, for instance (that was how this whole...
by ras07
2019-04-16 08:37
Forum: General discussions
Topic: SSL/TLS cert for multiple domains?
Replies: 6
Views: 955

Re: SSL/TLS cert for multiple domains?

Or is TLS support in SMTP (and IMAP) specifically designed to facilitate only encryption, and not authentication? Correct You need a cert that matches the 'local host name' in SMTP >> Delivery of email and that is it. Hmm, apparently this isn't correct for IMAP ... I imagine it's client-dependent, ...
by ras07
2019-04-15 05:52
Forum: General discussions
Topic: SSL/TLS cert for multiple domains?
Replies: 6
Views: 955

SSL/TLS cert for multiple domains?

Do you need to have a multi-domain (SAN) cert if your hmailserver instance supports multiple email domains (and answers to multiple domain names in MX records)? I always assumed yes, and I've always had SAN certs. But I recently added a new domain to my mail server and forgot all about the certifica...
by ras07
2018-07-13 21:54
Forum: General discussions
Topic: Sudden Service misbehaviour - help required (service fails to stop)
Replies: 50
Views: 6946

Re: Sudden Service misbehaviour - help required please

This is the second disaster Microsoft updates have caused for me THIS WEEK. :cry:

Unfortunately forced updates from MS are getting harder and harder to avoid. This is going to cause a lot of people a lot of problems.
by ras07
2018-07-13 20:16
Forum: General discussions
Topic: Sudden Service misbehaviour - help required (service fails to stop)
Replies: 50
Views: 6946

Re: Sudden Service misbehaviour - help required please

Same problem; removing the less-than-amusingly named 2018-07 Security and "Quality" Rollup for .NET solved it. Unbelievable.
by ras07
2018-06-01 19:58
Forum: Development & alpha discussions
Topic: Minor doc error
Replies: 2
Views: 1450

Minor doc error

The changelog for the beta says "Upgrade to OpenSSL 1.0.1o" - pretty sure it should be 1.0.2o

https://www.hmailserver.com/changelog/?version=5.6.8
by ras07
2017-01-20 19:31
Forum: Scripting
Topic: Way to auto-ban unknow user
Replies: 10
Views: 7183

Re: Way to auto-ban unknow user

As they say, I Am Not A Lawyer, but I'll just point out that we're talking about deleting mail that was sent to a non-existent account . So who, exactly, is "the law" going to presume the recipient is? If I write "To Fred" (and nothing else) on an envelope and drop it in the local post, I don't thin...
by ras07
2017-01-09 10:09
Forum: General discussions
Topic: Greylisting mystery
Replies: 4
Views: 1184

Re: Greylisting mystery

mattg wrote:That better?
Perfect!
by ras07
2017-01-08 06:47
Forum: General discussions
Topic: Greylisting mystery
Replies: 4
Views: 1184

Re: Greylisting mystery

A ha - Makes sense.

Might be worth a mention in the docs at https://www.hmailserver.com/documentati ... reylisting ... I was all over the docs trying to figure this out.
by ras07
2017-01-07 20:41
Forum: General discussions
Topic: Greylisting mystery
Replies: 4
Views: 1184

Greylisting mystery

Some (considerable) time ago, I was experimenting with greylisting. At the time I determined that it wasn't a good fit for my circumstances, and disabled it - or so I thought. Today I was looking for something else and happened to click on Greylisting in the Admin console. Lo and behold, Greylisting...
by ras07
2016-12-20 06:01
Forum: Off-topic discussions
Topic: Why RFC's arent always right.....
Replies: 7
Views: 3560

Re: Why RFC's arent always right.....

RFC's only matters to Programmers Well, I wouldn't go quite that far ... I'd imagine that many, if not most, "RFC compliant" services give users enough rope to hang themselves with in terms of configuring in a non-RFC compliant manner, if the user so chooses. Doing so is at your own risk, of course...
by ras07
2016-12-20 05:32
Forum: Off-topic discussions
Topic: Why RFC's arent always right.....
Replies: 7
Views: 3560

Re: Why RFC's arent always right.....

