e is only little postfix can do with it, as all other say
if you want to make it stronger, it needs milters for this to happend
https://serverfault.com/questions/640756/postfix-login-mismatch-sender-address-rejected
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning:
), but
you disable tlsv1 and tlsv1.1 protocols.
This means, if you communicate with older server supporting up to TLS 1.1 or
1.0, communication will be unencrypted.
This does not make much sense - tls1.0 is better than plaintext.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk
want:
http://www.postfix.org/postconf.5.html#expand_owner_alias
http://www.postfix.org/aliases.5.html
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVA
n many many
docker images in production systems everywhere. :-)
that does not mean it's suitable for any use.
it's obviously unsuitable for more than light work with DNS.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail adver
On 01.12.22 15:23, David Dolan wrote:
>We have two customers who we're unable to receive email from.
>It's failing the helo lookup as it can't resolve the hostname in the helo
>message.
>Helo command rejected: Host not found;
On Thu, 1 Dec 2022 at 15:49, Matus UHLAR - fant
kup and doesn't find the IP which the message arrived from?
no.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
The early bird may get the
?
how do internal users connect to your mail gateway?
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
How does cat play with mouse? cat /dev
ementing 2FA / OAUTH for clients.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
Eagles may soar, but weasels don't get sucked into jet engines.
Matus UHLAR - fantomas:
reject_unlisted_recipient, of course:
http://www.postfix.org/postconf.5.html#reject_unlisted_recipient
reject_unlisted_recipient
Reject the request when the RCPT TO address is not listed in the list of
valid recipients for its domain class. See
Dnia 24.11.2022 o godz. 08:44:51 Matus UHLAR - fantomas pisze:
you should use reject_unverified_recipient instead of
reject_unverified_recipient, they have different use which is why
you get DNS lookups prior recipient being rejected.
On 24.11.22 11:34, Jaroslaw Rafa wrote:
Hm
level, even if you see more DNSBL lookups
- currently you are telling spambots which users do/don't exist
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek
at postscreen level.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
Eagles may soar, but weasels don't get sucked into jet engines.
linux...@gmx.net skrev den 2022-11-20 09:49:
when secondary MX server forwards messages to primary MX, how can I
setup SPF policy to make them not breaking SPF?
On 20.11.22 12:04, Benny Pedersen wrote:
"v=spf1 mx -all" :)
all other variants is just more verbose
Matus UHLAR
are solvig problem at wrong place.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
"They say when you play that M$ CD backward you c
On 16/11/2022 11:45, Matus UHLAR - fantomas wrote:
I use:
spf-milter (the same source as policyd-spf-python)
opendkim
openarc
opendmarc
so far in soft mode (no rejections)
opendmarc can use results of previous three in its decisions.
On 20.11.22 08:21, Dominic Raferd wrote:
Does spf-milter
Is it safe to block it in header_checks?
/^Return-Path: <>/ REJECT
No. the Return-Path: should not exist prior to delivery to mailbox.
Also, according to rfc 1123, section 5.2.9 empty reverse path MUST be
supported.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fanto
p of https://www.mailmunge.org/ it should be easy to write
that in perl.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
Nothing is fool-proof to
in?
"smtpd_recipient_restrictions" or "smtpd_client_restrictions"?
when you use them in recipient_restrictions, you can explicitly allow
specific sender or recipient's e-mail addresses.
in smtpd_client_restrictions you don't know anything about senders or
recipients.
--
Matus
Default: Quarantine
set it to reject:
OnInfected Reject
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
I'm not interested in
om-scratch-debian-postfix-smtp
But maybe not.
People say good things about rspamd as well. Check that out.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT
be the same inside the chroot as it is
outside. I'd recommend taking them out of the chroot and seeing if that fixes
the problem.
shouldn't restarting (stop) postfix fix that?
afaik the chroot is set up at postfox start
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Wa
there only to provide envelope sender when
delivering to mailbox, it doesn't usually exist on the fly
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek rekl
reveal legitimately private information.
On 09.11.22 22:02, MRob wrote:
Can you xplain what is private about that? Thank you
mapping e-mail address to user may be private.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising
y when you send mail via "mail" command?
so what the use case of /etc/mailname?
it's debian extension for mail clients and servers, unfortunately not all of
them
do you have debian or debian-based system?
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warni
I forgot to add, I use postfix 3.5.13 on debian 11
On 06.11.22 19:55, Matus UHLAR - fantomas wrote:
Viktor Dukhovni:
I don't recall whether milter message content processing happens before
or after canonical rewriting, Wietse might post a reminder. If milters
go first, you'll need to do DKIM
s.
