Atomicorp

The open source variant of Atmail has been EOL for some years already. Atmail is no longer supported by Plesk.

If you use that argument against CR, you should definitely not use the Atomic or ASL repos. ;-) I for one am strongly recommending to enable CR permanently. They are certainly not test builds, and did pass major QA. Most CR packages are just waiting for the next point release. Right now the CR mostl...

Yes, Plesk should take care of everything. See the manual about the Web Application Firewall on http://download1.parallels.com/Plesk/Do ... =73383.htm

I totally agree with you Scott. Amavisd-new does seem to be the best supported option though. I would be happy with something faster and less ugly to manage.

I have looked into postscreen and we reject using the Spamhaus SBL which does help a lot.

Amavisd-new is well documented and the software and all requirements are packaged by EPEL. You need to do a little manual configuration, which can simply be automated using a config management tool such as Ansible.

We use Postfix with Amavisd-new exclusively on all Plesk 12 / CentOS 7 machines.

Newer versions of OpenSSL reject Diffie Hellman groups below 768 bits to prevent a possible downgrade attack. Your mail server is most likely using a weak cipher to connect to another mail server with a weak Diffie Hellman group. Not sure about the correct TLS settings in Qmail for maximum compatibi...

faris wrote:Some posts on the Odin forums indicate the stock version is not vulnerable. But I have not tested personally.

The Plesk stock version of psa-proftpd is not vulnerable indeed.

That means that psmon is restarting httpd because it thinks it is not running. Is httpd running? What does /var/log/httpd/error_log tell you?

Why place a bulky Apache WAF in front of your lean Nginx setup?

Hi ASL, Since the ASL 4.0.11 update "/var/asl/bin/cgacct.sh" is run frequently as part of "/etc/cron.d/asl_cg". Also, the process "cgrulesengd" is running and taking a significant amount of CPU cycles. We do not want to use the ASL Rev Limiter. Is it possible to disable...

Some tips:

- Manage and check your mail server reputation at Microsoft mail services: https://postmaster.live.com/snds/ipStatus.aspx
- Contact Microsoft regarding mail delivery: https://support.live.com/eform.aspx?pro ... ct=eformts

That's odd. You may want to report this to ASL support as that should not be happening! That said, I have seen it from time to time (and reported it). Usually the following works for me to clear the "stuck" blocked IP addresses: service asl-firewall restart If that doesn't work: sqlite3 /v...

*bump* We haven't encountered a single ASL machine where the web application inventory scanner actually reported something. Is there anything we can do to further debug this component? Or can you take a look? This post from June 2014 never got a reply. I also noted that the APPINV rules are over a ...

You could insert firewall rules in INPUT before ASL-GEO-BLACKLIST .

Yes, just restart the HIDS.