Sub OnHELO(oClient) progress?

Use this forum if you want to discuss a problem or ask a question related to a hMailServer beta release.
User avatar
mattg
Moderator
Moderator
Posts: 22444
Joined: 2007-06-14 05:12
Location: 'The Outback' Australia

Re: Sub OnHELO(oClient) progress?

Post by mattg » 2023-12-02 02:27

RvdH wrote:
2023-12-01 15:21
I believe a few use 5.7 in production right now, mattg?
Yes indeed.

Some 17 or so domains, a few hundred accounts and a couple of thousand messages per day
Although I am winding that down presently (not related to hmailserver)
Just 'cause I link to a page and say little else doesn't mean I am not being nice.
https://www.hmailserver.com/documentation

gotspatel
Senior user
Senior user
Posts: 347
Joined: 2013-10-08 05:42
Location: INDIA

Re: Sub OnHELO(oClient) progress?

Post by gotspatel » 2023-12-02 03:43

Thanks @katip & @mattg

info received well.

I think I will stick to 5.6.x for now when there is no major change between 5.6.x and 5.7.x

:D

User avatar
katip
Senior user
Senior user
Posts: 1162
Joined: 2006-12-22 07:58
Location: Istanbul

Re: Sub OnHELO(oClient) progress?

Post by katip » 2023-12-02 08:25

mattg wrote:
2023-12-02 02:27
Although I am winding that down presently (not related to hmailserver)
We not but started to use HMS (5.7) as a kind of back-end and put Linux in front. Dovecot as IMAP and POP proxy does fantastic job. At home i additionally put Proxmox MG as SMTP proxy (practically Postfix). Soon i'm going to add it at work too. All in one Linux box. HMS can stay as long as Win supports it and is able to talk to this proxies, probably for at least next 10-15 years or so. Then who knows..
Katip
--
HMS 5.7, MariaDB 10.4.10, SA 4.0.0, ClamAV 0.103.8

palinka
Senior user
Senior user
Posts: 4503
Joined: 2017-09-12 17:57

Re: Sub OnHELO(oClient) progress?

Post by palinka » 2023-12-02 09:31

katip wrote:
2023-12-02 08:25
HMS can stay as long as Win supports it and is able to talk to this proxies, probably for at least next 10-15 years or so. Then who knows..
Then on to hMSX :lol: :lol:

gotspatel
Senior user
Senior user
Posts: 347
Joined: 2013-10-08 05:42
Location: INDIA

Re: Sub OnHELO(oClient) progress?

Post by gotspatel » 2023-12-02 09:58

91e6fa25fef9b0993e9ad689324c2c75_haha-meme-gallery-memes-haha_400-300.jpg
91e6fa25fef9b0993e9ad689324c2c75_haha-meme-gallery-memes-haha_400-300.jpg (34.25 KiB) Viewed 6537 times

User avatar
katip
Senior user
Senior user
Posts: 1162
Joined: 2006-12-22 07:58
Location: Istanbul

Re: Sub OnHELO(oClient) progress?

Post by katip » 2023-12-02 12:24

palinka wrote:
2023-12-02 09:31
katip wrote:
2023-12-02 08:25
HMS can stay as long as Win supports it and is able to talk to this proxies, probably for at least next 10-15 years or so. Then who knows..
Then on to hMSX :lol: :lol:
haha... better to something without an MS in any way, by this opportunity :lol:
Katip
--
HMS 5.7, MariaDB 10.4.10, SA 4.0.0, ClamAV 0.103.8

User avatar
RvdH
Senior user
Senior user
Posts: 3249
Joined: 2008-06-27 14:42
Location: The Netherlands

Re: Sub OnHELO(oClient) progress?

Post by RvdH » 2024-02-03 12:59

Sorry forgot to update the changelog...
Latest is 5.6.9-2641.65

Note FYI i have disabled download access to older versions of my custom builds, you from now on always should be redirected to the latest build when downloading

Simply install the latest artifact from the URL below, then copy and overwrite files in this archive in hmailserver '/bin', '/Addons' and optionally the '/PHPWebAdmin' directory
https://build.hmailserver.com/repositor ... -B2641.exe (login as guest)
  1. Added: OnHELO(oClient) event, issue #153
  2. Fix: Incorrect DEBUG logging for event 'OnDeliverMessage', issue #181
  3. Added: Include HTMLBody into IMAP TEXT search, pull #193
  4. Fix: implicit conversion: "int" to "unsigned char" pull #204
  5. Fix: Faulty SMTP 'Disconnect client after too many invalid commands' pull issue #160
  6. Fix: SMTP server error "550 Unsupported ESMTP extension" on MAIL FROM:... AUTH=<> [with fix] issue #164
  7. Fix: Removed warning if backup was more than 1,5GB and 15GB limit. There's no longer a recommended max-size - the time will vary with the installation size. issue #69
  8. Fix: Speed up 'update hm_messages set messageflags' issue #221
  9. Added: Return-Path header as topmost header before sending the message to SA (+ delete Return-Path header after the SA check completes) issue #116
  10. Added: Event OnClientLogon(oClient), New ClientInfo property oClient.Authenticated (Boolean)
  11. Fix: Handling of long UIDL response lists was too slow. issue #93
  12. Fix: When calling SpamAssassin and there was a connection failure, sometimes temporary files were left behind issue #100
  13. Fix: SURBL detection properly fails to detect url's ending with a query string issue #108
  14. Fix: If a route is set up, but the recipient does not match an address in the route address list, the domain catch-all should be used if specified. issue #74
  15. Fix: ExternalFetcher DELE when no RETR, pull pull #254
  16. Fix: SMTP multiply max message size with 1024 issue #267
  17. Added: email address variable to SignatureAdder.cpp pull #265
  18. Fix: DKIM on acccount-rule 'reply' not applied #172 issue #172
  19. Fix: preserve RewriteEnvelopeFromWhenForwarding setting when forwarding from account rule
  20. Fix: The logical flow should be to disregard "Require SMTP authentication" if "Allow deliveries from" is unselected issue #287
  21. Added: ability to DKIM sign NDR messages (forwarded to external) pull #301
  22. Added: Use custom daemonaddressdomain from INI pull #301
  23. Fix: SURBL regex pull #320
  24. Fix: Ignore SpamTestSPF and SpamTestHeloHost when send thru local IP Address, see this forum topic
  25. Added: SPF test to include "HELO/EHLO host" used by DNS macros pull 353
  26. Fix: 'Unencrypted Cleartext Login' vulnerability detection pull 242
  27. Fix: Anti-spam; Maximum message to scan (KB) is now limited to 256MB, see this forum topic
  28. Added: "UseDNSCache" INI setting. 1 = Use cache in DNS Client service (default). 0 = Bypass cache in DNS Client service. pull 396
  29. Fix: AWStats::LogDeliveryFailure was called twice for each message in OnDeliveryFailed pull 368
  30. Fix: oMessage object was empty (in some circumstances) when called from OnDeliveryFailed pull 369
  31. Added: Experimental events OnRecipientUnknown(oClient, oMessage) and OnTooManyInvalidCommands(oClient, oMessage) pull #390
  32. Added: TLS server cipher preference support and support for prioritizing ChaCha20Poly1305 pull 379
  33. Added: DKIM signature for domain aliases pull 383
  34. Added: "DNSServer" INI setting. Single (local) DNS server IPv4 addresses to use within hMailServer instead of default system DNS. pull 396
  35. Added: Auto-Submitted header for auto-generated messages pull 386
  36. Added: New ClientInfo properties oClient.EncryptedConnection (Boolean), oClient.CipherVersion, oClient.CipherName and oClient.CipherBits pull #391
  37. Added: DomainMembers DistributionList mode pull #392
  38. Added: X-hMailServer-Envelope-From header, grouping off all X-hMailServer-* headers, For consistency equalize Return-Path format used within hMailServer, eg: Return-Path: <return-route-addr> (always use angle brackets)
  39. Fix: integer overflow check for SPF macro segment count pull #399
  40. Added: New ClientInfo property oClient.SessionID (long) issue #401
  41. Added: New Status property oApp.Status.ThreadID (long) this forum topic
  42. Added: rDNS/PTR AntiSpam Check pull #413
  43. Added: Prefer IPv6 over IPv4 pull #415
  44. Fix: SpamTestHeloHost IPv6 Fix pull #416
  45. Fix: Changed ClamAV Scan from STREAM to INSTREAM. issue #420
  46. Added: MIME Recipient Headers as configurable comma delimited string pull #428
  47. Fix: AUTH PLAIN followed by base64 encoded username and password (on same line) in log exposed account password. pull #437
  48. Fix: rfc4954 After a successful AUTH command completes, a server MUST reject any further AUTH commands with a 503 reply. pull #438
  49. Fix: HM5157 SpamAssassinClient::OnReadError, The WinSock error code is 2. issue #167
  50. Fix: TCP/IP Ports 'Default' button in GUI did not add the standard port SMTP 587 (this port is standard added by SQL script during installation) #pull 441
  51. Removed: Collection of statistics, since it's no longer being used. issue #435
  52. Fix: If MSSQL OLE DB Provider 18 or later is installed, prefer that one, since it supports TLS1.1/1.2 which older providers do not. issue 186
  53. Added: %MACRO_ORIGINAL_HEADER% macro expansion for 'Set header value' rules
  54. Fix: S/MIME Signed Message Failing Signature Validation due to X-hMailServer-Envelope-From header position, effectively this means ungrouping of the X-hMailServer-* headers
  55. Fix: Error logged if email address length exceeds 254 characters issue #393
  56. Fix: DKIM Signing Not Performed On Messages > 10 MB issue #387
  57. Fix: DKIM (header) verification fails when an email is received with no subject issue #245
  58. Added: DKIM signing support for CSA-Compliant Mail Headers, eg: X-CSA-Complaints and List-Unsubscribe-Post headers
  59. Fix: Prefer IPv6 over IPv4 didn't do anything, added the missing part (sorting of found IP Addresses)
  60. Removed: X-hMailServer-Envelope-From as it had no practical use
  61. Added: Received-SPF: diagnostic header controlled with INI setting "AddReceivedSPFHeader" (skip for authenticated client connections or localhost!)
  62. Added: (envelope-from <user@domain.com>), for <user@domain.com> to Received: header (if single recipient!)
  63. Fix: All 5xx errors are permanent errors and should be treated as such, eg: contributing to invalid commands counter
  64. Fix: hMailServer reports incorrect RFC822.SIZE pull 477
  65. Fix: hMailServer AUTH PLAIN in SMTP fails when authzid is supplied, pull 482
Important! This fork requires you to add additional entries to the hm_settings database table if you database version is NOT 5606, eg:

