George a écrit :
> Hi,
>
> I am running latest postfix on CentOS with virtual user/domain in mysql db.
>
> I host multiple domains. Is it possible for me to make each domain
> send using a separate IP frmo the server?
why would you want that? it is ok to send mail for multiple domains from
a si
Thank you, thank you, thank you !
Uninstalled 'sendmail', 'sendmail-cf' packages. Restarted the 'postfix' and
every thing works now.
Wasn't paying attention to the 'sendmail' keyword in the logs. Don't know
why ... I had Postfix working for a while and quit working after some config
changes, may
On Fri, Feb 06, 2009 at 05:41:33PM -0800, Chris St Denis wrote:
> Noel Jones wrote:
>> Victor Duchovni wrote:
>>> On Fri, Feb 06, 2009 at 01:30:01PM -0800, Chris St Denis wrote:
>>>
>> Anyway, on to the problems. How do I deal with log entries like this.
>> A queue ID is created, but noth
On Fri, Feb 06, 2009 at 10:44:12PM -0500, Glen B wrote:
>
> I'm not asking for an LDA to deploy. Are you suggesting that I review
> Dovecot's LDA as an example of how to use a pipe transport? I'm writing a
> LDA which will be DB native and want some experience based input on which
> method of de
On Fri, 06 Feb 2009, Glen B wrote:
> I'm not asking for an LDA to deploy.
I know.
> Are you suggesting that I review Dovecot's LDA as an example of how to
> use a pipe transport?
Yes.
--
Sahil Tandon
I'm not asking for an LDA to deploy. Are you suggesting that I review
Dovecot's LDA as an example of how to use a pipe transport? I'm writing a
LDA which will be DB native and want some experience based input on which
method of delivery is best for my situation. In this case can I implement
somet
On Fri, 06 Feb 2009, mantra UNIX wrote:
> # mailx -s "test email" test-...@test.domain
> # tail /var/log/maillog
> ...
> Feb 6 17:09:53 abc-host sendmail[11601]: n16N9rC7011601: from=root,
> size=48, class=0, nrcpts=1, msgid=<
> 200902062309.n16n9rc7011...@abc-host.localdomain>, relay=r...@loc
Hi,
I am running latest postfix on CentOS with virtual user/domain in mysql db.
I host multiple domains. Is it possible for me to make each domain
send using a separate IP frmo the server? How can this be done?
Please help
Thanks
On Fri, 06 Feb 2009, Glen B wrote:
> I'm working on a DB environment integration with Postfix and have gotten
> TCP dict lookups to function. Now, I'm working on mail delivery and am
> trying to determine which method of mailbox delivery to take. I have a few
> limitations in my application, but
Wietse Venema wrote:
> Noel Jones:
>> Wietse Venema wrote:
>>> Something that will drastically cut the time per session:
>>>
>>> smtpd_timeout = ${stress?10s}${stress:300s}
>> I would be concerned about sites that are chronically short of smtpd
>> processes with an inexperienced or inattent
Noel Jones wrote:
Victor Duchovni wrote:
On Fri, Feb 06, 2009 at 01:30:01PM -0800, Chris St Denis wrote:
Anyway, on to the problems. How do I deal with log entries like
this. A queue ID is created, but nothing ever happens to it. There
is no reject
There was one valid recipient, but the
mantra UNIX:
> Feb 6 17:09:53 abc-host sendmail[11601]: n16N9rC7011601: from=root,
That is NOT POSTFIX.
Wietse
Hi,
Problem:
==
Unable to send outbound mail using 'postfix'.
Error Message:
===
Feb 6 17:09:53 abc-host sendmail[11601]: n16N9rC7011601: from=root,
size=48, class=0, nrcpts=1, msgid=<
200902062309.n16n9rc7011...@abc-host.localdomain>, relay=r...@localhost
Feb 6 17:09:53 abc-host se
Wietse Venema wrote:
Noel Jones:
Wietse Venema wrote:
Something that will drastically cut the time per session:
smtpd_timeout = ${stress?10s}${stress:300s}
I would be concerned about sites that are chronically short of
smtpd processes with an inexperienced or inattentive admin.
