Search found 390 matches

by mikedibella
2020-12-20 03:40
Forum: General discussions
Topic: Gmail "be careful with this message"
Replies: 117
Views: 13925

Re: Gmail "be careful with this message"

Try this. Put this in EventHandlers.vbs: Sub FixListPost(oMessage) oMessage.From = oMessage.To oMessage.HeaderValue("Sender") = oMessage.FromAddress oMessage.HeaderValue("Reply-to") = oMessage.FromAddress oMessage.Save End Sub Add a Global Rule to trigger it: Untitled.png In my testing, the script f...
by mikedibella
2020-12-20 01:06
Forum: Feature requests
Topic: Change sender
Replies: 26
Views: 3901

Re: Change sender

That criteria should fire the Rule Actions for messages from my@domain.de. Is the Rule a Mailbox or Global Rule?

Enable SMTP, Application, and Debug logging. Send a message and post the log for that send.
by mikedibella
2020-12-19 22:52
Forum: Feature requests
Topic: Change sender
Replies: 26
Views: 3901

Re: Change sender

Untitled.png
Untitled.png (4.44 KiB) Viewed 3822 times
by mikedibella
2020-12-19 22:35
Forum: Feature requests
Topic: Change sender
Replies: 26
Views: 3901

Re: Change sender

Four Actions

Header name Value

From xyz@web.de
Sender my@domain.de
Reply-to my@domain.de
Return-path my@domain.de
by mikedibella
2020-12-19 22:16
Forum: Feature requests
Topic: Change sender
Replies: 26
Views: 3901

Re: Change sender

Rule
Actions
Set header value

Don't include ":", just name, ie. From for From: header
by mikedibella
2020-12-19 20:02
Forum: Feature requests
Topic: Change sender
Replies: 26
Views: 3901

Re: Change sender

Try:

Set From: to xyz@web.de
Set Sender: to my@domain.de
Set Reply-to: to my@domain.de
Set Return-path: to my@domain.de
by mikedibella
2020-12-19 06:00
Forum: General discussions
Topic: Gmail "be careful with this message"
Replies: 117
Views: 13925

Re: Gmail "be careful with this message"

One piece missing is the post recipient. The To: header needs to be rewritten to that address, and I don't see it in any header in the message before it is sent. When it is received, the receiving MTA may set X-Apparently-To: to the recipient address as received in the RCPT TO: envelope value, but I...
by mikedibella
2020-12-19 05:20
Forum: General discussions
Topic: Gmail "be careful with this message"
Replies: 117
Views: 13925

Re: Gmail "be careful with this message"

The envelope refers to the data exchanged between SMTP peers to complete message exchange. It includes the verbs EHLO, MAIL, RCPT, DATA, QUIT. The message itself is comprised of the headers and body. It is submitted after the DATA verb, and submission is finalized by sending <cr>.<cr>. QUIT then end...
by mikedibella
2020-12-19 04:01
Forum: General discussions
Topic: Gmail "be careful with this message"
Replies: 117
Views: 13925

Re: Gmail "be careful with this message"

On many mail clients, if Sender: is present, the From line in the client reads:

From: list-address on behalf of originator
by mikedibella
2020-12-19 03:56
Forum: General discussions
Topic: Gmail "be careful with this message"
Replies: 117
Views: 13925

Re: Gmail "be careful with this message"

I wonder if you can get the envelope MAIL FROM: set to @abdx.org (i.e. use the list address for MAIL FROM:), but keep the From: set to the post originator, and set Sender: to the list address, you might solve this. See https://www.emailarchitect.net/easendmail/sdk/html/object_from.htm You also want ...
by mikedibella
2020-12-19 03:35
Forum: General discussions
Topic: Gmail "be careful with this message"
Replies: 117
Views: 13925

Re: Gmail "be careful with this message"

Received: from abdx.org (abdx.org. [65.38.140.167]) spf=softfail (google.com: domain of transitioning michaelj@vcn.com does not designate 65.38.140.167 as permitted sender) smtp.mailfrom=michaelj@vcn.com It looks like this list post was originated by michaelj@vcn.com, but sent from the relay author...
by mikedibella
2020-12-19 01:01
Forum: Feature requests
Topic: Change sender
Replies: 26
Views: 3901

Re: Change sender

Keep RewriteEnvelopeFromWhenForwarding=1 in hMailServer.ini and create a Rule with Actions to Set headers.