(I configured vrydmn, spf-milter and rewriting header sender only for this
example).
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu post
like Fail2Ban) act as Bouncer, by pre-processing such
connections? Will welcome rationale(s)...
These help much too.
But as postfix said, postscreen is even better tool for catching bots.
I use both postscreen and other checks like these.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http
resolver whenever possible.
It may forward internal domains to internal servers, but not to public DNS
servers.
At least if you want to use any spam filtering using DNSBLs
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising
u'll need separate postfix instance for outgoing mail and apply
postsrs there.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
I drive w
in)?
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
Quantum mechanics: The dreams stuff is made of.
and DKIM should help too.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
WinError #9: Out of error messages.
.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
Eagles may soar, but weasels don't get sucked into jet engines.
atures when you change the setting
>to match arbitrary senders.
Matus UHLAR - fantomas:
only if the sender generates DKIM signature, which is unlikely for clients
that don't generate message-id.
On 12.10.22 10:41, Wietse Venema wrote:
This would break signatures from REMOT
d although I'm not sure if it makes
sense, especially when sender can change MUA to one that generates
message-id.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT
mtpd[1569925]: 4MnTJ40Gttz7vqf:
client=client.fqdn[client.ip]
10:23:16+00:00 mailserver postfix/qmgr[1563391]: 4MnTJ40Gttz7vqf:
from=, size=5375, nrcpt=1 (queue active)
I guess the delay is between "smtpd connect from " and the "qmgr"
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; htt
ger instance that takes canonicalized e-mail and signs it.
If I am missing something, or something has changed (since 3.5.6) please let me
know.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na t
Matus UHLAR - fantomas:
postfix' sendmail page:
-bvDo not collect or deliver a message. Instead, send an email re-
port after verifying each recipient address. This is useful for
testing address rewriting and routing configurations
ope
recipient.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
42.7 percent of all statistics are made up on the spot.
virtual_alias_maps or alias_maps and expand the name would be alternative
approach to your problem.
On the other side...we want our DKIM checks to run BEFORE this thing,
since otherwise, the DKIM signatures on the to: line will not match.
Is there a way to tell specific milters where in thi
that fail (hardly,
maybe even softly) SPF check.
so, not by all servers.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
One OS to rule them
. I guess if I disable 465 and anyone is
using it, I'll hear about it.
not only it is a standard for nearly 4 years, it's also better because
there's no possibility to have plaintest on 465 if you forget something
I've also had problems with AV blocking tls on 587 in the past.
--
Matus UHLAR
with otherwise perfect MUAs.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
"They say when you play that M$ CD backward you can hear sa
if TLS can't be established, because you set:
smtpd_tls_security_level = may
...so disabling older TLS versions may lower security, not increase it.
if you want to affect client-server communication, use smtpd_tls_mandatory_*
parameters instead.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://ww
Wietse
Postfix must be able to run on a disconnected machine, and therefore it cannot
use DNS to figure out the domain portion of
Wietse
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address
support
multiple instances, so you can create instances using postmulti.
IIRC you will apparently need to stop/start postfix, since only the startup
script does all work need to start new instance (building chroots etc)
http://www.postfix.org/postmulti.1.html
perhaps you can start here.
ot telling your server, so while remote server delivers the message,
your server tries to deliver the message again.
if you haven't lowered smtp_data_done_timeout (default 600 aka 10 minutes),
there should be no problems on your side and it's likely problem at the
remote server.
--
M
/smtpd[156]: warning: host or service dovecot:12345 not
found: Name does not resolve
postfix/submission/smtpd[156]: warning: SASL: Connect to Dovecot auth socket
'inet:dovecot:12345' failed: Address not available
this looks like "dovecot" host is not resolvable.
--
Matus UHLAR - fa
failed: timed out.
this may and may not cause with google DNS issues.
however, it indicates something broken with your DNS.
google is apparently one of those having problems.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to thi
lready some time ago.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
Windows found: (R)emove, (E)rase, (D)elete
.
When the main MX was in failure, the secondary MX should hold
messages for some time.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
to external hosts, but
postfix can't connect to LAN hosts.
is there any reason you can't use this setup?
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek
expand_owner_alias=yes and create owner-g...@tpg.com.au in aliases:
http://www.postfix.org/postconf.5.html#expand_owner_alias
I guess the g...@tpg.com.au is defined in alias_maps, not
virtual_alias_maps
- use SRS scheme to rewrite sender addresses for forwarded mail.
