I'm currently sending emails from various Pis via Gmail. I'm assuming
that the forthcoming changes to Gmail authentication will break this.
Has anyone worked out how to resolve this ? I've had a look online, but nothing has shown up. I'm using a combination of msmtp and mpack to
send.

Thanks

Adrian
--
To Reply :
replace "bulleid" with "adrian" - all mail to bulleid is rejected
Sorry for the rigmarole, If I want spam, I'll go to the shops
Every time someone says "I don't believe in trolls", another one dies.

--- SoupGate-Win32 v1.05
* Origin: Agency HUB, Dunedin - New Zealand | Fido<>Usenet Gateway (3:770/3)

Adrian wrote:

I'm currently sending emails from various Pis via Gmail.  I'm assuming that the
forthcoming changes to Gmail authentication will break this. Has anyone worked
out how to resolve this ?  I've had a look online, but nothing has shown up. I'm using a combination of msmtp and mpack to send.

msmtp seems to support "auth xoauth2"

<https://marlam.de/msmtp/msmtp.html#Authentication-commands>

--- SoupGate-Win32 v1.05
* Origin: Agency HUB, Dunedin - New Zealand | Fido<>Usenet Gateway (3:770/3)

In message <jarbd6Fktp1U1@mid.individual.net>, Andy Burns
<usenet@andyburns.uk> writes

Adrian wrote:

I'm currently sending emails from various Pis via Gmail.  I'm
assuming that the forthcoming changes to Gmail authentication will
break this. Has anyone worked out how to resolve this ?  I've had a
look online, but nothing has shown up. I'm using a combination of
msmtp and mpack to send.

msmtp seems to support "auth xoauth2"

<https://marlam.de/msmtp/msmtp.html#Authentication-commands>

Thanks, I'll have a play when I've got some time.

Adrian
--
To Reply :
replace "bulleid" with "adrian" - all mail to bulleid is rejected
Sorry for the rigmarole, If I want spam, I'll go to the shops
Every time someone says "I don't believe in trolls", another one dies.

--- SoupGate-Win32 v1.05
* Origin: Agency HUB, Dunedin - New Zealand | Fido<>Usenet Gateway (3:770/3)

On 4/2/22 09:44, Adrian wrote:

I'm currently sending emails from various Pis via Gmail.  I'm assuming
that the forthcoming changes to Gmail authentication will break this.
Has anyone worked out how to resolve this ?  I've had a look online, but nothing has shown up.  I'm using a combination of msmtp and mpack to send.

Thanks

Adrian

I had to enable DKIM on my mail server. This seemed to resolve most of
the issues I had with gmail.

knute...

--- SoupGate-Win32 v1.05
* Origin: Agency HUB, Dunedin - New Zealand | Fido<>Usenet Gateway (3:770/3)

On 2022-04-02, Adrian <bulleid@ku.gro.lioff> wrote:

I'm currently sending emails from various Pis via Gmail. I'm assuming
that the forthcoming changes to Gmail authentication will break this.
Has anyone worked out how to resolve this ? I've had a look online, but nothing has shown up. I'm using a combination of msmtp and mpack to
send.

Find a provider that isn't trying to lock you into their surveillance state.

--
/~\ Charlie Gibbs | Microsoft is a dictatorship.
\ / <cgibbs@kltpzyxm.invalid> | Apple is a cult.
X I'm really at ac.dekanfrus | Linux is anarchy.
/ \ if you read it the right way. | Pick your poison.

--- SoupGate-Win32 v1.05
* Origin: Agency HUB, Dunedin - New Zealand | Fido<>Usenet Gateway (3:770/3)

Find a provider that isn't trying to lock you into their surveillance state.

In other words, be your own provider? Any company that offers 'free' email is making their money somewhere else...often through the sale of 'user data'...

It's not impossible to set up your own email server at home, provided you have a valid web address to route it through...

McDoob
SysOp, PiBBS
pibbs.sytes.net

... BREAKFAST.COM Halted... Cereal port not responding.

--- Mystic BBS v1.12 A47 2021/12/24 (Raspberry Pi/32)
* Origin: PiBBS (1:229/110)

Knute Johnson wrote:

I had to enable DKIM on my mail server.  This seemed to resolve most of the issues I had with gmail.

They have forthcoming authentication changes, they'll be disabling their "allow less secure apps" setting, and will prefer you to use oAuth2, failing that you'll have to enable 2-step verification on the gmail account which will allow you to create an "app specific password" for IMAP/POP/SMTP clients.

If you're allergic to giving them your phone number and leaving 2-step verification enabled, better find a different email provider.