Maybe 20s~30s
Victor Duchovni wrote:
On Fri, Feb 06, 2009 at 01:30:01PM -0800, Chris St Denis wrote:
Anyway, on to the problems. How do I deal with log entries like this. A
queue ID is created, but nothing ever happens to it. There is no reject
There was one valid recipient, but the mail transaction w
Chris St Denis:
> Anyway, on to the problems. How do I deal with log entries like this. A
> queue ID is created, but nothing ever happens to it. There is no reject
Wietse
> There was one valid recipient, but the mail transaction was not
> completed. This could be a header_checks rule, or a netw
On Fri, Feb 06, 2009 at 01:30:01PM -0800, Chris St Denis wrote:
>>> Anyway, on to the problems. How do I deal with log entries like this. A
>>> queue ID is created, but nothing ever happens to it. There is no reject
>>>
>>
>> There was one valid recipient, but the mail transaction was not
>
Wietse Venema wrote:
Chris St Denis:
[ Charset ISO-8859-1 unsupported, converting... ]
First some background. What I am trying to do is write a script that
syslog can be piped into that will parse the maillog in real time and
insert the items into the database -- one row per queue ID (and po
Wietse Venema:
> smtpd_timeout = ${stress?10s}${stress:300s}
> smtpd_hard_error_limit = ${stress?2}${stress:20}
I thought this was going to be easy, but the built-in default
values for these parameters are type "int", and do not accept
the conditional expressions.
Either this means changing the w
Mumtaz Ali:
> (set -e; echo "[$i]"; cd $i; make 'CC=gcc -Wmissing-prototypes
> -Wformat -DUSE_SASL_AUTH -DUSE_CYRUS_SASL \> -I/usr/local/include/sasl'
> update MAKELEVEL=) || exit 1; \
You mis-typed the "make makefiles" command. The > is not supposed to be there.
Wietse
Noel Jones:
> Wietse Venema wrote:
> > Something that will drastically cut the time per session:
> >
> > smtpd_timeout = ${stress?10s}${stress:300s}
>
> I would be concerned about sites that are chronically short of
> smtpd processes with an inexperienced or inattentive admin.
> Maybe 20s~30s ra
Wietse Venema wrote:
Something that will drastically cut the time per session:
smtpd_timeout = ${stress?10s}${stress:300s}
I would be concerned about sites that are chronically short of
smtpd processes with an inexperienced or inattentive admin.
Maybe 20s~30s rather than 10s. That's still 10
i m getting this error when compiling postfix please suggest how to solve
this compile error. if possible plz guide detailed.. even gcc and devel package
of gcc is installed.
make
set -e; for i in src/util src/global src/dns src/tls src/xsasl src/milter
src/master src/postfix src/smtpstone
As there is every possibility that spammers can also send with real
user's id and I am planning to have a check that would be able to
compare the From: and the Message-Id domains to check for spoofed
messages coming in from an open relay. Its just an idea to eliminate
every possible attack. A
On Fri, Feb 06, 2009 at 01:37:41PM -0500, Wietse Venema wrote:
> smtpd_timeout = ${stress?10s}${stress:300s}
> smtpd_hard_error_limit = ${stress?2}${stress:20}
I guess disabling reverse DNS lookups under stress is too drastic. It
would certainly not help folks with "reject_unknown_client", even i
With Postfix 2.5 I introdoced stress-dependent behavior in the SMTP
server, but this was left turned off by default.
I'm thinking of turning on some stress-dependent behavior by default
in Postfix 2.6, to make Postfix look better in stupid benchmarks
(just like in_flow_delay and smtpd_client_conne
Nandini Mocherla wrote, at 02/06/2009 12:49 PM:
> I am new to postfix and thinking for a way to block the email address
> which does not come from that domain. For example, if someone with a
> @xxx.com email sends to a list it must come from a server in the xxx.com
> domain else it should be rejec
Pablo Scheri:
>
> dig mx trendargentina.com.ar.
Looks good...
> postconf | grep dns
>
> disable_dns_lookups = no
> lmtp_host_lookup = dns
> smtp_host_lookup = dns
It's using DNS
> ---
> grep '10\.0\.0\.20..:25' /var/log/maillog | grep -v status=
>
Victor Duchovni wrote:
On Fri, Feb 06, 2009 at 09:11:43AM -0800, Roderick A. Anderson wrote:
mx.trendargentina.com.ar. 0INA10.0.0.208
mx.trendargentina.com.ar. 0INA10.0.0.207
What this says to me is every time Postfix requests the MX for
trendargentina.com.ar the name s
Hi,
I am new to postfix and thinking for a way to block the email address
which does not come from that domain. For example, if someone with a
@xxx.com email sends to a list it must come from a server in the xxx.com
domain else it should be rejected. Is it possible to do this?
On Fri, Feb 06, 2009 at 09:11:43AM -0800, Roderick A. Anderson wrote:
>> mx.trendargentina.com.ar. 0INA10.0.0.208
>> mx.trendargentina.com.ar. 0INA10.0.0.207
>
> What this says to me is every time Postfix requests the MX for
> trendargentina.com.ar the name server software
On Fri, Feb 06, 2009 at 07:13:17PM +0200, Tolga wrote:
> > Who can't use the certificate?
