Autoresponse for Postfix problem
Hello, We have a Postfix mail server (CentOS 5.7, Postfix, Courier, Virtual Domain, MailScanner) and I want setup the autoresponder for Postifx. I followed the instruction on http://nefaria.com/project_index/autoresponse/ Now, the autoresponse works in command line mode. I can add/delete/enable/disable autoresponse. But it failed to let user to create their own autoresponse messege via email. When I send an email to user+autorespo...@domain.tld, the mail just drop in inbox and no autoresponse setup. I looked the maillog and I found that the filter override seems not working. The mail doesn't handle over to the "autoresponder", it always goes to "relay=virtual" Here is the maillog: === Apr 13 11:10:51 zeta postfix/smtpd[26079]: warning: 24.207.43.101: address not listed for hostname h24-207-43-101.cable.static.dccnet.com Apr 13 11:10:51 zeta postfix/smtpd[26079]: connect from unknown[24.207.43.101] Apr 13 11:10:51 zeta postfix/smtpd[26079]: setting up TLS connection from unknown[24.207.43.101] Apr 13 11:10:51 zeta postfix/smtpd[26079]: TLS connection established from unknown[24.207.43.101]: TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits) Apr 13 11:10:51 zeta postfix/smtpd[26079]: 4F5108031: client=unknown[24.207.43.101], sasl_method=PLAIN, sasl_username=j...@veecall.com Apr 13 11:10:51 zeta postfix/cleanup[26090]: 4F5108031: hold: header Received: from [192.168.123.60] (unknown [24.207.43.101])??(using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits))??(No client certificate requested)??by zeta.sjgeophysics.com (Postfix) with ESMTP from unknown[24.207.43.101]; from= to= proto=ESMTP helo=<[192.168.123.60]> Apr 13 11:10:51 zeta postfix/cleanup[26090]: 4F5108031: message-id=<4f886c28.7070...@veecall.com> Apr 13 11:10:51 zeta postfix/smtpd[26079]: disconnect from unknown[24.207.43.101] Apr 13 11:10:52 zeta MailScanner[23639]: New Batch: Scanning 1 messages, 1320 bytes Apr 13 11:10:52 zeta MailScanner[23639]: Virus and Content Scanning: Starting Apr 13 11:10:52 zeta MailScanner[23639]: Spam Checks: Starting Apr 13 11:10:52 zeta MailScanner[23639]: Expired 8 records from the SpamAssassin cache Apr 13 11:10:52 zeta MailScanner[23639]: Message 4F5108031.A4482 from 24.207.43.101 (j...@veecall.com) is whitelisted Apr 13 11:10:54 zeta MailScanner[23639]: Requeue: 4F5108031.A4482 to 4E9208096 Apr 13 11:10:54 zeta postfix/qmgr[10040]: 4E9208096: from=, size=1095, nrcpt=1 (queue active) Apr 13 11:10:54 zeta MailScanner[23639]: Uninfected: Delivered 1 messages Apr 13 11:10:54 zeta MailScanner[23639]: Deleted 1 messages from processing-database Apr 13 11:10:54 zeta postfix/virtual[26100]: 4E9208096: to=, relay=virtual, delay=3.4, delays=3.4/0.01/0/0, dsn=2.0.0, status=sent (delivered to maildir) Apr 13 11:10:54 zeta postfix/qmgr[10040]: 4E9208096: removed == And mu master.cf: # # Postfix master process configuration file. For details on the format # of the file, see the master(5) manual page (command: "man 5 master"). # # == # service type private unpriv chroot wakeup maxproc command + args # (yes) (yes) (yes) (never) (100) # == smtp inet n - n - - smtpd -o content_filter=autoresponder:dummy submission inet n - n - - smtpd # -o smtpd_enforce_tls=yes -o smtpd_sasl_auth_enable=yes -o smtpd_client_restrictions=permit_sasl_authenticated,reject #smtps inet n - n - - smtpd # -o smtpd_tls_wrappermode=yes # -o smtpd_sasl_auth_enable=yes # -o smtpd_client_restrictions=permit_sasl_authenticated,reject #628 inet n - n - - qmqpd pickupfifo n - n 60 1 pickup cleanup unix n - n - 0 cleanup qmgr fifo n - n 300 1 qmgr #qmgr fifo n - n 300 1 oqmgr tlsmgrunix - - n 1000? 1 tlsmgr rewrite unix - - n - - trivial-rewrite bounceunix - - n - 0 bounce defer unix - - n - 0 bounce trace unix - - n - 0 bounce verifyunix - - n - 1 verify flush unix n - n 1000? 0 flush proxymap unix - - n - - proxymap smtp unix - - n - - smtp # When relaying mail as backup MX, disable fallback_relay to avoid MX loops relay unix - - n - - smtp -o fallback_relay= # -o smtp_helo_timeout=5 -o smtp_connect_timeout=5 showq unix n - n - - showq error unix - - n