--- SoupGate-Win32 v1.05
* Origin: Agency HUB, Dunedin - New Zealand | Fido<>Usenet Gateway (3:770/3)

On Sat, 02 Apr 2022 20:28:21 +1200
nospam.Shaun.Buzza@f110.n229.z1.fidonet.org (Shaun Buzza) wrote:

It's not impossible to set up your own email server at home, provided you have a valid web address to route it through...

_______________^^^^^^^^^^^

You do know that global email is more than a decade older than
the world wide web ? Make that a domain you'll need. You will also need a static IP address (you can use DDNS but things are going to be iffy when
the IP address changes, especially if the new holder of your old IP is also running a mail server) for your mail server. Then you'll need to configure
it - offline until you have it secure!

Once you have the basics you'll need to set up incoming and
outgoing SMTP - you'd best find a trusted relay for outgoing because
unless that static IP address is on your own network (you have an ASN and
an IP range) then it's almost certainly in a blacklisted domestic range and nobody will accept mail originating there. That's before you get into all
the fun and games required to be a trusted mail source in this massively
spam filtered world even when your IP address isn't on some blacklist along with the rest of the range.

Many ISPs seem to have given up trying to maintain their own
trusted relays (probably because sooner or later some idiot customer tries spamming) and will reluctantly tell you of one you can use but refuse to guarantee delivery through it. I went for the free tier of a commercial provider whose main customers are businesses that need reliable email and
don't want the trouble of running their own.

Once you have the incoming and outgoing transport set up you'll
need spam filtering, delivery, and an IMAP and/or POP3 server unless
delivery is to a single machine. If you want access outside your LAN for
POP3 and IMAP then you'll have to think about security - a VPN into the LAN
is one option (the one I use).

Oh yes on the subject of security the less there is running on your router the harder it is to hack the network from outside - so don't run
your mail servers on the router, instead run every service in its own
container on an internal host.

Yes it is possible to run your own mail server at home, I do it
and I wouldn't have it any other way. It is nowhere near as simple as it was
in 1992 when I first did it with KA9Q.

--
Steve O'Hara-Smith
Odds and Ends at http://www.sohara.org/

--- SoupGate-Win32 v1.05
* Origin: Agency HUB, Dunedin - New Zealand | Fido<>Usenet Gateway (3:770/3)

Re: Re: Gmail from Pi
By: Ahem A Rivet's Shot to Shaun Buzza on Sun Apr 03 2022 07:10 am

You do know that global email is more than a decade older than
the world wide web ? Make that a domain you'll need. You will also need a static IP address (you can use DDNS but things are going to be iffy when
the IP address changes, especially if the new holder of your old IP is also running a mail server) for your mail server. Then you'll need to configure it - offline until you have it secure!

[MASSIVE SNIP]

I have not had bad issues operating my own email server - despise all the bad press suggesting otherwise. You need to have your SPF, DKIM etc. right but that is about it. If you ISP is not an asshole org it helps a lot.

That said, I am willing to believe that if you serve a significant number of users, one will eventually act dickish and get you in a spam list, which is where I guess problems will begin.

There are comercial SMTP relays out there which will act as your output point for a fee, so even if you DO have probems keeping your infrastructure reputable, you can pay this trouble off if need be.

--
gopher://gopher.richardfalken.com/1/richardfalken
--- SBBSecho 3.15-Linux
* Origin: Palantir * palantirbbs.ddns.net * Pensacola, FL * (1:123/115)

On 03/04/2022 07:10, Ahem A Rivet's Shot wrote:

On Sat, 02 Apr 2022 20:28:21 +1200 nospam.Shaun.Buzza@f110.n229.z1.fidonet.org (Shaun Buzza) wrote:

It's not impossible to set up your own email server at home, provided you
have a valid web address to route it through...

_______________^^^^^^^^^^^

You do know that global email is more than a decade older than
the world wide web ? Make that a domain you'll need. You will also need a static IP address (you can use DDNS but things are going to be iffy when
the IP address changes, especially if the new holder of your old IP is also running a mail server) for your mail server. Then you'll need to configure
it - offline until you have it secure!

The key is to set up a VPS outside of your own internal network in
internet land.

Then you need to set up a mail system - Postgres, sendmail or exim - to
send and receive mail from it, and a POP3 or IMAP server (dovecot) to
collect mail from it.
You may or may not want to add some spam filters to that, and of course
you strictly want to add SMTP passwords for relaying. Otherwise you will
become a spam relay in ait half an hour from switchon, and blacklisted
by the end of the day..

Once you have the basics you'll need to set up incoming and
outgoing SMTP - you'd best find a trusted relay for outgoing because
unless that static IP address is on your own network (you have an ASN and
an IP range) then it's almost certainly in a blacklisted domestic range and nobody will accept mail originating there. That's before you get into all
the fun and games required to be a trusted mail source in this massively
spam filtered world even when your IP address isn't on some blacklist along with the rest of the range.

