A tcpdump between smtp and smtpd shows a TCP handshake but no payload at
all.
That looks like the remote SMTP server wants to use TLS wrappermode,
but your Postfix SMTP client wants to use STARTTLS.
Ok, that was really dumb. Not seeing a banner should have given me a
clue that I broke the remo
Peter via Postfix-users:
> On 25/03/25 07:43, Wietse Venema via Postfix-users wrote:
>
> > Too late! I have already updated the documentation (on www.porcupine.org;
> > mirrrors will pick it up in the next hour or so).
>
> I'm guessing that you added this to postscreen_dnsbl_sites and
> reject_r
On Tue, Mar 25, 2025 at 11:46:33AM +0100, Damian via Postfix-users wrote:
> ... if I set smtpd_tls_security_level=no ...
That is not a valid value of that parameter, so smtpd will bail out with
a fatal error. If you use "none", you might have better luck.
--
Viktor.
___
lutz.niederer--- via Postfix-users wrote:
> spamhaus and abusix have a query limit for free accounts. spamhaus does not
> seem to be a problem but abusix is 5000 queries/day. postfix as well as
> rspamd can query them.
>
> postfix or rspamd: which one should be used to query them and why?
I a
I am currently doing some tests with Postfix 3.10 and postfix-tlspol
(using QUERYwithTLSRPT).
I see positive feedback for DANE as well as MTA-STS on the tlsrpt
socket. However, I was not able to produce negative feedback yet. In
case of "non DNSSEC destination", nothing is written to the tlsrp
Damian via Postfix-users:
> I am currently doing some tests with Postfix 3.10 and postfix-tlspol
> (using QUERYwithTLSRPT).
>
> I see positive feedback for DANE as well as MTA-STS on the tlsrpt
> socket. However, I was not able to produce negative feedback yet. In
> case of "non DNSSEC destinat
On 26/03/25 05:02, Wietse Venema via Postfix-users wrote:
"Reputation lists may have additional policies and restrictions that you
need to follow when using them, you should not configure a list in
Postfix until you are fully aware of its requirements."
...or something like that.
Yeah. And as
