postfix listen on a particular IP

i've got a host with 2 network interfaces with two IPs (192.168.2.100 and 192.168.2.101) want postfix listen only to 192.168.2.101 (mail.example.com) can i put in main.cf intet_interfaces = IP or mail.exmaple.com help appreciated

Re: postfix listen on a particular IP

On 8/22/2009 10:34 AM, K bharathan wrote: i've got a host with 2 network interfaces with two IPs (192.168.2.100 and 192.168.2.101) want postfix listen only to 192.168.2.101 (mail.example.com ) can i put in main.cf intet_interfaces = IP or mail.exmaple.com

Country IP block list

Could someone provide links to sites where IP addresses are grouped by country? ASNs would work too but would prefer IP lists that I could put in a file that my postfix mail gateway could read. Obvious countries like China and Brazil I would like to block wholesale. Thanks in advance!

Re: openldap-2.3.39 crash

Hello 承磊, * 承磊 wrote: > I have been using postfix since a few weeks. The setup is currently: Redhat > As4.4 (Linux 2.6.9-42 SMP), Postfix 2.3.39, openldap-2.3.39, BerkeleyDB 4.5. > 20 , courier-authlib-0.56. > Now, the ldap service crashes frequently once the ldap connection raises > about 300(th

RE: MS-Exchange fails when receiving postfix has smtpd_enforce_tls=true

I have been using Exchange 2007 with postfix mail gateway for almost 3 years now; both outbound and inbound are encrypted and have had minimal issues (due to my own stupidity) with communications. I posted a few years ago when I was running Exchange 2003 which did not do encryption properly and

Re: Country IP block list

Security Admin (NetSec) wrote: > Could someone provide links to sites where IP addresses are grouped by > country? ASNs would work too but would prefer IP lists that I could put > in a file that my postfix mail gateway could read. Obvious countries > like China and Brazil I would like to block wh

Re: Country IP block list

How about this site for a start: http://www.okean.com/antispam/sinokorea.html -- J.D. Bronson

Re: Country IP block list

ghe wrote: On Aug 22, 2009, at 9:56 AM, Security Admin (NetSec) wrote: Could someone provide links to sites where IP addresses are grouped by country? ASNs would work too but would prefer IP lists that I could put in a file that my postfix mail gateway could read. Obvious countries like Ch

Re: Country IP block list

On Aug 22, 2009, at 9:56 AM, Security Admin (NetSec) wrote: Could someone provide links to sites where IP addresses are grouped by country? ASNs would work too but would prefer IP lists that I could put in a file that my postfix mail gateway could read. Obvious countries like China and B

Re: Country IP block list

From: Security Admin (NetSec) To: "postfix-users@postfix.org" Sent: Saturday, August 22, 2009 3:56:28 PM Subject: Country IP block list Could someone provide links to sites where IP addresses are grouped by country? ASNs would work too but would prefe

Re: Country IP block list

On Aug 22, 2009, at 10:31 AM, Roderick A. Anderson wrote: Thanks. I would (coming in late to this thread) be interested. GOTO http://www.slsware.com/asia-blk.html And thanks for 'encouraging' me to tidy things up a bit :-) -- Glenn English g...@slsware.com

deflecting attacks

Does anyone use iptables or something to defend against attacks? Like if x amount of requests per x amount of time send away. If so I would love some examples. Thanks!

RE: deflecting attacks

>Does anyone use iptables or something to defend against attacks?  Like if x >>amount of requests per x amount of time send away.  If so I would love some >>examples.  Thanks! Have a look at fail2ban, http://www.fail2ban.org/wiki/index.php/Main_Page Regards, D.

Re: deflecting attacks

On Aug 22, 2009, at 7:53 PM, AMP Admin wrote: Does anyone use iptables or something to defend against attacks? Like if x amount of requests per x amount of time send away. If so I would love some examples. Thanks! Hi, I use fail2ban with ipf on Solaris 10. When a host produces to many

RE: deflecting attacks

Ø Does anyone use iptables or something to defend against attacks? Like if x amount of requests per x amount of time send away. If so I would love some examples. Thanks! Thanks for the tips guys. How does that do with search engine bots? It doesn’t block them, right?

