Hi, I need help with spamassassin.. It marks the spam correct but is not adding the ** SPAM ** flag to the subject.. please help.. this has never worked since day 1.
Craig.
SAMPLE EMAIL-
Subject: You have been selected to win a Chanel Perfume from Boots! Message-ID: <138431787230895.8.PZH1682504663@marketstandard.click> From: "Boots" <Chanel.Perfume-hwp@marketstandard.click> X-Spam-Level: ******* X-Spam-Status: True, score=7.4 required=2.0
CONFIG -
# Add *****SPAM***** to the Subject header of spam e-mails # rewrite_header Subject [***** SPAM _SCORE_ *****] # Save spam messages as a message/rfc822 MIME attachment instead of # modifying the original message (0: off, 2: use text/plain instead) # report_safe 0 # Set which networks or hosts are considered 'trusted' by your mail # server (i.e. not spammers) # # trusted_networks 212.17.35. # Set file-locking method (flock is not safe over NFS, but is faster) # # lock_method flock # Set the threshold at which a message is considered spam (default: 5.0) # required_score 2.0 # Use Bayesian classifier (default: 1) # use_bayes 1 # Bayesian classifier auto-learning (default: 1) # bayes_auto_learn 1
Dear All,
I managed to access my WebCit with port 443 (https) when WebCit is in another port. Using the Proxy in Apache.
I have a colocated Apache web server in the same server.
I access like:
https://mydomain.net/courrier/
As I seen in the Apache logs when some icons are accessed in the server are like this:
GET /static/webcit_icons/citadel-button-32x32.gif
with error 404
and others are accessed as:
GET /courrier/static/webcit_icons/essen/16x16/delete.png
with success.
Then there are many icons missing. It works fine but without many icons.
Thanks,
Luís Gonçalves.
PS If some maintainer of Citadel wants to have my Proxy settings can contact me to my email. I used the http WebCit. The Proxy points to http WebCit.
Then the result is this:
I realize its not the same setup you have, so may not translate or even be the same issue, but i found that many of my internal sites would lose stuff like that unless i turned on websocket support in my NGINX proxy for that particular application.
If i dont use httpS it didn't seem to care and worked ok, but if i did mandate SSL ( Which i do ), i had to turn that on.
I tried the websockets with:
ProxyPass /courrier/ ws://127.0.0.1:xxxx/
ProxyPassReverse /courrier/ ws://127.0.0.1:xxxx/
And gave the same problem.
Thu Sep 19 2024 14:39:40 EDT from Nurb432I realize its not the same setup you have, so may not translate or even be the same issue, but i found that many of my internal sites would lose stuff like that unless i turned on websocket support in my NGINX proxy for that particular application.
If i dont use httpS it didn't seem to care and worked ok, but if i did mandate SSL ( Which i do ), i had to turn that on.
Subject: Re: Ask for correction in WebCit software.
I managed to access my WebCit with port 443 (https) when WebCit
is in another port. Using the Proxy in Apache.
In the current implementation of WebCit, if you want to share the web server port with another web server, the best way to do it is to set up the proxied WebCit as a VirtualHost in Apache. Trying to make it work by URL prefix will not work. We've tried to get that working in the past but the code is just too tangled.
The rewrite of WebCit that is currently in development will allow this because we were very strict about putting the "/ctdl/" prefix in front of the whole system. But that version won't be ready until at least next year, so I don't want to go too far down the Osborne Effect road :)
Just set up an alias and use VirtualHost+ProxyPass. That will definitely work.
Dear All,
I implemented with VirtualHost+ProxyPass. I did not used the Key word "Alias" but:
ProxyPass /courrier/ ws://127.0.0.1:xxxx/
ProxyPassReverse /courrier/ ws://127.0.0.1:xxxx/
with xxxx the port of http WebCit.
And it is full funcional but some (many) missing icons. It works very well. I am pleased that you will solve that problem in the next release.
Thanks,
Luis.
Fri Sep 20 2024 09:25:48 EDT from IGnatius T Foobar Subject: Re: Ask for correction in WebCit software.I managed to access my WebCit with port 443 (https) when WebCit
is in another port. Using the Proxy in Apache.
