or:140760FC:SSL
>routines:SSL23_GET_CLIENT_HELLO:unknown protocol:s23_srvr.c:578:
On Wed, Oct 24, 2018 at 5:01 PM Matus UHLAR - fantomas
wrote:
which OS/distribution do you use?
On 24.10.18 17:50, Burn Zero wrote:
I use CentOS 6.5
I haven't find centos 6.5 nor redhat 6.5 here, but on one of our redhat 6.4
servers
protocol:s23_srvr.c:578:
which OS/distribution do you use?
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
BSE = Mad Cow Desease ... BSA
: Permission denied
On 20.10.18 20:52, Wietse Venema wrote:
Somoene messed up file permissions, or someone decided
to break setgid programs.
Run "postfix set-permissions" to correct (except on Debian-like
systems, they broke it so there may be some errors).
On 21.10.18 14:29, Matus UHLAR
not meant to create
packages for the official Debian archive.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
Atheism is a non-prophet organization.
some possible spam, but rejects much od it.
I don't trust in quarantines much, someone must take care of them and not
forget/miss anything.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto
actions in the log as well.
simple SMTP log containing somnething like
"status=sent (250 2.0.0 OK 1539769875 s18-v6si13395678wrm.42 - gsmtp)"
"Queued mail for delivery"
"Message 307087686 accepted"
should be enough.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; h
On 10/13/18 9:46 AM, Matus UHLAR - fantomas wrote:
this is useless. milter is designed to be run directly at messsage
receiving, not during further processing.
On 13.10.18 09:59, pg...@dev-mail.net wrote:
I've had a production system with a different set of milters in 'the same
place
if that's telling me how to deal with this, I'm missing it.
It's just above. Move the milter to the port 25.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukol
is for debugging and produces even more output.
That's a way of saying "do not complain about Postfix performance"
if you turn on debug logging.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na t
3, delays=0/0.01/13/0, dsn=4.0.0,
> status=undeliverable (host 127.0.0.1[127.0.0.1] refused to talk to me:
421
> internal error: OpenResolveAddrFolder failed)
this is postfix client, not server refusal.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I
that could periodically be verified for some time, e.g. 1 week.
This would help much with mail for addresses that are undeliverable in the
long run - mostly spams.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address
filter:
http://www.postfix.org/postconf.5.html#content_filter
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
Linux is like a teepee
readon to reboot servers
periodically.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
The 3 biggets disasters: Hiroshima 45, Tschernobyl 86
.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
- Holmes, what kind of school did you study to be a detective?
- Elementary, Watson
and this question has been brought many times on spamassassin
mailing list, and the result is - not an easy thing to do.
(mostly thanks to companies who do that deliberately)
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to t
and gigabytes
of RAM. I found that 1B of RAM is not enough to have clamav with (free
only) 3rd party signatures loaded.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem
, the server is still willing to accept non TLS unencrypted
emails from smtp clients.
Am I still missing a setting?
something overridden in master.cf?
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address
"hey, tell me history of message
> id ..."
>
> any suggestion ?
сб, 29 сент. 2018 г. в 16:21, Wietse Venema :
Open a web search engine, ask for for 'logfile analysis tools'.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to recei
org
Subject: Beginner - Bind - Bad dotted quad
Date: Mon, 24 Sep 2018 05:40:58 +0200
https://lists.isc.org/pipermail/bind-users/2018-September/100822.html
the ISC lists seem to add message signature that may to invalidate the
signature.
I'm not very into DKIM, but here is the info...
--
Matus UH
ur IP is listed in list.dnswl.org"
(this may happen when even when you use dnswl with negative score, since
postscreen doesn't care about weights, could be something to implement)
it will say:
"rejected: your IP is listed in multiple dns-based blocklists"
--
Matus UHLAR - fant
mapped to permanent error (which makes sense to me.
What is the problem?
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
BSE = Mad Cow Desease ... BSA = Mad Software Producents Desease
ing this ?
