from:"Patrick Ben Koetter"

Re: force startssl/tls/ssl on sasl login

2013-11-06 Thread Patrick Ben Koetter

hen: HRB 199263 Vorstand: Patrick Ben Koetter, Axel von der Ohe, Marc Schiffbauer Aufsichtsratsvorsitzender: Florian Kirstein

Re: Non-domain based conditional routing

2013-11-07 Thread Patrick Ben Koetter

*] sys4 AG http://sys4.de, +49 (89) 30 90 46 64 Franziskanerstraße 15, 81669 München Sitz der Gesellschaft: München, Amtsgericht München: HRB 199263 Vorstand: Patrick Ben Koetter, Axel von der Ohe, Marc Schiffbauer Aufsichtsratsvorsitzender: Florian Kirstein

Re: LDAP Fallback Question

2013-11-13 Thread Patrick Ben Koetter

server_host = ldapi://%2Fsome%2Fpath ldaps://ldap.example.com:636 -- [*] sys4 AG http://sys4.de, +49 (89) 30 90 46 64 Franziskanerstraße 15, 81669 München Sitz der Gesellschaft: München, Amtsgericht München: HRB 199263 Vorstand: Patrick Ben Koetter, Ax

Re: Advanced master.cf query/update support

2013-11-27 Thread Patrick Ben Koetter

ify an option in one run: $ postconf -F '*/*' -E 'something = useful' Option -F would create the context to which the editing should apply and -E would specify what to edit. To remove parameters -R might be introduced. (And -r for main.cf too, doubling -X, but keeping the c

ca-constraint trust-anchor sha256 digests disabled

2013-12-15 Thread Patrick Ben Koetter

posttls-finger: < 221 2.0.0 Bye -- [*] sys4 AG http://sys4.de, +49 (89) 30 90 46 64 Franziskanerstraße 15, 81669 München Sitz der Gesellschaft: München, Amtsgericht München: HRB 199263 Vorstand: Patrick Ben Koetter, Axel von der Ohe, Marc Schiffbauer Aufsichtsratsvorsitzender: Florian Kirstein

Re: ca-constraint trust-anchor sha256 digests disabled

2013-12-15 Thread Patrick Ben Koetter

t; (draft: _25._tcp.mail.sys4.de. IN TLSA DANE-EE SPKI SHA2-256 {data}) > > -- > Viktor. -- [*] sys4 AG http://sys4.de, +49 (89) 30 90 46 64 Franziskanerstraße 15, 81669 München Sitz der Gesellschaft: München, Amtsgericht München: HRB 199263 Vorstand: Patrick Ben Koetter, Axel von der Ohe, Marc Schiffbauer Aufsichtsratsvorsitzender: Florian Kirstein

posttls-finger: RFE

2013-12-15 Thread Patrick Ben Koetter

didn't see? A better way to handle this? p@rick -- [*] sys4 AG http://sys4.de, +49 (89) 30 90 46 64 Franziskanerstraße 15, 81669 München Sitz der Gesellschaft: München, Amtsgericht München: HRB 199263 Vorstand: Patrick Ben Koetter, Axel von der Ohe, Marc Schiffbauer Aufsichtsratsvorsitzender: Florian Kirstein

Re: ca-constraint trust-anchor sha256 digests disabled

2013-12-15 Thread Patrick Ben Koetter

n? 0 - Certificate (draft Cert) 1 - Public-Key (draft SPKI) That would correspond with tlsagen's current output on what I feed it. p@rick -- [*] sys4 AG http://sys4.de, +49 (89) 30 90 46 64 Franziskanerstraße 15, 81669 München Sitz der Gesells

Re: posttls-finger: RFE

2013-12-15 Thread Patrick Ben Koetter

* Viktor Dukhovni : > On Sun, Dec 15, 2013 at 09:33:25PM +0100, Patrick Ben Koetter wrote: > > > I am looking for a switch in posttls-finger to tell it where (read: > > nameservr) > > to lookup TLSA RRs. > > > > Problem is: I've updated my zone,

Re: basic understanding AA/MX-record load-balancing

2014-01-13 Thread Patrick Ben Koetter

icht München: HRB 199263 Vorstand: Patrick Ben Koetter, Axel von der Ohe, Marc Schiffbauer Aufsichtsratsvorsitzender: Florian Kirstein

Re: Config tools?

2014-01-18 Thread Patrick Ben Koetter

669 München Sitz der Gesellschaft: München, Amtsgericht München: HRB 199263 Vorstand: Patrick Ben Koetter, Marc Schiffbauer Aufsichtsratsvorsitzender: Florian Kirstein

Re: Config tools?

