Hi
What is currently happening with the OpenArc project? On GitHub, I see
the last modifications were made 7 years ago. Has the project completely
failed? I'm asking because I see that Gmail/G-Suite are using it, and,
after all, they are trendsetters. The OpenARC project seems quite useful
and
W dniu 12.12.2024 o 15:00, Viktor Dukhovni via Postfix-users pisze:
On Thu, Dec 12, 2024 at 02:40:29AM +0100, natan via Postfix-users wrote:
I upgrade from postfix-3.7.x to postfix-3.9.x (Almalinux and repo GT-plus)
and i get problem
Dec 11 23:58:31 smtp2 postfix/postmap[24258]: warning
Hi
I upgrade from postfix-3.7.x to postfix-3.9.x (Almalinux and repo
GT-plus) and i get problem
Dec 11 23:58:31 smtp2 postfix/postmap[24258]: warning: dict_mysql:
mysql_set_character_set 'utf8mb4' failed: Unknown character set: 'utf8mb4'
Dec 11 23:58:31 smtp2 postfix/postmap[24258]: fatal: tab
W dniu 5.12.2024 o 13:41, Matus UHLAR - fantomas via Postfix-users pisze:
On 05.12.24 12:32, natan via Postfix-users wrote:
Maybe change
from:
cleanup unix n - y - 0 cleanup
to:
cleanup fifo n - y - 0 cleanup
But I don't know if it
W dniu 5.12.2024 o 13:17, Matus UHLAR - fantomas via Postfix-users pisze:
On 05.12.24 12:32, natan via Postfix-users wrote:
Maybe change
from:
cleanup unix n - y - 0 cleanup
to:
cleanup fifo n - y - 0 cleanup
But I don't
t via Postfix-users pisze:
* natan via Postfix-users :
Hi
Today i run setup postfix+milter-regex.sock
Some times in log I get:
tail -f /var/log/mail.log |grep milter
Dec 5 11:23:03 mx-node2 postfix/cleanup[45922]: warning: connect to Milter
service unix:/var/run/milter/milter-regex.sock: No such fi
Hi
In the case you are talking about it would be every time and this
happens sporadically
W dniu 5.12.2024 o 11:50, Ralf Hildebrandt via Postfix-users pisze:
* natan via Postfix-users :
Hi
Today i run setup postfix+milter-regex.sock
Some times in log I get:
tail -f /var/log/mail.log |grep
Hi
Today i run setup postfix+milter-regex.sock
Some times in log I get:
tail -f /var/log/mail.log |grep milter
Dec 5 11:23:03 mx-node2 postfix/cleanup[45922]: warning: connect to
Milter service unix:/var/run/milter/milter-regex.sock: No such file or
directory
Dec 5 11:23:25 mx-node2 postfix/
Hi
In process list I sow always milter
mailregx 42670 16.6 0.0 920172 6000 ? Ssl 11:19 2:54
/usr/bin/milter-regex -c /etc/postfix/milter-regex.conf -u mailregx -G
postfix -p /var/run/milter/milter-regex.sock
W dniu 5.12.2024 o 11:34, natan via Postfix-users pisze:
Hi
Today i run
Hi
The logs show that Postfix does not pass the from key because the From
header comes from the message body, and Postfix by default only supports
sender information from the Envelope From (sender). Right?
I'm trying to write something "like DMARC" in Python to reject if the
From and return-p
Hi
I'm trying to write something like DMARC in Python to reject if the from
and return-path for the selected domain are different
Because these similar solutions like vrfydmn (in Perl) are not very
user-friendly
W dniu 28.11.2024 o 13:57, natan via Postfix-users pisze:
Hi
I have
sys.stdout.write("action=DUNNO\n\n")
sys.stdout.flush()
if __name__ == "__main__":
main()
...
