Thank you Wietse, Viktor and others on Postfix team for your work and support
offered!
Thanks, Rodney, for telling me about Postfix all those years ago!
Thank you to all on this ml for putting up with my often (usually?) ignorant
queries!
Hope to be around for at least some part of next 25
I've followed the recent advice as I'm also getting a lot of
these_long_subjects_emails_with_crap_in_them:
--
* Noel Jones wrote :
On 4/27/2011 6:17 AM, Troy Piggins wrote:
Hi there. I'm noticing lately most of the spam that gets through my
On Fri, April 29, 2011 4:15 pm, Voytek Eymont wrote:
#grep {40}/ header_checks
/^Subject: +[^[:space:]]{40}/ REJECT no spaces in subject
but I'm having a couple issues:
and I'm still getting some, is this that they have a 'CR' or several at
the start
I'm setting up a mail server on a virtual server
smtp banner is set to myhost.mydomain
reverse dns resolves to the data centre IP address
is that going to cause me problems in the future ?
-
mxtoolbox:
OK - 111.111.222.333 resolves to server.domain.tld
Warning - Reverse DNS does
On Sat, April 9, 2011 10:58 pm, Wietse Venema wrote:
is that going to cause me problems in the future ?
Wietse, thanks
Assuming that the Postfix machine is behind a NAT of some kind:
NO, the machine is main mail server with public IP
myhostname: use the name of the internal IP address
I'm trying to setup smtp auth with Dovecot's sasl, I'm getting this in the
log:
what does 'Anonymous TLS connection' mean:
is it as connection is set up prior to user authentication, is that what
it is ?
(or do I have a problem...?)
also, the 'certificate verification failed':
is it as I do
I have a small*1 Postfix server with virtual users/domains in MySQL on
same host
service is now being transferred to a new machine, with postfix on one
host, mysql on another host
I've set it up like so with 'proxy:mysql'*2 to the mysql machine :
seems to work OK, but I'm concerned about
ahem, I inadvertently (but successfully) deleted /etc/pam.d/smtp.postfix,
and, I'm trying to recreate it:
I'm getting 'generic failure' as below
how can I troubleshoot what am I missing ?
pam.d]# cat smtp.postfix
auth required pam_mysql.so user=postfix passwd=xxx host=127.0.0.1
db=postfix
On Wed, April 6, 2011 10:48 pm, Reinaldo de Carvalho wrote:
On Wed, Apr 6, 2011 at 9:41 AM, Voytek Eymont li...@sbt.net.au wrote:
Postix can't connect to saslauthd socket. If smtpd is in the jail the
default path is /var/spool/postfix/var/run/saslauthd/mux. Saslauthd daemon
must be started
On Wed, April 6, 2011 11:14 pm, Jerry wrote:
Output from postconf -n. Please do not send your main.cf file, or
500+ lines of postconf output.
Jerry,
thanks:
http://sbt.net.au/db/postfinger.txt
http://sbt.net.au/db/saslfinger_c.txt
http://sbt.net.au/db/saslfinger_s.txt
On Thu, March 31, 2011 12:35 am, Wietse Venema wrote:
what the proper (easiest?) way to migrate current setup to the new
server ?
1) Study the RELEASE_NOTES file and look for any incompatible
changes that may affect your configuration.
Wietse, thanks
this seems a slightly different
I have a mail server on Centos with Postfix 2.4.5 mysql smtp-auth
amavisd-new policyd postfixadmin 2.1 courier-imap,
runs pretty well since install
I need to transfer the mail server service to a new server running Ubuntu,
it came with Postfix 2.7.0
what the proper (easiest?) way to migrate
On Thu, March 17, 2011 4:14 pm, Bjørn Ruberg wrote:
Your own initial post should give you a hint:
I have postfix 2.4.5 with several virtual domains in mysql/postfixadmin
Bjørn,
thanks
hmmm, I thought disabling domain in postfixadmin should, well, disable it
apparently, it didn't, or perhaps
On Thu, March 17, 2011 12:28 am, Nikolaos Milas wrote:
On 16/3/2011 3:22 μμ, Voytek Eymont wrote:
I have postfix 2.4.5 with several virtual domains in mysql/postfixadmin
one of the hosted virtual domains moved off the mail server
If you have virtual aliases for that domain
On Thu, December 2, 2010 7:20 am, lst_ho...@kwsoft.de wrote:
They have corrected it, the infected source for download is
replaced, but no warning at all for the ones who already downloaded and now
using the trojaned version...
Not very encouraging to use Proftpd.
Andreas,
fwiw, I got this
On Fri, November 12, 2010 6:16 am, Carlos Mennens wrote:
On Thu, Nov 11, 2010 at 2:07 PM, Victor Duchovni
victor.ducho...@morganstanley.com wrote:
This would be no problem except I've never attempted this before and
just did some searching on the web for tutorials I can follow since I don't
On Tue, November 9, 2010 11:35 am, Larry Stone wrote:
On 11/8/10 5:07 PM, Voytek Eymont at li...@sbt.net.au wrote:
There are plenty of instructions out there; try searching for iphone
install certificate. But in short, e-mail the certificate to your iphone
and then double-click it just like
I was asked 'how to setup iphone with our postix smtp-auth self-issued
certificate server'
does anyone have any instructions for iphone that they would share ?