In the current implementation of WebCit, if you want to share the web server port with another web server, the best way to do it is to set up the proxied WebCit as a VirtualHost in Apache. Trying to make it work by URL prefix will not work. We've tried to get that working in the past but the code is just too tangled.
The rewrite of WebCit that is currently in development will allow this because we were very strict about putting the "/ctdl/" prefix in front of the whole system. But that version won't be ready until at least next year, so I don't want to go too far down the Osborne Effect road :)
Just set up an alias and use VirtualHost+ProxyPass. That will definitely work.
Subject: Re: Ask for correction in WebCit software.
I implemented with VirtualHost+ProxyPass. I did not used the Key
word "Alias" but:
ProxyPass /courrier/ ws://127.0.0.1:xxxx/
ProxyPassReverse /courrier/ ws://127.0.0.1:xxxx/
If you are using a VirtualHost you should proxy the root, not "/courrier".
Just push the whole site through unchanged.
Ig - After Lunduke's coverage of Nextcloud 9 I was mildly annoyed at the available options on their site. Went looking for alternatives and most of the ones suggested were merely for file hosting, then I remembered Citadel is a broader groupware thing as well. But https://citadel.org/download.html doesn't appear to have any links for Docker or otherwise, and unlike most times I'm using a browser with pretty much everything enabled. What are my current options to install and run Cit? Sorry if I missed something obvious - it wouldn't be the first time.
The objective is to have Citadel Webmail throught https which the port is usually open in firewalls. Usually other ports used by Webcit are blocked in firewalls. This is for using when Apache coexists with Citadel in the same server.
Now, I will explain how I done without missing any information.
In ssl.conf: This is for IPv6. There is a Virtual Host also for IPv4. This must work as it is with only changing where says "changed". You may/can put this in Citadel Faq.
****************************************
<VirtualHost [xxxx:xxx:xxxx:xxx::x]:443> #changed
DocumentRoot "/xxxxx/html" #changed
SSLEngine on
SSLProtocol -All +TLSv1 +TLSv1.1 +TLSv1.2
SSLCipherSuite ALL:!ADH:!EXPORT:+SSLv2:RC4+RSA:+HIGH:+MEDIUM:+LOW
SSLCertificateFile /xxxx/ssl/xxxxxx.crt #changed
SSLCertificateKeyFile /xxxx/ssl/xxxxxxx.key #changed
SSLCACertificateFile /xxxx/ssl/xxxxxx.cer #changed
LogLevel warn
ErrorLog logs/ipv6_ssl_error_log
CustomLog logs/ipv6_ssl_access_log \
"%h %a %l %I %O %u %t %X %T %D \"%r\" %>s %b \"%{Referer}i\" \"%{User-Agent}i\" %{SSL_PROTOCOL}x %{SSL_CIPHER}x"
SSLProxyEngine on
ProxyPass /courrier/ http://[::1]:xxxx/ #changed
ProxyPassReverse /courrier/ http://[::1]:xxxx/ #changed
</VirtualHost>
************************************
I access the site as:
https://mydomain.net/courrier/ #changed
Thanks,
Luís.
Fri Sep 20 2024 16:37:21 EDT from IGnatius T Foobar Subject: Re: Ask for correction in WebCit software.I implemented with VirtualHost+ProxyPass. I did not used the Key
word "Alias" but:
ProxyPass /courrier/ ws://127.0.0.1:xxxx/
ProxyPassReverse /courrier/ ws://127.0.0.1:xxxx/
If you are using a VirtualHost you should proxy the root, not "/courrier".
Just push the whole site through unchanged.
the 2 i would use
Ig - After Lunduke's coverage of Nextcloud 9 I was mildly annoyed at the available options on their site. Went looking for alternatives and most of the ones suggested were merely for file hosting, then I remembered Citadel is a broader groupware thing as well. But https://citadel.org/download.html doesn't appear to have any links for Docker or otherwise, and unlike most times I'm using a browser with pretty much everything enabled. What are my current options to install and run Cit? Sorry if I missed something obvious - it wouldn't be the first time.
Dear All,
Can a Server Side Filter Rule have more than a recipient email in a forward (or other operations)?
e.g.
Can I forward as:
dummy1@domain1.net,dummy2@domain2.net
or I have to do 2 rules, one for each recipient email?