W dniu 28.11.2024 o 13:57, natan via Postfix-users pisze:
Hi
I have some problem with comunications postfix + python
in main.cf:
...
smtpd_restriction_classes=testowy
tes
Hi
I have some problem with comunications postfix + python
in main.cf:
...
smtpd_restriction_classes=testowy
testowy=check_policy_service { unix:private/testowy, timeout=4s,
default_action=DUNNO }
smtpd_recipient_restrictions =
check_recipient_access inline:{{testdomain.ltd=testowy}},
W dniu 20.11.2024 o 12:06, Ralph Seichter via Postfix-users pisze:
* natan via Postfix-users:
If @domain.ltd in return-path and from: is dfferend then Reject "non
allowed"
That kind of rejection can be realised easily using milter-regex [1].
Simply combine "envfrom" and
W dniu 20.11.2024 o 12:53, Matus UHLAR - fantomas via Postfix-users pisze:
On 20.11.24 11:48, natan via Postfix-users wrote:
I have a specific problem - yes, I can solve it with opendmarc and
opendkim, and score in spamassassin but that's out of the question -
I only need to domain in &q
Hi
I have a specific problem - yes, I can solve it with opendmarc and
opendkim, and score in spamassassin but that's out of the question - I
only need to domain in "return-patch" and "From" for one specific domain
and if it's different, then reject. I thought about doing something at
the milte
Hi
Thanx for reply problem solved :) This is exactly what I've come to
W dniu 13.11.2024 o 15:11, Wietse Venema via Postfix-users pisze:
natan via Postfix-users:
Hi
Thenx for replay but im doing something wrong
smtpd_restriction_classes=lpolicyd, greylist
lpolicyd=check_policy_se
24 o 13:36, Viktor Dukhovni via Postfix-users pisze:
On Wed, Nov 13, 2024 at 12:46:10PM +0100, natan via Postfix-users wrote:
main.cf:
...
smtpd_recipient_restrictions =
check_recipient_access hash:/etc/postfix/special_domains,
Add:
smtpd_restricti
Hi
I have working setup without greylisting
I try run greylisting (via mtpolicyd) but only in some domain
I thinking something concept like:
main.cf:
...
smtpd_recipient_restrictions =
check_recipient_access hash:/etc/postfix/special_domains,
master.cf:
...
mtp
Hi
I would be happy to privately send sample emails with someone between
domains that have a DMARC reject policy.
W dniu 11.09.2024 o 15:49, natan via Postfix-users pisze:
W dniu 11.09.2024 o 15:14, Matus UHLAR - fantomas via Postfix-users
pisze:
On 11.09.24 09:11, natan via Postfix-users
W dniu 11.09.2024 o 15:14, Matus UHLAR - fantomas via Postfix-users pisze:
On 11.09.24 09:11, natan via Postfix-users wrote:
The problem is with DKIM signing when I try to reply to a message
and the external recipient has DMARC verification
If I have a p=none policy in DMARC it
W dniu 11.09.2024 o 11:34, Matus UHLAR - fantomas via Postfix-users pisze:
On 11.09.24 09:11, natan via Postfix-users wrote:
Bill I have seperate setup like
1)one serve for outgoing
2)one server for incomming + dovecot cluster
I personally still don't knbow how your system works.
W
Hi
Thenx for replay
Bill I have seperate setup like
1)one serve for outgoing
2)one server for incomming + dovecot cluster
W dniu 10.09.2024 o 18:07, Bill Cole via Postfix-users pisze:
On 2024-09-10 at 08:05:21 UTC-0400 (Tue, 10 Sep 2024 14:05:21 +0200)
natan via Postfix-users
is rumored to
Hi
Is avilable to run thats setup use postfix+milter ?
For test I run thats setup:
1)enable addheaders on dovecot
2)create special rules in sieve like:
if allof (header :contains "return-path" "@domain.ltd",
header :contains "Received" "domai",
header :contains "X-HEADERS" "do
Hi
I have that scenario
My client have e-mail @domain.ltd and have correct SPF DKIM and DMARC
(politic reject)
When my klient set "vacations" in sieve filter all works fine but have
problem with gmail (I guess because of redirects)
The information flow looks like this:
---incomming-email>
W dniu 15.07.2024 o 12:06, Matus UHLAR - fantomas via Postfix-users pisze:
On 08.07.24 11:42, natan via Postfix-users wrote:
What you propose use ?
Maybe instead of not accepting such mail will better is change score
in SA ?
