-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 On 4/18/2015 1:31 PM, Krzs wrote: > > > On 18/04/2015 18:36, Alex JOST wrote: >> Am 18.04.2015 um 16:35 schrieb Krzs: > >> To me it looks as if everything is working as it should. >> This might simply be a Thunderbird misconfiguration. > > > By thunderbird and connection security SSL/TLS i get: > >> www postfix/smtpd[11453]: warning: hostname anon.riseup.net >> does not resolve to address 199.58.81.144: Name or service >> not known www postfix/smtpd[11453]: connect from >> unknown[199.58.81.144] www postfix/smtpd[11453]: lost >> connection after UNKNOWN from
The "lost connection after UNKNOWN" is because your thunderbird is using wrappermode TLS, commonly used on port 465. You need to set tbird for "STARTTLS". > > There is a dns issue Yes, but that isn't the problem. > to me my actual postconf -n is: Unreadable, I'm not even going to try. > >> alias_database = hash:/etc/aliases alias_maps = >> hash:/etc/aliases append_dot_mydomain = no biff = no >> broken_sasl_auth_clients = yes config_directory = >> /etc/postfix delay_warning_time = 4h disable_dns_lookups = no >> disable_vrfy_command = yes >> dovecot_destination_recipient_limit = 1 inet_interfaces = all >> inet_protocols = all mailbox_size_limit = 0 mydestination = >> localhost.localdomain, localhost mydomain = frozenstar.info > > By mutt which has in its own conf: > >> set ssl_force_tls = yes set ssl_starttls = yes > > i get relay access denied and postfix logs say: > >> Apr 18 20:16:48 www postfix/smtpd[23597]: warning: hostname >> anon.riseup.net does not resolve to address 199.58.81.144: >> Name or service not known Apr 18 20:16:48 www >> postfix/smtpd[23597]: connect from unknown[199.58.81.144] Apr >> 18 20:16:50 www postfix/smtpd[23597]: Anonymous TLS >> connection established from unknown[199.58.81.144]: TLSv1.2 >> with cipher DHE-RSA-AES128-SHA (128/128 bits) Apr 18 20:16:51 >> www dovecot: auth-worker(23645): Good, TLS connection to postfix works when the client is configured for STARTTLS. >> mysql(127.0.0.1): Connected to database mailserver Apr 18 >> 20:16:52 www postfix/smtpd[23597]: NOQUEUE: reject: RCPT >> from unknown[199.58.81.144]: 554 5.7.1 >> <gabriele[at]riseup.net>: Relay access denied; >> from=<admin[at]frozenstar.info> But the client never sent an AUTH command to postfix; if it had, it would be logged. Relay access is denied because the client did not AUTH. >> to=<gabriele[at]riseup.net> proto=ESMTP >> helo=<xkrooked.frozenstar.tld> Apr 18 20:16:52 www >> postfix/smtpd[23597]: lost connection after RCPT from >> unknown[199.58.81.144] Apr 18 20:16:52 www >> postfix/smtpd[23597]: disconnect from unknown[199.58.81.144] > > Claws mail client logs say: Unreadable, but this is shorter, so I'll try: > >> [20:25:22] SMTP< 220 smtp.frozenstar.info ESMTP Postfix >> [20:25:22] ESMTP> EHLO localhost [20:25:23] ESMTP< >> 250-smtp.frozenstar.info [20:25:23] ESMTP< 250-PIPELINING >> [20:25:23] ESMTP< 250-SIZE 10240000 [20:25:23] ESMTP< >> 250-ETRN [20:25:23] ESMTP< 250-STARTTLS [20:25:23] ESMTP< >> 250-ENHANCEDSTATUSCODES [20:25:23] ESMTP< 250-8BITMIME >> [20:25:23] ESMTP< 250 DSN [20:25:23] ESMTP> STARTTLS >> [20:25:23] ESMTP< 220 2.0.0 Ready to start TLS [20:25:27] >> ESMTP> STARTTLS issued, TLS connection established. >> EHLO localhost [20:25:27] ESMTP< 250-smtp.frozenstar.info >> [20:25:27] ESMTP< 250-PIPELINING [20:25:27] ESMTP< 250-SIZE >> 10240000 [20:25:27] ESMTP< 250-ETRN [20:25:27] ESMTP< >> 250-AUTH PLAIN LOGIN [20:25:27] ESMTP< 250-AUTH=PLAIN LOGIN >> [20:25:27] ESMTP< 250-ENHANCEDSTATUSCODES [20:25:27] ESMTP< >> 250-8BITMIME [20:25:27] ESMTP< 250 DSN [20:25:27] ESMTP> AUTH >> LOGIN [20:25:28] ESMTP< 334 VXNlcm5hbWU6 [20:25:28] ESMTP> >> [USERID] [20:25:28] ESMTP< 334 UGFzc3dvcmQ6 [20:25:28] ESMTP> >> [PASSWORD] [20:25:28] ESMTP< 235 2.7.0 Authentication >> successful [20:25:28] ESMTP> MAIL This time apparently the AUTH worked. Postfix would have logged a similar auth successful line. >> FROM:<admin[at]frozenstar.info> SIZE=365 [20:25:28] SMTP< 250 >> 2.1.0 Ok [20:25:28] SMTP> RCPT TO:<gabriele[at]riseup.net> >> [20:25:29] SMTP< 554 5.7.1 <gabriele[at]riseup.net>: Relay >> access denied But relay is still denied. Probably because you forgot to add "permit_sasl_authenticated" to your postfix restrictions, or added it in the wrong place. Posting a readable "postconf -n" will probably help. > > To me is defenitly a dns issue No, nothing to do with DNS. > i have commented out security restrictions in postfix that's > how i explain the "relay access denied" Ah, and that's why you get relay access denied. > > Regards > -- Noel Jones -----BEGIN PGP SIGNATURE----- Version: GnuPG v2 iQEcBAEBCAAGBQJVMq4kAAoJEJGRUHb5Oh6gOkoH/i/8NchROmoCl1AVQxs9MSCn d2jozaQ2JyxGcW4it+NK8P3Ube7VTIr/Su/vX5LjqL7AA0PQlYaLqYFMZLWnqlgy 84LbsahBlTnB5Vt5QRSvSm4eZrdqkHuf6U//myBfZek3FjjgLQLsUx0lKd4MHX5m Gx7LZimcd0EP9Q+RUyyhk5T5Uce1hP2G3w8w7N8ln4yQF+WxfBTvx8+Z8lk7ErKl 69Ze0NbfwbI3OYANH74bmrIlNDpWmqCLyE4OyxuCLLtePfJyH7bS4keWNm81Jc5O AcwsDb7mHqai0PolG/bSR5X4XbTwG0P2HjqxuPtY2PokB4me1vL9DjP+oQHY2go= =Ry2W -----END PGP SIGNATURE----- --- This email has been checked for viruses by Avast antivirus software. http://www.avast.com
