* Matt Hayes :
> ASA:
>
> config t
> no inspect smtp
Amen to that!
--
Ralf Hildebrandt
Geschäftsbereich IT | Abteilung Netzwerk
Charité - Universitätsmedizin Berlin
Campus Benjamin Franklin
Hindenburgdamm 30 | D-12203 Berlin
Tel. +49 30 450 570 155 | Fax: +49 30
;s not.
permit_sasl_authenticated returns OK in that case, and no other
restriction fires.
Maybe you have more restrictions?
--
Ralf Hildebrandt
Geschäftsbereich IT | Abteilung Netzwerk
Charité - Universitätsmedizin Berlin
Campus Benjamin Franklin
Hindenburgdamm 30 | D-12203 Berlin
Te
* "Stéphane MERLE" :
> Hi,
>
> My ISP (ovh) is complaining about my postfix servers doing wrong ARP
> demand, do you have any idea of what can cause this in my postfix
> configuration ?
I'd think that's more because of the OS or failover. Postfix is
s
d)
>
>
> I did a tcpdump to understand why I got this error and I found that one of
> the "RCPT TO:" command is cut in two packets.
> First packet finished by "RC" and second packet began by "PT TO:". And the
> server doesn't understand this comma
* poindessous...@foncia.fr :
> Yes, I think this is a cisco asa 5550, with a special filter which protects
> "smtp server".
>
> Do you think I should ask to disable it ?
Yes. It causes nothing but grief :)
--
Ralf Hildebrandt
Geschäftsbereich IT | Abteil
* Joe Wong :
> Hello,
>
> I am looking for a way to configure a 2nd postfix instance for
> handle mail bounce only. Is it possible?
2nd instance on the same machine?
--
Ralf Hildebrandt
Geschäftsbereich IT | Abteilung Netzwerk
Charité - Universitätsmedizin Berlin
Cam
have the idea of creating this 'bounce' postfix instance. Any thought?
Simply set the envelope sender to a domain/hostname which ends up on
the other host.
That's it.
--
Ralf Hildebrandt
Geschäftsbereich IT | Abteilung Netzwerk
Charité - Universitätsmedizin Berlin
Campus Benjam
uot;instead of retrying
them for days on end." aka "deferred!
--
Ralf Hildebrandt
Geschäftsbereich IT | Abteilung Netzwerk
Charité - Universitätsmedizin Berlin
Campus Benjamin Franklin
Hindenburgdamm 30 | D-12203 Berlin
Tel. +49 30 450 570 155 | Fax: +49 30 450 570 962
ralf.hildebra...@charite.de | http://www.charite.de
helo=
>
> "client host rejected" would require for the host to be in a
> "check_client_access" table, right?
Hostname or IP or net or domain, yes.
--
Ralf Hildebrandt
Geschäftsbereich IT | Abteilung Netzwerk
Charité - Universitätsmedizin Berlin
Campus Benjami
stfix does run, it does send mail in the clear.
> However, we need it to send via TLS. I am wondering if there is a line
> in main.cf that tells postfix to advertis/offer TLS authentication that
> is not set. Is there a command to ask postfix if TLS is running?
postconf -n
--
Ralf Hildeb
* Adrian P. van Bloois :
> Hi,
> Can I automagically attach a different disclaimer for each domain?
> if so, how? Are there different options?
Which program is appending the single disclaimer now?
--
Ralf Hildebrandt
Geschäftsbereich IT | Abteilung Netzwerk
Charité - Universitä
will arrive with the domain suffix A appended.
local_header_rewrite_clients =
--
Ralf Hildebrandt
Geschäftsbereich IT | Abteilung Netzwerk
Charité - Universitätsmedizin Berlin
Campus Benjamin Franklin
Hindenburgdamm 30 | D-12203 Berlin
Tel. +49 30 450 570 155 | Fax: +49 30 450 570
answered? It also affects me, so I'd like to know :)
--
Ralf Hildebrandt
Geschäftsbereich IT | Abteilung Netzwerk
Charité - Universitätsmedizin Berlin
Campus Benjamin Franklin
Hindenburgdamm 30 | D-12203 Berlin
Tel. +49 30 450 570 155 | Fax: +49 30 450 570 962
ralf.hildebr
* Josh Cason :
> As most of you guys know. I use mailscanner. I would like
> recomendations of what else to use. I prefer a all in one package
> like what mailscanner does. It also utilizes clamav and spamassion.
