[pfx] Re: Handing off via localhost:10025 to spamassassin for scanning failure

Dnia 28.06.2024 o godz. 00:16:31 Curtis J Blank via Postfix-users pisze: > When "inet_protocols = all" the connection to filter.mynetwork.local > localhost > port 10025 to hand off the message to spamassassin for scanning fails with > "Relay access denied". What I finally noticed is that the

[pfx] Re: No email forwarding?

Dnia 23.06.2024 o godz. 12:20:37 Bill Cole via Postfix-users pisze: > Transparent forwarding is infeasible of the modern net. Forwarding > using SRS or encapsulation is still usable if you are willing to > accept that those methods are imperfect and add complexity to a mail > system. > >

[pfx] Re: question for a directive in master.cf

Dnia 21.06.2024 o godz. 19:06:38 Jeff Peng via Postfix-users pisze: > > >If you want to enable them, you have to uncomment ALL lines for > >submission > >service to work correctly. > > just further, for smtps service, can i just comment out all of > options to enable it? Yes, you should. --

[pfx] Re: question for a directive in master.cf

Dnia 21.06.2024 o godz. 07:54:40 Jeff Peng via Postfix-users pisze: > for these options for submission in master.cf: > > submission inet n - y - - smtpd > # -o syslog_name=postfix/submission > # -o smtpd_tls_security_level=encrypt > -o smtpd_sasl_auth_enable=yes

[pfx] Re: SPF hostname and domainname

Dnia 21.06.2024 o godz. 18:45:15 Peter via Postfix-users pisze: > SPF/DKIM/DMARC Checklist for (IMO) the best chance of getting your > mail to be accepted: > > 1. HELO banner should pass SPF. > > 2. Envelope Sender should pass SPF. > > 3. Envelope Sender domain should align with the From:

[pfx] Re: REJECT sending mails to no-reply accounts

Dnia 20.06.2024 o godz. 09:08:39 Bastian Blank via Postfix-users pisze: > Then you can not use this e-mail address as envelope sender. People > will do sender callout and then reject all e-mail with this as sender. Sender callout is discouraged now, because it is considered aggressive behavior

[pfx] Re: REJECT sending mails to no-reply accounts

Dnia 20.06.2024 o godz. 08:51:33 Alexander Leidinger via Postfix-users pisze: > > This implies that the organization / company is willing to spend > money on having someone available to actually respond / provide > support. For a lot of the use cases I would say even a mail to > ticket system

[pfx] Re: Troubleshooting roundcube connections to postfix

Dnia 16.06.2024 o godz. 20:54:34 Paul Schmehl via Postfix-users pisze: > > The odd thing is, I don’t see any connection attempts at all in the mail > logs. May seem a strange question, but it's always first thing I check in case I don't see any connection attempt in logs: Is your Roundcube

[pfx] Re: dmarc domain question

Dnia 3.06.2024 o godz. 06:26:53 Jeff P via Postfix-users pisze: > > I would like to set a seperated DMARC for xxx.eu.org. > But I have no control over the sender smtp server, so dkim is not > possible to be added. > do you think if it's still right to add a dmarc? If DKIM is absent, DMARC will

[pfx] Re: dmarc domain question

Dnia 2.06.2024 o godz. 07:19:38 Jeff P via Postfix-users pisze: > > I am using a subdomain xxx.eu.org for sending email. > Though I have not set a dmarc for xxx.eu.org, but gmail says DMARC pass. > So i checked that eu.org does have a DMARC record: > > _dmarc.eu.org.7200IN

[pfx] Re: how does smtpd know the connection is a submission request, or a MX request?

Dnia 24.05.2024 o godz. 20:41:57 Northwind via Postfix-users pisze: > my guess, submission clients were using ehlo, and a mx client uses > helo command. so postfix differ them based on this command? They connect to different Postfix services. Submission clients connect to port 587 or 465 (or any

[pfx] Re: Strengthen email system security

Dnia 23.05.2024 o godz. 15:18:36 Northwind via Postfix-users pisze: > how to implement that a policy server? thanks. My script is very simple, I just took a sample policy server script in Perl included with Postfix distribution and added code to ask Dovecot about currently active IMAP sessions.

