On Tue, Feb 24, 2015 at 09:02:43PM -0500, Alex Regan wrote:
> On 02/24/2015 08:34 PM, Viktor Dukhovni wrote:
> >On Tue, Feb 24, 2015 at 08:07:59PM -0500, Alex Regan wrote:
> >
> smtpd_recipient_restrictions =
>
> ...
> check_sender_access
Hi,
On 02/24/2015 08:34 PM, Viktor Dukhovni wrote:
On Tue, Feb 24, 2015 at 08:07:59PM -0500, Alex Regan wrote:
smtpd_recipient_restrictions =
...
check_sender_access hash:/etc/postfix/sender_checks,
---
On Tue, Feb 24, 2015 at 08:07:59PM -0500, Alex Regan wrote:
> >> smtpd_recipient_restrictions =
> >>
> >> ...
> >> check_sender_access hash:/etc/postfix/sender_checks,
> >> --- ---
> >> reject_unknown_
Hi,
smtpd_recipient_restrictions =
reject_non_fqdn_recipient,
reject_non_fqdn_sender,
reject_unlisted_recipient,
permit_mynetworks,
reject_unauth_destination,
check_client_access hash:/etc/postfix/client_checks,
c
On Tue, Feb 24, 2015 at 07:44:53PM -0500, System Support wrote:
> --main.cf non-default parameters--
> mydestination = $config_directory/local_destinations.dat
> mydomain =
> myhostname = maila.
> relayhost =
Is the traffic in question using the "relay" transport (destination
domain matches rel
Here is the postfinger output:
Postfinger - Postfix Configuration on Tue Feb 24 19:13:55 EST 2015
$Revision: 1.25 $
Warning: Postfinger output may show private configuration information,
such as ip addresses and/or domain names which you do not want to show
to the public. If this is the case it
On Tue, Feb 24, 2015 at 04:59:50PM -0500, Alex Regan wrote:
> Feb 24 16:48:55 mail01 postfix/smtpd[1945]: NOQUEUE:
> reject: RCPT from smtp.lanyonmail.com[50.56.12.142]:
> 450 4.1.8 :
> Sender address rejected: Domain not found;
-
> from= to=
>
Hi,
I have a postfix-2.10.5 system on fedora20 and having some trouble with
mail being rejected due to unknown senders:
Feb 24 16:48:55 mail01 postfix/smtpd[1945]: NOQUEUE: reject: RCPT from
smtp.lanyonmail.com[50.56.12.142]: 450 4.1.8 :
Sender address rejected: Domain not found; from=
to= p
On Tue, 24 Feb 2015 16:17:10 -0500, System Support stated:
> > $ pcregrep -v '^\s*#' /etc/postfix/master.cf
I believe that postconf -Mf would display what postfix sees in your master.cf
file. It would supply a cleaner output too.
--
Jerry
System Support:
> alternate_config_directories = /etc/postfix-relay1, /etc/postfix-in
Settings in this main.cf file have no effect on the postfix-relay1
or postfix-in instances.
Wietse
On 24 Feb 2015 at 17:09, Viktor Dukhovni wrote:
> On Tue, Feb 24, 2015 at 08:42:08AM -0500, System Support wrote:
>
> > I send several weekly newsletters where a number of the e-mails are all
> > relayed to a separate
> > host. I would like to rate limit the traffic to this host. I tried us
On Tue, Feb 24, 2015 at 08:16:32PM +0100, ?hsan?Do?an wrote:
> >> 2. smtp_tls_security_level = may
> >>
> >> Feb 24 19:16:51 bender postfix/smtp[26830]: [ID 197553 mail.info]
> >> Untrusted TLS connection established to mail.dogan.ch[77.109.151.89]:25:
> >> TLSv1.2 with cipher AECDH-AES256-SHA (25
Hi Viktor,
Thanks for the quick reply.
Am 24.02.2015 um 19:48 schrieb Viktor Dukhovni:
>> For me, it's not 100% clear, how the Postfix smtp client chooses the TLS
>> cipher. In a setup, where a Postfix server connects to mail.dogan.ch,
>> I've experienced this behaviour:
>>
>> 1. smtp_tls_securi
On Tue, Feb 24, 2015 at 02:06:43PM -0500, Wietse Venema wrote:
> Viktor Dukhovni:
> > With "may" there is no protection against active attacks, so no
> > CPU cycles are wasted going through the motions of certificate
> > checks whose results are ignored.
