Search found 210 matches

by mikedibella
2020-06-06 00:10
Forum: Feature requests
Topic: Installing an SSL Certificate
Replies: 1
Views: 18

Re: Installing an SSL Certificate

You can create a CSR using Window's Certificate Manager (certmgr.msc > Personal > Certificates > Action > Advanced Operations > Create Custom Request...) but the private key will be stored in Windows format and you will need to import the certificate into the Windows certificate store to access the ...
by mikedibella
2020-06-05 19:19
Forum: General discussions
Topic: How to setup alerting on failure or que backing up
Replies: 1
Views: 20

Re: How to setup alerting on failure or que backing up

Consider that if HMS can't deliver messages, you won't receive your alert notification of the same if it too is sent via email. I wrote this a while back: https://www.hmailserver.com/forum/viewtopic.php?f=20&t=30859&p=192751&hilit=queue#p192749 I have a monitoring service running on the server that ...
by mikedibella
2020-06-04 23:36
Forum: General discussions
Topic: Just stopped working
Replies: 9
Views: 79

Re: Just stopped working

I haven't seen this approach used much recently, but back in the day some routers used forwarding based on the switch-port instead of destination address. So if you changed the port on the gateway that the host is connects through, your forwarding rules may no longer be valid.
by mikedibella
2020-05-04 23:31
Forum: Off-topic discussions
Topic: Find rogue WiFi client
Replies: 5
Views: 511

Re: Find rogue WiFi client

Triangulation is one approach, but it requires more than just two reception points. You need a directional antenna or array to isolate the vector of reception in addition to the signal strength to derive a position. It is accurate but too complex for my needs. Heat mapping, on the other hard, uses a...
by mikedibella
2020-05-04 21:44
Forum: Off-topic discussions
Topic: Find rogue WiFi client
Replies: 5
Views: 511

Find rogue WiFi client

I've got a rogue WiFi client attempting to access my local network. I see the attempts in my RADIUS logs and have captured the MAC address from calling-station-id. Now I need software (hopefully freeware/freemium/low-cost) to "find" where this client is. I see there is a bunch of free software on th...
by mikedibella
2020-04-28 21:24
Forum: General discussions
Topic: How to characterize redirected message as forwarded
Replies: 6
Views: 508

Re: How to characterize redirected message as forwarded

I think you mean it changes the MAIL verb, FROM: noun in the envelope to reflect the address the email was forwarded from. The originating sender's email address remains preserved in the From: header. Right?
by mikedibella
2020-04-28 20:06
Forum: General discussions
Topic: How to characterize redirected message as forwarded
Replies: 6
Views: 508

Re: How to characterize redirected message as forwarded

Right, so I think the goal is to characterize the message such that the sender validation score is higher, but the benefits of redirection, such as preserving the originating sender identity for easy reply, are preserved.
by mikedibella
2020-04-28 19:24
Forum: General discussions
Topic: How to characterize redirected message as forwarded
Replies: 6
Views: 508

How to characterize redirected message as forwarded

One of my users hosts his email address on my system but his mailbox on AOL. He likes the AOL webmail interface; has used for for years; and is resistant to change. I redirect his mail from his vanity address to @aol.com and this works fine for almost all use cases. My sender reputation is sufficien...
by mikedibella
2020-04-20 18:07
Forum: General discussions
Topic: DMARC Report Aggregation Services
Replies: 5
Views: 1828

Re: DMARC Report Aggregation Services

@mattg: I want to thank you for the referral to Postmarkapp.com. I got my first report last night and it helped me to identify that my relay provider was sending from an IP not returned in the include:domain DNS lookup. Hopefully my manual add of an ipv4: tag will now clear that up.
by mikedibella
2020-04-11 18:30
Forum: General discussions
Topic: DMARC Report Aggregation Services
Replies: 5
Views: 1828

Re: DMARC Report Aggregation Services

Postmarkapp.com looks like a relay service to me. I was thinking more along the lines of a service that receives the DMARC reports from multiple domains under a single tenancy, processes the report XML and provides either a consolidated or single-domain view of the processed data. Something like thi...
by mikedibella
2020-04-11 02:44
Forum: General discussions
Topic: DMARC Report Aggregation Services
Replies: 5
Views: 1828