2014-01-18 Thread Patrick Ben Koetter

* Ian Evans : > On Sat, Jan 18, 2014 at 3:07 AM, Patrick Ben Koetter wrote: > > > * Ian Evans : > > > Just curious if there are any config tools or analyzers that are able to > > > parse the config files/logs and make suggestions for tweaks or point out > > &

Re: ISP relay - Before queue filtering, per-domain

2014-01-30 Thread Patrick Ben Koetter

=> 'WHITELIST', } ); # ## POLICY BANKS: WHITELIST # $policy_bank{'WHITELIST'} = { bypass_spam_checks_maps => [1], spam_lovers_maps => [1], }; p@rick -- [*] sys4 AG http://sys4.de, +49 (89) 30 90 46 64 Franziskanerstraße 15, 81669 München Sitz der Gesellschaft: München, Amtsgericht München: HRB 199263 Vorstand: Patrick Ben Koetter, Marc Schiffbauer Aufsichtsratsvorsitzender: Florian Kirstein

Re: how to configure Postfix/DNS to avoid being considered a spammer

2014-02-07 Thread Patrick Ben Koetter

-- [*] sys4 AG https://sys4.de, +49 (89) 30 90 46 64 Franziskanerstraße 15, 81669 München Sitz der Gesellschaft: München, Amtsgericht München: HRB 199263 Vorstand: Patrick Ben Koetter, Marc Schiffbauer Aufsichtsratsvorsitzender: Florian Kirstein

Re: your mail

2014-02-21 Thread Patrick Ben Koetter

[*] sys4 AG https://sys4.de, +49 (89) 30 90 46 64 Franziskanerstraße 15, 81669 München Sitz der Gesellschaft: München, Amtsgericht München: HRB 199263 Vorstand: Patrick Ben Koetter, Marc Schiffbauer Aufsichtsratsvorsitzender: Florian Kirstein

Re: DANE and DNSSEC adoption

2014-02-24 Thread Patrick Ben Koetter

u don't get it right the first time. It so happened here ... ;) p@rick -- [*] sys4 AG http://sys4.de, +49 (89) 30 90 46 64 Franziskanerstraße 15, 81669 München Sitz der Gesellschaft: München, Amtsgericht München: HRB 199263 Vorstand: Patrick Ben Koetter, Marc Schiffbauer Aufsichtsratsvorsitzender: Florian Kirstein

Re: TLS client logging PATCH

2014-02-25 Thread Patrick Ben Koetter

G https://sys4.de, +49 (89) 30 90 46 64 Franziskanerstraße 15, 81669 München Sitz der Gesellschaft: München, Amtsgericht München: HRB 199263 Vorstand: Patrick Ben Koetter, Marc Schiffbauer Aufsichtsratsvorsitzender: Florian Kirstein

Re: Postfix postmap DB

2014-02-27 Thread Patrick Ben Koetter

@rick -- [*] sys4 AG http://sys4.de, +49 (89) 30 90 46 64 Franziskanerstraße 15, 81669 München Sitz der Gesellschaft: München, Amtsgericht München: HRB 199263 Vorstand: Patrick Ben Koetter, Marc Schiffbauer Aufsichtsratsvorsitzender: Florian Kirstein

Re: postscreen smtpd restrictions

2014-03-14 Thread Patrick Ben Koetter

ranziskanerstraße 15, 81669 München Sitz der Gesellschaft: München, Amtsgericht München: HRB 199263 Vorstand: Patrick Ben Koetter, Marc Schiffbauer Aufsichtsratsvorsitzender: Florian Kirstein

Policy Protocol: SASL auth state?

2014-03-19 Thread Patrick Ben Koetter

velope-sender p@rick -- [*] sys4 AG https://sys4.de, +49 (89) 30 90 46 64 Franziskanerstraße 15, 81669 München Sitz der Gesellschaft: München, Amtsgericht München: HRB 199263 Vorstand: Patrick Ben Koetter, Marc Schiffbauer Aufsichtsratsvorsitzender: Florian Kirstein

Re: Policy Protocol: SASL auth state?

2014-03-19 Thread Patrick Ben Koetter

* Wietse Venema : > Patrick Ben Koetter: > > SMTPD_POLICY_README says: > > > > The "sasl_*" attributes (Postfix 2.2 and later) specify information about > > how the client was authenticated via SASL. These attributes are empty in > > case of no S

Re: Multiple auth (rimap + auxprop)

2014-03-31 Thread Patrick Ben Koetter

the second one? > > Thanks! > Andrea -- [*] sys4 AG https://sys4.de, +49 (89) 30 90 46 64 Franziskanerstraße 15, 81669 München Sitz der Gesellschaft: München, Amtsgericht München: HRB 199263 Vorstand: Patrick Ben Koetter, Marc Schiffbauer Aufsichtsratsvorsitzender: Florian Kirstein

Re: Multiple auth (rimap + auxprop)

2014-03-31 Thread Patrick Ben Koetter

* Andrea : > 2014-03-31 15:30 GMT+02:00 Patrick Ben Koetter : > > > > > > > Configure saslauthd for rimap and the SQL auxprop for MySQL. > > Then expand pwcheck_method in smtpd.conf like this: > > > > pwcheck_method: auxprop saslauthd > > > &

Re: Multiple auth (rimap + auxprop)

2014-03-31 Thread Patrick Ben Koetter

Hae you tried PLAIN with auxprop only? Use gen-auth, a script from John Jetmoore, to create auth strings and telnet to the server. p@rick * Andrea : > 2014-03-31 20:39 GMT+02:00 Patrick Ben Koetter : > > > Any log? > > > > > > Sure, > with: > > pwche

Re: High Availability

2014-04-06 Thread Patrick Ben Koetter

nd crm to control a second Postfix instance that will be started locally to pickup any remaining mails once the partner machine dies. p@rick -- [*] sys4 AG https://sys4.de, +49 (89) 30 90 46 64 Franziskanerstraße 15, 81669 München Sitz der Gesellschaft: München, Amtsgericht München: HRB 199263 Vorstand: Patrick Ben Koetter, Marc Schiffbauer Aufsichtsratsvorsitzender: Florian Kirstein