Most VPNs that allow you to have a reverse IP lookup will be trusted by
most people.

Many ISPs seem to have given up trying to maintain their own
trusted relays (probably because sooner or later some idiot customer tries spamming) and will reluctantly tell you of one you can use but refuse to guarantee delivery through it. I went for the free tier of a commercial provider whose main customers are businesses that need reliable email and don't want the trouble of running their own.

Once you have the incoming and outgoing transport set up you'll
need spam filtering, delivery, and an IMAP and/or POP3 server unless
delivery is to a single machine. If you want access outside your LAN for
POP3 and IMAP then you'll have to think about security - a VPN into the LAN is one option (the one I use).

A VPS out there in internet land is globally accessible if you use IMAP.
Its your own gmail type service

It is not hard to set up.

Oh yes on the subject of security the less there is running on your router the harder it is to hack the network from outside - so don't run
your mail servers on the router, instead run every service in its own container on an internal host.

Yes it is possible to run your own mail server at home, I do it
and I wouldn't have it any other way. It is nowhere near as simple as it was in 1992 when I first did it with KA9Q.

It is a lot easier to do it on a VPS. And safer

--
"What do you think about Gay Marriage?"
"I don't."
"Don't what?"
"Think about Gay Marriage."

--- SoupGate-Win32 v1.05
* Origin: Agency HUB, Dunedin - New Zealand | Fido<>Usenet Gateway (3:770/3)

On Sun, 03 Apr 2022 04:45:09 +1200 nospam.Richard.Falken@f1.n770.z9844.fidonet.org (Richard Falken) wrote:

That said, I am willing to believe that if you serve a significant number
of users, one will eventually act dickish and get you in a spam list,
which is where I guess problems will begin.

The common problem I've seen is that the ISP has enough customers
who try spamming that their whole block gets blacklisted somewhere, or they don't bother with reverse DNS at all on their IP block and that gets it blacklisted or ...

There are comercial SMTP relays out there which will act as your output
point for a fee, so even if you DO have probems keeping your
infrastructure reputable, you can pay this trouble off if need be.

Some of them even have a free tier that's way more than any normal person or family could use - that's my current solution to the problem.

--
Steve O'Hara-Smith
Odds and Ends at http://www.sohara.org/

--- SoupGate-Win32 v1.05
* Origin: Agency HUB, Dunedin - New Zealand | Fido<>Usenet Gateway (3:770/3)

On Sat, 2 Apr 2022 15:44:46 +0100, Adrian wrote:

I'm currently sending emails from various Pis via Gmail.

Personally, I wouldn't touch Gmail, Microsoft or any other free mail
service because I *know* they'll be selling everything they can find out
about me to anybody that wants it: how else do you think they can provide
a 'free' service to you?

I've used essentially the same setup since the late '90s. My mail is
routed in and out via an ISP, Demon at first, then UKFSN, now Zen and all
ISP changes have been painless because I own a domain name, hosted by a
3rd party. The domain name host redirects mail and HTML requests to my
current ISP, so if I change ISPs, I edit edit the domain redirects to send
mail and web traffic to the new ISP, who also hosts the public-facing copy
of my websites.

For security, my LAN's firewall is invisible to external access: this is possible because:
- FTP connections to update my websites connect outward from here to my
ISP. I run a local webserver where web pages are edited and checked
before being made visible externally by copying them to the website
mirror on my ISP's webserver.

- I use getmail to retrieve incoming mail from my inbox at my ISP and pass
it, via Spamassassin, to my local Postfix mailserver for
distribution on my LAN.

- Outgoing mail is passed to my local Postfix mailserver which forwards it
to my outbox at my ISP, from where my ISP passes it to its destination.

- I do not use or need any internet services that accept connections
from outside my LAN's firewall.

About the only maintenance this setup needs, apart from regular Linux
distro updates, is periodic updates to local antispam rules used by Spamassassin as new spammers appear or old spammers learn new tricks.

--- SoupGate-Win32 v1.05
* Origin: Agency HUB, Dunedin - New Zealand | Fido<>Usenet Gateway (3:770/3)

On Sun, 3 Apr 2022 09:35:01 +0100
The Natural Philosopher <tnp@invalid.invalid> wrote:

It is a lot easier to do it on a VPS. And safer

I feel safer with the data inside my firewall on my storage[1], but
yes putting the relay(s) outside on a VPS is a good approach especially if
you lock down the link to the outgoing relay to a VPN.

[1] The thing with a VPS is the hypervisor has an open door below the OS to
the VPS "hardware" so everything on a VPS is wide open to anyone with
control of the hypervisor.

