Erik van Straten<p>"Coinbase emails will always come from an email address ending in coinbase.com."<br><a href="https://nordvpn.com/blog/coinbase-scam-emails/" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">nordvpn.com/blog/coinbase-scam</span><span class="invisible">-emails/</span></a></p><p>Open <a href="https://www.virustotal.com/gui/ip-address/193.143.1.14/relations" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://www.</span><span class="ellipsis">virustotal.com/gui/ip-address/</span><span class="invisible">193.143.1.14/relations</span></a> (open the RELATIONS tab) and tap ••• a couple of times and you'll see something like (without the [ ] to prevent accidental opening):</p><p>587163-coinbase[.]com<br>756126-coinbase[.]com<br>36424-coinbase[.]com</p><p>Those domains end in "coinbase.com" but do not belong to "coinbase.com".</p><p>What the NordVPN author means (and IMO should have clarified) is that the *SMTP* sending email address domain must be either:</p><p>• exactly "coinbase.com"</p><p>or</p><p>• "whatever.coinbase.com"</p><p>or</p><p>• "repeat.whatvever.coinbase.com"</p><p>This, of course, applies to *any* sending email domain, in particular from organizations that are or may be spoofed.</p><p><a href="https://infosec.exchange/tags/DomainNames" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>DomainNames</span></a> <a href="https://infosec.exchange/tags/Coinbase" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Coinbase</span></a> <a href="https://infosec.exchange/tags/SMTP" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SMTP</span></a> <a href="https://infosec.exchange/tags/UnderstandingDomainNames" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>UnderstandingDomainNames</span></a></p>
wspanialy.eu is one of the many independent Mastodon servers you can use to participate in the fediverse.
Nieoficjalna, polska instancja Mastodona, dla wszystkich.
Administered by:
Server stats:
46active users
wspanialy.eu: About · Profiles directory · Privacy policy
Mastodon: About · Get the app · Keyboard shortcuts · View source code · v4.4.0-alpha.2+glitch
#smtp
2 posts · 2 participants · 0 posts today
Blain Smith<p>What would you use these days to send out emails with auth codes for a small-ish web app? I have no interest in using Sendgrid, Mailgun, etc. I just need something to send out emails from `no-reply@example.com`</p><p>I don't even need to accept incoming email.</p><p><a href="https://fosstodon.org/tags/SMTP" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SMTP</span></a> <a href="https://fosstodon.org/tags/Email" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Email</span></a></p>
ellyxir<h2>selfhosting mail server on nixos</h2>
selfhosting mail server on nixos #nixos #smtp
<p><a href="https://kbin.melroy.org/m/selfhosted@lemmy.world/t/713256" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">kbin.melroy.org/m/selfhosted@l</span><span class="invisible">emmy.world/t/713256</span></a></p>
Kevin Karhan :verified:<p><span class="h-card" translate="no"><a href="https://chaos.social/@compl4xx" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>compl4xx</span></a></span> <span class="h-card" translate="no"><a href="https://layer8.space/@Layer8" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>Layer8</span></a></span> <span class="h-card" translate="no"><a href="https://hhmx.de/@nick" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>nick</span></a></span> <span class="h-card" translate="no"><a href="https://social.tchncs.de/@kuketzblog" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>kuketzblog</span></a></span> <span class="h-card" translate="no"><a href="https://waldvogel.family/@marcel" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>marcel</span></a></span> <span class="h-card" translate="no"><a href="https://fnordon.de/@mspro" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>mspro</span></a></span></p><ul><li><em>EXAKT DAS!</em></li></ul><p><a href="https://infosec.space/@kkarhan/113938762230637543" rel="nofollow noopener" target="_blank">Meine Rede</a>...</p><p>Oder um es einfach zu erklären: Warum gibt es <a href="https://infosec.space/tags/HTTP" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>HTTP</span></a>(S) & <a href="https://infosec.space/tags/HTML" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>HTML</span></a> sowie <a href="https://infosec.space/tags/eMail" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>eMail</span></a> ( <a href="https://infosec.space/tags/IMAP" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>IMAP</span></a> & <a href="https://infosec.space/tags/SMTP" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SMTP</span></a>) bis heute und keiner nutzt mehr <a href="https://infosec.space/tags/AOL" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>AOL</span></a>, <a href="https://infosec.space/tags/MSN" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>MSN</span></a>, <a href="https://infosec.space/tags/ICQ" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ICQ</span></a>?