This is a policy issue. You can choose your policy to be
: _spf.cyberfolks.pl:
include:_spf.cyberfolks.pl. Please see
http://www.openspf.net/Why?s=mfrom;id=x...@wrap-zone.pl;ip=193.17.184.42;r=;
from= to= proto=ESMTP
helo=
W dniu 27.06.2024 o 16:21, Carlos Velasco via Postfix-users pisze:
natan via Postfix-users escribió el 27/06/2024 a las 15:48:
W dniu
Hi
What you propose use ?
Maybe instead of not accepting such mail will better is change score in SA ?
W dniu 8.07.2024 o 11:36, natan via Postfix-users pisze:
Hi
What value do you use in postfix-policyd-spf in PermError_reject ?
HELO_reject = Fail
Mail_From_reject = Fail
#update 20240706
Hi
What value do you use in postfix-policyd-spf in PermError_reject ?
HELO_reject = Fail
Mail_From_reject = Fail
#update 20240706
#PermError_reject = False
PermError_reject = True
TempError_Defer = False
I don't know if that's maybe too restrictive PermError_reject
But on the other hand, the se
W dniu 27.06.2024 o 15:48, natan via Postfix-users pisze:
W dniu 27.06.2024 o 15:39, Scott Kitterman via Postfix-users pisze:
On June 27, 2024 1:30:37 PM UTC, natan via
Postfix-users wrote:
Hi
I have a strange problem with SPF and I honestly don't know what to pay
attention to
What
W dniu 27.06.2024 o 15:39, Scott Kitterman via Postfix-users pisze:
On June 27, 2024 1:30:37 PM UTC, natan via
Postfix-users wrote:
Hi
I have a strange problem with SPF and I honestly don't know what to pay
attention to
What is a Permerror in SPF
In log i get:
Jun 27 15:09:11 MX po
Hi
I have a strange problem with SPF and I honestly don't know what to pay
attention to
What is a Permerror in SPF
In log i get:
Jun 27 15:09:11 MX policyd-spf[57158]: prepend Received-SPF: Permerror
(mailfrom) identity=mailfrom; client-ip=84.205.190.72;
helo=h2.3hosting.pl; envelope-from=gp
Hi
I try block all bc.googleusercontent.com but some adress allow
Is this make sense ?
cat /etc/postfix/header_checks.pcre
#allow
/^Received:.from.mg.gitlab.com.*bc.googleusercontent.com/ DUNNO
#reject
/^Received:.from.*bc.googleusercontent.com/ REJECT spam/scam/419
detected
I blocked b
better to improve the
application than to play around with postfix because you can cause a big
problem
I don't want to kick with the horse...
W dniu 19.03.2024 o 11:43, Erwan David via Postfix-users pisze:
Le 19/03/2024 à 11:39, natan via Postfix-users a écrit :
Hi
I have one question regard
Hi
I have one question regarding the RFC of the FROM field: in the message
header.
Is there any restriction that will force the FROM field to be correct
according to the RFC?
I'm asking because one client "parses e-mails strangely" and his
application hangs and instead of correcting it, he se
W dniu 28.02.2024 o 16:14, Wietse Venema via Postfix-users pisze:
natan via Postfix-users:
for"us...@domain.ltd"
Feb 27 16:02:28 smtp1v postfix/cleanup[23476]: warning:
proxy:mysql:/etc/postfix/mysql_sender_bcc_maps_user.cf-new lookup error
for"us...@domain.ltd"
Feb 27 16:
lived move IP)
All new connections work ok, but the old ones get an error connecting to
the database.
W dniu 27.02.2024 o 17:44, Wietse Venema via Postfix-users pisze:
natan via Postfix-users:
If i set smtpd_proxy_timeout=60s I "terminating" (timeout) all old
connections who get
&
Hi
I have questions about "high ability" in postfix
For example setup
1)postfix + external mysql (klaster) like
main.cf:
...
smtpd_sender_login_maps =
proxy:mysql:/etc/postfix/mysql_sender_login_maps.cf
smtpd_proxy_timeout=60s
...
