[00:00:22] <frb-work> does whitespace matter when sending a Content-Transfer-Encoding: base64 mail?
[00:02:38] <frb-work> 250 <BAY0-MC5-F3dDAO2Rpy001c34a5 at bay0-mc5-f3 dot bay0.hotmail.com> Queued mail for delivery
[00:02:48] <frb-work> that looks like a successful mail right?
[00:07:34] <L0RDzx> how to i get rbl update ?\\\\\\\\\\\\\\\\\\\
[00:10:23] <hparker> frb-work: Looks right to me
[00:10:34] <hparker> L0RDzx: rbl update?
[00:10:39] <frb-work> great, too bad it didn't work :/
[00:11:19] <hparker> frb-work: hotmail is known for dropping mail on the floor, good luck
[00:11:31] <frb-work> it's dropping EVERY mail on the floor from this machine
[00:11:47] <frb-work> and I can't tell why, as you can see everything from my end looks perfect
[00:12:01] <frb-work> but it never appears in the rcpt account
[00:12:13] <hparker> Ask postmaster at hotmail dot com :P
[00:12:26] <hparker> As I said, good luck
[00:12:31] <frb-work> I'm going through the bullshit on postmaster.msn.com first
[00:17:31] <rob0> I had Hotmail dropping some of mine too. Perfect FCrDNS, delegated netspace, no spam and no RBL listings. No reason a sane system would suspect me of spam.
[00:17:41] <rob0> My crime? BCC's.
[00:18:47] *** Mazon is now known as mazon
[00:21:09] *** Motoko-chan has joined #postfix
[00:22:20] <hparker> Ouch!
[00:22:28] *** Ryushin has quit IRC
[00:39:17] *** Edgeman has quit IRC
[00:42:36] *** master_of_master has joined #postfix
[00:48:23] *** tminos has quit IRC
[00:49:18] <Gokee2> How can I dump my mailq?
[00:49:51] <xpoint> postsuper -r ALL && postfix reload
[00:50:30] <xpoint> did you mean to delete all ?
[00:50:42] *** frb-work has quit IRC
[00:50:49] <Gokee2> They are still there
[00:50:50] <Gokee2> ya
[00:50:54] <Gokee2> Get ride of them
[00:50:59] <Gokee2> rid*
[00:51:04] <Gokee2> delete them
[00:51:25] <xpoint> postsuper -d ALL && postfix reload
[00:52:32] <Gokee2> Ah thanks :)
[00:53:15] <xpoint> np problem, this is just a command i newer my self use :)
[00:53:18] *** master_o1_master has quit IRC
[00:56:33] *** tminos has joined #postfix
[01:16:31] *** meandtheshell has quit IRC
[01:47:54] *** djs_2_6 has joined #postfix
[01:48:56] *** xpoint has quit IRC
[02:11:15] *** Fullmoon has joined #postfix
[02:22:13] *** jaj has joined #postfix
[02:27:03] <jaj> Hi!
[02:29:10] <jaj> I'd like to set up postfix so that sasl authenticated users can send mail that is relayed to any host but non-authenticated users can only send mail to $mydestination
[02:29:54] <jaj> Just the basic setup most ISPs are using for their clients' accounts
[02:31:29] <jaj> does anybody have some pointers on this?
[02:34:40] <jaj> the actual users should be able to send outgoing mail to any address whereas other MTAs should only be able to deliver mail that is intented for this host.
[02:41:43] *** Motoko-chan has quit IRC
[02:46:29] *** Fullmoon has quit IRC
[02:47:04] <higuita> jaj: Thats the default...
[02:47:54] <higuita> postfix accept emails to mydestination, to relay emails you need to authenticate (this is the normal setup with sasl)
[02:49:48] <jaj> when you say "normal setup with sasl", do you mean as soon as sasl is compiled in?
[02:50:22] <higuita> its usually setup also to only accept sasl only after tls is enable
[02:51:02] <jaj> yes I have this
[02:51:18] <jaj> however my outgoing mail gets rejected
[02:51:33] <jaj> "Relay access denied"
[02:51:52] <jaj> even when I authenticated properly
[02:52:24] <jaj> here's the content of my main.cf: http://rafb.net/p/LPLLEP94.html
[02:55:59] <jaj> Relay access denied; from=<jaj at vs155129 dot vserver.de> to=<jona at grummel dot net> proto=ESMTP helo=<localhost>
[02:59:43] <jaj> and it only accepts mails for mydestination if I authenticate
[03:00:22] <higuita> jaj: is that your only things in the main.cf?
[03:00:40] *** pirho has quit IRC
[03:00:42] <higuita> the problem is in the *_restrictions
[03:01:10] <higuita> smtpd_recipient_restrictions =
[03:01:11] <higuita>         #warn_if_reject, reject
[03:01:13] <higuita>         reject_non_fqdn_sender,
[03:01:14] <higuita>         reject_non_fqdn_recipient,
[03:01:16] <higuita>         sleep 1, reject_unauth_pipelining,
[03:01:19] <higuita>         reject_unknown_sender_domain,
[03:01:21] <higuita>         permit_sasl_authenticated,
[03:01:22] <higuita>         permit_mynetworks,
[03:01:25] <higuita>         reject_unauth_destination,
[03:01:36] <jaj> that's all I have in my main.cf
[03:04:48] <jaj> there is no rule for the *_restrictions that really matches my case I think
[03:04:56] <higuita> after this you and you have something like permit_auth_destination in the end of the checks? (or even a simple permit)
[03:05:18] <higuita> do postconf -n |grep _restrictions
[03:05:46] <jaj> it returns nothing
[03:05:54] <jaj> vs155129:~# postconf -n | grep _restrictions
[03:05:54] <jaj> vs155129:~#
[03:06:16] *** Tachy_ has joined #postfix
[03:07:04] <higuita> do postconf |grep _restrictions
[03:07:16] <higuita> and check the defaults _restrictions
[03:08:10] *** rmayorga has quit IRC
[03:08:22] <higuita> you probably need to add a new one, probably the default isnt allowing the sasl and normal delivery
[03:08:28] <jaj> they are set to the defaults: http://rafb.net/p/8yTLyz80.html
[03:09:54] <ptomter> first I had set all the mail to come to /var/mail/"username/ know I want to move this mail to another folder but I cant get in to /var/mail/"username/
[03:10:50] <higuita> jaj: sorry, but something is missing... that config the sasl from a nom-mynetworks IP will not work, and any email to your destination would work...
[03:11:10] <higuita> arent you using 2 postfix instances? did you reload postfix?
[03:13:42] <jaj> no really I assure you, I assure you there's nothing in my main.cf expect what I showed you. I did restart postfix and I only how one running
[03:14:44] <jaj> I'll try with smtpd_recipient_restrictions = permit_mynetworks, permit_sasl_authenticated, reject_unauth_destination
[03:14:49] <higuita> ptomter: sorry, but i dont really understand what you want/said... 8)
[03:16:40] <higuita> jaj: check also the master.cf to see if there isnt a manual change in there
[03:18:01] <jaj> there shouldn't be as it is a fresh install but I'll check
[03:18:19] *** Tachy has quit IRC
[03:18:23] <ptomter> First i had only spool directory set to : /var/mail as standard then I also putted a Home -relative pathname of user mamilbox file like Maildir/
[03:18:42] <ptomter> but when I know login to my mail all the old e-mail are gone
[03:20:54] <jaj> hooray, it seems to work now :)
[03:21:16] <jaj> it seems like it was the permit_sasl_authenticated that was missing
[03:22:23] <higuita> ptomter: you have to requeue all the old email (IIRC formail is your friend, search in google for it) or setup a imap to open that old folder and move the emails in the email client to the new folders
[03:22:42] <higuita> after this, you can remove the imap or just point it to the new location
[03:28:25] *** js__ has joined #postfix
[03:28:28] *** js_ has quit IRC
[03:35:27] <jaj> higuita: thanks for your help
[03:37:13] <higuita> you are welcome, glad i could help :)
[03:37:21] <jaj> to who it might interest: I just read the Boris Yeltsin died today :)
[03:37:24] *** magyar has joined #postfix
[03:37:27] <jaj> bye!
[03:37:28] <ptomter> I cant find IIRC formail any where
[03:37:49] <jaj> ptomter, IIRC == if I remember correctly ;)
[03:38:11] *** jaj has quit IRC
[03:41:08] <higuita> 8)
[03:42:04] <higuita> formail is a program from procmail, IIRC (ie: i'm not sure about this, try it and if it isnt, search in google)
[03:42:40] *** djs_2_6 has quit IRC
[03:44:35] *** Zeit|awy has quit IRC
[04:09:44] *** Fullmoon has joined #postfix
[04:09:53] *** hparker has quit IRC
[04:09:58] *** magyar has quit IRC
[04:15:32] *** amrit|wrk is now known as amrit|afk
[04:16:27] *** TheOutlander has joined #postfix
[04:18:38] *** doomas has joined #postfix
[04:21:26] *** Terminator has joined #postfix
[04:24:33] *** magyar has joined #postfix
[04:33:19] *** doomas_ has quit IRC
[04:35:22] *** TheOutlander has quit IRC
[04:57:46] *** rmayorga has joined #postfix
[04:58:57] *** Fullmoon has quit IRC
[05:12:14] *** rmayorga has quit IRC
[05:13:19] *** rmayorga has joined #postfix
[05:35:37] *** amrit|afk is now known as amrit
[05:36:51] *** GMFlash has quit IRC
[05:36:56] *** GMFlash has joined #postfix
[05:43:19] *** zapalotta has quit IRC
[05:43:37] *** zapalotta has joined #postfix
[06:07:14] *** cilly has quit IRC
[06:07:43] *** cilly has joined #postfix
[06:09:50] *** cillybabe has joined #postfix
[06:10:22] *** cilly has quit IRC
[06:14:26] *** Motoko-chan has joined #postfix
[06:22:39] *** AJaymn has joined #postfix
[06:23:45] <AJaymn> Is it possible to set postfix so if a user tries sending Email to it it checks to see if that user is an active user on the system to allow Relay?
[06:24:10] <AJaymn> I have users roaming out on the internet that need to send mail over our SMTP server.
[06:25:22] <seekwill> How do you determine "active user"?
[06:26:00] <AJaymn> an real user in the database?
[06:26:57] <AJaymn> i guess i dont know how to explain it.. i did have one system setup onetime where u had to check ur mail before u could send. verifying you were who u were relaying
[06:31:16] *** bronson has quit IRC
[06:38:25] <AJaymn> if i had atleast 1 user always at the same domain how could i grant them relay?
[06:38:59] <ek> AJaymn: Your best bet would be to install SMTP Auth.
[06:39:23] <ek> It's quite simple. Check the postfixwiki. There are plenty of how-to's.
[06:44:37] *** AJaymn has quit IRC
[06:47:22] *** shadou has joined #postfix
[06:49:47] *** rmayorga has quit IRC
[06:49:52] *** dj-fu has quit IRC
[06:51:14] <seekwill> I bought Ralf H's book. Awesome.
[06:51:59] <Fullmetal-Mavez> who the fook is Ralf H, your boyfriend?
[06:52:27] <seekwill> yes
[07:01:39] *** L0RDzx has left #postfix
[07:05:36] *** puff` has quit IRC
[07:12:09] <rob0> Google "ralf book postfix" should make that rather obvious.