Re: Autoresponse for Postfix problem
On 12-04-13 11:31 AM, Reindl Harald wrote: Am 13.04.2012 20:24, schrieb J Gao: Hello, We have a Postfix mail server (CentOS 5.7, Postfix, Courier, Virtual Domain, MailScanner) and I want setup the autoresponder for Postifx. I followed the instruction on http://nefaria.com/project_index/autoresponse/ Now, the autoresponse works in command line mode. I can add/delete/enable/disable autoresponse. But it failed to let user to create their own autoresponse messege via email. When I send an email to user+autorespo...@domain.tld, the mail just drop in inbox and no autoresponse setup. I looked the maillog and I found that the filter override seems not working. The mail doesn't handle over to the "autoresponder", it always goes to "relay=virtual" i do not think it is a godd idea these days take the sender-address as authentication for set a responder - if you can not 100% prevent a forged email one will set a responder this way followed by a list of forged senders to get the repsonse this is a really bad idea normally such things are done via protected web-interfaces with a real login and working on the MDA side (dbmail as example has a simple "autoreply" sql table for which a webinterface authenticationg against the user-table is written in a few hours Our mail server use SASL authentication against all SMTP relay. And this server is in production so any major changes are not that easy, at least for me. Jian --
Re: Autoresponse for Postfix problem
On 12-04-13 11:35 AM, Tom Hendrikx wrote: On 13-04-12 20:24, J Gao wrote: We have a Postfix mail server (CentOS 5.7, Postfix, Courier, Virtual Domain, MailScanner) and I want setup the autoresponder for Postifx. I followed the instruction on http://nefaria.com/project_index/autoresponse/ I looked the maillog and I found that the filter override seems not working. The mail doesn't handle over to the "autoresponder", it always goes to "relay=virtual" Here is the maillog: === Apr 13 11:10:51 zeta postfix/smtpd[26079]: 4F5108031: client=unknown[24.207.43.101], sasl_method=PLAIN, sasl_username=j...@veecall.com The message arrives from an sasl authenticated client... Yes, this is required by the autoresponse perl script. From: http://nefaria.com/project_index/autoresponse/ "For security reasons, SASL authentication is required in order to configure autoresponses via e-mail" And mu master.cf: == # service type private unpriv chroot wakeup maxproc command + args # (yes) (yes) (yes) (never) (100) # == smtp inet n - n - - smtpd -o content_filter=autoresponder:dummy submission inet n - n - - smtpd # -o smtpd_enforce_tls=yes -o smtpd_sasl_auth_enable=yes -o smtpd_client_restrictions=permit_sasl_authenticated,reject Only submission seems to have sasl enabled, which you are using. But you seem to have the autoresponder only on the smtpd interface, not on the submission interface. Kind regards, Tom Sorry I am still learning Postfix. So do you mean I should add the filter to submission as well? smtp inet n - n - - smtpd -o content_filter=autoresponder:dummy submission inet n - n - - smtpd # -o smtpd_enforce_tls=yes -o smtpd_sasl_auth_enable=yes -o smtpd_client_restrictions=permit_sasl_authenticated,reject -o content_filter=autoresponder:dummy --
Missing email
