RE: Postfix -- question regarding SPAM and Mailman

> This message was RETURNED TO your mailman service. > That does not prove that it was SENT FROM your mailman service. That is a great point. So, I dug a little deeper into the mail log and found what I believe is the outbound information: Oct 1 09:39:07 company-app02-listserv postfix/smtpd[3961

Re: postscreen_access_list requires 'permit', not 'PERMIT'

francis picabia: > On Tue, Oct 2, 2012 at 4:36 PM, Wietse Venema wrote: > > francis picabia: > > [ Charset ISO-8859-1 unsupported, converting... ] > >> I now notice there is a warning in the log file only when the > >> postscreen_access > >> file is read (and should have matched): > >> > >> Oct

Re: postscreen_access_list requires 'permit', not 'PERMIT'

On Tue, Oct 2, 2012 at 4:36 PM, Wietse Venema wrote: > francis picabia: > [ Charset ISO-8859-1 unsupported, converting... ] >> I now notice there is a warning in the log file only when the >> postscreen_access >> file is read (and should have matched): >> >> Oct 2 15:41:05 mx10 postfix/postscree

Re: error daemon dsn code

--On Tuesday, October 02, 2012 8:11 PM + Viktor Dukhovni wrote: On Tue, Oct 02, 2012 at 03:34:38PM -0400, Wietse Venema wrote: Alas, it makes no sense to me, and I am the person who designed this mail system. In particular I fail to understand what this is meant to achieve: 1) list

Re: error daemon dsn code

On Tue, Oct 02, 2012 at 03:34:38PM -0400, Wietse Venema wrote: > > So, does that look more correct to you as the way to correctly handle this? > > Alas, it makes no sense to me, and I am the person who designed > this mail system. > > In particular I fail to understand what this is meant to ac

Re: postscreen_access_list requires 'permit', not 'PERMIT'

francis picabia: [ Charset ISO-8859-1 unsupported, converting... ] > I now notice there is a warning in the log file only when the > postscreen_access > file is read (and should have matched): > > Oct 2 15:41:05 mx10 postfix/postscreen[11731]: warning: > cidr:/etc/postfix/postscreen_access: unkn

Re: error daemon dsn code

Quanah Gibson-Mount: > I changed the value for virtual_transport to be: > > error: 5.1.1 Mailbox unavailable > > And now I see: > > Oct 2 11:54:21 zre-ldap002 postfix/error[331]: 897561E37C6: > to=, relay=none, delay=0.06, > delays=0.03/0/0/0.02, dsn=5.1.1, status=bounced (Mailbox unavail > a

Re: error daemon dsn code

--On Tuesday, October 02, 2012 3:47 PM + Viktor Dukhovni wrote: On Tue, Oct 02, 2012 at 08:21:54AM -0400, Wietse Venema wrote: Quanah Gibson-Mount: > > virtual_transport = error [...] I could speculate that your "virtual_transport = error" causes the nexthop to become the recipient dom

postscreen_access_list requires 'permit', not 'PERMIT'

I now notice there is a warning in the log file only when the postscreen_access file is read (and should have matched): Oct 2 15:41:05 mx10 postfix/postscreen[11731]: warning: cidr:/etc/postfix/postscreen_access: unknown command: OK -- ignoring the remainder of this access list Also same warning

Re: Postfix -- question regarding SPAM and Mailman

> From: LinkedIn Connections > To: southeastern-michigan-chapter-owner > > Message-ID: > <717884137.7030508.8325486322321.javamail@ela6-app9640.prod> > Subject: You have been sent a file (Filename: Southeastern-77.pdf) > MIME-Version: 1.0 > Content-Type: multipart/alternative; >

Re: Pointer to 'guide for setting up postfix'?

On 10/2/2012 11:14 AM, John Hudak wrote: > I want to set up a mail server that sends mail through a relay, e.g. > smtp.google.com and receives mail via a > domain registered at No-ip.com via email redirects. I know this is > not the 'proper' way to set up a email server, b

Re: transport: list of domains

Am 02.10.2012 17:37, schrieb Wietse Venema: > Robert Schetterer: >>> Therefore, instead of using FILTER, and instead of using filters >>> per gmx MX record, I would use a transport map with ``gmx.net->slow:''. >> >> it was asked to avoid list of domains ( may getting huge ) for slow >> transport,

Pointer to 'guide for setting up postfix'?

