postfix IRC logs [May 19

[00:06:15] *** meandtheshell has joined #postfix
[00:07:27] *** lunaphyte has joined #postfix
[00:15:49] *** xpoint has quit IRC
[00:20:34] *** etaylor has joined #postfix
[00:23:08] *** SiliconG_ has quit IRC
[00:34:47] *** AJ_Z0 has quit IRC
[00:35:07] *** AJ_Z0 has joined #postfix
[00:37:15] *** pickcoder has quit IRC
[00:51:16] *** hoodow has joined #postfix
[00:54:10] *** AJ_Z0 has quit IRC
[00:54:27] *** AJ_Z0 has joined #postfix
[01:08:40] *** SiliconG has joined #postfix
[01:25:07] *** Danielss89 has quit IRC
[01:37:30] *** hparker has quit IRC
[01:48:44] *** war has joined #postfix
[02:06:36] *** war has quit IRC
[02:22:31] *** Mazon is now known as mazon
[02:34:45] *** Chico-SP has quit IRC
[02:39:21] *** etaylor has quit IRC
[02:46:26] *** FskU has joined #postfix
[02:49:26] <FskU> can anyone recommend a decent postfix tutorial for a newbie?
[02:49:40] <FskU> beyond the manual that is...
[02:51:06] <FskU> I'll take that as a nooo...
[02:58:18] *** FskU has left #postfix
[02:59:01] *** quik_ has joined #postfix
[02:59:04] <quik_> hey folks
[02:59:49] <quik_> I'd like to configure postfix to route mail from a whole range of dynamic email addresses (same domain) to my web application. Where should I start to look for something of this nature?
[03:00:00] <quik_> I believe there is a mysql module for postfix?
[03:05:00] *** Tachy has joined #postfix
[03:14:44] *** seather has quit IRC
[03:17:31] *** Tachy_ has quit IRC
[03:20:44] *** keanne has joined #postfix
[03:24:21] *** cilly has joined #postfix
[03:31:45] *** nemo_wor1 has joined #postfix
[03:31:46] *** nemo_work has quit IRC
[03:43:04] *** quik_ has quit IRC
[03:49:50] *** seather has joined #postfix
[04:05:07] *** sc00p has joined #postfix
[04:11:46] *** amrit|wrk is now known as amrit|bbl
[04:21:50] *** doomas has joined #postfix
[04:32:48] *** seather has quit IRC
[04:35:01] *** doomas_ has quit IRC
[04:35:44] *** seather has joined #postfix
[04:54:48] *** harux has left #postfix
[05:01:17] *** fujin has joined #postfix
[05:17:05] *** j^2 has quit IRC
[05:17:05] *** espenhn has quit IRC
[05:17:05] *** lailai has quit IRC
[05:17:05] *** js_ has quit IRC
[05:17:06] *** enyc has quit IRC
[05:17:06] *** nightswim has quit IRC
[05:17:10] *** js_ has joined #postfix
[05:17:13] *** lailai has joined #postfix
[05:18:27] *** lailai has quit IRC
[05:18:27] *** js_ has quit IRC
[05:18:29] *** ek has quit IRC
[05:18:29] *** mirlyn has quit IRC
[05:18:29] *** magikman has quit IRC
[05:18:29] *** F|oFF has quit IRC
[05:18:29] *** rodrickbrown has quit IRC
[05:18:30] *** Dominian has quit IRC
[05:18:30] *** jack404 has quit IRC
[05:18:30] *** confound has quit IRC
[05:18:31] *** Radiance has quit IRC
[05:18:31] *** aba- has quit IRC
[05:18:31] *** glitchz has quit IRC
[05:18:31] *** jontow has quit IRC
[05:18:32] *** jontow has joined #postfix
[05:18:32] *** confound has joined #postfix
[05:18:33] *** rodrickbrown has joined #postfix
[05:18:36] *** lailai has joined #postfix
[05:18:48] *** magikman has joined #postfix
[05:18:48] *** ek has joined #Postfix
[05:19:05] *** Radiance has joined #postfix
[05:19:51] *** glitchz has joined #postfix
[05:19:55] *** F|oFF has joined #postfix
[05:21:13] *** rob0 has quit IRC
[05:21:13] *** jpalmer has quit IRC
[05:21:16] *** jpalmer has joined #postfix
[05:22:07] *** j^2 has joined #postfix
[05:22:09] *** nightswim has joined #postfix
[05:22:10] *** espenhn has joined #postfix
[05:22:10] *** js_ has joined #postfix
[05:22:25] *** enyc has joined #postfix
[05:22:28] *** prebur has quit IRC
[05:22:29] *** sk has quit IRC
[05:22:29] *** Godsey has quit IRC
[05:22:29] *** JimB has quit IRC
[05:22:29] *** ptitlouis has quit IRC
[05:22:30] *** klauwhamer has quit IRC
[05:22:30] *** Godsey has joined #postfix
[05:22:40] *** JimB has joined #postfix
[05:22:41] *** sk has joined #postfix
[05:23:03] *** ptitlouis has joined #postfix
[05:23:22] *** Kalavera has joined #postfix
[05:23:28] *** Dominian has joined #postfix
[05:23:29] *** aba- has joined #postfix
[05:25:05] <Kalavera> hi guys
[05:26:14] *** rob0 has joined #postfix
[05:26:32] <Kalavera> hi rob0
[05:39:58] *** klauwhamer has joined #postfix
[05:43:50] *** klauwhamer has quit IRC
[05:44:03] *** klauwhamer has joined #postfix
[05:46:37] *** prebur has joined #postfix
[05:47:49] *** fujin has quit IRC
[05:54:11] *** gutzb4ll has joined #postfix
[05:54:14] <gutzb4ll> hello
[05:54:29] <gutzb4ll> what is the config directive to make postfix relay ll its mail through one server?
[05:56:12] <gutzb4ll> i have a workstation and i want to make sure that all outgoing email goes through the company email server
[05:59:34] <Kalavera> mmmm i am trying to do the same thing but i can't get
[05:59:35] <Kalavera> :D
[06:02:00] <gutzb4ll> its the relayhost directive
[06:02:03] <gutzb4ll> i fiured it out
[06:02:06] <gutzb4ll> figured**
[06:09:31] <Kalavera> for incoming mail i use transport
[06:09:42] *** Tinozaure is now known as Tino
[06:09:43] *** Tino is now known as Tinozaure
[06:09:58] <Kalavera> but i don't sure if it works for your case
[06:38:35] *** cilly has quit IRC
[06:39:06] *** cilly has joined #postfix
[06:50:25] *** rmayorga has quit IRC
[06:54:11] *** gutzb4ll has quit IRC
[07:08:07] *** cilly has quit IRC
[07:09:14] *** rmayorga has joined #postfix
[07:13:02] *** SiliconG has quit IRC
[07:30:47] *** GMFlash has quit IRC
[07:30:54] *** GMFlash has joined #postfix
[07:36:54] *** nemo_wor1 has quit IRC
[07:37:22] *** birmaan has joined #postfix
[07:39:23] *** nemo_work has joined #postfix
[07:51:16] *** quik_ has joined #postfix
[07:54:16] <quik_> I'd like to configure postfix to route mail from a whole range of dynamic email addresses (same domain) to my web application. Where should I start to look for something of this nature?
[08:08:15] <many> you want to send to some application based on who sent the mail?
[08:08:32] <many> not on destination email?
[08:11:56] *** Lap_64 has joined #postfix
[08:34:34] *** quik_ has quit IRC
[09:07:54] *** hoodow has left #postfix
[09:08:22] *** hparker has joined #postfix
[09:09:49] *** amrit|bbl is now known as amrit|zzz
[09:10:16] *** quik_ has joined #postfix
[09:10:43] <quik_> many: I got d/c earlier from flat laptop!
[09:11:04] <quik_> many: I want to create a random / hashed email address (aj12j1886 at domain dot com)
[09:11:13] <quik_> and have it forward on to my application
[09:11:35] <quik_> they're not 'random' just, delegated, unique to a user type of thing
[09:12:11] <many> well, i see two possibilities
[09:12:23] <many> either you take subdomain aside and configure a catchall delivered to your script
[09:12:51] <many> or you use postfix' filtering capabilities to plug your script in, somewhat like spamassassin or amavis
[09:22:34] <quik_> many: I kind of like the idea of using something like mysql (for virtual users) because that way postfix will filter out accounts that don't exist before I bother hitting the application with them (reject them)
[09:23:17] <many> indeed
[09:23:51] <many> deliber to a pseudo user
[09:26:10] <quik_> where is a good place to get started (in terms of library names or even guides for this?)
[09:28:20] <many> why libraries
[09:29:21] *** _bugz_ has joined #postfix
[09:30:38] <hparker> Use a + address for them
[09:33:44] *** Thurisaz has joined #Postfix
[09:33:57] <Thurisaz> hi all
[09:34:06] <Thurisaz> I have question
[09:34:08] <Thurisaz> :)
[09:34:50] <Thurisaz> How to configure the mail server to delete messages from trash?