DMARC Report Aggregation Services

Anyone using a DMARC Report Aggregation Service? Any testimonials to share? Any decent free/freemium providers?
by mikedibella
2020-03-30 21:58
Forum: General discussions
Topic: Test Outbound Port Error - SMTP Protocol Configuration & Diagnostics - Relays, Issues Sending & Receiving Mail
Replies: 11
Views: 1938

Re: Test Outbound Port Error - SMTP Protocol Configuration & Diagnostics - Relays, Issues Sending & Receiving Mail

Ask someone you trust to telnet to your public IP on port 25. If they don't see "220" and your Welcome message in the telnet client, your ISP is firewalling port 25. If your ISP is blocking port 25, you'll need to use a mail relay service to accept mail for you on port 25 and relay it to you on an a...
by mikedibella
2020-03-30 04:49
Forum: General discussions
Topic: Test Outbound Port Error - SMTP Protocol Configuration & Diagnostics - Relays, Issues Sending & Receiving Mail
Replies: 11
Views: 1938

Re: Test Outbound Port Error - SMTP Protocol Configuration & Diagnostics - Relays, Issues Sending & Receiving Mail

Change Connection Security to STARTTLS (Optional). Enable Application, SMTP, TCP/IP and DEBUG logging. Disable all other logging. Re-run your test. Post another log excerpt.
by mikedibella
2020-03-27 22:10
Forum: Development & alpha discussions
Topic: Saving attachments to a network location ?
Replies: 14
Views: 3840

Re: Saving attachments to a network location ?

But a Network Active Directory User can be Member of a Local Computer User Group like Administrators and SAM rights can be granted via SECPOL to ACT AS SERVICE. This is true but it is not going to solve the OP problem. You process would work if the account was a Domain (AD) Account and not a Local ...
by mikedibella
2020-03-27 21:12
Forum: Development & alpha discussions
Topic: Saving attachments to a network location ?
Replies: 14
Views: 3840

Re: Saving attachments to a network location ?

Dravion wrote:
2020-03-27 15:40
1) Create a Local Computer User account on your hMailserver Computer which is Member of the local Computers Administrators group
Sorry, but a Local Computer Account will have no network access at all, regardless of the group membership.
by mikedibella
2020-03-27 20:21
Forum: Development & alpha discussions
Topic: Saving attachments to a network location ?
Replies: 14
Views: 3840

Re: Saving attachments to a network location ?

Completely wrong You are misreading the article. The section you cite has to do with the specific use case of running services on a Domain Controller . I think most would agree that running services such as hMailServer on a Domain Controller should only be done as a last resort. The relevant part o...
by mikedibella
2020-03-27 17:44
Forum: Development & alpha discussions
Topic: Saving attachments to a network location ?
Replies: 14
Views: 3840

Re: Saving attachments to a network location ?

When a machine is domain joined, the LocalSystem account (NT AUTHORITY\SYSTEM) has the same permission on the network as the computer account (paragraph 3: https://docs.microsoft.com/en-us/windows/win32/ad/the-localsystem-account) So, to write a file from the LocalSystem context on a domain member, ...
by mikedibella
2020-03-27 04:45
Forum: User contributed hMailServer 5 scripts
Topic: DNS Helper for Scripts
Replies: 0
Views: 3316

DNS Helper for Scripts

Here's a quick little DLL I wrote to help with basic name DNS tasks in scripts. Written in Delphi. Source included. No dependencies. Uses older Winsock functions but working fine on my Server 2012 HMS implementation. Untested on 2016. Set objDNSLookup = CreateObject("DNSScriptUtil.DNSLookup") sHostn...
by mikedibella
2020-03-27 03:02
Forum: Development & alpha discussions
Topic: Saving attachments to a network location ?
Replies: 14
Views: 3840

Re: Saving attachments to a network location ?

