wspanialy.eu is one of the many independent Mastodon servers you can use to participate in the fediverse.
Nieoficjalna, polska instancja Mastodona, dla wszystkich.

Administered by:

Server stats:

46
active users

#smtp

2 posts2 participants0 posts today
Erik van Straten<p>"Coinbase emails will always come from an email address ending in coinbase.com."<br><a href="https://nordvpn.com/blog/coinbase-scam-emails/" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">nordvpn.com/blog/coinbase-scam</span><span class="invisible">-emails/</span></a></p><p>Open <a href="https://www.virustotal.com/gui/ip-address/193.143.1.14/relations" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://www.</span><span class="ellipsis">virustotal.com/gui/ip-address/</span><span class="invisible">193.143.1.14/relations</span></a> (open the RELATIONS tab) and tap ••• a couple of times and you'll see something like (without the [ ] to prevent accidental opening):</p><p>587163-coinbase[.]com<br>756126-coinbase[.]com<br>36424-coinbase[.]com</p><p>Those domains end in "coinbase.com" but do not belong to "coinbase.com".</p><p>What the NordVPN author means (and IMO should have clarified) is that the *SMTP* sending email address domain must be either:</p><p>• exactly "coinbase.com"</p><p>or</p><p>• "whatever.coinbase.com"</p><p>or</p><p>• "repeat.whatvever.coinbase.com"</p><p>This, of course, applies to *any* sending email domain, in particular from organizations that are or may be spoofed.</p><p><a href="https://infosec.exchange/tags/DomainNames" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>DomainNames</span></a> <a href="https://infosec.exchange/tags/Coinbase" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Coinbase</span></a> <a href="https://infosec.exchange/tags/SMTP" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SMTP</span></a> <a href="https://infosec.exchange/tags/UnderstandingDomainNames" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>UnderstandingDomainNames</span></a></p>
Blain Smith<p>What would you use these days to send out emails with auth codes for a small-ish web app? I have no interest in using Sendgrid, Mailgun, etc. I just need something to send out emails from `no-reply@example.com`</p><p>I don't even need to accept incoming email.</p><p><a href="https://fosstodon.org/tags/SMTP" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SMTP</span></a> <a href="https://fosstodon.org/tags/Email" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Email</span></a></p>
ellyxir<h2>selfhosting mail server on nixos</h2> selfhosting mail server on nixos #nixos #smtp <p><a href="https://kbin.melroy.org/m/selfhosted@lemmy.world/t/713256" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">kbin.melroy.org/m/selfhosted@l</span><span class="invisible">emmy.world/t/713256</span></a></p>
Kevin Karhan :verified:<p><span class="h-card" translate="no"><a href="https://chaos.social/@compl4xx" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>compl4xx</span></a></span> <span class="h-card" translate="no"><a href="https://layer8.space/@Layer8" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>Layer8</span></a></span> <span class="h-card" translate="no"><a href="https://hhmx.de/@nick" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>nick</span></a></span> <span class="h-card" translate="no"><a href="https://social.tchncs.de/@kuketzblog" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>kuketzblog</span></a></span> <span class="h-card" translate="no"><a href="https://waldvogel.family/@marcel" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>marcel</span></a></span> <span class="h-card" translate="no"><a href="https://fnordon.de/@mspro" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>mspro</span></a></span></p><ul><li><em>EXAKT DAS!</em></li></ul><p><a href="https://infosec.space/@kkarhan/113938762230637543" rel="nofollow noopener" target="_blank">Meine Rede</a>...</p><p>Oder um es einfach zu erklären: Warum gibt es <a href="https://infosec.space/tags/HTTP" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>HTTP</span></a>(S) &amp; <a href="https://infosec.space/tags/HTML" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>HTML</span></a> sowie <a href="https://infosec.space/tags/eMail" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>eMail</span></a> ( <a href="https://infosec.space/tags/IMAP" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>IMAP</span></a> &amp; <a href="https://infosec.space/tags/SMTP" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SMTP</span></a>) bis heute und keiner nutzt mehr <a href="https://infosec.space/tags/AOL" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>AOL</span></a>, <a href="https://infosec.space/tags/MSN" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>MSN</span></a>, <a href="https://infosec.space/tags/ICQ" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ICQ</span></a>?</p><ul><li>Weil nur <a href="https://infosec.space/tags/OffeneStandards" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OffeneStandards</span></a> als <a href="https://infosec.space/tags/MultiVendor" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>MultiVendor</span></a> &amp; <a href="https://infosec.space/tags/MultiProvider" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>MultiProvider</span></a> - Lösung taugen und langfristig überleben können!!!