[07:31:57] *** shadou has quit IRC
[07:37:47] *** bronson has joined #postfix
[07:39:00] *** magyar has quit IRC
[07:44:50] *** amrit is now known as amrit|zzz
[07:46:02] *** RockHound has joined #postfix
[08:10:19] *** Mill|OOO is now known as Milligan
[08:12:10] <Motoko-chan> TBOP is great
[08:12:15] *** bronson has quit IRC
[08:12:41] *** Motoko-chan has quit IRC
[08:18:24] *** eltech has quit IRC
[08:18:55] *** eltech has joined #postfix
[08:21:34] *** taube is now known as Taube
[08:22:20] *** eltech has quit IRC
[08:22:49] *** eltech has joined #postfix
[08:30:45] *** pmjdebruijn has joined #postfix
[08:32:02] *** frennkie has joined #postfix
[08:33:08] *** mazon is now known as Mazon
[08:48:38] *** prebur has quit IRC
[08:55:05] *** Milligan has quit IRC
[09:05:14] *** af_ has joined #postfix
[09:06:25] *** ezrataylor has quit IRC
[09:06:35] *** prebur has joined #postfix
[09:07:31] *** milligan has joined #postfix
[09:07:44] *** Zeit|idle has joined #postfix
[09:15:36] *** [miles] has joined #postfix
[09:20:58] *** mayleen has joined #postfix
[09:21:31] <mayleen> i have a local smtp configure on my pc with postfix
[09:21:47] <mayleen> now i want to send mails to externals emails using my local smpt
[09:22:04] <mayleen> but i have conection time out on my queue
[09:22:42] <mayleen> i think that everytime that i send a mail, postfix tried to conect to the smtp of the external address isp
[09:23:04] <mayleen> so i need to know i can i configure send mail to send mails using my smtp no others
[09:23:19] <mayleen> please help me, with an adreess or google key words
[09:30:49] <Signum> mayleen: I'm not sure I understand your problem. You have Postfix installed and want to use it relay all your outgoing email.
[09:31:02] <Signum> mayleen: So Postfix will contact your ISP and send out the email. What does not work in that process?
[09:32:45] <mayleen> can you check my configuration using ssh?
[09:33:01] <mayleen> the emails stay on queue
[09:33:22] <mayleen> and then i have connection time out problems
[09:33:22] *** bostik has joined #postfix
[09:33:33] <mayleen> example, try to send a mail to gmail
[09:33:42] <mayleen> so i have connection time out to gmail.com
[09:34:01] <mayleen> postfix is trying to connect to gmail smtp
[09:34:26] <mayleen> and i dont want that i want postfix to use my local smpt and deliver the mail
[09:34:53] <mayleen> 	delivery temporarily suspended: connect to mx1.hotmail.com[65.54.244.136]: Connection timed out
[09:35:21] *** JoKoT3 has quit IRC
[09:43:38] *** js__ is now known as js_
[09:43:54] *** cutmasta has joined #postfix
[09:51:40] *** Supaplex has quit IRC
[09:59:56] *** af_ has quit IRC
[10:04:44] <milligan> mayleen, that's now how mtas work. You never connect directly to someones inbox .. You connect to their mailserver, and give the email to the server. Once you have given the email to the recieving server, you have done your job, and the recieving server assumes responsibility.
[10:04:57] <milligan> If you are getting timeouts, Im suspecting that your ISP is blocking port 25.
[10:05:06] <milligan> A lot of ISPs do. Quite annoying really.
[10:07:38] <mayleen> so what can i do, if they are blocking this port
[10:07:51] <mayleen> how can hotmail send mails to google
[10:08:10] <mayleen> im not a mail server like hotmail_
[10:08:10] <mayleen> ?
[10:09:02] <mayleen> so if i want to send mail to gmail, i thing gmail uses another port for pop
[10:09:17] <mayleen> and hotmail use another, so what can i do?
[10:09:57] *** xermesx has joined #postfix
[10:10:24] <Signum> mayleen: If they are really blocking the port: get another ISP.
[10:10:50] <Signum> mayleen: Try "telnet mx1.hotmail.com 25" and see if you can get a connection.
[10:12:12] <mayleen> signum i can get another isp, it sopouse to send mails to every user on my website,
[10:12:23] <mayleen> if a user is using hotmail
[10:12:44] <mayleen> then i need to send a mail to that user
[10:12:57] <mayleen> i dont decide my user's isp
[10:17:22] <milligan> mayleen, your isp is blocking outgoing traffic on port 25.
[10:17:22] <Signum> mayleen: So you can send emails everywhere just not to hotmail MXs?
[10:17:45] <milligan> mayleen, do what Signum says. Try opening a telnet session, and type: telnet mx1.hotmail.com 25
[10:17:51] <milligan> Does it say connection timeout or something ?
[10:17:56] <mayleen> i tried and your right
[10:18:04] <mayleen> i cant connect to that port
[10:18:10] <milligan> So you won't be able to run your own mailserver.
[10:18:24] <milligan> You will have to use an external one, or call your isp and have them open the port for you.
[10:18:25] <mayleen> so thats becouse my internet connection?
[10:18:28] <milligan> (Which I doubt they will do)
[10:18:30] <milligan> Yes, it is.
[10:18:31] *** Terminator has quit IRC
[10:18:36] *** TheOutlander has joined #postfix
[10:18:36] <mayleen> lol,
[10:19:03] <mayleen> why my isp block that port?
[10:19:30] <mayleen> what if i want to use outlock or some email client?
[10:19:44] <mayleen> im so angry
[10:20:11] <milligan> You can use outlook, but not your own smtp server.
[10:20:24] <milligan> You would have to define your isp as your outgoing server.
[10:20:43] <milligan> I'm suspecting you can run an incoming mailserver, but not outgoing.
[10:21:04] <mayleen> thats right
[10:21:11] <mayleen> i can recieve mails,
[10:21:27] <milligan> You could have your mailserver relay through your ISPs mailserver.
[10:21:38] <Signum> mayleen: you can ask your ISP if they have a mail relay server. then send all your outgoing mail to that server (hint: postfix setting "relayhost"). that might work.
[10:21:41] <Signum> milligan: :)
[10:22:39] <mayleen> now im trying to use bluebottle.com, but that doesnt work, couse i cant go outside by using 25 port
[10:23:12] <mayleen> there is an external isp that use another port?
[10:23:27] <mayleen> i mean an external smtp provider
[10:24:22] <Signum> No. Ask your ISP if you can relay through them.
[10:25:11] <milligan> By default he should be able to .. I mean, if they block his smtp port, they MUST provide some way of sending. I bet they allow relaying from any host inside their network, meaning he could set his server to relay through their server?
[10:25:58] <mayleen> ic, thank you very much
[10:26:09] *** aluchko has quit IRC
[10:26:24] <milligan> mayleen, http://www.postfix.org/postconf.5.html#relay_transport
[10:27:10] <milligan> mayleen, call your isp, ask them what their smtp address is .. (most likely, smtp.yourispname.tld). While you're at it, tell them that you are going to relay email through them, and double check that it will work.
[10:29:26] <mayleen> nice, thank you very much,
[10:32:02] <milligan> No probs. Good luck :)
[10:32:20] <milligan> Btw, tell your isp they are gay for enforcing their smtp server :)
[10:32:30] <milligan> oooo .. you know what you should do?
[10:32:43] <milligan> Set up your server with an open relay, and send everything through their server.
[10:32:59] <milligan> Spammers will use your server, and your ISPs servers will get banned i RBLs.
[10:33:16] <milligan> When they call you about it, just act all stupid and appologize.
[10:33:35] <milligan> They will be in a world of shit when a gazillion customers call about their emails not working :D
[10:36:11] *** napnap has joined #postfix
[10:36:29] *** napnap has left #postfix
[10:40:02] <f3ew> milligan, I would just disconnect said luser
[10:40:12] <f3ew> (been there, done that)
[10:41:23] *** ashd has quit IRC
[10:41:51] <milligan> Remove his connection you mean ?
[10:42:02] *** ashd has joined #postfix
[10:42:03] <milligan> or his smtp priveleges ?
[10:43:21] *** frennkie has quit IRC
[10:43:36] *** telmich has joined #postfix
[10:43:37] <telmich> hello
[10:43:43] *** frennkie has joined #postfix
[10:43:48] <telmich> how can I start postfix without backgrounding?
[10:44:32] <milligan> Run the binary manually maybe? (Im just guessing)
[10:45:26] <telmich> milligan: well, I just found debugging switches, not a simple "do not fork"
[10:45:47] <telmich> first thought I could tell the postfix-control program not to background, but that does not work
[10:46:01] <telmich> then thought about starting master directly, but this works only with debugging on
[10:47:05] <mayleen> <milligan> the idea is use open rellay just for my local to external delivering, i mean port 25 will not ever aviable from outside,
[10:47:59] <mayleen> lol
[10:49:50] *** ||arifaX has joined #postfix
[10:49:59] <milligan> mayleen, should work
[10:50:34] <||arifaX> hi I am here first time. can I just ask something here?
[10:50:51] <mayleen> thanks again milligan.
[10:51:36] <mayleen> good nite.
[10:51:43] *** mayleen has quit IRC
[10:53:22] *** frennkie has quit IRC
[10:53:36] *** frennkie has joined #postfix
[10:53:47] <f3ew> ||arifaX just ask
[10:54:10] <||arifaX> hi, I set up postfix amavisd-new. postfix is configured and works. all mails then get forwarded to the next gateway. when I send test mails via telnet 127.0.0.1 25 works fine but the recipient gets a mail from me to "undisclosed recipients" so the mai to: is lost. because amavsid is not yet configured I just wan to know it this is a postfix problem or a amavisd misconfiguration before I continue
[10:55:27] <||arifaX> here my postconf http://pastebin.kubuntu-de.org/626
[11:02:47] *** frennkie9093 has joined #postfix
[11:05:53] *** meandtheshell has joined #postfix
[11:11:08] <f3ew> ||arifaX that's because you aren't setting the To: header in the telnet session
[11:11:29] <||arifaX> f3ew: isn't mail to:user at domain dot tld enough??
[11:11:52] *** smesjz has joined #postfix
[11:13:40] <f3ew> no
[11:13:53] <f3ew> the RCPT TO is the envelope
[11:16:13] <||arifaX> f3ew: I did a mail from: rcpt to: data ... is there more?
[11:17:30] <f3ew> You need a To: header in the data
[11:21:40] *** frennkie has quit IRC
[11:21:54] <||arifaX> f3ew: so it seems this system works and will do its job when it gets food from a real mail server or  client?
[11:22:08] <f3ew> yes
[11:22:18] *** Lap_64 has joined #postfix
[11:22:59] <||arifaX> ok thanks. I think I'll be back with some more questions when I continue configuring...
[11:24:05] *** nescius has quit IRC
[11:25:11] *** nescius has joined #postfix
[11:28:17] *** stellina has joined #postfix
[11:30:13] <stellina> g'morning ppl
[11:33:51] *** fifo_ has joined #postfix
[11:35:21] *** amrit|zzz has quit IRC
[11:35:24] <fifo_> i have a server x.mydomain.co.za and mail.mydomain.co.za. mail.mydomain.co.za is my MX server. whenever x.mydomain.co.za sends mail from CRON to account1 at mydomain dot co.za, the mailserver rejects the mail from root at x dot mydomain.co.za because with:  Sender address rejected: Domain not found
[11:35:27] <fifo_> what can i do about this?
[11:41:14] *** mastachand has joined #postfix
[11:42:38] *** TheOutlander has quit IRC
[11:47:35] <telmich> if no restrictions match in smtpd_*_restrictions, is the mail rejected or permitted?
[11:48:05] *** xpoint has joined #postfix
[11:48:07] <telmich> or do I need to specify the default behaviour at the end of each restriction chain?
[11:48:16] <[miles]> guys is there anyone using amavisd-new with postfix who would have a few minutes free?
[11:49:29] <f3ew> telmich permitted
[11:49:36] <telmich> thank f3ew
[11:49:37] <f3ew> telmich see postconf -d
[11:49:46] <f3ew> [miles], yes?
[11:49:57] <[miles]> hi f3ew
[11:50:10] <[miles]> f3ew: your using amavisd-new yeah?
[11:50:13] <fifo_> telmich, rejected
[11:50:14] <f3ew> yes
[11:50:33] <fifo_> telmich, oops
[11:50:33] <[miles]> I want to run so prelimanry tests with amavisd-new ... theres no movement in the channel
[11:50:36] <fifo_> telmich, misunderstood
[11:50:43] <f3ew> telmich, it needs to match something in smtpd_recipient_restrictions, actually
[11:50:48] <[miles]> f3ew: so I can't ask anything there :-|
[11:51:11] <[miles]> f3ew: u know if I can run the deamon and fire test emails at it, prior to intergrating it into postfix?
[11:51:18] <fifo_> how can I make postfix not reject mail for a domain it cannot find.