[pfx] Re: Strengthen email system security

Dnia 23.05.2024 o godz. 11:03:48 Peter via Postfix-users pisze: > > You can implement a policy daemon (such as postfwd) which can add > limits to help in case a password does get found. This can shut > down a user account before it gets used to send too much SPAM. > > If you know that all of

[pfx] Re: TLS for SMTP Outbound -- Only One tlsproxy

Dnia 21.05.2024 o godz. 16:38:21 Wietse Venema via Postfix-users pisze: > > delays=0.01/2639/25/0.41 > > delays=0.01/2639/25/0.58 > > delays=0.01/2641/25/0.58 > > delays=0.01/2644/25/0.69 > > delays=0.01/2643/25/0.58 > > delays=0.01/2640/25/0.57 [...] > c=25s. It takes a whopping 25

[pfx] Re: Selection of a custom smtp-transport based on recipient addresse's MX with check_recipient_mx_access doesn't work

Dnia 21.05.2024 o godz. 22:27:04 Henri Schomäcker via Postfix-users pisze: > > So what we need to do is to limit the sending rate to all MX servers > under protection.outlook.com. Postfix does not support this, Wietse probably could explain why. You can select a transport by destination domain,

[pfx] Re: Mails ending up in spam when sending to gmail address

Dnia 16.05.2024 o godz. 12:05:52 Peter via Postfix-users pisze: > >On my side the email is accepted from here, and relayed, Rspamd > >does sign it, and Postfix's last message in the log is a message > >sent delivered, and removed from my queue. I check my test Gmail > >account, and the message is

[pfx] Re: reliable RBL

Dnia 10.04.2024 o godz. 10:22:52 Bill Cole via Postfix-users pisze: > > I have been using spamhaus, spamcop, sorbs as the RBL providers for > > antispam. > > But some of the customers speak to me about the FP issues caused by RBL. > > Do you think the three RBL above are reliable in a practical

[pfx] Re: Aliases with "@" in it

Dnia 9.04.2024 o godz. 11:11:31 Paul van der Vlis via Postfix-users pisze: > When I want to make an alias, I try this in /etc/aliases: > "al...@domain.nl": j...@domain.nl > But when I sent mail, I get a bounce with "user unknown". > > When I do this in /etc/aliases: > alias: j...@domain.nl >

[pfx] Re: Setting up another "smarthost" with Postfix

Dnia 28.03.2024 o godz. 06:39:47 Samuel Goodies via Postfix-users pisze: > So far I've chosen Internet Site as my Debian configuration when the package > installed. > I added my main domain name, though this postfix box will pass mail for > several other domains as well. > I edited

[pfx] Re: Setting up another "smarthost" with Postfix

Dnia 27.03.2024 o godz. 13:02:18 Wietse Venema via Postfix-users pisze: > > 1. From what I've read there's not a 'smarthost' option in the > > setup config. Would I just choose 'Internet Site'? Or does it > > matter at all if I'm just going to monkey with the conf anyway? > >

[pfx] Re: strict access restrictions and bounces

Dnia 27.03.2024 o godz. 11:57:22 Daniel Marquez-Klaka via Postfix-users pisze: > True as well that mailman can restrict senders to list members only > but I have a couple of open lists that should be addressable by all > participating domains/company’s, no one else. If you have a list of domains

[pfx] Re: strict access restrictions and bounces

Dnia 25.03.2024 o godz. 16:11:47 Daniel Marquez-Klaka via Postfix-users pisze: > 2 postfix mail server, one, mail-server1, is connected to the > internet, the second, > calling it list-server1, which serves a few mailing lists, is only > reachable thru > mail-server1. > > On mail-server1 a

[pfx] Re: smtpd filter orig_client

Dnia 19.03.2024 o godz. 11:35:16 Reg Inaldo via Postfix-users pisze: > In the transaction (eg):  mta-k postfix/smtpd[23771]: 97F808837: > client=localhost[127.0.0.1], orig_client=localhost[127.0.0.1] > > I want to reject anything on the "orig_client" basis where: >

[pfx] Re: collect emails in maildir folder without delivering them to user

Dnia 19.03.2024 o godz. 07:10:53 Fourhundred Thecat via Postfix-users pisze: > > On the server, I have one unix user, and multiple aliases defined in > /etc/aliases, so that I can use different email addresses for different > purposes. > > All these aliases are delivered to the users home /

[pfx] Re: Change unknown_address_reject_code on a smarthost to a 5xx reply?

Dnia 15.02.2024 o godz. 15:27:48 Simon Hoffmann via Postfix-users pisze: > > - it took 4h for the sender to get a notification that the domain was not > found > - after they "corrected" it by sending a second email with the correct > address, they > still got mail delivery delayed

[pfx] Re: ARC or DKIM or SRS?