"smtpd_sasl_auth_enable=yes" in main.cf enables sasl authentication
globally, which you don't want. That's why you should turn it off and only
enable it explicitly for submission and smtps services.
It's better to configure postfix according to proposed config, so you don't
have too
t_limit to 1 but it still invoked the script the
same number of times as number of recipients.
you have misunderstood. Of course it it when *_destination_recipient_limit
is 1. It would apparently be different if it were not 1.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warn
This morning I sent a batch of 725 and it took 1
hour and 21 minutes
header_checks = regexp:/etc/postfix/header_checks
what's in /etc/postfix/header_checks?
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail
(recipient or domain) will be followed by the per-destination
transport_destination_rate_delay.
so, does transport_destination_concurrency_limit not apply when
transport_destination_rate_delay is >0 ?
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receiv
...
and define the offending domain in that file:
/\.artegic\.net$/ REJECT Not accepting mail from your domain.
for blocking .artegic.net you don't need to use pcre.
simple hash table containing ".artegic.net" would be faster.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fan
173.0.0.0/8 OK
174.0.0.0/8 OK
184.0.0.0/8 OK
199.0.0.0/8 OK
204.0.0.0/8 OK
205.0.0.0/8 OK
206.0.0.0/8 OK
207.0.0.0/8 OK
208.0.0.0/8 OK
209.0.0.0/8 OK
216.0.0.0/8 OK
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address
:[127.0.0.1]:10026; from=
to= proto=ESMTP helo=
Aug 14 07:13:30 s1 postfix/smtpd[8804]: NOQUEUE: reject: RCPT from
ip6-localhost[127.0.0.1]: 550 5.1.1 : Recipient
address rejected: User unknown in virtual mailbox table;
from= to= proto=ESMTP
helo=
2018-08-14 11:44 GMT+02:00 Matus UHLAR - fantomas
On 14/08/18 10:36, Matus UHLAR - fantomas wrote:
so, what is the problem?
On 14.08.18 11:22, Danny Horne wrote:
None as far as I'm aware, but this is my first time using Postscreen, so
wanted to check that I hadn't messed anything up
aha. You'll find that from:
"postfix/posts
r.cf line with "mydomain" word. In
main.cf is only "append_dot_mydomain".
the colonel.com.pl can be listed in virtual_alias_domains and
virtual_mailbox_domains
to be considered local.
you should not search for "mydomain" but for "colonel.com.pl".
--
Matus
13 21:24:16 kepler postfix/postscreen[12013]: PASS NEW
[2a00:1450:4864:20::529]:38530
so, what is the problem?
Note that bost DNS blacklist/whitelists don't list ipv6 addresses.
Unhless the 2a00:1450:4864:20::529 sends pregreet text, there's no need to
block it.
--
Matus UHLAR - fantomas, uh
?
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
They that can give up essential liberty to obtain a little temporary
safety deserve neither
usually already settled.
Lyckily there's not much services connecting always from different IPs...
Postscreen provides BL scoring and pregreeting tests, and with after-220
checks provides something very similar to greylisting.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk
ike this difference is keeping the bounced
notifications from passing SPF and getting processed by OpenDKIM.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolve
Matus> On 26.07.18 13:38, Luc Pardon wrote:
Recently, my provider forced me from ADSL (being phased out here) to
VDSL, and I now find myself sending mail from a "dynamic" IP address...
"Matus" == Matus UHLAR <- fantomas > writes:
Matus> is it really dynam
s NOT look like dynamic
(and is not listed in dynamic dns blacklists).
Wietse told you the rest. Imho there's no point in playing with what you
propose inatead of fixing the IP reputation.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail a
the milter_macro_daemon line?
both should have the same effect.
On 6/29/18, Matus UHLAR - fantomas wrote:
On 27.06.18 17:33, David Mehler wrote:
I'm running Postfix 3.3.1 with rspamd as an antti-spam solution. I
started getting this error when atempting to connect remotely via my
android phone
, you are not
supposed to configure relayhost.
