* Viktor Dukhovni [2013-08-20 16:51]:
> > I found the problem... In addition to my normal certificate, I had an
> > EC certificate.
> >
> > smtpd_tls_eccert_file=/etc/postfix/certs/cacert-karotte-ec.crt
>
> Though I think OpenSSL will generally detect attempts to configure
> a public key (certif
Rob Tanner:
> I'm trying to build Postfix with LDAP support on Red Hat ES 5. As
> per the LDAP_README, I added:
>
> make tidy
> make makefiles CCARGS="-I/usr/include -DHAS_LDAP -I/usr/include/sasl
> -DUSE_LDAP_SASL" \
> AUXLIBS="-L/usr/lib -lldap -L/usr/lib -llber"
>
> to the build process
I'm trying to build Postfix with LDAP support on Red Hat ES 5. As per the
LDAP_README, I added:
make tidy
make makefiles CCARGS="-I/usr/include -DHAS_LDAP -I/usr/include/sasl
-DUSE_LDAP_SASL" \
AUXLIBS="-L/usr/lib -lldap -L/usr/lib -llber"
to the build process and then make and make instal
Nicolas KOWALSKI:
> On Wed, Aug 21, 2013 at 09:15:46AM -0400, Wietse Venema wrote:
> > Nicolas KOWALSKI:
> > > On Wed, Aug 21, 2013 at 06:44:55AM -0400, Wietse Venema wrote:
> > > > Argh. You need to replace the 5.X.X.
> > > >
> > > > This pattern replaces both fives just to be sure.
> > > >
> >
On Wed, Aug 21, 2013 at 03:27:08PM +0200, Manuel Bieling wrote:
> On 08/21/2013 01:08 PM, Lang Alex wrote:
> >-debian 7, postfix 2.9.6
> >-no local domain, no mailboxes (root also aliased out of machine)
> >-only open relay with authorized people, mysql db backend
> >-no long way: postfix -doveco
On Wed, Aug 21, 2013 at 10:58:06AM -0400, Roman Gelfand wrote:
> For the outgoing emails, why is the configuration below not enough
> to:
> 1. Block +a...@domain.com
> 2. Allow all other emails
>
> main.cf
>
> smtpd_recipient_restrictions =
> check_recipient_access pcre:/etc/postfi
it gives configuration error.
Actually, I see what I needed to do.
In the pcre file, I should have added all other emails permit and in
main.cf add reject line
On Wed, Aug 21, 2013 at 11:11 AM, Noel Jones wrote:
> On 8/21/2013 9:58 AM, Roman Gelfand wrote:
>> For the outgoing emails, why is th
On 8/21/2013 9:58 AM, Roman Gelfand wrote:
> For the outgoing emails, why is the configuration below not enough to:
> 1. Block +a...@domain.com
> 2. Allow all other emails
>
> main.cf
>
> smtpd_recipient_restrictions =
> check_recipient_access pcre:/etc/postfix/recipient_access.pcre
For the outgoing emails, why is the configuration below not enough to:
1. Block +a...@domain.com
2. Allow all other emails
main.cf
smtpd_recipient_restrictions =
check_recipient_access pcre:/etc/postfix/recipient_access.pcre
/etc/postfix/recipient_access.pcre
/\+(,*)/reje
On Wed, Aug 21, 2013 at 09:15:46AM -0400, Wietse Venema wrote:
> Nicolas KOWALSKI:
> > On Wed, Aug 21, 2013 at 06:44:55AM -0400, Wietse Venema wrote:
> > > Argh. You need to replace the 5.X.X.
> > >
> > > This pattern replaces both fives just to be sure.
> > >
> > > /^5(\d\d )5(.*your:ipv6:ad
On Wed, Aug 21, 2013 at 09:15:46AM -0400, Wietse Venema wrote:
> Nicolas KOWALSKI:
> > On Wed, Aug 21, 2013 at 06:44:55AM -0400, Wietse Venema wrote:
> > > Argh. You need to replace the 5.X.X.
> > >
> > > This pattern replaces both fives just to be sure.