Re: Need a main.cf file for virtual users

2014-04-16 Thread Patrick Ben Koetter

ranziskanerstraße 15, 81669 München Sitz der Gesellschaft: München, Amtsgericht München: HRB 199263 Vorstand: Patrick Ben Koetter, Marc Schiffbauer Aufsichtsratsvorsitzender: Florian Kirstein

Re: SASL/SSL trouble

2014-05-01 Thread Patrick Ben Koetter

s? post output from saslfinger AND attach master.cf. p@rick -- [*] sys4 AG https://sys4.de, +49 (89) 30 90 46 64 Franziskanerstraße 15, 81669 München Sitz der Gesellschaft: München, Amtsgericht München: HRB 199263 Vorstand: Patrick Ben Koetter, Marc Schiffbauer Aufsichtsratsvorsitzender: Florian Kirstein

Re: TLS issues (postfix says: UNTRUSTED but it is not)

2014-05-13 Thread Patrick Ben Koetter

ty verification. p@rick -- [*] sys4 AG https://sys4.de, +49 (89) 30 90 46 64 Franziskanerstraße 15, 81669 München Sitz der Gesellschaft: München, Amtsgericht München: HRB 199263 Vorstand: Patrick Ben Koetter, Marc Schiffbauer Aufsichtsratsvorsitzender: Florian Kirstein

Re: Evangelizing DNSSEC and DANE

2014-05-24 Thread Patrick Ben Koetter

sttls-finger: Verified TLS connection established to mx2.bund.de[77.87.228.110]:25: TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits) p@rick -- [*] sys4 AG https://sys4.de, +49 (89) 30 90 46 64 Franziskanerstraße 15, 81669 München Sitz der Gesellschaft: München, Amtsgericht München: HRB 199263 Vorstand: Patrick Ben Koetter, Marc Schiffbauer Aufsichtsratsvorsitzender: Florian Kirstein

Re: Multilayer mail handling

2014-05-26 Thread Patrick Ben Koetter

r Gesellschaft: München, Amtsgericht München: HRB 199263 Vorstand: Patrick Ben Koetter, Marc Schiffbauer Aufsichtsratsvorsitzender: Florian Kirstein

Re: Milter to block registrars

2014-05-27 Thread Patrick Ben Koetter

e to block them using check_sender_ns_access and/or check_sender_mx_access in Postfix. p@rick -- [*] sys4 AG https://sys4.de, +49 (89) 30 90 46 64 Franziskanerstraße 15, 81669 München Sitz der Gesellschaft: München, Amtsgericht München: HRB 199263 Vorstand: Patrick Ben Koet

Re: Some sasl_username fqdn, others domain name only - how to control?

2014-07-10 Thread Patrick Ben Koetter

o domain, the login shows sasl_username with fqdn. Look into $smtpd_sasl_local_domain. p@rick -- [*] sys4 AG https://sys4.de, +49 (89) 30 90 46 64 Franziskanerstraße 15, 81669 München Sitz der Gesellschaft: München, Amtsgericht München: HRB 199263 Vorstand: Patrick Ben Koetter, Marc Schiffbauer Aufsichtsratsvorsitzender: Florian Kirstein

warning: dane configured, but no requisite library support

2014-07-28 Thread Patrick Ben Koetter

l.so.10 -> libssl.so.1.0.1e -- [*] sys4 AG https://sys4.de, +49 (89) 30 90 46 64 Franziskanerstraße 15, 81669 München Sitz der Gesellschaft: München, Amtsgericht München: HRB 199263 Vorstand: Patrick Ben Koetter, Marc Schiffbauer Aufsichtsratsvorsitzender: Florian Kirstein

Re: warning: dane configured, but no requisite library support

2014-07-28 Thread Patrick Ben Koetter

* Wietse Venema : > Patrick Ben Koetter: > > Greetings, > > > > I am experiencing troubles enabling outbound DANE on a RHEL 6.5 system: > > > > warning: sys4.de: dane configured, but no requisite library support > > > > <http://postfix.107166

Re: warning: dane configured, but no requisite library support

2014-07-28 Thread Patrick Ben Koetter

* Patrick Ben Koetter : > * Wietse Venema : > > Patrick Ben Koetter: > > > Greetings, > > > > > > I am experiencing troubles enabling outbound DANE on a RHEL 6.5 system: > > > > > > warning: sys4.de: dane configured, but no requisite l

Re: warning: dane configured, but no requisite library support

2014-07-28 Thread Patrick Ben Koetter

* li...@rhsoft.net : > > Am 28.07.2014 14:03, schrieb Patrick Ben Koetter: > > * Patrick Ben Koetter : > >> * Wietse Venema : > >>> Patrick Ben Koetter: > >>>> Greetings, > >>>> > >>>> I am experiencing troubles enablin

Re: warning: dane configured, but no requisite library support

2014-07-28 Thread Patrick Ben Koetter

* Viktor Dukhovni : > On Mon, Jul 28, 2014 at 10:44:04AM +0200, Patrick Ben Koetter wrote: > > Greetings, > > > > I am experiencing troubles enabling outbound DANE on a RHEL 6.5 system: > > > > warning: sys4.de: dane configured, but no requisite library

Individual smtpd_tls_ask_ccert?