So does amavisd-new
--
Ralf Hildebrandt
Geschäftsbereich IT |
tld
which is the default, BTW.
--
Ralf Hildebrandt
Geschäftsbereich IT | Abteilung Netzwerk
Charité - Universitätsmedizin Berlin
Campus Benjamin Franklin
Hindenburgdamm 30 | D-12203 Berlin
Tel. +49 30 450 570 155 | Fax: +49 30 450 570 962
ralf.hildebra...@charite.de | http://www.charite.de
disclaimers, either directly (see
my book) or from within amavisd-new
--
Ralf Hildebrandt
Geschäftsbereich IT | Abteilung Netzwerk
Charité - Universitätsmedizin Berlin
Campus Benjamin Franklin
Hindenburgdamm 30 | D-12203 Berlin
Tel. +49 30 450 570 155 | Fax: +49 30 450 570 962
r
* Aravind Divakaran :
> $SENDMAIL "$@" http://www.charite.de
.
Port 25 outgoing will be blocked by most ISPs, but let's assume that's
not done by all IPS. It would work with the submission port!
--
Ralf Hildebrandt
Geschäftsbereich IT | Abteilung Netzwerk
Charité - Universitätsmedizin Berlin
Campus Benjamin Franklin
Hindenburgdamm 30 | D-122
x27;t
> require a botnet.
It brings it's own botnet :)
--
Ralf Hildebrandt
Geschäftsbereich IT | Abteilung Netzwerk
Charité - Universitätsmedizin Berlin
Campus Benjamin Franklin
Hindenburgdamm 30 | D-12203 Berlin
Tel. +49 30 450 570 155 | Fax: +49 30 450 570 962
ralf.hild
* Rod Dorman :
> Have we gone far enough off the topic of Postfix yet for this thread to
> be declared dead?
Yes, especially since this was about SSL attacks.
--
Ralf Hildebrandt
Geschäftsbereich IT | Abteilung Netzwerk
Charité - Universitätsmedizin Berlin
Campus Benjamin Fr
queue implementation this is guaranteed not to
> cause a file name collision as long as the file in the HOLD queue keeps
> the same (device, inode) numbers.
That's ok.
--
Ralf Hildebrandt
Geschäftsbereich IT | Abteilung Netzwerk
Charité - Universitätsmedizin Berlin
Campus Benj
h skips any filenames that are not alphanumeric (with '_').
>
> So provided rsync's temp names include some other chars (I think
> it uses ".tempname" to keep temp files "out of view" while they
> are being created) there is no need for the intermedia
. This is unacceptable. chose your camp...
>
> I know we're getting off-topic, but this has bothered me in the past.
> What is the alternative here? As far as I know, there are no
> "correct" reserved domains. Is one bad choice worse than another?
.invalid
--
Ral
:/usr/local/etc/postfix/postfix-dnswl-permit,*
cidr:/usr/local/etc/postfix/postfix-dnswl-permit
> server# grep -C 5 '74.125.82.180' /usr/local/etc/postfix/postfix-permit
/usr/local/etc/postfix/postfix-permit
--
Ralf Hildebrandt
Geschäftsbereich IT | Abteilung Netzwerk
Charité
e headers may also be inserted by other systems.
--
Ralf Hildebrandt
Geschäftsbereich IT | Abteilung Netzwerk
Charité - Universitätsmedizin Berlin
Campus Benjamin Franklin
Hindenburgdamm 30 | D-12203 Berlin
Tel. +49 30 450 570 155 | Fax: +49 30 450 570 962
ralf.hildebra...@charite.de | http://www.charite.de
is is SUPPOSED to throw away Received: and Message-Id: Headers
containing "in".
Of course it's utterly suboptimal and probably even incorrectly
implemented.
> ritten to the message, what use does this have? Strip any
> non-internal headers for privacy, perhaps?
Yes. Lo
> "smtpd_sender_restrictions" indicate FROM, "smtpd_recipient_restrictions"
> indicate RCPT, and so forth.