>
> I, when I try with Thunderbird from another location.
Well, it is Thunderbird that needs to extend its list of trusted
CAs not Postfix. No amount of tweaking the Postfix server will
make Thunderbird tru
Forgot to CC it.
Original Message
Subject: Re: TLS certificate
Date: Fri, 06 Feb 2009 19:11:43 +0200
From: Tolga
To: Patrick Ben Koetter
On Fri, 6 Feb 2009 15:58:29 +0100, Patrick Ben Koetter
wrote:
> * Tolga :
>>> Here's your error: "unable to verify the first certificate
Pablo Scheri wrote:
dig mx trendargentina.com.ar.
; <<>> DiG 9.3.3rc2 <<>> mx trendargentina.com.ar.
;; global options: printcmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 27701
;; flags: qr aa rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 1, ADDITIONAL: 2
;; QUESTION SECTION:
On Fri, Feb 06, 2009 at 02:49:42PM -0200, Pablo Scheri wrote:
> mx.trendargentina.com.ar. 0INA10.0.0.207
> mx.trendargentina.com.ar. 0INA10.0.0.208
>
>
> postconf | grep dns
>
> disable_dns_lookups = no
> lmtp_host_lookup = dns
dig mx trendargentina.com.ar.
; <<>> DiG 9.3.3rc2 <<>> mx trendargentina.com.ar.
;; global options: printcmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 27701
;; flags: qr aa rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 1, ADDITIONAL: 2
;; QUESTION SECTION:
;trendargentina.com.
mouss wrote:
>
> reject_unknown_helo_hostname is known to block "legitimate" mail, mostly
> from misconfigured sites (but it will defer mail in case of DNS problems
> even if the other side is well configured).
>
>>>snip
>
> No reason to remove all the checks. you can use:
>
> smtpd_helo_restr
On Fri, Feb 06, 2009 at 11:49:07AM +0100, Michael Monnerie wrote:
> On Donnerstag 05 Februar 2009 Victor Duchovni wrote:
> > Configure your Postgres database to use a LATIN-1 encoding. WIth this
> > you get a single-byte per character encoding and all byte patterns
> > are valid strings.
>
> The
On Fri, Feb 06, 2009 at 11:00:31AM -0500, Doug Jaquays wrote:
> Just to not leave this open-ended. I decided to just switch to
> Pear::Mail and use that to send directly to our production mail server.
> I appreciate all of the help provided, but for the small scope of what
> Postfix was doing and
On Fri, Feb 06, 2009 at 11:28:17AM +0100, Patrick Ben Koetter wrote:
> Here's your error: "unable to verify the first certificate". Did you add your
> CA certificate to your CA certificate store ca-bundles.crt (in your case)?
In what sense is that an "error"? He's got a private-label CA cert, why
Just to not leave this open-ended. I decided to just switch to Pear::Mail and
use that to send directly to our production mail server. I appreciate all of
the help provided, but for the small scope of what Postfix was doing and the
number of unknown possible issues, it was easier to port my cu
post...@corwyn.net wrote:
> Well, I thought I had this working, but apparently not. Domain names
> have been changed. 2.example.com is the mail server in this example
>
> postfix-2.3.3-2.1.centos.mysql_pgsql
>
> /etc/postfix/access:
> t...@1.example.com REJECT
>
> postmap /etc/postfix/access
richard lucassen wrote:
> reject_rbl_client list.dsbl.org
Wietse answered the main question, however dsbl.org is gone.
Recommend to remove it from all configs to prevent breakage in the future.
Brian
Well, I thought I had this working, but apparently not. Domain names
have been changed. 2.example.com is the mail server in this example
postfix-2.3.3-2.1.centos.mysql_pgsql
/etc/postfix/access:
t...@1.example.com REJECT
postmap /etc/postfix/access
telnet 2.example.com 25
EHLO 1.ex
On Fri, 6 Feb 2009 10:37:09 -0500 (EST)
wie...@porcupine.org (Wietse Venema) wrote:
> richard lucassen:
> > Apparently, this:
> >
> > smtpd_client_restrictions =
> > reject_rbl_client bl.spamcop.net
> > reject_rbl_client list.dsbl.org
> > reject_rbl_client virbl.dnsbl.bit.nl
>
> The above
richard lucassen:
> Apparently, this:
>
> smtpd_client_restrictions =
> reject_rbl_client bl.spamcop.net
> reject_rbl_client list.dsbl.org
> reject_rbl_client virbl.dnsbl.bit.nl
The above does RBL lookups (as requested by reject_rbl_client).
