p_bind_address6 could be your friend
--
Ciao,
luigi
/
+--[Luigi Rosa]--
\
I know exactly what you mean. Let me tell you why you're here. You're here
because you know something. What you know you can't explain. But you feel
it. You've felt it your entire life. That there&#x
procedure.
--
Ciao,
luigi
/
+--[Luigi Rosa]--
\
Do you know the one... "All I ask is a tall ship... and a star to
steer her by..." You could feel the wind at your back, about you...
the sounds of the sea beneath you. And even if you take away the
wind and the water, it's stil
e DH parameters every night, this should enforce
better forward secrecy, am I correct?
--
Ciao,
luigi
/
+--[Luigi Rosa]--
\
The wireless music box has no imaginable commercial value. Who would
pay for a message sent to no one in particular?
--Associates of David Sarnoff responding
.
Glad to hear that it is not possible without fiddling with MX.
My personal advice is "choose a better ISP", but you know... cost savings...
Thank you.
--
Ciao,
luigi
/
+--[Luigi Rosa]--
\
The world is coming to an end... SAVE YOUR BUFFERS!!!
:[isp.mtabak.com]
Postfix uses always the second entry.
Is there a way to tell Postfix to use one and if the connection fails use the
other, just like a DNS MX weight?
Thank you
--
Ciao,
luigi
/
+--[Luigi Rosa]--
\
Don't focus on the one guy who hates you. You don't go to the park
and set y
Mohammed Ejaz wrote on 12/02/2015 08:50:
Just I wanted to know does postfix mail server has an option to keep the message
copy after successfully got delivered,
you can start with always_bcc
http://www.postfix.org/postconf.5.html#always_bcc
--
Ciao,
luigi
/
+--[Luigi Rosa]--
\
Biggest
ing for backward compatibility becoming a
bit too high?
Ciao,
luigi
- --
/
+--[Luigi Rosa]--
\
There was an IT guy called Rosa
Who was well-known in Zaragoza
His passion for pork
required no fork
Swine fainted if Luis got closer!
--Paolo Attivissimo
-BEGIN PGP SIGNATURE-
V
to disable SSLv3 to prevent a future 0-day that could affect STARTTLS
and IMAPS (I disabled SSL v2 and v3 on Dovecot ad well)
Ciao,
luigi
- --
/
+--[Luigi Rosa]--
\
There is a difference between knowing the path and walking the path.
--Morpheus, Matrix
-BEGIN PGP SIGNATURE-
Versio
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
li...@rhsoft.net wrote on 15/10/2014 17:57:
> if you don't need to support really old clients smtpd_tls_protocols =
> !SSLv2 !SSLv3
Thanks!
Ciao,
luigi
- --
/
+--[Luigi Rosa]--
\
God isn't dead, he just couldn't find a park
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Just to be on the safe side, is it worth to disable SSL v3 on STARTTLS-enabled
Postfix configurations?
If yes, what is the proper way to do it?
Thank you in advance.
Ciao,
luigi
- --
/
+--[Luigi Rosa]--
\
Computer Engineers do it bit by bit
-I/usr/include/mysql -DUSE_SASL_AUTH
-DDEF_SERVER_SASL_TYPE=\"dovecot\"' \
AUXLIBS='-L/usr/lib64/mysql -lssl -lcrypto -lmysqlclient -lz -lm'
Which finally did the trick
To summarize: -lssl solved the SSL issue, but with CentOS 7 I still have to
specify MySQL/Ma
x. 1 root root 16 Aug 14 08:16 /lib64/libssl.so.10 -> libssl.so.1.0.1e
Since this issue involves SSL, I prefer to ask rather then applying random
fixes.
Thank you in advance.
Ciao,
luigi
--
/
+--[Luigi Rosa]--
\
Steve Jobs says he's been diagnosed with a hormone imbalance, which
could affect his iMmune system.
--fark.com
mail15.wdc01.mcdlv.net has address 205.201.129.15
mail15.wdc01.mcdlv.net mail is handled by 10 mail.mail15.wdc01.mcdlv.net.
So why Postfix says "Domain not found"?
Thank you.
Ciao,
luigi
- --
/
+--[Luigi Rosa]--
\
Be careful of reading health books, you might die of a misprint.
m, why reinvent the wheel?
