Patches Applied:
qt-netqmail-1.06-1.0.1.patch
qt-smtp-smtpd-debug-f2b.patch
qt-smtp-command-debug.patch
qt-qualys.patch
qt-smtp-command-debug.patch is replaced by qt-smtp-smtpd-debug-f2b.patch (link above).
In order to log SMTP transactions do the following:
qmailctl stop
Add 'SMTP_DEBUG="1"' to /etc/tcprules.d/tcp.smtp
Replace contents of '/var/qmail/supervise/smtp/log/run' script with below to log transactions to different file:
#!/bin/sh LOGSIZE=`cat /var/qmail/control/logsize` LOGCOUNT=`cat /var/qmail/control/logcount` exec /usr/bin/setuidgid qmaill \ /usr/bin/multilog t s$LOGSIZE n$LOGCOUNT \ '-*' '+@* server:[*' '+@* client:[*' /var/log/qmail/smtptx \ '+*' '-@* server:[*' '-@* client:[*' /var/log/qmail/smtp 2>&1
qmailctl start && qmailctl cdb
tail -f /var/log/qmail/smtptx/current | tai64nlocal
Fail2Ban can be used to block IP's trying to authorize outside TLS, the log entry is in the following form:
503 auth not available (#5.3.3) - xxx.xxx.xxx.xxx
See QMT wiki