see the various Postfix rewriting and calls to
LDAP maps, so I can track down where it loops?
TIA,
Olivier
--
Olivier
olivier_nic...@fastmail.fm
--
http://www.fastmail.fm - Access your email from home and the web
.. how dumb
> they are!
>
> they aren't smart enough to recognize a test email specialy made for
> testing mail servers from a real sp*am email and refuse to send it. tsss.
I usually avoid the word "test" from my test emails. Instead I will try
to document where I am sending
RR is: box.coakmail.com
Tou definitely need the certificate for box.coakmail.com because that's
the actual server that receives all the traffic.
Best
Olivier
>
> I know MX only accpets messages on port 25 (I am right here?), so the
> certs issued to root domain will have no side eff
help?
Best regards,
Olivier
--
Thank you.
Bill Cole writes:
> On 2023-01-16 at 22:14:15 UTC-0500 (Tue, 17 Jan 2023 10:14:15 +0700)
> Olivier
> is rumored to have said:
>
>> Hello,
>>
>> This is a preliminary request before I gather all needed informations.
>>
>> I have a problem w
:
1) COLLECT THE MAXIMUM OF DATA possible about users
...
98) increase the security for the users
99) prevent the creation of temporary, one time, disposable mailbox
Best regards,
Olivier
>
> Thanks & Regards.
>
>
--
n ugly and hard to read.
Plaintext offer very limited options when it comes to style, so less
options to do a bad job.
Olivier
> Thanks
>
--
ydomain.fr loops back to myself"
in main.cf there is mydestination = mydomain.fr
and there is a line proxy_interfaces = myexternalinternetipadress
Can you help ?
Thank you
Olivier
the second case above, if I remove the previous email account on the
Mac and recreate it, then it works.
Is that a know problem? Is there a fix?
Thanks in advance,
Olivier
--
Viktor Dukhovni writes:
>> On Feb 1, 2018, at 11:31 PM, Olivier wrote:
>>
>> I apologize if tht has already been posted, but I could not find any
>> reference.
>>
>> I recently upgraded my postfix server from 2.11.6 to 3.2.3_1.
>>
>> Post
Viktor Dukhovni writes:
>> On Feb 2, 2018, at 12:03 AM, Olivier wrote:
>>
>> I apologize for being abiguous. It is a problem of authentication to
>> SMTP (they have no problem with IMAP). And the certificate has not
>> changed (same machine, same name, same
"@lbutlr" writes:
> On 1 Feb 2018, at 22:39, Olivier wrote:
>> A failing connection:AMTP authentication:
>> Jan 29 16:44:57 fbsd63 postfix/smtpd[93113]: connect from
>> unknown[118.174.201.202]
>
>
>> A successful SMTP authentication
>>
>&g
"@lbutlr" writes:
> On 1 Feb 2018, at 21:31, Olivier olivier.nic...@cs.ait.ac.th> wrote:
>> Is that a know problem? Is there a fix?
>
> It is not. I have a postfix 3.2 install and primary use Macs to access it.
> Works fine one new and old accounts.
>
> Howe
Viktor Dukhovni writes:
>> On Feb 2, 2018, at 12:39 AM, Olivier wrote:
>>
>>> You've also not explained what you mean by deleting and recreating the
>>> account.
>>
>> I am not a Mac user, but from the Mail app, select Files/Account and
>>
rent authentication settings on port 587 than on 25, and remaking
> the email account has the effect of switching the submission port?
>
> Other factors to consider:
>
>http://www.postfix.org/postconf.5.html#smtpd_sasl_local_domain
>http://www.postfix.org/postconf.5.html#smtpd_sasl_security_options
Both are left to the default (empty) on the old and new server.
