Thank you. I have to get all these message and try to build script which
send me an email with specific number of emails send from particular email
account.
2018-04-05 16:00 GMT+02:00 chaouche yacine :
>
> Yes, more specifically you should grep on 'Relay' to avoid other amavis
> lines
>
> root@me
Yes, more specifically you should grep on 'Relay' to avoid other amavis lines
root@messagerie[10.10.10.19] ~ # grep amavis /var/log/mail.log | grep -v Relay
| head
AprĀ 1 06:59:29 messagerie-prep amavis[25741]: starting. /usr/sbin/amavisd-new
at myhost.mydomain.tld amavisd-new-2.10.1 (20141025
I wasn't able to find text "amavis" in log file. I tried production server
and finally I see it and I know what you suggest me. It looks like:
Apr 5 15:11:56 s1 amavis[26789]: (26789-13) Passed CLEAN
{RelayedOutbound}, LOCAL [127.0.0.1] -> <
s...@domain.com>
Is it the line about which you said?
You didn't say what's wrong the line grepping on amavis ? it should give you
what you want : one line by sender.
On Thursday, April 5, 2018, 1:51:28 PM GMT+1, Poliman - Serwis
wrote:
I used this script and after comparison result generated by collate.pl and
mail.log file I think tha
I was talking about collate.pl
On Thursday, April 5, 2018, 12:04:45 PM GMT+1, Poliman - Serwis
wrote:
Yacine, do you say about collate.pl script or "from=" part from log file? I
suppose that abotu script. If collate.pl could group by some id, it would be
nice, because I would have on
Yacine, do you say about collate.pl script or "from=" part from log file? I
suppose that abotu script. If collate.pl could group by some id, it would
be nice, because I would have only one line from log dependent from
particular email sent.
2018-04-05 12:31 GMT+02:00 chaouche yacine :
> No it won
No it won't, it will simply group qids together so that you can trace
individual e-mails, instead of having intermingled log lines from different
e-mails.
On Thursday, April 5, 2018, 7:10:11 AM GMT+1, Viktor Dukhovni
wrote:
> On Apr 5, 2018, at 2:07 AM, Poliman - Serwis wrote:
> On Apr 5, 2018, at 2:07 AM, Poliman - Serwis wrote:
>
> Using collate.pl script I won't have to count "from=" from mail log, this
> script merge it, am I right?
Try it and see what you get. You may need to make some adjustments to the
regular expressions
depending on how your syslog forma
Using collate.pl script I won't have to count "from=" from mail log, this
script merge it, am I right?
2018-04-05 7:57 GMT+02:00 Viktor Dukhovni :
>
>
> > On Apr 5, 2018, at 1:39 AM, Scott Kitterman
> wrote:
> >
> > On Thursday, April 05, 2018 07:34:44 AM Poliman - Serwis wrote:
> >> Unfortunate
> On Apr 5, 2018, at 1:39 AM, Scott Kitterman wrote:
>
> On Thursday, April 05, 2018 07:34:44 AM Poliman - Serwis wrote:
>> Unfortunately I use Postfix from Ubuntu repos.
>
> apt-get source postfix
> cd postfix-[version] (depends your Ubuntu release)
> cd auxiliary/collate
> ls
>
> and you'll
On Thursday, April 05, 2018 07:34:44 AM Poliman - Serwis wrote:
> Unfortunately I use Postfix from Ubuntu repos.
apt-get source postfix
cd postfix-[version] (depends your Ubuntu release)
cd auxiliary/collate
ls
and you'll see both collate.pl and the associated README.
Scott K
> 2018-04-04 13:08
Unfortunately I use Postfix from Ubuntu repos.
2018-04-04 13:08 GMT+02:00 Wietse Venema :
> Poliman - Serwis:
> > Could you tell me I could add e-mails together from mail.log which are in
> > line with "from=" part? Hmm I hope I say clear. I need count emails from
> > particular mailbox. Can I ba
I am not sure I understood well. There are three "from=", and you said
which one repond to which behavior, so I think I could base on "from=" from
log file but I should divide by three number of emails send by specific
user. Am I right?
