Hello
Can I configure Postfix 2.7 to only run check_policy_service for SASL
authenticated emails?
My purpose for doing so is to have a quota policy in place (max amount of email
relayed by unit of time, for each authenticated user) in case one of my users'
accounts get compromised, so that the
* Sahil Tandon :
> In Postfix 2.10 Snapshot 20121022, conf/post-install tests whether
> smtpd_relay_restrictions is already set with:
>
> test -n "`$POSTCONF -c $config_directory -nh smtpd_relay_restrictions`"
>
> This evaluates to false when smtpd_relay_restrictions is explicitly set
> to the
* Tobia Conforto :
> Hello
>
> Can I configure Postfix 2.7 to only run check_policy_service for SASL
> authenticated emails?
Not really. You can if SASL authenticated email come in via an
alternate port.
As an alternative you can make your policy daemon CHECK for the
attributes
sasl_method
sas
Ralf Hildebrandt:
> * Sahil Tandon :
> > In Postfix 2.10 Snapshot 20121022, conf/post-install tests whether
> > smtpd_relay_restrictions is already set with:
> >
> > test -n "`$POSTCONF -c $config_directory -nh smtpd_relay_restrictions`"
> >
> > This evaluates to false when smtpd_relay_restrict
Wietse Venema:
> Quanah Gibson-Mount:
> > --On Monday, October 29, 2012 2:21 PM -0400 Wietse Venema
> > wrote:
> >
> > > Quanah Gibson-Mount:
> > >> When I execute postconf -d mynetworks, it returns:
> > >>
> > >> zimbra@zre-ldap002:~$ postconf -d mynetworks
> > >> mynetworks = 127.0.0.0/8 10.13
Hi,
I am running Postfix version 2.5.6 on RedHat 4 and is experiencing periodic
duplicated mails.The RedHat mailserver is the mailhub receiving incoming mails
from the ISP and forward mails to the internal mail server.
Occasionally, users are complaining receiving duplicated mails on the same day
* Fred Ho :
> Hi,
> I am running Postfix version 2.5.6 on RedHat 4 and is experiencing
> periodic duplicated mails.The RedHat mailserver is the mailhub
> receiving incoming mails from the ISP and forward mails to the
> internal mail server. > Occasionally, users are complaining receiving
> duplica
Hi,
There's the SonicWall FW in between. What should I look for?I have the LAN MTU
= 1420 on the RedHat server matching that of the ISP router.
Regards,Fred​
On Wed, 10/31/2012 11:47 PM, Ralf Hildebrandt wrote:
> * Fred Ho :
> > Hi,
>
> > I am running Postfix version 2.5.6 on RedHat 4 and is e
* Fred Ho :
> Hi,
> There's the SonicWall FW in between. What should I look for?I have the LAN
> MTU = 1420 on the RedHat server matching that of the ISP router.
I thought it might have something to do with "smtp protocol fixup",
which is horrible broken on PIX/ASA firewalls.
> > > Oct 31 10:15:
Hi,
Between 10:15:17 and 13:04:23 there's no 4803D7F20 related items like that of
F097C7F1F.
Oct 31 10:15:14 mailgate2 postfix/smtp[9660]: 2C9897F20:
to=, relay=outbound10.ttasia.com[210.17.183.10]:25,
delay=2.2, delays=0.05/0/0.05/2.1, dsn=2.6.0, status=sent (250 2.6.0
<1351649712087206...@s
On Wed, Oct 31, 2012 at 11:32:20PM +0800, Fred Ho wrote:
> Oct 31 10:15:16 mailgate2 postfix/smtpd[9647]:
> connect from ttsenmta2.ttasia.com[210.17.183.8]
> Oct 31 10:15:17 mailgate2 postfix/smtpd[9647]: 4803D7F20:
> client=ttsenmta2.ttasia.com[210.17.183.8]
> Oct 31 10:15:17 mailgate2 postfi
* Fred Ho :
> Hi,
> Between 10:15:17 and 13:04:23 there's no 4803D7F20 related items like that of
> F097C7F1F.
> Oct 31 10:15:14 mailgate2 postfix/smtp[9660]: 2C9897F20:
> to=, relay=outbound10.ttasia.com[210.17.183.10]:25,
> delay=2.2, delays=0.05/0/0.05/2.1, dsn=2.6.0, status=sent (250 2.6.0
OK, smtpd[9647]: disconnect happened at 13:04:23. There's no smtpd[9647]
entries after 10:15:16.
Oct 31 10:15:16 mailgate2 postfix/smtpd[9647]: connect from
ttsenmta2.ttasia.com[210.17.183.8]
Oct 31 10:15:17 mailgate2 postfix/smtpd[9647]: 4803D7F20:
client=ttsenmta2.ttasia.com[210.17.18
On Thu, Nov 01, 2012 at 12:38:26AM +0800, Fred Ho wrote:
> OK, smtpd[9647]: disconnect happened at 13:04:23. There's no
> smtpd[9647] entries after 10:15:16.