Yes, set smtpd_delay_reject = no
--
Ralf Hildebrandt
Geschäftsbereich IT | Abteilung Netzwerk
Charité - Universitätsmedizin Berlin
Campus Benjamin
caused the rejection at
an earlier stage.
--
Ralf Hildebrandt
Geschäftsbereich IT | Abteilung Netzwerk
Charité - Universitätsmedizin Berlin
Campus Benjamin Franklin
Hindenburgdamm 30 | D-12203 Berlin
Tel. +49 30 450 570 155 | Fax: +49 30 450 570 962
ralf.hildebra...@charite.de | http://www.charite.de
log and play through the
restrictions in my head (does it come from mynetwork? no! Next
restriction etc.)
--
Ralf Hildebrandt
Geschäftsbereich IT | Abteilung Netzwerk
Charité - Universitätsmedizin Berlin
Campus Benjamin Franklin
Hindenburgdamm 30 | D-12203 Berlin
Tel. +49 30 450 570 155
certain log format
> >which, once learned, will give you a pretty good idea about the
> >rule that caused the rejection. You still have to look up which
> >restrictions list contains that rule, though.
Best and only answer, really
--
Ralf Hildebrandt
Gesc
* damian lee :
> Thank you for your answer Sahil.
>
> In fact I don't fully understand the problem.
> Do you mean I have to have a "*static* libdb library" inorder to compile my
> Postfix in static linking?
Of course. Otherwise this lib would have non-static depen
int it may not be worth the effort.
Yes, this only works for check_*_access. Stuff like e.g.
reject_unknown_sender_domain have predefined rejection messages, so...
--
Ralf Hildebrandt
Geschäftsbereich IT | Abteilung Netzwerk
Charité - Universitätsmedizin Berlin
Campus Benjamin Franklin
Hinden
a public DNS server.
Which connection?
> I do not use OpenDNS in my /etc/resolv.conf file (I have 2 other
> nameservers listed)
Local nameservers or remote nameservers?
--
Ralf Hildebrandt
Geschäftsbereich IT | Abteilung Netzwerk
Charité - Universitätsmedizin Berlin
Campus
ltipart/report;
> boundary="_=_NextPart_001_01C9C7DF.11F1ACA6";
> report-type=disposition-notification
>
> But how to specify this in postfix ? And if it is not necessary, is
> there a way to say "if this header is present then check the body" ?
via head
inked version of libdb doesn't work.
>
> Any suggestions?
Do you need libdb? Maybe just using CBD will suffice?
--
Ralf Hildebrandt
Geschäftsbereich IT | Abteilung Netzwerk
Charité - Universitätsmedizin Berlin
Campus Benjamin Franklin
Hindenburgdamm 30 | D-12203 Berlin
Tel. +
now?
50.000/10min = 5.000/min = 83/s = that's a lot
50.000/50min = 10.000/min = 186/s = that's even more
--
Ralf Hildebrandt
Geschäftsbereich IT | Abteilung Netzwerk
Charité - Universitätsmedizin Berlin
Campus Benjamin Franklin
Hindenburgdamm 30 | D-12203 Berlin
Tel. +49 30 450 570
gt; or it is smart and will use previous lookup result to compare with next
> address?
Indeed. And that's actually documented
--
Ralf Hildebrandt
Geschäftsbereich IT | Abteilung Netzwerk
Charité - Universitätsmedizin Berlin
Campus Benjamin Franklin
Hindenburgdamm 30 | D-12203 Ber
* Ralf Hildebrandt :
> Indeed. And that's actually documented
http://www.postfix.org/STRESS_README.html
Although the above example shows three RBL lookups (lines 4-6),
Postfix will only do a single DNS query, so it does not affect the
performance.
--
Ralf Hildebrandt
Geschäftsbe
all an issue , because postfix gives it to further
> relay boxes which are under our control again.
Why not inject to the further relay boxes?
> Do I need to increase the hardware
It could be :)
--
Ralf Hildebrandt
Geschäftsbereich IT | Abteilung Netzwerk
Charité - Universi
13 15:41:20 p2aa-app046 postfix/master[4555]: warning:
> /usr/lib/postfix/smtp: bad command startup -- throttling
And Prior to that?
