May 17, 2008 
< | 1 | 2 | 3 | 4 | 5 | 6 | 7 | 8 | 9 | 10 | 11 | 12 | 13 | 14 | 15 | 16 | 17 | 18 | 19 | 20 | 21 | 22 | 23 | 24 | 25 | 26 | 27 | 28 | 29 | 30 | 31 | >
May 17, 2008 [00:00:55] *** kreg has quit IRC[00:01:18] *** action099 has joined #postfix[00:02:05] *** hever has quit IRC[00:04:13] *** McJerry has quit IRC[00:04:17] *** githogori has quit IRC[00:04:52] *** action099 has quit IRC[00:04:58] *** McJerry has joined #postfix[00:06:48] *** githogori has joined #postfix[00:17:12] *** McJerry has quit IRC[00:17:27] *** suuuper has quit IRC[00:17:32] *** McJerry has joined #postfix[00:19:16] *** action09 has quit IRC[00:29:50] *** hemry has quit IRC[00:41:09] *** Spec is now known as Spec[x][00:41:38] *** jstad has quit IRC[00:41:49] *** growltiger has joined #postfix[00:46:39] *** stinkybum has quit IRC[00:55:14] *** Fallenou has quit IRC[00:58:36] *** Severed_Head_Of_ has quit IRC[00:58:58] *** pirho has quit IRC[01:02:01] *** AcTiVaTe has quit IRC[01:02:43] *** felix_da_catz has quit IRC[01:02:56] *** kreg has joined #postfix[01:21:05] *** McJerry has quit IRC[01:29:22] *** linkslice has quit IRC[01:38:56] *** Motoko-chan has quit IRC[01:39:24] *** madrescher has quit IRC[01:41:38] *** githogori has quit IRC[01:50:50] *** basic` has joined #postfix[01:50:59] *** sweed has quit IRC[01:58:14] *** aarcane has joined #postfix[01:58:28] <aarcane> what connections does the ssl cert get used for ?[01:59:58] *** muecke77 has joined #postfix[02:06:14] *** susinths has quit IRC[02:06:33] *** muecke77 has joined #postfix[02:06:58] *** linkslice has joined #postfix[02:09:14] *** donspaulding has quit IRC[02:12:24] *** githogori has joined #postfix[02:16:05] *** war9407 has quit IRC[02:29:31] *** Knoedel2 has quit IRC[02:36:17] *** McJerry has joined #postfix[02:51:21] *** aarcane has quit IRC[02:56:34] *** UQlev has joined #postfix[03:02:04] *** muecke77 has left #postfix[03:08:49] *** m0f0x has joined #postfix[03:11:04] *** Tachy has joined #postfix[03:17:26] *** hparker has quit IRC[03:24:39] *** Tachy_ has quit IRC[03:25:46] *** githogori has quit IRC[03:55:07] *** githogori has joined #postfix[03:58:01] *** drcode has joined #postfix[03:58:04] <drcode> hi alll[03:58:36] <drcode> I read about connecting postfix into ldap , but still how can I creat maildir?[04:00:30] *** oddalot has joined #postfix[04:00:53] <oddalot> hi, i set up postfix, and it "sends" emails, but i never receive them....[04:01:14] <oddalot> would it not give me errors if it wasn't sending them right?[04:03:42] *** stickystyle has left #postfix[04:10:43] <dragonheart> drcode: either manually as part of your process or a polling / triggered event that makes sure they exist[04:11:19] <dragonheart> oddalot: do you have a DNS MX setup? yes there will be log error messages if its rejecting email[04:11:39] <oddalot> i don't know about dns mx[04:12:02] <oddalot> does this mean it works..[04:12:04] <oddalot> ?[04:12:08] <oddalot> RCPT TO: oddalot at yahoo dot com[04:12:08] <oddalot> 250 2.1.5 Ok[04:12:08] <oddalot> DATA[04:12:08] <oddalot> 354 End data with <CR><LF>.<CR><LF>[04:12:08] <oddalot> test test tes[04:12:09] <oddalot> .[04:12:11] <oddalot> 250 2.0.0 Ok: queued as 51CEC4841D8[04:12:22] <oddalot> i didn't get the email though[04:12:29] <dragonheart> a DNS MX record is the bit of info that is used by email servers to know which email to your domain[04:12:37] <oddalot> where is the log file?[04:13:09] <dragonheart> depending on the system /var/log/mail.log or somewhere limilar. depends on your syslog setup/ OS[04:13:11] *** lunaphyte_ has quit IRC[04:13:20] <oddalot> k[04:13:25] <oddalot> let me check that real quick[04:14:06] <dragonheart> chances are will a simple email like that it would be marked as spam by yahoo. your mail.log may* show this (or may not)[04:14:37] <oddalot> yeah, but i'm not getting it in the bulk folder from email[04:16:23] <oddalot> check it[04:16:24] <oddalot> http://pastie.caboo.se/198589[04:16:29] <oddalot> yeah, i think something is messed up[04:16:56] <oddalot> is this the problem?: connect to g.mx.mail.yahoo.com[206.190.53.191]:25: Connection timed out[04:18:44] <oddalot> oh, freaking isp is blocking port 25[04:18:51] <oddalot> how am i supposed to get around THAT[04:19:51] <UQlev> try any other smtp server[04:20:13] <UQlev> at least you can see if it is ISP's issue[04:20:25] <oddalot> you mean to send or receive?[04:20:31] <UQlev> telnet[04:20:36] <UQlev> 25 port[04:20:56] <oddalot> that one doesn't work[04:21:00] <oddalot> oh...ok[04:21:03] <oddalot> i see what you are saying[04:21:12] <oddalot> do you know one offhand?[04:21:14] <oddalot> that works for you?[04:22:10] <UQlev> proton.sallbay.com[04:22:45] <oddalot> hmmm...no good, i got hosed....[04:23:00] <oddalot> why did they even write this actionmailer thing[04:23:05] <oddalot> it only works for port 25[04:23:11] <oddalot> apparently no one can even use that[04:23:21] <oddalot> bleh[04:23:22] <oddalot> oh well[04:23:25] <oddalot> small problem[04:23:31] <oddalot> i'll just workaround that[04:23:47] <UQlev> you may run submission port[04:23:52] *** Motoko-chan has joined #postfix[04:24:01] <UQlev> if you server outside your ISP[04:24:11] <oddalot> well it's going to after i deplot the website[04:24:21] <oddalot> but for development i[04:24:25] <oddalot> m just using my own box[04:24:31] <oddalot> deploy*[04:24:46] <oddalot> that's why i think i can work around it[04:24:53] <oddalot> as long as i know it's actually sending out emails[04:25:06] <oddalot> they are just getting blocked from the port 25[04:25:41] <UQlev> yes your ISP force you to use his smtp-service[04:26:13] <oddalot> huh?[04:26:35] <UQlev> this is quite common in use[04:26:45] <oddalot> say again? i don't understand[04:27:24] <UQlev> ISP allows smtp outwards packets only with destination on his smtp-server[04:27:44] <oddalot> i don't understand[04:28:08] <UQlev> so you can use your mail-client or mailserver using ISP's smtp-server as smarthost[04:28:23] <oddalot> i need to ask them though?[04:28:34] <oddalot> they might get mad because i'm running a server for testing[04:28:45] <UQlev> it is 95% so[04:30:04] <UQlev> did you tell yor ISP that you need your IP with all ports open?[04:30:18] <UQlev> inward and outward[04:30:25] <oddalot> no...i don't want to attract attention to myself[04:30:46] *** xpoint has quit IRC[04:31:18] <UQlev> can you try telnet proton.sallbay.com 587 ?[04:31:34] <oddalot> i can;t use SSL with actionmailer[04:31:43] <oddalot> it doesn't have that ability :([04:32:00] <UQlev> it is not obviously ssl, it is tls[04:32:13] <oddalot> oh, well it doesn't have tls either i don't think[04:32:16] *** ming_zym has quit IRC[04:32:30] <dragonheart> openssl s_client -connect protocn...:587 -starttls smtp[04:32:51] <oddalot> what is that dragonheart?[04:33:12] <dragonheart> how to do a telnet like connection to a SMTP-TLS server[04:33:35] <oddalot> oh[04:33:38] <oddalot> that's fine[04:33:44] <oddalot> but i'm using a ruby on rails bot[04:33:49] <oddalot> so send out emails[04:33:51] <oddalot> called actionmailer[04:34:01] <oddalot> and it doesn't work with ssl or tls[04:34:25] <UQlev> tls is not compulsory ssl[04:34:33] <UQlev> it is OPTIONAL[04:34:56] <oddalot> oh[04:35:01] <dragonheart> setup a local smtp server that does a relay to an available server? or am i on the wrong track?[04:35:02] <oddalot> hmmm[04:35:26] <oddalot> maybe..[04:35:37] <oddalot> i setup a local smtp server, why can't i just change the port?[04:36:09] <UQlev> oddalot: 208.63.195.163 is it yours?