[11:51:24] <f3ew> [miles] yes
[11:51:29] <fifo_> or at least rewrite that mail to an laternative domain
[11:51:36] <f3ew> fifo_ turn off the reject_unknown_domain check
[11:51:52] <fifo_> f3ew, only a certain not found domain
[11:52:12] <[miles]> f3ew: I want to get my head around amavisd-new, make sure its working correctly.. the config seems massive
[11:52:20] <||arifaX> f3ew: you said cron is delivering the mail, so it is local?
[11:52:40] <||arifaX> ^^ sorry i mean fifo_
[11:52:41] <f3ew> [miles] the defaults mostly work fine
[11:53:00] <[miles]> f3ew: I need to integrate LDAP
[11:53:19] <f3ew> [miles], get it working without LDAP, then enable LDAP as needed
[11:53:26] <[miles]> nod
[11:53:33] <fifo_> ||arifaX, no. it is cron on another server. delivering to an email account which this server is the MX for
[11:53:37] <[miles]> f3ew: so I can just pipe some mails thru it yeah, and see the results
[11:53:59] <fifo_> ||arifaX, gold would be to have cron use a different envelope sender
[11:55:02] <||arifaX> fifo_: is it possible for you to add the server running cron to mynetworks without making problems to your existing configuration/filtering?
[11:56:12] <[miles]> f3ew: better to strip out all the # commented av's etc yeah... bloats the conf
[11:56:22] <fifo_> ||arifaX, it should be. how do i do that?
[11:57:12] <fifo_> ||arifaX, i dont think that would work though. because it dies with the error: Domain NOT found
[11:57:20] <telmich> should I put reject_unauth_pipeling into every smtpd_*_restriction or is it enough in smtpd_recipient_restrictions?
[11:57:33] <fifo_> ||arifaX, not with domain rejected
[11:58:39] *** swop has joined #postfix
[11:59:04] <||arifaX> adding the server sending mail via cron's ip to mynetworks in main.cf should give you the option to allow it sending mails when you have a rule in main.cf which permit_mynetworks. if this is your first rule and first rule matches then it should work I think because no further checks are made
[11:59:28] <fifo_> ||arifaX, makes sense
[11:59:33] <telmich> ah, only in smtpd_data_restrictions
[12:00:36] <f3ew> !cheatsheet
[12:00:37] <knoba> f3ew: 'cheatsheet' : http://jimsun.linxnet.com/misc/postfix-anti-UCE.txt : A HOWTO for pre-DATA spam control.
[12:00:44] <fifo_> do I add it's hostname? ex, it result in: mynetworks = x.y.z.0/24, x.y.b/28, x.mydomain.co.za
[12:01:50] <telmich> f3ew: it's not in there, but in /postconf.5.html
[12:05:19] <||arifaX> fifo_: dunno exactly I think you need the ip address, just add it to the list as described here: http://dwarfurl.com/5b031
[12:08:58] <fifo_> you see
[12:09:04] <fifo_> the domain x.mydomain.co.za doesn't exist
[12:09:06] <fifo_> that is my problem
[12:09:26] *** cpm has joined #postfix
[12:09:33] <fifo_> but i found a bypass for it. the more "correct" way would have been nice though.
[12:10:09] <fifo_> ||arifaX, i added "root at x dot mydomain.co.za OK" to /etc/postfix/sender_access
[12:10:26] <fifo_> i didn't want it to to result in this, but i guess this is the only way
[12:12:29] *** brancaleone has joined #postfix
[12:16:33] *** ptomter has quit IRC
[12:21:48] *** tls_81 has joined #postfix
[12:22:10] <tls_81> good morning to all from London.
[12:22:32] <tls_81> good morning to all, from London.
[12:23:04] <tls_81> am having problems with smtp auth using Mysql and saslauthd
[12:23:28] *** tls_81 has quit IRC
[12:24:20] *** tls_81 has joined #postfix
[12:24:23] <f3ew> that was fast
[12:24:49] <tls_81> sorry closed window by mistake...
[12:25:02] *** dj-fu has joined #postfix
[12:25:16] <tls_81> f3ew did you see m question before i left?
[12:26:02] <f3ew> only half
[12:26:13] <[miles]> f3ew: to test my amavisd-new, should I send a mail to 127.0.0.1:10024 via sendmail?
[12:26:24] <f3ew> telnet
[12:26:38] <[miles]> I have a spam message I want to send tho
[12:26:55] <[miles]> in .eml
[12:26:57] <[miles]> format
[12:27:40] <[miles]> I assume postfix can't communicate with amavis over a unix socket no?
[12:32:41] <tls_81> anyone got postfix smtp authentication working?
[12:32:55] <tls_81> i keep getting this error: : Password verification failed
[12:35:34] <cpm> [miles], you can check amavis new with telnet
[12:35:59] <cpm> tls_81, please don't ask poll questions like 'anyone got postfix smtp authentication working?' is'
[12:36:04] <cpm> REALLY annoying
[12:36:15] <[miles]> hi cpm yeah
[12:36:17] <[miles]> im just doing it now
[12:36:50] <cpm> tls_81, please read http://reactor-core.org/irc-help.html
[12:40:43] <cpm> morn'n f3ew
[12:48:20] <f3ew> gwt
[12:48:22] <f3ew> hwy
[12:48:24] <f3ew> hey
[12:49:04] <tls_81> cpm: sorry about the long responce... was making coffee this saslauthd not working is really bugging me so getting desperate... no more polling!
[12:54:30] <tls_81> cpm: great info on irc that link u posted.
[12:54:54] *** amrit has joined #postfix
[12:55:48] <tls_81> amrit: dont login as root
[12:56:04] <tls_81> ?
[12:57:29] <smesjz> moin cpm
[12:57:37] <f3ew> R00T <> root
[12:58:07] <tls_81> f3ew: my bad...
[13:00:14] <cpm> morn'n smesjz
[13:00:30] <tls_81> f3ew: in my /etc/postfix/sasl/smtpd.conf file, i have pwcheck_method: auxprop and auxprop_plugin set as mysql is that perhaps why i am not able to authenticate as a road warrior?
[13:01:51] <tls_81> :f3ew i have tried googling it but most answers are not using mysql to authenticate.
[13:02:14] <f3ew> auxprop <> saslauthd
[13:02:44] *** nohik has quit IRC
[13:03:32] <Signum> tls_81: It can be the cause. What did you try to debug that situation? mysql logging? mail.log?
[13:04:33] <f3ew> !debug
[13:04:33] <knoba> f3ew: 'debug' : http://www.postfix.org/DEBUG_README.html : a good starting point for how to deal with problems and to report information to those who might help. Post your information in a pastebin such as http://pastebin.com/ or http://rafb.net/paste/ .
[13:05:44] <tls_81> signum:  I tried changing it to saslauthd instead and restarting both saslauthd and postfix, but to no avail
[13:07:01] <tls_81> signum: i believe i have followed the workaround tutorial correctly but perhaps i missed something. been doing it for a couple of days now, so head is starting to hurt...
[13:07:08] *** andrago has joined #postfix
[13:07:17] <[miles]> andrago: hola
[13:08:57] <tls_81> signum: my mail.log = warning: SASL authentication failure: Password verification failed then followed by  warning: 87-194-33-145.bethere.co.uk[87.194.33.145]: SASL PLAIN authentication failed: authentication failure
[13:09:31] <cpm> what do your mysql logs show?
[13:10:05] *** nohik has joined #postfix
[13:10:06] <tls_81> signum: from that I can deduct that saslauthd is running but its perhaps nbot looking in right place for username and password combo...
[13:11:29] <smesjz> moin Signum
[13:12:30] *** Fullmoon has joined #postfix
[13:15:21] <Fullmetal-Mavez> smesjz OMG
[13:15:28] <Fullmetal-Mavez> two days in a row
[13:15:39] <Fullmetal-Mavez> hmm could this be an imposter smesjz ?
[13:15:50] <Fullmetal-Mavez> trying to lure us in to a false sense of security?
[13:16:28] <cpm> or some kind of evil antismesjz
[13:16:35] <smesjz> Fullmetal-Mavez: yea, I need to harvest e-mail addresses, so what other place is better than to hang around here ;)
[13:17:01] <Fullmetal-Mavez> yes exactly
[13:17:09] <Fullmetal-Mavez> cpm i like your thinking you're hired
[13:17:32] <Fullmetal-Mavez> smesjz >_<
[13:18:00] <Fullmetal-Mavez> could smesjz be back for good in #postfix?
[13:18:02] <smesjz> Fullmetal-Mavez: why isnt your domain working yet? get apache up and running
[13:18:10] <Fullmetal-Mavez> it is dood
[13:18:11] <smesjz> Fullmetal-Mavez: no way d00d!
[13:18:22] <smesjz> hmm
[13:18:42] <smesjz> I am not back for good..my new job starts next Tuesday so until then I may hang around here
[13:18:48] <tls_81> cpm:am setting up mysql logging for some reason wasnt setup, I must have overlooked uncommenting loggin...
[13:19:17] <Signum> tls_81: sorry... was on the phone... with the workaround tutorial you don't use the saslauthd really.
[13:19:22] <cpm> tls_81, might be handy to have mysql logging queries until you get this working
[13:19:28] <Signum> smesjz: remoin
[13:20:19] <Signum> tls_81: auxprop is using the mysql database directly. so turning on the mysql logs will help you.
[13:20:23] <tls_81> signum: workaround uses mysql so at least that setting is correct (auxprop)
[13:20:52] <tls_81> cpm:will enable it and post mysql logging...
[13:21:12] <cpm> dont' post, pastebin
[13:21:35] <tls_81> both of you: thank you so much for your time...
[13:29:00] <f3ew> smesjz IRC from work
[13:31:06] <smesjz> one could get fired because of that. But perhaps I can SSH :)
[13:31:39] * cpm fires smesjz
[13:31:44] <cpm> now irc away happily
[13:31:57] <f3ew> smesjz, depends
[13:33:55] <tls_81> cpm: postbin seems not to accept my copy of the log...
[13:34:10] <tls_81> cpm:some sort of queryfailure
[13:34:29] <cpm> pastebin
[13:35:06] <tls_81> cpm: sorry typo, pastebin is giving me a query failure when i submit my mysql log.
[13:35:08] *** stellina has quit IRC
[13:37:33] <tls_81> its only 3 lines can i post in irc?
[13:37:44] <Signum> Sure.
[13:38:35] <tls_81> 070424 12:26:48       6 Connect     admin@localhost on hostname
[13:38:36] <tls_81>                       6 Query       SELECT 'virtual' FROM domains WHERE domain='hostname.org'
[13:38:39] <tls_81>                       6 Query       SELECT 'virtual' FROM domains WHERE domain='hotmail.com'
[13:39:38] *** andrago has quit IRC
[13:39:59] <Signum> tls_81: Does that query give any results if *you* run it through mysql?
[13:40:19] <tls_81> it seems that it is looking up the sender email address in  my virtual tables weird?
[13:43:05] <tls_81> it returns nothing. but i dont have a row column virtual
[13:43:37] <tls_81> signum: in which config file is the query stored?
[13:44:08] <Signum> tls_81: That's right. There is no column "virtual". And I explain in my tutorial what that means. :)
[13:44:16] <Signum> tls_81: the *.cf files store the queries
[13:44:40] <tls_81> signum: you wrote the workaround tutorial?
[13:44:50] * Signum nods
[13:44:54] <tls_81> WOW
[13:45:05] <tls_81> signum: that rocks
[13:45:08] <Signum> That's why I'm a bit familiar with it. :)
[13:45:09] <Signum> thanks.
[13:45:18] <Signum> At this very moment I'm preparing the Etch tutorial.
[13:46:04] <tls_81> signum: I have got everything working very smoothly allthough i think there are a few things i needed to adjust to get it to work with dovecot and not courier, for some reason courier did not want to work
[13:46:52] <tls_81> signum: but the only thing is the roadwarrior part. I will go and look for your mention of virtual in tutorial...
[13:49:44] <smesjz> Signum: any ideas for a new version of the tutorial? Like using Dovecot or so?