--
Ralf Hildebrandt
Geschäftsbereich IT | Abteilung Netzwerk
Charité - Universitätsmedizin Berlin
Campus Benjamin Franklin
Hindenburgdamm 30 | D-12203 Berli
t; /etc/postfix/virtual
Fix that. Maybe there was a change in BerkeleyDB versions...
--
Ralf Hildebrandt
Geschäftsbereich IT | Abteilung Netzwerk
Charité - Universitätsmedizin Berlin
Campus Benjamin Franklin
Hindenburgdamm 30 | D-12203 Berlin
Tel. +49 30 450 570 155 | Fax: +49
* J4 :
> On 08/13/2010 04:24 PM, Ralf Hildebrandt wrote:
> > * J4 :
> >
> >
> >> Aug 13 16:20:07 pp24-app046 postfix/cleanup[6184]: warning: database
> >> /etc/postfix/virtual.db is older than source file /etc/postfix/virtual
> >> Aug 13 1
* Alex :
> Hi,
>
> I'm running an older version of postfix and a 2.6.35 Linux kernel, and
> recently started seeing these messages:
>
> Aug 14 19:52:01 smtp01 postfix/postsuper[2634]: fatal: setuid(103):
> Resource temporarily unavailable
Anything in dmesg? app
ence?
I'd like to know that as well. There used to be the "day old bread" BL.
>
--
Ralf Hildebrandt
Geschäftsbereich IT | Abteilung Netzwerk
Charité - Universitätsmedizin Berlin
Campus Benjamin Franklin
Hindenburgdamm 30 | D-12203 Berlin
Tel. +49 30 450 570 155 | Fax
r existence?
http://www.mail-archive.com/us...@spamassassin.apache.org/msg57008.html
Dunno if Marc is still active
--
Ralf Hildebrandt
Geschäftsbereich IT | Abteilung Netzwerk
Charité - Universitätsmedizin Berlin
Campus Benjamin Franklin
Hindenburgdamm 30 | D-12203 Berlin
Tel. +49 30 450 570
nt return codes.
reject_dnsbl_client hostkarma.junkemailfilter.com=127.0.0.6
should work for that particular purpose.
--
Ralf Hildebrandt
Geschäftsbereich IT | Abteilung Netzwerk
Charité - Universitätsmedizin Berlin
Campus Benjamin Franklin
Hindenburgdamm 30 | D-12203 Berlin
Tel. +49 30 450 570 155 | Fa
Do we want to allow mixing DNSWLs and DNSBLs in one list?
Probably, with positiv and negative weights?
--
Ralf Hildebrandt
Geschäftsbereich IT | Abteilung Netzwerk
Charité - Universitätsmedizin Berlin
Campus Benjamin Franklin
Hindenburgdamm 30 | D-12203 Berlin
Tel. +49 30 450 570 155 | Fax:
* Daniel Prieto :
> So what is the alternative to vacation for Postfix?
Huh? Why alternative? The "normal" vacation works just fine.
Just read the manpage, there are options to answer to every mail etc.
--
Ralf Hildebrandt
Geschäftsbereich IT | Abteilung Netzw
d (in reply to RCPT TO command)
$ host -t mx redmijncomputer.nl
redmijncomputer.nl mail is handled by 10 95.97.73.154.
It should be mail.redmijncomputer.nl instead of 95.97.73.154
--
Ralf Hildebrandt
Geschäftsbereich IT | Abteilung Netzwerk
Charité - Universitätsmedizin Berlin
Campus Benja
* Aniruddha :
> On Thu, Sep 2, 2010 at 9:58 AM, Ralf Hildebrandt
> wrote:
>
> > $ host -t mx redmijncomputer.nl
> > redmijncomputer.nl mail is handled by 10 95.97.73.154.
> >
> > It should be mail.redmijncomputer.nl instead of 95.97.73.154
> > --
> T
Beat the DNS admin for donbass.com with a large stick.
