[00:23:02] *** suuuper has quit IRC
[00:33:28] *** killerchicken has joined #postfix
[00:34:47] *** pirho has quit IRC
[00:35:10] <killerchicken> Hi, when trying to send mail to a specific system my mail is rejected. I get http://nopaste.info/cf9e005c01.html this response, maybe it's an obvious misconfiguration ans domeone is able to help? I'm very thankful for responses.
[00:36:08] <mwalling> are you 78.46.73.42 ?
[00:36:23] <killerchicken> That's the server's IP, yes
[00:36:44] <mwalling> thats *YOUR* ip, or the remote host?
[00:37:00] <killerchicken> IP of the server I send the mail from
[00:37:11] <killerchicken> I use a different IP also linking to that server for the domain sebastianhahn.net, though.
[00:37:27] <mwalling> !fcrdns
[00:37:28] <knoba> mwalling: "fcrdns" : http://en.wikipedia.org/wiki/Forward_Confirmed_reverse_DNS : very important if you want big sites to accept your mail. If you can't have it from your ISP, see !relayhost .
[00:37:56] <mwalling> it says right en the error message that they want your HELO to match your PTR
[00:38:02] <killerchicken> yes
[00:38:25] <killerchicken> So I'm wondering, how can I make my connection appear to come from 78.47.18.109 and not 78.46.73.42?
[00:38:49] <killerchicken> Both IPs are the same server.
[00:39:13] <mwalling> !smtp_bind_address
[00:39:14] <knoba> mwalling: "smtp_bind_address" : a configuration parameter in the main.cf: An optional numerical network address that the SMTP client should bind to when making a connection.
[00:41:59] <killerchicken> hm
[00:42:25] <killerchicken> May 25 00:41:09 mordor amavis[29974]: (29974-07) (!) DENIED ACCESS from IP 78.47.18.109, policy bank ''
[00:42:34] <killerchicken> I guess I have to set up amavic to not use localhost
[00:44:16] *** Fallenou has quit IRC
[00:44:49] <killerchicken> maybe you have a hint for where that could be specified?
[00:45:57] <killerchicken> or generally what I need to change
[00:50:30] *** Maphor has quit IRC
[00:52:20] *** stickystyle has quit IRC
[00:59:03] <sahil> killerchicken: you EHLO/HELO with a certain hostname; that hostname resolves to a certain IP.  that IP better resolve (this is reverse dns) back to that hostname.  if not, you have a DNS issue which will lead to many REJECTs across several MXs throughout the world.
[01:02:41] <killerchicken> sahil: I have understood that
[01:02:45] *** [diablo] has quit IRC
[01:03:15] <killerchicken> Also, I think using the smtp_bind_address I can tell others what IP I'm from, but know my internal mail system is broken
[01:06:40] <killerchicken> but I will sleep now and think it through tomorrow
[01:07:01] <killerchicken> I'm sure it's just a little something that's wrong
[01:08:26] <sahil> killerchicken: if your DNS (this is *outside* of the postfix system) is not configured to have the IP reverse to the hostname with which you EHLO, you are not looking at the problem correctly by focusing on postfix.
[01:08:31] *** iNick has left #postfix
[01:08:48] <killerchicken> sahil: well, I think I am... but how can I check?
[01:08:53] *** nphase_ has quit IRC
[01:10:30] <killerchicken> See, the server is on a machine with two different IPs. My domain points to IP a), but somehow the other mailserver thinks I'm connecting from IP b). So the reverse hostname must be incorrect. What I'm looking for is a way to make the outside see the right IP address
[01:17:03] *** killerchicken has left #postfix
[01:19:07] *** Zerberus has joined #postfix
[01:24:00] <sahil> *sigh*
[01:31:08] <mwalling> IOW, !smtp_bind_address
[01:31:44] <mwalling> but he was too thick to see that he needed to fix his amavis policy bank because he is now binding connections to that from his *gasp* outside ip!
[01:31:51] * mwalling mumbles and walks off
[01:31:56] <WIDESPREADpanic> hi
[01:32:01] <mwalling> !basic
[01:32:02] <knoba> mwalling: "basic" : http://www.postfix.org/BASIC_CONFIGURATION_README.html : a good starting place for Postfix beginners, many common questions are answered here.
[01:32:07] <WIDESPREADpanic> why is smtp auth so hard to setup?
[01:33:54] <sahil> WIDESPREADpanic: it's not.  if you have a specific question, ask.
[01:34:58] <hparker> mail is hard, let's go shopping</barbie>
[01:37:08] *** stickystyle has joined #postfix
[01:41:29] *** Dav23 has joined #postfix
[01:41:53] <Dav23> how can u see what exact process sendmail is doing when sending through smtp
[01:42:08] <mwalling> !debug
[01:42:08] <knoba> mwalling: "debug" : http://www.postfix.org/DEBUG_README.html : a good starting point for how to deal with problems and to report information to those who might help. Post your information in a pastebin such as http://pastebin.ca/ or http://rafb.net/paste/ .
[01:49:57] <shasta> !debug_peer_list
[01:49:58] <knoba> shasta: "debug_peer_list" : a configuration parameter in the main.cf: Optional list of SMTP client or server patterns that cause the verbose logging level to increase by the amount specified in $debug_peer_level.