MariaDB, MySQL

Code: Select all

insert into hm_settings (settingname, settingstring, settinginteger) 
  select 'TlsOptions', '', 0 from dual
where not exists 
  (select settingname from hm_settings where settingname='TlsOptions');

insert into hm_settings (settingname, settingstring, settinginteger) 
  select 'ascheckptr', '', 0 from dual
where not exists 
  (select settingname from hm_settings where settingname='ascheckptr');

insert into hm_settings (settingname, settingstring, settinginteger) 
  select 'ascheckptrscore', '', 1 from dual
where not exists 
  (select settingname from hm_settings where settingname='ascheckptrscore');

insert into hm_settings (settingname, settingstring, settinginteger) 
  select 'IPv6Preferred', '', 0 from dual
where not exists 
  (select settingname from hm_settings where settingname='IPv6Preferred');

alter table hm_fetchaccounts add column if not exists famimerecipientheaders varchar(255) not null default 'To,CC,X-RCPT-TO,X-Envelope-To';

update hm_dbversion set value = 5606;
MSSQL

Code: Select all

IF NOT EXISTS(SELECT settingname FROM hm_settings WHERE settingname = 'TlsOptions')
INSERT INTO hm_settings(settingname, settingstring, settinginteger) VALUES ('TlsOptions','','0')
GO
IF NOT EXISTS(SELECT settingname FROM hm_settings WHERE settingname = 'ascheckptr')
insert into hm_settings (settingname, settingstring, settinginteger) values ('ascheckptr', '', 0)
GO
IF NOT EXISTS(SELECT settingname FROM hm_settings WHERE settingname = 'ascheckptrscore')
insert into hm_settings (settingname, settingstring, settinginteger) values ('ascheckptrscore', '', 1)
GO
IF NOT EXISTS(SELECT settingname FROM hm_settings WHERE settingname = 'IPv6Preferred')
insert into hm_settings (settingname, settingstring, settinginteger) values ('IPv6Preferred', '', 0)
GO
IF NOT EXISTS (
  SELECT
    *
  FROM
    INFORMATION_SCHEMA.COLUMNS
  WHERE
    TABLE_NAME = 'hm_fetchaccounts' AND COLUMN_NAME = 'famimerecipientheaders')
BEGIN
  ALTER TABLE hm_fetchaccounts
    ADD famimerecipientheaders nvarchar(255) NOT NULL DEFAULT 'To,CC,X-RCPT-TO,X-Envelope-To'
END;
GO
UPDATE hm_dbversion SET value = 5606
GO
Download
https://d-fault.nl/files/hMailServer-Bu ... 2641.65.7z

* Included hMailAdmin.exe fixes sorting of DateTime and IPAddress (IP4) values, not reflected in server application version numbering
CIDR to RegEx: d-fault.nl/cidrtoregex
DNS Lookup: d-fault.nl/dnstools
DKIM Generator: d-fault.nl/dkimgenerator
DNSBL Lookup: d-fault.nl/dnsbllookup
GEOIP Lookup: d-fault.nl/geoiplookup

teco
Normal user
Normal user
Posts: 44
Joined: 2010-12-20 14:26

Re: Sub OnHELO(oClient) progress?

Post by teco » 2024-02-21 11:30

Hi,
we are using PostgreSQL. Can you support an update script for the database for PostgreSQL.
Thank you.
teco

gotspatel
Senior user
Senior user
Posts: 347
Joined: 2013-10-08 05:42
Location: INDIA

Re: Sub OnHELO(oClient) progress?

Post by gotspatel » 2024-02-22 07:30

@teco

I am 99% sure the below is correct, please test it before running on live server.

