Search found 20145 matches

by mattg
2019-08-06 00:48
Forum: General discussions
Topic: Using STARTTLS for message delivery
Replies: 23
Views: 1037

Re: Using STARTTLS for message delivery

This IS a misconfiguration
Either the receiving server is broken
OR
You are you using a domain on your server that you don't necessarily have rights to, and the recipient server is ALSO hosting the same domain
by mattg
2019-08-05 12:57
Forum: Development & alpha discussions
Topic: Disable SSLv3 in hMailServer >5.6.8
Replies: 37
Views: 2757

Re: Disable SSLv3 in hMailServer >5.6.8

Yep, But just checked an RvhD has updated the fork, so I've just installed it and tested.

Verify certs is turned on, and gmail external POP3 download works fine-

Thanks to you both
by mattg
2019-08-05 12:44
Forum: Development & alpha discussions
Topic: Disable SSLv3 in hMailServer >5.6.8
Replies: 37
Views: 2757

Re: Disable SSLv3 in hMailServer >5.6.8

The ONLY servers that I am connecting with via TLSv1.3 is the gmail servers, for incoming, outgoing and external pop3 download. All others are still TLSv1.2 (or nude) Not sure if you're saying that there's a problem or just sharing what you're seeing? Just sharing what I'm seeing No problem at all ...
by mattg
2019-08-05 12:41
Forum: General discussions
Topic: Installing
Replies: 19
Views: 890

Re: Installing

And PHPWebAdmin is NOT needed to run hMailserver
by mattg
2019-08-05 11:17
Forum: Development & alpha discussions
Topic: Disable SSLv3 in hMailServer >5.6.8
Replies: 37
Views: 2757

Re: Disable SSLv3 in hMailServer >5.6.8

The ONLY servers that I am connecting with via TLSv1.3 is the gmail servers, for incoming, outgoing and external pop3 download.

All others are still TLSv1.2 (or nude)
by mattg
2019-08-04 17:34
Forum: Development & alpha discussions
Topic: Disable SSLv3 in hMailServer >5.6.8
Replies: 37
Views: 2757

Re: Disable SSLv3 in hMailServer >5.6.8

Don't know why, but I had to turn off 'verify remote server SSL/TLS certificates' for gmail pop3 external download to work http://www.hmailserver.com/forum/viewtopic.php?f=21&t=32158&p=200990&hilit=pki.goog#p200990 I checked that installed all of these. Stopped working (with verify checked) when I u...
by mattg
2019-08-04 16:50
Forum: Development & alpha discussions
Topic: Disable SSLv3 in hMailServer >5.6.8
Replies: 37
Views: 2757

Re: Disable SSLv3 in hMailServer >5.6.8

I only have StartTLS Optional for port 25

I get so many unencrypted connections on port 25, don't see how I could force StartTLS on port 25.
However, I also don't allow AUTH on port 25 (using the ini setting), so there are no usernames / passwords accessible
by mattg
2019-08-04 14:04
Forum: Development & alpha discussions
Topic: Disable SSLv3 in hMailServer >5.6.8
Replies: 37
Views: 2757

Re: Disable SSLv3 in hMailServer >5.6.8

RvdH wrote:
2019-08-04 12:24
Yup, i am running 5.6.8-B2450.21 (*.21 are a few fixes and changes i made myself)
Me too now.
RvdH wrote:
2019-08-04 12:24
but works with:

Code: Select all

HIGH:!TLSv1:!SSLv3;
gmail uses TLS cipher 1.3 as you mentioned
Doing this now too thanks - we will see how it goes.

Gmail is TLSv1.3 both directions
by mattg
2019-08-04 03:55
Forum: General discussions
Topic: Installing
Replies: 19
Views: 890

Re: Installing

Under system requirements is a technical knowledge component
https://www.hmailserver.com/documentati ... quirements

I'm not sure that you have the required technical knowledge to run a mailserver
by mattg
2019-08-04 00:01
Forum: Development & alpha discussions
Topic: Disable SSLv3 in hMailServer >5.6.8
Replies: 37
Views: 2757

Re: Disable SSLv3 in hMailServer >5.6.8

martin wrote:
2019-08-03 21:22
The one in hMailServer comes from Mozillas recommendations if I recall correctly.
Not a recent one I don't think
That list changes fairly frequently

I have updated mine a few times over the years
by mattg
2019-08-03 23:58
Forum: General discussions
Topic: Installing
Replies: 19
Views: 890

