://github.com/croessner/pfxhttp
https://github.com/croessner/geoip-policyd
# Mailing lists:
https://lists.nauthilus.org
N.B.: In the future, announcements are sent over the nauthilus-announce ML.
This is just a hello world!
Christian Rößner
--
Rößner-Network-Solutions
Zertifizierter ITSiBe / CISO
I tried the following but it blocks emails even from my two legitimate
Gmail accounts...
postscreen_dnsbl_threshold = 2
postscreen_dnsbl_sites = zen.spamhaus.org*2 bl.spamcop.net*1
b.barracudacentral.org*1
Is there a "minimal" setting for these two variables that will
give *some* protection witho
Disregard. I got it to work. Thanks again for your kind help.
Must appreciated.
cs
On Tue, Jan 21, 2025 at 3:21 PM Christian Seberino
wrote:
>
> Viktor
>
> Can I ask you a follow up? I read up on smtpd_recipient_restrictions
> and believe I did it right now... https://bp
g.org".
cs
On Mon, Jan 20, 2025 at 8:55 PM Viktor Dukhovni via Postfix-users <
postfix-users@postfix.org> wrote:
> On Mon, Jan 20, 2025 at 08:50:18PM -0700, Christian Seberino wrote:
>
> > Thanks so much. I now have this in main.cf instead with permit at the
>
least
one working instance of: reject_unauth_destination,
defer_unauth_destination, reject, defer, defer_if_permit or
check_relay_domains
On Mon, Jan 20, 2025 at 5:30 PM Viktor Dukhovni via Postfix-users <
postfix-users@postfix.org> wrote:
> On Mon, Jan 20, 2025 at 05:19:57PM -0600,
I set up a Postfix server to send and receive emails for autoprog.org.
It successfully sends but cannot receive emails. When I try the sender
gets "Recipient address rejected: Access denied". Why? How fix? Thanks.
Here is config info:
% postconf -nf
alias_database = hash:/etc/aliases
alias_
Am 14.01.2025 um 16:17 schrieb Wietse Venema via Postfix-users
:
>
> Christian Roessner via Postfix-users:
>> Hello,
>>
>> I have written a lightweight HTTP proxy for Postfix socket maps and policy
>> services.
>>
>> DESCRIPTION
>> pfxhttp i
you enjoy.
Thanks
Christian Rößner
--
Rößner-Network-Solutions
Zertifizierter ITSiBe / CISO
Marburger Str. 70a, 36304 Alsfeld
Fax: +49 6631 78823409, Mobil: +49 171 9905345
USt-IdNr.: DE225643613, https://roessner.website
PGP fingerprint: 658D 1342 B762 F484 2DDF 1E88 38A5 4346 D727 94E5
Viktor
Wow you are awesome! Thanks so much! That worked!
On Wed, Jan 1, 2025 at 3:09 PM Viktor Dukhovni via Postfix-users <
postfix-users@postfix.org> wrote:
> On Wed, Jan 01, 2025 at 10:01:56PM +0100, Antonin VERRIER via
> Postfix-users wrote:
> > Le 01/01/2025 à 21:26,
I'm getting
"SASL PLAIN authentication failed"
in /var/log/mail.log
and
"smtplib.SMTPAuthenticationError: (535, b'5.7.8 Error: authentication
failed:')"
on command line when I try to send email from a remote Python script.
I can't figure out what it is. Do you have any suggestions on h
#x27;postsuper -r ALL'.
Maybe test with a single message first 'postsuper -r $queueid'.
--
Christian Kivalo
___
Postfix-users mailing list -- postfix-users@postfix.org
To unsubscribe send an email to postfix-users-le...@postfix.org
nd on?
Is the server (sender-domain.mail.protection.outlook.com) running
directly at Microsoft and is it managed by MS, or is it running at an IT
system house that then manages the server for the recipient?
Christian
___
Postfix-users mailing list -- po
I can't find a solution.
Is this a known problem? Is there a practical solution?
