#arpnetworks 2017-08-09,Wed

↑back Search ←Prev date Next date→ Show only urls(Click on time to select a line by its url)

WhoWhatWhen
***ziyourenxiang has joined #arpnetworks [00:17]
................... (idle for 1h30mn)
km_ has quit IRC (*.net *.split)
shat has quit IRC (*.net *.split)
hazardous has quit IRC (Ping timeout: 240 seconds)
qbit has quit IRC (Ping timeout: 240 seconds)
hazardous has joined #arpnetworks
[01:47]
...... (idle for 26mn)
qbit has joined #arpnetworks [02:19]
shat has joined #arpnetworks
shat has quit IRC (Changing host)
shat has joined #arpnetworks
km_ has joined #arpnetworks
[02:31]
.............................................................. (idle for 5h9mn)
perlgodi will break the silence: i am thoroughly enjoying my arp thunder instance, love all the disk space.
also i started using rspamd as my email spam filter since dspam was abandoned. its an awesome product, bsd licensed. check it out if you've never looked into it
[07:40]
.......................... (idle for 2h7mn)
***ziyourenxiang has quit IRC (Ping timeout: 240 seconds) [09:48]
............. (idle for 1h4mn)
mkb has joined #arpnetworks [10:52]
.... (idle for 19mn)
KDE_Perr1 is now known as KDE_Perry [11:11]
................. (idle for 1h23mn)
mercutiohmm, i have not heard of rspamd [12:34]
perlgodi hadnt either until i started researching new spam blockers. was initially looking at spamassassin, and why i do love perl, the thought of spinning up 20 perl processes for every email that came in wasnt appealing
rspamd is written in c
has tons of modules for spam blocking. DCC bulk lists, dkim, dmarc, RBL, statistical filtering, etc
and a simple web gui for viewing spam block/pass stats
[12:37]
mercutiosounds interesting. i use amavisd-new
which is perl and bloated, and hooks into spamassassin, dkim, etc
i actually do zen spamhaus rbl block straight in postfix.
[12:41]
perlgodrspamd does dkim signing of outgoing mails as well. before i was just using opendkim and dspam as milters [12:43]
mercutioi think i am signing outbound mails
and doing domainkeys?
[12:43]
perlgodyou can easily check by sending an email to a gmail account and checking for "signed-by" field in the message headers. [12:43]
mercutioi tried to stay on top of all of the things to do years ago, then it seems things stopped changing nearly as much, and i haven't kept up [12:44]
perlgodor google one of those dkim/spf testers [12:44]
mercutiook i'll email gmail :)
i seem to reclal using gmail to check in the past :)
i think yahoo needed domainkeys?
[12:44]
perlgodif you want to make sure other mail servers accept your mail, its not too terribly hard
1. make sure your mail server has a reverse dns record that points back to itself
2. make sure spf records are correct in dns
[12:44]
mercutioi'm struggling to figure out how to show headers in gmail [12:45]
perlgod3. you can look into DMARC/DKIM signing, but in my experience getting 1 & 2 correct is enough [12:45]
mercutiooh "show original" [12:45]
perlgodyou can hit the little arrow next to the "To:" field
it should say "mailed by" and "signed by"
or show original :)
[12:46]
mercutiohmm i don't see signed by [12:46]
perlgodyou are prob not signing outgoing mails then [12:46]
mercutioi must not be [12:47]
perlgodi used this when setting up my mail server, very helpful
http://dkimvalidator.com/
[12:47]
mercutioi have dkimproxy setup it seems [12:47]
mkbI've never bothered with dkim and people usually respond to my mail [12:48]
mercutiobut i probably didn't do it in postfi [12:48]
perlgodyeah, in my experience most mail servers do not reject purely based on dkim
however if they are using something like spamassassin or another spam blocking software, not having valid dkim will increase your likelihood of being flagged as spam
[12:48]
mkbnow I've never done any real test to see if the people who don't respond don't because they didn't get it or because they don't want to talk to me... [12:48]
mercutiohaha mkb
or maybe they do respond to you, and their mails go into spam
[12:49]
perlgodi have spent a ton of time getting my mail server set up. currently running postfix/rspamd/dovecot with ldap auth and sieve filtering. also trains spam based on mail you move to Junk folder
one of these days i will do a write-up about it
running it all on freebsd on ARP of course :)
[12:49]
mercutioyeah it ends up being a huge time sink
i added things one after another when i got irritated by my level of spam
[12:50]
mkbI also don't do any kind of modern spam filtering [12:50]
mercutioi mostly seem to attract russian girls spam atm [12:50]
mkbwhich I may have to change soon [12:50]