--
Steve O'Hara-Smith
Odds and Ends at http://www.sohara.org/

--- SoupGate-Win32 v1.05
* Origin: Agency HUB, Dunedin - New Zealand | Fido<>Usenet Gateway (3:770/3)

On 03/04/2022 13:33, Ahem A Rivet's Shot wrote:

On Sun, 3 Apr 2022 09:35:01 +0100
The Natural Philosopher <tnp@invalid.invalid> wrote:

It is a lot easier to do it on a VPS. And safer

I feel safer with the data inside my firewall on my storage[1], but
yes putting the relay(s) outside on a VPS is a good approach especially if you lock down the link to the outgoing relay to a VPN.

[1] The thing with a VPS is the hypervisor has an open door below the OS to the VPS "hardware" so everything on a VPS is wide open to anyone with
control of the hypervisor.

in the same way that all of your email is open to anyone with admin
access to e.g. gmails servers?




--
Climate is what you expect but weather is what you get.
Mark Twain

--- SoupGate-Win32 v1.05
* Origin: Agency HUB, Dunedin - New Zealand | Fido<>Usenet Gateway (3:770/3)

On 2022-04-03, Martin Gregorie <martin@mydomain.invalid> wrote:

On Sat, 2 Apr 2022 15:44:46 +0100, Adrian wrote:

I'm currently sending emails from various Pis via Gmail.

Personally, I wouldn't touch Gmail, Microsoft or any other free mail
service because I *know* they'll be selling everything they can find out about me to anybody that wants it: how else do you think they can provide
a 'free' service to you?

About a year ago my ISP, Telus, decided to get out of the e-mail hosting business. They sold their entire customer list (including the telus.net domain) to Google. So now all former Telus mail customers' traffic is
subject to Google's analytics - as well as the U.S. Patriot Act despite
their being Canadian.

I believe the term for this is "sold down the river".

Fortunately, I get e-mail through a local provider that I've been using
since the dial-up days, so I'm not affected.

--
/~\ Charlie Gibbs | Microsoft is a dictatorship.
\ / <cgibbs@kltpzyxm.invalid> | Apple is a cult.
X I'm really at ac.dekanfrus | Linux is anarchy.
/ \ if you read it the right way. | Pick your poison.

--- SoupGate-Win32 v1.05
* Origin: Agency HUB, Dunedin - New Zealand | Fido<>Usenet Gateway (3:770/3)

Shaun Buzza wrote:

It's not impossible to set up your own email server at home, provided
you have a valid web address to route it through...

Good point. I have run a personal sendmail mail server on Slackware
for years. At first I relayed through my ISP, then they used gmail
with their domain name, and finally went back to doing it all
themselves. The only problem was that after the last change, if you
relayed through them, they made it very obvious it was coming from
them. I forget the details now, but it was something like "from
xxxx@mysip.com on behalf of yyyy@mydomain.com". As a result for at
least the last ten years, I have paid less than $2 a month for a
commercial email account with no storage that I can forward through
using a smarthost configuration. The only way to know it came from
them is to look at the header that shows the routing and two different
DKIM signatures. Fortunately my ISP still only blocks port 25 outbound
and not port 25 inbound so incoming mail is not a problem. The
bottom line is that it is not that difficult or expensive to do and as
part of a hobby, it can actually be enjoyable.

Note: If my ISP ever does decide to block port 25 in both directions,
it would be a real killer. I would not be surprised if that does
occur, that it will be because some idiot did something stupid they
shouldn't have and killed the goose that laid the golden egg. There
always seems to be one person who ends up ruining a good thing for
everyone.

--- SoupGate-Win32 v1.05
* Origin: Agency HUB, Dunedin - New Zealand | Fido<>Usenet Gateway (3:770/3)

The bottom line is that it is not that difficult or expensive to do and as part of a hobby, it can actually be enjoyable.

Exactly. In fact, I may just try to do this myself, just out of curiosity. As you say: as part of this hobby, it could be an enjoyable adventure.

Then again, I seem to have a pretty agreeable ISP, who hasn't blocked *any* traffic that I'm aware of...yet... (o_O)

McDoob
SysOp, PiBBS
pibbs.sytes.net

... 640K ought to be enough for anybody. -Bill Gates, 1981.

--- Mystic BBS v1.12 A47 2021/12/24 (Raspberry Pi/32)
* Origin: PiBBS (1:229/110)

On Sun, 3 Apr 2022 14:53:42 +0100
The Natural Philosopher <tnp@invalid.invalid> wrote:

in the same way that all of your email is open to anyone with admin
access to e.g. gmails servers?

Mine is not - it is accessible to anyone with admin access to my
server - IOW me and anyone who takes the not inconsiderable trouble to hack into my LAN.