How about using a local temporary file path and name for the parameter to the SaveAs COM method, then copy/move it using .net or win library functions?
by mikedibella
2020-03-07 01:32
Forum: Scripting
Topic: Wildcard MX Support
Replies: 21
Views: 9236

Re: Wildcard MX Support

As it is right now, the first email to an unknown acme.inc SUBDOMAIN (like wile.e.coyote@ new.acme.inc ) will be lost into oblivian or where ever hMailServer do away with it :roll: but the subdomain is added to the Names tab for the domain. I might have a dig into the source to try to figure this o...
by mikedibella
2020-03-07 01:29
Forum: Scripting
Topic: Wildcard MX Support
Replies: 21
Views: 9236

Re: Wildcard MX Support

You can only setup 1 (one) MX DNS Entry per DNS-Domain but you can Subclass a Subdomain within the DNS-Database which needs to be propagated. I tested this using my own authoritative domain. I created a RR at mx.otamdm.net with name "*", type MX, and data [10] mx.sfatech.com. Now, an MX query to an...
by mikedibella
2020-03-06 21:21
Forum: Scripting
Topic: Wildcard MX Support
Replies: 21
Views: 9236

Re: Wildcard MX Support

OK, so maybe all I need to have is a configuration that allows the submission to be accepted regardless of subdomain so that the on-demand provisioning can be handled in the OnSMTPData firing BEFORE delivery takes place. I do think a single-hMS implementation of this solution would be preferable to ...
by mikedibella
2020-03-06 04:31
Forum: Scripting
Topic: Wildcard MX Support
Replies: 21
Views: 9236

Re: Wildcard MX Support

My understanding of Default Domain is that it acted as the RFC 5322 domain part for an address that contains only a local part . So that if a message is submitted RCPT TO:local-user It will be processed as RCPT TO:local-part@default-domain Am I misunderstanding how it works? But in the use case desc...
by mikedibella
2020-03-06 03:36
Forum: Scripting
Topic: Wildcard MX Support
Replies: 21
Views: 9236

Re: Wildcard MX Support

I think the domain has to be created before you receive a message on it, or else hms will kick it for non existent address. Yup, I think you are right. I thought I remembered that there was an OnSMTPData event, that I presumed was kicked once for each verb in the protocol sequence, but I don't see ...
by mikedibella
2020-03-05 20:58
Forum: Scripting
Topic: Wildcard MX Support
Replies: 21
Views: 9236

Wildcard MX Support

Academic question for the community. If I had a use case where I wanted to receive mail for a dynamically-generated subdomain, say thread-id.domain.com, using a wildcard MX record at domain.com, what would the pseudo-code look like for the scripting to dynamically generate the Domain object and set-...
by mikedibella
2020-03-04 10:40
Forum: General discussions
Topic: View certificate on client
Replies: 1
Views: 1511

Re: View certificate on client

I use... For SSL ports: openssl s_client -connect hostname:port -showcerts For TLS (i.e. STARTTLS) ports: openssl s_client -connect hostname:port -starttls smtp -showcerts openssl s_client -connect hostname:port -starttls imap -showcerts openssl s_client -connect hostname:port -starttls pop3 -showce...
by mikedibella
2020-02-19 06:23
Forum: General discussions
Topic: Manually deleting a mailbox
Replies: 1
Views: 2490

Re: Manually deleting a mailbox

This is expected behavior. The Admin UI will be unresponsive while the database and file system is purged of objects related to the mailbox. For a 250GB mailbox, that's going to be a lot of table rows and .eml files to delete. Just be patient. Alternatively, there is an example of how to delete an a...
by mikedibella
2020-02-12 00:19
Forum: Scripting
Topic: Clear Information on Run program in Rules
Replies: 6
Views: 2193

Re: Clear Information on Run program in Rules

I use this script function reformat SMS messages coming from certain cellular carriers. These carriers attach the body of the SMS as an attachment to an email. Sub AppendAttachment(oMessage) if oMessage.Subject = "" then oMessage.Subject = "SMS Message" end if if oMessage.Attachments.Count > 0 then ...
by mikedibella
2019-11-20 20:24
Forum: General discussions
Topic: SMTPD timeouts, one particular server farm
Replies: 11
Views: 1648

