Re: Many SQL Lookups on outbounding mails

On Tue, 2009-07-21 at 12:34 -0500, Noel Jones wrote: > Clunk Werclick wrote: > > On Tue, 2009-07-21 at 10:39 -0500, Noel Jones wrote: > >> Clunk Werclick wrote: > >>> Hello. > >>> > >>> Postfix is new to me and I have spent many hours of reading and testing. > >>> I do not have much experience to l

Re: Complex canonical rewrite with ldap and regexp

On Wed, 2009-07-22 at 12:27 +0700, Olivier Nicole wrote: > Hi, > > I want to know if the following canonical rewrite is possible with > Postfix, and how? > > In my LDAP directory, for each user, I have a givenName and a > familyName attributes. > > The canonical name should be givenName.familyN

Expected output for local_recipient_maps = ldap:...

Hi, In my Postfix configuration I have local_recipient_maps = unix:passwd.byname $alias_maps ldap:$config_directory/ldap_local_recipient What is the expected output of the ldap: part? Anything non empty means the user is local? The user ID? Something else? Best regards, Olivier

Complex canonical rewrite with ldap and regexp

Hi, I want to know if the following canonical rewrite is possible with Postfix, and how? In my LDAP directory, for each user, I have a givenName and a familyName attributes. The canonical name should be givenName.familyName or familyName.givenName, the order is depending on a thrid attribute (c

Re: Transport Maps

On Tue, 2009-07-21 at 12:21 -0400, Linux Addict wrote: > I tried digging, I get the MX servers on the ANSWER section. I manage > DNS as well, so I know its resolving correctly. Just one thing Sir and a shot in the water. Restart Postfix (not reload). I was having a problem where it kept looking up

RE: smtp time outs and delays

> Ouch. Line ends are a Good Thing. Also, please don't top-post replies, > as it makes the archives hard to follow. Thank you. > > Anyway, I assume that the PIX "fixup" was the whole problem. This is a > well-known and common issue, with just about any site behind a PIX. > Complain to your vendo

Re: sending a message to two seperate accounts

On Tue, 21 Jul 2009, Ray wrote: > I have a solution, and It seems to work, just want to know if I'm going to > shoot myself in the foot. > > I'm running postfix 2.6 with a number of virtual domains, all data stored in > a > MySql database. Server is running well and has been for a while. > >

Re: tls_random_source and OSX

--On Tuesday, July 21, 2009 7:06 PM -0400 Wietse Venema wrote: Is there a particular reason for this? There wasn't a /dev/*random when Postfix was initially ported to MacOSX, and no-one has told me when /dev/*random were added. Perhaps you can provide "uname -s" and "uname -r". Have you ve

Re: tls_random_source and OSX

Quanah Gibson-Mount: > I noticed that on my OSX builds, there is no default tls_random_source > defined, yet /dev/urandom exists on those systems: > > OSX 10.4: > > build24:~ build$ ls -l /dev/urandom > crw-rw-rw- 1 root wheel8, 1 Jun 18 13:38 /dev/urandom > build24:~ build$ uname -a >

Re: tls_random_source and OSX

--On Wednesday, July 22, 2009 12:16 AM +0200 Patrick Ben Koetter wrote: These days OpenSSL is able to determine which random source it wants to use. This might explain why it is empty in a Postfix install on Mac OS X, since it isn't required anymore. This is definitely used by the Postfix tl

Re: Postfix delivery over IPv6, than ISP mail server

Wietse Venema wrote, On 21-07-09 23:12: Joris Dobbelsteen: [ Charset ISO-8859-1 unsupported, converting... ] I'm using Postfix 2.3 (with debian etch, but I'm planning to go to postfix 2.5 with debian lenny). I'm using the postfix box solely for relaying e-mail and doing virus/spam scanning. Mai

Re: tls_random_source and OSX

* Quanah Gibson-Mount : > --On Tuesday, July 21, 2009 5:44 PM -0400 Linux Addict > wrote: > > >> Was the postfix compiled with TLS enabled? If yes what does postconf >> -d|grep tls_random_source shows?  > > Yes, it was, and postfix -d shows it not to be set to anything. Which is > why I'm aski