Hi, One of our email user (his email address is: j...@ourcomapny.com) told me he missed an important email he suppose to received last Friday around 7:30PM. I checked the maillog and I can't tell what's wrong. The email is from another co-worker Liz (l...@ourcomapny.com), and there are 3 recipients: Jay, Bob, and Larry. The other two got the email but not Jay. Could someone help me read the maillog and tell me is there something I missed? I don't know how to explain to Jay why the mail is lost. I suspect that he could accidentally delete the mail but I don't have approve. Here is the log file: === / /May 18 19:33:10 zeta postfix/qmgr[5000]: 6112E8093: from=, size=8399, nrcpt=3 (queue active) May 18 19:33:10 zeta MailScanner[28856]: Uninfected: Delivered 1 messages May 18 19:33:10 zeta MailScanner[28856]: Deleted 1 messages from processing-database May 18 19:33:10 zeta postfix/pickup[29771]: 22D0780A5: uid=5001 from= May 18 19:33:10 zeta postfix/cleanup[30947]: 22D0780A5: hold: header Received: by zeta.ourcomapny.com (Postfix, from userid 5001)??id 22D0780A5; Fri, 18 May 2012 19:33:10 -0700 (PDT) from local; from= to= May 18 19:33:10 zeta postfix/cleanup[30947]: 22D0780A5: message-id=<1ae43190adda66fae0dbcb2740b4d...@ourcomapny.com> May 18 19:33:10 zeta postfix/pipe[30973]: 6112E8093: to=, relay=autoresponder, delay=8.5, delays=8.5/0.02/0/0.05, dsn=2.0.0, status=sent (delivered via autoresponder service) May 18 19:33:10 zeta postfix/pickup[29771]: 246FF8096: uid=5001 from= May 18 19:33:10 zeta postfix/cleanup[30947]: 246FF8096: hold: header Received: by zeta.ourcomapny.com (Postfix, from userid 5001)??id 246FF8096; Fri, 18 May 2012 19:33:10 -0700 (PDT) from local; from= to= May 18 19:33:10 zeta postfix/cleanup[30947]: 246FF8096: message-id=<1ae43190adda66fae0dbcb2740b4d...@ourcomapny.com> May 18 19:33:10 zeta postfix/pipe[30972]: 6112E8093: to=, relay=autoresponder, delay=8.5, delays=8.5/0.01/0/0.07, dsn=2.0.0, status=sent (delivered via autoresponder service) May 18 19:33:10 zeta postfix/pickup[29771]: 2595A8065: uid=5001 from= May 18 19:33:10 zeta postfix/cleanup[30947]: 2595A8065: hold: header Received: by zeta.ourcomapny.com (Postfix, from userid 5001)??id 2595A8065; Fri, 18 May 2012 19:33:10 -0700 (PDT) from local; from= to= May 18 19:33:10 zeta postfix/cleanup[30947]: 2595A8065: message-id=<1ae43190adda66fae0dbcb2740b4d...@ourcomapny.com> May 18 19:33:10 zeta postfix/pipe[30978]: 6112E8093: to=, relay=autoresponder, delay=8.6, delays=8.5/0.04/0/0.04, dsn=2.0.0, status=sent (delivered via autoresponder service) May 18 19:33:10 zeta postfix/qmgr[5000]: 6112E8093: removed May 18 19:33:10 zeta MailScanner[28586]: New Batch: Scanning 3 messages, 26236 bytes May 18 19:33:10 zeta MailScanner[28586]: Virus and Content Scanning: Starting May 18 19:33:10 zeta MailScanner[28586]: Spam Checks: Starting May 18 19:33:10 zeta MailScanner[28586]: Message 246FF8096.A1E15 from 127.0.0.1 (l...@ourcomapny.com) is whitelisted May 18 19:33:12 zeta imapd-ssl: LOGIN, user=nander...@ourcomapny.com, ip=[:::204.50.203.11], port=[33850], protocol=IMAP May 18 19:33:13 zeta MailScanner[28586]: Message 2595A8065.ACC91 from 127.0.0.1 (l...@ourcomapny.com) is whitelisted May 18 19:33:13 zeta MailScanner[28586]: SpamAssassin cache hit for message 2595A8065.ACC91 May 18 19:33:13 zeta MailScanner[28586]: Message 22D0780A5.A62EE from 127.0.0.1 (l...@ourcomapny.com) is whitelisted May 18 19:33:13 zeta MailScanner[28586]: SpamAssassin cache hit for message 22D0780A5.A62EE May 18 19:33:13 zeta MailScanner[28586]: Requeue: 246FF8096.A1E15 to 130368093 May 18 19:33:13 zeta MailScanner[28586]: Requeue: 2595A8065.ACC91 to B924A8096 May 18 19:33:13 zeta MailScanner[28586]: Requeue: 22D0780A5.A62EE to 407738065 May 18 19:33:13 zeta postfix/qmgr[5000]: 130368093: from=, size=8641, nrcpt=1 (queue active) May 18 19:33:13 zeta MailScanner[28586]: Uninfected: Delivered 3 messages May 18 19:33:13 zeta postfix/qmgr[5000]: B924A8096: from=, size=8635, nrcpt=1 (queue active) May 18 19:33:13 zeta postfix/qmgr[5000]: 407738065: from=, size=8635, nrcpt=1 (queue active) May 18 19:33:13 zeta MailScanner[28586]: Deleted 3 messages from processing-database May 18 19:33:13 zeta MailScanner[28586]: MailScanner child dying of old age May 18 19:33:13 zeta postfix/virtual[31007]: 407738065: to=, relay=virtual, delay=3.3, delays=3.3/0.03/0/0.02, dsn=2.0.0, status=sent (delivered to maildir) May 18 19:33:13 zeta postfix/virtual[31004]: 130368093: to=, relay=virtual, delay=3.3, delays=3.3/0.01/0/0.04, dsn=2.0
