15 months agoDisable header syntax checking for now master
Clinton Ebadi [Sun, 23 Aug 2020 23:33:05 +0000 (19:33 -0400)]
Disable header syntax checking for now

System mail is broken since From is unqualified

15 months agoauth: use $tls_in_cipher and not $tls_cipher rebase_492
Clinton Ebadi [Sun, 9 Aug 2020 19:35:04 +0000 (15:35 -0400)]
auth: use $tls_in_cipher and not $tls_cipher

Should have been doing this since we rebased on 4.84.

15 months agoIntegrate changes from 4.92
Clinton Ebadi [Sun, 9 Aug 2020 05:03:50 +0000 (01:03 -0400)]
Integrate changes from 4.92

Biggest change is enabling DNSSEC

20 months agoallow mail from new server, busted
Clinton Ebadi [Sat, 7 Mar 2020 03:09:32 +0000 (22:09 -0500)]
allow mail from new server, busted

3 years agominsky is the mailman server now
Clinton Ebadi [Sun, 2 Dec 2018 21:21:56 +0000 (16:21 -0500)]
minsky is the mailman server now

comment out, since we have only one mail server now (really should be
set by Puppet instead).

3 years agoauthorize new server lovelace
Clinton Ebadi [Wed, 14 Nov 2018 04:57:52 +0000 (23:57 -0500)]
authorize new server lovelace

3 years agoSet IGNORE_SMTP_LINE_LENGTH_LIMIT to avoid rejecting valid mail
Clinton Ebadi [Mon, 5 Nov 2018 18:21:21 +0000 (13:21 -0500)]
Set IGNORE_SMTP_LINE_LENGTH_LIMIT to avoid rejecting valid mail

Config is enforcing limit of 998 octects, but the RFC also recommends
accepting mail with long lines despite not technically being
invalid. This caused some valid member mail to be rejected so we will
ignore line length limits.

3 years agoset hosts_max_try_hardlimit to avoid excessive retries with gmail
Clinton Ebadi [Mon, 5 Nov 2018 05:16:46 +0000 (00:16 -0500)]
set hosts_max_try_hardlimit to avoid excessive retries with gmail

Per the exim manual:

  "...when the hosts_max_try limit is reached, Exim looks down the
  host list to see if there is a subsequent host with a
  different (higher valued) MX. If there is, that host is considered

Gmail seems to return sets of records with different priorities
now (or maybe always did), and exim is now checking all of them
instead of bailing out early.

Set the hardlimit to 3; this lets us make one attempt at delivering to
a lower priority mx without hammering gmail excessively.

3 years agoadd log@hcoop.net to local only delivery list
Clinton Ebadi [Fri, 26 Oct 2018 02:56:47 +0000 (22:56 -0400)]
add log@hcoop.net to local only delivery list

only hcoop servers may send mail to the new log alias

3 years agoadd shelob.hcoop.net
Clinton Ebadi [Thu, 25 Oct 2018 00:26:20 +0000 (20:26 -0400)]
add shelob.hcoop.net

3 years agorelay mailman lists to mccarthy
Clinton Ebadi [Sun, 14 Oct 2018 23:05:37 +0000 (19:05 -0400)]
relay mailman lists to mccarthy

minsky has not yet taken over mailman lists

3 years agouse minsky for spamd
clinton_admin [Fri, 12 Oct 2018 04:43:29 +0000 (00:43 -0400)]
use minsky for spamd

spamassassin is only listening on private interface, use that instead of

3 years agoenable ipv6 for incoming connections
Clinton Ebadi [Sun, 8 Jul 2018 03:10:18 +0000 (23:10 -0400)]
enable ipv6 for incoming connections

provider blocks outgoing ipv6, but we can receive mail on ipv6 so
enable it.

3 years agoget-token: call aklog when getting initial tickets
Clinton Ebadi [Mon, 23 Apr 2018 22:50:51 +0000 (18:50 -0400)]
get-token: call aklog when getting initial tickets

krenew will renew or acquire tokens, kinit does not acquire tokens.

Was causing first run of get-token to not actually get tokens.

3 years agoadd minsky.hcoop.net
root [Mon, 23 Apr 2018 05:28:58 +0000 (01:28 -0400)]
add minsky.hcoop.net

new primary mail hub

3 years agospamcheck: fix cwd rebase_489
root [Mon, 23 Apr 2018 05:27:32 +0000 (01:27 -0400)]
spamcheck: fix cwd

/tmp/exim4 no longer exists, change to token directory instead.

