certificate verification failed

2015-05-14 Thread Pol Hallen 
Hi all :-)

With all other smtp, postfix runs correctly, only with hotmail.it smtp
I've this log file:

May 14 09:15:53 www postfix/smtp[23823]: certificate verification failed
for mx2.hotmail.com[65.55.37.104]:25: untrusted issuer
/C=IE/O=Baltimore/OU=CyberTrust/CN=Baltimore CyberTrust Root
May 14 09:15:55 www postfix/smtp[23823]: 5C808132087C:
to=, relay=mx2.hotmail.com[66.57.37.174]:25,
delay=3.2, delays=0.39/0/1.4/1.4, dsn=2.0.0, status=sent (250 
<55544baa.2080...@hostinato.it> Queued mail for delivery)
May 14 09:15:55 www postfix/qmgr[31119]: 5C808132087C: removed

But the email goes lost. I didn't found any of useful looking for on
internet.

Any idea to how solve the issue?

thanks for help!

Re: certificate verification failed

2015-05-14 Thread Robert Schetterer 
Am 14.05.2015 um 09:23 schrieb Pol Hallen:
> Hi all :-)
> 
> With all other smtp, postfix runs correctly, only with hotmail.it smtp
> I've this log file:
> 
> May 14 09:15:53 www postfix/smtp[23823]: certificate verification failed
> for mx2.hotmail.com[65.55.37.104]:25: untrusted issuer
> /C=IE/O=Baltimore/OU=CyberTrust/CN=Baltimore CyberTrust Root
> May 14 09:15:55 www postfix/smtp[23823]: 5C808132087C:
> to=, relay=mx2.hotmail.com[66.57.37.174]:25,
> delay=3.2, delays=0.39/0/1.4/1.4, dsn=2.0.0, status=sent (250 
> <55544baa.2080...@hostinato.it> Queued mail for delivery)
> May 14 09:15:55 www postfix/qmgr[31119]: 5C808132087C: removed
> 
> But the email goes lost. I didn't found any of useful looking for on
> internet.
> 
> Any idea to how solve the issue?
> 
> thanks for help!
> 
> 
> 

whatever trust failure
your mail was delivered to hotmail, ask them what happened to it
perhaps it went to some Junk folder etc

Best Regards
MfG Robert Schetterer

-- 
[*] sys4 AG

http://sys4.de, +49 (89) 30 90 46 64
Franziskanerstraße 15, 81669 München

Sitz der Gesellschaft: München, Amtsgericht München: HRB 199263
Vorstand: Patrick Ben Koetter, Marc Schiffbauer
Aufsichtsratsvorsitzender: Florian Kirstein

Re: certificate verification failed

2015-05-14 Thread Pol Hallen 
>whatever trust failure
>your mail was delivered to hotmail, ask them what happened to it
>perhaps it went to some Junk folder etc

thanks for reply :-) When I see this warning/error email goes lost...

I've an hotmail.it account and no email has come (also inside spam/junk).

thanks

Pol

Re: certificate verification failed

2015-05-14 Thread Robert Schetterer 
Am 14.05.2015 um 10:25 schrieb Pol Hallen:
>> whatever trust failure
>> your mail was delivered to hotmail, ask them what happened to it
>> perhaps it went to some Junk folder etc
> 
> thanks for reply :-) When I see this warning/error email goes lost...
> 
> I've an hotmail.it account and no email has come (also inside spam/junk).
> 
> thanks
> 
> Pol
> 

http://mail.live.com/mail/policies.aspx


Best Regards
MfG Robert Schetterer

-- 
[*] sys4 AG

http://sys4.de, +49 (89) 30 90 46 64
Franziskanerstraße 15, 81669 München

Sitz der Gesellschaft: München, Amtsgericht München: HRB 199263
Vorstand: Patrick Ben Koetter, Marc Schiffbauer
Aufsichtsratsvorsitzender: Florian Kirstein

RegExp help

2015-05-14 Thread Barbara M. 


I am trying to use regexp to block mails from specific domains to specific 
users (and let other users receive it).


I need to merge (logical AND operator), something like:

/^From:.*\@.*domainsource.tld/  REJECT  No Unrequested mail Please
/^To:.*\@.*domaindest.tld/  REJECT  No Unrequested mail Please

For my needs I want these rules evaluated in AND.

How can do this with a valid rules in my /etc/postfix/header_checks?
If there is a better solution ... ;-)

Thanks, B.

Re: RegExp help

2015-05-14 Thread jason hirsh 
I have bene using 


https://regex101.com 


for test and evaluationIt has also helped on my composition



> On May 14, 2015, at 6:48 AM, Barbara M.  wrote:
> 
> 
> I am trying to use regexp to block mails from specific domains to specific 
> users (and let other users receive it).
> 
> I need to merge (logical AND operator), something like:
> 
> /^From:.*\@.*domainsource.tld/  REJECT  No Unrequested mail Please
> /^To:.*\@.*domaindest.tld/  REJECT  No Unrequested mail Please
> 
> For my needs I want these rules evaluated in AND.
> 
> How can do this with a valid rules in my /etc/postfix/header_checks?
> If there is a better solution ... ;-)
> 
> Thanks, B.
>

Re: RegExp help

2015-05-14 Thread Barbara M. 

