May 24, 2008 
1 | 2 | 3 | 4 | 5 | 6 | 7 | 8 | 9 | 10 | 11 | 12 | 13 | 14 | 15 | 16 | 17 | 18 | 19 | 20 | 21 | 22 | 23 | 24 | 25 | 26 | 27 | 28 | 29 | 30 | 31
May 24, 2008 [00:00:03] * linkslice is reading [00:03:19] *** j_s has quit IRC [00:03:25] <linkslice> shasta, ooohh ok, so in my transports file I'd put something like: ".domain1.com smtp:my.nexthop.com" run postmap hash:/etc/postfix/transports ? [00:04:35] <linkslice> then in main.cf put: transport_maps = hash:/etc/postfix/transports [00:04:35] <linkslice> ? [00:04:46] *** DanielX has quit IRC [00:06:19] <Scarface1102> thanks [00:06:57] <shasta> linkslice, or "domain1.com", see comments in TABLE SEARCH ORDER section of man 5 transport [00:07:30] <shasta> also [00:07:33] <shasta> !transport_maps [00:07:33] <knoba> shasta: "transport_maps" : a configuration parameter in the main.cf: Optional lookup tables with mappings from recipient address to (message delivery transport, next-hop destination). See transport(5) for details. [00:11:03] *** PaulTT has quit IRC [00:13:12] *** debuggerboy has joined #postfix [00:18:22] *** debuggerboy has quit IRC [00:22:31] *** donspaulding has quit IRC [00:28:06] *** geek_cl has quit IRC [00:34:09] *** c00l2sv has quit IRC [00:38:27] *** Davx has quit IRC [00:38:33] *** Davx2 has joined #postfix [00:46:18] *** hparker has quit IRC [00:53:56] *** arakthor has quit IRC [00:55:58] *** PhilKC has joined #Postfix [01:00:55] *** Mavvie has quit IRC [01:06:58] *** suuuper has quit IRC [01:08:48] *** McJerry has quit IRC [01:16:50] *** Mavvie has joined #postfix [01:17:21] *** WIDESPREADpanic has joined #postfix [01:17:42] <WIDESPREADpanic> anyone want to help me with smtp auth? [01:17:48] <WIDESPREADpanic> please [01:17:53] <mjoseph> no [01:17:56] <mjoseph> :) [01:17:59] <mjoseph> just ask, dude [01:20:32] *** McJerry has joined #postfix [01:21:47] <mwalling> !basic [01:21:47] <knoba> mwalling: "basic" : http://www.postfix.org/BASIC_CONFIGURATION_README.html : a good starting place for Postfix beginners, many common questions are answered here. [01:22:49] *** danielx__ has joined #postfix [01:23:09] *** danielx__ is now known as DanielX [01:26:16] *** danielx_ has quit IRC [01:36:32] *** martianixor has quit IRC [01:38:21] *** war9407 has quit IRC [01:42:47] *** SomethingISODD has quit IRC [01:50:39] <WIDESPREADpanic> mjoseph - hi [02:02:01] *** GoGi has joined #postfix [02:04:50] *** neuonyx has joined #postfix [02:05:25] <neuonyx> hello -- can someone telll me the correct way to do a wildcard alias in /etc/aliases.. i have account a, b, c, and everything else i want forwarded somewhere.. *: blah at gmail dot com [02:05:29] <neuonyx> is that valid? [02:13:03] <WIDESPREADpanic> how do i generated/ordered SSL certificate a [02:15:57] *** neuonyx has quit IRC [02:16:22] <mwalling> !aliases [02:16:23] <knoba> mwalling: Error: "aliases" is not a valid command. [02:35:06] *** hno has joined #postfix [02:35:58] *** hno has left #postfix [02:36:54] *** Supaplex has left #postfix [02:40:47] <WIDESPREADpanic> is there a easier way to generTE SSL KEY? [02:43:48] <growltiger_> no [02:44:13] <growltiger_> it's supposed to be hard so that newbies don't do anything foolish [02:48:41] <WIDESPREADpanic> whats the easiest way to create ssl certificate? [02:51:42] *** jonez has quit IRC [02:52:58] *** GoGi has quit IRC [03:01:39] *** Scarface1102 has quit IRC [03:10:30] *** Tachy_ has joined #postfix [03:10:56] *** WIDESPREADpanic has quit IRC [03:24:04] *** Tachy has quit IRC [03:30:21] *** DanielX has quit IRC [03:33:06] *** knoba has quit IRC [03:33:17] *** knoba has joined #postfix [03:33:53] *** soren has quit IRC [03:33:55] *** soren has joined #postfix [03:38:13] *** githogori has quit IRC [03:42:18] *** Vivek has quit IRC [03:43:19] *** m0f0x has joined #postfix [04:16:53] *** upsideup has quit IRC [04:19:41] *** pirho has quit IRC [04:51:19] *** Zerberus has quit IRC [05:00:08] *** Zeit|awy_ has quit IRC [05:01:21] *** seekwill has joined #postfix [05:25:14] *** sterna has quit IRC [05:52:01] *** jmazaredo___ is now known as wolfgang [06:02:33] *** mmlj4 has joined #postfix [06:04:11] <mmlj4> I have a problem with postfix on my centos box ... it can't send mail to another box on my LAN, saying it can't find the target host (it's listed in /etc/hosts, and nothing in master.cf is chrooted)... ideas? [06:15:51] *** Siegfried has quit IRC [06:42:35] <seekwill> Logs? [06:56:27] <cyr-> where do I remove messages that are bouncing and will be resent for 5 days? [06:58:13] *** McJerry has quit IRC [07:07:58] *** Motoko-chan has joined #postfix [07:11:09] *** UQlev has joined #postfix [07:50:03] *** cyr- has quit IRC [08:12:11] *** Trengo has quit IRC [08:15:10] *** UQlev has quit IRC [08:26:25] *** stony_ has joined #postfix [08:34:59] *** padde has joined #postfix [08:42:37] *** stony__ has quit IRC [08:45:08] *** c00l2sv has joined #postfix [08:45:09] *** stas_ has joined #postfix [08:45:10] *** stas__ has joined #postfix [08:45:19] *** c00l2sv has quit IRC [08:45:34] *** c00l2sv has joined #postfix [08:45:36] *** stas__ has joined #postfix [08:45:42] *** stas_ has quit IRC [08:45:45] *** rickb|server has joined #postfix [08:46:01] *** stas__ has quit IRC [08:46:06] <rickb|server> May I ask a sendmail question in here? :) #sendmail isn't.. very.. alive.. :) [08:46:26] *** c00l2sv has joined #postfix [08:48:03] *** xpoint has joined #postfix [08:48:32] <rickb|server> Anyone? :) [08:50:51] <rickb|server> Ok, so sendmail is sending mail.. locally, it will send to gmail and a few others, but when I read the raw message on gmail, it says it was delivered from localhost.. I would imagine that that would deny any delivery for most hosts at least the secure ones that dont want spam.. How would I change it to not use localhost or localhost.localdomain instead using a real domain, MY DOMAIN! :) [08:55:06] *** seekwill has quit IRC [08:58:06] *** Fallenou has joined #postfix [09:00:48] *** Motoko-chan has quit IRC [09:01:20] *** wdp has quit IRC [09:01:25] *** McJerry has joined #postfix [09:10:36] *** githogori has joined #postfix [09:11:39] <jpalmer> rickb|server: this is a postfix channel. if you need sendmail help, you might try #sendmail [09:14:07] <rickb|server> They are all gone.. :( [09:19:59] *** j_s has joined #postfix [09:21:21] *** fabounio has joined #postfix [09:22:27] *** rickb|server has quit IRC [09:26:46] *** c00l2sv has quit IRC [09:46:00] *** rootsvr has joined #postfix [09:48:20] <cafuego> If you have a sendmail problem, fix it by installing postfix. [10:02:31] *** war9407 has joined #postfix [10:14:19] *** fabounio has quit IRC [10:20:40] *** McJerry has quit IRC [10:22:54] *** muecke77 has joined #postfix [10:32:00] *** [diablo] has joined #postfix [10:44:01] *** amrit|wrk is now known as amrit|zzz [10:46:24] *** wdp has joined #postfix [10:54:11] *** Zeit|awy has joined #postfix [11:03:04] *** robboplus_ has quit IRC [11:03:51] *** havvg has joined #postfix [11:26:10] *** muecke77 has quit IRC [11:32:41] *** rootsvr has quit IRC [11:33:32] *** robboplus has joined #postfix [11:35:16] *** suuuper has joined #postfix [11:45:28] <cite> Is ist