My setup: Debian 12.6, postfix, rspamd, dovecot, all current versions
Thank you for a tip and help
Christian
___
Postfix-users mailing list -- postfix-users@postfix.org
check also rspamd, it's a great software
On 6/24/24 01:19, Jeff Peng via Postfix-users wrote:
what's the mainstream milter server for customized content analysis such
as headers and languages? I may want to block some special messages
which have a special header or special language (like middl
eply_maps to customize the response and hide the key. See
https://www.postfix.org/postconf.5.html#rbl_reply_maps
--
Christian Kivalo
___
Postfix-users mailing list -- postfix-users@postfix.org
To unsubscribe send an email to postfix-users-le...@postfix.org
Regarding the HA cluster setup for email services, both Cyrus IMAPd and
Dovecot support master-slave replication.
If you're setting up a cluster in HA, you'll need to store your emails
in an object storage. Dovecot Pro includes this feature. Cyrus IMAPd has
some support for object storage too,
servers, was to illustrate the timeout issues that
occur with the use of the balancer under some load conditions. I am
looking for information to address the problem since Postfix does not
natively support clustered milters.
On 6/12/24 19:40, Wietse Venema wrote:
Christian Zoffoli via
ons always balanced with HAProxy
Christian
___
Postfix-users mailing list -- postfix-users@postfix.org
To unsubscribe send an email to postfix-users-le...@postfix.org
Hello,
is there a way to use multiple milters in round-robin without using a
load balancer? From what I can see in version 3.9, using multiple
milters separated by commas results in them being used in sequence.
___
Postfix-users mailing list -- postf
On Mon, 11 Mar 2024 at 17:50, Wietse Venema wrote:
>
> Christian Goettsche via Postfix-users:
> > html2text dropped the command line option -style in version 2[1].
>
> I am not using that html2text version on the machine where I prepare
> Postfix releases. I found that rem
html2text dropped the command line option -style in version 2[1].
Rely on the format via the specified html2text.rc file.
[1]:
https://github.com/grobian/html2text/commit/0dfd262836231a77d6fa8c678310799ef3a13752
---
mantools/html2readme | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
dif
spamd
child
But it looks like I can't make the directory persist to /root/.spamassassin.
Where can I change the path?
I can't find a spamd.conf file
Thank you for your help
Christian
___
Postfix-users mailing list -- postfix-users@postfix.org
stfix/tls_policy.db: No such file or directory
You need to run: postmap /etc/postfix/tls_policy
--
Christian Kivalo
___
Postfix-users mailing list -- postfix-users@postfix.org
To unsubscribe send an email to postfix-users-le...@postfix.org
ts you intend to use for mail submission.
--
Christian Kivalo
___
Postfix-users mailing list -- postfix-users@postfix.org
To unsubscribe send an email to postfix-users-le...@postfix.org
t;
>
>What file do I edit in postfix to allow this message to flow and get delivered
>or whitelisted?
>
Do you by any chance have reject_unknown_helo_hostname in your
smtpd_*_restrictions in main.cf? This results in a reject, when the announced
helo name has no A
EADME.html#client_sasl_enable
--
Christian Kivalo
___
Postfix-users mailing list -- postfix-users@postfix.org
To unsubscribe send an email to postfix-users-le...@postfix.org
s with multiple IP
>addresses. How can I go about using multiple IP addresses with the
>'debug_peer_list' parameter?
>
>Like this?
>
>debug_peer_list = 1.2.3.4 5.6.7.8
>
>or perhaps like this?
>
>debug_peer_list = 1.2.3.4, 5.6.7.8
>
>
>Thanks
>
>Kolusion
that must be relatively easy)
2) Any extra security risk. (additional to the keep a service on internet)
Best Regards
Christian
--
Be Free, Be Linux
; in
>main.cf.
>
>> Running postconf -d myhostname returns the host.localdomain where the
>> host is the correct hostname, but localdomain is just the string
>> "localdomain"
>
>You need to configure a fully-qualified hostname, or set myhostname explicitly.
>
--
Christian Kivalo
=2Ehphj6VTtfMpJBc8EZ5owao9LT
disconnect from localhost.localdomain[127.0.0.1]:54612 helo=1 commands=1
Adding it consequently to all services even thouse that have not been shown
here in the example.
