On 14-May-2009, at 17:29, mouss wrote:
LuKreme a écrit :
I think I have it all sussed out, except there doesn’t seem to be an
init script installed under FreeBSD.
because fail2ban works on freebsd?
I meant a script to start fail2ban, like in rc.d (init.d in Linux). Am
I the only person ca
On 14-May-2009, at 20:19, Noel Jones wrote:
You're right, that's a pcre construct and not universally supported
by regexp. A more portable expression would be:
/operator#[0-...@somephishingbanksite\.com$/ REJECT phishing
Now, just to double check, if postfix is compiled with PCRE then it
On Thu, May 14, 2009 at 06:48:07PM -0700, Scott Haneda wrote:
> Thank you very much, I do not think a million will be hit for some time.
> Is there any penalty when you run postmap to read in the changes to the
> virtual_alias_maps file? I know it is not a server restart, and can happen
> wit
mouss wrote:
> Drew Tomlinson a écrit :
>
>> mouss wrote:
>> I have no preference for header_checks. What makes client_access
>> better? Is it less expensive?
>>
>
> it's time to learn how smtp works. in particluar, the fact that the
> message is sent after the DATA command. which means t
Victor Duchovni wrote:
On Thu, May 14, 2009 at 12:42:01PM -0500, Noel Jones wrote:
wiskbr...@hotmail.com wrote:
Here are the contents of my /etc/postfix/blocked_senders file:
"operator#...@somephishingbanksite\.com" REJECT
The above line is the wrong syntax and will never match
anything. Wil
On May 14, 2009, at 6:07 PM, Barney Desmond wrote:
If this turns into a high volume site, would file based aliases
fall apart
after a certain amount? I also see maintaining a alias mapping via
a file
managed by a web service to be prone to error. If anything I wold
store the
mappings in a
At my company we're doing almost the exact same thing.
FOr this we use Postfix on RHEL5 with MySQL for domains, users and aliases.
With about ~10k accounts everything works great except the forwarding vs SPF
problem, ie:
1. someu...@hotmail.com sends a message to i...@yourcustomer.com
2. your ser
Hello All,
I am receiving message from people faking like they are from our domain,
when looking in the headers I see this:
Received-SPF: permerror (mydomain.com: Junk encountered in mechanism
'+ptr:')
Read this on the spf site:
"If the "permerror" occurred because an SPF publisher use
Didn't get the message you replied to, so I'm bolting it on to yours.
mouss wrote:
Stefan Jakobs a écrit :
On Thursday, 14. Mai 2009 09:54:56 Corey Chandler wrote:
MacShane, Tracy wrote:
Also,
installing non-RPM packages can obviously cause clashes when installing
other RH u
2009/5/15 Scott Haneda :
> Any suggestions on the simplest way to approach this. I was thinking
> postfix with MySql backed data store. Today I read that RHEL is behind on
> postfix, and I think does not have MySql support in their rpm's. I have
> zero access to a staging server.
Correct, you'd
2009/5/15 Joey :
> Received-SPF: permerror (mydomain.com: Junk encountered in mechanism
> '+ptr:')
>
> “If the "permerror" occurred because an SPF publisher uses a mechanism not
> understood by an SPF client and the receiver does not reject the message due
> to the permerror, that mechanism should
A client of mine has a web service where a simple web page can be made
via a browser to crete an identity for them online. Build a page with
web tools, toggle a setting to add DNS records, update the registrar
to point to the NS's, and they have a live webpage in short order.
They want to b
LuKreme a écrit :
> On 14-May-2009, at 01:39, Bill Landry wrote:
>> Have you taken a look at fail2ban?:
>>
>> http://www.fail2ban.org
>>
>> It already does this using python, run in daemon mode, and can support
>> any application that writes to a log file.
>
>
> Looking at that now. Looks neat
Drew Tomlinson a écrit :
> mouss wrote:
> I have no preference for header_checks. What makes client_access
> better? Is it less expensive?
>
it's time to learn how smtp works. in particluar, the fact that the
message is sent after the DATA command. which means that if you reject
before DATA, yo
Stefan Jakobs a écrit :
> On Thursday, 14. Mai 2009 09:54:56 Corey Chandler wrote:
>> MacShane, Tracy wrote:
>
>>> The OS administrators do not permit GCC and
>>> devel libraries on the SMTP servers I maintain (and fair enough).
>> Nor should they-- this is what a staging environment is for. Buil
On May 14, 2009, at 3:18 AM, Barney Desmond wrote:
2009/5/14 Scott Haneda :
So If I am getting this correct, auto-reply is not something native
to
postfix other than in a very basic form, and I should look to 3rd
party
solutions that have matured?
