• Go to the sitechangeadmin-page
• click on disable spamassassin for all domain users

All settings will be lost (maximum accounts, max quota, max message size, ...) or set to 0.Perhaps something went wrong at the last submission (or was broken already before): 7114826

Running this query (https://github.com/avleen/vexim2/blob/master/vexim/sitechangesubmit.php#L59-L73) makes no sense if the user wants to disable spamassassin. The disable-spamassassin button activates a different form and all the variables won't be submitted.

I'm not sure if I understood this code correctly. Could you verify @Kami-no @rimas-kudelis ?

Is there any reason why DKIM hasn't been touched so far? I'm pondering converting my text based dkim lookups into SQL lookups to integrate with vexim but before I dive in... :)

We have disabling already, now we should allow enabling it globally as well. See #66.

In README.md, we currently instruct our users to create a system (low-uid) user for Vexim. This might not be such a good idea after all (e.g. Dovecot disallows logging in for users with uid lower than 500 by default – and for a good reason!). I think we should update the readme to instruct how to create a user with higher uid by by default, e.g. with uid between 500 and 999, or something.

At least in Debian, normal users get uid's starting from 1000. We probably want our user to be a bit special, but not as special as to have a really low uid.

I tried to upgrade my DB from older vexim2 version. There are really some different tables in new DB. After using --act=migratemysql option new DB was created successfully with all data from old DB, but cyrillic symbols into the table fields was totally broken, when the new DB was also at UTF8. I fixed this by adding some strings to script. Here's some code at line about 550:
if ($dbtype eq "mysql") {

$mydbh = DBI->connect("DBI:mysql:database=mysql;host=localhost", "$superuser", "$superpass", {'RaiseError' => 1});
$mydbh->do("set character set utf8");
$mydbh->do("set names utf8");
create_mysqldb();
create_mysqltables();
sleep 1;
add_mysqlveximuser();
add_siteadminuser();
print "Database created successfully!\n\n";
}

I found several discussions about dashes in e-mail-addresses (e.g. http://comments.gmane.org/gmane.mail.exim.vexim.devel/1973). In the standard-configuration

local_part_suffix = -*
local_part_suffix_optional

is active. A nice thing for such a suffix is that you can easily use different addresses for specific purposes (e.g. [email protected]). But it is easy to guess your real address and the address for other purposes ([email protected]).

In the past, I used random addresses for different services (e.g. [email protected]). I created a forwarding address myself. Advantage of this method: if someone obtains my github-address, he won't be able to guess neither my amazon/banking/whatever-address nor my real address and I can easily disable it to prevent spam mails. Unfortunately, this technique only works for admin-users.

For me there are two questions:

1. Is this local-suffix used a lot? If most users are restrained by it, it might be better to disable it by default
2. If there is a bigger interest in some purpose-based alias which can be set up by each user. This could be a nice feature for vexim. Maybe even some temporary addresses?

https://www.schirmacher.de/display/INFO/improved+Vexim+frontend+and+bug+fixes has some improvements made over Vexim 2.2RC1:

• Filtering Spam: allows moving spam messages into their dedicated folder
• Rewriting Subject of Spam: implements per-user rules of spam subject rewriting
• Improved German translation: assuming ours hasn't been touched for years, I don't see how that could hurt

Perhaps we should integrate some (all) of these into 2.3?

EDIT: there's a page by Axel Sjøstedt, which also offers some customizations, we should check these out as well: http://axel.sjostedt.no/misc/dev/vexim-customizations/

When we use empty salt (or none at all) upon creating new users, the actual hashing algorithm depends on what PHP supports. For example, on my current desktop system, it is SHA-512. This is a problem, because:

• the size of the crypt field in our database schema is way too small for SHA-512
• if I'm reading correctly, starting with v. 5.3, PHP might support more hashing algorithms than the underlying OS. I guess this might mean that even if we increase the size of the crypted password field, the SMTP/POP3/IMAP4 daemon might not be able to authenticate against such hash.

Thus, in order to favor the config value we have available, we should always provide a salt.