Thank you,
Olivier
--
Viktor Dukhovni writes:
>> On Feb 6, 2018, at 1:26 AM, Olivier wrote:
>>
>>> TLS is set up just fine. What's failing is SASL. Perhaps there are
>>> different authentication settings on port 587 than on 25, and remaking
>>> the email account has
Poliman - Serwis writes:
I think it should read:
...|egrep --line-buffered -v '(...)'|sed...
with a closing parenthesis before the closing quote
Olivier
> [1:text/plain Show]
>
>
> [2:text/html Hide Save:noname (20kB)]
>
> Wow, huge piece of linux commands. Curr
the file on the server?
Because I never heard of a router that would modify the contents of a
message to adapt the links to whatever local proxy exists.
Do you have a special filter on postfix that would do that or do you use
a very standard and straight out of the box configuration?
Best regards,
olivier
--
tz.de/regex-coach/)
It works fine under wine.
In fact, this morning I wrote a regex using the regex coach, so I could
see what it did as long as I was writing it.
Best s,
Olivier
--
to propagate that CA to any
possible clients to have them accept your certificate. Depending on the
OS, the client, etc. it may be tricky to find where the CA must reside.
If at least one client is working with your CA/cert, you have good hope
that your certificate is forking and installed properly on the
server. Then you have the client side to solve.
Best regards,
Olivier
--
the certificate of my mail gateway, whoever they
are sending a mail to.
Best regards,
Olivier
--
mail server as other
pieces of software are affected (imap).
A general reboot every 3 months is not that bad.
Bestregards,
Olivier
e sort of quarantine, and that is when amavis comes handy.
Best regards,
Olivier
ng sur eof what you are doing, you do not restart
the service in the middle of an holiday :)
So you plan to have your certificate renew while you are there to tend
any problem, like one week before they expire, because you never know
what can get wrong.
Olivier
1140 Tue Jun 18 16:14:20 eb...@jio.com
> d...@datasoftcomnet.com
> some are from others as well.
>
> I've tried everything like postfix flush, restarting the services etc.
> still they stay there.
> Any hints please?
Usually, postqueue -p gives the reason why the messages a queued.
Anything your side?
Olivier
>
> Thanks
> DP
>
--
, so it is 10 minutes well used.
Possibly, I check about it, but I haven't yet faced the case since I use
let's Encrypt, the intermediate ca could change, but in that case,
having your own key or a key provided by ;let's Encrypt woul dnot change
anything to the proble, you'd have to reinstall the new intermediate ca,
with a possible race condition in the mean time.
Best regards,
Olivier
--
:39 mail postfix/smtpd[29931]: warning: AUTH command rate limit
exceeded: 13 from unknown[141.98.80.102] for service smtps
Best regards,
Olivier
--
.
Thanks for your answers.
Regards,
Olivier BONHOMME
Le 08/10/2010 21:30, Victor Duchovni a écrit :
On Fri, Oct 08, 2010 at 05:38:21PM +0200, Olivier BONHOMME wrote:
I am writing here because I have an issue trying to use transport_maps with
a domain which is declared as VIRTUAL.
You fail to distinguish between virtual_alias_domains and
name, how/where is the correspondance made with the uid?
Best regards,
Olivier
Hi,
In my Postfix configuration I have
local_recipient_maps = unix:passwd.byname $alias_maps
ldap:$config_directory/ldap_local_recipient
What is the expected output of the ldap: part? Anything non empty
means the user is local? The user ID? Something else?
Best regards,
Olivier
Fri, 24 Jul 2009 11:45:43 +0700 (ICT)
--463023A3834.1248410743/mail2.cs.ait.ac.th--
Expansion from on@ into Olivier.Nicole@ is correct.
How/where do I inform the LDA that it is to deliver to the Unix
account associated to that canonical name Olivier.Nicole?
Best regards,
Olivier
.
You could temporarily disable amavis from postfix, that way you wuill
be sure that this spanc call does not come from amavis...
Olivier
Hi,
I read and re-read the address-rewriting readme and coul dnot find any
indication on the way to rewrite addresses to include GECOS
information:
o...@cs.ait.ac.th => Olivier Nicole
Is that possible in Postfix? I beleive yes.
Where is that done and how?
