Comcast 421 throttling multiple recipients

2020-09-24 Thread Bob Proulx
Question about a different system. Pretty much every question of mine is related to a different oddball case. Here I am helping a friend out and they encountered this problem. I'll change the 3rd party addresses so as not to annoy them but the data is otherwise verbatim. Sep 23 14:38:23 yuk

Re: Comcast 421 throttling multiple recipients

2020-09-24 Thread Viktor Dukhovni
On Thu, Sep 24, 2020 at 12:59:44AM -0600, Bob Proulx wrote: > Question about a different system. Pretty much every question of mine > is related to a different oddball case. Here I am helping a friend > out and they encountered this problem. I'll change the 3rd party > addresses so as not to an

Re: smtpd_tls_CApath etc - needed?

2020-09-24 Thread Viktor Dukhovni
On Wed, Sep 23, 2020 at 09:48:28AM +0100, Dominic Raferd wrote: > My mail servers, with LetsEncrypt certificates, seem to be working > perfectly (sending to, and receiving from, the world), but I have > never set any of: > > smtp_tls_CAfile > smtp_tls_CApath > smtpd_tls_CAfile > smtpd_tls_CApath

Re: smtpd_tls_CApath etc - needed?

2020-09-24 Thread Dominic Raferd
On Thu, 24 Sep 2020 at 09:12, Viktor Dukhovni wrote: > > On Wed, Sep 23, 2020 at 09:48:28AM +0100, Dominic Raferd wrote: > > > My mail servers, with LetsEncrypt certificates, seem to be working > > perfectly (sending to, and receiving from, the world), but I have > > never set any of: > > > > smtp

non_fqdn vs invalid helo hostname

2020-09-24 Thread Markus E.
Hi! I have a few questions regarding the HELO/EHLO checks. According to the documentation: reject_non_fqdn_helo_hostname Reject the request when the HELO or EHLO hostname is not in fully-qualified domain or address literal form, as required by the RFC. reject_invalid_helo_hostname Reject t

Re: non_fqdn vs invalid helo hostname

2020-09-24 Thread Bill Cole
On 24 Sep 2020, at 5:49, Markus E. wrote: Hi! I have a few questions regarding the HELO/EHLO checks. According to the documentation: reject_non_fqdn_helo_hostname Reject the request when the HELO or EHLO hostname is not in fully-qualified domain or address literal form, as required by the

Re: Send only configuration best practices?

2020-09-24 Thread Kris Deugau
Bob Proulx wrote: The problem is *other* sites. I am starting to get a trickle of complaints from people who are not receiving password reset emails. And the problem seems to be other sites that are requiring that senders have MX records, and the rest of the associated incoming mail server set

Re: Piping mail logs to another process fails

2020-09-24 Thread Wietse Venema
Jonathan Hammer: > Hi, > > We are running Postfix on macOS and making use of `maillog_file = > /dev/stdout` and `postfix start-fg` to send our logs to stdout. Not using > Docker. > > We would like to pipe the logs from stdout to another process to do some > analysis and post-processing, like s

How to allow relaying per domain?

2020-09-24 Thread Hans van Zijst
Is it possible to let Postfix decide which hosts to relay mail for, based on the domain from which that mail is sent? I'm building a relayhost that should accept e-mail from a whole bunch of internal mailservers, and relay it to the Internet, after scanning, DKIM-signing and rate limiting. But I

fatal: dict_sqlite_lookup: /etc/postfix/sqlite/local-aliases.cf: SQL prepare failed: disk I/O error?

2020-09-24 Thread deoren
Alternate title: Postfix + SQLite lookup tables shared with external applications in Write-Ahead Logging (WAL) mode Hi, Ultimately, the fix appears to be to set the owner of the containing directory and the SQLite database files to "postfix". What I don't understand is _why_ this is the fix

Re: fatal: dict_sqlite_lookup: /etc/postfix/sqlite/local-aliases.cf: SQL prepare failed: disk I/O error?

2020-09-24 Thread Wietse Venema
deoren: > Alternate title: > > Postfix + SQLite lookup tables shared with external applications in > Write-Ahead Logging (WAL) mode > > Hi, > > Ultimately, the fix appears to be to set the owner of the containing > directory and the SQLite database files to "postfix". What I don't > understan

Re: fatal: dict_sqlite_lookup: /etc/postfix/sqlite/local-aliases.cf: SQL prepare failed: disk I/O error?