Re: Installing

Joe wrote:
2019-08-03 19:32
installed PHP 4.3.11

now when I point foxfire web browser to http://localhost/PHPWebAdmin, I get:

WebAdmin

"; ?>
Then PHP is clearly STILL not working
by mattg
2019-08-03 02:15
Forum: General discussions
Topic: Installing
Replies: 19
Views: 890

Re: Installing

Do you have PHP installed? What web server are you using (Apache or IIS or ...)?
by mattg
2019-08-03 02:14
Forum: Development & alpha discussions
Topic: Disable SSLv3 in hMailServer >5.6.8
Replies: 37
Views: 2757

Re: Disable SSLv3 in hMailServer >5.6.8

Even Microsoft have disabled SSLv3.0 on all modern operating systems
It provides no security at all - as it so easily broken
by mattg
2019-08-03 02:11
Forum: Development & alpha discussions
Topic: Martin is back
Replies: 45
Views: 3692

Re: Martin is back

POODLE is SSL 3.0 as far as i know, Disable SSL 3.0 and you are good, no? Poodle has been reborn against TLS (specifically the attacks against TLS more than half way down.) https://www.imperialviolet.org/2014/12/08/poodleagain.html The only way to stop it is to disable ALL BUT TLSv1.2 (Which I've d...
by mattg
2019-08-03 02:04
Forum: General discussions
Topic: Using STARTTLS for message delivery
Replies: 23
Views: 1037

Re: Using STARTTLS for message delivery

I'm guessing that the sender domain is actually hosted on that SMTP server, and that the FROM is seen as a local address on that machine, and the end server requires SSL/TLS for AUTH
by mattg
2019-08-02 11:50
Forum: Development & alpha discussions
Topic: Martin is back
Replies: 45
Views: 3692

Re: Martin is back

martin wrote:
2019-08-02 07:36
I think that we've shown that hmailserver will downgrade connections if asked by the client - which isn't ideal.
Unless I misunderstand you, that's just how TLS works though?
https://en.wikipedia.org/wiki/POODLE
(specifically the attacks against TLS more than half way down.)
by mattg
2019-08-02 07:22
Forum: Development & alpha discussions
Topic: Removing x86 support in 5.7
Replies: 7
Views: 894

Re: Removing x86 support in 5.7

just do it.

Most programs these days for windows don't come in 32 bit flavours anymore, only 64 bit.
by mattg
2019-08-02 07:20
Forum: Development & alpha discussions
Topic: Martin is back
Replies: 45
Views: 3692

Re: Martin is back

Oh yeah it is a 'would be nice', not a need... On this subject, I think that we've shown that hmailserver will downgrade connections if asked by the client - which isn't ideal. I've actually turned off TLS1.1 and below, and so my hMailserver (and my web sites) are all TLSv1.2, and that works well. I...
by mattg
2019-08-02 02:45
Forum: Development & alpha discussions
Topic: Martin is back
Replies: 45
Views: 3692

Re: Martin is back

Can you tell me what problems you're facing with OpenSSL? You mean the fact that hMailServer relies on it (rather than LibreSSL), or that the latest stable version is using an old version? (I put up a new beta some hours ago with the latest OpenSSL version). Also, when you say TLS are you thinking ...
by mattg
2019-08-02 02:38
Forum: General discussions
Topic: I'm not getting to send e-mail
Replies: 22
Views: 1208

Re: I'm not getting to send e-mail

ALSO (In addition to showing logs for SENDING an email)

on the IP ranges page there is a 'default' button - press that

You have a default domain set. Do you know why?
If you don't know why, then remove that please.
by mattg
2019-08-01 10:24
Forum: General discussions
Topic: mail delivery to client problem
Replies: 9
Views: 638

Re: mail delivery to client problem

'Bad allocation' is usually a disk hardware problem

hMailserver just repeats the Windows Error
by mattg
2019-08-01 00:29
Forum: General discussions
Topic: I'm not getting to send e-mail
Replies: 22
Views: 1208

Re: I'm not getting to send e-mail

palinka wrote:
2019-07-29 20:16
OK, now we're getting somewhere. First of all, run this and post the results: https://www.hmailserver.com/forum/viewt ... 20&t=30914
Do this again, so that we can see what your current config looks like please
by mattg
2019-08-01 00:28
Forum: General discussions
Topic: mail delivery to client problem
Replies: 9
Views: 638

Re: mail delivery to client problem

What version of hMailserver are you on?

