Converting a Linux installation to a Slackware one in an OVHcloud server

June 17, 2025 by Roberto Puzzanghera 0 comments

This article explains how to convert a given Linux distribution to a Slackware one in an OVHcloud server. I wrote in the past an article about doing the same for OVH kimsufi.

It is inspired by the Slackware wiki page Install Slackware on an online.net Dedibox BareMetal Server, which explains the same for a Dedibox BareMetal Server on online.net.

The plan is to

  1. install a Linux of your choice
  2. reboot in rescue mode that Linux distro
  3. download the Slackware initrd and prepare the install environment
  4. download the set of Slackware packages to be installed
  5. chroot into the Slackware initrd image
  6. partition and install Slackware over the existing Linux
  7. configure the fresh installed Slackware and reboot

read more

Limiting the number of emails sent by a given auth-user/domain/IP

June 14, 2025 by Roberto Puzzanghera 21 comments

If you followed the 'quick configuration' based on the config-all script, this feature was already configured for you at that time with the default settings.

Changelog

  • Jun 14, 2025
    - Added a cronjob for rcptcheck-overlimit that only removes cases that didn't exceed the limit, i.e. enforces a permanent ban (tx Andreas Gerstlauer)

If you want to avoid the risk of compromising your server because of accounts who are sending messages indiscriminately to the world, due to the fact that their password have been violated in some way, then you can consider  Luca Franceschini's rcptcheck-overlimit script, which has to be used in conjunction with the rcptcheck patch (a patch derived by Luca himself from an original work of Jay Soffian).

read more

Upgrading qmail

June 9, 2025 by Roberto Puzzanghera 576 comments

For my convenience I moved the qmail sources to my github space. Nonetheless, all information about qmail and related programs will continue to be posted in this web space, and this pages remain the place to  eventually seek support. From now on, instead of releasing a combined patch for qmail, I'll release a package which is the result of the ancient netqmail-1.06 plus my modifications. The original patches that I accomodated in my qmail package are listed below.

Changelog

  • Jun 09, 2025
    - CRLF fix for fastremote-3 patch (thanks Andreas Gerstlauer)
    - Bug fix to the greetdelay program (thanks Andreas Gerstlauer): qmail-smtpd crashes if SMTPD_GREETDELAY is defined with no DROP_PRE_GREET defined.
    - turned off TLS and helo dns check on qmail-smtpsd/run script (tx Luis)
  • Apr 30, 2025
    qmailctl    , qmHandle, queue_repair and all scripts installed in QMAIL/bin and not in /usr/local/bin by config-all.sh
  • Apr 25, 2025
    - added a configuration script config-all, which configure and installs the control files (as per the original config-fast script), aliases, SRS (uses control/me as the srs_domain), log dirs in /var/log/qmail, tcprules (basic, just to make initial tests), supervise scripts, qmailctl script, DKIM control/filterargs and control/domainkeys dir, SURBL, smtpplugins, helodnscheck spp plugin, svtools, qmHandle, queue-repair, SSL key file (optional).
    Consider this feature as "testing"
  • Feb 11, 2025
    - Several adjustments to get freeBSD and netBSD compatibility. More info in the commit history. Hints/comments are welcome.
    - freeBSD users have to leave the very 1st line of the file "conf-lib" blank, as libresolv.so is not needed on freeBSD.
    - Dropped files install-big.c, idedit.c and BIN.* files.
    - Dropped files byte_diff.c, str_cpy.c, str_diff.c, str_diffn.c and str_len.c, which break compilation on clang and can be replaced by the functions shipped by the compiler (tx notqmail).
    - Old documentation moved to the "doc" dir. install.c and hier.c modified accordingly
    - conf-cc and conf-ld now have -L/usr/local/lib and -I/usr/local/include to look for srs2 library
    - conf-cc and conf-ld now have -L/usr/pkg/lib and -I/usr/pkg/include to satisfy netBSD
    - vpopmail-dir.sh: minor correction to vpopmail dir existence check
    - srs.c: #include <srs2.h> now without path
  • Dec 01, 2024 (More info here and in the github release notes)
    - Added support for EAI (RFC 5336 SMTP Email Address Internationalization) (#13). Thanks to https://github.com/arnt/qmail-smtputf8/tree/smtputf8-tls. libidn2 package (libidn2-dev on debian) is a new dependence.
    - chkuser is now smtputf8 compliant. It accepts utf8 characters in sender and recipient addresses provided that the remote server advertises the SMTPUTF8 verb in MAIL FROM, otherwise it allows only ASCII characters plus additional chars from the CHKUSER_ALLOWED_CHARS set.
    * dropped variables CHKUSER_ALLOW_SENDER_CHAR_xx CHKUSER_ALLOW_RCPT_CHAR_xx (replaced by CHKUSER_ALLOWED_CHARS)
    * dropped variables CHKUSER_ALLOW_SENDER_SRS and CHKUSER_ALLOW_RCPT_SRS, as we are always accepting '+' and '#' characters
    * added variables CHKUSER_INVALID_UTF8_CHARS and CHKUSER_ALLOWED_CHARS
  • Oct 26, 2024
    - qmail-remote.c patched to dinamically touch control/notlshosts/<fqdn> if control/notlshosts_auto contains any number greater than 0 in order to skip the TLS connection for remote servers with an obsolete TLS version. (tx Alexandre Fonceca) (commit)
    - defined CHKUSER_DISABLE_VARIABLE "RELAYCLIENT" in chkuser_settings.h
    - enabled CHKUSER_SENDER_NOCHECK_VARIABLE "RELAYCLIENT" in chkuser_settings.h
    - fixed several compilation breaks/warnings on later gcc compilers (tx Pablo Murillo)
    - invalid auth fix in qmail-smtpd.c's smtp_auth function (tx Alexandre Fonceca for the advice) (commit)
    - qmail path determined dinamically in conf-policy
  • Jan 11, 2024
    - DKIM: dk-filter dropped
    WARNING: IF YOU ARE UPGRADING qmail AND YOU ARE USING A VERSION BEFORE 2024.01.11, YOU HAVE TO RECONFIGURE DKIM AND MODIFY YOUR rc FILE ACCORDINGLY.

