Re: From in Body mail

Hi Noel, This is how I'm doing it: [user@mailtest ~]# telnet localhost 25 Trying 127.0.0.1... Connected to localhost. Escape character is '^]'. 220 mailtest.example.com ESMTP Postfix HELO mailtest 250 mailtest.example.com MAIL FROM: 250 2.1.0 Ok RCPT TO: pa...@example.com 250 2.1.5 Ok DATA 354 E

Re: Postfix persistent connection and MySQL cluster

t...@iredmail.org [2016-10-21 00:11 +0200] : > We use the floating IP address (handled by KeepAlived) in Postfix config > file, we expect Postfix can always connect to a mysql server. I have a similar set up (instead of MySQL I use OpenLDAP though). Assuming that your servers are in a VPN, why do

Re: Is my server mail account being attacted?

Yes, I did not advertise AUTH in my port 25 smtpd too. when telnet to my mail server, it produce like: telnet 108.61.110.110 25 Trying 108.61.110.110... Connected to example.com. Escape character is '^]'. 220 example ESMTP Postfix ehlo 501 Syntax: EHLO hostname ehlo mail 250-mail.examp

Re: Hardening relay and sender-specified routing

Noel Jones-2 wrote > On 10/20/2016 11:52 AM, Doobster wrote: >> Noel Jones-2 wrote >>> On 10/20/2016 12:57 AM, Ross Naheedy wrote: I am having a peculiar issue in not being able to lock down my postfix 2.10. This is on a server that is on the Internet and must receive emails and rel

Re: Postfix submission port closed

On Thu, Oct 20, 2016 at 10:48:49PM +0200, Davide Marchi wrote: > I'm installing Postfix + Dovecot on my first VPS Debian Jessie, so > I'mabeginner :-) > using Christoph's workaround tutorial: > https://workaround.org/ispmail/jessie. If you're a beginner you do not need such a complex system. Star

Re: Hardening relay and sender-specified routing

On 10/20/2016 11:52 AM, Doobster wrote: > Noel Jones-2 wrote >> On 10/20/2016 12:57 AM, Ross Naheedy wrote: >>> I am having a peculiar issue in not being able to lock down my >>> postfix 2.10. This is on a server that is on the Internet and must >>> receive emails and relay email for authenticated

Re: Postfix submission port closed

On 10/20/2016 3:48 PM, Davide Marchi wrote: > Hi friends, > I'm installing Postfix + Dovecot on my first VPS Debian Jessie, so > I'mabeginner :-) > using Christoph's workaround tutorial: > https://workaround.org/ispmail/jessie. > I've made some test, andthe previous oneshave gone well: > > 1) echo

Re: different "relay" for specific domain

Joe Acquisto-j4: > Wietse Venema 10/20/16 1:56 PM >>> > >Joe Acquisto-j4: > >> Currently have postifx configured to relay mail via a "relay_host" > >> (main.cf). There is a need to send mail to a certain domain via > >> a different host. Google has suggested a few ways, transport > >> has

Postfix persistent connection and MySQL cluster

Hello I have a question about a problem that we run into regarding Postfix and MySQL connection. We have 3 servers running Percona XtraDB Cluster for mysql master-master cluster, and 2 frontend servers running HAProxy + KeepAlived to balance the traffic. We try to balance MySQL requests in HAPr

Re: Is my server mail account being attacted?

On 20 Oct 2016, at 16:39, Keith Williams wrote: No wait... What? This is no attack. Attack is when you try to break or enforce.. This is a probe, and from the probe we can deduce from the reported disconnect that 1. helo was tried, 2. no auth was attempted and 3, quit was used. So a test f

Re: Is my server mail account being attacted?

On 18 Oct 2016, at 21:00, vod vos wrote: So, how to block this kind of ips? Does fail2ban work? Yes, but as Sebastian said, it is possible for fail2ban to block innocent users, particularly those SSL errors, which essentially amount to connections that were never fully initiated. That's wh

Postfix submission port closed

Hi friends, I'm installing Postfix + Dovecot on my first VPS Debian Jessie, so I'mabeginner :-) using Christoph's workaround tutorial: https://workaround.org/ispmail/jessie. I've made some test, andthe previous oneshave gone well: 1) echo test | mail j...@example.org 2) mutt -f /var/vmail/exam

Re: From in Body mail

On 10/20/2016 3:08 PM, Paweł Grzesik wrote: > Just telnet on any host on 25 port and type From: some_real_email > and email will be send. I think thats how scam works. That doesn't work with postfix. Either your description or your test method is wrong. $ telnet localhost 25 Trying 127.0.0.1..

Re: Is my server mail account being attacted?

No wait... What? This is no attack. Attack is when you try to break or enforce.. This is a probe, and from the probe we can deduce from the reported disconnect that 1. helo was tried, 2. no auth was attempted and 3, quit was used. So a test for helo and quit? and no auth. Someone is testing

Re: Is my server mail account being attacted?

On 18 Oct 2016, at 20:45, Sebastian Nielsen wrote: Looks rather like a scanning attack (finding vulnerabilities). I think they are trying to do a SSL type of attack like HEARTBLEED but your server isn't vulnerable. Looks also like they are sending HTTP requests (encapsulated in SSL/TLS) to a m

Re: Is my server mail account being attacted?

