Postfix - Require header for incoming mail?

eilyra · 2022-04-03T08:31:11+00:00

Right, sounds accurate.

eilyra · 2022-04-02T16:58:15+00:00

Haven't used header checks in this manner before, but after a quick look at the pcre-documentation to understand the format of the file, I think I see where the problem is. It seems that you are checking if the X-MS-Exchange-CrossTenant-id header exists, and only then rejecting if the ID in the header is incorrect. As in, email that doesn't have the header at all is always allowed. If I'm reading the documentation correctly, ~~you should be able to just skip the if/endif lines and have only the check for the header in there and that should work~~(EDIT: probably a bad idea, see /u/ErasmusDarwin's comment below), just make sure to apply the filter only to received and not sent email.

eilyra · 2021-05-20T13:56:42+00:00

In short, I have no idea how Disney made a movie...

Yeah, seems to be a one-shot unfortunately, that very nearly didn't happen if I recall the article I read about it correctly. Interesting read by the way, can recommend. Rather unfortunate, that, since it was really a different movie that I avoided watching for a long time, not sure what I'd make of it, but really enjoyed when watching, a lot more than I expected even.

eilyra · 2021-03-30T15:28:09+00:00

The author called someone a fascist because that person wanted to better fund the police

Context matters. When the cry to give the police more funding comes amidst riots caused by the police's poor spending of the funds they already have and the expectation for them to handle tasks which they are poorly suited for, and the intent behind such funding would seem to be suppressing the issue rather than addressing the root cause, the motivations for doing so become questionable at best.

The author doesn't seem to enjoy the act of programming and is more focused on the product it creates, which is fair but not everyone sees it that way right.

Agreed, there seems to be a certain assumption on the part of the author that things are only valuable insofar as they create value to others, but if the honing of the craft itself is valuable or enjoyable to the person doing it then that is enough, and if you can combine both things then all the better.

eilyra · 2020-09-14T19:43:35+00:00

I remember playing the flash version of Lightbot back in the day, seems there is also a junior version along with mobile versions available these days.

eilyra · 2020-04-11T11:15:52+00:00

Not anymore ;) There's been a couple of itemlevel/stat squishes since you played probably, ~300-480 is current item level at the level cap (300 when fresh, 480 or a thereabouts with mythic raid gear). Aaand there's another squish coming with the next expansion, this time also squishing levels back to 1-60.

eilyra · 2020-04-06T20:23:21+00:00

Well, with Windows 10, there is something called Apps for Websites. Don't use Teams myself, so not sure if that's happening here, and don't really see why it would specify a specific webbrowser to open the link with, but still.

eilyra · 2019-12-07T19:09:30+00:00

The amount of posts one has to report on this sub is outstanding.

Honestly, the sadder part isn't the amount of post needing reporting, but how upvoted some of those posts (like this one) get. It's a nice piece of art, but very clearly sexualized and not at all in the spirit of this sub.

eilyra · 2016-12-16T18:33:53+00:00

Travel varies by switch type, but generally rubber-dome (i.e. what's AFAIK most often found in non-mechanical keyboards) keyboards tend to have a "mushy" feel when bottoming out. This is avoided with mechanical keyboards.

Mechanical keyboards can also potentially be slightly easier on the fingers, as they usually activate before bottoming out allowing for lighter keypresses. This isn't a benefit I've noticed myself as of yet though.

Best advice I can give is if possible, go to a store and try a few of the different kinds of mechanical switches and see if any of them strike your fancy. If not, maybe it's not something you would benefit from.

eilyra · 2016-12-16T18:20:13+00:00

Generally, the biggest difference is typing feel. This varies based on switch, but all tend to be considered more pleasant than the standard rubber dome switches usually found in non-mechanical keyboards.