Thanks,
Luís.
as well. But https://citadel.org/download.html doesn't appear to
have any links for Docker or otherwise, and unlike most times
Ummm...? Docker is the very first option on the page. I think I am not understanding your question?
dummy1@domain1.net,dummy2@domain2.net
or I have to do 2 rules, one for each recipient email?
Good question! I don't know off hand, but try it and see.
Dear All,
I found a problem with this setting that I think it must be solved by the maintainers/developers of Citadel.
The emails accessed this way though proxy and WebCit, the timezone presented is from the server (Centos/Ubuntu etc) that hosts Citadel and not from the operating system of the browser. I think this must be solved someway.
I think because the WebCit is called within the server.
Thanks,
Luis.
The objective is to have Citadel Webmail throught https which the port is usually open in firewalls. Usually other ports used by Webcit are blocked in firewalls. This is for using when Apache coexists with Citadel in the same server.
Now, I will explain how I done without missing any information.
In ssl.conf: This is for IPv6. There is a Virtual Host also for IPv4. This must work as it is with only changing where says "changed". You may/can put this in Citadel Faq.
****************************************
<VirtualHost [xxxx:xxx:xxxx:xxx::x]:443> #changed
DocumentRoot "/xxxxx/html" #changed
SSLEngine on
SSLProtocol -All +TLSv1 +TLSv1.1 +TLSv1.2
SSLCipherSuite ALL:!ADH:!EXPORT:+SSLv2:RC4+RSA:+HIGH:+MEDIUM:+LOW
SSLCertificateFile /xxxx/ssl/xxxxxx.crt #changed
SSLCertificateKeyFile /xxxx/ssl/xxxxxxx.key #changed
SSLCACertificateFile /xxxx/ssl/xxxxxx.cer #changed
LogLevel warn
ErrorLog logs/ipv6_ssl_error_log
CustomLog logs/ipv6_ssl_access_log \
"%h %a %l %I %O %u %t %X %T %D \"%r\" %>s %b \"%{Referer}i\" \"%{User-Agent}i\" %{SSL_PROTOCOL}x %{SSL_CIPHER}x"
SSLProxyEngine on
ProxyPass /courrier/ http://[::1]:xxxx/ #changed
ProxyPassReverse /courrier/ http://[::1]:xxxx/ #changed
</VirtualHost>
************************************
I access the site as:
https://mydomain.net/courrier/ #changed
Thanks,
Luís.
Fri Sep 20 2024 16:37:21 EDT from IGnatius T Foobar Subject: Re: Ask for correction in WebCit software.I implemented with VirtualHost+ProxyPass. I did not used the Key
word "Alias" but:
ProxyPass /courrier/ ws://127.0.0.1:xxxx/
ProxyPassReverse /courrier/ ws://127.0.0.1:xxxx/
If you are using a VirtualHost you should proxy the root, not "/courrier".
Just push the whole site through unchanged.
Dear All,
Sugestion:
It may put as configuration in "Advanced" -> "Change your preferences and settings" a parameter that is the timezone used by WebCit for each user.
Thanks,
Luis.
Dear All,
I found a problem with this setting that I think it must be solved by the maintainers/developers of Citadel.
The emails accessed this way though proxy and WebCit, the timezone presented is from the server (Centos/Ubuntu etc) that hosts Citadel and not from the operating system of the browser. I think this must be solved someway.
I think because the WebCit is called within the server.
Thanks,
Luis.
The objective is to have Citadel Webmail throught https which the port is usually open in firewalls. Usually other ports used by Webcit are blocked in firewalls. This is for using when Apache coexists with Citadel in the same server.
Now, I will explain how I done without missing any information.
In ssl.conf: This is for IPv6. There is a Virtual Host also for IPv4. This must work as it is with only changing where says "changed". You may/can put this in Citadel Faq.