3 years agopreserve KRB5CCNAME when clearing environment
Clinton Ebadi [Sun, 22 Apr 2018 10:45:22 +0000 (06:45 -0400)]
preserve KRB5CCNAME when clearing environment

needed so tokens can be used

3 years agoMerge branch 'upstream' into rebase_489
Clinton Ebadi [Sun, 22 Apr 2018 10:37:11 +0000 (06:37 -0400)]
Merge branch 'upstream' into rebase_489

Debian upstream config for exim 4.89


3 years agoUpdate base config to exim 4.89 upstream
Clinton Ebadi [Sun, 22 Apr 2018 10:10:07 +0000 (06:10 -0400)]
Update base config to exim 4.89

3 years agoadd new servers gibran and marsh
Clinton Ebadi [Sun, 22 Apr 2018 09:54:24 +0000 (05:54 -0400)]
add new servers gibran and marsh

3 years agoincrease spam message size limit
Clinton Ebadi [Sun, 22 Apr 2018 09:53:24 +0000 (05:53 -0400)]
increase spam message size limit

large spam was getting skipped due to a low default value for max
message size.

3 years agoget-token: use sudo instead of su when switching user
Clinton Ebadi [Sun, 22 Apr 2018 09:52:29 +0000 (05:52 -0400)]
get-token: use sudo instead of su when switching user

su is losing tokens, sudo is not

3 years agocheck local submitter
Clinton Ebadi [Sun, 22 Apr 2018 09:51:24 +0000 (05:51 -0400)]
check local submitter

It's been enabled on mccarthy for a couple of years now, doesn't seem
to have any ill effect anymore.

3 years agomisc updates from mccarthy config
Clinton Ebadi [Sun, 22 Apr 2018 09:51:08 +0000 (05:51 -0400)]
misc updates from mccarthy config

3 years agodeny on spf failure
Clinton Ebadi [Sun, 22 Apr 2018 09:49:24 +0000 (05:49 -0400)]
deny on spf failure

hosts without spf nowadays are no good

6 years agoImprove get-token reliability
Clinton Ebadi [Tue, 19 May 2015 06:21:26 +0000 (02:21 -0400)]
Improve get-token reliability

On modern systems, there are issues with get-token calling itself when
invoked as root. Update routers to normalize where get-token is called
so that it is always called after seteuid() in the delivery process.

This is still not ideal: exim has to run without a PAG, and there's no
guarantee the directory / environment options will be run after
changing to the delivery user in the future.

Add `check_owner = false' to appendfile routers. We have patched exim
to support delivery into afs because it is overly paranoid about
chown() failures. Patch uses check_owner flag to allow chown() failure
since exim will ignore the owner in other cases anyway when it is

Move tokens stashes to /var/local/mail-tokens rather than storing in

Leave some extra debugging in get-token for now.

6 years agoLimit number of MXes tried in one delivery attempt
Clinton Ebadi [Tue, 19 May 2015 06:15:11 +0000 (02:15 -0400)]
Limit number of MXes tried in one delivery attempt

At least Google lists a lot of MXes, and it is probably a bad idea to
rapid fire hit all them and get rejected for attempting to forward a
spam mail on behalf of a member. Try two at once instead (for
non-gmail hosts, we retry very quickly anyway).

6 years agotemporarily set spf failure to warn while resolving member problems
Clinton Ebadi [Tue, 19 May 2015 06:13:08 +0000 (02:13 -0400)]
temporarily set spf failure to warn while resolving member problems

At least one member has been forwarding mail offsite and then back to
hcoop, need to adjust some MX settings and see how best to support the
case where a member wants to have a trusted relay for their domain to
hcoop (we handle routing to trusted relays for members, might be
reasonable to support the reverse rather than forcing them to expand
their MX if they only want to relay to our mail servers).

6 years agoDisable ipv6, ident lookups, and smtp sync enforce
Clinton Ebadi [Tue, 19 May 2015 06:11:24 +0000 (02:11 -0400)]
Disable ipv6, ident lookups, and smtp sync enforce

ident checks are pointless and just caused the banner to appear more
slowly -- now we can perform an entire mail transaction in under two
seconds vs 7-8s just for the banner to appear on deleuze.

exim was trying to contact ipv6 hosts, disabled ipv6 until we have

Disabling smtp sync enforcement -- hopefully will not help any
spammers connect, and it allows thunderbird to probe our server
without failing resulting in a better member experience.