--
Steve O'Hara-Smith
Odds and Ends at http://www.sohara.org/

--- SoupGate-Win32 v1.05
* Origin: Agency HUB, Dunedin - New Zealand | Fido<>Usenet Gateway (3:770/3)

About a year ago my ISP, Telus, decided to get out of the e-mail hosting business. They sold their entire customer list (including the telus.net domain) to Google. So now all former Telus mail customers' traffic is subject to Google's analytics - as well as the U.S. Patriot Act despite their being Canadian.

I hate to be the one to break it to ya, bud; there's a lot more than just that, that the Canuck ISPs are doing wrong! Be glad you don't have 'Ma Bell' Canada!

The American public isn't the only one suffering from too little competition in the communications sector. Trust me on this, we're getting bent over, too. I know this, because every time 'Ma Bell' raises her price, every other ISP in my area is forced to do the same, because they're using at least a part of her network. Quite literally, no matter which ISP I choose, I'm still paying 'Ma Bell' for internet access. I'm willing to assume that the same thing applies to any ISP that is forced to rely on Telus for the 'last mile'. Or SaskTel, or MTS, or whatever, depending on your province.

And don't even get me started on the potential data-mining going on...

McDoob
SysOp, PiBBS
pibbs.sytes.net

... 640K ought to be enough for anybody. -Bill Gates, 1981.

--- Mystic BBS v1.12 A47 2021/12/24 (Raspberry Pi/32)
* Origin: PiBBS (1:229/110)

In message <3831321477@f110.n229.z1.fidonet.org>, Shaun Buzza <nospam.Shaun.Buzza@f110.n229.z1.fidonet.org> writes

In other words, be your own provider? Any company that offers 'free' email is >making their money somewhere else...often through the sale of 'user data'...

If anyone can make money out of a daily summary of my weather station
data, good luck to them.

It's not impossible to set up your own email server at home, provided you have >a valid web address to route it through...

That may well be the case, but, for various reasons, it is something
that I have no desire to do.

Adrian
--
To Reply :
replace "bulleid" with "adrian" - all mail to bulleid is rejected
Sorry for the rigmarole, If I want spam, I'll go to the shops
Every time someone says "I don't believe in trolls", another one dies.

--- SoupGate-Win32 v1.05
* Origin: Agency HUB, Dunedin - New Zealand | Fido<>Usenet Gateway (3:770/3)

In other words, be your own provider? Any company that offers 'free' emai >making their money somewhere else...often through the sale of 'user data'

If anyone can make money out of a daily summary of my weather station data, good luck to them.

At this point, I would suggest that you've already disqualified yourself, sir. (o_-)

It's not impossible to set up your own email server at home, provided you >a valid web address to route it through...

That may well be the case, but, for various reasons, it is something
that I have no desire to do.

And that's entirely okay! Not every server is properly built, nor intended, for that purpose! It would be a *huge* mistake for me to try and host my own mail server, too. Just ask Gamgee if you don't believe me!

McDoob
SysOp, PiBBS
pibbs.sytes.net

... Nine times out of ten the statisticians are wrong

--- Mystic BBS v1.12 A47 2021/12/24 (Raspberry Pi/32)
* Origin: PiBBS (1:229/110)

Shaun Buzza <nospam.Shaun.Buzza@f110.n229.z1.fidonet.org> wrote:

Find a provider that isn't trying to lock you into their surveillance state.

In other words, be your own provider? Any company that offers 'free' email is making their money somewhere else...often through the sale of 'user data'...

It's not impossible to set up your own email server at home, provided you have
a valid web address to route it through...

Better still would be to host it on a VPS. If it's mail-only, you can
probably find something for $5-$10 per month that'll run Postfix and
Dovecot. There'll probably even be enough spare horsepower to get something like Roundcube running, if you want a webmail interface. I've hosted my own mail for the better part of 20 years.

Unlike your home IP address, the address you get with a VPS shouldn't be on
any DNSBLs. Home IP address blocks have long since been added to
dynamic-IP blocklists; any attempt to send mail from one will almost
certainly fail.

--
_/_
/ v \ Scott Alfter (remove the obvious to send mail)
(IIGS( https://alfter.us/ Top-posting!
\_^_/ >What's the most annoying thing on Usenet?

--- SoupGate-Win32 v1.05
* Origin: Agency HUB, Dunedin - New Zealand | Fido<>Usenet Gateway (3:770/3)

scott@alfter.diespammersdie.us wrote:

Better still would be to host it on a VPS. If it's mail-only, you can probably find something for $5-$10 per month that'll run Postfix and
Dovecot.

Last I checked, Oracle were giving away ARM-based cloud VMs ...