For example I have a mysql maps - mysql_sender_login_maps.cf:
W dniu 9.02.2024 o 15:13, Juri Haberland via Postfix-users pisze:
On 09.02.24 14:58, natan via Postfix-users wrote:
Hi
I have setup postfix+SPF+DKIM+DMARK and im confused
Sometimes I get in logs fail like:
Feb 2 09:02:46 mail134 opendmarc[29379]: AE3D53B0062: allegromail.pl fail
Feb 2 09:02
Hi
I have setup postfix+SPF+DKIM+DMARK and im confused
Sometimes I get in logs fail like:
Feb 2 09:02:31 mail134 opendmarc[29379]: 5AB633B005D: gmail.com none
Feb 2 09:02:39 mail134 opendmarc[29379]: D02333B005D: patronite.email pass
Feb 2 09:02:44 mail134 opendmarc[29379]: 363153B005D: indek
Hi Wietse Have you thought about postfix repo for Debian, just like
dovecot has for his relase ?
I'm asking by the way
--
___
Postfix-users mailing list -- postfix-users@postfix.org
To unsubscribe send an email to postfix-users-le...@postfix.org
Hi
I know it may seem quite strange, but I need it for my MX ...
I need a mapping every single email to the same one in pcre for
sender_login_maps.cf for
reject_sender_login_mismatch
...
smtpd_sender_login_maps = pcre:/etc/postfix/sender_login_maps.cf
...
Yes, I can use an existing map - I hav
Hi
Yest this is e-mails body from test - only when sender domain have SPF
set ~all or SPF not exist
W dniu 8.01.2024 o 15:08, Damian via Postfix-users pisze:
SMUGGLING WORKS with '\r\n\x00.\r\n' as "fake" end-of-data sequence!
SMUGGLING WORKS with '\r.\r\n' as "fake" end-of-data sequence!
SMUG
W dniu 8.01.2024 o 13:35, Damian via Postfix-users pisze:
I create test VPS (outside my infrastructure) and install all for
python3 for testing
root@hanz:~# python3 smtp_smuggling_scanner.py --sender-domain
gmail.com piot...@mydomain.ltd
Don't use a sender-domain you don't have control over. T
Hi
Sorry for stupid question but I dont realy undarstand
I create test VPS (outside my infrastructure) and install all for
python3 for testing
root@hanz:~# python3 smtp_smuggling_scanner.py --sender-domain gmail.com
piot...@mydomain.ltd
[*] Getting MX record for domain: xx
[*] Running SMTP
Hi
I was in the same place some time ago and I use postwfd + others for
600K users and analize via sawmill (probably 6.x)
And conclusion for me
...
First rate is for 1 minut
id=sasl_msg_1min ; sasl_username=~$$sender ;
action=rate(sasl_username/40/60/421 4.7.1: $$sasl_username:
Sorry, send to
Hi
A good idea in my opinion, additionally add
reject_sender_login_mismatch with maps (u...@domain.ltd user@domainltd)
smtpd_sender_restrictions =
...
reject_sender_login_mismatch,
...
reject_unauth_pipelining,
Than only reject_unauth_pipelining
smtpd_data_restrictions = reje
Hi
In postfix-3.4.23 (debian) I set
(I use always)
smtpd_data_restrictions = reject_unauth_pipelining
And today I put
smtpd_discard_ehlo_keywords = chunking
And I get many many logs like:
...
Dec 29 10:10:13 msmtp postfix/submission/smtpd[11064]: discarding EHLO
keywords: CHUNKING
Dec 29 10:1
Venema via Postfix-users pisze:
natan:
https://sec-consult.com/blog/detail/smtp-smuggling-spoofing-e-mails-worldwide/
Wietse:
See:https://www.postfix.org/smtp-smuggling.html
natan:
reject_unauth_pipelining in: smtpd_data_restrictions
or maybe only in smtpd_end_of_data_restrictions ?
Then
Hi
Thenx for info Wietse
reject_unauth_pipelining in: smtpd_data_restrictions
or maybe only in smtpd_end_of_data_restrictions ?