Dnia 11.02.2024 o godz. 17:47:05 Alex via Postfix-users pisze: > My concern would be with multiple MX records for the same domain - is it > possible it would come back to try again with another MX and be delayed yet > again? MX are the addresses that *receive* mail for a given domain, not the

[pfx] Re: Is there a way to reject an internal domain on our border MXes

Dnia 4.02.2024 o godz. 11:00:39 Viktor Dukhovni via Postfix-users pisze: > > Well, I'm an old school type... :) I prefer to ssh to the server and launch > > mutt or something similar to access my mail :) > > That's fine, I also use mutt (in fact when replying to this message), > but for me mutt

[pfx] Re: Is there a way to reject an internal domain on our border MXes

Dnia 3.02.2024 o godz. 12:59:27 Viktor Dukhovni via Postfix-users pisze: > > These days, users are far better off with delivery to an IMAP store that > is not tied directly to any login account they may or may not have. > Perhaps they authenticate to Dovecot via PAM, but the mail store should >

[pfx] Re: Is there a way to reject an internal domain on our border MXes

Dnia 3.02.2024 o godz. 10:33:58 Viktor Dukhovni via Postfix-users pisze: > The "local" transport is a legacy Sendmail-compatibilty interface, > and should generally be avoided. Why avoided? If you have local Unix users on your server, and you want those users to receive mail, this is the most

[pfx] Re: Feature Request: Adjustable Header Log Size Limit in INFO/WARN/REJECT Header_Check

Dnia 24.01.2024 o godz. 23:21:10 Gerald Galster via Postfix-users pisze: > > As the amount of email increases it can be difficult to distinguish mails > to or from a correspondent. In this case it would help a lot to display > the subject as well but that's not part of envelope data. Therefore

[pfx] Re: Feature Request: Adjustable Header Log Size Limit in INFO/WARN/REJECT Header_Check

Dnia 24.01.2024 o godz. 08:20:33 Matthias Schneider via Postfix-users pisze: > > Upon reviewing the code, it appears there are only one limit on > vstring_sprintf, three limits on msg_info in the code, whereas the rest of > the %.200s limits are present on msg_warn lines. My request stems from >

[pfx] Re: Preparation of switch from OpenSMTPd to Postfix -> syntax/behaviuor of virtual_alias_maps

Dnia 21.01.2024 o godz. 23:35:39 Simon Hoffmann via Postfix-users pisze: > I have also read http://www.postfix.org/VIRTUAL_README.html and this > states that with virtual alias mode i can have the same local part in an > email address and deliver them to different unix users, but i can still > use

[pfx] Re: improper command pipelining

Dnia 15.01.2024 o godz. 09:34:06 Admin Beckspaced via Postfix-users pisze: > do i need to be worried? As your logs clearly show it's Shodan, then either ignore it or simply block it right away. -- Regards, Jaroslaw Rafa r...@rafa.eu.org -- "In a million years, when kids go to school,

[pfx] Re: 25 years today

Dnia 14.12.2023 o godz. 08:20:26 Wietse Venema via Postfix-users pisze: > As a few on this list may recall, it is 25 years ago today that the > "IBM secure mailer" had its public beta release. This was accompanied > by a nice article in the New York Times business section. [...] > That was a long

[pfx] Re: printer ip SMTP AUTH / mynetworks question

Dnia 13.12.2023 o godz. 09:15:52 Bill Cole via Postfix-users pisze: > > No AUTH offered. Which is fine, because one should not offer AUTH > over an unencrypted session. However, your printer saw that and > instead of using STARTTLS, it hung up. That's bad. It should have > used STARTTLS to get a

[pfx] Re: Milter own Postfix-prepended Received

Dnia 10.12.2023 o godz. 22:16:27 Carlos Velasco via Postfix-users pisze: > > >That is because every Milter in the real world gets the client info > >from the smfi_connect() callback function and from Milter macros, > >instead of parsing Received: headers. > That statement is absolutely false. >

[pfx] Re: postsrsd

Dnia 6.12.2023 o godz. 01:00:21 Doug Hardie via Postfix-users pisze: > The config files (conf and conf.sample) all had dates > of 14 Nov so I suspect they were replaced. I don't know what the original > files contained anymore. Does the upgrade save the previous config files anywhere as

[pfx] Re: How to restrict relay domains for sendmail command ?

Dnia 5.12.2023 o godz. 20:14:45 Cowbay via Postfix-users pisze: > > I want this mail server to relay mails for specific domains only and > all the mails are relayed to another mail server ($relayhost > configured in main.cf). > > I found that there is no $sendmail_relay_restrictions

[pfx] Re: localhost rejected ?

