Email servers: Stalwart claims to replace the different programs (Postfix, Dovecot, SpamAssassin, OpenDKIM, etc) by one program.
"Installing is simple'" (curl | sudo bash…)
Bonus: there is an integrated analysis of #DMARC reports :-)
Conversation
Notices
-
Embed this notice
Stéphane Bortzmeyer (bortzmeyer@mastodon.gougere.fr)'s status on Saturday, 01-Feb-2025 23:59:26 JST 
Stéphane Bortzmeyer
-
Embed this notice
Matthieu Herrb (mherrb@mastodon.tetaneutral.net)'s status on Saturday, 01-Feb-2025 23:59:23 JST 
Matthieu Herrb
@bortzmeyer I've been running a test server for several month now. I've found it quite deceptive that some useful basic features are hidden behind the "entrerprise" commercial license.
I'm not too sure anymore I want to replace my existing Sendmail/Postfix/OpenSMTPd + dovecot setups by Stalwart.Haelwenn /элвэн/ :triskell: likes this. -
Embed this notice
Stéphane Bortzmeyer (bortzmeyer@mastodon.gougere.fr)'s status on Saturday, 01-Feb-2025 23:59:24 JST
Stéphane Bortzmeyer
All the preentation of Stalwart was awfully marketing, with a lot of "intuitive", "modern", "enterprise-ready" and other corporate bullshit.
-
Embed this notice
Stéphane Bortzmeyer (bortzmeyer@mastodon.gougere.fr)'s status on Saturday, 01-Feb-2025 23:59:25 JST
Stéphane Bortzmeyer
Marketing: Bayes classification is now listed under "AI".
-
Embed this notice
Stéphane Bortzmeyer (bortzmeyer@mastodon.gougere.fr)'s status on Sunday, 02-Feb-2025 00:00:57 JST
Stéphane Bortzmeyer
Another all-in-one email server, mox.
Includes EAI (internationalized email addresss)
The speaker has a Go t-shirt (mox is written in Go)
Unlike the previous talk, he emphasizes the problems that are outside of the control of the server (reverse IP, for instance)
-
Embed this notice
Stéphane Bortzmeyer (bortzmeyer@mastodon.gougere.fr)'s status on Sunday, 02-Feb-2025 00:00:58 JST
Stéphane Bortzmeyer
#DNS devroom at #FOSDEM. Already almost full.
"getaddrinfo sucks, everything else is much worse"
Haelwenn /элвэн/ :triskell: likes this. -
Embed this notice
Stéphane Bortzmeyer (bortzmeyer@mastodon.gougere.fr)'s status on Sunday, 02-Feb-2025 00:00:58 JST
Stéphane Bortzmeyer
Valentin Gosu @valenting on name resolution "This talk may incluse some rants"
getaddrinfo was invented in 1995…
Haelwenn /элвэн/ :triskell: likes this. -
Embed this notice
Stéphane Bortzmeyer (bortzmeyer@mastodon.gougere.fr)'s status on Sunday, 02-Feb-2025 00:00:59 JST
Stéphane Bortzmeyer
Very good talk about the synchronization of the all-in-one email server with #DNS: no standard, many custom APIs.
Solution; a dedicated proxy, dnsclay (receives DNS dyn. update from mox and talks many custom APIs).
-
Embed this notice
Stéphane Bortzmeyer (bortzmeyer@mastodon.gougere.fr)'s status on Sunday, 02-Feb-2025 00:01:00 JST
Stéphane Bortzmeyer
"Setting up an email server requires to add around 15 #DNS records."
-
Embed this notice
Stéphane Bortzmeyer (bortzmeyer@mastodon.gougere.fr)'s status on Sunday, 02-Feb-2025 00:01:01 JST
Stéphane Bortzmeyer
"I don't understand why #DNSSEC is not yet the default for resolvers on Linux machines."
-
Embed this notice
Stéphane Bortzmeyer (bortzmeyer@mastodon.gougere.fr)'s status on Sunday, 02-Feb-2025 00:01:05 JST
Stéphane Bortzmeyer
A BIND maintainer comes into the room.
"Sorry it is full. But you can come in."
-
Embed this notice
Stéphane Bortzmeyer (bortzmeyer@mastodon.gougere.fr)'s status on Sunday, 02-Feb-2025 01:08:56 JST
Stéphane Bortzmeyer
The good thing about getaddrinfo: it works and on all platforms.
The bad things: not the full response details like the TTL (remember it is not just for #DNS), no way to control resolution from the application (some may say it is a good thing)
And it is only for A/AAAA records. How to use SVCB?
But also, Firefox (the speaker works for Mozilla) has a DoH client, DoH being easier / better than getaddrinfo for a Web browser.
-
Embed this notice
Stéphane Bortzmeyer (bortzmeyer@mastodon.gougere.fr)'s status on Sunday, 02-Feb-2025 01:09:11 JST
Stéphane Bortzmeyer
"Yes, I can do it for IPv6, with some tricks."
