Re: OpenSSL: TXT_DB error number 2

On Thu, Nov 15, 2012 at 01:04:21AM -0500, thorso...@lavabit.com wrote: > > Do you really need a CA for your SMTP server certificate? Which > > SMTP clients will trust this private CA? > > What do you mean by "SMTP clients"? Are you talking about software or > people? I'm the only user of that mac

Re: OpenSSL: TXT_DB error number 2

> Do you really need a CA for your SMTP server certificate? Which > SMTP clients will trust this private CA? What do you mean by "SMTP clients"? Are you talking about software or people? I'm the only user of that machine. IIRC, it's possible to check certificates in Gnus, but I haven't tried yet.

Re: Policy delegation after alias expansion

Reinaldo Gil Lima de Carvalho: > On Wed, Nov 14, 2012 at 9:15 PM, Wietse Venema wrote: > > > Reinaldo de Carvalho: > > > Is possible call a policy daemon after alias expansion? > > > > local_recipient_maps and reject_unverified_recipient will verify > > that the alias exist, but won't look at the

Re: Policy delegation after alias expansion

On Wed, Nov 14, 2012 at 9:15 PM, Wietse Venema wrote: > Reinaldo de Carvalho: > > Is possible call a policy daemon after alias expansion? > > local_recipient_maps and reject_unverified_recipient will verify > that the alias exist, but won't look at the result of expansion. > > Then I need make th

Re: Policy delegation after alias expansion

Reinaldo de Carvalho: > Is possible call a policy daemon after alias expansion? local_recipient_maps and reject_unverified_recipient will verify that the alias exist, but won't look at the result of expansion. Wietse

Re: Policy delegation after alias expansion

On 11/14/2012 11:45 PM, Reinaldo de Carvalho wrote: Is possible call a policy daemon after alias expansion? Policy checks happen in the context of smtp reception (before end-of-data); alias expansion happens once the message has been accepted (after end-of-data) and just before it is queued.

Re: Clarification of MX lookups when requeuing deferred messages

On Wed, Nov 14, 2012 at 03:03:00PM +, Quinton Phil P wrote: > I'm after some clarification on how Postfix handles MX lookups > against domains when you requeue a message that has been deferred. Postfix treats deferred messages in the same way as new messages. The queue file does not store any

Re: OpenSSL: TXT_DB error number 2

On Tue, Nov 13, 2012 at 12:18:10AM -0500, thorso...@lavabit.com wrote: > % openssl ca -out foo-cert.pem -infiles foo-req.pem Do you really need a CA for your SMTP server certificate? Which SMTP clients will trust this private CA? > raised "TXT_DB error number 2". This means that your CA is conf

Re: Clarification of MX lookups when requeuing deferred messages

Quinton Phil P: > When the mail either requeues itself, or you postsuper -r {ID} the > following statement appears to be true: > > Postfix does not do a fresh lookup against bigorg.com, it uses the > destination server it found in the first attempt, in this case > postfixserver22.bigorg.com. Pleas

Clarification of MX lookups when requeuing deferred messages

Hi, I'm after some clarification on how Postfix handles MX lookups against domains when you requeue a message that has been deferred. An example: Let say you send an email to t...@bigorg.com and for some reason it fails, and postfix defers it, sticks it back in the queu

Re: intermittent DNS lookup failure in combination with reject_unknown_client_hostname

IMAP List Administration: > > On 11/14/2012 11:06 AM, Jamie Paul Griffin wrote: > > I've been getting client requests from this ip as well, i've put it into a > > permenant spamd(8) blacklist. > that's highly interesting, but: > > 1) the sender was legitimate > 2) my problem is some sort of int

Re: intermittent DNS lookup failure in combination with reject_unknown_client_hostname

On 11/14/2012 11:06 AM, Jamie Paul Griffin wrote: > I've been getting client requests from this ip as well, i've put it into a > permenant spamd(8) blacklist. that's highly interesting, but: 1) the sender was legitimate 2) my problem is some sort of intermittent DNS lookup failure 3) that addre

Re: intermittent DNS lookup failure in combination with reject_unknown_client_hostname

/ IMAP List Administration wrote on Tue 13.Nov'12 at 21:55:11 +0100 / > [example of delivery failure] > Nov 13 15:10:29 dna prefilter/smtpd[9340]: connect from unknown[8.7.42.206] I've been getting client requests from this ip as well, i've put it into a permenant spamd(8) blacklist.