2020-09-24 Thread deoren
On 9/24/2020 12:43 PM, Wietse Venema wrote: deoren: Alternate title: Postfix + SQLite lookup tables shared with external applications in Write-Ahead Logging (WAL) mode Hi, Ultimately, the fix appears to be to set the owner of the containing directory and the SQLite database files to "postfix"

Re: non_fqdn vs invalid helo hostname

2020-09-24 Thread Markus E.
On Thu, 24 Sep 2020, Bill Cole wrote: reject_non_fqdn_helo_hostname reject_invalid_helo_hostname Is there a good reason to use both checks? What is your risk tolerance? Mine is high, so I use both. Sounds good to me as well :) reject_invalid_helo_hostname is generally safe. I've never

Re: Send only configuration best practices?

2020-09-24 Thread Bob Proulx
Kris Deugau wrote: > Bob Proulx wrote: > > The problem is *other* sites. I am starting to get a trickle of > > complaints from people who are not receiving password reset emails. > > And the problem seems to be other sites that are requiring that > > senders have MX records, and the rest of the as

Re: Comcast 421 throttling multiple recipients

2020-09-24 Thread Bob Proulx
Viktor Dukhovni wrote: > Bob Proulx wrote: > > ... http://postmaster.comcast.net/smtp-error-codes.php#RL01 (in reply > > to MAIL FROM command)) > > Look carefully at the log entry. The "421" is send in response to "MAIL > FROM", not "RCPT TO". So the recipient limit does not look entirely >

Re: fatal: dict_sqlite_lookup: /etc/postfix/sqlite/local-aliases.cf: SQL prepare failed: disk I/O error?

2020-09-24 Thread Viktor Dukhovni
On Thu, Sep 24, 2020 at 11:50:19AM -0500, deoren wrote: > Postfix + SQLite lookup tables shared with external applications in > Write-Ahead Logging (WAL) mode SQLite with WAL mode is a multi-file database, in which some of the files are opened and closed as you go. Postfix does not support this

Re: fatal: dict_sqlite_lookup: /etc/postfix/sqlite/local-aliases.cf: SQL prepare failed: disk I/O error?

2020-09-24 Thread deoren
On 9/24/2020 5:16 PM, Viktor Dukhovni wrote: On Thu, Sep 24, 2020 at 11:50:19AM -0500, deoren wrote: Postfix + SQLite lookup tables shared with external applications in Write-Ahead Logging (WAL) mode SQLite with WAL mode is a multi-file database, in which some of the files are opened and clos

RE: Comcast 421 throttling multiple recipients

2020-09-24 Thread Scott Techlist
>But then how do we configure Postfix to do this automatically so that >we can gain enough reputation to send more than one recipient at a >time? Because Comcast is not rejecting all mail. Comcast is only >rejecting mail with multiple recipients. Comcast is accepting mail >with single recipients

Re: Comcast 421 throttling multiple recipients

2020-09-24 Thread Viktor Dukhovni
On Thu, Sep 24, 2020 at 02:06:05PM -0600, Bob Proulx wrote: > > > ... http://postmaster.comcast.net/smtp-error-codes.php#RL01 (in reply > > > to MAIL FROM command)) > > > > Look carefully at the log entry. The "421" is send in response to "MAIL > > FROM", not "RCPT TO". So the recipient li

Re: fatal: dict_sqlite_lookup: /etc/postfix/sqlite/local-aliases.cf: SQL prepare failed: disk I/O error?

2020-09-24 Thread Viktor Dukhovni
On Thu, Sep 24, 2020 at 05:34:15PM -0500, deoren wrote: > > No, just WAL mode means that we haven't opened all the files that > > might later be needed. > > If I run all tasks under the postfix user account, how likely am I to > run into issues? Thus far it seems to be working, but I've yet to g

Re: Send only configuration best practices?

2020-09-24 Thread Bastian Blank
On Wed, Sep 16, 2020 at 04:39:12PM -0600, Bob Proulx wrote: > What's the best configuration for a web server that does not receive > mail but needs to send mail? Send only does not exist. Every e-mail can produce bounces, which are sent to the sender of the original e-mail and needs to be handled