Change maximal_queue_lifetime to 2d failed
Hello, I am running Postfix+MailScanner. There is a default setting: maximal_queue_lifetime = 5d I want to change it to 2 days so I did: postconf -e 'maximal_queue_lifetime = 2d' Now I check the main.cf and I see this line has been added at the bottom of the file. Then I restarted the service: [root@zeta ~]# service MailScanner restart Shutting down MailScanner daemons: MailScanner: [ OK ] incoming postfix: [ OK ] outgoing postfix: [ OK ] Waiting for MailScanner to die gracefully ... dead. Starting MailScanner daemons: incoming postfix: [ OK ] outgoing postfix: [ OK ] MailScanner: [ OK ] [root@zeta ~]# Now when I do a ckeck I found out that the setting is still 5 days: [root@zeta ~]# postconf -d | grep 'maximal_queue_lifetime' maximal_queue_lifetime = 5d Did I miss something here? Please help. Thanks. Jian --
Re: Change maximal_queue_lifetime to 2d failed
On 12-07-04 03:10 PM, Ralf Hildebrandt wrote: * J Gao : [root@zeta ~]# postconf -d | grep 'maximal_queue_lifetime' maximal_queue_lifetime = 5d Did I miss something here? man postconf What does the "-d" option display? Oops, should use -n Thanks for the help. --
Gmail stop support self signed SSL
Hi, all, My question may be OT but I'd like ask here so please forgive me. I have a mail server use postfix/courier and few of our users report having problem if they use Gmail to retrieve emails from my server. I googled and it seems Gmail is tighten up its security. The are people have the same problem: http://productforums.google.com/forum/#!topic/gmail/uPP9EsiY1rA So I am looking for a solution now. Questions I'm having are: 1. How much cost me to purchase a trusted SSL just for the POP3/SMTP server? 2. Any recommendation for where to purchase? Thanks for help. Gao --
Re: Gmail stop support self signed SSL
On 12-12-12 11:54 AM, Javier Henderson wrote: On Wed, Dec 12, 2012 at 1:44 PM, J Gao mailto:j...@veecall.com>> wrote: Hi, all, My question may be OT but I'd like ask here so please forgive me. I have a mail server use postfix/courier and few of our users report having problem if they use Gmail to retrieve emails from my server. I googled and it seems Gmail is tighten up its security. The are people have the same problem: http://productforums.google.__com/forum/#!topic/gmail/__uPP9EsiY1rA <http://productforums.google.com/forum/#!topic/gmail/uPP9EsiY1rA> So I am looking for a solution now. Questions I'm having are: 1. How much cost me to purchase a trusted SSL just for the POP3/SMTP server? 2. Any recommendation for where to purchase? I've been using the free certs from http://www.startssl.com/ for a while without any problems. -jav Thanks for the help! I'll start to try with the free one. Gao --
Re: Gmail stop support self signed SSL
On 12-12-12 12:12 PM, Benny Pedersen wrote: J Gao skrev den 12-12-2012 19:44: http://productforums.google.com/forum/#!topic/gmail/uPP9EsiY1rA did you google free certs ? start point is http://www.cacert.org/ self signed have always being a bad idear, free signers is accepted if you can get google to use cacert public root certs i just dropped cacert since it have not the cacert root in eg firefox/thunderbird but ssl works better then selfsigned problems I searched here: https://docs.google.com/spreadsheet/pub?key=0Ah-tHXMAwqU3dGx0cGFObG9QM192NFM4UWNBMlBaekE&single=true&gid=1&output=html cacert.org is not on the list. startssl.com is listed. So i'm going to try this. Just registered an account and have to wait for final approve. Gao --
FIlename of the email
Hi, All,
When my postfix+courier received/sent an email, it will have a file
which name like this:
1373311807.V805I31d1928M179657.zeta.veecall.com,S=1456:2,ST
Can someone explain to me how to understand this name? I mean for
example like the above one, what is the meaning of "1373311807" and
"V805I31d1928M179657"?