>
> Oct 31 10:15:16 mailgate2 postfix/smtpd[9647]:
> connect from ttsenmta2.ttasia.com[210.17.183.8]
> Oct 31 10:15:17 mailgate2 postfix/
--On Wednesday, October 31, 2012 9:02 AM -0400 Wietse Venema
wrote:
This patch breaks "postfix start", i.e. the master terminates
with an error. I'll investigate this as electric power permits.
Hi Wietse,
Just to note, I do not see this issue with Linux systems. The "master"
process works
Hi,
I'm getting the following connections from suspicious IPs.
$ sudo more /var/log/mail.info
postfix/smtpd[PID]: connect from unknown[IP]
postfix/smtpd[PID]: lost connection after UNKNOWN from
unknown[IP]
postfix/smtpd[PID]: disconnect from unknown[IP]
What's going on here?
Should I fol
> The above two settings are sufficient to require encryption on every
> connection. Note these settings are not appropriate for an
> internet-facing server.
I don't want to send passwords in clear that's what I'm trying to
accomplish. I think that I'm mixing SMTP AUTH with SMTP.
What should I t
> Sure. Why did you (why did the author of the guide) choose Cyrus
> SASL? If you are using Dovecot IMAP, it makes absolutely no sense
> then to use Cyrus SASL. Dovecot SASL is much easier to set up. If
> you're using something else for IMAP, Dovecot SASL is a reason to
> consider changing.
I've a
> The question is: Do you have any applications except for Postfix smtpd
server
> that would need to use saslauthd as password verification service? If you
> don't, ignore the note and go on.
The problem is that I'm not sure. And I don't know how to check.
On 10/31/2012 10:39 PM, thorso...@lavabit.com wrote:
Hi,
I'm getting the following connections from suspicious IPs.
$ sudo more /var/log/mail.info
postfix/smtpd[PID]: connect from unknown[IP]
postfix/smtpd[PID]: lost connection after UNKNOWN from
unknown[IP]
postfix/smtpd[PID]: disconnec
Quanah Gibson-Mount:
> --On Wednesday, October 31, 2012 9:02 AM -0400 Wietse Venema
> wrote:
>
> > This patch breaks "postfix start", i.e. the master terminates
> > with an error. I'll investigate this as electric power permits.
It depends on main.cf configuration. Below is the corrected versio
--On Wednesday, October 31, 2012 6:53 PM -0400 Wietse Venema
wrote:
Quanah Gibson-Mount:
--On Wednesday, October 31, 2012 9:02 AM -0400 Wietse Venema
wrote:
> This patch breaks "postfix start", i.e. the master terminates
> with an error. I'll investigate this as electric power permits.
It
Quanah Gibson-Mount:
> --On Wednesday, October 31, 2012 6:53 PM -0400 Wietse Venema
> wrote:
>
> > Quanah Gibson-Mount:
> >> --On Wednesday, October 31, 2012 9:02 AM -0400 Wietse Venema
> >> wrote:
> >>
> >> > This patch breaks "postfix start", i.e. the master terminates
> >> > with an error. I
The problem happened intermittently with different senders and I found it
usually involved multiple recipients and have attachments.
ISP informs me that they timeout in 10 minutes in expecting a return 250 OK
after they sent the ". " which Postfix was not acknowledging.
What I don't understand
* thorso...@lavabit.com :
> > The question is: Do you have any applications except for Postfix smtpd
> server
> > that would need to use saslauthd as password verification service? If you
> > don't, ignore the note and go on.
>
> The problem is that I'm not sure. And I don't know how to check.
Us
* thorso...@lavabit.com :
> Hi,
>
> I'm getting the following connections from suspicious IPs.
>
> $ sudo more /var/log/mail.info
>
> postfix/smtpd[PID]: connect from unknown[IP]
> postfix/smtpd[PID]: lost connection after UNKNOWN from
> unknown[IP]
> postfix/smtpd[PID]: disconnect from un
* Jeroen Geilman :
...
> You may want to invest some time in learning the basics of email and
> system administration; this list is not the place for that.
I object. In all the years, people on this have helped those with serious
questions trying to understand what is going in their mail service
* thorso...@lavabit.com :
> > The above two settings are sufficient to require encryption on every
> > connection. Note these settings are not appropriate for an
> > internet-facing server.
>
> I don't want to send passwords in clear that's what I'm trying to
> accomplish. I think that I'm mixing
Hi All, first post here, nice to meet you :)
I've been using postfix and dovecot for years but always with few users.
Now i must build a server for 1500 users,
they will use various email software (thunderbird, outlook, ..)
the webmail (i'm not sure if squirrelmail or roundcube)
and blackberry de
29 matches
Mail list logo