The relay_domains should be instead directed to your domino server via
transport_maps (or maybe relay_transport but i prefer the former).
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail
it's just a smarthost, not an MX
listening on port 25, and it shouldn't worry it's little head about mail
loops?
you need to tell the server, where to send mail for the domain.
Apparently, to the port 25 of the same server.
Why do you run two different smtp servers on the same host?
--
Matus UHLAR
ersion and possibly re-use or upgrade config files).
That means, one of your configuration files was broken and caused troubles.
finding out which one was that could help us to prevent from further
problems.
(maybe keeping the config backups and comparing them).
--
Matus UHLAR - fantom
http://www.postfix.org/postconf.5.html#smtpd_authorized_xclient_hosts
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
"Where do you want to go to die?" [Microsoft]
email and destroy the original message and any copies of
the message as well as any attachments to the original message.
funny for a list mail.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na
it matters, but I am running a caching nameserver on the
mail relay.
do you use it for DNS resolution?
Does it forward requests to other servers? (e.g. to those one you are required
to
use?)
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive
and then O365 will
forward to smtp.uconn.edu [which relays back to O365] due to my mailbox
being angelo.fazz...@uconn.edu . If you send directly to
angelo.fazz...@uconn.edu O365 delivers to mailbox without having to
forward the email.
what is the point of this design/setup?
--
Matus UHLAR - fantomas, uh
o.
If you have static address and mail server, you can ask your ISP to allow
connection to port 25.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu
aren't
usually used, but SMTP authentication is usually required.
smtpd_milters = unix:/var/run/rspamd/milter.sock,inet:127.0.0.1:8472
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu
affect the performance of the Postfix
server ?
depends on how do you configure it. hash: should not have noticeable
performance impact.
However, shouldn't it be better to define @domain.com instead of listing all
mailboxes?
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk
dead and blacklists everything - this happened multiple times in the
past.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
I don't have
pretty examples on the net.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
They that can give up essential liberty to obtain a little
,
reject_non_fqdn_recipient,
reject_unknown_sender_domain,
reject_unknown_recipient_domain,
Why did you repeat all of these?
reject_rbl_client zen.spamhaus.org,
reject_rbl_client bl.spamcop.net
reject_rbl_client cbl.abuseat.org,
permit
--
Matus UHLAR - fantomas, uh...@fantomas.sk
, which may be desired.
- you may want to evaluate those mysql rules even for sasl authenticated
clients abd clients from $mynetworks
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu
er to ad whitelisted IPs to those tables.
2018-06-11 16:24 GMT+02:00 Matus UHLAR - fantomas :
On 11.06.18 15:17, Poliman - Serwis wrote:
Listed on lists related with Postfix, from my main.cf:
smtpd_recipient_restrictions = permit_mynetworks,
permit_sasl_authenticated, reject_unauth_destinatio
There are many ways to do this. Here is one:
...
reject_unauth_destination
check_client_access inline:{91.218.208.22=ok, 1.2.3.4=OK}
reject_rbl_client foo.bar.org
...
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to recei
Postfix uses blacklists in own configuration but I would like to
exclude only this one IP.
find the rule blocking 91.218.208.22 and insert another one allowing this IP
in front of the rule.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail
On 5 Jun 2018, at 02:22, Matus UHLAR - fantomas wrote:
in postyfix queue each mail does have its unique ID. However, when pushed
through any kind of content filter, the ID changes.
Also, when mail gets forwarded, the ID changes.
On 05.06.18 02:30, @lbutlr wrote:
A new ID will be ADDED
unique ID. However, when pushed
through any kind of content filter, the ID changes.
Also, when mail gets forwarded, the ID changes.
you apparently need interface to parse these logs to find even related queue
IDs.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish
including script responsible for mail sending.
now I wonder, 587 should generate logs like "postfix/submission/smtpd".
Did you modify master.cf or just omitted
-o syslog_name=postfix/submission\
there?
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warni
relayhost=[192.168.1.10]
then it does not work... why??
because relayhost is not an option of smtp process.
why do you want to do that in master.cf?