Code: Select all

-- Check if the 'TlsOptions' setting exists
DO $$
BEGIN
IF NOT EXISTS (SELECT 1 FROM hm_settings WHERE settingname = 'TlsOptions') THEN
    INSERT INTO hm_settings(settingname, settingstring, settinginteger) VALUES ('TlsOptions','','0');
END IF;
END $$;

-- Check if the 'ascheckptr' setting exists
DO $$
BEGIN
IF NOT EXISTS (SELECT 1 FROM hm_settings WHERE settingname = 'ascheckptr') THEN
    INSERT INTO hm_settings(settingname, settingstring, settinginteger) VALUES ('ascheckptr', '', 0);
END IF;
END $$;

-- Check if the 'ascheckptrscore' setting exists
DO $$
BEGIN
IF NOT EXISTS (SELECT 1 FROM hm_settings WHERE settingname = 'ascheckptrscore') THEN
    INSERT INTO hm_settings(settingname, settingstring, settinginteger) VALUES ('ascheckptrscore', '', 1);
END IF;
END $$;

-- Check if the 'IPv6Preferred' setting exists
DO $$
BEGIN
IF NOT EXISTS (SELECT 1 FROM hm_settings WHERE settingname = 'IPv6Preferred') THEN
    INSERT INTO hm_settings(settingname, settingstring, settinginteger) VALUES ('IPv6Preferred', '', 0);
END IF;
END $$;

-- Check if the 'famimerecipientheaders' column exists in the 'hm_fetchaccounts' table
DO $$
BEGIN
IF NOT EXISTS (
    SELECT 1
    FROM INFORMATION_SCHEMA.COLUMNS
    WHERE TABLE_NAME = 'hm_fetchaccounts' AND COLUMN_NAME = 'famimerecipientheaders'
) THEN
    ALTER TABLE hm_fetchaccounts
        ADD COLUMN famimerecipientheaders varchar(255) NOT NULL DEFAULT 'To,CC,X-RCPT-TO,X-Envelope-To';
END IF;
END $$;

-- Update the 'hm_dbversion' table
UPDATE hm_dbversion SET value = 5606;


mikhalkin
New user
New user
Posts: 1
Joined: 2024-02-26 21:05

Re: Sub OnHELO(oClient) progress?

Post by mikhalkin » 2024-02-26 21:08

RvdH wrote:
2024-02-03 12:59
Sorry forgot to update the changelog...
Latest is 5.6.9-2641.65
Hello.

Will the OpenSSL library be updated to version 3.0?

User avatar
RvdH
Senior user
Senior user
Posts: 3249
Joined: 2008-06-27 14:42
Location: The Netherlands

Re: Sub OnHELO(oClient) progress?

Post by RvdH » 2024-03-03 13:41

mikhalkin wrote:
2024-02-26 21:08
RvdH wrote:
2024-02-03 12:59
Sorry forgot to update the changelog...
Latest is 5.6.9-2641.65
Hello.

Will the OpenSSL library be updated to version 3.0?
See https://d-fault.nl/files/hMailServer-Builds
CIDR to RegEx: d-fault.nl/cidrtoregex
DNS Lookup: d-fault.nl/dnstools
DKIM Generator: d-fault.nl/dkimgenerator
DNSBL Lookup: d-fault.nl/dnsbllookup
GEOIP Lookup: d-fault.nl/geoiplookup

User avatar
mattg
Moderator
Moderator
Posts: 22444
Joined: 2007-06-14 05:12
Location: 'The Outback' Australia

Re: Sub OnHELO(oClient) progress?

Post by mattg » 2024-03-06 03:47

@RvdH
Do you publish a list of the changes specific to your 5.7 branch?
Just 'cause I link to a page and say little else doesn't mean I am not being nice.
https://www.hmailserver.com/documentation

User avatar
RvdH
Senior user
Senior user
Posts: 3249
Joined: 2008-06-27 14:42
Location: The Netherlands

Re: Sub OnHELO(oClient) progress?

Post by RvdH » 2024-03-06 10:01

mattg wrote:
2024-03-06 03:47
@RvdH
Do you publish a list of the changes specific to your 5.7 branch?
Have you tried the included readme.txt? :wink:
CIDR to RegEx: d-fault.nl/cidrtoregex
DNS Lookup: d-fault.nl/dnstools
DKIM Generator: d-fault.nl/dkimgenerator
DNSBL Lookup: d-fault.nl/dnsbllookup
GEOIP Lookup: d-fault.nl/geoiplookup

User avatar
mattg
Moderator
Moderator
Posts: 22444
Joined: 2007-06-14 05:12
Location: 'The Outback' Australia

Re: Sub OnHELO(oClient) progress?

Post by mattg » 2024-03-06 11:56

Thanks
Just 'cause I link to a page and say little else doesn't mean I am not being nice.
https://www.hmailserver.com/documentation

User avatar
RvdH
Senior user
Senior user
Posts: 3249
Joined: 2008-06-27 14:42
Location: The Netherlands

Re: Sub OnHELO(oClient) progress?

Post by RvdH » 2024-03-07 10:52

Latest is 5.6.9-2641.67

Note FYI i have disabled download access to older versions of my custom builds, you from now on always should be redirected to the latest build when downloading