6 years agoListen on smtps and submission ports
Clinton Ebadi [Tue, 19 May 2015 06:08:24 +0000 (02:08 -0400)]
Listen on smtps and submission ports

6 years agoUpdate retry / load limiting configuration
Clinton Ebadi [Tue, 19 May 2015 06:07:50 +0000 (02:07 -0400)]
Update retry / load limiting configuration

We still need to do a bit more to prevent failures to forward for
members from bouncing externally.

 * Updated load limits from deleuze, shouldn't cause any problems on
   mccarthy so keeping them for now.
 * Remove old greylisting retries.
 * Expiring retry data and setting the max interval to 4h are probably
   not great ideas and were likely set to work around problems in the
   past. Leave them at their defaults instead.
 * Retry less often for local mail. Trying every minute for four days
   is insane, retry at 1 minute intervals for 10 minutes in case of
   temporary afs problems, and then back off slightly less quickly
   than the defaults.
 * Back off and fail more quickly when gmail sends us a 4xx error
   after DATA. Generally this means gmail has detected the message is
   spam and will never accept it.

6 years agoUse hopper for spamchecking
Clinton Ebadi [Tue, 19 May 2015 05:51:14 +0000 (01:51 -0400)]
Use hopper for spamchecking

6 years agoSend all lowuid mail to logs@
Clinton Ebadi [Tue, 19 May 2015 05:51:00 +0000 (01:51 -0400)]
Send all lowuid mail to logs@

This eliminates most of the /etc/aliases file

6 years agoAllow mailman transport to forward mail to actual mailman host
Clinton Ebadi [Tue, 19 May 2015 05:50:13 +0000 (01:50 -0400)]
Allow mailman transport to forward mail to actual mailman host

Mailman 2.x can only live on one machine, add HCOOP_MAILMAN_RELAY_HOST
macro to allow relaying to the mailman host if we're not it.

6 years agoUse hcoop tls certificate instead of self-signed default
Clinton Ebadi [Tue, 19 May 2015 05:48:14 +0000 (01:48 -0400)]
Use hcoop tls certificate instead of self-signed default

6 years agoAllow relaying for deleuze, fritz, and mccarthy
Clinton Ebadi [Tue, 19 May 2015 05:46:51 +0000 (01:46 -0400)]
Allow relaying for deleuze, fritz, and mccarthy

6 years agoKill obsolete dc_visiblename
Clinton Ebadi [Tue, 19 May 2015 05:46:30 +0000 (01:46 -0400)]
Kill obsolete dc_visiblename

Visible name is taken from /etc/mailname now

6 years agoVerify local senders, block senders using spamhaus, enforce SPF
Clinton Ebadi [Tue, 19 May 2015 05:45:48 +0000 (01:45 -0400)]
Verify local senders, block senders using spamhaus, enforce SPF

Local sender verification is warn only for the time being since many
web apps are currently sending messages from invalid
addresses (e.g. moin uses noreply@$domain).

6 years agoOnly allow trusted relays to send mail to logs alias
Clinton Ebadi [Tue, 19 May 2015 05:43:09 +0000 (01:43 -0400)]
Only allow trusted relays to send mail to logs alias

Spammers were directly sending spam to logs@, this alias is for
internal use only so just block all external senders.

6 years agoSupport plus-addressing since wildcards are deprecated
Clinton Ebadi [Tue, 19 May 2015 05:30:34 +0000 (01:30 -0400)]
Support plus-addressing since wildcards are deprecated

Added several years ago but left uncommitted.

6 years agoAdd missing debug prints in router/transports
Clinton Ebadi [Tue, 19 May 2015 05:26:02 +0000 (01:26 -0400)]
Add missing debug prints in router/transports

6 years agoIntegrate sensible changes from upstream Debian 4.84
Clinton Ebadi [Tue, 19 May 2015 05:24:46 +0000 (01:24 -0400)]
Integrate sensible changes from upstream Debian 4.84


The last ~7 years of Debian changes bring things like working SPF and
DKIM checking.

