Hello,
I have this section in master.cf:
smtps inet n - y - - smtpd
-o syslog_name=postfix/smtps
-o smtpd_tls_wrappermode=yes
-o smtpd_sasl_auth_enable=yes
-o
smtpd_sender_restrictions=permit_sasl_authenticated,reject_sender_login_mismatch,reject
-o
On 2024-06-18 15:51, Gilgongo wrote:
On Tue, 18 Jun 2024 at 08:31, Jeff Peng via Postfix-users <
postfix-users@postfix.org> wrote:
Hello,
I have this section in master.cf:
smtps inet n - y - - smtpd
-o syslog_name=postfix/smtps
-o smtpd_tls_wrappermode
On Tue, 18 Jun 2024 at 08:31, Jeff Peng via Postfix-users <
postfix-users@postfix.org> wrote:
> Hello,
>
> I have this section in master.cf:
>
> smtps inet n - y - - smtpd
>-o syslog_name=postfix/smtps
>-o smtpd_tls_wrappermode=yes
>-o smtpd_sasl_auth
On Tue, 18 Jun 2024 at 08:55, Jeff Peng wrote:
> I did have tried this line (with just one value
> reject_sender_login_mismatch).
> But then I even can't send mail from the valid user (the user who login
> into RC).
>
Oh, sorry I didn't see you weren't using smtpd_sender_login_maps. I'm
pretty s
Thanks for all the kind helps. I have resolved the issue and wrote a
note for it.
https://notes.postno.de/how-to-use-reject-sender-login-mismatch-in-postfix.html
if you find any issue in this note, please let me know.
Thanks.
Oh, sorry I didn't see you weren't using smtpd_sender_login_ma
Peter via Postfix-users skrev den 2024-06-18 04:08:
On 18/06/24 13:00, Jeff Peng via Postfix-users wrote:
On 2024-06-18 07:30, Peter via Postfix-users wrote:
On 17/06/2024 17:28, Paul Schmehl wrote:
though it's a big offtopic, may I ask that, for roundcube, how to stop
users adding their own
Jeff Peng via Postfix-users skrev den 2024-06-18 09:30:
smtps inet n - y - - smtpd
-o
smtpd_sender_restrictions=permit_sasl_authenticated,reject_sender_login_mismatch,reject
order matters, first wins
-o
smtpd_sender_restrictions=reject_sender_login_misma
Paul Schmehl via Postfix-users skrev den 2024-06-18 06:39:
On Jun 17, 2024, at 10:14 PM, Cowbay via Postfix-users
wrote:
On 2024/6/18 10:43, Paul Schmehl via Postfix-users wrote:
The problem is neither tls nor ssl worked. No matter what config I
used, roundcube would always through an error.
On Tue, Jun 18, 2024 at 03:20:46PM +0200, Benny Pedersen via Postfix-users
wrote:
> xpoint@tux ~ $ posttls-finger -w -lsecure -C "www.stovebolt.com:465"
> "www.stovebolt.com"
> posttls-finger: Connected to www.stovebolt.com[108.174.193.28]:465
> posttls-finger: server certificate verification fa
Paul Schmehl via Postfix-users skrev den 2024-06-18 08:04:
posttls-finger: server certificate verification failed for
mail.stovebolt.com[108.174.193.29]:465: num=62:Hostname mismatch
This looks like it’s working correctly now, right?
hostname mismatch means still need to reissue new cert
m
Viktor Dukhovni via Postfix-users skrev den 2024-06-18 15:27:
On Tue, Jun 18, 2024 at 03:20:46PM +0200, Benny Pedersen via
Postfix-users wrote:
xpoint@tux ~ $ posttls-finger -w -lsecure -C "www.stovebolt.com:465"
"www.stovebolt.com"
posttls-finger: Connected to www.stovebolt.com[108.174.193.2
Viktor Dukhovni via Postfix-users:
> 465inet n - n - - smtpd
> -o smtpd_tls_wrappermode=yes
...
> -o smtpd_milters=$mua_milters
> -o always_add_missing_headers=yes
Nit: always_add_missing_headers is a cleanup(8) daemon feature. It
I’ve posted several times about the problems that I’m having getting roundcube
to send mail through postfix. I think you can throw out all the previous posts
and start anew.
In one exchange, Victor pointed out that I did not have -o
smtpd_tls_wrappermode=yes set in master. (It was commented out
> On Jun 18, 2024, at 2:30 PM, Paul Schmehl via Postfix-users
> wrote:
>
> So, here is what I now have configued in roundcube:
>
> $config['smtp_host'] = 'tls://mail.stovebolt.com:465';
> $config['smtp_auth_type'] = 'PLAIN';
> $config['smtp_user'] = '%u';
> $config['smtp_pass'] = '%p’;
>
Whe
What about providing Postfix logs? As long as you can't provide
the Postfix perspective, finding help here will be difficult.