possible to set smtpd_client_connection_count_limit on a per client basis? I have some serious problems receiving large amounts of mail sent by sites using qmail. [11:45:44] <cite> "Is it possible"* [11:51:13] <sysmonk> not that i know off [11:51:15] <sysmonk> of* [11:51:41] <lennard> ummm... I think that one *is* per client? [11:52:39] <sysmonk> lennard: yes, but i thought cite wants different setting for different client [11:52:52] <cite> sysmonk: Exactly. [11:52:58] <lennard> oh [11:53:01] <lennard> right [11:56:06] <cite> Any ideas on how to deal with a sending qmail, then? [11:56:45] <cite> It opens smtpd_client_connection_count_limit connections to my servers and doesn't stop there, but opens even more. This meas that mail sent using those "surplus" connections will get delayed. [11:57:00] <shasta> get an axe [11:57:01] <cite> Now imagine a sending qmail wich tries to send to 3k to 4k recipients on my server. Takes ages. [11:57:04] <shasta> or a chainsaw [11:57:31] <cite> shasta: And set up an appointment with the postmaster? Good idea. [11:58:39] <shasta> make him bring djb too [11:59:07] <sysmonk> cite: so, use the smtpd_client_connection_count_limit [11:59:08] <sysmonk> lower it [11:59:17] <sysmonk> make it fit your setup [11:59:44] <cite> sysmonk: The current setting of smtpd_client_connection_count_limit fit's my setup just fine except for two large sites using qmail. [12:00:27] <sysmonk> cite: workaround: do the same, but with smaller limits, on the firewall level [12:00:50] <sysmonk> limit them veeery much, and when their clients will start whining about not delivered mails - they'll come to you ;) [12:00:56] <cite> Will you give me a minute to get an English dicitionary? I feel that the both of us are talking about different problems. [12:01:02] <sysmonk> and then, you'd better have that axe... [12:01:03] *** fabounio has joined #postfix [12:01:42] <sysmonk> cite: you want to limit their connection / time period to your server, right? [12:01:49] <cite> Ok, here I am. [12:01:51] <sysmonk> i.e. 10 connections per minute [12:02:17] <cite> sysmonk: I _do_ limit the concurrency. The can only open 40 or so connections in parallel. [12:02:27] <sysmonk> and, what's the problem? [12:02:36] <cite> My Postfix is running fine, really. qmail's queue is the problem. [12:02:49] <sysmonk> what is the problem? [12:02:59] <cite> Since qmail will try to open about six times that number of connections, for every successfully delivered mail, there are six mails which get deferred. [12:03:21] <cite> These mails are deferred for a number of minutes, then hours and so on. [12:03:53] <sysmonk> cite: um, postfix has exceptions for anvil [12:03:59] <sysmonk> you could add their ip's to the exception [12:04:06] <sysmonk> but then again, they would be unlimited ;) [12:04:07] <cite> sysmonk: How do I do that? [12:04:39] <sysmonk> one moment [12:04:52] <sysmonk> smtpd_client_event_limit_exceptions = ${smtpd_client_connection_limit_exceptions:$mynetworks} [12:05:15] <cite> Thank you. [12:05:48] <sysmonk> ofcorse, the left part in this setting shour be the ip/host list of exceptions [12:05:54] <sysmonk> and don't forget to include $mynetworks in it :) [12:05:57] <sysmonk> or atleast 127.0.1 [12:06:00] <sysmonk> 127.0.0.1* [12:06:07] <cite> No worries. [12:08:23] *** mirrorcolor has quit IRC [12:10:38] <cite> sysmonk: Ok, I'll keep an eye on the logs, I should see qmail "delivering" at 250 connections this night :) [12:11:20] <sysmonk> why 250? [12:11:29] <sysmonk> ah, maxproc [12:11:30] <sysmonk> ;) [12:11:47] <cite> Mine is 