Dnia 4.12.2023 o godz. 14:44:44 lejeczek via Postfix-users pisze: > > I can send email to root@localhost and I thought it was all good but > today a tool/client wanted to send an email to that address and it > got: > ... > connect from localhost[127.0.0.1] > NOQUEUE: reject: RCPT from

[pfx] Re: IPv6 and Cloud server CPU

Dnia 23.11.2023 o godz. 11:16:42 DL Neil via Postfix-users pisze: > Q1: > can an email server be run off IPv6 (exclusively) these days, or are > IPv4 + v6 alternatives necessary? Not possible to use IPv6 only server for any purpose. There are still a LOT of sites that run IPv4 only, and end users

[pfx] Re: www.postfix.org outage

Dnia 22.11.2023 o godz. 04:46:36 Ralph Seichter via Postfix-users pisze: > The Postfix website is available again. The company hosting the server > hardware informed me that there are "some issues with the PXE feature > with this server model", whatever that means exactly, which their staff > was

[pfx] Re: Mail not for my domain

Dnia 20.11.2023 o godz. 22:00:01 Joseph Castry via Postfix-users pisze: > For exemple, I receive mails from oysu...@jipstalles.de > to jcrh...@izac.fr > on my mailbox cont...@jcingenierie.fr > > How can I

[pfx] Re: Recommendation for dkim signing

Dnia 15.11.2023 o godz. 20:02:44 Steffen Nurpmeso via Postfix-users pisze: > Funnily i just now got while sending a mail to not more than about > i think two dozen gmail accounts: > > Nov 15 18:31:54 postfix/smtp[30872]: 32CC41605F: host > gmail-smtp-in.l.google.com[66.102.1.27] said:

[pfx] Re: Why does Postfix evaluate relay restrictions despite an early permit in recipient restriction?

Dnia 11.11.2023 o godz. 17:58:04 Matthias Nagel via Postfix-users pisze: > > Thanks for clarification. What happens if Postfix find a PERMIT in an > earlier restriction list (which shortcuts that list), but then finds a > DENY in a later restriction list? What takes precedence? The earlier >

[pfx] Re: Recommendation for dkim signing

Dnia 5.11.2023 o godz. 13:53:46 Noel Butler via Postfix-users pisze: > If correctly forwarded it does not break SPF, since correctly > forwarding rewrites the sender, I was an early adopter of SPF and > always used hard-fail, no lists have rejected my posts from SPF > (trust me, if they did, I

[pfx] Re: Connect Postfix to Dovecot SASL with TLS?

Dnia 3.11.2023 o godz. 08:00:43 Wietse Venema via Postfix-users pisze: > Nick Lockheart via Postfix-users: > > What are the Postfix settings for TLS between Postfix and Dovecot SASL? > > This is not documented, therefore not implemented. What is your > threat model: am attacker has privileged

[pfx] Re: Recommendation for dkim signing

Dnia 2.11.2023 o godz. 09:42:01 Matus UHLAR - fantomas via Postfix-users pisze: > (once more: DKIM applies on header From:, SPF on envelope from:). And DMARC requires that both be identical (actually, from the same domain - user part may be different), which makes things even harder. --

[pfx] Re: read postscreen database?

Dnia 31.10.2023 o godz. 14:10:40 Wietse Venema via Postfix-users pisze: > > Or copy the file with a dumb program, and use postmnap to dump that > copy. Caution: the file contains holes and may grow when copied, > as holes are filled in with nulls. When GNU cp is used with --sparse=auto

[pfx] Re: logging username in a failed smtp attemps

Dnia 24.10.2023 o godz. 11:32:58 Eric Doutreleau via Postfix-users pisze: > Oct  5 11:07:52 hermes postfix/smtpd[277411]: warning: > unknown[122.179.129.110]: SASL LOGIN authentication failed: > authentication failure > > There s no username logged. > > Is there a way to log this username?

[pfx] Re: Allowing receiving mail but I prevent sasl authentication

Dnia 19.10.2023 o godz. 17:21:41 Ivan Ionut via Postfix-users pisze: > > Hi, is there a way to block an ip(or ip cidr) to do sasl > authentication but allowing to receive mail from it. > > I'm asking because some times I may completely block the god guys > from my firewall. There is no need for

[pfx] Re: SMTP Require TLS Option?

