However, it does seem to support STARTTLS when you connect, which should ensure an encrypted connection.  My question is, is the password broadcast as plain text before the connection is established, or after?  What I'm wondering is if my password gets plain text broadcast over the network.  If so, is there a way to avoid that?

Related question: since webmail is https, would the password not be visible without the key over the webmail connection?

Another related question: do all iredmail installations use the same TLS decryption key?  I admit I'm not too up on how the certificates work, but if all installations use the same key, that would seem to be a security vulnerability.  If I'm off here, feel free to correct me

Edit: Another probably dumb question.  Is IRedMail configured, by default, to NOT be an open relay?

- Ubuntu 10.4 LTS
- iRedMail 0.7.4, mysql

I can not access the web interface iredadmin. For the iredadmin.py file I receive this message:

# encoding: utf-8 # Author: Zhang Huangbin import os import sys rootdir = os.path.abspath(os.path.dirname(__file__)) sys.path.insert(0, rootdir) from libs import iredbase # start app app = iredbase.app if __name__ == '__main__': # Starting webpy builtin http server. app.run() else: # Run app under Apache + mod_wsgi. application = app.wsgifunc()

What is wrong?

Hi,

Is white listing working in iRedMail?, how can I add a new address to the white list?

Thanks in advance.

Hi,

Some users tell me that there are a lot of emails that do not reach the destination recipient.
I checked the message queue with the command 'postqueue -p', and I'm getting this error continuously:

"9BCD46801E3     4344 Sun Feb  5 16:00:52  MAILER-DAEMON
(temporary failure. Command output: doveconf: Warning: NOTE: You can get a new clean config file with: doveconf -n > dovecot-new.conf doveconf: Warning: Obsolete setting in /etc/dovecot/dovecot.conf:170: protocol managesieve {} has been replaced by protocol sieve { })"

What's happening with dovecot?, Can this be the problem do not leave messages?

IS THERE ANY WAY TO DO THIS ?

Thanks,

Dear Sirs,

Pls help:

Some errors:

--> Finished Dependency Resolution
Error: Package: 2:postfix-2.8.7-1.el5.x86_64 (CentALT)
           Requires: libpq.so.4()(64bit)
Error: Package: 2:postfix-2.8.7-1.el5.x86_64 (CentALT)
           Requires: libmysqlclient.so.15()(64bit)
Error: Package: 2:postfix-2.8.7-1.el5.x86_64 (CentALT)
           Requires: libmysqlclient.so.15(libmysqlclient_15)(64bit)
Error: Package: 1:mod_ssl-2.2.22-1.el5.x86_64 (CentALT)
           Requires: libdistcache.so.1()(64bit)
Error: Package: 1:mod_ssl-2.2.22-1.el5.x86_64 (CentALT)
           Requires: libnal.so.1()(64bit)
You could try using --skip-broken to work around the problem
You could try running: rpm -Va --nofiles --nodigest
< ERROR > Installation failed, please check the terminal output.
< ERROR > If you're not sure what the problem is, try to get help in iRedMail
< ERROR > forum: http://www.iredmail.org/forum/

Thanx in advance!

Alexey.

I'm trying to set all the iredmail components (Rouncube, iredamin and awstats) to run under a name based virtual host in apache instead of the default one (as apache will also host my website). Am I correct in assuming that all the apache settings that iredmail needs are in the rouncube.conf, iredadmin.conf awstats.conf and ssl.conf files? In other words does the iredadmin installer modify the htppd.conf file?

Thanks a lot!

Arthur

iredmail 0.7.4
Centos 6.2 x64

After update some packages iredadmin did not start. When i checked the log file; i saw this error:

# tail -f httpd-error.log
[Fri Feb 03 15:16:24 2012] [notice] Apache/2.2.21 (FreeBSD) mod_ssl/2.2.21 OpenSSL/0.9.8q DAV/2 mod_wsgi/2.8 Python/2.6.7 configured -- resuming normal operations
[Fri Feb 03 14:58:00 2012] [error] [client xx.xx.xx.xx] File does not exist: /usr/local/www/apache22/data/favicon.ico
[Fri Feb 03 14:58:07 2012] [error] [client xx.xx.xx.xx] mod_wsgi (pid=1446): Target WSGI script '/usr/local/www/iredadmin/iredadmin.py' cannot be loaded as Python module.
[Fri Feb 03 14:58:07 2012] [error] [client xx.xx.xx.xx] mod_wsgi (pid=1446): Exception occurred processing WSGI script '/usr/local/www/iredadmin/iredadmin.py'.
[Fri Feb 03 14:58:07 2012] [error] [client xx.xx.xx.xx] Traceback (most recent call last):
[Fri Feb 03 14:58:07 2012] [error] [client xx.xx.xx.xx]   File "/usr/local/www/iredadmin/iredadmin.py", line 10, in <module>
[Fri Feb 03 14:58:07 2012] [error] [client xx.xx.xx.xx]     from libs import iredbase
[Fri Feb 03 14:58:07 2012] [error] [client xx.xx.xx.xx]   File "/usr/local/www/iredadmin/libs/iredbase.py", line 8, in <module>
[Fri Feb 03 14:58:07 2012] [error] [client xx.xx.xx.xx]     from jinja2 import Environment, FileSystemLoader
[Fri Feb 03 14:58:07 2012] [error] [client xx.xx.xx.xx] ImportError: No module named jinja2
[Fri Feb 03 14:58:07 2012] [error] [client xx.xx.xx.xx] File does not exist: /usr/local/www/apache22/data/favicon.ico

