On Mon, Feb 10, 2025 at 04:14:36PM +0100, Danjel Jungersen via Postfix-users
wrote:
> I have decided to give it a shot.
When you say "give it a shot", do you mean enabling DANE *outbound* in
your Postfix SMTP client, i.e. verify the DANE TLSA records of remote
domains that have implemented it?
On Mon, Feb 10, 2025 at 04:14:36PM +0100, Danjel Jungersen via Postfix-users
wrote:
> Hey.
>
> I have read something about DANE.
>
> I have seen very different recommendations.
>
> I have decided to give it a shot.
>
> But I figured that "someone" here (maybe Viktor??) may be able to tell me
Thomas Landauer via Postfix-users:
> Hi Wietse,
>
> thanks, I see your point with qmgr.
>
> Would it be possible that you added the `to=` to this line?:
>
> > postfix/bounce: 4YqPkV4jYnz44Pv: sender non-delivery notification:
> > 4Yr3gH44DWz44XB
The failed recipients have already been logged b
Hi Wietse,
thanks, I see your point with qmgr.
Would it be possible that you added the `to=` to this line?:
postfix/bounce: 4YqPkV4jYnz44Pv: sender non-delivery notification:
4Yr3gH44DWz44XB
Cause the general problem still persists IMO: If there are *multiple*
`status=deferred` lines above
> The highly parallel engine, which scans over 1k domains/sec is not what
> you're looking for. Rather, I have multiple times posted a link to a
> much simpler bash function that uses openssl-s_client(1).
>
>
> https://list.sys4.de/hyperkitty/list/dane-us...@list.sys4.de/thread/NKDBQABSTAAWL
Thomas Landauer via Postfix-users:
> Hi,
>
> please add `to=` to logfile lines like this:
>
> > 4YqPkV4jYnz44Pv: from=, status=expired, returned to sender
The above is logged by te queue manager.
Almost immediately in the before this, there will be one or more
lines that were logged by a delive
Hey.
I have read something about DANE.
I have seen very different recommendations.
I have decided to give it a shot.
But I figured that "someone" here (maybe Viktor??) may be able to tell
me the best / official place to look for information and help for the
best implementation.
Currently I
Hi,
please add `to=` to logfile lines like this:
4YqPkV4jYnz44Pv: from=, status=expired, returned to sender
Why?
When sending a mail with 5 CCs, they all get the same QueueID, so it's
hard (in fact impossible) to tell which of those CCs the logfile entry
is referring to.
Less important:
On 2025 Feb 4, 10:07, Peter via Postfix-users wrote:
> On 4/02/25 09:53, Emmanuel Seyman via Postfix-users wrote:
> >* Josh Good via Postfix-users [31/01/2025 00:37] :
> >
> >>But I'm sure it is archived privately in many places. If just this was
> >>read by any such archivists...
> >
> >Simon tol
On Mon, Feb 10, 2025 at 12:22:44AM -0800, Dan Mahoney via Postfix-users wrote:
> I’d like to turn this into a check in our internal monitoring, since we
> do occasionally roll the cert on our MXes (which need to be “real” OV
> certs due to some customer requirements — I don’t make the rules).
>
>
I know Viktor routiinely scans for TLSA signatures (and pokes folks if we get
it wrong).
I’d like to turn this into a check in our internal monitoring, since we do
occasionally roll the cert on our MXes (which need to be “real” OV certs due to
some customer requirements — I don’t make the rul
11 matches
Mail list logo