</li></ul><p>Wenn <span class="h-card" translate="no"><a href="https://mastodon.world/@signalapp" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>signalapp</span></a></span> / <a href="https://infosec.space/tags/Signal" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Signal</span></a> wegen <a href="https://infosec.space/tags/CloudAct" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>CloudAct</span></a> <em>geflipped</em> wird wie <a href="https://infosec.space/tags/EncroChat" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>EncroChat</span></a>, <a href="https://infosec.space/tags/AN%C3%98M" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ANØM</span></a> &amp; <a href="https://infosec.space/tags/SkyECC" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SkyECC</span></a> dann stehen Leute alternativlos in der shice ubd die ganzen <em>"Sicherheitsversprechen"</em> lösen sich in <em>"<a href="https://infosec.space/tags/TrustMeBro" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>TrustMeBro</span></a>!"</em> und <a href="https://infosec.space/tags/L%C3%BCgen" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Lügen</span></a> auf.</p><ul><li>Wohingegen selbst wenn <span class="h-card" translate="no"><a href="https://monocles.social/@monocles" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>monocles</span></a></span> nen Front wäre, es mit <a href="https://infosec.space/tags/XMPP" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>XMPP</span></a>+<a href="https://infosec.space/tags/OMEMO" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OMEMO</span></a> &amp; <a href="https://infosec.space/tags/PGP" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>PGP</span></a>/MIME (bspw. <span class="h-card" translate="no"><a href="https://chaos.social/@delta" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>delta</span></a></span> / <a href="https://infosec.space/tags/deltaChat" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>deltaChat</span></a>) sie Sicherheit sank <a href="https://infosec.space/tags/SepfCustody" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SepfCustody</span></a> gewahrt und mittels <span class="h-card" translate="no"><a href="https://mastodon.social/@torproject" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>torproject</span></a></span> / <a href="https://infosec.space/tags/Tor" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Tor</span></a> zusätzliche Sicherheit implementiert werden kann!</li></ul><p>Ich nutze meinen XMPP-Account seit Ewigkeiten und habe drölfzig Clients durch. Aber Kontakte erreichen mich darüber Problemlos!</p>
Patryk Krawaczyński<p>Hartowanie (sub)domen nieużywanych do wysyłki i odbioru poczty ( <a href="https://nfsec.pl/root/6582" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="">nfsec.pl/root/6582</span><span class="invisible"></span></a> ) <a href="https://infosec.exchange/tags/smtp" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>smtp</span></a> <a href="https://infosec.exchange/tags/domain" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>domain</span></a> <a href="https://infosec.exchange/tags/security" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>security</span></a> <a href="https://infosec.exchange/tags/email" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>email</span></a> <a href="https://infosec.exchange/tags/twittermigration" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>twittermigration</span></a> </p><p><a href="https://www.youtube.com/watch?v=rmOJ6Nb4rKA" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://www.</span><span class="">youtube.com/watch?v=rmOJ6Nb4rKA</span><span class="invisible"></span></a></p>
Delta Chat<p>Preventing enshittification of platforms rests on credible exit for users and devs. <a href="https://chaos.social/tags/ActivityPub" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ActivityPub</span></a> and <a href="https://chaos.social/tags/SMTP" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SMTP</span></a> are not perfect but</p><p>a) are implemented und understood by many players, </p><p>b) enable freedom of choice of servers and clients,</p><p>c) implement <a href="https://chaos.social/tags/RightToMigrate" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>RightToMigrate</span></a> as well as self/community custody </p><p>Many <a href="https://chaos.social/tags/p2p" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>p2p</span></a> projects promise to remove servers but often promote and depend on a single implementation stack, have no spec and no interop among <a href="https://chaos.social/tags/p2p" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>p2p</span></a> islands, and thus struggle to provide credible exit.</p>
