Re: Untrusted TLS connection appearing in logs

Thanks. I thought I had that set but I’ll check again tomorrow. Robert - Robert Chalmers https://robert-chalmers.uk https://robert-chalmers.com @R_A_Chalmers > On 16 Jul 2020, at 4:18 pm, Patrick Ben Koetter wrote: > > * Robert Chalmers (Author) : >> >> I’m seein

Untrusted TLS connection appearing in logs

I’m seeing this in my log file on outgoing test mail. Can’t seem to find a solution. The mail does go through, but leaves this “Untrusted” message in its wake. Jul 16 15:33:37 www postfix/587/smtp[35313]: Untrusted TLS connection established to gmail-smtp-in.l.google.com[2a00:1450:400c:c08::1

Re: Can I further block dodgy attempts at passwording

Oh, and I could show the log of multiple passwords being tried from the same address. - Robert Chalmers https://robert-chalmers.uk https://robert-chalmers.com @R_A_Chalmers > On 6 Jul 2020, at 6:00 pm, Jerry wrote: > > On Mon, 06 Jul 2020 17:58:08 +0200, Benny Pedersen stated:

Re: Can I further block dodgy attempts at passwording

No to the first. I’m not missing any by grepping ‘unknown’ - if they are unknown users I don’t even want them in my system. Yes, it’s very strict. You have a login or you don’t. Easy. - Robert Chalmers https://robert-chalmers.uk https://robert-chalmers.com @R_A_Chalmers > On 6 Jul 2

blocking unknown useers...

From what I”m looking at, both these achieve much the same thing Mine: A much longer list… but still unknowns. grep unknown /var/log/postfix.log | grep -E -o "([0-9]{1,3}[\.]){3}[0-9]{1,3}" | sort -n | uniq > output.txt Pretty good… from Jerry. Very nice and very short list of unknowns. bzgrep

Re: Can I further block dodgy attempts at passwording

That’s pretty good Jerry, thanks. A much reduced list of bad ips robert > On 6 Jul 2020, at 16:31, Jerry wrote: > > On Mon, 6 Jul 2020 11:06:17 -0400 (EDT), Wietse Venema stated: >> Robert Chalmers (Author): >>> >>> >>> Such as this one? >&

Re: Can I further block dodgy attempts at passwording

Thanks Jerry, That looks good. - Robert Chalmers https://robert-chalmers.uk https://robert-chalmers.com @R_A_Chalmers > On 6 Jul 2020, at 4:32 pm, Jerry wrote: > > On Mon, 6 Jul 2020 11:06:17 -0400 (EDT), Wietse Venema stated: >> Robert Chalmers (Author): >>> &

Re: Can I further block dodgy attempts at passwording

Thanks, but I have no idea what you mean. Sorry. - Robert Chalmers https://robert-chalmers.uk https://robert-chalmers.com @R_A_Chalmers > On 6 Jul 2020, at 4:07 pm, Wietse Venema wrote: > > Robert Chalmers (Author): >> >> >> Such as this one? >> >

Re: Can I further block dodgy attempts at passwording

Such as this one? Jul 06 08:10:03 www postfix/smtpd[6155]: disconnect from unknown[45.125.65.52] ehlo=1 auth=0/1 quit=1 commands=⅔ So I have anyway written this to find them sudo grep unknown /var/log/postfix.log | grep -E -o "([0-9]{1,3}[\.]){3}[0-9]{1,3}" | sort -n | uniq > output.txt Ta

Can I further block dodgy attempts at passwording

I’m getting lots and lots of these types of login attempts; warning: unknown[45.125.65.52]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 (postfix log) Info: pam(s...@robert-chalmers.uk,45.125.65.52): unknown user (given password: sale01)(dovecot log) and I’m wondering

Can I just check Makefile instructions syntax please

Thanks, I’m just checking. This does the makefiles, and make successfully completes ok, but I want to check that the directories will be built into the build correctly. Everything below /usr/local make -f Makefile.init dynamicmaps=yes CCARGS='-I/usr/local/Cellar/berkeley-db@4/4.8.30/include -D

make looking for non-existent dyld file?

Each time I build now, I get this from Postconf. Postfix 3.5.3 Mac OSX 10.15.5 It pops up as an OSX error message. Dyld Error Message: Library not loaded: /usr/local/opt/openssl/lib/libssl.1.0.0.dylib Referenced from: /Users/USER/*/postconf Reason: image not found I’ve looked at src/postc

Postfix on OSX 10.15.5 being overwritten by OS updates

I’m wondering if it’s possible to install Postfix onto the OSX, so that it doesn’t get overwritten by new updates to the OS every time. I have changed things a few times but really. There must be a solution. Does anyone have a useful suggestion? Thanks Robert

OSX 10.15.5 #error "Unsupported Berkeley DB version"

Trying to build 3.5.3 on OSX 10.15.5 and running into this problem again. dict_db.c:768:2: error: "Unsupported Berkeley DB version" #error "Unsupported Berkeley DB version” Build script. make -f Makefile.init dynamicmaps=yes CCARGS='-I/usr/local/Cellar/berkeley-db/18.1.32_1/include -DHAS_MYSQL

Re: Upgraded to 3.4 today. All logging has Stopped?