</p><ul><li>Weil nur <a href="https://infosec.space/tags/OffeneStandards" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OffeneStandards</span></a> als <a href="https://infosec.space/tags/MultiVendor" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>MultiVendor</span></a> & <a href="https://infosec.space/tags/MultiProvider" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>MultiProvider</span></a> - Lösung taugen und langfristig überleben können!!!</li></ul><p>Wenn <span class="h-card" translate="no"><a href="https://mastodon.world/@signalapp" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>signalapp</span></a></span> / <a href="https://infosec.space/tags/Signal" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Signal</span></a> wegen <a href="https://infosec.space/tags/CloudAct" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>CloudAct</span></a> <em>geflipped</em> wird wie <a href="https://infosec.space/tags/EncroChat" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>EncroChat</span></a>, <a href="https://infosec.space/tags/AN%C3%98M" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ANØM</span></a> & <a href="https://infosec.space/tags/SkyECC" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SkyECC</span></a> dann stehen Leute alternativlos in der shice ubd die ganzen <em>"Sicherheitsversprechen"</em> lösen sich in <em>"<a href="https://infosec.space/tags/TrustMeBro" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>TrustMeBro</span></a>!"</em> und <a href="https://infosec.space/tags/L%C3%BCgen" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Lügen</span></a> auf.</p><ul><li>Wohingegen selbst wenn <span class="h-card" translate="no"><a href="https://monocles.social/@monocles" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>monocles</span></a></span> nen Front wäre, es mit <a href="https://infosec.space/tags/XMPP" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>XMPP</span></a>+<a href="https://infosec.space/tags/OMEMO" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OMEMO</span></a> & <a href="https://infosec.space/tags/PGP" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>PGP</span></a>/MIME (bspw. <span class="h-card" translate="no"><a href="https://chaos.social/@delta" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>delta</span></a></span> / <a href="https://infosec.space/tags/deltaChat" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>deltaChat</span></a>) sie Sicherheit sank <a href="https://infosec.space/tags/SepfCustody" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SepfCustody</span></a> gewahrt und mittels <span class="h-card" translate="no"><a href="https://mastodon.social/@torproject" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>torproject</span></a></span> / <a href="https://infosec.space/tags/Tor" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Tor</span></a> zusätzliche Sicherheit implementiert werden kann!</li></ul><p>Ich nutze meinen XMPP-Account seit Ewigkeiten und habe drölfzig Clients durch. Aber Kontakte erreichen mich darüber Problemlos!</p>
Patryk Krawaczyński<p>Hartowanie (sub)domen nieużywanych do wysyłki i odbioru poczty ( <a href="https://nfsec.pl/root/6582" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="">nfsec.pl/root/6582</span><span class="invisible"></span></a> ) <a href="https://infosec.exchange/tags/smtp" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>smtp</span></a> <a href="https://infosec.exchange/tags/domain" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>domain</span></a> <a href="https://infosec.exchange/tags/security" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>security</span></a> <a href="https://infosec.exchange/tags/email" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>email</span></a> <a href="https://infosec.exchange/tags/twittermigration" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>twittermigration</span></a> </p><p><a href="https://www.youtube.com/watch?v=rmOJ6Nb4rKA" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://www.</span><span class="">youtube.com/watch?v=rmOJ6Nb4rKA</span><span class="invisible"></span></a></p>
Delta Chat<p>Preventing enshittification of platforms rests on credible exit for users and devs. <a href="https://chaos.social/tags/ActivityPub" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ActivityPub</span></a> and <a href="https://chaos.social/tags/SMTP" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SMTP</span></a> are not perfect but</p><p>a) are implemented und understood by many players, </p><p>b) enable freedom of choice of servers and clients,</p><p>c) implement <a href="https://chaos.social/tags/RightToMigrate" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>RightToMigrate</span></a> as well as self/community custody </p><p>Many <a href="https://chaos.social/tags/p2p" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>p2p</span></a> projects promise to remove servers but often promote and depend on a single implementation stack, have no spec and no interop among <a href="https://chaos.social/tags/p2p" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>p2p</span></a> islands, and thus struggle to provide credible exit.</p>