Set the originator headers to the mailbox owner. See https://tools.ietf.org/html/rfc5322#section-3.6.2.
by mikedibella
2020-12-18 23:42
Forum: Feature requests
Topic: Change sender
Replies: 26
Views: 3901

Re: Change sender

That error generally means you are trying to submit email for delivery to an address that is external to that service (i.e. submitting an email to user1@google.com for delivery to user2@yahoo.com) using authentication (i.e. authenticating as the username associated with mailbox user1@google.com) and...
by mikedibella
2020-12-18 20:58
Forum: General discussions
Topic: Gmail "be careful with this message"
Replies: 117
Views: 13925

Re: Gmail "be careful with this message"

Just throwing some ideas out here... https://begriffs.com/posts/2018-09-18-dmarc-mailing-list.html http://www.open-spf.org/srs/ @SorenR: I tried analyzing the source code to determine which header in the message is used to identity the sending domain to select the configuration used for DKIM, but i...
by mikedibella
2020-12-18 20:54
Forum: General discussions
Topic: Gmail "be careful with this message"
Replies: 117
Views: 13925

Re: Gmail "be careful with this message"

About the only way I can think of for you to solve this is to use separate distribution list software that generates discrete emails for every list recipient, instead of re-mailing the original list submission. Then hMailServer will individually sign each message and you can set the message headers ...
by mikedibella
2020-12-18 03:15
Forum: General discussions
Topic: Gmail "be careful with this message"
Replies: 117
Views: 13925

Re: Gmail "be careful with this message"

If you can capture the entire email as text, headers and body, try validating the message here:

https://www.appmaildev.com/en/dkimfile

It might shed some light.
by mikedibella
2020-12-18 03:11
Forum: General discussions
Topic: Gmail "be careful with this message"
Replies: 117
Views: 13925

Re: Gmail "be careful with this message"

Well I set up a little test to look at this and I'm seeing messages from an hMailServer distribution list get rejected to multiple test destinations (@dkimvalidator.com and @mail-tester.com) because hMailServer preserves the distribution list address in the To: header and these tools want the test a...
by mikedibella
2020-12-18 02:21
Forum: General discussions
Topic: Gmail "be careful with this message"
Replies: 117
Views: 13925

Re: Gmail "be careful with this message"

Yes. I just tried looking at the source code to see if I could confirm which field in the message hMailServer uses to "select" the domain configuration to apply the DKIM keys from. If by chance HMS isn't using envelope MAIL FROM: or header From: to select the key, then you might be able to make some...
by mikedibella
2020-12-18 01:11
Forum: General discussions
Topic: Gmail "be careful with this message"
Replies: 117
Views: 13925

Re: Gmail "be careful with this message"

DKIM signs by sender domain. You can't sign for gmail.com because you don't control that namespace to set the public keys. I'm not sure you can solve this except to rewrite the sending identity of the post to be the list address. You can rewrite the envelope (MAIL FROM: address in the SMTP protocol ...
by mikedibella
2020-12-17 06:49
Forum: General discussions
Topic: Add warning to emails
Replies: 43
Views: 20954

Re: Add warning to emails

Close. You are missing a closing End If. Sub WarningMessage(oMessage) Dim txtMsg, aspMsg If oMessage.HeaderValue("X-hMailServer-LoopCount") = "" Then If oMessage.HasBodyType("text/plain") Then txtMsg = " ***********************************************************************" & vbCrLf &_ " * CAUTION...
by mikedibella
2020-12-17 06:16
Forum: General discussions
Topic: Add warning to emails
Replies: 43
Views: 20954

Re: Add warning to emails

You are going to need to check for the X-hMailServer-LoopCount header. If it is present, the message has already been processed the number of times indicated by the value. If the header isn't present the message hasn't been processed before. Since you are using the Or operator in your Rule list, you...
by mikedibella
2020-12-17 05:19
Forum: General discussions
Topic: Gmail "be careful with this message"
Replies: 117
Views: 13925

Re: Gmail "be careful with this message"

Why does the image above show the message send FROM a gmail address?
by mikedibella
2020-12-16 02:04
Forum: General discussions
Topic: Rule That Applies to Outbound Messages Only
Replies: 4
Views: 972

Re: Rule That Applies to Outbound Messages Only

SorenR wrote:
2020-12-16 01:46
- Search type -> Regular expression -> "(?i:^.*(ESMTPSA|ESMTPA).*$)"
Clever. I prefer this approach to adding a custom header in OnAcceptMessage. I will give it a try. TYVM all.
by mikedibella
2020-12-16 00:56
Forum: General discussions
Topic: my emails will sometimes go to spam on Gmail
Replies: 4
Views: 851

Re: my emails will sometimes go to spam on Gmail

In Postmaster Tools, drill into the domain and try the Sender Troubleshooter from the 3-dots menu.
by mikedibella
2020-12-16 00:38
Forum: General discussions
Topic: my emails will sometimes go to spam on Gmail
Replies: 4
Views: 851

