@girish hey forgot to mention.
My IP is not listed but the AS network is declared as spammy.

While I contacted OVH for this and I respect their answers, they said they are not willing and paying for deblacklisting their network because it like an hostage situation.

So I asked them to change the IP of my instance, let's see.

@necrevistonnezr not sure about Roundcube as I moved over to SnappyMail, but I think it is similar.
Under Filters you can add a sieve script (maybe they call it 'custom')

And yes I think discard with message is equivalent. But not an expert.

Due to the excellent spamassassin rules posted here https://forum.cloudron.io/post/30512 by @d19dotca, I am not needing to use sieve in SnappyMail. But here is the script which I use in Protonmail. The from can be changed to to I guess.

NB : I put the reject part of the rule before the spam test. Arguably I should have a return after the reject - not sure why I did not do that.

require ["include", "environment", "variables", "relational", "comparator-i;ascii-numeric", "spamtest", "reject", "fileinto", "imap4flags"]; if address :contains "from" ["spammer@blah.co.uk", "spammer.com"] { reject "Spam"; } if spamtest :value "ge" :comparator "i;ascii-numeric" "5" { fileinto "spam"; } if exists "list-unsubscribe" { addflag "\\List"; } # Generated: Do not run this script on spam messages if allof (environment :matches "vnd.proton.spam-threshold" "*", spamtest :value "ge" :comparator "i;ascii-numeric" "${1}") { return; }

@girish said in Mail server - How to expose ports for internal network:

@ChicagoGregg said in Mail server - How to expose ports for internal network:

Is it possible to expose its ports (25,465,587) to the local network so that mail can be sent (relayed) through the mail server and let it handle it going outbound? Figuring that Cloudron has this capability, and I'd only have a few emails per day requiring this, it should be able to provide this.

If I understand correctly, you want to relay mail via another mail server. If so, just sent the relay using the External SMTP relay configuration.

I am not quite following the part about exposing port 25/476/587 though. These are already exposed on the server. You have to configure your router/firewall to port forward those ports to the Cloudron internal IP.

Sorry for the tardy reply here. Thanks for both of your replies @subven and @girish .

Originally, I was simply wanting to do something like

Home Network (App sends email) -> Cloudron (on home network) accepts mail for relay from local home network 10.x.x.x -> sends to server through Internet connection (to my already-configured mail relay server, External w/ authentication)

I was looking for an unauthenticated relay on the home network.

Well, I suppose that Cloudron can't provide an unauthenticated relay point. So, I suppose the workaround is simply to configure a user and relay using authentication using a domain that is configured.

I'm fine going this route... And I get why it's for that reason with security. 🙂

Thanks for the help!

-gregg

@d19dotca I can't believe I missed that. Literally read right past it. Thank you!

@girish Hmm, that didn't match the behaviour I saw. I ended up with two separate SPF records in Hetzner. One that I had already set up from my own DNS setup, and one added from Cloudron - which didn't contain the content of my own record. Thankfully it wasn't difficult to fix, once I read up on it.

@manngobaum you can try unchecking 'Use TLS/SSL'. Port 587 is the so called "opportunistic TLS" (STARTTLS) and each UI means different things when they say "Use TLS".

You can also try port 465 with the TLS box checked. See https://docs.cloudron.io/email/#inbound-ports

@girish that would be the best way, actually - having error codes from the service provider would help me to understand the DNS records are missing even earlier 🙂

Mail queue is exposed in 7.3, so you should be able to clean such files from the UI in the next release.

@humptydumpty Thank you, that has actually worked!

@JOduMonT you're right. "official" was the wrong wording. What I meant was use is to use the notes functionality of Nextcloud and then use an app on ios that is designed to sync with it.

Which honestly is a bit of a pity since most note sync applications are markdown or plaintext, while systems like Apple Notes and Microsoft Onenote allow for more functionality (multimedia, cross application integration and stylus support).

Investigating this in the support ticket, will update this post accordingly when we find the root cause.

@girish Then just expose a button for the Mail admins to be able to clear the queue

@girish That issue appears to have happened again two days ago... So originally on May 19th, but most recently I see occurrences of Temporary translation failure on May 20, 2022 around 11:50 PM Pacific Time. So it's definitely an infrequent issue, but appears to be recurring periodically.

