Re: smtpd_proxy reply message (was: body_checks with postscreen)

Hi Wietse > > Can I quiet that message down somewhere to NOT include that info? > > Just include the REJECT, but not the IP/Port, maybe referring to > > it by its 'syslog_name' or something like that? > > Postfix 2.7 and later have an smtp_reply_filter feature, but > that was implemented in the P

Re: body_checks with postscreen. Test works at blocking, but 'real mail' slips through?

Hi Wilfried > As i understand, amavis is putting the "from MTA(smtp > [127.0.0.1]:50100)" into the reject message. I assume, postfix can't > filter this message out, because it's all happening during the smtp > dialog, while getting the mail from sending outside server. You will > have to rewrite

Re: body_checks with postscreen. Test works at blocking, but 'real mail' slips through?

Hi Wilfried > seems you are using amavis in before-queue mode? Yep, at this first step it's before-queue > As i remember, a proxy-smtpd, doesn't do any header- and body-checks Ok, so I must have missed that :-/ I don't yet grok all the details of before-VS-after queuing. WOrkinf on that - it

Re: body_checks with postscreen. Test works at blocking, but 'real mail' slips through?

Hi Noel > Or just a really bad job of cut/paste? Damn. Here I am trying to keep things all tidy-like and f'ing it all up with cp-n-paste. Sorry. Typo. Without any monkeying by me, postconf -n body_checks body_checks = pcre:/etc/postfix/body_checks.pcre postconf -n | grep body_checks body_ch

Re: body_checks with postscreen. Test works at blocking, but 'real mail' slips through?

Re-looking at my config, I set up Postfix to 1) receive via postfix 2) hand off what passes postscreen and the body_checks to amavis So I have master.cf [mx.example.com]:25 inet n - n - 1 postscreen -o smtpd_service_name=ps-int ps-int pass - - n - - smtpd -o recei

Re: body_checks with postscreen. Test works at blocking, but 'real mail' slips through?

Hi Wietse On Mon, Jan 18, 2016, at 01:20 PM, Wietse Venema wrote: > bi...@sent.at: > > postconf -n | grep body_checks > > body_checks = /etc/postfix/body_checks.pcre > > That's your problem. You have SPACE before body_checks. No sorry . That's just me. I indented output 'vs' input like I al

Re: body_checks with postscreen. Test works at blocking, but 'real mail' slips through?

Hi Patrick Thanks for the reply. > To clarify: postscreen never sees a message body. It probes the client IP and > fakes a few SMTP commands, but that's it. Ok, took me a couple of rereads, but it's not postscreen doing the check. It's that postscreen is "part 1" of several checks. > The righ

body_checks with postscreen. Test works at blocking, but 'real mail' slips through?

Hi I'm building my 1st Postfix server and working on getting Postscreen setup. I RTFM here http://www.postfix.org/POSTSCREEN_README.html Where it says The third layer performs light-weight content inspection with the Postfix built-in header_checks and body_checks. This can block unaccepta