[trinity-devel] https://mirror.git.trinitydesktop.org - no confirmation e-mail on account creation?
All,
With bugs being handled on https://mirror.git.trinitydesktop.org, I went to login and accounts were not migrated to that server. That git server doesn't use the logins from the old http://scm.trinitydesktop.org/scm/ either. So I went to create a new account (user: drankin, email: trin@3111..........) and all went fine and I was told to wait 3 hours for a confirmation e-mail. It's been nearly 12 and no confirmation e-mail was ever sent?
(I checked the server mail logs and nothing to that address at all was sent since 8/2)
Is there a problem with the registration on that server?
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512
On 2020/08/09 02:23 AM, David C. Rankin wrote:
All,
With bugs being handled on https://mirror.git.trinitydesktop.org, I went to login and accounts were not migrated to that server. That git server doesn't use the logins from the old http://scm.trinitydesktop.org/scm/ either. So I went to create a new account (user: drankin, email: trin@3111..........) and all went fine and I was told to wait 3 hours for a confirmation e-mail. It's been nearly 12 and no confirmation e-mail was ever sent?
(I checked the server mail logs and nothing to that address at all was sent since 8/2)
Is there a problem with the registration on that server?
Hi David, your account is in the list of known users. Have you tried to login? also have you checked your junk folder just in case?
Cheers Michele
--------------------------------------------------------------------- To unsubscribe, e-mail: trinity-devel-unsubscribe@lists.pearsoncomputing.net For additional commands, e-mail: trinity-devel-help@lists.pearsoncomputing.net Read list messages on the web archive: http://trinity-devel.pearsoncomputing.net/ Please remember not to top-post: http://trinity.pearsoncomputing.net/mailing_lists/#top-posting
On 8/8/20 10:45 PM, Michele Calgaro via trinity-devel wrote:
Hi David, your account is in the list of known users. Have you tried to login? also have you checked your junk folder just in case?
Thank you Michele,
Yes I checked my junk folder, nothing there. I have about 5 different Trinity accounts, so maybe I didn't try the right combination of user/pass. Let me double-check my mail folders, but before posting I did a global grep of the postfix log and nothing had come into my server to the `trin` e-mail address at all. I'll let you know what I find.
On Sunday 09 of August 2020 10:26:50 David C. Rankin wrote:
On 8/8/20 10:45 PM, Michele Calgaro via trinity-devel wrote:
Hi David, your account is in the list of known users. Have you tried to login? also have you checked your junk folder just in case?
Thank you Michele,
Yes I checked my junk folder, nothing there. I have about 5 different Trinity accounts, so maybe I didn't try the right combination of user/pass. Let me double-check my mail folders, but before posting I did a global grep of the postfix log and nothing had come into my server to the `trin` e-mail address at all. I'll let you know what I find.
Hi David,
yes, the accounts from the original SCM were not migrated, so you had to create a new one. However, there seems to be a problem with your mail server. Attempts to deliver the confirmation email are still unsuccessful:
-----Q-ID----- --Size-- -----Q-Time----- ------------Sender/Recipient----------- 07878jc2031134 1796 Sat Aug 8 07:08 gitea@localhost.localdomain (Deferred: Connection timed out with 3111skyline.com.) trin@3111skyline.com
Note: Address gitea@localhost.localdomain is during delivery rewritten to gitea@mail.trinitydesktop.net.
Cheers
On 8/9/20 4:08 AM, Slávek Banko wrote:
Hi David,
yes, the accounts from the original SCM were not migrated, so you had to create a new one. However, there seems to be a problem with your mail server. Attempts to deliver the confirmation email are still unsuccessful:
-----Q-ID----- --Size-- -----Q-Time----- ------------Sender/Recipient----------- 07878jc2031134 1796 Sat Aug 8 07:08 gitea@localhost.localdomain (Deferred: Connection timed out with 3111skyline.com.) trin@3111skyline.com
Note: Address gitea@localhost.localdomain is during delivery rewritten to gitea@mail.trinitydesktop.net.
Cheers
Thank you Slavek,
There is something funny, because I got somebody's test mail to that account, e.g.:
<quote with .. added>
m..-trinity@yosemite.net
Don't see a problem. Hmmm.
</quote>
That message came through fine.
WAIT!!!!!
I know what it is!!!
# iptables -nvL --line-numbers Chain INPUT (policy ACCEPT 3651K packets, 548M bytes) num pkts bytes target prot opt in out source destination 11 3074 182K DROP all -- * * 37.0.0.0/8 0.0.0.0/0
Why on earth is the IP from RIPE? The IP for mail.trinitydesktop.net is 37.205.10.16. The 37 IP block is the top 3 offending block. 182K of script-kiddie attempts since last boot alone.
I've opened a hole in my firewall for 37.205.10.16 Let's see if the confirm mail comes through now.