I want to set up a mail server that sends mail through a relay, e.g. smtp.google.com and receives mail via a domain registered at No-ip.com via email redirects. I know this is not the 'proper' way to set up a email server, but in this current situation, this is what I have to work with. A pointer

Re: Content filtering messages from sasl authenticated users

Il 02/10/2012 14.35, Ralf Hildebrandt ha scritto: Hello everyone on the list, as subject, how can I pass through a content filter only the messages arriving from sasl authenticated users ? Hard option: Use a policy daemon to return "FILTER foobar:dummy" if the user has authenticated (sasl_usern

Re: error daemon dsn code

On Tue, Oct 02, 2012 at 08:21:54AM -0400, Wietse Venema wrote: > Quanah Gibson-Mount: > > > > virtual_transport = error > > [...] > > I could speculate that your "virtual_transport = error" causes the > nexthop to become the recipient domain (zre-ldap002.eng.vmware.com) > which then is reported

Postfix -- question regarding SPAM and Mailman

My apologies -- I forgot to change the subject line last night. This is a resend of the question below. --- I have a question for this POSTFIX group dealing with SPAM. We currently have a Postfix - Mailman - SYMANTEC Cloud (VIRUS / SPAM FILTER) configuration. The M

Re: transport: list of domains

Robert Schetterer: > > Therefore, instead of using FILTER, and instead of using filters > > per gmx MX record, I would use a transport map with ``gmx.net->slow:''. > > it was asked to avoid list of domains ( may getting huge ) for slow > transport, so i tested > check_recipient_mx_access for avoi

Re: transport: list of domains

Am 02.10.2012 17:02, schrieb Wietse Venema: > Robert Schetterer: >> smtpd_data_restrictions = check_recipient_mx_access >> hash:/etc/postfix/check_recipient_mx_access > > Postfix has no multi-recipient lookup feature, so the above is a > NOOP for multi-recipient mail. > >> mx0.gmx.net FILTER slow

Re: transport: list of domains

Robert Schetterer: > smtpd_data_restrictions = check_recipient_mx_access > hash:/etc/postfix/check_recipient_mx_access Postfix has no multi-recipient lookup feature, so the above is a NOOP for multi-recipient mail. > mx0.gmx.net FILTER slow:mx0.gmx.net > mx1.gmx.net FILTER slow:mx1.gmx.net Absen

Re: transport: list of domains

Am 02.10.2012 15:51, schrieb Wietse Venema: > Robert Schetterer: >> master.cf >> ... >> slow unix - - n - - smtp >> >> main.cf >> slow_destination_concurrency_limit = 3 >> slow_destination_rate_delay = 1s >> slow_destination_recipient_limit = 6 > > With slow_destinat

Re: transport: list of domains

Robert Schetterer: > master.cf > ... > slow unix - - n - - smtp > > main.cf > slow_destination_concurrency_limit = 3 > slow_destination_rate_delay = 1s > slow_destination_recipient_limit = 6 With slow_destination_recipient_limit > 1, the scheduler controls delays, c

Re: MTA Deferring e-mail

On Tue, Oct 02, 2012 at 10:02:35AM +0200, Reindl Harald wrote: > Am 02.10.2012 02:56, schrieb Jason T. Slack-Moehrle: > >>> So it looks like incoming e-mail might be working now, outgoing > >>> not so much. > >> > >>> Oct 1 16:34:03 www postfix/smtp[3362]: connect to > >>> gmail.com[74.125.224.149

Re: transport: list of domains

Am 02.10.2012 11:23, schrieb Tom Kinghorn: > On 02/10/2012 11:21, Robert Schetterer wrote: >> guess this might be better >> >> check_recipient_mx_access type:table >> Search the specified access(5) database for the MX hosts for the >> RCPT TO domain, and execute the corresponding action. Note:

Re: Content filtering messages from sasl authenticated users

> > Hello everyone on the list, > > as subject, how can I pass through a content filter only the messages > > arriving from sasl authenticated users ? Easy option: Allow AUTH on the submission port only. That way you can specify the content_Filter in master.cf for that particular smtpd, e.g. lik

Re: error daemon dsn code

Quanah Gibson-Mount: > mydestination = localhost > transport_maps = proxy:ldap:/opt/zimbra/conf/ldap-transport.cf > virtual_alias_domains = proxy:ldap:/opt/zimbra/conf/ldap-vad.cf > virtual_alias_expansion_limit = 1 > virtual_alias_maps = proxy:ldap:/opt/zimbra/conf/ldap-vam.cf > virtual_mailbo