perlgodhave not had any spam since setting up rspamd and adding postfix options reject_unknown_reverse_client_hostname, reject_invalid_helo_hostname, reject_non_fqdn_helo_hostname, reject_non_fqdn_sender, reject_unknown_sender_domain [12:51]
mkbI used to run openbsd spamd [12:51]
perlgodif i ever do a write up of my setup i will post a link in here so you can benefit from my trial and error [12:52]
mkbrather effective, but ultimately caused more problems than it solved [12:52]
perlgodit is a time sync, but messing around with hosting stuff basically got me my career [12:52]
mercutioreject_unauth_destination, reject_unknown_sender_domain, reject_rbl_client zen.spamhaus.org, check_sender_access hash:/etc/postfix/sender_access [12:52]
perlgodhelped a lot more than the CS degree anyway [12:52]
mercutiohmm i wonder if i should add some more
i can't stand greylisting
and it doesn't seem to help modern spam
most spam that comes through to me comes from gmail, yahoo, etc, and other legit mail senders.
[12:52]
perlgodrspamd does greylisting by default, though you can disable. i have not had too many problems [12:54]
mercutiozen spamhaus may be blocking some things grey listing may have helped against though [12:54]
perlgodon an iffy email, it will do a soft bounce. usually the other mailserver will retry in about 60 seconds and then it will go through [12:54]
mkb60 seconds... yeah right [12:55]
mercutiomy big problem with mail now days is "legit" mail
i want something like gmails automatic folder shifting
[12:55]
mkbthe problem I had with greylisting is that idiots would email me, then call me on the phone to tell me they've emailed me, and I'd have to explain that I couldn't see it [12:56]
BryceBotYER AN IDIOT mkb [12:56]
mercutiomkb haha that sounds like somethin gi'd do
some email systems are slow too even without greylisting
[12:56]
mkbyeah I'm increasingly dissatisfied with the amount of legitimate spam I get [12:57]
mercutioi figure that it's often best to email and ring if you want a timely response [12:57]
mkbnever buy anything from ebags.com [12:57]
mercutionow ebay.com
nor
actually ebay isn't that bad. paypal keep updating their privacy policy.
[12:57]
mkbhah. ebay sent me one the other day and I couldn't tell if it was phishing or not [12:58]
mercutioi kind of want a folding type thing, where similar messages get grouped together
like all of the ubuntu security notices
i suppose that's something that is the job of the mail user agent
[12:58]
perlgodi played around with offline imap (actually mbsync now) and notmuch, which is an awesome, fast email tagging system
but it only works on one device
so kinda useless if you have laptop, desktop, smartphone etc
[12:59]
mercutioi have two gmail adddress on my phone [12:59]
perlgodserver-side sieve filtering serves me well for now [12:59]
mercutioand just use my normal email otherwise and don't have it on my phone
one of my gmail includes thigns like promotions and has no alerts.
cos sometimes it's nice to have store promotions or such on your phone
[13:00]
mkboh yeah I still use pop which means I only get mail on one machine [13:02]
mercutioi use mutt on the mail server :) [13:02]
....... (idle for 33mn)
***sjackso has joined #arpnetworks [13:35]
............ (idle for 57mn)
mkb has quit IRC (Quit: leaving) [14:32]
..................................... (idle for 3h0mn)
KILLALLHUMANS01 has quit IRC (Ping timeout: 255 seconds) [17:32]
........................... (idle for 2h14mn)
KILLALLHUMANS01 has joined #arpnetworks [19:46]
................ (idle for 1h18mn)
brycec@geoip 98.142.108.75 [21:04]
BryceBotWHOIS - 98.142.108.75 (DomainTools) http://whois.domaintools.com/98.142.108.75
http://98.142.108.75 (Try to go there) http://98.142.108.75
[21:04]
brycec@geoip wolfman.devio.us [21:04]
BryceBotbrycec: I'm sorry, the DDG Zero-Click API returned no results. As this is a Zero-click Info API, most deep queries (non topic names) will be blank. Quite frankly, this DDG API sucks cocks. [21:04]
mike-burnsThat's quite the error message. [21:04]
brycecoh crap wrong channel too, sorry for the noise
(my PM with BryceBot is 1 window over, and I'm not paying attention)
[21:06]
mercutiothat is a creative error message :) [21:18]
brycecWhat can I say, I got tired of people trying to @ddg things and being disappointed. [21:26]
............. (idle for 1h0mn)
***km__ has joined #arpnetworks
km_ has quit IRC (Ping timeout: 260 seconds)
hive-mind has quit IRC (Ping timeout: 260 seconds)
[22:26]
hive-mind has joined #arpnetworks [22:36]
................. (idle for 1h23mn)
ziyourenxiang has joined #arpnetworks [23:59]

↑back Search ←Prev date Next date→ Show only urls(Click on time to select a line by its url)