Hi !
My Mail server is setup with DKIM/DMARC/SPF and it working. My network
is connected to this server with a vpn.
Now some devices within network want to send messages to users inside
and outside the domain.
i have a local postfix installation on an internal device which i use as
"gatewa
Hi !
Sure... i distribute 3 1 1 and 2 1 1 are onl for backup...
I had the setup with R3 running for years w/o problems but now i have
also R11/12/13/14 as backup entries
Ciao gerd
Am 27.06.2024 um 15:34 schrieb Michael Grimm via Postfix-users:
Gerd Hoerst via Postfix-users wrote:
I
Hi !
I checked my cert and it related to R10 , but i will also publish the
rest regarding you advice
Ciao Gerd
Am 27.06.24 um 14:24 schrieb Viktor Dukhovni via Postfix-users:
On Thu, Jun 27, 2024 at 02:13:25PM +0200, Gerd Hoerst via Postfix-users wrote:
Thanx ! Works
Nope, sorry
Hi !
Thanx ! Works
Ciao Gerd
Am 27.06.24 um 13:29 schrieb Viktor Dukhovni via Postfix-users:
BTW: where to get the cert from to generate the 2 1 1 enty for DNS ?
-https://list.sys4.de/hyperkitty/list/dane-us...@list.sys4.de/message/ZTM3XQMI3XP7PWMWJTXBYDPVU4UENE24/
-https://dnssec-stat
Hi !
OK this is in Work now :-)
BTW: where to get the cert from to generate the 2 1 1 enty for DNS ?
Ciao Gerd
Am 26.06.24 um 12:56 schrieb Viktor Dukhovni via Postfix-users:
On Wed, Jun 26, 2024 at 11:26:59AM +0200, Gerd Hoerst via Postfix-users wrote:
I checked my domain with posttls
Hi !
Regarding this topic here i checked my domain with posttls-finger it
brings some errors (i can only do it on the machine itself)
posttls-finger: warning: DNSSEC validation may be unavailable
posttls-finger: warning: reason: dnssec_probe 'ns:.' received a response
that is not DNSSEC valid
Mon, Jan 15, 2024 at 08:14:13AM +0100, Gerd Hoerst via Postfix-users wrote:
I added
masquerade_domains<http://www.postfix.org/postconf.5.html#masquerade_domains>
= hoerst.net
to main.cf and mail sent via mailx is sentasu...@domain.tld and it has also
both DKIM Signatures inside
(e
Hi !
Ok i will try tomorrow
Ciao Gerd
___
Postfix-users mailing list -- postfix-users@postfix.org
To unsubscribe send an email to postfix-users-le...@postfix.org
works...
Ciao Gerd
Am 14.01.24 um 21:15 schrieb Viktor Dukhovni via Postfix-users:
On Sun, Jan 14, 2024 at 06:05:20PM +0100, Gerd Hoerst via Postfix-users wrote:
Still no success..
non_smtpd_milters is set and mail send via mailx or sendmail is still not
signed..
btw: with mailx or sendmail
Hoerst via Postfix-users skrev den 2024-01-14 16:20:
Hi !
OK is set now
RejectFailures false
in /etc/opendmarc.conf
and
127.0.0.1
localhost
hoerst.net
.hoerst.net
in /etc/opendkim/trusted.hosts
How can i check if its now correct with my setup, that mail which is
not coming from smpt or esmtp
email via port 25 (its my
smarthost all my clients supply their mail to it)
Ciao Gerd
Am 13.01.2024 um 02:07 schrieb Wietse Venema via Postfix-users:
Viktor Dukhovni via Postfix-users:
On Fri, Jan 12, 2024 at 11:10:52PM +0100, Gerd Hoerst via Postfix-users wrote:
Hi !
In my main.cf
Hi !
in my main.cf
non_smtpd_milters = $smtpd_milters
is already configured...
Whereelse can i check ?
Ciao Gerd
Am 12.01.2024 um 22:50 schrieb Viktor Dukhovni via Postfix-users:
On Fri, Jan 12, 2024 at 07:43:51PM +0100, Gerd Hoerst via Postfix-users wrote:
im using ubuntu 22.04 and i
Hi !
The dns entry provides info from which mailservers the receiptient
should only accpet email from entire domain... whta the receiptiten is
doing with that information is up to your settings in postfix
my entry e.g.
600 IN TXT "v=spf1 a mx -all"
that mean all servers listet in
Hi !
question 1st : is it a good idea to reject any email which is not sent
from a domain (means sen...@domain.tld) any other like
sen...@sub.domain.tld or sub.sub.domain.tld is rejected ?
at least i tried with header checks in pcre
/^From:\.*@.*\.*\.*/ DISCARD NO SUBDOMAINS
but this se
Hi !
I read a tutorial to harden postfix and there they trew out TLSv1
Ciao Gerd
Am 18.03.2023 um 16:07 schrieb Bill Cole via Postfix-users:
On 2023-03-18 at 09:54:15 UTC-0400 (Sat, 18 Mar 2023 14:54:15 +0100)
Gerd Hoerst via Postfix-users
is rumored to have said:
Hi !
I setup my postfix
Hi !
I setup my postfix for the clients to use only protocols > TLSv1 with
smtpd_tls_mandatory_protocols = !SSLv2, !SSLv3, !TLSv1
smtpd_tls_protocols = !SSLv2,!SSLv3,!TLSv1
in main.cf
but unfortunately i have a sender (its a printer) which is not capable
for TLSv1.1 and up..
How
Hi !
Oh i see...
but i also tried with header_checks
/^From:\.*@.*\.com\.com/ DISCARD NO SUBDOMAINS
also no success
Ciao Gerd
Am 15.03.23 um 13:44 schrieb Wietse Venema via Postfix-users:
Gerd Hoerst via Postfix-users:
Hi !
in email source text is
From: Der heutige Gewinner!
That
header_checks but also w/o success
Ciao Gerd
Am 15.03.23 um 12:41 schrieb Wietse Venema via Postfix-users:
Gerd Hoerst via Postfix-users:
domain.com DISCARD Spam rule domain block
.domain.com DISCARD Spam rule domain block
as is wrote? i tried with both versions , depending on my setting in
Hi !
Am 15.03.23 um 11:25 schrieb Patrick Ben Koetter via Postfix-users:
* Gerd Hoerst via Postfix-users :
parent_domain_matches_subdomains = . . smtpd_access_maps
Quoting from ACCESS(5):
...
domain.tld
Matches domain.tld as the domain part of an email address
Hi !
in my /etc/postfix/main.cf
parent_domain_matches_subdomains = . . smtpd_access_maps
..
smtpd_sender_restrictions = .. check_sender_access
hash:/etc/postfix/access
in my main.cfs
domain.com DISCARD Spam rule domain block
but emails from ..domain.com or .doma
20 matches
Mail list logo