Dnia 19.10.2023 o godz. 09:56:49 Joachim Lindenberg via Postfix-users pisze: > > I disagree. Of course your points are valid, to some extent: > - without additional authenticated encryption like SMTP-DANE, your > end-to-end encrypted messages are only protected w.r.t. confidentiality > (except

[pfx] Re: SMTP Require TLS Option?

Dnia 18.10.2023 o godz. 19:31:52 Joachim Lindenberg via Postfix-users pisze: > Thunderbird "advertises" end-to-end-encryption only and confuses users > that actually use/benefit from SMTP-DANE where it tells "unencrypted". IMHO correctly. Email that isn't end-to-end encrypted *is* actually

[pfx] Re: Domain-Specific inbound relay host rules

Dnia 15.10.2023 o godz. 08:52:18 B Williams via Postfix-users pisze: > There is a spam network that has figured out that they can bypass my spam > filtering service by ignoring the MX record and just sending mail directly > to the mail server. Pretty sneaky. [...] > Open to any and all ideas! The

[pfx] Re: *.mail.protection.outlook.com reporting "452 4.5.3 Too many recipients (AS780090)" for many domains

Dnia 11.10.2023 o godz. 15:11:27 Josef Vybíhal via Postfix-users pisze: > Hi, no clue about MS service, but it does not seem postfix related. > You might want to direct this to the mailop list - > https://list.mailop.org/listinfo/mailop It can be possibly related to some failure at Microsoft,

[pfx] Re: Content_filter selection based on sender domain

Dnia 10.10.2023 o godz. 18:56:23 Pedro David Marco via Postfix-users pisze: > Hi all, > does anyone know how to use different content_filter based on sender domain? Anything that's used as a content filter knows the sender domain, so I would write a wrapper script that calls the proper filter

[pfx] Re: Problem setting up postfix on arch linux to forward mail to my gmail account

Dnia 9.10.2023 o godz. 00:51:13 Polarian via Postfix-users pisze: > here is a little unknown, one second it seems like you are trying to > send emails under your domain name, and the next second it simply seems > you want to be able to use a gmail address within a piece of software. For me, it

[pfx] Re: Problem setting up postfix on arch linux to forward mail to my gmail account

Dnia 8.10.2023 o godz. 09:18:07 mwoodpatrick--- via Postfix-users pisze: > I want to be able to have mail sent by applications running on my server be > able to send mail from that server to my email account. If all you need is just to be able to send mail from applications to a particular email

[pfx] Re: UGFzc3dvcmQ6

Dnia 13.09.2023 o godz. 12:54:39 DL Neil via Postfix-users pisze: > unknown[146.247.146.134]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 > 14-0-135-011.static.pccw-hkt.com[14.0.135.11]: SASL LOGIN > authentication failed: UGFzc3dvcmQ6 > ... > > What is the setting to get rid of these dozens

[pfx] Re: Postfix mails accepted for delivery, but never received

Dnia 10.09.2023 o godz. 10:20:19 Bill Sommerfeld via Postfix-users pisze: > There's another possible workaround, if the ISP won't budge (or even > if it does and you still find yourself blocked based on your > providers IP reputation): some service providers may let you > purchase outbound mail

[pfx] Re: Relay access denied (Dovecot)

Dnia 4.09.2023 o godz. 15:38:38 lejeczek via Postfix-users pisze: > > I did have '#virtual_mailbox_domains' - being amateur in my mind it > did not make sense, since I wanted Postfix to relay on Dovecot, to > have it & removed those. [...] > If I add more, like 'virtual_mailbox_maps', etc. then

[pfx] Re: Relay access denied (Dovecot)

Dnia 4.09.2023 o godz. 14:53:42 lejeczek via Postfix-users pisze: > Postfix logs when mail is sent to it: > ... > connect from smtpo71.interia.pl[217.74.67.71] > Anonymous TLS connection established from > smtpo71.interia.pl[217.74.67.71]: TLSv1.2 with cipher > ECDHE-ECDSA-AES256-GCM-SHA384

[pfx] Re: PDS_OTHER_BAD_TLD

Dnia 4.09.2023 o godz. 01:09:42 roughnecks via Postfix-users pisze: > Il 03/09/2023 22:59, Viktor Dukhovni via Postfix-users ha scritto: > >Unlikely "for that reason", because I doubt that Gmail is using > >SpamAssassin, and certainly not an outdated version. > > How do you read this then? > >