Haelwenn /элвэн/ :triskell: likes this. -
Embed this notice
Stéphane Bortzmeyer (bortzmeyer@mastodon.gougere.fr)'s status on Sunday, 02-Feb-2025 01:09:12 JST
Stéphane Bortzmeyer
"The entire picture is four gigapixels. Not all viewers can display it."
-
Embed this notice
Stéphane Bortzmeyer (bortzmeyer@mastodon.gougere.fr)'s status on Sunday, 02-Feb-2025 01:09:13 JST
Stéphane Bortzmeyer
"rDNS Map In Your Hands" by Alexey Milovidov It produces this: https://reversedns.space/ (by requesting every PTR for IPv4 space)
https://mastodon.gougere.fr/@DNSresolver/113929400664745720 (PTR records are for traceroute and broken email servers)
-
Embed this notice
Stéphane Bortzmeyer (bortzmeyer@mastodon.gougere.fr)'s status on Sunday, 02-Feb-2025 01:09:14 JST
Stéphane Bortzmeyer
In many countries (like France…) these public #DNS resolvers are useful for freedom (access to censored content because of the increased demand of governments for DNS-based blocking).
-
Embed this notice
Stéphane Bortzmeyer (bortzmeyer@mastodon.gougere.fr)'s status on Sunday, 02-Feb-2025 01:09:15 JST
Stéphane Bortzmeyer
"Is big DNS taking over?" by Farzaneh Badiei (Digital Medusa)
Will the big US-based public #DNS resolvers replace everything?
Preliminary report at https://digitalmedusa.org/wp-content/uploads/2023/12/Upload-DNS-Resolvers-First-Draft-October.pdf
-
Embed this notice
Stéphane Bortzmeyer (bortzmeyer@mastodon.gougere.fr)'s status on Sunday, 02-Feb-2025 01:09:16 JST
Stéphane Bortzmeyer
The mess of programming. An official API for name resolution with full details (DNSQuery_A) works for HTTPS records in Windows 11 but does not work working in WIndows 10.
-
Embed this notice
Stéphane Bortzmeyer (bortzmeyer@mastodon.gougere.fr)'s status on Sunday, 02-Feb-2025 03:12:58 JST
Stéphane Bortzmeyer
And to end the day at the #DNS devroom, "Honey, I shrunk DNSdist" by @habbie (replacing @rgacogne, the maintainer who is sick without even the fault of the FOSDEM)
Disclaimer: #dnsdist is used by the public DNS resolver {doh,dot,doq}.bortzmeyer.fr
Haelwenn /элвэн/ :triskell: likes this. -
Embed this notice
Stéphane Bortzmeyer (bortzmeyer@mastodon.gougere.fr)'s status on Sunday, 02-Feb-2025 03:12:59 JST
Stéphane Bortzmeyer
Replaced the old cooperative scheduling with per-thread libuv loops. "The kernel is smarter than we are"
-
Embed this notice
Stéphane Bortzmeyer (bortzmeyer@mastodon.gougere.fr)'s status on Sunday, 02-Feb-2025 03:13:05 JST
Stéphane Bortzmeyer
"How to make BIND 9 fast(er)" by @ondrej
New locks: https://dl.acm.org/doi/10.1145/2442516.2442532
Use of userspace RCU (Read-Copy-Update)
Making some data structures lock-free
-
Embed this notice
Stéphane Bortzmeyer (bortzmeyer@mastodon.gougere.fr)'s status on Sunday, 02-Feb-2025 03:13:07 JST
Stéphane Bortzmeyer
And proving that you own an IP network?
-
Embed this notice
Stéphane Bortzmeyer (bortzmeyer@mastodon.gougere.fr)'s status on Sunday, 02-Feb-2025 03:13:08 JST
Stéphane Bortzmeyer
For proving you own a Web site;, is a TXT in the DNS better than a HTML file in the Web site? Pros and cons?
-
Embed this notice
Stéphane Bortzmeyer (bortzmeyer@mastodon.gougere.fr)'s status on Sunday, 02-Feb-2025 03:13:09 JST
Stéphane Bortzmeyer
There is an Internet-Draft for that: https://datatracker.ietf.org/doc/draft-ietf-dnsop-domain-verification-techniques/
See also https://keyoxide.org/
-
Embed this notice
Stéphane Bortzmeyer (bortzmeyer@mastodon.gougere.fr)'s status on Sunday, 02-Feb-2025 03:13:10 JST
Stéphane Bortzmeyer
"Prove website, domain, and network ownership" by Mark Overmeer
Just do like Oracle, add TXT records at the apex. https://mastodon.gougere.fr/@DNSresolver/113929489912379335
-
Embed this notice
All GNU social JP content and data are available under the