Paolo Melchiorre<p>TIL Network protocols Sans I/O ⚡</p><p>“… network protocol implementations written in Python that perform no I/O (this means libraries that operate directly on text or bytes; this excludes libraries that just abstract out I/O).” 🤯</p><p>Read the reference page 👇<br><a href="https://sans-io.readthedocs.io/" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="">sans-io.readthedocs.io/</span><span class="invisible"></span></a></p><p><a href="https://fosstodon.org/tags/Reusability" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Reusability</span></a> <a href="https://fosstodon.org/tags/Python" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Python</span></a> <a href="https://fosstodon.org/tags/FastCGI" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>FastCGI</span></a> <a href="https://fosstodon.org/tags/HTTP2" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>HTTP2</span></a> <a href="https://fosstodon.org/tags/H11" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>H11</span></a> <a href="https://fosstodon.org/tags/IRC" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>IRC</span></a> <a href="https://fosstodon.org/tags/OAuth2" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OAuth2</span></a> <a href="https://fosstodon.org/tags/OAuthLib" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OAuthLib</span></a> <a href="https://fosstodon.org/tags/WebSocket" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>WebSocket</span></a> <a href="https://fosstodon.org/tags/SOCKS5" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SOCKS5</span></a> <a href="https://fosstodon.org/tags/RFC2217" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>RFC2217</span></a> <a href="https://fosstodon.org/tags/SerialOverIP" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SerialOverIP</span></a> <a href="https://fosstodon.org/tags/EPICS" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>EPICS</span></a> <a href="https://fosstodon.org/tags/FIX" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>FIX</span></a> <a href="https://fosstodon.org/tags/QUIC" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>QUIC</span></a> <a href="https://fosstodon.org/tags/LanguageServerProtocol" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>LanguageServerProtocol</span></a> <a href="https://fosstodon.org/tags/SMTP" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SMTP</span></a> <a href="https://fosstodon.org/tags/DBus" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>DBus</span></a> <a href="https://fosstodon.org/tags/ThorlabsAPT" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ThorlabsAPT</span></a> <a href="https://fosstodon.org/tags/Matrix" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Matrix</span></a> <a href="https://fosstodon.org/tags/SSL" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SSL</span></a> <a href="https://fosstodon.org/tags/TLS" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>TLS</span></a> <a href="https://fosstodon.org/tags/CPython" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>CPython</span></a> <a href="https://fosstodon.org/tags/multipart" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>multipart</span></a> <a href="https://fosstodon.org/tags/formdata" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>formdata</span></a></p>
Kevin Karhan :verified:<p><span class="h-card" translate="no"><a href="https://infosec.exchange/@n_dimension" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>n_dimension</span></a></span> Granted, <em>"Encryption at Rest"</em> should be the default given <a href="https://infosec.space/tags/GDPR" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>GDPR</span></a> & <a href="https://infosec.space/tags/BDSG" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>BDSG</span></a>. </p><p>My main gripe with <span class="h-card" translate="no"><a href="https://mastodon.social/@Tutanota" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>Tutanota</span></a></span> and <span class="h-card" translate="no"><a href="https://fosstodon.org/@protonmail" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>protonmail</span></a></span> / <span class="h-card" translate="no"><a href="https://mastodon.social/@protonprivacy" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>protonprivacy</span></a></span> is that they don't do <a href="https://infosec.space/tags/IMAP4" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>IMAP4</span></a> & <a href="https://infosec.space/tags/SMTP" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SMTP</span></a> or <a href="https://infosec.space/tags/Paywall" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Paywall</span></a> that basic functionality. </p><p>OFC, <span class="h-card" translate="no"><a href="https://monocles.social/@monocles" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>monocles</span></a></span> unlike <a href="https://infosec.space/tags/CockLi" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>CockLi</span></a> does require a <a href="https://infosec.space/tags/paid" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>paid</span></a> <a href="https://infosec.space/tags/subscription" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>subscription</span></a> but in return they do accept <a href="https://infosec.space/tags/CashByMail" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>CashByMail</span></a> & <a href="https://infosec.space/tags/Monero" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Monero</span></a> on top of <a href="https://infosec.space/tags/PayPal" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>PayPal</span></a>, <a href="https://infosec.space/tags/Stripe" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Stripe</span></a> and <a href="https://infosec.space/tags/SEPA" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SEPA</span></a>...</p>