Re: Content filtering messages from sasl authenticated users

On Oct 2, 2012, at 8:08 AM, Giacomo Di Ciocco wrote: > Hello everyone on the list, > as subject, how can I pass through a content filter only the messages > arriving from sasl authenticated users ? > > Thank you, > Giacomo. greetings try smtpd_recipient_restrictions = reject_unknown_sender_d

Re: Content filtering messages from sasl authenticated users

Am 02.10.2012 14:08, schrieb Giacomo Di Ciocco: > Hello everyone on the list, > as subject, how can I pass through a content filter only the messages > arriving from sasl authenticated users ? > > Thank you, > Giacomo. thats to limited info, what content filter are you running also your postfix c

Content filtering messages from sasl authenticated users

Hello everyone on the list, as subject, how can I pass through a content filter only the messages arriving from sasl authenticated users ? Thank you, Giacomo.

Re: Warning "No address associated with hostname" for IPv6 address

Eray Aslan wrote: > For the record, Gentoo will default to multi on now unless your your > /etc/hosts file is huge. One just has to love the F/OSS community. Thanks. -Ralph

Re: transport: list of domains

On 02/10/2012 11:21, Robert Schetterer wrote: guess this might be better check_recipient_mx_access type:table Search the specified access(5) database for the MX hosts for the RCPT TO domain, and execute the corresponding action. Note: a result of "OK" is not allowed for safety reasons. Inst

Re: transport: list of domains

Am 02.10.2012 11:15, schrieb Robert Schetterer: > Am 02.10.2012 11:00, schrieb Tom Kinghorn: >> On 02/10/2012 10:39, Ralf Hildebrandt wrote: >>> * Tom Kinghorn : >>> domainname domainname: >>> >>> domainname is a copy of the "smtp...smtp" line in master, renamed to >>> "domainname.

Re: Question about DNS registries

On Tue, Oct 02, 2012 at 09:54:02AM +0100, Alumno Etsii wrote: > Hi list! > > Yesterday I was experimenting with the DNS registries assigned to my mail > server. [..] > But yesterday I changed this registry: > > devels.es. 13325 IN A 91.215.158.237 > > To: > > devels.

Re: transport: list of domains

Am 02.10.2012 11:00, schrieb Tom Kinghorn: > On 02/10/2012 10:39, Ralf Hildebrandt wrote: >> * Tom Kinghorn : >> domainname domainname: >> >> domainname is a copy of the "smtp...smtp" line in master, renamed to >> "domainname...smtp" >> >> and then use domainname_concurrency_limit

Re: transport: list of domains

On 02/10/2012 10:39, Ralf Hildebrandt wrote: * Tom Kinghorn : domainname domainname: domainname is a copy of the "smtp...smtp" line in master, renamed to "domainname...smtp" and then use domainname_concurrency_limit Thanks Ralph. I think my explanation of the problem was inc

Re: transport: list of domains

On Tue, Oct 02, 2012 at 10:30:27AM +0200, Tom Kinghorn wrote: > Good morning List. [..] > Is there a way to set the smtp_concurrency_limit for these domains > without creating thousands of lines with > > domainnametransport: Something like: mx1.bigisp.com trans

Re: Warning

Ralph Seichter seichter.de> writes: > I agree. Gentoo documentation states that "This is off by default, as > it may cause a substantial performance loss at sites with large hosts > files.", but large host files are no longer en vogue. > > Well, "multi on" did the trick, so thanks for your suppor

Question about DNS registries

Hi list! Yesterday I was experimenting with the DNS registries assigned to my mail server. Currently I have this configuration: ;; ANSWER SECTION: devels.es. 13325 IN A 91.215.158.237 ;; ANSWER SECTION: devels.es. 14400 IN MX 0 mail.devels.es. ;

Re: transport: list of domains

* Tom Kinghorn : > Good morning List. > > I have a problem with a service provider rejecting connections due to > "too many concurrent connections". > They have a huge hosting platform with thousands of domains served by > their mail servers. > > Is there a way to set the smtp_concurrency_limit f

transport: list of domains

Good morning List. I have a problem with a service provider rejecting connections due to "too many concurrent connections". They have a huge hosting platform with thousands of domains served by their mail servers. Is there a way to set the smtp_concurrency_limit for these domains without cre

Re: MTA Deferring e-mail

Am 02.10.2012 02:56, schrieb Jason T. Slack-Moehrle: >>> So it looks like incoming e-mail might be working now, outgoing >>> not so much. >> >>> Oct 1 16:34:03 www postfix/smtp[3362]: connect to >>> gmail.com[74.125.224.149]:25: Connection timed out >> >> This looks quite like a "disable_dns_loo