i think some code is not compatible with new updated packages. How can i fix this?

Here is some of my system major package versions:
apache-2.2.21
perl-threaded-5.14.2
python26-2.6.7_2
php5-5.3.8

Thanks for support.

Hasan Alp iNAN

Sorry about my English.

I configure SPF and DKIM and i can't send mail to google.com

Command: dig -t txt example.com return TXT records.

Command: amavisd testkeys return pass

nslookup example.com return me ip address and nslookup ip_address return example.com

I have freeBSD 8.2 and Iredmail 0.7.2 on LDAP

hostname: ns2.example.com
command: hostname -f return ns2.example.com

My example.com files:

$ORIGIN example.com.
$TTL 3600
@ 1D IN SOA @ michal.example.com (
                2012012001
                360
                900
                3600000
                3600
)

@       IN      NS      ns2.example.com.
        IN      MX 10   ns2.example.com.

@       IN      A       1.2.3.4
ns2     IN      A       1.2.3.4



example.com.       IN      TXT     "v=spf1 ip4:1.2.3.4/32 -all"
example.com.       IN      SPF     "v=spf1 ip4:1.2.3.4/32 -all"

ns2             IN      TXT     "v=spf1 ip4:1.2.3.4 -all"
ns2             IN      SPF     "v=spf1 ip4:1.2.3.4 -all"

dkim._domainkey.example.com.       IN      TXT (
  "v=DKIM1; p="
  "here is the secret key"
  "....."
  "....."
  "....")

www             IN      CNAME   example.com.

When I sent mail to google mail, google said:

I'm sorry to have to inform you that your message could not
be delivered to one or more recipients. It's attached below.

For further assistance, please send mail to postmaster.

If you do so, please include this problem report. You can
delete your own text from the attached returned message.

The mail system

<greatnet.pl@gmail.com>: host gmail-smtp-in.l.google.com[173.194.65.26] said:
550-5.7.1 [1.2.3.4] The IP you're using to send mail is not authorized
to 550-5.7.1 send email directly to our servers. Please use the SMTP relay
at your 550-5.7.1 service provider instead. Learn more at
550 5.7.1 http://support.google.com/mail/bin/answer.py?answer=10336
t47si1292564eeb.67 (in reply to end of DATA command)

When I sent mail to another mail side (for example: wp.pl or example.com) message go good.

Please help.

Best Regards
Michał==== Provide required information to help troubleshoot and get quick answer ====
- Linux/BSD distribution name and version:
- iRedMail version and backend (LDAP/MySQL):
- Any related log? Log is helpful for troubleshooting.
====

I want to know if its even possible to blacklist/whitelist IP's on open source iredmail if we make a custom script to input into the database?

I am really asking whats the database insert information for the blacklist for:

blacklist
blacklist_helo
blacklist_dnsname
blacklist_sender

then for whitelist

whitelist
whitelist_dnsname
whitelist_sender

I backed up my email server to a FTP server, while restoring the user back to the server
var/vmail/vmail/domain-name/users... i notice after doing this. users where not able to login to there mails and if i use outlook to get the mails, the mails will not drop but it will by saying receiving 20 0f 2400 mails.

Need to sort this out thanks.

Now it keeps syncing but doesn't fetch any e-mails.

I'm using iredmail with LDAP Backend

How do I send one email to group of email addresses in iredmail? I currently have mailman but little confused how to configure that with how iredmail is configured with postfix/mysql setup. Bc the setup under mailman is like this @lists.domain.com but I only got domain.com so how do I get it lists.domain.com to redirect to send it as outage@domain.com etc..