[pfx] Re: how to rewrite domain on the fly before relaying

Dnia 31.08.2023 o godz. 02:57:57 Viktor Dukhovni via Postfix-users pisze: > > In my case, I have a catch-all virtual domain that is configured in > > virtual_alias_maps as follows: > > > > example.org anything > > @example.org username > > As already explained, catch-alls are a bad idea,

[pfx] Re: how to rewrite domain on the fly before relaying

Dnia 30.08.2023 o godz. 22:30:02 Danil Smirnov via Postfix-users pisze: > > I tried this first - I've added "@domain2.tld @domain1.tld" to my > virtual_alias_maps > source file but I got this error: > > Aug 30 19:20:39 some postfix/smtpd[141]: NOQUEUE: reject: RCPT from > mailhost[mailhost IP]:

[pfx] Re: Spam mails seen in logfiles question

Dnia 23.08.2023 o godz. 03:22:21 IUL Support via Postfix-users pisze: > The email will be from > some_spammy_text-myuser=mydomain@notmydomain.com and addressed to > myu...@mydomain.com. > > The LHS always seems to have the same basic format ie. the underscores and > the equal sign so it

[pfx] Re: Rate limiting gmail

Dnia 22.08.2023 o godz. 18:27:40 Wietse Venema via Postfix-users pisze: > > Unfortunatey, the Postfix schedulerisn't smart enough to figure out > that a domain is hosted at google. Even if the doain is not google, > it may be hosted there and add to your rate limit. I'm not claiming > that gmail

[pfx] Re: How can I set up a very simple postfix server

Dnia 23.08.2023 o godz. 09:43:08 Henrik Y via Postfix-users pisze: > Maybe another option is mutt command? > > echo "Body Of the Email" | mutt -a "File_Attachment.csv" -s "Daily > Report for $(date)" -c u...@addr.com -y Mutt calls /usr/sbin/sendmail anyway to send mail, so that doesn't seem to

[pfx] Re: Rate limiting gmail

Dnia 22.08.2023 o godz. 15:41:43 Alex via Postfix-users pisze: > This mail server unfortunately has quite a few users who use ~/.forward to > forward mail through to their personal gmail account from their corporate > account. > > Aug 22 15:33:08 cipher postfix-gmail/smtp[2551987]: 5EF9820E0E1E8:

[pfx] Re: How can I set up a very simple postfix server

Dnia 21.08.2023 o godz. 22:42:22 Bruce Dubbs via Postfix-users pisze: > I have built postfix-3.8.1 from source and want to use it only on > the local system. That is, I really only want it to receive messages > from applications like sudo, cron, or some simple scripts using > mailx and post it to

[pfx] Re: new waves of connect/disconnect from *.outlook.com; any add'l pfx configs useful for further remediation?

Dnia 15.08.2023 o godz. 16:14:58 pgnd via Postfix-users pisze: > they come in frequent waves of ~5-10 from countless different outlook.com > hosts -- but, so far, these waves (and totals) are ONLY from outlook.com > -- getting by postscreen cache after expire with "PASS NEW". > > i never receive

[pfx] Re: email being flagged a spam for using localhost [127.0.0.1] as first hop

Dnia 9.08.2023 o godz. 09:22:03 Bill Cole via Postfix-users pisze: > A Received header that seems to record a SMTP > session on the loopback by Postfix is not common, Hm... I think it's quite common for webmail applications. They usually connect to IMAP/SMTP server on loopback interface.

[pfx] Re: Accepting mail from old Dell iDRAC

Dnia 2.08.2023 o godz. 23:28:09 Charles Sprickman via Postfix-users pisze: > > The iDRAC is trying to use STARTTLS, so encrypted SMTP transport appears > > to be supported. As noted by others, it may be simplest to not offer > > it STARTTLS (smtpd_discard_ehlo_keyword_address_maps). > > I'll

[pfx] Re: Accepting mail from old Dell iDRAC

Dnia 2.08.2023 o godz. 01:26:43 Charles Sprickman via Postfix-users pisze: > > It's an "iDRAC7", which is just a little management card. I want it to be > able to send some email alerts, but I keep getting warnings about a cipher > mismatch. With some debugging I think there's some hints here,

[pfx] Re: Maildir filename format

Dnia 31.07.2023 o godz. 16:56:04 Eugene R via Postfix-users pisze: > But what is wrong with simply moving the message from one folder to > another in the mail client? Nothing, except the name (and sometimes the modification time) of the original file on the server is changed (at least that's my

[pfx] Re: Maildir filename format

Dnia 31.07.2023 o godz. 15:38:01 Fourhundred Thecat via Postfix-users pisze: > > for me, being able to manipulate individual emails as files is the main > advantage of using Maildir format. It's not meant for day-to-day > operation, but for troubleshooting or backups of individual emails if >

[pfx] Re: Maildir filename format

Dnia 31.07.2023 o godz. 08:43:28 Fourhundred Thecat via Postfix-users pisze: > Hello, > > I am using Maildir format on my server (Postfix + Dovecot). > > The individual filenames have this format: > > 1690633510.M94611123819.mail,S=11706,W=12202:2,S This is how Dovecot names them. Files

[pfx] Re: OT: Does the GPDR require mandatory/verified TLS encryption? (was: SMTP client: How to log reason for untrusted TLS connection to MX?)