Feedback very welcome. Thanks in advance
Christian Rößner
--
Rößner-Network-Solutions
Zertifizierter ITSiBe / CISO
Karl
debug setting enabled somewhere. :-)
If it matters, this is on Postfix 3.7.2.
Thanks for any advice!
--
Christian Kivalo
in this thread) to be trickling down
to the distributions in some distant future this can be changed back to
using the docker internal DNS names.
regards
Christian
e ML to be found by people with the same
problem.
regards
Christian
s, land in a future
release of postfix so I one day I can stop the "build postfix in a
docker container from source"?
Christian
shouldn't a failed DNS request also evoke the default policy of
"accept" for this milter?
Is this a postfix bug or am I missing something? Can I somehow add "DNS
not Working" to the "it's Ok"-List for this milter?
thanks for your help
Christian
entication failed: UGFzc3dvcmQ6
Jan 14 07:17:57 nmail postfix/smtps/smtpd[7809]: lost connection after
AUTH from unknown[5.188.206.199]
This is smtps (port 465). Your config and blocklist is for postscreen
which should only be enabled for port 25.
--
Christian Kivalo
While building postfix for Debian a couple of compiler warnings show
up, all caused by the warning `-Wunused-result`[1].
Two of them are caused by attempts to silence compilers via a
void-cast, but GCC does not respect that, see [2].
One solution is to cast the negated result, i.e. `(void)! foo(..
Groff interprets lines staring with a single quote as commands.
Enclose in double quotes instead.
Found by Lintian:
groff-message usr/share/man/man5/postconf.5.gz (line 1) 13368: warning:
macro 'close'' not defined
See the line in question missing at
https://manpages.debian.org/bullseye/po
erver to which I can send mail to make sure
DANE is being looked up and used on my end.
Not something that looks up MY domain and connects to it.
Maybe this is more like what you're looking for
https://havedane.net/
--
Christian Kivalo
On Thu, 23 Dec 2021 at 20:49, Wietse Venema wrote:
>
> Christian G?ttsche:
> > On Wed, 22 Dec 2021 at 22:21, Wietse Venema wrote:
> > >
> > > Christian G?ttsche:
> > > > Plugin shared util objects require the global util object to be build.
> > &
On Wed, 22 Dec 2021 at 22:21, Wietse Venema wrote:
>
> Christian G?ttsche:
> > Plugin shared util objects require the global util object to be build.
> >
> What was the make command?
/usr/bin/make -j2 LD_LIBRARY_PATH=$(pwd)/lib:${LD_LIBRARY_PATH}
see https://salsa.debian.or
maillog_client.o
normalize_mailhost_addr.o map_search.o reject_deliver_request.o
info_log_addr_form.o -lssl -lcrypto -lsasl2 -lpthread -Wl,-z,relro -Wl,-z,now
-L/home/christian/Downloads/postfix-src/postfix-3.5.10/debian -ldb -lnsl
-lresolv -ldl -licui18n -licuuc -licudata
/usr/bin/ld: cannot find -lpostfix
https://lintian.debian.org/tags/acute-accent-in-manual-page:
This manual page uses the \' groff sequence. Usually, the intent to generate
an apostrophe, but that sequence actually renders as an acute accent.
For an apostrophe or a single closing quote, use plain '. For single opening
quote
q.o balpar.o
dict_union.o extpar.o dict_inline.o casefold.o dict_utf8.o strcasecmp_utf8.o
split_qnameval.o argv_attr_print.o argv_attr_scan.o dict_file.o msg_logger.o
logwriter.o unix_dgram_connect.o unix_dgram_listen.o byte_mask.o -lssl -lcrypto
-lsasl2 -lpthread -Wl,-z,relro -Wl,-z,now
-L/hom
liche Nachricht-
> Von: owner-postfix-us...@postfix.org Im
> Auftrag von Christian Schmitz
> Gesendet: Freitag, 17. September 2021 14:41
> An: postfix-users@postfix.org
> Betreff: Spam pass the filter
>
> Hi everyone:
> Normally when i identify a host spammer i block entir
es are the following.