2018-04-04 11:11 GMT+02:00 chaouche yacine :
> The log line
Poliman - Serwis:
> Could you tell me I could add e-mails together from mail.log which are in
> line with "from=" part? Hmm I hope I say clear. I need count emails from
> particular mailbox. Can I base on "from="? For example:
> Apr 3 11:49:48 s1 postfix/qmgr[722]: 3B8C313BE2D: from=,
> size=4000,
The log line from avmavis already has the sender a single time, regardless of
the number of recipients.
Also, if you grep on from, keep in mind that the email first goes from outside
to postfix (1st from), the from postfix to amavis (second from), then from
amavis back to postfix (third from).
Or maybe I could base on this value but divided by 3.
2018-04-04 9:43 GMT+02:00 Poliman - Serwis :
> Hmm, probably I can't base on this, because when I send one email I have
> in log three lines with "from=" and value .
> 1st line --> Apr 4 09:32:41 s1 postfix/submission/smtpd[5622]: NOQUEUE:
>
Hmm, probably I can't base on this, because when I send one email I have in
log three lines with "from=" and value .
1st line --> Apr 4 09:32:41 s1 postfix/submission/smtpd[5622]: NOQUEUE:
filter: RCPT from host-X.Y.Z.W.static.com[X.Y.Z.W]: < t...@example.com >:
Sender address triggers FILTER amav
Could you tell me I could add e-mails together from mail.log which are in
line with "from=" part? Hmm I hope I say clear. I need count emails from
particular mailbox. Can I base on "from="? For example:
Apr 3 11:49:48 s1 postfix/qmgr[722]: 3B8C313BE2D: from=,
size=4000, nrcpt=1 (queue active)
201
Thank you for answer. I am going to use your command - without any typos :P
- and wrap it by some bash script which will check the "Hits" value and
send email with report. I hope I will do it. :)
2018-03-30 17:52 GMT+02:00 chaouche yacine :
> Absolutely. Amavis comes with a default score of 5.0.
Absolutely. Amavis comes with a default score of 5.0. Any e-mail which has a
5.0 score or higher is considered spam. You might have false positives though,
for example if the user's ISP addresses are blacklisted, which might be the
case dependning on the country and ISP.
Yassine.
On Friday
Yassine, appreciate your answer. I will check further in it but do you
think that spam score could help with estimate which mail from which
account is or not spam?
2018-03-30 9:27 GMT+02:00 chaouche yacine :
> Here are some ideas :
>
> 1/ Create a directory somewhere in /var/, for example mailst
Here are some ideas :
1/ Create a directory somewhere in /var/, for example mailstats2/ The directory
will contain one file per sender3/ Your bash script will parse the mail log
file in real time (tail -f) then tee each matching line to the corresponding
mailstats/user file, for example if the
Some emails has "Hits" value even, for example 2,5. What is (if it's
possible to say) good value? I am going to create script in bash which
send me an email when from particular email account will outbound for
example 300 emails per day. Kind of warning. But I am not sure I could use
spam score to
It is, that's the spam score. It helps to visualise if a particular mailbox is
bombarded with spam (can happen with lots and lots of e-mails from qq.com, I
have that domain banned in postfix itself).
Yassine.
On Thursday, March 29, 2018, 3:21:16 PM GMT+1, Alex JOST
wrote:
Am 29.03.20
Am 29.03.2018 um 15:30 schrieb Poliman - Serwis:
This one works well. One question based on one from generated lines:
Mar 26 11:47:41 ORIGINATING LOCAL [127.0.0.1]:38920
-> ,, Hits: 0.742
Mar 26 11:47:41 --> this is date and hour when mail from
i...@klub-biosfera.pl was sent to i...@klub-biosf
This one works well. One question based on one from generated lines:
Mar 26 11:47:41 ORIGINATING LOCAL [127.0.0.1]:38920
-> ,, Hits: 0.742
Mar 26 11:47:41 --> this is date and hour when mail from
i...@klub-biosfera.pl was sent to i...@klub-biosfera.pl and
p.krzewi...@poliman.pl, am I right?