450, his is 250. [12:12:04] <sysmonk> you even know how much his is? :) [12:12:34] <cite> We've been... "in contact". He was offering help if I'd want to migrate from Postfix to a, quote, "more capable MTA". [12:14:09] <shasta> ROTFL [12:16:00] <shasta> he must have meant sendmail... which at least doesn't need patching to get smtp auth working (-8 [12:17:15] <cite> Seriously, you cannot compare qmail to a modern MTA. Just take your time to read SCHEDULER_README and see what qmail offers in this field. [12:31:47] *** GoGi has joined #postfix [12:33:44] *** muecke77 has joined #postfix [12:34:13] <cite> sysmonk: Now that I think about it again, I could suggest to speak QMQP... [12:34:31] <cite> sysmonk: I men, he IS running qmail. Surely, delivery using qmqp can't be an issue then? ;) [12:34:35] <cite> mean* [12:43:36] *** muecke77 has quit IRC [13:05:34] <sysmonk> never used qmqp [13:05:36] <sysmonk> but you could try that [13:06:36] <cite> Yeah, well, I was not being 100% serious :) [13:06:52] <sysmonk> but i am [13:07:52] <sysmonk> :) [13:07:55] <cite> Nah, I think I'm fine with smtpd_client_event_limit_exceptions. [13:08:13] <cite> Worst thing that can happen is that a few legitimate clients will have to try a Backup MX. [13:09:14] <sysmonk> ouch, backup mx [13:09:33] <cite> Like in "another MX". [13:11:53] <cite> What's so bad about having a backup in place? [13:14:41] <checkers> it's a good thing, if it's setup properly [13:15:19] <checkers> but otherwise it can end up a nice way to let spam bypass your countermeasures [13:15:48] <cite> Well, duplicating smtpd_mumble_restrictions and timely providing a relay_recipient_map is not exactly rocket science ;) [13:30:07] *** magnat has joined #postfix [13:33:19] *** shinao1 has joined #postfix [13:39:06] *** pa has joined #postfix [14:07:40] *** byspeed has joined #postfix [14:08:05] <byspeed> Hello [14:08:13] <byspeed> I installed postfix with dovecot [14:08:40] <byspeed> (following the tutorial on workaround) [14:09:31] <byspeed> Now, if i send a mail per telnet, then i get always the OK from the SMTP, but i never can find the mail in /home/vmail/example.com/john/ [14:09:44] *** fabounio has quit IRC [14:09:59] <byspeed> also when i send a mail from outside, dovecot does not wrie that in its log [14:10:15] *** fabounio has joined #postfix [14:10:44] <byspeed> Whaat can the problem be? [14:12:36] <byspeed> http://frupic.frubar.net/5975 [14:12:46] *** pirho has joined #postfix [14:15:22] <byspeed> This is the log, after i sent the mail with telnet... Dovecot doesnt care about it ? [14:24:58] <byspeed> Please help me, my webmaster is getting on me :P [14:27:00] *** fabounio has quit IRC [14:27:34] *** McJerry has joined #postfix [14:28:48] *** brancaleone has joined #postfix [14:43:29] *** muecke77 has joined #postfix [14:44:23] *** fabounio has joined #postfix [14:55:43] *** rootsvr has joined #postfix [14:56:04] *** pirho has quit IRC [14:58:36] *** pirho has joined #postfix [15:08:07] *** pirho_ has joined #postfix [15:19:06] <byspeed> Does no ne knows a solution or can give me a tip? [15:20:19] *** pirho has quit IRC [15:21:49] <byspeed> hello? [15:22:00] *** pirho has joined #postfix [15:22:03] <byspeed> do i have voice? :P [15:34:24] *** pirho_ has quit IRC [15:34:50] *** pirho_ has joined #postfix [15:38:31] *** muecke77 has left #postfix [15:44:14] *** pirho_ has quit IRC [15:46:15] *** pirho_ has joined #postfix [15:46:43] *** wdp_ has joined #postfix [15:47:08] *** wdp_ has left #postfix [15:49:00] *** pirho has quit IRC [15:49:05] *** wdp has quit IRC [15:52:50] *** riz_ has joined #postfix [16:00:25] *** Trengo has joined #postfix [16:02:56] *** UQlev has joined #postfix [16:15:35] *** makerc has joined #postfix [16:19:45] *** checkers has left #postfix [16:23:45] *** havvg has quit IRC [16:34:36] *** madrescher has joined #postfix [16:35:55] *** hark has joined #postfix [16:36:05] *** crumberly has joined #postfix [16:36:51] *** f3ew has quit IRC [16:37:54] *** f3ew has joined #postfix [16:38:21] <crumberly> I have a domain name, my computer's name is sixthstreet, my email is working great now, but when I email out I want my email to come from mydomain.name rather than sixthstreet, how can I do that? [16:43:39] *** madrescher has left #postfix [16:45:04] *** McJerry has quit IRC [16:47:04] <shasta> !myorigin [16:47:05] <knoba> shasta: "myorigin" : a configuration parameter in the main.cf: The default domain name that locally-posted mail appears to come from, and that locally posted mail is delivered to. The default $myhostname, which is fine for small sites. If you run a domain with multiple machines, you should (1) change this to $mydomain and (2) set up a domain-wide alias database that aliases each user to user at that dot users.mailhost. [16:50:45] *** makerc has quit IRC [16:55:33] *** lunaphyte_ has quit IRC [16:56:13] *** seekwill has joined #postfix [16:58:07] <crumberly> shasta & knoba: Yes that's what I thought, but it doesn't seem to work for me. [16:58:14] <crumberly> # The myorigin parameter specifies the domain that locally-posted [16:58:14] <crumberly> # mail appears to come from. The default is to append $myhostname, [16:58:14] <crumberly> # which is fine for small sites. If you run a domain with multiple [16:58:14] <crumberly> # machines, you should (1) change this to $mydomain and (2) set up [16:58:14] <crumberly> # a domain-wide alias database that aliases each user to [16:58:16] <crumberly> # user at that dot users.mailhost. [16:58:18] <crumberly> # [16:58:20] <crumberly> # For the sake of consistency between sender and recipient addresses, [16:58:22] <crumberly> # myorigin also specifies the default domain name that is appended [16:58:24] <crumberly> # to recipient addresses that have no @domain part. [16:58:26] <crumberly> # [16:58:28] <crumberly> #myorigin = $myhostname [16:58:30] <crumberly> #myorigin = $mydomain [16:58:32] <crumberly> myorigin = barterhouse.net [16:58:34] <crumberly> here is what I have so far.... [16:58:50] <rob0> byspeed: One problem is that you're posting screenshots of text!! [16:58:57] <rob0> crumberly: Damn! [16:59:07] <rob0> !pastebin\ [16:59:08] <knoba> rob0: Error: "pastebin\" is not a valid command. [16:59:09] <rob0> !pastebin [16:59:10] <knoba> rob0: "pastebin" : a way to paste larger amounts of text so that other people can read it. Try http://www.rafb.net/paste/ or http://paste.debian.net/ - Do not forget to tell us the URL where you pasted it. [16:59:41] <byspeed> rob0: well, the problem is slved now.. it was a misstake.. i forgot a D in address [16:59:44] <byspeed> :/ [17:00:58] *** rootsvr_ has joined #postfix [17:03:45] *** tshine has joined #postfix [17:06:57] *** crumberly has quit IRC [17:07:53] *** Tachy_ has quit IRC [17:07:56] *** Tachy has joined #postfix [17:18:43] *** rootsvr has quit IRC [17:33:47] *** BillyButtlove has quit IRC [17:33:58] *** BillyButtlove has joined #postfix [17:36:45] *** rootsvr_ has quit IRC [17:39:12] *** f3ew has quit IRC [17:39:59] *** f3ew has joined #postfix [17:40:48] *** BillyButtlove has quit IRC [17:44:51] *** netcrash has quit IRC [17:45:37] *** netcrash has