Best Regards and thanks in advance
Christian
Return-Path:
X-Original-To: myemail
Delivered-To: myemail
Received: from m71-173.mailgun.net (m71-173.mailgun.net [166.78.71.173])
(using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits))
(No client c
help make it better ;-)
Hope you enjoy
https://gitlab.roessner-net.de/croessner/geoip-policyd
Christian Rößner
--
Rößner-Network-Solutions
Zertifizierter ITSiBe / CISO
Karl-Bröger-Str. 10, 36304 Alsfeld
Fax: +49 6631 78823409, Mobil: +49 171 9905345
USt-IdNr.: DE225643613, https://roessner.website
lower or larger than 1h.
And of course: Everyone can decide by its own, if he has a use case for this
service or not.
Christian Rößner
--
Rößner-Network-Solutions
Zertifizierter ITSiBe / CISO
Karl-Bröger-Str. 10, 36304 Alsfeld
Fax: +49 6631 78823409, Mobil: +49 171 9905345
USt-I
now and am happy with it.
--
Christian Kivalo
'm only using a local unbound on this server for name
resolution.
This is what I get:
valo:~ $ dig 109.75.92.40.list.dnswl.org +short
127.0.3.0
valo:~ $
>Thanks
>Mauri
>-Ursprüngliche Nachricht-
>Von: owner-postfix-us...@postfix.org
>Im Auftrag von Christian Kivalo
>
t;
>nameserver 8.8.8.8
>
>nameserver 46.38.225.230
You should not use public dns servers to query dnsbls as they are likely
blocked due to excessive query volume at the dnsbl. Install and use a local
resolver like unbound, knot, bind and use nameserver 127.0.0.1 in
/etc/resolv.conf
>
>
>regards
>
>Mauri
>
>
>
>
--
Christian Kivalo
TLSv1.2
You have a missing "," after !SLv3 which also misses an "S"
And you exclude TLSv1 with which I can establish an encrypted connection to
orange.fr
>
>smtp_tls_ciphers = high
>
>smtp_tls_CAfile =
>/etc/letsencrypt/live/mymailserver.domain.dom/chain.pem
You probably don't need client certificates.
>
>
>
>
>
>Any clue about this error ? Which cert do I use and that orange does
>not
>want ? Why is the email sent after a few attempts ?
Eventually the email is sent in plaintext without encryption.
>
>
>Regards,
>
>
>
>Gaetan
--
Christian Kivalo
Am Mi., 10. März 2021 um 21:44 Uhr schrieb Wietse Venema :
>
> Christian G?ttsche:
> > -g -O2 -I. -I../../include -DLINUX4 -c xsasl_cyrus_server.c
> > xsasl_cyrus_server.c:185:26: warning: initialization of ?int
> > (*)(void)? from incompatible pointer ty
FWIW: the Debian build log
(https://buildd.debian.org/status/fetch.php?pkg=postfix&arch=amd64&ver=3.5.6-1&stamp=1596413023&raw=0)
shows:
make: Entering directory '/<>/src/xsasl'
gcc -fPIC -I. -I../../include -g -O2
-fdebug-prefix-map=/<>=. -fstack-protector-strong
-Wformat -Werror=format-security
that spam wave with
high DNSBL ranks for me.
This http://rob0.nodns4.us/postscreen.html is a good ressource and i
have it setup more or less the way described there + some minor
adjustments needed for my setup.
Greets,
Ludi
--
Christian Kivalo
re some kind of cache involved here?
>>
>> There is no such thing in Postfix. Also not in the Postfix Dovcecot
>> client.
>
>Curious, and it couldn't be connection cache/reuse or something?
Could it have been an authenticated, still open connection that got closed as
postfix was restarted?
>---
>Tom
--
Christian Kivalo
o/transport
Taken from
http://www.postfix.org/transport.5.html
look under table search order
--
Med venlig hilsen / Best Regards
Christian Ejlertsen
Lytzen IT A/S
Tlf: +45 88328788
Dir: +45 88328707
On Wed, 2020-12-02 at 18:04 +, Chu, Uy wrote:
Hi,
I currently have 2 postfix servers as our gateway serv
hese aren't exactly fully qualified connections.???