[09:35:19] <Thurisaz> I'm using Postfix - 2.4.0 + Dovecot - 1.0.0
[09:36:04] <hparker> Sounds like a Dovecot problem to me, postfix just delivers the mail
[09:36:23] <Thurisaz> maybe
[09:37:03] <Thurisaz> but in the channel Dovecot no one aswer me
[09:37:07] <Thurisaz> answer*
[09:37:41] <hparker> Then have your MUA empty the trash
[09:38:36] <Thurisaz> how to configure it?
[09:39:24] <Thurisaz> I'm using webmail roundcube
[09:39:39] <hparker> Hell if I know, don't have a clue of your MUA.. that said, my MUA experience is limited
[09:39:45] *** stony has joined #postfix
[09:40:16] <hparker> Never looked at roundcube, sorry
[09:40:16] <stony> hi
[09:40:23] <hparker> lo stony
[09:41:38] <ek> Thurisaz: Roundcube would generally be responsible for deleting the trashed mail.
[09:41:54] <ek> However, I'm not sure roundcube has a module/add-on to do that just yet.
[09:42:09] <ek> You can check the Roundcube plugins though.
[09:42:22] <many> i dont think +ed adresses do make sense in quiks environment
[09:42:26] <ek> Thurisaz: If it's very important, you  might want to consider using something like SquirrelMail instead.
[09:42:40] <Thurisaz> ok
[09:42:49] <Thurisaz> ek, thanx dude
[09:42:54] <ek> No problem.
[09:45:10] <hparker> squirrelmail is nice.. And light
[09:46:23] <ek> Yup. I love SquirrelMail.
[09:46:34] <ek> I use Roundcube, Horde, and Squirrel.
[09:47:12] <ek> These days quotas are so damned large it's almost useless to automatically purge trash folders...
[09:47:19] *** Lap_64 has quit IRC
[09:47:23] <ek> Kind of a shame though. A lot people actually do let them fill.
[09:52:32] *** frennkie has joined #postfix
[09:54:37] *** rmayorga has quit IRC
[10:01:26] *** war has joined #postfix
[10:05:53] <quik_> hparker: a + address?
[10:06:48] <quik_> many: what do you think of a guide such as this? http://www.howtoforge.com/virtual_postfix_mysql_quota_courier
[10:08:28] <ek> quik_: Seems reasonable to me. What would be wrong with it?
[10:08:33] <many> quik: a + adress is user+something at doma dot in
[10:09:00] <quik_> ek: "This is a "copy & paste" HowTo!"
[10:09:12] <ek> quik_: They're everywhere.
[10:09:19] <quik_> yerk
[10:09:26] <ek> With small amounts of explanation they can be very effective though.
[10:09:47] <quik_> be a sysadmin with the use of three keyboard buttons
[10:09:54] <quik_> sweet
[10:10:12] <ek> The only reason I don't bad-mouth copy & paste guides for MTAs is because even if the admin doesn't understand what's going on they'll still have a properly set up system.
[10:10:19] <ek> As opposed to an open relay and the like.
[10:10:36] <ek> Because, as we all know, the silly bastard is going to set up the MTA anyway...
[10:10:41] <ek> Regardless of knowledge.
[10:10:53] *** nemo_work has quit IRC
[10:11:11] <many> quik_: for example i could use mc+postfix at ukeer dot de, which'll result in the mail being delivered to mc at ukeer dot de, the +postfix part is just some candy to distinguish own adresses better.
[10:11:22] <ek> I've written a copy & paste guide myself.
[10:11:27] <ek> I'm still finishing up the final touches.
[10:11:37] <ek> It's mainly for a complete ISP system though.
[10:12:08] <quik_> ek: make sure you sum up what the command and the options that you used actually did
[10:12:38] <ek> quik_: That's the plan.
[10:12:53] <ek> At the moment, the guide is 100% complete. Just need to go through and the comments and such.
[10:13:04] <ek> It's very large though. Going to take quite some time to explain everything.
[10:14:09] <quik_> ek: so I setup my postfix. for the domain I point the mx records at my server?
[10:14:25] *** nemo_work has joined #postfix
[10:16:35] <ek> quik_: At the Postfix server, yes.
[10:16:56] <quik_> just a single mx record? (I have only one server)
[10:17:05] <ek> Yes.
[10:17:37] <ek> domain.tld         in        mx 10      postfix.domain.tld
[10:17:39] <ek> etc...
[10:17:51] <quik_> sure
[10:17:52] <ek> You would use more MX records for more server. IE: backups and such.
[10:18:17] <quik_> then I can use mysql + postfix to auth the accounts and push everything on to my application.
[10:18:23] <ek> mx 10, mx 20, mx30, etc... The higher the number the lower in the chain.
[10:18:42] <ek> Sure.
[10:23:05] <ek> Anyhow, I'm off to bed. I'll catch you all tomorrow. G'night.
[10:23:52] <quik_> night ek
[10:27:52] *** nemo_wor1 has joined #postfix
[10:27:53] *** nemo_work has quit IRC
[10:35:13] *** sepski has joined #postfix
[10:36:25] *** nemo_work has joined #postfix
[10:36:26] *** nemo_wor1 has quit IRC
[10:36:50] <quik_> what is a FQDN?
[10:37:14] <many> fully qualified domain name
[10:38:22] <quik_> which means?
[10:40:31] <sepski>  server = hostname   server.domain.com = FQDN
[10:40:33] <many> hostname + complete domain
[10:40:54] <quik_> oh right
[10:40:59] <many> ukeer.de is my domain, krikkit is the box, krikkit.ukeer.de its FQDN
[10:41:16] <quik_> do you need to actually route a cname record from your dns for that?
[10:41:27] <many> why cname?
[10:41:35] <quik_> (no idea)
[10:41:50] <quik_> do I need to change anything in the dns?
[10:42:07] <many> krikkit.ukeer.de A 213.95.21.21; 21.21.95.213.in-addr.arpa IN PTR krikkit.ukeer.de. ; ukeer.de MX 10 krikkit.ukeer.de.
[10:42:15] <many> no cname needed there.
[10:42:25] <quik_> ok
[10:48:08] *** keanne has quit IRC
[11:07:09] *** hparker has quit IRC
[11:16:25] *** Zeit|awy has quit IRC
[11:20:49] *** Zeit|idle has joined #postfix
[11:24:49] *** stony_ has joined #postfix
[11:38:22] *** mazon is now known as Mazon
[11:39:54] *** Mazon is now known as mazon
[11:40:24] *** mazon has quit IRC
[11:42:50] *** stony has quit IRC
[11:43:58] *** mazon has joined #postfix
[11:45:09] *** mazon is now known as Mazon
[11:48:59] *** Thurisaz has quit IRC
[11:58:30] *** magikman has quit IRC
[12:10:50] *** smesjz has joined #postfix
[12:20:22] *** mustasj has quit IRC
[12:30:44] *** Paul23 has quit IRC
[12:31:08] *** Paul23 has joined #postfix
[12:57:27] *** Lap_64 has joined #postfix
[13:11:53] *** hemry has joined #postfix
[13:17:04] *** hoodow has joined #postfix
[13:30:58] *** stony_ is now known as stony
[13:40:52] *** mh_le has left #postfix
[13:41:45] *** pirho has joined #postfix
[13:45:55] *** xinming has quit IRC
[13:51:32] *** j416 has joined #postfix
[13:56:40] *** master_o1_master has joined #postfix
[14:03:03] *** quik_ has quit IRC
[14:07:40] *** master_of_master has quit IRC
[14:10:04] *** rootsvr has joined #postfix
[14:10:40] *** rootsvr has quit IRC
[14:13:36] *** rootsvr has joined #postfix
[14:16:20] *** j416 has left #postfix
[14:46:31] *** Lap_64 has quit IRC
[14:47:47] *** frennkie has quit IRC
[14:55:11] *** Lap_64 has joined #postfix
[15:00:57] *** rootsvr has quit IRC
[15:08:09] *** AJ_Z0 has quit IRC
[15:08:19] *** AJ_Z0 has joined #postfix
[15:18:47] *** Terminator has quit IRC
[15:21:42] *** xpoint has joined #postfix
[15:38:04] *** mrivera has joined #postfix
[15:39:12] *** AJ_Z0 has quit IRC
[15:47:56] *** jMCg has quit IRC
[15:56:10] *** jMCg has joined #Postfix
[16:03:37] *** hemry has quit IRC
[16:05:14] *** Lap_64 has quit IRC
[16:11:27] *** cilly has joined #postfix
[16:14:02] *** jMCg has quit IRC
[16:20:31] *** ma3x has joined #postfix
[16:20:32] <ma3x> hi
[16:20:37] <ma3x> can postfix accept mail for more domains?
[16:28:22] *** j416 has joined #postfix
[16:29:16] *** j416 has quit IRC
[16:30:24] *** cilly has quit IRC
[16:30:53] <xpoint> ma3x, that was a bit dumb :)
[16:31:05] <ma3x> xpoint, what?