Paolo Melchiorre<p>TIL Network protocols Sans I/O ⚡</p><p>“… network protocol implementations written in Python that perform no I/O (this means libraries that operate directly on text or bytes; this excludes libraries that just abstract out I/O).” 🤯</p><p>Read the reference page 👇<br><a href="https://sans-io.readthedocs.io/" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="">sans-io.readthedocs.io/</span><span class="invisible"></span></a></p><p><a href="https://fosstodon.org/tags/Reusability" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Reusability</span></a> <a href="https://fosstodon.org/tags/Python" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Python</span></a> <a href="https://fosstodon.org/tags/FastCGI" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>FastCGI</span></a> <a href="https://fosstodon.org/tags/HTTP2" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>HTTP2</span></a> <a href="https://fosstodon.org/tags/H11" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>H11</span></a> <a href="https://fosstodon.org/tags/IRC" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>IRC</span></a> <a href="https://fosstodon.org/tags/OAuth2" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OAuth2</span></a> <a href="https://fosstodon.org/tags/OAuthLib" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OAuthLib</span></a> <a href="https://fosstodon.org/tags/WebSocket" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>WebSocket</span></a> <a href="https://fosstodon.org/tags/SOCKS5" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SOCKS5</span></a> <a href="https://fosstodon.org/tags/RFC2217" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>RFC2217</span></a> <a href="https://fosstodon.org/tags/SerialOverIP" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SerialOverIP</span></a> <a href="https://fosstodon.org/tags/EPICS" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>EPICS</span></a> <a href="https://fosstodon.org/tags/FIX" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>FIX</span></a> <a href="https://fosstodon.org/tags/QUIC" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>QUIC</span></a> <a href="https://fosstodon.org/tags/LanguageServerProtocol" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>LanguageServerProtocol</span></a> <a href="https://fosstodon.org/tags/SMTP" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SMTP</span></a> <a href="https://fosstodon.org/tags/DBus" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>DBus</span></a> <a href="https://fosstodon.org/tags/ThorlabsAPT" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ThorlabsAPT</span></a> <a href="https://fosstodon.org/tags/Matrix" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Matrix</span></a> <a href="https://fosstodon.org/tags/SSL" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SSL</span></a> <a href="https://fosstodon.org/tags/TLS" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>TLS</span></a> <a href="https://fosstodon.org/tags/CPython" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>CPython</span></a> <a href="https://fosstodon.org/tags/multipart" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>multipart</span></a> <a href="https://fosstodon.org/tags/formdata" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>formdata</span></a></p>
Kevin Karhan :verified:<p><span class="h-card" translate="no"><a href="https://infosec.exchange/@n_dimension" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>n_dimension</span></a></span> Granted, <em>"Encryption at Rest"</em> should be the default given <a href="https://infosec.space/tags/GDPR" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>GDPR</span></a> &amp; <a href="https://infosec.space/tags/BDSG" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>BDSG</span></a>. </p><p>My main gripe with <span class="h-card" translate="no"><a href="https://mastodon.social/@Tutanota" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>Tutanota</span></a></span> and <span class="h-card" translate="no"><a href="https://fosstodon.org/@protonmail" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>protonmail</span></a></span> / <span class="h-card" translate="no"><a href="https://mastodon.social/@protonprivacy" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>protonprivacy</span></a></span> is that they don't do <a href="https://infosec.space/tags/IMAP4" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>IMAP4</span></a> &amp; <a href="https://infosec.space/tags/SMTP" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SMTP</span></a> or <a href="https://infosec.space/tags/Paywall" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Paywall</span></a> that basic functionality. </p><p>OFC, <span class="h-card" translate="no"><a href="https://monocles.social/@monocles" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>monocles</span></a></span> unlike <a href="https://infosec.space/tags/CockLi" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>CockLi</span></a> does require a <a href="https://infosec.space/tags/paid" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>paid</span></a> <a href="https://infosec.space/tags/subscription" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>subscription</span></a> but in return they do accept <a href="https://infosec.space/tags/CashByMail" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>CashByMail</span></a> &amp; <a href="https://infosec.space/tags/Monero" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Monero</span></a> on top of <a href="https://infosec.space/tags/PayPal" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>PayPal</span></a>, <a href="https://infosec.space/tags/Stripe" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Stripe</span></a> and <a href="https://infosec.space/tags/SEPA" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SEPA</span></a>...</p>
