Re: Problem DNS-resolving single helo-hostnames

Schilling, Timo: > The only question left is, why this line negates the "saved_options"? Because it makes no sense to append MY OWN DOMAIN to the hostname from a REMOTE client. Wietse

[OFF] SPF

Hi list, I am using debian etch and postfix and then using the /usr/lib/postfix/policyd, but with the high traffic of e-mails in recent days I have had problems even had to disable it. I wonder what you are used to check the SPF on servers? -- Márcio Luciano Donada Aurora Alimentos - Cooperativa

Re: [OFF] SPF

Zitat von Márcio Luciano Donada : Hi list, I am using debian etch and postfix and then using the /usr/lib/postfix/policyd, but with the high traffic of e-mails in recent days I have had problems even had to disable it. I wonder what you are used to check the SPF on servers? Not using SPF but m

Re: Blocking Phishing emails

Voytek Eymont wrote: On Sat, January 24, 2009 1:39 am, Noel Jones wrote: reject_unknown_reverse_client_hostname reject_rbl_client zen.spamhaus.org {a greylisting policy service} Noel, is that a good place to add reject_unknown_reverse_client_hostname ? smtpd_recipient_restrictions = permi

Re: Problem DNS-resolving single helo-hostnames

Schilling, Timo wrote: The only question left is, why this line negates the "saved_options"? If it wouldn't, a postfix, which is used in the internet, have to ask the dns-server more often, because of the own domain which is appended. It would be very wrong for postfix to append the local domai

Re: [OFF] SPF

On Mon, 26 Jan 2009 09:47:35 -0200 Márcio Luciano Donada wrote: >Hi list, >I am using debian etch and postfix and then using the >/usr/lib/postfix/policyd, but with the high traffic of e-mails in recent >days I have had problems even had to disable it. I wonder what you are >used to check the SPF

Forwarding if no local mailbox

Hi all, we plan to replace our old mail server with new a new one. The replacement is part of a bigger change within our organizations infrastructure. Another thing that is going to change is our user management infrastructure, which also provides the Email-Usernames with acco...@mydomain.tld As

Re: Backscatter with forged return-path

On Jan 26, 2009, at 7:41 AM, Paweł Leśniak wrote: One of our users is getting lots of returned mails because his email address is used as return-path by spammer(s). I would guess that your system accepting mail from unknown servers? Start blocking those, and you'll find that these bounces

Re: Forwarding if no local mailbox

Lothar Braun wrote: What I'm trying to do now is: Accept mails for @mydomain.tld on the new server and try to deliver them to the local accounts. If that fails, send it out to the old server and try to deliver it there. I had a look at the documentation but couldn't come up with an easy solution

Re: Backscatter with forged return-path

Jim Wright pisze: On Jan 26, 2009, at 7:41 AM, Paweł Leśniak wrote: One of our users is getting lots of returned mails because his email address is used as return-path by spammer(s). I would guess that your system accepting mail from unknown servers? Start blocking those, and you'll find th

Re: Backscatter with forged return-path

On Mon, 26 Jan 2009 08:52:00 -0600 Jim Wright wrote: > On Jan 26, 2009, at 7:41 AM, Paweł Leśniak wrote: > > > One of our users is getting lots of returned mails because his > > email address is used as return-path by spammer(s). > > I would guess that your system accepting mail from unknown se

Getting started with Postfix on Ubuntu

I am new to all this. I installed Postfix and it is mostly working as I want it to. However, I have a list of small issues that need to be resolved. Where is the best place to get help? Is this it? Would the Ubuntu forums be better? Somewhere else? My question: my DenyHosts report is sent out fr

I thought I had a send-only Postfix server, but I see someone connected to it!

I only want my local machine to be able to send email out. I won't want to receive email. Today, I saw this info in my log. The "connect from" surprised me. How can I prevent anyone outside my local machine from connecting to postfix? Jan 26 09:26:48 ubuntu postfix/smtpd[20920]: connect from 124

Two smtp ?

Hello, I have one question about postfix configuration. I have one server with 2 ip address to receive messages, i create 2 smtpd daemon to differentiate the services of entry. Its work, but it's possible create 2 smtp to delivery message, linking them to each smtpd ? mail_version = 2.2.9 Thank

Re: Getting started with Postfix on Ubuntu

MountainX wrote: > I am new to all this. I installed Postfix and it is mostly working as I want > it to. However, I have a list of small issues that need to be resolved. > > Where is the best place to get help? Is this it? Would the Ubuntu forums be > better? Somewhere else? > > My question: my Den

Re: I thought I had a send-only Postfix server, but I see someone connected to it!

MountainX wrote: > I only want my local machine to be able to send email out. I won't want to > receive email. > > Today, I saw this info in my log. The "connect from" surprised me. How can I > prevent anyone outside my local machine from connecting to postfix? > > Jan 26 09:26:48 ubuntu postfix/sm

Re: Two smtp ?

