Jacob D Evans

Datanauts Podcast Episode 081 – Secure Email Infrastructure

Posted on April 25, 2017 by Jake — No Comments ↓

A few weeks ago I had the honor of being a guest on a podcast! This is a first for me as the closest to speaking publicly have been at small, 20’sh tech meetups, not the same. I tell you what these guys are really good at their job, they did a ton of research, had great questions (many of Continue reading Datanauts Podcast Episode 081 – Secure Email Infrastructure→

Quick update, Datanauts and Brotli?

Posted on April 6, 2017 by Jake — No Comments ↓

Today I had the privilege in speaking on one of my most passionate topics, email! What was even more fun, is it was with the Datanauts crew! So that’s exciting and will be dropping in a few short weeks. I also came across another google compression system, last week was geutzli, this week it’s brotli. while geutzli is all about Continue reading Quick update, Datanauts and Brotli?→

Squid bind specific IP Address (workaround)

Posted on March 25, 2017 by Jake — No Comments ↓

tldr, I used nginx! So since I have my VPS on anycasted IPs and I use ansible to deploy, I wanted to make 3 all servers nearly the same, minus their specific ‘mgmt’ public IPs, so moving squid to a new IP I wanted to use the standard https port but could NOT figure out a way to get squid Continue reading Squid bind specific IP Address (workaround)→

How to get an ‘A’ on your OWA Security scans in 3 steps!

Posted on February 26, 2017 by Jake — No Comments ↓

Step 1) Download Nartac for IIS Step 2) Run and select Best Practices (Disables SSLv2/SSLv3) Step 3) Reboot That’s it, if you want the long and hard way, follow this technet article. What does this tool do? It makes registry changes to your schannel which applies to all TLS channels, either HTTPS, SMTPS, or STARTTLS (others if you have them)

Postfix Outbound SPF Checker Idea

Posted on February 20, 2017 by Jake — No Comments ↓

While working on figuring out a way to block email sent to and from external users, without blocking email to or from internal domain and allowing relay…. I had this idea: What if I could check the SPF record of a domain when checking the from header of a domain. This would allow me to dynamically permit emails from any Continue reading Postfix Outbound SPF Checker Idea→

IPv6 OpenVPN Tunneling with Asus MerlinWRT and Postfix Smarthost over v6 Tunnels

Posted on February 13, 2017 by Jake — No Comments ↓

Hey All, It’s been a while and I finally got around to updating my postfix cluster to send email over my OpenVPN tunnel with standard ports to my local zimbra server instead of using a non-standard port over the wan. While I was at it, I figured I’d trying pushing IPv6 and here’s how that went. A little backstory, my Zimbra Continue reading IPv6 OpenVPN Tunneling with Asus MerlinWRT and Postfix Smarthost over v6 Tunnels→