This looks a lot like and old issue from many years back
by mattg
2019-07-31 08:42
Forum: User-submitted tutorials
Topic: HOW TO: Easy Set Up DKIM signatures on Hmailserver
Replies: 31
Views: 31559

Re: HOW TO: Easy Set Up DKIM signatures on Hmailserver

Add an SMTP route for 'myactualdomain.com' pointing to the externally server that actually hosts that domain
by mattg
2019-07-30 01:22
Forum: General discussions
Topic: hMail session corrupted
Replies: 4
Views: 407

Re: hMail session corrupted

Yep that's an external MySQL Some versions of MySQL disabled the root password after a set period. This 'feature' was later removed. I recall that the fix was to change the date on the local machine - but perhaps check with MySQL support about a work around The password stored in the hMailserver.ini...
by mattg
2019-07-30 00:50
Forum: Development & alpha discussions
Topic: Excursus 451 452 Retry Strategies
Replies: 2
Views: 272

Re: Excursus 451 452 Retry Strategies

hMailserver has settings under SMTP >> Delivery of email Number of retries and minutes between every retry Every 45X code gets the same response, hMailserver retries as per those settings. Once retries is exceeded the message is bounced back to the sender as a non delivery. There is also a setting u...
by mattg
2019-07-30 00:14
Forum: General discussions
Topic: hMail session corrupted
Replies: 4
Views: 407

Re: hMail session corrupted

Are you sure that this is a MySQL database being used

Please show the entire hMaislerver.ini (with passwords REMOVED)
by mattg
2019-07-30 00:10
Forum: General discussions
Topic: Export Mail Domain
Replies: 5
Views: 468

Re: Export Mail Domain

Alternate recommendation
Rename the domain to something like example.local and don't tell anyone
by mattg
2019-07-29 02:46
Forum: Feature requests
Topic: Rule to alter mesage subject
Replies: 2
Views: 389

Re: Rule to alter mesage subject

ALSO, Do you have a question that can be voted on

All feature requests must have a question, and under normal circumstances higher votes means higher priorities.
by mattg
2019-07-28 01:51
Forum: General discussions
Topic: Configuration for local Scanner
Replies: 1
Views: 274

Re: Configuration for local Scanner

Yep, easily done (Although you shouldn't need to modify the local hosts file) I don't know your Xerox machine, but if you can point it to a LAN IP address the rest should be easy. Even without a hmailserver domain or accounts, hmailserver could be setup to just accept all LAN mail, and delivery via ...
by mattg
2019-07-27 13:30
Forum: Scripting
Topic: hMailServer not relay mail from Exchange with empty sender
Replies: 1
Views: 396

Re: hMailServer not relay mail from Exchange with empty sender

Settings >> Protocols >> SMTP >> FRC Compliance >> CHECK 'Allow empty sender address'
by mattg
2019-07-27 13:21
Forum: General discussions
Topic: 550 Requested action not taken: mailbox unavailable
Replies: 3
Views: 435

Re: 550 Requested action not taken: mailbox unavailable

That's not a standard hMailserver SMTP error code

https://www.hmailserver.com/documentati ... sages_smtp
I expect that that error comes form the recipient server, and you should ask the admin of that server
by mattg
2019-07-26 02:10
Forum: General discussions
Topic: Needed TLS 1.2, it's time to upgrade
Replies: 13
Views: 1294

Re: Needed TLS 1.2, it's time to upgrade

icoso wrote:
2019-07-24 20:48
...do I need to install any of the versions in between the two versions?
No
by mattg
2019-07-26 02:01
Forum: General discussions
Topic: Replacement for IIS 6.0 SMTP?
Replies: 1
Views: 287

Re: Replacement for IIS 6.0 SMTP?

sure

Some differences between how they do things do, including that IIS uses a folder to drop files into, and hMailserver requires a SMTP connection from whatever software you choose
by mattg
2019-07-22 07:45
Forum: General discussions
Topic: Needed TLS 1.2, it's time to upgrade
Replies: 13
Views: 1294

Re: Needed TLS 1.2, it's time to upgrade

Hi, since I need TLS 1.2 protocol, I must update two old hMail servers. Both fetching mail with external accounts only: PC1: Windows 7 pro-32bit, hMailServer 5.3.3-b1879, mysql 5.5.19 PC2: Windows 7 pro-32bit, hMailServer 5.4-b1931, mysql 5.5.19 I would like to complete the operation in a simple, s...
by mattg
2019-07-15 13:48
Forum: General discussions
Topic: can send, cannot receive email
Replies: 17
Views: 900