joined #postfix [17:45:51] *** shinao1 has quit IRC [17:51:04] *** muecke77 has joined #postfix [17:54:39] *** BillyButtlove has joined #postfix [18:10:14] *** GoGi has quit IRC [18:13:43] *** Filbert- has quit IRC [18:20:35] *** Filbert has joined #postfix [18:21:18] *** GasBill has left #postfix [18:34:37] *** WIDESPREADpanic has joined #postfix [18:48:13] *** tshine_ has joined #postfix [18:48:16] <mmlj4> I can't get postfix to send mail to other LAN hosts unless I set up a BIND zone. Why do /etc/hosts lookups fail? [18:50:41] *** tshine has quit IRC [18:52:39] *** muecke77 has quit IRC [18:53:47] *** c0m has joined #postfix [18:55:28] *** Fire has joined #postfix [18:55:45] <Fire> hey [18:57:04] <Fire> Le's say I want to install postfix, it asks me for the e-mail server. I ve set up a server and assigned a web adress to it's IP. Would the "Email server name now be: something.myadress.com? or myadress.com? [18:58:23] *** tshine has joined #postfix [18:58:34] *** tshine has quit IRC [18:59:04] *** riz_ has quit IRC [19:01:41] <rob0> "web address"? [19:02:23] <rob0> mmlj4: Because mail routing is done via DNS lookups and not gethostbyname() [19:04:33] <Fire> rob0: a dns [19:04:37] *** tshine_ has quit IRC [19:04:40] <c0m> anyone have iso 3166-2? [19:04:50] *** Fire has left #postfix [19:04:55] *** Fire has joined #postfix [19:07:03] <Fire> rob0: So, would I just have to provide my domain xy.com or usingm mail.xy.com? [19:11:30] <rob0> I can't tell what you're asking [19:11:40] <rob0> !myhostname [19:11:41] <knoba> rob0: "myhostname" : a configuration parameter in the main.cf: The internet hostname of this mail system. The default is to use the fully-qualified domain name from gethostname(). $myhostname is used as a default value for many other configuration parameters. [19:11:48] <rob0> !mydestination [19:11:49] <knoba> rob0: "mydestination" : a configuration parameter in the main.cf: The list of domains that Postfix delivers via the $local_transport mail delivery transport. By default, mail is given to the Postfix local(8) delivery agent that looks up all recipients in /etc/passwd and /etc/aliases, or their equivalents. [19:11:52] <rob0> !basic [19:11:52] <knoba> rob0: "basic" : http://www.postfix.org/BASIC_CONFIGURATION_README.html : a good starting place for Postfix beginners, many common questions are answered here. [19:12:31] *** prsweeney has joined #postfix [19:12:33] *** prsweeney has left #postfix [19:14:44] *** stickystyle has joined #postfix [19:17:19] *** brancaleone has quit IRC [19:20:28] *** m_p has quit IRC [19:20:36] *** Zeit|awy has quit IRC [19:28:48] *** UQlev has quit IRC [19:34:52] *** byspeed has quit IRC [19:37:48] *** wladek has joined #postfix [19:38:29] <wladek> good day. i've been reading up on postfix lately and it seems like a pretty sound MTA solution, but i have some questions regarding my specific implementation [19:39:06] *** wdp has joined #postfix [19:39:28] <wladek> i'm running a colo'd freebsd machine. i've decided to jail my services.. atm i have designated 4: users, web, db, and mail. the users jail will have all my local accounts that i want postfix to deliver mail to [19:39:52] <wladek> but since postfix will be running in its own jail.. how do i get it to cooperate with the user accounts created in my users jail? [19:40:25] <rob0> is there etc/passwd in the jail? [19:40:34] <wladek> in the users jail? yes [19:40:55] <rob0> then that is where it will get the user info [19:41:54] <wladek> right, but what needs to be setup to have postfix interact with that etc/passwd ? [19:42:22] <rob0> You might also look into Postfix's own chroot feature. Most Postfix daemons (including all externally-accessible ones) can run in the Postfix chroot (if properly set up of course.) [19:43:50] <rob0> "Jail" is like Unix chroot(2) but more secure, right? [19:44:09] <wladek> yes, it's like a fbsd virtual machine [19:44:32] <rob0> in that a root exploit inside the jail cannot get root on the host? [19:44:33] <wladek> they can share file structures if mounted from outside the jail [19:44:46] <wladek> but neither have access to processes of the host system or other jails [19:44:53] <wladek> correct [19:46:07] <rob0> Postfix will use what it sees as /etc/passwd , no setup required (except that \the jail environment must provide anything necessary.) [19:47:25] <rob0> (C libraries, any linked libraries, et c.) [19:47:44] <wladek> instead of thinking of it as a chroot environment.. think of it like: server a) has postfix and server b) has my local user accounts i want mail to be delivered to and sent from [19:47:52] <wladek> because that's essentially the implementation i'll need to setup [19:48:31] <wladek> both servers are on the same subnet but that's about all they share [19:48:39] <wladek> so they'll need to communicate using tcp [19:48:57] <rob0> Didn't I answer that? Oh, obviously the local(8) delivery agent can't deliver outside the jail, but you seemed to understand that already. [19:49:03] *** Fire has left #postfix [19:49:06] <rob0> 17:44 < wladek> they can share file structures if mounted from outside the jail [19:49:27] <rob0> mount your $HOME directories in the jail [19:49:38] <wladek> oh.. [19:50:05] <wladek> interesting [19:50:28] <wladek> i'd also need to mount my users /etc somewhere in the mail jail? [19:51:14] <rob0> The bottom line is it's about the same extra security as Postfix's own chroot feature, because local(8) cannot run inside the chroot. [19:51:32] <wladek> ok [19:51:34] <rob0> um, "users /etc"? [19:51:50] <wladek> my users jail has its own /etc/passwd [19:52:11] <wladek> does postfix make use of this file? [19:52:13] <rob0> I'd suggest just maintaining a separate etc/passwd, yes [19:52:39] <rob0> smtpd(8) does for recipient validation, and local(8) does for delivery. [19:54:00] <wladek> so i would need to setup smtpd to parse the users /etc/passwd file and local to deliver mail to my users /home mount [19:54:35] <rob0> 17:46 < rob0> Postfix will use what it sees as /etc/passwd , no setup required ... [19:54:54] <wladek> right, but i dont want it to use my mail jail's /etc/passwd [19:55:02] <wladek> as that has seperate account info [19:55:03] <rob0> oh [19:55:17] <rob0> in that case, ... [19:55:18] <wladek> each jail has its own 'world' [19:55:23] <rob0> !local_recipient_maps [19:55:24] <knoba> rob0: "local_recipient_maps" : a configuration parameter in the main.cf: Lookup tables with all names or addresses of local recipients. A recipient address is local when its domain matches $mydestination, $inet_interfaces or $proxy_interfaces. [19:55:59] <rob0> You can specify anything, you don't have to use the default. [19:56:13] <wladek> great [19:56:17] <rob0> See postconf.5.html#local_recipient_maps [19:56:35] <wladek> i will [19:56:46] <wladek> thanks rob0.. i'll probably be back later :) [19:56:55] <rob0> you might want to set "local_recipient_maps = alias_maps" and just list all users in aliases(5) [19:57:20] <wladek> that sounds like extra work? [19:57:28] <rob0> a little bit [19:57:37] <rob0> not too bad to maintain IMO [19:58:13] <rob0> you'll also need to read "man