Best regards,
Olivier
uration could be in postfix.
Amy insight is more than welcome.
Best regards,
Olivier
in text authentication before STARTTLS.
>
> But I am doubtful because the authentication is dovecot job, so I
> don't see how the configuration could be in postfix.
>
> Amy insight is more than welcome.
I found it, it's postfix parameter:
smtpd_tls_auth_only = yes
that I planned to change, but forgot to do.
Best regards,
Olivier
r outgoing.
Now I think it is a *very bad* idea to disable virus filtering on
outgoing messages: I do filter all messages, and in case of outgoing
message containing a virus, I sent a warning to the administrator: it
means one of the machines in my network has a virus, I better know
that and take action.
Bests,
Olivier
S server (nothing specific to do to accept Ubuntu
clients BTW). And yes, I have been an happy user of FreeBSD for more
than 10 years, so I must be biased :)
Bests,
Olivier
in SA, as the rbl test only contributes to
the final score.
I personnally use the second.
Bests,
Olivier
machines? After some years, a cable can get bad, lousy, and the
packets would not pass so reliably anymore. After moving a
machine/wandering around a rack cabinet, one may have step on a cable
and disconnect it or damage it.
Bests,
Olivier
time on checking that the quality of
the RBL you are using is constant.
Olivier
hich is obviously not possible.
What will you reply to your user visiting one of these blocked
countries, when they complain they cann write back home?
Bests,
Olivier
.domain and not just firstname.lastname.
Eventually, my users should receiv emails under 2 domains that both
resolve to the same maibox, how would I solve that with maps
containing full addresses? Having 2 maps in parallel?
Any help is very much welcome.
Best regards,
Olivier
PS: I also sent this email
Hi,
My server acts as MX for a few domains and I have problem setting up
the transport map properly.
Any help is welcome.
TIA,
Olivier
-- postconf -n
alias_maps = hash:/etc/aliases, ldap:$config_directory/ldap_user_alias,
ldap:$config_directory/ldap_deleted_alias,
ldap
a sort of
smtpd_end_of_data_restrictions = check_policy_service something
that could accept/reject the mail before it is being handled to the MDA.
Bests,
olivier
= check_recipient_access ldap:...
May not be the best choice because it seems it is check before the aliases are
expanded, so if a user over quota is part of an alias, the message will not
boun ce for that user.
Bests,
Olivier
alias_maps = hash:/etc/aliases, ldap:$config_directory/
es you
are searching for are readable.
Best regards,
Olivier
cert.pem file.
To make a .crt from a .pem, simply edit the file and remove all the
text before the -BEGIN CERTIFICATE- line. (Can someone confirm?)
Bests,
olivier
lly mail would not be
delivered by postFix).
Maybe there is a need for a better check of the syntax of the LDAP
tables.
Best regards,
Olivier
the message ID of the spam may help
identifying your spammer.
Good luck,
Olivier
d try to match a.b.c.d, a.b.c, a.b and a;
- while postmap try to match exactelly what you are feeding it.
Best regards,
Olivier
And seeing that the guy is blocking email by country, I really wonder
why I took time replying to him.
address rejected: Relay access denied; from=
to= proto=ESMTP helo=
Apr 23 06:35:31 corellia postfix/smtpd[26906]: warning: restriction
`reject_unauth_destination' after `check_relay_domains' is ignored
At least blocking all of Taiwanese IPs. Does anyone has idea to counter
strike this people?
Is there a way to configure all my instances with virtual ip, and when
starting postfix just start primary instance without failed message ?
The other instances will be started with pacemaker after starting vip on
one machine.
Thanks in advance...
--
Olivier Brousselle
Rectorat de Rouen
Thanks for the reply,
So, I can just use postmulti to create instances and then detach them
with postmulti -i instance -e deport.
And finally modify init script to start instances with postfix -c
/directory/of/instance instead of postmulti -i instance -p start.