If "Domain Mail directory" is filled incorrectly when creating a new domain (e.g. I had /var/vmail there, but this dir did not exist, and Apache didn't have permission to create it), Vexim will set new domain's homedir to /domain.name/ (instead of /var/vmail/domain.name/). This is wrong and the domain should not be created at all in such situation. Instead, a proper error message should be presented to the user.

Hi ... I'm having a problem with a new vexim installation on debian. Mailserver is working perfectly using the local installed roundcube webmail. If I configure a thunderbird on my PC I'm able to receive mails but I'm not able to send emails. It seems that DNSBL usage is blocking my outgoing mails (of cause yes because my PC has a dynamic address). I'm using the default configuration and ACL files from you package. I also tried to add a "Accept Authenticated = *" to the vexim-acl-check-rcpt.conf file but that doesn't help. Removing the hile deny dnslist... results in a relay not permitted message

I was wondering if it's intended that vexim-acl-check-helo.conf is never used in the split debian configuration?

Update process for vexim2.3 started at
https://github.com/vexim/vexim2/wiki/Update-instructions-for-vexim-2.3

Can we remove this file: https://github.com/avleen/vexim2/blob/master/docs/database-spec.txt?
It is completely out of date, the table structure has changed, and we have even more tables. The structure can as well be seen in the mysql.sql-file. Or we do a copy&paste from there?

Quoting an e-mail to vexim-users from Yury Zyga:

i'm read README.md and will create user

manual command for freebsd contain a error
pw useradd vexim -u 1,100 -g "" -d /var/vmail -m -s /nonexistant

manual pw adduser
-u uid Specify the user/account numeric id.
contain only uid. not two options.

I understand the meaning was meant UID and GID. but why, if for example debian does not contain specific UID and GID?

propose edit REDME.md and change its string

pw useradd vexim -d /var/vmail -m -s /nonexistant

My guess is -u 1,100 was supposed to mean min and max uids, but it doesn't work that way. We should update our command in some way.

In addition to that, I've checked what shell the default users on FreeBSD have, and it seems we should use /usr/sbin/nologin instead of /nonexistent (the FreeBSD manpage for pw still says /nonexistent can be used for accounts which aren't supposed to log in, but I see no reason to do that).

Also, depending on how we choose to go with regards to #80, there are two different commands we could use to create a user.

• If we decide to go with the first available uid above 500, we can use the following command:

  echo vexim:500:::::Vexim Email Owner:/var/vmail:/usr/sbin/nologin: | adduser -m no -w no -N -f -

• OTOH if we decide to just go with a normal account, then here's Yury's suggestion with slight tweaks:

  pw useradd vexim -c "Vexim Email Owner" -d /var/vmail -m -s /usr/sbin/nologin

A few nights ago I suddently came to realization that even if we disable account, mail for it can still be checked out over IMAP and/or POP3, if the admin just follows our instructions.

Perhaps we should update these instructions to actually take into account the enabled/disabled status of the account (or even domain) which the user attempts to access? What do you folks think?

In the testing-procedure, I found this:
https://github.com/vexim/vexim2/blob/master/docs/checklist.txt#L71-L73

Disabled domain -> postmaster can login, user can't (all should be able to login)
Disabled account -> user can login (should fail)

I don't know, where this feature was lost and if there were some security aspects. Do we want this back? @rimas-kudelis

In 4effffa, I changed the Exim configuration file we provide to require encryption when authenticating using PLAIN or LOGIN. IMO, it doesn't make much sense for connections from localhost, so we shouldn't require encryption when connecting from 127.0.0.1 and ::1 (and other IP addresses of the server we run on).

Per default, root is not allowed to send mails:
https://github.com/avleen/vexim2/blob/master/docs/configure#L207

We need to add something in the documentation how to handle messages for the root-user

Apparently, in #23 not all notions of the clear field were removed. This may have lead us to #35 and #36, where patches have been proposed which were supposed "fix" non-handling of that field in the code (basically by undoing #14).
We should get rid of these remnants.
@Udera, would you perhaps like to do this?

