Re: Reverse DNS Rejection Problem

On Wed, 2009-10-28 at 08:45 +1100, Phillip Smith wrote: > 2009/10/28 Dennis Putnam > Thanks or the reply. That sucks. Is there a way around this, > short of turning that off or whitelisting? > > Tell the admin of the remote domain to fix their PTR records and/or MX > helo configur

Re: dns failure - postfix - avg - outlook

On 10/28/2009 7:23 PM, Peter Macko wrote: DNS that is used by postfix stopped working and consequently caused postfix respond to: 1. senders from outside: NOQUEUE: reject: RCPT from unknown[194.168.1.66]: 450 4.1.8 2. senders from inside (LAN): NOQUEUE: reject: RCPT from unknown[172.16.125.115]:

dns failure - postfix - avg - outlook

DNS that is used by postfix stopped working and consequently caused postfix respond to:1. senders from outside: NOQUEUE: reject: RCPT from unknown[194.168.1.66]: 450 4.1.82. senders from inside (LAN): NOQUEUE: reject: RCPT from unknown[172.16.125.115]: 450 4.1.2 1. case looks Ok, mailservers fr

Re: How to reduce memory footpring?

> Rene Bartsch: >> PID USER PR NI VIRT RES SHR S %CPU %MEM TIME+COMMAND >> 7159 postfix 20 0 79960 24m 3332 S 0 12.4 0:00.14 smtpd 7897 postfix 20 0 79204 23m 2736 S 0 11.7 0:00.10 smtpd > > Please report what portions of the process memory map

Re: How to reduce memory footpring?

Rene Bartsch: > PID USER PR NI VIRT RES SHR S %CPU %MEM TIME+COMMAND > 7159 postfix 20 0 79960 24m 3332 S 0 12.4 0:00.14 smtpd > 7897 postfix 20 0 79204 23m 2736 S 0 11.7 0:00.10 smtpd Please report what portions of the process memory map are sh

Re: OT: Supply Missing text/plain MIME part?

On Wed, 28 Oct 2009 14:38:12 -0500 Noel Jones wrote: > I say put on your somber face and agree that Hotmal is goofed > up, hope they fix it soon. My experience with Hotmail and other major web mail vendors is that they are too busy finding new and innovative ways to break email interconnectivit

Re: How to reduce memory footpring?

Zitat von Rene Bartsch : On Wed, Oct 28, 2009 at 08:28:35PM +0100, Rene Bartsch wrote: smtpd needs 24 MByte per client connection. You may not be measuring correctly, are you sure you are not counting shared executable pages or otherwise mapped read-only pages. Output of "top": PID USER

Re: How to reduce memory footpring?

On Wed, Oct 28, 2009 at 09:43:23PM +0100, Rene Bartsch wrote: > > On Wed, Oct 28, 2009 at 08:28:35PM +0100, Rene Bartsch wrote: > > > >> smtpd needs 24 MByte per client connection. > > > > You may not be measuring correctly, are you sure you are not counting > > shared executable pages or otherwis

Re: How to reduce memory footpring?

> On Wed, Oct 28, 2009 at 08:28:35PM +0100, Rene Bartsch wrote: > >> smtpd needs 24 MByte per client connection. > > You may not be measuring correctly, are you sure you are not counting > shared executable pages or otherwise mapped read-only pages. Output of "top": PID USER PR NI VIRT

Re: How to reduce memory footpring?

On Wed, Oct 28, 2009 at 08:28:35PM +0100, Rene Bartsch wrote: > smtpd needs 24 MByte per client connection. You may not be measuring correctly, are you sure you are not counting shared executable pages or otherwise mapped read-only pages. > Is there any way to reduce that? If you have 24MB of n

Re: OT: Supply Missing text/plain MIME part?

On 10/28/2009 2:23 PM, Jim Rosenberg wrote: This is not really a Postfix problem, but I'm hoping Postfix may be able to be part of the problem. The problem concerns [pardon my foul language] Hotmail. It seems in recent weeks with the cutover of Hotmail to Windows Live, or whatever it is, when a H

How to reduce memory footpring?