Re: can send, cannot receive email

First step
Run this an post the results >> viewtopic.php?f=20&t=30914
by mattg
2019-07-14 11:13
Forum: General discussions
Topic: Test local connect problem
Replies: 25
Views: 1554

Re: Test local connect problem

There is no SMTPC logs in that, there was no SMTP connection

That's how mail is 'sent'

Clear you logs, try again, and show the entire log created after 90 seconds
by mattg
2019-07-14 02:11
Forum: General discussions
Topic: Test local connect problem
Replies: 25
Views: 1554

Re: Test local connect problem

That's normally not a fatal error

It is often caused by your router/modem not doing loopback.

Send a message to your gmail / hotmail account and then reply to see if it works.
by mattg
2019-07-14 00:45
Forum: General discussions
Topic: Duplicate emails receive
Replies: 3
Views: 446

Re: Duplicate emails receive

AND THEN
Enable all logging on your hmailserver, and show us logs of such a message being received.

AND run this and post the results >> viewtopic.php?f=20&t=30914
(please include rules)
by mattg
2019-07-12 16:03
Forum: General discussions
Topic: Migrating hMailServer to a new box
Replies: 5
Views: 521

Re: Migrating hMailServer to a new box

sorry
thanks for reposting

That page is VERY old and outdated - I'll fix
(It even talks about builtin MySQL, not for more than 10 years >> https://www.hmailserver.com/changelog?p ... &build=309)
by mattg
2019-07-12 14:42
Forum: General discussions
Topic: Migrating hMailServer to a new box
Replies: 5
Views: 521

Re: Migrating hMailServer to a new box

Which doc (link please) , and I'll look at it
by mattg
2019-07-12 14:41
Forum: General discussions
Topic: hMail looping when forwarding emails
Replies: 3
Views: 430

Re: hMail looping when forwarding emails

change the second TO to 'recipient list' contains, and then merge the rules so that both actions occur with the same rule


Rule1 :
To - contains - testing@domain.com
Recipient List - not contains - email@domain.com

Action:
Forward to email@domain.com
Delete email.
by mattg
2019-07-12 14:29
Forum: General discussions
Topic: Disable bounced server emails
Replies: 2
Views: 355

Re: Disable bounced server emails

You can create a catchall and silently just delete all messages with an account level rule

Most of us would prefer to bounce non-existent recipients, just so that the sender knows that a mistake was made.
by mattg
2019-07-12 08:17
Forum: General discussions
Topic: Migrating hMailServer to a new box
Replies: 5
Views: 521

Re: Migrating hMailServer to a new box

Backup restore is best option

Install same version on new system, backup old system (include all options including compression), copy compressed backup to new system and then restore to previously installed new system
by mattg
2019-07-11 07:41
Forum: General discussions
Topic: How Do I Use Wildcard Certificate Already Installed on IIS?
Replies: 3
Views: 455

Re: How Do I Use Wildcard Certificate Already Installed on IIS?

Thank you. I exported .pfx and extracted what i needed using openssl. It works and my test to my Gmail did not end up in the spam folder for once. It still says the message is not encrypted though. Message encryption is very different to connection encryption Which are you checking in gMail? How ar...
by mattg
2019-07-11 07:36
Forum: General discussions
Topic: New server, hMailServer and IMAP performance
Replies: 21
Views: 1467

Re: New server, hMailServer and IMAP performance

Try a HyperV Core build

They are free, with no time limits. No windows GUI, but hmailserver GUI works fine
HyperV Core is designed to host VMs, but you can run (non windows) stuff on the bare metal
by mattg
2019-07-10 14:55
Forum: Off-topic discussions
Topic: How to block SMTP attacks for sending multiple mails...
Replies: 15
Views: 1442

Re: How to block SMTP attacks for sending multiple mails...

ves wrote:
2019-07-10 13:42
I'm with version 5.6.8 and seems this doesn't work
Correct

I use a custom build, this is not available in the main releases
by mattg
2019-07-10 14:37
Forum: General discussions
Topic: Different domain address in the from address
Replies: 5
Views: 539

Re: Different domain address in the from address

Is your oracle application on a set IP range? The answer is to create an IP range for your oracle application that allows for external to external without AUTH Be careful NOT to allow external to external on the internet range as this will create an open relay do some test after your config changes ...
by mattg
2019-07-10 00:29
Forum: General discussions
Topic: DKIM fails on (some) autoforwards...
Replies: 19
Views: 1157

Re: DKIM fails on (some) autoforwards...