> replaced by this:
>
> smtpd_client_restrictio
Apparently, this:
smtpd_client_restrictions =
reject_rbl_client bl.spamcop.net
reject_rbl_client list.dsbl.org
reject_rbl_client virbl.dnsbl.bit.nl
replaced by this:
smtpd_client_restrictions =
hash:/etc/postfix/hash-tables/reject_rbl_client
cat hash:/etc/postfix/hash-tables/reject_rbl_
* Tolga :
>> Here's your error: "unable to verify the first certificate". Did you add your
>> CA certificate to your CA certificate store ca-bundles.crt (in your case)?
>>
>> p...@rick
>>
> I just did that, restarted postfix, and when I did an openssl s_client
> -starttls smtp -CAfile /etc/ssl
The DNS looks good. Can you give output for:
$ dig mx trendargentina.com.ar.
$ dig a mx.trendargentina.com.ar.
$ postconf | grep dns
The records that result in some kind of error while delivering to
the mx.trendargentina.com.ar machines. Something like:
$ grep '10\.0\.0\.20..:25' /var/log/maillo
jan gestre wrote:
Additional info:
I have four mail servers running identical configurations and it's now
exhibiting the same problem, I've disabled MailScanner in one of the
server coz I thought it might be the culprit but after I did that,
postfix keeps on rejecting emails even if the ip addre
I'd change this part (from primary MX):
smtpd_recipient_restrictions = permit_sasl_authenticated,
permit_mynetworks, reject_unauth_destination, permit_mx_backup
by adding check_sender_access hash:/etc/postfix/sender_access
after permit_mx_backup
Note that permit_mx_backup implies permit_auth_d
jan gestre wrote:
On Fri, Feb 6, 2009 at 12:34 PM, Sahil Tandon wrote:
On Fri, 06 Feb 2009, jan gestre wrote:
Why is it that whenever I send emails using yahoo/gmail from a
connection that uses dynamic ip address to the company's smtp server,
postfix blocks them and say it comes from a dynami
On Fri, Feb 6, 2009 at 2:20 PM, jan gestre wrote:
> On Fri, Feb 6, 2009 at 12:34 PM, Sahil Tandon wrote:
>> On Fri, 06 Feb 2009, jan gestre wrote:
>>
>>> Why is it that whenever I send emails using yahoo/gmail from a
>>> connection that uses dynamic ip address to the company's smtp server,
>>> po
This is the output of the dig command:
; <<>> DiG 9.3.3rc2 <<>> mx mx.trendargentina.com.ar
;; global options: printcmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 742
;; flags: qr aa rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;mx.trendar
Thanks!
Carlos
On Fri, Feb 6, 2009 at 12:02 AM, Wietse Venema wrote:
> Carlos Horowicz:
>> Hello list,
>>
>> I recently found out an unsolicited e-mail that caused high CPU
>> consumption by cyrus imap on different mailstores.
>> The poisoned e-mail has a structure of over 31.000 repetiions of t
Patrick Ben Koetter yazmış:
* Tolga :
Please show evidence of such a session.
to...@ozses:~$ openssl s_client -starttls smtp -CApath /etc/ssl/private
-connect localhost:25
CONNECTED(0003)
depth=0
/C=TR/ST=Marmara/L=Istanbul/O=ozses.net/OU=ozses.net/CN=mail.ozses.net/emailaddre
On Donnerstag 05 Februar 2009 Victor Duchovni wrote:
> Configure your Postgres database to use a LATIN-1 encoding. WIth this
> you get a single-byte per character encoding and all byte patterns
> are valid strings.
The problem is IMAP and POP couldn't convert entries to the client's
charset of co
* Tolga :
> > Please show evidence of such a session.
>
> to...@ozses:~$ openssl s_client -starttls smtp -CApath /etc/ssl/private
> -connect localhost:25
> CONNECTED(0003)
> depth=0
> /C=TR/ST=Marmara/L=Istanbul/O=ozses.net/OU=ozses.net/CN=mail.ozses.net/emailaddress=to...@ozses.net
> verify
On Thu, Feb 05, 2009 at 07:43:38PM +0100, Patrick Ben Koetter wrote:
> * Tolga :
> > On Thu, Feb 05, 2009 at 04:25:50PM +0100, Patrick Ben Koetter wrote:
> > > * Tolga :
> > > > I am reading The Book of Postfix, I applied the steps CA.pl -newca,
> > > > openssl
> > > > req -new -nodes -keyout priv
59 matches
Mail list logo