>
> We may want to provide an option to ma
On Tue, Feb 24, 2015 at 08:03:14PM +0100, Marco Fioretti wrote:
> To Viktor: that how do I check what mechanism are being offered by the
> receiving machine? I want to check that just for completeness
Since you need to see the EHLO reply after STARTTLS:
1. (OpenSSL command-line utility)
Viktor Dukhovni:
> With "may" there is no protection against active attacks, so no
> CPU cycles are wasted going through the motions of certificate
> checks whose results are ignored.
We may want to provide an option to make the motions anyway. Even
if the outcome has no direct effect on whether m
It works now!
it turns out that cyrus-sasl-lib-2, cyrus-sasl WERE installed, but NOT
cyrus-sasl-plain. No idea why, or why it wouldn't generate some more
explicit warning somewhere...
But thanks Wietse! Installing it fixed the problem.
right now I am so toast that, since this is fixed, I must abs
On Tue, Feb 24, 2015 at 01:44:01PM -0500, Wietse Venema wrote:
> Marco Fioretti:
> > right, sorry. Here is the logs of a new message sent just now, with the
> > configuration showed in my previous email:
> >
> > postfix/smtp[20851]: certificate verification failed for
> > mx.example.com[xx.xx.xx.
On Tue, Feb 24, 2015 at 07:35:18PM +0100, ?hsan?Do?an wrote:
> For me, it's not 100% clear, how the Postfix smtp client chooses the TLS
> cipher. In a setup, where a Postfix server connects to mail.dogan.ch,
> I've experienced this behaviour:
>
> 1. smtp_tls_security_level = verify
>
> Feb 24 18
Marco Fioretti:
> right, sorry. Here is the logs of a new message sent just now, with the
> configuration showed in my previous email:
>
> postfix/smtp[20851]: certificate verification failed for
> mx.example.com[xx.xx.xx.xx.]:587:
> self-signed certificate
> postfix/smtp[20851]: warning: SASL aut
Hi,
For me, it's not 100% clear, how the Postfix smtp client chooses the TLS
cipher. In a setup, where a Postfix server connects to mail.dogan.ch,
I've experienced this behaviour:
1. smtp_tls_security_level = verify
Feb 24 18:51:28 bender postfix/smtp[26237]: [ID 197553 mail.info]
Verified TLS c
right, sorry. Here is the logs of a new message sent just now, with the
configuration showed in my previous email:
postfix/smtp[20851]: certificate verification failed for
mx.example.com[xx.xx.xx.xx.]:587:
self-signed certificate
postfix/smtp[20851]: warning: SASL authentication failure: No worthy
Marco Fioretti:
> here is postconf -n output:
And the logging for this? You have changed settings.
Wietse
> alias_database = hash:/etc/aliases
> alias_maps = hash:/etc/aliases
> command_directory = /usr/sbin
> config_directory = /etc/postfix
> daemon_directory = /usr/libexec/postfix
> de
here is postconf -n output:
alias_database = hash:/etc/aliases
alias_maps = hash:/etc/aliases
command_directory = /usr/sbin
config_directory = /etc/postfix
daemon_directory = /usr/libexec/postfix
debug_peer_level = 2
disable_vrfy_command = yes
html_directory = /usr/share/doc/postfix-2.4.3-document
Marco Fioretti:
> Playing with several combination of the parameters suggested by Wietse
> doesn't seem to make any difference. Below is the last combination that I
> have tried. the lines starting with # were part of the previous line, but
> the result is always an error message in the logs identi
Just FTR: if I set smtp_tls_security_level = none I get
Diagnostic-Code: smtp; 530 5.7.0 Must issue a STARTTLS command first
Playing with several combination of the parameters suggested by Wietse
doesn't seem to make any difference. Below is the last combination that I
have tried. the lines start
Marco Fioretti:
> 2015-02-24 13:44 GMT+01:00 Marco Fioretti :
>
> > Hi Wietse!
> >
> > indeed, judging from this howto I found thanks to your pointer:
> >
> > http://kostja-osipov.livejournal.com/32518.html
> >
> > *sender_dependent_relayhost_maps *seems exactly what I need,
> >
> > > Does your sy
2015-02-24 13:44 GMT+01:00 Marco Fioretti :
> Hi Wietse!