I found the complexpass-field in the database but without any other reference in the code:
https://github.com/avleen/vexim2/blob/master/setup/mysql.sql#L22

Is this deprecated? Or is there any planned function?

If you want to set a password, some special characters like the $-sign are ignored (full list: ['";$%]). All form data is checked and these characters are removed in vexim/config/functions.php (due to a6dcb40). I want to use a pipe-command which contains a $-sign. Normally, the PDO::prepare()-command should "help" to prevent SQL injections. I'm no expert to tell if is sufficient to rely on this prepare()-command.

It would be very useful to check the complexity of a new/changed password
If the clear field disappears we have no chance to check later if people use strong passwords. And i really know... users just don't care... I see weak passwords on mail accounts too often!

I would suggest to include something like this
http://code.runnable.com/UmrnTejI6Q4_AAIM/how-to-validate-complex-passwords-using-regular-expressions-for-php-and-pcre
in vexim/config/functions.php: function crypt_password

Would be nice to have a config variable to strip subdomains for domainguess like:

$domainguess_lefttrim = "mail|vexim";

for usage in index.php (line 20)

if($domainguess===1) echo '@'.preg_replace ("/^".$domainguess_lefttrim."\./", "", $_SERVER["SERVER_NAME"]);

and login.php (line 14)

if($domainguess === 1 && $_POST['username']!=='siteadmin') $_POST['username'].='@'.preg_replace ("/^".$domainguess_lefttrim."\./", "", $_SERVER["SERVER_NAME"]);

i think quota should be given in Mbyte in
/docs/debian-conf.d/transport/30_vexim_virtual_delivery

quota = ${extract{quota}{$address_data}}
should be:
quota = ${extract{quota}{$address_data}}M

Please fix the remaining shorttags found in the latest download:

vexim # grep -rn "<?[^p]" *
adminuserchange.php:197:                <? if ($row['on_spamassassin'] == "1") {
adminuserchange.php:268:            <? echo _('Must be a full e-mail address'); ?>!<br>
adminuserchange.php:269:            <? echo _('OR') .":<br>\n"; ?>
siteadd.php:100:                value="0"><? echo _('Mb'); ?>
vexim #

The field length if pop and smtp fields in the users table is too short.
It's only 255 bytes which is very less on long user/domain names.
I would suggest 4096 bytes for those fields. AFAIR 4096 is the spec for path length in the file system.

Code in vexim/sitechangesubmit.php after the line 98 is useless.
There are lines before:

if ($success) {
header("Location: site.php?updated={$_POST['domain']}");
die;
} else {
header("Location: site.php?failupdated={$_POST['domain']}");
die;
}

#52

Readme.md

• row 97 /var/spool/vexim/
• row 334 /usr/local/mail/

variables.php

• row 57 $mailroot = "/usr/local/mail/";

Confusing...

#51

Good day and thank you for this project. In this version i found one issue. When I'm trying to change users password I cant submit changes, because submit button doesnt exist.

Here is a screenshot:

I tried to set up a new mail server on debian jessie. Unfortunately, there is still the string expansion problem in the headers_remove statements, like reported here:
http://www.gossamer-threads.com/lists/exim/users/100446

ref in our code:
https://github.com/vexim/vexim2/blob/master/docs/configure#L665-L676

related bug: https://bugs.exim.org/show_bug.cgi?id=1533
but this fix doesn't seem to be in the debian-jessie packages (neither in the testing).

So it makes vexim unusable for debian jessie at the moment.

I think there is incoherence between documentation and configuration with respect to SpamAssassin email scanning:

1. README.md suggests the installation of sa-exim for Debian-like distribution,
2. vexim-acl-check-content.conf invokes Exim internal scan.

Hence, in Debian-like systems the default behaviour is to make every message to be processed twice by SpamAssassin, which does not look desirable.

Review the spamassassin setup routine and add learning scripts from http://axel.sjostedt.no/misc/dev/vexim-customizations/
follow up from #62

Our database structure has been changing over the years, and it looks like we never really had proper migration scripts.