I ran into this myself a little while back. Used Bill’s logging example until I ironed out a few glitches. Now everything is working ok I don’t use it. I’m on a Mac by the way. OSX 10.14.2 and run an apache vhosts web setup, Postfix with Dovecot + MySQL, and Clamd, freshclam etc etc. Postfix and

Re: How do I get 'mail' working again

o just rebuild or configure ‘mail’ Oh well. Keeps me busy. > On 28 Dec 2018, at 1:37 pm, Wietse Venema wrote: > > Robert Chalmers: >> My original post was about what to do about the program called ?mail? which >> by default - and can?t be changed - looks for /etc/postf

Re: How do I get 'mail' working again

There seems to be some confusion here. Sorry. The build of postfix works fine, including sendmail. At build time, the root directory is set to /usr/local so everything gets installed in the right place at ‘make install’ time. Right where I want it. All good. Now on the other hand. Apple puts

Re: How do I get 'mail' working again

it’s looking at the default /etc/postfix directory. I decided to build into /usr/local ..., because I got fed up with Apple installing its own rubbish postfix version over the top of my build every major upgrade. Anyway, all is well for the moment. - Robert Chalmers https://robert

Re: How do I get 'mail' working again

ano Mannucci wrote: > > On Thu, 27 Dec 2018 12:19:34 + > Robert Chalmers wrote: > >> I’ve moved all my postfix binaries to /usr/local/bin and my configs etc >> to /usr/local/etc/postfix >> >> However, because ‘mail’ is installed by Apple by default into /usr

How do I get 'mail' working again

I’ve moved all my postfix binaries to /usr/local/bin and my configs etc to /usr/local/etc/postfix However, because ‘mail’ is installed by Apple by default into /usr/bin/mail, if I now type mail robert I get, robert$ unknown: fatal: open /etc/postfix/main.cf: No such file or directory Beca

Re: part 2 of: SSL not working after unwanted server migration

> > As far as I can see, this postfix+procmail part of the system is > working as expected now. It > is "only" gmail interfacing and webmail configuration that are still giving me > pains. > > Marco Robert Chalmers https://robert-chalmers.uk aut...@robert-chalmers.uk @R_A_Chalmers

Re: part 2 of: SSL not working after unwanted server migration

___ Robert Chalmers https://robert-chalmers.uk aut...@robert-chalmers.uk @R_A_Chalmers > On 11 Dec 2018, at 4:12 pm, Marco Fioretti wrote: > > I confess I do not know how to check that. The output of which command > should I turn verbose? > > Thanks > Il giorno mar 11 dic 2018

Re: part 2 of: SSL not working after unwanted server migration

ailing lists. Since then, and until 4 days ago, it had always > worked as expected, and never given me reasons to remember its > existence. Do you mean that the "flags=D" setting is obsolete in the > current version of postfix? > > Marco > Il giorno m

Re: part 2 of: SSL not working after unwanted server migration

ocmail -t -m USER=${recipient} >EXTENSION=${extension} /usr/local/etc/procmailrc.common > here it > Il giorno mar 11 dic 2018 alle ore 15:51 Robert Chalmers > ha scritto: >> >> Do a >> postconf -Mf >> >> to show your master.cf file configuration. >&

Re: part 2 of: SSL not working after unwanted server migration

- 1 scache > procmail unix - n n - - pipe -o flags=D >user=myvmail_user argv=/usr/bin/procmail -t -m USER=${recipient} >EXTENSION=${extension} /usr/local/etc/procmailrc.common > here it > Il giorno mar 11 dic 2018 alle ore 15:51 Robert

Re: part 2 of: SSL not working after unwanted server migration

Do a postconf -Mf to show your master.cf file configuration. > On 11 Dec 2018, at 14:47, Robert Chalmers wrote: > > Where/what is the -D in your master.cf file > > > > >> On 11 Dec 2018, at 14:35, Marco Fioretti > <mailto:marco.fiore...@gmail

Re: part 2 of: SSL not working after unwanted server migration

Where/what is the -D in your master.cf file > On 11 Dec 2018, at 14:35, Marco Fioretti wrote: > > /etc/postfix/master.cf: unused > parameter: flags=D" Robert Chalmers https://robert-chalmers.uk aut...@robert-chalmers.uk @R_A_Chalmers