2014-07-29 Thread Patrick Ben Koetter

: Patrick Ben Koetter, Marc Schiffbauer Aufsichtsratsvorsitzender: Florian Kirstein

SOLVED: Re: warning: dane configured, but no requisite library support

2014-07-29 Thread Patrick Ben Koetter

* Patrick Ben Koetter : > * Viktor Dukhovni : > > On Mon, Jul 28, 2014 at 10:44:04AM +0200, Patrick Ben Koetter wrote: > > > Greetings, > > > > > > I am experiencing troubles enabling outbound DANE on a RHEL 6.5 system: > > > > > > warni

Re: Individual smtpd_tls_ask_ccert?

2014-07-29 Thread Patrick Ben Koetter

* Viktor Dukhovni : > On Tue, Jul 29, 2014 at 02:54:29PM +0200, Patrick Ben Koetter wrote: > > > IIRC smtpd_tls_ask_ccert should not be enabled on publicly referenced MTAs, > > because there are enough MTAs out there unable to handle client certificate > > requests from

Re: Individual smtpd_tls_ask_ccert?

2014-07-29 Thread Patrick Ben Koetter

* Wietse Venema : > Patrick Ben Koetter: > > IIRC smtpd_tls_ask_ccert should not be enabled on publicly referenced MTAs, > > because there are enough MTAs out there unable to handle client certificate > > requests from a server they connect to. > > Is this still

Re: EFF STARTTLS Everywhere project

2014-07-29 Thread Patrick Ben Koetter

German ISPs coming soon... p@rick -- [*] sys4 AG https://sys4.de, +49 (89) 30 90 46 64 Franziskanerstraße 15, 81669 München Sitz der Gesellschaft: München, Amtsgericht München: HRB 199263 Vorstand: Patrick Ben Koetter, Marc Schiffbauer Aufsichtsratsvorsitzender: Florian Kirstein

Re: EFF STARTTLS Everywhere project

2014-07-29 Thread Patrick Ben Koetter

* Patrick Ben Koetter : > * Viktor Dukhovni : > > On Tue, Jul 29, 2014 at 03:57:24PM +0200, Per Thorsheim wrote: > > > > > I don't know if this list is aware of this project? > > > > > > https://github.com/EFForg/starttls-everywhere > > > &

Re: Individual smtpd_tls_ask_ccert?

2014-07-29 Thread Patrick Ben Koetter

revent MiTM attacks, rather > we can only detect their absense in some cases and perhaps grant > the client greater access. Correct me if I am wrong: Client-side DANE and/or ccert fingerprint matching would be apt to prevent MiTM attacks. p@rick -- [*] sys4 AG https://sys4.de, +49 (89) 30 90 46 64 Franziskanerstraße 15, 81669 München Sitz der Gesellschaft: München, Amtsgericht München: HRB 199263 Vorstand: Patrick Ben Koetter, Marc Schiffbauer Aufsichtsratsvorsitzender: Florian Kirstein

Re: Individual smtpd_tls_ask_ccert?

2014-07-30 Thread Patrick Ben Koetter

* Viktor Dukhovni : > On Tue, Jul 29, 2014 at 11:59:41PM +0200, Patrick Ben Koetter wrote: > > > > Which brings us back to the key question, what is the real motivation > > > for this? Preventing HELO forgery? Making TLS access control easier > > > to use (with

Re: SASL authentication failure: cannot connect to saslauthd server

2014-08-12 Thread Patrick Ben Koetter

Either run smtpd not chrooted or place saslauthd's socket in Postfix chroot. Modify OPTIONS at the end of /etc/default/saslauthd in order to do so. Use the new socket path also in testsaslauthd testing. p@rick -- [*] sys4 AG https://sys4.de, +49 (89) 30 90 46 64 Franzisk

Re: SASL authentication failure: cannot connect to saslauthd server

2014-08-12 Thread Patrick Ben Koetter

; -o smtpd_client_restrictions=permit_sasl_authenticated,reject > -o milter_macro_daemon_name=ORIGINATING > > > > > On Aug 12, 2014, at 7:41 PM, Patrick Ben Koetter wrote: > > > * nico...@devels.es : > >> El 2014-08-12 22:29, pavel degtiarev escribió: >

Re: SASL authentication failure: cannot connect to saslauthd server

2014-08-12 Thread Patrick Ben Koetter

* li...@rhsoft.net : > > > Am 13.08.2014 um 01:52 schrieb Patrick Ben Koetter: > > * pavel degtiarev : > >> I checked that as well: > >> > >> ls -ld /proc/1831/root > >> lrwxrwxrwx 1 root root 0 Aug 12 17:14 /proc/1831/root -> / > &

Re: Request help with SASL issue and postfix

2014-08-16 Thread Patrick Ben Koetter

relocated > -rw-r- 1 root wheel 44 Aug 15 10:56 sasl_passwd > -rw-r- 1 root wheel 16384 Aug 15 12:18 sasl_passwd.db > -rw-r--r-- 1 root wheel 12549 Feb 8 2014 transport > -rw-r--r-- 1 root wheel 12494 Feb 8 2014 virtual > > Rich Cook > wealthyc...@gmail.com > > -- > If you don't laugh enough, you might have humorrhoids, which is an > enlargement of the onus, and the only thing you can pass then is heavy > judgment. -- Swami Beyondananda > > > > > -- [*] sys4 AG https://sys4.de, +49 (89) 30 90 46 64 Franziskanerstraße 15, 81669 München Sitz der Gesellschaft: München, Amtsgericht München: HRB 199263 Vorstand: Patrick Ben Koetter, Marc Schiffbauer Aufsichtsratsvorsitzender: Florian Kirstein