Alexandre Carlim wrote: Hello, I have one question about postfix configuration. I have one server with 2 ip address to receive messages, i create 2 smtpd daemon to differentiate the services of entry. Its work, but it's possible create 2 smtp to delivery message, linking them to each smtpd ?

Re: I thought I had a send-only Postfix server, but I see someone connected to it!

Brian Evans - Postfix List wrote: > > MountainX wrote: >> I only want my local machine to be able to send email out. I won't want >> to >> receive email. >> >> Today, I saw this info in my log. The "connect from" surprised me. How >> can I >> prevent anyone outside my local machine from connect

Re: I thought I had a send-only Postfix server, but I see someone connected to it!

> > The relay access was rejected, but I don't want anyone to get even > > this far. Newbie-oriented advice appreciated. > > > Postfix listens for all connections on inet_interfaces. ...by default. See: http://www.postfix.org/postconf.5.html#inet_interfaces > The easiest, and best, way is

Re: I thought I had a send-only Postfix server, but I see someone connected to it!

Brian Evans - Postfix List wrote: MountainX wrote: I only want my local machine to be able to send email out. I won't want to receive email. [...] Postfix listens for all connections on inet_interfaces. The easiest, and best, way is to block these in your Linux firewall An eve

Re: I thought I had a send-only Postfix server, but I see someone connected to it!

On Mon, Jan 26, 2009 at 12:57 PM, Chris Babcock wrote: > > > > The relay access was rejected, but I don't want anyone to get even > > > this far. Newbie-oriented advice appreciated. > > > > > Postfix listens for all connections on inet_interfaces. > > ...by default. See: > > http://www.postfix.org

Re: I thought I had a send-only Postfix server, but I see someone connected to it!

On Mon, Jan 26, 2009 at 12:58 PM, Bjørn Ruberg wrote: > Brian Evans - Postfix List wrote: > >> MountainX wrote: >> >> >>> I only want my local machine to be able to send email out. I won't want >>> to >>> receive email. >>> >>> >> [...] > > >> Postfix listens for all connections on inet_interface

Re: Backscatter with forged return-path

Chris Babcock pisze: On Mon, 26 Jan 2009 08:52:00 -0600 Jim Wright wrote: On Jan 26, 2009, at 7:41 AM, Paweł Leśniak wrote: One of our users is getting lots of returned mails because his email address is used as return-path by spammer(s). I would guess that your system accepti

Re: Getting started with Postfix on Ubuntu

On Mon, Jan 26, 2009 at 12:34 PM, Brian Evans - Postfix List < grkni...@scent-team.com> wrote: > MountainX wrote: > > I am new to all this. > > > > My question: my DenyHosts report is sent out from nob...@localhost. How > do I > > change that? > > > > Hi, welcome to the list. > > For basic referen

Suggest another server?

Not too clear from the subject and probably a lame idea. Situation: We have a system (MX1) that is having hardware problems. Currently they are irritations but we want to rebuild the system before it really crashes. There are actually two systems so there is back up (MX2) in case there is a

Postfix with AMAVISD how to white list

I have blocked files with gif attachments to block that category of spam. I do however have some people who send me legitimate gif attachments I tried to white list them by adding @whitelist_sender_maps = ( ['.example.org', '.example.net'] ); to amavisd.conf but exampl.net continues to get

Re: Suggest another server?

Roderick A. Anderson wrote (on Mon, Jan 26, 2009 at 11:22:35AM -0800): > Not too clear from the subject and probably a lame idea. > > Situation: We have a system (MX1) that is having hardware problems. > Currently they are irritations but we want to rebuild the system before > it really crashes

Re: Suggest another server?

Roderick A. Anderson: > Not too clear from the subject and probably a lame idea. > > Situation: We have a system (MX1) that is having hardware problems. > Currently they are irritations but we want to rebuild the system before > it really crashes. There are actually two systems so there is bac

Re: Blocking certain outbound domains?

On Wed, Jan 21, 2009 at 09:19:07PM -0600, Noel Jones wrote: > This mail was submitted via the sendmail command, not via SMTP. > Postfix smtpd_*_restrictions operate only on mail submitted via SMTP. > The table will never be referenced. Hmmm. This should have been obvious in retrospect. Thanks for

Re: Suggest another server?