Re: part 2 of: SSL not working after unwanted server migration

own_address_reject_code = 554 > unknown_client_reject_code = 554 > unknown_hostname_reject_code = 554 > unknown_local_recipient_reject_code = 550 > virtual_alias_maps = hash:/etc/postfix/mymaps/valias.map > virtual_gid_maps = static:5000 > virtual_mailbox_base = /var/mail/mymail_storage > virtual_mailbox_domains = /etc/postfix/mymaps/vhosts.map > virtual_mailbox_maps = hash:/etc/postfix/mymaps/vmailboxes.map > virtual_transport = procmail > virtual_uid_maps = static:5000 > postconf: warning: /etc/postfix/main.cf: unused parameter: > smtp_tls_auth_only=yes Robert Chalmers https://robert-chalmers.uk aut...@robert-chalmers.uk @R_A_Chalmers

Re: part 2 of: SSL not working after unwanted server migration

n_client_reject_code = 554 > unknown_hostname_reject_code = 554 > unknown_local_recipient_reject_code = 550 > virtual_alias_maps = hash:/etc/postfix/mymaps/valias.map > virtual_gid_maps = static:5000 > virtual_mailbox_base = /var/mail/mymail_storage > virtual_mailbox_domains = /etc/postfix/mymaps/vhosts.map > virtual_mailbox_maps = hash:/etc/postfix/mymaps/vmailboxes.map > virtual_transport = procmail > virtual_uid_maps = static:5000 > postconf: warning: /etc/postfix/main.cf: unused parameter: > smtp_tls_auth_only=yes Robert Chalmers https://robert-chalmers.uk aut...@robert-chalmers.uk @R_A_Chalmers

Re: SSL not working after unwanted server migration

Marco Post your logs showing the errors. __ Robert Chalmers https://robert-chalmers.uk aut...@robert-chalmers.uk @R_A_Chalmers On 10 Dec 2018, at 8:25 pm, Viktor Dukhovni wrote: >> On Dec 10, 2018, at 7:22 AM, Alice Wonder wrote: >> >> ssl_min_

Re: SSL not working after unwanted server migration

g a directory only root can read (and > the private key is in that directory) > > Postfix and Dovecot in CentOS systems work fine with that even though the > daemon runs as user postfix group postfix. > > On 12/10/18 2:45 AM, Marco Fioretti wrote: >> Il giorno lun 10 dic 201

Re: SSL not working after unwanted server migration

Google is refusing access because your ipv6 PTR does not map to your domain. It’s the common (now) google reverse lookup failing. - Robert Chalmers https://robert-chalmers.uk aut...@robert-chalmers.uk @R_A_Chalmers > On 10 Dec 2018, at 8:08 am, Marco Fioretti wrote: > >

Re: A little help needed checking my postconf - n please.

@NoelJones Thanks Noel. Everything is working now as far as I can figure. Still an issue with gmail refusing my ipv6 because it’s doesn’t have a reverse ptr, but that I can live with. cheers Robert > On 5 Dec 2018, at 16:42, Noel Jones wrote: > > On 12/5/2018 2:49 AM, Robert Chalm

A little help needed checking my postconf - n please.

virtual_mailbox_maps = mysql:/usr/local/etc/postfix/mysql-virtual-mailbox-maps.cf virtual_minimum_uid = 100 virtual_transport = lmtp:unix:private/dovecot-lmtp virtual_uid_maps = static:5000 Robert Chalmers https://robert-chalmers.uk aut...@robert-chalmers.uk @R_A_Chalmers

Re: How can I test my mail server without having remote access

yet. - Robert Chalmers https://robert-chalmers.uk aut...@robert-chalmers.uk @R_A_Chalmers > On 4 Dec 2018, at 4:50 am, Andrey Repin wrote: > > Greetings, Robert Chalmers! > > >> I don’t have the luxury of having access to a useable computer from a site >> remot

How can I test my mail server without having remote access

I don’t have the luxury of having access to a useable computer from a site remote to my server, but I still need to test my email server, the TLS/SSL setup, smtp and smtpd. There are some remote test sites that also want a valid email and password! But I’m a bit reluctant obviously. I suspect

Re: FYI: Logging mail on Postfix 3.4 and Mojave (OSX 10.11)

trace the problem I’m sure. I’ll share what I can shortly. __ Robert Chalmers https://robert-chalmers.uk aut...@robert-chalmers.uk @R_A_Chalmers > On 1 Dec 2018, at 1:37 pm, Wietse Venema wrote: > > Robert Chalmers: >> So this works thanks Bill. >> I think. I?m strug

Re: FYI: Logging mail on Postfix 3.4 and Mojave (OSX 10.11)

but haven’t tracked down why yet. Seems to be related to incoming mail?! - Robert Chalmers https://robert-chalmers.uk aut...@robert-chalmers.uk @R_A_Chalmers > On 30 Nov 2018, at 5:53 pm, Bill Cole > wrote: > >> On 30 Nov 2018, at 10:24, rachalmers wrote: >> &g

Upgraded to 3.4 today. All logging has Stopped?