read more

Installing a Let's Encrypt certificate for your qmail, dovecot and apache servers

June 6, 2025 by Roberto Puzzanghera 28 comments

Changelog

  • Jun 6, 2025
    - dehydrated now launches a hook.sh script which handles the post-installation tasks (assemble and copy the certificate into the qmail dir, restart the server and eventually alert the administrator in case of problems). It replaces the old scripts.
  • Feb 22, 2025
    - Let’s Encrypt have announced that they will end their free alerting service. Added a script to achieve the same internally.
  • Aug 6, 2023
    - The certificates installation is now based on dehydrated. The previous documentation based on certbot will be left as is at the bottom of this page, but it won't be updated anymore.
  • May 18, 2023
    - added the option --key-type rsa to the certbot command, to avoid that certbot will silently default to ECDSA the private key format, which results not understandable by my openssl-1.1. In this way the format of the private key will be RSA. More info here.

read more

Roundcube webmail

June 2, 2025 by Roberto Puzzanghera 16 comments

Roundcube is a full featured webmail with a nice interface.

Changelog

  • Jun 2, 2025
    version 1.6.11
  • Mar 9, 2025
    added $config['quota_zero_as_unlimited'] = true; to show quota unlimited instead of unknown for accounts with unlimited quota

Read the release note at https://github.com/roundcube/roundcubemail/blob/master/CHANGELOG.md for more info.

read more

Installing and configuring SpamAssassin

May 31, 2025 by Roberto Puzzanghera 62 comments

SpamAssassin is a mature, widely-deployed open source project that serves as a mail filter to identify Spam. SpamAssassin uses a variety of mechanisms including header and text analysis, Bayesian filtering, DNS blocklists, and collaborative filtering databases. SpamAssassin runs on a server, and filters spam before it reaches your mailbox.

Troubles with latest DBI::mysql module

Days ago (Jan 06, 2025) the perl DBI::mysql module has been updated to v4.053 and v5.011. Both of them dropped the support for MariaDB and MySQL > 8. Infact v4.053 compilation exits with

/usr/bin/perl: symbol lookup error: /usr/local/lib64/perl5/auto/DBD/mysql/mysql.so: undefined symbol: mysql_real_escape_string_quote

while v5.011 doesn't compile as it seems not to be compliant with my openssl-1.1.1zb (I had the same issue on other distros with openssl-1.1 installed).

I'm restoring v4.052 like this

cpan install DVEEDEN/DBD-mysql-4.052.tar.gz

read more

Configuring qmail

April 18, 2025 by Roberto Puzzanghera 109 comments

qmail v2025.04.18 and later include a new config-all script to automate the qmail core configuration. Several scripts are now embedded in qmail and automatically installed if one simply run './config-all mx.domain.tld' after the compilation. This is what will be installed and configured by the quick installation:

  • main control files as per original config-fast script,
  • aliases,
  • RBL
  • SPF
  • SRS (uses control/me as the srs_domain),
  • log dirs in /var/log/qmail,
  • cronjobs 
  • logrotate
  • PATH and MANPATH in /etc/profile.d/qmail.sh
  • tcprules (basic, just to make initial tests),
  • supervise scripts,
  • qmailctl script,
  • DKIM control/filterargs and control/domainkeys dir,
  • SURBL,
  • overlimit feature,
  • moreipme,
  • smtpplugins,
  • helodnscheck spp plugin,
  • svtools,
  • qmHandle,
  • queue-repair,
  • SSL key file (optional)

From now on, running ./config-all mx.mydomain.tld after the compilation will get the qmail installation ready for testing. You'll only have to add your virtual domains and the other features not listed above.

Those who prefer to manually configure everything can stick with the original config-fast script, which now copies my supervise scripts to the qmail/doc dir.