Simply install the latest artifact from the URL below, then copy and overwrite files in this archive in hmailserver '/bin', '/Addons' and optionally the '/PHPWebAdmin' directory
https://build.hmailserver.com/repositor ... -B2641.exe (login as guest)
  1. Added: OnHELO(oClient) event, issue #153
  2. Fix: Incorrect DEBUG logging for event 'OnDeliverMessage', issue #181
  3. Added: Include HTMLBody into IMAP TEXT search, pull #193
  4. Fix: implicit conversion: "int" to "unsigned char" pull #204
  5. Fix: Faulty SMTP 'Disconnect client after too many invalid commands' pull issue #160
  6. Fix: SMTP server error "550 Unsupported ESMTP extension" on MAIL FROM:... AUTH=<> [with fix] issue #164
  7. Fix: Removed warning if backup was more than 1,5GB and 15GB limit. There's no longer a recommended max-size - the time will vary with the installation size. issue #69
  8. Fix: Speed up 'update hm_messages set messageflags' issue #221
  9. Added: Return-Path header as topmost header before sending the message to SA (+ delete Return-Path header after the SA check completes) issue #116
  10. Added: Event OnClientLogon(oClient), New ClientInfo property oClient.Authenticated (Boolean)
  11. Fix: Handling of long UIDL response lists was too slow. issue #93
  12. Fix: When calling SpamAssassin and there was a connection failure, sometimes temporary files were left behind issue #100
  13. Fix: SURBL detection properly fails to detect url's ending with a query string issue #108
  14. Fix: If a route is set up, but the recipient does not match an address in the route address list, the domain catch-all should be used if specified. issue #74
  15. Fix: ExternalFetcher DELE when no RETR, pull pull #254
  16. Fix: SMTP multiply max message size with 1024 issue #267
  17. Added: email address variable to SignatureAdder.cpp pull #265
  18. Fix: DKIM on acccount-rule 'reply' not applied #172 issue #172
  19. Fix: preserve RewriteEnvelopeFromWhenForwarding setting when forwarding from account rule
  20. Fix: The logical flow should be to disregard "Require SMTP authentication" if "Allow deliveries from" is unselected issue #287
  21. Added: ability to DKIM sign NDR messages (forwarded to external) pull #301
  22. Added: Use custom daemonaddressdomain from INI pull #301
  23. Fix: SURBL regex pull #320
  24. Fix: Ignore SpamTestSPF and SpamTestHeloHost when send thru local IP Address, see this forum topic
  25. Added: SPF test to include "HELO/EHLO host" used by DNS macros pull 353
  26. Fix: 'Unencrypted Cleartext Login' vulnerability detection pull 242
  27. Fix: Anti-spam; Maximum message to scan (KB) is now limited to 256MB, see this forum topic
  28. Added: "UseDNSCache" INI setting. 1 = Use cache in DNS Client service (default). 0 = Bypass cache in DNS Client service. pull 396
  29. Fix: AWStats::LogDeliveryFailure was called twice for each message in OnDeliveryFailed pull 368
  30. Fix: oMessage object was empty (in some circumstances) when called from OnDeliveryFailed pull 369
  31. Added: Experimental events OnRecipientUnknown(oClient, oMessage) and OnTooManyInvalidCommands(oClient, oMessage) pull #390
  32. Added: TLS server cipher preference support and support for prioritizing ChaCha20Poly1305 pull 379
  33. Added: DKIM signature for domain aliases pull 383
  34. Added: "DNSServer" INI setting. Single (local) DNS server IPv4 addresses to use within hMailServer instead of default system DNS. pull 396
  35. Added: Auto-Submitted header for auto-generated messages pull 386
  36. Added: New ClientInfo properties oClient.EncryptedConnection (Boolean), oClient.CipherVersion, oClient.CipherName and oClient.CipherBits pull #391
  37. Added: DomainMembers DistributionList mode pull #392
  38. Added: X-hMailServer-Envelope-From header, grouping off all X-hMailServer-* headers, For consistency equalize Return-Path format used within hMailServer, eg: Return-Path: <return-route-addr> (always use angle brackets)
  39. Fix: integer overflow check for SPF macro segment count pull #399
  40. Added: New ClientInfo property oClient.SessionID (long) issue #401
  41. Added: New Status property oApp.Status.ThreadID (long) this forum topic
  42. Added: rDNS/PTR AntiSpam Check pull #413
  43. Added: Prefer IPv6 over IPv4 pull #415
  44. Fix: SpamTestHeloHost IPv6 Fix pull #416
  45. Fix: Changed ClamAV Scan from STREAM to INSTREAM. issue #420
  46. Added: MIME Recipient Headers as configurable comma delimited string pull #428
  47. Fix: AUTH PLAIN followed by base64 encoded username and password (on same line) in log exposed account password. pull #437
  48. Fix: rfc4954 After a successful AUTH command completes, a server MUST reject any further AUTH commands with a 503 reply. pull #438
  49. Fix: HM5157 SpamAssassinClient::OnReadError, The WinSock error code is 2. issue #167
  50. Fix: TCP/IP Ports 'Default' button in GUI did not add the standard port SMTP 587 (this port is standard added by SQL script during installation) #pull 441
  51. Removed: Collection of statistics, since it's no longer being used. issue #435
  52. Fix: If MSSQL OLE DB Provider 18 or later is installed, prefer that one, since it supports TLS1.1/1.2 which older providers do not. issue 186
  53. Added: %MACRO_ORIGINAL_HEADER% macro expansion for 'Set header value' rules
  54. Fix: S/MIME Signed Message Failing Signature Validation due to X-hMailServer-Envelope-From header position, effectively this means ungrouping of the X-hMailServer-* headers
  55. Fix: Error logged if email address length exceeds 254 characters issue #393
  56. Fix: DKIM Signing Not Performed On Messages > 10 MB issue #387
  57. Fix: DKIM (header) verification fails when an email is received with no subject issue #245
  58. Added: DKIM signing support for CSA-Compliant Mail Headers, eg: X-CSA-Complaints and List-Unsubscribe-Post headers
  59. Fix: Prefer IPv6 over IPv4 didn't do anything, added the missing part (sorting of found IP Addresses)
  60. Removed: X-hMailServer-Envelope-From as it had no practical use
  61. Added: Received-SPF: diagnostic header controlled with INI setting "AddReceivedSPFHeader" (skip for authenticated client connections or localhost!)
  62. Added: (envelope-from <user@domain.com>), for <user@domain.com> to Received: header (if single recipient!)
  63. Fix: All 5xx errors are permanent errors and should be treated as such, eg: contributing to invalid commands counter
  64. Fix: hMailServer reports incorrect RFC822.SIZE pull 477
  65. Fix: hMailServer AUTH PLAIN in SMTP fails when authzid is supplied, pull 482
  66. Fix: Minor bugfix where the Received-SPF diagnostic header gave incomplete or inaccurate results
  67. Fix: Minor bugfix where the Received-SPF diagnostic header gave inaccurate results when receiving mail through a (trusted/internal) relay
Important! This fork requires you to add additional entries to the hm_settings database table if you database version is NOT 5606, eg:

MariaDB, MySQL

Code: Select all

insert into hm_settings (settingname, settingstring, settinginteger) 
  select 'TlsOptions', '', 0 from dual
where not exists 
  (select settingname from hm_settings where settingname='TlsOptions');

insert into hm_settings (settingname, settingstring, settinginteger) 
  select 'ascheckptr', '', 0 from dual
where not exists 
  (select settingname from hm_settings where settingname='ascheckptr');

insert into hm_settings (settingname, settingstring, settinginteger) 
  select 'ascheckptrscore', '', 1 from dual
where not exists 
  (select settingname from hm_settings where settingname='ascheckptrscore');

insert into hm_settings (settingname, settingstring, settinginteger) 
  select 'IPv6Preferred', '', 0 from dual
where not exists 
  (select settingname from hm_settings where settingname='IPv6Preferred');

alter table hm_fetchaccounts add column if not exists famimerecipientheaders varchar(255) not null default 'To,CC,X-RCPT-TO,X-Envelope-To';

update hm_dbversion set value = 5606;
PostgreSQL

Code: Select all

-- Check if the 'TlsOptions' setting exists
DO $$
BEGIN
IF NOT EXISTS (SELECT 1 FROM hm_settings WHERE settingname = 'TlsOptions') THEN
    INSERT INTO hm_settings(settingname, settingstring, settinginteger) VALUES ('TlsOptions','','0');
END IF;
END $$;

-- Check if the 'ascheckptr' setting exists
DO $$
BEGIN
IF NOT EXISTS (SELECT 1 FROM hm_settings WHERE settingname = 'ascheckptr') THEN
    INSERT INTO hm_settings(settingname, settingstring, settinginteger) VALUES ('ascheckptr', '', 0);
END IF;
END $$;

-- Check if the 'ascheckptrscore' setting exists
DO $$
BEGIN
IF NOT EXISTS (SELECT 1 FROM hm_settings WHERE settingname = 'ascheckptrscore') THEN
    INSERT INTO hm_settings(settingname, settingstring, settinginteger) VALUES ('ascheckptrscore', '', 1);
END IF;
END $$;

-- Check if the 'IPv6Preferred' setting exists
DO $$
BEGIN
IF NOT EXISTS (SELECT 1 FROM hm_settings WHERE settingname = 'IPv6Preferred') THEN
    INSERT INTO hm_settings(settingname, settingstring, settinginteger) VALUES ('IPv6Preferred', '', 0);
END IF;
END $$;