--- SoupGate-Win32 v1.05
* Origin: Agency HUB, Dunedin - New Zealand | Fido<>Usenet Gateway (3:770/3)

T24gMDUvMDQvMjAyMiAyMTozMSwgQW5keSBCdXJucyB3cm90ZToNCj4gc2NvdHRAYWxmdGVy LmRpZXNwYW1tZXJzZGllLnVzIHdyb3RlOg0KPiANCj4+IEJldHRlciBzdGlsbCB3b3VsZCBi ZSB0byBob3N0IGl0IG9uIGEgVlBTLsKgIElmIGl0J3MgbWFpbC1vbmx5LCB5b3UgY2FuDQo+ PiBwcm9iYWJseSBmaW5kIHNvbWV0aGluZyBmb3IgJDUtJDEwIHBlciBtb250aCB0aGF0J2xs IHJ1biBQb3N0Zml4IGFuZA0KPj4gRG92ZWNvdC4NCj4gDQo+IExhc3QgSSBjaGVja2VkLCBP cmFjbGUgd2VyZSBnaXZpbmcgYXdheSBBUk0tYmFzZWQgY2xvdWQgVk1zIC4uLg0KDQpPcmFj bGUgbmV2ZXIgZ2l2ZSBhbnl0aGluZyBhd2F5ISBCdXQgYWxsIGNsb3VkIHZlbmRvcnMgYXJl IGZvbGxvd2luZyANCkFXUycgbGVhZCwgdGhlIGxhdGVzdCBiZWluZyBiZWluZyBBenVyZSB3 aXRoIEFtcGVyZSBBUk0gY29yZXMgDQpodHRwczovL3d3dy50aGVyZWdpc3Rlci5jb20vMjAy Mi8wNC8wNS9taWNyb3NvZnRfYW1wZXJlX2F6dXJlX3ZtLw0KDQotLS1kcnVjaw0K

--- SoupGate-Win32 v1.05
* Origin: Agency HUB, Dunedin - New Zealand | Fido<>Usenet Gateway (3:770/3)

druck <news@druck.org.uk> wrote:

On 05/04/2022 21:31, Andy Burns wrote:

scott@alfter.diespammersdie.us wrote:

Better still would be to host it on a VPS. If it's mail-only, you can
probably find something for $5-$10 per month that'll run Postfix and
Dovecot.

Last I checked, Oracle were giving away ARM-based cloud VMs ...

Oracle never give anything away! But all cloud vendors are following
AWS' lead, the latest being being Azure with Ampere ARM cores https://www.theregister.com/2022/04/05/microsoft_ampere_azure_vm/

Oracle are actually about the most generous with the free VPS deal,
not expiring after one year like the deal AWS offers. Here's a
recent review: https://lowendbox.com/blog/asking-the-oracle-is-always-free-the-future-of-the-low-end/

I believe x86 VPSs are also available as the "AMD Compute" option,
though at lower specs than the ARM ones.

--
__ __
#_ < |\| |< _#

--- SoupGate-Win32 v1.05
* Origin: Agency HUB, Dunedin - New Zealand | Fido<>Usenet Gateway (3:770/3)

On Tue, 5 Apr 2022 21:31:30 +0100
Andy Burns <usenet@andyburns.uk> wrote:

scott@alfter.diespammersdie.us wrote:

Better still would be to host it on a VPS. If it's mail-only, you can probably find something for $5-$10 per month that'll run Postfix and Dovecot.

Last I checked, Oracle were giving away ARM-based cloud VMs ...

Intel based ones as well - but the ARM ones are fruitier.

--
Steve O'Hara-Smith
Odds and Ends at http://www.sohara.org/

--- SoupGate-Win32 v1.05
* Origin: Agency HUB, Dunedin - New Zealand | Fido<>Usenet Gateway (3:770/3)

Re: Re: Gmail from Pi
By: scott@alfter.diespammersdie.us to Shaun Buzza on Tue Apr 05 2022 08:28 pm

Shaun Buzza <nospam.Shaun.Buzza@f110.n229.z1.fidonet.org> wrote:

Find a provider that isn't trying to lock you into their surveillance state.

In other words, be your own provider? Any company that offers 'free' email making their money somewhere else...often through the sale of 'user data'.

It's not impossible to set up your own email server at home, provided you have
a valid web address to route it through...

Better still would be to host it on a VPS. If it's mail-only, you can probably find something for $5-$10 per month that'll run Postfix and Dovecot. There'll probably even be enough spare horsepower to get something like Roundcube running, if you want a webmail interface. I've hosted my own mail for the better part of 20 years.

Unlike your home IP address, the address you get with a VPS shouldn't be on any DNSBLs. Home IP address blocks have long since been added to
dynamic-IP blocklists; any attempt to send mail from one will almost certainly fail.