[04:36:21] <oddalot> probably[04:36:40] <dragonheart> by default a smtp server thinks it has access to the world. your ISP disagrees by blocking port 25. So your email server needs to smarthost to a ISP server[04:36:49] <oddalot> http://fiddy-fiddy.myftp.org:3000/store[04:36:52] <oddalot> that is me^^[04:37:36] <oddalot> how do i smarthost to an isp server?[04:37:39] <UQlev> oddalot: so your 587 port is open for outwards, and 25 is blocked[04:37:51] <oddalot> uqlev i think so[04:38:43] <oddalot> where is postfix master.cf again?>[04:39:14] <dragonheart> !basic[04:39:14] <knoba> dragonheart: "basic" : http://www.postfix.org/BASIC_CONFIGURATION_README.html : a good starting place for Postfix beginners, many common questions are answered here.[04:40:21] <rob0> "smarthost" is a Sendmail term. In Postfix it's "relayhost".[04:41:02] <dragonheart> opps mybad[04:41:19] <dragonheart> thansk rob0[04:42:01] *** McJerry has quit IRC[04:42:34] <oddalot> blah[04:42:46] <oddalot> that looks confusing, i don't know[04:43:19] <dragonheart> what bit confusing/what bit 'dont't know'?[04:43:40] *** McJerry has joined #postfix[04:43:41] <oddalot> i need to read it all i guess[04:43:41] *** UQlev has quit IRC[04:43:46] <oddalot> it's just going to take time[04:45:28] <dragonheart> yes learning does that[04:45:54] <oddalot> doesn't really matter[04:45:57] <oddalot> i don't need to learn this[04:46:08] <oddalot> i'm not going to use it any more for testing[04:47:47] <oddalot> hmmm[04:47:52] <oddalot> this worked[04:47:54] <oddalot> telnet mail.bellsouth.net 25[04:50:20] <oddalot> oh well[04:50:21] <oddalot> see ya[04:50:54] <sahil> oddalot: what exactly are you trying to accomplish? and can you type a few words without repeatedly hitting enter in between? :P[04:51:08] <oddalot> no[04:51:09] <oddalot> sorry[04:51:10] <oddalot> i'm[04:51:11] <oddalot> trying[04:51:12] <oddalot> to[04:51:13] <oddalot> leave[04:51:14] <oddalot> this[04:51:15] <oddalot> channel[04:51:19] *** oddalot has quit IRC[04:51:31] *** Zeit|awy_ has joined #postfix[04:51:34] <sahil> sigh, idiocy abounds.[04:55:15] <dragonheart> oh yes. a theft of time everywhere[04:57:35] *** Zeit|awy has quit IRC[04:58:27] <sahil> hyperbole also appears to be in abundance.[05:08:36] *** McJerry has quit IRC[05:10:38] *** McJerry has joined #postfix[05:18:40] *** drcode has left #postfix[05:20:15] *** keffer has quit IRC[05:38:20] *** Chocobo has joined #postfix[05:39:31] <Chocobo> Does anyone have a good link for postfix debugging? For some reason I can't seem to get sasl/smtp auth working. I have TLS working with self-signed certificates.... but when my email client prompts for a password it won't take it :/ grrrrr[05:41:19] <dragonheart> what do the logs say?[05:42:41] <Chocobo> May 16 23:25:59 qwerty postfix/smtpd[9968]: warning: SASL authentication problem: unable to open Berkeley db /etc/sasldb2: No such file or directory[05:42:41] <Chocobo> May 16 23:25:59 qwerty postfix/smtpd[9968]: warning: SASL authentication problem: unknown password verifier[05:42:41] <Chocobo> May 16 23:25:59 qwerty postfix/smtpd[9968]: warning: cpe-72-224-199-210.maine.res.rr.com[72.224.199.210]: SASL LOGIN authentication failed: no mechanism available[05:42:56] <Chocobo> hrm, I am not using sasldb2... I am trying to use pam.[05:43:24] <Chocobo> root 9875 0.0 0.0 5368 732 ? Ss 23:17 0:00 /usr/sbin/saslauthd -m /var/run/saslauthd -a pam[05:43:44] * Chocobo is confused....[05:43:53] <sahil> Chocobo: start with http://www.postfix.org/DEBUG_README.html and http://postfix.state-of-mind.de/patrick.koetter/saslfinger/[05:44:21] <Chocobo> that is really strange, saslauthd is using pam for authentication. :/ hrmmmm[05:45:32] <dragonheart> how is the postfix-> saslauthd working? unix socket -in chroot of postfix? network socket? - firewall blocks?[05:46:04] <dragonheart> note i've never used saslauthd and only dovecot so this may be a silly question[05:46:06] <sahil> Chocobo: i hope you are not running postfix in a chroot.[05:46:29] <Chocobo> sahil, nope.[05:46:51] <sahil> do you have dovecot operating on the same machine?[05:46:52] <Chocobo> No firewall, no chroot...[05:47:00] <sahil> firewall irrelevant in this particular context. :P[05:47:05] <Chocobo> sahil, nope. I am starting with just postfix.[05:47:45] <Chocobo> dragonheart, I am not sure how is saslauthd is working. Not sure exactly what that means :/[05:48:36] <Chocobo> I am going to be using dovecot eventually... that can take place of saslauthd? dovecot doesn't do smtp does it?[05:49:04] <sahil> no, it is a smtp server.[05:49:08] <sahil> er, sorry, IMAP server.[05:49:34] <sahil> did you read the SASL readme? are you using cyrus sasl?[05:49:38] <rob0> Dovecot does do SASL.[05:49:42] <sahil> we need more information about your setup.[05:49:43] <rob0> !sasl[05:49:43] <knoba> rob0: "sasl" : SASL is 'Simple Authentication and Security Layer', necessary for SMTP AUTH, and provided to Postfix by addin software. Cyrus SASL and/or Dovecot IMAP/POP3 can provide SASL. See http://www.postfix.org/SASL_README.html for details.[05:49:56] <sahil> yes, dovecot does *not* do smtp.[05:50:11] * sahil uses dovecot to authenticate as well[05:51:05] <Chocobo> I am using cyrus-sasl and I believe I have read the readme.[05:51:14] <sahil> you believe you have read it? haha.[05:51:36] <sahil> postconf -n to pastebin (as requested in topic) and drop the link in here.[05:51:39] <Chocobo> sahil, right now it is just postfix and sasl. I am just trying to setup an smtp server that has authentication.[05:52:08] <sahil> but you *are* trying to setup an smtp server with authentication. that is what you're doing by enabling sasl functionality with postfix.[05:52:16] <rob0> your Cyrus SASL is not configured, looks like[05:52:32] <Chocobo> http://pastebin.com/m3b046686[05:53:04] <Chocobo> sahil, I have read a lot of stuff on this. I can go back and find it :)[05:57:14] <sahil> Chocobo: all i can offer is for you to re-read the README, specifically the section titled "Cyrus SASL configuration for the Postfix SMTP server". good luck.[05:57:33] <Chocobo> I think maybe it is smtpd_sasl_path = smtpd <--- not finding this guy.[05:58:13] <Chocobo> Ok thanks. I must not have read the README. I can't find it, so it is unlikely I read it.. I mostly read postfix documentation. I will go dig into it :)[05:59:36] <sahil> that *is* postfix documentation.[05:59:38] <sahil> sigh[05:59:59] <rob0> Cyrus SASL would use a config file called "smtpd.conf" IIRC[06:00:27] <rob0> Sounds like Debian, and wouldn't you know, they put theirs in a non-standard place[06:01:38] <Chocobo> Yes, I am trying to figure out where that file should go. I have it in /usr/lib/sasl2/ right now. I am looking though the package files to see what compile flags they use....[06:02:11] <rob0> /usr/lib/sasl2/ is the Cyrus SASL default location[06:04:08] <Chocobo> hrm[06:06:00] <Chocobo> ooo the documentation says /usr/local/lib/sasl2/[06:07:38] <rob0> and /usr/lib/sasl2/ would be a symlink in that case[06:09:36] <Chocobo> Well thanks for the help. I think if I keep working on this, I will end up destroying what I do have by mistake :) I am going to head to head to bed and sleep on it. Thanks for the help.[06:10:20] <rob0> yw, you should have good Google terms anyway.[06:10:39] <Chocobo> INdeed I should. Have a nice evening :)[06:12:26] *** Chocobo has quit IRC[06:39:10] *** PhilKC has quit IRC[06:56:48] *** m0f0x has quit IRC[06:59:13] *** keffer has joined #postfix[07:16:59] *** DarklyCute has joined #postfix[07:20:11] *** DarklyCute has quit IRC[07:23:25] *** reya276 has joined #postfix[07:23:31] <reya276> anyone in?