sudo apt install gstreamer0.10-ffmpeg

 

Platform diversity

Single user instance vs. multiple user instance.

Distribution of users

    
• Quitter is still leading the way but with a larger margin than last year.
    
• There are 5 new players in my list (skilledtest, Loadaverage, mayfirst, ourcoffs and morphtown)

Standards

• caldav
• carddav

• It looked easy to setup
• It brought what I needed and not the full range of groupware solution
• It added a lightweight administration layer to manage users and their Calendars or Address Books.

Baïkal setup

Setting up the web application

cd /tmp
wget http://baikal.codr.fr/get/baikal-regular-0.2.3.tgz
cd /var/www
tar -xzvf /tmp/baikal-regular-0.2.3.tgz
mv baikal-regular/ baikal
chown -R www-data: baikal/

<VirtualHost *:443>
        ServerAlias baikal.lebegue.org
        DocumentRoot /var/www/baikal/html
        <Directory "/var/www/baikal/html">
                Options None
                Options +FollowSymlinks
                AllowOverride All
        </Directory>
        SSLEngine On
        SSLCertificateFile    /etc/ssl/certs/certificate.pem
        SSLCertificateKeyFile /etc/ssl/private/priv_key.pem
 </VirtualHost>

<VirtualHost *:80>
        ServerAlias baikal.lebegue.org
        <IfModule mod_rewrite.c>
        RewriteEngine On
        RewriteCond %{HTTPS} off
        RewriteRule (.*) https://%{HTTP_HOST}%{REQUEST_URI} [R=301,L]
        </IfModule>
</VirtualHost>

a2ensite baikal.lebegue.org baikal.lebegue.org-ssl

apache2ctl configtest

service apache2 reload

Setting up MySql database

# mysql -p
mysql> create database baikal;
mysql> grant all on baikal.* to 'baikaluser'@'localhost' identified by 'password';
mysql> \q# 
mysql -u baikaluser --database=baikal -p
mysql> @/var/www/baikal/Core/Resources/Db/MySQL/db.sql
mysql> show tables;
+------------------+
| Tables_in_baikal |
+------------------+
| addressbooks     |
| calendarobjects  |
| calendars        |
| cards            |
| groupmembers     |
| locks            |
| principals       |
| users            |
+------------------+

Web application setup

Users setup

Client configuration

Evolution

Android 4.x

    
• DAVDroid   Open source calendar and contact synchronisation adapter available on independently managed application repository : F-droid

    
• On the phone download the CACert.org root certificate
    
• It should propose you to switch the settings of the phone in order to add the certificate to the user's approved container.
    
• At this step you MUST have set up an unlock method for the phone (draw a schema, type a password or a PIN) ... this will be enforced by Android itself

Conclusions

Identify spams is one step to fight against them. The next step is to be able to move them around independently of the device you are using to view your inbox.

Filtering spams by configuring the email client is sometimes possible (and sometimes not) but it requires to implement filtering rules on every client. Be it evolution on your computer or some other email client on your smartphone.

The solution is to filter them on the server when they are locally dispatched to recipients by the local delivery agent. (LDA)

In my basic setup of my email server I had postfix that was used as a mail transfer agent (MTA) and LDA. It happens that sieve is a mail filtering solution that comes bundled with dovecot. The setup is then made to :

• use dovecot as a local delivery agent
• configure sieve to move spam emails to 'Junk' folder

Of course the pre-required step is that spamassassin has already been set up to identify what emails are spams and what emails are not.

Base configuration

• Debian Wheezy : 7.4
• postfix : 2.9.6
• dovecot with sieve embedded : 2.1.7

Use dovecot as LDA

Modify /etc/postfix/main.cf file to change mailbox_command to dovecot deliver

mailbox_command=/usr/lib/dovecot/deliver

Configure dovecot to enable sieve

The first step is to configure where sieve should be reading the rules configuration files. This is done by modifying /etc/dovecot/conf.d/90-sieve.conf and adapting sieve_default location. The result is that the behavior will be the same for all users for which a local mail delivery is made. If your MTA is configured to redirect emails to external mailboxes then the spams emails won't be moved to a junk folder.

sieve_default = /etc/dovecot/default.sieve

Enable dovecot user to read the file :

chgrp dovecot /etc/dovecot/conf.d/90-sieve.conf

Next step is to enable sieve plugin for LDA (local delivery agent) in /etc/dovecot/conf.d/15-lda.conf declare sieve as a plugin :

mail_plugins = sieve

Now how can sieve move spams to 'Junk' folders ? This is done by configuring the /etc/dovecot/default.sieve file with this content :

require ["fileinto"];
# Move spam to Junk 
folderif header :contains "X-spam-flag" ["YES"] {
  fileinto "Spam";
  stop;
}

This file must be binary compiled by sieve compiler

cd /etc/dovecot
sievec default.sieve

A new file default.svbin is created and it must be readable by dovecot user

chgrp dovecot /etc/dovecot/default.svbin

There are some permission problems with /var/mail/<<user>> INBOX with dovecot on Debian. The email can be delivered directly to ~/Maildir with a configuration of /etc/dovecot/10-mail.conf. 

#mail_location = mbox:~/mail:INBOX=/var/mail/%u
mail_location = maildir:~/Maildir

You can now restart dovecot and test a specially crafted spam email ;)

service dovecot restart
mail -s "Product for you" an-account-existing@your-server.tld

The following content was flagged as spam by spamassassin :

Online Drugstore can have your order of discounted Viagra shipped to you for only 5 minutes of your time!!! 
http://www.justgottago.com/od/azzbc/ 
No Prior Prescriptions Needed   
-Licensed U.S. Physicians are ready to fill your order   
-Guaranteed Lowest Prices Available   
-Discreet Mailing directly to your home or office 

Just visit http://www.justgottago.com/od/azzbc/ and enjoy the good life today!!!