[16:31:29] <xpoint> postconf -d | grep my
[16:31:47] <xpoint> tip localhost
[16:31:58] <xpoint> see the lines
[16:33:21] <ma3x> that's what im asking
[16:33:28] <ma3x> can I specify more than one domain for delivery?
[16:33:35] <ma3x> and where exactly?
[16:35:06] <xpoint> yes
[16:37:25] <ma3x> but I mean you can't set 2 hostnames on one machine right?
[16:37:28] <ma3x> so it is a little bit dumb
[16:42:19] <rob0> !basic
[16:42:20] <knoba> rob0: 'basic' : http://www.postfix.org/BASIC_CONFIGURATION_README.html : a good starting place for Postfix beginners, many common questions are answered here.
[16:45:11] *** SiliconG_ has joined #postfix
[16:45:55] *** hparker has joined #postfix
[16:48:14] <SiliconG_> I cant get postfix working with 587
[16:48:19] *** AJ_Z0 has joined #postfix
[16:48:20] <SiliconG_> port 587
[16:49:20] *** hoodow has left #postfix
[16:59:32] <xpoint> ma3x, if you have more then one ip on the machine you can assign a hostname to each ip with -o in master.cf
[17:00:43] <ma3x> xpoint, only one ip
[17:01:43] <xpoint> 127.0.0.1 exists
[17:05:40] <ma3x> mydestination = 127.0.0.1?
[17:05:58] <hparker> SiliconG_: Most master.cf have submission (which is port 587) included, though commented out
[17:06:07] *** rmayorga has joined #postfix
[17:06:08] <xpoint> no mydestination = localhost
[17:06:41] <xpoint> or mydestination = localhost, localhost.example.tld
[17:08:02] <xpoint> or even mydestination = localhost, localhost.example.tld, example.tld
[17:08:19] <xpoint> hey thats already 3 domains :-)
[17:08:24] <ma3x> xpoint, if I specify localhost only, connection gets refused
[17:08:33] <SiliconG_> hparker: I am not seeing that line - I have been through the file and it is not there
[17:08:34] <ma3x> when I try telnet to the 2 hosts on port 25 it works
[17:08:39] <ma3x> but postfix can't connect
[17:08:59] <xpoint> postconf -n
[17:09:32] <xpoint> mydestination have no access
[17:09:49] <ma3x> ok works now
[17:09:56] <xpoint> its either master.cf or mynetworks in main.cf
[17:09:57] <hparker> SiliconG_: Then, if it were me, I'd grab the tarball from postfix.org and look at master.cf in it
[17:10:19] <ma3x> when I added the localhost, localhost.example.tld, example.tld it works
[17:10:30] <hparker> but, I'm anal that way
[17:10:51] <xpoint> hparker, ebuilds are scary :-)
[17:11:32] <hparker> lol.. No, they're sane compared to some shit I've seen installed
[17:11:43] <xpoint> ma3x, start with a complete empty main.cf
[17:11:45] <rob0> hparker is a bit scary, himself!
[17:12:04] <ma3x> xpoint, what for ? it works now!
[17:12:33] <xpoint> ma3x, some where you will se if you clean it up :-)
[17:12:42] <hparker> rob0: you got that right.. All nighter and then.. Grocery shopping!!! ;)
[17:13:19] <xpoint> ma3x, best postfix conf is a empty main.cf to start with
[17:13:40] <SiliconG_> hparker: good call - one second
[17:13:48] <ma3x> xpoint, it works, why would I change it now?!
[17:13:49] <ma3x> lol
[17:14:12] <xpoint> get rid of whats not working
[17:14:49] <ma3x> xpoint, I got the same problem with apache
[17:15:05] <ma3x> I can telnet to sub.host.domain.com, but can't connect with the webbrowser to sub.host.domain.com
[17:15:09] <ma3x> connection gets reset
[17:15:48] <xpoint> Please know your Unix basics first
[17:17:22] <ma3x> dude, postfix works
[17:17:27] <ma3x> telnet works
[17:17:29] <ma3x> just apache won't work
[17:17:46] <xpoint> hparker, i have now 3 books about email on linux, he readed to much in them :-), hands are tired holding books and the same time try to type the rigth in a ssh :-)
[17:17:48] <ma3x> fine, I had 127.0.1.1 shit in /etc/hosts
[17:17:50] <ma3x> I didnt see that
[17:18:21] *** Mr_Molez has left #postfix
[17:25:24] *** rmayorga has quit IRC
[17:30:44] <SiliconG_> hparker: there is nothing about 587 in the source either
[17:31:36] <hparker> In master.cf there is submission, though it's commented out
[17:32:08] <rob0> Maybe a defective tarball, if that's missing.
[17:33:04] *** ma3x has left #postfix
[17:33:36] <SiliconG_> there is not I searched for 587 and nothing is there
[17:34:11] <hparker> SiliconG_: When did I say 587? I said submission
[17:34:20] * hparker cries
[17:34:36] <SiliconG_> ah ha - I see that
[17:34:46] <hparker> .....
[17:35:30] <SiliconG_> do I have to addd this also or just uncomment that part - 587 inet n - - - - smtpd
[17:35:52] * hparker runs away
[17:36:32] <rob0> "man 5 services"
[17:36:50] <SiliconG_> hparker: I am really not sure what to do here
[17:36:59] <rob0> IOW, standard ports have standard names.
[17:37:12] <hparker> Yaknow, neither am I
[17:37:21] <rob0> The example is there so you can remove the comments, and then it works.
[17:37:46] <hparker> I don't know if I should cry or finish the bourbon I have here..
[17:38:01] <rob0> 10:37 ... bourbon time!
[17:38:08] <SiliconG_> Grab a drink and help the newbie
[17:38:58] <hparker> rob0: Well,, I haven't quit yet.. Even went grocery shopping at a too early hour of the morning
[17:39:35] <rob0> No hour is too early. That's why God created 24-hour grocery stores.
[17:40:52] <hparker> things like grabbing the sawsall at.. Errmm... 02:00 and cutting water lines to the water heater.. Wrestling it out of the hole.. got new one in place. Off to McDs for coffee.. Been an eventful night ;)
[17:41:46] <hparker> Haven't had water shut off 12 hours yet and it's a pita! ;)
[17:42:12] <SiliconG_> hparker: there are two different submission entries which one do I need to look at and do I need to have a 587 inet n - - - - smtpd line somewhere
[17:42:34] <hparker> but.. i have coffee and a little bourbon left, so life is good ;)
[17:42:36] <many> for heavens sake
[17:43:04] <many> SiliconG_: did you ever understand how inetd configuration works?
[17:43:39] <hparker> SiliconG_: You need an entry similar to the submission entries in the default master.cf... As for a line with 587, I've never needed one
[17:44:03] <SiliconG_> many: not really
[17:44:08] <rob0> SiliconG_: I have already answered that: 15:36 < rob0> "man 5 services"
[17:44:21] <many> sigh.
[17:44:22] <SiliconG_> ok
[17:44:35] <hparker> mmMmm... bourbon
[17:45:00] <many> SiliconG_: how much *ix experience do you have at all?
[17:45:17] <many> SiliconG_: youre a frustrating customer. (maybe frustrated, too. ;)
[17:45:33] <rob0> To see how port name resolution works, try "getent services submission".
[17:46:34] <SiliconG_> many: I am not frustrated - I know enough - I have a problem and I cant figure it out - I have looked at a lot of stuff on the net and nothing works
[17:46:51] <SiliconG_> many: for example http://www.howtoforge.com/forums/showthread.php?t=4788
[17:46:55] <hparker> many: The scary thing is.. He has more clue then most coming in here wanting help
[17:47:44] <many> uhu?
[17:48:02] <hparker> ??
[17:48:11] <many> mhmh ;)
[17:48:19] * many takes the cookies and watches the show :P
[17:48:32] <hparker> lol
[17:48:52] <hparker> As long as it's not my bourbon!
[17:49:24] <many> well, it doesnt matter wether master.cf reads "587 inet n - - - - smptd" or "submission inet - - - - smtpd"
[17:49:27] <many> its the same.
[17:49:55] <SiliconG_> many: finally someone teaching me something - thank you - I didnt know that - what else can you tell me
[17:50:22] <hparker> should be, but usually the submission lines are there, just commented out
[17:50:45] <many> theres a resolution process, which resolves hosts, networks, and services (which is a translation of portnumbers to symbolic names)
[17:50:57] <many> this is usually done via NSS (/etc/nsswitch.conf)
[17:51:27] <many> and that files usually tells to use files for services, which in turn means that /etc/services is sought for symbolic names
[17:51:42] <many> this is  also why something like "telnet foo.host smtp" works
[17:52:10] <many> smtp is automagically translated to the number by the nss stuff which in turn reads /etc/services to know that
[17:52:29] <SiliconG_> ok
[17:53:14] <many> so, the basic thing is. numbers are for processes, symbolic names are for humans. thats why most people tell you to use submission in master.cf, because itll be more human readable 587
[17:53:40] <SiliconG_> got it
[17:53:43] <many> so both are the same, and even worse, if you'd entered both into master.cf, postfix most likely would break, because it would try to listen() 587 twice
[17:54:17] <SiliconG_> so which section of submission do I need to uncomment
[17:54:26] <SiliconG_> there are two entries there
[17:54:43] <SiliconG_> I assume it is the second set
[17:54:58] <many> which one?