I upgraded to and installed 3.4 today. It appears to be running, but all logging has stopped. The last entry in the log file was at the exact time I started the new version. I’m also having trouble with the Mail program but that’s another story. Which is why I’m trying contact via my iPad. L

Before I actually type 'make upgrade"....

I have a clean compile of 3.4, and have various directories set, based on /usr/local generally. These are the same as the existing installation that is running fine. V3.1 config_directory=/usr/local/etc/postfix \ command_directory=/usr/local/sbin \ daemon_directory=/usr/loca

Re: Compile error on Mojave (Postfix 3.3.2): 'openssl/opensslv.h' file not found

" > -DDEF_SENDMAIL_PATH=\"/usr/local/sbin/sendmail\" -UUSE_DYNAMIC_LIBS > -DDEF_SHLIB_DIR=\"no\" -UUSE_DYNAMIC_MAPS -Wmissing-prototypes -Wformat > -Wno-comment -g -O -I. -I../../include -DMACOSX -o master master.o > master_conf.o master_ent.o master_sig.o master_avail.o master_spawn.o > master_service.o master_status.o master_listen.o master_vars.o > master_wakeup.o master_watch.o master_flow.o master_monitor.o > ../../lib/libglobal.a ../../lib/libutil.a -L/usr/local/lib -lpcre -lssl > -lcrypto -L/usr/local/opt/mysql@5.7/lib -lmysqlclient -lz -lm -flat_namespace > -lresolv > ld: library not found for -lssl > clang: error: linker command failed with exit code 1 (use -v to see > invocation) > make: *** [master] Error 1 > > Homebrew installed openssl 1.0.2 when I installed either stunnel or MySQL@5.7 > as Homebrew won’t let me uninstall that version as they are using it. Suppose > I’ll have to work out how to have Homebrew install them with OpenSSL@1.1.1 > somehow. > > James. Robert Chalmers https://robert-chalmers.uk aut...@robert-chalmers.uk @R_A_Chalmers

Re: Compiler error on 3.4. Mac Mojave (3.3.2)

3.2.0-5, 3.3.0 and current) to allow >> build against MySQL 8.x >> >> Then had to add this define to dict_mysql.c >> >> #define MYSQL_OPT_SSL_VERIFY_SERVER_CERT 0 >> >> Because the compiler was complaining that it wasn't declared. Compiles fine > &g

Re: Compiler error on 3.3.2. Mac Mojave (3.3.2)

having a head start on all this. I’ve got to get this build going clean because I want to install on my server to replace my 3.1 Robert - Robert Chalmers https://robert-chalmers.uk aut...@robert-chalmers.uk @R_A_Chalmers > On 27 Nov 2018, at 7:25 pm, Wietse Venema wrote: > > r

Re: Compiler error on 3.3.2. Mac Mojave (3.3.2)

import-atom in libpostfix-tls.dylib >> "_X509_up_ref", referenced from: >> import-atom in libpostfix-tls.dylib >> ld: symbol(s) not found for architecture x86_64 >> clang: error: linker command failed with exit code 1 (use -v to see >> invocation) >> make: *** [smtpd] Error 1 >> make: *** [update] Error 1 >> make: *** [update] Error 2 >> >> As mentioned previously, I'm on a Mac, mostly Homebrew installs of code >> things. > > -- > Viktor. > Robert Chalmers https://robert-chalmers.uk aut...@robert-chalmers.uk @R_A_Chalmers

"Unsupported Berkeley DB version" coming up again on Mac

I’m on a Mac.. cc -I. -I../../include -DHAS_MYSQL -I/usr/local/include/mysql -I/usr/local/include -DUSE_TLS -DUSE_SASL_AUTH -DUSE_CYRUS_SASL -I/Applications/Xcode.app/Contents/Developer/Platforms/MacOSX.platform/Developer/SDKs/MacOSX.sdk/usr/include/sasl -DDEF_SERVER_SASL_TYPE=\"dovecot\" -D

Re: A bit stuck compiling Postfix on Mac Mojave.

Thanks Victor, understood. - Robert Chalmers https://robert-chalmers.uk aut...@robert-chalmers.uk @R_A_Chalmers > On 19 Nov 2018, at 8:53 pm, Viktor Dukhovni > wrote: > >> On Mon, Nov 19, 2018 at 07:43:06PM +, Robert Chalmers wrote: >> >> sorry W

Re: A bit stuck compiling Postfix on Mac Mojave.

les, and > 'icu-config --ldflags' to locate libraries. > > Now, if Apple decided not to install "icu-config", then they are > not helping developers. > > Wietse Robert Chalmers https://robert-chalmers.uk aut...@robert-chalmers.uk @R_A_Chalmers

Re: A bit stuck compiling Postfix on Mac Mojave.

opps. Viktor. In my slight rework enthusiasm I’ve gone and put -lsasl2 in twice… no matter I’ll fix it. robert > On 19 Nov 2018, at 17:16, Viktor Dukhovni wrote: > > On Mon, Nov 19, 2018 at 03:42:51PM +0000, Robert Chalmers wrote: > >> make -f Makefile.init dyna

