Re: postfix not listening on 25/587

On 30 Aug 2020, at 20:24, Doug Denault wrote: On Sun, 30 Aug 2020, Noel Jones wrote: On 8/30/2020 2:57 PM, Doug Denault wrote: I am upgrading from postfix-2.8.7,1 and cyrus-imapd-2.3.18 to postfix-3.5.6,1 and cyrus-imapd30-3.0.14. The old system uses sasldb authentication, the new one MySQL.

Re: "max_use=1" does not work at a situation

On 2020/08/28 23:50, Wietse Venema wrote: kawakami: On 2020/08/27 20:54, Wietse Venema wrote: kawakami: Hi all, Setting "max_use=1" on /etc/master.cf, but the same process ID was assigned to different connections(postfix/smtpd process) at particular situation. SHOW LOGS. Thank you for yo

Re: postfix not listening on 25/587

On Sun, 30 Aug 2020, Noel Jones wrote: On 8/30/2020 2:57 PM, Doug Denault wrote: I am upgrading from postfix-2.8.7,1 and cyrus-imapd-2.3.18 to postfix-3.5.6,1 and cyrus-imapd30-3.0.14. The old system uses sasldb authentication, the new one MySQL. This is on FreeBSD. I have compared the conf

Re: mynetworks equivalent for sender address

On Sun, Aug 30, 2020 at 11:54:19PM +0100, dave wrote: > That would be great if it works. You mean that would be a double-barrelled shotgun you aim at your feet, sure... > It may be easy to forge, but it can be harder to guess depending on what > name I choose? > > But you both mention relay -

Re: mynetworks equivalent for sender address

That would be great if it works. It may be easy to forge, but it can be harder to guess depending on what name I choose? But you both mention relay - is that in the loose sense of the word? I don't need to relay it do I? Just permit? thanks Dave On 30/08/2020 23:31, Jaroslaw Rafa wrote:

Re: mynetworks equivalent for sender address

Dnia 30.08.2020 o godz. 16:11:32 Viktor Dukhovni pisze: > > There is, for good reason, no relay authorisation based on sender > address, because unlike a source IP address on your network (which is > difficult to forge with TCP) without being on your network, a sender > address is trivially forged

Re: Checking from-addresses on outbound mail

On Sun, Aug 30, 2020 at 05:33:51PM -0400, Wietse Venema wrote: > Well almost: it needs a custom SMTP client to avoid loop detection. > > /etc/postfix/master.cf: > pickup unix .. .. .. .. .. pickup > -o { content_filter = local-smtp:[localhost]:25 } > > local-smtp unix .. .. ..

Re: Checking from-addresses on outbound mail

Wietse Venema: > Wietse Venema: > > Nick: > > > On 2020-08-30 21:30 BST, Wietse Venema wrote: > > > > Nick: > > > > > I would like to have a postconf(5) parameter such as > > > > > "local_via_submission = yes" which changes that path to something like > > > > > > > > > > sendmail(1) -> postdrop(

Re: Checking from-addresses on outbound mail

Wietse Venema: > Nick: > > On 2020-08-30 21:30 BST, Wietse Venema wrote: > > > Nick: > > > > I would like to have a postconf(5) parameter such as > > > > "local_via_submission = yes" which changes that path to something like > > > > > > > > sendmail(1) -> postdrop(1) -> maildrop -> pickup(8) ->

Re: Checking from-addresses on outbound mail

On Sun, Aug 30, 2020 at 05:58:01PM +0100, Nick wrote: > I would like to have a postconf(5) parameter such as > "local_via_submission = yes" which changes that path to something like > > sendmail(1) -> postdrop(1) -> maildrop -> pickup(8) -> smtpd(8) -> > cleanup(8) -> incoming Sorry, that's

Re: Checking from-addresses on outbound mail

On 2020-08-30 21:55 BST, Wietse Venema wrote: > An SMTP client in the pickup daemon? How shall the pickup daemon send > a non-delivery notification to the sender? It looks like we're one objection down! Can I make it two... The pickup daemon doesn't, the mail goes into the hold queue. It's then