Re: SMTP-AUTH with crypt passwords in SQL backend

2008-07-28 Thread Patrick Ben Koetter

* Juan Miscaro <[EMAIL PROTECTED]>: > Hi everybody, > > I have STARTTLS, SMTP-AUTH, and SASL running with cleartext passwords > in a SQL backend for a while now. I am trying to switch over from > cleartext to crypt in terms of my passwords stored in MySQL. I have > things running for IMAP with c

Re: SMTP authentication against LDAP

2008-08-11 Thread Patrick Ben Koetter

* Alejandro Cabrera Obed <[EMAIL PROTECTED]>: > Dear folks, > > I have a Postfix mail server and I want to perform SMTP authentication > mail client with user/pass from a LDAP server, over TLS. > > In Postfix's main.cf I have this: ... > What are the SMTP AUTH lines in order to perform the SMTP

Re: Password Authentication in Postfix

2008-08-13 Thread Patrick Ben Koetter

* R Pradeepa <[EMAIL PROTECTED]>: > Can I enable password authentication in postfix even if the client is > not having cyrus sasl. Please advice. Because using script programs Cyrus SASL is not necessarily required in the client to use SMTP AUTH. Postfix requires either Cyrus SASL or Dovecot S

Re: Postfix with SASL Authentication against LDAP

2008-08-14 Thread Patrick Ben Koetter

* Alejandro Facultad <[EMAIL PROTECTED]>: >>> apt-get install sasl2-bin libsasl2-modules >>> >>> /etc/default/saslauthd: >>> START=yes >>> MECHANISMS="ldap" >>> MECH_OPTIONS="" >>> THREADS=5 >>> OPTIONS="-c -m /var/spool/postfix/var/run/saslauthd" >>> >>> /etc/saslauthd.conf: >>> ldap_servers: ldap

Re: Unable to download mails

2008-08-14 Thread Patrick Ben Koetter

* sharad kanekar <[EMAIL PROTECTED]>: > I configured Postfix on CentOS 5.2 and try to download mails using fetchmail > but facing problems .Please help me to rectify the problem. Thanks in > advance. Postfix is a SMTP server. It transports mail to mailboxes and remote servers, but it does not deli

Re: SASL query

2008-08-14 Thread Patrick Ben Koetter

* punit jain <[EMAIL PROTECTED]>: > Hi All, > > I have a query on SASL mechanism. > > I have enabled 3 mechanisms and that can be seen as : - > > ehlo localhost > 250-proxy.test.com > 250-PIPELINING > 250-SIZE 1024 > 250-VRFY > 250-ETRN > 250-STARTTLS > 250-AUTH LOGIN CRAM-MD5 PLAIN > 250-AU

Re: postfix + ldap, out of ideas

2008-08-14 Thread Patrick Ben Koetter

* Michael De Groote <[EMAIL PROTECTED]>: > hi all > > I've setup ldap so local users and their corresponding samba parts are > stored in it (well, the samba part still needs to be done, but that is on of > the objectives, and i have that part already working on another machine), as > well as mail

Re: SASL query

2008-08-15 Thread Patrick Ben Koetter

* punit jain <[EMAIL PROTECTED]>: > Hi Patrick, > > I was going through link > http://postfix.state-of-mind.de/patrick.koetter/smtpauth/smtp_auth_mailclients.html > > " It appears that clients try authentication methods in the order as > advertised by the server (e.g., PLAIN ANONYMOUS CRAM-MD5) w

Re: LDAP admin, schema for Postfix (and Dovecot)?

2008-08-16 Thread Patrick Ben Koetter

* Ethariel <[EMAIL PROTECTED]>: > Hello Ville, > > understanding with some difficulty :-) is LDAP. I have two questions: > > those of you who use LDAP as a back-end, what tools do you use to > > manage the entries, and what schema do you use to store Postfix > > (including virtual domain) account

Re: SASL query

2008-08-16 Thread Patrick Ben Koetter

* Wietse Venema <[EMAIL PROTECTED]>: > Patrick Ben Koetter: > > A reasonable setting is: > > > > smtpd_sasl_security_options = noanonymous > > > > This allows any available mechanism except for anonymous, as it is highly > > exploitable in the contex

Re: SASL problem

2008-08-18 Thread Patrick Ben Koetter

* punit jain <[EMAIL PROTECTED]>: > HI All, > > I have postfix server running and have configured sasl. I have configured > SASL but i could see : - > > telnet 0.0.0.0 25 > Trying 0.0.0.0... > Connected to 0.0.0.0. > Escape character is '^]'. > 220 mail.example.com ESMTP Postfix > ehlo irfan > 25

Re: Why is this hostname failing?

2008-08-20 Thread Patrick Ben Koetter

* John Baker <[EMAIL PROTECTED]>: > Hi, > > I user reported mail not getting to him from somebody and I found this > in the log: > > NOQUEUE: reject: RCPT from bmmail.cwf.org[216.54.2.34]: 504 : > Helo command rejected: need fully-qualified hostname; > from=<[EMAIL PROTECTED]> to=<[EMAIL PROT

Re: bounce delivery report

2008-08-26 Thread Patrick Ben Koetter

* Stefan Palme <[EMAIL PROTECTED]>: > Hi all, > > when postfix creates a bounce message, a "Delivery report" will be > attached describing the problem. > > Is it possible to modify the format of this delivery report, > e.g. adding a line to it?

