Re: use of two check_policy_service

On 11/24/2014 3:35 PM, Ing. Jorge E. Rojas wrote: > hello guys > > after a tedious an unsuccesfull search in the archive list, a lot > of documents and notes stored with the years in my hdd and old > (paper) notebooks besides a lot of searches in internet i must > surrender to the fact that i c

use of two check_policy_service

hello guys after a tedious an unsuccesfull search in the archive list, a lot of documents and notes stored with the years in my hdd and old (paper) notebooks besides a lot of searches in internet i must surrender to the fact that i can do this without help i must prepare a postfix server

Re: 521 SMTP reply code (was: Null MX back from the dead)

Viktor Dukhovni: > On Mon, Nov 24, 2014 at 02:04:25PM +0100, A. Schulze wrote: > > I stumbled about null MX again because I would like to setup some domains > > with "MX 0 ." but postfix ( 2.11 and 2.12 ) still reply with "Malformed DNS > > reply" > > How do you see the probability the draft will b

Re: Pick the transport based on the destination host, not domain?

Viktor Dukhovni: > On Sun, Nov 23, 2014 at 02:17:23PM -0500, Wietse Venema wrote: > > > I have a preference for the design that addresses the problem at a > > lower level in the stack, so that the solution is not limited to > > the SMTP client and not limited to inet protocol selection. > > > > T

Re: Pick the transport based on the destination host, not domain?

On Sun, Nov 23, 2014 at 02:17:23PM -0500, Wietse Venema wrote: > I have a preference for the design that addresses the problem at a > lower level in the stack, so that the solution is not limited to > the SMTP client and not limited to inet protocol selection. > > That code can then also be used

Re: 521 SMTP reply code (was: Null MX back from the dead)

On Mon, Nov 24, 2014 at 02:04:25PM +0100, A. Schulze wrote: > >>This is draft -08. Is that followed by AUTH48? > > > >The -08 version was approved by IESG, and is now in the RFC editor > >queue. > > Viktor, > > In the meantime there is a version 10 available which changes the 521 reply > to "556

Re: Pick the transport based on the destination host, not domain?

On 11/24/2014 8:03 AM, Wietse Venema wrote: Darren Pilgrim: On 11/23/2014 8:42 PM, Peter wrote: On 11/24/2014 02:25 PM, Darren Pilgrim wrote: You can't use policy services with the smtp client, only the smtp server. Weitse's proposal to use tcp tables is probably a better approach anyways, b

Re: Pick the transport based on the destination host, not domain?

Darren Pilgrim: > On 11/23/2014 8:42 PM, Peter wrote: > > On 11/24/2014 02:25 PM, Darren Pilgrim wrote: > >> You can't use policy services with the smtp client, only the smtp server. > > > > Weitse's proposal to use tcp tables is probably a better approach > > anyways, but you can use a policy daem

Re: TLS Encryption and Verification issue

On Fri, Nov 21, 2014 at 07:20:29PM +, Viktor Dukhovni wrote: > Yes the certificate for Equifax Secure Certificate authority is added in the > /etc/ssl/certs/ca-certificates.crt file Prove it. Verify the attached issuer.pem file. $ openssl verify -CAfile /etc/ssl/certs/ca-certificates \

Re: Pick the transport based on the destination host, not domain?

On 11/23/2014 8:42 PM, Peter wrote: On 11/24/2014 02:25 PM, Darren Pilgrim wrote: You can't use policy services with the smtp client, only the smtp server. Weitse's proposal to use tcp tables is probably a better approach anyways, but you can use a policy daemon and route from smtpd. The poin

Re: disable 550 5.1.1 error

Hi, the only thing that i like to verify is that when my mail server reject with 550 5.1.1 error everything is ok, so i think this is not cause of backscatter. I miss understand the meaning of backscatter. Excuse me. Thanks. Il 24/11/2014 16:12, Wietse Venema ha scritto: Matteo Cazzador: Tech

Re: TLS Encryption and Verification issue

Deeztek Support: > On 11/24/2014 8:40 AM, Mike Cardwell wrote: > > > You must be new here. Don't expect to be treated in a respectful manner > > on this list, you will be disappointed. > > > > I'm glad I'm not the only one who feels that way. I'm not that new. I've > called him out on his rude r

Re: TLS Encryption and Verification issue

On 11/24/2014 8:40 AM, Mike Cardwell wrote: You must be new here. Don't expect to be treated in a respectful manner on this list, you will be disappointed. I'm glad I'm not the only one who feels that way. I'm not that new. I've called him out on his rude remarks in the past.