Actually, many VPS come with their own blacklisted IP.

If you use a cheapo provider such as Hetzner they are very likely to give you an IP which used to be assigned to somebody else, and if that person managed to get it into a blacklist, so you will be.

--
gopher://gopher.richardfalken.com/1/richardfalken
--- SBBSecho 3.15-Linux
* Origin: Palantir * palantirbbs.ddns.net * Pensacola, FL * (1:123/115)

On Wed, 06 Apr 2022 05:59:02 +1200 nospam.Richard.Falken@f1.n770.z9867.fidonet.org (Richard Falken) wrote:

Actually, many VPS come with their own blacklisted IP.

If you use a cheapo provider such as Hetzner they are very likely to give
you an IP which used to be assigned to somebody else, and if that person managed to get it into a blacklist, so you will be.

Can any provider do anything else ? The pool of never used IP
addresses must be getting very small by now, IANA ran out of ranges ages
ago. I suppose a careful provider could put dirtied IP addresses aside for scrubbing - but getting an IP address out of blacklists is not going to
be easy, it's probably impossible to completely clear them all - does
anyone bother ?

--
Steve O'Hara-Smith
Odds and Ends at http://www.sohara.org/

--- SoupGate-Win32 v1.05
* Origin: Agency HUB, Dunedin - New Zealand | Fido<>Usenet Gateway (3:770/3)

Richard Falken <nospam.Richard.Falken@f1.n770.z9867.fidonet.org> wrote:

Re: Re: Gmail from Pi
By: scott@alfter.diespammersdie.us to Shaun Buzza on Tue Apr 05 2022 08:28 pm

Unlike your home IP address, the address you get with a VPS shouldn't
be on any DNSBLs. Home IP address blocks have long since been added to dynamic-IP blocklists; any attempt to send mail from one will almost certainly fail.

Actually, many VPS come with their own blacklisted IP.

If you use a cheapo provider such as Hetzner they are very likely to give
you an IP which used to be assigned to somebody else, and if that person managed to get it into a blacklist, so you will be.

I've bounced my VPS around between multiple providers over the
years...mostly in the US, but I had one in Germany for a while. Blocked IPs have pretty much not been a problem.

The only blocklist-related trouble I've had was when the scammers behind UCEPROTECT decided to blackball all of Linode's IP space. That wouldn't
have been a problem (nobody pays any attention to UCEPROTECT and their extortion tactics) if Microsoft hadn't decided to use a UCEPROTECT list.
Email wasn't getting through to Hotmail, Outlook.com, etc. Some tickets
filed with both Linode and Microsoft got the two of them talking, and
shortly after that, the mail was flowing again.

_/_
/ v \ Scott Alfter (remove the obvious to send mail)
(IIGS( https://alfter.us/ Top-posting!
\_^_/ >What's the most annoying thing on Usenet?

--- SoupGate-Win32 v1.05
* Origin: Agency HUB, Dunedin - New Zealand | Fido<>Usenet Gateway (3:770/3)

Adrian:

I'm currently sending emails from various Pis via
Gmail. I'm assuming that the forthcoming changes to
Gmail authentication will break this. Has anyone
worked out how to resolve this ? I've had a look on-
line, but nothing has shown up. I'm using a combina-
tion of msmtp and mpack to send.

I hear that Sypheed Claws supports OAuth:

https://www.claws-mail.org/faq/index.php/Oauth2

What is this -- Google's abomination or a truely free
authentification protocol?

--
() ascii ribbon campaign - against html e-mail
/\ http://preview.tinyurl.com/qcy6mjc [archived]

--- SoupGate-Win32 v1.05
* Origin: Agency HUB, Dunedin - New Zealand | Fido<>Usenet Gateway (3:770/3)

On Fri, 8 Apr 2022 19:49:41 +0300
Anton Shepelev <anton.txt@g{oogle}mail.com> wrote:

I hear that Sypheed Claws supports OAuth:

https://www.claws-mail.org/faq/index.php/Oauth2

What is this -- Google's abomination or a truely free
authentification protocol?

It's an open standard published by the IETF. It had its origins at Twitter and is used by them, Google, Facebook, Amazon ... to provide a way
of sharing user IDs between providers.

When I was at Yahoo! we used it to get fresh data from Facebook,
Gmail ... into Yahoo! front page widgets. I don't recall for sure now
whether that data streamed through Yahoo! servers or was merged in the
browser - I think it streamed through Yahoo! but only the stuff that showed
in the widget and only when the user was online.

Which is still more than I am personally comfortable with!