Dnia 24.07.2023 o godz. 19:26:37 Paul Menzel via Postfix-users pisze: > > I claim, that using mandatory and verified TLS encryption is state > of the art, and has basically no cost of implementation thanks to > Let’s Encrypt, so is required especially for confidentiality. In my opinion (also not

[pfx] Re: SMTP client: How to log reason for untrusted TLS connection to MX?

Dnia 24.07.2023 o godz. 17:05:40 Paul Menzel via Postfix-users pisze: > (Also from the legal perspective, > without being a lawyer, I’d say, that actually all German (European) > companies are required to only transmit messages over a verified TLS > connection.) Never heard of such a requirement

[pfx] Re: local sending

Dnia 12.07.2023 o godz. 11:41:49 Ken Gillett via Postfix-users pisze: > > Since the error stating it could not resolve 'home' I added an MX record > to the DNS and now the error says the address "loops back to myself". I > forget the exact wording as a power cut means I lost the full exact >

[pfx] Re: local sending

Dnia 11.07.2023 o godz. 09:31:01 Viktor Dukhovni via Postfix-users pisze: > > They're not "idiots". Email addresses do need a domain part to have any > cross-system semantics. On a LAN with dedicated gateway machine for outgoing mail, not necessarily. Within a LAN, host-only addresses should be

[pfx] Re: How to configure minimal POP3/IMAP server with postfix?

Dnia 10.07.2023 o godz. 09:10:32 Chris Green via Postfix-users pisze: > > What's the simplest way to do this? I looked in the "Postfix Howtos > and FAQs" page but there didn't seem to be any 'minimal' sort of > setups there. They also seemed rather old. > > So, can I just install and configure

[pfx] Re: Ongoing authentication issue, SASL support?

Dnia 7.07.2023 o godz. 10:27:38 joe a via Postfix-users pisze: > seems to me that having all possible mail recipients as system users > is not practical on even systems of moderate user count. My previous job was administering servers at an university. Our main Internet server (that was used for

[pfx] Re: Maildir changes in 3.7.4?

Dnia 6.07.2023 o godz. 05:43:22 Dan Mahoney via Postfix-users pisze: > In /etc/aliases: > > noc:"|/usr/local/sbin/rtmailgate ops noc cor", > "/root/ops/Maildir/" > noc-comment:"|/usr/local/sbin/rtmailgate ops noc

[pfx] Re: virtual_mailbox_map not needed anymore?

Dnia 5.07.2023 o godz. 10:38:21 Juerg Reimann via Postfix-users pisze: > > I'm a bit puzzled here. I usually create new users first for Dovecot, then > add to the configuration of Postfix the path to the relative maildir in > virtual_mailbox_maps (the domain and other users for that virtual

[pfx] Re: Anyone using SMTP relay through dnsexit.com?

Dnia 29.06.2023 o godz. 13:46:00 Matus UHLAR - fantomas via Postfix-users pisze: > >That seems to be the only option. > > that is the question - if price for static IP Address is higher or > lower than price for relaying. As I already wrote, with many ISPs static IP with configurable rDNS is not

[pfx] Re: Anyone using SMTP relay through dnsexit.com?

Dnia 28.06.2023 o godz. 08:55:37 Matus UHLAR - fantomas via Postfix-users pisze: > > in my experience, this is a problem when you have > - dynamically added IP address (and thus iss listed in spamhaus PBL, > sorbs dyna and other dnsbls) > - generic rDNS or non-working fcrdns > > the first

[pfx] Re: Postfix: running a script on authentication failure

Dnia 22.06.2023 o godz. 13:58:20 André Rodier via Postfix-users pisze: > > I just set-up a new server, running postfix, with submission(s) activated > on standard ports (587, 465) > > Shortly after it has been setup, I see brute force attacks (not > surprising) from a whole /24 network (more

[pfx] Re: Postfix: running a script on authentication failure

Dnia 22.06.2023 o godz. 15:45:43 Allen Coates via Postfix-users pisze: > > Just thinking at a tangent... > > Is it possible / practical to develop the concept of a "service area" - to > white-list all the net-blocks where all your > genuine callers originate, and prohibit everywhere else? > >

[pfx] Re: Is it possible in postfix spf policy to utilize multiple action=prepend to add multiple headers?

