Schlagwort: Postfix

Forward secrecy auf dem Mailserver

Das soll­te doch so pas­sen, oder?

~$ echo | openssl s_client -starttls smtp -connect mail.sokoll.com:25 2>/dev/null | egrep "^\ *Cipher"
    Cipher    : ECDHE-RSA-AES256-GCM-SHA384
~$ echo | openssl s_client -starttls smtp -connect mail.sokoll.com:587 2>/dev/null | egrep "^\ *Cipher"
    Cipher    : ECDHE-RSA-AES256-GCM-SHA384
~$ echo | openssl s_client -connect mail.sokoll.com:993 2>/dev/null | egrep "^\ *Cipher"
    Cipher    : DHE-RSA-AES256-GCM-SHA384
~$
0

Schnell noch was erledigen im alten Jahr

SPF:

$ host -t txt sokoll.com.
sokoll.com descriptive text "v=spf1 mx ~all"
$ host -t spf sokoll.com.
sokoll.com has SPF record "v=spf1 mx ~all"
$

Und gleich noch DKIM:

$ host -T -t txt 20131231._domainkey.sokoll.com.
20131231._domainkey.sokoll.com descriptive text "v=DKIM1\; p=" "MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAngk88Vza1xgQMl3NW1Ok" "sre+WnNcFIsCO5PIgR+Q9P/+o+mt3JkEzjBXv10/WDeYtzH6wuo/7dzyOoU2VuUt" "1Nf+7ae0KnMgAPH0MYiAJ7PcU4q9HOz/xbHqvmI4fBoWg7/0334okQPrKrWls/GC" "Jw2ghPJ7ktjD+rxYWgWiTG8jHWxvjyJWBo6oC6f9fxDxKF0SmMTzeRyEjVH7He94" "kNbvZX2xGu9rVRY8Mi5daTuAGFbpKJrAEDEWlLJmM6eNTSJ+tMl9VGsUQb0w3cAZ" "Im6r3LtLPAXbbBfIKMNONaRHVghgH+RTuTW3NQLemS7E84xdBfpAGpYWAZHmKwU5" "FJI35lUyke7GZClMdnzMlD5FeZKPRTfLir4kihgw4NhwxPQw53yTM0BZgAwqZtnW" "56psHdT6U4X5dPPFd4GZ1OaF2VzwLII2OG9w3NddgytoUVc3OKbwkjtulLJw6aBQ" "9hjxPaTGIPr4pPGmFY7nqFhAwzhirHYO0ioSUTX6LMWPmrpvAiGhpdcelwDkLsx1" "WTV5rEKmzKNPg8wDAePxgcWoO91Z6I2Bza5vUxR4/b2S8dgi7V5M5PhkA9DSd0Dy" "Pc0RAjqfr/oUsXUrru9bxG1/bGSJY8ivf9tOp5LJQxjtpHuTjMURe1uUeeNUJwlJ" "23WQdyk/X8ppgNXnuT4/AwMCAwEAAQ=="
$

Das muß sich jetzt nur noch welt­weit ‘rum­spre­chen — und dann: Nie­der mit den Spam­mern!

0

Aber es gibt mich doch!

Hm, mein post­fix infor­miert virusalert@dokoll.com, daß es virusalert@sokoll.com nicht gibt 🙂

Return-Path: >
X-Original-To: virusalert@sokoll.com
Delivered-To: rainer@sokoll.com
Received: by allinclusive.sokoll.com (Postfix)
	id 7FB311641DA9; Mon, 30 Dec 2013 14:11:28 +0100 (CET)
Date: Mon, 30 Dec 2013 14:11:28 +0100 (CET)
From: MAILER-DAEMON@sokoll.com (Mail Delivery System)
Subject: Undelivered Mail Returned to Sender
To: virusalert@sokoll.com
Auto-Submitted: auto-replied
MIME-Version: 1.0
Content-Type: multipart/report; report-type=delivery-status;
	boundary="4EF5B1641DA4.1388409088/allinclusive.sokoll.com"
Message-Id: 20131230131128.7FB311641DA9@allinclusive.sokoll.com>

This is a MIME-encapsulated message.

--4EF5B1641DA4.1388409088/allinclusive.sokoll.com
Content-Description: Notification
Content-Type: text/plain; charset=us-ascii

This is the mail system at host allinclusive.sokoll.com.