Re: tls_random_source and OSX

--On Tuesday, July 21, 2009 5:44 PM -0400 Linux Addict wrote: Was the postfix compiled with TLS enabled? If yes what does postconf -d|grep tls_random_source shows?  Yes, it was, and postfix -d shows it not to be set to anything. Which is why I'm asking about it. :) I.e., I'm curious if t

Re: tls_random_source and OSX

On Tue, Jul 21, 2009 at 5:13 PM, Quanah Gibson-Mount wrote: > I noticed that on my OSX builds, there is no default tls_random_source > defined, yet /dev/urandom exists on those systems: > > OSX 10.4: > > build24:~ build$ ls -l /dev/urandom > crw-rw-rw- 1 root wheel8, 1 Jun 18 13:38 /dev/u

Re: smtp time outs and delays

On Saturday 18 July 2009 08:28:35 Jumping Mouse top-posted: > Here is my postconf -n output: > > ~$ postconf -nalias_maps = hash:/etc/aliases, > hash:/var/lib/mailman/data/aliasesbiff = nobroken_sasl_auth_clients = Ouch. Line ends are a Good Thing. Also, please don't top-post replies, as it makes

tls_random_source and OSX

I noticed that on my OSX builds, there is no default tls_random_source defined, yet /dev/urandom exists on those systems: OSX 10.4: build24:~ build$ ls -l /dev/urandom crw-rw-rw- 1 root wheel8, 1 Jun 18 13:38 /dev/urandom build24:~ build$ uname -a Darwin build24.lab.zimbra.com 8.11.1 D

Re: Postfix delivery over IPv6, than ISP mail server

Joris Dobbelsteen: [ Charset ISO-8859-1 unsupported, converting... ] > I'm using Postfix 2.3 (with debian etch, but I'm planning to go to > postfix 2.5 with debian lenny). I'm using the postfix box solely for > relaying e-mail and doing virus/spam scanning. Mail for local domains is > relayed to

Postfix delivery over IPv6, than ISP mail server

I'm using Postfix 2.3 (with debian etch, but I'm planning to go to postfix 2.5 with debian lenny). I'm using the postfix box solely for relaying e-mail and doing virus/spam scanning. Mail for local domains is relayed to a local server and everything else goes to my ISPs server. I currently use

Re: TLS

Damian Myerscough wrote: > Hello Brian, > > How could you tell this was a CISCO "Fixup" problem? I am just > curious. > Cisco smtp fixup replaces banners and ESMTP options with * or X characters. This can disable some useful features that administrators actually do want. This is always the fir

Re: TLS

Hello Brian, How could you tell this was a CISCO "Fixup" problem? I am just curious. 2009/7/21 Brian Evans - Postfix List : > postmaster at thessaloniki dot gr wrote: >> Hi there >> >> I have a weird problem with postfix 2.3 regarding TLS configuration. >> Although the certificates are correctly

Re: TLS

postmaster at thessaloniki dot gr wrote: > Hi there > > I have a weird problem with postfix 2.3 regarding TLS configuration. > Although the certificates are correctly installed and verified, the > STARTTLS command is offered > only on hosts on the same network with the mail server. > Hosts that acc

TLS

Hi there I have a weird problem with postfix 2.3 regarding TLS configuration. Although the certificates are correctly installed and verified, the STARTTLS command is offered only on hosts on the same network with the mail server. Hosts that access the mail server outside the internal network an

Re: delivery temporarily suspended: connect to, localhost[10.11.12.13]:25: Connection timed out

> 10.11.12.13 is also the IP of localhost.com. Is it possible you have no localhost entry in /etc/hosts, causing your machine to look up localhost.com ? THANKS VERY MUCH. It's enough to have .com default domain suffix and it explains some weirdnessess ;-) Regards, Andrzej

RE: smtp time outs and delays

Ok I took a tcpdumpt on a "delay" occassion, it takes about 22 seconds to send a small message with no attachments.. Will also monitor timeouts and send tcp dump of this. r...@mail:/home/adnim1# tcpdump -n port 587tcpdump: verbose output suppressed, use -v or -vv for full protocol decodelis

Re: TLS / SASL Help

On Tue, Jul 21, 2009 at 1:30 PM, Noel Jones wrote: > Carlos Williams wrote: > Ah, that's an important detail. > > Postfix does not support password-protected certificates.  You can use > openssl to remove the password.  I forget the command offhand, but google > knows.  There is no security advanta