Re: ASSP - POSTFIX - pop-before-smtp

2008-09-18 Thread Patrick Ben Koetter

* Marcel Grandemange <[EMAIL PROTECTED]>: > However had one problem. you have two problems. ;) Please follow these instructions to get advice on the list: [EMAIL PROTECTED] -- All technical answers asked privately will be automatically answered o

Re: Client Trouble with SASL AUTH

2008-09-20 Thread Patrick Ben Koetter

* Drew Tomlinson <[EMAIL PROTECTED]>: > Here's the same session with the Postfix smtp client with smtp -v set in > master.cf: > > --- BEGIN --- > > Sep 20 07:48:17 blacklamb postfix/smtp[8558]: smtp_connect_addr: trying: > smtpauth.surewest.net[66.60.130.153] port 25... > Sep 20 07:48:17 blackl

Re: Client Trouble with SASL AUTH

2008-09-20 Thread Patrick Ben Koetter

* Sahil Tandon : > Drew Tomlinson <[EMAIL PROTECTED]> wrote: > > > My ISP has implemented SASL AUTH on its smtp server. Thus I now have to > > setup my postfix client to provide login information. I've read the docs > > and added the relevant lines to my main.cf file. > > > > The SASL AUTH par

Re: Client Trouble with SASL AUTH

2008-09-21 Thread Patrick Ben Koetter

* Drew Tomlinson <[EMAIL PROTECTED]>: > Thank you both so much for your help. This was the problem - well, part > of it anyway. After setting the above, I could see that authentication > was failing. I could also see that Postfix was choosing CRAM-MD5. I > knew from prior testing that met

Re: Trouble setting up SASL authentication with postfix

2008-10-02 Thread Patrick Ben Koetter

* Lists <[EMAIL PROTECTED]>: >>> Not sure if this is the right place to post, apologies if it is not. >>> >>> This is my first MailScanner / Postfix install - on CentOS 5.2 >>> >>> I have attempted to setup the smtp authentication using SASL >>> following various tutorials. >>> When I attempted to

Re: Trouble setting up SASL authentication with postfix

2008-10-02 Thread Patrick Ben Koetter

to pick up mail (POP/IMAP). Almost all clients support an optional switch that will let the client reuse these credentials for SMTP Authentication. Use the same password backend for SMTP/POP/IMAP. [EMAIL PROTECTED] > > Kate > > Patrick Ben Koetter wrote: >> * Lists <[EMAIL P

Re: Trouble setting up SASL authentication with postfix

2008-10-03 Thread Patrick Ben Koetter

e mechanisms that are used in combination with those backends and what these mechanisms require. [EMAIL PROTECTED] > I am running MailScanner, Postfix, Spamassassin. > > > > Patrick Ben Koetter wrote: >> * Lists <[EMAIL PROTECTED]>: >> >>> Hi Patric

Re: saslfinger output, was Re: postfix hangs when SASL enabled

2008-10-11 Thread Patrick Ben Koetter

* Travis <[EMAIL PROTECTED]>: > On Fri, Oct 10, 2008 at 03:43:09PM -0500, Travis wrote: > > Closer... now Thunderbird prompts for my password over and over, but I've > > set it properly. > > What's the meaning of: > > Oct 10 22:40:55 lexus postfix/smtpd[13983]: warning: SASL authentication > fai

Re: problems authenticating

2008-10-27 Thread Patrick Ben Koetter

* Vince LaMonica <[EMAIL PROTECTED]>: > First off the problem: setting up a new server with Ubuntu 8.04; hand > compiling everything. Old server was Ubuntu 6.06 with hand-compiled > Postfix 2.4.6. For the new server, I did a fresh install of 2.5.5. > Apparently I'm missing something in the re

Re: problems authenticating

2008-10-27 Thread Patrick Ben Koetter

* Vince LaMonica <[EMAIL PROTECTED]>: > [i wrote:] > } > /etc/default/saslauthd: > } > > } > START=yes > } > DESC="SASL Authentication Daemon" > } > NAME="saslauthd" > } > MECHANISMS="shadow" > } > MECH_OPTIONS="" > } > THREADS=5 > } > OPTIONS="-c -m /var/spool/postfix/var/run/saslauthd" > > } You

Re: Books on Postfix

2008-10-31 Thread Patrick Ben Koetter

* kj <[EMAIL PROTECTED]>: > Victor Duchovni wrote: >> On Mon, Oct 27, 2008 at 07:50:07PM +, kj wrote: >> >> Next edition of which book? >> >> > Ralph and Patrick's book :) > > The Book Of Postfix: http://www.postfix-book.com We are working on a new edition as I write. Yet, things are still

Null Sender <> RFC?

2008-11-19 Thread Patrick Ben Koetter

I was looking for a (current) RFC section that says SMTP servers MUST accept messages sent by the null sender "<>", but almost all I found were references that say notifications MUST be sent as null sender. That in turn might mean a server must accept such senders, but I'd rather see that written

Re: Authentication failure with auxprop and sasldb2 plugin

2008-11-19 Thread Patrick Ben Koetter

* Ann Onemouse <[EMAIL PROTECTED]>: > Hello, all. > > I am having a problem getting postfix to authenticate users with Cyrus- > SASL's 'auxprop' method and the 'sasldb2' internal user database. The > system is question is a freshly-installed CentOS 5.2 server with Cyrus- > SASL version 2.1.22.