W dniu 21.12.2023 o 19:11, Wietse Venema via Postfix-users pisze:
natan via Postfix-users:
Hi
I found today
https://sec-consult.com/blog/detail/smtp-smuggling
Hi
I found today
https://sec-consult.com/blog/detail/smtp-smuggling-spoofing-e-mails-worldwide/
--
___
Postfix-users mailing list -- postfix-users@postfix.org
To unsubscribe send an email to postfix-users-le...@postfix.org
Hi
Thenx problem solved - problem was trivial (existing process with port
10028) W dniu 17.10.2023 o 17:37, Wietse Venema via Postfix-users pisze:
natan via Postfix-users:
Hi
I have a some problem with setup
opendkim+opendmarc+amavisd-milter
main.cf---
smtpd_milters =
inet:localhost
Hi
I have a some problem with setup
opendkim+opendmarc+amavisd-milter
main.cf---
smtpd_milters =
inet:localhost:10028,inet:localhost:10027,inet:localhost:10029
When I try local telnet 25 i get many many logs like:
..
Oct 17 13:59:01 mail2 postfix/10028/smtpd[6]: connect from
Hi
Exactly as you're saying - problem solved - CA cant load via aplications.
W dniu 8.05.2023 o 15:31, Viktor Dukhovni via Postfix-users pisze:
On Mon, May 08, 2023 at 01:29:55PM +0200, natan via Postfix-users wrote:
I have some problem with cert - user who connect via 465
postfix/
Hi
Problem is only via web aplications (php)
W dniu 8.05.2023 o 13:29, natan via Postfix-users pisze:
Hi
I have some problem with cert - user who connect via 465
postfix/smtps/smtpd[6901]: warning: TLS library problem:
error:14094418:SSL routines:ssl3_read_bytes:tlsv1 alert unknown
ca:../ssl
Hi
I have some problem with cert - user who connect via 465
postfix/smtps/smtpd[6901]: warning: TLS library problem:
error:14094418:SSL routines:ssl3_read_bytes:tlsv1 alert unknown
ca:../ssl/record/rec_layer_s3.c:1544:SSL alert number 48:
Debian10
Cert is new (renew) and openssl x509 -in ..
Hi
In old version 3.4.x problem not exists
W dniu 27.04.2023 o 14:50, Wietse Venema via Postfix-users pisze:
SATOH Fumiyasu (TSUCHIDA Fumiyasu) via Postfix-users:
I see the following problems.
1. `postconf -M bar/unix='foo unix ...'` will duplicates entries
in master.cf.
Nice find: postconf s
Hi
In centos7
root@node2-klone:~# postconf mail_version
mail_version = 3.4.23
root@node2-klone:~# postconf -M bar/unix='foo unix - n n - - pipe
argv=/bin/false'
root@node2-klone:~# postconf -M bar/unix='foo unix - n n - - pipe
argv=/bin/false'
root@node2-klone:~# postconf -M bar/unix='foo unix
Hi
I use keepalived and easy check like:
vrrp_script chk_myscript {
script "/usr/bin/postfix-check.sh"
interval 4
fall 2
weight 10
user root
}
...
#!/bin/bash
echo "ehlo localhost" | /bin/nc -w 1 "127.0.0.1" 25 |grep -q "250"
...
It's not very pretty but d
W dniu 19.04.2023 o 17:23, Wietse Venema via Postfix-users pisze:
natan via Postfix-users:
Hi
I have question about *_error_limit and postfix
I have separated services like
smtp incomming and smtp outgoing and webmail
I have roudcube which is used by several thousand users
On smtp outgoing
Hi
I have question about *_error_limit and postfix
I have separated services like
smtp incomming and smtp outgoing and webmail
I have roudcube which is used by several thousand users
On smtp outgoing in main.cf:
...
smtpd_client_connection_count_limit = 900
smtpd_hard_error_limit = 5
smtpd_soft
/regexp but hash I use too
W dniu 27.03.2023 o 14:16, Matus UHLAR - fantomas via Postfix-users pisze:
On 27.03.23 12:39, natan via Postfix-users wrote:
/etc/postfix/sender_checks.pcre
/@scripkabox\.com/
/etc/postfix/recipient_checks.pcre
smtpd_sender_restrictions
Hi
Try postfwd for postfix
http://postfwd.org/ratelimits.html
W dniu 27.03.2023 o 13:21, Gino Ferguson via Postfix-users pisze:
Hi,
How can one set up outbound rate limiting for a certain mail service provider?