-- Check if the 'famimerecipientheaders' column exists in the 'hm_fetchaccounts' table
DO $$
BEGIN
IF NOT EXISTS (
    SELECT 1
    FROM INFORMATION_SCHEMA.COLUMNS
    WHERE TABLE_NAME = 'hm_fetchaccounts' AND COLUMN_NAME = 'famimerecipientheaders'
) THEN
    ALTER TABLE hm_fetchaccounts
        ADD COLUMN famimerecipientheaders varchar(255) NOT NULL DEFAULT 'To,CC,X-RCPT-TO,X-Envelope-To';
END IF;
END $$;

-- Update the 'hm_dbversion' table
UPDATE hm_dbversion SET value = 5606;
MSSQL

Code: Select all

IF NOT EXISTS(SELECT settingname FROM hm_settings WHERE settingname = 'TlsOptions')
INSERT INTO hm_settings(settingname, settingstring, settinginteger) VALUES ('TlsOptions','','0')
GO
IF NOT EXISTS(SELECT settingname FROM hm_settings WHERE settingname = 'ascheckptr')
insert into hm_settings (settingname, settingstring, settinginteger) values ('ascheckptr', '', 0)
GO
IF NOT EXISTS(SELECT settingname FROM hm_settings WHERE settingname = 'ascheckptrscore')
insert into hm_settings (settingname, settingstring, settinginteger) values ('ascheckptrscore', '', 1)
GO
IF NOT EXISTS(SELECT settingname FROM hm_settings WHERE settingname = 'IPv6Preferred')
insert into hm_settings (settingname, settingstring, settinginteger) values ('IPv6Preferred', '', 0)
GO
IF NOT EXISTS (
  SELECT
    *
  FROM
    INFORMATION_SCHEMA.COLUMNS
  WHERE
    TABLE_NAME = 'hm_fetchaccounts' AND COLUMN_NAME = 'famimerecipientheaders')
BEGIN
  ALTER TABLE hm_fetchaccounts
    ADD famimerecipientheaders nvarchar(255) NOT NULL DEFAULT 'To,CC,X-RCPT-TO,X-Envelope-To'
END;
GO
UPDATE hm_dbversion SET value = 5606
GO
MSSQL CE
Using SqlCe QueryAnalyzer

Stop hMailServer (this is needed for SqlCe QueryAnalyzer)
Open the database with SqlCe QueryAnalyzer, normally located at "C:\Program Files (x86)\hMailServer\Database\hMailServer.sdf"
To obtain the sdf password, copy Password=*** value under [Database] in hMailServer.ini
if PasswordEncryption=1 under [Database] in hMailServer.ini you need to decrypt it using C:\Program Files (x86)\hMailServer\Addons\Utilities\DecryptBlowfish.vbs
First make sure none! of the entries and values below already exist in your database, when non existent, in the Tab "Query" execute queries (1 by 1)

Code: Select all

INSERT INTO hm_settings(settingname, settingstring, settinginteger) VALUES ('TlsOptions', '', 0)

INSERT INTO hm_settings (settingname, settingstring, settinginteger) VALUES ('ascheckptr', '', 0)

INSERT INTO hm_settings (settingname, settingstring, settinginteger) values ('ascheckptrscore', '', 1)

INSERT INTO hm_settings (settingname, settingstring, settinginteger) values ('IPv6Preferred', '', 0)

ALTER TABLE hm_fetchaccounts ADD famimerecipientheaders nvarchar(255) NOT NULL DEFAULT 'To,CC,X-RCPT-TO,X-Envelope-To'

UPDATE hm_dbversion SET value = 5606
Download
https://d-fault.nl/files/hMailServer-Bu ... 2641.67.7z

* Included hMailAdmin.exe fixes sorting of DateTime and IPAddress (IP4) values, not reflected in server application version numbering

Source
https://github.com/RvdHout/hmailserver

mikhalkin wrote:
2024-02-26 21:08
Will the OpenSSL library be updated to version 3.0?
See https://d-fault.nl/files/hMailServer-Builds
CIDR to RegEx: d-fault.nl/cidrtoregex
DNS Lookup: d-fault.nl/dnstools
DKIM Generator: d-fault.nl/dkimgenerator
DNSBL Lookup: d-fault.nl/dnsbllookup
GEOIP Lookup: d-fault.nl/geoiplookup

infohmail
New user
New user
Posts: 8
Joined: 2015-03-11 14:47

Re: Sub OnHELO(oClient) progress?

Post by infohmail » 2024-03-07 15:36

Thank you for your work! We really appreciate.

User avatar
bagu
Senior user
Senior user
Posts: 275
Joined: 2005-06-17 03:08
Location: France
Contact:

Re: Sub OnHELO(oClient) progress?

Post by bagu » 2024-03-07 23:31

Hello,

The latest build is detected with Trojan:Script/Wacatac.B!ml
Is it normal ?
hMailServer 5.6.8 With SpamAssassin 3.4.4

User avatar
SorenR
Senior user
Senior user
Posts: 6322
Joined: 2006-08-21 15:38
Location: Denmark

Re: Sub OnHELO(oClient) progress?

Post by SorenR » 2024-03-07 23:39

bagu wrote:
2024-03-07 23:31
Hello,

The latest build is detected with Trojan:Script/Wacatac.B!ml
Is it normal ?
AVAST says it's clean.
SørenR.

Woke is Marxism advancing through Maoist cultural revolution.

User avatar
bagu
Senior user
Senior user
Posts: 275
Joined: 2005-06-17 03:08
Location: France
Contact:

Re: Sub OnHELO(oClient) progress?

Post by bagu » 2024-03-08 00:02

The 7z archive is shown as i said, but the unzipped archive is ok...
Maybe an other false positive ?
hMailServer 5.6.8 With SpamAssassin 3.4.4

User avatar
RvdH
Senior user
Senior user
Posts: 3249
Joined: 2008-06-27 14:42
Location: The Netherlands

Re: Sub OnHELO(oClient) progress?

Post by RvdH » 2024-03-08 11:25

bagu wrote:
2024-03-07 23:31
Hello,

The latest build is detected with Trojan:Script/Wacatac.B!ml
Is it normal ?
What AV? Most likely just a false positive, didn't do anything different that before
CIDR to RegEx: d-fault.nl/cidrtoregex
DNS Lookup: d-fault.nl/dnstools
DKIM Generator: d-fault.nl/dkimgenerator
DNSBL Lookup: d-fault.nl/dnsbllookup
GEOIP Lookup: d-fault.nl/geoiplookup

User avatar
bagu
Senior user
Senior user
Posts: 275
Joined: 2005-06-17 03:08
Location: France
Contact:

Re: Sub OnHELO(oClient) progress?

Post by bagu » 2024-03-08 11:29

I'm pretty sure now that it is a false positive.
Windows defender on Windows 10 and MaxSecure detect it as infected if i submit the 7z.
But, Windows Defender on windows 11 doesn't detect anything, and virustotal.com only show MaxSecure positive result.

When unzipped, nothing is detected.
hMailServer 5.6.8 With SpamAssassin 3.4.4

User avatar
SorenR
Senior user
Senior user
Posts: 6322
Joined: 2006-08-21 15:38
Location: Denmark

Re: Sub OnHELO(oClient) progress?

Post by SorenR » 2024-03-08 13:03

jotti.png
jotti.png (154.47 KiB) Viewed 3840 times
SørenR.

Woke is Marxism advancing through Maoist cultural revolution.

User avatar
RvdH
Senior user
Senior user
Posts: 3249
Joined: 2008-06-27 14:42
Location: The Netherlands

Re: Sub OnHELO(oClient) progress?

