On 22/10/17 18:25, Henry wrote:
> Does this mean, in the scenario above, that I am receiving a spam
> message
It may or may not be SPAM, I don't have enough evidence to confirm one
way or the other.
> i.e. "zvnpozz...@brev.krcnet.com" and the mail server is
> bouncing it because it is over quota,
> On Oct 22, 2017, at 12:11 AM, Henry wrote:
>
> root@mail:/var/log# grep EEA9AA65A2 mail.log
> Oct 15 06:32:00 mail postfix/qmgr[1275]: EEA9AA65A2:
> from=, size=9979, nrcpt=3 (queue active)
You're not looking far enough back in the logs. This is a retry,
the message did not just materialize
On 22/10/17 17:11, Henry wrote:
> root@mail:/var/log# grep EEA9AA65A2 mail.log
> Oct 15 06:32:00 mail postfix/qmgr[1275]: EEA9AA65A2:
> from=, size=9979, nrcpt=3 (queue active)
> Oct 15 06:32:03 mail postfix/lmtp[28970]: EEA9AA65A2:
> to=,
> relay=mail.mydomain.com[/var/lib/imap/socket/lmtp], delay
On Sun, Oct 22, 2017 at 1:27 PM, Viktor Dukhovni
wrote:
>
>
>> On Oct 21, 2017, at 9:23 PM, Henry wrote:
>>
>> # grep 1613DAE169 mail.log
>> Oct 20 04:42:12 mail postfix/cleanup[23726]: 1613DAE169:
>> message-id=<20171019174212.1613dae...@mydomain.com>
>> Oct 20 04:42:12 mail postfix/bounce[23745
> On Oct 21, 2017, at 9:23 PM, Henry wrote:
>
> # grep 1613DAE169 mail.log
> Oct 20 04:42:12 mail postfix/cleanup[23726]: 1613DAE169:
> message-id=<20171019174212.1613dae...@mydomain.com>
> Oct 20 04:42:12 mail postfix/bounce[23745]: EEA9AA65A2: sender
> non-delivery notification: 1613DAE169
T
On Sun, Oct 22, 2017 at 9:03 AM, Henry wrote:
> I am not 100% sure however I suspect my email server has been compromised.
>
> I am using Kolab.
>
> I previously only logged inbound connections to my fw however I have
> just tested logging outbound connections and I see multiple repeated
> connect
On Sun, Oct 22, 2017 at 10:22 AM, Wietse Venema wrote:
> Henry:
>> Oct 22 08:41:37 mail postfix/smtp[18131]: 3E56FAD620:
>> to=, relay=arebetter.com[68.178.213.61]:25,
>> delay=3342, delays=3297/0.07/45/0, dsn=4.4.2, status=deferred (lost
>> connection with arebetter.com[68.178.213.61] while recei
FWIW, the IP address looks like a legitimate reverse proxy vendor located in
Canada. You might want to contact dosarrest security and inform them regarding
the behavior of their less than stellar client.
Original Message
From: der...@gmail.com
Sent: October 21, 2017 3:03 PM
To: postfix-use
Henry:
> Oct 22 08:41:37 mail postfix/smtp[18131]: 3E56FAD620:
> to=, relay=arebetter.com[68.178.213.61]:25,
> delay=3342, delays=3297/0.07/45/0, dsn=4.4.2, status=deferred (lost
> connection with arebetter.com[68.178.213.61] while receiving the
> initial server greeting)
Show output from:
$ grep
I am not 100% sure however I suspect my email server has been compromised.
I am using Kolab.
I previously only logged inbound connections to my fw however I have
just tested logging outbound connections and I see multiple repeated
connections to a a few IPs on port 25.
The prime contender is 69.
cac...@quantum-equities.com:
> How does DNS know where mail.example1.com is? Should I set it in
> my registrar, in the mail system, in Apache as a virtual domain,
> or where?
Normally, someone pays a registrar, so that the payer can configure
the names of DNS servers that hold DNS records for exa
How does DNS know where mail.example1.com is? Should I set it in my registrar,
in the mail system, in Apache as a virtual domain, or where?
In /etc/postfix/virtual ( have
# Redirect system email so it can be picked up
root r...@quantum-equities.com
Will this bypass /var/spool/mail/ro
On 20 October 2017 at 18:28, Fazzina, Angelo
wrote:
> Hi, i have a small DKIM question. config files are at bottom of email.
> I got it working but don't understand why ?
>
> The one change i made to get it to work was add
> 137.99.0.0/16 to the TrustedHosts file.
>
> So tests with from of x.
13 matches
Mail list logo