[07:28:29] *** Lap_64 has joined #postfix[07:32:09] *** Motoko-chan has quit IRC[07:32:26] <reya276> I'm having an issue adding a user and automatically creating an Maildir for the user[07:32:57] <reya276> so I use this command sudo useradd -m -s /bin/bash <username>[07:33:26] <reya276> but when I go to try and read email by doing su - <usermame>[07:33:36] <reya276> I get Cannot execute /bin/bash/: Not a directory[07:35:02] <rob0> "id username" returns what?[07:35:36] <reya276> uid=1001(rangeles) gid=1001(rangeles) groups=1001(rangeles)[07:36:11] <rob0> and "grep ^rangeles: /etc/passwd"?[07:37:46] <reya276> rangeles:x:1001:1001::/home/rangeles:/bin/bash/[07:38:04] <rob0> well there it is ... a trailing /[07:38:13] <rob0> typo[07:38:53] <reya276> okoh how can I completely remove this user[07:39:48] <rob0> probably userdel(8), really a question for your OS/distro documentation.[07:40:12] <rob0> all you have to do is EDIT that and take off the ending "/"[07:43:48] <reya276> rangeles:x:1003:1003::/home/rangeles:/bin/bash[07:43:54] <reya276> ok slash is gone[07:44:03] <rob0> and the UID is different[07:45:14] <reya276> right because I deleted the user[07:46:02] <reya276> also I'm trying to telnet localhost 25 to see if I can read the email just to test the system and I can't[07:46:39] <reya276> mail: /var/mail/rangeles: Permission denied[07:47:51] <reya276> so I'm doing this sudo postconf -e "home_mailbox = Maildir/"[07:48:16] <reya276> because I want to create the Maildir in the user dir[07:48:28] <reya276> but for some reason is not doing it[07:50:16] <rob0> SMTP protocol is not for reading mail.[07:50:30] <rob0> Debian or derivative I bet.[07:50:45] <reya276> yes Ubuntu[07:51:16] <reya276> but I had this install on a ubuntu server before but for some reason now is not working[07:51:35] <rob0> take out your "mailbox_command" line if you want home_mailbox[07:52:59] <reya276> can I pastebin my mail.cf so you can see it[07:53:40] <reya276> is this what you meant sudo postconf -e "mailbox_command = "[07:54:12] <rob0> did it not have "mailbox_command" before that?[07:54:17] <reya276> basically this is the guide I'm trying to follow https://help.ubuntu.com/community/PostfixBasicSetupHowto[07:54:43] <reya276> oh you mean this sudo postconf -e "home_mailbox = Maildir/"[07:59:32] *** j_s has joined #postfix[08:07:43] <reya276> rob0: I also get this RCPT TO <reya276 at gmail dot com> failed: Server configuration error[08:09:57] <sahil> reya276: pastebin your main.cf (what is this mail.cf of which you speak?) and also pastebin relevant excerpts from your maillog.[08:11:59] <reya276> sahil: that is the main.cf which is postfix main config file at least in Ubuntu it is[08:14:21] <reya276> sahil: so I can receive email but I can't send[08:14:59] <reya276> and for some reason Evolution keeps asking me to enter my pass even though I have it set to remember[08:16:16] <reya276> sahil: this is my mail log http://www.pastebin.org/36521[08:17:14] *** rcsu has joined #postfix[08:20:06] *** reya276 has left #postfix[08:22:35] <sahil> way to wait for an answer.[08:25:45] *** McJerry has quit IRC[08:28:07] *** muecke77 has joined #postfix[08:30:34] *** stony_ has joined #postfix[08:38:35] *** Filbert has joined #postfix[08:42:31] *** stony has quit IRC[08:59:41] *** madrescher has joined #postfix[09:17:42] *** Frankl has joined #postfix[09:17:46] <Frankl> hello[09:18:40] <Frankl> I have some problem using postfix, it will acept any rcpt to address reguardless if it exiist or not[09:18:48] <Frankl> any one here?[09:19:09] <muecke77> Frankl: Have a look for catchall[09:19:26] <Frankl> I have no catchall for my domains configured[09:20:37] <muecke77> You ar going to accept any domain?[09:20:52] <Frankl> no only my domains will be acept[09:21:39] <Frankl> if there will get an email to my domain to an user that does not exist, they will get a bounce from my postfix server[09:21:39] <muecke77> what is your sasl? any message in syslog?[09:22:12] <muecke77> Should be ok, shouldn't it?[09:49:59] *** muecke77 has quit IRC[09:59:12] *** war9407 has joined #postfix[10:01:11] *** rootsvr has joined #postfix[10:03:46] *** Severed_Head_Of_ has joined #postfix[10:04:13] *** x-spec-t has joined #postfix[10:04:37] *** Spec[x] has quit IRC[10:15:22] <soren> Frankl: Where are you connecting from?[10:21:16] *** growltiger has quit IRC[10:35:43] *** wdp has quit IRC[10:58:07] *** pa has joined #postfix[10:58:23] *** robboplus has quit IRC[11:06:03] *** Lap_64 has quit IRC[11:11:01] <Frankl> hello[11:11:18] <Frankl> how can I limit the number of smtp and bounce processes of postfix[11:12:21] <dragonheart> !master.cf - max processes column[11:12:22] <knoba> dragonheart: Error: "master.cf" is not a valid command.[11:15:31] *** [diablo] has joined #postfix[11:16:05] *** fabx_ has joined #postfix[11:16:15] <fabx_> hi[11:16:21] *** fabx_ is now known as faboubio[11:16:51] *** faboubio is now known as fabx[11:16:55] <fabx> hi[11:17:05] <fabx> any human here ?[11:18:32] <war9407> hm[11:18:39] <fabx> ah[11:18:52] <fabx> i use postfix for personal and for my company[11:19:13] <fabx> and i have a little heu thing[11:19:40] <fabx> i use headers/bodychecks and spamassassin rules and those works well[11:20:16] <fabx> but my postfix server sends a maillog everyday to a local mailbog called "logs"[11:20:42] <fabx> and this logs contain the list of rejected mail[11:21:08] <fabx> and my maillog is rejected itself[11:21:19] <fabx> funny no ?[11:22:15] <fabx> is there a way to say in header or body check that "do not apply rules furter" when it comes from "root"[11:22:29] <war9407> not easily[11:22:40] <war9407> not that way[11:22:42] <war9407> in master.cf[11:22:47] <war9407> you can make it so it ignores local mail[11:22:51] <war9407> from header/body checks[11:22:53] <war9407> I suggest you do that[11:23:20] <fabx> how to ignore ?[11:23:31] <dragonheart> whitelist the ip[11:23:36] <fabx> if i "ignore" the next rule is applied...?[11:24:10] <fabx> ah ok, not in header checks[11:25:36] <fabx> i'll look on master.cf[11:27:58] *** muecke77 has joined #postfix[11:28:17] <fabx> dragonheart : the iip/domain is whitelisted in spamassassin but header_check/bodychecks filters still apply before[11:29:11] <fabx> ther is in fact no way to say a rule in header_checks "accept the mail and do not look further rules"[11:34:20] *** sophokles has joined #postfix[11:35:10] *** sophokles has quit IRC[11:36:00] *** sophokles has joined #postfix[11:53:31] *** muecke77 has quit IRC[12:24:32] *** pirho has joined #postfix[12:29:52] *** mrfree has joined #postfix[12:30:19] <mrfree> hi all[12:30:34] <mrfree> I have a question about permit reject ordering http://pastebin.com/d5472a5d6[12:30:58] <mrfree> should I move all reject on top and then permits?[12:31:25] <war9407> smtpd_sender_restrictions[12:31:29] <war9407> you should put them all under[12:31:33] <war9407> smtpd_recipient_restrictions[12:31:34] <war9407> not sender.[12:32:50] <mrfree> http://pastebin.com/d28ee006d[12:32:58] <mrfree> this is my actual conf[12:33:09] <mrfree> the restriction part[12:34:36] <war9407> that is a mess :)[12:34:40] <war9407> recommendation:[12:35:03] <mrfree> :)[12:35:07] <war9407> smtpd_recipient_restrictions =[12:35:10] <war9407> permit_mynetworks,[12:35:14] <war9407> reject_unauth_destination,[12:35:18] <war9407> after that the order does not matter[12:35:36] <war9407> google this -> Jim Seymour Anti-UCE FAQ[12:35:37] <war9407> read it[12:35:40] <war9407> it talks all about it[12:49:29] <mrfree> war9407, I'm reading it... thanks[12:51:39] *** sirus has joined #postfix[12:52:46] <sirus> I have rencently done a portupgrade on FBSD 7x but it seems I'm unable to add mailboxes to my domains yet I can send / receive email with previously added emails how can I fix this?