Re: SMTPD timeouts, one particular server farm

Are SURBL queries blocking? Could they introduce a delay of 30 seconds, enough to trigger a TCP receive timeout?
by mikedibella
2019-11-15 06:03
Forum: General discussions
Topic: Providing a client certification to a remote server when acting as a relay
Replies: 1
Views: 585

Re: Providing a client certification to a remote server when acting as a relay

You can do that with stunnel . The config would look something like this: [SMTPwithClientAuth] client = yes accept = 127.0.0.1:2525 connect = smtp.remote-server.com:465 delay = yes CAFile = remote-server-root-certificate.pem Cert = my-client-certificate.pem key = my-client-certificate.key verify = 2...
by mikedibella
2019-11-01 04:11
Forum: Scripting
Topic: oApplication.Stop hanging
Replies: 27
Views: 6626

Re: oApplication.Stop hanging

I'm going to hypothesize that the .Stop method attempts to free all of the worker threads handing comms. This would include graceful closing of open TCP connections. Since the standard way to close a TCP connection is to send a FIN to the remote and wait for the the remote to reply with the FIN, if ...
by mikedibella
2019-10-28 21:52
Forum: Scripting
Topic: oApplication.Stop hanging
Replies: 27
Views: 6626

Re: oApplication.Stop hanging

Download Process Monitor (https://docs.microsoft.com/en-us/sysinternals/downloads/procmon) and set it up to capture, filtering events to those where Process contains the name of the hMailServer service process (hMailServer.exe). Reproduce the anomaly, stop the capture, and review the events leading ...
by mikedibella
2019-10-04 23:23
Forum: User contributed hMailServer 5 scripts
Topic: Utility to set route to domain MX
Replies: 2
Views: 1713

Re: Utility to set route to domain MX

For example, an old MTA, which was the lowest Preference host, is retired, and the old backup MX gets promoted by having the new lowest Preference in DNS. Eventually, another MX is introduced, which might have a different hostname, or a higher Preference. Or, multiple MX share the same Preference an...
by mikedibella
2019-10-04 00:48
Forum: User contributed hMailServer 5 scripts
Topic: Utility to set route to domain MX
Replies: 2
Views: 1713

Utility to set route to domain MX

I needed a way to bypass the smart relay for some domains and send mail for these domains directly to the mail exchanger in DNS. A route in HMS will do this, but the Target SMTP Host must be statically defined. These hostnames change from time-to-time, and I wanted a way to keep the route up-to-date...
by mikedibella
2019-10-01 17:48
Forum: Scripting
Topic: Convert message with text attachment
Replies: 5
Views: 2887

Re: Convert message with text attachment

Well, your request prompted me to dig deeper. It looks like the content received by hMailServer is actually MIME encoded. Received: from stcceg-mtmta04.wnsnet.attws.com (stcotaapp-apps-ts2a.mobile.att.net [166.216.152.40]) by mail.*.com with ESMTPS (version=TLSv1.2 cipher=DHE-RSA-AES128-SHA bits=128...
by mikedibella
2019-10-01 04:45
Forum: Scripting
Topic: Convert message with text attachment
Replies: 5
Views: 2887

Re: Convert message with text attachment

This is what I came up with. Sub AppendAttachment(oMessage) ' save attachment to temporary file set oFileSys = CreateObject("Scripting.FileSystemObject") sTempFile = oFileSys.GetSpecialFolder(2) & oFileSys.GetTempName oMessage.Attachments.Item(0).SaveAs sTempFile ' read attachment to string set fAtt...
by mikedibella
2019-10-01 02:14
Forum: Scripting
Topic: Convert message with text attachment
Replies: 5
Views: 2887

Convert message with text attachment

I need to convert email received from several SMS gateways into more convenient format. I know I can select these messages for processing using a rule, and handle the processing using a script, but I am soliciting advice for the most efficient way to process the conversion. Reviewing the headers of ...
by mikedibella
2019-09-18 03:27
Forum: Off-topic discussions
Topic: Logins To hMailServer Form Not Secure
Replies: 5
Views: 2261

Re: Logins To hMailServer Form Not Secure

If you are using Chrome you can force the site to use HTTPS by adding hmailserver.com to Chome's HSTS set at this URL: chrome://net-internals/#hsts