Re: Null Sender <> RFC?

2008-11-19 Thread Patrick Ben Koetter

* Victor Duchovni : > On Wed, Nov 19, 2008 at 08:26:10PM +0100, Patrick Ben Koetter wrote: > > > I was looking for a (current) RFC section that says SMTP servers MUST accept > > messages sent by the null sender "<>", but almost all I found were > > refer

Re: SMTP Authentication Question

2008-12-14 Thread Patrick Ben Koetter

* Payne : > I am a bit slow on this, I got a client that won't let me change the way > mail working, but they want me to set up SMTP Authentication. How can I They want your mailserver to send SMTP Authentication data to their server? > do it so it work without cyrus or dovecot. I question wh

RFC 5233 "Subaddresses" and LDAP lookups

2023-01-11 Thread Patrick Ben Koetter

ailed to come up with a query_filter that would actually do what I want. -- [*] sys4 AG https://sys4.de, +49 (89) 30 90 46 64 Schleißheimer Straße 26/MG,80333 München Sitz der Gesellschaft: München, Amtsgericht München: HRB 199263 Vorstand: Patrick Ben Koetter, Marc Schiffbauer, Wolfgang

Re: RFC 5233 "Subaddresses" and LDAP lookups

2023-01-11 Thread Patrick Ben Koetter

* Viktor Dukhovni : > On Wed, Jan 11, 2023 at 03:57:28PM +0100, Patrick Ben Koetter wrote: > > > Today I ran into a lookup problem where a sender (!) was using the RFC 5233 > > subaddress schema so send a message e.g. as localpart+subaddress@domainpart > > and lookups with

Re: Unable to send mail via "smtp.office365.com"

2019-12-08 Thread Patrick Ben Koetter

ft: München, Amtsgericht München: HRB 199263 Vorstand: Patrick Ben Koetter, Marc Schiffbauer, Wolfgang Stief Aufsichtsratsvorsitzender: Florian Kirstein

ANN: dkimpy-milter ansible role

2020-01-04 Thread Patrick Ben Koetter

he projects issue tracker located at <https://github.com/sys4/dkimpy-role/issues>. p@rick -- [*] sys4 AG https://sys4.de, +49 (89) 30 90 46 64 Schleißheimer Straße 26/MG,80333 München Sitz der Gesellschaft: München, Amtsgericht München: HRB 199263 Vorstand: Patrick Ben Koetter, Marc Schi

Problems with milter_default_action = accept

2020-01-10 Thread Patrick Ben Koetter

nchen: HRB 199263 Vorstand: Patrick Ben Koetter, Marc Schiffbauer, Wolfgang Stief Aufsichtsratsvorsitzender: Florian Kirstein

Re: saslauthd problem

2020-04-20 Thread Patrick Ben Koetter

die.net/man/8/testsaslauthd Alternative: Use dovecot as password verification service and let it do the SQL queries. p@rick -- [*] sys4 AG https://sys4.de, +49 (89) 30 90 46 64 Schleißheimer Straße 26/MG,80333 München Sitz der Gesellschaft: München, Amtsgericht München: HRB 1992

Re: Untrusted TLS connection appearing in logs

2020-07-16 Thread Patrick Ben Koetter

ns. In order to also see 'verified' connections add DANE config to all outgoing mail (read: Postfix smtp-client). p@rick -- [*] sys4 AG https://sys4.de, +49 (89) 30 90 46 64 Schleißheimer Straße 26/MG,80333 München Sitz der Gesellschaft: München, Amtsgericht München: HRB 199263 Vorstand: Pat

Re: Recommended milters for small setup

2020-10-15 Thread Patrick Ben Koetter

lients away from rspamd and that prevents it from learning and becoming more efficient. p@rick -- [*] sys4 AG https://sys4.de, +49 (89) 30 90 46 64 Schleißheimer Straße 26/MG,80333 München Sitz der Gesellschaft: München, Amtsgericht München: HRB 199263 Vorstand: Patrick B

Re: any success with postfix + dkimpy-milter outbound DKIM signing -- with ed25519 keys?

2020-10-26 Thread Patrick Ben Koetter

de, +49 (89) 30 90 46 64 Schleißheimer Straße 26/MG,80333 München Sitz der Gesellschaft: München, Amtsgericht München: HRB 199263 Vorstand: Patrick Ben Koetter, Marc Schiffbauer, Wolfgang Stief Aufsichtsratsvorsitzender: Florian Kirstein

Re: any success with postfix + dkimpy-milter outbound DKIM signing -- with ed25519 keys?

2020-10-26 Thread Patrick Ben Koetter

* PGNet Dev : > On 10/26/20 4:19 AM, Patrick Ben Koetter wrote: > > There's only *one* SigningTable, but there are two KeyTables – one for rsa > > and > > the other one for ed25519. Maybe you are using an older version of > > dkimpy-milter. IIRC it had a related

Re: How do you manage the ‘hold’ queue?

