I am running postfix on the same machine as my IMAP server, but this is a
security risk because having two different services on the same machine
increases the attack surface. My IMAP server doesn't need to be publicly
visible, so I would like to move that service to a separate machine, and hav
mailserver? do you have any practical guide?
What about multifactor authentication?
thank you.
--
Ron Wheeler
Artifact Software
438-345-3369
rwhee...@artifact-software.com
On Aug 18, 2021, at 12:13 PM, Viktor Dukhovni
wrote:
>> On 18 Aug 2021, at 3:07 pm, Ron Garret wrote:
>>
>>> If you want different processing for inbound and outbound mail,
>>> use separate Postfix instances configured appropriately to the
>>>
On Aug 18, 2021, at 11:55 AM, Viktor Dukhovni
wrote:
> If you want different processing for inbound and outbound mail,
> use separate Postfix instances configured appropriately to the
> task at hand.
There is a useful distinction to be made between mail that is injected into the
system by an
Is there an easy way to tell postfix to send a copy of every message it
receives to a “shadow server” in a way that preserves the SMTP envelope? I’m
trying to tune a spam filter on actual data, but I don’t want to do it on my
production server because the tuning is likely to break things.
Than
th this. Probably
>>> you've to do some googling...
>
> On 12.07.21 10:19, Ron Garret wrote:
>> That turned out to be the Right Answer. I simply added
>> reject_unverified_recipient to smtpd_recipient_restrictions and that fixed
>> the problem.
>>
For the record:
On Jul 11, 2021, at 1:06 PM, Claus R. Wickinghoff wrote:
> I think this can be achieved with reject_unverified_recipient to query
> dovecot via lmtp but I've no practical experience with this. Probably you've
> to do some googling...
That turned out to be the Right Answer. I
PM, Bill Cole
wrote:
> On 2021-07-11 at 15:46:45 UTC-0400 (Sun, 11 Jul 2021 12:46:45 -0700)
> Ron Garret
> is rumored to have said:
>
>> On Jul 11, 2021, at 12:22 PM, Matus UHLAR - fantomas
>> wrote:
>>
>>>
>>>> The problem is that a rejec
On Jul 11, 2021, at 12:22 PM, Matus UHLAR - fantomas wrote:
>
>> The problem is that a rejected recipient produces a mailer-daemon reply.
>
> only if you accept mail for such recipient.
Ah. That may be my problem then. I’m using Dovecot via LMTP for local
delivery. I thought that postfix
On Jul 11, 2021, at 9:58 AM, Wietse Venema wrote:
>>> Ron Garret:
>>>> I have recently come under a backscatter spam attack from one
>>>> specific domain. This domain has blacklisted my server?s IP
>>>> address, and so bounce replies sent to this domain are p
On Jul 11, 2021, at 10:12 AM, Wietse Venema wrote:
> Ron Garret:
> [ Charset windows-1252 converted... ]
>>
>> On Jul 11, 2021, at 9:58 AM, Wietse Venema wrote:
>>
>>> Ron Garret:
>>>> I have recently come under a backscatter spam attack fr
On Jul 11, 2021, at 9:58 AM, Wietse Venema wrote:
> Ron Garret:
>> I have recently come under a backscatter spam attack from one
>> specific domain. This domain has blacklisted my server?s IP
>> address, and so bounce replies sent to this domain are piling up
>> in
I have recently come under a backscatter spam attack from one specific domain.
This domain has blacklisted my server’s IP address, and so bounce replies sent
to this domain are piling up in my mail queue and I have to go through
periodically and manually delete them. I don’t want to disable bo
On Feb 23, 2021, at 11:41 AM, Richard Damon wrote:
> On 2/23/21 2:18 PM, Wietse Venema wrote:
>> Ron Garret:
>>>> If we take this route, then there needs to be a new field in the
>>>> Postfix sqlite config file that controls the time limit.
>>> No
On Feb 23, 2021, at 10:19 AM, Wietse Venema wrote:
> Ron Garret:
>>>> Isn't SQLite supposed to deal with concurrent access?
>>>> https://sqlite.org/lockingv3.html
>>>
>>> Yes, it does, but the way it ?deals? with it is to throw an error
&
On Feb 22, 2021, at 4:56 PM, Ron Garret (gmail) wrote:
>
> On Feb 22, 2021, at 2:57 PM, Wietse Venema wrote:
>
>> Ron Garret:
>> [ Charset windows-1252 converted... ]
>>> I ran into the sqlite locked database problem discussed in these threads:
>>>
&
I ran into the sqlite locked database problem discussed in these threads:
https://marc.info/?l=postfix-users&m=160096626120296&w=2
https://marc.info/?l=postfix-users&m=151561295721906&w=2
The problem occurs (AFAICT) because the database file was shared with a spam
filter which was writing to th
Hello (not helo :-)
I am working on a spam filter and so I find myself spending a lot more quality
time with mail logs than I used to. One of the things I have noticed is that I
will get a lot of connections that send a HELO command and then disconnect.