[13:53:44] <Signum> smesjz: Yes, some ideas. Dovecot is not exactly on my list. But I haven't tried all the parts yet. And advantages of dovecot?
[13:54:23] <telmich> if postfix get's a 451 on address verification, is that 451 also cached to address_verify_map or will postfix retry it in $(which_timeout?)?
[13:54:27] <smesjz> Signum: it's written by the same guy who wrote irssi ;)
[13:54:40] <Signum> smesjz: OMG
[13:55:11] <smesjz> but bbl for now
[13:55:18] <Signum> smesjz: some ideas: http://workaround.org/pipermail/workaround-chitchat/2007-April/000320.html
[13:57:08] <tls_81> signum: having problems getting my head around it, I seem to only have 1 row in mysql-virtual_domains.cf is that how it should be?
[13:57:37] <tls_81> signum: oops in domain table...
[13:57:55] *** dj-fu has quit IRC
[13:58:26] <telmich> if I try to display all values of a btree-map, shouldn't "postmap -r btree:/path/to/file/withouth/dot/db" correct?
[13:58:36] <Signum> smesjz: sounds like dovecot is very worth a look though
[13:58:45] <telmich> I try to dump all values in the btree specified for address_verification
[13:58:50] <Signum> tls_81: yes, that's right
[13:58:58] <milligan> I use dovecot. It's fucking amazing.
[13:59:16] <Signum> Okay, dovecot then.
[13:59:43] <milligan> Like half the weight of cyrus and/or courier, and the same functionality.
[13:59:48] <milligan> Extremly easy to configure.
[14:01:24] <tls_81> signum: so the error in smtp authentication is not coming from there? excuse my stupidity, but am getting even more confused...
[14:03:42] <Signum> tls_81: Don't worry. SMTP authentication is a pain to debug. It's not just plain stupidity.
[14:03:59] <Signum> tls_81: So you ran that SQL query and received 'virtual'?
[14:04:25] <Signum> tls_81: Uhm, no, wait...
[14:04:38] <tls_81> signum: thx for the reassurance, no i dont receive anythins
[14:04:56] <Signum> tls_81: What part isn't working right? The SMTP authentication? Or the delivery to virtual accounts?
[14:04:58] * f3ew reiterates http://xkcd.com/c224.html
[14:05:17] <Signum> f3ew: out of curiosity... which imap daemon were you using again?
[14:05:22] *** Zaw has quit IRC
[14:05:40] <Signum> f3ew: lol
[14:05:55] <tls_81> the smtp authentication, I can send to virtual maildirs, the only thing not working in my setup is being able to access my smtp server on the road...
[14:06:26] <Signum> tls_81: did you watch your mysql logs when you try to relay from on the road?
[14:09:43] <f3ew> 2Courier
[14:10:46] <tls_81> signum: when i try and authenticate using evolution to send email on the road, it keeps asking me to reeenter my smtp password, but everytime to no avail. the mysql log show me these queries20 Query       SELECT 'virtual' FROM domains WHERE domain='linuxden.org'
[14:10:54] <tls_81>                      20 Query       SELECT 'virtual' FROM domains WHERE domain='hotmail.com'
[14:14:18] <tls_81> signum: going to double check i have everything setup correctly like the tutorial again.
[14:21:25] <tls_81> signum: everything is kosher in my config as far as I can see..
[14:27:50] <tls_81> signum: I seem to have found the sql query not returning anything... it is : SELECT email as user, password FROM users WHERE email = 'tom at linuxden dot org'
[14:29:51] <tls_81> nop not that.
[14:36:31] *** brancaleone has quit IRC
[14:38:40] *** nohik has quit IRC
[14:44:13] <tls_81> signum: do i have to link smtpd.conf into the postfiix chroot?
[14:45:59] <cpm> tls_81, here's a big clue
[14:46:07] <cpm> disable chroot until you have EVERYTHING working
[14:46:12] <cpm> then tighten it down
[14:47:53] *** noetik has joined #postfix
[14:48:10] <tls_81> cpm: do you guys know what is wrong and just want me to find out for myself?
[14:48:35] <tls_81> if that is the case its at least reassuring...
[14:48:35] <cpm> tls_81, another clue, if you've seen one mail server, you've seen one mailserver
[14:49:31] *** theelectricwiz has joined #postfix
[14:49:40] <cpm> if you are stuck at a certain point, there are folks here to help you. If you want someone to hold your hand and talk you though each step, it's unlikely anyone is going to sign up for that
[14:49:59] * smesjz signs cpm up
[14:50:12] <cpm> again, diable chroot until you get everything working, then have smesjz chroot it all back for you
[14:50:28] <smesjz> yea, i love to play satan's little helper
[14:51:10] <tls_81> cpm: not looking for anyone to hold my hand through whole setup... Sorry if it looks like that but it's not the case...
[14:52:06] <tls_81> cpm: the point where am stuck is that I cant get saslauth to work...
[14:52:24] <tls_81> everything else works great from signum's tutorial...
[14:52:35] <smesjz> Signum: btw, Dovecot can be used as SASL backend for Postfix too
[15:04:12] <Bejgli> is it possible to soft bounce rbl rejections? i don't want to use soft bounce globally. or is it possible to tell postfix that if rbl rejection would happen pass the mail to a policy_service ?
[15:06:41] <theelectricwiz> Hello. Can someone just help me out quickly or point me in the reight direction of what I am looking for. I noticed that most of the spam I am getting has a received header like the one below:
[15:06:42] <theelectricwiz> Received: from nacs.net (unknown [58.41.32.60]) by mail.domain.com (Postfix) with SMTP id 3047121EE3E
[15:06:42] <theelectricwiz> (highlighting the nacs.net and unknown being different. Can someone tell me what I need to look at to tell Postfix to ignore any emails that have this, ie a different value for the 'nacs.net (unknown' bit
[15:14:52] *** L0RDzx has joined #postfix
[15:17:00] <tls_81> cpm: I think i am going in right direction, wietse says postfix should not be chrooted whilst using sasl, so i need to create either a mount pooint in fstab or just ln -s /var/run/saslauthd to the chroot. correct?
[15:22:16] *** mordaunt has joined #postfix
[15:23:17] <f3ew> theelectricwiz reject_unknown_hostname ?
[15:25:44] <theelectricwiz> f3ew: I will give it a shot. Thanks heaps
[15:27:33] <theelectricwiz> will this reject if the peername_lookup is different?
[15:28:03] <Signum> smesjz: I read that. Now I'm very curious. :)
[15:29:00] <smesjz> Signum: and it shouldn't be rocket science to convert subscriptions, uid stuff from Courier to Dovecot..but i'm testing that now
[15:29:54] <Signum> smesjz: Let me know how it turns out.
[15:30:23] <smesjz> Signum: sure
[15:30:50] <Signum> smesjz: From the marketing speak on the web site it sounds like Dovecot is a rewritten Courier which smells better.
[15:33:34] <smesjz> yea, without the attitude of mr. sam. Timo is very helpful on the mailinglists
[15:34:56] <Signum> smesjz: does it contain any user-based filtering? like maildrop?
[15:43:19] *** UQlev has joined #postfix
[15:43:55] *** shawarma has left #postfix
[15:44:37] <f3ew> Sieve, afaik
[15:46:07] <smesjz> Signum: Sieve indeed. http://wiki.dovecot.org/LDA . It has quota support as well
[15:46:26] <smesjz> but it cannot call external apps like you can with dovecot
[15:49:28] *** zapalotta has left #postfix
[15:49:55] *** andrago has joined #postfix
[15:50:20] <andrago> hi
[15:51:22] *** csm-laptop has joined #postfix
[15:54:16] <Signum> smesjz: "sieve"? I just read about "deliver":
[15:54:39] <Signum> smesjz: Or does it implement the sieve "language"?
[15:54:55] <smesjz> yes it does
[15:55:14] <smesjz> deliver is app, sieve the language
[15:55:57] <smesjz> well, actually sieve is a plugin
[15:55:58] <Signum> smesjz: Do you know about per-user settings? Like storing them in a database?
[15:56:19] <smesjz> Signum: dunno about dbases..but you can have a per user .dovecot.sieve filter
[15:58:07] <Signum> smesjz: would per-user work if the config file is in the virtual user's mailbox directory?
[15:58:10] * Signum has 1000 questions
[15:59:16] <smesjz> yes, that's the idea behind it I think..lemme check
[15:59:58] <smesjz> 'Per-user Sieve script should be stored in user's home directory in file .dovecot.sieve. This works with virtual users also as long you have a directory set as the "home" for each mail account.'
[16:02:45] *** milligan is now known as Mill|ooo
[16:03:35] <Signum> smesjz: Great. Suddenly I love it. :)
[16:03:53] <tls_81> cpm: what is a bind mount?
[16:04:15] *** UQlev has quit IRC
[16:04:39] <smesjz> tls_81: it's mounting one dir at a different point..nice to circumvent chroot issues. It's only available for Linux
[16:05:02] <smesjz> so you can have this for example ->
[16:05:03] <smesjz> /var/run/mysqld /var/spool/postfix/var/run/mysqld none bind 0 0
[16:05:15] <smesjz> works nicer than a hard link every thing
[16:07:10] <Signum> I just start to get system log messages about bl.spamcop.net. Is it down? :(
[16:07:20] <tls_81> smesjz: thx... I think perhaps am getting there using this system...
[16:07:44] <smesjz> dunno, it gave me too much false positives (like mailservers of big ISPs where listed)
[16:08:46] * cpm gets false positives from smesjz
[16:09:33] * smesjz sends kryptonite to cpm
[16:10:43] * cpm sends it back to Serbia
[16:11:02] <smesjz> hmm
[16:11:49] * smesjz sends some lumber to cpm instead
[16:12:12] <cpm> hmmmm, thanx
[16:12:25] <smesjz> werent you a lumberjack or so?
[16:12:36] <smesjz> (like the one from Monty Python) ;)
[16:13:06] *** kaje has joined #postfix
[16:14:01] <cpm> http://www.eruditium.org/cmefford/sawmill1.jpg
[16:14:15] *** Mazon is now known as mazon
[16:14:17] *** L0RDzx has quit IRC
[16:14:24] * cpm chops down trees, eats his lunch, and goes, , ,
[16:14:39] <cpm> doesn't hang around in bars much anymore though
[16:14:50] <kaje> I'm getting an error when I try to use the /usr/sbin/sendmail -t command in FC6. It tells me that I can't chdir to /var/spool/clientmqueue that I must be a trusted user or root. But I am executing this command as root... Can anyone help me?
[16:14:54] <smesjz> big chainsaw :)
[16:15:07] *** SID_seba_away is now known as Sid_seba
[16:15:08] <cpm> heh
[16:19:58] *** cillybabe has quit IRC
[16:20:09] *** rmayorga has joined #postfix
[16:20:12] *** cilly has joined #postfix
[16:20:57] *** theelectricwiz has left #postfix
[16:21:25] <cpm> kaje, check your permissions as per http://www.sendmail.org/security/secure-install.php
[16:22:26] *** hparker has joined #postfix
[16:22:34] *** raina has quit IRC
[16:22:46] <kaje> what pastebin does this channel prefer?
[16:23:41] *** hachiya has quit IRC
[16:23:50] <fifo_> i think rafb.net/paste would be fine
[16:23:57] *** Broom has joined #postfix
[16:23:58] <Broom> hey all
[16:24:03] <cpm> kaje, for sendmail problems? none. This isn't #sendmail
[16:24:34] <kaje> isn't it actually postfix though?
[16:25:21] <Broom> question: is there a way I can check if my configuration is optimized for performance? i'm getting connection timeout when I try to telnet to port 25 of that machine very often
[16:25:23] <cpm> sendmail is not postfix. Postfix supplies a sendmail binary that is mostly a drop in replacement for the sendmail command, but no. They are NOT the same
[16:25:32] <Broom> i'm also running postfix with amavis, don't know if that has to do
[16:25:36] <cpm> try #sendmail
[16:25:39] <Broom> just checking the postfix part
[16:26:01] <kaje> right, in FC6, isn't /usr/sbin/sendmail actually the binary provided by postfix?