Re: A bit stuck compiling Postfix on Mac Mojave.

sorry Wietse, you’ve lost me there. What does your statement mean in relation to the commands of Viktor that now build it? thanks Robert > On 19 Nov 2018, at 19:33, Wietse Venema wrote: > > Viktor Dukhovni: >> Change the above to: >> >> # There's no need to mention "-I/usr/local/include" mul

Re: A bit stuck compiling Postfix on Mac Mojave.

l_path=/usr/local/sbin/sendmail \ "CCARGS=${CCARGS}" \ "AUXLIBS=${AUXLIBS}" \ 'AUXLIBS_MYSQL=-L/usr/local/lib -lmysqlclient -lz -lm' \ 'AUXLIBS_PCRE=-L/usr/local/lib -lpcre' = > On 19 Nov 2018, at 1

Re: A bit stuck compiling Postfix on Mac Mojave.

I think I’ve got the OpenSSL libraries correct, but not the TLD part. - Robert Chalmers https://robert-chalmers.uk aut...@robert-chalmers.uk @R_A_Chalmers > On 19 Nov 2018, at 4:20 pm, Bill Cole > wrote: > >> On 19 Nov 2018, at 10:42, Robert Chalmers wrote: >> >

Re: A bit stuck compiling Postfix on Mac Mojave.

Yes, I only just put that gnutls in there... in desperation really! But I get the same error with or without. I figured it was some library thing... but finding the right one is a real problem. - Robert Chalmers https://robert-chalmers.uk aut...@robert-chalmers.uk @R_A_Chalmers > On

A bit stuck compiling Postfix on Mac Mojave.

This is my make script. make -f Makefile.init dynamicmaps=yes CCARGS='-DHAS_MYSQL -I/usr/local/include/mysql -I/usr/local/include -I/usr/local/include/openssl -I/usr/local/include/gnutls -DUSE_TLS -DUSE_SASL_AUTH -DUSE_CYRUS_SASL -I/Applications/Xcode.app/Contents/Developer/Platforms/MacOSX.p

Re: Compiler error on 3.3.1. Mac Mojave

tches. I have built in MySQL SASL Cyrus-Sasl SASL support Dovecot SASL support PCRE OpenSSL Crypto TLS Thanks for the detailed breakdown. I pointed me right to the missing library. It was installed, I just wasn’t pointing to it. Robert > On 8 Nov 2018, at 16:18, Bill Cole > wrote: >

Compiler error on 3.3.1. Mac Mojave

It’s almost through the build but failing on this. Undefined symbols for architecture x86_64: "_db_create", referenced from: import-atom in libpostfix-util.dylib "_db_env_create", referenced from: import-atom in libpostfix-util.dylib "_db_version", referenced from: import

Error on make of the latest 3.3.1 source at dict_db.c

Hi, I can see what the error message says . But I confess at this moment, I’m at a loss as to how to fix it? Where is it looking for this db? -DMACOSX -c dict_db.c dict_db.c:758:2: error: "Unsupported Berkeley DB version" #error "Unsupported Berkeley DB version" ^ 1 error generated. make: *** [

How do I turn on logging for postfix on mac

I have been asked how I turn on /var/log/mail.log for postfix on a Mac running Mohave. I have it running on mine, but it always has - but I can’t remember if I had to do anything special to turn it on. The person asking has no /var/log/mail.log at all and now I’m curious. thanks robert

Re: postfix pdf

From a different site… How do I configure Postfix to never send NDR responses? For example, if someone tries to send an email to a user that doesn't exist, I don't want my server to respond and let them know that it doesn't exist. I just simply don't want it to respond. It is strongly suggeste

Re: Small question: how do I see in the log on which port the connection is made?

Is there a list somewhere of just what options can be logged with “-o syslog_name=x” ? > On 4 Jan 2017, at 04:12, Viktor Dukhovni wrote: > > >> On Jan 3, 2017, at 7:36 PM, Bradley Giesbrecht >> wrote: >> >> Add syslog_name to the appropriate service in master.cf. >> >> -o syslog_name=

Re: launchd plist files on MacOSX

problem, but not the last two times. But I still check. I haven’t installed the Server software. No need for it in my case. I’d rather roll my own :-) > On 3 Jan 2017, at 16:15, Jim Reid wrote: > > >> On 3 Jan 2017, at 14:37, Robert Chalmers wrote: >> >> To start Pos

Re: 3.1.4 Compiled and Installed on OSX Sierra 10.12.2 Successful.

, I know that’s not much help, but it’s one of those things I’ve set and forgotten.. > On 3 Jan 2017, at 16:01, Viktor Dukhovni wrote: > > >> On Jan 3, 2017, at 10:33 AM, Robert Chalmers wrote: >> >> Do you mean like this … where ‘postfix’ shows up.? >> >

Re: 3.1.4 Compiled and Installed on OSX Sierra 10.12.2 Successful.

