Roland Plüss a écrit : >> so they are not logs. these are reports. >> >> next time, connect to your server and grab lines from /var/log/maillog >> (or whatever file contains postfix logs). not necessary now. >> > I don't have such a file. All logs go into the one I posted managed by > vixie-cron.
No. cron doesn't "manage" logs. cron runs log parsers that generate reports. but the logs are somewhere on your system. if you are using a standard syslogd, then you can find the path in /etc/syslog.conf. if you can't find them, you'll need to ask on a forum dedicated to your OS. >> it really depends on your setup and/or policy. >> > Tried it. I'm still getting the same spam which clearly matches this > rule but it doesn't seem to work. Are they using a work-around to trick > postfix? that check only blocks specific spam: spam that uses an address in your domain in the envelope sender (MAIL FROM command). this envelope sender is what you see in the Return-Path header in the sample you posted. >> http://www.spamhaus.org/organization/dnsblusage.html >> >> if you generate 300,000 DNS queries per day, you need a feed... but you >> forgot to run the test command... (host 2.0.....). >> > Do we talk of "DNS" queries of conventional queries ( per mail ). Since > I've got a DNS server on my machine which would already capture all DNS > queries. instead of spending time on theory, why don't you run the command that I told you? $ host 2.0.0.127.zen.spamhaus.org and yes, the 300000 are DNS queries. if you don't get a lot of mail, then your DNS server won't be blocked, unless it forwards queries to your ISP. >> dovecot is supported in "2.3 and later". but your package may have been >> built without it. run >> # postconf -a >> and see if "dovecot" is listed in the output. >> >> read >> http://www.postfix.org/SASL_README.html >> for more. >> > No, all empty. I'll have a closer look into this one this weekend. > so you need to rebuild/reinstall it.