Re: my emails will sometimes go to spam on Gmail

Google also manages an internal domain blacklist. Add your domain here for visibility:

https://postmaster.google.com
by mikedibella
2020-12-15 20:52
Forum: General discussions
Topic: Rule That Applies to Outbound Messages Only
Replies: 4
Views: 972

Rule That Applies to Outbound Messages Only

My hMailServer is a primarily a bridgehead. I have a series of Routes defined for inbound domains, and I use a smart relay for outbound messages. I have some use cases where I'd like to send outbound email though an alternate smart relay, and I've defined a Route to configure the target host paramet...
by mikedibella
2020-12-15 19:09
Forum: General discussions
Topic: Gmail "be careful with this message"
Replies: 117
Views: 13925

Re: Gmail "be careful with this message"

I really like this tool for testing my mail server setup: https://www.mail-tester.com/ I do see that it has a couple more tests than DKIM Validator, but it is paywalled after three tests a day, so I'd suggest using DKIM Validator for working tests and when you think your perfect do a final test wit...
by mikedibella
2020-12-15 06:26
Forum: General discussions
Topic: Gmail "be careful with this message"
Replies: 117
Views: 13925

Re: Gmail "be careful with this message"

michaeljwyo wrote:
2020-12-15 06:12
Not sure what is causing that "softfail".
See: https://postmarkapp.com/blog/explaining ... ail%20SPF.
by mikedibella
2020-12-15 05:48
Forum: General discussions
Topic: Gmail "be careful with this message"
Replies: 117
Views: 13925

Re: Gmail "be careful with this message"

Create a throwaway address from http://dkimvalidator.com and add it to your distribution list. Send a message to the list and retreive the analysis. You might find a problem here.
by mikedibella
2020-12-09 04:34
Forum: Scripting
Topic: Script to write message to file
Replies: 6
Views: 1435

Re: Script to write message to file

Thanks to all who responded. I think I'm all set now.
by mikedibella
2020-12-08 23:43
Forum: Scripting
Topic: Script to write message to file
Replies: 6
Views: 1435

Re: Script to write message to file

filename is a Message property https://www.hmailserver.com/documentation/latest/?page=com_object_message Depends on when you call it, or how you find your message You could use this property during OnDeliveryStart or OnAcceptMessage if you wanted to catch current messages live You could also iterat...
by mikedibella
2020-12-08 23:00
Forum: Scripting
Topic: Script to write message to file
Replies: 6
Views: 1435

Script to write message to file

I have a need to create a drop mailbox. Messages received at this mailbox would be written to a file for further processing. I used to do this with an IIS SMTP "local" domain. Messages sent to the local domain would just get written in RFC 822 format into the mailroot\drop directory. Now I'd like to...
by mikedibella
2020-12-06 21:48
Forum: General discussions
Topic: Relay Office 365 using Connector and Certificate
Replies: 4
Views: 861

Re: Relay Office 365 using Connector and Certificate

Then why are we able to do this with IIS and not with hMailServer? Certificate based Connectors work with IIS. In trying to prove this use case am getting 550 5.7.606 Access denied, banned sending IP on my server's IP. My server is in Azure. Did you have to go though the whitelisting process at htt...
by mikedibella
2020-12-04 18:23
Forum: General discussions
Topic: Relay Office 365 using Connector and Certificate
Replies: 4
Views: 861

Re: Relay Office 365 using Connector and Certificate

Both IIS SMTP and Exchange use the Microsoft-native SCHANNEL TLS implementation. So there is similarity is how the two products would respond to the client certificate request in the server hello. HMS uses the openssl libraries for TLS support. Mutual authentication support has not been coded, so yo...
by mikedibella
2020-12-04 04:17
Forum: General discussions
Topic: 550 Not authorized owner (in reply to RCPT TO command)).
Replies: 9
Views: 1457

Re: 550 Not authorized owner (in reply to RCPT TO command)).

I misunderstood. You want to be able to receive mail to list-address@local-domain.com from owner1@remote-domain.com and owner2@remote-domain.com and have either address treated as the list owner. You can still do this with a front-end mailbox that acts as the proxy address for the list. Call it new-...
by mikedibella
2020-12-03 20:27
Forum: General discussions
Topic: 550 Not authorized owner (in reply to RCPT TO command)).
Replies: 9
Views: 1457

Re: 550 Not authorized owner (in reply to RCPT TO command)).

I think you can do what you want with a mailbox loaded with the Aliases for the alternate List owners. Forward this mailbox to the List.