Hi, smtpd needs 24 MByte per client connection. Is there any way to reduce that? Thanx for any help, Renne

OT: Supply Missing text/plain MIME part?

This is not really a Postfix problem, but I'm hoping Postfix may be able to be part of the problem. The problem concerns [pardon my foul language] Hotmail. It seems in recent weeks with the cutover of Hotmail to Windows Live, or whatever it is, when a Hotmail user receives an E-mail whose text

Reverse DNS Rejection Problem

Paul Beard put forth on 10/28/2009 11:48 AM: > On Oct 28, 2009, at 9:13 AM, Stan Hoeppner wrote: > >> Debian GNU/Linux isn't OSX (it's better). Dunno if this is a >> possibility for you, but it is an option if you want to keep that PPC >> hardware humming away with fully up to date modern code.

Re: [Postfix] Wrong Time

On Wed, Oct 28, 2009 at 11:09:04AM +0100, Jacopo Cappelli wrote: > I reboot the machine ad work correctly. My guess would be that you simply needed to restart the syslogd(8). > It's no good for me, too Windows-like. Top-posting is Windows-like as well, please don't do it. :) -- Offlist mail

Re: Reverse DNS Rejection Problem

On Oct 28, 2009, at 9:13 AM, Stan Hoeppner wrote: Debian GNU/Linux isn't OSX (it's better). Dunno if this is a possibility for you, but it is an option if you want to keep that PPC hardware humming away with fully up to date modern code. If mgmt doesn't want someone compiling a native ver

Reverse DNS Rejection Problem

Dennis Putnam put forth on 10/28/2009 10:53 AM: > Yes. However, that is the version Apple provides with OS X 10.4. OS X > 10.6, which has the latest version of Postfix, will not run on PPC > servers so we are in the process of acquiring Intel servers (dictated by > budget issues beyond my control).

Re: Reverse DNS Rejection Problem

Management doesn't want me to spend the time doing that since we are upgrading the servers. Welcome to my world between a rock and a hard place. :-) The really bad part is all this configuration stuff will need to be migrated to the new version of Postfix anyway. On Oct 28, 2009, at 12:00

Re: Reverse DNS Rejection Problem

Dennis Putnam kirjoitti: Yes. However, that is the version Apple provides with OS X 10.4. OS X 10.6, which has the latest version of Postfix, will not run on PPC servers so we are in the process of acquiring Intel servers (dictated by budget issues beyond my control). Unfortunately, I have to d

Re: Reverse DNS Rejection Problem

Yes. However, that is the version Apple provides with OS X 10.4. OS X 10.6, which has the latest version of Postfix, will not run on PPC servers so we are in the process of acquiring Intel servers (dictated by budget issues beyond my control). Unfortunately, I have to deal with this immedia

Reverse DNS Rejection Problem

Dennis Putnam put forth on 10/28/2009 8:57 AM: > Thanks for the reply. It appears this is not supported with my version > of Postfix (2.1.5). When I try this syntax: You do realize that 2.1.5 is dated around mid 2004, yes? Over 5 years old. Any Postfix installation older than 2.3.x is no longer

Re: parsing email headers using milter protocol

On Oct 28, 2009, at 10:51 AM, "Sharma, Ashish" wrote: Hello, I want to filter e-mail headers received on my Postfix mail receiving server. I looked on the java implementation of milter protocol and found sendmail-jilter [http://sendmail-jilter.sourceforge.net/] This API claims to be

parsing email headers using milter protocol

Hello, I want to filter e-mail headers received on my Postfix mail receiving server. I looked on the java implementation of milter protocol and found sendmail-jilter [http://sendmail-jilter.sourceforge.net/] This API claims to be java implementation for

Re: Postfix-SASL-GSSAPI question

On Wed, Oct 28, 2009 at 05:11:33PM +0330, Ali Majdzadeh wrote: > ehlo example.com > auth gssapi base 64 encoded userid The GSSAPI handshake does not work this way. > When I monitor the logs, I see the following failure messages: > warning: SASL authentication failure: GSSAPI Error: Invalid token