Be sure to tick the box for subdomains.
by mikedibella
2019-09-14 01:05
Forum: General discussions
Topic: Send mail port 587
Replies: 13
Views: 2312

Re: Send mail port 587

Additionally, many servers have restrictions on the mail submission port (i.e. port 587). For instance, it is common that mail is only accepted via the submission port FROM the email address(es) associated with the account that authenticated, which precludes the submission port from being used as a ...
by mikedibella
2019-09-06 18:19
Forum: General discussions
Topic: Sending mail doesn't work
Replies: 20
Views: 2625

Re: Sending mail doesn't work

You have the SPF record associated with the right DNS domain now (almight.se), but the record has errors:

https://www.dmarcanalyzer.com/spf/check ... lmighty.se
by mikedibella
2019-09-06 16:37
Forum: General discussions
Topic: Sending mail doesn't work
Replies: 20
Views: 2625

Re: Sending mail doesn't work

The SPF record is for the mail domain (almighty.se), not the mail exchanger (mail.almighty.se).
by mikedibella
2019-08-31 17:25
Forum: General discussions
Topic: Send mail to local server from hotmail, gmail, etc.
Replies: 32
Views: 5200

Re: Send mail to local server from hotmail, gmail, etc.

Wile.E.Coyote@10.10.10.10 is a perfectly acceptable mail address. Maybe strictly speaking, but the RFC says the IP address has to be enclosed in braces:https://tools.ietf.org/html/rfc5322#section-3.4.1 Wile.E.Coyote@[10.10.10.10] And: It is therefore incumbent upon implementations to conform to the...
by mikedibella
2019-08-29 05:10
Forum: General discussions
Topic: Send mail to local server from hotmail, gmail, etc.
Replies: 32
Views: 5200

Re: Send mail to local server from hotmail, gmail, etc.

It appears you have an inbound block on port 25. You may also have an outbound block on port 25. You won't know until you try to send mail. If you have an outbound block you will also need an outbound smart relay (google "outbound email relay service providers") so to can submit outgoing mail on a p...
by mikedibella
2019-08-29 01:04
Forum: General discussions
Topic: Send mail to local server from hotmail, gmail, etc.
Replies: 32
Views: 5200

Re: Send mail to local server from hotmail, gmail, etc.

That's where is gets tricky. You can configure hMailServer to receive mail on another port, but you cannot control what port remote servers send mail to you on. By standard, remote servers will send to you on port 25. So even if you change the port you receive on to a different port, you will still ...
by mikedibella
2019-08-29 00:19
Forum: General discussions
Topic: Send mail to local server from hotmail, gmail, etc.
Replies: 32
Views: 5200

Re: Send mail to local server from hotmail, gmail, etc.

Your DNS records are correct now:

Code: Select all

Non-authoritative answer:
almighty.se     MX preference = 10, mail exchanger = mail.almighty.se

mail.almighty.se        internet address = 81.225.141.114
So consider port 25 might be blocked.
by mikedibella
2019-08-28 23:54
Forum: General discussions
Topic: Send mail to local server from hotmail, gmail, etc.
Replies: 32
Views: 5200

Re: Send mail to local server from hotmail, gmail, etc.

it may be blocked due to ISP
Possibly. Your IP addresses, 81.225.141.114, is listed in the block list dul.dnsbl.sorbs.net as a known dynamic IP address. This type of address often has port restrictions imposed by the ISP.
by mikedibella
2019-08-28 23:18
Forum: General discussions
Topic: Send mail to local server from hotmail, gmail, etc.
Replies: 32
Views: 5200

Re: Send mail to local server from hotmail, gmail, etc.

You are missing

Code: Select all

Name: mail.almighty.se, type: A, Data: "mypublicip", Prio: 0, TTL 3600
by mikedibella
2019-08-28 22:46
Forum: General discussions
Topic: Send mail to local server from hotmail, gmail, etc.
Replies: 32
Views: 5200

Re: Send mail to local server from hotmail, gmail, etc.

