Topic: qpsmtpd rules

[alt-network]

I checked and that is correct that it is not installed. Does anyone  know how to install this or update it without braking anything else?

[raem]

alt-network

> The sme 7 is getting hit with 1 to 3 each second and locking up.

config show smtpd
look at
Instances
and
Instances PerIP

tweaking these may slow things down.

[raem]

alt-network

You might also look at this setting

cat /var/qmail/control/concurrencyremote

[alt-network]

Thanks Ray,

I have questions on some of the settings. Just checking to see if I understand them.

I tried searching the internet on them before wasting your time but unable to find them.

First:
Instances : Is this the max number of smtp connections or emails being processed?

Second:
Instances PerIP : Is this the max number of connections at one time per IP or the max total of smtp servers?

Third: seen this setting....
MaximumDateOffset: Is this setting for checking dates for emails ex: If the setting is set for 1 will it let emails that are 1 day different in and the date more then 1 day deny?

Fourth:
var/qmail/control/concurrencyremote: confused about this one. Is this not controlled by the above and if not what does it control. Next, to change this setting do I change it in the template folder or is there a command to set this.


Thanks for your time.....
Doyle

[dmay]

The smtpd db entries Instances=40 & InstancesPerIP=5 relate to qpsmtpd-forkserver -c & -m, explained here:

Code: [Select]

# qpsmtpd-forkserver --help
usage: qpsmtpd-forkserver [ options ]
 -l, --listen-address addr : listen on specific address(es); can be specified
                             multiple times for multiple bindings.  Default is
                             0.0.0.0 (all interfaces).
 -p, --port P              : listen on a specific port; default 2525
 -c, --limit-connections N : limit concurrent connections to N; default 15
 -u, --user U              : run as a particular user (default 'smtpd')
 -m, --max-from-ip M       : limit connections from a single IP; default 5
     --pid-file P          : print main servers PID to file P
 -d, --detach              : detach from controlling terminal (daemonize)

I have found Instances=40 very problematic myself:

http://bugs.contribs.org/show_bug.cgi?id=2139

Darrell

[raem]

alt-network

> Instances : Is this the max number of smtp connections

Yes

> Instances PerIP : Is this the max number of connections at one time per IP

Yes

...and I think this setting may definitely benefit you if your reduce it, to stop "mesage bombs" coming from the same server IP.


> var/qmail/control/concurrencyremote: confused about this one.
> Is this not controlled by the above and if not what does it control.

This controls qmail parameters, not smtpd parameters
There is also var/qmail/control/concurrencylocal

From my sme6 notes (modified slightly for sme7)
cat /var/qmail/control/concurrencyremote
20

config setprop qmail ConcurrencyRemote 5
signal-event email-update
/etc/init.d/qmail restart


I'm not sure if there is a better "sme7 way" of doing this.

[paulfung]

Hello

anyone knows if there is a contrib for qpsmtpd mail rules same mailrules rpm for mailfront in 6.x.x version of sme ?

As per I know, the mailfront in 6.x.x can copy all out going email to a mail box i.e. : "maillog", does any one know if there exist any way to do it in 7.1 via qpsmtpd's mail rule ?

Thanks for any info.

[raem]

paulfung

http://forums.contribs.org/index.php?topic=31374.0

[paulfung]

Thanks !!

By the way,
 does it support multible forwarding format like "xx1@domain.com;xx2@domain2.com"

Best Regards,

Paul

[albatroz]

So in summary there is no current replacement for this contrib
dungog-mailblocking-1.0-3.noarch.rpm

[kruhm]

So in summary there is no current replacement for this contrib
dungog-mailblocking-1.0-3.noarch.rpm

What are you looking to do specifically? Give an example.

[albatroz]

I want that:

* Certain local users can´t be capable of sending email to Internet, only intranet

* Certain local users can´t be capable of receiving email from Internet, only intranet

* Block the reception of emails from certain addresses/domains to the whole server or to certain local users.

[kruhm]

* Certain local users can´t be capable of sending email to Internet, only intranet

In short, no.
On a published domain -no. (You could fake out a published domain but then the published domain wouldn't work. For example, you could have your own yahoo.com but then the real yahoo.com wouldn't work.)
On an unpublished local domain & sme is your dns -yes. A domain like thisismylocaldomain5746.com doesn't exist except on your server and email will remain local both sending and receiving.

* Certain local users can´t be capable of receiving email from Internet, only intranet

same as above. In short, no.

* Block the reception of emails from certain addresses/domains to the whole server...

yes. http://bugs.contribs.org/show_bug.cgi?id=2409

...or to certain local users.

no.

[albatroz]

So I will have to keep using SME 6.1

[raem]

albatroz

> So I will have to keep using SME 6.1

...and get hacked !!!

sme7 does things differently to sme6 so you can't expect the solution that worked for sme6 to be implemented in sme7.

Look at http://forums.contribs.org/index.php?topic=36302.0

and search forums on check_badmailfromto for other posts on the subject