Can postfix 'recognise' that recipientdomainA, recipientdomainB and
recipientdom
Hi
Mayby this help you:
/etc/postfix/sender_checks.pcre
/@scripkabox\.com/
/etc/postfix/recipient_checks.pcre
smtpd_sender_restrictions =
permit_mynetworks
check_sender_access pcre:/etc/postfix/sender_checks.pcre
reject_unknown_sender_domain
...
cat /etc/postfix/sender_checks.pc
Hi
Today uceprotect add class /24 to blaclist ... One user (dedicated
server) send probably spam but the user claims that he did not send spam
only 6 e-mails in 1h. And uceprotect was blocked by the whole class ...
other RBLs it was clean any IP with that class /24
Any idea ? I'm not going to
Hi
Is there any rfc about having to use or regarding the need to use
"sender login mismatch";
This is just a loose question
I know that everything depends on the administrator and you don't have
to impose anything
--
02.2023 o 15:56, Wietse Venema pisze:
natan:
Hi
I gat many many e-mails with virus and double exstension like:
*.jpg.img
*.pdf.img
*.*.img
I try in header_checks.pcre
[broken regexp omitted]
and not working
The following blocks a 'bad' extension before a 'good' one such
as '
Hi
But in config i have:
postconf |grep "mime_header_checks"
mime_header_checks = $header_checks
W dniu 27.02.2023 o 15:47, Matus UHLAR - fantomas pisze:
On 27.02.23 12:38, natan wrote:
I gat many many e-mails with virus and double exstension like:
*.jpg.img
*.pdf.img
*.*.img
Hi
Auto added footer is very bad but nn one of server i have:
smtp inet n - n - - smtpd -o
content_filter=stopka
stopka unix - n n - - pipe
flags=Rq user=filter argv=/home/filter/add_filter.sh -f ${sender}
-- ${recip
Hi
I gat many many e-mails with virus and double exstension like:
*.jpg.img
*.pdf.img
*.*.img
I try in header_checks.pcre
^Content-(Type|Disposition):.*(file)?name=.*(\.|=2E)(exe|ade|adp|bas|bat|chm|cmd|cpl|hlp|hta|inf|ins|isp|img|js|jse|mde|msc|msi|msp|mst|pcd|pif|reg|scr|sct|shs|shb|vb|vbe|vbs
Hi
One of client have two serwervers
1)for outgoing - smtp.domain.ltd
2)for incomming - mx.domain.ltd
and hi send e-mail from n...@domain.ltd
bounce -> smtp.domain.ltd send to mx.domain.ltd
how disable bounce and non delivery and sender notify who was send to
smtp.domain.ltd ?
I try in head
Hi
Before add sender-acces works fine ?
Can you send output postconf -m ?
W dniu 8.02.2023 o 14:15, James Pifer pisze:
On 2/8/2023 4:14 AM, Viktor Dukhovni wrote:
On Wed, Feb 08, 2023 at 10:00:14AM +0200, mailm...@ionos.gr wrote:
/\.top$/ REJECT
/\.xyz$/ REJECT
/\.cam$/ REJECT
/\.fun$/ REJEC
Hi
Please send info like:
postconf -m
Probably you dont have pcre
try postmap -q your_ask pcre:/etc/postfix/reject_domains
W dniu 7.02.2023 o 22:49, James Pifer pisze:
Hello all. I'm trying to block some TLDs and everything I try I'm
getting: 451 4.3.5 : Sender address rejected: Server
conf
W dniu 24.01.2023 o 13:03, Wietse Venema pisze:
natan:
W dniu 24.01.2023 o?12:05, Wietse Venema pisze:
natan:
Hi
For test i runnig gallera claster + haproxy
haproxy:
.
listen galera-test
bind 10.10.10.10:3307
balance leastconn
mode tcp
option tcplog
option tcpka
option httpchk
server
W dniu 24.01.2023 o 12:05, Wietse Venema pisze:
natan:
Hi
For test i runnig gallera claster + haproxy
haproxy:
.
listen galera-test
bind 10.10.10.10:3307
balance leastconn
mode tcp
option tcplog
option tcpka
option httpchk
server sql1 10.10.10.11:3306 check port 9200 inter 12000 rise 2
ct itself - after some times all works fine
And I would like to eliminate it and I dont have idea where i must find
"problem"
I use everywhere proxy:mysql:/etc/postfix/mysql_maps.....
