This example should wil not relay over outlook.com without the correct
outlook.com settings in the dns.
Base on : from= to= proto=ESMTP
@mygnus.com is missing the ms= and spf settings in the dns
Greetz,
Louis
> -Oorspronkelijk bericht-
> Van: njo...@megan.vbhcs.org [mailto:owner-
On Sep 17, 2015 10:32 PM, "Noel Jones" wrote:
> On 9/17/2015 9:17 PM, Tom Browder wrote:
> > I have a brand new installation, from source, of Postfix 3.0.2 on
> > Debian 7, 64-bit. I successfully did the initial local tests for
> > postfix as described in "The Book of Postfix."
>
> Please note t
* Wietse Venema [2015-09-10 15:00]:
> Sebastian Wiesinger:
> > Hello,
> >
> > a while ago I changed my mail configuration for mailinglists. I have
> > individual mail addresses for every mailing list and the configuration
> > now looks like this:
> >
> > From: Sebastian Wiesinger
> > Sender: po
Sebastian Wiesinger:
> No, it's the other way around. I want off-list replies to my From:
> address (which is my main mailaddress). But I'm subscribed to the ML
> with the address in the Sender: header (which is unique for each ML).
>
> Other MLs use the Sender: header in addition to the From: to
-Message d'origine-
From: Wietse Venema
Sent: Thursday, September 17, 2015 4:13 PM
To: Postfix users
Subject: Re: Trouble with ORCPT variable IN RCPT TO command
Jean-Francois Couture:
Last weekend one of our service provider for our application
upgraded there email server (Apache JAMES)
Am 18.09.2015 schrieb Sebastian Nielsen:
If the domain has strict identity alignment set up, then From: body must match
MAIL FROM, which must match the SPF record.
sorry, this is simply not correct. No wide spread "strict identity alignment"
bind
RFC5322.From (From: body) to RFC5321.MailFro
I would like to know if I can use Postfix for this scenario (I just
need a yes or no, please, and I'll take the next steps with assistance
from this list as necessary):
given
1. a remote server successfully hosting multiple virtual servers
2. my local server from whence I update and maintain
On Fri, Sep 18, 2015 at 09:12:37AM -0500, Tom Browder wrote:
> given
>
>
> 1. a remote server successfully hosting multiple virtual servers
> 2. my local server from whence I update and maintain the remote server via ssh
> 3. a working Postfix (for a single domain at the moment)
>
> desired
Thats exactly what im talking about, this DMARC Strict Identity Alignment.
If a host only publishes a SPF record (no DKIM record), and sets up DMARC
with Strict Identity Alignment, then you will need to rewrite or encapsulate
the From: & MAIL FROM adress on any forwarded email to match your own
\On Fri, Sep 18, 2015 at 9:18 AM, Viktor Dukhovni
wrote:
> On Fri, Sep 18, 2015 at 09:12:37AM -0500, Tom Browder wrote:
...
> Keep in mind that it is simplest to just send the mail with the
> desired purported author (I assume you're looking to change the
> "From:" header), rather than implement c
On September 18, 2015 4:40:52 AM "Sebastian Nielsen"
wrote:
If the domain has strict identity alignment set up, then From: body must
match MAIL FROM, which must match the SPF record.
postfix.org have no spf record, not my fault
Thats why you need to replace or encapsulate the From: aswell,
Yeah, all the list mail from postfix fails SPF, at my server:
X-SPF-Signature: fail (junc.eu: Sender is not authorized by default to use
'm...@junc.eu' in 'mfrom' identity (mechanism '-all' matched))
receiver=server-desktop; identity=mailfrom; envelope-from="m...@junc.eu";
client-ip="2604:8d00:
On September 18, 2015 4:24:40 PM "Sebastian Nielsen"
wrote:
Thats exactly what im talking about, this DMARC Strict Identity Alignment.
