* Неворотин Вадим :
> I need to allow to send mails throw my Postfix SMTP server only for
> users from mynetwork with valid SMTP authentication. But I can't
> understand how to combine two permissions in smtp_recipient_restriction
> options: permit_mynetworks and permit_sasl_authenticated.
You ne
* Ralf Hildebrandt :
> You need restriction classes for that :)
I suck. I left out the restriction classes...
> > smtp_recipient_restriction =
> > permit_mynetworks
> > permit_sasl_authenticated
>
> smtpd_recipient_restriction =
>check_client_access hash:/etc/postfix/mynetworks
>rej
Cool)) But then how to combine permit_sasl_authenticated and
permit_tls_clientcerts? The purpose is to allow send mails only for users
with valid certificate and valid login+password)))
2010/2/12 Ralf Hildebrandt
> * Ralf Hildebrandt :
>
> > You need restriction classes for that :)
>
> I suck. I
* Неворотин Вадим :
> Cool)) But then how to combine permit_sasl_authenticated and
> permit_tls_clientcerts? The purpose is to allow send mails only for users
> with valid certificate and valid login+password)))
Phew. Dunno.
--
Ralf Hildebrandt
Geschäftsbereich IT | Abteilung Netzwerk
Chari
Mmm... Unfortunatelly, I can't understand how combine
permit_sasl_authenticated and permit_tls_clientcerts with access_maps.
Because this maps look like "client - action", but I can't write in client
field something like "sasl_autentificated"
2010/2/12 Ralf Hildebrandt
> * Неворотин Вадим :
>
>
* Неворотин Вадим :
> Mmm... Unfortunatelly, I can't understand how combine
> permit_sasl_authenticated and permit_tls_clientcerts with access_maps.
You can't, since both return PERMIT
--
Ralf Hildebrandt
Geschäftsbereich IT | Abteilung Netzwerk
Charité - Universitätsmedizin Berlin
Campus
* Ralf Hildebrandt :
> * Неворотин Вадим :
> > Mmm... Unfortunatelly, I can't understand how combine
> > permit_sasl_authenticated and permit_tls_clientcerts with access_maps.
>
> You can't, since both return PERMIT
One idea would be to use a policy daemon. The daemon can retrieve
authentication
Hi All,
I'm using postfix as an MX server which delivers email to the final recipient
using virtual aliases. The version number according to rpm is
postfix-2.3.3-2.1.el5_2, that is the version which is supplied in the main
CentOS5 yum repositories. This is working perfectly except for one probl
Ok, well, now I decide not to allow connections not from my internal
network. But I was really surprised that I can't fully operate with
different clients identification information.
Where can I write "feature request"?))) It will be good to add state values
(something like $is_from_mynetwork, $is
On 12.02.2010 13:25, Richard Cooper wrote:
> Feb 12 00:41:24 mail1 postfix/smtpd[24782]: NOQUEUE: reject: RCPT from
> unknown[111.111.111.111]: 550 5.1.1 : Recipient
> address rejected: User unknown in virtual alias table;
> from= to=< recipi...@example.com > proto=SMTP
> helo=
>
> This is a v
On 12-Feb-2010, at 04:25, Richard Cooper wrote:
>
> to=< recipi...@example.com > proto=SMTP helo=
>
> This is a very intermittent and short lived error. Emails to
> recipi...@example.com were working before the error and start working again a
> few seconds after it.
The email is not to recipi.
* Неворотин Вадим :
> Ok, well, now I decide not to allow connections not from my internal
> network. But I was really surprised that I can't fully operate with
> different clients identification information.
>
> Where can I write "feature request"?))) It will be good to add state values
> (someth
On 12 Feb 2010, at 12:12, Eray Aslan wrote:
> On 12.02.2010 13:25, Richard Cooper wrote:
>> Feb 12 00:41:24 mail1 postfix/smtpd[24782]: NOQUEUE: reject: RCPT from
>> unknown[111.111.111.111]: 550 5.1.1 : Recipient
>> address rejected: User unknown in virtual alias table;
>> from= to=< recipi..
On Wed, 2010-02-10 at 15:26 -0500, Wietse Venema wrote:
> Stefan Palme:
> > ...
> > For testing purposes, I want to skip the policy service for some
> > recipient addresses, for other recipients I want to skip the spamhaus
> > check, and for a third class of recipients I want to skip both checks.