You need at add

Code: Select all

RewriteEnvelopeFromWhenForwarding=1
to hmailserver.ini (see https://www.hmailserver.com/forum/viewt ... 00#p192993).
by mikedibella
2020-12-03 05:52
Forum: General discussions
Topic: 550 Not authorized owner (in reply to RCPT TO command)).
Replies: 9
Views: 1457

Re: 550 Not authorized owner (in reply to RCPT TO command)).

From what I see in the source code, if the distribution list Mode is set to Announcements , then only messages From the specified address can be sent to the list. Messages sent From other other address will be rejected with 550 Not authorized owner . So check the Mode of the list. If you want to rec...
by mikedibella
2020-12-03 01:19
Forum: General discussions
Topic: 550 Not authorized owner (in reply to RCPT TO command)).
Replies: 9
Views: 1457

Re: 550 Not authorized owner (in reply to RCPT TO command)).

hMailServer itself generates this error when a message recipient is a distribution list and the message sender is not the owner of the list. Perhaps you have a rule that forwards an incoming message to a distribution list? If, so you'll need to rewrite the sender of the forwarded message to be the o...
by mikedibella
2020-11-14 06:31
Forum: General discussions
Topic: Comcast can not or will not deliver to hmailserver
Replies: 21
Views: 5197

Re: Comcast can not or will not deliver to hmailserver

I'd bet Comcast's receiving and sending infrastructure is seperate, and very likely on different subnets and possibly even different autonomous systems. I'd suggest sending an email from the Comcast account to an address dynamically generated here: https://dkimvalidator.com Then look at the headers ...
by mikedibella
2020-11-07 03:39
Forum: General discussions
Topic: dns mx priority setting
Replies: 4
Views: 2838

Re: dns mx priority setting

In the Content column on the DNS tab tab in Cloudflare, for the MX record, make sure you have specified a hostname with an A record.

If the hostname is on the Cloudflare-managed domain, make sure the Proxy Status for that record is DNS Only.
by mikedibella
2020-10-27 02:52
Forum: General discussions
Topic: Anyone using Hmailserver with Windows Defender?
Replies: 6
Views: 3387

Re: Anyone using Hmailserver with Windows Defender?

I'm using it on my backup mx, which is configured as a standby with manual DNS failover. My active primary has never failed, so I've never stressed it beyond simple configuration proof with a few test emails. Here's the config: Windows Server 2016 Version 1607 Scanner executable: "C:\Program Files\W...
by mikedibella
2020-10-25 20:47
Forum: General discussions
Topic: 550 Rejected by SpamCop - when using Sendgrid
Replies: 24
Views: 8311

Re: 550 Rejected by SpamCop - when using Sendgrid

More and more, IaaS IP ranges are blacklisted. Makes hosting direct mailing on the major IaaS providers clouds increasingly impractical. Relay providers solve this issue, so I see their use uptrending, not diminishing.
by mikedibella
2020-10-23 22:20
Forum: General discussions
Topic: 550 Rejected by SpamCop - when using Sendgrid
Replies: 24
Views: 8311

Re: 550 Rejected by SpamCop - when using Sendgrid

SendGrid suffered an incursion in August and a large number of customer accounts were compromised.

https://krebsonsecurity.com/2020/08/sen ... -accounts/

Spammer quickly hoovered up the account and the resulting spam assault BL many SendGrid IPs.

They are still recovering.
by mikedibella
2020-10-23 20:34
Forum: General discussions
Topic: 550 Rejected by SpamCop - when using Sendgrid
Replies: 24
Views: 8311

Re: 550 Rejected by SpamCop - when using Sendgrid

@DrmCa: PM me if you want to take this discussion off the clothesline.
by mikedibella
2020-10-22 21:19
Forum: General discussions
Topic: 550 Rejected by SpamCop - when using Sendgrid
Replies: 24
Views: 8311

Re: 550 Rejected by SpamCop - when using Sendgrid

The remote server only sees SendGrid's IP on connection. Your server is listed in the headers, but the receiving party is going to use the connecting relay's (SendGrid) IP to determine reputation. You are probably using a shared IP plan from SendGrid and the IP your are sharing has been blacklisted ...
by mikedibella
2020-10-22 17:52
Forum: General discussions
Topic: 550 Rejected by SpamCop - when using Sendgrid
Replies: 24
Views: 8311

Re: 550 Rejected by SpamCop - when using Sendgrid

When SendGrid receives a protocol error from a remote relay during mail submission, the error is dispatched back to you in the evert hook. So SendGrid is telling you that the recipient's server rejected the mail for the reason stated. Some errors also result in addresses being added to the various s...
by mikedibella
2020-10-20 21:22
Forum: General discussions
Topic: hMailServer and Sendgrid
Replies: 15
Views: 4806

Re: hMailServer and Sendgrid

Anyone have any recommendations for alternative service providers? Anyone have experience with Sendinblue?
by mikedibella
2020-10-07 02:22
Forum: General discussions
Topic: relaying mail to Office 365 with certificate to auth ?
Replies: 5
Views: 1293

Re: relaying mail to Office 365 with certificate to auth ?