[17:55:00] <many> many@krikkit:~$ grep -A 1 submission /etc/postfix/master.cf
[17:55:00] <many> #submission inet n      -       -       -       -       smtpd
[17:55:00] <many> #       -o smtpd_etrn_restrictions=reject
[17:55:01] <many> many@krikkit:~$
[17:55:11] <many> i have only one. how can there be two?
[17:55:24] <SiliconG_> #submission inet n      -       n       -       -       smtpd
[17:55:25] <SiliconG_> #       -o smtpd_etrn_restrictions=reject
[17:55:25] <SiliconG_> #       -o smtpd_client_restrictions=permit_sasl_authenticated,reject
[17:55:25] <SiliconG_> #smtps    inet  n       -       n       -       -       smtpd
[17:55:25] <SiliconG_> #  -o smtpd_tls_wrappermode=yes -o smtpd_sasl_auth_enable=yes
[17:55:25] <SiliconG_> #submission   inet    n       -       n       -       -       smtpd
[17:55:27] <SiliconG_> #  -o smtpd_etrn_restrictions=reject
[17:55:28] <SiliconG_> #  -o smtpd_enforce_tls=yes -o smtpd_sasl_auth_enable=yes
[17:55:33] <SiliconG_> that is what is in my file
[17:56:15] <hparker> !pastebin
[17:56:15] <knoba> hparker: 'pastebin' : a way to paste larger amounts of text so that other people can read it. Try http://www.rafb.net/paste/ or http://paste.debian.net/ - Do not forget to tell us the URL where you pasted it.
[17:56:20] *** frennkie has joined #postfix
[17:56:41] <many> the first enforces SASL, the second enforces TLS and asks for SASL
[17:56:52] <hparker> SiliconG_: Please use a pastebin for large pastes
[17:56:57] <many> so its the same again, just the set of -o(ptions) changes
[17:57:11] <many> and what options you need on the submission port - you should know better than us.
[17:58:01] * hparker gives up... Thinks it's all rob0's fault
[17:58:09] <many> (both reject ETRN, but very few people nowadays know what ETRN is, anyway)
[17:58:29] <SiliconG_> it is not an open relay now is it?
[17:58:41] <SiliconG_> and what is ETRN
[17:58:55] <many> bottomline, if you dont know it - you dont need it :P
[17:59:18] <many> also, everything thats in main.cf applies to your submission port, too
[17:59:28] <many> including all restrictions
[17:59:45] <many> however you may override all options from main.cf in master.cf with those magic -o lines you see there
[18:00:25] * many goes smoking a cig
[18:02:28] * rob0 accepts the blame
[18:05:07] <rob0> Watch out with that open flame around hparker's ethanol fumes.
[18:06:17] *** AJ__Z0 has joined #postfix
[18:06:58] *** AJ_Z0 has quit IRC
[18:07:06] *** AJ__Z0 is now known as AJ_Z0
[18:12:59] *** SiliconG_ has quit IRC
[18:22:22] *** xinming has joined #postfix
[18:29:30] *** mrivera has quit IRC
[18:31:11] <xpoint> etrn is nice for dialups
[18:32:26] <many> its also nice for secmxs
[18:33:10] <xpoint> its like "etrn example.tld" as in real life, please send all mails to example.tld before i go offline again :-)
[18:33:57] <many> s/to/for/
[18:35:55] <many> 0,000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000 n
[18:36:21] *** elriah has joined #postfix
[18:36:53] <elriah> Hi all.  How do I rewrite all of my FROM address fields to a specific email address in postfix?  Thanks for any help.
[18:42:39] <rob0> Generally that is something you'd do in your MUA. But perhaps the ADDRESS_REWRITING_README.html is what you want.
[18:44:15] *** Slaughter has joined #postfix
[18:44:19] *** AJ__Z0 has joined #postfix
[18:44:35] <Slaughter> hi
[18:45:18] <Slaughter> i've got a trouble with spammassin:
[18:45:55] <Slaughter> May 18 07:36:14 localhost spamd[16925]: auto-whitelist: open of auto-whitelist file failed: locker: safe_lock: cannot create t
[18:45:55] <Slaughter> mp lockfile /nonexistent/.spamassassin/auto-whitelist.lock.debian.16925 for /nonexistent/.spamassassin/auto-whitelist.lock: No
[18:45:55] <Slaughter> such file or directory
[18:47:53] <Slaughter> all users have a at home one folder called .spamassassin
[18:55:14] *** mrivera has joined #postfix
[18:55:35] *** AJ_Z0 has quit IRC
[19:03:58] *** xinming_ has joined #postfix
[19:08:10] *** Slaughter has left #postfix
[19:09:48] *** xinming has quit IRC
[19:10:10] *** AJ__Z0 is now known as AJ_Z0
[19:27:59] *** magyar has joined #postfix
[19:30:50] *** GMFlash has quit IRC
[19:30:54] *** GMFlash has joined #postfix
[19:31:08] *** Lap_64 has joined #postfix
[19:41:16] *** frennkie has quit IRC
[19:43:52] *** Fr0zen_ has joined #postfix
[19:50:09] *** geemark has joined #postfix
[19:51:24] <geemark> I realize this is not neccesarily a postfix question, but not sure where else to ask - how do I make IMAPD use another folder for imap folders than the users home directory?
[19:53:08] <smesjz> imapd? Cyrus?
[19:53:19] <geemark> uw-imapd
[19:55:08] <smesjz> hmm, not experienced with that. I use Dovecot and Courier
[19:56:29] <geemark> well I use postfix with procmail - can I switch to some other imap deamon transparently? i.e. one that uses the same file format - in which should I choose in that case?
[19:57:02] <rob0> Dovecot. I don't think Courier supports mbox.
[19:57:37] <rob0> otoh, it might be worth the trouble to switch to maildir anyway.
[19:57:45] <geemark> and Dovecot supports SSL as well as changing the default folder?
[19:57:56] <geemark> what is maildir
[19:58:15] <geemark> (sorry if asking stupid questions)
[19:58:35] <geemark> for now I just want to fix this issue :)
[19:58:48] *** birmaan has quit IRC
[20:04:37] <xpoint> rob0, who will use it any way :-)
[20:08:46] *** hparker has quit IRC
[20:12:57] <many> geemark: mbox means that one "folder" of your mailbox is in one file
[20:13:20] <many> maildir contrary means that every "folder" is a directory (three actually) and every email is a file
[20:13:52] <many> the latter speeds up accessing since on every operation small files need to be touched only while mbox means changing a large file instead
[20:13:54] <geemark> ok thanks
[20:15:07] *** Bronsky has quit IRC
[20:17:18] *** Bronsky has joined #postfix
[20:17:23] *** Fr0zen_ has quit IRC
[20:25:51] *** UQlev has joined #postfix
[20:28:18] *** smesjz has quit IRC
[20:28:37] *** rmayorga has joined #postfix
[20:39:55] *** Danielss89 has joined #postfix
[20:40:14] *** tuxcrafter has joined #postfix
[20:40:23] <tuxcrafter> hello guys
[20:40:34] <Danielss89> hi, ive installed postfix with dovecot and mysql, but im having problems with IMAP... POP3 is working, i recieve the mails in outlook... but i cant send mails..
[20:40:39] <tuxcrafter> i am looking for good how to on creating my own mail serer
[20:40:40] <tuxcrafter> server
[20:40:49] <tuxcrafter> i have come a long way
[20:40:59] <tuxcrafter> but am stuck at the mysql part
[20:41:45] <many> Danielss89: you dont send mails via imap
[20:41:50] <Danielss89> i dnot?
[20:41:51] <Danielss89> dont*
[20:41:55] <many> (even if thats a theoretic possibility)
[20:41:58] <Danielss89> what is IMAP for then?
[20:42:27] <Dominian> IMAP allows you to read your email without actually downloading it
[20:42:28] <many> tracking your incoming mails
[20:42:39] <Dominian> its what most webmail systems uses
[20:42:40] <Danielss89> oh and POP3?
[20:42:53] <Dominian> POP3 is for checking email which actually gets downloaded to your local machine/email client
[20:43:01] <Dominian> SMTP is what all clients/server use to send email
[20:43:08] <Signum> !learn imap as is an application layer Internet protocol that allows a local client to access e-mail on a remote server (see: http://en.wikipedia.org/wiki/IMAP)
[20:43:17] *** linux_manju has joined #postfix
[20:43:20] <linux_manju> Hi All..
[20:44:04] <Signum> Danielss89: perhaps the most important difference is that POP3 allows you to have just one folder while IMAP allows you to have many folders. you can subscribe to them. you can have special folders for news etc.
[20:44:13] * many nods
[20:44:14] <Danielss89> okey..