I think we should provide them in 2.3 to make upgrades easier to users of older releases.

We made some efforts to implement a more secure password hashing, it would be a pity to transmit all these passwords through unencrypted connections. We have already fixed this in exim (4effffa).

For the web-interface, we should perhaps mention to use SSL connections and point to some guides.

For IMAP/POP servers, we should perhaps provide more detailed information. It's not really difficult, I can contribute my dovecot implementation in the next days. Would be nice if someone on courier could contribute his settings too.

Qpopper?

The updated debian-routers for exim contain a more advanced spam handling (https://github.com/avleen/vexim2/blob/master/docs/debian-conf.d/router/249_vexim_ditch_routers#L49). Unfortunately, this has not been introduced to this repo. I already updated the single configuration file #42 and the database-files #43.
We propably still need to update the vexim-webinterface. Perhaps, I will find some time the following days. If someone already has implemented this change, a pull request is welcome.

Hello, when the release is scheduled?

PHP has its own DB abstraction layer now. I think we should migrate to that from PEAR-DB which we're using now.

In the list of domains or accounts, you won't see which one is not activated. You need to open the preferences. It would be better to mark them in a way, make them italic, other color...

• Migration scripts: #59
• Enable spamassassin for all addresses of a domain: #69 PR: #123 and #125
• [Design]->display disabled accounts differently: #86, PR #96
• Fix login when domain/account is disabled: #PR: #99
• Make sure the e-mailaddress is RFC-conform: #108
• Single Login-field: #110

these topics are still in discussion, they are not needed for some basic testing:

• Update config-files: #8
• SSL-configuration: #45

@rimas-kudelis @Kami-no

I just put together a list of open issues that need to be solved before the new release. It would be great to fix them as soon as possible in order to proceed with testing. Testing can be used to improve the documentation.

Anything else?

As siteadmin, you can't add relay-domains. The function is implemented in the routers...

I suspect that after 4effffa, our config might be partially unusable, because $tls_advertise_hosts is not defined in it, which IIRC means that STARTTLS won't be available, which in turn means that the user will never be able to authenticate to send email.

Furthermore, the variables $auth1, $auth2 and $auth3, which replaced $1, $2 and $3 in 0aa951a, don't work in Exim3. I don't think this is a problem, however, this means we should update our README file as well.

It would be awesome if you could set the sending IP address per domain.

I think this can be achieved relatively easy by setting the "interface" under "remote_smtp" as described in:
https://loginroot.com/how-to-sending-emails-using-user-assigned-ip-in-exim-directadmin/

It would be nice to move variables.php to variables.php.sample and to add variables.php to .gitignore

In this case you cat pull repo directly to the server with active installation and have no problem with own settings in the variables.php

hi,

i got vexim-2.2.1_1 , with exim -postgresql-4.77 running.

My problem was when receive email with content have chinese language, in the router section which scan message got defer because the database said with error :

HINT: Use the escape string syntax for escapes, e.g., E'\r\n'.
WARNING: nonstandard use of escape in a string literal at character 108
HINT: Use the escape string syntax for escapes, e.g., E'\r\n'.

this problem recorded in exim log :

== #####@####.com R=ditch_hdrfrom defer (-1): condition check lookup defer

When i check the mail header with exim -Mvh , the from content chinese character.

The postgresql database already set using UTF8 encoding.

When i disable the ditch_hdrfrom in router, the message delivered.

How to fix this encoding problem i guess...or how to fix this issue.