davidnewman<p>Quote of the day, from <span class="h-card" translate="no"><a href="https://io.mwl.io/@mwl" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>mwl</span></a></span>: “SMTP is a relic of an earlier Internet, when email was a miracle and spammers received personalized threats from Air Force officers.”</p><p><a href="https://mastodon.social/tags/ryoms" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ryoms</span></a> <a href="https://mastodon.social/tags/smtp" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>smtp</span></a> <a href="https://mastodon.social/tags/email" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>email</span></a> <a href="https://mastodon.social/tags/networkengineering" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>networkengineering</span></a> <a href="https://mastodon.social/tags/internet" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>internet</span></a></p>
Ross McKay<p>Very much enjoying <span class="h-card" translate="no"><a href="https://io.mwl.io/@mwl" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>mwl</span></a></span> book Run Your Own Mail Server. The writing style really helps what otherwise would be a really dry read:</p><p>"But SMTP is a relic of an earlier Internet, when email was a miracle and spammers received personalized threats from Air Force officers."</p><p>Looking forward to revisiting my postfix/dovecot config after reading the rest!</p><p><a href="https://mwl.io/nonfiction/tools" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="">mwl.io/nonfiction/tools</span><span class="invisible"></span></a></p><p><a href="https://fosstodon.org/tags/SMTP" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SMTP</span></a> <a href="https://fosstodon.org/tags/email" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>email</span></a></p>
Cadu Silva :verified_pe:<p>Se sua instância envia menos que 1.000 e-mails por mês dá para usar o SMTP2GO no plano gratuito.</p><p>📬 <a href="https://www.smtp2go.com/pricing/" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://www.</span><span class="">smtp2go.com/pricing/</span><span class="invisible"></span></a></p><p><span class="h-card" translate="no"><a href="https://a.gup.pe/u/fediadminbr" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>fediadminbr</span></a></span> </p><p><a href="https://bolha.one/tags/FediAdminBR" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>FediAdminBR</span></a> <a href="https://bolha.one/tags/MastoAdmin" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>MastoAdmin</span></a> <a href="https://bolha.one/tags/SMTP" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SMTP</span></a></p>
Patryk Krawaczyński<p>SMTP Smuggling Attack ( <a href="https://nfsec.pl/ai/6561" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="">nfsec.pl/ai/6561</span><span class="invisible"></span></a> ) <a href="https://infosec.exchange/tags/smtp" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>smtp</span></a> <a href="https://infosec.exchange/tags/security" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>security</span></a> <a href="https://infosec.exchange/tags/linux" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>linux</span></a> <a href="https://infosec.exchange/tags/servers" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>servers</span></a> <a href="https://infosec.exchange/tags/twittermigration" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>twittermigration</span></a> </p><p><a href="https://www.youtube.com/watch?v=P1Jjz-1EskY" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://www.</span><span class="ellipsis">youtube.com/watch?v=P1Jjz-1Esk</span><span class="invisible">Y</span></a></p>
David Bisset<p>For <a href="https://phpc.social/tags/developers" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>developers</span></a>:</p><p>MailCatcher runs a super simple <a href="https://phpc.social/tags/SMTP" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SMTP</span></a> server - run this and set your favourite app to deliver to smtp://127.0.0.1:1025 instead of your default SMTP server, then check out in browser http://127.0.0.1:1080 to see the mail that's arrived so far.</p><p><a href="https://mailcatcher.me/" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="">mailcatcher.me/</span><span class="invisible"></span></a> <a href="https://phpc.social/tags/webdev" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>webdev</span></a></p>
meka<p>On <a href="https://bsd.network/tags/FreeBSD" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>FreeBSD</span></a> the support for OAuth2 is missing on <a href="https://bsd.network/tags/SMTP" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SMTP</span></a> in <a href="https://bsd.network/tags/Thunderbird" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Thunderbird</span></a>, but it's present on <a href="https://bsd.network/tags/IMAP" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>IMAP</span></a>. Anyone knows what am I missing for SMTP to get OAuth2? Thank you!</p>
