↑back Search ←Prev date Next date→ Show only urls | (Click on time to select a line by its url) |
Who | What | When |
---|---|---|
*** | ziyourenxiang has joined #arpnetworks | [00:17] |
................... (idle for 1h30mn) | ||
km_ has quit IRC (*.net *.split)
shat has quit IRC (*.net *.split) hazardous has quit IRC (Ping timeout: 240 seconds) qbit has quit IRC (Ping timeout: 240 seconds) hazardous has joined #arpnetworks | [01:47] | |
...... (idle for 26mn) | ||
qbit has joined #arpnetworks | [02:19] | |
shat has joined #arpnetworks
shat has quit IRC (Changing host) shat has joined #arpnetworks km_ has joined #arpnetworks | [02:31] | |
.............................................................. (idle for 5h9mn) | ||
perlgod | i will break the silence: i am thoroughly enjoying my arp thunder instance, love all the disk space.
also i started using rspamd as my email spam filter since dspam was abandoned. its an awesome product, bsd licensed. check it out if you've never looked into it | [07:40] |
.......................... (idle for 2h7mn) | ||
*** | ziyourenxiang has quit IRC (Ping timeout: 240 seconds) | [09:48] |
............. (idle for 1h4mn) | ||
mkb has joined #arpnetworks | [10:52] | |
.... (idle for 19mn) | ||
KDE_Perr1 is now known as KDE_Perry | [11:11] | |
................. (idle for 1h23mn) | ||
mercutio | hmm, i have not heard of rspamd | [12:34] |
perlgod | i hadnt either until i started researching new spam blockers. was initially looking at spamassassin, and why i do love perl, the thought of spinning up 20 perl processes for every email that came in wasnt appealing
rspamd is written in c has tons of modules for spam blocking. DCC bulk lists, dkim, dmarc, RBL, statistical filtering, etc and a simple web gui for viewing spam block/pass stats | [12:37] |
mercutio | sounds interesting. i use amavisd-new
which is perl and bloated, and hooks into spamassassin, dkim, etc i actually do zen spamhaus rbl block straight in postfix. | [12:41] |
perlgod | rspamd does dkim signing of outgoing mails as well. before i was just using opendkim and dspam as milters | [12:43] |
mercutio | i think i am signing outbound mails
and doing domainkeys? | [12:43] |
perlgod | you can easily check by sending an email to a gmail account and checking for "signed-by" field in the message headers. | [12:43] |
mercutio | i tried to stay on top of all of the things to do years ago, then it seems things stopped changing nearly as much, and i haven't kept up | [12:44] |
perlgod | or google one of those dkim/spf testers | [12:44] |
mercutio | ok i'll email gmail :)
i seem to reclal using gmail to check in the past :) i think yahoo needed domainkeys? | [12:44] |
perlgod | if you want to make sure other mail servers accept your mail, its not too terribly hard
1. make sure your mail server has a reverse dns record that points back to itself 2. make sure spf records are correct in dns | [12:44] |
mercutio | i'm struggling to figure out how to show headers in gmail | [12:45] |
perlgod | 3. you can look into DMARC/DKIM signing, but in my experience getting 1 & 2 correct is enough | [12:45] |
mercutio | oh "show original" | [12:45] |
perlgod | you can hit the little arrow next to the "To:" field
it should say "mailed by" and "signed by" or show original :) | [12:46] |
mercutio | hmm i don't see signed by | [12:46] |
perlgod | you are prob not signing outgoing mails then | [12:46] |
mercutio | i must not be | [12:47] |
perlgod | i used this when setting up my mail server, very helpful
http://dkimvalidator.com/ | [12:47] |
mercutio | i have dkimproxy setup it seems | [12:47] |
mkb | I've never bothered with dkim and people usually respond to my mail | [12:48] |
mercutio | but i probably didn't do it in postfi | [12:48] |
perlgod | yeah, in my experience most mail servers do not reject purely based on dkim
however if they are using something like spamassassin or another spam blocking software, not having valid dkim will increase your likelihood of being flagged as spam | [12:48] |
mkb | now I've never done any real test to see if the people who don't respond don't because they didn't get it or because they don't want to talk to me... | [12:48] |
mercutio | haha mkb
or maybe they do respond to you, and their mails go into spam | [12:49] |
perlgod | i have spent a ton of time getting my mail server set up. currently running postfix/rspamd/dovecot with ldap auth and sieve filtering. also trains spam based on mail you move to Junk folder
one of these days i will do a write-up about it running it all on freebsd on ARP of course :) | [12:49] |
mercutio | yeah it ends up being a huge time sink
i added things one after another when i got irritated by my level of spam | [12:50] |
mkb | I also don't do any kind of modern spam filtering | [12:50] |
mercutio | i mostly seem to attract russian girls spam atm | [12:50] |
mkb | which I may have to change soon | [12:50] |