On 18 Oct 2016, at 20:45, Sebastian Nielsen wrote: Its clear from the log, the attacker isn't even attemping to authenticate (0 attempts). The attacker hasn't propably not even realized he is connecting to a mail server. No. There's a jumble there, but at least one is a lame "attack" of a s

Re: From in Body mail

Just telnet on any host on 25 port and type From: some_real_email and email will be send. I think thats how scam works. On Oct 20, 2016 6:21 PM, "Noel Jones" wrote: > On 10/20/2016 8:46 AM, Paweł Grzesik wrote: > > Hi All, > > > > I noticed that it's really easy to send an e-mail as a real user

Re: different "relay" for specific domain

Wietse Venema 10/20/16 1:56 PM >>> >Joe Acquisto-j4: >> Currently have postifx configured to relay mail via a "relay_host" >> (main.cf). There is a need to send mail to a certain domain via >> a different host. Google has suggested a few ways, transport >> hash, header filter. >> >> Since

Re: different "relay" for specific domain

Joe Acquisto-j4: > Currently have postifx configured to relay mail via a "relay_host" > (main.cf). There is a need to send mail to a certain domain via > a different host. Google has suggested a few ways, transport > hash, header filter. > > Since this special destination has a primary and a se

different "relay" for specific domain

Currently have postifx configured to relay mail via a "relay_host" (main.cf). There is a need to send mail to a certain domain via a different host. Google has suggested a few ways, transport hash, header filter. Since this special destination has a primary and a secondary IP, how might

Re: Postfix & PostFWD - Rate Limit Config

On 20.10.16 19:00, David Byrne wrote: > It matters in what order you put the entries within > smtpd_recipient_restrictions You seem surprised? The documentation states "Restrictions are applied in the order as specified; the first restriction that matches wins." (http://www.postfix.org/postconf.5

RE: Postfix & PostFWD - Rate Limit Config

Not surprised.. It's just something I wasn't aware of. Always learning. -Original Message- From: owner-postfix-us...@postfix.org [mailto:owner-postfix-us...@postfix.org] On Behalf Of Ralph Seichter Sent: 20 October 2016 18:22 To: postfix-users@postfix.org Subject: Re: Postfix & PostFWD -

RE: Postfix & PostFWD - Rate Limit Config

Just in case anyone cares.. I resolved my issue. It matters in what order you put the entries within smtpd_recipient_restrictions: smtpd_recipient_restrictions = check_policy_service inet:127.0.0.1:10040 permit_mynetworks reject_unauth_destination That works fine. My issue

Re: Hardening relay and sender-specified routing

Noel Jones-2 wrote > On 10/20/2016 12:57 AM, Ross Naheedy wrote: >> I am having a peculiar issue in not being able to lock down my >> postfix 2.10. This is on a server that is on the Internet and must >> receive emails and relay email for authenticated users. My main.cf >> ; relev

Re: From in Body mail

On 10/20/2016 8:46 AM, Paweł Grzesik wrote: > Hi All, > > I noticed that it's really easy to send an e-mail as a real user by > simply > typing in the mail body: > > From: > > Is there any way to prevent from this? I checked that even when we > specify > MAIL FROM: > > and then in the body: >

Re: Hardening relay and sender-specified routing

On 10/20/2016 12:57 AM, Ross Naheedy wrote: > I am having a peculiar issue in not being able to lock down my > postfix 2.10. This is on a server that is on the Internet and must > receive emails and relay email for authenticated users. My main.cf > relevant portions look like thi

From in Body mail

Hi All, I noticed that it's really easy to send an e-mail as a real user by simply typing in the mail body: From: Is there any way to prevent from this? I checked that even when we specify MAIL FROM: and then in the body: From: postfix will send an e-mail with From: , the one from the body.

RE: SMTP round-trip monitoring

We also have something local with a similar flaw. We're interested in an outside service that can send to outside addresses (including text messages) without depending on our email systems. From: owner-postfix-us...@postfix.org [mailto:owner-postfix-us...@postfix.org] On Behalf Of Fazzina, Ange

RE: SMTP round-trip monitoring

Hello, I don't know of a service, but we have a Zabbix server and I wrote a python script that is run from a server not in our mail infrastructure(Azure) to verify mail is flowing. In short script creates and sends email that hops through all our mail servers, and checks email arrived in the ma

Re: [Feature-request] (smtpd_)milter_exceptions

* Wietse Venema : > Christian Ro??ner: > > Possible situation: Central SMTP-hub that gets connections from > > MX-ins and internal servers, ... > > I have a simpler solution: separate those mail streams with separate > MTA instances. That avoids the complexity of adding exceptions to > main.cf, mi

Re: [Feature-request] (smtpd_)milter_exceptions

Christian Ro??ner: > Possible situation: Central SMTP-hub that gets connections from > MX-ins and internal servers, ... I have a simpler solution: separate those mail streams with separate MTA instances. That avoids the complexity of adding exceptions to main.cf, milters, ... Different streams ca

[Feature-request] (smtpd_)milter_exceptions

Hello, the more milters I use the more often I have to deal with certain hosts that do not need a milter processing. Currently I would have to develop exceptions for each milter to skip processing for some hosts. It would be nice to have a feature as like this: smtpd_milter_exceptions = ${perm