Well, this looks like it might be trickier than I thought. It looks like the client certificate validation takes place during the STARTTLS verb processing after the initial connection to Office 365 is made over an unencrypted TCP connection. The whole facility appears to be designed specifically to ...
by mikedibella
2020-10-06 21:31
Forum: General discussions
Topic: relaying mail to Office 365 with certificate to auth ?
Replies: 5
Views: 1293

Re: relaying mail to Office 365 with certificate to auth ?

Got it. You will need to use stunnel or a similar tool to proxy the outbound connection from hMailServer. Stunnel can make the connection to Office 365 from your HMS host and present the client certificate to Office 365 for authentication. HMS will connect to stunnel (on the local or another host on...
by mikedibella
2020-10-06 18:59
Forum: General discussions
Topic: relaying mail to Office 365 with certificate to auth ?
Replies: 5
Views: 1293

Re: relaying mail to Office 365 with certificate to auth ?

Not sure I fully understand your scenario. Are you wanting hMailServer to present a client authentication certificate to the Office 365 SMTP mail submission port 587? And then your internal clients will connect to hMailServer to submit messages for relay on port 25 without authentication or TLS?
by mikedibella
2020-09-18 11:57
Forum: General discussions
Topic: AUTH PLAIN
Replies: 1
Views: 823

Re: AUTH PLAIN

Well, for those interested, here's the relevant code. Lines 323-382 of SMTPClientConnection.cpp defines the processing for machine state after HELO/ELHO is sent: void SMTPClientConnection::ProtocolEHLOSent_(int code, const AnsiString &request) { if (!IsPositiveCompletion(code)) { bool ehlo_required ...
by mikedibella
2020-09-17 20:47
Forum: General discussions
Topic: AUTH PLAIN
Replies: 1
Views: 823

AUTH PLAIN

I'm having trouble relaying to an MTA that is only offering AUTH PLAIN, but HMS is ignoring the capability response and still sends AUTH LOGIN. Any workaround?
by mikedibella
2020-09-14 04:58
Forum: General discussions
Topic: Header Rewrite
Replies: 2
Views: 1016

Re: Header Rewrite

Thanks, Matt. That should get me started.
by mikedibella
2020-09-14 03:35
Forum: General discussions
Topic: Header Rewrite
Replies: 2
Views: 1016

Header Rewrite

Some messages I receive need to get hairpined to an external address and for these messages I'd like to rewrite headers: 1. Create a new header X-Original-Reply-To = Reply-To 2. Create or overwrite Reply-To with From 3. Overwrite From with the a new email address consisting of the existing Display p...
by mikedibella
2020-08-28 01:07
Forum: General discussions
Topic: Receiving email from any subdomain.
Replies: 10
Views: 2421

Re: Receiving email from any subdomain.

On wildcard certificates you're right. *.example.com is only valid for this first subdomain level.
Yup, that's where I got my circuits crossed.
by mikedibella
2020-08-06 02:00
Forum: General discussions
Topic: Receiving email from any subdomain.
Replies: 10
Views: 2421

Re: Receiving email from any subdomain.

bloxxite wrote:
2020-08-06 01:48
I can do * for my MX record.
Remember that *.example.com will only catch an.example.com, not is.an.example.com or this.is.an.example.com.
by mikedibella
2020-07-14 19:41
Forum: Scripting
Topic: script would check the first mx record and only if that is down, would open Port 25 on the backup server
Replies: 16
Views: 5382

Re: script would check the first mx record and only if that is down, would open Port 25 on the backup server

I read that you want to host a second instance of HMS on a different server than your primary HMS host, this second HMS would be listed in the DNS with an MX having a higher Priority number than your primary host. You want this backup server to be listening for connections on port 25 only when the s...
by mikedibella
2020-06-10 17:07
Forum: General discussions
Topic: Performance issues sending/receiving email
Replies: 11
Views: 3159

Re: Performance issues sending/receiving email

My hypothesis is that your system is I/O bound. The large number of messages is saturating disk queues and the whole system slows to a crawl as virtual memory operations compete with data reads and write for the I/O channel . Check the relevant Windows performance counters to verify. To fix, conside...