@girish said in Email / Dovecot, possible data corruption:

Someone has written a script too - https://blog.alan.lt/2020/01/fix-emails-date-time-after-migration-to.html

Ah yes, that's the script I used. 😉

@girish said in Email / Dovecot, possible data corruption:

I will investigate more tomorrow. Maybe we can fix up mail data timestamps post restoring.

Thanks Girish! Definitely seems like this is a low priority issue given that nobody else using Cloudron has run into this yet, but its also likely something that will come up again as Cloudron grows with more users, and would be great to see that handled in Cloudron automatically, making things easier for the admin users. 🙂

Thanks guys, I check out those resources provided ❤

@3246 said in Backup mail service and primary MX:

I added made sure the record includes "v=spf1 mx..." but it's still showing as erroring in Cloudron

Sometimes it takes a while to propagate the change in DNS, so you may need to check it a few hours later.

@JLX89 said in Cloudflare + PTR (rDNS) Settings Compatibly:

Does anyone know if there is a way around this and enable proxying on example.tld with the mail server at the same location?

AFAIK, this is not possible since Cloudflare does not support proxying mail.

We are using Vultr for the VPS, so rDNS needs to be setup to reflect the server host (EX: example.tld), if pushing the mail server to mail.example.tld, the rDNS would need to be updated to that.

Correct. You have to set the rDNS to the name of the mail server in Vultr.

@girish Thanks about that. That was the fix. Fastmail already whitelist it the domain and we are ready to go. Thanks!

@matthewdykstra it's turned has most features off by default. Why do you think it takes up memory/resources ?

@murgero As i said, Preside does all what I need and handles all data (including a full-text search index) on device, only.

@atridad said in Interesting read on self-hosting email, with perhaps some tidbits that'd be helpful for Cloudron in the future (i.e. monitoring):

the main difference is where the emails are stored when not in transit

This was the case up until a few years ago. Nowadays a large part is deliverability.

Every system on the internet can theoretically sent mails to any other system and this means that there are a lot of people actually using this to send spam. This has caused large providers to block out entire ip ranges and datacenters. So if you don't want to silently end up in the junk folders of gmail and office 365, your best bet is to send through them as well. Its not impossible to host your own mail, and there are still mail relays you could use to improve your chances, but it is definitely something to consider when self hosting mails.

@girish The MX record resolves to an ISPs server (Strato): smtpin.rzone.de But I don't know if this is particular timeout is domain specific or applies to all of strato. I'm worried it might be the former, at least protocol wise at the point of the delay the recipient domain is known and the server could apply domain specific settings for the backoff/delay.

@scooke Solution was deleting a buch of files from path:

/home/yellowtent/boxdata/mail/haraka-queue

that files were created past Jan-06.

On that day we had an account hijacked that started sending out spam. I deactivated the account and it was working fine until past feb-16th, when email service started to crash.

HTH.

@robi yes!

In the Postfix world this feature is called "always bcc", but it does not look like something like this exists out of the box in Haraka.

@micmc said in Configure Haraka for Mailman3:

https://www.phplist.org/

Thanks for the recommendation. PHPList looks like a "campaign" mailing list to send to external people. This is definitely useful but not quite what we were after.

More we are looking for mailing lists for internal people that maintains nice archives and people inside our group can subscribe to our de-subscribe to. Eg sales@ourconmpany.com, devops@ourcompany.com, expenses@ourcompany.com, design@ourcompany.com, marketing@ourcompany.com, etc. And so as people our interested in some of these topics they get naturally filtered to the different email lists... and we have internal archives of these lists. It works quite well as we currently have it. I just want to bring this sort of thing over to a cloudron server!

@girish Yes there are definitely more than 20 events, and the Next page still works to load more, it's just that dropdown to change how many records are shown at once which has an issue. I just updated to 7.0.3 so will try soon, unfortunately it seems the email logs were cleared after update, so there's no records in there at all now.

@d19dotca great catch! I was a bug in the client side code. It is fixed now and will be part of next release.

@eddowding If you like you can patch the file in /home/yellowtent/box/src/mail.js and systemctl restart box.