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie
reject_rbl_client bl.spamcop.net,
reject_rbl_client b.barracudacentral.org,
check_policy_service unix:private/policyd-spf,
permit
smtpd_helo_restrictions =
permit_mynetworks,
permit_sasl_authenticated,
regexp:/etc/postfix/helo.regex,
permit
--
Matus UHLAR - fantomas, uh...@fa
ver-side SNI (server name indication) on
postfix then.
other trick I have noticed is to use SNI-capable reverse SSL proxy.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAV
Hello,
we have exactly one non-looopback address in inet_interfaces. In this cause
the address is also used as smtp_bind_address.
can we still configure postfix send from any address?
...maybe smtp_bind_address=0.0.0.0 ?
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk
.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
REALITY.SYS corrupted. Press any key to reboot Universe.
Am 15.05.2018 um 22:29 schrieb Benny Pedersen:
its a dns problem to solve, not postfix
# /etc/hosts
127.0.0.1 horus.localdomain horus
Matus UHLAR - fantomas skrev den 2018-05-16 15:24:
Benny, 127.0.0.1 should always resolve to "localhost" (surprises
can happen
otherwise).
ote server, it's always
just one address.
unless you'd configure recipient_bcc_maps for each recipient - but it still
would be different address than processed locally.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to th
ervers don't apparently know "horus.localdomain"
you should better configure proper sender address in source address.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOST
configuration somewhere, postfix or server network.
I takes any sugsestion.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
Support
;xx1...@mms.att.net> proto=SMTP helo=
May 7 14:09:32 fender postfix/submission/smtpd[23487]: generic_checks:
name=reject_unauth_destination status=2
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this add
-b adminu...@kreme.com
But I suspect the issue here is mutt and not postfix?
correct.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
It'
reject_rhsbl_helo dbl.spamhaus.org
check_policy_service unix:private/spf-policy
check_policy_service unix:private/dovecot-quota
check_policy_service unix:private/p0f-policy
On 4/23/18, Matus UHLAR - fantomas <uh...@fantomas.sk> wrote:
On Sun, Apr 22, 2018 at 07:24:42PM -0400,
MTP helo=<[192.168.1.107]>
this does not look like HELO rejection.
Did you set up smtp authentication? did it work?
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOS
On 19.04.18 22:25, David Mehler wrote:
Does anyone have p0f going with postfix? I'm wanting to add a header
for email connecting OS.
I think amavis supports p0f, so any way of integrating amavis into postfix
should allow this functionality (and many others).
--
Matus UHLAR - fantomas, uh
..?
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
Spam = (S)tupid (P)eople's (A)dvertising (M)ethod
nd CPU were not overloaded.
turning them off is still worth trying.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
Support bacteria - t
1658 7284 11102
Swap: 7628 0 7628
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
Quantum mechanics: The dreams stuff is made of.
smtp_connect_addr: bad smtp_bind_address parameter:
54.38.202.128:10025,: Name or service not known
Here, you specified "54.38.202.128:10025," including the
port :10025 and comma.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to rece
.
what do you mean "ip failover"?
Do you want to re-send every ougoing message from your failover IP when it
gets rejected on primary IP?
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na t
age store and SAN. All i can find that was close
was
mailbox sharing and email archiving.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu po
r checking validity
of mail addresses at your system.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
Linux is like a teepee: no Windows, no
.
pflogsumm, for example. available in most OS/distribution repositories and
at: http://jimsun.linxnet.com/postfix_contrib.html
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem
Matus UHLAR - fantomas:
On 26.03.18 14:15, Wietse Venema wrote:
>Again, it says that
>
>If the domain matches virtual_alias_domains
>then look up the user in virtual_alias_maps
>
>The text does not say:
>
>If the domain matches virtual_alias_domains
&g
Matus UHLAR - fantomas:
>Matus UHLAR - fantomas:
>> virtual_alias_domains and virtual_alias_maps are described in
>> "The virtual alias domain class." section.