--
Ralf Hildebrandt
Geschäftsbereich IT | Abteilung Netzwerk
Charité - Universitätsmedizin Berlin
Campus Benjamin Franklin
Hindenburgdamm 30 | D-12203 Berlin
Tel. +49 30 450 570 155 | Fax: +49 30 450 570 962
ralf.hildebra...@charite.de | http://www.charite.de
file or directory
--
Ralf Hildebrandt
Geschäftsbereich IT | Abteilung Netzwerk
Charité - Universitätsmedizin Berlin
Campus Benjamin Franklin
Hindenburgdamm 30 | D-12203 Berlin
Tel. +49 30 450 570 155 | Fax: +49 30 450 570 962
ralf.hildebra...@charite.de | http://www.charite.de
ail postfix/postscreen[25263]: close database
/var/lib/postfix/ps_cache.db: No such file or directory
Sep 4 14:50:21 mail postfix/postscreen[27086]: close database
/var/lib/postfix/ps_cache.db: No such file or directory
--
Ralf Hildebrandt
Geschäftsbereich IT | Abteilung Netzwer
* Wietse Venema :
> > Sep 1 05:14:38 mail postfix/postscreen[17745]: close database
> > /var/lib/postfix/ps_cache.db: No such file or directory
>
> Perhaps you notice that this is NOT LOGGED AS A WARNING.
Oh, well - Minor detail :)
--
Ralf Hildebrandt
Geschäftsbere
> Not reporting the anomaly at all may mask real problems in the future.
Hm, so isn't that a bug in BerkeleyDB then - and should be reported?
--
Ralf Hildebrandt
Geschäftsbereich IT | Abteilung Netzwerk
Charité - Universitätsmedizin Berlin
Campus Benjamin Franklin
Hinden
Ah! I'm reading "Sacred games" and they talk about Lakhs of Rupees all
the time. It's 100k. Ah!
--
Ralf Hildebrandt
Geschäftsbereich IT | Abteilung Netzwerk
Charité - Universitätsmedizin Berlin
Campus Benjamin Franklin
Hindenburgdamm 30 | D-12203 Berlin
* Claudio Prono :
> Ok, this is right, but is also an information leak... with rcpt to i can
> enumerate the local users of the system, and for me this is not too
> good... No way to fix this?
Turn off SMTP :)
--
Ralf Hildebrandt
Geschäftsbereich IT | Abteilung Netzwerk
at most once per minute. Any other (low-effort)
> solution ideas would be appreciated as well.
--
Ralf Hildebrandt
Geschäftsbereich IT | Abteilung Netzwerk
Charité - Universitätsmedizin Berlin
Campus Benjamin Franklin
Hindenburgdamm 30 | D-12203 Berlin
Tel. +49 30 450 570 155
* dky hax :
> Hello guys,
> I have to configure postfix as mail server locally. After setting up I tried
> to send mail via telnet only that are not received.
The log please?
--
Ralf Hildebrandt
Geschäftsbereich IT | Abteilung Netzwerk
Charité - Universitätsmedizin Berlin
Campus
se: disconnect private/tlsmgr stream
>
> mail postfix/smtpd[16253]: rewrite stream disconnect
> mail postfix/smtpd[16253]: proxymap stream disconnect
> mail postfix/smtpd[16253]: idle timeout -- exiting
--
Ralf Hildebrandt
Geschäftsbereich IT | Abteilung Netzwerk
Charité - Univers
* dky hax :
> Ok, but the mail isn't arrived.
>
> t...@mail:~$ mail
> No mail for test
mail doesn't read maildirs
--
Ralf Hildebrandt
Geschäftsbereich IT | Abteilung Netzwerk
Charité - Universitätsmedizin Berlin
Campus Benjamin Franklin
Hindenburgdamm 30 | D-1220
nvalid_ reject_non_fqdn_ reject_non_fqdn_sender,
^^^^
Garbage!
> unknown_local_recipient_reject_code = 450
550, not 450
--
Ralf Hildebrandt
Geschäftsbereich IT | Abteilung Netzwerk
Charité - Universitätsmedizin Berlin
Campus Benjamin Franklin
Hinden
* Matt Hayes :
> Thanks for the update. I'm working on implementing this now,
> however, I'm a bit confused with the postscreen_dnsbl_reply_map
> option.
Why? It's just for mapping RBL names. Unless you have a paid
subscription with spamhaus.org, you don't n
* CT :
> General postfix question regarding MX lookups..
>
> Does Postfix do an MX lookup on "inbound mail" as part of
> "spam" prevention or some other check.. ?
How would that help? What exactly are you trying to achieve?