davidnewman<p>Quote of the day, from <span class="h-card" translate="no"><a href="https://io.mwl.io/@mwl" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>mwl</span></a></span>: “SMTP is a relic of an earlier Internet, when email was a miracle and spammers received personalized threats from Air Force officers.”</p><p><a href="https://mastodon.social/tags/ryoms" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ryoms</span></a> <a href="https://mastodon.social/tags/smtp" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>smtp</span></a> <a href="https://mastodon.social/tags/email" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>email</span></a> <a href="https://mastodon.social/tags/networkengineering" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>networkengineering</span></a> <a href="https://mastodon.social/tags/internet" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>internet</span></a></p>
Ross McKay<p>Very much enjoying <span class="h-card" translate="no"><a href="https://io.mwl.io/@mwl" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>mwl</span></a></span> book Run Your Own Mail Server. The writing style really helps what otherwise would be a really dry read:</p><p>"But SMTP is a relic of an earlier Internet, when email was a miracle and spammers received personalized threats from Air Force officers."</p><p>Looking forward to revisiting my postfix/dovecot config after reading the rest!</p><p><a href="https://mwl.io/nonfiction/tools" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="">mwl.io/nonfiction/tools</span><span class="invisible"></span></a></p><p><a href="https://fosstodon.org/tags/SMTP" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SMTP</span></a> <a href="https://fosstodon.org/tags/email" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>email</span></a></p>
Cadu Silva :verified_pe:<p>Se sua instância envia menos que 1.000 e-mails por mês dá para usar o SMTP2GO no plano gratuito.</p><p>📬 <a href="https://www.smtp2go.com/pricing/" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://www.</span><span class="">smtp2go.com/pricing/</span><span class="invisible"></span></a></p><p><span class="h-card" translate="no"><a href="https://a.gup.pe/u/fediadminbr" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>fediadminbr</span></a></span> </p><p><a href="https://bolha.one/tags/FediAdminBR" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>FediAdminBR</span></a> <a href="https://bolha.one/tags/MastoAdmin" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>MastoAdmin</span></a> <a href="https://bolha.one/tags/SMTP" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SMTP</span></a></p>
Patryk Krawaczyński<p>SMTP Smuggling Attack ( <a href="https://nfsec.pl/ai/6561" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="">nfsec.pl/ai/6561</span><span class="invisible"></span></a> ) <a href="https://infosec.exchange/tags/smtp" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>smtp</span></a> <a href="https://infosec.exchange/tags/security" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>security</span></a> <a href="https://infosec.exchange/tags/linux" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>linux</span></a> <a href="https://infosec.exchange/tags/servers" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>servers</span></a> <a href="https://infosec.exchange/tags/twittermigration" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>twittermigration</span></a> </p><p><a href="https://www.youtube.com/watch?v=P1Jjz-1EskY" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://www.</span><span class="ellipsis">youtube.com/watch?v=P1Jjz-1Esk</span><span class="invisible">Y</span></a></p>
David Bisset<p>For <a href="https://phpc.social/tags/developers" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>developers</span></a>:</p><p>MailCatcher runs a super simple <a href="https://phpc.social/tags/SMTP" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SMTP</span></a> server - run this and set your favourite app to deliver to smtp://127.0.0.1:1025 instead of your default SMTP server, then check out in browser http://127.0.0.1:1080 to see the mail that's arrived so far.</p><p><a href="https://mailcatcher.me/" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="">mailcatcher.me/</span><span class="invisible"></span></a> <a href="https://phpc.social/tags/webdev" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>webdev</span></a></p>
meka<p>On <a href="https://bsd.network/tags/FreeBSD" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>FreeBSD</span></a> the support for OAuth2 is missing on <a href="https://bsd.network/tags/SMTP" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SMTP</span></a> in <a href="https://bsd.network/tags/Thunderbird" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Thunderbird</span></a>, but it's present on <a href="https://bsd.network/tags/IMAP" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>IMAP</span></a>. Anyone knows what am I missing for SMTP to get OAuth2? Thank you!</p>