Sometimes I get this repeated several t
support on a product that is very complex but does
damn near everything possible with mail.
Ron
On 2020-10-26 2:59 p.m., Viktor Dukhovni wrote:
On Mon, Oct 26, 2020 at 10:07:25AM +, Pedro David Marco wrote:
Flushing the queue with 'postqueue -f' normally produces instant
flush but
I came through the ARPAnet-DECnet and 2780/3780 stream.
On 2020-10-26 1:49 p.m., Peter Blair wrote:
At 26 October, 2020 Ron Wheeler wrote:
If you are very old, you will remember when networking was young and e-mail
was sent over dial-up connections that connected only once or twice a day
where not "always on" so a successful send does not imply anything about
time.
Ron
On 2020-10-26 12:44 p.m., Pedro David Marco wrote:
>On Monday, October 26, 2020, 05:31:05 PM GMT+1, Ron Wheeler
wrote:
>
>Could be just that the other end was busy receiving someone el
Could be just that the other end was busy receiving someone else's mail.
Takes 2 to tango!
No big attachments?
On 2020-10-26 12:22 p.m., Pedro David Marco wrote:
>On Monday, October 26, 2020, 05:09:41 PM GMT+1, Ron Wheeler
wrote:
>You might want to take a look at what is i
You might want to take a look at what is in the queue.
Flushing the queue means communicating with other mail servers and the
reason that mail is in the queue is that it was "too hard" to deliver it
the first time.
A broken or overloaded remote could still be slow.
Ron
On 2020-
much better position to deal with the next
roadblock that you will hit; and you will have a lot more fun before you
have a email server doing what you want.
Ron
On 2020-10-14 9:56 a.m., Jason Long wrote:
It is so odd that some people here don't like to answer to the users questions
Have you tried Google?
You can likely find whole tutorials answering both your questions.
Ron
On 2020-10-14 3:04 a.m., Jason Long wrote:
Thank you.
Can you tell me how can I setup my Postfix server with A record Or how can I
change the DNS server two support two MX records?
On Tuesday
mail operators may require one, but those are rare.
Wietse
--
Ron Wheeler
Artifact Software
438-345-3369
rwhee...@artifact-software.com
06:18:10 PM GMT+3:30, IL Ka
mailto:kazakevichi...@gmail.com>> wrote:
>
>> mynetworks = 127.0.0.0/8, My Public IP
>> Trying ::1...
> It could be that you are using IPv6 to connect while
"mynetworks" is IPv4 address.
> Try "telnet 127.0.0.1 25"
>
--
Ron Wheeler
Artifact Software
438-345-3369
rwhee...@artifact-software.com
d not lumped in with
any other.
If I got an e-mail with multiple "From addresses" and I cared to check,
I would just drop it.
No point sending a bounce to a spammer or someone with a poorly written
e-mail client.
My 2 cents.
Ron
On 2020-10-09 1:20 p.m., Pau Peris wrote:
T
only one email address is provided and tell the user immediately to fix
their input.
I am not sure why you would care about other e-mail arriving at postfix
with multiple from addresses.
Does it ever happen from anyone else?
Ron
On 2020-10-09 4:59 a.m., Pau Peris wrote:
Thanks a lot for
https://en.wikipedia.org/wiki/Slavery_in_ancient_Rome
Pliny probably had slaves.
Ron
On 2020-06-07 2:32 p.m., micah anderson wrote:
Laura Smith writes:
Before jumping on the hobbyhorse of self-righthousness about refusing
to use “whitelist”/“blacklist”, perhaps you would do well to spend a
1500 and before that.
Black people had been part of civilization from pre-history. Current
scientific belief is that all of our ancestors were black.
Slavery goes back before recorded history.
https://en.wikipedia.org/wiki/History_of_slavery
To fear and disrespect people who are "not like us&
You never see him interviewed on TV.
If people knew how much of the email travels over the internet as a
result of his work, he would be a tech star.
Ron
On 2019-05-14 10:39 p.m., Durga Prasad Malyala wrote:
No surprises here. Weitse ranks along the alltime greats of Computing.
Cheers/DP
What actual benefit are you trying to get from doing this?
In what way do the 2 different servers differ in their behaviour?
A little less cryptic description might actually get you some good
information.