Lukas Beran<p>Inbound SMTP DANE with DNSSEC for Exchange Online is generally available!</p><p>It can be configured via PowerShell and since December, it should be available also from Exchange admin center.</p><p>New accepted domains will start using the mx.microsoft domain instead of the mail.protection.outlook.com domain.</p><p>Some consumer Outlook domains have been already migrated, the remaining Outlook and Hotmail domains for consumer email is expected to be completed by the end of 2024.</p><p><a href="https://techcommunity.microsoft.com/t5/exchange-team-blog/announcing-general-availability-of-inbound-smtp-dane-with-dnssec/ba-p/4281292" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">techcommunity.microsoft.com/t5</span><span class="invisible">/exchange-team-blog/announcing-general-availability-of-inbound-smtp-dane-with-dnssec/ba-p/4281292</span></a></p><p><a href="https://infosec.exchange/tags/smtp" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>smtp</span></a> <a href="https://infosec.exchange/tags/dane" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>dane</span></a> <a href="https://infosec.exchange/tags/office365" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>office365</span></a> <a href="https://infosec.exchange/tags/exchangeonline" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>exchangeonline</span></a></p>
C₆H₁₂O₆<p>Anybody observing "OpenSSL::SSL::SSLError: SSL_connect returned=1 errno=0 peeraddr=&lt;ip&gt;:587 state=error: wrong version number" since upgrading to <a href="https://pfalz.social/tags/Mastodon" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Mastodon</span></a> 4.3?</p><p>Outgoing mail is broken here because of that. Switching providers - same problem.</p><p><a href="https://pfalz.social/tags/MastoAdmin" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>MastoAdmin</span></a> <a href="https://pfalz.social/tags/SMTP" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SMTP</span></a> <a href="https://pfalz.social/tags/Rails" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Rails</span></a></p>
Kevin Karhan :verified:<p><span class="h-card" translate="no"><a href="https://freiburg.social/@ditol" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>ditol</span></a></span> <span class="h-card" translate="no"><a href="https://mastodon.world/@samueljohn" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>samueljohn</span></a></span> <span class="h-card" translate="no"><a href="https://23.social/@linuzifer" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>linuzifer</span></a></span> </p><p><em>THIS</em> is where I disagree...</p><p>You may think it's elitist, but if people are too lazy to learn even fundamentals like how to use <a href="https://infosec.space/tags/Tails" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Tails</span></a> then maybe they should just not do <a href="https://infosec.space/tags/tech" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>tech</span></a> at all?</p><ul><li>Like: We expect people to show at the every least theoretical proficiency in terms of <a href="https://infosec.space/tags/TrafficCode" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>TrafficCode</span></a> and <a href="https://infosec.space/tags/VehicleSafety" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>VehicleSafety</span></a> in +every juristiction I'm aware of* and literally mandated <a href="https://infosec.space/tags/DrivingLicense" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>DrivingLicense</span></a>|s for that reason.</li></ul><p>I'll gladly teach <a href="https://infosec.space/tags/TechIlliterates" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>TechIlliterates</span></a> but I won't waste my time on <a href="https://infosec.space/@kkarhan/113344834546549105" rel="nofollow noopener" target="_blank">people that spread disinfo</a>...</p><p>It's 2024: <span class="h-card" translate="no"><a href="https://venera.social/profile/tails_live" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>tails_live</span></a></span> / <span class="h-card" translate="no"><a href="https://fosstodon.org/@tails" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>tails</span></a></span> has been out for over a decade and there are a shitload of guides ranging from written documentation to Zoomer-friendly TikTok-Style shorts on how to get started.</p><ul><li><p>I don't expect people to do <a href="https://infosec.space/tags/airgapped" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>airgapped</span></a> <a href="https://www.youtube.com/watch?v=vdab4T_CoN8" rel="nofollow noopener" target="_blank">pffline-PGP</a> but with <span class="h-card" translate="no"><a href="https://mastodon.online/@thunderbird" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>thunderbird</span></a></span> including <a href="https://infosec.space/tags/Enigmail" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Enigmail</span></a> and not requiring any external dependencies like the god-awful <a href="https://infosec.space/tags/GPG4Win" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>GPG4Win</span></a> stuff's easier than ever.