Correct, it is an invention on top of SMT
On Thu, May 14, 2009 at 12:42:01PM -0500, Noel Jones wrote:
> wiskbr...@hotmail.com wrote:
Here are the contents of my /etc/postfix/blocked_senders file:
"operator#...@somephishingbanksite\.com" REJECT
>>> The above line is the wrong syntax and will never match
>>> anything. Wildcar
Please stop sending HTML-only email to this mailing list.
Wietse
Thank you.
It worked !
Have a nice day.
Brian Evans - Postfix List wrote:
wiseadmin wrote:
Thank you Wietse !
Unfortunately it doesnt work :(
In dovecot.conf the socket is /var/run/dovecot/auth-master
That is a master socket. Postfix uses a client socket.
Why not?
It is simple for my setup. I only have 10-15 users and that's all.
If you think its dangerous or something please explain and I'll change
it.
Thanks
Sahil Tandon wrote:
On May 14, 2009, at 7:40 AM, wiseadmin
wrote:
Hello everybody,
I am running FreeBSD with postfix (2.6.
wiseadmin schrieb:
> Thank you Wietse !
> Unfortunately it doesnt work :(
> In dovecot.conf the socket is /var/run/dovecot/auth-master
> When I added in main.cf I got permission denied (it has 600 and
> root:wheel). I changed the permission in 666 (this is not ok, but I only
> wanted to see if it w
wiseadmin wrote:
> Thank you Wietse !
> Unfortunately it doesnt work :(
> In dovecot.conf the socket is /var/run/dovecot/auth-master
>
That is a master socket. Postfix uses a client socket.
> When I added in main.cf I got permission denied (it has 600 and
> root:wheel). I changed the permission
On 14-May-2009, at 01:39, Bill Landry wrote:
Have you taken a look at fail2ban?:
http://www.fail2ban.org
It already does this using python, run in daemon mode, and can support
any application that writes to a log file.
Looking at that now. Looks neat, but I wish there was a HOWTO readme
I think the problem is
deeper.
The 25/tcp port is open but I can't ehlo the server.
[...@toshiba ~]$telnet server_domain 25
Trying 80.96.x.x...
Connected to server_domain.
Escape character is '^]'.
And get stucked there !
Wietse Venema wrote:
wiseadmin:
May 14 14:35:11 softexp
Thank you Wietse !
Unfortunately it doesnt work :(
In dovecot.conf the socket is /var/run/dovecot/auth-master
When I added in main.cf I got permission denied (it has 600 and
root:wheel). I changed the permission in 666 (this is not ok, but I only
wanted to see if it works) and now I get in logs onl
Geert Hendrickx wrote:
> On Thu, May 14, 2009 at 10:15:07AM -0700, J Sloan wrote:
>
>> Yes, that is the benefit of doing it that way. But we experienced problems
>> with recurring corruption of the isam tables when the network connections
>> to the db server were interrupted. Apparently myisam t
On Thu, May 14, 2009 at 10:15:07AM -0700, J Sloan wrote:
> Yes, that is the benefit of doing it that way. But we experienced problems
> with recurring corruption of the isam tables when the network connections
> to the db server were interrupted. Apparently myisam tables don't deal well
> with inte
wiskbr...@hotmail.com wrote:
Here are the contents of my /etc/postfix/blocked_senders file:
"operator#...@somephishingbanksite\.com" REJECT
The above line is the wrong syntax and will never match
anything. Wildcards are not allowed in dbm or other indexed
files, and quotes should never be use
Hello All,
I am receiving message from people faking like they are from our domain,
when looking in the headers I see this:
Received-SPF: permerror (mydomain.com: Junk encountered in mechanism
'+ptr:')
Read this on the spf site:
"If the "permerror" occurred because an SPF publisher use
Roderick A. Anderson wrote:
>
> Sorry to hear that but in the mean time you can grab .src.rpm for a
> prior release, the tarball for the current release and modify the
> .spec file to reflect this.
I've been doing this for our smtp servers for some time. The suse
factory postfix srpm compiles nicel
Geert Hendrickx wrote:
>
> What drawbacks did you experience? We run a local policyd instance on each
> postfix server too, all connecting to a central (not replicated) MySQL.
> Policyd's behaviour when MySQL becomes unavailable is configurable, it can
> either tempfail (4xx) all incoming e-mail o
mouss wrote:
Drew Tomlinson a écrit :
Is there some rule about submitting questions with the string "Help" in
the subject? I've tried posting the following note with the subject of
"Help With header_checks" and received a bounce message indicating this
error:
BOUNCE postfix-users@postfix.or
Jiri Veselsky schrieb:
>>
>> you shouldnt discard mail, only cause flagged by spamassassin
>> this is not allowed i.e in germany by law, if you do this for customers
>>
>> use hold ( for manual inspection ) or tell spamass-milter to reject them
>> at smtp income level
>> additionally you may load s
>> Here are the contents of my /etc/postfix/blocked_senders file:
>>
>> "operator#...@somephishingbanksite\.com" REJECT
>
> The above line is the wrong syntax and will never match
> anything. Wildcards are not allowed in dbm or other indexed
> files, and quotes should never be used.