I don't have an iphone to explore, I borrowed an iphone, tried it myself,
it appears to be self-configuring, as after 2 or three tries,
On Tue, November 9, 2010 11:35 am, Larry Stone wrote:
There are plenty of instructions out there; try searching for iphone
install certificate. But in short, e-mail the certificate to your iphone
and then double-click it just like opening any other attachment. The
iPhone will then open an
On Wed, April 14, 2010 9:00 am, mouss wrote:
Voytek Eymont a écrit :
Apr 13 20:35:27 postfix/qmgr[3973]: 777DAB446E8:
from=s...@googlemail.com, size=7709303, nrcpt=13 (queue active)
so you're sending mail to yahoo with a google sender address? you must be
very optimistic...
anyway
On Wed, April 14, 2010 12:19 am, lst_ho...@kwsoft.de wrote:
Zitat von Voytek Eymont li...@sbt.net.au:
Sending mail with a invalid envelope from address is not a option
(anymore). Everyone how cares about reliable delivery must use a valid
mail-from, anything other is crap and will be treated
I just see a number of these entries:
Apr 13 20:45:37 postfix/smtp[31121]: D1F8DB4491F: to=d...@domain.com.au,
relay=mail4.barnet.com.au[202.83.178.125]:25, delay=54911,
delays=54902/0.04/5.4/3.9, dsn=4.1.7, status=deferred (host
mail4.barnet.com.au[202.83.178.125] said: 450 4.1.7
I seem to be having problems delivering emails to yahoo, how can I
troubleshoot this ?
mailq:
...
777DAB446E8 7709303 Fri Apr 9 12:15:32 a...@googlemail.com
(lost connection with e.mx.mail.yahoo.com[67.195.168.230] while sending
end of data -- message may be sent more than once)
I just noticed this in the logs, which might be from a valid sender to a
valid user on this server:
Apr 5 11:03:31 postfix/smtpd[31021]: NOQUEUE: reject: RCPT from
fep06.mfe.bur.connect.com.au[203.63.86.26]: 554 5.7.1
fep06.mfe.bur.connect.com.au[203.63.86.26]: Client host rejected: sender
On Tue, April 6, 2010 4:22 am, Noel Jones wrote:
Apr 5 11:03:31 postfix/smtpd[31021]: NOQUEUE: reject: RCPT from
fep06.mfe.bur.connect.com.au[203.63.86.26]: 554 5.7.1
fep06.mfe.bur.connect.com.au[203.63.86.26]: Client host rejected:
sender address does not match client hostname;
I have a virtual mail domain that as of recently started using their
parent organization email addresses, not on this server, rather than the
addresses on domain on this server.
I've set up a number of aliases to redirect emails to the desired new
addresses on a remote server, that seemed to work
I currently have in main.cf like:
message_size_limit = 1024
and
virtual_mailbox_limit = 1024
so, if I want to increase it, I need also increase virtual_mailbox_limit
to at least same as message_size_limit
can I just use message_size_limit = value, and, don't worry about
On Thu, April 1, 2010 1:31 am, Noel Jones wrote:
On 3/31/2010 6:37 AM, Voytek Eymont wrote:
no limit is usually a bad choice; unexpected things can happen.
Better choices include
- set virtual_mailbox_limit to some large value you don't ever
expect to exceed, maybe 10x ~ 100x
On Fri, March 26, 2010 9:51 am, /dev/rob0 wrote:
On Fri, Mar 26, 2010 at 08:26:33AM +1100, Voytek Eymont wrote:
so, if I was to create a mail user 'voytek+spam' in the database,
'+spam' mail would end up in voytek+spam mail user maildir ?
The user for virtual(8) must be the full address
On Fri, March 26, 2010 2:29 am, /dev/rob0 wrote:
Rob0,
Amavisd-new can also use a recipient_delimiter and change the
localpart user to user+spam. See amavisd-new documentation to learn how
to activate this feature.
Postfix virtual(8) can handle this differently by using a different
On Wed, March 24, 2010 5:32 am, Victor Duchovni wrote:
Disable SASL authentication for un-encrypted connections.
Don't confuse SASL authentication (username/password typicall to verify
submission access rights) with session encryption (prevent passive wiretap
of session).