W dniu 20.01.2023 o 18:43, Wietse Venema pisze:
natan:
W dniu 20.01.2023 o?15:04, Wietse Venema pi
Hi
I need to set reject_sender_login_mismatch on one server to warn only in
logs and let the message through?
Is it possible ?
I know it's not supposed to do this but it needs a couple of hours.
--
W dniu 20.01.2023 o 15:04, Wietse Venema pisze:
natan:
Hi
I try to run "backup" transport maps like:
smtpd_sender_login_maps =
#first-main database
proxy:mysql:/etc/postfix/mysql_sender_login_maps.cf
#second-backup
proxy:mysql:/etc/postfix/mysql_sender_login_maps-backu
Hi
I try to run "backup" transport maps like:
smtpd_sender_login_maps =
#first-main database
proxy:mysql:/etc/postfix/mysql_sender_login_maps.cf
#second-backup
proxy:mysql:/etc/postfix/mysql_sender_login_maps-backup.cf
Both databases are the same because they are synchronized (cluser
gall
Hi
I mean
/etc/postfix/sender_checks.pcre
...
/emailll\.org/ DISCARD Too many fake spam2
/surdeu\.de/ DISCARD Too many fake spam
...
W dniu 16.01.2023 o 11:03, natan pisze:
Hi
Is there any chance to reject domain (incomming) via postscreen ?
I get many e-mails from one
Hi
Is there any chance to reject domain (incomming) via postscreen ?
I get many e-mails from one domain (from diferent IP)
NOQUEUE: discard: RCPT from
vc-gp-n-105-244-68-222.umts.vodacom.co.za[105.244.68.222]:
: Sender address Too many fake spam;
from= to= proto=ESMTP
helo=
I reject in
...
Hi
I have a postfix (for outgoing) and I have many vusers and vdomain (in
mysql)
Works fine but one of client have external spam fileter (like
barracuda/sophos/others) and I need a filter all his outgoing e-mail
(only one client vdomain or two vdomain)
I thinking:
cat /etc/postfix/senders.
Hi
I have one specific question
in main.cf i have:
...
smtpd_hard_error_limit = 5
smtpd_soft_error_limit = 2
...
It is possible to change number *_error_limit for one IP ?
--
W dniu 23.06.2022 o 15:00, Wietse Venema pisze:
natan:
W dniu 23.06.2022 o?13:37, Wietse Venema pisze:
natan:
Hi
I found in logs:
Jun 23 10:08:54 mx4 postfix/master[4540]: warning:
master_wakeup_timer_event: service qmgr(public/qmgr): Resource
temporarily unavailable
Your operating system
W dniu 23.06.2022 o 13:37, Wietse Venema pisze:
natan:
Hi
I found in logs:
Jun 23 10:08:54 mx4 postfix/master[4540]: warning:
master_wakeup_timer_event: service qmgr(public/qmgr): Resource
temporarily unavailable
Your operating system kernel is running out of resources. You need
a better
Hi
I found in logs:
Jun 23 10:08:54 mx4 postfix/master[4540]: warning:
master_wakeup_timer_event: service qmgr(public/qmgr): Resource
temporarily unavailable
But I don't know what this problem is caused by
master.cf
smtp inet n - - - 1 postscreen
smtpd
W dniu 31.05.2022 o 17:17, Viktor Dukhovni pisze:
On Tue, May 31, 2022 at 04:52:58PM +0200, natan wrote:
lmtp_destination_concurrency_limit = 100
lmtp_destination_recipient_limit = 1
virtual_transport = lmtp:inet:10.xxx.xxx.5:24
Wny do you have "lmtp_destination_recipient_limit = 1"
W dniu 31.05.2022 o 16:41, Viktor Dukhovni pisze:
On Tue, May 31, 2022 at 03:28:30PM +0200, natan wrote:
I have separate servers for outgoing and incomming e-mail like
One user who have many alias group like:
1)alias...@domain1.ltd - 500 recipients
2)alias...@domain1.ltd - 500 recipients
3
W dniu 31.05.2022 o 15:44, Wietse Venema pisze:
natan:
Hi
I have separate servers for outgoing and incomming e-mail like
One user who have many alias group like:
1)alias...@domain1.ltd - 500 recipients
2)alias...@domain1.ltd - 500 recipients
3)alias...@domain1.ltd - 500 recipients
4)alias
Hi
I have separate servers for outgoing and incomming e-mail like
One user who have many alias group like:
1)alias...@domain1.ltd - 500 recipients
2)alias...@domain1.ltd - 500 recipients
3)alias...@domain1.ltd - 500 recipients
4)alias...@domain1.ltd - 500 recipients
-all recipients is in domain
dniu 16.05.2022 o 14:46, Viktor Dukhovni pisze:
No. Better to apply the reject rule only on the inbound side, where
it should only lead to bounces on remote systems.