I am almost
wiskbr...@hotmail.com wrote:
Recently I've been getting a ton of email for a new domain we've registered and
have begun receiving email for. Our users in this new domain are either
1. receiving email with a From address identical to their own, or
2. receiving email with a From address of one o
> Is there a down side to using a 3rd party RPM on RHEL / CentOS over the
> packages version of 2.3.
Nope. They work fine. I have several CentOS/RHEL/Fedora mail filters and
back-end servers running Postfix built from Simon's source RPMs. You can pick
and choose at build-time what options you
Ralf Hildebrandt wrote:
* Brian Collins :
I noticed that Postfix V#2.6.0 is now out. Does anybody know where to
get RPM files? GOOGLE did not help.
Simon Mudd picks up the releases and makes good source and binary RPMs from
them with lots of options. However, he's a busy man and does not alway
Recently I've been getting a ton of email for a new domain we've registered and
have begun receiving email for. Our users in this new domain are either
1. receiving email with a From address identical to their own, or
2. receiving email with a From address of one of our other three domains, non
On Wed, May 13, 2009 at 12:18:04PM -0700, J Sloan wrote:
> Wietse Venema wrote:
> > Instead of sending MySQL queries over a WAN connection, have you
> > considered using a local MySQL replica instead? When the WAN hiccups,
> > the replica keeps answering to the local MTAs.
> >
>
> That is anoth
wiseadmin:
> May 14 14:35:11 softexp postfix/smtpd[8378]: warning: SASL: Connect to
> smtpd failed: No such file or directory
You need to update your main.cf:smtpd_sasl_path setting and specify
the location of the socket that the Dovecot server listens on.
For example, when dovecot.conf says:
* Brian Collins :
> > I noticed that Postfix V#2.6.0 is now out. Does anybody know where to
> > get RPM files? GOOGLE did not help.
>
> Simon Mudd picks up the releases and makes good source and binary RPMs from
> them with lots of options. However, he's a busy man and does not always get
> to th
On Thu, May 14, 2009 at 9:08 AM, Carlos Williams wrote:
> On Thu, May 14, 2009 at 8:41 AM, Brian Collins
> wrote:
>>> I noticed that Postfix V#2.6.0 is now out. Does anybody know where to
>>> get RPM files? GOOGLE did not help.
>>
>> Simon Mudd picks up the releases and makes good source and bina
Postfix header_checks happen while mail is received.
Milters can add headers only after the end of the email message is
received. That is a feature of the Milter protocol.
The Milter protocol has a DISCARD feature. If you can configure
your application to send SMFIR_DISCARD into Postfix then you
On May 14, 2009, at 7:40 AM, wiseadmin wrote:
Hello everybody,
I am running FreeBSD with postfix (2.6.0-RC2) and dovecot (1.1.11).
There are virtual domains and users and postfix authenticates users
using sasl and dovecot.
Today I've performed a server upgrade (portupgrade -arRv) and sasl
authe
Jiri Veselsky:
[ Charset ISO-8859-2 unsupported, converting... ]
> Hallo all. (first sorry for my english)
> I have a small (big) problem with configure Postfix to drop messages with
> header_checks.
> In main.cf I have:
> smtpd_milters = local:/./clamav-milter.sock
> local:/./spamass-m
On Thu, May 14, 2009 2:20 pm, Esteban Torres Rodriguez said:
> I have problem with some user. This user's sometimes receive email:
>
> A message that you send could not be delivered to one or more of its
> recipients.
>
> And Sometimes send email correct. No problem
>
> How to control
> Is there a real use case for binary RPMs not maintained by the
> distribution release engineering teams? What's wrong with the Postfix
> source, which is typically less likely to have ill-advised patches
> dropped into it?
Because those of us who run package-based systems find things work better
> I noticed that Postfix V#2.6.0 is now out. Does anybody know where to
> get RPM files? GOOGLE did not help.
Simon Mudd picks up the releases and makes good source and binary RPMs from
them with lots of options. However, he's a busy man and does not always get
to them right after release. A kin
I have problem with some user. This user's sometimes receive email:
A message that you send could not be delivered to one or more of its
recipients.
And Sometimes send email correct. No problem
How to control thats?