Lukas Beran<p>Inbound SMTP DANE with DNSSEC for Exchange Online is generally available!</p><p>It can be configured via PowerShell and since December, it should be available also from Exchange admin center.</p><p>New accepted domains will start using the mx.microsoft domain instead of the mail.protection.outlook.com domain.</p><p>Some consumer Outlook domains have been already migrated, the remaining Outlook and Hotmail domains for consumer email is expected to be completed by the end of 2024.</p><p><a href="https://techcommunity.microsoft.com/t5/exchange-team-blog/announcing-general-availability-of-inbound-smtp-dane-with-dnssec/ba-p/4281292" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">techcommunity.microsoft.com/t5</span><span class="invisible">/exchange-team-blog/announcing-general-availability-of-inbound-smtp-dane-with-dnssec/ba-p/4281292</span></a></p><p><a href="https://infosec.exchange/tags/smtp" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>smtp</span></a> <a href="https://infosec.exchange/tags/dane" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>dane</span></a> <a href="https://infosec.exchange/tags/office365" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>office365</span></a> <a href="https://infosec.exchange/tags/exchangeonline" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>exchangeonline</span></a></p>
C₆H₁₂O₆<p>Anybody observing "OpenSSL::SSL::SSLError: SSL_connect returned=1 errno=0 peeraddr=<ip>:587 state=error: wrong version number" since upgrading to <a href="https://pfalz.social/tags/Mastodon" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Mastodon</span></a> 4.3?</p><p>Outgoing mail is broken here because of that. Switching providers - same problem.</p><p><a href="https://pfalz.social/tags/MastoAdmin" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>MastoAdmin</span></a> <a href="https://pfalz.social/tags/SMTP" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SMTP</span></a> <a href="https://pfalz.social/tags/Rails" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Rails</span></a></p>
Kevin Karhan :verified:<p><span class="h-card" translate="no"><a href="https://freiburg.social/@ditol" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>ditol</span></a></span> <span class="h-card" translate="no"><a href="https://mastodon.world/@samueljohn" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>samueljohn</span></a></span> <span class="h-card" translate="no"><a href="https://23.social/@linuzifer" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>linuzifer</span></a></span> </p><p><em>THIS</em> is where I disagree...</p><p>You may think it's elitist, but if people are too lazy to learn even fundamentals like how to use <a href="https://infosec.space/tags/Tails" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Tails</span></a> then maybe they should just not do <a href="https://infosec.space/tags/tech" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>tech</span></a> at all?</p><ul><li>Like: We expect people to show at the every least theoretical proficiency in terms of <a href="https://infosec.space/tags/TrafficCode" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>TrafficCode</span></a> and <a href="https://infosec.space/tags/VehicleSafety" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>VehicleSafety</span></a> in +every juristiction I'm aware of* and literally mandated <a href="https://infosec.space/tags/DrivingLicense" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>DrivingLicense</span></a>|s for that reason.</li></ul><p>I'll gladly teach <a href="https://infosec.space/tags/TechIlliterates" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>TechIlliterates</span></a> but I won't waste my time on <a href="https://infosec.space/@kkarhan/113344834546549105" rel="nofollow noopener" target="_blank">people that spread disinfo</a>...</p><p>It's 2024: <span class="h-card" translate="no"><a href="https://venera.social/profile/tails_live" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>tails_live</span></a></span> / <span class="h-card" translate="no"><a href="https://fosstodon.org/@tails" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>tails</span></a></span> has been out for over a decade and there are a shitload of guides ranging from written documentation to Zoomer-friendly TikTok-Style shorts on how to get started.</p><ul><li><p>I don't expect people to do <a href="https://infosec.space/tags/airgapped" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>airgapped</span></a> <a href="https://www.youtube.com/watch?v=vdab4T_CoN8" rel="nofollow noopener" target="_blank">pffline-PGP</a> but with <span class="h-card" translate="no"><a href="https://mastodon.online/@thunderbird" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>thunderbird</span></a></span> including <a href="https://infosec.space/tags/Enigmail" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Enigmail</span></a> and not requiring any external dependencies like the god-awful <a href="https://infosec.space/tags/GPG4Win" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>GPG4Win</span></a> stuff's easier than ever.