Ron
On 4/17/19 10:56 AM, sel...@linagora.com wrote:
I want to forward an incoming
serious the problem is.
Ron
On 4/2/19 8:10 AM, James Brown wrote:
Thanks Esteban. I have fail2ban installed. Unfortunately each attempt
comes from a different IP (botnet I presume). I’m finding this all the
time now, so fail2ban seems to be no longer much use.
Was just hoping there was a
On 21/04/2018 8:07 AM, Ram wrote:
On 04/21/2018 05:32 PM, Ron Wheeler wrote:
On 21/04/2018 7:38 AM, Ram wrote:
On 04/20/2018 07:39 PM, Wietse Venema wrote:
Ram:
On 04/20/2018 07:14 PM, Wietse Venema wrote:
Ram:
I have a very busy postfix server that acts as a relay. It gets
mails
from
ign=netcore-turns-20
I hope that you have no spam or virus checking on the inflow.
--
Ron Wheeler
President
Artifact Software Inc
email: rwhee...@artifact-software.com
skype: ronaldmwheeler
phone: 866-970-2435, ext 102
o run
mysql_upgrade manually.
- Ron
after the initial
request.
The fridge could e-mail the grocery list when the milk runs low but
e-mail not a good fit for most IoT applications.
Ron
On 17/03/2017 3:18 AM, Sean Greenslade wrote:
On Thu, Mar 16, 2017 at 05:48:49PM -0700, li...@lazygranch.com wrote:
I had no idea you could
A great contribution to the Internet.
Your 20 years of fantastic support and sustained commitment has made
Postix successful.
Thanks
Ron
On 12/02/2017 1:12 PM, Dominic Raferd wrote:
On 12 February 2017 at 18:06, Wietse Venema wrote:
Last month it was 20 years ago that I started writing
teams.
Ron
On 06/12/2016 2:59 AM, Julian Kippels wrote:
Am Mon, 5 Dec 2016 20:52:21 -0500
schrieb Alex :
Hi,
I have a postfix-3.0.5 system with a few hundred users. They have
access to submission, webmail, and dovecot to send and receive mail.
On occasion, user's local desktop are compro
On 15/11/2016 9:52 PM, Sean Greenslade wrote:
On Tue, Nov 15, 2016 at 04:21:17AM -0500, Ron Wheeler wrote:
Fail2ban might be able to do the whack-a-mole in a sensible manner that
allowed for innocent interruptions but banned the bad guys
For the kind of attempts I typically see, F2B won'
Fail2ban might be able to do the whack-a-mole in a sensible manner that
allowed for innocent interruptions but banned the bad guys
Ron
On 14/11/2016 11:39 PM, Sean Greenslade wrote:
On Mon, Nov 14, 2016 at 08:21:24PM -0800, vod vos wrote:
so are there any configurations to auto ban this kind
ere the problem may be on the client side.
Ron
--
Ron Wheeler
President
Artifact Software Inc
email: rwhee...@artifact-software.com
skype: ronaldmwheeler
phone: 866-970-2435, ext 102
ostfix/.
>
> Many thanks for your help Christian
I've been running three instances of Postfix on Debian since about 2011.
Originally I had to modify the init script, but the one Debian ships in
more recent years handles multi-instance Postfix properly.
- Ron
On 3/2/2016 1:30 AM, Viktor Dukhovni wrote:
> On Tue, Mar 01, 2016 at 07:32:02PM -0500, Ron Guerin wrote:
>
>> On 2/29/2016 12:19 PM, Viktor Dukhovni wrote:
>>> For submission of list messages to a large number of recipients,
>>> I would generally use sendmail(1)
On 2/29/2016 12:19 PM, Viktor Dukhovni wrote:
> For submission of list messages to a large number of recipients, I
> would generally use sendmail(1) rather than SMTP. Don't know whether
> mailman supports that.
>
It does, but its use is "highly discouraged".
- Ron
delivery to lists.
Once you get a general design outlined, you should be able to ask
specific questions here about how to implement each piece and perhaps
find people who have pieces that you need or are able to build them.
Ron
On 15/02/2016 6:27 PM, Roman Doe wrote:
I need to assess the
OK, that’s exactly what I needed to know. Thanks!
On Jan 31, 2016, at 9:16 AM, Steve Jenkins wrote:
> On Sun, Jan 31, 2016 at 9:04 AM, Ron Garret wrote:
> OK, but is there any way to get Postfix to restart a milter if it goes down?