On Thu, 14 May 2015, jason hirsh wrote:


I have bene using 

https://regex101.com

for test and evaluation    It has also helped on my composition


Cool.
But I can't still find a solution.
I am not a regex expert (obiviosly).
I write simple expression when needed, but I can't find how to improve the 
AND condition.

Tried solutions like:

/.*\@.*domainsource.tld.*\@.*domaindest.tld/  REJECT
/.*\@.*domaindest.tld.*\@.*domainsource.tld/

without success.
Surely it is a trivial trick that I don't see :-(

Thanks, B.






  On May 14, 2015, at 6:48 AM, Barbara M.  wrote:


I am trying to use regexp to block mails from specific domains to
specific users (and let other users receive it).

I need to merge (logical AND operator), something like:

/^From:.*\@.*domainsource.tld/  REJECT  No Unrequested mail Please
/^To:.*\@.*domaindest.tld/  REJECT  No Unrequested mail Please

For my needs I want these rules evaluated in AND.

How can do this with a valid rules in my /etc/postfix/header_checks?
If there is a better solution ... ;-)

Thanks, B.

Re: RegExp help

2015-05-14 Thread jason hirsh 

> On May 14, 2015, at 7:41 AM, Barbara M.  wrote:
> 
> On Thu, 14 May 2015, jason hirsh wrote:
> 
>> I have bene using 
>> https://regex101.com
>> for test and evaluationIt has also helped on my composition
> 
> Cool.
> But I can't still find a solution.
> I am not a regex expert (obiviosly).
> I write simple expression when needed, but I can't find how to improve the 
> AND condition.
> Tried solutions like:
> 
> /.*\@.*domainsource.tld.*\@.*domaindest.tld/  REJECT
> /.*\@.*domaindest.tld.*\@.*domainsource.tld/
> 
> without success.
> Surely it is a trivial trick that I don't see :-(

In you choice of sample domains names it seems like you are trying to get mail 
from a location (domainsource.tld)  going to
a location  (domaindest.tld)

if domainsource.tld has no valid email  I would try  

\/.*(.*domainsource.tld.*)/

Put this in the tester brining in information from the raw message and tweak 
the wildcards till you get a match



but I am no expert in this   

> 
> Thanks, B.
> 
> 
> 
> 
> 
>>  On May 14, 2015, at 6:48 AM, Barbara M.  wrote:
>> I am trying to use regexp to block mails from specific domains to
>> specific users (and let other users receive it).
>> I need to merge (logical AND operator), something like:
>> /^From:.*\@.*domainsource.tld/  REJECT  No Unrequested mail Please
>> /^To:.*\@.*domaindest.tld/  REJECT  No Unrequested mail Please
>> For my needs I want these rules evaluated in AND.
>> How can do this with a valid rules in my /etc/postfix/header_checks?
>> If there is a better solution ... ;-)
>> Thanks, B.

Re: RegExp help

2015-05-14 Thread Tom Hendrikx 
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256

On 14-05-15 12:48, Barbara M. wrote:
> 
> I am trying to use regexp to block mails from specific domains to 
> specific users (and let other users receive it).
> 
> I need to merge (logical AND operator), something like:
> 
> /^From:.*\@.*domainsource.tld/  REJECT  No Unrequested mail
> Please /^To:.*\@.*domaindest.tld/  REJECT  No Unrequested mail
> Please
> 
> For my needs I want these rules evaluated in AND.
> 
> How can do this with a valid rules in my
> /etc/postfix/header_checks? If there is a better solution ... ;-)

Header checks doesn't do AND for multiple headers, all headers get
evaluated separately. For this idea, you'd need a content filter.
Within Spamassassin these kind of rules are trivial.

Regards,
Tom
-BEGIN PGP SIGNATURE-
Version: GnuPG v2
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=s6lF
-END PGP SIGNATURE-

Re: bounce message - custom subject

2015-05-14 Thread Jiri Vitek 
Hello,

thank you for response.

On Wed, 2015-05-13 at 11:28 -0400, Wietse Venema wrote:
> Jiri Vitek:
> > Hello,
> > 
> > i need to change subject of bounce messages for undelivered mails. To be
> > specific i have to use old message subject as part of bounce message.
> > For example:
> > 
> > defalt bounce message from postfix:
> > "Undelivered Mail Returned to Sender"
> > 
> > proposal message with original subject:
> > "Undelivered Mail Returned to Sender: "
> > 
> > I found, that i can create custom template for this message. But i'm
> > unable to find some variable with subject of original message.
> > 
> > http://www.postfix.org/bounce.5.html 
> 
> It is not documented, because there is no such variable. It is not
> implemented due to overwhelming lack of demand.
> 
> > So my question is, if there exist some variable with subject of original
> > message. Eventually what is your proposed solution.
> 
> Good luck, this will require major surgery. Postfix does not know
> any message header information at the time that it formats the
> template. At that time it knows only a little about the message
> envelope (mainly, the recipient of the bounce message).

