Hi,
I'm trying to implement "Expires" header (Defined by RFC-5536).
I want Postfix bounce the expired mails.
At first, I use content filter to check Expires date is valid.
However, content filtering can be done only one time when into the mail queue.
(It can't be done when Postfix resend deferred
On Sun, Feb 17, 2019 at 10:31:05PM +0100, A. Schulze wrote:
> ok, so I start silent testing ...
>
> https://andreasschulze.de/tmp/reuse_on.txt
> https://andreasschulze.de/tmp/reuse_off.txt
Thanks, these get us much closer to the source of the problem.
Something about the way the way that chain v
On 18/02/19 04:41, Wietse Venema wrote:
What distribution runs Linux 5 kernels? I would like to do a smoke
test for due diligence (does it build and run).
Fedora Rawhide is on 5.0.0
Peter
It (3.3.2, since that's what's in Debian) builds and runs with the attached
patches using the Linux 5.0 kernel.
Scott K
On Sunday, February 17, 2019 03:51:45 PM Scott Kitterman wrote:
> Debian doesn't have it in the distro yet, but I can ask the reporter to
> verify it works.
>
> There's no tec
Wietse Venema:
> A. Schulze:
> > https://andreasschulze.de/tmp/reuse_on.txt
> > https://andreasschulze.de/tmp/reuse_off.txt
>
> These deliver to different server IP addresses, therefore the
> results may differ.
One is:
Feb 17 22:11:53 mail postfix/smtp[23428]:
sys1.mmini.de[2a01:4f8:162:32ac:
Am 17.02.19 um 22:40 schrieb Wietse Venema:
> A. Schulze:
>> https://andreasschulze.de/tmp/reuse_on.txt
>> https://andreasschulze.de/tmp/reuse_off.txt
>
> These deliver to different server IP addresses, therefore the
> results may differ.
the destination MX has IPv4 and IPv6 working. Depends
A. Schulze:
> https://andreasschulze.de/tmp/reuse_on.txt
> https://andreasschulze.de/tmp/reuse_off.txt
These deliver to different server IP addresses, therefore the
results may differ.
Wietse
Am 17.02.19 um 21:24 schrieb Viktor Dukhovni:
Hello Viktor,
> If you performed a "reload" to get that to take effect, that would
> also have flushed the TLS session cache. And perhaps disabling
> connection re-use is a distraction. It may well have been sufficient
> to just "postfix reload".
On Sun, Feb 17, 2019 at 02:41:27PM +0100, A. Schulze wrote:
> I updated to postfix 3.4.0-RC2 and enabled "smtp_tls_connection_reuse" Now
> I notice delivery problems to "gervers.com".
The DNS configuration for this domain is:
gervers.com. IN MX 10 sys1.mmini.de. ; NoError AD=1
sys1.mmini
Greetings, Viktor Dukhovni!
>>
>> But in cases where remote sites do not have published key material, the
>> fallback is may with dane, which is a step back in terms of security and
>> not wanted.
>>
>> How can we specify:
>>
>> 1, Always use at least encrypt
>> 2, When TLSA-records are found an
Greetings, Viktor Dukhovni!
> On Sat, Feb 16, 2019 at 11:46:12PM +0300, Andrey Repin wrote:
>> > submission inet n - n - - smtpd
>> > -o syslog_name=postfix/submission
>> > -o smtpd_tls_security_level=encrypt
>>
>> This is NOT right.
>> submission (port 587/tcp)
A. Schulze:
>
>
> Am 17.02.19 um 18:23 schrieb Wietse Venema:
> > Conclusion: Postfix works as expected?
>
> hard to say...
>
> delivery deferred if smtp_tls_connection_reuse = yes
> delivery works if smtp_tls_connection_reuse = no
Is the problem that certificate verification failure handling
Am 17.02.19 um 18:23 schrieb Wietse Venema:
> Conclusion: Postfix works as expected?
hard to say...
delivery deferred if smtp_tls_connection_reuse = yes
delivery works if smtp_tls_connection_reuse = no
http://www.postfix.org/TLS_README.html#client_tls_reuse say "As of Postfix 3.4,
TLS connec
Wietse Venema:
> How do those 'other' connections differ from what is shown above?
A. Schulze:
> I don't see differences. This tlsproxy process handled a connection
> to gmail, outlook.com and some other destinations. All unverified
> because I did not configure the matching root certificates.
Co
Debian doesn't have it in the distro yet, but I can ask the reporter to verify
it works.
There's no technical driver behind the version bump, so it might be best to
consider such checks obsolete for Linux.