>
On 12 Feb 2010, at 12:21, LuKreme wrote:
> On 12-Feb-2010, at 04:25, Richard Cooper wrote:
>>
>> to=< recipi...@example.com > proto=SMTP helo=
>>
>> This is a very intermittent and short lived error. Emails to
>> recipi...@example.com were working before the error and start working again
>> a
Jeff Lacki:
>
> Im going out of my mind trying to get relaying working
> for my users who want to use my domain as their smtp
> outgoing server.
>
> Ive setup SASL and TLS successfully (I believe).
> I have the following:
>
> relay_transport = hash:/etc/postfix/transport
>
> and in transport I
> On Thu, Feb 11, 2010 at 7:57 PM, Wietse Venema wrote:
> > Postfix also logged this message, amidst your verbose logging.
> >
> > ? ? Feb 11 18:23:18 nagios postfix/smtp[22560]: warning: SASL
> > authentication failure: No worthy mechs found
> >
> > For a remedy, see http://www.postfix.org/SASL_
Patric Falinder:
> but when I get a mail from t...@example.org it checks the database if
> the user exists, which it doesn't becuase I am just gonna spam check it
> and send it the the real mailserver.
> error message:
>
> Feb 11 11:49:38 example.com postfix/smtpd[24775]: NOQUEUE: reject: RCPT f
On 12.02.2010 14:47, Richard Cooper wrote:
> On 12 Feb 2010, at 12:12, Eray Aslan wrote:
>> On 12.02.2010 13:25, Richard Cooper wrote:
>>> Feb 12 00:41:24 mail1 postfix/smtpd[24782]: NOQUEUE: reject: RCPT from
>>> unknown[111.111.111.111]: 550 5.1.1 : Recipient
>>> address rejected: User unknown
Hi
I'm having trouble configuring a working duplicate filter for my mail
server. This simple procmail recipe does the trick:
MAILDIR=/var/vmail
:0 Wh: msgid.lock
| formail -D 8192 .msgid.cache
The question is, is it possible to configure postfix to use procmail as
a content filter along w
Wietse Venema skrev:
Patric Falinder:
but when I get a mail from t...@example.org it checks the database if
the user exists, which it doesn't becuase I am just gonna spam check it
and send it the the real mailserver.
error message:
Feb 11 11:49:38 example.com postfix/smtpd[24775]: NOQUEUE:
On 2/12/2010 1:41 AM, Patric Falinder wrote:
Hi!
I got a little problem with my postfix setup. I currently have Postfix,
MySQL, amavisd-maia (Maia Mailguard), spamassassin, f-secure and dovecot
installed.
I have all my users/domains information in the database that are going
to be delivered to m
On 2/12/2010 5:27 AM, Неворотин Вадим wrote:
Ok, well, now I decide not to allow connections not from my internal
network. But I was really surprised that I can't fully operate with
different clients identification information.
Where can I write "feature request"?))) It will be good to add state
Thijssen put forth on 2/9/2010 4:19 AM:
> - If they like flashy GUI bullshit like HTML-mail and WYSIWYG
> formatted emails and spam and commerce, then don't use Squirrelmail.
> - If they focuss on actual text content and plaintext emails (the way
> it should be), then squirrelmail is your Number O
On 2/12/2010 12:18 AM, Jeff Lacki wrote:
Im going out of my mind trying to get relaying working
for my users who want to use my domain as their smtp
outgoing server.
Ive setup SASL and TLS successfully (I believe).
I have the following:
relay_transport = hash:/etc/postfix/transport
relay_tran
Hello all ( Postfix and Dovecot )
Trying to use deliver as mailbox_command with Postfix I get this
error each time an email is arriving
deliver(): Error: file_dotlock_create(/var/mail/)
failed: Permission denied (euid=3003() egid=3010(smig) missing
+w perm: /var/mail) (
On 12-Feb-2010, at 08:48, Stan Hoeppner wrote:
>
> Tell me about this "top-secure" aspect of Squirrelmail again. ;)
The fact that some spammers are able to get into email accounts and send spam
via squirrelmail has nothing to do with the security of squirrelmail itself. In
nerely all, if not al
On Fri, Feb 12, 2010 at 4:53 AM, fsuel wrote:
>
> Hi,
>
> I'am from the french ministry of defense and we have a opensource
> project about trusted messaging system. The aims of the global project
> is to build more trusted email system with components as Thunderbird and
> PostFix. All of the proj
On 02/12/2010 10:48 AM, Stan Hoeppner wrote:
> Tell me about this "top-secure" aspect of Squirrelmail again. ;)
> User-Agent: SquirrelMail/1.4.15
Spammers regularly phish for ISP account information and then use those
credentials to send spam via webmail and SMTP auth. We see this
frequently, an
Hi Folks,
How scaleable is postfix and dovecot, using mysql for user databases, on one
server?