Catch them with a general rule, and delete them FROM contains mailer-daemon OR FROM contains [your MX A record FQDN, ie mail.example.com] ALSO Backscatter is normal email traffic not SPAM, anyone who rejects you ONLY because you are sending backscatter isn't thinking very hard. Check more places, yo...
by mattg
2019-07-09 16:44
Forum: General discussions
Topic: New server, hMailServer and IMAP performance
Replies: 21
Views: 1467

Re: New server, hMailServer and IMAP performance

would you recommend changing any of the other settings from their defaults? I run threading at 250,25,10 but I played with the settings for a while to arrive at those numbers, and it will depend on your hardware in comparison to mine and also the size of most emails I have over 450000 messages, but...
by mattg
2019-07-09 16:26
Forum: General discussions
Topic: Server Messages not signed?
Replies: 36
Views: 2086

Re: Server Messages not signed?

Does the mail daemon 'reply to sender on bounce' not use the same function? I didn't check, but assumed that it would...

Again, I don't have an issue as all of my Daemon messages are to local accounts, as only local accounts can send from my server
by mattg
2019-07-09 16:21
Forum: General discussions
Topic: SMTP Access
Replies: 1
Views: 335

Re: SMTP Access

not at certain intervals, no

I assume that you have poor quality internet connection on your hMailserver box
by mattg
2019-07-09 07:16
Forum: General discussions
Topic: Can hMailserver act as a pop3 email collection service and redistribute the emails on my local home network?
Replies: 2
Views: 386

Re: Can hMailserver act as a pop3 email collection service and redistribute the emails on my local home network?

yes hamilserver can do that download install Create a domain - 'something.local' (or whatever) Add accounts for each account set up 'external download pop3' to the gmail, hotmail what ever accounts Create a route for each sender and create a global rule that catches the from and then uses 'route' (o...
by mattg
2019-07-09 06:11
Forum: General discussions
Topic: Spamhaus Zen
Replies: 41
Views: 2834

Re: Spamhaus Zen

empty for me too...:D
by mattg
2019-07-09 01:22
Forum: General discussions
Topic: Server Messages not signed?
Replies: 36
Views: 2086

Re: Server Messages not signed?

#19 here
viewtopic.php?f=10&t=30193&start=180#p213193

This is a private build
by mattg
2019-07-09 01:21
Forum: General discussions
Topic: New server, hMailServer and IMAP performance
Replies: 21
Views: 1467

Re: New server, hMailServer and IMAP performance

I'm assuming (though I don't know off the top of my head) that we installed a 64-it version of this. I wouldn't assume that - the 64 bit driver is also tricky (read near impossible)to implement with standard HMailserver builds The data folder for just this one account is 172GB. That is big You say ...
by mattg
2019-07-09 01:14
Forum: General discussions
Topic: DKIM fails on (some) autoforwards...
Replies: 19
Views: 1157

Re: DKIM fails on (some) autoforwards...

Also this is #19 on RvdH's list of fixes :D in the private build
viewtopic.php?f=10&t=30193&start=180#p213193
by mattg
2019-07-08 13:18
Forum: Development & alpha discussions
Topic: Sub OnHELO(oClient) progress?
Replies: 197
Views: 43026

Re: Sub OnHELO(oClient) progress?

Thanks from me too
Already installed and in use
by mattg
2019-07-08 13:17
Forum: General discussions
Topic: New server, hMailServer and IMAP performance
Replies: 21
Views: 1467

Re: New server, hMailServer and IMAP performance

mrhappy wrote:
2019-07-08 12:37
The main point of this post is, what do you think is the root cause for this delay?
mrhappy wrote:
2019-07-08 12:41
The size of the database for this mail account is 175810.266MB (172GB) as reported by hMailServer.
Related events I'd say
by mattg
2019-07-08 09:36
Forum: Off-topic discussions
Topic: How to block SMTP attacks for sending multiple mails...
Replies: 15
Views: 1442

Re: How to block SMTP attacks for sending multiple mails...

What do you will recommend as value ? I'm thinking that 5 should be ok ? I run with 5 on my production machines I changed to 5 too - but seems this does't help :( ? Is it sure that 550 Unknown user is related to this option. Just saw this is fixed in RvdH's builds that I use https://github.com/hmai...