[12:54:41] <war9407> mrfree: k[13:00:28] <mrfree> war9407, mmmhh I think I can leave the reject part in sender_restrictions but I can remove permits, right?[13:00:47] <war9407> mrfree: nothing is needed in sender_restrictions[13:00:53] <war9407> mrfree: it can all be placed in smtpd_Recipient_Restrictions[13:00:59] <war9407> mrfree: that is how most people do it[13:01:09] <mrfree> war9407, why?[13:01:29] <war9407> mrfree: its cleaner , more efficient[13:02:37] *** muecke77 has joined #postfix[13:03:47] <war9407> mrfree: why not do it that way?[13:03:54] <war9407> mrfree: why use sender_restrictions?[13:04:06] <war9407> mrfree: I prefer things to be clean, sufficient and straight-forward ;)[13:04:54] *** shinao1 has joined #postfix[13:05:05] * sirus wonders if he has a mysql problem[13:07:14] <sirus> can anyone help?[13:10:26] <sirus> Is there an howto for an freebsd install?[13:13:40] *** Knoedel2 has joined #postfix[13:15:37] *** mrfree has quit IRC[13:18:07] *** [diablo] has quit IRC[13:19:59] *** brancaleone has joined #postfix[13:24:28] *** hever has joined #postfix[13:43:17] *** shinao1_ has joined #postfix[13:45:34] *** war9407 has quit IRC[13:46:43] *** shinao1_ has quit IRC[13:51:11] *** suuuper has joined #postfix[13:55:57] *** fabx has quit IRC[13:56:41] *** pirho has quit IRC[13:58:51] *** pirho has joined #postfix[14:01:14] *** hemry has joined #postfix[14:01:19] *** cite has joined #postfix[14:03:29] <cite> Hello there. A few day ago, I added a "check_sender_ns_access" statement to main.cf, prefixed by "warn_if_reject". Now I was looking at the log summaries and noticed that for a lot of (spam) sender domains, those NS entries contain invalid characters.[14:03:56] <cite> Do I need to worry about that? I.e., can binary characters in NS-RRs lead to code execution in the postfix smtpd server?[14:07:19] *** sirus has left #postfix[14:08:28] *** shinao1 has quit IRC[14:14:13] *** gentgeen__ has quit IRC[14:16:58] *** ne0futur has joined #postfix[14:17:03] *** ne0futur has left #postfix[14:27:05] *** mathez has joined #postfix[14:29:57] *** shinao1 has joined #postfix[14:32:38] *** pirho has quit IRC[14:35:15] *** pirho has joined #postfix[14:38:09] *** Fallenou has joined #postfix[14:40:25] *** muecke77 has quit IRC[15:16:25] *** pa has quit IRC[15:16:38] *** war9407 has joined #postfix[15:16:43] *** hemry_ has joined #postfix[15:23:00] *** pa has joined #postfix[15:23:04] *** hever has quit IRC[15:25:01] *** hemry has quit IRC[15:27:22] *** xpoint has joined #postfix[15:28:31] <Trengo> cite only if there are buffer overflows in the related code, which i very much doubt, this being postfix, and its author being who it is[15:29:34] *** robboplus has joined #postfix[15:38:03] <cite> I just asked because this is the kind of thing that 90% of all software authors don't think about - corrupted DNS responses.[15:42:11] <Trengo> you can always audit the code[15:42:56] <cite> I don't have the necessary skills to do that.[15:44:06] <cite> otoh, I don't think im the first person ever to use check_sender_ns_access.[15:47:14] *** c00l2sv has joined #postfix[15:53:47] <vice-versa> postfix checks for malformed DNS query results[15:55:05] <cite> obviously, I wouldn't have seen those warnings otherwise[15:57:25] *** Frankl has quit IRC[15:58:42] *** mp2 has joined #postfix[16:02:28] *** shinao1_ has joined #postfix[16:05:15] <mp2> hello evrb.[16:05:16] <mp2> i installed postfix, courier. everything worked ok.[16:05:16] <mp2> today i installed "apt-get install amavisd-new clamav spamassassin" and configured according to[16:05:16] <mp2> http://workaround.org/articles/ispmail-etch/#schritt-10-amavis-herausfiltern-von-spam-und-viren[16:05:16] <mp2> and i'm becomming[16:05:17] <mp2> warning: connect to transport smtp-amavis: Connection refused[16:05:18] <mp2> what could it be?[16:07:13] <Signum> mp2: sounds like your amavis is not running.[16:07:44] <Signum> mp2: are you sure that you ran "netstat -nap | grep 10024[16:07:46] <Signum> "?[16:07:59] <vice-versa> cite: warnings?[16:09:29] *** PhilKC has joined #Postfix[16:09:33] <mp2> netstat -nap | grep 10024 - OK[16:09:34] <mp2> per telnet reachable[16:10:12] <mp2> postfix check - NO WARN.[16:11:25] <mp2> main.cf includes[16:11:26] <mp2> content_filter = smtp-amavis:[127.0.0.1]:10024[16:11:26] <mp2> receive_override_options = no_address_mappings[16:12:24] <mp2> signum: one more idea?[16:12:46] <Signum> mp2: so "telnet localhost 10024" gets you connected?[16:13:07] <mp2> yes, on 10025 also[16:13:13] *** lunaphyte_ has joined #postfix[16:13:49] <Signum> mp2: can you paste(bin) your master.cf?[16:14:52] *** mp2 has quit IRC[16:15:24] *** mp2 has joined #postfix[16:15:41] <Signum> mp2: pastebin! :)[16:15:42] *** sophokles has quit IRC[16:16:07] <mp2> signum: i'm not registered to paste it private. for evrb. it would be not interesting[16:16:32] <Signum> mp2: Well, this is a public channel. I think everybody should get a chance to help you. :)[16:16:56] <Signum> mp2: It's not personally intersting for me either. ;)[16:16:56] *** hark has joined #postfix[16:17:41] <mp2> signum: ok[16:17:42] <mp2> master.cf[16:17:43] *** mp2 has quit IRC[16:17:44] *** meandtheshell has joined #postfix[16:18:16] *** mp2 has joined #postfix[16:18:42] <Signum> !pastebin[16:18:43] <knoba> Signum: "pastebin" : a way to paste larger amounts of text so that other people can read it. Try http://www.rafb.net/paste/ or http://paste.debian.net/ - Do not forget to tell us the URL where you pasted it.[16:19:03] *** mp2 is now known as m_p[16:19:39] <m_p> signum: any notices to the master.cf?[16:20:18] <Signum> m_p: all we saw from your master.cf was: mp2 [n=usermp at host-195-16-80-11 dot leipziger-messe.de] has quit [Excess Flood][16:20:40] *** wdp_ has joined #postfix[16:20:48] *** shinao1 has quit IRC[16:21:21] <m_p> signum: very strange[16:21:28] <m_p> i'll try one more time[16:21:40] <Signum> m_p: try using a pastebin[16:23:17] *** shinao1_ has quit IRC[16:23:28] <m_p> signum: stupid from me, but i dont understand what u mean. pastebin?[16:23:45] <Signum> !pastebin[16:23:46] <knoba> Signum: "pastebin" : a way to paste larger amounts of text so that other people can read it. Try http://www.rafb.net/paste/ or http://paste.debian.net/ - Do not forget to tell us the URL where you pasted it.[16:23:49] <Signum> m_p: ^--------[16:25:09] <m_p> signum: cool - http://paste.debian.net/3298/[16:25:55] <Signum> m_p: Alright. I'd say you are missing an "smtp-amavis" section in your master.cf.[16:27:06] *** AcTiVaTe has joined #postfix[16:27:59] <m_p> signum: are[16:27:59] <m_p> "amavis unix - - n - 2 smtp"[16:27:59] <m_p> and[16:27:59] <m_p> "smtp-amavis unix - - n - 2 smtp"[16:27:59] <m_p> not the same?[16:28:00] <m_p> for example: http://wiki.hetzner.de/index.php/DebianMailserver5[16:28:56] <Signum> m_p: Is an apple a pear? :) If Postfix looks for "smtp-amavis" it will not find "amavis".[16:29:23] <m_p> signum: mom[16:29:59] <m_p> what about the "amavis" section. should it be rewritten?[16:30:44] <Signum> m_p: Well, you quoted the workaround.org tutorial. I suggest you keep following what it says.[16:32:18] *** rootsvr has quit IRC[16:37:50] *** LeonWP has joined #postfix[16:38:03] <LeonWP> hi[16:38:52] <LeonWP> can I make postfix write some headers (from, to, subject) to the log when receiving mail?