Like I said, no kernel based firewall, very limited resources.
What is lowest resource way of getting rid of this?
Christian Brandt
implement this?
Regards
Christian
led to start Postfix Mail Transport
>
>Agent.
>Jul 04 15:55:04 SSPH systemd[1]: postfix.service: Scheduled restart
>job,
>restart counter is at 4.
>Jul 04 15:55:04 SSPH systemd[1]: Stopped Postfix Mail Transport Agent.
>Jul 04 15:55:04 SSPH systemd[1]: Starting Postfix Mail Transport
>Agent...
>Jul 04 15:55:09 SSPH systemd[1]: Started Postfix Mail Transport Agent.
>===
>
>I do not know how to fix this failure. Any help, please? I have asked
>this question in the Manjaro forum but with no resolution.
--
Christian Kivalo
o.
I added this to /etc/system/journal.conf.d/journald.conf and it works
for me.
[Journal]
RateLimitIntervalSec=1s
RateLimitBurst=0
Thanks for your help Christian! I am now able to accomplish my goals
using journalctl.
I am more than willing to collect data to help determine why the three
minu
7. I will
do additional research to know when I hit these limits and make
needed adjustments if I do.
Thanks for your help Christian! I am now able to accomplish my
goals using journalctl.
I am more than willing to collect data to help determine why the
three minutes of log data is not making it to
On 2020-07-13 00:10, Greg Sims wrote:
Thank you Christian. I am running on CentOS 8.2 and the name of the
service is "postfix.service". When I enter:
journalctl -u postfix.service --since="2020-07-12 03:06:00"
--until="2020-07-12 03:11:00"
I see all of the
On 2020-07-12 23:01, Greg Sims wrote:
Nothing Christian:
[root@mail0 postfix]# journalctl -u postfix@-.service
--since="2020-07-12 03:06:00" --until="2020-07-12 03:11:00"
-- Logs begin at Sat 2020-07-11 09:35:28 CDT, end at Sun 2020-07-12
15:50:00 CDT. --
-- No entries -
l.net
[5] http://aol.com
[6] http://icloud.com
[7] http://yahoo.com
[8] http://outlook.com
[9] http://rocketmail.com
--
Christian Kivalo
cates.crt
This setting does not affect posttls-finger
What does postfix log when you send a mail there?
--
Christian Kivalo
See attached patch. Typo is also in RELEASE_NOTES-3.0, but I guess this
file should not be changed.
Regards,
Christian
diff -ru postfix-3.5.3.orig/proto/postconf.proto
postfix-3.5.3/proto/postconf.proto
--- postfix-3.5.3.orig/proto/postconf.proto 2020-05-09 17:51:27.0
+0200
connect to
>127.0.0.1[127.0.0.1]:24: Connection timed out)
>
>do you have a solution ?
Whatever should listen on 127.0.0.1:24 is not listening / running.
What should accept the lmtp connections? Check if that service is running.
>Regards,
>Paul
--
Christian Kivalo
Am Dienstag, den 19.05.2020, 05:06 -0400 schrieb Viktor Dukhovni:
> We have no choice, we can't ship code that silently fails to honour
> its
> configuration. I'm not worried about DANE "working", I'm worried
> about
> DANE *not* working, and the user being none-the-wiser.
>
Just my 50cents to mak
I think it is a fundamental question on what your goal is: To
send/receive mail under any circumstance or force a minimum security
level.
With that it is important to distinguish between receiving mail and
sending. The issue with leaving every old option available is, that
broken tls versions or pl
Am Freitag, den 08.05.2020, 15:51 -0500 schrieb Thomas Strike:
> Matus: your right. I misused the word server. I thought that this was
> the test message being sent with gmail because every time I sent a
> new test, this IP came up in the maillog.
> This turns out to be a Russian IP. Geez, Louise!
Sorry if this has been tested before, but I joined the list only
lately.