2021-01-25 Thread Patrick Ben Koetter

e to send (release) commands to and comes with a script to do it manually on the command line. p@rick -- [*] sys4 AG https://sys4.de, +49 (89) 30 90 46 64 Schleißheimer Straße 26/MG,80333 München Sitz der Gesellschaft: München, Amtsgericht München: HRB 199263 Vorstand: Patrick Ben Koette

FYI: ArchLinux modularizes Postfix packages (Arch Users should read this)

2021-03-01 Thread Patrick Ben Koetter

done. HTH! p@rick -- [*] sys4 AG https://sys4.de, +49 (89) 30 90 46 64 Schleißheimer Straße 26/MG,80333 München Sitz der Gesellschaft: München, Amtsgericht München: HRB 199263 Vorstand: Patrick Ben Koetter, Marc Schiffbauer, Wolfgang Stief Aufsichtsratsvorsitzender: Florian Kirstein

Re: Opendmarc in after-Amavis smtpd fails

2021-04-15 Thread Patrick Ben Koetter

his should probably go to the amavis mailing list. p@ -- [*] sys4 AG https://sys4.de, +49 (89) 30 90 46 64 Schleißheimer Straße 26/MG,80333 München Sitz der Gesellschaft: München, Amtsgericht München: HRB 199263 Vorstand: Patrick Ben Koetter, Marc Schiffbauer, Wolfgang Stief Aufsichtsratsvorsitzende

Re: "stopped working"

2015-08-23 Thread Patrick Ben Koetter

d@localhost ~]$ > > That's there is no response to "EHlo" command. > > Logs are not say much at all, possibly because I'm locking at the > wrong logs. Any thoughts on what might have happened here? > > /Martin S -- [*] sys4 AG https://sys4.de, +49 (89

Postfix 3.x for RedHat/CentOS 7.x

2015-09-05 Thread Patrick Ben Koetter

: Patrick Ben Koetter, Marc Schiffbauer Aufsichtsratsvorsitzender: Florian Kirstein

Re: Postfix 3.x for RedHat/CentOS 7.x

2015-09-05 Thread Patrick Ben Koetter

Steve, * Steve Jenkins : > 2015-09-05 11:07 GMT-07:00 Patrick Ben Koetter : > > > is there anyone who knows a download location of Postfix 3.x packages for > > RedHat/CentOS 7.x? > > > Hi, Patrick. It's painless to build from source on RHEL 7.x. I keep this &

Re: Postfix 3.x for RedHat/CentOS 7.x

2015-09-05 Thread Patrick Ben Koetter

* Viktor Dukhovni : > On Sat, Sep 05, 2015 at 08:21:55PM +0200, Patrick Ben Koetter wrote: > > > for the moment I am still searching for RPMs. You're right! If I need to > > work > > around the packages, your tutorial will give me what I need within minutes. >

Re: Can Postscreen and Smapassassin be used together

2015-09-10 Thread Patrick Ben Koetter

lems you face and we can start sharing ideas and concepts. p@rick -- [*] sys4 AG https://sys4.de, +49 (89) 30 90 46 64 Franziskanerstraße 15, 81669 München Sitz der Gesellschaft: München, Amtsgericht München: HRB 199263 Vorstand: Patrick Ben Koetter, Marc Schiffbauer Aufsichtsratsvorsitzender: Florian Kirstein

postmulti woes

2015-09-23 Thread Patrick Ben Koetter

tps://sys4.de, +49 (89) 30 90 46 64 Franziskanerstraße 15, 81669 München Sitz der Gesellschaft: München, Amtsgericht München: HRB 199263 Vorstand: Patrick Ben Koetter, Marc Schiffbauer Aufsichtsratsvorsitzender: Florian Kirstein

postmulti woes: Invalid 'delete' option suggested as option in output

2015-09-24 Thread Patrick Ben Koetter

ice in the back of my head keeps telling me 'delete' was replaced by 'destroy' during the development of multiple instances. Maybe the 'delete' option wasn't removed from the output. p@rick -- [*] sys4 AG https://sys4.de, +49 (89) 30 90 46 64 Franziskanerstraße 15, 81669 München Sitz der Gesellschaft: München, Amtsgericht München: HRB 199263 Vorstand: Patrick Ben Koetter, Marc Schiffbauer Aufsichtsratsvorsitzender: Florian Kirstein

Re: postmulti woes

2015-09-24 Thread Patrick Ben Koetter

* Viktor Dukhovni : > On Thu, Sep 24, 2015 at 08:52:45AM +0200, Patrick Ben Koetter wrote: > > > Yesterday I ran into a situation where I tried to create a new postfix > > instance, but the *.proto files where missing (i.e. they were there, but in > > the wrong place): >

Re: no SASL authentication mechanisms

2015-10-11 Thread Patrick Ben Koetter

49 (89) 30 90 46 64 Franziskanerstraße 15, 81669 München Sitz der Gesellschaft: München, Amtsgericht München: HRB 199263 Vorstand: Patrick Ben Koetter, Marc Schiffbauer Aufsichtsratsvorsitzender: Florian Kirstein

Re: no SASL authentication mechanisms

2015-10-11 Thread Patrick Ben Koetter

* niya levi : > > > On 11/10/15 11:49, Patrick Ben Koetter wrote: > > * niya levi : > >> nano /etc/dovecot/dovecot.conf > >> > >> service auth { > >> unix_listener /var/spool/postfix/private/auth { > >> group = postfix > &g

< 1 2 3 4 5 6 7 >

401 - 500 of 638 matches

Mail list logo