> > >
> > > /^5(\d\d )5(.*your:ipv6:ad
On 08/21/2013 01:08 PM, Lang Alex wrote:
Hi there,
-debian 7, postfix 2.9.6
-no local domain, no mailboxes (root also aliased out of machine)
-only open relay with authorized people, mysql db backend
-no long way: postfix -dovecot sasl - pam - mysql conect
-only direct: postfix - local mysql
Lang Alex:
> Thans very much.
>
> It sound like "there is no way without sasl"
Postfix supports TLS client certificates.
> and "all roads lead to dovecot"
Postfix supports more than one SASL provider.
Wietse
Nicolas KOWALSKI:
> On Wed, Aug 21, 2013 at 06:44:55AM -0400, Wietse Venema wrote:
> > Argh. You need to replace the 5.X.X.
> >
> > This pattern replaces both fives just to be sure.
> >
> > /^5(\d\d )5(.*your:ipv6:addr:here.*)/ 4${1}4$2
>
> I used this one ('-' instead of space):
That
Thans very much.
It sound like "there is no way without sasl" and "all roads lead to
dovecot"
Alex
On 21.8.2013 14:17, Wietse Venema wrote:
Lang Alex:
[no local mailboxes]
Postfix relay-only configuration:
/etc/postfix/main.cf:
smtpd_recipient_restrictions =
permit_sasl_auth
On 21.8.2013 14:09, /dev/rob0 wrote:
On Wed, Aug 21, 2013 at 01:08:15PM +0200, Lang Alex wrote:
-debian 7, postfix 2.9.6
-no local domain, no mailboxes (root also aliased out of machine)
-only open relay with authorized people, mysql db backend
"Open" and "authorized" (which really should be "a
On Wed, Aug 21, 2013 at 07:09:32AM -0500, /dev/rob0 wrote:
> "Open" and "authorized" (which really should be "authenticated"
> in this context are contradictions in terms. "Open" means
> "anyone can relay without authentication."
"Open" also means "unterminated parenthesis", whereby I forgot the
On Wed, Aug 21, 2013 at 06:44:55AM -0400, Wietse Venema wrote:
> Argh. You need to replace the 5.X.X.
>
> This pattern replaces both fives just to be sure.
>
> /^5(\d\d )5(.*your:ipv6:addr:here.*)/ 4${1}4$2
I used this one ('-' instead of space):
/^5(\d\d-)5(.*2a01:e35:8ae7:65f0::2.*)/
Lang Alex:
[no local mailboxes]
Postfix relay-only configuration:
/etc/postfix/main.cf:
smtpd_recipient_restrictions =
permit_sasl_authenticated, reject
Then, configure your favorite SASL provider according to
http://www.postfix.org/SASL_README.html
Wietse
On Wed, Aug 21, 2013 at 01:08:15PM +0200, Lang Alex wrote:
> -debian 7, postfix 2.9.6
> -no local domain, no mailboxes (root also aliased out of machine)
> -only open relay with authorized people, mysql db backend
"Open" and "authorized" (which really should be "authenticated" in
this context are
Hi there,
-debian 7, postfix 2.9.6
-no local domain, no mailboxes (root also aliased out of machine)
-only open relay with authorized people, mysql db backend
-no long way: postfix -dovecot sasl - pam - mysql conect
-only direct: postfix - local mysql ( - view to remote dbs,thats
another sto
Nicolas KOWALSKI:
> > /etc/postfix/smtp_reply_filter:
> > # Postfix uses the last reply code in a multi-line reply.
> > /^5(\d\d .*your:ipv6:addr:here.*)/ 4$1
> >
> > Then, Postfix will try to deliver to a different IP address.
>
> I also tried this workaround, but it does not seem t
On Tue, Aug 20, 2013 at 02:23:21PM -0400, Wietse Venema wrote:
> Nicolas KOWALSKI:
> > I am not able to have an IPv6 rDNS record with my ISP, only an IPv4 one.
> > I guess this is why it works when using IPv4 (tested by forcing
> > inet_protocols = ipv4), and does not work any more with IPv6.
> >
23 matches
Mail list logo
