Amitai Schleier (@schmonz@schmonz.com)

Amitai Schleier

@schmonz@schmonz.com

Force multiplier.
Outcome improver.
Decision sharer.
Developer, leader, coach.
https://agilein3minut.es podcaster.
Musician.
Bad poet (award-winning).

Joined: Apr 05, 2017 (@octodon.social)
SelfHosted: Mar 30, 2025
Pronouns: he/they
Podcast: ✔ https://agilein3minut.es
Consultancy: ✔ https://latentagility.com
More: ✔ https://schmonz.com
Keyoxide: aspe:keyoxide.org:PAC6KHICU3QSHQZVPJCZFS7KIA

0 ★ 0 ↺

Amitai Schleier » 2025-09-28
@schmonz@schmonz.com

Another neat trick with #notqmail from #pkgsrc:

The default SMTP configuration rejects nonexistent recipients.

(qmail famously accepts all recipients for its domains even when those recipients don't exist, and then has to queue totally avoidable bounce messages. But you won't.)

...

0 ★ 0 ↺

Amitai Schleier » 2025-09-29
@schmonz@schmonz.com

For our next trick with #notqmail from #pkgsrc:

Want to SMTP-reject SPF failures when the source domain specifies explicit-fail?

1. Add SPP_SPF_RESULT_FAIL="E550 spf_smtp_msg" to
control/tcprules/smtp
2. Run "/etc/rc.d/qmailsmtpd cdb"
3. There is no 3rd thing, is that clear?

...

0 ★ 0 ↺

Amitai Schleier » 2025-09-29 / 2025-09-29
@schmonz@schmonz.com

#qmail lacks #TLS. #notqmail doesn't include it either (yet!). But if you install from #pkgsrc…

\# chown qmaild:nofiles control/servercert.pem
\# chmod 640 control/servercert.pem
\# ln -s control/servercert.pem control/clientcert.pem
\# update_tmprsadh
\# /etc/rc.d/qmail restart

🔐

...

0 ★ 0 ↺

Amitai Schleier » 2025-09-29
@schmonz@schmonz.com

#SenderRewritingScheme with #notqmail via #pkgsrc:

echo srs.dom.ain > control/srs_domain
echo "$SECRET" > control/srs_secrets
echo srs.dom.ain >> control/rcpthosts
echo srs.dom.ain:srs >> control/virtualdomains
echo "| srsfilter" > alias/.qmail-srs-default

+ MX for srs.dom.ain