Postfix plain text authentication with SASL

Hi, Can anyone help me setting postfix plain authentication with SASL. I've spent a complete week on this already. Any help appreciated. -- Best Regards, Suresh Kumar Prajapati Linux Security Admin E-mail: er.sureshprajap...@gmail.com --

Re: Postfix plain text authentication with SASL

* Suresh Kumar Prajapati : > Can anyone help me setting postfix plain authentication with SASL. > I've spent a complete week on this already. > Any help appreciated. Sure. Send debug output as required by Postfix debug readme and I will help you. p@rick -- All technical questions asked privatel

Re: Postfix plain text authentication with SASL

Hello, Just to save you some more time, if your mailserver is behind a cisco asa/pix firewall, you should check this thread: http://www.mail-archive.com/postfix-users@postfix.org/msg01896.html -- Erwan Suresh Kumar Prajapati wrote: Hi, Can anyone help me setting postfix plain authenticati

Re: Postfix plain text authentication with SASL

* Suresh Kumar Prajapati : > here is the output from saslfinger command. > > saslfinger - postfix Cyrus sasl configuration Wed Jun 8 11:42:39 MSD 2011 > version: 1.0.2 > mode: server-side SMTP AUTH > > -- basics -- > Postfix: 2.3.3 > System: CentOS release 5.6 (Final) > > -- smtpd is linked to

virtual aliases and unlisted email addresses

Hello, I'm currently using two postfix servers. One is the MX server, it does grey/blacklisting, content filtering, and forward accepted emails to a second server. The second postfix (lets call it MailGW) does virtual aliasing, and delivery according to a transport map. Currently, an email com

Error message for a couple of mails : lost connection ...

Hello, for around 5% of our outgoing mails we get the message: "lost connection with <> while sending end of data -- message may be sent more than once" All mails go through our mail provider. There are no dependencies on the size of the mail or the mail address. It takes a few hours, then the

Re: Anyone run Postfix in FreeBSD jails environement ?

On 06/08/11 06:09, Frank Bonnet wrote: > Does anyone is running postfix in FreeBSD "jails" environement > with success on a production server ? I'm thinking of it > and would be interrested by any successful experience. Yes. (Using it for about 8 years now, cannot remember any jails related probl

Re: Anyone run Postfix in FreeBSD jails environement ?

Hi Le 8 juin 2011 à 12:07, Martin Schütte a écrit : > On 06/08/11 06:09, Frank Bonnet wrote: >> Does anyone is running postfix in FreeBSD "jails" environement >> with success on a production server ? I'm thinking of it >> and would be interrested by any successful experience. > > Yes. > (Using i

Re: Error message for a couple of mails : lost connection ...

Zitat von "Barchfeld, Andreas" : Hello, for around 5% of our outgoing mails we get the message: "lost connection with <> while sending end of data -- message may be sent more than once" All mails go through our mail provider. There are no dependencies on the size of the mail or the mail

Re: fqrdns.regexp

Steve Jenkins wrote: > On Tue, Jun 7, 2011 at 7:06 AM, Бак Микаел wrote: >> Hi list, >> Reading the archives I saw that there is a nice regexp with dynamic >> hostnames available here: www.hardwarefreak.com/fqrdns.regexp >> >> Unfortunately this file seems to be unavailable at the moment for some

Re: fqrdns.regexp

On 6/8/2011 8:35 AM, Бак Микаел wrote: > Steve Jenkins wrote: >> >> It's http://www.hardwarefreak.com/fqrdns.pcre > Oh, thanks. The maintainer must have renamed it. > > I don't know if the author reads this, but I'd suggest a smallish change > for the next release: Put only REJECT alone on each lin

Re: fqrdns.regexp

Brian Evans - Postfix List wrote: > On 6/8/2011 8:35 AM, Бак Микаел wrote: >> Steve Jenkins wrote: >>> It's http://www.hardwarefreak.com/fqrdns.pcre >> Oh, thanks. The maintainer must have renamed it. >> >> I don't know if the author reads this, but I'd suggest a smallish change >> for the next rel

expensive checks first

Hello, Say I wanted to whitelist a specific email recipient always and forever, but apply normal spam checks to everything else, could I do that? i.e. can I do the expensive checks in smtpd_recipient_restrictions first? Thanks.

expensive checks first

Hello, Say I wanted to whitelist a specific email recipient always and forever, but apply normal spam checks to everything else, could I do that? i.e. can I do the expensive checks in smtpd_recipient_restrictions first? Thanks.

Re: expensive checks first

jimbob palmer: > Hello, > > Say I wanted to whitelist a specific email recipient always and > forever, but apply normal spam checks to everything else, could I do > that? > > i.e. can I do the expensive checks in smtpd_recipient_restrictions first? /etc/postfix/main.cf: smtpd_recipient_restri

Re: expensive checks first

2011/6/8 Wietse Venema : > jimbob palmer: >> Hello, >> >> Say I wanted to whitelist a specific email recipient always and >> forever, but apply normal spam checks to everything else, could I do >> that? >> >> i.e. can I do the expensive checks in smtpd_recipient_restrictions first? > > /etc/postfix

Re: Anyone run Postfix in FreeBSD jails environement ?