</p></li><li><p>Same with <a href="https://infosec.space/tags/mobile" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>mobile</span></a>: <a href="https://infosec.space/tags/Appls" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Appls</span></a> like <span class="h-card" translate="no"><a href="https://monocles.social/@monocles" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>monocles</span></a></span> / <a href="https://infosec.space/tags/monoclesChat" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>monoclesChat</span></a> are so easy, I've been able to onboard literal tech-illiterates remotely with few steps and <a href="https://docs.monocles.eu/apps/chat.app/" rel="nofollow noopener" target="_blank">simple instructions</a>. </p></li></ul><p>FOR THE LAST TIME: </p><p>*STOP MAKING EXCUSES TO JUSTIFY ESCALATING COMMITMENT TO EVIDENTLY BAD SOLUTIONS!"</p><ul><li>Cuz <a href="https://web.archive.org/web/20240000000000*/https://twitter.com/thegrugq/status/1085614812581715968" rel="nofollow noopener" target="_blank">when push comes to shove</a> <span class="h-card" translate="no"><a href="https://mastodon.world/@Mer__edith" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>Mer__edith</span></a></span> herself would introduce a <a href="https://infosec.space/tags/Govware" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Govware</span></a> <a href="https://infosec.space/tags/backdoor" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>backdoor</span></a> into <span class="h-card" translate="no"><a href="https://mastodon.world/@signalapp" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>signalapp</span></a></span> when faced with indefinite jailtime...</li></ul><p>Whereas with <a href="https://infosec.space/tags/SelfCustody" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SelfCustody</span></a> of all the keys as well as <a href="https://infosec.space/tags/ReproduceableBuilds" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ReproduceableBuilds</span></a> and <em>real</em> <a href="https://infosec.space/tags/decentralization" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>decentralization</span></a>, this would be evidently impossible even if all the devs wanted to comply honestly and not just because they could be held at gunpoint.</p><ul><li><a href="https://infosec.space/tags/Signal" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Signal</span></a> is not your friend. It's merely a tax-exempt <em>"non-profit"</em> corporation, and corporations are explicitly nobodys friend - espechally when they demand <a href="https://infosec.space/tags/PII" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>PII</span></a> like <a href="https://infosec.space/@kkarhan/111968251463697943" rel="nofollow noopener" target="_blank">phone numbers</a> for useage.</li></ul><p>Compare that to <a href="https://infosec.space/tags/monocles" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>monocles</span></a> where you do pay like €2 p.m. but in return get <a href="https://infosec.space/tags/standard" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>standard</span></a> <a href="https://infosec.space/tags/protocols" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>protocols</span></a> like <a href="https://infosec.space/tags/IMAP" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>IMAP</span></a>, <a href="https://infosec.space/tags/SMTP" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SMTP</span></a> & <a href="https://infosec.space/tags/XMPP" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>XMPP</span></a> and <a href="https://monocles.eu/more/#payment-section" rel="nofollow noopener" target="_blank">can pay anonymously</a> and not have to provide any PII whatsoever!</p><ul><li>And unlike <a href="https://infosec.space/tags/Signal" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Signal</span></a> they ain't dependent on <a href="https://infosec.space/tags/VC" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>VC</span></a> funding and <a href="https://infosec.space/tags/grant" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>grant</span></a> money to keep the lights on.</li></ul><p>Make of that what you will, but just like allowing flatearthers to roam freely without caretaker supervision doesn't make the world less round, so won't the facts change about <a href="https://infosec.space/tags/ITsec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ITsec</span></a>, <a href="https://infosec.space/tags/InfoSec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>InfoSec</span></a>, <a href="https://infosec.space/tags/OpSec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OpSec</span></a> & <a href="https://infosec.space/tags/ComSec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ComSec</span></a>. </p><ul><li>The only reason Signal is still online and not <a href="https://infosec.space/tags/pwned" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>pwned</span></a> like <a href="https://infosec.space/tags/EncroChat" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>EncroChat</span></a> is because it's either a Sting op like <a href="https://infosec.space/tags/AN%C3%98M" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ANØM</span></a> aka. <a