--
Ralf Hildebrandt
Geschäft
e_client_hostname
oder (more harsh)
reject_unknown_client_hostname
> so the question regarding "inbound MX lookups" came up so I figured I
> would ask..
A MX lookup is performed to check if the sender domain exists; it can
be activated using:
reject_unknown_sender_domain
--
Ralf
>
> Who is that ?
Dovecot LMTPd
> > said: 550 5.1.1 User doesn't exist:
> > ad4f0.5040...@roessner-net.com (in reply to RCPT TO command))
>
> It isn't postfix - postfix is SENDING the message there.
Yes, that's exactly the problem. Why is postfi
;s the problem. Why?
> You're apparently relaying to a content filter before doing recipient
> address verification.
As you can see from his postconf -n, he IS doing recipient address
verification
--
Ralf Hildebrandt
Geschäftsbereich IT | Abteilung Netzwerk
Charité - Universitätsme
> Testing on command line:
>
> postmap -q "roessner-net.com" ldap:/etc/postfix/ldap/virtual_domains.cf
> virtualDomains
Aha. According to this it's in virtual_mailbox_domains!
That's the error
For your setup I'd say:
* make roessner-net.com a relay_do
rejected: User unknown in virtual mailbox table;
> from= to= proto=SMTP
> helo=
Well, the address is not valid :)
"User unknown in virtual mailbox table"
Create the addressr listadipr...@sms.unimo.it
> virtual_mailbox_maps = hash:/etc/postfix/sql/virtual_mailbox_maps
in this ma
able email receipt?
E.g., can it be sure to fsync the mbox/Maildir file and/or directory
before it acknowledges successful receipt of an email?"
THAT is not possible, since the process which is ACCEPTING the mail
(smtpd) is NOT the same process that is writing to a local mailbox
(local), due du
les in main.cf that are deprecated
> from the older version to the newer version. Is there a way that I
> can easily locate these changes to the variables?
That's hard :)
--
Ralf Hildebrandt
Geschäftsbereich IT | Abteilung Netzwerk
Charité - Universitätsmedizin Berlin
Campus Ben
ter.
Please show the exact error messages from your log!
--
Ralf Hildebrandt
Geschäftsbereich IT | Abteilung Netzwerk
Charité - Universitätsmedizin Berlin
Campus Benjamin Franklin
Hindenburgdamm 30 | D-12203 Berlin
Tel. +49 30 450 570 155 | Fax: +49 30 450 570 962
ralf.hildebra..
415340 exceeds size limit 5242880 of
> server 127.0.0.1
What's running on 127.0.0.1? A virus scanner?
--
Ralf Hildebrandt
Geschäftsbereich IT | Abteilung Netzwerk
Charité - Universitätsmedizin Berlin
Campus Benjamin Franklin
Hindenburgdamm 30 | D-12203 Berlin
Tel. +49 30 450 570 155
ehaviour. Is this your server sending
out mail someplace else or your server receiving?
--
Ralf Hildebrandt
Geschäftsbereich IT | Abteilung Netzwerk
Charité - Universitätsmedizin Berlin
Campus Benjamin Franklin
Hindenburgdamm 30 | D-12203 Berlin
Tel. +49 30 450 570 155 | Fax: +49 30
5.1.2 You meant hotmail.com, not
homail.com
--
Ralf Hildebrandt
Geschäftsbereich IT | Abteilung Netzwerk
Charité - Universitätsmedizin Berlin
Campus Benjamin Franklin
Hindenburgdamm 30 | D-12203 Berlin
Tel. +49 30 450 570 155 | Fax: +49 30 450 570 962
ralf.hildebra...@charite.de | http://www.charite.de
e postmaster (me) get notified, if
> new mail is on hold?
Use a script to parse your log. E.g. logcheck
--
Ralf Hildebrandt
Geschäftsbereich IT | Abteilung Netzwerk
Charité - Universitätsmedizin Berlin
Campus Benjamin Franklin
Hindenburgdamm 30 | D-12203 Berlin
Tel. +49 30 450 570 155 |
in my case) gets disconnected
immediately. The verification probes must adhere to the SMTP protocol,
otherwise they're worthless because they're generating false negatives."