[20:44:32] <Danielss89> okey now i use imap to login.. and i get this in my log when sending mail:
[20:44:32] <Danielss89> May 19 20:43:45 danielss89 postfix/smtpd[30989]: NOQUEUE: reject: RCPT from 0x53587340.hknxx3.adsl-dhcp.tele.dk[83.88.115.64]: 504 5.5.2 <Daniellappy>: Helo command rejected: need fully-qualified hostname; from=<danielss89 at potterskolen dot dk> to=<danielss89 at potterskolen dot dk> proto=ESMTP helo=<Daniellappy>
[20:44:38] <Danielss89> the same error as yesterday..
[20:44:59] <Dominian> argh
[20:45:05] <Dominian> We went over this....
[20:45:06] <Signum> Danielss89: yes, outlook is broken in (at least) that way
[20:45:13] <linux_manju> Does anyone know How I can set up a secondary mail server which keeps a copy of the mail in its local HDD and then forwards the same to the real mail server?
[20:45:18] <Dominian> Outlook is a stupid email client.. always has been
[20:45:27] <many> err.
[20:45:30] <Danielss89> hehe yah Dominian but is it possible to do so that it will work with outlook
[20:45:39] <Dominian> it submits the PC name of the user as the HELO FQDN.. and most email servers reject a HELO that isn't FQDN
[20:45:48] <many> shouldnt permit_mynetworks, permit_Sasl_authenticated before check_fqdn solve this?
[20:46:24] <Dominian> should
[20:46:25] *** mrivera has quit IRC
[20:46:36] <Danielss89> is that in my main.cf file?
[20:47:03] <many> smtpd_client_restrictions
[20:47:10] <Signum> Danielss89: many is right. "permit_sasl_authenticated" in the *right* place of your restrictions do it
[20:47:10] * Dominian nods
[20:47:29] <Danielss89> :P
[20:47:37] <Danielss89> ill just put it in front
[20:47:41] <many> i do not give any guarantee on the names though, i didnt memorize all keywords now. :)
[20:47:42] <Signum> Danielss89: should do it
[20:48:32] <Signum> Danielss89: if you use smtpd_helo_restrictions you need to add that there, too
[20:48:53] * Signum considers proposing a permit_stupid_outlook as a restriction parameter
[20:49:24] <many> no
[20:49:38] <Signum> although "broken_sasl_clients" says it already. :)
[20:50:24] <many> anyway, requiring dynip client to send a FQDN is kinda pointless.
[20:50:27] <many> s
[20:51:12] <Danielss89> hmm ill just post my main.cf file
[20:51:18] <Signum> I have never understood what HELO should be for anyway.
[20:51:19] <many> please use pastebin
[20:51:25] <Danielss89> yes off course :P
[20:51:36] <many> signum: its just formality.
[20:51:43] <many> you say hello, when you meet someone, dont you?
[20:51:54] <Signum> many: I never go outside. Can't tell.
[20:51:57] <many> :P
[20:52:15] *** eltech has quit IRC
[20:52:34] <Danielss89> http://pastebin.ca/497274 here we go many
[20:52:45] *** eltech has joined #postfix
[20:53:18] <many> ohmy
[20:53:42] <Danielss89> :P
[20:53:53] <Danielss89> its a paste main.cf file :D
[20:54:08] <many> this is sick
[20:54:10] <many> :D
[20:54:32] <Danielss89> you are welcome to edit it :P
[20:54:47] <many> i let someone else do it, i know only some of these keywords.
[20:55:17] <many> it should allow your outlook, though.
[20:55:40] <tuxcrafter> req: resente tuturial om een imap email systeem met postfix te installeren
[20:55:46] <Danielss89> i want to allow all clients :P
[20:55:58] <Danielss89> !english
[20:55:59] <knoba> Danielss89: 'english' : the language spoken in this channel. Please talk in your native language privately. Thanks.
[20:56:08] <many> are your clients in a fixed range? or are they sasl authenticated?
[20:56:10] <Danielss89> !english tuxcrafter
[20:56:11] <knoba> Danielss89: Error: "english" is not a valid command.
[20:56:16] <Signum> Danielss89: I'd say the config looks good.
[20:56:26] <Signum> Danielss89: just that virtual_mailbox_maps doesn't work with proxy: :)
[20:56:30] <Danielss89> many i dont have any clients yet :P
[20:56:39] <many> uhum.
[20:56:44] <Danielss89> but i want my users to be able to use what they want..
[20:56:55] <Danielss89> i know i at least will have 50 users...
[20:57:00] <many> see
[20:57:12] <Danielss89> and maby around 800 within a couple of month..
[20:57:15] <Danielss89> month's
[20:57:21] <many> permit_sasl_authenticated allows people who authenticate
[20:57:24] <Danielss89> maybe*
[20:57:36] <many> permit_mynetworks allows people who are inside the ip ranges you specified
[20:58:06] * many doesnt use sasl, except for road warriors, though.
[20:58:19] <many> and most of'em have vpns, too, so i dont need it for them, either.
[20:59:09] <Danielss89> so sasl can i turn it off :P
[20:59:15] <Danielss89> what is it good for?
[20:59:27] <Signum> !sasl
[20:59:28] <knoba> Signum: 'sasl' : short for "Simple Authentication and Security Layer". It is provided by the cyrus mail server to enable the "SMTP AUTH" feature. Learn more at: http://asg.web.cmu.edu/sasl/
[20:59:29] <many> its an authentication layer, used in smtp
[20:59:58] <Danielss89> okey..
[21:00:45] <Danielss89> what if i turn it off? will it make my server less secure or what will happend?
[21:01:16] *** eltech has quit IRC
[21:01:43] <many> these questions need to be answerred with: that depends on what you or your clients need.
[21:01:46] *** eltech has joined #postfix
[21:01:58] <many> i do not know what you need
[21:02:08] <Signum> Danielss89: in your local network it will be no problem unless anyone uses broken MUAs like outlook.
[21:02:23] <Signum> Danielss89: if you allow unauthenticated relaying from the internet you'll be loved by spamming gangs in no time.
[21:02:39] <many> and be blocked by the majority.
[21:02:40] <Danielss89> :P
[21:03:01] <Danielss89> but you still have to login right?
[21:03:06] <Danielss89> to send email
[21:03:19] * many sighs.
[21:03:59] <Danielss89> okey thats a no :P
[21:04:27] <tuxcrafter> req: sorry its late haha
[21:04:41] <Danielss89> anyway many what did you say i should edit in my main.cf..
[21:05:24] <tuxcrafter> req: i am looking for a recently created how to for a imap server setup with postfix
[21:05:46] <many> Danielss89: your main.cf looks good to me, even if overly complicated.
[21:06:36] <Signum> tuxcrafter: dovecot and courier will do well with postfix virtual maildirs.
[21:07:11] <tuxcrafter> Signum do youhave a new tutorial for that
[21:07:34] <Danielss89> many: Relay access denied;
[21:07:52] <many> Danielss89: did you authenticate your SMTP Session??
[21:08:09] <Signum> tuxcrafter: currently working on it :)
[21:08:21] <many> Danielss89: i think not.
[21:09:01] <many> Danielss89: there are exactly three possibilities when your email server should accept mails
[21:09:10] <many> a) the mail comes from an ip listed in mynetworks
[21:09:22] <many> b) the mail has been authenticated with a user and password against sasl
[21:09:33] <many> c) the mail is *for* a domain listed in mydomains
[21:09:54] <many> err, mydestination, not mydomains
[21:10:08] <Danielss89> oki..
[21:10:28] <Danielss89> stupid outlook.. it used another account to send from.. but now its working..
[21:10:29] <Danielss89> thx..
[21:10:35] <many> in any other case, the mail must be rejected
[21:10:53] <many> or else your server will be an open relay abused by spammers.
[21:11:01] <Danielss89> oki
[21:11:08] <Danielss89> and the main.cf is ok now?
[21:11:19] <Danielss89> or does it allow one of those things?
[21:12:40] <many> no. permit_mynetworks = allows (A);  permit_sasl_authenticated and permit_tls_all_clientcerts = allow (B), reject_unauth_destination rejects what not matches the first two cases and does not match (C) either
[21:13:58] <many> the rest are just additional checks on incoming mails which are case (C), which is pretty fine.  the permit at the end is superflouos though, since its implicit
[21:29:04] <tuxcrafter> Signum: can i help you with the tuturial
[21:38:09] *** xpoint has quit IRC
[21:41:34] <geemark> maybe this is an error in my configuration - but why does both the "~<user>/mbox" file and /"var/mail/<user>" contain newer mails? I thought it was one or the other?
[21:43:43] <tuxcrafter> this is stupid i am using a postfix 2.1 howto in a postfix 2.2 envirorment
[21:43:48] <tuxcrafter> i need a resent how to
[21:46:34] *** ChrisW has joined #postfix
[21:47:09] <ChrisW> hi all, when assing an SPF record, should the TXT entry have double quotes around it or not? ie: "v=spf1 mx a:server1.simplistix.co.uk ~all" or v=spf1 mx a:server1.simplistix.co.uk ~all?