My current server has 256MB RAM (It's a VM on slicehost). How many users do you
think that will handle?
How much RAM/CPU would I need to host 600 users? Please remember, that due to
the nature of em
On Wed, Feb 10, 2010 at 5:54 PM, Rob Tanner wrote:
> >> TLS is enabled on port 25 of our server and it has a regular Thawte
> >> certificate behind it. Tests with Thunderbird using PLAIN
> >> authentication (SASL method) work perfectly. From our point of view,
> >> all we really want to protect
Frank Bonnet put forth on 2/12/2010 10:05 AM:
> Hello all ( Postfix and Dovecot )
>
> Trying to use deliver as mailbox_command with Postfix I get this
> error each time an email is arriving
>
> deliver(): Error: file_dotlock_create(/var/mail/)
> failed: Permission denied (euid=300
LuKreme put forth on 2/12/2010 10:08 AM:
> On 12-Feb-2010, at 08:48, Stan Hoeppner wrote:
>>
>> Tell me about this "top-secure" aspect of Squirrelmail again. ;)
>
> The fact that some spammers are able to get into email accounts and send spam
> via squirrelmail has nothing to do with the security
On 2/12/2010 11:21 AM, Michael Saldivar wrote:
On Wed, Feb 10, 2010 at 5:54 PM, Rob Tanner mailto:rtan...@linfield.edu>> wrote:
>> TLS is enabled on port 25 of our server and it has a regular Thawte
>> certificate behind it. Tests with Thunderbird using PLAIN
>> authentication (S
On Fri, Feb 12, 2010 at 12:14 PM, Jonathan Tripathy wrote:
> Hi Folks,
>
> How scaleable is postfix and dovecot, using mysql for user databases, on one
> server?
>
> My current server has 256MB RAM (It's a VM on slicehost). How many users do
> you think that will handle?
>
> How much RAM/CPU would
Aaron Wolfe put forth on 2/12/2010 11:39 AM:
> It might be better to think in terms of messages per hour than number of
> users.
Most importantly, who are these users? Are they customers? Members of some
society or club? Will these be their primary email accounts or secondary,
tertiary, etc?
On Fri, Feb 12, 2010 at 05:14:30PM -, Jonathan Tripathy wrote:
> My current server has 256MB RAM (It's a VM on slicehost). How many users do
> you think that will handle?
Is more RAM substantially more expensive? 256 MB is rather meek these days.
With physical servers, one typically gets 16G
On Fri, Feb 12, 2010 at 11:25:05AM +, Richard Cooper wrote:
> Based on my debugging it seems that this error is related to me running
> postmap to rebuild the virtual_alias table This is despite the fact that the
> recipi...@example.com address is correctly configured in both the old and new
Greetings,
the aliases files are limited to 1024 chars/record because of NIS.
but postfix looks like it would take hash maps instead for things
like aliases. does this work around the 1024 character limit?
i hope, i hope. the chaining biz is annoying.
j.
Jay G. Scott wrote:
> Greetings,
>
> the aliases files are limited to 1024 chars/record because of NIS.
Which part of the postfix documentation states this?
/mjt
Jay G. Scott:
>
> Greetings,
>
> the aliases files are limited to 1024 chars/record because of NIS.
>
> but postfix looks like it would take hash maps instead for things
> like aliases. does this work around the 1024 character limit?
> i hope, i hope. the chaining biz is annoying.
hash and bt
the only changes tested were:
smtp_sasl_security_options = noanonymous, noplaintext
smtp_sasl_tls_security_options = noanonymous
and
smtp_sasl_security_options = noplaintext
smtp_sasl_tls_security_options = noplaintext
My origional configuration was the recommended:
smtp_sasl_security_options
Hi Everyone,
Thanks for all the comments.