I have no doubt that the error is NOT in Postfix, but what exactly
does the log excerpt mean? Which prot
stfix/smtpd[10563]: disconnect from
mail.EMBL-Hamburg.DE[192.109.31.12]
which seems to back our both assumptions.
--
Ralf Hildebrandt
Geschäftsbereich IT | Abteilung Netzwerk
Charité - Universitätsmedizin Berlin
Campus Benjamin Franklin
Hindenburgdamm 30 | D-12203 Berlin
Tel. +49 30 450 5
* Len Conrad :
> I've used pregreet on some very high volume MX for months, and had one FP.
I had these two (within one year), both with sendmails with (presumably!)
the same (?) milter.
--
Ralf Hildebrandt
Geschäftsbereich IT | Abteilung Netzwerk
Charité - Universitätsmedizi
* Ralf Hildebrandt :
> 192.109.31.12 is running:
> 220 mail.EMBL-Hamburg.DE ESMTP Sendmail 8.13.8/8.13.8/Debian-2; Thu, 30 Sep
> 2010 16:06:22 +0200; (No UCE/UBE) logging access from:
> mail.charite.de(OK)-mail.charite.de [141.42.202.200]
I found another one:
220 klx11.klinikum-amb
* jason hirsh :
> I am doing an installation on a new FreeBSD 8.1 box and it fail with
>
>
> postfix: warning: valid_hostname: invalid character 32(decimal):
> my.domain-server.com
remove the trailing or leading space
from "my.domain-server.com " or " m
* Tom Kinghorn :
> Thats 1 slap for me for missing the //'s
Well, at least you got the rest of the syntax right.
:)
--
Ralf Hildebrandt
Geschäftsbereich IT | Abteilung Netzwerk
Charité - Universitätsmedizin Berlin
Campus Benjamin Franklin
Hindenburgdamm 30 | D-12203 Berlin
mDISCARD
/^westcoast[0-9]...@gmail\.com$/ DISCARD
or
/^westcoast[0-9]...@gmail\.com$/ REJECT
You're lacking the //
--
Ralf Hildebrandt
Geschäftsbereich IT | Abteilung Netzwerk
Charité - Universitätsmedizin Berlin
Campus Benjamin Franklin
Hindenburgdamm 30 | D-12203 Berlin
YOUR IP ? That's highly unlikely, to the point of unbelievability.
I've seen those as well; not from within my networks, but yes. I've
seen them!
--
Ralf Hildebrandt
Geschäftsbereich IT | Abteilung Netzwerk
Charité - Universitätsmedizin Berlin
Campus Benjamin Franklin
Hinde
ur code, it's really hard to tell.
Personally, I'd debug by using alway_bcc_maps to a simple mailbox and
examine the mails in detail.
--
Ralf Hildebrandt
Geschäftsbereich IT | Abteilung Netzwerk
Charité - Universitätsmedizin Berlin
Campus Benjamin Franklin
Hindenburgdamm 3
orks, reject_unauth_destination,
> check_policy_service inet:127.0.0.1:10031
Show "postconf -n" output and your master.cf!
--
Ralf Hildebrandt
Geschäftsbereich IT | Abteilung Netzwerk
Charité - Universitätsmedizin Berlin
Campus Benjamin Franklin
Hindenburgdamm 30 | D-12203 Berlin
.168.0.0/16, 172.16.0.0/12, 127.0.0.0/8 to ever reach
check_policy_service inet:127.0.0.1:10031,
--
Ralf Hildebrandt
Geschäftsbereich IT | Abteilung Netzwerk
Charité - Universitätsmedizin Berlin
Campus Benjamin Franklin
Hindenburgdamm 30 | D-12203 Berlin
Tel. +49 30 450 570 155 | Fax: +49 30 4
exec/postfix/postscreen pid 9903 killed by signal 11
--
Ralf Hildebrandt
Geschäftsbereich IT | Abteilung Netzwerk
Charité - Universitätsmedizin Berlin
Campus Benjamin Franklin
Hindenburgdamm 30 | D-12203 Berlin
Tel. +49 30 450 570 155 | Fax: +49 30 450 570 962
ralf.hildebra...@charite.de | http://www.charite.de
* Vernon A. Fort :
> Thanks Wietse - installed and running.
Same here.