Post by RvdH » 2024-03-08 13:44

Yeah, as expected...i am not going to change anything (eg; repack it)
CIDR to RegEx: d-fault.nl/cidrtoregex
DNS Lookup: d-fault.nl/dnstools
DKIM Generator: d-fault.nl/dkimgenerator
DNSBL Lookup: d-fault.nl/dnsbllookup
GEOIP Lookup: d-fault.nl/geoiplookup

User avatar
bagu
Senior user
Senior user
Posts: 275
Joined: 2005-06-17 03:08
Location: France
Contact:

Re: Sub OnHELO(oClient) progress?

Post by bagu » 2024-03-08 18:44

bagu wrote:
2024-03-08 11:29
I'm pretty sure now that it is a false positive.
Do you notice that SorenR ?

And if you want a proof that there is a detection (false positive i believe) :
Screenshot 2024-03-08 at 17-40-39 VirusTotal - File - 137709bdf37a496a05760b42f2275f0a6b19a84ce08ec134be07c7efa047d4d6.png
Screenshot 2024-03-08 at 17-40-39 VirusTotal - File - 137709bdf37a496a05760b42f2275f0a6b19a84ce08ec134be07c7efa047d4d6.png (58.36 KiB) Viewed 3822 times
Capture d’écran 2024-03-08 174227.png
Capture d’écran 2024-03-08 174227.png (13.75 KiB) Viewed 3822 times
hMailServer 5.6.8 With SpamAssassin 3.4.4

User avatar
bagu
Senior user
Senior user
Posts: 275
Joined: 2005-06-17 03:08
Location: France
Contact:

Re: Sub OnHELO(oClient) progress?

Post by bagu » 2024-03-08 18:45

RvdH wrote:
2024-03-08 13:44
Yeah, as expected...i am not going to change anything (eg; repack it)
Not need to do anything.
But it's a good thing to know that there may be false positive.
hMailServer 5.6.8 With SpamAssassin 3.4.4

User avatar
SorenR
Senior user
Senior user
Posts: 6322
Joined: 2006-08-21 15:38
Location: Denmark

Re: Sub OnHELO(oClient) progress?

Post by SorenR » 2024-03-08 19:21

bagu wrote:
2024-03-08 18:44
bagu wrote:
2024-03-08 11:29
I'm pretty sure now that it is a false positive.
Do you notice that SorenR ?
Well, yes... But... I really don't care as I build my own so I know exactly what's in it :mrgreen:
SørenR.

Woke is Marxism advancing through Maoist cultural revolution.

User avatar
bagu
Senior user
Senior user
Posts: 275
Joined: 2005-06-17 03:08
Location: France
Contact:

Re: Sub OnHELO(oClient) progress?

Post by bagu » 2024-03-08 19:55

I can imagine. :wink:
But it's just that it was weird to have an infection notice.
hMailServer 5.6.8 With SpamAssassin 3.4.4

User avatar
SorenR
Senior user
Senior user
Posts: 6322
Joined: 2006-08-21 15:38
Location: Denmark

Re: Sub OnHELO(oClient) progress?

Post by SorenR » 2024-03-09 13:52

bagu wrote:
2024-03-08 19:55
I can imagine. :wink:
But it's just that it was weird to have an infection notice.
It's not that uncommon and it can be a bitch to remedy a false-positive.
Next time run the file through virusscan.jotti.org. 14 anti-virus programs can't all be wrong :mrgreen:
SørenR.

Woke is Marxism advancing through Maoist cultural revolution.

User avatar
bagu
Senior user
Senior user
Posts: 275
Joined: 2005-06-17 03:08
Location: France
Contact:

Re: Sub OnHELO(oClient) progress?

Post by bagu » 2024-03-09 15:44

I use virustotal.com :wink:
But my av doesn't let me download your archive. That's why i tell you there is a small problem. (Because false positive IS a problem :( )
hMailServer 5.6.8 With SpamAssassin 3.4.4

User avatar
SorenR
Senior user
Senior user
Posts: 6322
Joined: 2006-08-21 15:38
Location: Denmark

Re: Sub OnHELO(oClient) progress?

Post by SorenR » 2024-03-09 16:18

bagu wrote:
2024-03-09 15:44
I use virustotal.com :wink:
But my av doesn't let me download your archive. That's why i tell you there is a small problem. (Because false positive IS a problem :( )
Hmm... These guys test almost all antivirus software for windows. They work with 40 antivirus companies...

https://www.av-test.org/en/antivirus/home-windows/

Virustotal.com does not appear in the list. What I have found on the 'net is that most (security) people says it sucks - the average computer user generally has no clue.

I use AVAST Free ('cause I'm cheap) on all my Windows computers and Android phones - and ClamD on my hMailServer via SpamAssassin 4.0.
SørenR.

Woke is Marxism advancing through Maoist cultural revolution.

User avatar
bagu
Senior user
Senior user
Posts: 275
Joined: 2005-06-17 03:08
Location: France
Contact:

Re: Sub OnHELO(oClient) progress?

Post by bagu » 2024-03-09 16:27

But...
Virustotal.com is like virusscan.jotti.org
It's a site that lets you test on many antivirus programs.
It tests with 60 different antiviruses, including Avast, Eset-Nod32, Gdata, Kaspersky...

For my part, I no longer use Avast. Too intrusive, too many adverts, too many false positives in my environment... In short, not very good... For my use of course.

P.S. : I think, if you're OK with that, we can close the chapter on false positives and let the subject return to normal?
hMailServer 5.6.8 With SpamAssassin 3.4.4

RangerRU
New user
New user
Posts: 3
Joined: 2024-03-12 12:32

Re: Sub OnHELO(oClient) progress?

Post by RangerRU » 2024-03-12 12:36

Hello
I used the build 5.7.0-B2643.9-OpenSSL-3.0.13.7z

When I try to start the service I get an error message about the missing file LIBPQ.DLL

wtf?

User avatar
RvdH
Senior user
Senior user
Posts: 3249
Joined: 2008-06-27 14:42
Location: The Netherlands

Re: Sub OnHELO(oClient) progress?

Post by RvdH » 2024-03-12 14:26

RangerRU wrote:
2024-03-12 12:36
Hello
I used the build 5.7.0-B2643.9-OpenSSL-3.0.13.7z

When I try to start the service I get an error message about the missing file LIBPQ.DLL

wtf?
Seems a PostgreSQL (related) error, can't help you much there.... (not using PostgreSQL)
Does vanilla (without mod) 5.7.0-B2643 run OK?
CIDR to RegEx: d-fault.nl/cidrtoregex
DNS Lookup: d-fault.nl/dnstools
DKIM Generator: d-fault.nl/dkimgenerator
DNSBL Lookup: d-fault.nl/dnsbllookup
GEOIP Lookup: d-fault.nl/geoiplookup

RangerRU
New user
New user
Posts: 3
Joined: 2024-03-12 12:32

Re: Sub OnHELO(oClient) progress?

Post by RangerRU » 2024-03-12 14:46

RvdH wrote:
2024-03-12 14:26
Does vanilla (without mod) 5.7.0-B2643 run OK?
Where can I download it?