>
> indeed, judging from this howto I found thanks to your pointer:
>
> http://kostja-osipov.livejournal.com/32518.html
>
> *sender_dependent_relayhost_maps *seems exactly what I need,
>
> > Does your system have "relay" permissions at the o
On Tue, Feb 24, 2015 at 08:42:08AM -0500, System Support wrote:
> I send several weekly newsletters where a number of the e-mails are all
> relayed to a separate
> host. I would like to rate limit the traffic to this host. I tried using:
>
> smtp_destination_rate_delay = 1s
What is the name
System Support:
> Wietse,
>
> Thanks. But now I am confused. From what I understood you to
> say, I should be sending 1msg/s
> to the next hop, but according to my logs, I am sending ~50msg/s
> to the relay, and I would like to
> get it to under 5msg/s.
Then you need to follow instructions in t
Noel Jones wrote:
On 2/23/2015 10:33 AM, Charles Orth wrote:
Hi All,
At this time, we're relying on extended error code 5.2.1 to drop the
connection.
I suppose you're referring to the 521 reply code.
We'd like to a more robust set of extended error codes (RFC5248)
which also dr
Wietse,
Thanks. But now I am confused. From what I understood you to say, I should be
sending 1msg/s
to the next hop, but according to my logs, I am sending ~50msg/s to the relay,
and I would like to
get it to under 5msg/s.
On 24 Feb 2015 at 8:55, Wietse Venema wrote:
System Support:
>
>
Hello,
>policyd v2, postfwd, both can do this, just note postfwd does not have
>persistent db, so when posfwd is restarted it will be with resetted qoutas,
>policyd v2 have it db based, but are imho harder to get working
I use postfwd on another smtp server and i've a lot of count problems with
You may need a report, I can recommend you sawmill it is really powerful.
Contact me offline, I may be able to give you a discount
Luis Daniel Lucio Quiroz
CISSP, CISM, CISA
Linux, VoIP and much more fun
www.okay.com.mx
Need LCR? Check out LCR for FusionPBX with FreeSWITCH
Need Billing? Check out
On February 24, 2015 2:40:56 PM Laurent RAYSSIGUIER
wrote:
5000 mails per month for this one, 3000 for another one, etc...
Is there a way with postfix to do this ?
I need addon or internal functions can do this ?
policyd v2, postfwd, both can do this, just note postfwd does not have
persis
I'll try this, but i'm not developper, i'm not sure to be able to do this.
Thanks for your help
-Message d'origine-
De : owner-postfix-us...@postfix.org [mailto:owner-postfix-us...@postfix.org]
De la part de nico...@devels.es
Envoyé : mardi 24 février 2015 14:54
À : postfix-users@postfix.
System Support:
>
> I send several weekly newsletters where a number of the e-mails
> are all relayed to a separate host. I would like to rate limit
> the traffic to this host. I tried using:
>
> smtp_destination_concurrency_limit = 5
smtp_destination_concurrency_limit has no effect when you t
El 2015-02-24 13:40, Laurent RAYSSIGUIER escribió:
Hello,
I'll need to build a mail relay which is able to count how many emails
are send by an sasl sender per month.
5000 mails per month for this one, 3000 for another one, etc…
Is there a way with postfix to do this ?
I need addon or interna
> I’ll need to build a mail relay which is able to count how many emails are
> send
> by an sasl sender per month.
> 5000 mails per month for this one, 3000 for another one, etc…
> Is there a way with postfix to do this ?
> I need addon or internal functions can do this ?
cat /var/log/mail.l
I send several weekly newsletters where a number of the e-mails are all relayed
to a separate
host. I would like to rate limit the traffic to this host. I tried using:
smtp_destination_concurrency_limit = 5
smtp_destination_rate_delay = 1s
smtp_extra_recipient_limit = 5
these evidentially a
Hello,
I'll need to build a mail relay which is able to count how many emails are send
by an sasl sender per month.
5000 mails per month for this one, 3000 for another one, etc...
Is there a way with postfix to do this ?
I need addon or internal functions can do this ?
Any help will be welcome
Hi Wietse!
indeed, judging from this howto I found thanks to your pointer:
http://kostja-osipov.livejournal.com/32518.html
*sender_dependent_relayhost_maps *seems exactly what I need,
> Does your system have "relay" permissions at the other domain's mai
> server? You may have to configure SASL
Marco Fioretti:
> a) is it possible to tell postfix at example.com that all and only the
> email from someuser with a From: address of someu...@someotherdomain.com
> should be relayed through that MTA, not directly to destination? (I am
> almost sure it is, as I said my first problem is to know/use
Greetings,
While I was updating/cleaning up the whole configuration of an email server
I must manage
(see the other message I posted here yesterday from my main address)
another issue came up.
The first help I'd need is help with terminology: my main problem may be
the simple fact that I don't kn
44 matches
Mail list logo