--
Ralf Hildebrandt
Geschäftsbereich IT | Abteilung Netzwerk
Charité - Universitätsmedizin Berlin
Campus Benjamin Franklin
Hindenburgdamm 30 | D-12203 Berlin
Tel. +49 30 450 570 155 | Fax: +49 30 450 570
s no new cur tmp
exit 1
fi
find cur new tmp -type f | xargs --replace /usr/local/scripts/send_mail $1 {}
/usr/local/scripts/send_mail
#!/bin/sh
/usr/local/sbin/mini_sendmail -syour.mail.host -p25 -fnob...@charite.de $1 < $2
&& rm -f $2
--
Ralf Hildebrandt
ersion)
Lose that, use the default
> smtpd_recipient_restrictions = permit_sasl_authenticated,
> permit_mynetworks, reject_unauth_destination
OK
--
Ralf Hildebrandt
Geschäftsbereich IT | Abteilung Netzwerk
Charité - Universitätsmedizin Berlin
Campus Benjamin Franklin
Hindenburgdamm 3
ails, period.
That's probably the simplest solution :)
--
Ralf Hildebrandt
Geschäftsbereich IT | Abteilung Netzwerk
Charité - Universitätsmedizin Berlin
Campus Benjamin Franklin
Hindenburgdamm 30 | D-12203 Berlin
Tel. +49 30 450 570 155 | Fax: +49 30 450 570 962
ralf.hildebra...@charite.de | http://www.charite.de
dress.
> This internal address will only be used to 'suck-up' the bounces of
> forwarded messages.
Interesting idea!
--
Ralf Hildebrandt
Geschäftsbereich IT | Abteilung Netzwerk
Charité - Universitätsmedizin Berlin
Campus Benjamin Franklin
Hindenburgdamm 30 | D-12203
y 1st ramble...
Ah, maybe they're looking at all the headers, which is really stupid!
--
Ralf Hildebrandt
Geschäftsbereich IT | Abteilung Netzwerk
Charité - Universitätsmedizin Berlin
Campus Benjamin Franklin
Hindenburgdamm 30 | D-12203 Berlin
Tel. +49 30 450 570 155 | Fax: +49 30 450 570 962
ralf.hildebra...@charite.de | http://www.charite.de
fine.
So do we.
> Can I ask what the normal procedure is for mail? If the latter IP is
> listed on a PBL but the last received IP is not, does it then allow?
> Does Postfix only look at the the most recent received client IP for
> RBL checks and thats all?
Of course. Everything else c
auth_destination,onList,
> smtpd_tls_ask_ccert = yes
...
See? You produced garbage. SOmething is wrong in either the line
setgid_group = postdrop
or someplace else.
--
Ralf Hildebrandt
Geschäftsbereich IT | Abteilung Netzwerk
Charité - Universitätsmedizin Berlin
Campus Benjamin Franklin
Hindenburgdamm
> relay_recipient_maps = proxy:pgsql:/usr/local/etc/postfix/relayaliasmap
What's in here?
> virtual_alias_maps = proxy:pgsql:/usr/local/etc/postfix/aliasmap
> virtual_mailbox_domains = proxy:pgsql:/usr/local/etc/postfix/domainmap
What's in here?
--
Ralf Hildebra
* Martin Kruse Jensen :
> Den 28-10-2010 10:36, Ralf Hildebrandt skrev:
> >* Martin Kruse Jensen:
> >>Hi.
> >>
> >>I'm having quite some trouble trying to prevent backscatter on my
> >>postfix server. Mail queue is filled with undeliver
dk is being accepted...
In which map is grefta.dk listed?
--
Ralf Hildebrandt
Geschäftsbereich IT | Abteilung Netzwerk
Charité - Universitätsmedizin Berlin
Campus Benjamin Franklin
Hindenburgdamm 30 | D-12203 Berlin
Tel. +49 30 450 570 155 | Fax: +49 30 450 570 962
ralf.hildebra...@charite.de | http://www.charite.de
I want to duplicate a existing postfix instance (master.cf / main.cf /
all maps), all I want to change is the queue_directory and no smtpd
should be listening.
What's the easiest way to do this?
--
Ralf Hildebrandt
Geschäftsbereich IT | Abteilung Netzwerk
Charité - Universitätsme
401 - 500 of 1381 matches
Mail list logo