SASL and SSL are
alternatively, use dnswl.org (see www.dnswl.org on how to use it with
postfix) just before DNSBL checks.
mouss, thanks
smtpd_recipient_restrictions =
...
check_sender_access hash:/etc/postfix/freemail_access,
check_recipient_access pcre:/etc/postfix/recipient_checks.pcre,
one of the blacklist I use it is ix.dnsbl.manitu.net
to my knowledge, it has been OK since I've set it up, with no known
complaints
what is the user's opinions on it's usefulness ?
just in the last two days one user had several valid emails rejected based
on NiX Spam bl
by the time I looked at
I have a user getting rejects from several valid senders based on
ix.dnsbl.manitu.net blacklist, like:
NOQUEUE: reject: RCPT from smtpout6.poczta.onet.pl[213.180.147.166]: 554
5.7.1 Service unavailable; Client host [213.180.147.166] blocked using
ix.dnsbl.manitu.net; Spam sent to the mailhost
I use Postconf's spamrep_byuser to generate daily, well, spam reports by
user,
that works very well, (thank you folks at Postconf)
however, I just got asked for spam rep 'how far back can you go?'
so, basically, I'd like to process all maillogs, around one month worth,
for a particular user.
On Wed, March 10, 2010 5:12 am, Jay G. Scott wrote:
i see the postqueue command, but i also have stuff that looks inside the
message for particular things i must stop going out. postqueue won't show
me that stuff. so, is there a way to pillage the queued files?
look for pfqueue, it might
I have Postfix with SMTP AUTH with self issued certificate, it all works
well (as long as I don't touch it..)
I have now allowed some users to use SMTP AUTH, but, some of their mail
then gets evaluated as 'spam' by amavisd/spamassasin scores, amongst
these, 'dynamic ip' type scores
am I
On Fri, March 5, 2010 11:29 am, mouss wrote:
Voytek Eymont a écrit :
there is no evidence in your config that auth'ed mail gets a different
ticket than other mail.
the recommended way is to enable submission (port 587) and configure
clients to use this port. This will be more and more
I have Postfix with SMTP AUTH with self issued certificate, all works well
when a remote Outlook or Thunderbird attempts to use it, it get's a
dialogue like;
'security certificate can not be verified'
what file(s) do I need to provide to remote mail clients to suppress the
warning ?
do I
I have Postfix with SMTP AUTH with self issued certificate, it all works
well (as long as I don't touch it..)
I have now allowed some users to use SMTP AUTH, but, some of their mail
then gets evaluated as 'spam' by amavisd/spamassasin scores, amongst
these, 'dynamic ip' type scores
am I
On Wed, August 26, 2009 5:49 am, ghe wrote:
I've done this by declaring my own internal domain names: slsware.dmz
and .lan in the 192.168 1918 IP block and adding them to mynetworks. Then I
just reject all mail from my .com domain by putting check_helo_access
hash:/etc/postfix/helo_checks
On Tue, May 19, 2009 6:41 am, Dan Horne wrote:
I'll see if I can make some time to build some 2.6 rpms, but am likely
to respond more if there are people who show an interest in these rpms I
build.
[DH] +1 for interest. I have begun building mail servers on multiple
VPS's using CentOS
I have a header check meant to discard '.com' executables as follows [1]:
however, undesired operation was just reported[2]:
is there a way to 'improve' the expression to only block file names ending
in .com, how ?
or is there a better solution ?
[1]# grep hc2 *
On Thu, February 26, 2009 10:31 am, LuKreme wrote:
First off, i think you want mime_header_checks
main.cf:
mime_header_checks = pcre:$config_directory/mime_headers.pcre
LuKreme, thanks.
ahem, what else might be worthwile to put into mime header check ?
single rule mime header check seems
On Sat, January 24, 2009 1:39 am, Noel Jones wrote:
reject_unknown_reverse_client_hostname reject_rbl_client zen.spamhaus.org
{a greylisting policy service}
Noel,
is that a good place to add reject_unknown_reverse_client_hostname ?
smtpd_recipient_restrictions =
permit_sasl_authenticated,
On Fri, October 3, 2008 11:36 pm, mouss wrote:
Voytek Eymont wrote:
rfci is not safe for smtp rejection. It is not intended for such use.
mouss, thanks
so, should be like this ?
smtpd_sender_restrictions = reject_rhsbl_sender dsn.rfc-ignorant.org
blocked using dul.dnsbl.sorbs.net (total
On Sat, October 4, 2008 1:03 am, Ralf Hildebrandt wrote:
That's STILL smtp rejection - he was thinking of using it from e.g.
SpamAssassin. But I personally think that dsn.rfc-ignorant.org is safe
for smtp rejection :)
thanks, Ralf
(after all, it was your suggestion from
I have installed a new Centos 5.2 server, with Centos's Postfix as a
default MTA;
I then built and installed a Postfix rpm using Simon Mudd's srpm as:
postfix-2.5.2-1.pcre.mysql.sasl2.rhel5.i386.rpm
but, I get these Selinux issues as per log entries below:
what's the best way of setting this
On Mon, August 11, 2008 11:50 am, Sahil Tandon wrote:
# mailq
-Queue ID- --Size-- Arrival Time -Sender/Recipient---
119B8B44871 2035 Tue Aug 5 12:56:53 [EMAIL PROTECTED]
(Host or domain name not found. Name service error for
name=meriden.nsw.edu.au type=MX: Host not found,
49 matches
Mail list logo