The reason why I said 256MB RAM, is because that is currently what my VM
has...
If I were to take out a dedicated server with:
2.8 Dual Core
2GB RAM
how much would that handle?
My customer is a business, with 600 staff, however I think they just us
On Fri, Feb 12, 2010 at 4:50 PM, Jonathan Tripathy wrote:
> Hi Everyone,
>
> Thanks for all the comments.
>
> The reason why I said 256MB RAM, is because that is currently what my VM
> has...
>
> If I were to take out a dedicated server with:
>
> 2.8 Dual Core
> 2GB RAM
>
> how much would that han
On Fri, Feb 12, 2010 at 05:17:26PM -0500, Aaron Wolfe wrote:
> If you want to give your client good advice, you will have to measure
> their mail flow in a meaningful way.
> How many messages per second, minute, hour, day do you need to handle?
> How many concurrent SMTP sessions? Do they even c
Found a far superior solution. The problem that the powers that be thought
it would fix, it wouldn't fix anyway. I finally convinced them of that and
so that's the end of that.
Nevertheless, thanks to all who replied.
-- Rob
On 2/12/10 9:30 AM, "Noel Jones" wrote:
> On 2/12/2010 11:21 AM,
Jonathan Tripathy put forth on 2/12/2010 3:50 PM:
> 2.8 Dual Core
> 2GB RAM
What about disk? Disk is typically the key subsystem for mail performance.
Fast CPUs don't do much for mail without a fast disk subsystem. At minimum get
hardware mirroring for two disks (RAID 1) and best to make them 1
On Fri, Feb 12, 2010 at 5:41 PM, Victor Duchovni
wrote:
> On Fri, Feb 12, 2010 at 05:17:26PM -0500, Aaron Wolfe wrote:
>
>> If you want to give your client good advice, you will have to measure
>> their mail flow in a meaningful way.
>> How many messages per second, minute, hour, day do you need t
> relayhost = [smtp.gmail.com]:587
This host supports no SASL authentication BEFORE STARTLS:
% telnet smtp.gmail.com 587
...
220 mx.google.com ESMTP 42sm38391439vws.8
ehlo hostname.porcupine.org
250-mx.google.com at your service, [my.ip.addr]
250-SIZE 35651584
250-8BITMIME
250-STARTTLS
250-ENHANC
saslfinger - postfix Cyrus sasl configuration Fri Feb 12 19:51:42 CST 2010
version: 1.0.2
mode: client-side SMTP AUTH
-- basics --
Postfix: 2.3.3
System: CentOS release 5.4 (Final)
-- smtp is linked to --
libsasl2.so.2 => /usr/lib64/libsasl2.so.2 (0x2b16ec84f000)
-- active SMTP AUTH
Jay Bendon:
> -- listing of /usr/lib64/sasl2 --
> total 2748
> drwxr-xr-x 2 root root 4096 Feb 10 19:51 .
> drwxr-xr-x 28 root root 20480 Feb 10 21:31 ..
> -rwxr-xr-x 1 root root890 Sep 3 19:04 libanonymous.la
> -rwxr-xr-x 1 root root 15880 Sep 3 19:05 libanonymous.so
> -rwxr-xr-x 1 r
On Fri, Feb 12, 2010 at 06:24:59PM -0500, Aaron Wolfe wrote:
> If spam filtering is going to be used, it would be wise to consider
> those requirements as well.
A host with 256MB of RAM is not going to be doing much heavy lifting
with content inspection.
--
Viktor.
P.S. Morgan Stanley
That fixed it!
Thanks so much for your help Wietse.
-- Always glad to help,
--Jay Bendon - Bendon Consults
On Fri, Feb 12, 2010 at 8:09 PM, Wietse Venema wrote:
> Jay Bendon:
>> -- listing of /usr/lib64/sasl2 --
>> total 2748
>> drwxr-xr-x 2 root root 4096 Feb 10 19:51 .
>> drwxr-xr-x 28
Jonathan Tripathy put forth on 2/12/2010 5:05 PM:
> Hi Stan,
Hi. Try to keep the discussions on list so everyone can assist.
> You've hit a very good question. They don't currently have an office
> email system. Staff are using their personal Hotmail accounts when they
> need to send the odd ema
54 matches
Mail list logo