[21:49:23] <rob0> Is this a question about the SPF format, or about zone file syntax? If the latter, it might vary with the DNS server software; if the former, I don't know.
[21:49:50] <ChrisW> ho hum, guess I'll try it without quotes and see what happens :-S
[21:49:51] <rob0> With BIND, I think you should use quotes if the value contains spaces.
[21:50:09] <rob0> just add it each way and query it manually to see what you get.
[21:50:28] <ChrisW> I'm using Dotster.com :-S
[21:50:33] *** Lap_64 has quit IRC
[21:50:49] <Signum> tuxcrafter: thanks for the offer. I'd like you to check out http://workaround.org/articles/ispmail-etch/en.html
[21:50:51] <ChrisW> how would I query their records manually?
[21:51:06] <many> host -t TXT doma.in
[21:51:09] <rob0> ChrisW: dig(1)
[21:51:25] <Signum> tuxcrafter: the first part that deals with database schemas and accepting mail already works here. I'm not going to the dovecot installation. but having someone else read it for errors or badly understandable parts would help
[21:51:33] <tuxcrafter> Signum: perfect
[21:51:35] <tuxcrafter> http://workaround.org/articles/ispmail-sarge/
[21:51:38] *** TheOutlander has joined #postfix
[21:51:43] <Signum> tuxcrafter: that's the *old* tutorial!
[21:51:47] <tuxcrafter> i was working with that one but it was outdated
[21:51:52] <Signum> tuxcrafter: I know. :)
[21:52:01] * rob0 is outdated too
[21:52:15] <tuxcrafter> Signum do you have a email adres for furter contact for me
[21:52:16] * Signum checks rob0's "best before" sign
[21:52:29] <Signum> tuxcrafter: sure. email at christoph-haas dot de or haas at debian dot org
[21:53:02] <Signum> tuxcrafter: I'd rather like to read your comments on the workaround-chitchat mailing list (see http://workaround.org) because that's where updates are sent and where others are discussing what has been written so far
[21:53:18] <tuxcrafter> afck
[21:53:19] <tuxcrafter> ack
[21:54:02] <tuxcrafter> do you have a direct link to the mailing list ?
[21:54:13] <tuxcrafter> the subscription page
[21:54:37] <tuxcrafter> http://workaround.org/cgi-bin/mailman/listinfo/workaround-chitchat\
[21:54:41] <tuxcrafter> fount it
[21:57:44] *** Mazon is now known as mazon
[21:57:46] <tuxcrafter> Signum i cot a brand fresh install and will try your howto step by step
[21:57:47] *** mazon is now known as Mazon
[22:00:25] <rob0> <== best by 1984.04.04
[22:03:07] *** chatran has joined #postfix
[22:04:37] <tuxcrafter> so lets start again :-P
[22:04:45] <many> youngster.
[22:08:04] <tuxcrafter> Signum: can you give me a direct link to the debian version you wish me to use! please because i am running ubuntu server i368 now
[22:13:38] <geemark> anyone knows why Dovecot does not allow me to login without TLS or SSL?
[22:15:25] <tuxcrafter> geemark not yet i am still learning
[22:16:44] <tuxcrafter> Signum: PostgreSQL why dont you use mysql anymore?
[22:18:46] <many> geemark: dovecot per default allows PLAIN/LOGIN authentification with TLS/SSL only
[22:19:26] <many> w/o tls/ssl digest-md5 and similar mechanisms only work
[22:19:42] <many> but that requires you to put the password in cleartext on the server
[22:20:10] <many> (you cant compare a method-a crypted password with a method-b crypted password)
[22:20:46] <Signum> tuxcrafter: I do use mysql.
[22:20:57] <tuxcrafter> ow!
[22:20:57] <Signum> tuxcrafter: the tutorial is meant for debian etch. so it works best on debian etch. :)
[22:21:03] <geemark> many: i see, thank you
[22:21:33] <many> geemark: OTOH you dont want your mail-content to be plaintext  on the net, so i dont see anything wrong with tls/ssl :D
[22:21:38] <tuxcrafter> Sigmun: in your new tutorial i read that you use postgresql
[22:21:46] <tuxcrafter>  Postfix for receiving incoming emails from the internet and storing them to the users' mailboxes on the harddisk - or for receiving emails from your users that should be sent out to the internet (relaying) Dovecot to allow your users to get their emails into their email client through POP3 and IMAP Squirrelmail as a webmail interface (although any IMAP capable webmail interface will do) PostgreSQL as the database system that stores info
[22:21:47] <many> tuxcrafter: for an average mailserver it doesnt matter wether you use my or pg
[22:22:28] <geemark> many, me neither, it's just that I host at least one guy that has an older phone not capable of TLS
[22:22:41] <Signum> tuxcrafter: oh, okay, that is an old part. I intended to use postgresql at first but for the sake of simplicity I stayed with mysql. I use pgsql here for production use but I don't mean to force the readers to change *everything* . :)
[22:23:04] <Signum> tuxcrafter: typo fixed :)
[22:23:17] <many> yea, tutorials are usually needed for my users, pg users usually know how to adapt stuff from my-tutorials to pg.
[22:23:27] <tuxcrafter> If you have good arguments to use postgreSQL you MUST use it in your tutorial
[22:23:36] <many> mysql is just more userfriendly. :p
[22:23:45] <tuxcrafter> i have read it is more stable than mysql
[22:23:46] <Signum> many: that is about the only reason there is. :)
[22:23:51] <many> geemark: well. :)
[22:24:30] <many> tuxcrafter: i wouldnt say so
[22:24:41] <Signum> mysql versus postgresql is a FUD topic. IMHO postgresql 8.1 and mysql 5.0 have sorted their problems out. pgsql has the sometimes tricky autovacuum process as it doesn't delete rows directly. mysql has some weird notion of SQL sometimes ( CONCAT() versus || ).
[22:24:45] <many> pg has quite some advantages, but these do not count for the average user.
[22:25:07] <tuxcrafter> Signum: ok then i would go for mysql too
[22:25:10] <Signum> pgsql is nice for their types system. I deal a lot with network specific things as I earn my money as a netadmin. so their "inet" type is heaven sent.
[22:25:19] <many> Signum: indeed pg has some more stuff, like cidr comparations, which mysql do not have
[22:25:27] <many> *clap*
[22:25:54] <tuxcrafter> true pgsql has more features
[22:26:01] <Signum> mysql is more widespread. but you need to know about InnoDB versus MyISAM. Why is the default table format of mysql not capable of using foreign keys?
[22:26:02] <tuxcrafter> but mysql is faster
[22:26:14] <many> it is not.
[22:26:23] <tuxcrafter> ow oke
[22:26:36] *** rmayorga has quit IRC
[22:26:37] <tuxcrafter> must have read old articles
[22:26:38] <Signum> In the end... you have to know more than the first chapter of any DBMS to use it seriously. neither mysql or pgsql are IMHO *not* suited for production use.
[22:26:43] <many> any benchmarks ive seen were too specific. some say mysql is faster, some say pg is faster, but really, it depends on how you use it
[22:27:06] <Signum> for postfix lookups is probably not interesting whether fetching a virtual alias takes 1ms or 2ms.
[22:27:14] * many nods
[22:27:36] <Signum> And IMHO if you take all databases of the world and calculate the average load I'd expect it to be 0.001. :)
[22:27:50] <many> and highload mailsystems will used ldap instead, anyway :P
[22:27:52] <Signum> Few people might be interested in the exact speed of the DBMS. :)
[22:28:11] <Signum> many: using LDAP also increases the load on the admin :)
[22:28:15] <tuxcrafter> Signum: do you have a link to the debian installation iso you wish me to use, or may i use my ubuntu 7.04 server
[22:28:40] <Signum> tuxcrafter: you may use ubuntu. but the results *may* be different. it's not helpful. it's really meant for debian etch.
[22:29:02] <Signum> tuxcrafter: I don't mind ubuntu at all. don't get me wrong. but ubuntu sometimes changes subtle details that I don't want to deal with. I had to write two tutorials then.
[22:29:06] <tuxcrafter> Signum: i can still get your support do
[22:29:20] <Signum> tuxcrafter: If I can reproduce your trouble on Etch we are both fine. :)
[22:29:23] <tuxcrafter> else i will switch
[22:29:30] <tuxcrafter> ok deal
[22:29:34] <Signum> many: Oh, I forgot one thing. "psql" is also great.
[22:29:51] <many> :)
[22:30:28] <Signum> I usually don't code SQL anyway in my current projects (using high-level ORMs) so it doesn't really matter if I use pgsql, mysql or sqlite.
[22:30:40] <many> i really need to switch to pg for my bgp tables. cidr matches on about 300-400k rows isnt nice in mysql :/
[22:31:10] <Signum> many: ewwww. binary and/or to match inets in mysql?