Otherwise we could end up with an email address whit a local part encoded with
algorithm A and a domain name encoded with algorithm B.
Ciao,
luigi
- --
/
+--[Luigi Rosa]--
\
Law of the Perversity of Nature: You cannot successfully determine
beforehand which sid
rea and that MTAs could have a legitimate
reason to reject the messages.
Think of a sort of second chance to deliver legitimate messages.
Ciao,
luigi
- --
/
+--[Luigi Rosa]--
\
She lost her GUI and I had to console her.
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.14 (GNU/Linux)
Comm
he
configuration is in the RH^H^Hupstream vendor.
So a bug should be filed in RedHat in order to try to fix this issue.
Ciao,
luigi
- --
/
+--[Luigi Rosa]--
\
Leibowitz's Rule: When hammering a nail, you will never hit your finger
if you hold the hammer with both hands.
-BEGIN PGP SI
Ciao,
luigi
- --
/
+--[Luigi Rosa]--
\
The world is coming to an end... SAVE YOUR BUFFERS!!!
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.12 (GNU/Linux)
Comment: Using GnuPG with Thunderbird - http://www.enigmail.net/
iEYEARECAAYFAlJS9IoACgkQ3kWu7Tfl6ZQh0wCeMxf4BwkQxGI
DNS and SPF record as requested by the page linked in the
status of Google 5xx reject [1] and GOOG kept rejecting may mails.
[1] http://www.google.com/mail/help/bulk_mail.html
Ciao,
luigi
- --
/
+--[Luigi Rosa]--
\
I didn't know it was impossible when I did it.
-BEGIN PGP SIGNATURE
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Manuel Bieling said the following on 07/10/2013 13:45:
> Wietse explained this a few weeks ago:
Just remember to put the "-o" that Wietse forgot before "inet_protocols"
Works like a charm.
Ciao,
luigi
- --
/
+--[Luigi
ginning I thought it was my fault, but then I saw that the
problem was replicated on very different servers.
Ciao,
luigi
- --
/
+--[Luigi Rosa]--
\
Paul's Law: You can't fall off the floor.
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.12 (GNU/Linux)
Comment: Using GnuPG with
luigi
- --
/
+--[Luigi Rosa]--
\
An idea is not responsible for the people who believe in it.
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.12 (GNU/Linux)
Comment: Using GnuPG with Thunderbird - http://www.enigmail.net/
iEYEARECAAYFAlJKWJ4ACgkQ3kWu7Tfl6ZSj6wCfVsgwMziUmsSlDQBgpR
ingerprint.
My question is: with PKI keys is better to leave the opportunistic TLS policy
and use fingerprint only for self issued keys with 3650 days of validity or
are there some better ways to handle this?
Thank you in advance.
Ciao,
luigi
- --
/
+--[Luigi Rosa]--
\
I have always ima
inet_protocols=ipv4 smtp-ipv6-only unix - -
> n - - smtp inet_protocols=ipv6
Great, thank you Wietse!
Ciao,
luigi
- --
/
+--[Luigi Rosa]--
\
The primary function of the design engineer is to make things
difficult for the fabricator and impossible
with (presumed) skilled
SysAdmin, but also by large organization whith sloppy IPv6 support.
A sort of tranport map for IPv4/IPv6/any could be useful for:
* force IPv4 connection with bogous IPv4/IPv6 MTAs
* force IPv6 connection for testing purposes
Ciao,
luigi
- --
/
+--[Luigi Rosa]--
\
Got
gest
Too bad I did not read the line below "The Postfix SMTP server and client log
the peer (leaf) certificate fingerprint and public key fingerprint when the
TLS loglevel is 2 or higher." My fault for not reading the entire documentation.
Thank you for your help!
Ciao,
luigi
- --
pd_tls_session_cache_timeout = 3600s
strict_7bit_headers = yes
strict_rfc821_envelopes = yes
tls_random_source = dev:/dev/urandom
unknown_local_recipient_reject_code = 550
Ciao,
luigi
- --
/
+--[Luigi Rosa]--
\
When a man is tired of London, he is tired of life.