[16:26:10] *** raina has joined #postfix
[16:26:24] <kaje> whoa, just did some checking and I was wrong... sorry guys
[16:26:30] <kaje> I swore that was postfix
[16:26:32] <rob0> /var/spool/clientmqueue is the path for the sendmail.org MTA's queue.
[16:26:46] <fifo_> it is
[16:27:04] <telmich> kaje: strings /usr/sbin/sendmail | grep postfix
[16:27:09] 
[16:27:37] <fifo_> depending on the distro
[16:28:31] *** memic has quit IRC
[16:29:15] *** memic has joined #postfix
[16:29:45] <Bejgli> is it possible to soft bounce rbl rejections? i don't want to use soft bounce globally. or is it possible to tell postfix that if rbl rejection would happen pass the mail to a policy_service ?
[16:29:54] <fifo_> correction: /etc/alternatives/mta on fedora
[16:35:53] <rob0> Bejgli: rbl_code IIRC
[16:35:54] *** Taube is now known as taube
[16:36:38] <Bejgli> rob0: thanks.
[16:49:17] <tls_81> signum: do you have links to a tutorial on debuggin smtp? am still strugling with the saslauthd and mysql
[16:50:11] *** cutmasta has quit IRC
[16:55:45] *** pmjdebruijn has quit IRC
[16:58:14] *** Ryushin has joined #postfix
[17:00:12] <Broom> hello, can anyone tell me where in the postfix configuration do I configure the max lifetime a postmaster message could have?
[17:00:29] <Broom> or how can I disable the retry sending msg to a non responsive postmaster
[17:05:55] *** noetik has quit IRC
[17:06:18] *** swop has quit IRC
[17:13:17] *** Supaplex has joined #postfix
[17:22:34] *** devdas has joined #postfix
[17:23:03] *** tangel has quit IRC
[17:23:19] <Broom> how can i verify postfix's version?
[17:24:09] <devdas> postconf mail_version
[17:24:34] <rob0> CPUs are for wimps. I do floating point in my head.
[17:24:42] <Broom> i have a lot of MAILER-DAEMON messages on my queue, is there I way i can reduce the time or retries for those messages to be sent?
[17:24:47] <Broom> thanks, devdas
[17:25:36] <devdas> bounce_queue_lifetime
[17:25:58] <rob0> sounds like backscatter
[17:26:06] *** backz has joined #postfix
[17:26:40] <Broom> thanks again devdas, i set it to = 0
[17:27:32] <rob0> Don't accaept mail you can't deliver, then bounces are not a problem.
[17:27:42] *** ziro has quit IRC
[17:28:21] <Broom> well, I'm not accepting mail from unknown_domains
[17:28:41] <Broom> i have this: reject_unknown_sender_domain
[17:28:50] <Broom> on my smtpd_recipient_restrictions
[17:28:57] *** ||arifaX has quit IRC
[17:29:17] <rob0> but apparently not doing recipient validation
[17:29:18] <Broom> and I also have this: reject_unverified_recipient
[17:30:10] <Broom> rob: that last one is the recipient validation, right/
[17:30:15] <Broom> err. ?
[17:30:47] *** tls_81 has left #postfix
[17:36:07] 
[17:36:53] *** GMFlash has quit IRC
[17:36:58] *** GMFlash has joined #postfix
[17:41:28] <rob0> Broom: I'd have to see your "postconf -n" to know (guess) what's wrong.
[17:41:46] <rob0> put that in a pastebin of your choice
[17:44:07] <yam> I'm trying to use an Exchange server as relay host, it uses authentication... but I get an error -->
[17:44:08] <yam> Authentication failed: cannot SASL authenticate to server pim.somedomain.net[192.168.88.10]: no mechanism available
[17:44:17] *** tls_81 has joined #postfix
[17:44:21] <yam> seems it offers AUTH only
[17:44:33] <yam> how could we force that on postfix side?
[17:45:23] *** mrfree has joined #postfix
[17:45:34] <mrfree> hi all
[17:46:13] <mrfree> when I use cyrus-sasl with postfix to auth a user these messages appear in the log: Apr 24 17:44:34 mail postfix/smtpd[8794]: auxpropfunc error invalid parameter supplied
[17:46:13] <mrfree> Apr 24 17:44:34 mail postfix/smtpd[8794]: _sasl_plugin_load failed on sasl_auxprop_plug_init for plugin: ldapdb
[17:47:19] *** tls_81 has left #postfix
[17:47:39] *** kaje has quit IRC
[17:56:13] *** kreg_ has joined #postfix
[17:56:31] <Broom> rob: http://pastebin.ca/455953
[17:57:16] *** olinux has joined #postfix
[17:58:43] *** cpm_ has joined #postfix
[17:59:06] *** cpm has quit IRC
[18:00:11] *** cpm_ has quit IRC
[18:00:27] *** cpm has joined #postfix
[18:00:33] *** xermesx has quit IRC
[18:02:45] <mordaunt> hi i have anvil configured to run every 10 mins
[18:02:52] <mordaunt> but it runs once a day :|
[18:02:56] <mordaunt> anvil_rate_time_unit = 60s
[18:02:56] <mordaunt> anvil_status_update_time = 600s
[18:03:43] *** [miles] has quit IRC
[18:04:13] *** CAP4202 has joined #postfix
[18:05:16] <rob0> Broom: I don't know, but it looks like verify(8) might not be working for your $relay_domains (which, BTW, should not include $mynetworks, which is a list of IP netblocks, not domain names.)
[18:05:44] *** efaistos has left #postfix
[18:09:19] *** sepski has joined #postfix
[18:09:22] *** bostik has quit IRC
[18:10:21] <Broom> is verify a process that should be running?
[18:11:13] <Broom> i get this entries on my maillog: postfix/smtpd[19650]: warning: 58.49.136.221: hostname 221.136.49.58.broad.wh.hb.dynamic.163data.com.cn verification failed: Name or service not known
[18:12:11] *** aluchko has joined #postfix
[18:12:43] <rob0> verify(8) is what tests to see if your $relay_domains recipients are valid. In your config it's taking the place of relay_recipient_maps.
[18:13:14] <rob0> no, that's a warning from smtpd(8) about a DNS lookup.
[18:14:01] *** flami has joined #postfix
[18:14:46] *** CAP4202 is now known as andrago_
[18:14:47] *** frennkie has joined #postfix
[18:16:29] *** darkphader has joined #postfix
[18:16:32] *** Broom has quit IRC
[18:17:54] *** mrfree has quit IRC
[18:19:33] *** andrago has quit IRC
[18:21:12] *** andrago_ is now known as andrago
[18:26:13] *** frennkie9093 has quit IRC
[18:30:26] <darkphader> how does relayhost differ from using a transport map for relaying to an ISP's mail server?
[18:35:28] *** DiaboluZ has quit IRC
[18:45:43] *** brancaleone has joined #postfix
[18:47:05] <devdas> darkphader: a relayhost is a catchall transport_maps entry
[18:49:17] <darkphader> devdas: just wondered if there was any technical fine points that would make one superior to another
[18:49:58] <darkphader> i'm started to see problems with my mail sending
[18:50:43] <darkphader> i have a home cable account and use my own mail server
[18:51:07] <darkphader> sometime ago (maybe a couple of years) i could send mail direct from my server
[18:51:20] <darkphader> then i needed to forward it to my ISP first
[18:51:42] <darkphader> due to cable accounts being DUL listed, generix rDNS PTR's etc.
[18:52:02] <darkphader> now, even with the forwading via a transport map
[18:52:10] <darkphader> i'm running into such issues
[18:53:16] <darkphader> so i wondered if maybe relayhost appeared more like an MUA to the remote server than using a transport map
[18:54:32] <smesjz> darkphader: what's in the logs?
[18:55:15] *** _matt has quit IRC
[18:55:18] *** x-ip has joined #postfix
[18:55:38] <darkphader> what's in the logs now are timeouts because my ISP decided to block me, the claim I'm on an RBL
[18:55:41] <x-ip> what can i use to have quotas per user with postfix
[18:55:45] <x-ip> and mysql
[18:56:20] <hparker> darkphader: What
[18:56:24] <darkphader> but even before they blocked i was getting mail rejected from other places
[18:56:25] <hparker> Err.. What IP?
[18:56:43] <smesjz> x-ip: you can use maildrop to accomplish that (courier suite) or Dovecot's LDA with quota plugin
[18:56:49] <darkphader> 68.61.77.183
[18:57:06] <darkphader> such as the pf mailing list
[18:57:12] <x-ip> smesjz: you mean maildrop with maildirsize ?
[18:57:35] <darkphader> maybe it's because my smtp_helo_name was set to match the PTR
[18:57:35] <hparker> darkphader: As in, you relay through your ISP and the PF list bounces it?
[18:57:54] <smesjz> x-ip: maildirsize is a file that maildrop uses to store the usuage within a maildir. The actual quota can be read from a SQL backend for example
[18:57:59] <darkphader> yes, they were...i'm whitelisted now, but it took a while
[18:58:07] <hparker> darkphader: What's the error in your log?
[18:58:08] <smesjz> I wrote a tutorial for maildrop with quotas
[18:58:23] <smesjz> but it hasn't been updated for a while
[18:58:41] <x-ip> smesjz: thats what i need :)
[18:59:04] <darkphader> the isp blocking just started yesterday and mailq showed the email with temporary suspensions
[18:59:20] <hparker> darkphader: I don't see that IP in any of the major lists
[18:59:39] <smesjz> x-ip: http://www.xs4all.nl/~jaspersl/quota/  I hope it's still of any use
[18:59:40] <darkphader> it may be just comcast itself
[18:59:55] *** mastachand has quit IRC
[19:00:02] <x-ip> thanks smesjz :D
[19:00:06] <hparker> darkphader: http://tinyurl.com/create.php
[19:00:09] <hparker> Err
[19:00:19] <hparker> http://tinyurl.com/2y6xy2
[19:00:40] *** mazon is now known as Mazon
[19:00:42] *** _matt has joined #postfix
[19:03:12] *** siddharta has joined #postfix
[19:03:25] <siddharta> hello everybody
[19:03:39] <siddharta> i'm installing a postfix server
[19:03:53] <siddharta> so naturally i'm reading the doc
[19:04:11] <smesjz> but?
[19:04:17] <siddharta> in english but as i'm not english , i need some help
[19:04:18] * flami expects soemthing horrible
[19:04:30] <siddharta> lol
[19:04:43] <flami> comon were ready for nearly everything
[19:05:21] * smesjz gives flami the tinfoil-hat
[19:05:27] <smesjz> just in case...
[19:05:40] <siddharta> infact i would like to redirect all system mail sent to user eg user@localhost to user at gmail dot com
[19:05:56] <smesjz> edit /etc/aliases ?
[19:06:03] <siddharta> but i don't know if we call that aliases
[19:06:04] <flami> well make a alias map
[19:06:16] <siddharta> is it in .mailrc file
[19:06:35] <smesjz> kinda depends on your backend (mysql,ldap,berkeley)
[19:06:45] <Fullmetal-Mavez> smesjz FTW!
[19:06:51] <smesjz> Fullmetal-Mavez to the rescue!
[19:06:58] <Fullmetal-Mavez> yes
[19:07:11] <Fullmetal-Mavez> i rule it's true
[19:07:21] <smesjz> x-ip: does that tutorial make any sense?
[19:07:46] <x-ip> i am afraid from the script, but i will try it to work :)
[19:08:12] <smesjz> x-ip: afraid?
[19:08:22] <x-ip> scared ? :|
[19:08:50] <smesjz> you can skip a lot of the tutorial I think. Which distribution are you using?
[19:09:04] <x-ip> open suse 10.2
[19:09:19] <smesjz> oh
[19:09:20] <x-ip> its not my fault, my boos buy it :S
[19:09:35] <x-ip> and i have recompiled all from the sources
[19:09:41] <siddharta> thank you i'm looking for alias map
[19:09:46] <smesjz> x-ip: maildrop too?
[19:09:53] <x-ip> yes
[19:09:58] <smesjz> which version? 2.02?
[19:10:14] <x-ip> 2.0.4
[19:10:26] <smesjz> right, so quotas are enabled?