6 years agoRemove dead code
Clinton Ebadi [Tue, 19 May 2015 04:43:43 +0000 (00:43 -0400)]
Remove dead code

Temporary workarouns from 2007, devnull transport from before current
get-token solution, unused email-addresses file, domtool generated

13 years agomail4root: Restrict to unix_domains.
mwolson_admin [Wed, 24 Sep 2008 05:07:24 +0000 (01:07 -0400)]
mail4root: Restrict to unix_domains.

This prevents mail sent to root@someuserdomain.com from piling up in

13 years agoMake ACL lookup not error out. Add special case for wort@lists.hcoop.net.
mwolson_admin [Thu, 28 Aug 2008 03:17:11 +0000 (23:17 -0400)]
Make ACL lookup not error out.  Add special case for wort@lists.hcoop.net.

13 years agoFix ACL lookups for mailman bounce messages.
mwolson_admin [Thu, 28 Aug 2008 02:42:06 +0000 (22:42 -0400)]
Fix ACL lookups for mailman bounce messages.

13 years agoAdd mail.hcoop.net to relay_nets so that roundcube works.
mwolson_admin [Wed, 13 Aug 2008 22:48:02 +0000 (18:48 -0400)]
Add mail.hcoop.net to relay_nets so that roundcube works.

13 years agoAdd unix_domains to several places where local_domains are used.
mwolson_admin [Wed, 13 Aug 2008 21:54:37 +0000 (17:54 -0400)]
Add unix_domains to several places where local_domains are used.

This fixes some weirdness that occurs when hcoop.net is not present in
local_domains, and adds a guarantee that even if domtool screws up badly,
we can still deliver to USER@hcoop.net.

13 years agoAdd rosasharn to the fast retry list.
mwolson_admin [Wed, 13 Aug 2008 21:53:17 +0000 (17:53 -0400)]
Add rosasharn to the fast retry list.

13 years agoRoutine update.
root [Tue, 17 Jun 2008 04:26:21 +0000 (00:26 -0400)]
Routine update.

13 years agoexim4/get-token: Fix some edge cases, log weirdness better.
root [Sun, 3 Feb 2008 02:36:07 +0000 (21:36 -0500)]
exim4/get-token: Fix some edge cases, log weirdness better.

13 years agoUpdates to Exim
root [Tue, 18 Dec 2007 19:56:17 +0000 (14:56 -0500)]
Updates to Exim

13 years agoNew wildcard aliases handler for Exim
root [Wed, 12 Dec 2007 07:31:41 +0000 (02:31 -0500)]
New wildcard aliases handler for Exim

13 years agoMake mailman and exim work with aliased domains, kind of
root [Sat, 8 Dec 2007 06:13:03 +0000 (01:13 -0500)]
Make mailman and exim work with aliased domains, kind of

13 years agoGet saslauthd and Exim really working this time
root [Wed, 21 Nov 2007 01:32:17 +0000 (20:32 -0500)]
Get saslauthd and Exim really working this time

13 years agoFix Mailman bounce reception
root [Tue, 20 Nov 2007 23:52:52 +0000 (18:52 -0500)]
Fix Mailman bounce reception

13 years agoRemove directives that were causing Exim TLS not to work on port ssmtp
root [Tue, 20 Nov 2007 23:28:20 +0000 (18:28 -0500)]
Remove directives that were causing Exim TLS not to work on port ssmtp

13 years agoGet Exim authentication working!
root [Tue, 20 Nov 2007 23:03:39 +0000 (18:03 -0500)]
Get Exim authentication working!

13 years agoGet Exim TLS working
root [Tue, 20 Nov 2007 22:47:25 +0000 (17:47 -0500)]
Get Exim TLS working

13 years agoMailman machinations
root [Wed, 14 Nov 2007 23:28:31 +0000 (18:28 -0500)]
Mailman machinations

13 years agoGet vmail working!
root [Mon, 5 Nov 2007 20:40:35 +0000 (15:40 -0500)]
Get vmail working!