I installed https://d-fault.nl/files/hMailServer-Bu ... 2641.67.7z
no problem

but I would like to use the version 5.7.0 with OpenSSL 3.0.13

User avatar
RvdH
Senior user
Senior user
Posts: 3249
Joined: 2008-06-27 14:42
Location: The Netherlands

Re: Sub OnHELO(oClient) progress?

Post by RvdH » 2024-03-12 15:33

Uh what???

All I offer is mod packages, no installers... the mod packages depend on a previously fully installed and working instance
There is a readme file included with instructions to use the mods, maybe you should read it!?
CIDR to RegEx: d-fault.nl/cidrtoregex
DNS Lookup: d-fault.nl/dnstools
DKIM Generator: d-fault.nl/dkimgenerator
DNSBL Lookup: d-fault.nl/dnsbllookup
GEOIP Lookup: d-fault.nl/geoiplookup

RangerRU
New user
New user
Posts: 3
Joined: 2024-03-12 12:32

Re: Sub OnHELO(oClient) progress?

Post by RangerRU » 2024-03-12 15:54

Sorry
my mistake
Thank you!

teco
Normal user
Normal user
Posts: 44
Joined: 2010-12-20 14:26

Re: Sub OnHELO(oClient) progress?

Post by teco » 2024-03-12 17:00

RvdH wrote:
2024-03-12 15:33
All I offer is mod packages, no installers... the mod packages depend on a previously fully installed and working instance
There is a readme file included with instructions to use the mods, maybe you should read it!?
Any plans for a full installer existing?
Just in case Martin Drops the installer from the webpage, etc.

User avatar
SorenR
Senior user
Senior user
Posts: 6322
Joined: 2006-08-21 15:38
Location: Denmark

Re: Sub OnHELO(oClient) progress?

Post by SorenR » 2024-03-13 01:04

teco wrote:
2024-03-12 17:00
RvdH wrote:
2024-03-12 15:33
All I offer is mod packages, no installers... the mod packages depend on a previously fully installed and working instance
There is a readme file included with instructions to use the mods, maybe you should read it!?
Any plans for a full installer existing?
Just in case Martin Drops the installer from the webpage, etc.
We'll deal with that if/when we get to that ... 8)
SørenR.

Woke is Marxism advancing through Maoist cultural revolution.

User avatar
katip
Senior user
Senior user
Posts: 1162
Joined: 2006-12-22 07:58
Location: Istanbul

Re: Sub OnHELO(oClient) progress?

Post by katip » 2024-03-13 20:52

5.7.0-B2643.9-OpenSSL-3.0.13 - RvdH build

this is something new I think, at least I encounter for the first time:

Code: Select all

"ERROR"	5520	"2024-03-13 12:03:42.741"	"Severity: 4 (Low), Code: HM4403, Source: DNSResolver::GetEmailServersRecursive_, Description: Too many recursions during IP address lookup. Query: www.somedomain.com"
how to interpret this? (none of Antispam items is active in HMS)
Katip
--
HMS 5.7, MariaDB 10.4.10, SA 4.0.0, ClamAV 0.103.8

User avatar
SorenR
Senior user
Senior user
Posts: 6322
Joined: 2006-08-21 15:38
Location: Denmark

Re: Sub OnHELO(oClient) progress?

Post by SorenR » 2024-03-14 00:16

katip wrote:
2024-03-13 20:52
5.7.0-B2643.9-OpenSSL-3.0.13 - RvdH build

this is something new I think, at least I encounter for the first time:

Code: Select all

"ERROR"	5520	"2024-03-13 12:03:42.741"	"Severity: 4 (Low), Code: HM4403, Source: DNSResolver::GetEmailServersRecursive_, Description: Too many recursions during IP address lookup. Query: www.somedomain.com"
how to interpret this? (none of Antispam items is active in HMS)
Hmm... Errorcode for that in Github repo is 4401 - Text is slightly different too :|
SørenR.

Woke is Marxism advancing through Maoist cultural revolution.

User avatar
RvdH
Senior user
Senior user
Posts: 3249
Joined: 2008-06-27 14:42
Location: The Netherlands

Re: Sub OnHELO(oClient) progress?

Post by RvdH » 2024-03-14 08:57

katip wrote:
2024-03-13 20:52
how to interpret this? (none of Antispam items is active in HMS)
Too many CNAME (>10) mappings before getting to MX-record result(s)...at least i think that is what it means
https://github.com/hmailserver/hmailser ... #L185-L191

I never ever seen that error though, so likely it is a poorly configured domain, can you share domain, to verify?
https://serverfault.com/questions/60973 ... -recursion
SorenR wrote:
2024-03-14 00:16
Hmm... Errorcode for that in Github repo is 4401 - Text is slightly different too :|
Uh, what?
CIDR to RegEx: d-fault.nl/cidrtoregex
DNS Lookup: d-fault.nl/dnstools
DKIM Generator: d-fault.nl/dkimgenerator
DNSBL Lookup: d-fault.nl/dnsbllookup
GEOIP Lookup: d-fault.nl/geoiplookup

User avatar
katip
Senior user
Senior user
Posts: 1162
Joined: 2006-12-22 07:58
Location: Istanbul

Re: Sub OnHELO(oClient) progress?

Post by katip » 2024-03-14 09:15

RvdH wrote:
2024-03-14 08:57
Too many CNAME (>10) mappings before getting to MX-record result(s)...at least i think that is what it means
https://github.com/hmailserver/hmailser ... #L185-L191

I never ever seen that error though, so likely it is a poorly configured domain, can you share domain, to verify?
yes, here it is:

Code: Select all

Query: www.logimore.com
Katip
--
HMS 5.7, MariaDB 10.4.10, SA 4.0.0, ClamAV 0.103.8

User avatar
RvdH
Senior user
Senior user
Posts: 3249
Joined: 2008-06-27 14:42
Location: The Netherlands

Re: Sub OnHELO(oClient) progress?

Post by RvdH » 2024-03-14 09:29

the fact it lookups www.logimore.com instead of logimore.com (eg: logimore.com CNAME to www.logimore.com), is somewhat strange i would say... usually it is used the other way around, eg: www.logimore.com CNAME to logimore.com

Code: Select all

; <<>> DiG 9.16.48 <<>> logimore.com ANY
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 15900
;; flags: qr rd ra; QUERY: 1, ANSWER: 2, AUTHORITY: 0, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
; COOKIE: 832e40b21db6b53b0100000065f2a60c22e6d7458b114dbe (good)
;; QUESTION SECTION:
;logimore.com.                  IN      ANY

;; ANSWER SECTION:
logimore.com.           10782   IN      CNAME   www.logimore.com.
logimore.com.           10509   IN      MX      0 logimore-com.mail.protection.outlook.com.

;; Query time: 0 msec
;; SERVER: 127.0.0.1#53(127.0.0.1)
;; WHEN: Thu Mar 14 08:23:56 W. Europe Standard Time 2024
;; MSG SIZE  rcvd: 143

But i am also unable to find a A-record using DIG, but if i open it in browser it opens/displays website just fine (that to my knowledge, should not be possible without A or AAAA records)

Code: Select all

; <<>> DiG 9.16.48 <<>> logimore.com A
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 64869
;; flags: qr rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 0, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
; COOKIE: ffec9fb5dd8cdd940100000065f2a695b9104bd3d59c85d2 (good)
;; QUESTION SECTION:
;logimore.com.                  IN      A

;; ANSWER SECTION:
logimore.com.           10645   IN      CNAME   www.logimore.com.