> Does anyone is running postfix in FreeBSD "jails" environement > with success on a production server ? I'm thinking of it > and would be interrested by any successful experience. FreeBSD older than 7.2 did not support multiple IP addresses in jail (e.g. an IPv6 address, or a separate mail submi

Re: virtual aliases and unlisted email addresses

On Wed, Jun 08, 2011 at 11:33:48AM +0200, Patrick Proniewski wrote: > After the period of double delivery is over, we will deliver emails only to > Google servers. So the virtual aliases map is to look like: > > public-addr...@univ-lyon2.frpublic-addr...@univ-lyon2.fr > some-al..

Re: postscreen_dnsbl_sites vs. reject_rbl_client

Another thing I think I see about postscreen is that it apparently will only look up IP addresses. There doesn't seem to be any "postscreen_rhsbl_sites" feature (which might allow me to move my current reject_rhsbl_client and permit_rhswl_client checks into postscreen). Is such a thing planned, n

smtpd_reject_unlisted_recipient vs. reject_unlisted_recipient

Given the smtpd_reject_unlisted_recipient parameter (which is "yes" by default), is there any reason to include reject_unlisted_recipient in my smtpd_recipient_restrictions? It would seem that doing this would be redundant -- or am I missing some subtle point? I also note there is an smtpd_reject

Re: postscreen_dnsbl_sites vs. reject_rbl_client

On 6/8/2011 12:05 PM, Rich Wales wrote: Another thing I think I see about postscreen is that it apparently will only look up IP addresses. There doesn't seem to be any "postscreen_rhsbl_sites" feature (which might allow me to move my current reject_rhsbl_client and permit_rhswl_client checks int

Re: smtpd_reject_unlisted_recipient vs. reject_unlisted_recipient

On 6/8/2011 12:11 PM, Rich Wales wrote: Given the smtpd_reject_unlisted_recipient parameter (which is "yes" by default), is there any reason to include reject_unlisted_recipient in my smtpd_recipient_restrictions? It would seem that doing this would be redundant -- or am I missing some subtle po

Re: smtpd_reject_unlisted_recipient vs. reject_unlisted_recipient

> The smtpd_reject_unlisted_recipient is performed after all the > specified smtpd_recipient_restrictions entry. I assume the smtpd_reject_unlisted_recipient check is performed (and could cause mail to be rejected) even though the processing of the smtpd_recipient_restrictions ended with a "permit

Re: smtpd_reject_unlisted_recipient vs. reject_unlisted_recipient

On 6/8/2011 12:51 PM, Rich Wales wrote: The smtpd_reject_unlisted_recipient is performed after all the specified smtpd_recipient_restrictions entry. I assume the smtpd_reject_unlisted_recipient check is performed (and could cause mail to be rejected) even though the processing of the smtpd_reci

per-user usage metering

Hi, Postfix. Long-time fan, first time poster. I need to keep track of per-user use of our SASL-authenticated outbound relay, and to reject mail from users who are exceeding their allowed usage. The records of their usage need to be accessible to me elsewhere over extended durations, although t

Re: per-user usage metering

On Wed, Jun 08, 2011 at 02:18:41PM -0400, Ricardo Signes wrote: > My first moronic attempt to fix this was to move some of the logging to the > policy service, and to communicate the record id via the added header to the > logging transport, so it could update the record with the spam check score.

Re: postscreen_dnsbl_sites vs. reject_rbl_client

On Wed, Jun 08, 2011 at 10:05:05AM -0700, Rich Wales wrote: > Another thing I think I see about postscreen is that it apparently > will only look up IP addresses. There doesn't seem to be any > "postscreen_rhsbl_sites" feature (which might allow me to move my > current reject_rhsbl_client and p

Re: postscreen_dnsbl_sites vs. reject_rbl_client

Rich Wales: > Another thing I think I see about postscreen is that it apparently will only > look up IP addresses. There doesn't seem to be any "postscreen_rhsbl_sites" > feature (which might allow me to move my current reject_rhsbl_client and > permit_rhswl_client checks into postscreen). Is suc

Re: fqrdns.regexp

Le 08/06/2011 14:35, Бак Микаел a écrit : > Steve Jenkins wrote: >> On Tue, Jun 7, 2011 at 7:06 AM, Бак Микаел wrote: >>> Hi list, >>> Reading the archives I saw that there is a nice regexp with dynamic >>> hostnames available here: www.hardwarefreak.com/fqrdns.regexp >>> >>> Unfortunately this fi

Re: expensive checks first

Le 08/06/2011 15:21, jimbob palmer a écrit : > Hello, > > Say I wanted to whitelist a specific email recipient always and > forever, but apply normal spam checks to everything else, could I do > that? yes. my "standard" setup includes a check_recipient_access just after reject_unauth_dest

Re: per-user usage metering

Zitat von Ricardo Signes : Hi, Postfix. Long-time fan, first time poster. I need to keep track of per-user use of our SASL-authenticated outbound relay, and to reject mail from users who are exceeding their allowed usage. The records of their usage need to be accessible to me elsewhere ov