Re: Reverse DNS Rejection Problem

Dennis Putnam: > Thanks for the reply. It appears this is not supported with my version > of Postfix (2.1.5). When I try this syntax: > > smtpd_helo_restrictions = > check_client_access pcre:/etc/postfix/heloaccept.pcre Sorry. "pcre" should be "cidr" everywhere in my reply. Some neuron

Re: Reverse DNS Rejection Problem

Dennis Putnam wrote: > Thanks for the reply. It appears this is not supported with my version > of Postfix (2.1.5). When I try this syntax: > > smtpd_helo_restrictions = > check_client_access pcre:/etc/postfix/heloaccept.pcre > > I get this error: > > fatal: unsupported dictionary type:

Re: Reverse DNS Rejection Problem

Thanks for the reply. It appears this is not supported with my version of Postfix (2.1.5). When I try this syntax: smtpd_helo_restrictions = check_client_access pcre:/etc/postfix/heloaccept.pcre I get this error: fatal: unsupported dictionary type: pcre On Oct 28, 2009, at 8:16 AM, W

Postfix-SASL-GSSAPI question

Hello All I have installed cyrus-SASL libraries to do GSSAPI-based authentication when interacting with Postfix. I have also installed and tested Kerberos. I can successfully test GSSAPI authentication using samples provided by SASL (sample-server and sample-client). I have created a service princi

Re: check_recipient_access - negate ldap query to return reject if user is NOT found?

On 10/28/2009 8:11 AM, Harakiri wrote: --- On Wed, 10/28/09, Noel Jones wrote: The proper solution is to use postfix's built-in recipient validation. Valid recipients should be listed in the proper table for the address class of the recipient domain, then you can reject all unknown recipien

Re: check_recipient_access - negate ldap query to return reject if user is NOT found?

--- On Wed, 10/28/09, Noel Jones wrote: > > The proper solution is to use postfix's built-in recipient > > validation.  Valid recipients should be listed in the > proper > table for the address class of the recipient domain, then > you > can reject all unknown recipients with a simple > "rej

Re: Adding headers in Postfix mails

On 10/28/2009 3:43 AM, Sharma, Ashish wrote: Hello, I am unable to see the following headers in e-mails received on my Postfix e-mail receiving server: 1. Return-Path The Return-Path: header is added on final delivery, and is never present in postfix queue files. If it's not added on final

Re: Adding headers in Postfix mails

On Wed, 28 Oct 2009 12:22:43 + "Sharma, Ashish" wrote: > John > > Thanks for the reply. > > But please post some reference link or samples as I am unable to > understand your answer. It is not a function of postfix; you need to configure whatever mail-reading program you use to show them.

Re: check_recipient_access - negate ldap query to return reject if user is NOT found?

On 10/28/2009 6:55 AM, Harakiri wrote: Hi, my current setup is using check_recipient_access with a SQL table. This works fine since i can negate the query to return REJECT when a user is not found, if the user is found, the query returns DUNNO to proceed with addtional checks (greylisting, rb

RE: Adding headers in Postfix mails

John Thanks for the reply. But please post some reference link or samples as I am unable to understand your answer. Ashish -Original Message- From: owner-postfix-us...@postfix.org [mailto:owner-postfix-us...@postfix.org] On Behalf Of John Peach Sent: Wednesday, October 28, 2009 5:39 P

Re: Setup Question with multiple Interfaces and domains.

Stan Hoeppner: > Wietse Venema put forth on 10/28/2009 5:46 AM: > > > You don't need multiple network cards. You simply need a box with > > multiple network addresses. > > For example, on Debian 5.0 (likely similar on other *nix distros) you > could do something like this: > > /etc/network/inter

Re: Reverse DNS Rejection Problem

Dennis Putnam: > It is beginning to appear this is my only alternative. However, > maintaining a whilelist will require some special approvals by our > security auditors. In any case, assuming I can get approval, is the > syntax for this the same as the other hash files (ie. IP address > fo

Re: Adding headers in Postfix mails

On Wed, 28 Oct 2009 08:43:34 + "Sharma, Ashish" wrote: > Hello, > > I am unable to see the following headers in e-mails received on my > Postfix e-mail receiving server: > > > 1. Return-Path > > 2. Received: from > > Similar to header on gmail > > Received: from dev16 ([123.

check_recipient_access - negate ldap query to return reject if user is NOT found?