13 years agoGo back to exim.dat for Exim, get virtual delivery almost working
root [Thu, 1 Nov 2007 07:09:50 +0000 (03:09 -0400)]
Go back to exim.dat for Exim, get virtual delivery almost working

13 years agoUse userdb.dat rather than exim.dat for Exim
root [Thu, 1 Nov 2007 02:30:52 +0000 (22:30 -0400)]
Use userdb.dat rather than exim.dat for Exim

13 years agoGet mail80.hcoop.net working
root [Mon, 22 Oct 2007 00:52:45 +0000 (20:52 -0400)]
Get mail80.hcoop.net working

13 years agodeliver exim paniclog email to postmaster; fix deliver-once bug
root [Sun, 21 Oct 2007 21:36:57 +0000 (17:36 -0400)]
deliver exim paniclog email to postmaster; fix deliver-once bug

13 years agoAdd exim deliver-once script, alias mail to postmaster
root [Fri, 19 Oct 2007 18:11:14 +0000 (14:11 -0400)]
Add exim deliver-once script, alias mail to postmaster

13 years agoMake spam-checking in Exim really work
root [Thu, 27 Sep 2007 03:10:02 +0000 (23:10 -0400)]
Make spam-checking in Exim really work

13 years agoMake get-token deal with case where it is called as root
root [Sun, 23 Sep 2007 02:49:58 +0000 (22:49 -0400)]
Make get-token deal with case where it is called as root

13 years agoTry adding process id to exim get-token credential cache
root [Wed, 12 Sep 2007 02:59:40 +0000 (22:59 -0400)]
Try adding process id to exim get-token credential cache

13 years agoFix mail delivery to directories, forward bugzilla-daemon mail to bugzilla
root [Tue, 11 Sep 2007 21:43:18 +0000 (17:43 -0400)]
Fix mail delivery to directories, forward bugzilla-daemon mail to bugzilla

13 years agoMake exim use .public/.forward instead of .forward
root [Tue, 11 Sep 2007 12:39:48 +0000 (08:39 -0400)]
Make exim use .public/.forward instead of .forward

13 years agoUpdate exim4 auth config to handle LOGIN
root [Mon, 10 Sep 2007 14:07:19 +0000 (10:07 -0400)]
Update exim4 auth config to handle LOGIN

13 years agoexim4/get-token: Comment-out tokens command since we've fixed the problems
root [Wed, 29 Aug 2007 19:24:10 +0000 (15:24 -0400)]
exim4/get-token: Comment-out tokens command since we've fixed the problems

13 years agoMake apache2 restart work
root [Fri, 22 Jun 2007 17:57:26 +0000 (13:57 -0400)]
Make apache2 restart work

* exim4/get-token: Insert "tokens" info for debugging purposes.

* init.d/apache2: Move stopping and starting of k5start into their own
  functions, and make restart work.

13 years agoSend changetrack mail to special box. Use non-domtool /etc/aliases.
root [Thu, 21 Jun 2007 18:53:01 +0000 (14:53 -0400)]
Send changetrack mail to special box.  Use non-domtool /etc/aliases.

* aliases: Track.

* default/changetrack (PARAMS): Send mail to changetrack rather than root.

* exim4/conf.d/router/400_exim4-config_system_aliases: Use /etc/aliases.

* exim4/update-exim4.conf.conf (dc_other_hostnames): Add mire.hcoop.net.

13 years agoTrack alternatives, init.d, rcN.d, and much more
root [Thu, 21 Jun 2007 18:19:27 +0000 (14:19 -0400)]
Track alternatives, init.d, rcN.d, and much more

13 years agoUntrack apache2/vhosts. Separate system and hosted aliases.
root [Thu, 21 Jun 2007 18:00:01 +0000 (14:00 -0400)]
Untrack apache2/vhosts.  Separate system and hosted aliases.

13 years agoGet mail delivery to logs@mire.hcoop.net and logs@deleuze.hcoop.net working
root [Thu, 21 Jun 2007 14:46:33 +0000 (10:46 -0400)]
Get mail delivery to logs@mire.hcoop.net and logs@deleuze.hcoop.net working

* crontab (MAILTO): Send mail to logs@deleuze.hcoop.net rather than
  logs@localhost, for easier sorting.

* denyhosts.conf (ADMIN_EMAIL): Ditto.

* exim4/conf.d/main/01_exim4-config_listmacrosdefs (unix_domains): Add
  mire.hcoop.net so that mire relay to local aliases can work.