RE: smtp time outs and delays

> > > > I think it may be... I will check. you think this might be an issue > > with delays? > Some antivirus and Cisco "FixUp" are examples of security by obscurity. > Many of which do it poorly. > > It is recommended to turn off Cisco SMTP fixup because it does not > protect anything truly s

sending a message to two seperate accounts

Hello all I have a solution, and It seems to work, just want to know if I'm going to shoot myself in the foot. I'm running postfix 2.6 with a number of virtual domains, all data stored in a MySql database. Server is running well and has been for a while. When a message is sent to u...@example.c

Re: Many SQL Lookups on outbounding mails

Clunk Werclick wrote: On Tue, 2009-07-21 at 10:39 -0500, Noel Jones wrote: Clunk Werclick wrote: Hello. Postfix is new to me and I have spent many hours of reading and testing. I do not have much experience to look at things and say they are normal or not. ... Please may I ask someone to reass

Re: TLS / SASL Help

Carlos Williams wrote: On Tue, Jul 21, 2009 at 11:33 AM, Noel Jones wrote: Without logs it's much more difficult to diagnose the problem; with no obvious configuration errors we're reduced to guessing. Postfix logging is handled by your system's syslog program. Check your syslog.conf file to se

Re: TLS / SASL Help

Carlos Williams wrote: > Then I downloaded my private key issued from Verisign along with my > public certificate on my mail server. I know that when my IMAP server > (Dovecot) uses my SSL certificate for TLS & it appears to be working > great. The only thing I noted is that my Dovecot config file

Re: smtp time outs and delays

Jumping Mouse wrote: > > > > I get a very quick banner response when I telnet to port 25 and port > > > 587 I do get different banners > > > for port 25 I get: > > > 220 * > > > > > Cisco Pix running SMTP 'Fixup' ? > > > > > > I think it may be... I will

Re: Fax Gateway Usage with Hylafax

On Monday 13 July 2009 13:08:29 Daniel L. Miller wrote: > I'm trying to implement an email-to-fax gateway using Postfix + > Hylafax. Hylafax's provide faxmail command does function - but it > doesn't accomplish what I want. In particular, I would like to: Note, this is all pretty much outside th

Re: Transport Maps

On Tue, Jul 21, 2009 at 12:37 PM, Linux Addict wrote: > > > On Tue, Jul 21, 2009 at 12:24 PM, Jaroslaw Grzabel wrote: > >> Linux Addict wrote: >> >>> I tried digging, I get the MX servers on the ANSWER section. I manage DNS >>> as well, so I know its resolving correctly. >>> >> What is in the log

Re: Transport Maps

On Tue, Jul 21, 2009 at 12:24 PM, Jaroslaw Grzabel wrote: > Linux Addict wrote: > >> I tried digging, I get the MX servers on the ANSWER section. I manage DNS >> as well, so I know its resolving correctly. >> > What is in the log files then when you're trying to relay your messages ? > > Regards,

Re: TLS / SASL Help

On Tue, Jul 21, 2009 at 11:33 AM, Noel Jones wrote: > Without logs it's much more difficult to diagnose the problem; with no > obvious configuration errors we're reduced to guessing. Postfix logging is > handled by your system's syslog program.  Check your syslog.conf file to see > where it stores

Re: Transport Maps

Linux Addict wrote: I tried digging, I get the MX servers on the ANSWER section. I manage DNS as well, so I know its resolving correctly. What is in the log files then when you're trying to relay your messages ? Regards, Jarek

Re: Transport Maps

I tried digging, I get the MX servers on the ANSWER section. I manage DNS as well, so I know its resolving correctly. On Tue, Jul 21, 2009 at 12:20 PM, Jaroslaw Grzabel wrote: > Linux Addict wrote: > >> >> Simon, I already tried that. Its not doing MX lookup I guess. >> >> Maybe it works but yo

Re: Transport Maps

Linux Addict wrote: Simon, I already tried that. Its not doing MX lookup I guess. Maybe it works but you're using your local DNS which doesn't know MX record for that remote domain you want to relay your messages through. Try locally run dig domainname.com MX and see the result. If it's empty

