Re: outlook blocks email from private mailserver

Hello. If the IP is one that you manage, you can submit a de-listing request with Microsoft. However, this process might take 3-5 business days to complete. See: https://sender.office.com/ They usually ask for the a copy of the bounced reply. Otherwise, you might need to use a commercial s

Re: run script on new connection?

Hello. I remember when we used to complain about people having HTML e-mail signatures and email was done using UUCP.  You can use ip route as fast effective way of permitting access. IE: ip route add blackhole 1.2.3.0/24 This would block all accesses to the local server. Otherwise, you migh

Re: nmap says there's vulnerability with Diffie-Hellman settings

The majority of the CBC_SHA ciphers are considered weak and should be replaced with stronger ciphers. See also: https://www.tenable.com/plugins/nessus/159543 Recommended ciphers would be: TLSv1.3: - 0x13,0x01 TLS_AES_128_GCM_SHA256 - 0x13,0x02 TLS_AES_256_GCM_SHA384 - 0x13,0x03 TLS_CHACHA20_P

Re: filtering domains and e-mails - how ?

Hello. See: http://www.postfix.org/transport.5.html Per the table search order, user accounts need to be listed first, before the domain IE: us...@domain.com relay:[smtp1.server.com] domain.com relay:[smtp.server.com] See: Postfix users Zalezny Niezalezny wrote: Hi All, by defa

OT: mirror update contact e-mail

Hello. I run a mirror for Postfix and I need to update the URL. I have e-mailed Wietse several times in the past few years, and every time the e-mail is being ignored. What is the proper subject to use to contact Wietse to update my mirror details? Thanks

Re: Spamrl.com RBL problem

Hello. I would check your local system to see if you have any rogue perl processes running. These are generally the cause of being blacklisted for a dictionary attack, which implies that a script is running on your local server. Generally, you can spot them by the amount of CPU time, and the

Re: Spamrl.com RBL problem

Hello. Your assuming that port 25 needs to be open on the local side to send mail. this is not the case. There are two possibilities here. 1. A dirty IP was assigned to your server, and that the previous owner had a spam issue. 2. It's a php exploit, that spawns a perl script to send outbou

Re: postfix not delivering mail to user

Hello. What are you using for local delivery in main.cf? virtual or procmail? Usually, I add a domain to relay_domains and virtual relay_domains = /etc/postfix/relay_domains virtual_maps = hash:/etc/postfix/virtual alias_database = hash:/etc/aliases And then have an associated entry in /etc/pos

Re: Getting bounces from only one server

Hello, On Server2, configure bounce_notice_recipient to a e-mail address that is located on server1. By default it's using Postmaster. Otherwise, on Server2, forward mail from the Postmaster account to server2. Marco Pizzoli wrote: Dear all, I need to find a workaround an issue I am facing

Wietse: Old Mirrors on postfix.org/download.html

Wietse, There are several old mirrors with bad links that don't work on the postfix download page and needs to be updated. 404 Not Found http://mirrors-usa.go-parts.com/postfix/source/index.html USA, MI, Lansing 404 Not Found http://mirrors.xserver

Re: Domain Relay Question

Joey, You could probably use fallback_relay. *fallback_relay (default: empty)* Optional list of relay hosts for SMTP destinations that can't be found or that are unreachable. With Postfix 2.3 this parameter is renamed to smtp_fallback_relay

Re: Proper Forwarding Procedure?

Gmail will also display that error message when you attempt to forward them spam as well. It will eventually let the messages pass after a short delay. You can increase your: smtp_mx_session_limit. The default is 2, by increasing it to 5 it will try more gmail SMTP servers. smtp_mx_session_li

Re: Change gateway on bounce

Peter, As of Postfix 2.3 you can use smtp_fallback_relay. http://www.postfix.org/postconf.5.html#smtp_fallback_relay Optional list of relay hosts for SMTP destinations that can't be found or that are unreachable. With Postfix 2.2 and earlier this parameter is called fallback_relay. -- Matthe

