patches

smtp-auth + qmail-tls + forcetls patch for qmail

Download (MD5) Version: 2022.02.16 Changelog 2022.02.16-fixed a TLS Renegotiation DoS vulnerability. Disabled all renegotiation in TLSv1.2 and earlier (only openssl-1.1). (diff here) 2020.05.08- qmail-tls patch updated to v. 20200107* working client cert authentication with TLSv1.3 2019.06.28- qmail-tls patch updated to v. 20190517* bug: qmail-smtpd ssl_free before...

Playing with qmail-spp

qmail-spp provides plug-in support for qmail-smtpd. It allows you to write external programs and use them to check SMTP command argument validity. The plug-in can trigger several actions, like denying a command with an error message, logging data, adding a header...

Dovecot vpopmail-auth driver removal. Migrating to the SQL driver

Those who are still using the Dovecot's vpopmail auth driver should consider a migration to another backend, as on January 4, 2021 dovecot-2.3.13 was released and the vpopmail auth driver removed (more info here). I'll show below how to support domain aliases...

Limiting the number of emails sent by a given auth-user/domain/IP

If you want to avoid the risk of compromising your server because of accounts who are sending messages indiscriminately to the world, due to the fact that their password was violated in some way, then you can consider  Luca Franceschini's rcptcheck-overlimit.sh...