In the following, the "Manual configuration" section is of course a suggested reading in order to have a view of how everything works, especially for newbies.

Consider this feature as testing for the time being. Feedbacks are appreciated.

Changelog

  • Apr 15, 2025
    - added script config-all.sh
  • Jul 31, 2024
    - multilog uses "d" flag as default to gain compatibility with the readable datetime format of multilog in daemontools-0.78. Change it with the "t" flag if you prefer to have timestamps.

read more

Qmail virtual user delivery picture

April 3, 2025 by Roberto Puzzanghera 0 comments

The architecture of my qmail configuration has been customized a lot over the years, expecially as far as the delivery for a virtual user is concerned when one enables my "defaultdelivery" feature for vpopmail (--enable-defaultdelivery) that I modified recently, so I have built a qmail picture with the intent of clarify how things works together.

It's obviously inspired by the PICs by djb and by the André Oppermann's "Big qmail picture".

read more
qmail notes

General notes

qmail picture

Preinstallation tasks

daemontools

fehQlibs

ucspi-tcp6

ucspi-ssl

qmail

VPopMail

Upgrading qmail

Configuring

tcprules

Testing

autorespond

ezmlm-idx

QmailAdmin

Add-ons

RBL

Greetdelay

SPF

SRS

DKIM

SURBL

Limiting outgoing emails

Denying bad DNS HELOs

Greylisting

qmail-taps-extended

moreipme

qmHandle

queue-repair

vQadmin

rblsmtpd

Dovecot

Running

Testing

Filtering

Indexing

Expunging

vpopmail-auth driver removal

SpamAssassin

Filtering networks

User Prefs

TxRep and Bayesian

Learning and reporting

DMARC

Roundcube

Plugins

ClamAV

clamav-unofficial-sigs

simscan

Testing

Fail2Ban

Installing a valid SSL certificate

SQL valias with sieve

Mailman

AWStats

ChangeLog

Asking for help, contributing to the project

Pay me a coffee:

PayPal - The safer, easier way to pay online.

LXC scripts

Introduction

Basic configuration files

Creating an unprivileged container

Scripts overview

Natting

Migrating to Slackware-current - LXC-6 - cgroup2

Other contents

Converting a Linux installation to Slackware in OVHcloud

Managing Logical Volumes

Running OpenBoard in a window

Migrating from Linux-VServer to LXC

Linux-VServer on Slackware

rsync backup via ssh

Running two php on the same server

Securing proftpd

Mounting remotely with sshfs and curlftpfs

Installing mariaDB

Setting up MySQL

SEO friendly URLs with apache mod_rewrite

Building your ownCloud

Building your own mozilla-sync server

Setting up Tex on Mediawiki

Slackware RSS feeds

English
Italiano
Recent comments

error Script Config-fast and Config-all
June 23, 2025 20:36 CET

error Script Config-fast and Config-all
June 23, 2025 20:19 CET

Configuration problem in smtps ( and probably also in TLS but not sure )
June 23, 2025 08:06 CET

Configuration problem in smtps ( and probably also in TLS but not sure )
June 22, 2025 09:01 CET

Configuration problem in smtps ( and probably also in TLS but not sure )
June 22, 2025 07:21 CET

QMAILRCPTS setting
June 22, 2025 00:13 CET

QMAILRCPTS setting
June 21, 2025 17:16 CET

QMAILRCPTS setting
June 21, 2025 16:12 CET

Some SPP (and RBL) fixes and upgrades
June 21, 2025 08:23 CET

QMAILRCPTS setting
June 21, 2025 08:22 CET

Configuration problem in smtps ( and probably also in TLS but not sure )
June 21, 2025 08:13 CET

QMAILRCPTS setting
June 20, 2025 19:17 CET

Configuration problem in smtps ( and probably also in TLS but not sure )
June 20, 2025 17:54 CET

Some SPP (and RBL) fixes and upgrades
June 20, 2025 16:26 CET

Error output for qmail-dkim
June 19, 2025 21:27 CET

Tags

apache chkuser clamav dkim dovecot ezmlm fail2ban forward github hacks lamp letsencrypt linux linux-vserver lxc mailman mariadb mediawiki mozilla mysql openboard owncloud patches php postfix proftpd qmail qmail to postfix qmail-spp qmailadmin rbl roundcube roundcube plugins rsync sieve simscan slackware solr spamassassin spf srs ssh ssl surbl tcprules tex ucspi-tcp vpopmail vqadmin

Recent posts

Migrating to Slackware-current - LXC-6 - cgroup2

Installing and configuring simscan

Converting a Linux installation to a Slackware one in an OVHcloud server

Managing Logical Volumes

Limiting the number of emails sent by a given auth-user/domain/IP

ChangeLog

Upgrading qmail

Installing a Let's Encrypt certificate for your qmail, dovecot and apache servers

Razor2, Pyzor, Spamcop and DCC setup

Roundcube webmail

RSS feeds