Re: Prevent local delivery for unix accounts

Just have your /etc/aliases default to /dev/null for system accounts. MAILER-DAEMON: /dev/null postmaster: /dev/null hostmaster: /dev/null www:/dev/null nobody: /dev/null info: /dev/null spam-trap: /dev/null uucp: /dev/null postfix:/de

Re: Best practice when setting up a mail relay

Hello, Depending on the volume of mail, you might want to consider having a pool of outbound servers with a DNS round-robin, along with a dedicated fallback server that only handles bounces. So that your primary queues are only handling active deliveries, and your fallback just handles the bo

Re: SMTP filter using geo-localization

Hello, Another solution is to use reject_rbl_client. Dnsbl.bit.nl maintains a RBL by country code that is updated weekly. GeoIP data is sometimes unreliable and can become stale. See also: https://noc.bit.nl/dnsbl/ascc/ "This zone contains data regarding the ISO3166 countrycode and BGP Aut

Re: Semi-OT: Getting blacklisted by hotmail/Google again and again

Hi Johannes, Gone are the days of being able to send normal emails to these providers. They use automated algorithms that block your email automatically. Your IP reputation has a lot to do with it as well, along with the IPs in your /24. For example, looking up your IP reputation, I see that

Re: Reject Chinese mail

Hello, There is a DNSBL maintained by bit.nl that allows you to block countries with relative ease. URL: https://noc.bit.nl/dnsbl/ascc/ IE: cn.ascc.dnsbl.bit.nl This zone contains data regarding the ISO3166 countrycode and BGP Autonomous System for any given IPv4 or IPv6 address. Every wedn

Re: status=bounced (mail for ... loops back to myself)

Hello. I would also recommend having unique hostnames as well, so that postfix can keep track. It's perfectly fine to have the same IP. IE: mail.mydomain.com, mail2.mydomain.com etc Also, it might not be necessary to have two instances, you can probably do it with one, as SMTPD is for incomi

Re: Puting the Postfix's queue into RAM disk

Is it possible to configure a 2nd VPS instance just for fallback_relay? That way your primary queue is only for deliveries, and your 2nd instance can handle the bounces. I was working for an Online Gaming company and we would deliver 1-2 million messages per day, we had 3 active queues, and 1

disable tls for legacy versions

Is there a make flag to disable tls for legacy releases? I'm getting a compile error for 2.10.3 when trying to compile on FreeBSD 7.x 64bit. In file included from tls_level.c:52: /usr/local/include/tls.h:23:53: error: tcl.h: No such file or directory In file included from tls_level.c:52: /usr/lo

Re: disable tls for legacy versions

I renamed /usr/local/include/tls.h and it compiled fine. No errors. Thank You. Wietse Venema wrote: Postfix builds without TLS by default. I see. The "-I. -I../../include" should be before "-I/usr/local/include". Meanwhile, can you temporarily rename /usr/local/include/tls.h? Wie

Re: sender domaion restrict to defined recipient

Instead of relying on postfix, perhaps create a procmail recipe for a...@domain.com For example: :0: * ^From.*sender@foo\.bar /dev/null # default :0: /var/mail/A -- Matthew Lanfeust troy wrote: thanks for reply. Yes i want to a...@domain.com receive all email excep

Re: Email clients timing out. Can you help?

Perhaps you should review: https://help.ubuntu.com/community/PostfixBasicSetupHowto Anthony Papillion wrote: Hello Everyone, I have a rather odd problem that I hope someone can help me figure out. I've installed Postfix on my Ubuntu 12.04 LTS server. It's accepting mail for the anonymail.us d

Re: Mail delivery problem.. intermittent .. I dont see what could be wrong...

It also seems like you have a permissions error as well with your quarantine directories. Feb 17 16:49:52 mail amavis[16508]: (16508-03) (!)run_av (ClamAV-clamd) FAILED - unexpected , output="/var/spool/amavisd/tmp/amavis-20140217T163033-16508/parts: lstat() failed: Permission denied. ERROR\n"

Re: Rerouting specific domains....