--
Steve O'Hara-Smith
Odds and Ends at http://www.sohara.org/

--- SoupGate-Win32 v1.05
* Origin: Agency HUB, Dunedin - New Zealand | Fido<>Usenet Gateway (3:770/3)

In message <st5nWlLclISiFwEu@ku.gro.lloiff>, Adrian
<bulleid@ku.gro.lioff> writes

In message <jarbd6Fktp1U1@mid.individual.net>, Andy Burns ><usenet@andyburns.uk> writes

Adrian wrote:

I'm currently sending emails from various Pis via Gmail.  I'm
assuming that the forthcoming changes to Gmail authentication will
break this. Has anyone worked out how to resolve this ?  I've had a
look online, but nothing has shown up. I'm using a combination of
msmtp and mpack to send.

msmtp seems to support "auth xoauth2"

<https://marlam.de/msmtp/msmtp.html#Authentication-commands>

Thanks, I'll have a play when I've got some time.

I've had time to have a play, and the initial results were not
encouraging.

$ (cat header.txt ; echo "Test Message") | msmtp <my address>
msmtp: /etc/msmtprc: line 7: invalid argument xoauth2 for command auth

The above link also suggests that oauthbearer might be acceptable
instead of xoauth2, but that comes back with the same error.

msmtp is version 1.8.3-1


However (after more playing about) ...

leaving the auth parameter as on, but using the 16 character code
generated by Google instead of my password, it appears to work.


Adrian
--
To Reply :
replace "bulleid" with "adrian" - all mail to bulleid is rejected
Sorry for the rigmarole, If I want spam, I'll go to the shops
Every time someone says "I don't believe in trolls", another one dies.

--- SoupGate-Win32 v1.05
* Origin: Agency HUB, Dunedin - New Zealand | Fido<>Usenet Gateway (3:770/3)

Adrian wrote:

msmtp is version 1.8.3-1

doc claiming xoauth2 was 1.8.20 I think

leaving the auth parameter as on, but using the 16 character code generated by
Google instead of my password, it appears to work.

yep, "app passwords" will also continue to work when "less secure apps" is turned off, you need to have 2FA/2SV turned on in order to generate the app password.

--- SoupGate-Win32 v1.05
* Origin: Agency HUB, Dunedin - New Zealand | Fido<>Usenet Gateway (3:770/3)

In message <jbdltsF6o4dU1@mid.individual.net>, Andy Burns
<usenet@andyburns.uk> writes

Adrian wrote:

leaving the auth parameter as on, but using the 16 character code >>generated by Google instead of my password, it appears to work.

yep, "app passwords" will also continue to work when "less secure apps"
is turned off, you need to have 2FA/2SV turned on in order to generate
the app password.

Which I did.

Adrian
--
To Reply :
replace "bulleid" with "adrian" - all mail to bulleid is rejected
Sorry for the rigmarole, If I want spam, I'll go to the shops
Every time someone says "I don't believe in trolls", another one dies.

--- SoupGate-Win32 v1.05
* Origin: Agency HUB, Dunedin - New Zealand | Fido<>Usenet Gateway (3:770/3)

On 09/04/2022 16:09, Andy Burns wrote:

yep, "app passwords" will also continue to work when "less secure apps" is turned off, you need to have 2FA/2SV turned on in order to generate the app password.

If I generate an outh gmail password for one program (e.g. Thunderbird), can I then just use that same password for any other program, or do I need to generate one password for each program? Must that program support oauth?

Thanks.
--
Cheers,
David
Web: http://www.satsignal.eu

--- SoupGate-Win32 v1.05
* Origin: Agency HUB, Dunedin - New Zealand | Fido<>Usenet Gateway (3:770/3)

David Taylor wrote:

If I generate an outh gmail password for one program (e.g. Thunderbird), can I
then just use that same password for any other program, or do I need to generate
one password for each program?  Must that program support oauth?

I haven't tried it, thunderbird does let you view the oauth "token" that is generated as a result of the web sign-in, theoretically the token will expire and need renewing in the future, not happened to me yet though.

--- SoupGate-Win32 v1.05
* Origin: Agency HUB, Dunedin - New Zealand | Fido<>Usenet Gateway (3:770/3)

On 09/04/2022 18:40, Andy Burns wrote:

David Taylor wrote:

If I generate an outh gmail password for one program (e.g. Thunderbird), can I
then just use that same password for any other program, or do I need to generate
one password for each program?  Must that program support oauth?

I haven't tried it, thunderbird does let you view the oauth "token" that is generated as a result of the web sign-in, theoretically the token will expire and need renewing in the future, not happened to me yet though.

Thanks!
--
Cheers,
David
Web: http://www.satsignal.eu

--- SoupGate-Win32 v1.05
* Origin: Agency HUB, Dunedin - New Zealand | Fido<>Usenet Gateway (3:770/3)