> By default, if a milter goes down, it takes pos
On Jan 31, 2016, at 1:28 AM, Robert Schetterer wrote:
> Am 31.01.2016 um 09:56 schrieb Ron Garret:
>> Hello,
>>
>> What is the usual way to start a milter process? Can postfix be configured
>> to spawn it automatically, or does the milter have to be set up as a
&
Hello,
What is the usual way to start a milter process? Can postfix be configured to
spawn it automatically, or does the milter have to be set up as a separate
service? If the former, how do you do it?
Thanks,
rg
at the setup
configuration for a while it takes a bit of study and concentration of
get back into the Postfix data structure.
Ron
On 29/12/2015 9:43 AM, Fernando Maior wrote:
To configure a smtp server is not easy task. It takes long, and you
should be allways looking for new troubles. So
as to be able to reach someone who
will take the mail off its hands and the DNS serves that purpose.
Once the mail is transferred to the "right" IP address, the sender
doesn't care how you organize your domains internally.
Ron
On 18/08/2015 8:55 AM, Tom Browder wrote:
On Sun, Aug
On 23/04/2014 7:43 PM, John Griessen wrote:
On 04/23/2014 04:07 PM, Ron Wheeler wrote:
Another approach to reduce SPAM would be to use fail2ban for a
"reasonable" period to shut out IP addresses for a "reasonable"
period that are sending a "lot" of SPAM in a &
People use phones with our e-mail setup. ( There are only a few
dinosaurs using a desktop for communication).
On 23/04/2014 11:14 PM, John Griessen wrote:
On 04/23/2014 08:30 PM, Ron Wheeler wrote:
If you are using Postfix, you will find the recipes in "The Book of
Postfix" whic
e
Outlook and it all works with a simple set up.
I hope that this helps.
Ron
On 23/04/2014 7:43 PM, John Griessen wrote:
On 04/23/2014 04:07 PM, Ron Wheeler wrote:
Another approach to reduce SPAM would be to use fail2ban for a
"reasonable" period to shut out IP addresses for a "
Another approach to reduce SPAM would be to use fail2ban for a
"reasonable" period to shut out IP addresses for a "reasonable" period
that are sending a "lot" of SPAM in a "short" period.
Ron
On 23/04/2014 3:56 PM, Larry Stone wrote:
On Wed, 23 Apr 20
in strong attraction, no light escaped from it, and it could
indeed become a gateway to another world. The next one.
--
Ron Wheeler
President
Artifact Software Inc
email: rwhee...@artifact-software.com
skype: ronaldmwheeler
phone: 866-970-2435, ext 102
On 04/05/2014 10:38 PM, Curtis Maurand wrote:
> Ron Guerin wrote:
>>
>> In mm_cfg.py I have this to generate the aliases:
>> MTA='Postfix'
>>
>> In main.cf I use the aliases under:
>> alias_maps hash:/var/lib/mailman/data/aliases
>>
>>
the mailman transport, I have ${user} where you
have ${mailbox} , don't know if that's got anything to do with it.
If you want to use the autogenerated aliases, at this point, you're
going to need to generate them yourself first. This for me would look like:
/usr/lib/mailman/bin/genaliases
And of course, don't forget to restart Mailman if you change mm_cfg.py
(before running genaliases) and HUP Postfix if you change that.
- Ron
, at 11:29 PM, Ron Scott-Adams wrote:
> Wietse,
>
> Thank you for the reply. However, I didn’t have any entry for “ron” in the
> maps previously. I think it’s as Matthijs indicated, and something is going
> on in the Dovecot side. I clearly need to re-read docs I haven’t visited i
Wietse,
Thank you for the reply. However, I didn’t have any entry for “ron” in the maps
previously. I think it’s as Matthijs indicated, and something is going on in
the Dovecot side. I clearly need to re-read docs I haven’t visited in awhile
and regain understanding of lmtp configurations
!
On Feb 26, 2014, at 3:40 AM, l...@grootstyr.eu wrote:
> On Wed, Feb 26, 2014 at 01:44:07AM -0500, Ron Scott-Adams wrote:
>>
>> I?ve updated a working user on this test server from r...@tohuw.net to
>> r...@joab.tohuw.net. Under the previous address, I could successfully
I’ve updated a working user on this test server from r...@tohuw.net to
r...@joab.tohuw.net. Under the previous address, I could successfully complete
a telnet session and convey mail for r...@tohuw.net to the local MTA.
After changing the user’s mail attribute in LDAP to r...@joab.tohuw.net and
Not at all. asgljgsglhg.aergohgergearguaoreg.gaegergheagaerhgaerhgopaeg is just
as much an FQDN as mail.google.com.
