23. März 2024, 16:25:47 CET schrieb Viktor Dukhovni via
Postfix-users:
> On Sat, Mar 23, 2024 at 01:57:39PM +0100, Matthias Nagel via Postfix-users
> wrote:
>
> > Also note, that the file which is configured in
> > `smtpd_tls_chain_files` is only a symbolic link, e.g.
>
n TLS 1.2 and earlier depends on whether
> any of the "kDHE" ciphers are included in the cipherlist.
>
> This feature is available in Postfix 3.8 and later, when it is compiled
> and linked with OpenSSL 3.0 or later.
Am Samstag, 23. März 2024, 13:02:05 CET schrieb Bastian Blank v
Hello everybody,
I use `smtpd_tls_chain_files` to set the X.509 certificate (and key) for
Postfix. Do I have to reload Postfix, e.g. via `systemctrl reload
postfix.service` after the certificate (and key) file has been renewed? The
following sentence in
https://www.postfix.org/postconf.5.html#
Hello everybody,
what is the rationale behind the deprecation of the setting
`smtpd_tls_cipherlist`? Are there any plans to remove it entirely in some
future versions?
I am looking for an option to explicitly set the list of allowed cipher suites.
The deprecated setting `smtpd_tls_cipherlist`
Hi everyone,
I am currently assessing the TLS security of a Postfix mail server and among
other things sslscan reported that the server allows a (non-EC) DH exchange
with only 1024 bits. While one solution would be to only allow ECDH(E) and
disable DH(E) entirely, I would rather like to keep su
do that.
Thanks a lot.
Am Sonntag, 11. Februar 2024, 16:33:33 CET schrieb Viktor Dukhovni via
Postfix-users:
> On Sun, Feb 11, 2024 at 10:59:37AM +0100, Matthias Nagel via Postfix-users
> wrote:
>
> > How do I forward submitted mails under the identity of an email alias
> >
Dear all,
how do I forward submitted mails under the identity of an email alias to all
other members of that alias? Is that even possible with Postfix only?
I am running Postfix 3.8.4 with OpenLDAP as the backend for account and alias
management. Postfix is setup for virtual mail hosting and tr
Am Mittwoch, 22. November 2023, 19:01:23 CET schrieb postfix--- via
Postfix-users:
> > I am looking for an option to temporarily pause delivery via LMTP and defer
> > mail while the Dovecot mailboxes are being backed-up in order to get an
> > consistent state.
>
> Just take dovecot LMTP offline
I am using Posfix with virtual mailboxes. Dovecot hosts these mailboxes and
Posfix delivers mails via the LMTP delivery agent to Dovecot.
I am looking for an option to temporarily pause delivery via LMTP and defer
mail while the Dovecot mailboxes are being backed-up in order to get an
consisten
Am Samstag, 11. November 2023, 18:51:04 CET schrieb Bill Cole via Postfix-users:
> Nope. Review the restriction list docs. PERMIT only short-circuits the
> current restriction list. Later restriction in the same list are
> skipped, but later lists are still run. DENY or DEFER acts immediately.
T
Hello all,
I am running Postfix 3.8.1. Postfix serves port 25 for incoming mail from other
MTAs and port 587 for authenticated MUAs.
Postfix is supposed to check SPF for mails from other MTAs on port 25, but not
for mails from authenticated MUAs on port 587.
To this end, there is a SPF check i
Dear Viktor, dear Wietse,
Viktor, you recommend to use proxymap in combination with LDAP, especially if
all LDAP lookups use the same connection. Indeed, this is the case for my
setup. The LDAP server, the bind DN and bind passwd are the same. Only the
search base, the query filter and the resu
Hello all,
I am using Postfix 3.8.1 on Ubuntu 23.10. Per distribution default, Postfix
runs chrooted. I have setup LDAP lookups for most maps. OpenLDAP is only
listening via UNIX socket on ldapi:///var/run/slapd/ldapi.
For all but one LDAP lookup the corresponding Postfix configuration file loo
13 matches
Mail list logo