Wietse
___
Postfix-users mailing list -- postfix-users@postfix.org
To unsubscribe send an email to postfix-users-le...@p
> On Jun 18, 2024, at 2:45 PM, Noel Jones via Postfix-users
> wrote:
>
>
>> On Jun 18, 2024, at 2:30 PM, Paul Schmehl via Postfix-users
>> wrote:
>>
>> So, here is what I now have configued in roundcube:
>>
>> $config['smtp_host'] = 'tls://mail.stovebolt.com:465';
>> $config['smtp_auth_type
> On Jun 18, 2024, at 2:45 PM, Noel Jones via Postfix-users
> wrote:
>
>
>> On Jun 18, 2024, at 2:30 PM, Paul Schmehl via Postfix-users
>> wrote:
>>
>> So, here is what I now have configued in roundcube:
>>
>> $config['smtp_host'] = 'tls://mail.stovebolt.com:465';
>> $config['smtp_auth_type
Paul Schmehl via Postfix-users:
> [18-Jun-2024 14:53:32 -0500]: PHP Error: SMTP server does not
> support authentication (POST
> /webmail/?_task=mail&_unlock=loading1718740412272&_framed=1&_action=send)
Indeed, you have
smtps inet n - n - - smtpd
-o smtp
> On Jun 18, 2024, at 3:33 PM, Wietse Venema via Postfix-users
> wrote:
>
> Paul Schmehl via Postfix-users:
>> [18-Jun-2024 14:53:32 -0500]: PHP Error: SMTP server does not
>> support authentication (POST
>> /webmail/?_task=mail&_unlock=loading1718740412272&_framed=1&_action=send)
>
> Indeed
Paul Schmehl via Postfix-users:
> > On Jun 18, 2024, at 3:33?PM, Wietse Venema via Postfix-users
> > wrote:
> >
> > Paul Schmehl via Postfix-users:
> >> [18-Jun-2024 14:53:32 -0500]: PHP Error: SMTP server does not
> >> support authentication (POST
> >> /webmail/?_task=mail&_unlock=loading171
I am not sure what SRS or AUC are right now.
The defaults for those settings, as far as postfix is concerned, are as
follows:
|smtpd_sasl_auth_enable = no
smtpd_sasl_security_options = noanonymous
smtpd_sasl_tls_security_options = $smtpd_sasl_security_options
smtpd_tls_auth_only = no
smtpd_tls
I want to implement rate limiting based on the target server rather
than by recipient domain. Specifically, I want to rate limit email
sent to domains like yahoo.com, ymail.com, aol.com, myyahoo.com, and
verizon.net as a group, since these domains appears to be handled by
the same servers. This gro
785 243 via Postfix-users:
> I want to implement rate limiting based on the target server rather
> than by recipient domain. Specifically, I want to rate limit email
> sent to domains like yahoo.com, ymail.com, aol.com, myyahoo.com, and
> verizon.net as a group, since these domains appears to be ha
On 2024-06-19 05:15, Cody Millard via Postfix-users wrote:
I am not sure what SRS or AUC are right now.
I saw Dr. Lindenberg has a similar test suite like your site.
https://blog.lindenberg.one/EmailSecurityTest
___
Postfix-users mailing list -- post
On Tue, Jun 18, 2024 at 04:15:33PM -0500, Cody Millard via Postfix-users wrote:
> The defaults for those settings, as far as postfix is concerned, are as
> follows:
>
> smtpd_tls_auth_only = no
Why? Surely, "yes" is the better choice...
> smtpd_tls_security_level =
Why empty? Surely "may" is
Hi Viktor.
Please check my original post. Your comments are on the postfix defaults
and not my current settings.
as for why I set these explicitly, I figured that more random bits means
more secure.
tls_random_bytes = 64
tls_daemon_random_bytes = 64
On 6/18/2024 9:56 PM, Viktor Dukhovni vi
On Tue, Jun 18, 2024 at 10:02:20PM -0500, Cody Millard via Postfix-users wrote:
> as for why I set these explicitly, I figured that more random bits means
> more secure.
>
> tls_random_bytes = 64
> tls_daemon_random_bytes = 64
No need to clutter the configuration with overzealous low-level
setti
On Wed, 19 Jun 2024 at 03:57, Viktor Dukhovni via Postfix-users <
postfix-users@postfix.org> wrote:
> On Tue, Jun 18, 2024 at 04:15:33PM -0500, Cody Millard via Postfix-users
> wrote:
>
> > The defaults for those settings, as far as postfix is concerned, are as
> > follows:
> >
> > smtpd_tls_auth_
Hi
*Trying to setup email REJECT when users try to send to a no-reply email.*
AFAIK, this should be configuren on smtpd_recipient_restrictions using
check_recipient_access. Please, let me know if I'm wrong.
It's not working, so maybe it's because I don't know if rules are applied
on first match
29 matches
Mail list logo