</p></li><li><p>Same with <a href="https://infosec.space/tags/mobile" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>mobile</span></a>: <a href="https://infosec.space/tags/Appls" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Appls</span></a> like <span class="h-card" translate="no"><a href="https://monocles.social/@monocles" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>monocles</span></a></span> / <a href="https://infosec.space/tags/monoclesChat" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>monoclesChat</span></a> are so easy, I've been able to onboard literal tech-illiterates remotely with few steps and <a href="https://docs.monocles.eu/apps/chat.app/" rel="nofollow noopener" target="_blank">simple instructions</a>. </p></li></ul><p>FOR THE LAST TIME: </p><p>*STOP MAKING EXCUSES TO JUSTIFY ESCALATING COMMITMENT TO EVIDENTLY BAD SOLUTIONS!"</p><ul><li>Cuz <a href="https://web.archive.org/web/20240000000000*/https://twitter.com/thegrugq/status/1085614812581715968" rel="nofollow noopener" target="_blank">when push comes to shove</a> <span class="h-card" translate="no"><a href="https://mastodon.world/@Mer__edith" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>Mer__edith</span></a></span> herself would introduce a <a href="https://infosec.space/tags/Govware" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Govware</span></a> <a href="https://infosec.space/tags/backdoor" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>backdoor</span></a> into <span class="h-card" translate="no"><a href="https://mastodon.world/@signalapp" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>signalapp</span></a></span> when faced with indefinite jailtime...</li></ul><p>Whereas with <a href="https://infosec.space/tags/SelfCustody" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SelfCustody</span></a> of all the keys as well as <a href="https://infosec.space/tags/ReproduceableBuilds" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ReproduceableBuilds</span></a> and <em>real</em> <a href="https://infosec.space/tags/decentralization" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>decentralization</span></a>, this would be evidently impossible even if all the devs wanted to comply honestly and not just because they could be held at gunpoint.</p><ul><li><a href="https://infosec.space/tags/Signal" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Signal</span></a> is not your friend. It's merely a tax-exempt <em>"non-profit"</em> corporation, and corporations are explicitly nobodys friend - espechally when they demand <a href="https://infosec.space/tags/PII" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>PII</span></a> like <a href="https://infosec.space/@kkarhan/111968251463697943" rel="nofollow noopener" target="_blank">phone numbers</a> for useage.</li></ul><p>Compare that to <a href="https://infosec.space/tags/monocles" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>monocles</span></a> where you do pay like €2 p.m. but in return get <a href="https://infosec.space/tags/standard" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>standard</span></a> <a href="https://infosec.space/tags/protocols" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>protocols</span></a> like <a href="https://infosec.space/tags/IMAP" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>IMAP</span></a>, <a href="https://infosec.space/tags/SMTP" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SMTP</span></a> &amp; <a href="https://infosec.space/tags/XMPP" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>XMPP</span></a> and <a href="https://monocles.eu/more/#payment-section" rel="nofollow noopener" target="_blank">can pay anonymously</a> and not have to provide any PII whatsoever!</p><ul><li>And unlike <a href="https://infosec.space/tags/Signal" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Signal</span></a> they ain't dependent on <a href="https://infosec.space/tags/VC" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>VC</span></a> funding and <a href="https://infosec.space/tags/grant" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>grant</span></a> money to keep the lights on.</li></ul><p>Make of that what you will, but just like allowing flatearthers to roam freely without caretaker supervision doesn't make the world less round, so won't the facts change about <a href="https://infosec.space/tags/ITsec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ITsec</span></a>, <a href="https://infosec.space/tags/InfoSec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>InfoSec</span></a>, <a href="https://infosec.space/tags/OpSec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OpSec</span></a> &amp; <a href="https://infosec.space/tags/ComSec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ComSec</span></a>. </p><ul><li>The only reason Signal is still online and not <a href="https://infosec.space/tags/pwned" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>pwned</span></a> like <a href="https://infosec.space/tags/EncroChat" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>EncroChat</span></a> is