[19:10:40] <x-ip> nop, i will have to do it again
[19:10:54] <x-ip> and recompile postfix too
[19:10:58] <smesjz> i meant, quota support in maildrop...not the actual quotas
[19:11:05] <smesjz> why are you recompiling postfix?
[19:11:06] *** JoKoT3 has joined #postfix
[19:11:11] *** flyinprogramer has joined #postfix
[19:11:22] <x-ip> coz i ve destroy it
[19:11:34] <x-ip> i forgot to compile berkeley db
[19:11:41] <smesjz> doesnt come open suse with a binary version of Postfix?
[19:11:49] <flyinprogramer> anyone in here have nmap installed?
[19:11:53] <x-ip> yes, its a shit
[19:11:58] <x-ip> the package i mean
[19:11:59] *** birmaan has joined #postfix
[19:12:19] <smesjz> oh..i only know the debian package of postfix. that's a nice one actually
[19:12:36] <x-ip> i work with debian too and its well done
[19:12:47] *** brancaleone has quit IRC
[19:13:11] <smesjz> ok, but back the quotas now :)
[19:13:16] <flyinprogramer> helllloooooo
[19:13:19] <x-ip> yup
[19:13:26] <flyinprogramer> nmap, anyone
[19:13:34] *** JoKoT3 has quit IRC
[19:13:43] <flyinprogramer> i need someone to try and ping my server on port 24
[19:13:54] <smesjz> you dont need nmap for that
[19:14:02] <smesjz> telnet will do
[19:14:16] <flyinprogramer> right, but the server is on my intranet
[19:14:44] <flyinprogramer> so i can't telnet
[19:14:51] <flyinprogramer> like i can, but it will say it is open
[19:14:58] <flyinprogramer> i think verizon might block port 24
[19:15:03] <smesjz> s/24/25/
[19:15:11] <flyinprogramer> ?
[19:15:18] <smesjz> smtp uses port 25
[19:15:20] <smesjz> not 24
[19:15:29] <flyinprogramer> i'm a fool
[19:15:44] <flyinprogramer> anyways, try this server:   flyinprogramer.homelinux.net
[19:16:27] <smesjz> Note: Host seems down. If it is really up, but blocking our ping probes, try -P0
[19:16:27] <smesjz> Nmap finished: 1 IP address (0 hosts up) scanned in 4.122 seconds
[19:16:41] <smesjz> Interesting ports on pool-72-65-108-120.ptldme.east.verizon.net (72.65.108.120):
[19:16:41] <smesjz> PORT   STATE    SERVICE
[19:16:41] <smesjz> 25/tcp filtered smtp
[19:16:48] <flyinprogramer> i'm blocking ping
[19:16:55] <flyinprogramer> you'll notice 82 is up
[19:17:03] <flyinprogramer> 80 will be blocked though, cuz of verizon
[19:17:05] <smesjz> ok, but 25 seems to be filtered
[19:17:11] <siddharta> flami: smesjz do we call what i want  "Canonical address mapping"
[19:17:12] <flyinprogramer> ok
[19:17:13] <darkphader> can postfix do smtp auth via ssl (port 465) instead of using tls?
[19:17:44] <smesjz> hmm, i having a hard time getting all questions seperated from eachother now..
[19:18:22] <smesjz> siddharta: how many addresses do you want to redirect to gmail?
[19:18:40] <flyinprogramer> can someone now see if port 25 isn't blocked
[19:18:51] <darkphader> can postfix do smtp auth via ssl (port 465) instead of using tls? - as client
[19:19:47] <flyinprogramer> ok, well, maybe i'm going about this in the wrong way
[19:19:51] <flyinprogramer> here is my problem
[19:19:55] <flyinprogramer> "98E243EC0A2      646 Tue Apr 24 12:40:01  root at family-server dot flyinprogramer.homelinux.net
[19:19:56] <flyinprogramer> (delivery temporarily suspended: connect to flyinprogramer.homelinux.net[72.65.108.120]: Connection refused)
[19:19:57] <flyinprogramer>                                          root at family-server dot flyinprogramer.homelinux.net"
[19:20:02] <siddharta> non in fact i need to assign a differet mail address to each user
[19:20:23] <flyinprogramer> why would the connection be refused?
[19:20:48] <smesjz> because it can't connect to the server?
[19:21:07] <siddharta> e.g titi@localhost -> theo.deraadt at openbsd dot org toto@localhost -> bill.gates at redmond dot com you see what i mean
[19:21:27] <flyinprogramer> .... i know, but then that means it can't connect to itself...
[19:21:35] <smesjz> right, you can look at alias maps
[19:21:55] <smesjz> flyinprogramer: is 72.65.108.120 the IP of that server?
[19:21:56] <siddharta> oki thx
[19:21:57] <flyinprogramer> ok... what's that?
[19:22:01] <smesjz> as in: on a local interface
[19:22:07] <flyinprogramer> i believe so...
[19:22:15] <flyinprogramer> o
[19:22:24] <smesjz> ifconfig | grep '72.65.108.120' should return that
[19:22:38] <x-ip> i ve a problem compiling postfix. it cant found rand.h located at /usr/local/ssl/include/openssl/
[19:23:28] <smesjz> it should be: -I/usr/local/ssl/include
[19:23:31] <x-ip> in tls_prng_dev.c i ve #include <openssl/rand.h>               /* For the PRNG *
[19:23:49] <x-ip> ou, lets try it
[19:23:52] <flyinprogramer> ok, nope, see that IP address is the public IP , the one Verizon gives me, but the server's IP address is 192.168.1.24
[19:24:18] <smesjz> flyinprogramer: ok, so you have some router in front of it?
[19:24:22] <flyinprogramer> the server is behind a dsl modem/router
[19:24:25] <flyinprogramer> yeah
[19:24:31] <smesjz> ok, that dsl router has the external IP?
[19:24:45] <flyinprogramer> yup
[19:25:04] <smesjz> ok, tell Postfix the family-server.flyinprogramer.homelinux.net is local
[19:25:17] <smesjz> so: mydestination = family-server.flyinprogramer.homelinux.net, localhost etc etc
[19:25:30] <flyinprogramer> ok, i'll try
[19:25:51] <smesjz> so it avoids an MX lookup
[19:26:24] <smesjz> and if you want to send mail to the outside you need Verizon's mailserver as relayhost
[19:27:04] <smesjz> but there is a big change you can't even receive mail using flyinprogramer.homelinux.net as an MX. Because Verizon blocks incoming SMTP traffic I suppose
[19:27:12] <smesjz> that's something you gotta check first
[19:27:19] <flyinprogramer> right
[19:27:35] <flyinprogramer> that's fine, i just need it to be able to send my server logs to my gmail account
[19:27:55] <flyinprogramer> ok, heres my current mydestination line
[19:27:56] <flyinprogramer> mydestination = family-server.flyinprogramer.homelinux.net, localhost.flyinprogramer.homelinux.net, localhost
[19:28:04] <flyinprogramer> is that wrong?
[19:28:42] <x-ip> smesjz: excellent :), how did you know it ?
[19:28:45] <smesjz> looks allright to me
[19:29:08] <smesjz> x-ip: dunnom just looked at the error and a lil bit of C experience kinda helps too ;)
[19:30:00] <smesjz> so one openssl/ had to be omitted
[19:30:07] <smesjz> to make a valid path
[19:30:20] <x-ip> right :)
[19:31:08] <flyinprogramer> now, the e-mails are listed as temporary disabled... how would i change that?
[19:31:13] <smesjz> it's not rocket-science ;)
[19:31:20] <smesjz> flyinprogramer: what's in the logs?
[19:31:41] <smesjz> postqueue -f will flush the queue and retries delivery
[19:31:49] <flyinprogramer> ok
[19:31:56] <flyinprogramer> and the logs that i want sent to me?
[19:31:57] *** kiwi-monster has joined #postfix
[19:32:00] * cpm puts smesjz on a rocket
[19:32:01] <smesjz> or use postsuper -d ALL to delete all mails in the queue
[19:32:10] <smesjz> hi cpmscientist
[19:32:31] *** taube is now known as Taube
[19:32:56] <flyinprogramer> and the log emails are just generated by LogWatch
[19:33:41] <smesjz> flyinprogramer: just look at the logs and show it?
[19:37:57] <rob0> Mars ain't no kind of place to raise your kids. In fact, it's cold as hell.
[19:38:35] * cpm chuckles
[19:42:56] <cpm> all this science I don?t understand
[19:43:15] <smesjz> you're not a jedi yet cpm
[19:43:23] <smesjz> only a padawan
[19:44:51] *** flyinprogramer has quit IRC
[19:45:25] <devdas> was the rocket supposed to go to Mars?
[19:45:37] <devdas> I thought it was going to Venus
[19:47:00] *** ggeller has joined #postfix
[19:47:02] <smesjz> well, men go the mars...women to venus..or so
[19:47:08] <smesjz> s/the//
[19:47:14] *** devdas has quit IRC
[19:47:25] <smesjz> x-ip: so Postfix is compiling now?
[19:47:39] <x-ip> its finished
[19:47:44] <x-ip> i have some troubles
[19:47:47] *** devdas has joined #postfix
[19:48:09] <smesjz> nah, don't see them as troubles but as challenges ;)
[19:48:49] <x-ip> shure :)
[19:49:05] <x-ip> i am getting challenges for 5 hours
[19:49:07] <x-ip> xD
[19:52:59] *** hemry has joined #postfix
[19:54:01] *** tryfan has joined #postfix
[19:54:29] <tryfan> Hello all, I know this is not the amavis channel, but it is a spam blocking/management issue with postfix and amavisd
[19:54:54] <tryfan>  I was wondering if there was a way to set blacklisting to an entire domain using ldap lookups with amavisd.  I would rather not change the amavis code if I don't have to.  I have RTFM but I don't see anything like that, and it looks as if it only matches exactly.
[19:55:24] <x-ip> fixed!
[19:55:25] <x-ip> :D
[19:55:36] *** amrit is now known as amrit|wrk
[19:57:52] *** tls_81 has joined #postfix
[19:58:16] <R1ck> does greylisting actually stop any spam?
[19:58:38] <Signum> In theory, yes. :)
[19:58:39] <tls_81> Signum: Finaly worked it out!!! Long day.. lol
[19:58:47] <Signum> tls_81: What was it? Typo?
[19:58:51] <rob0> tryfan: it's better to do that in Postfix, not amavisd. See SMTPD_ACCESS_README.html .
[19:59:00] <rob0> !cheatsheet
[19:59:01] <knoba> rob0: 'cheatsheet' : http://jimsun.linxnet.com/misc/postfix-anti-UCE.txt : A HOWTO for pre-DATA spam control.
[19:59:01] <R1ck> yes, in theory.. how about in real life :)
[19:59:06] <rob0> ^^ good too
[19:59:19] <tls_81> still not sure, I decided to use Dovecot's sasl support instead...
[19:59:31] <Signum> R1ck: Usually it helps. I wouldn't say it's the best-solution-ever against spam. RBLs and Spamassassin do the job better IMHO.
[19:59:38] <rob0> R1ck: Still stops some, but not as much as it used to. Zen.spamhaus.org is the best overall tool.
[19:59:43] <Signum> R1ck: It's especially useless if you get forwarded spam from other email addresses.
[19:59:51] <Signum> tls_81: Oh. :)
[19:59:54] <smesjz> re Signum
[20:00:06] <R1ck> okay. too bad spamassassin sucks though ;)
[20:00:13] <tls_81> Signum: will defo give your Etch tutorial a go when out... perhaps then i will figure it out...
[20:00:58] *** piedoggie has joined #postfix
[20:01:56] <Signum> R1ck: It does? :)
[20:01:57] <tryfan> rob0: I guess that would block it before it was queued and therefore cut down on cpu util as well
[20:02:08] *** stellina has joined #postfix
[20:02:09] <piedoggie> I'm trying to find some documentation on how postfix works with .forward files.  What I need is to drop the incoming message into a user's maildir mailbox and pipe it to a program
[20:02:15] <R1ck> yeah it does. too much of a cpu hog
[20:02:22] <tls_81> Need to get myself a nice stiff drink!!! lol thanks for your help Signum, cpm and last but not least smesjz.