Hi, my current setup is using check_recipient_access with a SQL table. This works fine since i can negate the query to return REJECT when a user is not found, if the user is found, the query returns DUNNO to proceed with addtional checks (greylisting, rbl), im doing this with a simple sql union

Setup Question with multiple Interfaces and domains.

Wietse Venema put forth on 10/28/2009 5:46 AM: > You don't need multiple network cards. You simply need a box with > multiple network addresses. For example, on Debian 5.0 (likely similar on other *nix distros) you could do something like this: /etc/network/interfaces auto lo iface lo inet loop

Re: Reverse DNS Rejection Problem

It is beginning to appear this is my only alternative. However, maintaining a whilelist will require some special approvals by our security auditors. In any case, assuming I can get approval, is the syntax for this the same as the other hash files (ie. IP address followed by REJECT, OK, etc

Re: Setup Question with multiple Interfaces and domains.

Marcelo Iturbe: > Hello, > Thank you for your quick response. > > I apologize if I was not completely clear. I have set up virtual domains and > domain aliasing before, all going through the same interface sharing the > same IP. > > In this case, I need domainA.com (thus mail.domainA.com) and dom

Re: [Postfix] Wrong Time

Jacopo Cappelli: > i do apt-get install --reinstall postfix and reinstall postfix with > the correct permission and owner but not work... > > What's happen? :S Have you already shown LOGGING that has the good and bad time? Wietse

Re: Limits of map files length my machine can take

Zitat von ram : On Wed, 2009-10-28 at 10:46 +0100, lst_ho...@kwsoft.de wrote: Zitat von ram : > We need to design a mail system where postfix transport maps file will > grow based on the inputs. . This may grow to a million lines > > I need to know what will be the max entries in transport ma

Re: [Postfix] Wrong Time

I reboot the machine ad work correctly. It's no good for me, too Windows-like. Thanks very much :) Jacopo 2009/10/28 Jacopo Cappelli : > Hi > > 2009/10/27 Wietse Venema : >> Jacopo Cappelli: >>> Only security is grsec but don't block anything of Postfix. >> >> Logging the "wrong time" means one o

Re: Limits of map files length my machine can take

On Wed, 2009-10-28 at 10:46 +0100, lst_ho...@kwsoft.de wrote: > Zitat von ram : > > > We need to design a mail system where postfix transport maps file will > > grow based on the inputs. . This may grow to a million lines > > > > I need to know what will be the max entries in transport map that t

Re: Limits of map files length my machine can take

Zitat von ram : We need to design a mail system where postfix transport maps file will grow based on the inputs. . This may grow to a million lines I need to know what will be the max entries in transport map that the machine can handle ( 4 GB Ram , Quad Xeon) .. given that the system is runnin

Re: [Postfix] Wrong Time

Hi 2009/10/27 Wietse Venema : > Jacopo Cappelli: >> Only security is grsec but don't block anything of Postfix. > > Logging the "wrong time" means one of the following: > > 1) The timezone file is not accessible (no file, no permission). > Use strace to see what system call fails. use strace pos

Limits of map files length my machine can take

We need to design a mail system where postfix transport maps file will grow based on the inputs. . This may grow to a million lines I need to know what will be the max entries in transport map that the machine can handle ( 4 GB Ram , Quad Xeon) .. given that the system is running postfix and almos

Adding headers in Postfix mails

Hello, I am unable to see the following headers in e-mails received on my Postfix e-mail receiving server: 1. Return-Path 2. Received: from Similar to header on gmail Received: from dev16 ([123.123.123.123]) by mx.google.com with SMTP id ; Tue, 2