Thanks

Hello
Compatible with Nginx?
Or only to be used apache2 to manage email accounts?
Many greetings
Mz

There is a issue with this if/or condition missed or extra '}' '{' i cannot find it

headers_remove = ${if or { { <{$spam_score_int}{1} } \
                            { <{$spam_score_int} {${lookup mysql{select users.sa_tag * 10 from users,domains \
                               where localpart = '${quote_mysql:$local_part}' \
                               and domain = '${quote_mysql:$domain}' \
                               and users.on_spamassassin = 1 \
                               and users.domain_id=domains.domain_id} {$value}fail} } } \
                             { eq {0}{${lookup mysql{select users.sa_tag * 10 from users,domains \
                               where localpart = '${quote_mysql:$local_part}' \
                               and domain = '${quote_mysql:$domain}' \
                               and users.on_spamassassin = 0 \
                               and users.domain_id=domains.domain_id} {$value}fail} } } \
                           } {X-Spam-Score:X-Spam-Report} }

E-mail accounts contain a lot of important information. Someone can get your e-mail password and gain access to your e-mails. At the moment, the attacker can as well login to vexim and change your password that you won't have access to your mails any more (and you cannot change the password yourself). With two-factor authentication, the attacker can still access all e-mails but he cannot change password or delete other users (in case of an admin-account).

In some webmail solutions (e.g. Roundcube), two-factor authentication can be activated. In my opition, it makes no sense because mails can be access via imap.

I appreciate the work that you have done with the project. I was forced to reinstall my very old debian server and now I use ubuntu. With this project I was able resetup my mail stack without much conversion regarding existing accounts. Thank you.

After it took me nearly a day to figure this out, I would to report this here as it may affect other, too.

I wanted to have the SPAM_REPORT hearder always in my mails, even if they are ham so i may look why spam was not identified.

Within vexim-acl-check-content.conf I have found the following configuration which tells me that it should do exactly what i want:

  # Always add X-Spam-Score and X-Spam-Report headers, using SA system-wide settings
  # (user "nobody"), no matter if over threshold or not.
  warn  message     = X-Spam-Score: $spam_score ($spam_bar)
        spam        = maildeliver:true
  warn  message     = X-Spam-Report: $spam_report
        spam        = maildeliver:true
  accept hosts      = 127.0.0.1:+relay_from_hosts
  accept authenticated  = *

However, non spam mails doesnt contain the header (used my corporate mail account to test it).

I found the following passage in the exim configuration example (docs/configure)

virtual_domains:
  driver = redirect
  domains = +local_domains
  address_data = ${lookup mysql{\
        select smtp, users.sa_tag*10 AS sa_tag, users.on_spamassassin AS on_spamassassin, \
        users.uid AS uid, users.gid AS gid, quota from users,domains \
        where localpart = '${quote_mysql:$local_part}' \
                and domain = '${quote_mysql:$domain}' \
                and domains.enabled = '1' \
                and users.enabled = '1' \
                and users.domain_id = domains.domain_id}{$value}fail}
  allow_fail
  data = ${extract{smtp}{$address_data}}
  headers_add = ${if and { \
                    {>{$spam_score_int}{${extract{sa_tag}{$address_data}}}} \
                    {eq{1}{${extract{on_spamassassin}{$address_data}}}} \
                    } {X-Spam-Flag: YES\n}{} }
  # Whether to use old or new headers_remove behavior.
  .ifndef OLD_HEADERS_REMOVE
    headers_remove = ${if or { { <{$spam_score_int}{1} } \
                              { and {{<{$spam_score_int}{${extract{sa_tag}{$address_data}}} } \
                                     {eq {1}{${extract{on_spamassassin}{$address_data}}}} \
                                    } \
                              } { eq {0}{${extract{on_spamassassin}{$address_data}}}} \
                            }  {X-Spam-Score}}
    headers_remove = ${if or { { <{$spam_score_int}{1} } \
                              { and {{<{$spam_score_int}{${extract{sa_tag}{$address_data}}} } \
                                     {eq {1}{${extract{on_spamassassin}{$address_data}}}} \
                                    } \
                              } { eq {0}{${extract{on_spamassassin}{$address_data}}}} \
                            }  {X-Spam-Report}}
  .else
    headers_remove = ${if or { { <{$spam_score_int}{1} } \
                              { and {{<{$spam_score_int}{${extract{sa_tag}{$address_data}}} } \
                                     {eq {1}{${extract{on_spamassassin}{$address_data}}}} \
                                    } \
                              } { eq {0}{${extract{on_spamassassin}{$address_data}}}} \
                            }  {X-Spam-Score:X-Spam-Report}}
  .endif
  .ifdef VEXIM_LOCALPART_SUFFIX
    local_part_suffix = VEXIM_LOCALPART_SUFFIX
    local_part_suffix_optional
  .endif
  retry_use_local_part
  file_transport = virtual_delivery
  reply_transport = address_reply
  pipe_transport = address_pipe