(that explains why I saw nothing in my logs -- it wasn't allowed to get there...)
On Monday 10 of August 2020 00:52:37 David C. Rankin wrote:
On 8/9/20 4:08 AM, Slávek Banko wrote:
Hi David,
yes, the accounts from the original SCM were not migrated, so you had to create a new one. However, there seems to be a problem with your mail server. Attempts to deliver the confirmation email are still unsuccessful:
-----Q-ID----- --Size-- -----Q-Time----- ------------Sender/Recipient----------- 07878jc2031134 1796 Sat Aug 8 07:08 gitea@localhost.localdomain (Deferred: Connection timed out with 3111skyline.com.) trin@3111skyline.com
Note: Address gitea@localhost.localdomain is during delivery rewritten to gitea@mail.trinitydesktop.net.
Cheers
Thank you Slavek,
There is something funny, because I got somebody's test mail to that account, e.g.:
<quote with .. added>
m..-trinity@yosemite.net
Don't see a problem. Hmmm.
</quote>
That message came through fine.
WAIT!!!!!
I know what it is!!!
# iptables -nvL --line-numbers Chain INPUT (policy ACCEPT 3651K packets, 548M bytes) num pkts bytes target prot opt in out source destination 11 3074 182K DROP all -- * * 37.0.0.0/8 0.0.0.0/0
Why on earth is the IP from RIPE? The IP for mail.trinitydesktop.net is 37.205.10.16. The 37 IP block is the top 3 offending block. 182K of script-kiddie attempts since last boot alone.
I've opened a hole in my firewall for 37.205.10.16 Let's see if the confirm mail comes through now.
voila:
Aug 9 22:55:14 localhost sm-mta[17320]: 07878jc2031134: to=trin@3111skyline.com, ctladdr=gitea@localhost.localdomain (107/113), delay=1+15:46:29, xdelay=00:00:01, mailer=esmtp, pri=21632322, relay=3111skyline.com. [66.76.46.195], dsn=2.0.0, stat=Sent (Ok: queued as 6633FF3A60)
(that explains why I saw nothing in my logs -- it wasn't allowed to get there...)
Cheers
On Sun, 9 Aug 2020, David C. Rankin wrote:
WAIT!!!!!
I know what it is!!!
# iptables -nvL --line-numbers Chain INPUT (policy ACCEPT 3651K packets, 548M bytes) num pkts bytes target prot opt in out source destination 11 3074 182K DROP all -- * * 37.0.0.0/8 0.0.0.0/0
Why on earth is the IP from RIPE? The IP for mail.trinitydesktop.net is 37.205.10.16. The 37 IP block is the top 3 offending block. 182K of script-kiddie attempts since last boot alone.
Be careful about blindly blocking /8 CIDRs that way.
My US-based web host/VPS host bought a /23 block about a year ago from in the RIPE 45.8.0.0/13 allocation.
I've seen a couple of issues such as yours with my VPS.
(Blocking with pf here....) Jonesy
On 8/9/20 7:13 PM, Marvin Jones via trinity-devel wrote:
Be careful about blindly blocking /8 CIDRs that way.
My US-based web host/VPS host bought a /23 block about a year ago from in the RIPE 45.8.0.0/13 allocation.
I've seen a couple of issues such as yours with my VPS.
(Blocking with pf here....) Jonesy
Amen,
I usually try and limit to /22 or /24 at most, but after my MediaWiki install was abused several years back I started tracking and individually adding IP blocks to my config -- but there were so many from the 37 block I finally said to heck with it and blocked the whole thing :)
Over the past 5 or so years, I've only had a handful of issue (this being one). I've had trimming my block list on the "get around to it" list for a while. I'll have to bump it up in priority. It's just a shame the internet has become so polluted that such steps are necessary. Before Mosiac -- all was good in the FTP world of old...
On Sun August 9 2020 15:52:37 David C. Rankin wrote:
# iptables -nvL --line-numbers Chain INPUT (policy ACCEPT 3651K packets, 548M bytes) num pkts bytes target prot opt in out source destination 11 3074 182K DROP all -- * * 37.0.0.0/8 0.0.0.0/0
Dang. I checked as much as I could of your SMTP and even checked BGP looking glasses but of course I couldn't see your iptables!
You might want to try rate limiting, connection limiting, and fail2ban instead of hard iptables blocks.
--Mike
--------------------------------------------------------------------- To unsubscribe, e-mail: trinity-devel-unsubscribe@lists.pearsoncomputing.net For additional commands, e-mail: trinity-devel-help@lists.pearsoncomputing.net Read list messages on the web archive: http://trinity-devel.pearsoncomputing.net/ Please remember not to top-post: http://trinity.pearsoncomputing.net/mailing_lists/#top-posting
-
David C. Rankin -
Marvin Jones via trinity-devel -
Michele Calgaro via trinity-devel
-
Mike Bird -
Slávek Banko