In the maillog, postfix use mail ID like "C0A3BC258D", is there a
relation between this ID and the filename?
More interested is the last part of the filename. It seems related with
the status of the mail. (Read/Unread/..etc.). Can you explain more on this?
Thank you for help.
Gao
--
__
_|==|_
('')__/
>--(`^^')
(`^'^'`)
`=='
--
This message has been scanned for viruses and
dangerous content by MailScanner, and is
believed to be clean.
Re: FIlename of the email
On 13-07-08 12:55 PM, J Gao wrote:
Hi, All,
When my postfix+courier received/sent an email, it will have a file
which name like this:
1373311807.V805I31d1928M179657.zeta.veecall.com,S=1456:2,ST
Can someone explain to me how to understand this name? I mean for
example like the above one, what is the meaning of "1373311807" and
"V805I31d1928M179657"?
I just figured out that the first part of the filename 1373311807 is
the unix time.
--
__
_|==|_
('')__/
>--(`^^')
(`^'^'`)
`=='
--
This message has been scanned for viruses and
dangerous content by MailScanner, and is
believed to be clean.
Mail server, what else?
Hi, All,
I just built a new mail server and so far it works well. It took me
almost two weeks to figure out all kind of stuff. I want to protect the
mail system at the best effort to use open source or free licensed
software.
Now I would like your advises on my system so I can improve it more.
Here is my mail server system:
- CentOS 6.4 64bit (SELinux disabled), iptables is in action.
- Apache, MySql, PHP
- Postfix 2.6.6 + Courier(Support virtual domain)
- MailScanner with ClamAV and Spamassassin(with pyzor/rozor2/DCC)
- Fail2ban (SSH, RoundCube, SASL)
- SPF, OpenDKIM, DMARC
- RoundCube webmail
- Mailman maillist
I appreciate if you can give me advise so I can further improve my system.
Gao
--
__
_|==|_
('')__/
>--(`^^')
(`^'^'`)
`=='
Re: Mail server, what else?
Forgot to mention that I also use SASL to authenticated user:
SMTP on port 587 only (STARSSL)
IMAP on port 993 (SSL)
POP3 on port 995 (SSL)
So for email, port 25, 587, 993,995 is opened on firewall.
--
__
_|==|_
('')__/
>--(`^^')
(`^'^'`)
`=='
Re: Mail server, what else?
On 13-07-12 04:06 PM, LuKreme wrote:
On 12 Jul 2013, at 12:55 , J Gao wrote:
- Postfix 2.6.6 + Courier(Support virtual domain)
Why would you setup a new system with a four year old version of Postfix that
it is not even supported? 2.10 is current and 2.11 is right around the corner.
I used this:
http://vault.centos.org/6.4/os/Source/SPackages/postfix-2.6.6-2.2.el6_1.src.rpm
And patched with quota patch.
I could use 2.10 but I thought this will be "safe" for CentOS 6.
Gao
--
__
_|==|_
('')__/
>--(`^^')
(`^'^'`)
`=='