To archive my goal I have had to comment out the second passage in the OLD_HEADERS_REMOVE:

virtual_domains:
  driver = redirect
  domains = +local_domains
  address_data = ${lookup mysql{\
        select smtp, users.sa_tag*10 AS sa_tag, users.on_spamassassin AS on_spamassassin, \
        users.uid AS uid, users.gid AS gid, quota from users,domains \
        where localpart = '${quote_mysql:$local_part}' \
                and domain = '${quote_mysql:$domain}' \
                and domains.enabled = '1' \
                and users.enabled = '1' \
                and users.domain_id = domains.domain_id}{$value}fail}
  allow_fail
  data = ${extract{smtp}{$address_data}}
  headers_add = ${if and { \
                    {>{$spam_score_int}{${extract{sa_tag}{$address_data}}}} \
                    {eq{1}{${extract{on_spamassassin}{$address_data}}}} \
                    } {X-Spam-Flag: YES\n}{} }
  # Whether to use old or new headers_remove behavior.
  .ifndef OLD_HEADERS_REMOVE
    headers_remove = ${if or { { <{$spam_score_int}{1} } \
                              { and {{<{$spam_score_int}{${extract{sa_tag}{$address_data}}} } \
                                     {eq {1}{${extract{on_spamassassin}{$address_data}}}} \
                                    } \
                              } { eq {0}{${extract{on_spamassassin}{$address_data}}}} \
                            }  {X-Spam-Score}}
#    headers_remove = ${if or { { <{$spam_score_int}{1} } \
#                              { and {{<{$spam_score_int}{${extract{sa_tag}{$address_data}}} } \
#                                     {eq {1}{${extract{on_spamassassin}{$address_data}}}} \
#                                    } \
#                              } { eq {0}{${extract{on_spamassassin}{$address_data}}}} \
#                            }  {X-Spam-Report}}
  .else
    headers_remove = ${if or { { <{$spam_score_int}{1} } \
                              { and {{<{$spam_score_int}{${extract{sa_tag}{$address_data}}} } \
                                     {eq {1}{${extract{on_spamassassin}{$address_data}}}} \
                                    } \
                              } { eq {0}{${extract{on_spamassassin}{$address_data}}}} \
                            }  {X-Spam-Score:X-Spam-Report}}
  .endif
  # using local_part_suffixes enables possibility to use user-"something" localparts
  # which could cause you trouble if you're creating email-adresses with dashes in between.
  .ifdef VEXIM_LOCALPART_SUFFIX
    local_part_suffix = VEXIM_LOCALPART_SUFFIX
    local_part_suffix_optional
  .endif
  retry_use_local_part
  file_transport = virtual_delivery
  reply_transport = address_reply
  pipe_transport = address_pipe

Now i have the result i wanted. One additional note: While googling regarding this issue, i found many hints regarding amavis and to set the tag score to -99. The new tables doesnt support signed values and even after i changed the table shema, and set a tag score to -3 (my test messages got a 0) I didnt got the report in my headers.

I am not sure if that is intended or not so it is just reporting.

Best regards

Frank

The latest update d06625b introduced a bug into the validate_password() function as it returns true for null values.
E.g.: siteaddsubmit.php line 82
if (validate_password($_POST['clear'], $_POST['vclear'])) returns true if clear and vclear input fields have been removed from the DOM before submitting.

@rimas-kudelis : You didn't want to use a perl script to rewrite the subject (#62 (comment)). Would you prefer php instead?
Can we use exiscan? https://github.com/Exim/exim/wiki/ExiscanExamples#marking-spam-messages-with-extra-headers-and-subject-tag
I haven't tested this: http://www.gossamer-threads.com/lists/exim/users/59918#59918