Neuradni T-2 forum

ja, nikakor ne met odprtega relaya ter obvezno zahtevaj smtp avtentikacijo... ampak tega ne pocni cez nekriptirano povezavo, zatorej uporabi ssl/tls... certifikate dobis ze za nekaj deset evrov letno... lahko pa naredis tudi samopodpisan certifikat...

http://www.cacert.org/

Klele ti ga oni zastonj signajo samo morš pokazat, da maš sposoben mail za to. Pač čist simpl je. Mal bl je zajbancije z key-i k jih morš ustvart.

Tuki maš postopek, samo pač ne boš ga self signu ampak ga boš tistim poslal http://www.akadia.com/services/ssh_test ... icate.html je pa vse lepo napisan, gl

Glede hotmaila:
Za hotmail, sm jim pa sam mail poslal oz en obrazec izpolnu in so me dodal v svoj sistem, in zdej so mi odpisal da bo do 2 dni trajal da se zadeva konča. Pač vpisal so mojo domeno v njihov Sender ID program.

Tok simpl pa še nikol ni blo.

Glede Yahoo:

Še čakam, da vidmo, če bo delal :\

Zdej ne vem če se je že DNS updejtu ampak me sam zanima kaj tole pomen:

Authentication-Results: mta155.mail.ac4.yahoo.com from=e-gamer.org; domainkeys=neutral (no sig); from=e-gamer.org; dkim=permerror (no key)
Received: from 127.0.0.1 (HELO mail.cirman.si) (85)
by mta155.mail.ac4.yahoo.com with SMTP; Sun, 10 Jan 2010 15:00:02 -0800
dkim-signature: v=1; a=rsa-sha256; d=e-gamer.org; s=key1._domainkey.e-gamer.org;
c=relaxed/relaxed; q=dns/txt; h=From:Subject:Date:Message-ID:To:MIME-Version:Content-Type:Content-Transfer-Encoding;
bh=g3zLYH4xKxcPrHOD18z9YfpQcnk/GaJedfustWU5uGs=;
b=IARp4/g9PTX+97wkwu5jegKSWmNFmdJ8Tsp1cHFy/6nv95Wk5v+ElN3pz5ZKB736tMFL40tqnHurBSgnhmYjRg==
Received: from e-gamer.org ([127.0.0.1])
by mail.cirman.si

EDIT: ok zdej bi se že mogu 100% poupdejtat, tole ne dela. Nekje sm zajebu, še ugotavlam kje...

a tvoj mail server podpisuje dkim?

:\

Sm pa pol po tem postopku probu narest, pa sm sam private key zamenju na serverju, tok, da sm vidu kaj se zgodi in sm dobu

Authentication-Results: mta1082.mail.mud.yahoo.com from=e-gamer.org; domainkeys=neutral (no sig)
Received: from 127.0.0.1 (HELO mail.cirman.si) (5)
by mta1082.mail.mud.yahoo.com with SMTP; Mon, 11 Jan 2010 08:27:29 -0800
dkim-signature: v=1; a=rsa-sha256; d=e-gamer.org; s=key1._domainkey.e-gamer.org;
c=relaxed/relaxed; q=dns/txt; h=From:Subject:Date:Message-ID:To:MIME-Version:Content-Type:Content-Transfer-Encoding;
bh=g3zLYH4xKxcPrHOD18z9YfpQcnk/GaJedfustWU5uGs=;
b=aWKw/MVrO93ALJ/FkpQoFLdv/g5zqRp0tB0PYqYn8nQ+wztnSMhcxaSSL7HDQ9/n06H38EEC1XRKjRqH6jIsS5dwO9A8ZhEW5gS+vacR1Ojj8UpQrZriKwBg5QuLOTRR

Predvidevam, da to pomeni samo, da ni signature taprav v DNS recordu. Mam prav?

This message is an automatic response from Port25's authentication verifier
service at verifier.port25.com. The service allows email senders to perform
a simple check of various sender authentication mechanisms. It is provided
free of charge, in the hope that it is useful to the email community. While
it is not officially supported, we welcome any feedback you may have at
<verifier-feedback@port25.com>.