Re: Transport Maps

On Tue, 2009-07-21 at 17:10 +0100, Clunk Werclick wrote: > On Tue, 2009-07-21 at 12:05 -0400, Linux Addict wrote: > > > > > > On Tue, Jul 21, 2009 at 12:00 PM, Ralf Hildebrandt > > wrote: > > * Ralf Hildebrandt : > > > > > > In simple, When I send a mail to @example.com,

Re: Transport Maps

On Tue, Jul 21, 2009 at 12:03 PM, Simon Waters wrote: > On Tuesday 21 July 2009 16:53:52 Linux Addict wrote: > > > > I tried using transport maps, "example.com :[smtp1.example.com]" > > and " example.com smtp:[smtp1.example.com], but of them didn't use > > smtp.example.com. > > Not clear

Re: Transport Maps

On Tue, 2009-07-21 at 12:05 -0400, Linux Addict wrote: > > > On Tue, Jul 21, 2009 at 12:00 PM, Ralf Hildebrandt > wrote: > * Ralf Hildebrandt : > > > > In simple, When I send a mail to @example.com, postfix > must send the mail > > > to the MX records of

Re: Transport Maps

On Tue, Jul 21, 2009 at 12:00 PM, Ralf Hildebrandt < ralf.hildebra...@charite.de> wrote: > * Ralf Hildebrandt : > > > > In simple, When I send a mail to @example.com, postfix must send the > mail > > > to the MX records of smtp.example.com. > > > example.com smtp.example.com > > OK, not too

Re: Transport Maps

On Tuesday 21 July 2009 16:53:52 Linux Addict wrote: > > I tried using transport maps, "example.com :[smtp1.example.com]" > and " example.com smtp:[smtp1.example.com], but of them didn't use > smtp.example.com. Not clear what you mean here. Documentation of "transport" (man transport)

Re: Transport Maps

* Ralf Hildebrandt : > > In simple, When I send a mail to @example.com, postfix must send the mail > > to the MX records of smtp.example.com. > example.com smtp.example.com OK, not too sure if Postfix will perform an MX lookup for the RHS (smtp.example.com in this example). Please try --

Re: Transport Maps

* Linux Addict : > I have a postfix MTA server running. I was asked to setup relay mail to a > specific domain thru MX record. > Domain - Example.com > An A record smtp.example.com > MX Records smtp.example.com - smtp1.example.com and smtp2.example.com. > > In simple, When I send a mail to @exampl

Transport Maps

I have a postfix MTA server running. I was asked to setup relay mail to a specific domain thru MX record. Domain - Example.com An A record smtp.example.com MX Records smtp.example.com - smtp1.example.com and smtp2.example.com. In simple, When I send a mail to @example.com, postfix must send the m

Re: Many SQL Lookups on outbounding mails

On Tue, 2009-07-21 at 10:39 -0500, Noel Jones wrote: > Clunk Werclick wrote: > > Hello. > > > > Postfix is new to me and I have spent many hours of reading and testing. > > I do not have much experience to look at things and say they are normal or > > not. > > ... > > Please may I ask someone to

Re: Many SQL Lookups on outbounding mails

Clunk Werclick wrote: Hello. Postfix is new to me and I have spent many hours of reading and testing. I do not have much experience to look at things and say they are normal or not. ... Please may I ask someone to reassure me this is doing the thing that is right. It seems lots of lookups per me

Re: TLS / SASL Help

Carlos Williams wrote: On Mon, Jul 20, 2009 at 1:25 PM, Noel Jones> wrote: > Details of a problem are not divulged to outsiders, so the transcript > intentionally gives vague information. > > Something broken in your config. Check your logs, postfix probably te

RE: smtp time outs and delays

> > > > > > > I get a very quick banner response when I telnet to port 25 and port > > 587 I do get different banners > > for port 25 I get: > > 220 * > > > Cisco Pix running SMTP 'Fixup' ? > > I think it may be... I will check. you think t

Many SQL Lookups on outbounding mails

Hello. Postfix is new to me and I have spent many hours of reading and testing. I do not have much experience to look at things and say they are normal or not. My Postfix hosts some virtual domains locally, and it also relays some others to another Postfix. It looks up virtual domains, relay doma

Re: TLS / SASL Help

On Mon, Jul 20, 2009 at 1:25 PM, Noel Jones wrote: > Details of a problem are not divulged to outsiders, so the transcript > intentionally gives vague information. > > Something broken in your config. Check your logs, postfix probably tells > you where to look further there. That makes sense why