RFC5321 says that smtp banners should advertise the FQDN host name ... The words "must", "should", "may", etc. have very specific meanings in RFC language. Per RFC 2119 : 3. SHOULD This word, or the adjective "RECOMMENDED", mean that there may exist valid reasons in particular circumstances to igno...
by ras07
2016-12-20 05:18
Forum: Feature requests
Topic: .ItemByName behavior
Replies: 7
Views: 2059

Re: .ItemByName behavior

I readily admit that I'm a bit vague on the distinction, but my understanding is that Nothing would be appropriate for an object, and Empty would be appropriate for a variant. Since the .ItemByName properties return an object (Application.Domains.ItemByName() returns a Domain object,for example) I a...
by ras07
2016-12-20 03:56
Forum: Feature requests
Topic: .ItemByName behavior
Replies: 7
Views: 2059

Re: .ItemByName behavior

That's a good idea - let me work on that.

In the larger scheme of things, I still think it would be a lot cleaner if all .ItemBy* properties would return Nothing if the item isn't found.

ras
by ras07
2016-12-19 23:48
Forum: Feature requests
Topic: .ItemByName behavior
Replies: 7
Views: 2059

Re: .ItemByName behavior

Yeah, that's about what I'm doing now ... but On Error Resume Next can hide a lot of programming faults or other errors that would otherwise be found. Would be a lot better not to have to use it.
by ras07
2016-12-19 20:37
Forum: Feature requests
Topic: .ItemByName behavior
Replies: 7
Views: 2059

.ItemByName behavior

Application.Settings.SecurityRanges.ItemByName(string sName) throws a "Subscript out of range" error if the named range doesn't exist. It looks like Domains.ItemByName and Accounts.ItemByAddress exhibit the same behavior; I haven't tested other .ItemBy... properties. Would it be possible to instead ...
by ras07
2016-12-19 19:59
Forum: Scripting
Topic: Script to rename Attachment file type
Replies: 49
Views: 14055

Re: Script to rename Attachment file type

Interesting ... I've seen something that sounds similar, although it has nothing to do with a script. When the virus checker (ClamAV) detects a virus, I have it set to delete attachments. When it does this it sometimes munges the message body. Here's a snipped of a raw .eml file that's been munged: ...
by ras07
2016-12-07 06:30
Forum: Scripting
Topic: Can you add headers in OnSMTPData?
Replies: 15
Views: 4520

Re: Can you add headers in OnSMTPData?

estradis wrote:We only ban intrusion attempts, not spammers. Maybe that's the difference.
Ah - yeah, that makes sense. (It's what I ended up doing as well.)
by ras07
2016-12-06 00:58
Forum: Scripting
Topic: Can you add headers in OnSMTPData?
Replies: 15
Views: 4520

Re: Can you add headers in OnSMTPData?

Interesting ... we have dramatically different spam experiences. A couple months ago I decided to auto-ban the most blatant of spamming IPs ... only those IPs who are on many different DNSBLs, and that repeatedly sent us only obvious spam. In less than 2 weeks the autoban list exceeded 3,000 entries...
by ras07
2016-11-28 08:47
Forum: General discussions
Topic: {REQ}php mail sender local
Replies: 3
Views: 2157

Re: {REQ}php mail sender local

https://www.hmailserver.com/documentation/latest/?page=reference_ssltls describes the various connection security options. https://www.hmailserver.com/documentation/latest/?page=reference_tcpipport describes how to set them. For STARTTLS (either optional or required) you will need an SSL certificate...
by ras07
2016-11-27 05:29
Forum: General discussions
Topic: {REQ}php mail sender local
Replies: 3
Views: 2157

Re: {REQ}php mail sender local

It looks like your sender (webmail?) is configured to require STARTTLS, but your server is not configured to accept STARTTLS. What exactly are you trying to do? In general, there's not a lot to be gained by encrypting localhost communication. Your IP is in the range used by a some pretty notorious I...
by ras07
2016-11-27 00:20
Forum: General discussions
Topic: Anti Spam BLACK LIST
Replies: 11
Views: 2491

Re: Anti Spam BLACK LIST

You can write a script to search through the headers looking for a particular domain(s), and then do what you want with it.