Thank you for using the verifier,

The Port25 Solutions, Inc. team

==========================================================
Summary of Results
==========================================================
SPF check: pass
DomainKeys check: neutral
DKIM check: fail
Sender-ID check: pass
SpamAssassin check: ham

==========================================================
Details:
==========================================================

HELO hostname: mail.cirman.si
Source IP:
mail-from: tom@smreka.com

----------------------------------------------------------
SPF check details:
----------------------------------------------------------
Result: pass
ID(s) verified: smtp.mail=tom@smreka.com
DNS record(s):
smreka.com. 7067 IN TXT "v=spf1 a mx -all"
smreka.com. 7067 IN A 8.5

----------------------------------------------------------
DomainKeys check details:
----------------------------------------------------------
Result: neutral (message not signed)
ID(s) verified: header.From=tom@smreka.com
DNS record(s):

----------------------------------------------------------
DKIM check details:
----------------------------------------------------------
Result: fail (wrong body hash: expected 47DEQpj8HBSa+/TImW+5JCeuQeRkm5NMpJWZG3hSuFU=)
ID(s) verified:
Canonicalized Headers:
from:<tom@smreka.com>'0D''0A'
subject:test'0D''0A'
date:Tue,'20'12'20'Jan'20'2010'20'02:32:02'20'+0100'0D''0A'
message-id:<4f9db286937f2df1e1d3c9fa3f18d06b@127.0.0.1>'0D''0A'
to:<check-auth@verifier.port25.com>'0D''0A'
mime-version:1.0'0D''0A'
content-type:text/plain;'20'charset=UTF-8'0D''0A'
content-transfer-encoding:8bit'0D''0A'
dkim-signature:v=1;'20'a=rsa-sha256;'20'd=smreka.com;'20's=key1._domainkey.smreka.com;'20'c=relaxed/relaxed;'20'q=dns/txt;'20'h=From:Subject:Date:Message-ID:To:MIME-Version:Content-Type:Content-Transfer-Encoding;'20'bh=frcCV1k9oG9oKj3dpUqdJg1PxRT2RSN/XKdLCPjaYaY=;'20'b=

Canonicalized Body:

DNS record(s):

NOTE: DKIM checking has been performed based on the latest DKIM specs
(RFC 4871 or draft-ietf-dkim-base-10) and verification may fail for
older versions. If you are using Port25's PowerMTA, you need to use
version 3.2r11 or later to get a compatible version of DKIM.

----------------------------------------------------------
Sender-ID check details:
----------------------------------------------------------
Result: pass
ID(s) verified: header.From=tom@smreka.com
DNS record(s):
smreka.com. 7067 IN TXT "v=spf1 a mx -all"
smreka.com. 7067 IN A 4.5

----------------------------------------------------------
SpamAssassin check details:
----------------------------------------------------------
SpamAssassin v3.2.5 (2008-06-10)

Result: ham (-0.4 points, 5.0 required)

pts rule name description
---- ---------------------- --------------------------------------------------
-0.0 SPF_PASS SPF: sender matches SPF record
2.2 TVD_SPACE_RATIO BODY: TVD_SPACE_RATIO
-2.6 BAYES_00 BODY: Bayesian spam probability is 0 to 1%
[score: 0.0000]

==========================================================
Explanation of the possible results (adapted from
draft-kucherawy-sender-auth-header-04.txt):
==========================================================

"pass"
the message passed the authentication test.

"fail"
the message failed the authentication test.

"softfail"
the message failed the authentication test, and the authentication
method has either an explicit or implicit policy which doesn't require
successful authentication of all messages from that domain.

"neutral"
the authentication method completed without errors, but was unable
to reach either a positive or a negative result about the message.

"temperror"
a temporary (recoverable) error occurred attempting to authenticate
the sender; either the process couldn't be completed locally, or
there was a temporary failure retrieving data required for the
authentication. A later retry may produce a more final result.

"permerror"
a permanent (unrecoverable) error occurred attempting to
authenticate the sender; either the process couldn't be completed
locally, or there was a permanent failure retrieving data required
for the authentication.

==========================================================
Original Email
==========================================================