Have you tried the google postmaster-tools for postfix.org and
especially adding the google-site-verification TXT?
Am Sonntag, den 26.04.2020, 23:07 +1200 schrieb Peter:
> On 26/04/20 10:47 pm, Benny Pedersen wrote:
> > talk
Am Mittwoch, den 15.04.2020, 05:05 -0400 schrieb Viktor Dukhovni:
> On Wed, Apr 15, 2020 at 10:36:26AM +0200, Christian wrote:
>
>
> I don't yet have access to systems with this recent a glibc to
> confirm
> the above, but this is likely relevant to Postfix administrators w
Am Mittwoch, den 15.04.2020, 02:28 -0400 schrieb Viktor Dukhovni:
> On Tue, Apr 14, 2020 at 05:59:51PM -0400, Viktor Dukhovni wrote:
>
>
> but if that is incompatible with other stub resolver libraries on the
> same machine, you may need a private musl-specific configuration file.
>
> My money is o
To finalise this as solved
Just moved Postfix to a Debian based container and now DANE is working as
expected.
Hence if anyone comes by this thread, follow Viktors advice:
> DO NOT run Postfix over musl-libc.
Hence not on regular Alpine.
Am Montag, den 13.04.2020, 06:57 -0400 schrieb Viktor Dukhovni:
>
> On Apr 13, 2020, at 6:38 AM, Christian wrote:
>
> Nevertheless, it should probably be included in the Postfix DANE
> documentation to avoid muslc setups with postfix for now.
>
> Postfix expects a C-library
Am Montag, den 13.04.2020, 05:52 -0400 schrieb Viktor Dukhovni:
>
> On Apr 13, 2020, at 4:56 AM, Christian wrote:
>
> The container is running on alpine, hence with muslc libc. After
> seeing
> the tcpdump yesterday, I thought as well, if that could be an issue.
>
> I am
Hi Damian,
Am Montag, den 13.04.2020, 11:22 +0200 schrieb Damian:
> The validator [1] says TLSA is ok, so is this even be a DNS issue? If I
> have to guess, Postfix encounters the following situation:
>
>
> When TLSA records are found, but are all unusable the effective security
> level is "encry
Hello Viktor,
thanks again, please see my answers inline.
Am Sonntag, den 12.04.2020, 22:47 -0400 schrieb Viktor Dukhovni:
> On Mon, Apr 13, 2020 at 02:12:49AM +0200, Christian wrote:
>
>
> thanks for the response! Apparently the mail was too long (>4000) and
> got rejected,
ong).
Kind Regards
Christian
Hi there,
I tried the DANE Test on "havedane.net" and figured, that outgoing DANE
is not working. I get the following:
Email to non-DANE domain delivered.
Email to DANE domain delivered.
Email to domain with invalid DANE delivered.
So apparently the check for the last one is failing (at least).
unavailable; client [51.88.120.222] blocked using
sp8lefi4grtb7jftpslxxztu3y.zen.dx.spamhous.net [1]
Links:
--
[1] http://sp8lefi4grtb7jftpslxxztu3y.zen.dx.spamhous.net
--
Christian Kivalo
not to break dkim signatures when modifying headers. Subject is a
signed header in most cases.
>Shade and sweet water!
>
> Stephan
--
Christian Kivalo
ens when you comment the ExternalIgnoreList and InternalHost settings
in opendkim.conf, restart the service and send a test mail originating from one
of the domains you're trying to sign?
What do the logs show?
My opendkim.conf has refile: prefix also for the KeyTable option.
Regards
Christ
r/local/etc/opendkim/KeyTable
>>>> SigningTable refile:/usr/local/etc/opendkim/SigningTable
>>>> SignatureAlgorithm rsa-sha256
>>>> Socket inet:8891@127.0.0.1 <mailto:8891@127.0.0.1>
>>>> UMask 022
>>>> UserID opendkim:opendkim
>>>> TemporaryDirectory /var/tmp
>>>>
>>>> As I stated it is running... But not signing from a test site...
