So long and thanks for all the fish. – XMPP Server will be shut down on 1st of January 2021.
I received some comments about the XMPP Server not being able to connect to others, lags, connection timeouts. While analyzing the problems I saw a ton of errors in the logfiles stating that other servers have outdates certificates, or not being able to use an up-to-date security concept. Many homepages are offline, Server administrators no longer reachable.
Then I had a look at the active userlist and then I realized… It’s dead.
In the last 12 month, there were only 15 accounts logged in. If I check the usage of the XMPP server for the last month, there were seven active logins.
Running an XMPP Server means I have to work on it. Maintain it and keep it active. I have to update the security guidelines to provide a strong encryption, fight back spammers. Even if the xmpp server doesn’t need much ressources, it’s still something. And keeping it running if nearly no one uses it just doesn’t make sense.
So after nearly eight years, I have decided to shut down the XMPP Server.
Maybe I am setting up a more up to date service like matrix, or I setup a mastodon server, but for now, I call it quits for XMPP.
If you have issues with XMPP/Jabber, please check if it really is this server, or maybe your client.
I am getting a lot of reports lately about my server is refusing connections.
Turns out there is a bug in the “nss” package which breaks TLS support on some clients.
Check if you have nss Version 3.58 running, if yes, have a look here:
Please keep in mind: If you open a ticket, please provide as much info as you can. A simple: “I can’t connect” isn’t quite helpful.
“I can’t connect with my @someserver.tld account” is way more helpful, since I am able to look through the logs if there are any connection issues.
So what happend in the last year?
I experimented with cloud servers, as you might noticed. I tried to move all services from a big dedicated host to some smaller cloudservers… and failed.
The idea was nice. I mean, the mailserver, the jabber host etc, they all worked like a charm, but as soon as the homepages were used a bit more often, the servers went down.
You might have noticed the ticketsystem was down for a whole time without me noticing it…
So I moved back. To a nice dedicated Host with some nice and stable enterprise harddrives.
During the moving back I decided to upgrade all necessary services to the latest version, some of them I just build up from scratch to add up-to-date features.
So these things changed:
– Now has SPF and DKIM headers
– switched from spamassassin and amavis to rspamd and clamAV
– clamav has now custom definition files, making to a “real” virus scanner
– New spam learning system, now you don’t need to keep files in your junk/spamfolder. As soon as you move an email there, it gets instantly analyzed.
– Auto Expunge: emails in trash are getting deleted after 60 days, mails in junk after 90
– Up-to-date encryption algorythms
– Ticketsystem is working again
– cloud.is-a-furry.org is not crashing anymore if there is a huge traffic load
– AntiSPAM is now active: People not on your contact list can’t write you messages.
– Webregistration is now working again
– Registration is now reCaptcha secured
– Updated to latest version
If you have any problems, let me know :3
I am still alive.
Even if I am not posting regulary.
I realized, the support page was not working the last weeks. It should be fixed.
Server is up and running again.
Oh, nearly forgot…
Under “Policies” you can find all SSL certification Informations.
Hi and hello.
just a short drop:
The webmailer got an update. Now you can activate 2-factor authentification for your email account and add more security to it. This does NOT affect your email Account in general. Just the login to the webmailer.
–> How to do this
A few weeks ago, I wrote about a weak password hash algorythm.
Now it happend.
A few days ago, SHA-1 was proven as “broken”. and MD5 is allready easy to crack.
I wrote a mass email to everyone, asking to change your password. Many accounts are still using the old and weak algorythm. In the last days I recognized a higher rate of “wrong” login tries. – Somone tries to break into email accounts.
Since I don’t want a hacked email account on my server which people can use to send spam, I deactivated all email accounts with an old password algorythm.
So if you can’t login to your email account, don’t worry. Your email account is still there, but it is inactive. To gain access again, please create a ticket and provide your email address, AND the address you originally requested your email with or anything else to prove you are the legit account owner.
For example a screenshot of the configured email account in your email client or phone.
In the last days I receive a lot of emails like this one:
Dear Webmail User,
Due to excess abandoned Webmail Account, Our Webmaster has decided to refresh the database and to delete inactive accounts to create space for fresh users. To verify your Webmail Account, you must reply to this email immediately and provide the information below correctly:
Failure to do this will immediately render your Webmail Account deactivated from our system. Webmail Database refreshing shall commence once a response is not received within 48hrs.
Web Admin Support Center
DO _NOT_ REPLY!
Is-a-furry.org is NOT sending emails like this!
If you already replied to one of these emails, CHANGE YOUR PASSWORD IMMEDIATELY! If you can’t login anymore, OPEN A TICKET!
NEVER EVER is-a-furry.org will ask you for your password! If we need to login to your account to give you support, we ask you if you are ok with us changing your password to a newly generated one. – And this will only happen if YOU agree with it!
As some of you might know or recognized, is-a-furry.org is a bit more than just a furry.
I own a bit more domains then just “is-a-furry.org” So if you want, you can also request an email out of the following domains:
- 7ry.de (very short)
Just use the ticket system as explained in the wiki🙂
I added a few new sites to the wiki page. I will do some tutorial videos too, explaining a bit more, but for now it should work.
Tutorials added for:
- changing your email password
- setting up filters and rules for sorting emails
I try to fill the wiki with life. But since I don’t have an iMac, it would be very helpful if someone could do a small tutorial like my others about “How to configure your IAF email on iMail”
I think it’s time for a bigger update.
Is-a-furry.org moved to a new server (again). Reason? Same power for less money. While moving, you realized a downtime of the mail and messaging server.
I was quite busy. Not just moving all the files and stuff, I also configured A LOT of new cool shit.
- Now you can use a photo management service (https://pics.is-a-furry.org). This is not just to create an account and albums and stuff, its also useful for just uploading an image and share the link. Like tinypic.com or imageshack.us and stuff. There is just one difference: I don’t claim the copyright of YOUR pics. They are yours. Feel free to use it.
- Is-a-furry.org also has now a nextcloud instance. (https://cloud.is-a-furry.org) – You can request an account via ticket system. You can use nextcloud to synchronize your contacts and calendar on your phone without giving them all to Google/Microsoft/Apple, Or sync them between your phone and your eMail client.
- There is now a WIKI system. It’s not filled yet, but I will write articels now and then and explain how to do things.
There is also a lot of changes “backstage”:
- The eMail server now uses a new hashing algorythm. If you have an email account from iaf.org then you should already receiven an email on how to update your password.
- The whole webhosting switched to PHP 7 since older versions are outdated or lost their support
- A complete new SSL infrastructure – the mailserver and the chatserver have now an own set of certificates. Now you can ise imap.is-a-furry.org or smtp.is-a-afurry.org and you will not receive an SSL error.
- The ticket System received an update
- The chatserver refuses messages from contacts NOT in your list. means spammer which send you permanent Jabber SPAM will not be able to message you now. You have to add a contact to your buddy-list to receive messages from them.
I continue work on things espechially the wiki.