Greetings
--
Olivier
Le 18
Hi
Anyone know if they have a script or a plugin for extract information of
maillog ?
i search to create a .csv with:
date/from/to/size/status/message-id
of mail sent AND mail rejected by rbl
thanks
olivier
Hi
i am new on Postfix (old user of Qmail) and i want know if we can add a
tag into the header of all mails ?
sample:
Internal-Msg-ID: x
( is a unique generated number)
thanks for your help
Olivier
Hi
it's possible to deny a attachment extension directly into postfix ?
and create a database :
domaine1.com .exe;.bat;.cab
domaine2.com .exe
?
thanks for your help
Olivier
Hi
i's possible to configure Postfix for all mailer-daemon mail are sent to a
other server ? (not directly)
regards
olivier
config value for unsuspend automatiquely ?
because actually, only a manualy postqueue -f restart the delivery
thanks
olivier
?
Thanks in advance,
Olivier
--
hello,
I'm trying to switch one of my email servers qmail postfix. This is a
server that only the relay.
I had two features on Qmail I can not find on the net for Postfix.
- On Qmail, I had a module that Rbl closed the connection after the from /
to, it allowed me to log information.
- On Qmail
:38:15 mx postfix/smtpd[3494]: NOQUEUE: reject: RCPT from
p11144.yakapi.com[197.12.68.144]: 450 4.2.0 :
Recipient address rejected: Greylisting; from= to=<
myu...@mydomain.com> proto=ESMTP helo=
i want add message-id=
thanks for your suggestion
regards
Olivier
it's possible ?
regards
Olivier
Thanks i test today ;=)
2015-04-19 7:27 GMT+02:00 phil :
> On 19/04/2015 3:21 PM, Olivier CALVANO wrote:
>
>> Hi
>>
>> Actually, i have a Postfix server and into the logs i have:
>>
>> Apr 14 20:06:00 mx postfix/smtpd[24600]: 01BF8301079A:
>> client=o1
that
decode it ?
thanks
olivier
2015-04-19 11:35 GMT+02:00 Marius Gologan :
> If you want to log the Subject during the SMTP delivery (will appear as
> postfix/smtp log):
>
>
>
> main.cf:
>
> smtp_header_checks = pcre:/etc/postfix/header_smtp.pcre
>
>
>
>
stuck? Our side,
their side? What does this mean? Can I do something?
Thanks for your help,
--
Louis-Olivier Roof, Jr. Eng.
Software Engineer
Obzerv Technologies Inc.
400, Jean-Lesage, suite 201,
Québec (Québec)
Canada, G1K 8W1
T. (418) 524-3522
F. (418) 524-6745
www.obzerv.com
On 9/3/2010 2:29 PM, Louis-Olivier Roof wrote:
Hello postfix-users,
We've recently been blocked by spam blacklists due to a
spambot running loose on our network. We found the virus,
cleaned the machine and closed all outbound connections to
port 25 for the whole network but for the
I already spent a few hours tracing the problem, playing with 'cleanup -v' and
filtering the logs, I'd be happy trying any suggested method…
Thanks!
--
Olivier Le Monnier — ☎ 023156.6209
Pôle Infrastructures — SysAdmin Linux
Direction du Système d'Information
Université de Caen Normandie
Use the notation with the square brackets:
[::1]:10028
They are used to differentiate the colon used for separaring the port,
as opposed to a colon which is part of the IPv6 address.
Olivier
--
Olivier MJ Crépin-Leblond, PhD
http://www.gih.com/ocl.html
- Original Message -
From
issue either. Our sendmail-based MX have the same problem.
Kind regards,
--
Olivier MJ Crépin-Leblond, PhD
http://www.gih.com/ocl.html
ate it's IPv6 reverse DNS lookups so I can get closer to the cause of
> the problem?
>
>
I have no trouble with reverse IPv6 DNS in my postfix headers. Looks
like a local DNS config error or mis-delegation.
Either way, I don't think it's a postfix issue at all.