If you provide a little more detail on exactly what you want to do, we can probably point you in the right direction.
by ras07
2016-11-25 05:46
Forum: Scripting
Topic: Can you add headers in OnSMTPData?
Replies: 15
Views: 4520

Re: Can you add headers in OnSMTPData?

Yep, saw that. Was sort of assuming that was a cascading problem from the extra NL (figuring the scan for headers stopped at the double NL), but that's a presumption.
by ras07
2016-11-25 05:11
Forum: Scripting
Topic: Can you add headers in OnSMTPData?
Replies: 15
Views: 4520

Re: Can you add headers in OnSMTPData?

It's not that critical. I'm using RvdH's OnHELO mod, described at www.hmailserver.com/forum/viewtopic.php?t=30193 . There's certain HELO responses that are clearly spam-related, and I'd like to drop (and ban) them immediately. There are other responses that are technically invalid, but I don't want ...
by ras07
2016-11-25 04:44
Forum: General discussions
Topic: Qestion. How Can I SetUp local machine mail server sending outside to gmail hotmail etc..
Replies: 7
Views: 1600

Re: Qestion. How Can I SetUp local machine mail server sending outside to gmail hotmail etc..

With or without business-class broadband, virtually any provider will have an email gateway you can use for outbound SMTP. But, as jimimaseye points out, there's a fair bit of relatively esoteric knowledge necessary to run your own email server - it's not overly hard, but it is fairly involved. It's...
by ras07
2016-11-23 22:33
Forum: Scripting
Topic: Can you add headers in OnSMTPData?
Replies: 15
Views: 4520

Re: Can you add headers in OnSMTPData?

You do not want to modify oMessage in any way at this stage. Use the next event. Actually that's kind of the motivation for what I'm trying to do. I'd like to do some checks in OnSMTPData, and then take action based on those checks in OnAcceptMessage, without re-executing the OnSMTPData checks. Glo...
by ras07
2016-11-23 22:10
Forum: Feature requests
Topic: OnSMTPError event handler
Replies: 1
Views: 1592

OnSMTPError event handler

I think would be very useful to call a handler when a 500-level SMTP response is sent ("530 SMTP authentication is required", "503 Must have sender and recipient first", etc). Both the error code and the response message would need to be passed to the handler (some codes, 503 for example, can get se...
by ras07
2016-11-23 21:07
Forum: Scripting
Topic: Can you add headers in OnSMTPData?
Replies: 15
Views: 4520

Re: Can you add headers in OnSMTPData?

Sorry to bump, but does anyone know if this ought to work? If it should, I'll open a defect ... I've done quite a bit of testing with it and it consistently does this.
by ras07
2016-11-21 23:43
Forum: General discussions
Topic: question: notification for infected mails
Replies: 18
Views: 3168

Re: question: notification for infected mails

jimimaseye's reply is probably best, but if you still want to go the forwarding route, just add a rule criteria that says Recipient List does not include <mirroraddress.domain.com>.
by ras07
2016-11-21 07:05
Forum: SpamAssassin implementation discussions
Topic: Anti Spam Settings
Replies: 68
Views: 101780

Re: Anti Spam Settings

I use all of these, and not all are traditional URIBL or SURBL lists multi.surbl.org dbl.spamhaus.org uribl.spameatingmonkey.net uribl.swinog.ch ubl.nszones.com I've tried uribl.swinog.ch in the past, but hardly ever got any hits with it. Is there something special you need to do with it? The instr...
by ras07
2016-11-19 18:11
Forum: General discussions
Topic: Global and Local rules both moving email
Replies: 5
Views: 1451

Re: Global and Local rules both moving email

That depends; do local rules get executed against new messages in the user's account, or new messages in the Inbox. Appears to be the latter.
by ras07
2016-11-19 08:03
Forum: Scripting
Topic: Can you add headers in OnSMTPData?
Replies: 15
Views: 4520

Can you add headers in OnSMTPData?