I have decided to solve this via custom content filtering of bounce
message. I will write own script to do that.

> 
>   Wietse

-- 
Jiří Vítek
System administrator

BCV solutions s.r.o.
Mobile: +420 777 785 892
E-mail: jiri.vi...@bcvsolutions.eu
www.bcvsolutions.eu 

Identity Management: www.czechidm.com 
Správa privilegovaných účtů: www.czechpam.com

timeout after DATA (0 bytes) from unknown[x.x.x.x]

2015-05-14 Thread Luiz Morte 

Hello,
We start to see this error in a specific IP:
"Timeout after DATA (0 bytes) from unknown[x.x.x.x]"

Looking for in the web, we found many people talking about MTU problem.

Do you have seen this problem?
There is a configuration in postfix that I need to do?
Thanks in advance
Luiz

Re: RegExp help

2015-05-14 Thread Barbara M. 

On Thu, 14 May 2015, Tom Hendrikx wrote:


-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256

On 14-05-15 12:48, Barbara M. wrote:


I am trying to use regexp to block mails from specific domains to
specific users (and let other users receive it).

I need to merge (logical AND operator), something like:

/^From:.*\@.*domainsource.tld/  REJECT  No Unrequested mail
Please /^To:.*\@.*domaindest.tld/  REJECT  No Unrequested mail
Please

For my needs I want these rules evaluated in AND.

How can do this with a valid rules in my
/etc/postfix/header_checks? If there is a better solution ... ;-)


Header checks doesn't do AND for multiple headers, all headers get
evaluated separately. For this idea, you'd need a content filter.


So it isn't so trivial as I thought ... :-(


Within Spamassassin these kind of rules are trivial.


I use SA in default config. Never tried to customize rules, so, may be it 
isn't trivial for me. :-)

N.B.: I want mail rejected from Postfix not marked as spam and delivered.
If SA can do this I try it (better if someone give me some example/hints 
for the .cf ;-))


Thanks, B.

Re: RegExp help

2015-05-14 Thread Michael Orlitzky 
On 05/14/2015 10:41 AM, Barbara M. wrote:
> 
> I use SA in default config. Never tried to customize rules, so, may be it 
> isn't trivial for me. :-)
> N.B.: I want mail rejected from Postfix not marked as spam and delivered.
> If SA can do this I try it (better if someone give me some example/hints 
> for the .cf ;-))
> 

If the to/from rules aren't very fine-grained, then maybe you want to
put the senders or recipients into restriction classes?

  http://www.postfix.org/RESTRICTION_CLASS_README.html

RE: RegExp help

2015-05-14 Thread Marius Gologan 
If you want to design a solution that can reject the messages during SMTP
connection (before accepting any data) based on your criteria (sender AND
recipient), you need check_policy_service in Postifx.
http://www.postfix.org/SMTPD_POLICY_README.html

For large scale, you may use almost any programming or scripting language
and a database. For you particular case, I would go with Redis db. 


-Original Message-
From: owner-postfix-us...@postfix.org
[mailto:owner-postfix-us...@postfix.org] On Behalf Of Barbara M.
Sent: Thursday, May 14, 2015 5:41 PM
To: Tom Hendrikx
Cc: postfix-users@postfix.org
Subject: Re: RegExp help

On Thu, 14 May 2015, Tom Hendrikx wrote:

> -BEGIN PGP SIGNED MESSAGE-
> Hash: SHA256
>
> On 14-05-15 12:48, Barbara M. wrote:
>>
>> I am trying to use regexp to block mails from specific domains to
>> specific users (and let other users receive it).
>>
>> I need to merge (logical AND operator), something like:
>>
>> /^From:.*\@.*domainsource.tld/  REJECT  No Unrequested mail
>> Please /^To:.*\@.*domaindest.tld/  REJECT  No Unrequested mail
>> Please
>>
>> For my needs I want these rules evaluated in AND.
>>
>> How can do this with a valid rules in my
>> /etc/postfix/header_checks? If there is a better solution ... ;-)
>
> Header checks doesn't do AND for multiple headers, all headers get
> evaluated separately. For this idea, you'd need a content filter.

So it isn't so trivial as I thought ... :-(

> Within Spamassassin these kind of rules are trivial.

I use SA in default config. Never tried to customize rules, so, may be it 
isn't trivial for me. :-)
N.B.: I want mail rejected from Postfix not marked as spam and delivered.
If SA can do this I try it (better if someone give me some example/hints 
for the .cf ;-))

Thanks, B.