[16:39:13] <m_p> signum: nothing changed[16:39:14] <m_p> postfix/smtpd[18449]: connect from mx1.netclusive.de[89.110.132.131][16:39:14] <m_p> postfix/smtpd[18449]: 196442F00411: client=mx1.netclusive.de[89.110.132.131][16:39:15] <m_p> postfix/cleanup[18454]: 196442F00411: message-id=<482EED10.9020404 at example dot de>[16:39:15] <m_p> postfix/qmgr[18418]: 196442F00411: from=<mp at example dot de>, size=1590, nrcpt=1 (queue active)[16:39:15] <m_p> postfix/smtpd[18449]: disconnect from mx1.netclusive.de[89.110.132.131][16:39:16] <m_p> amavis[18445]: (18445-01) (!!) ask_av (ClamAV-clamd) FAILED - unexpected result: /var/lib/amavis/tmp/amavis-20080517T163457-18445/parts: lstat() failed. ERROR\n[16:39:20] <m_p> amavis[18445]: (18445-01) (!!) WARN: all primary virus scanners failed, considering backups[16:39:22] <m_p> postfix/qmgr[18418]: warning: connect to transport amavis: Connection refused[16:39:56] <LeonWP> I'd like to have these all in one line, if possible[16:40:44] *** brancaleone has quit IRC[16:45:34] *** brancaleone has joined #postfix[16:53:26] <rob0_> header_checks.5.html , see the WARN action, but no, would be one line logged per header. Did you realize that envelope sender and recipient are already logged?[16:56:02] *** yoandy has joined #postfix[16:59:18] <yoandy> Hi, how can i make postfix do a copy a mail based con sender and recipient ("and", both at same time),[16:59:27] <yoandy> *of a mail[17:00:57] *** lunaphyte_ has quit IRC[17:06:01] *** lunaphyte_ has joined #postfix[17:07:32] *** c00l2sv has quit IRC[17:11:14] *** c00l2sv has joined #postfix[17:12:37] *** nohelphere has joined #postfix[17:12:54] <nohelphere> where is main.cf by default?[17:13:06] <nohelphere> i need to edit it[17:15:37] *** tom_wifi has joined #postfix[17:17:16] <nohelphere> for myhostname to I enter my system hostname or the domain that has dns setup for my system?[17:18:46] *** hemry_ has quit IRC[17:19:28] <m_p> signum: i got one more problem ClamAV-clamd: Can't connect to UNIX socket /var/run/clamav/clamd.ctl: No such file or directory, retrying (2)[17:19:29] <m_p> i found in one forum that "Etch Stable 0.90.1 Clamav release" is buggy. the solution is http://paste.debian.net/3304/[17:20:01] *** c00l2sv has quit IRC[17:21:15] <nohelphere> postfix is not sending e-mail i don'y know why[17:21:21] <m_p> signum: but whenn i pass sendmail mp at example dot com < /usr/share/doc/spamassassin/examples/sample-spam.txt[17:21:22] <m_p> i get[17:21:22] <m_p> amavis[18445]: (18445-09) (!!) ask_av (ClamAV-clamd) FAILED - unexpected result: /var/lib/amavis/tmp/amavis-20080517T165621-18445/parts: lstat() failed. ERROR\n[17:21:22] <m_p> amavis[18445]: (18445-09) (!!) WARN: all primary virus scanners failed, considering backups[17:22:06] <m_p> and the "postfix/qmgr[18418]: warning: connect to transport amavis: Connection refused" is all the time appearing[17:22:49] *** noneya has joined #postfix[17:23:41] <noneya> if mail server = mail.noneya.com , yet no local user shell accounts on that machine.. want to host email for users at noneya dot com, should i run a virtual domain type of postfix? or should only worry about doing final destination type of postfix?[17:24:09] <mwalling> !virtual[17:24:10] <knoba> mwalling: "virtual" : a way to configure additional domains and user accounts (that do not need to exist in your /etc/passwd). See: http://www.postfix.org/VIRTUAL_README.html[17:25:12] <nohelphere> i am unable to see why postfix won't send e-mail[17:25:14] <noneya> ok, so most certianly should be virtual[17:25:20] <noneya> thansk for the tip[17:26:01] <noneya> hmm.. from that article:[17:26:01] <noneya> Most Postfix systems are final destination for only a few domain names. These include the hostnames and [the IP addresses] of the machine that Postfix runs on, and sometimes also include the parent domain of the hostname. The remainder of this document will refer to these domains as the canonical domains. They are usually implemented with the Postfix local domain address class, as defined in the ADDRESS_CLASS_README file.[17:26:17] <noneya> 'These include the hostnames and [the IP addresses] of the machine that Postfix runs on, and sometimes also include the parent domain of the hostname'[17:26:54] <noneya> ^ i interpret that as saying the parent domain of the hostname (in this case, noneya.com) is the canonical domain. they 'are usually implemented' with the postfix local domain address class[17:27:21] <rob0> Right, number of domains hosted and need for namespace separation (or overlap) should determine when to use the local class. You can easily prevent shell logins.[17:27:43] <m_p> signum: any idea according to my questions?[17:29:28] <noneya> rob0: so i'm still confused. should i be using local adress class delivery or should i be using virtual domain ?[17:29:48] *** rob0_ has quit IRC[17:29:55] <rob0> "Should" is entirely up to you.[17:30:39] <mwalling> 1tell noneya debug[17:30:46] <mwalling> fsck[17:30:49] <mwalling> !tell noneya debug[17:31:04] <rob0> huh?[17:31:08] <mwalling> 11:25 < nohelphere> i am unable to see why postfix won't send e-mail[17:31:16] <rob0> 15:30 < mwalling> !tell noneya debug[17:31:21] <mwalling> er[17:31:23] <mwalling> tab fail[17:31:28] <noneya> hmm, i haven't started installing anything yet[17:31:33] <noneya> so not sure what i should be debugging[17:31:38] <nohelphere> !tell debug[17:31:38] <knoba> nohelphere: (tell <an alias, 2 arguments>) -- Alias for "Misc tell $1 [Factoids whatis $2]".[17:31:41] <mwalling> noneya: ignore that, tabcompletion at its finest[17:31:43] <rob0> tab completion 1, mwalling 0[17:31:46] <noneya> hehehe[17:31:47] <vice-versa> mwalling apparently[17:31:51] <nohelphere> !tell nohelphere debug[17:32:08] <mwalling> that grass isnt going to get shorter on its own[17:32:13] <noneya> so is it more conventional to host non-local users as vmailbox for parentdomain of hostname of mailserver? or is it more conventional to use local address final destination method[17:32:29] <rob0> noneya, the virtual(8) delivery agent is a stripped down version of local(8).[17:33:00] * vice-versa debugs mwalling[17:33:15] <noneya> understood[17:33:21] <rob0> A lot of things that are easy in local(8) are not easy in virtual(8). OTOH, virtual mailbox systems can scale upward easily.[17:33:37] <noneya> rob0: what makes virtual more scalable?[17:33:42] <noneya> less processing?[17:33:57] <mwalling> flexability[17:34:12] <noneya> less flexibility = more scalable?[17:34:21] <rob0> Signum's HOWTO is aptly called "ISP-style mail service". If you're an ISP with a large and rapidly changing user base, virtual might be best.[17:34:28] <noneya> no just one domain[17:35:10] <rob0> A single domain, I would recommend using local.[17:35:25] <noneya> excellent. That's what i was looking for. thanks rob0![17:35:44] <rob0> !tell noneya basic[17:36:05] <rob0> ^^ that and the sample main.cf should get you going.[17:36:31] <noneya> coo coo. ya i got one running but it boecomes so damn complicated.. so manymoving parts[17:36:44] <noneya> when you integrating courier-imap, courier-maildrop, ldap, saslauth[17:36:56] <noneya> every doc out there has a diff way of doing it[17:37:10] <noneya> some use custom schema, some don't.. some delivery mail to mailbox one way,[17:37:14] <noneya> it's all over the place[17:37:21] <noneya> some use virtual some don't[17:37:33] <noneya> so i figure good step back and rethink was good[17:37:38] <rob0> The Postfix side of it is easy, once you understand Postfix. But that's not saying much. :)[17:37:50] <noneya> well postfix seems to be the most config-intense part[17:37:55] <noneya> cuz it's so 'flexible'[17:38:02] <noneya> it's almost like learning sendmail all over again[17:38:23] <vice-versa> !tutorial[17:38:24] <knoba> vice-versa: "tutorial" : A very common problem is that some people prefer to follow a step-by-step tutorial that shows them how to setup their mail server without reading the documentation or understanding what they are doing. If something goes wrong, they have no clue whatsoever about where to look for hints, and they sometimes decide to start from scratch using a different tutorial. This is not The Proper Way.