* exim4/conf.d/router/400_exim4-config_system_aliases (system_aliases):
  Make this just look up local_part.  Use /etc/aliases.local,

* exim4/conf.d/router/420_exim4-config_hosted_aliases: New file that
  implements delivery to hosted domains.  This does a full local_name and
  domain lookup.

* exim4/conf.d/router/450_exim4-config_default_aliases: Write better
  description of what this does.

13 years ago* apache2/conf.d/home.conf: Remove, since this duplicates
root [Thu, 21 Jun 2007 02:54:11 +0000 (22:54 -0400)]
* apache2/conf.d/home.conf: Remove, since this duplicates

* apache2/sites-available/default: Migrate, but comment out, some

* default/hdparm, default/hotplug: Remove, since no longer installed.

* exim4/conf.d/main/01_exim4-config_listmacrosdefs: Add new domainlist
  unix_domains, which are the only domains that we permit delivery of
  local mail to, after resolving aliases.

* exim4/conf.d/router/300_exim4-config_real_local (real_local): Use

* exim4/conf.d/router/400_exim4-config_system_aliases (system_aliases):
  Look up both local_part and domain, not just local_part.

* exim4/conf.d/router/550_exim4-get_token: Remove, since it isn't used.

* exim4/conf.d/router/600_exim4-config_userforward (userforward): Use

* exim4/conf.d/router/700_exim4-config_procmail (procmail): Ditto.

* exim4/conf.d/router/800_exim4-config_maildrop (maildrop): Ditto.

* exim4/conf.d/router/900_exim4-config_local_user (local_user): Ditto.

* init.d/courier-authdaemon: Make sure this never runs.

* init.d/courier-imap, init.d/courier-imap-ssl, init.d/courier-pop:
  init.d/courier-pop-ssl: Ditto.

* mailman: Record file permissions.  Yay, git!

* pam.d/common-account: Add emergency line.

* pam.d/common-auth: Ditto.

* spamassassin/local.cf: Set report_safe to 0 to get rid of pointless

* sudoers: Temporarily set us to ADMIN_NOPASS.

13 years agomwolson: Make exim use /daemon token rather than /mailfilter
root@deleuze.hcoop.net [Wed, 6 Jun 2007 12:10:21 +0000 (08:10 -0400)]
mwolson: Make exim use /daemon token rather than /mailfilter

13 years agomwolson: Get procmail delivery working
root@deleuze.hcoop.net [Tue, 8 May 2007 02:44:21 +0000 (22:44 -0400)]
mwolson: Get procmail delivery working

13 years agomwolson: Test procmail delivery
root@deleuze.hcoop.net [Sun, 6 May 2007 21:51:17 +0000 (17:51 -0400)]
mwolson: Test procmail delivery

14 years agomwolson: Relay email from mire
root@deleuze.hcoop.net [Mon, 23 Apr 2007 12:31:44 +0000 (08:31 -0400)]
mwolson: Relay email from mire

14 years agomwolson: Use U/US/USER style paths for exim mail delivery
root@deleuze.hcoop.net [Mon, 16 Apr 2007 02:12:17 +0000 (22:12 -0400)]
mwolson: Use U/US/USER style paths for exim mail delivery

14 years agostable->sarge and other miscellanea
root@deleuze.hcoop.net [Sun, 15 Apr 2007 18:21:21 +0000 (14:21 -0400)]
stable->sarge and other miscellanea

14 years agoCatch up on bind and keytab changes made by others
root@deleuze.hcoop.net [Fri, 6 Apr 2007 02:25:19 +0000 (22:25 -0400)]
Catch up on bind and keytab changes made by others

14 years agomwolson: Mail delivery works now. Yay!
root@deleuze.hcoop.net [Sun, 18 Mar 2007 05:55:35 +0000 (01:55 -0400)]
mwolson: Mail delivery works now.  Yay!

Add some truly awful hacks to all of the transports which allow pipes,
maildir delivery, or writing to some user-controlled file so that AFS
tokens can be retrieved at the right time.

14 years agomwolson: Make progress on email delivery
root@deleuze.hcoop.net [Sat, 17 Mar 2007 05:27:19 +0000 (01:27 -0400)]
mwolson: Make progress on email delivery

* exim4/conf.d/main/01_exim4-config_listmacrosdefs
  (MAILDIR_HOME_MAILDIR_LOCATION): Don't include $local_part here, in
  case it gets expanded too early.