Return-Path: <tom@smreka.com>
Received: from mail.cirman.si () by verifier.port25.com (PowerMTA(TM) v3.6a1) id h9eqg40hse8j for <check-auth@verifier.port25.com>; Mon, 11 Jan 2010 18:32:18 -0500 (envelope-from <tom@smreka.com>)
Authentication-Results: verifier.port25.com smtp.mail=tom@smreka.com; mfrom=pass;
Authentication-Results: verifier.port25.com header.From=tom@smreka.com; domainkeys=neutral (message not signed);
Authentication-Results: verifier.port25.com; dkim=fail (wrong body hash: expected 47DEQpj8HBSa+/TImW+5JCeuQeRkm5NMpJWZG3hSuFU=);
Authentication-Results: verifier.port25.com header.From=tom@smreka.com; pra=pass;
dkim-signature: v=1; a=rsa-sha256; d=smreka.com; s=key1._domainkey.smreka.com;
c=relaxed/relaxed; q=dns/txt; h=From:Subject:Date:Message-ID:To:MIME-Version:Content-Type:Content-Transfer-Encoding;
bh=frcCV1k9oG9oKj3dpUqdJg1PxRT2RSN/XKdLCPjaYaY=;
b=baBTWOeV12aLrbd74+h9X82T3dlZFrQbpFoB1VV2VKXybjYjQIjifKNm6t7C8uz2DseTVJmDPUVgosp550WF7G6EnEehSqeS5Z7pap/MMDg+IJ9jiPGTCYEnWP38DYHfg26zGRgVXfkvM8OQ6hOF1xRGllktkEATqNzkTfcfNkw=
Received: from e-gamer.org ([127.0.0.1])
by mail.cirman.si
; Tue, 12 Jan 2010 02:32:02 +0100
MIME-Version: 1.0
Date: Tue, 12 Jan 2010 02:32:02 +0100
From: <tom@smreka.com>
To: <check-auth@verifier.port25.com>
Subject: test
Message-ID: <4f9db286937f2df1e1d3c9fa3f18d06b@127.0.0.1>
X-Sender: tom@smreka.com
User-Agent: RoundCube Webmail/0.3.1
Content-Transfer-Encoding: 8bit
Content-Type: text/plain; charset=UTF-8

Zdej ta domena je na zoneedit.com tko, da lahko sam vpisujem zapise. Sem vse sprobal, zdej pomoje to zgoraj pomeni, da server dejansko ne podpiše maila.

Nazadnje k sm test naredu

==========================================================
Summary of Results
==========================================================
SPF check: pass
DomainKeys check: neutral
DKIM check: pass
Sender-ID check: pass
SpamAssassin check: ham

DomainKeys pa ne vem kako naštimat še :<

Ta yahoo je prov tečen že s tem. Že 2 stvari passa pa mi ga še kr blocka...... Isto pa hotmail, tm pa sploh nč ne piše. Sploh ne vem kva hočejo od mene -.- Sicer pa, sej sploh ne vem če Hmail podpira DomainKey, k sm bral po forumu neki in so rekl da bojo DKIM implementiral ker bo kao bolš od DomainKey. Sam če je tako, kdaj bo to -.- Važn, da mam šunko... K gre v spam -.-

Tole je uibr butast, kva vse morš narest, da ti mail že enkrat faking pride v inbox. Tole mi bo čist živce požrl...

Evo tle dobiteen fajn mejl server, router , ni da ni, pa še opensource je

http://www.clearfoundation.com/Software/overview.html

Samo da je to pač celoten operacijski sistem. Močno dvomim, da bo kdo šel menjat celoten sistem na Linuxu ali Windowsu za tole.

Sem dal samo kot opcijo

Mogoče bo pa za koga zanimivo

Ma jebeš to. Zdej so mi še rekl nekje, da morm 3 mesce čakat, drugje pa spet, da pa KR 6 MESECEV. Komu se to da še.

A lahko samo relayam e-maile z svojimi domenami preko T-2 SMTP-ja? Samo kako to potem zgleda? Sem sprobal ravnokar, poslal sem mail preko t-2 SMTP-ja pa je še vedno šlo v spam. :\

EDIT: Hah, lol. Zgleda če pošljem karkol preko T-2 gre tud v spam. Seveda deluje, če pošljem preko web maila. Če pa preko thunderbirda mi pa takoj v spam pošle. Kva je to en skret

EDIT#2: Yahoo dela pa BP. KVa da fak

Moraš se zavedati da je 3/4 ip-jev "dirty" kar pomen da so zabeleženi na RBL listah. Mislim da boš moral na t-2 pisat da ti zrihtajo en čist ip

Sej ni nikjer blacklistan, edin na greylisti je. To pa pomen, da sm nek umes. Pač kr neki. Itak bom prenesu vse na gmail, pač domeno bom mel, sam prek gmaila bom pisal. Pa sej kul, dobi vsak uporabnik 7gb placa pa 50 jih maš lahko na domeno

Drgač sm pa ClearOS sprobu, res luštna zadeva, trenutno sm na smoothwallu, ClearOS pa laufam na drugem omrežju. Mam zdej ene par problemov z mrežno kartico, bom jutr povedu še kej, ko grem novo iskat

Neuradni T-2 forum

Mail server

Re: Mail server

Re: Mail server

Re: Mail server

Re: Mail server

Re: Mail server

Re: Mail server

Re: Mail server

Re: Mail server

Re: Mail server

Re: Mail server

Re: Mail server

Re: Mail server

Re: Mail server