href="https://infosec.space/tags/OperationIronside" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OperationIronside</span></a> aka. <a href="https://infosec.space/tags/OperationTr%C3%B8janShield" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OperationTrøjanShield</span></a> or they have already backdoored their <a href="https://infosec.space/tags/backend" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>backend</span></a> so hard that all their <a href="https://infosec.space/tags/marketing" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>marketing</span></a> is just <a href="https://infosec.space/tags/lies" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>lies</span></a> like <a href="https://infosec.space/tags/Apple" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Apple</span></a>...<br></li></ul><p>Because all <a href="https://infosec.space/tags/centralized" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>centralized</span></a>, <a href="https://infosec.space/tags/SingleVendor" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SingleVendor</span></a> & <a href="https://infosec.space/tags/SingleProvider" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SingleProvider</span></a> solutions are bad, and if they don't even allow for <a href="https://infosec.space/tags/SelfCustody" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SelfCustody</span></a> then they are just a <a href="https://infosec.space/tags/grift" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>grift</span></a> to <a href="https://infosec.space/tags/scam" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>scam</span></a> tech-illiterates that don't know and/or don't care! </p><p><a href="https://infosec.space/tags/thxbye" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>thxbye</span></a> <a href="https://infosec.space/tags/EOD" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>EOD</span></a></p>
Fell<p>No emails today.<br>I wonder if my mail server is broken?<br>*Checks spam folder*<br>"The elongation secret!" - 20 minutes ago<br>Nope, it's working.</p><p><a href="https://ma.fellr.net/tags/email" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>email</span></a> <a href="https://ma.fellr.net/tags/selfhosted" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>selfhosted</span></a> <a href="https://ma.fellr.net/tags/selfhosting" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>selfhosting</span></a> <a href="https://ma.fellr.net/tags/mailserver" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>mailserver</span></a> <a href="https://ma.fellr.net/tags/smtp" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>smtp</span></a> <a href="https://ma.fellr.net/tags/imap" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>imap</span></a> <a href="https://ma.fellr.net/tags/sysadmin" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>sysadmin</span></a></p>
AliveDevil<p>That was funny.<br>Some idiots used spoofed E-Mails to send a phishing E-Mail to some non-existent domain, which then the Google Mail SMTP server rejects, and due to the way the E-Mail was set up, resulted in me getting the delivery failure - with obviously malicious E-Mail content. </p><p>Google, you'll need to step up your game, I think.</p><p>If someone wants to poke at the original message headers, here you go: <a href="https://gist.github.com/AliveDevil/78d841658e20b790ed4a628e5edb1718" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">gist.github.com/AliveDevil/78d</span><span class="invisible">841658e20b790ed4a628e5edb1718</span></a></p><p><a href="https://tauri.earth/tags/Phishing" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Phishing</span></a> <a href="https://tauri.earth/tags/GoogleMail" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>GoogleMail</span></a> <a href="https://tauri.earth/tags/Google" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Google</span></a> <a href="https://tauri.earth/tags/SMTP" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SMTP</span></a> <a href="https://tauri.earth/tags/Spam" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Spam</span></a> <a href="https://tauri.earth/tags/EMail" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>EMail</span></a> <a href="https://tauri.earth/tags/Mail" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Mail</span></a></p>
kravietz 🦇<p>Slightly irritated by the <a class="hashtag" href="https://agora.echelon.pl/tag/smtp" rel="nofollow noopener" target="_blank">#SMTP</a> TLS-RPT reports coming to my email in their designated - and unreadable - JSON+gzip format, I’ve written a simple parser and analyzer for these:</p><p><a href="https://git.sr.ht/~kravietz/tlsrpt-rs" rel="nofollow noopener" target="_blank">https://git.sr.ht/~kravietz/tlsrpt-rs</a></p><p>The idea is that the reports are parsed with the program called from <code>/etc/aliases</code> or using IMAP, and then a reporting tool periodically runs from <code>cron</code> to notify about any possible violations.</p>
ExploreLive feeds
Mastodon is the best way to keep up with what's happening.
Follow anyone across the fediverse and see it all in chronological order. No algorithms, ads, or clickbait in sight.
Create accountLoginDrag & drop to upload