Re: Checking from-addresses on outbound mail

On 31/08/20 4:58 am, Nick wrote: On 2020-08-09 21:52 BST, Ansgar Wiechers wrote: On 2020-08-09 Nick wrote: For mail sent via submission it's possible to prevent a forged mail-from, by using options on the submission service in master.cf. It's also possible to prevent a forged header-from, by u

Re: Checking from-addresses on outbound mail

Nick: > On 2020-08-30 21:30 BST, Wietse Venema wrote: > > Nick: > > > I would like to have a postconf(5) parameter such as > > > "local_via_submission = yes" which changes that path to something like > > > > > > sendmail(1) -> postdrop(1) -> maildrop -> pickup(8) -> smtpd(8) -> > > > cleanup(8

Re: Checking from-addresses on outbound mail

On 2020-08-30 21:30 BST, Wietse Venema wrote: > Nick: > > I would like to have a postconf(5) parameter such as > > "local_via_submission = yes" which changes that path to something like > > > > sendmail(1) -> postdrop(1) -> maildrop -> pickup(8) -> smtpd(8) -> > > cleanup(8) -> incoming > > A

Re: Checking from-addresses on outbound mail

Nick: > I would like to have a postconf(5) parameter such as > "local_via_submission = yes" which changes that path to something like > > sendmail(1) -> postdrop(1) -> maildrop -> pickup(8) -> smtpd(8) -> > cleanup(8) -> incoming And HOW THE HELL is that supposed to work when Postfix is not u

Re: mynetworks equivalent for sender address

On Sun, Aug 30, 2020 at 06:08:36PM +0100, dave wrote: > A simple equivalent of mynetworks, but for a from address rather than an > IP/network would be ideal. There is, for good reason, no relay authorisation based on sender address, because unlike a source IP address on your network (which is di

Re: postfix not listening on 25/587

On 8/30/2020 2:57 PM, Doug Denault wrote: I am upgrading from postfix-2.8.7,1 and cyrus-imapd-2.3.18 to postfix-3.5.6,1 and cyrus-imapd30-3.0.14. The old system uses sasldb authentication, the new one MySQL. This is on FreeBSD. I have compared the conf files on two addition postfix systems and

postfix not listening on 25/587

I am upgrading from postfix-2.8.7,1 and cyrus-imapd-2.3.18 to postfix-3.5.6,1 and cyrus-imapd30-3.0.14. The old system uses sasldb authentication, the new one MySQL. This is on FreeBSD. I have compared the conf files on two addition postfix systems and can see no differences of consequence. I

Re: mynetworks equivalent for sender address

Great, thanks. Do I need the "enabling DSASL authion postfix client section, or configure sender dependent SASL. And do I need to use relayhosts? thanks Dave On 30/08/2020 18:24, Nick wrote: On 2020-08-30 18:08 BST, dave wrote: So what I'm looking for is the easiest way of accepting that e

Re: mynetworks equivalent for sender address

On 2020-08-30 18:08 BST, dave wrote: > So what I'm looking for is the easiest way of accepting that email, > while staying pretty secure. >From your home machine, send mail to the server's submission port and with authentication, as in .

mynetworks equivalent for sender address

Hi, Here is my problem. I have a Raspberry running in my home network, and I want it to be able to send me email. I set up a send only postfix on it and that works fine. The email that arrives on my email server fails a couple of tests  - domain not found and need FQDN. The email is from roo

Re: Checking from-addresses on outbound mail

On 2020-08-09 21:52 BST, Ansgar Wiechers wrote: > On 2020-08-09 Nick wrote: > > For mail sent via submission it's possible to prevent a forged > > mail-from, by using options on the submission service in master.cf. > > > > It's also possible to prevent a forged header-from, by using a > > submissi

Re: Temporary Lookup Failure

On 29 Aug 2020, at 07:17, Viktor Dukhovni wrote: > On Sat, Aug 29, 2020 at 06:16:27AM -0600, @lbutlr wrote: > >> After updating Bind and dovecot and rebooting the server, I am getting these >> errors on almost every incoming mail. >> Bind is running, and I can manually lookup the domains and dig