The data for the A record is you dotted IP address: 81.225.141.114
by mikedibella
2019-08-28 18:47
Forum: General discussions
Topic: Send mail to local server from hotmail, gmail, etc.
Replies: 32
Views: 5200

Re: Send mail to local server from hotmail, gmail, etc.

Using the DNS management tools for your domain, create an MX record for lollipop.se making mail.lollipop.se your mail exchanger with priority 10. Then create an A record for mail.lollipop.se that points to your public IP address. Use mail.lollipop.se as your hMailServer hostname.
by mikedibella
2019-08-28 01:58
Forum: General discussions
Topic: Send mail to local server from hotmail, gmail, etc.
Replies: 32
Views: 5200

Re: Send mail to local server from hotmail, gmail, etc.

That just the way email routing works. The right-hand side of an email address is not the address of the server that handle mail for that user, so you can't just place an ip address there and expect mail to be directed to a server at that address. Instead, the mail transfer agent (MTA) will use the ...
by mikedibella
2019-08-28 01:29
Forum: General discussions
Topic: User unknown error from external to internal
Replies: 3
Views: 785

Re: User unknown error from external to internal

DNS for corruptedkingdom.pw reports and MX record, but the glue A record is missing: corruptedkingdom.pw MX preference = 1, mail exchanger = corruptedkingdom.pw Change your mail exchanger to mail.corruptedkingdom.pw, set the priority to 10, and add an A record for mail.corruptedkingdom.pw pointing t...
by mikedibella
2019-08-27 19:02
Forum: General discussions
Topic: Send mail to local server from hotmail, gmail, etc.
Replies: 32
Views: 5200

Re: Send mail to local server from hotmail, gmail, etc.

Start by reviewing documentation on MX records to understand that you cannot address an email to @mypublicipaddress.

This is a decent explaination: https://practical365.com/exchange-server/mx-record/
by mikedibella
2019-08-22 22:32
Forum: General discussions
Topic: Help, Sending Mail
Replies: 25
Views: 3108

Re: Help, Sending Mail

I think your DNS is misconfigured but I'm not sure where. Here a couple of things to check: 1. If you are using multiple DNS servers in the local TCP/IP stack configuration, they all have to be replicas of the same set of zones. You can't use your local server as the first DNS entry and your ISP as ...
by mikedibella
2019-08-22 22:22
Forum: General discussions
Topic: Help, Sending Mail
Replies: 25
Views: 3108

Re: Help, Sending Mail

now run

Code: Select all

nslookup -debug -type=mx hotmail.com.
and compare the result
by mikedibella
2019-08-22 20:49
Forum: General discussions
Topic: Help, Sending Mail
Replies: 25
Views: 3108

Re: Help, Sending Mail

You are executing

Code: Select all

nslookup -norecurse -debug -type=mx hotmail.com
the correct command is

Code: Select all

nslookup -norecurse -debug -type=mx hotmail.com.
Note the period "." at the end.
by mikedibella
2019-08-22 20:18
Forum: General discussions
Topic: Help, Sending Mail
Replies: 25
Views: 3108

Re: Help, Sending Mail

Start over. The period at the end of the command is significant.
by mikedibella
2019-08-22 18:51
Forum: General discussions
Topic: Help, Sending Mail
Replies: 25
Views: 3108

Re: Help, Sending Mail

run this command: nslookup -norecurse -debug -type=mx hotmail.com. If you see Non-authoritative answer: in the response, look for the last line starting with ttl = and wait at least that amount of time , then run the command again. When you don't see Non-authoritative answer: in the response, post t...
by mikedibella
2019-08-18 19:21
Forum: Off-topic discussions
Topic: My Hmailserver professional usage....
Replies: 10
Views: 3307

Re: My Hmailserver professional usage....

Take a look at Google Cloud Platform's free tier. It will allow you to run a very small Linux VM indefinitely. With a little ingenuity you can use it as a bridgehead for incoming mail. Then check out SendGrid's free tier as your outgoing smart relay.
by mikedibella
2019-08-17 01:27
Forum: General discussions
Topic: can send, cannot receive email
Replies: 17
Views: 2212

Re: can send, cannot receive email

No. The name should be just mail.

A mail 34.214.94.163