Dnia 19.06.2023 o godz. 16:53:58 Anton Hvornum via Postfix-users pisze: > > Thank you, yes that one slipped by me entirely. > I'll have to re-evaluate how to mark mails as spam with multiple > headers when SPF is not passing then. To add multiple headers, it is best to use milter, not a policy

[pfx] Re: How to stop delivery looping

Dnia 14.06.2023 o godz. 18:49:00 Bob Proulx via Postfix-users pisze: > I will help with that by mentioning that there are other tools as well > which can be used to synchronize mailboxes between two sites that does > not use mail forwarding. Such as offlineimap3, isync, maildirsync, > and other

[pfx] Re: SPF questions

Dnia 10.06.2023 o godz. 17:33:06 Gerd Hoerst via Postfix-users pisze: > my entry e.g. > >    600 IN TXT    "v=spf1 a mx -all" > > that mean all servers listet in MX enrties of my domain are allowed > to send emails from my domain > > So if you receive an email from my domain which are

[pfx] Re: DKIM and DMARC

Dnia 16.05.2023 o godz. 20:16:21 Tom Reed via Postfix-users pisze: > > Should we reject failed message on DKIM validation stage, or DMARC > validation stage, or both? There is no rule ststing what you "should" do in these cases. It depends on what you *want* to do, that is - what exact result

[pfx] Re: mua config; with user; not with user@domain

Dnia 14.05.2023 o godz. 21:47:33 Patrice Go via Postfix-users pisze: > the problem would be from the authentication dovecot's configuration ? > i did think that it was only postfix which could do that with the mysql > link ! Postfix does not authenticate users by itself. It just passes on the

[pfx] Re: mua config; with user; not with user@domain

Dnia 14.05.2023 o godz. 13:15:54 Patrice Go via Postfix-users pisze: > If someone own a solution/way for that i be able to configure my MUA with > identification with "user@domain" and not with "user", i would appreciate. Postfix just passes your MUA authentication credentials to Dovecot, which

[pfx] Re: Postfix is not using a specified interface

Dnia 2.05.2023 o godz. 11:18:26 Kolusion K via Postfix-users pisze: > > I have specified Postfix to use a certain interface in 'main.cf': > > inet_interfaces = 192.168.2.2 > > > http://www.postfix.org/postconf.5.html#inet_interfaces > > The problem is, Postfix is not using this interface and

[pfx] Re: Deny any sender address with subdomain

Dnia 28.04.2023 o godz. 15:59:53 Gerd Hoerst via Postfix-users pisze: > > question 1st : is it a good idea to reject any email which is not > sent from a domain  (means sen...@domain.tld) any other like > sen...@sub.domain.tld or sub.sub.domain.tld is rejected ? As others have said, it's a total

[pfx] Re: Open relay clarification

Dnia 18.04.2023 o godz. 12:11:06 Tyler Montney via Postfix-users pisze: > > - mail for all local domains coming in on port 25 should be accepted (of > > course considering all usual restrictions - the recipient exists, the > > sending IP is not on a blacklist etc.) > > > > - mail for all non-local

[pfx] Re: Open relay clarification

Dnia 17.04.2023 o godz. 19:59:48 Tyler Montney via Postfix-users pisze: > And that's a definition I've been struggling with: What is *local* in > relation to SMTP? By "local", I mean here the domains for which that particular server is the final destination, ie. the mail delivered locally and the

[pfx] Re: Open relay clarification

Dnia 17.04.2023 o godz. 14:49:11 Noel Jones via Postfix-users pisze: > Please keep replies on list. > > On 4/17/2023 2:16 PM, Tyler Montney wrote: > >I'll put it this way, since I'm struggling to word this: > > > >Provider A contains the following customers: > >Acme Corporation (acme.com

[pfx] Re: any web.de staff here?

Dnia 17.04.2023 o godz. 01:44:34 Gerald Galster via Postfix-users pisze: > > Common practice in Germany is: once your server accepts an email it is > responsible for delivery. You cannot silently discard it. But you can still reject a submission and not accept it in the first place. Why aren't

  1   2   >