>>>>
>>>> Any thoughts would be appreciated
>>>
>>> Are files /usr/local/etc/opendkim/TrustedHosts, KeyTable and
>>> SigningTable set up correctly? Do you need to use KeyTable and
>>> SigningTable - this is a more complex setup; standard setup uses
>>> parameters Domain, Selector and KeyFile - see
>>> http://www.opendkim.org/opendkim-README
><http://www.opendkim.org/opendkim-README>.
>>
--
Christian Kivalo
tfix send in the Envelope address for some
>reason the SIZE=423 with it
>
>MAIL FROM: SIZE=434,
>
>How can I disable the sending of the SIZE parameter?
>
>Greetings
>Tobias
--
Christian Kivalo
. journalctl -p4.
Regards,
Christian Göttsche
Hi Andreas,
> Am 14.08.2019 um 10:01 schrieb A. Schulze :
>
>
> Christian Rößner:
>
> Hello Christian,
>
>> By changing *_CAfile parameters to *_CApath, everything started working
>> again.
>
> nothing specific to your OpenSSL version but:
t_digest = sha256
smtpd_tls_protocols = !SSLv2 !SSLv3 !TLSv1.1
#
tls_preempt_cipherlist = yes
tls_ssl_options = NO_COMPRESSION
I use Let's encrypt certificates.
Postfix version is:
postconf -d mail_version
mail_version = 3.4.6
Thanks for an
seem to be a clue
> as to what's going on at this point, so I'm a bit lost. Help?
>
> -Dennis Carr
a little bit hard to figure out your problem. I only can guess.
Have you split the TXT records into chunks?
Do you use nsupdate?
Does your NS server allow updates?
Regards
use my sister use it and she lives
in other country ( i am on Argentine she is in Chile).
I will look for use only for incoming emails
9) i have configured to block words like BIT COIN (all together), but the
email was base64 coded and postfix cant decrypt and check the content. Is
possible?
Be
FROM field:
1)First question: how i can filter the spoofed emails. In other words, if the
sender is not authorized to send list@xxx because this emai is managed by ME
2)Seccond question :how i can adjust the sender policy to block soft fail SPF?
Thanks you all.
Best Regards.
Christian Schmit
ed I did not get a good answer.
CentOS 7 with elrepo(1 repository and kernel-ml
This is a very common setup CentOS+elrepo
1) http://elrepo.org/tiki/tiki-index.php
Christian
least 1024 bits keys for dkim signatures, more bits are
good and accepted.
--
Christian Kivalo
On Wed, 2018-09-26 at 13:46 -0400, Wietse Venema wrote:
> Christian Ejlertsen:
> > Postfix version 2.10.1
> >
> > I'm adding a check_policy_service for some quota checking, with the
> > following arguments
> >
> > check_policy_service inet:imap01.e
failing to find that will allow this.
Thank you in advance for any help and pointers
-- Christian
Rspamd together. Many config stuff
may be removed from Postfix and put to Rspamd.
Thanks for reading and hope to see you.
Best wishes
Christian
--
Rößner-Network-Solutions
Karl-Bröger-Str. 10, 36304 Alsfeld
T: +49 6631 9110725, F: +49 6631 78823409, M: +49 171 9905345
USt-IdNr.: DE225643613
es under various user ids. If you want to use such
> filesystems, you have to figure out how to make it work.
Thank you very much. I missed this. I will think about how to solve this.
Christian
--
Rößner-Network-Solutions
Karl-Bröger-Str. 10, 36304 Alsfeld
T: +49 6631 9110725, F: +49 6631 7882
> Am 20.08.2018 um 18:10 schrieb Wietse Venema :
>
> Christian Ro??ner:
>> What key is the log message talking about?
>
> Postfix asks the kernel to create a queue file, and the kernel
> returns the ENOKEY error code. Postfix is not responsible for
> eCryptfs
> Am 20.08.2018 um 16:17 schrieb Wietse Venema :
>
> Christian Ro??ner:
>> Aug 20 15:02:34 mx postfix/submission/cleanup[28091]: warning:
>> mail_queue_enter: create file incoming/648259.28091: Required
>> key not available
>
> Can you check if
1 - 100 of 452 matches
Mail list logo