What
Sorry another typo, try :
grep Relay /var/log/mail.log | sed 's/s1
amavis.*},//;s/\(Queue-ID\|Message-ID\).*,
Hits/Hits/;s/Hits:\([^,]\+\).*/Hits:\1/' | grep --color=always
'<[^@<>]*@[^@<>]*\.[^@<>]*>'
Yassine.
On Thursday, March 29, 2018, 1:39:17 PM GMT+1, Poliman - Serwis
wrote:
I used root@s1:~# grep Relay /var/log/mail.log | sed 's/s1
amavis.*},//;s/\(Queue-ID\|Message-ID\).*,
Hits/Hits/;s/Hits:\([^,]\+\).*/Hits:\1/ | grep --color=always
'<[^@<>]*@[^@<>]*\.[^@<>]*>'$
and nothing happens but under above command I have sign > and next to it is
console cursor.
My hostname
6/ You should probably define REGEX_EMAIL as '<[^@<>]*@[^@<>]*\.[^@<>]*>', I
have that in my .bashrc b/c I need it in so many scripts, but you can always
use the regex as is if you don't want to define it as a variable, so you'd have
:
grep Relay /var/log/mail.log | sed 's/messagerie-prep
ama
I am testing pflogsumm-1.1.3 but I don't understand how is it possible that
in "Senders by message count" are email accounts which don't exist on my
server.
2018-03-29 12:57 GMT+02:00 chaouche yacine :
> Sorry there was a mistake in the line I gave you, maybe I have edited it
> before pasting.
>
Sorry there was a mistake in the line I gave you, maybe I have edited it
before pasting.
Here's a brief explanation along with a "light" version ( you can customize ) :
grep Relay /var/log/mail.log | sed 's/messagerie-prep
amavis.*},//;s/\(Queue-ID\|Message-ID\).*,
Hits/Hits/;s/Hits:\([^,]\+\)
Probably you have right. What should be in part:
@mydomain.tld|r...@mydomain.tld'
is it some mail to send notifications after pipe?
2018-03-29 7:47 GMT+02:00 Olivier :
> Poliman - Serwis writes:
>
> I think it should read:
>
> ...|egrep --line-buffered -v '(...)'|sed...
>
> with a closing parent
Poliman - Serwis writes:
I think it should read:
...|egrep --line-buffered -v '(...)'|sed...
with a closing parenthesis before the closing quote
Olivier
> [1:text/plain Show]
>
>
> [2:text/html Hide Save:noname (20kB)]
>
> Wow, huge piece of linux commands. Currently too hard to modify for me
Wow, huge piece of linux commands. Currently too hard to modify for me. ;)
Now it returns (I also try changed mydomain.tld to something real)
root@serwer1:~# tail -f /var/log/mail.log | egrep --line-buffered 'Relay' |
egrep --line-buffered -v
'(Process_Control|notifications.systemes|PODCAST-|Admin-
I use this line :
tail -f /var/log/mail.log | egrep --line-buffered 'Relay' | egrep
--line-buffered -v
'(Process_Control|notifications.systemes|PODCAST-|Admin-ch|PUB_CONTROL|@mydomain.tld|r...@mydomain.tld'
| sed -u 's/messagerie-prep amavis.*},//;s/Hits:\([^,]\+\).*/HITS:\1/;
s/\(Queue-ID\|M
Thank you, I will check it. I am looking for information which linux user
sends email and how many, for example, per hour, day. That would be perfect
plugin.
2018-03-28 15:59 GMT+02:00 Matus UHLAR - fantomas :
> Poliman - Serwis:
>>
>>> Hi people. Do you know is there any tool/plugin for monitori
Poliman - Serwis:
Hi people. Do you know is there any tool/plugin for monitoring outgoing
emails from server with postfix? Maybe postfix has this feature?
On 28.03.18 09:57, Wietse Venema wrote:
Postfix logs all transactions. I suggest that you look for tools
that analyze Postfix logs.
pflog
Poliman - Serwis:
> Hi people. Do you know is there any tool/plugin for monitoring outgoing
> emails from server with postfix? Maybe postfix has this feature?
Postfix logs all transactions. I suggest that you look for tools
that analyze Postfix logs.
Wietse
38 matches
Mail list logo