[21275]: : Policy action=PREPEND Received-SPF: pass ( > On 3 Jan 2017, at 15:20, Viktor Dukhovni wrote: > > >> On Jan 3, 2017, at 9:37 AM, Robert Chalmers wrote: >> >> Just to contribute back a little, in case it helps someone else, I have >> Postfix 3.1.4 in

3.1.4 Compiled and Installed on OSX Sierra 10.12.2 Successful.

Just to contribute back a little, in case it helps someone else, I have Postfix 3.1.4 installed and running on OSX Sierra 10.12.2 and actually running outside of the native Apple installation. If you leave it in the default Apple directories, it gets overwritten by OS upgrades. A very bad thing

FYI. The UK mirror page of the 3.1.1 source code appear to be broken. 404 Not Found

http://mirror.tje.me.uk/pub/mirrors/postfix-release/index.html Postfix 3.1 Patchlevel 0 Source code <http://mirror.tje.me.uk/pub/mirrors/postfix-release/official/postfix-3.1.0.tar.gz> | 404 - Not Found Robert Chalmers rob...@chalmers.com <mailto:rob...@chalmers.com>.au

greylist doesn't seem to be working? Setup correctly.

_limit> = 1 But ok, I remove the greylist_time_limit = 3600 and proceed, but there is no greylist.db being generated? Is greylisting a good thing? What am I doing wrong? thanks Robert Chalmers rob...@chalmers.com <mailto:rob...@chalmers.com>.au Mac mini 6.2 - 2012, Intel Core i7,2.3 GHz, Mem

Re: Can anyone see why this is getting through?

hmmm. :-) I’m just trying to discover how anything let it through. I don’t care about postscreen? > On 1 Jun 2016, at 16:59, @lbutlr wrote: > > On Jun 1, 2016, at 9:53 AM, Robert Chalmers wrote: >> All I am trying to discover is what it is about the enclosed

Re: Can anyone see why this is getting through?

is what it is about the enclosed message that is enabling it to get through all of that blockading. simple Robert > On 1 Jun 2016, at 16:21, @lbutlr wrote: > > On Jun 1, 2016, at 9:14 AM, Robert Chalmers wrote: >> Ah well, this is the problem - I can’t figure out what te

Re: Can anyone see why this is getting through?

Ah well, this is the problem - I can’t figure out what test it’s failing that is letting it through. This, and other email like it, possibly the same actual source, is the only spam getting through. Robert > On 1 Jun 2016, at 15:38, Wietse Venema wrote: > > Robert Chalmers: >&

Is there a Check my IPv6 Email server out there anywhere?

I have a message for en.internet.nl advising me that “Modern internet address? Not reachable or improvements possible (IPv6)” -> "Unfortunately, this e-mail domain can not be reached by senders using modern IPv6 addresses or there is an error in its configuration. It is

Re: Is /usr/bin/mail a link to sendmail/postfix

, because it is used by crown if nothing else… > > Did you replace the default sendmail with a link to your postfix build’s > sendmail? This caused me trouble on my FreeBSD machine when sending mail from > the command line. > > -- > Don't be afraid to be weak, Don&#

Re: Is /usr/bin/mail a link to sendmail/postfix

> Try appending a line with "set sendmail /usr/local/sbin/sendmail" > to that file. > > Wietse Robert Chalmers rob...@chalmers.com <mailto:rob...@chalmers.com>.au Quantum Radio: http://tinyurl.com/lwwddov Mac mini 6.2 - 2012, Intel Core i7,2.3 GHz, Memory:16 GB

Re: Is /usr/bin/mail a link to sendmail/postfix

r screen. > • Now click on the "Utilities" menu, and then "Terminal". > • In the Terminal Window type: > • csrutil disable > • Restart OS X, your Mac should then restart as normal with SIP disabled, > This is a permanent setting so once done would never

Is /usr/bin/mail a link to sendmail/postfix

I have /usr/bin/mail on the mac, and it’s looking for /etc/postfix/main.cf I have rebuilt postfix from source, and relocated it, the files now living in /usr/local/etc/postfix So I’m wondering what /usr/bin/mail’s relationship to postfix is? Robert Chalmers

Re: postfix

hem? If so, we will continue the next >> step of registration. If not, please reply me an e-mail. Looking >> forward to your prompt reply. > > I have no relationship with PERF Asia. > > Wietse Robert Chalmers rob...@chalmers.com <mailto:rob...@chalmers.com>.au Quan

Re: postfix/smtpd connections from unknown users. Dealing with same?

rity_level = $smtpd_tls_security_level postscreen_use_tls = $smtpd_use_tls postscreen_watchdog_timeout = 10s > On 8 Mar 2016, at 16:37, @lbutlr wrote: > > On Mar 8, 2016, at 9:15 AM, Robert Chalmers wrote: >> I can put them in a postfix blacklist. And possible write a script to update >> the li

postfix/smtpd connections from unknown users. Dealing with same?