local" ( local.8.html ) [19:58:25] <wladek> i can have both right? deliver to local users in my passwd file as well as aliases [19:58:39] <rob0> that's the default [19:59:30] <wladek> i'm thinking i'll mount my users home and etc dir in my mail jail like so: /users/users-home, /users/users-etc [19:59:50] <wladek> then setup local to parse the /users/users-etc/passwd file [19:59:57] <wladek> er [19:59:59] <wladek> smtpd [20:00:12] <wladek> and local to deliver mail to users home directories in /users/users-home [20:09:31] *** Maphor has joined #postfix [20:12:05] *** muecke77 has joined #postfix [20:14:20] *** yajith has joined #postfix [20:15:53] *** yajith has left #postfix [20:16:30] *** yajith has joined #postfix [20:21:18] *** yajith has left #postfix [20:37:11] *** magyar has quit IRC [20:37:22] *** magyar has joined #postfix [20:37:53] <WIDESPREADpanic> what port is default tls smtp auth running on? [20:37:56] <WIDESPREADpanic> \is it 587 [20:38:29] <wladek> i dunno [20:38:34] <wladek> look at your /etc/services [20:39:21] <wdp> 587 is alternative smtp [20:48:12] <mwalling> !basic [20:48:13] <knoba> mwalling: "basic" : http://www.postfix.org/BASIC_CONFIGURATION_README.html : a good starting place for Postfix beginners, many common questions are answered here. [20:54:44] *** seekwill has quit IRC [21:00:36] *** muecke77 has left #postfix [21:02:54] *** UQlev has joined #postfix [21:09:13] *** madrescher has joined #postfix [21:12:22] *** muecke77 has joined #postfix [21:12:40] *** muecke77 has left #postfix [21:14:11] *** wdp has quit IRC [21:16:46] *** hparker has joined #postfix [21:22:42] *** madrescher has quit IRC [21:30:23] *** albanach has joined #postfix [21:45:21] *** muecke77 has joined #postfix [21:50:02] *** muecke77 has left #postfix [21:50:30] <cite> rob0: you tehre? [22:06:47] *** Haris has joined #postfix [22:06:50] <Haris> Hello people [22:06:56] <Haris> I have a postfix+mysql setup [22:06:59] <Haris> I need to curb spam [22:11:19] <mwalling> !zen [22:11:20] <knoba> mwalling: "zen" : http://www.spamhaus.org/zen/ : A composite of all Spamhaus DNSBLs: SBL, XBL and PBL [22:11:23] <mwalling> !amavis [22:11:24] <knoba> mwalling: "amavis" : a mail virus scanner. A content filter that scans all received mail for spam (using the built-in spamassassin) and viruses (using any external virus scanner). See: http://www.amavis.org/ [22:19:06] <Haris> I have dedicated box configured for amavis [22:19:19] <Haris> postfix puts all in/out mails through that amavis box [22:22:42] *** magnat has quit IRC [22:24:42] <Haris> the !zen actually be a pointer to some example on how to use zen with postfix [22:24:58] <Haris> ..actually should+ be.. [22:26:48] *** netcrash has quit IRC [22:28:36] <mwalling> !dnsbl [22:28:37] <knoba> mwalling: Error: "dnsbl" is not a valid command. [22:29:07] <mwalling> !rbl [22:29:08] <knoba> mwalling: "rbl" : short for "realtime black list". RBLs are DNS zones that can help your mail server to determine if an IP address is trusted. It's a great way to fight spam. See http://www.au.sorbs.net/ http://www.dnsrbl.net/ http://www.spamcop.net/ http://www.mail-abuse.org/ http://www.rfc-ignorant.org/ [22:40:59] *** albanach has quit IRC [22:42:04] *** nphase_ has joined #postfix [22:49:57] *** Vivek has joined #postfix [22:52:25] *** albanach has joined #postfix [22:57:14] *** UQlev has quit IRC [23:11:44] *** pirho has joined #postfix [23:51:33] *** McJerry has joined #postfix [23:51:55] *** Zeit|awy has joined #postfix [23:54:32] *** j_s has quit IRC [23:58:14] *** Zblakany has joined #postfix