[22:31:48] <many> nah. no cidr at all. poor mans string matching. i put network and plen in different fields
[22:31:59] <many> but that sucks. really. :)
[22:32:23] <Signum> many: I have written a pgsql-driven firewall-frontend for really large and complicated firewall rulebases. a rulebase of 500 rules with nested groups etc. takes only 100ms to select for certain subnet criteria. that's cool.
[22:32:31] <Signum> many: double-eww
[22:32:47] <many> yea, if i wasnt too lazy i would reimplemented by now
[22:34:27] <Signum> many: when looking at my old code I sometimes wonder why it works at all. :)
[22:34:34] <Signum> (especially from the dark Perl ages)
[22:34:49] <many> hehe.
[22:35:51] <tuxcrafter> Signum: the mapping text is written in a good way!
[22:36:12] <Signum> tuxcrafter: thanks. I like to be verbose to make people understand why they do.
[22:36:50] <tuxcrafter> most time it goes wrong in the simple things because writers take them for granted
[22:36:50] <Signum> tuxcrafter: It's an experiment though to make people use normalized database tables with JOINs. It's non trivial. No idea if the majority of the readers will understand that.
[22:37:17] <Signum> tuxcrafter: From the feedback of the last 4 years I know how stupi^H^H^H^H^H unknowing people can be.
[22:37:25] <tuxcrafter> i know
[22:37:55] <tuxcrafter> it is very imported to link to basic background info all the time
[22:40:59] <tuxcrafter> ok noop question why do i want to be able to send mails to root@localhost
[22:41:40] <tuxcrafter> i can do everything with virtual mailbox domains
[22:42:08] <rob0> crond output?
[22:42:26] <Signum> tuxcrafter: you can. but system mails. yeah, crontab for example. or if your database goes away and you cannot deliver virtual mail any more.
[22:42:55] <Signum> tuxcrafter: you will never find out that your mysqld crashed because your mysqld crashed.
[22:43:13] <tuxcrafter> ok, i thought so, It is for system administration and debugging and error messages
[22:43:14] *** frennkie has joined #postfix
[22:43:20] <tuxcrafter> please put it in the how to
[22:43:23] <rob0> Not so easy to run virtual(8) mail through commands, too. It's possible, but much more difficult.
[22:43:29] <Signum> ok
[22:43:40] <tuxcrafter> in the virtual mailbox domain part under the note
[22:44:58] *** tiger28 has joined #postfix
[22:45:02] <tiger28> hello
[22:45:28] <tiger28> any person was installed postfix in gentoo amd64?
[22:46:13] <tuxcrafter> Signum: /etc/hostname and /etc/hosts are some very troubeling files for me i have not found good information on what they do yet on wikipedia or goolge. Can you give me a link on how they should be setup in a server and also put this in the how to
[22:46:51] <many> huh
[22:46:52] <tuxcrafter> i only now it connect ip to hostname but i do not know how it should be setup
[22:47:01] <many> hostname contains the hostname of the box, not qualified,.
[22:47:08] <Signum> tuxcrafter: what exactly? /etc/hostname contains your FQDN. and /etc/hosts is like DNS information for your local system.
[22:47:11] <many> hosts is just some manual resolving help.
[22:47:28] <Signum> tuxcrafter: your system should know it's name and IP address without asking DNS.
[22:47:49] <tuxcrafter> but local ip or outside ip
[22:48:23] <tuxcrafter> FQDN is with a dot on the end like workaround.org.
[22:48:41] <many> thats a domain, no hostname.
[22:48:59] <tuxcrafter> http://en.wikipedia.org/wiki/FQDN
[22:49:36] <Signum> tuxcrafter: usually a mail server not have a local or outside ip. it has one IP address on the ethernet interface that is connected to its hostname.
[22:49:45] <Signum> tuxcrafter: 127.0.0.1 should never be connected to the FQDN.
[22:50:07] <tuxcrafter> so a real world example please
[22:50:13] <tuxcrafter> i got lavendel.tk
[22:50:14] <tiger28> yeah in the hostname file
[22:50:20] <tuxcrafter> my server is cald alpha
[22:50:30] <tuxcrafter> alpha.lavendel.tk.
[22:50:37] <tuxcrafter> is the FQDN
[22:50:39] <many> yes, thats a FQDN
[22:50:43] <tiger28> only resolv the direction in local system
[22:50:48] <tuxcrafter> with the dot .
[22:51:05] <tuxcrafter> my local ip is 192.168.1.50
[22:51:12] <many> although i strictly would put "alpha" in /etc/hostname.
[22:51:27] <Signum> tuxcrafter: it must be "alpha.lavendel.tk" instead of "alpha.lavendel.tk." the latter is the zone syntax.
[22:51:28] <tiger28> yeah this ip use NAT
[22:51:42] <tuxcrafter> and my outside ip is 84.245.7.46
[22:51:53] <tiger28> is a private ip but for the rest of the world
[22:52:05] <Signum> tiger28: if your mail server is also the gateway I would always use the external address for the FQDN
[22:52:06] <tiger28> use de outside ip
[22:52:40] <tiger28> yeah
[22:52:40] <tuxcrafter> so how should the /etc/hostname and /etc/hosts look like and why
[22:52:51] <tuxcrafter> :-D very nasty question
[22:53:18] <tuxcrafter> I is simple but not explained very well on the Internet
[22:53:39] <tiger28> in hostame
[22:54:16] <tiger28> file you only describe your name's box
[22:54:17] <tuxcrafter> man hostname
[22:54:17] <tuxcrafter> man hosts
[22:54:38] *** UQlev has left #postfix
[22:54:39] <tuxcrafter> echo "alpha" > /etc/hostname
[22:55:10] <tiger28> in the hosts file in appear the names of the local network
[22:55:45] <tiger28> hosts
[22:56:06] <tiger28> sorry but I don't speack much english
[22:56:18] <many> echo "84.245.7.46  alpha.lavendel.tk alpha" >> /etc/hosts
[22:56:22] 
[22:56:35] *** AJ_Z0 has quit IRC
[22:56:55] *** AJ_Z0 has joined #postfix
[22:57:14] <Signum> tuxcrafter: /etc/hostname is supposed to contain the FQDN. "alpha" would not be FQ
[22:57:27] <tuxcrafter> how sorry
[22:57:30] <tuxcrafter> typo
[22:57:35] <many> erm
[22:57:42] <many> who says so?
[22:58:45] <many> hostname never was supposed to contain the FQDN.
[22:59:33] <Signum> many: arguably. :) some software expects it to be fully qualified. like amavis. nobody could tell me for sure. it's more an empirical constatation.
[22:59:52] <many> its broken software then
[23:00:29] <many>  /etc/hostname MUST be relevant for hostname(1) only, and this is supposed to read the unqualified hostname
[23:00:48] <many> applications MUST fetch the FQDN via gethostbyname(2) call
[23:00:52] <Signum> many: hmmm... "hostname --fqdn" seems to pull the information from /etc/hosts instead of /etc/hostname.
[23:01:26] <many> well, with gethostbyname. which uses nss, which in turn will use hosts probably first.
[23:01:40] <Signum> many: understood
[23:02:13] <many> well, the manpage even says so :)
[23:02:50] <many> good eckes boy. *g*
[23:03:33] <rob0> hostname(1), I am pretty sure, uses /proc/sys/kernel/hostname and /proc/sys/kernel/domainname .
[23:04:01] *** jerkface has joined #postfix
[23:04:10] <many> rob0: yes?
[23:04:15] <rob0> Invoked at boot time, hostname sets those values.
[23:04:23] <many> many@krikkit:~$ cat /proc/sys/kernel/hostname
[23:04:24] <many> krikkit
[23:04:24] <many> many@krikkit:~$ cat /proc/sys/kernel/domainname
[23:04:24] <many> (none)
[23:04:24] <many> many@krikkit:~$ hostname --fqdn
[23:04:25] <many> krikkit.ukeer.de
[23:04:31] <many> must have a good crystalball then. :)
[23:05:03] <Signum> Great. Now you all know. Last time I asked about that nobody did. :)
[23:05:32] <many> i wasnt around last time! really. *mumble*
[23:07:21] <Signum> Yeah, right.
[23:07:22] <rob0> Looks like /proc/sys/kernel/domainname is the NIS/YP domain name. dnsdomainname(1) works here.
[23:07:45] <Signum> many: while you are at it you are invited to fix my LDAP client settings (replacing my old NIS server)
[23:08:03] <Signum> many: either I can't login. or my groups are gone. or I can't change my password. or I can't unlock my screen. or... :)
[23:09:02] *** chatran has quit IRC
[23:09:52] <many> rob0: many@krikkit:~$ dnsdomainname
[23:09:53] <many> ukeer.de
[23:10:47] <many> Signum: tricky one. logging in requires correctly configured pam and access to the password attribute to self
[23:11:04] <many> changing passwords requires the login to the ldap server
[23:11:09] <many> the admin one
[23:11:44] <many> gone groups probably means broken nsswitch or lib-ldap not configured to the correct OID
[23:12:01] <many> unlocking screen should do when getent passwd/shadow works
[23:14:01] <Signum> many: I had to change two pam.d files so far. And currently it seems to work so far. But I received signals from other people that I'm not doing it the right way. Especially my local configuration needs the admin password of my openldap server to be able to login. That's bad.