perlgod | have not had any spam since setting up rspamd and adding postfix options reject_unknown_reverse_client_hostname, reject_invalid_helo_hostname, reject_non_fqdn_helo_hostname, reject_non_fqdn_sender, reject_unknown_sender_domain | [12:51] |
mkb | I used to run openbsd spamd | [12:51] |
perlgod | if i ever do a write up of my setup i will post a link in here so you can benefit from my trial and error | [12:52] |
mkb | rather effective, but ultimately caused more problems than it solved | [12:52] |
perlgod | it is a time sync, but messing around with hosting stuff basically got me my career | [12:52] |
mercutio | reject_unauth_destination, reject_unknown_sender_domain, reject_rbl_client zen.spamhaus.org, check_sender_access hash:/etc/postfix/sender_access | [12:52] |
perlgod | helped a lot more than the CS degree anyway | [12:52] |
mercutio | hmm i wonder if i should add some more
i can't stand greylisting and it doesn't seem to help modern spam most spam that comes through to me comes from gmail, yahoo, etc, and other legit mail senders. | [12:52] |
perlgod | rspamd does greylisting by default, though you can disable. i have not had too many problems | [12:54] |
mercutio | zen spamhaus may be blocking some things grey listing may have helped against though | [12:54] |
perlgod | on an iffy email, it will do a soft bounce. usually the other mailserver will retry in about 60 seconds and then it will go through | [12:54] |
mkb | 60 seconds... yeah right | [12:55] |
mercutio | my big problem with mail now days is "legit" mail
i want something like gmails automatic folder shifting | [12:55] |
mkb | the problem I had with greylisting is that idiots would email me, then call me on the phone to tell me they've emailed me, and I'd have to explain that I couldn't see it | [12:56] |
BryceBot | YER AN IDIOT mkb | [12:56] |
mercutio | mkb haha that sounds like somethin gi'd do
some email systems are slow too even without greylisting | [12:56] |
mkb | yeah I'm increasingly dissatisfied with the amount of legitimate spam I get | [12:57] |
mercutio | i figure that it's often best to email and ring if you want a timely response | [12:57] |
mkb | never buy anything from ebags.com | [12:57] |
mercutio | now ebay.com
nor actually ebay isn't that bad. paypal keep updating their privacy policy. | [12:57] |
mkb | hah. ebay sent me one the other day and I couldn't tell if it was phishing or not | [12:58] |
mercutio | i kind of want a folding type thing, where similar messages get grouped together
like all of the ubuntu security notices i suppose that's something that is the job of the mail user agent | [12:58] |
perlgod | i played around with offline imap (actually mbsync now) and notmuch, which is an awesome, fast email tagging system
but it only works on one device so kinda useless if you have laptop, desktop, smartphone etc | [12:59] |
mercutio | i have two gmail adddress on my phone | [12:59] |
perlgod | server-side sieve filtering serves me well for now | [12:59] |
mercutio | and just use my normal email otherwise and don't have it on my phone
one of my gmail includes thigns like promotions and has no alerts. cos sometimes it's nice to have store promotions or such on your phone | [13:00] |
mkb | oh yeah I still use pop which means I only get mail on one machine | [13:02] |
mercutio | i use mutt on the mail server :) | [13:02] |
....... (idle for 33mn) | ||
*** | sjackso has joined #arpnetworks | [13:35] |
............ (idle for 57mn) | ||
mkb has quit IRC (Quit: leaving) | [14:32] | |
..................................... (idle for 3h0mn) | ||
KILLALLHUMANS01 has quit IRC (Ping timeout: 255 seconds) | [17:32] | |
........................... (idle for 2h14mn) | ||
KILLALLHUMANS01 has joined #arpnetworks | [19:46] | |
................ (idle for 1h18mn) | ||
brycec | @geoip 98.142.108.75 | [21:04] |
BryceBot | WHOIS - 98.142.108.75 (DomainTools) http://whois.domaintools.com/98.142.108.75
http://98.142.108.75 (Try to go there) http://98.142.108.75 | [21:04] |
brycec | @geoip wolfman.devio.us | [21:04] |
BryceBot | brycec: I'm sorry, the DDG Zero-Click API returned no results. As this is a Zero-click Info API, most deep queries (non topic names) will be blank. Quite frankly, this DDG API sucks cocks. | [21:04] |
mike-burns | That's quite the error message. | [21:04] |
brycec | oh crap wrong channel too, sorry for the noise
(my PM with BryceBot is 1 window over, and I'm not paying attention) | [21:06] |
mercutio | that is a creative error message :) | [21:18] |
brycec | What can I say, I got tired of people trying to @ddg things and being disappointed. | [21:26] |
............. (idle for 1h0mn) | ||
*** | km__ has joined #arpnetworks
km_ has quit IRC (Ping timeout: 260 seconds) hive-mind has quit IRC (Ping timeout: 260 seconds) | [22:26] |
hive-mind has joined #arpnetworks | [22:36] | |
................. (idle for 1h23mn) | ||
ziyourenxiang has joined #arpnetworks | [23:59] |
↑back Search ←Prev date Next date→ Show only urls | (Click on time to select a line by its url) |