--
Matus UHLAR - fantomas, uh
post-queue filter when receiving mail via submission on port 465/587
(services submission and smtps/submissions).
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT
On 19.08.22 02:12, Matus UHLAR - fantomas wrote:
you can define multiple transports in master.cf and use them if you
need different client settings.
That's interesting, thank you for the tip and example configuration!
so you can use transport like "smtpssl:" in your *relayhost_maps
server communication where authentication is required/enforced.
on the other hand I think that an encryption would be better, especially on
the dmz.
On 8/19/22 07:08, Matus UHLAR - fantomas wrote:
I'd say "especially for connections crossing not-secured network".
mails within LAN/
your *relayhost_maps:
smtpssl unix - - y - - smtp
-o smtp_tls_wrappermode=yes
-o smtp_tls_security_level=encrypt
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
V
ason not
to trust the network or someone on it.
you still can use encryption on port 25 using the STARTTLS mechanizm.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOS
>> >You might work around this by settting
>> >
>> >disable_mime_output_conversion = yes
>> >
>> >in main.cf.
>Matus UHLAR - fantomas:
>> won't this stop mail from being deliverable to the other side?
On 17.08.22 11:38, Wie
>Matus UHLAR - fantomas:
>> >This is an interesting point that I hadn't thought of. I have
>> >smtputf8_enable set to yes, but I have just checked the remote server
>> >and it only shows:
>> >
>> >250-AUTH PLAIN LOGIN
>> >250-STARTTLS
&g
Steffen Nurpmeso:
Wietse Venema wrote in
<4m7by01gfjzj...@spike.porcupine.org>:
|Matus UHLAR - fantomas:
|>>Matus UHLAR - fantomas:
|>>> On 17.08.22 13:45, Andy Beverley wrote:
|>>>>This is an interesting point that I hadn't thought of. I have
|>>&
ike you use stronger setting that "encrypt"
Does this seem correct to you? Or is there another method more suitable?
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
On the other hand, you have different fingers.
Matus UHLAR - fantomas:
On 17.08.22 13:45, Andy Beverley wrote:
>This is an interesting point that I hadn't thought of. I have
>smtputf8_enable set to yes, but I have just checked the remote server
>and it only shows:
>
>250-AUTH PLAIN LOGIN
>250-STARTTLS
>250 HELP
>
On 17/08/2022 12:21, Matus UHLAR - fantomas wrote:
I guess that the remote host doesn't support 8BITMIME and your
server signs 8-bit e-mail, which can lead to invalid DKIM
signatures.
this is a weaknes of current DKIM standard which doesn't handle this
situation and instead proposes
DKIM standard which doesn't handle this
situation and instead proposes converting to 7-bit prior to signing
try connecting the remote host to see if ehlo results into 8BITMIME line in
response.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive
On 14/08/2022 19:51, Matus UHLAR - fantomas wrote:
but which lists? using spamhaus PBL is not viable because it lists
dynamic IP address which can be commonly used by clients.
On 14.08.22 21:30, Allen Coates wrote:
Could you try "permit_dnswl_client dnswl_domain=d.
On 14.08.22 18:40, tog...@dinamizm.com wrote:
"Matus" == Matus UHLAR <- fantomas > writes:
"JR" == Jaroslaw Rafa writes:
JR> Dnia 13.08.2022 o godz. 11:22:30 Durga Prasad Malyala pisze:
Did you try fail2ban. It is very good.
JR> I already u
with the same problem - ona IP
rarely repeats more than once.
I'm not sure if spamhaus or any other dnsbl processes this kind of attacks
quickly enough so we could stop them.
however, if anyone tries this, let us know...
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantom
hostname, *.lan etc.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
He who laughs last thinks slowest.
]
On 11/08/2022 11:54, Matus UHLAR - fantomas wrote:
this is the main diference between
reject_unknown_reverse_client_hostname and
reject_unknown_client_hostname.
- the first that you used doesn't check for fcrdns mapping and only
rejects IP addresses that have no reverse mapping, no matter
and reject_unknown_client_hostname.