The OP's own systems should be sending outbound mail via the
outbound MTA.
On 16.05.22 14:52, natan wrote:
Maybe smart lo
er to apply the reject rule only on the inbound side, where
it should only lead to bounces on remote systems.
The OP's own systems should be sending outbound mail via the
outbound MTA.
On 16.05.22 14:52, natan wrote:
Maybe smart loop if then ? But I do not know if it is not
overcomplicated a
W dniu 16.05.2022 o 14:46, Viktor Dukhovni pisze:
On 16 May 2022, at 9:35 pm, Matus UHLAR - fantomas wrote:
Any idea to whitlist ?
perhaps the null address at outgoing server, so you don't reject your own
bounces
No. Better to apply the reject rule only on the inbound side, where
it should
W dniu 16.05.2022 o 13:10, Wietse Venema pisze:
natan:
Hi
I have probably trivial problem - but I cannot resolv
I have two server
1)for outgoing
2)for incoming (typical mx)
For test i create in (incoming server) body_checks.pcre:
/alakot/ REJECT spam2bok bla bla
If i send e-mail from
Hi
I have probably trivial problem - but I cannot resolv
I have two server
1)for outgoing
2)for incoming (typical mx)
For test i create in (incoming server) body_checks.pcre:
/alakot/ REJECT spam2bok bla bla
If i send e-mail from external (gmail, yahoo) I get info from
Mailer-Daemon about REJE
Hi
Postfix cant limited per user/domian - try workaround solutions about
limit sender/incomming/others
postfwd - https://postfwd.org/ratelimits.html
policyd-lemat - https://pp.siedziba.pl/tmp/policyd/policyd.pl
lpolicyd - https://wiki.policyd.org/
W dniu 29.04.2022 o 15:06, al...@coakmail.com
Hi
Or use allow_nets (geoip) for dovecot-auth (in mysql) and fail2ban
or
ipset + hashlimit + geoip
or 2fa - It's a bit of fun in configurations
W dniu 25.04.2022 o 12:44, Ludi Cree pisze:
Hi,
Even if fail2ban is “whack a mole”, you could also feed the data on auth
spammers to an abuse-compa
Hi
Probably fail2ban resolve your problem about brute-force auth
W dniu 25.04.2022 o 09:07, Laura Smith pisze:
--- Original Message ---
On Monday, April 25th, 2022 at 05:26, ミユナ wrote:
do you know how to stop passwords from being brute-forced for a
mailserver? do you have any practica
Hi
It is probably not for this group, but... Maybe someone has such a
solution and can suggest?
I have vuser and vdomain and my working environment (general scheme) :
postfix+haproxy(external 2 x amavis) ...
Spamassassin works fine with inwidual score (in mysql) but Amavis will
overwrite
W dniu 18.01.2022 o 16:53, natan pisze:
> W dniu 18.01.2022 o 16:17, Wietse Venema pisze:
>> natan:
>>> Hi
>>> My happiness did not last long
>>>
>>> Jan 18 13:33:22? postfix/master[3581]: warning:
>>> master_wakeup_timer_event: service q
1 - 100 of 196 matches
Mail list logo
