@lkh as I said, the idea is simple, getting it working isn't. there are a lot of small working parts that need to be configured right.
like the passwd file needs to have a tab between username and password, where everywhere else a space is enough.
and of course the documentation is spread over at least 20 year old files all over the net.
it's not like many people are enthusiastic about this particular technology (because lets face it, for #usenet#nntp is superior, for email it's #smtp)
Current status: cup of tea in the garden. Reading a 2007 book I bought in 2012, about some software first released in 1995 handling a 1981 protocol that I'm going to use as the cornerstone of my teeny tiny SaaS in 2024.
May we all have such a long-term effect on the world!
If you use #ACM#Email forwarding actively, HEADS UP.
#Google is now enforcing #DKIM policy and as of midnight last night is bouncing email from ACM.ORG addresses that did not come through the ACM #SMTP Relay service.
You need to change your email configuration to use the ACM SMTP Relay service immediately.
Here is a link for how to configure your mail service (including GMAIL) for the Mailroute SMTP Relay.
Oh what joy. Seems like #Mail.app on #iOS no longer allows sending uncompressed 2.2 MB JPEGs.
My #SMTP server advertises 250-SIZE 157286400 (accepts messages up to 150 MB) and base64-encoded 2.2 MB binary would weigh roughly ~2.86 MB.
What non-3rd party options are there to transfer pics from #iPhone to #FreeBSD laptop nowadays?
Every so often, I need to chase down some aspect of email validation (#SPF, #DMKIM, #DMARC, ...). This involves a number of #DNS records and queries, but I may forget just which ones. So here's a quick #SMTP/DNS cheatsheet:
Solved e-mail not working in luckyBackup app with smtp-cli app
I love the free and open source luckyBackup app for doing rsync backups of my user data, as rsync is fast and reliable, and you can easily verify seeing your files that are backed up. I’ve been using luckyBackup for many years now, despite it no lon ...continues
In principle, I support the use of #OAuth2 for #IMAP/#SMTP authentication; I just wish it didn't make it so much harder to use my preferred mail clients for corporate #email accounts because each client's OAuth2 app key needs to be approved by the sysadmin.
Currently cranky that I can't use Mutt with a couple of O365 accounts, and wondering if I can do something sneaky like rip OAuth2 keys out of Thunderbird or something.
The overarching goal is an experimental system to make ActivityPub federation stuff clearer for devs, sysadmins and advanced users.
The documentation is incomplete and the code is really not OK! But they always say it's better to get stuff out the door for others to look at sooner. Maybe it inspires others to think about the Fediverse/ActivityPub in weird new ways!
Timo Longin @login introduces SMTP smuggling, a novel technique to spoof fully SPF-validated emails from various popular domains including @microsoft.com.
Wow. It's incredible nobody found this before. It's the first of its kind. Probably not the last...!
OK folks, I'm in need of a tech assist: Please Boost!
Any Mastodon Postfix and/or ISPConfig wizards out there? I am trying to figure out a problem with the smtp not sending, possibly due to a bad milter/rspamd communication.
Continuing our #EverythingOpen Schedule highlights, we're delighted to present #linux#kernel expert, Dr Peter Chubb, of UNSW Computer Science and Engineering's Trustworthy Systems group, who will cover technologies such as #SMTP and #dovecot - all you need to know to run your own #email server.
Accessing Mastodon and the fediverse via email: https://www.olowe.co/tmp/fedimail.mp4
An experimental #IMAP and #SMTP interface.
I feel like #NNTP#Usenet interface would be more appropriate.
But gotta start somewhere!
Threading and replies work ok too (so far!).
After this week's Spring Break, we return in my #SysAdmin class to dive into #SMTP.
We start with an overview of the ecosystem consisting of MUAs, MTAs, MDAs, Access Agents, and tcpdump a simple manual SMTP session over telnet. We then talk about STARTTLS, MTA-STS and #DANE, before diving into #spam defenses, including #SPF, #DKIM, and #DMARC, all with practical examples, tracking lookups and traffic on the sender and receiver.
📨 Latest issue of my curated #cybersecurity and #infosec list of resources for week #01/2024 is out! It includes the following and much more:
➝ 🇺🇸 🖼️ MAJOR US #MUSEUMS SUFFER #CYBERATTACK FALLOUT
➝ 🇪🇸 📡 A “ridiculously weak“ password causes disaster for #Spain’s No. 2 mobile carrier
➝ 🔓 🧬 #23andMe tells victims it’s their fault that their data was breached
➝ 🔓 💸 #OrbitChain loses $86 million in the last #fintech hack of 2023
➝ 🔓 🅿️ Europe’s Largest Parking App Provider Informs Customers of Data Breach
➝ 💸 🙊 #Crypto wallet founder loses $125,000 to fake airdrop website
➝ 🇺🇸 ⚖️ US Says 19 People Charged Following 2019 Takedown of #xDedic Cybercrime Marketplace
➝ 🇵🇸 🇮🇱 Palestinian Hackers Hit 100 Israeli Organizations in Destructive Attacks
➝ 🔓 ❌ Hacked #Mandiant X Account Abused for #Cryptocurrency Theft
➝ 🇳🇬 🇺🇸 ⚖️ Nigerian hacker arrested for stealing $7.5M from charities
➝ 🇦🇱 📡 Albanian Parliament and One Albania Telecom Hit by Cyber Attacks
➝ 🇺🇸 The FBI is adding more cyber-focused agents to U.S. embassies
➝ 🇺🇸 ⚖️ Former #BreachForums admin to be jailed until Jan. 19 sentencing
➝ 🇺🇸 💰 DOJ Slams #XCast with $10 Million Fine Over Massive Illegal Robocall Operation
➝ 📷 🥸 #Google Contractor Pays Parents $50 to Scan Their Childrens' Faces
➝ 💰 🥸 Google Settles $5 Billion #Privacy Lawsuit Over Tracking Users in 'Incognito Mode'
➝ 🇨🇳 🗳️ #Taiwan to reveal Chinese election interference after Saturday’s vote
➝ 🦠 💰 #Merck Settles #NotPetya Insurance Claim, Leaving #Cyberwar Definition Unresolved
➝ 🦠 🇰🇵 SpectralBlur: New #macOS Backdoor Threat from North Korean Hackers
➝ 🦠 🐍 3 Malicious #PyPI Packages Found Targeting #Linux with Crypto Miners
➝ 🦠 🎠 New Bandook #RAT Variant Resurfaces, Targeting #Windows Machines
➝ 🦠 🎠 UAC-0050 Group Using New #Phishing Tactics to Distribute Remcos RAT
➝ 🦠 🇺🇦 CERT-UA Uncovers New #Malware Wave Distributing OCEANMAP, MASEPIE, STEELHOOK
➝ 🔓 🦠 Free Decryptor Released for #BlackBasta Ransomware
➝ 🐛 📨 #SMTP Smuggling: New Flaw Lets Attackers Bypass Security and Spoof #Emails
➝ 🩹 #Ivanti warns critical EPM #bug lets hackers hijack enrolled devices
➝ 🩹 Google Patches Six Vulnerabilities With First #Chrome Update of 2024
➝ 🩹 🐡 Millions still haven’t patched #Terrapin SSH protocol #vulnerability
Subscribe to the #infosecMASHUP newsletter to have it piping hot in your inbox every week-end ⬇️