I know the message properties are only partially populated when OnSMTPData fires. Should one expect to be able to add or modify headers and then execute oMessage.Save ? This forum post https://www.hmailserver.com/forum/viewtopic.php?t=28131 would seem to indicate that you can. But when I try it, it ...
by ras07
2016-11-19 05:02
Forum: General discussions
Topic: Global and Local rules both moving email
Replies: 5
Views: 1451

Re: Global and Local rules both moving email

mattg wrote:I suspect that account level rules only work on mail intended for the inbox
Yeah, that appears to be the case. Bummer.
by ras07
2016-11-19 04:59
Forum: Scripting
Topic: Way to auto-ban unknow user
Replies: 10
Views: 7183

Re: Way to auto-ban unknow user

Alternately, if you cheat a little with some third-party tools you can pretty simply monitor the log file to do this. Make sure SMTP logging is on, then do something like this: Sub OnAcceptMessage (oClient, oMessage) Dim LogFileName, NowTime NowTime = Now LogFileName = "c:\HMailServer\Logs\hmailserv...
by ras07
2016-11-19 04:25
Forum: Scripting
Topic: Way to auto-ban unknow user
Replies: 10
Views: 7183

Re: Way to auto-ban unknow user

I think you actually could do it without resorting to monitoring the log files. Create a "catch-all" account (Advanced tab under Domain settings). In OnAcceptMessage save the sender's IP address to a header, like so: Sub OnAcceptMessage (oClient, oMessage) oMessage.HeaderValue("X-Sender-IP") = oClie...
by ras07
2016-11-19 03:36
Forum: General discussions
Topic: Global and Local rules both moving email
Replies: 5
Views: 1451

Global and Local rules both moving email

If a Global rule is triggered that causes an email to be moved to a particular IMAP folder (not to a different user or to a global folder) can a Local rule later be applied that moves it to a different IMAP folder? From experimenting (with Debug logging on), the answer appears to be no. (In fact, I'...
by ras07
2016-11-01 17:30
Forum: General discussions
Topic: Use Let's Encrypt Certificates with HM
Replies: 55
Views: 20386

Re: Use Let's Encrypt Certificates with HM

Does anyone know of a script to automate obtaining and renewing certs for hmailserver? I'm not the expert, but as I understand it, the process for obtaining and renewing Let's Encrypt certs requires an HTTPS server - so to my knowledge there's not a way to automate it with hMS alone. For the time b...
by ras07
2016-08-31 19:53
Forum: Scripting
Topic: General question: passing info from one On* sub to another
Replies: 0
Views: 1317

General question: passing info from one On* sub to another

In general, what's the best practice for maintaining context between fired events? For example, I have some processing in OnAcceptMessage that could be more effective in OnSMTPData, but later I'll want to access that info in OnAcceptMessage. I could write the context out to a file or database based ...
by ras07
2016-08-31 18:55
Forum: Feature requests
Topic: API to detect STARTTLS
Replies: 2
Views: 1748

Re: API to detect STARTTLS

I added a poll question and some extra bits Tell me if you would like the question changed Thanks! Really, I can't see the need for any more than knowing whether it was encrypted or not, but perhaps someone else will. Perhaps just generalize the question to something like "I would like access to in...
by ras07
2016-08-31 03:49
Forum: Scripting
Topic: What's the RIGHT way to call an external program?
Replies: 4
Views: 2339

Re: What's the RIGHT way to call an external program?

That's pretty dramatic overkill! Also doesn't help if I don't have access to the source of the program I'm calling.
by ras07
2016-08-31 00:19
Forum: Scripting
Topic: What's the RIGHT way to call an external program?
Replies: 4
Views: 2339

Re: What's the RIGHT way to call an external program?

(I think you'd need to instantiate another WScript.Shell object; I didn't try it, but I think calling Exec and Run on the same WScript.Shell instance will cause trouble.) But in any case, making a second Exec/Run call to wait for the first is pretty heavyweight ... setting up and tearing down the co...
by ras07
2016-08-30 23:45
Forum: General discussions
Topic: something@mydomain.com send me a SPAM.
Replies: 5
Views: 2287

Re: something@mydomain.com send me a SPAM.

or even better, require authentication from local to local e-mailadresses in your IP Ranges The IP range settings trigger on the SMTP envelope info, yes? So the envelope could say it's coming from anybody@anywhere.com, whereas the header info (which is what the users' email clients see) says it's f...