;; Query time: 307 msec
;; SERVER: 127.0.0.1#53(127.0.0.1)
;; WHEN: Thu Mar 14 08:26:13 W. Europe Standard Time 2024
;; MSG SIZE  rcvd: 87

Code: Select all

; <<>> DiG 9.16.48 <<>> www.logimore.com A
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 31995
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
; COOKIE: 14e97bf4a86be1210100000065f2a6a4ccdd0e002ac8c149 (good)
;; QUESTION SECTION:
;www.logimore.com.              IN      A

;; Query time: 0 msec
;; SERVER: 127.0.0.1#53(127.0.0.1)
;; WHEN: Thu Mar 14 08:26:28 W. Europe Standard Time 2024
;; MSG SIZE  rcvd: 73
Not completely sure what is happening here...but it is (at least) weird

DIG www.logimore.com A +trace -> No A-record
DIG logimore.com A +trace -> A-record is listed
CIDR to RegEx: d-fault.nl/cidrtoregex
DNS Lookup: d-fault.nl/dnstools
DKIM Generator: d-fault.nl/dkimgenerator
DNSBL Lookup: d-fault.nl/dnsbllookup
GEOIP Lookup: d-fault.nl/geoiplookup

User avatar
RvdH
Senior user
Senior user
Posts: 3249
Joined: 2008-06-27 14:42
Location: The Netherlands

Re: Sub OnHELO(oClient) progress?

Post by RvdH » 2024-03-14 10:15

5.7.x -> Utilities -> MX-query
Email address: test@logimore.com
Mail servers:

Code: Select all

94.73.148.53
5.6.x -> Utilities -> MX-query
Email address: test@logimore.com
Mail servers:

Code: Select all

52.101.73.26
52.101.73.15
52.101.68.25
52.101.68.21
52.101.73.6
52.101.73.8
52.101.68.12
Utilities ->Diagnostic fails for both (eg: 5.7.x and 5.6.x) of them using www.logimore.com or logimore.com, using 94.73.148.53
wtf :shock:

Think you should file a bug report, https://github.com/hmailserver/hmailserver/issues
CIDR to RegEx: d-fault.nl/cidrtoregex
DNS Lookup: d-fault.nl/dnstools
DKIM Generator: d-fault.nl/dkimgenerator
DNSBL Lookup: d-fault.nl/dnsbllookup
GEOIP Lookup: d-fault.nl/geoiplookup

User avatar
RvdH
Senior user
Senior user
Posts: 3249
Joined: 2008-06-27 14:42
Location: The Netherlands

Re: Sub OnHELO(oClient) progress?

Post by RvdH » 2024-03-14 11:40

After clearing DNS cache

5.7.x -> Utilities -> MX-query
Email address: test@logimore.com
Mail servers:

Code: Select all

52.101.73.26
52.101.73.15
52.101.68.25
52.101.68.21
52.101.73.6
52.101.73.8
52.101.68.12
After clearing it again, i got nothing but

Code: Select all

"ERROR"	8624	"2024-03-14 09:51:17.703"	"Severity: 4 (Low), Code: HM4403, Source: DNSResolver::GetEmailServersRecursive_, Description: Too many recursions during IP address lookup. Query: www.logimore.com"
"ERROR"	8624	"2024-03-14 09:51:23.536"	"Severity: 4 (Low), Code: HM4403, Source: DNSResolver::GetEmailServersRecursive_, Description: Too many recursions during IP address lookup. Query: logimore.com"
Clearing it again:

5.7.x -> Utilities -> MX-query
Email address: test@www.logimore.com
Mail servers:

Code: Select all

52.101.73.26
52.101.73.15
52.101.68.25
52.101.68.21
52.101.73.6
52.101.73.8
52.101.68.12

strange things are happening there.... but is it due to HMS or something fishy in DNS!?
CIDR to RegEx: d-fault.nl/cidrtoregex
DNS Lookup: d-fault.nl/dnstools
DKIM Generator: d-fault.nl/dkimgenerator
DNSBL Lookup: d-fault.nl/dnsbllookup
GEOIP Lookup: d-fault.nl/geoiplookup

User avatar
katip
Senior user
Senior user
Posts: 1162
Joined: 2006-12-22 07:58
Location: Istanbul

Re: Sub OnHELO(oClient) progress?

Post by katip » 2024-03-14 14:18

RvdH wrote:
2024-03-14 11:40
strange things are happening there.... but is it due to HMS or something fishy in DNS!?
Probably not related with HMS.
Their MX with 0 (zero) priority returns outlook.com servers.
My tests with 5.7.x -> Utilities -> MX-query confirms this. no problem.

OTOH they might have something with their DNS
i see 2 DNS from local ISP provider "Natro" + 2 DNS from registrar in USA "Namebright", with inconsistent SOA serial to each other.

but I don't understand why HMS queries an A record (www) when there is MX.

https://intodns.com/logimore.com
Katip
--
HMS 5.7, MariaDB 10.4.10, SA 4.0.0, ClamAV 0.103.8

User avatar
RvdH
Senior user
Senior user
Posts: 3249
Joined: 2008-06-27 14:42
Location: The Netherlands

Re: Sub OnHELO(oClient) progress?

Post by RvdH » 2024-03-14 15:18

katip wrote:
2024-03-14 14:18
RvdH wrote:
2024-03-14 11:40
strange things are happening there.... but is it due to HMS or something fishy in DNS!?
Probably not related with HMS.
Their MX with 0 (zero) priority returns outlook.com servers.
My tests with 5.7.x -> Utilities -> MX-query confirms this. no problem.

OTOH they might have something with their DNS
i see 2 DNS from local ISP provider "Natro" + 2 DNS from registrar in USA "Namebright", with inconsistent SOA serial to each other.

but I don't understand why HMS queries an A record (www) when there is MX.

https://intodns.com/logimore.com
If a MX-record check returns no results, the RFC states it must fallback to A-record
I keep getting inconsistent results however, sometimes it return the MX, and sometimes it does not probably caused by inconsistent nameservers/SOA like you noticed
CIDR to RegEx: d-fault.nl/cidrtoregex
DNS Lookup: d-fault.nl/dnstools
DKIM Generator: d-fault.nl/dkimgenerator
DNSBL Lookup: d-fault.nl/dnsbllookup
GEOIP Lookup: d-fault.nl/geoiplookup

carlatpg99
New user
New user
Posts: 16
Joined: 2022-08-16 20:53

Re: Sub OnHELO(oClient) progress?

Post by carlatpg99 » 2024-03-22 08:26

I'd like to make a suggestion for a new feature. For the IP Ranges, can it also include the following?
  • Date and time of when the ip range was added
  • Date and time of when the ip range was last updated
Right now the only way to know when an ip range was added is to have it expire because it is an autoban and remember the settings used to determine when it was added.

I'd also prefer it if the list of ip addresses in ip range could be loaded in pages instead of all at once. Then allow for searching within those list of ip ranges.

drchan
New user
New user
Posts: 1
Joined: 2024-04-02 23:37

Re: Sub OnHELO(oClient) progress?

Post by drchan » 2024-04-03 22:30

@RvdH you are a hero, almost as much as the original author. i have 5.6.9-2641.67 running on a bunch of hosts including some on win xp now :shock: we specifically needed item 58. thanks

Post Reply