[20:02:29] <stellina> hi people
[20:02:36] <tryfan> rob0: of course, my users are going to want to whitelist entire domains as well, which is better done in amavis
[20:02:38] <Signum> piedoggie: write "| /usr/bin/procmail" into your .forward and put the rules in there
[20:02:39] <smesjz> ok, good luck tls_81
[20:02:55] <Signum> piedoggie: of if you like to keep a copy before procmailing it: "myusername, | /usr/bin/procmail"
[20:03:03] <Signum> tls_81: have fun
[20:03:15] <piedoggie>  I thought you needed to use something like \ username
[20:03:22] <piedoggie> ignore the extra space
[20:03:33] <Signum> R1ck: I have the cpu power to waste and it would be more expensive in terms of human resources to deal with spam. It might not be reasonable in large setups though.
[20:03:36] <stellina> I cannot send mail to hotmail users from m postfix. I tried sending from my mail server to hotmail server using telnet, it     accepted but I don't recieve this mail
[20:03:41] *** tls_81 has quit IRC
[20:04:04] <Signum> stellina: does your mail.log tell you that the mail was delivered successfully?
[20:04:17] *** AJ__Z0 has joined #postfix
[20:04:20] <stellina> it tells me status=sent queued for delivery
[20:04:54] <Signum> stellina: is the mail still in your queue? (mailq)
[20:04:54] <stellina> and also with telnet, hotmail accepts mail from myserver but I don't get it in my account
[20:04:57] <R1ck> Signum: well, I found that on all of our hosting servers, that when they reach about 150 domains, spamd becomes a bottleneck for the whole server, even if they are 3.2GHz machines
[20:05:16] <Signum> stellina: if your mail.log clearly says "relay=mx1.hotmail.com" or something like that then you should ask hotmail what their problem is
[20:05:23] <piedoggie> R1ck: that's a common problem for most antispam systems
[20:05:43] <R1ck> so far, spamd performs really nice
[20:05:48] <devdas> R1ck: spamhaus is your friend
[20:05:49] <R1ck> dspam i mean
[20:05:55] <stellina> Signum: yes it's still in queue
[20:05:56] <piedoggie> my antispam system wraps around CRM 114 and it works fine in the small but not in the really large
[20:06:00] <R1ck> devdas: ofcourse, thats the first line of defense ;)
[20:06:26] <stellina> relay=mx2.hotmail.com[65.54.244.40]:25, delay=2.5, delays=0.05/0.02/1.5/0.94, dsn=2.0.0, status=sent (250  <47918.62.38.216.14.1177437197.squirrel at webmail dot netone.gr> Queued mail for delivery)
[20:06:40] <Signum> stellina: oh, okay... then your mail was sent successfully
[20:06:50] <Signum> stellina: "Queued mail for delivery" is a message from the enemy mail server.
[20:07:09] <stellina> but I don't see it in my hotmail and all my users complain for this
[20:07:19] <Signum> stellina: what did the hotmail people tell you?
[20:07:33] <stellina> I haven't asked them yet
[20:07:36] <rob0> stellina: a known issue. Hotmail is terribly irresponsible in the way they throw away mail.
[20:08:05] <stellina> rob0: I See
[20:08:52] <stellina> I'll try t contact them.... hoping they won't throw this mail also
[20:09:26] <x-ip> wich mta use hotmail ?
[20:09:31] <rob0> You can do things to maximize your chances, but I've done all those, and I've had mail tossed.
[20:09:46] <Signum> x-ip: surely not postfix :)
[20:09:49] <rob0> I think they're using MSexChange now.
[20:10:23] <stellina> did u also have problems sending to hotmail? if so, how did you solve them?
[20:11:35] <rob0> Occasionally yes. I contact hotmail users out-of-band. I don't have time to try to help Hotmail solve their problems.
[20:12:26] *** AJ_Z0 has quit IRC
[20:13:42] *** ciel_ has joined #postfix
[20:13:51] *** Motoko-chan has joined #postfix
[20:15:00] *** Ryushin has quit IRC
[20:24:26] *** x-ip has quit IRC
[20:27:59] *** andrago has quit IRC
[20:39:10] *** tryfan has quit IRC
[20:43:03] *** Mazon is now known as mazon
[20:43:05] *** mazon is now known as Mazon
[20:45:08] <darkphader> how does (or can) an MTA  tell the difference between a connection from an MTA and an MUA ?
[20:46:07] <devdas> it can't
[20:47:54] *** ggeller has left #postfix
[20:49:21] <ciel_> If the sender is a MUA, it probably doesn't initiate the connection with 25 source port ?
[20:49:50] <ciel_> mmm or a "low port".
[20:49:52] <Signum> darkphader: and it doesn't need to.
[20:49:55] <rob0> most MUAs default to port 25.
[20:50:41] *** rootsvr has joined #postfix
[20:50:49] <darkphader> comcast is telling me i'm using a mail server and is now blocking me because of it
[20:51:09] <darkphader> i'm forwarding everything to their server using a transport map
[20:52:29] <darkphader> rob0: u mean source port?
[20:53:32] <rob0> of course not, they CONNECT to 25. Destination port. Source port 25 requires privilege on sensible OS's.
[20:54:05] <darkphader> rob0: the mta also connects to port 25
[20:54:06] *** rootsvr has quit IRC
[20:54:21] <rob0> Maybe Comcast is requiring you to use a comcast.net sender address.
[20:54:27] *** piedoggie has quit IRC
[20:54:37] <darkphader> rob0: never needed to do that before
[20:54:50] <darkphader> they claim it's mail server use
[20:55:07] <rob0> some other ISPs do that, so maybe it's new.
[20:55:22] <Signum> Like that makes any difference... ISPs are increasingly weird.
[20:56:04] <rob0> Comcast was never very smart, and like most, they're getting worse if anything.
[20:56:35] <darkphader> "Comcast does not allow subscribers to send email from a mail server other than smtp.comcast.net."
[20:56:47] <darkphader> is what they sent me
[20:57:23] <Signum> darkphader: does that mean they want you to relay through smtp.comcast.net? then do that.
[20:57:39] <darkphader> Signum: i do that, and have been for years
[20:58:19] <darkphader> but I've been using a transport map and not relayhost
[20:58:34] <Signum> darkphader: why a transport map?
[20:58:52] <darkphader> because it worked that way
[20:59:03] <darkphader> i guess relayhost works as well
[20:59:16] <darkphader> at first i though relayhost would relay everything
[20:59:36] <darkphader> and then i couldn't send directly to my loacl imap server
[20:59:46] <darkphader> but i see now that that isn't the case
[21:00:34] <darkphader> does the remote mta see a difference between a forward via a tranport map vs the relayhost parameter?
[21:02:05] <Signum> I couldn't imagine how.
[21:02:53] <rob0> What was that message in reply to? Why did they tell you this?
[21:03:14] <darkphader> i was getting timeouts on port 25, mail stuck in q
[21:03:26] <darkphader> called and was directed to their rbl page
[21:03:39] <Signum> darkphader: did you try to deliver to other mail server directly through port 25?
[21:03:47] <rob0> port 25 to smtp.comcast.net ?
[21:04:11] <darkphader> no, that worked years ago but not any longer wioth all the dul lists, etc.
[21:04:12] *** hachiya has joined #postfix
[21:06:07] *** smesjz has quit IRC
[21:08:49] <darkphader> rob0: yes
[21:10:21] <darkphader> get this: "You have been blocked from emailing the Comcast network because we have determined that you are sending email from a dynamic/residential IP within the Comcast domain."
[21:10:30] <darkphader> of course i am
[21:10:33] <rob0> pastebin some of the logs of these timeouts
[21:12:07] <darkphader> timeouts were shown with the mailq
[21:12:19] <darkphader> i deleted all the mail in the queue
[21:12:31] <darkphader> port 25 is now blocked
[21:13:06] *** siddharta has left #postfix
[21:13:22] <rob0> did you delete the logs?
[21:14:40] *** fl4mi has joined #postfix
[21:18:40] *** siddharta has joined #postfix
[21:18:45] <siddharta> re hello
[21:19:03] <siddharta> Failed to add recipient: tinom@localhost [SMTP: Invalid response code received from server (code: 504, response: <tinom@localhost>: Recipient address rejected: need fully-qualified address)]
[21:19:25] <siddharta> from which criteria in main.cf do you think this error may come from
[21:19:50] <darkphader> rob0: Apr 24 12:24:40 davinci postfix/smtp[6320]: connect to smtp.comcast.net[204.127.200.17]: Connection timed out (port 25)
[21:20:10] <darkphader> they are all pretty much the same
[21:22:10] *** flami has quit IRC
[21:22:14] *** fl4mi is now known as flami
[21:22:22] *** dinochopins has joined #postfix
[21:22:40] <Signum> siddharta: where did you read that error message?
[21:24:46] <siddharta> from horde
[21:25:14] <siddharta> a groupware gpl app
[21:26:08] <Signum> siddharta: you better check the actual message in your postfix's log
[21:28:24] <siddharta> Apr 24 21:27:39 FENUA postfix/cleanup[96776]: fatal: open database /etc/postfix/canonical.db: No such file or directory
[21:28:25] <siddharta> Apr 24 21:27:40 FENUA postfix/master[17743]: warning: process /usr/local/libexec/postfix/cleanup pid 96776 exit status 1
[21:28:25] <siddharta> Apr 24 21:27:40 FENUA postfix/master[17743]: warning: /usr/local/libexec/postfix/cleanup: bad command startup -- throttling
[21:28:52] <siddharta> well i've chosen to have map aliases
[21:29:19] <siddharta> so i read the postfix.org site and i 've put the line :
[21:29:34] <Signum> siddharta: you probably want to "postmap /etc/postfix canonical"
[21:29:42] *** instabin has joined #postfix
[21:29:45] <instabin> hello
[21:29:51] <instabin> i need some help
[21:30:34] <instabin> I installed ubuntu server with ispconfig using a tutorial now i get this when trying to do email Error: Password error: Maildir: No such file or directory
[21:30:43] <siddharta> well on freebsd it is postmap /usr/local/etc/postfix/canonical
[21:30:53] <siddharta> Signum:
[21:31:00] <Signum> instabin: "do email"? you mean POP or IMAP or SMTP?
[21:31:11] <Signum> siddharta: okay.
[21:31:14] <siddharta> tha's what i did already
[21:31:30] <instabin> signum: i get it in the ispconfig  domain/mailuser and pop
[21:31:39] <Signum> siddharta: postfix searches for that file in /etc/postfix. your paths are probably wrong.
[21:31:52] <Signum> instabin: so you get that error when trying to POP email?
[21:31:58] <instabin> Yes
[21:32:10] <siddharta> but i don't understand why the error message ask for a .db
[21:32:13] <Signum> instabin: send an email to that virtual user first
[21:32:16] <siddharta> bu i put the option
[21:32:18] <Signum> instabin: that will automatically create the maildir
[21:32:23] <instabin> Signum I dont now how
[21:32:37] <instabin> Im testing it on a closed network
[21:32:43] <Signum> siddharta: because "hash:" refers to a *.db file. you need to "postmap" your "canonical" file to get a "canonical.db"
[21:33:01] <Signum> instabin: then use "echo test | sendmail to@whoever"
[21:33:02] <instabin> domain is domain.local
[21:33:04] <instabin> ok
[21:33:13] <siddharta> ahhhhhhhh ok
[21:33:21] <siddharta> thx Signum
[21:33:27] <Signum> siddharta: yw
[21:33:30] <rob0> siddharta's pasted error says "/etc/postfix/canonical.db"
[21:33:42] <instabin> same problem
[21:34:08] <Signum> instabin: is the maildir present on the harddisk? did you check the logs if the delivery was successful?
[21:34:30] <instabin> Signum: I dont know this is my first server setup
[21:34:45] <Signum> instabin: Don't worry. Just check the logs first.