It should be possible with the transports, just specify the account # user level /user@domain transport/:/nexthop/ Deliver mail for /user@domain/ through /transport/ to /nexthop/. u...@abc.domain.comsmtp:[my.other.relay.com]:25 SH Development wrote: Is there a way to con

Re: Rerouting specific domains....

It should be possible with the transports, just specify an account u...@abc.domain.comsmtp:[my.other.relay.com]:25 SH Development wrote: Is there a way to configure Postfix to send specific FROM domains to an alternate outbound server? I want to do the opposite. When user from xyz.domain

Re: (Debian) startup script?

Personally, I prefer using chkconfig, as I'm more comfortable with that method. # apt-get install chkconfig # chkconfig --list # chkconfig exim4 --off # chkconfig postfix --on The official method is to use update-rc.d See: http://www.debian-administration.org/article/28/Making_scripts_run_

[P-U] Poster Name not visible in Thunderbird

Hello. Sadly, when viewing this list in Thunderbird, it only displays "Postfix Users" as the From address, versus showing the posters name. I tend to ignore posters I don't recognize, and now i need to open each post to see who replied. Any workarounds in Thunderbird to override this behavi

[P-U] Re: Poster Name not visible in Thunderbird

Hello. I found the issue. It seems I had the list address saved as a contact, so Thunderbird was displaying Postfix Users. I removed the contact and it's displaying the poster name. See screenshot. Thank you. MatthewM ___ Postfix-users mailing lis

[P-U] Re: New List Host and Reply-to Header

Hi Peter. The Reply-To has always been the original poster for 10+ years. No sense changing it now. :) Matthew On 3/9/2023 1:08 PM, Peter via Postfix-users wrote: On 10/03/23 07:34, postfix--- via Postfix-users wrote: Is it the best idea to add a reply-to header to the author on mailing lis

[pfx] Re: Painful Postfix

Hello. Could you post a copy of the logs that you are seeing for this mail delay? What was the reject code? Thanks Matthew On 4/29/2023 5:40 AM, Kolusion K via Postfix-users wrote: Hello I am having a painful experience with Postfix and I hope that someone can help me.  I am trying to sen

[pfx] Re: Painful Postfix

Hello. You can try adding to your main.conf: tcp_windowsize=65535 See also: https://www.postfix.org/postconf.5.html That can help fixing broken window sizes because of a firewall. Thanks Matthew On 4/30/2023 12:35 AM, Kolusion K via Postfix-users wrote: Hello again My e-mail server is abl

[pfx] Re: delivery loop?

Hello. It really depends on your mail volume and the reliability of your primary MX hostname. Typically the RFC permits mail to be delayed for up to 5 days at which mail will bounce back as undeliverable. For most low-volume sites, a primary only MX configuration is fine. Both of those domai

[pfx] Re: Anyone using SMTP relay through dnsexit.com?

Hello. Some alternatives might be to use one of the commercial bulk mail providers such as: Sendgrid AmazonSES MailGun I use mailersend.com for transactional emails for Reverse.net. Other options include buying a $5 KVM and self hosting a public relay for outbound only. Matthew On 6/27

[pfx] Re: smtpd rate limiting

Hi Kevin. If the delays are being caused by bounce message processing, you could run a second instance dedicated to just processing delayed messages using fallback_relay. You can also make adjustments to the individual queues in master.cf, one tweak I use is increasing the flush rate to 1800

[pfx] Re: smtpd rate limiting

I might had used the wrong terminology. I was mainly referencing delayed email that occurs with Grey listing. Most of the delay email for me is either Google or Yahoo. Matthew On 9/29/2023 7:40 PM, Wietse Venema via Postfix-users wrote: Matthew McGehrin via Postfix-users: Hi Kevin. If the

[pfx] Re: gmail failing SPF/DKIM

are valid. If you are using a contact form, the From: address is typically munged to be the user filling out the form. -- Forwarded message ------ From: Matthew McGehrin To: Matthew McGehrin Cc: Bcc: Date: Tue, 28 Nov 2023 20:25:24 -0600 Subject: Testing to Gmail Test : host