--Samuel Johnson
-BEGIN PGP SIGNAT
on, setting smtp_tls_policy_maps to "fingerprint"
should not check the CAs but only the fingerprint.
So maybe there is something in the configuration that does not tell Postfix do
use smtp_tls_policy_maps
Ciao,
luigi
- --
/
+--[Luigi Rosa]--
\
She offered her honor,
He honored her offer
cipher DHE-RSA-AES256-SHA (256/256 bits)
postfix/smtp[5360]: A4A6320004D: Server certificate not verified
even if "fingerprint" should not verify the certificate path.
What I am missing?
Ciao,
luigi
- --
/
+--[Luigi Rosa]--
\
The NYT reports that Mark Papermaster, Apple'
so if you want to debug the filter, i.e. if a user asks why a
mail has been rejected.
Of course smtpd_recipient_restrictions alone is not an antispam filter, you
should also add at least an antivirus scanner.
Ciao,
luigi
- --
/
+--[Luigi Rosa]--
\
Talk is cheap because supply exceed
t the
master.cf file and replace "unix" with "fifo" for the pickup and
qmgr services.
[Feature 20120924] the default master.cf file now uses "unix" instead
of "fifo" for the pickup and qmgr services. This avoids periodic
disk drive spin-up.
Ciao,
luigi
- --
server. Everything works as expected.
Just one curiosity: the "laptop-friendly configuration" could be useful also
for a virtualized environment because it reduces the I/O on the disk?
Ciao,
luigi
- --
/
+--[Luigi Rosa]--
\
I keep seeing spots in front of my eyes.
Did you ever see a
!
Ciao,
luigi
--
/
+--[Luigi Rosa]--
\
8 bit di dati, 1 bit di stop, nessuna pieta`
:
Connection timed out)
Is there a way to redirect the queued emails to the new server using "local"
postfix tools instead of something like dual IP on Exchnge server?
Thank you in advance.
Ciao,
luigi
- --
/
+--[Luigi Rosa]--
\
If you see a man approaching you with the obvious in
f example.com has
example.com. IN MX 10 mail.example.com.
mail.example.com. IN A 1.2.3.4
mail.example.com. IN 2001:1234:abcd::beef
and
smtp_address_preference = any
What protocol is tried first with "any" setting?
Ciao,
luigi
- --
/
+--[Luigi Rosa]--
\
East, West, just
/postfix/main.cf but only once. Now I have
commented it out.
Ciao,
luigi
- --
/
+--[Luigi Rosa]--
\
A plan depends as much upon execution as it does upon concepts.
--Frank Herbert, "Dune"
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.11 (GNU/Linux)
Comment: Using
y mail server refuses mail delivery from dynamic IPs.
Ciao,
luigi
- --
/
+--[Luigi Rosa]--
\
Marilyn Monroe: il peggior esempio di recitazione dopo il giuramento
del presidente Nixon.
--John Houston
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.11 (GNU/Linux)
Comment: Using GnuPG with M
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
nima chavooshi said the following on 27/10/11 13:42:
> Is there any recommendation for send bulk mail ?
1) Use dedicated announcement services.
2) Route the emails to your ISP's MTA
Ciao,
luigi
- --
/
+--[Luigi Rosa]--
\
Osbo
works
file for email aliases
Bit if i put in the destination an entry like '|/path/to/script.sh' I got a 550
5.1.1 error "user |/path/to/script.sh doesn't exists".
What am I missing?
Thank you in advance.
Ciao,
luigi
- --
/
+--[Luigi Rosa]--
\
There is onl
and Exchange is pretty
safe.
Ciao,
luigi
- --
/
+--[Luigi Rosa]--
\
Houston, we've had a problem here.
--Jim Lovell, "Apollo 13"
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.10 (GNU/Linux)
Comment: Using GnuPG with
follow this procedure, or something linke this, your email from Exchange
will have u...@example.com because you have set it as the main email address
Ciao,
luigi
- --
/
+--[Luigi Rosa]--
\
I have a bad feeling about this.
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.10 (GNU/Linux)
Comment:
?
Thank you.
Ciao,
luigi
- --
/
+--[Luigi Rosa]--
\
Kevlar inventor dead, wife's alibi bulletproof.
