patches

smtp-auth + qmail-tls + forcetls patch for qmail

Download (MD5) Version: 2022.02.16 Changelog 2022.02.16-fixed a TLS Renegotiation DoS vulnerability. Disabled all renegotiation in TLSv1.2 and earlier (only openssl-1.1). (diff here) 2020.05.08- qmail-tls patch updated to v. 20200107* working client cert authentication with TLSv1.3 2019.06.28- qmail-tls patch updated to v. 20190517* bug: qmail-smtpd ssl_free before...

Playing with qmail-spp

qmail-spp provides plug-in support for qmail-smtpd. It allows you to write external programs and use them to check SMTP command argument validity. The plug-in can trigger several actions, like denying a command with an error message, logging data, adding a header...

Dovecot vpopmail-auth driver removal. Migrating to the SQL driver

Those who are still using the Dovecot's vpopmail auth driver should consider a migration to another backend, as on January 4, 2021 dovecot-2.3.13 was released and the vpopmail auth driver removed (more info here). I'll show below how to support domain aliases...

Limiting the number of emails sent by a given auth-user/domain/IP

If you want to avoid the risk of compromising your server because of accounts who are sending messages indiscriminately to the world, due to the fact that their password was violated in some way, then you can consider  Luca Franceschini's rcptcheck-overlimit.sh...

qmail notes

General notes

daemontools

fehQlibs

ucspi-tcp6

ucspi-ssl

qmail

vpopmail

Patching

Configuring

Testing

autorespond

ezmlm-idx

qmailadmin

Add-ons

RBL

Greetdelay

tcprules

SPF

DKIM

SURBL

Limiting per user/IP outgoing emails

Denying bad DNS HELOs

Greylisting

qmail-taps-extended

moreipme

qmHandle

queue-repair

vQadmin

ezmlm-browse

ezmlm-web

rblsmtpd

qmail-rblchk

Dovecot

Running

Testing

Filtering

Indexing

Expunging

vpopmail-auth driver removal

Spamassassin

Filtering networks

TxRep and Bayesian

Learning and reporting

User Prefs

DMARC

Roundcube

Plugins

ClamAV

clamav-unofficial-sigs

simscan

Testing

fail2ban

Installing a valid SSL certificate

ChangeLog

Need help?

Pay me a coffee:

PayPal - The safer, easier way to pay online.

Other contents

Running OpenBoard in a window

LXC scripts for unprivileged containers

Linux-VServer on Slackware

Migrating from Linux-VServer to LXC (Slackware)

Running two php on the same server

rsync backup via ssh

Securing proftpd

Installing mariaDB

Setting up MySQL

SEO friendly URLs with apache mod_rewrite

Building your ownCloud

Building your own mozilla-sync server

Setting up Tex on Mediawiki

Slackware RSS feeds

English
Italiano

Tags

apache clamav dkim dovecot ezmlm fail2ban hacks lamp letsencrypt linux linux-vserver lxc mariadb mediawiki mozilla mysql openboard owncloud patches php proftpd qmail qmail to postfix qmail-spp qmailadmin rbl roundcube rsync sieve simscan slackware solr spamassassin spf ssh ssl surbl tcprules tex ucspi-tcp vpopmail vqadmin

Recent comments

SNI for SSL connections
September 20, 2022 22:39

SNI for SSL connections
September 17, 2022 18:31

SNI for SSL connections
September 17, 2022 00:23

vpopmail.c assumes database server to be mysql with non standard mode.
September 13, 2022 17:52

New cracklib version released: 2.9.8
September 11, 2022 19:56

New cracklib version released: 2.9.8
September 10, 2022 17:25

vpopmail.c assumes database server to be mysql with non standard mode.
September 10, 2022 12:54

IndiMailfilter command is missing?
September 4, 2022 10:30

not delivered to the mailbox under domain's subfolder 0 or 1
August 9, 2022 16:05

not delivered to the mailbox under domain's subfolder 0 or 1
August 9, 2022 15:42