- the first that you used doesn't check for fcrdns mapping and only rejects
IP addresses that have no reverse mapping, no matter if the reverse
hostname is random
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising
there.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
Fighting for peace is like fucking for virginity...
rd to other servers
2. your ISP must not intercept and forward your DNS requests
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
It's now safe to throw off your computer.
quot; part was added by me for the milter checks but only for milter
rejects:
https://sources.debian.org/patches/pflogsumm/1.1.5-7/milter-rejects/
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tu
in smtpd_helo_checks makes it impossible to allow particular
senders.
that's why many recommend blocking in the smtpd_recipient_restrictions.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto
, rspamd can still redo those checks (and they should be caches in your
nameserver, so no redundant DNS queries will go to those lists.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu
On 03.08.22 14:59, Matus UHLAR - fantomas wrote:
I have moved towards postscreen a long time ago.
postscreen supports multiple scored blocklists and/or allowlists,
block clients from configured score and with pregreet test helps with
blocking many bots and can even replace greylisting
reylisting protection.
http://www.postfix.org/POSTSCREEN_README.html
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
Posli tento mail
the server response), but
before the queue is deleted.
I've been using milters extensively, but they are executed before a
message is delivered, but maybe it's possible to repurpose them.
no.
Any thoughts on it or on alternative approaches?
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; ht
,inet:127.0.0.1:10030
note that the catchall is not needed - simply use smtpd_milters
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu
UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
On the other hand, you have different fingers.
ld you please submit an example with regexp or pcre table for
relay_domains gets rid of this automatic subdomain matching behavior?
regexp/pcre aren't often needed
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address
UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
"Two words: Windows survives." - Craig Mundie, Microsoft senior strategist
"So does
unix:spamassassin/spamassassin-milter.sock
...
by specifying just a subset of milters for mail submission in
/etc/postfix/master.cf, for example:
submission inet n - y - - smtpd
...
-o smtpd_milters=unix:opendkim/opendkim.sock
...
--
Matus UHLAR - fantomas
to combat forgery.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
Despite the cost of living, have you noticed how popular it remains?
n ways to set envelope from: address,
e.g. using SMTP authentication or setting "-f" parameter to sendmail
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAV
point should be that mail is delivered under the same user as the
user who reads mail. Why change that?
...perhaps you could alias the particular user to local domain so the mail will
be delivered using local instead of virtual, under local user's permissions.
--
Matus UHLAR - fantomas, uh
es:get_name:no start line
/etc/bind# ls -la /etc/opendkim/key/
-rw--- 1 opendkim opendkim 51 Jun 26 22:50 dkim.key
-rw--- 1 opendkim opendkim 1675 Jun 26 22:50 nmail.private
-rw--- 1 opendkim opendkim 506 Jun 26 22:50 nmail.txt
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; ht
Chapter 14: choosing the best material for your glasses
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
Nothing is fool-proof to a talented fool.
Matus UHLAR - fantomas wrote:
you can do this in recipients .forward, .procmailrc or .mailfilter,
is there any reason you want to do this in postfix configuration file?
On 25.06.22 12:43, Luc GMail wrote:
I am not sure about .forward. I don't know how it works.
http://www.postfix.org/local
3, delays=0.07/0.02/0/0.03,
dsn=4.3.0, status=deferred (mail transport unavailable)
What am I doing wrong, please?
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NED
.5.html#check_recipient_a_access
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
Due to unexpected conditions Windows 2000 will be released
redirected instead of copying.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
Christian Science Programming: "Let God Debug It!".
g /run/saslauthd to /var/spool/postfix/var/run/saslauthd
https://wiki.debian.org/PostfixAndSASL
it's better than disabling chroots wherever possible.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
V
://marc.info/?l=postfix-users=165556692315898=2
so it's hard to guess.
It seems that it maybe has something to do with my setting for myorigin =
/etc/mailname.
myorigin only affects outgoing mail.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail
y unix - - y - - smtp
-o syslog_name=$multi_instance_name/$service_name
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek rekl
der_access hash:/etc/postfix/domainslist_out}
lookup error for"du...@testing.com"
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu po
On 21.06.22 16:05, Burn Zero wrote:
It is 17 MB only. message_size_limit is not overridden in master.cf as
it is showing the correct value set in main.cf while advertising EHLO.
it can be overridden for e.g. cleanup process.
On Tue, 21 Jun 2022 at 16:01, Matus UHLAR - fantomas wrote
like "NOQUEUE: reject: MAIL from [xxx.xxx.xxx.xxx]: 552
5.3.4 Message size exceeds fixed limit"
I am confused what this error "queue file size limit exceeded" means?
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receiv
is more actively maintained but hasn't been
updated in 2 years.
A requirement of dkimpy-milter is python which may pose an issue security wise.
Are there any other solutions out there to should be considered as well?
amavisd supports both DKIM signing and verification.
--
Matus UHLAR - fantomas, uh
NAME_SPOOF eval:check_fromname_spoof()
further it's up to you
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
Honk if you love peace and quiet.
301 - 400 of 1318 matches
Mail list logo