--
you shouldnt discard mail, only cause flagged by spamassassin
this is not allowed i.e in germany by law, if you do this for customers
use hold ( for manual inspection ) or tell spamass-milter to reject them
at smtp income level
additionally you may load sanesecurity spam sig to clamd, clamav-mil
Sorry, here is output:
alias_database = dbm:/etc/mail/aliases.db
alias_maps = hash:/etc/mail/aliases
broken_sasl_auth_clients = yes
command_directory = /usr/local/sbin
config_directory = /usr/local/etc/postfix
daemon_directory = /usr/local/libexec/postfix
data_directory = /var/db/postfix
debug_pe
Jiri Veselsky schrieb:
> Hallo all. (first sorry for my english)
> I have a small (big) problem with configure Postfix to drop messages
> with header_checks.
> In main.cf I have:
> smtpd_milters = local:/./clamav-milter.sock
> local:/./spamass-milter.sock
> milter_default_action = accept
>
wiseadmin:
> Hello everybody,
> I am running FreeBSD with postfix (2.6.0-RC2) and dovecot (1.1.11).
> There are virtual domains and users and postfix authenticates users
> using sasl and dovecot.
> Today I've performed a server upgrade (portupgrade -arRv) and sasl
> authentication works no more. It
Please include "postconf -n" command output in problem reports,
as requested in the mailing list welcome message.
Hello everybody,
I am running FreeBSD with postfix (2.6.0-RC2) and dovecot (1.1.11).
There are virtual domains and users and postfix authenticates users
using sasl and dovecot.
Today I've performed a server upgrade (portupgrade -arRv) and sasl
authentication works no more. It worked for the last 4
Hallo all. (first sorry for my english)
I have a small (big) problem with configure Postfix to drop messages with
header_checks.
In main.cf I have:
smtpd_milters = local:/./clamav-milter.sock
local:/./spamass-milter.sock
milter_default_action = accept
if I receive a message from int
2009/5/14 Scott Haneda :
> So If I am getting this correct, auto-reply is not something native to
> postfix other than in a very basic form, and I should look to 3rd party
> solutions that have matured?
Correct, it is an invention on top of SMTP mail. I blame Exchange and
its ilk for leading peopl
On May 14, 2009, at 12:25, Barney Desmond wrote:
Sure; as people have already said, some vendors (cough, Redhat) don't
really keep up to date. I haven't checked all their release channels
on offer, but the core set of packages only includes Postfix 2.3.3.
*And* it doesn't come with mysql/pgsql
Hi,
On May 14, 2009, at 01:07, Just E. Mail wrote:
I noticed that Postfix V#2.6.0 is now out. Does anybody know where
to get RPM files? GOOGLE did not help.
The SRPM from Fedora should compile fine on at least EL4 and EL5. I
suggest you download it and build it yourself instead of downloa
On May 14, 2009, at 02:03, Victor Duchovni wrote:
Is there a real use case for binary RPMs not maintained by the
distribution release engineering teams? What's wrong with the Postfix
source, which is typically less likely to have ill-advised patches
dropped into it?
A bit off topic already b
2009/5/14 Victor Duchovni :
> If the purpose of using RPM files is to facilitate binary updates from
> distribution servers, wait until *your distribution* upgrades to a newer
> supported version of Postfix.
>
> If you incorporate your own Postfix into your O/S, why download some
> random stranger'
On Thursday, 14. Mai 2009 09:54:56 Corey Chandler wrote:
> MacShane, Tracy wrote:
> > The OS administrators do not permit GCC and
> > devel libraries on the SMTP servers I maintain (and fair enough).
>
> Nor should they-- this is what a staging environment is for. Build it
> on a staging box, tes
Drew Tomlinson a écrit :
> Is there some rule about submitting questions with the string "Help" in
> the subject? I've tried posting the following note with the subject of
> "Help With header_checks" and received a bounce message indicating this
> error:
>
> BOUNCE postfix-users@postfix.org: Adm
MacShane, Tracy wrote:
Yes, there is unfortunately such a need, because RHEL5 is only up to
Postfix 2.3, and we require functionality from Postfix 2.5 and up
(destination_rate_delay).
This leads to an interesting question all its own:
I'm running the same Postfix config I built years ag
Victor Duchovni wrote:
Yes, some of the better distribution supported patches are not ill-advised.
But occasionally, one gets something along the lines of the Debian OpenSSL
fiasco (notably the Debian *Postfix* patches have been pretty good, and
historically RedHat was adding rather questionable
Julio Cesar Covolato wrote:
> Hi!
>
> I made a litle shell script to stoping bootnets and zombis, and I want
> know what you think about it.
>
> The purpose is drop via iptables hosts that are rejected several
> times in a litle space of time, reading the log generated by postfix.
>
> Teste
Samuel Sappa a écrit :
> I have problem with my postfix, a few days ago my smtpd running very
> slow, when delivering message (using MUA outlook,TB,OE) message
> delivering very slow, but if user using web mail which is using
> openwebmail the deliver running fine without the delay, I came to
> con
67 matches
Mail list logo