because it's either a Sting op like <a href="https://infosec.space/tags/AN%C3%98M" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ANØM</span></a> aka. <a href="https://infosec.space/tags/OperationIronside" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OperationIronside</span></a> aka. <a href="https://infosec.space/tags/OperationTr%C3%B8janShield" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OperationTrøjanShield</span></a> or they have already backdoored their <a href="https://infosec.space/tags/backend" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>backend</span></a> so hard that all their <a href="https://infosec.space/tags/marketing" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>marketing</span></a> is just <a href="https://infosec.space/tags/lies" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>lies</span></a> like <a href="https://infosec.space/tags/Apple" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Apple</span></a>...<br></li></ul><p>Because all <a href="https://infosec.space/tags/centralized" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>centralized</span></a>, <a href="https://infosec.space/tags/SingleVendor" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SingleVendor</span></a> &amp; <a href="https://infosec.space/tags/SingleProvider" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SingleProvider</span></a> solutions are bad, and if they don't even allow for <a href="https://infosec.space/tags/SelfCustody" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SelfCustody</span></a> then they are just a <a href="https://infosec.space/tags/grift" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>grift</span></a> to <a href="https://infosec.space/tags/scam" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>scam</span></a> tech-illiterates that don't know and/or don't care! </p><p><a href="https://infosec.space/tags/thxbye" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>thxbye</span></a> <a href="https://infosec.space/tags/EOD" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>EOD</span></a></p>
Fell<p>No emails today.<br>I wonder if my mail server is broken?<br>*Checks spam folder*<br>"The elongation secret!" - 20 minutes ago<br>Nope, it's working.</p><p><a href="https://ma.fellr.net/tags/email" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>email</span></a> <a href="https://ma.fellr.net/tags/selfhosted" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>selfhosted</span></a> <a href="https://ma.fellr.net/tags/selfhosting" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>selfhosting</span></a> <a href="https://ma.fellr.net/tags/mailserver" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>mailserver</span></a> <a href="https://ma.fellr.net/tags/smtp" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>smtp</span></a> <a href="https://ma.fellr.net/tags/imap" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>imap</span></a> <a href="https://ma.fellr.net/tags/sysadmin" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>sysadmin</span></a></p>
AliveDevil<p>That was funny.<br>Some idiots used spoofed E-Mails to send a phishing E-Mail to some non-existent domain, which then the Google Mail SMTP server rejects, and due to the way the E-Mail was set up, resulted in me getting the delivery failure - with obviously malicious E-Mail content. </p><p>Google, you'll need to step up your game, I think.</p><p>If someone wants to poke at the original message headers, here you go: <a href="https://gist.github.com/AliveDevil/78d841658e20b790ed4a628e5edb1718" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">gist.github.com/AliveDevil/78d</span><span class="invisible">841658e20b790ed4a628e5edb1718</span></a></p><p><a href="https://tauri.earth/tags/Phishing" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Phishing</span></a> <a href="https://tauri.earth/tags/GoogleMail" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>GoogleMail</span></a> <a href="https://tauri.earth/tags/Google" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Google</span></a> <a href="https://tauri.earth/tags/SMTP" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SMTP</span></a> <a href="https://tauri.earth/tags/Spam" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Spam</span></a> <a href="https://tauri.earth/tags/EMail" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>EMail</span></a> <a href="https://tauri.earth/tags/Mail" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Mail</span></a></p>
kravietz 🦇<p>Slightly irritated by the <a class="hashtag" href="https://agora.echelon.pl/tag/smtp" rel="nofollow noopener" target="_blank">#SMTP</a> TLS-RPT reports coming to my email in their designated - and unreadable - JSON+gzip format, I’ve written a simple parser and analyzer for these:</p><p><a href="https://git.sr.ht/~kravietz/tlsrpt-rs" rel="nofollow noopener" target="_blank">https://git.sr.ht/~kravietz/tlsrpt-rs</a></p><p>The idea is that the reports are parsed with the program called from <code>/etc/aliases</code> or using IMAP, and then a reporting tool periodically runs from <code>cron</code> to notify about any possible violations.</p>