--fark.com
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.10 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/
iEYEARECAAYFAkx0BKAACgkQ3kWu7Tfl6ZSx
If you set mailbox_size_limit to zero, what happens?
Ciao,
luigi
- --
/
+--[Luigi Rosa]--
\
Superior ability breeds superior ambition.
--Spock, "Space Seed"
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.10 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http:
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Kaushal Shriyan said the following on 06/01/10 13:40:
> Any GUI based application to view postfix mail.log file?
Maybe rsyslog logging (also) to sql and phpLogCon to view it
Ciao,
luigi
- --
/
+--[Luigi Rosa]--
\
I see no good reasons why
r this? Thank you.
I use Dovecot as authentication server, you can find more information in
SASL_README file of Postfix
Of course, Dovecot uses MySQL.
Ciao,
luigi
- --
/
+--[Luigi Rosa]--
\
F u cn rd ths, u cn gt a gd jb n cmptr prgrmmng.
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.
rules
on their server.
My two cents.
Ciao,
luigi
--
/
+--[Luigi Rosa]--
\
Interface: The opposite of 'Get out of my face.'
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Brent Robinson said the following on 20/08/09 16:37:
> Do we need to upgrade or recompile Postfix in order for it to work
> correctly with MySql 5?
You should, since Postfix uses MySQL libraries and include files.
Ciao,
luigi
- --
/
+--
headquarters and one userlist for each one of the local offices.
Is there anyone else who solved this issue?
Thank you in advance.
Ciao,
luigi
- --
/
+--[Luigi Rosa]--
\
A plan depends as much upon execution as it does upon concepts.
--Frank Herbert, "Dune"
-BEGIN PGP SIGNATURE---
a look at pflogsumm source to get the regular expressions and apply
them to log entries using any language you want that supports MySQL connections
and RegEx filtering.
Ciao,
luigi
- --
/
+--[Luigi Rosa]--
\
Great minds drink alike.
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.9 (GNU
in MYSQL.
You should parse rsyslog entries with an external program.
You can also modify pglogsumm to put the values in a MySQL table instead of
STDOUT
Ciao,
luigi
- --
/
+--[Luigi Rosa]--
\
The Wright Bothers weren't the first to fly. They were just the first not to
crash.
-BEGIN
t
> all.
Yes, you are right: better shutdown completly Postfix, thank you!
Ciao,
luigi
- --
/
+--[Luigi Rosa]--
\
A rocket will never be able to leave the Earth's atmosphere.
--"New York Times", 1936
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.9 (GNU/Linux)
Comment:
that this request is quite irrelevant and could be solved by blocking
temporary the port 25 or simply shutting down the postfix daemon; I simply ask
to check if there are alternatives to said solutions.
Thank you.
Ciao,
luigi
- --
/
+--[Luigi Rosa]--
\
All generalizations are false.
ble directly. Before Postfix version 2.2, the
virtual(8) delivery agent will terminate with a
fatal error.
Ciao,
luigi
- --
/
+--[Luigi Rosa]--
\
Don't wrestle a pig in a mudhole.
You both get all dirty, and the pig enjoys it.
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.
nce rsyslog have such feature.
Ciao,
luigi
- --
/
+--[Luigi Rosa]--
\
NTSC: Never Twice Same Colors
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.9 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
iEYEARECAAYFAklfUDgACgkQ3kWu7Tfl6ZQ7GwCeMxFm6I4jrRtPZwbVsdy27NA4
dW4Ao
ot; routing?
Ciao,
luigi
--
/
+--[Luigi Rosa]--
\
Are you out of your damn Vulcan mind, Spock?
Michal Soltys said the following on 31/07/08 08:41:
You will need smtp_bind_address in main.cf for that purpose. Depending
on your configuration need, you could create extra service in master.cf
as well, example:
Thank you, Michal!
Ciao,
luigi
--
/
+--[Luigi Rosa]--
\
I got the bill for
via the system default gateway 20.20.20.20?
Thank you in advance.
Ciao,
luigi
--
/
+--[Luigi Rosa]--
\
James Bond: Are these pictures live?
M: Unlike the Americans, we prefer not to get our bad news from CNN.
--"007 Goldeneye"
56 matches
Mail list logo