[21:34:52] <instabin> which log
[21:35:10] <Signum> instabin: your mail log. Ubuntu you said? Then /var/log/mail.log
[21:36:48] <instabin> Signum: what am i looking for in the log
[21:37:48] <Signum> instabin: just send your last x lines to a pastebin if you are unsure and let us have a look
[21:39:38] *** MrRagga has joined #postfix
[21:39:48] <instabin> Signum http://pastebin.ca/456343
[21:42:03] <Signum> instabin: which email address did you send to?
[21:42:12] <instabin> admin at fultonprecision dot local
[21:43:11] <Signum> instabin: did you expect that email to be delivered to a system user or a virtual user?
[21:43:27] <instabin> virtual user
[21:43:36] <Signum> instabin: run "postconf mydestination" please and tell us what you see
[21:44:02] *** Zeit|awy has joined #postfix
[21:44:04] <instabin> mydestination = /etc/postfix/local-host-names
[21:44:18] <Signum> instabin: is "fultonprecision.local" listed in that file?
[21:44:37] <instabin> yes
[21:44:41] *** Zeit|idle has quit IRC
[21:44:54] <instabin> also www.ful....
[21:44:56] <Signum> instabin: bad. mydestination lists the local domains.
[21:45:06] <instabin> ?
[21:45:12] <Signum> instabin: virtual domains don't belong there. they need to be defined as virtual_mailbox_domains
[21:45:25] <instabin> I didnt configure it ispconfig did
[21:45:45] <Signum> instabin: if ispconfig (which I don't know) configured that mydestination then it's buggy or you operated it incorrectly :)
[21:45:54] <instabin> lol
[21:46:06] <instabin> Well here ill tell you what im trying to do
[21:46:14] <Signum> instabin: the logs say "relay=local" which means the mail is delivered to *local* users instead of *virtual* users. that's not what you want.
[21:46:31] <instabin> ok so what do i do
[21:46:36] <instabin> just take it out?
[21:47:00] <Signum> instabin: It just doesn't belong there. Either you or ispconfig has to take it out of there.
[21:48:51] *** frennkie has quit IRC
[21:49:44] <instabin> ok i took it out manualy now do i have to restart postfix
[21:50:10] <Signum> Yes.
[21:50:37] *** cpm has quit IRC
[21:51:17] *** devdas has left #postfix
[21:51:47] <instabin> ok
[21:52:05] <Signum> Or just "postfix reload"
[21:52:33] <instabin> i did /etc/init.d/postfix restart
[21:53:09] <Signum> fine
[21:53:23] <instabin> Same problem http://pastebin.ca/456365
[21:54:00] <Signum> Try the "postconf mydestination" again. And double-check the domain is no longer listed in the /etc/postfix/local-host-names file
[21:55:35] <instabin> here is whats in local-host-names
[21:55:37] <instabin> localhost
[21:55:37] <instabin> WEB1.fultonprecision.com
[21:55:37] <instabin> localhost.WEB1.fultonprecision.com
[21:55:37] <instabin> localhost.fultonprecision.com
[21:55:37] <instabin> localhost.localdomain
[21:57:42] <Signum> instabin: Is the "to=<admin at web1 dot fultonprecision.com>" line a new one?
[21:58:52] <instabin> ?
[21:59:01] <instabin> what do you mean mean a new one
[21:59:54] <instabin> Im thinking about starting over from scratch.... All i want to is setup a simple web server and an email server with spam and anti-virus
[22:00:09] <Signum> Did you try to send another mail and is this line a new log line that was written while you sent the email?
[22:00:20] <instabin> yes
[22:00:25] <Signum> Very strange.
[22:00:35] <Signum> Please pastebin "postconf -n".
[22:01:31] <instabin> http://pastebin.ca/456381
[22:04:03] <Signum> instabin: I'm surprised to see no virtual_* settings in there. What is ispconfig? A web interface?
[22:04:32] <instabin> http://www.ispconfig.org/
[22:04:44] *** Zaw has joined #postfix
[22:06:17] <Signum> instabin: If you don't mind I'd suggest you start smaller and rather than using such a high-level interface you rather walk through the basic readme on the postfix site.
[22:06:27] <Signum> instabin: Unless of course you intend to use the server for 50 domains and 200 users.
[22:06:29] *** birmaan has quit IRC
[22:06:58] <instabin> LOL
[22:07:09] <instabin> no its only for one domain
[22:07:13] <instabin> and about 25 users
[22:07:47] <instabin> I just dont know how to set anything and and was following tutorials
[22:08:15] <instabin> So should i format my server?
[22:08:47] <Signum> Uhm. No? Are you coming from Windows? Formatting solves everything? ;)
[22:09:04] <instabin> Well I install all this crap for the tutorial
[22:09:09] <Signum> Ignore ispconfig (or remove it)... read through the basic readme on www.postfix.org, drink a tea...
[22:09:12] <instabin> and i dont know how to take it out
[22:09:26] <Signum> Tutorials are bad if you lack the basic understanding. If anything goes wrong (like in your case) you are boned.
[22:09:35] <instabin> LOL
[22:09:35] <instabin> yea
[22:09:45] <instabin> can i tell you what i need to setup
[22:09:58] <instabin> and you can give me a recomendation of what to use
[22:10:13] <Signum> Sure. But my recommendation will likely be: postfix is good - the basic readme is good
[22:11:10] <instabin> I need web site (yea apache...;) )   then i need email (pop3 spam filtering, anti-virus, and webmail)
[22:11:24] *** sepski has quit IRC
[22:11:33] <instabin> Thinking about using scalix
[22:12:49] <Signum> WHY?
[22:13:46] <instabin> cuz it has web mail and integrates with spamassin and clam av
[22:14:09] <Signum> Oh, well...
[22:14:30] <instabin> has nice web management to add users
[22:14:31] <instabin> lol
[22:15:08] * Signum just has dark-side-way users in his IRC channels tonight
[22:15:25] <instabin> ?
[22:15:44] <instabin> signum: what does that mean
[22:15:59] * instabin confused
[22:16:00] *** fifo_ has quit IRC
[22:16:48] <Signum> instabin: I'm just have a learning-resistant user in #squid who wants me to log into his server and fix his issues instead of reading a screenful of documentation.
[22:17:15] <instabin> Oh
[22:17:30] <instabin> LOL
[22:17:49] <instabin> Iv been reading and reading and Im just trying to find the simplest solution
[22:17:59] <instabin> That i can support my self
[22:18:02] <Signum> instabin: reminds me a bit of you. you refuse to read the basic documentation and rather want to waste your time with ready tutorials and web interfaces
[22:18:18] <Signum> instabin: there is no trivial way. but postfix isn't especially hard either. just start.
[22:18:43] <instabin> ok
[22:18:50] <instabin> See what i can come up with
[22:18:54] <siddharta> Signum: could ou explain me something
[22:18:55] <instabin> you be on here tomorrow?
[22:19:17] <Signum> instabin: There are a few dozen people here who are just giggling about us. They might be able to help as well. :)
[22:19:23] <siddharta> in my main.cf i put thes option:
[22:20:07] <instabin> Im just going to let you know how far I got tomorrow
[22:20:19] <Signum> instabin: Okay. :)
[22:20:24] <siddharta> myhostname = FENUA.foo.site.com
[22:20:41] <siddharta> but in my maillog i get this
[22:20:45] <instabin> or if i just dumped it and switched to exchange and server 2003.... NOT ;P
[22:21:55] <siddharta> Apr 24 22:15:25 FENUA postfix/smtp[97037]: B68FC45071: to=<tinom at localhost dot foo.site.com>, orig_to=<tinom@localhost>, relay=smtp.orange.fr[193.252.22.106]:25, delay=0.59, delays=0.01/0.01/0.31/0.26, dsn=2.0.0, status=sent (250 Ok: queued as E1C9F70000A1)
[22:22:09] <siddharta> why is it localhost and not FENUA
[22:25:34] *** evilstrike has joined #postfix
[22:25:59] *** frennkie has joined #postfix
[22:26:28] <evilstrike> hi, where can I find an updated list for the setting maps_rbl_domains and im still using relays.ordb.org which has been dead I think for a while
[22:27:02] *** frennkie has quit IRC
[22:27:08] <Signum> evilstrike: there is no "good list" because all the available lists are dangerous in their own way
[22:27:11] <rob0> haha you are a bit behind the times ... maps_rbl_domains was deprecated in 2.1
[22:27:28] <evilstrike> ah\
[22:27:45] <Ciaran_H> You want one of the rules of check_recipient_access, I think.
[22:27:51] <rob0> The only way to do it is to read each RBL's policies and decide who you trust.
[22:27:52] <Ciaran_H> Can't remember which one though.
[22:27:53] <evilstrike> i deed i just got ahold of the mail server and I wasnt the one that has set the thing
[22:28:09] <rob0> reject_rbl_client
[22:28:10] *** instabin has quit IRC
[22:28:16] <evilstrike> So i should scrap maps_rbl and use reject_rbl?
[22:28:39] <rob0> reject_rbl_client in smtpd_recipient_restrictions (or some other stage if you prefer)
[22:28:59] <evilstrike> any good ways to filter the new kind of spam containing images?
[22:29:02] <Ciaran_H> rob0: Sorry, yeah, that's what I meant, I got the name wrong.
[22:29:02] <rob0> One reject_rbl_client for each RBL you choose.
[22:29:28] <siddharta> Signum: it is very strange no ?
[22:29:53] <rob0> I'm using zen.spamhaus and probably NJABL now.
[22:30:31] <evilstrike> it auto-learn the patterns?
[22:30:43] <rob0> Zen rocks. I get very little spam since February or so. But, some folks might not like the new PBL.
[22:31:02] <evilstrike> ill get a look at Zen
[22:31:09] <rob0> Zen has all but stopped image spam for me.
[22:31:17] <rob0> I get maybe 2-3 a month.
[22:31:28] <Signum> siddharta: Not that strange really. Who generated that email? Postfix?
[22:31:38] <evilstrike> is it easy to incorporate in a running mail server?
[22:31:54] <rob0> 20:28 < rob0> reject_rbl_client in smtpd_recipient_restrictions (or some other stage if you prefer)
[22:32:09] <rob0> !cheatsheet
[22:32:10] <knoba> rob0: 'cheatsheet' : http://jimsun.linxnet.com/misc/postfix-anti-UCE.txt : A HOWTO for pre-DATA spam control.
[22:32:29] <rob0> the HELO checks described in ^^ are important too
[22:32:36] <evilstrike> nice
[22:32:43] <evilstrike> it looks like a real details doc
[22:32:50] <evilstrike> detailed*
[22:33:06] <rob0> yes, it really helped me start to understand how Postfix works.
[22:33:17] <siddharta> horde tells postfix to send it via the sendmail cmmand
[22:33:19] <siddharta> command
[22:33:24] <evilstrike> Ill read this in between user support haha
[22:34:50] <evilstrike> one of my users messed up their inbox this moring, I have no idea what she did but it was really messed up, I had to reconstruct the structure and restore emails from backup
[22:35:30] <evilstrike> and then of course she had the nerve to tell me "im missing some emails" and im like "i know you do lol, its a freaking back!"
[22:35:34] <evilstrike> backup*
[22:36:56] <pdbogen> Is it possible to configure postfix to connect for outgoing SMTP using SSL on another server (not a smart host, just to know to use SSL when delivering to that server)?>
[22:38:05] *** MrRagga has quit IRC
[22:38:48] *** AJ__Z0 is now known as AJ_Z0
[22:40:49] <evilstrike> rob0: So all I would need to do is ajust the order of my restriction, comment out maps_rbl_domains  and add a line in my restriction that looks like "reject_rbl_client zen.spamhaus.org" is that right?
[22:42:17] *** cilly has quit IRC
[22:42:36] *** cilly has joined #postfix
[22:46:14] *** csm-laptop has quit IRC
[22:47:21] *** ashd has quit IRC
[22:49:43] *** gAri- has joined #postfix
[22:52:29] <evilstrike> does reject_rbl_client also work with postfix v1?
[22:54:16] *** Mr_Sako has joined #postfix
[22:56:17] *** Mr_Sako has quit IRC
[23:14:02] *** evilstrike has quit IRC
[23:20:00] *** mordaunt has left #postfix
[23:37:25] *** pirho has joined #postfix
[23:42:03] *** hemry has quit IRC





top