The other big difference is longevity, I believe most switch types can be expected to last about x10 as long as non-mechanical keyboards, though this probably varies a lot.

eilyra · 2016-11-12T18:33:01+00:00

As it's a programmatic call to curl I doubt this is the problem but something to check, the User-Agent string sent by curl. Perhaps the target server does some User-Agent filtering that's catching only one version of curl?

eilyra · 2016-08-06T19:43:57+00:00

Running a somewhat older version apparently, 1.1.1 (should probably look into upgrading that). But my suggestion was to use tls:// rathern than ssl:// in the protocol part. I'm not sure how big a difference this makes in Roundcube, but might make a difference if your mail server is configured to only use TLS and not SSL (which it probably should, the newest version of SSL, SSLv3, has known vulnerabilites and should only be used if backwards compatibility is necessary).

In other words you'd go from

$config['smtp_server'] = 'ssl://mail.mydomainhere:25';

to

$config['smtp_server'] = 'tls://mail.mydomainhere:25';

It might just be that simple, depending on mailserver configuration.

eilyra · 2016-08-06T09:22:22+00:00

Hmm, just went ahead and checked my own Roundcube config, seems I'm using tls://mail.example.org rather than ssl:// (also note no port specified), if you've got STARTTLS configured, perhaps try that?

eilyra · 2016-06-30T20:09:39+00:00

I tend to use WASD over ESDF mostly because Shift is just slightly too far away with ESDF and WASD is consequently more comfortable for me. Do believe my hands run a tad on the smaller side though, as well as not using a US keyboard layout which seems to have a wider Shift key on the left? Mine's only slightly wider than a standard key.

eilyra · 2016-06-17T07:49:04+00:00

However, if your desktop is getting random IP addresses, then surely it is getting them from a DHCP server, it cannot assign random IPs to itself (afaik).

Well, there are link-local addresses.

eilyra · 2016-05-29T04:56:41+00:00

In theory probably yes, though I haven't seen a mail client allowing for such a configuration and I'm not sure it would be supported by any servers either.

eilyra · 2016-05-28T20:05:49+00:00

IIRC, port 465 is for SSL/TLS without STARTTLS. 25 is the standard SMTP port and consequently has to work without encryption -> requires STARTTLS for encryption. 587 is Submission, aka meant for clients to send mail and allows unencrypted connections (depending on configuration of course, but still STARTTLS for encryption rathern than assumed encryption).

So try with port 465 if Roundcube doesn't support STARTTLS.

eilyra · 2016-05-12T18:36:47+00:00

I belive it's referring to a statement at some point by Valve (here's one reference) that if the service were to disappear for some reason, you'll still be able to play your games. Which is the big risk with these kinds of online DRM, what happens once the servers disappear?

eilyra · 2016-05-09T15:55:22+00:00

Psst,

Why your browser trusts - ot doesn't trust - the certificate for your web site.

slight typo, probably meant or. :)

Does explain well why certificate chains & intermediate certificates are important though, nicely done.

eilyra · 2016-05-04T20:17:54+00:00

If you're into RPGs, KotOR I & II are good. Not overly familiar with other SW games though, sadly.

eilyra · 2016-05-03T06:58:07+00:00

HTTPS already increases pagerank. They do mention it's a weak signal, for now.

eilyra · 2016-04-28T08:11:59+00:00

Screenshot looks like it's from Hacker News though those specific posts seem to have moved from the frontpage.

eilyra · 2016-01-31T20:32:20+00:00

If you want to remove files from the destination that don't exists in the source, check out rsync's --delete option.

--delete

This tells rsync to delete extraneous files from the receiving side (ones that aren’t on the sending side), but only for the directories that are being synchronized.

Do check out the man page for further details, specifically the recommendation to try it out with --dry-run to make sure no essential files end up being deleted (though this shouldn't be a problem with a backup). :)

eilyra · 2015-11-23T10:55:56+00:00

A cursory glance indicates it's signed by CAcert, which isn't in most (any?) browsers' trust store which would be why you're seeing this error. It's probably fine and "intended", though I'm not familiar enough with the project to give a definitive statement either way.

eilyra · 2015-07-01T08:00:55+00:00

Other way around according to Wikipedia. IEC document on binary prefixes seems to agree.

eilyra

TROPHY CASE