[17:38:44] <rob0> Oh no, it should be much easier than sendmail. If you know sendmail (and email/SMTP) Postfix should be a breath of fresh air.[17:39:37] <noneya> well here's where i'm confused. if i choose to use local delivery agent only, what differentiates mailboxes for local users vs ldap users[17:39:58] <noneya> sounds like they will all attempt to deliver to local $HOME mailboxes[17:40:19] <noneya> but ldap users will not have local shell $HOME dirs[17:40:33] <noneya> so is this the main reason why i should be using virtual delivery agent isntead?[17:41:51] <rob0> possibly :)[17:42:27] <rob0> LDAP *can* be used as a backend for Unix user account information, but that might be tricky.[17:42:38] <rob0> maybe pam-ldap[17:42:43] <noneya> no i don't want to do that[17:42:49] <rob0> I don't know, never done it.[17:43:09] <noneya> ya that's what we're using now[17:43:20] <noneya> it puts a lot of io overhead[17:43:36] <noneya> on the ldap cuz everytimeu look at imap process for example it goes w/ user id[17:43:40] <noneya> top as well[17:43:40] *** yoandy has quit IRC[17:43:55] <noneya> and thus has ldap query associated for every process listing[17:44:19] <noneya> so it really does sound like virtual is the way to go then[17:45:17] <rob0> In this particular case it might be more work to set up local.[17:45:27] <noneya> ya i think u right[17:45:44] <noneya> thanks again for all your feeddback. this really does clear things up[17:46:02] <rob0> virtual can be pretty easy too, if you know your OS and understand how Postfix does things[17:46:23] <rob0> that ADDRESS_CLASS_README contains a lot of Postfix-fu.[17:46:30] <noneya> ok, ya the virtual readme looked straightforward. but that combined w/ ldap readme kinda threw me off[17:47:51] <tom_wifi> what can i do to check that posfix was compiled with mysql support?[17:48:24] <rob0> postconf -m[17:48:46] <tom_wifi> thankyou. that worked[17:50:29] *** yoandy has joined #postfix[17:53:38] *** brancaleone has quit IRC[18:00:20] *** ming_zym has joined #postfix[18:01:19] *** netcrash has quit IRC[18:02:47] <m_p> connect to transport amavis: Connection refused[18:02:48] <m_p> @see http://www.security-express.com/archives/postfix/2006-06/1511.html[18:07:00] <war9407> rob0: around? was curious if you would share your main.cf?[18:08:01] <war9407> I like to review peoples' main.cf, always/sometimes find better ways to improve my own[18:09:21] <m_p> connect to transport amavis: Connection refused [warning][18:09:22] <m_p> "postsuper -r ALL" didnt help[18:09:22] <m_p> the "warning" occurs for the new messages again and again[18:17:04] *** AcTiVaTe has quit IRC[18:22:19] <roe_> m_p, amavis is not listening on the specified port[18:24:24] <m_p> roe_: where will it be set exactly?[18:24:41] <roe_> in your amavis config[18:26:47] *** hever has joined #postfix[18:27:20] <xpoint> whois 58.248.0.0 see route does not match ip range, so some chiness dont have routes there :-)[18:29:17] <m_p> roe_: which parameter and in which config file /etc/amavis/conf.d/* ?[18:29:37] *** lunaphyte_ has quit IRC[18:45:29] <noneya> hmmm even if i add ldap lookup map to local_recipients, it won't even attempt to do an ldap lookup[18:51:06] *** devdas has joined #postfix[18:55:24] *** UQlev has joined #postfix[19:05:54] *** nohelphere has left #postfix[19:06:16] *** Mavvie has quit IRC[19:06:48] *** hever has quit IRC[19:07:36] *** c00l2sv has joined #postfix[19:08:30] *** reya276 has joined #postfix[19:09:41] <reya276> Can anyone help me solve an smtp authentication issue[19:10:04] <m_p> what about it?[19:10:59] <reya276> for some reason I can't authenticate, meaning send out any emails[19:11:53] <m_p> what do u have in /var/log/mail.log?[19:12:15] <reya276> give me a sec. so I can pastebin[19:12:25] <m_p> did it work before or you install all new?[19:13:14] <reya276> http://www.pastebin.org/36626[19:13:21] <reya276> new install[19:13:23] *** Fallenou has quit IRC[19:13:46] <reya276> originally I had it working but under a different OS version[19:14:19] <reya276> but since I upgraded it stopped working correctly[19:15:36] <reya276> here is my mail.err log as well http://www.pastebin.org/36627[19:17:03] *** felix_da_catz has joined #postfix[19:21:19] <m_p> did you try to telnet?[19:21:24] *** amrit|wrk is now known as amrit[19:21:34] <reya276> no[19:21:45] <reya276> let me try that[19:22:19] <m_p> du you use sasl?[19:22:24] <reya276> all I get is trying 127.0.0.1[19:22:39] <reya276> yes I use sasl[19:22:47] <reya276> I should not[19:23:27] *** fabx_ has joined #postfix[19:26:40] <fabx_> hello[19:27:18] <fabx_> any human here ?[19:27:25] <reya276> yes[19:27:26] <devdas> no[19:27:34] <fabx_> :)[19:27:40] <devdas> perhaps?[19:27:41] <fabx_> i'mnew on this chan[19:28:09] <fabx_> i'm using postfix for my job and for my personal server[19:28:17] <fabx_> il like this great program[19:28:25] <m_p> reya276: here is my installation:[19:28:26] <m_p> apt-get install postfix-tls libsasl2 libsasl2-modules libsasl2-modules-sql[19:28:26] <m_p> smtpd_recipient_restrictions = permit_sasl_authenticated, permit_mynetworks, reject_unauth_destination[19:28:26] <m_p> pwcheck_method: auxprop[19:28:29] <m_p> auxprop_plugin: sql[19:28:30] <m_p> mech_list: plain login cram-md5 digest-md5[19:28:32] <m_p> sql_engine: mysql[19:28:35] <m_p> sql_hostnames: 127.0.0.1[19:28:36] <m_p> sql_user: provider_admin[19:28:38] <m_p> sql_passwd: ...[19:28:41] <m_p> sql_database: provider[19:28:42] <m_p> sql_select: select password from users where email='%u@%r'[19:28:46] <fabx_> in case of difficulties is the chan here for that ?[19:28:47] <m_p> chown root:postfix /etc/postfix/sasl/smtpd.conf[19:28:48] <m_p> chmod u=rw,g=r,o= /etc/postfix/sasl/smtpd.conf[19:28:52] <m_p> the problem i had was the cram-md5 pwd crypt. after i changed in the db to plain text - everythings ok[19:28:58] <devdas> hmmm[19:29:05] *** muecke77 has joined #postfix[19:30:35] *** tshine has joined #postfix[19:30:41] <reya276> m_p: oh you have it setup with mysql, I have it setup with vhosts and vmaps hash tables[19:30:44] <m_p> reya276:[19:30:44] <m_p> etc/postfix/main.cf[19:30:44] <m_p> smtpd_recipient_restrictions = permit_sasl_authenticated, permit_mynetworks, reject_unauth_destination[19:30:50] <fabx_> i have a little question[19:30:55] <fabx_> for beginning[19:31:35] <fabx_> how can i manage postfix so that local mail (maillog) is no filtered by header/body_checks ?[19:32:09] <devdas> fabx_: you can't[19:32:10] <fabx_> my maillog is rejected because it contain list of rejected mail with occurencies that cause the reject[19:32:23] <devdas> compress your report[19:32:51] <fabx_> as i cannot tell to body_check "accept and do not look for further rules"[19:33:19] <m_p> reya276:[19:33:19] <m_p> i have to go[19:33:19] <m_p> look at: http://workaround.org/articles/ispmail-etch/#schritt-10-amavis-herausfiltern-von-spam-und-viren[19:33:19] <m_p> ups, sorry, its german[19:33:40] <fabx_> i was told to search in master.cf so that local mail would be sent directly[19:34:03] <fabx_> i'm french, sorry if i do mistakes in english[19:34:53] <m_p> i'm ukrainian living in germany#[19:35:00] <m_p> ;)[19:35:03] <fabx_> compressing the report could be an idea, but not practical to view[19:35:09] <devdas> fabx_: there's a workaround, search for the pflogsumm howtos[19:35:12] <fabx_> wah :)[19:35:21] <devdas> fabx_: but it's nontrivial[19:35:32] <fabx_> how do you ronouce this ?