* exim4/conf.d/router/550_exim4-get_token (get_token): Simplify to not
  use pagsh.openafs.

* exim4/conf.d/transport/30_exim4-config_maildir_home (maildir_home): Add
  $local_part here.  Set current_directory to "/" to avoid chdir errors.

* exim4/get-token: Various changes by megacz.

* init.d/apache2 (NO_START): Changes by others.

14 years agomwolson: Update exim4 from backports
root@deleuze.hcoop.net [Mon, 5 Mar 2007 00:24:42 +0000 (19:24 -0500)]
mwolson: Update exim4 from backports

14 years agoMiscellaneous apache and exim config by adam and cclausen
root@deleuze.hcoop.net [Mon, 19 Feb 2007 03:04:25 +0000 (22:04 -0500)]
Miscellaneous apache and exim config by adam and cclausen

14 years agomwolson: Small docfix
root@deleuze.hcoop.net [Wed, 14 Feb 2007 02:00:35 +0000 (21:00 -0500)]
mwolson: Small docfix

14 years agomwolson: Provide very basic list of domains for Exim until Adam fills them in
root@deleuze.hcoop.net [Wed, 14 Feb 2007 00:24:25 +0000 (19:24 -0500)]
mwolson: Provide very basic list of domains for Exim until Adam fills them in

14 years agomwolson: Only get token once, rather than 1-3 times
root@deleuze.hcoop.net [Wed, 14 Feb 2007 00:07:30 +0000 (19:07 -0500)]
mwolson: Only get token once, rather than 1-3 times

14 years agomwolson: First attempt at delivering to AFS
root@deleuze.hcoop.net [Tue, 13 Feb 2007 22:46:21 +0000 (17:46 -0500)]
mwolson: First attempt at delivering to AFS

14 years agoUpdates by other admins
root@deleuze.hcoop.net [Tue, 13 Feb 2007 20:49:40 +0000 (15:49 -0500)]
Updates by other admins

14 years agomwolson: Initial migration of exim4 settings to deleuze
root@deleuze.hcoop.net [Sat, 27 Jan 2007 09:27:37 +0000 (04:27 -0500)]
mwolson: Initial migration of exim4 settings to deleuze

* exim4/update-exim4.conf.conf: Set up.  Configure dc_visiblename here,
  which is used to set qualify_domain later on.

[other files are relative to exim4/conf.d/]

* acl/30_exim4-config_check_rcpt: Add recommended lines from
  /usr/share/doc/mailman/README.EXIM.gz so that bounce messages get
  through, even if they are from a malformed address

* acl/40_exim4-config_check_data: Use built-in spam checker rather than
  running email through spamc.  This should make the configuration much

* auth/30_exim4-config_examples: Migrate userdb_plain.  Disable plain.

* main/01_exim4-config_listmacrosdefs: Don't define domains here -- we
  will do that in a separate file to make things easier for domtool.  Add
  tls_cipher to MAIN_LOG_SELECTOR as per old config.  Use
  file_transport=address_file for /etc/aliases delivery, as per old

* main/10_domtool-domains: New file where the domain list will be written
  to by domtool.

* main/20_mailman-macros: Migrate mailman configuration settings here.
  Use the longer option names for clarity.

* router/310_exim4-config_virtual_user: New file that routes mail for
  hosted domains.  From old config.

* router/320_exim4-config_mailman: New file that routes mail for mailing
  lists.  From old config.

* router/450_exim4-config_default_aliases: New file containing
  default_aliases rule for various domains; mostly seems to be used by
  Adam.  From old config.

* transport/10_exim4-config_mailman: New file containing the transport
  for mailman lists.  From old config.  Use the aforementioned longer
  option names.

* transport/40_exim4-config_virtual_delivery: New file containing
  transport used to deliver mail to virtual mailboxes.  From old config.
  Should we be using a postgresql/mysql database here?  It's what most
  other sites seem to do, according to Google.

14 years agomwolson: Upgrade exim4 packages to equivalent of version in debian testing
root@deleuze.hcoop.net [Fri, 19 Jan 2007 22:42:19 +0000 (17:42 -0500)]
mwolson: Upgrade exim4 packages to equivalent of version in debian testing

14 years agoInitial import
root@deleuze.hcoop.net [Mon, 8 Jan 2007 01:07:37 +0000 (20:07 -0500)]
Initial import