If there are new features introduced that need to be supported by specific
changes in
Am 17.02.19 um 16:10 schrieb Wietse Venema:
> How do those 'other' connections differ from what is shown above?
I don't see differences. This tlsproxy process handled a connection to gmail,
outlook.com and some other destinations. All unverified because I did not
configure the matching root c
Scott Kitterman:
> I understand that the next Linux release will have a major version of 5.
> This
> doesn't portend any technical changes. As has happened the last few times
> linux 5 should be no different than 4 which was no different than 3.
>
> It looks to me like the postfix 3.4 makedef
Tam?s G?rczei:
> Thanks Wietse, I'll definitely try this patch -? but this code didn't
> change in quite a bit of time.
If in doubt, look RTFM the Postfix 3.3.1 announcement.
* Postfix did not support running as a PID=1 process, which
complicated Postfix management in containers. The "postf
Hm.. Thanks to You both, I'll go take a look at this.
On 2019. 02. 17. 16:14, Wietse Venema wrote:
> Tam?s G?rczei:
>> Thanks Wietse, I'll definitely try this patch -? but this code didn't
>> change in quite a bit of time.
> If in doubt, look RTFM the Postfix 3.3.1 announcement.
>
> * Postfix di
Am 17.02.19 um 16:01 schrieb Tamás Gérczei:
> Anyway I'm invoking postfix-script in order to start master:
I wonder why you don't use "postfix start-fg" available since postfix-3.3.1
(http://www.postfix.org/announcements/postfix-3.3.1.html)
Andreas
A. Schulze:
>
>
> Am 17.02.19 um 15:24 schrieb Wietse Venema:
> > A. Schulze:
> >> Hello,
> >>
> >> I updated to postfix 3.4.0-RC2 and enabled "smtp_tls_connection_reuse"
> >> Now I notice delivery problems to "gervers.com". DANE setup looks OK.
> >> https://dane.sys4.de/smtp/gervers.com
> >>
>
Thanks Wietse, I'll definitely try this patch - but this code didn't
change in quite a bit of time. Can this behaviour I'm seeing somehow
relate to a change introduced between 3.3.0 and 3.3.2 ? I have zero
problems with the exact same setup and configuration on 3.3.0. Anyway
I'm invoking postfix-s
Wietse Venema:
> Tam?s G?rczei:
> > Hello List,
> >
> > I'd like to ask whether You're aware of any change which might cause
> > breakage in my setup involving spamc with a completely unchanged
> > configuration in between - I'm getting the following error:
> >
> > *"panic: master_reap: unknown p
Am 17.02.19 um 15:24 schrieb Wietse Venema:
> A. Schulze:
>> Hello,
>>
>> I updated to postfix 3.4.0-RC2 and enabled "smtp_tls_connection_reuse"
>> Now I notice delivery problems to "gervers.com". DANE setup looks OK.
>> https://dane.sys4.de/smtp/gervers.com
>>
>> "posttls-finger gervers.com" a
A. Schulze:
> Hello,
>
> I updated to postfix 3.4.0-RC2 and enabled "smtp_tls_connection_reuse"
> Now I notice delivery problems to "gervers.com". DANE setup looks OK.
> https://dane.sys4.de/smtp/gervers.com
>
> "posttls-finger gervers.com" also show
> posttls-finger: Verified TLS connection est
Am 17.02.19 um 14:41 schrieb A. Schulze:
> I updated to postfix 3.4.0-RC2 and enabled "smtp_tls_connection_reuse"
corrected the subject, as DANE is not necessary related here.
Hello,
I updated to postfix 3.4.0-RC2 and enabled "smtp_tls_connection_reuse"
Now I notice delivery problems to "gervers.com". DANE setup looks OK.
https://dane.sys4.de/smtp/gervers.com
"posttls-finger gervers.com" also show
posttls-finger: Verified TLS connection established to
sys1.mmini.de[2
Tam?s G?rczei:
> Hello List,
>
> I'd like to ask whether You're aware of any change which might cause
> breakage in my setup involving spamc with a completely unchanged
> configuration in between - I'm getting the following error:
>
> *"panic: master_reap: unknown pid"*
Is the Postfix master dae
Hello List,
I'd like to ask whether You're aware of any change which might cause
breakage in my setup involving spamc with a completely unchanged
configuration in between - I'm getting the following error:
*"panic: master_reap: unknown pid"*
I'm running Docker containers from Alpine images orche
I understand that the next Linux release will have a major version of 5. This
doesn't portend any technical changes. As has happened the last few times
linux 5 should be no different than 4 which was no different than 3.
It looks to me like the postfix 3.4 makedefs still have:
Linux.[34].*)
30 matches
Mail list logo