[19:35:37] <devdas> compress, mail save and decompress on the recipient side[19:35:45] <fabx_> pronounce pflogsumm[19:35:46] <devdas> pf-log-summ[19:35:56] <fabx_> oki :)[19:36:17] <reya276> every time I try to do a send and receive I can't authenticate on smtp[19:36:18] *** m_p has quit IRC[19:36:33] <fabx_> i receive my mail anymore because my destination mail is logs at domain dot org[19:36:50] <fabx_> and root mail is redirected to log at domain dot org[19:37:32] <fabx_> i have the "undedeliverd mail returned to sender" with my log inside[19:37:58] <fabx_> this one is not rejected. root mail seems no to be filtered by header/body checks[19:39:13] <fabx_> i wonder if i could add "logs" user inside "local users" list as root seems to belong...[19:40:57] <devdas> May 17 02:43:33 krusty postfix[15094]: fatal: myhostname and relayhost parameter settings must not be identical: finrcvgrp.com @ reya276[19:41:10] <devdas> Isn't that fairly obvious?[19:41:38] <reya276> devdas: but I fixed that already[19:41:43] *** felix_da_catz has quit IRC[19:43:12] <devdas> ah[19:43:25] <devdas> what do you get if you telnet in?[19:44:20] <reya276> devdas: all I get is this Trying 127.0.0.1...[19:44:24] <reya276> nothing else[19:44:52] *** CrazyFoam has joined #postfix[19:46:51] <devdas> reya276: and no logs?[19:47:00] <reya276> i restarted postfix and nothing[19:47:03] <devdas> turn your firewall off?[19:47:04] <reya276> sure one sec[19:47:12] <reya276> turn it off?[19:47:17] <reya276> is not on[19:48:20] <devdas> reya276: is your syslogd running?[19:49:20] *** madrescher has quit IRC[19:50:49] <reya276> devdas: here are the mail.log http://www.pastebin.org/36633[19:55:34] <reya276> devdas: do you see anything weird[19:55:41] <reya276> because I can't tell[19:57:12] *** LMJ has quit IRC[19:57:42] <devdas> May 17 13:49:25 krusty postfix/trivial-rewrite[29572]: warning: do not list domain finrcvgrp.com in BOTH mydestination and virtual_mailbox_domains[19:57:44] <devdas> May 17 13:49:25 krusty postfix/smtpd[29499]: warning: unknown smtpd restriction: "permitmailbox_command"[19:57:52] <devdas> What's permitmailbox_command?[19:58:06] <devdas> those are your two errors[19:58:50] <reya276> oh let me take a look[19:59:24] *** yoandy has left #postfix[20:01:28] <reya276> devdas: ok I think error is gone[20:01:32] <reya276> but now I get this[20:01:33] <reya276> warning: SASL authentication failure: cannot connect to saslauthd server: No such file or directory May 17 13:59:52 krusty postfix/smtpd[30072]: warning: SASL authentication failure: Password verification failed May 17 13:59:52 krusty postfix/smtpd[30072]: warning: c-76-18-44-22.hsd1.fl.comcast.net[76.18.44.22]: SASL PLAIN authentication failed: generic failure[20:01:43] <devdas> Is saslauthd running?[20:01:49] <reya276> I do not know[20:01:55] <reya276> how can I find out[20:02:05] <devdas> ps -A f | grep sasl?[20:02:14] <reya276> I'm not very familiar with terminal commands[20:02:37] <reya276> 30133 pts/0 S+ 0:00 \_ grep sasl[20:02:41] <devdas> right[20:02:46] <devdas> Which distro is this?[20:02:48] <devdas> or OS?[20:02:50] <reya276> Ubuntu[20:02:54] <reya276> Hardy[20:03:03] <devdas> /etc/init.d/saslauthd restart[20:03:09] *** madrescher has joined #postfix[20:03:14] *** felix_da_catz has joined #postfix[20:03:43] <reya276> devdas: oh oh sudo: /etc/init.d/saslauthd: command not found[20:04:01] <devdas> hmmm[20:04:08] <devdas> do you have saslatudh installed?[20:05:01] <reya276> no I don't think so[20:06:39] <devdas> authd*[20:06:47] <devdas> Hmmm, install it then[20:07:03] <reya276> trying to but I get an error stating package is not found[20:07:03] <devdas> Though I suspect that you now need a Ubuntu user to ask[20:07:14] <devdas> apt-get search saslauthd[20:07:19] <reya276> yes I'm in that channel now[20:07:23] <devdas> It's part of the Cyrus-SASL package[20:10:07] <reya276> devdas: do I have to use that[20:10:15] <reya276> because I can't find it at all[20:11:09] <devdas> reya276: you appear to have configured your system to use that[20:11:31] <devdas> the Debian howto at workaround.org might be more helpful for you[20:11:57] <reya276> ok let me take a look thanks[20:17:14] <reya276> devdas: this is becoming too much of a headache I will just purge this postfix install and conifg and start from scratch[20:17:21] <reya276> Ubuntu sucks[20:17:49] <devdas> As a server, yes[20:19:51] <sahil> reya276: look into freebsd. my unsolicited advice for you. :P[20:20:27] <reya276> yeah I can't not upto me, boss wants this[20:21:59] <sahil> then make sure you follow the instructions to integrate SASL into your postfix installation. it's not difficult, but ubuntu-specific quirks can through you off track. ask users who run ubuntu or other debian-derivatives to help you through the idiosyncracies.[20:23:04] <sahil> reya276: also, you should read Postfix docs in general; as warned in the logs, don't ever list a domain in both mydestination and virtual_mailbox_domains.[20:23:22] <reya276> ok[20:23:25] *** felix_da_catz has quit IRC[20:24:32] *** Zelest has quit IRC[20:25:47] <reya276> I'm using this guide https://help.ubuntu.com/community/Postfix[20:26:08] <reya276> but maybe Hardy change something that does not apply to this guide[20:27:09] <reya276> oh posted in wrong place sorry[20:32:56] *** hparker has joined #postfix[20:37:15] *** noneya has quit IRC[20:40:25] *** [diablo] has joined #postfix[20:40:50] *** muecke77 has left #postfix[20:42:42] *** muecke77 has joined #postfix[20:45:30] *** muecke77 has quit IRC[20:45:45] *** muecke77 has joined #postfix[20:49:42] *** LMJ has joined #postfix[20:50:07] *** [diablo] has quit IRC[20:51:13] *** madrescher has quit IRC[20:52:19] *** muecke77 has left #postfix[20:57:33] *** Zelest has joined #postfix[20:58:19] *** Bert_2 has joined #postfix[20:59:35] *** madrescher has joined #postfix[21:00:02] <Bert_2> Hi, I'm setting up postfix SMTP with SASL and dovecot as described in the manuel on the site, now it says that I have to add smtpd_recipient_restrictions = and then a lot of options, but the options are standing under the line, shouldn't they be after the = and sepertaed by a komma ?[21:00:40] <Signum> Bert_2: either seperated by commas or on multiple lines indented with at least one space[21:00:43] <devdas> Bert_2: comma and space are equivalent[21:01:00] <Bert_2> so would this work: http://www.postfix.org/SASL_README.html#server_sasl[21:01:06] <Bert_2> or are spaces better ?[21:01:35] <Signum> Your choice.[21:01:52] <Bert_2> Signum and devdas: thanks for your quick help ;)[21:01:58] *** muecke77 has joined #postfix[21:11:01] <Bert_2> I'm rebooting the server and hoping for the best :D[21:11:47] <war9407> why would rebooting help?[21:12:24] <Bert_2> war9407: I usually reboot my server when I have re-configured stuff as I'm to lazy to restart all services :P[21:12:53] <Zelest> Bert_2, try a "shutdown now" (without -h) and just exit the single-user mode shell :D[21:13:04] <Zelest> not that it matter much[21:13:21] <Bert_2> Zelest: it doesn't restart things like apache and postfix[21:13:26] <Zelest> but if it's *only* postfix, "postfix stop" and "postfix start" should do it :)[21:13:29] *** muecke77 has left #postfix[21:13:39] <war9407> Bert_2: I assume this server does not have a lot of users? :)[21:13:40] <Zelest> Bert_2, it does[21:13:43] <Bert_2> Zelest: it's postfix, webmin and dovecot[21:14:08] <Bert_2> war9407: it's my own VPS and I'm still setting it up, no real users ATM as there's no real site on it yet[21:14:09] <Zelest> then single-user mode and back up to multi-user mode should restart them all :P[21:15:00] <Zelest> webmin scares me ;)[21:15:49] <Bert_2> Zelest: couldn't find a user-friendly open-source SCP, so I had to use webmin[21:16:32] <Zelest> Yeah, not saying it's bad or anything.. I just dislike GUI's/frontends which fiddle with my config files :P[21:16:40] <Zelest> But yeah, every man for his liking.