I was currently in the process of installing this: https://help.ubuntu.com/community/Mailman  for postfix and now I think I messed up the postfix transport and here is /etc/postfix/main.cf

myhostname = mail.xxxx.com
alias_maps = hash:/etc/aliases, hash:/var/lib/mailman/data/aliases
alias_database = hash:/etc/postfix/aliases
myorigin = mail.xxxx.com
mydestination = $myhostname, localhost, localhost.localdomain, localhost.$myhostname
relayhost =
mynetworks = 127.0.0.0/8
mailbox_size_limit = 0
recipient_delimiter = +
inet_interfaces = all
virtual_alias_domains =
mydomain = xxxx.com
inet_protocols = ipv4
mynetworks_style = subnet
smtpd_data_restrictions = reject_unauth_pipelining
smtpd_reject_unlisted_recipient = yes
smtpd_sender_restrictions = permit_mynetworks, reject_sender_login_mismatch, permit_sasl_authenticated
delay_warning_time = 0h
policy_time_limit = 3600
maximal_queue_lifetime = 1d
bounce_queue_lifetime = 1d
proxy_read_maps = $canonical_maps $lmtp_generic_maps $local_recipient_maps $mydestination $mynetworks $recipient_bcc_maps $recipient_canonical_maps $relay_domains $relay_recipient_maps $relocated_maps $sender_bcc_maps $sender_canonical_maps $smtp_generic_maps $smtpd_sender_login_maps $transport_maps $virtual_alias_domains $virtual_alias_maps $virtual_mailbox_domains $virtual_mailbox_maps $smtpd_sender_restrictions
smtpd_helo_required = yes
smtpd_helo_restrictions = permit_mynetworks,permit_sasl_authenticated, check_helo_access pcre:/etc/postfix/helo_access.pcre
queue_run_delay = 300s
minimal_backoff_time = 300s
maximal_backoff_time = 4000s
enable_original_recipient = no
disable_vrfy_command = yes
home_mailbox = Maildir/
allow_min_user = no
message_size_limit = 15728640
virtual_minimum_uid = 1001
virtual_uid_maps = static:1001
virtual_gid_maps = static:1001
virtual_mailbox_base = /var/vmail
transport_maps = hash:/etc/postfix/transport
virtual_mailbox_domains = proxy:mysql:/etc/postfix/mysql/virtual_mailbox_domains.cf
virtual_mailbox_maps = proxy:mysql:/etc/postfix/mysql/virtual_mailbox_maps.cf
virtual_alias_maps = proxy:mysql:/etc/postfix/mysql/virtual_alias_maps.cf, proxy:mysql:/etc/postfix/mysql/domain_alias_maps.cf, proxy:mysql:/etc/postfix/mysql/catchall_maps.cf, proxy:mysql:/etc/postfix/mysql/domain_alias_catchall_maps.cf
sender_bcc_maps = proxy:mysql:/etc/postfix/mysql/sender_bcc_maps_domain.cf, proxy:mysql:/etc/postfix/mysql/sender_bcc_maps_user.cf
recipient_bcc_maps = proxy:mysql:/etc/postfix/mysql/recipient_bcc_maps_domain.cf, proxy:mysql:/etc/postfix/mysql/recipient_bcc_maps_user.cf
relay_domains = lists.example.com
smtpd_sender_login_maps = proxy:mysql:/etc/postfix/mysql/sender_login_maps.cf
smtpd_reject_unlisted_sender = yes
smtpd_sasl_auth_enable = yes
smtpd_sasl_local_domain =
broken_sasl_auth_clients = yes
smtpd_sasl_security_options = noanonymous
smtpd_sasl_authenticated_header = no
smtpd_recipient_restrictions = reject_unknown_sender_domain, reject_unknown_recipient_domain, reject_non_fqdn_sender, reject_non_fqdn_recipient, reject_unlisted_recipient, check_policy_service inet:127.0.0.1:7777, permit_mynetworks, permit_sasl_authenticated, reject_unauth_destination, reject_non_fqdn_helo_hostname, reject_invalid_helo_hostname, check_policy_service inet:127.0.0.1:10031
smtpd_tls_security_level = may
smtpd_enforce_tls = no
smtpd_tls_loglevel = 0
smtpd_tls_CAfile = /etc/ssl/certs/iRedMail_CA.pem
tls_random_source = dev:/dev/urandom
tls_daemon_random_source = dev:/dev/urandom

please note the xxxx.com is there for security reasons for my domain. So I need to know what I need to do to fix this issue?==== Provide required information to help troubleshoot and get quick answer ====
- Linux/BSD distribution name and version:
- iRedMail version and backend (LDAP/MySQL):
- Any related log? Log is helpful for troubleshooting.
====

[Errono 4] IOError: <urlopen error (-3,'Temporary failure in name resolution')>

I am installing it on Centos5 fresh installation, No Mysql or any other software previously installed.
Please advise
Junaid

==== Provide required information to help troubleshoot and get quick answer ====
- Linux/BSD distribution name and version:
- iRedMail version and backend (LDAP/MySQL):
- Any related log? Log is helpful for troubleshooting.
====