Re: disable 550 5.1.1 error

Am 24.11.2014 um 16:15 schrieb Matteo Cazzador: Hi, my only question is about my correct mail server configuration and seem that it is. In relations to Backscatter. I'm a novice so excuse me for my elementary question. Thanks a lot. please stay on list! nothing you showed in the whole thread

Re: disable 550 5.1.1 error

Matteo Cazzador: > Technical details of permanent failure: > Google tried to deliver your message, but it was rejected by the server > for the recipient domainnetlite.it [my mx ip address]. Wietse: > Why is Google sending email to a non-existent address? > You need to fix that problem first. Matt

Re: NOT Fixed with spf - Re: google bouncing emails - ipv6 ptr problem?

On 11/24/2014 08:42 AM, Wietse Venema wrote: Robert Moskowitz: Google bounced my mail because of a temp error. I changed nothing in my DNS or DKIM. It's their bug, not mine. And with mine, I needed an spf record to make them happy: htt-consult.com. IN TXT "v=spf1 mx ~all" Now when my wife s

Re: disable 550 5.1.1 error

Am 24.11.2014 um 15:56 schrieb Matteo Cazzador: This is only a test i try to send mail from my google account to my postfix server to see what uppen. boah that is *absolutely* expected and sane behavior and everybody with a little clue about mail knows that if you really intent to change (

Re: disable 550 5.1.1 error

Matteo Cazzador: > Technical details of permanent failure: > Google tried to deliver your message, but it was rejected by the server > for the recipient domainnetlite.it [my mx ip address]. Why is Google sending email to a non-existent address? You need to fix that problem first. Wietse

Re: disable 550 5.1.1 error

This is only a test i try to send mail from my google account to my postfix server to see what uppen. Il 24/11/2014 15:54, Wietse Venema ha scritto: Matteo Cazzador: Technical details of permanent failure: Google tried to deliver your message, but it was rejected by the server for the recipie

Re: disable 550 5.1.1 error

Am 24.11.2014 um 15:15 schrieb Matteo Cazzador: First of all thanks, for client job do you mean mail client like tunderbird or google mail? client in context of MTA-to-MTA means delivering server Is not my postfix server that generate a message like: and *what* is the problem? that is ex

Re: disable 550 5.1.1 error

First of all thanks, for client job do you mean mail client like tunderbird or google mail? Is not my postfix server that generate a message like: " Delivery to the following recipient failed permanently: 2334...@netlite.it Technical details of permanent failure: Goo

Re: TLS Encryption and Verification issue

On Mon, 24 Nov 2014 13:40:40 +, Mike Cardwell stated: > You must be new here. Don't expect to be treated in a respectful manner > on this list, you will be disappointed. I do not believe that to be a correct statement. I have always been treated with respect, even when I ask a really stupid q

Re: TLS Encryption and Verification issue

Deeztek Support: > On 11/23/2014 2:02 PM, Viktor Dukhovni wrote: > > On Sun, Nov 23, 2014 at 07:23:55AM -0500, Deeztek Support wrote: > > > >> Any thoughts on this? > > > > I have no comment on the irrelevant info I did not ask for. You > > could start by answering the questions I asked in my prev

Re: disable 550 5.1.1 error

Am 24.11.2014 um 14:33 schrieb Matteo Cazzador: Hi,i'm a novice i need to discard and not reject while i receive from external domain to my mx server mail with this error "Recipient address rejected: User unknown in virtual mailbox table;" I don't want that a message (it is a really replay ma

NOT Fixed with spf - Re: google bouncing emails - ipv6 ptr problem?

Robert Moskowitz: > > Google bounced my mail because of a temp error. I changed nothing > > in my DNS or DKIM. It's their bug, not mine. > > And with mine, I needed an spf record to make them happy: > > htt-consult.com. IN TXT "v=spf1 mx ~all" > > Now when my wife sends emails to her employer,

Re: TLS Encryption and Verification issue

* on the Mon, Nov 24, 2014 at 07:13:48AM -0500, Deeztek Support wrote: >>> Any thoughts on this? >> >> I have no comment on the irrelevant info I did not ask for. You >> could start by answering the questions I asked in my previous >> message. > > is there a requirement to be difficult when someo

disable 550 5.1.1 error

Hi,i'm a novice i need to discard and not reject while i receive from external domain to my mx server mail with this error "Recipient address rejected: User unknown in virtual mailbox table;" I don't want that a message (it is a really replay mail?) come back to the sender of external domain.

Fixed with spf - Re: google bouncing emails - ipv6 ptr problem?

On 11/22/2014 07:41 AM, Wietse Venema wrote: A. Schulze: So instead implementing strange workarounds, one should search, find, understand and fix the real problem. Google bounced my mail because of a temp error. I changed nothing in my DNS or DKIM. It's their bug, not mine. And with mine, I

Re: TLS Encryption and Verification issue

On 11/23/2014 2:02 PM, Viktor Dukhovni wrote: On Sun, Nov 23, 2014 at 07:23:55AM -0500, Deeztek Support wrote: Any thoughts on this? I have no comment on the irrelevant info I did not ask for. You could start by answering the questions I asked in my previous message. is there a requirement