If a host only publishes a SPF record (no DKIM record), and sets up DMARC
with Strict Identity Alignment, then you will need to rewrite or encapsulate
the From
On September 18, 2015 6:31:46 PM "Sebastian Nielsen"
wrote:
Yeah, all the list mail from postfix fails SPF, at my server:
https://dmarcian.com/spf-survey/postfix.org
there is no spf there, so fix your own spf test
Is it possible to configure Postfix so that greylisting only happens
under specific conditions?
I'd like to have DKIM/SPF setup and if an e-mail passed those I want to
to completely bypass greylisting. However, if it soft-fails those
checks then I want it to greylist next.
I have all of the abov
Sebastian Nielsen:
> Yeah, all the list mail from postfix fails SPF, at my server:
> X-SPF-Signature: fail (junc.eu: Sender is not authorized by default to use
> 'm...@junc.eu' in 'mfrom' identity (mechanism '-all' matched))
> receiver=server-desktop; identity=mailfrom; envelope-from="m...@junc.e
Bruce Marriner:
> I'd like to have DKIM/SPF setup and if an e-mail passed those I want to
> to completely bypass greylisting. However, if it soft-fails those
> checks then I want it to greylist next.
You have a chicken and egg problem. DKIM signature verification
requires that Postfix receives th
Its the SPF checking that is configured to check against From: header.
The reason it says "envelope-from" is that I use a ready-made library
(Mail::SPF) to do the dirty work, while I feed it with the "From:" header
value as the adress to do the check against.
But you are right about the real MAI
I think he is out after doing a temporary fail after the DATA stage, thus
avoiding the chicken and egg problem.
-Ursprungligt meddelande-
From: Wietse Venema
Sent: Friday, September 18, 2015 7:50 PM
To: Postfix users
Subject: Re: Conditional Greylisting
Bruce Marriner:
I'd like to ha
I have (well had, technically) all of these running under the
smtpd_recipient_restrictions with check_policy_service statements.
On Fri, 2015-09-18 at 19:56 +0200, Sebastian Nielsen wrote:
> I think he is out after doing a temporary fail after the DATA stage, thus
> avoiding the chicken and e
I'm also using a policy daemon to build a score based on Whitelists,
SPF, RBLs, GeoIP, etc.
And then apply greylisting, rejects based on the score.
(as in mtpolicyd example configuration:
https://github.com/benningm/mtpolicyd/blob/master/etc/mtpolicyd.conf)
But you can't do content checks in a
Thanks, I'll read about that tool. I'm pretty new to DKIM/SPF and am
just now trying to set it up. I've been using postgrey for awhile and
it does work great but it creates a lot of lag and causes problems (lost
e-mail) with a lot of email senders.
So I want to be able to set up Postfix so, if
Bruce Marriner:
> Thanks, I'll read about that tool. I'm pretty new to DKIM/SPF and am
> just now trying to set it up. I've been using postgrey for awhile and
Since DKIM requires content inspection and you want decisions before
Postfix replies to end-of-data, another option is to use the
smtpd_p
On Friday, September 18, 2015 01:41 PM CDT, wie...@porcupine.org (Wietse
Venema) wrote:
> Since DKIM requires content inspection and you want decisions before
> Postfix replies to end-of-data, another option is to use the
> smtpd_proxy_filter or smtpd_milters feature (both as before-queue
> cont
On 18 Sep 2015, at 13:54, Sebastian Nielsen wrote:
Its the SPF checking that is configured to check against From: header.
The reason it says "envelope-from" is that I use a ready-made library
(Mail::SPF) to do the dirty work, while I feed it with the "From:"
header value as the adress to do th
On 18 Sep 2015, at 14:29, Bruce Marriner wrote:
So I want to be able to set up Postfix so, if it passes DKIM or other
checks that give me a high confidence then just skip the postgrey
stuff
entirely.
In what exactly does a valid DKIM signature give you high confidence? I
suspect that this i
On Friday, September 18, 2015 04:59 PM CDT, "Bill Cole"
wrote:
> On 18 Sep 2015, at 14:29, Bruce Marriner wrote:
>
> > So I want to be able to set up Postfix so, if it passes DKIM or other
> > checks that give me a high confidence then just skip the postgrey
> > stuff
> > entirely.
>
> In what
27 matches
Mail list logo