Re: deflecting attacks

On Aug 22, 2009, at 11:53 AM, AMP Admin wrote: Does anyone use iptables or something to defend against attacks? Like if x amount of requests per x amount of time send away. If so I would love some examples. Thanks! There's also a cool feature in iptables called "recent". It allows you

Re: Country IP block list

Security Admin (NetSec) wrote: > Could someone provide links to sites where IP addresses are grouped by > country? ASNs would work too but would prefer IP lists that I could put > in a file that my postfix mail gateway could read. Obvious countries > like China and Brazil I would like to block wh

Re: deflecting attacks

On Aug 22, 2009, at 8:16 PM, AMP Admin wrote: Ø Does anyone use iptables or something to defend against attacks? Like if x amount of requests per x amount of time send away. If so I would love some examples. Thanks! Thanks for the tips guys. How does that do with search engine bots

Any C api to access Postfix programmatically?

Hi ! Is there any Programming Interface (api) , so that a Postfix instance could be accessed programmaticaly, say, a C program? for example, connect to a Postfix instance and validate if an e-mail address is a valid recipient for the specific instance... thanks Dimitrios Karapiperis

Re: deflecting attacks

AMP Admin wrote: Does anyone use iptables or something to defend against attacks? Like if x amount of requests per x amount of time send away. If so I would love some examples. Thanks! Probably based on Glenn English's work (in another email) I found this during a brute force search with G

Re: deflecting attacks

Martijn de Munnik wrote, at 08/22/2009 02:06 PM: > I use fail2ban with ipf on Solaris 10. When a host produces to many 5xx > errors or sends to much spam it is banned in the firewall. > > failregex = reject: RCPT from (.*)\[\]: 5\d\d > ban time 1h > > failregex = Passed SPAM, \[\] > ban time 10m

Re: deflecting attacks

> AMP Admin wrote: >> Does anyone use iptables or something to defend against attacks? Like >> if x amount of requests per x amount of time send away. If so I would >> love some examples. Thanks! > > Probably based on Glenn English's work (in another email) I found this > during a brute force s

Re: Any C api to access Postfix programmatically?

On Saturday 22 August 2009 15:12:45 Δημήτριος Καραπιπέρης wrote: > Is there any Programming Interface (api) , so that a Postfix > instance could be accessed programmaticaly, say, a C program? Maybe just speak SMTP to it? I'm sure there are SMTP libraries already written and available. > for examp

Building milter in PHP

I've setup postfix for before queue I have not chosen to install milter but to create my own. I did that in PHP. Now, I am at a part, where my PHP milter has to communicate with postfix. Aim is to get string from postfix, evaluate it and send it back to postfix. So I started to read as a first a

Re: rbl checks, best place

On Friday 21 August 2009 00:23:07 Olivier Nicole wrote: > > > This is a difficult question. > > > > I disagree. > > Just that because you disagree makes the question not simple :) Perhaps you didn't understand. I tried to explain why the choice of pre-DATA reject_rbl_client lookups should be prefe

Re: deflecting attacks

Jorey Bump wrote: Martijn de Munnik wrote, at 08/22/2009 02:06 PM: I use fail2ban with ipf on Solaris 10. When a host produces to many 5xx errors or sends to much spam it is banned in the firewall. failregex = reject: RCPT from (.*)\[\]: 5\d\d ban time 1h failregex = Passed SPAM, \[\] ban tim

Re: Any C api to access Postfix programmatically?

? ???: > Hi ! > > Is there any Programming Interface (api) , so that a Postfix instance > could be accessed programmaticaly, say, a C program? Currently, all the SUPPORTED interfaces require that non-Postfix code communicates with Postfix via some protocol: examples are the SMTP

Re: Building milter in PHP

none none: > I've setup postfix for before queue > I have not chosen to install milter but to create my own. > > I did that in PHP. > > Now, I am at a part, where my PHP milter has to communicate with postfix. > > Aim is to get string from postfix, evaluate it and send it back to postfix. > So I

Re: Building milter in PHP

- Original Message - From: wie...@porcupine.org (Wietse Venema) To: Postfix users Date: Sat, 22 Aug 2009 19:18:19 -0400 (EDT) Subject: Re: Building milter in PHP > none none: > > I've setup postfix for before queue > > I have not chosen to install milter but to create my own. > > > > I d

Re: rbl checks, best place + ipv6?

mouss writes: > Dave a écrit : >> Hello, >> I'm running postfix, amavisd-new and spamassassin. Currently in my >> postfix smtpd_recipient_restrictions right at the end last thing i have some >> rbl checks. I'm wondering if that's the best place for them or should i >> disable that and activa

Re: deflecting attacks

Roderick A. Anderson said the following on 23/08/2009 1.04: I use fail2ban with ipf on Solaris 10. When a host produces to many 5xx errors or sends to much spam it is banned in the firewall. failregex = reject: RCPT from (.*)\[\]: 5\d\d ban time 1h failregex = Passed SPAM, \[\] ban time 10m