If you're running #OpenSMTPD without LibreSSL and were hoping for server-side EC certificates support, you might want to read this and rejoice:
https://t.co/67PhfYy6HW
I finally got it figured out. Gonna write a nice and short blogpost about how to setup @OpenSMTPD, @dovecotmail and @PostgreSQL with RSpamd, sieve and a unified database to authenticate against on #OpenBSD
@zeroware_ Weird MAIL FROM happen a lot, not necessarily related nor worrisome.
lmtp was vulnerable to unprivileged command execution. mbox was vulnerable to escalation. maildir was unaffected.
ALERT, ALERT, ALERT.
The great folks at Qualys have discovered a critical vulnerability in #OpenSMTPD.
Please read this, upgrade ASAP and RT so people get patched out as soon as possible.
We'll write about it when things settle down.
https://t.co/A4czIf1Ur1