Roderick A. Anderson wrote: Not too clear from the subject and probably a lame idea. Situation: We have a system (MX1) that is having hardware problems. Currently they are irritations but we want to rebuild the system before it really crashes. There are actually two systems so there is back

Proper location of permit_mynetworks for mailman

I'm running a mailman server, and was receiving a lot of errors like the following: Jan 26 07:36:39 host postfix/smtpd[13212]: NOQUEUE: reject: RCPT from localhost.localdomain[127.0.0.1]: 554 5.7.1 : Relay access denied; from= to= proto=ESMTP helo= I figured the problem was that I didn't h

Re: Backscatter with forged return-path

Paweł Leśniak a écrit : > Hello, > > One of our users is getting lots of returned mails because his email > address is used as return-path by spammer(s). > After reading BACKSCATTER_README I'm almost sure I should have some > body_checks to check against Message-ID and Return-path values. > > As

Re: I thought I had a send-only Postfix server, but I see someone connected to it!

Dave a écrit : > On Mon, Jan 26, 2009 at 12:58 PM, Bjørn Ruberg > wrote: > > [snip] > > An even easier alternative is to let Postfix listen to localhost > only, by adding "127.0.0.1 :" in front of the > "smtp" configuration setting in mas

Re: Postfix with AMAVISD how to white list

Jason Hirsh a écrit : > I have blocked files with gif attachments to block that category of spam. > how do you blcok these? in header_checks? > I do however have some people who send me legitimate gif attachments > if you block with header_checks, there's no way for exceptions. > I tried to w

postfix / maildir / nfs -- and good nfs implementations

I've got a couple of questions about using maildir on top of nfs in a HA setup. 1. What are the chances of duplicate file names when running multiple instances of postfix delivering in maildir format to the same location? 2. "That said, Postfix will in many cases work very well on NFS, becaus

Re: Postfix with AMAVISD how to white list

On Jan 26, 2009, at 5:04 PM, mouss wrote: Jason Hirsh a écrit : I have blocked files with gif attachments to block that category of spam. how do you blcok these? in header_checks? I do however have some people who send me legitimate gif attachments if you block with header_checks, th

Re: Suggest another server?

Roderick A. Anderson wrote: Not too clear from the subject and probably a lame idea. Situation: We have a system (MX1) that is having hardware problems. Currently they are irritations but we want to rebuild the system before it really crashes. There are actually two systems so there is back

Re: Proper location of permit_mynetworks for mailman

Todd A. Jacobs a écrit : > I'm running a mailman server, and was receiving a lot of errors like the > following: > > Jan 26 07:36:39 host postfix/smtpd[13212]: NOQUEUE: reject: RCPT from > localhost.localdomain[127.0.0.1]: 554 5.7.1 : Relay > access denied; from= > to= proto=ESMTP helo= >

Re: Backscatter with forged return-path

mouss pisze: This doesn't mean all your users mail has such message-id's: - the message-id is added by the MUA. so if the MUA is named joe.my.computer, the message-id will use this instead of example.com. - if your users post from other servers (their ISP, hotel, ...), the message-id may be that

Re: postfix / maildir / nfs -- and good nfs implementations

On Mon, Jan 26, 2009 at 03:11:45PM -0600, J.P. Trosclair wrote: > I've got a couple of questions about using maildir on top of nfs in a HA > setup. > > 1. What are the chances of duplicate file names when running multiple > instances of postfix delivering in maildir format to the same location?

Re: Postfix with AMAVISD how to white list

Jason Hirsh a écrit : > > On Jan 26, 2009, at 5:04 PM, mouss wrote: > [snip] >> You probably want to ask on the amavisd list. but then give as much >> details as you can (whether you restarted amavisd-new, ... etc). >> > > I was told I should behere but all teh discussion Ihad on SPAM oretty much

Re: postfix / maildir / nfs -- and good nfs implementations

J.P. Trosclair: > I've got a couple of questions about using maildir on top of nfs in a HA > setup. > > 1. What are the chances of duplicate file names when running multiple > instances of postfix delivering in maildir format to the same location? According to the maildir specification, that is

Re: Backscatter with forged return-path

Paweł Leśniak a écrit : > mouss pisze: >> This doesn't mean all your users mail has such message-id's: >> - the message-id is added by the MUA. so if the MUA is named >> joe.my.computer, the message-id will use this instead of example.com. >> >> - if your users post from other servers (their ISP, h

Re: Backscatter with forged return-path

On Jan 26, 2009, at 10:12 AM, Paweł Leśniak wrote: Jim Wright pisze: On Jan 26, 2009, at 7:41 AM, Paweł Leśniak wrote: One of our users is getting lots of returned mails because his email address is used as return-path by spammer(s). I would guess that your system accepting mail from unkno

Re: Backscatter with forged return-path

Jim Wright pisze: Jan 26 13:05:42 mail postfix/policy-spf[2500]: : Policy action=PREPEND Received-SPF: none (server.hipwah.com: No applicable sender policy available) receiver=mail.example.com; identity=helo; helo=SERVER.hipwah.com; client-ip=202.134.118.114 reject_unknown_hostname SERVER.hip

Re: Backscatter with forged return-path

mouss pisze: if all outbound mail goes via your server, you can use "poorman BATV". for example: use smtp_generic to rewrite j...@example.com to say joe+bou...@example.com, where '+' is your extension delimiter. then you can reject mail from the null sender if it is not sent to a /\+bou...@examp

Re: I thought I had a send-only Postfix server, but I see someone connected to it!