I'm sorry to have to inform you that your message could not
be delivered to one or more recipients. It's attached below.

For further assistance, please send mail to postmaster.

If you do so, please include this problem report. You can
delete your own text from the attached returned message.

                   The mail system

: unknown user: "virusalert@sokoll.com"

--4EF5B1641DA4.1388409088/allinclusive.sokoll.com
Content-Description: Delivery report
Content-Type: message/delivery-status

Reporting-MTA: dns; allinclusive.sokoll.com
Original-Envelope-Id: AM.22478-10.20131230T131128Z@allinclusive.sokoll.com
X-Postfix-Queue-ID: 4EF5B1641DA4
X-Postfix-Sender: rfc822; virusalert@sokoll.com
Arrival-Date: Mon, 30 Dec 2013 14:11:28 +0100 (CET)

Final-Recipient: rfc822; virusalert@sokoll.com
Original-Recipient: rfc822;virusalert@sokoll.com
Action: failed
Status: 5.1.1
Diagnostic-Code: X-Postfix; unknown user: "virusalert@sokoll.com"

--4EF5B1641DA4.1388409088/allinclusive.sokoll.com
Content-Description: Undelivered Message
Content-Type: message/rfc822

Return-Path: 
Received: from localhost (localhost [127.0.0.1])
	by allinclusive.sokoll.com (Postfix) with ESMTP id 4EF5B1641DA4
	for ; Mon, 30 Dec 2013 14:11:28 +0100 (CET)
Content-Type: multipart/mixed; boundary="----------=_1388409088-22478-0"
Content-Transfer-Encoding: 7bit
MIME-Version: 1.0
From: "Content-filter at allinclusive.sokoll.com" 
Date: Mon, 30 Dec 2013 14:11:25 +0100 (CET)
Subject: UNCHECKED contents in mail FROM [31.19.213.1]:57934
 
To: 
Message-ID: 

This is a multi-part message in MIME format...

------------=_1388409088-22478-0
Content-Type: text/plain; charset="UTF-8"
Content-Disposition: inline
Content-Transfer-Encoding: 7bit

No viruses were found.

Content type: Unchecked
Internal reference code for the message is 22478-10/A78uzE8Usbyq

First upstream SMTP client IP address: [31.19.213.1]
  31-19-213-1-dynip.superkabel.de
According to a 'Received:' trace, the message apparently originated at:
  [31.19.213.1], [192.168.1.66] 31-19-213-1-dynip.superkabel.de [31.19.213.1]

Return-Path: 
From: Moritz Sokoll 
Message-ID: 1388409107.5733.2.camel@blacky.sokoll>
Subject: Re: pubkey
Not quarantined.

The message WILL BE relayed to:



------------=_1388409088-22478-0
Content-Type: text/rfc822-headers; name="header"
Content-Disposition: inline; filename="header"
Content-Transfer-Encoding: 7bit
Content-Description: Message header section

Return-Path: 
Received: from [192.168.1.66] (31-19-213-1-dynip.superkabel.de [31.19.213.1])
	by allinclusive.sokoll.com (Postfix) with ESMTPSA id 15E821641DA2
	for ; Mon, 30 Dec 2013 14:11:25 +0100 (CET)
Message-ID: 1388409107.5733.2.camel@blacky.sokoll>
Subject: Re: pubkey
From: Moritz Sokoll 
To: Rainer Sokoll 
Date: Mon, 30 Dec 2013 14:11:47 +0100
In-Reply-To: 7B78A652-6F0E-47CA-AA22-10ADE3E57783@sokoll.com>
References: 1388352398.4816.1.camel@blacky.sokoll>
	 7B78A652-6F0E-47CA-AA22-10ADE3E57783@sokoll.com>
Content-Type: multipart/encrypted; protocol="application/pgp-encrypted";
	boundary="=-KvXiODwMiRpQjc4wbLw4"
X-Mailer: Evolution 3.8.4-0ubuntu1 
Mime-Version: 1.0

------------=_1388409088-22478-0--

--4EF5B1641DA4.1388409088/allinclusive.sokoll.com--

Wor­über soll­te ich mir Gedan­ken machen?

0
© Rainer Sokoll Frontier Theme