Re: fqrdns.regexp

On 6/8/2011 7:35 AM, Бак Микаел wrote: > Steve Jenkins wrote: >> On Tue, Jun 7, 2011 at 7:06 AM, Бак Микаел wrote: >>> Hi list, >>> Reading the archives I saw that there is a nice regexp with dynamic >>> hostnames available here: www.hardwarefreak.com/fqrdns.regexp >>> >>> Unfortunately this file

Re: fqrdns.regexp

On 6/8/2011 3:06 PM, mouss wrote: > I am not sure Stan "made it public". he provided it to a "limited > audience". if the whome internet starts downloading it every second, > he'll get angry... It's intended to be public, free for anyone to use. Mouss, if what you described were to occur, you wo

..::Troubleshooting Advice::..

Hi list. We are going to work with an old postfix (I mean old because this postfix was installed and administered by another person), It works with LDAP. I don't have any experience working with LDAP authentication. I was wondering if you can give me some advices for troubleshooting, any ad

Re: ..::Troubleshooting Advice::..

On Wed, 2011-06-08 at 19:40:13 -0500, Alfonso Alejandro Reyes Jimenez wrote: > We are going to work with an old postfix (I mean old because this > postfix was installed and administered by another person), It works > with LDAP. I don't have any experience working with LDAP > authentication. > > I

RE: ..::Troubleshooting Advice::..

Thanks, Actually there's no problem right now I'm just looking for some advices about the troubleshooting. Something like any other users thinks could be a good start. Thanks for the links I will check them out. Alfonso. -Mensaje original- De: owner-postfix-us...@postfix.org [mailto:ow

Re: ..::Troubleshooting Advice::..

On 6/8/2011 7:55 PM, Alfonso Alejandro Reyes Jimenez wrote: Thanks, Actually there's no problem right now I'm just looking for some advices about the troubleshooting. Something like any other users thinks could be a good start. Thanks for the links I will check them out. Alfonso. If your qu

RE: ..::Troubleshooting Advice::..

Great advice thanks, I will follow your recommendations. Regards. Alfonso. -Mensaje original- De: owner-postfix-us...@postfix.org [mailto:owner-postfix-us...@postfix.org] En nombre de Noel Jones Enviado el: miércoles, 08 de junio de 2011 08:36 p.m. Para: postfix-users@postfix.org Asunto:

Clarification between smtpd_sender_restrictions & smtpd_recipient_restrictions

Hi, I'm a bit confused between the smtpd_recipient_restrictions & smtpd_sender_restrictions I want to implement RBL on my mail server and I was thinking having the reject_rbl_client on the smtpd_sender_restrictions. If

Re: Clarification between smtpd_sender_restrictions & smtpd_recipient_restrictions

On Thu, 2011-06-09 at 07:30:31 +0530, Janantha Marasinghe wrote: > I'm a bit confused between the > > smtpd_recipient_restrictions > > & smtpd_sender_restrictions I want to implement RBL on my mail server > and I was thinking

Trivial typo fix for MULTI_INSTANCE_README.html

I noticed this one while reading the document on postfix.org. Scott K --- MULTI_INSTANCE_README.html.orig 2011-06-08 22:53:34.647880630 -0400 +++ MULTI_INSTANCE_README.html 2011-06-08 22:54:01.103880784 -0400 @@ -420,7 +420,7 @@ Lines 1-2: With "authorized_submit_users = root", the -superu

Re: Postfix plain text authentication with SASL

Hi all, No one is there to help me On Wed, Jun 8, 2011 at 12:49 PM, Suresh Kumar Prajapati < er.sureshprajap...@gmail.com> wrote: > > Hi, > > Can anyone help me setting postfix plain authentication with SASL. > I've spent a complete week on this already. > Any help appreciated. > -- > Best

Re: Postfix plain text authentication with SASL

Which backend are you using ? ldap radius nis ? Le 09/06/2011 07:03, Suresh Kumar Prajapati a écrit : Hi all, No one is there to help me On Wed, Jun 8, 2011 at 12:49 PM, Suresh Kumar Prajapati< er.sureshprajap...@gmail.com> wrote: Hi, Can anyone help me setting postfix plain authenti

Re: Postfix plain text authentication with SASL

On Wed, Jun 8, 2011 at 10:03 PM, Suresh Kumar Prajapati wrote: > Hi all, > > No one is there to help me > > > On Wed, Jun 8, 2011 at 12:49 PM, Suresh Kumar Prajapati > wrote: >> >> Hi, >> >> Can anyone help me setting postfix plain authentication with SASL. >> I've spent a complete week on th

Re: Postfix plain text authentication with SASL

You MUST use a backend for sasl Auth Envoyé de mon iPhone Le 9 juin 2011 à 07:56, Suresh Kumar Prajapati a écrit : > Hi, > > found anything. > > > > > On Thu, Jun 9, 2011 at 10:59 AM, Suresh Kumar Prajapati > wrote: > Hi, > > I just want to setup postfix SASL based authentication and