****************************************
<VirtualHost [xxxx:xxx:xxxx:xxx::x]:443> #changed
DocumentRoot "/xxxxx/html" #changed
SSLEngine on
SSLProtocol -All +TLSv1 +TLSv1.1 +TLSv1.2
SSLCipherSuite ALL:!ADH:!EXPORT:+SSLv2:RC4+RSA:+HIGH:+MEDIUM:+LOW
SSLCertificateFile /xxxx/ssl/xxxxxx.crt #changed
SSLCertificateKeyFile /xxxx/ssl/xxxxxxx.key #changed
SSLCACertificateFile /xxxx/ssl/xxxxxx.cer #changed
LogLevel warn
ErrorLog logs/ipv6_ssl_error_log
CustomLog logs/ipv6_ssl_access_log \
"%h %a %l %I %O %u %t %X %T %D \"%r\" %>s %b \"%{Referer}i\" \"%{User-Agent}i\" %{SSL_PROTOCOL}x %{SSL_CIPHER}x"
SSLProxyEngine on
ProxyPass /courrier/ http://[::1]:xxxx/ #changed
ProxyPassReverse /courrier/ http://[::1]:xxxx/ #changed
</VirtualHost>
************************************
I access the site as:
https://mydomain.net/courrier/ #changed
Thanks,
Luís.
Fri Sep 20 2024 16:37:21 EDT from IGnatius T Foobar Subject: Re: Ask for correction in WebCit software.I implemented with VirtualHost+ProxyPass. I did not used the Key
word "Alias" but:
ProxyPass /courrier/ ws://127.0.0.1:xxxx/
ProxyPassReverse /courrier/ ws://127.0.0.1:xxxx/
If you are using a VirtualHost you should proxy the root, not "/courrier".
Just push the whole site through unchanged.
Please.. I really need help on this.. additional headers I add to local.cnf are also not being shown in the email header.. I've tried lots of different things but no matter what I do, subject or headers do not get amended or added.
same problem here - https://forum.ubuntuusers.de/topic/spamassassin-aender-subject-und-fuegt-headers-/
thx
Craig.
Tue Sep 17 2024 10:07:31 EDT from cjonlineHi, I need help with spamassassin.. It marks the spam correct but is not adding the ** SPAM ** flag to the subject.. please help.. this has never worked since day 1.
Craig.
SAMPLE EMAIL-
Subject: You have been selected to win a Chanel Perfume from Boots! Message-ID: <138431787230895.8.PZH1682504663@marketstandard.click> From: "Boots" <Chanel.Perfume-hwp@marketstandard.click> X-Spam-Level: ******* X-Spam-Status: True, score=7.4 required=2.0CONFIG -# Add *****SPAM***** to the Subject header of spam e-mails # rewrite_header Subject [***** SPAM _SCORE_ *****] # Save spam messages as a message/rfc822 MIME attachment instead of # modifying the original message (0: off, 2: use text/plain instead) # report_safe 0 # Set which networks or hosts are considered 'trusted' by your mail # server (i.e. not spammers) # # trusted_networks 212.17.35. # Set file-locking method (flock is not safe over NFS, but is faster) # # lock_method flock # Set the threshold at which a message is considered spam (default: 5.0) # required_score 2.0 # Use Bayesian classifier (default: 1) # use_bayes 1 # Bayesian classifier auto-learning (default: 1) # bayes_auto_learn 1
Hi,
is Citadel supoorting telnet by standard install or is there something to configure ?
Greetings form Germany
Please.. I really need help on this.. additional headers I add
to local.cnf are also not being shown in the email header..
I've tried lots of different things but no matter what I do,
subject or headers do not get amended or added.
That is correct. Citadel Server does not ingest email headers modified by SpamAssassin. It sends the message over to `spamd` and requests a scan. If the message is identified as spam it is either rejected (the default setting) or marked with the `X-Spam-Status` header.
Also ... please do not post example spam to the support forum, not even the headers. We distribute the contents of this forum as a mailing list and posting spam snippets makes it trigger other recipients' spam filters.
is Citadel supoorting telnet by standard install or is there
something to configure ?
The standard install includes a text mode client installed into /usr/local/citadel/citadel
There are instructions at [ https://www.citadel.org/how_do_i_get_citadel.html ] which outline the steps required to make your system answer telnet connections with the Citadel client.
is Citadel supoorting telnet by standard install or is there
something to configure ?
The standard install includes a text mode client installed into /usr/local/citadel/citadel
There are instructions at [ https://www.citadel.org/how_do_i_get_citadel.html ] which outline the steps required to make your system answer telnet connections with the Citadel client.
Thanks for your help. Do i need to start this text mode client separated ?