>>
>> * Domain names are listed in virtual_alias_domains. The default value is
>> $virtu
>> >> file, so postfix knows about them from somewhere outside of
postfix=E2=80=99=
>> >> s config file) and then it also checks for virtual_mailbox_domains and =
>> >> virtual_alias_maps, yes?
>>
>> On 14.03.18 20:14, Wietse Venema wrote:
>> >
, but without sacrificing security.
that's why you should install everything from packages.
Debian handles security very good and you can even automate installations
(see unattended-upgrades package).
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish
SMTP authentication instead of playing with this.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
I wonder how much deeper the ocean would
ity given
the high cost and possibly only moderate benefit.
that is imho still the question. But I'm more curious about questions above
:-)
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tu
them from somewhere outside of postfix=E2=80=99=
>> s config file) and then it also checks for virtual_mailbox_domains and =
>> virtual_alias_maps, yes?
On 14.03.18 20:14, Wietse Venema wrote:
>The Postfix SMTP server always looks in virtual_alias_maps.
Matus UHLAR - fan
over TLS."
On 07.03.18 09:07, Wietse Venema wrote:
>Indeed. Postfix can migrate the TCP connection from one process to
>another, but the TLS library does not support migration of live TLS
>state. It supports reuse on new connections only.
>
>Possible solutions would be:
M
ot
planned, correct?
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
Spam is for losers who can't get business any other way.
in virtual_alias_domains are searched for virtual aliases?
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
WinError #9: Out of error
ster.cf than in the
main.cf, it's required when you want to change them.
2. submission and smtps SHOULD have "-o smtpd_tls_security_level = encrypt",
clients should be required to both authentize and encrypt.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish
eneral, or these specific exclusions?
I've had
smtpd_tls_exclude_ciphers = MD5, SEED, IDEA, RC2, RC4
For a pretty long time now
I have:
smtpd_tls_ciphers=high
smtpd_tls_mandatory_ciphers=high
smtpd_tls_exclude_ciphers=aNULL
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warn
ecause the now mailer-daemon wil never be accepted because
its non resolveable
correct. that is the expected behaviour.
do you expect someone to accept mail from non-existing (invalid) addresses?
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-
t; (or
"25") to the corresponding entry in master.cf. This will make postfix
"label" the logfile entries - and maybe enable your syslog service to
direct them into separate files.
at least on debian, smtpd on submission port (587) has by default:
"-o syslog_name=postfix/submission"
--
M
oSh,
Hits: 6.57, size: 639, 551 ms
The alarms are blocked as SPAM. Is there a way to instruct
amavis/postfix that this mails aren't SPAM?
you need to look at its spamassassin scores to see what you can do.
check headers of M/spam-M9145UbnjoSh.gz file in your quarantine directory.
--
Matus
tances can this cause an error?
if the domain is in "mydestination", it should be treated as local.
is it related to the parent_domain_matches_subdomains setting?
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this
to any type of mail rejection or spam detection.
Also, (in my case) I was plagued by Ukrainian spamming mail servers;
they just retried and got through.
this (and the above) applies to all types of greylistings.
they are designed to get rid of spambots, not of spam sent through real mail
serv
, instead of
accepting mail to anyone and then mail back the error.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
We are but packets
with a score at or above
postscreen_dnsbl_threshold.
On 05.03.18 08:59, Karol Augustin wrote:
Would you mind sharing which RBLs you recommend to use in postscreen?
On 05.03.18 16:54, Matus UHLAR - fantomas wrote:
I don't see problems having spamhaus, sorbs and spamcop at postscreen level
play with weighing blacklists and whitelists, and/or tuning
postscreen_dnsbl_threshold
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu
authentication on 587. They are doing
something because I can't telnet to port 25 from the Verizon to the relay
server.
ok, you don't need postscreen, if ou only allow mail from your relay.
but i would reconsider options for connecting to internet...
--
Matus UHLAR - fantomas, uh...@fantomas.sk
1101 - 1200 of 1318 matches
Mail list logo