Ron Scott-Adams
r...@tohuw.net
"Soap and education are not as sudden as a massacre, but they are more deadly
in the long run." (Mark Twain)
On Jun 7, 2013
IMHO, preventing emails with differing from and sender values is contradictory
to valid usage of email. You are better off rate-limiting, as was already
suggested, and employing better mail content analysis through policy servers.
Ron Scott-Adams
r...@tohuw.net
"We are stuck with techn
On 03/20/2013 06:22 PM, Reindl Harald wrote:
Am 20.03.2013 17:17, schrieb Ron Rondis:
I'm trying to configure Postfix in a way that it will block post from remote
clients to local (system) users of the
mail server.
In my current configuration I set "local_transport = error:local d
figure Postfix so it will reject post to system users from
remote clients and at the same time will accept posts
from $myorigin?
Thanks,
Ron
staff and it's much better run.
Take another look. I find its false positive rates down with
Spamhaus' now.
I presume you're not talking about the Spamhaus DBL, which is quite awful.
- Ron
On Jul 11, 2011, at 11:37 PM, Ron Garret wrote:
>
> On Jul 11, 2011, at 11:17 PM, Mike Morris wrote:
>
>> On 07/11/2011 10:12 PM, Ron Garret wrote:
>>>
>>> On Jul 11, 2011, at 9:31 PM, Stan Hoeppner wrote:
>>>
>>>> On 7/11/2011 8:12 PM
On Jul 12, 2011, at 12:13 AM, Stan Hoeppner wrote:
> On 7/12/2011 1:37 AM, Ron Garret wrote:
>>
>> On Jul 11, 2011, at 11:17 PM, Mike Morris wrote:
>
>>> Configure smtp_tls_security_level and/or smtp_tls_policy_maps, using at
>>> least a setting of '
On Jul 11, 2011, at 11:17 PM, Mike Morris wrote:
> On 07/11/2011 10:12 PM, Ron Garret wrote:
>>
>> On Jul 11, 2011, at 9:31 PM, Stan Hoeppner wrote:
>>
>>> On 7/11/2011 8:12 PM, Ron Garret wrote:
>>>> I'm trying to set up a relay host with authe
On Jul 11, 2011, at 11:07 PM, Stan Hoeppner wrote:
> On 7/12/2011 12:12 AM, Ron Garret wrote:
>>
>> On Jul 11, 2011, at 9:31 PM, Stan Hoeppner wrote:
>>
>>> On 7/11/2011 8:12 PM, Ron Garret wrote:
>>>> I'm trying to set up a relay host with authe
On Jul 11, 2011, at 11:03 PM, Jeroen Geilman wrote:
> On 2011-07-12 07:12, Ron Garret wrote:
>> On Jul 11, 2011, at 9:31 PM, Stan Hoeppner wrote:
>>
>>> On 7/11/2011 8:12 PM, Ron Garret wrote:
>>>> I'm trying to set up a relay host with authenticat
On Jul 11, 2011, at 9:31 PM, Stan Hoeppner wrote:
> On 7/11/2011 8:12 PM, Ron Garret wrote:
>> I'm trying to set up a relay host with authentication according to these
>> instructions:
>>
>> http://anothersysadmin.wordpress.com/2009/02/06/postfix-as-relay-to
I'm trying to set up a relay host with authentication according to these
instructions:
http://anothersysadmin.wordpress.com/2009/02/06/postfix-as-relay-to-a-smtp-requiring-authentication/
but it's not working. I know my SMTP server is set up properly because I can
send mail using various other
thank you for the quick response and patch!
ron
On 06/15/2011 01:48 AM, Wietse Venema wrote:
Csillag Tamas:
quoting from here:
https://lkml.org/lkml/2011/5/29/204
"So what are the big changes?
NOTHING. Absolutely nothing. Sure, we have the usual two thirds driver
changes, and a lot of r
SYSTYPE=LINUX2
# Postfix no longer needs DB 1.85 compatibility
if [ -f /usr/include/db.h ]
then
i only did a quick search in the mailinglist's archive so if someone has
already reported this please ignore.
take care
ron
On Jan 19, 2011, at 12:06 PM, John Adams wrote:
> Am 19.01.2011 21:03, schrieb Ron Garret:
>> I am working on a spam filter. I want both incoming and outgoing messages
>> to go through the filter, not because the outgoing messages need to be
>> filtered, but because I wa
I am working on a spam filter. I want both incoming and outgoing messages to
go through the filter, not because the outgoing messages need to be filtered,
but because I want the filter to know who my authorized users have sent
messages to because that is a very reliable indicator of non-spam. M
cular domain I just add it to the list of domains to transport
through my ISP.
-- Ron
80 matches
Mail list logo