--
Olivier MJ Crépin-Leblond, PhD
http://www.gih.com/ocl.html
ame problem for large messages sent to Yahoo. (including
yahoo.fr, yahoo.co.uk etc.)
I don't think that it's a Postfix problem at all because only Yahoo
causes this, so it much more likely to be a Yahoo problem.
Kind regards,
Olivier
--
Olivier MJ Crépin-Leblond, PhD
http://www.gih.com/ocl.html
SL - but I still don't understand why it only does it with Yahoo and
with no-one else.
Warm regards,
Olivier
--
Olivier MJ Crépin-Leblond, PhD
http://www.gih.com/ocl.html
ed using this form, but you can describe
the time-out with large messages.
Along with Postfix rate-limiting features, this should improve delivery
with Yahoo MX.
Kind regards,
Olivier
--
Olivier MJ Crépin-Leblond, PhD
http://www.gih.com/ocl.html
g? There's obviously something that's sticking
somewhere and I've spent 2 weeks on-off on this, with no success.
Thanks for all help!
Kind regards,
--
Olivier MJ Crepin-Leblond, Ph.D.
E-mail:<[EMAIL PROTECTED]> | http://www.gih.com/ocl.html
ields success, so I gather it's a problem on my side.
I am behind a firewall & NAT & port 25 is NAT'ed over properly. (CISCO 837)
It seems to be a problem others have experienced before but none of the
pointers found when I google the error are of any help.
Kind regards,
O
+
EHLO salsa.gih.co.uk
500 unrecognized command
HELO salsa.gih.co.uk
250 psg.com Hello salsa.gih.co.uk [212.124.200.129]
quit
221 psg.com closing connection
Connection closed by foreign host.
[EMAIL PROTECTED] ocl]#
--- cut here ---
Thank you,
O.
--
Olivier MJ Crepin-Leblond, Ph.D.
E-mail:<[EM
im server would have said "STARTTLS command used when not advertised".
check your docs on how to disable smtp filtering in your firewall (look
for somthing like "no ip inspect name yourrulename smtp"...).
That solved it! Thank you very much to you & Noel.
O.
--
Olivier
router is the same command.
Regards,
Olivier
--
Olivier MJ Crepin-Leblond, Ph.D.
E-mail:<[EMAIL PROTECTED]> | http://www.gih.com/ocl.html
- Original Message -
From: "Diego Ledesma" <[EMAIL PROTECTED]>
To: "Алексей Доморадов" <[EMAIL PROTECTED]>
Cc:
Se
Might kill
all spam, but will also kill legitimate emails, and I'm not sure how your
clients will know about an email they did not receive. As others have said,
be careful because this might bite you back at some point.
On the other hand, it's your network so do as you see fit.
Cheers,
hing which you would find to be of
interest?
I am asking this, in view of future possible instances of the law re:
legal status of an email & its authoritative tracking.
Just curious. Thanks,
Olivier
- Original Message -
From: "Wietse Venema" <[EMAIL PROTECTED]>
T
What I meant Martin was that there was a space in the "destination" word, which
was written as "destina tion" rather than "destination".
If you make
smtpd_recipient_restrictions = permit_mynetworks, reject_unauth_destination
Does it work?
Olivier
--
Olivier
Also check SElinux if you are running this. It may prevent changes to the port
config from taking place.
You can see entries in the logfile called /var/log/messages
Regards,
Olivier
--
Olivier MJ Crepin-Leblond, Ph.D
Global Information Highway Ltd
http://www.gih.com/ocl.html
ched tables - I'm thinking... that
> certbot's hooks is what I'll keep using, only need to invest
> more there.
I have developped my own solution, with a database backend. One script
update the certificates in the database (with certbot or acme.sh and DNS
authorization)
Hi,
How is it possible to configure Postfix to filter messages of the form:
from invalidu...@mydomain.com to validu...@mydomain.com
I have been receiving quite a lot recently and they are trash.
Best regasrds,
Olivier
--
___
Postfix-users mailing
86 matches
Mail list logo