[23:14:36] <many> indeed
[23:14:47] <many> grep self /etc/ldap/slapd.conf
[23:14:54] <Signum> At least to change the password. I currently let my users (==my family) log into the server where openldap runs.
[23:15:03] <tuxcrafter> Signum: http://pastebin.ca/497446
[23:15:27] <tuxcrafter> please take a very good look at that and tell my if it is ok
[23:15:40] <tuxcrafter> and post in in the how to  :-P
[23:15:51] <many>  iam not sure wether giving write access to the password attribute to self is a good idea.
[23:15:53] <Signum> I'd say no because your /etc/hostname is FQ.
[23:16:19] <Signum> tuxcrafter: And ashley.lavendel.tk is unreachable from the internet.
[23:16:34] <tuxcrafter> Signum there is now server now :-P
[23:16:38] <tuxcrafter> no
[23:16:43] <tuxcrafter> no server now
[23:20:48] *** ChrisW has left #postfix
[23:21:30] <tuxcrafter> Signum: http://pastebin.ca/497459
[23:21:34] <tuxcrafter> is it correct now?
[23:22:10] <Signum> tuxcrafter: no.
[23:22:29] <tuxcrafter> damm
[23:22:32] <Signum> tuxcrafter: outside ip is wrong. hostname ends with ".". /etc/hostname is fully-qualified...
[23:22:33] <tuxcrafter> why
[23:23:01] <tuxcrafter> http://en.wikipedia.org/wiki/Fully_qualified_domain_name
[23:23:31] <tuxcrafter> myhost.example.com. == FQDN ?
[23:23:39] *** Danielss89 has quit IRC
[23:24:48] <Signum> right
[23:25:28] <tuxcrafter> ashley.lavendel.tk. == myhost.example.com. == FQDN
[23:25:58] <tuxcrafter> Signum: ?
[23:26:06] *** b52lap has joined #postfix
[23:26:09] <Signum> uhm... why do you always use the trailing dot?
[23:26:16] <b52lap> hi
[23:26:26] <Signum> tuxcrafter: the dot belongs there in DNS zone files perhaps - but not here
[23:26:28] <Signum> b52lap: hi
[23:27:00] *** sparrw has quit IRC
[23:27:01] <tuxcrafter> Signum: do you see my point i cant find good information ow what is correct :-D
[23:27:06] <many> the dot is a fullstop sign
[23:27:08] <Signum> tuxcrafter: we tell you :)
[23:27:35] <many> i.e. dont append searchdomain
[23:27:48] <Signum> I don't know where http://en.wikipedia.org/wiki/Fully_qualified_domain_name got its optimism from.
[23:28:04] <Signum> "Notice that there is a dot at the very end of the domain name, i.e. it ends ".com." and not ".com" ? this indicates that the name is an FQDN."
[23:28:14] <many> ping alpha. vs ping alpha
[23:29:14] <Signum> Sure. But would you use the dot syntax if someone asks you for your FQDN?
[23:29:16] * many types onehanded now => slow
[23:29:17] <rob0> Strictly speaking the trailing dot should be included. If you omit it in a zone file, you end up with "$NAME.$ORIGIN."
[23:29:36] <Signum> rob0: Admitted for zone files. But not for the "common" use of FQDNs anywhere else...
[23:30:10] <many> the dot isnt important for human
[23:30:19] <many> it is for processes
[23:30:24] <rob0> Yes, in some cases the "strictly correct" usage of f.q.d.n. might break things.
[23:30:28] <many> and not only bind
[23:30:47] <rob0> whois .com domains, for one.
[23:30:52] <tuxcrafter> soo..
[23:31:00] <tuxcrafter> how should i config my files :-D
[23:31:45] <tuxcrafter> echo "84.245.7.46 ashley.lavendel.tk.    ashley" >> /etc/hosts
[23:32:42] <tuxcrafter> echo "127.0.0.1     localhost.localdomain   localhost" > /etc/hosts
[23:32:42] <tuxcrafter> echo "84.245.7.46	ashley.lavendel.tk.		ashley" >> /etc/hosts
[23:32:42] <tuxcrafter> echo ashley.lavendel.tk. > /etc/hostname
[23:32:48] <tuxcrafter> ?
[23:33:41] <tuxcrafter> http://pastebin.ca/497473
[23:34:56] <tuxcrafter> many is that last paste correct?
[23:35:03] <b52lap> i'm running into a small prob with postfix , any know from what can be the cause of this error NOQUEUE: reject: RCPT from unknown[192.168.1.201]: 550 5.1.1 <b_52GM at globe-consulting dot org>: Recipient address rejected: User unknown in local recipient table;
[23:35:16] <many> ill check lter
[23:35:56] <sepski> b52lap, your kidding right ? what part of "User unknown in local recipient table" is difficult to understand ?
[23:36:57] <b52lap> sepski,  euh you think i'm tizing people of #postfix :) , the user is on the postgresql database , and postfix tell me he don't know him ; so ... :d
[23:37:01] <Signum> b52lap: I'd say that b_52GM doesn't exist as a system user on your system and also has no alias
[23:37:18] <Signum> b52lap: do you use the database for *local* domains, too?
[23:37:47] <b52lap> Signum, local domains = ?
[23:38:01] <Signum> b52lap: local domains. $mydestination.
[23:38:12] <b52lap> Signum,  yeap
[23:38:24] <Signum> b52lap: "postconf mydestination" please
[23:38:43] <b52lap>  postconf mydestination
[23:38:43] <b52lap> mydestination = $mydomain, $myhostname, $transport_maps
[23:39:13] <Signum> b52lap: I don't see any database lookups there. do you?
[23:39:50] <rob0> "postconf local_recipient_maps"
[23:40:04] <sepski> b52lap, are you confusing local users (have unix accounts) with virtual users ?
[23:40:54] <b52lap> sepski,  nop , looking to make postfix only with users stored in database
[23:41:10] <b52lap> Signum,  not treally :d , i didn't understood yur question ...
[23:41:18] <b52lap> rob0,  postconf local_recipient_maps
[23:41:19] <b52lap> local_recipient_maps = proxy:unix:passwd.byname $alias_maps
[23:42:57] <sepski> b52lap, so dont list any domains in the local mydestination,
[23:42:58] <Signum> b52lap: the user b_52GM is searched for in your /etc/passwd and your /etc/aliases but postfix didn't find it in either location
[23:42:58] <b52lap> hm
[23:43:16] <sepski> b52lap, you dont have globe-consulting.org in mydomains i hope ?
[23:43:34] <rob0> You probably meant to list your domain in virtual_mailbox_domains, not mydestination.
[23:43:44] <Signum> sepski: mydomains? mydestination?
[23:44:03] <sepski> <b52lap> mydestination = $mydomain, $myhostname, $transport_maps  it could be in any of those
[23:44:38] <Signum> k
[23:44:41] <rob0> Ouch, having $transport_maps in $mydestination could be real bad.
[23:44:54] * b52lap noob http://wiki.arslinux.com/Mail_Server:Postgres_Authentication#Virtual_Table_Details  and have used  this tuto :d
[23:45:36] <Signum> That's what I sometimes had tutorials for...
[23:46:00] <Signum> s/had/hate/
[23:46:03] * Signum types too much today :(
[23:46:11] <b52lap> :D
[23:46:59] * b52lap send  to Signum  a tea cup true TCP paquet :D
[23:49:48] <b52lap> people do yu know a tuto with postfix / courier OR dovecot(for IMAP)  and POSTGRESQL , i mean a tuto , that even a noob can execute perfectly ?
[23:50:24] <Signum> b52lap: sorry to say... but that setup is too complicated to just copy/paste it. tutorials help you get the big picture but without knowing what they do you can't find errors.
[23:50:33] <Signum> b52lap: and the error you had is one of the simplest ones.
[23:50:49] <Signum> b52lap: Or to put it different: a tutorial is no excuse for not reading the original documentation :)
[23:51:26] <b52lap> Signum, "  Or to put it different: a tutorial is no excuse for not reading the original documentation :) "  llllloooooollllllll , yeah yu're  right :D
[23:51:33] *** frennkie has quit IRC
[23:56:46] <hax_> is there any real advantage to using mysql over a hash file?
[23:56:50] <hax_> (i hope that question makes sense)
[23:57:40] <war> Is there a way to say after X sender_verification attempts, reject the mail? or something to that effect?
[23:57:53] <war> if a spammer says they are from CNN and it keeps timing out to CNN every time they spam..?
[23:58:37] <sepski> hax_, several applications can access the sql,using a standard interface. you can have several mailserver interfacing a central sql, for load balancing or similar
[23:59:35] <hax_> sepski: well, one thing i'm having trouble finding is exactly what the mysql schema should look like... postfix seems to want to use other things databases with clever querying... but i dont have a db full of email addresses and domains yet





top