This afternoon, over the course of about 4 hours, I’ve logged 741 connections like this. Mar 8 15:05:46 zeus postfix/smtpd[92324]: connect from unknown[185.130.5.90] Mar 8 15:07:30 zeus postfix/smtpd[92616]: connect from unknown[131.161.138.190] Mar 8 15:07:39 zeus postfix/smtpd[92324]: connec

Attn: Jim Reid - Re bouncing email from your server - Re: pfctl on MacOSX

gt;: Client host rejected: Not today. ======= > On 5 Mar 2016, at 16:37, Jim Reid wrote: > > >> On 5 Mar 2016, at 15:38, Robert Chalmers wrote: >> >> Also, I can see that pfctl -e turns it on - enables it, but I can’t see how >> that is put in p

Re: pfctl on MacOSX

enables after the pfctl loads the conf. cheers > On 5 Mar 2016, at 16:37, Jim Reid wrote: > > >> On 5 Mar 2016, at 15:38, Robert Chalmers wrote: >> >> Also, I can see that pfctl -e turns it on - enables it, but I can’t see how >> that is put in place automatic

Re: How can I block this user...

: Urgent sudo pfctl -e sudo pfctl -s info No ALTQ support in kernel ALTQ related functions disabled Status: Enabled for 0 days 00:00:12 Debug: Urgent any ideas? Robert > On 5 Mar 2016, at 00:42, Bill Cole > wrote: > > On 4 Mar 2016, at 9:47, Robert Chalmers wrote: > >&g

Re: How can I block this user...

-IPs.txt" block drop from to any > On 5 Mar 2016, at 00:42, Bill Cole > wrote: > > block return in log quick proto tcp from 174.46.142.137 to any port > {25,465,587} Robert Chalmers rob...@chalmers.com <mailto:rob...@chalmers.com>.au Quantum Radio: htt

Re: How can I block this user...

On 5 Mar 2016, at 00:42, Bill Cole > wrote: > > On 4 Mar 2016, at 9:47, Robert Chalmers wrote: > >> thanks, that seems to work - how to make it permanent next … >> >> but, it should be working in postfix in any case shouldn’t it? >> >> Wep, weekend c

Re: How can I block this user...

ost 174.46.142.137 127.0.0.1 > > Have a nice weekend ;-) > > > Greetz, > > Louis > > > Van: rob...@chalmers.com.au [mailto:owner-postfix-us...@postfix.org] Namens > Robert Chalmers > Verzonden: vrijdag 4 maart 2016 14:39 > Aan: Postfix users

How can I block this user...

0 virtual_mailbox_maps = mysql:/usr/local/etc/postfix/mysql-virtual-mailbox-maps.cf virtual_minimum_uid = 100 virtual_transport = lmtp:unix:private/dovecot-lmtp virtual_uid_maps = static:5000 thanks Robert Chalmers

Re: Is this coming from my server - or outside ? can't figure it out.

Thanks It seems to have been junk stuck in the mail, probably left over from a bad configuration some time back … Cleared mailq, and the messages have stopped > On 21 Jan 2016, at 16:38, Wietse Venema wrote: > > Robert Chalmers: >> I keep seeing these in my server logs, and I

Is this coming from my server - or outside ? can't figure it out.

=, relay=none, delay=189343, delays=189313/0.02/30/0, dsn=4.4.1, status=deferred (connect to example.com[2606:2800:220:1:248:1893:25c8:1946]:25: No route to host) Robert Chalmers rob...@chalmers.com.au Quantum Radio: http://tinyurl.com/lwwddov Mac mini 6.2 - 2012, Intel Core i7,2.3 GHz, Memory

Found: .... the reason for this smtpd/opendmarc warning.

this warning … warning: connect to Milter service inet:127.0.0.1:8893: Connection refused I started opendmarc as root, and the warning went away. sudo /usr/local/sbin/opendmarc -v -c /usr/local/etc/opendmarc/opendmarc.conf _opendmarc 29480 0.0 0.0 2482232820 ?? Ss 10:51am 0:

Re: I can't find the reason for this smtpd/opendmarc warning.

: Connection refused Trying 127.0.0.1... Connected to localhost. Escape character is '^]'. . Connection closed by foreign host. Seems to be at least connecting Robert Chalmers rob...@chalmers.com <mailto:rob...@chalmers.com>.au Quantum Radio: http://tinyurl.com/lwwddov <http://

I can't find the reason for this smtpd/opendmarc warning.

the opendmarc.conf configured and as far as I can tell, all is well - except for this warning postfix/smtpd[27575]: warning: connect to Milter service inet:127.0.0.1:8893: Connection refused Robert Chalmers rob...@chalmers.com <mailto:rob...@chalmers.com>.au Quantum Radio: http://tinyurl.com/l

Re: Could someone check my master.cf file please for accuracy and validity.