On Mon, Jan 26, 2009 at 4:00 PM, mouss wrote: > Dave a écrit : > > On Mon, Jan 26, 2009 at 12:58 PM, Bjørn Ruberg > > wrote: > > > > [snip] > > > > An even easier alternative is to let Postfix listen to localhost > > only, by adding "127.0.0.1 :"

Bounces.

I am seeing multiple messages on Postfix Maillog. The mx server cant reach the host in question and its timing out. We monitor the mailq size and because of 100 of messages like this, we are bombarded with pages. What is the best practice to handle these messages? Any help or link to documentat

Re: Bounces.

On Monday, January 26, 2009 at 23:39 CET, Linux Addict wrote: > I am seeing multiple messages on Postfix Maillog. The mx server cant > reach the host in question and its timing out. We monitor the mailq > size and because of 100 of messages like this, we are bombarded with > pages. What is

Re: I thought I had a send-only Postfix server, but I see someone connected to it!

MountainX wrote: > I only want my local machine to be able to send email out. I won't want to > receive email. > > Today, I saw this info in my log. The "connect from" surprised me. How can I > prevent anyone outside my local machine from connecting to postfix? > > Jan 26 09:26:48 ubuntu postfix/sm

Re: Blocking Phishing emails

Noel Jones wrote: > Voytek Eymont wrote: >> On Sat, January 24, 2009 1:39 am, Noel Jones wrote: >> >>> reject_unknown_reverse_client_hostname reject_rbl_client >>> zen.spamhaus.org >>> {a greylisting policy service} >> >> >> Noel, >> >> is that a good place to add reject_unknown_reverse_client_host

RE: relay_domain = * safe configuration?

> -Original Message- > From: owner-postfix-us...@postfix.org > [mailto:owner-postfix-us...@postfix.org] On Behalf Of James Robertson > Sent: Monday, 26 January 2009 1:50 AM > To: postfix-users@postfix.org > Subject: Re: relay_domain = * safe configuration? > > On Sun, 25 Jan 2009 23:58:3

RE: I thought I had a send-only Postfix server, but I see someone connected to it!

From: owner-postfix-us...@postfix.org [mailto:owner-postfix-us...@postfix.org] On Behalf Of Dave Sent: Tuesday, 27 January 2009 9:34 AM To: mouss+nob...@netoyen.net Cc: postfix-users@postfix.org Subject: Re: I thought I had a send-only Postfix server, but I see so

RE: I thought I had a send-only Postfix server, but I see someone connected to it!

MacShane, Tracy wrote: > > > > From: owner-postfix-us...@postfix.org > [mailto:owner-postfix-us...@postfix.org] On Behalf Of Dave > Sent: Tuesday, 27 January 2009 9:34 AM > To: mouss+nob...@netoyen.net > Cc: postfix-users@postfix.org > Subject: Re: I thought I

Re: Backscatter with forged return-path

On Jan 26, 2009, at 4:05 PM, Paweł Leśniak wrote: I may be wrong, but I think I should not block sender on helo basis? Most of what will be blocked are zombie systems that send no legitimate mail, a very small number of legitimate mails 'may' be blocked. It's a personal preference, I boun

RE: I thought I had a send-only Postfix server, but I see someoneconnected to it!

> -Original Message- > From: owner-postfix-us...@postfix.org > [mailto:owner-postfix-us...@postfix.org] On Behalf Of MountainX > Sent: Tuesday, 27 January 2009 1:42 PM > To: postfix-users@postfix.org > Subject: RE: I thought I had a send-only Postfix server, but > I see someoneconnected t

Re: I thought I had a send-only Postfix server, but I see someoneconnected to it!

On Mon, Jan 26, 2009 at 11:14 PM, MacShane, Tracy < tracy.macsh...@airservicesaustralia.com> wrote: > > -Original Message- > > From: owner-postfix-us...@postfix.org > > [mailto:owner-postfix-us...@postfix.org] On Behalf Of MountainX > > Sent: Tuesday, 27 January 2009 1:42 PM > > To: postfi

Re: Backscatter with forged return-path

Paweł Leśniak a écrit : > mouss pisze: >> if all outbound mail goes via your server, you can use "poorman BATV". >> for example: use smtp_generic to rewrite j...@example.com to say >> joe+bou...@example.com, where '+' is your extension delimiter. >> >> then you can reject mail from the null sender