[21:17:00] * Zelest scrolls up to read Bert_2's problem[21:18:21] <Bert_2> Zelest: okey now this is odd, I restarted, and before when i set up SASL it wouldn't be possible to receive mail (I would get those typical errors when you mistype an adress) but now I still don't receive the mail but the sender doesn't get an error either[21:18:55] <Zelest> erm[21:19:20] <Zelest> I actually use postfix with dovecot and sasl..[21:19:32] <Bert_2> and does it work ? :P[21:19:37] <Zelest> like a charm ;)[21:19:51] <Bert_2> Zelest: I keep on having problems[21:20:27] <devdas> Bert_2: see your logs[21:20:35] <Zelest> well, as for the smtpd_recipient_restriction thingie, all you basically have to do is to add the permit_sasl_authenticated..[21:21:08] <Bert_2> devdas: logs where in ?[21:21:12] <Bert_2> *were[21:21:19] <Zelest> /var/log/maillog probably[21:22:06] <Bert_2> devdas: Zelest: mail.err mail.info mail.log or mail.warn ?[21:22:23] <Zelest> tail -f /var/log/maillog[21:22:27] <Zelest> then try to send a mail[21:22:32] <Zelest> and see what postfix spits out :)[21:22:54] <Bert_2> Zelest: I don't have a maillog file[21:23:12] <Zelest> oh[21:23:19] <devdas> mai..log[21:23:22] <devdas> mail.log[21:23:31] <Zelest> well, mail.info it is (in syslogd)[21:23:57] *** ming_zym has quit IRC[21:24:22] <devdas> mail.log should contain everything[21:24:45] <Zelest> well, depends on the system ;)[21:24:49] <Zelest> I don't even have a mail.log :P[21:25:07] <Bert_2> Zelest devdas: May 16 21:25:34 bertvps postfix/smtpd[2616]: fatal: parameter "smtpd_recipient_restrictions": specify at least one working instance of: check_relay_domains, reject_unauth_destination, reject, defer or defer_if_permit[21:25:16] <devdas> Bert_2: there you go[21:25:32] <Zelest> hence, your smtpd_recipient_resitrctions options is screwed. :)[21:25:39] <devdas> add reject_unauth_destination to the end of your smtpd_recipient_restrictions[21:25:45] <Bert_2> Zelest: apparently[21:25:51] *** Haris has joined #postfix[21:25:54] <Haris> Hello people[21:26:05] <Zelest> Bert_2, well, copy the one from http://www.postfix.org/SASL_README.html#server_sasl[21:26:08] <Zelest> Haris, heya[21:26:23] <Haris> I have postfixadmin 1 installed on a box, where maildb is the postfix db and postfix is the postfixadmin db. yet postfixadmin 1 works with maildb[21:26:32] <Bert_2> Zelest: I have a typing error[21:26:41] <Bert_2> Zelest: I typed distionation :p[21:26:45] <Haris> When I tell it to connect to postfix db, it ofcourse loses all the content of maildb[21:26:48] <Zelest> Bert_2, ah ;)[21:26:55] <Haris> I'm stuck in between. What can I do?[21:26:58] *** m0f0x has joined #postfix[21:27:41] <Zelest> Haris, remove postfixadmin. ;) as it's poorly written and contained shitloads of SQL injections last time I checked. ;)[21:28:01] <Zelest> Haris, or, rename the db's?[21:28:37] <Bert_2> Zelest devdas: I edited it and restarted postfix and dovecot and now I can receive my mail, now let's hope sending works too[21:29:51] *** rob0_ has joined #postfix[21:30:14] <Haris> Zelest: well, its ok. It got the job done, which was/is much more important. It was only accessible locally so there was no issue, no matter how bad it was. I'm having a problem setting the default language for postfixadmin 1.0[21:30:31] <Haris> can't find the relevant config parameter. Heck, I can't even find 1.0 to download from somewhere[21:30:40] <Zelest> :/[21:30:56] <Bert_2> devdas: which port was submission again ?[21:31:11] <Zelest> I actually planned on coding a "better" postfixadmin once I got enough time.[21:31:48] <devdas> 587[21:32:35] <Bert_2> devdas Zelest: IT WORKS !!!! :D:D:D:D:D[21:32:46] <Zelest> nice :)[21:33:26] <Bert_2> Zelest: well, through submission as devdas figured out yesterday that port 25 was mysteriously blocked...[21:34:01] *** tshine has quit IRC[21:34:03] <Zelest> you have the box next to you?[21:34:08] <Zelest> as in, are you sitting on the same subnet?[21:34:44] <Zelest> or, rephrased.. is it traffic on port 25 outgoing or incoming that's blocked for the server?[21:34:47] <Bert_2> Zelest: it's a VPS somewhere on a server in evoswitch, I have spoken to my provider and he says the datacenter and he are not blocking it[21:35:02] <Zelest> yeah[21:35:06] <Zelest> then it's your ISP[21:35:23] <Zelest> residental ISP's usually block port 25 to prevent spam/viruses.[21:35:31] <Zelest> and ask their customers to use their own SMTP.[21:35:46] <Bert_2> Zelest: you mean my ISP for my internet connection ?[21:35:53] <Zelest> yeah.[21:36:24] <Bert_2> Zelest: well that's odd, as I have another SMTP (from a shared hosting) which works fine with port 25[21:36:33] <Zelest> :O[21:36:53] <Zelest> holy heck![21:37:08] <Zelest> my server just died[21:37:09] <Zelest> bbiab[21:37:56] <Bert_2> devdas: what do you recommend, IMAP or POP3 ?[21:40:12] <fabx_> imap is better if you consult email from various locations[21:40:22] <fabx_> you hav you mail "online"[21:41:09] <fabx_> what i'd said ?[21:41:16] <Bert_2> fabx_: okey, thank you ;)[21:43:03] <fabx_> where are you from ?[21:43:42] <Bert_2> fabx_: I'm from Belgium[21:44:03] <fabx_> i'm just at the bottom :)[21:44:16] <fabx_> france :)[21:44:39] <Bert_2> fabx_: aaaah, well, I hope the weather is nicer there then it was here today[21:44:58] <fabx_> its was raining all day in Valence[21:45:35] <Bert_2> fabx_: wa had the typical, it's raining, it's not raining thing, you know[21:45:36] *** fabx_ is now known as fabounio_[21:46:05] <Bert_2> fabounio_: but I have to go now, still have to configure lots of stuff before this server is ready[21:46:06] <fabounio_> oups my english ;)[21:46:37] <fabounio_> good luck, and may Murphy no be with you :)[21:46:38] *** Bert_2 has left #postfix[21:47:07] *** fabounio_ has quit IRC[21:47:20] *** fabounio has joined #postfix[21:48:19] *** tshine has joined #postfix[21:48:40] <fabounio> ah at least i have my ick[21:48:44] <fabounio> nick[22:15:13] *** devdas has left #postfix[22:19:48] <cite> Given the situation that I have a policy daemon running on, say, 2 differnet hosts - is there any way to make Postfix try both hosts before temporary deferring the mail transaction which caused the policy service to be contacted?[22:29:47] *** dorijan has joined #postfix[22:34:20] *** fabounio has quit IRC[22:34:56] *** basic` has left #postfix[22:38:43] *** madrescher has quit IRC[22:41:35] *** madrescher has joined #postfix[22:58:08] *** suuuper has quit IRC[22:58:21] <reya276> what does this "postmap: warning: /etc/postfix/vhosts, line 1: expected format: key whitespace value" mean?[23:00:04] *** muecke77 has joined #postfix[23:01:38] *** muecke77 has left #postfix[23:05:23] *** goldfischli has quit IRC[23:06:00] *** reya276 has left #postfix[23:08:43] *** UQlev has quit IRC[23:13:34] *** muecke77 has joined #postfix[23:17:32] *** muecke77 has left #postfix[23:23:03] *** felix_da_catz has joined #postfix[23:24:00] *** magyar has quit IRC[23:44:47] *** tom_wifi has quit IRC[23:56:42] *** felix_da_catz has quit IRC