Thanks Noel, as it is working - I’ll leave well enough alone then. Thanks > On 3 Dec 2015, at 17:18, Noel Jones wrote: > > On 12/3/2015 11:07 AM, Steve Jenkins wrote: >> On Thu, Dec 3, 2015 at 9:01 AM, Robert Chalmers >> mailto:rob...@chalmers.com.au>> wrote: >

Re: Could someone check my master.cf file please for accuracy and validity.

.cf it covers everything? I mean. it’s all apparently working, just a bit confusing. A long day. thanks guys > On 3 Dec 2015, at 17:07, Steve Jenkins wrote: > > On Thu, Dec 3, 2015 at 9:01 AM, Robert Chalmers > wrote: > To enlarge on that, I have in main.cf and ma

Has anyone else seen this please? spamd[94095]: spf: lookup failed: etc etc

I have spam assassin running under postfix - but I’m getting an error popping up now and then, and I’m darned if I can locate how to fix it. Has anyone on the list seen this? spamd[94095]: spf: lookup failed: Can't locate object method "handles" via package "IO::Socket::IP" at /opt/local/lib/p

Re: Could someone check my master.cf file please for accuracy and validity.

To enlarge on that, I have in main.cf and master.cf the following main.cf /// # dkim smtpd_milters = inet:127.0.0.1:8891 non_smtpd_milters = inet:127.0.0.1:8891 milter_default_action = accept //

Could someone check my master.cf file please for accuracy and validity.

=/opt/local/bin/spamc -e /usr/local/sbin/sendmail -oi -f ${sender} ${recipient} Robert Chalmers rob...@chalmers.com <mailto:rob...@chalmers.com>.au Quantum Radio: http://tinyurl.com/lwwddov Mac mini 6.2 - 2012, Intel Core i7,2.3 GHz, Memory:16 GB. El-Capitan 10.11. 2TB Storage made

Something about the -T in spamfilter.sh is failing on OSX

Dec 2 14:33:14 spamfilter[85611] : Error code 64 processing spam! ) any ideas anyone. What exactly is the -T for ??? thanks Robert Chalmers rob...@chalmers.com <mailto:rob...@chalmers.com>.au Quantum Radio: http://tinyurl.com/lwwddov Mac mini 6.2 - 2012, Intel Core i7,2.3 GHz, Memory

2 questions: Can I add another smtp line into master.cf for spam assassin? & spa-policy.pl

, and greypolicy and if so how? I have tired - but mail then fails. Robert Chalmers rob...@chalmers.com <mailto:rob...@chalmers.com>.au Quantum Radio: http://tinyurl.com/lwwddov Mac mini 6.2 - 2012, Intel Core i7,2.3 GHz, Memory:16 GB. El-Capitan 10.11. 2TB Storage made up of - D

Re: Feedback on Postscreen Whitelist Article

In fact on closer inspection, the last two are duplicates. Robert Chalmers rob...@chalmers.com <mailto:rob...@chalmers.com>.au Quantum Radio: http://tinyurl.com/lwwddov Mac mini 6.2 - 2012, Intel Core i7,2.3 GHz, Memory:16 GB. El-Capitan 10.11. 2TB Storage made up of - Drive

Re: Feedback on Postscreen Whitelist Article

So do I. So I’ll hand cut the cidr file for now, and wait till the author updates his code.. Robert Chalmers rob...@chalmers.com <mailto:rob...@chalmers.com>.au Quantum Radio: http://tinyurl.com/lwwddov Mac mini 6.2 - 2012, Intel Core i7,2.3 GHz, Memory:16 GB. El-Capitan 10.11. 2TB S

Re: Feedback on Postscreen Whitelist Article

etc/postfix/msft_whitelist.cidr, line 41: non-null host address bits in "65.55.238.129/26", perhaps you should use "65.55.238.128/26" instead: skipping this rule What do you think? Robert Robert Chalmers rob...@chalmers.com <mailto:rob...@chalmers.com>.au Quantum

Re: Are the "," in a list actually needed?

Thanks, that’s what I needed to know. so I’ll leave as is. Robert > On 24 Nov 2015, at 11:18, Wietse Venema wrote: > > Robert Chalmers: >> >> I have this list, and each line terminated with a ? , ? a comma, but it >> seems to work with, or without them? >&

Are the "," in a list actually needed?

iadb.isipp.com=127.0.[0..255].[0..255]*-2 iadb.isipp.com=127.3.100.[6..200]*-2 wl.mailspike.net=127.0.0.[17;18]*-1 wl.mailspike.net=127.0.0.[19;20]*-2 Robert Chalmers rob...@chalmers.com <mailto:rob...@chalmers.com>.au Quantum Radio: http://tinyurl.com/lwwddov Mac mini 6.2

  1   2   >