[02:01:41] *** xpoint has quit IRC
[02:03:56] *** Da24333 has joined #postfix
[02:07:14] <WIDESPREADpanic> sahil
[02:07:18] <WIDESPREADpanic> do i have to use tls
[02:07:29] <WIDESPREADpanic> whats the simplest way of doing smtp
[02:07:48] <WIDESPREADpanic> without editing the trustet network in main.cf
[02:07:49] <WIDESPREADpanic> ?
[02:08:59] *** stickystyle has left #postfix
[02:09:06] *** war9407 has quit IRC
[02:10:04] <shasta> smtp auth is the easiest way
[02:10:25] <shasta> WIDESPREADpanic, please read documentation provided on www.postfix.org before asking further questions
[02:20:19] *** Dav23 has quit IRC
[02:38:19] *** CrazyFoam has joined #postfix
[02:40:02] *** Da24333 has quit IRC
[02:44:18] *** Motoko-chan has joined #postfix
[02:50:07] *** Zblakany has quit IRC
[03:00:02] *** mmlj4 has left #postfix
[03:01:18] *** pitakill has joined #postfix
[03:02:26] *** Samonoske has joined #postfix
[03:03:06] <Samonoske> Is there another port besides 25 that can be used to send mail? My isp filters port 25 and you have to have an account with them to use their smtp server..but you can't have as many accounts as i need
[03:03:49] <shasta> no
[03:11:03] *** Tachy_ has joined #postfix
[03:11:21] <hing> Samonoske:  deliver email requires a connection to the remote server port 25... but you can work around (sort of) by setting the relayhost to your isp mail server
[03:12:17] <hing> that or asking your ISP to open port 25 for you... some agree to open when people REALLY need it, as they block it just to stop spam
[03:14:27] <Samonoske> I can get them to stop filtering it. But I dont know if I can protect myself.
[03:20:51] *** pitakill has quit IRC
[03:27:01] *** Tachy has quit IRC
[03:27:21] *** seekwill has joined #postfix
[03:29:15] *** albanach_ has joined #postfix
[03:32:42] <WIDESPREADpanic> shasta thanks
[03:47:34] *** albanach has quit IRC
[03:50:34] *** albanach_ has quit IRC
[03:51:57] *** Vivek has quit IRC
[03:52:23] *** Mez has quit IRC
[03:53:08] *** is_null has joined #postfix
[04:14:08] *** stiv2k has joined #postfix
[04:14:24] <stiv2k> how can I allow at least one domain or IP to relay mail through my server?
[04:14:29] <stiv2k> like a whitelisted address
[04:26:10] *** DarklyCute has joined #postfix
[04:28:53] *** DarklyCute has quit IRC
[04:35:27] *** Dewi has joined #postfix
[04:35:59] <Dewi> does anyone know of some reference material relating to how long/often most mail servers retry in response to various conditions?
[04:36:06] <rob0> !mynetworks
[04:36:06] <knoba> rob0: "mynetworks" : a configuration parameter in the main.cf: The list of "trusted" SMTP clients that can relay email.
[04:36:10] <rob0> stiv2k: ^^
[04:36:26] <seekwill> Does anyone know if having a catchall box lead to blacklisting? Zimbra's docs say that...
[04:36:37] <stiv2k> rob0: thank you
[04:36:47] <rob0> If the catchall is backscattering, sure.
[04:36:56] <seekwill> Good point
[04:36:57] <Dewi> seekwill: catchalls are a great way to spend your entire life sorting through the spam you're collecting
[04:37:21] <seekwill> Hmm... yeah, maybe I'll drop it
[04:37:53] <seekwill> I wasn't sure if servers out there scan with <randomtext> at domain dot com to see who's a catchall...
[04:37:55] <rob0> Dewi, in Postfix only, there's "man qmgr", but nothing specific in there that I know of.
[04:38:17] <Dewi> rob0: I just want to know "in general" so I know what is likely to happen during various types of downtime
[04:38:44] <Dewi> rob0: and for tuning things like greylisting
[04:39:06] <Dewi> rob0: I realise there's basically infinite variety of mailservers out there, but there are bound to be some dominant configurations
[04:39:37] *** RabidW has joined #postfix
[04:39:40] <Dewi> seekwill: I have some contexts where I need something like a catch-all (to give people unique reply addresses to bulk mail)
[04:40:04] <Dewi> seekwill: for that I use "plus addressing", where I have mailboxes whose names can be followed by "+" and any string
[04:40:07] <hparker> !recipient_delimiter
[04:40:08] <knoba> hparker: "recipient_delimiter" : a configuration parameter in the main.cf: The separator between user names and address extensions (user+foo). See canonical(5), local(8), relocated(5) and virtual(5) for the effects this has on aliases, canonical, virtual, relocated and on .forward file lookups. Basically, the software tries user+foo and .forward+foo before trying user and .forward.
[04:40:11] <seekwill> ah
[04:40:12] <hparker> Dewi: ^^^^^^^
[04:40:13] <rob0> For greylisting, I suggest a very short period. Either they retry or they don't. The ones that don't retry will be blocked.
[04:40:37] *** brad[] has joined #postfix
[04:40:37] <Dewi> seekwill: if you use a unique enough prefix, there's a good chance scanners and spammers will never find it randomly
[04:40:50] <rob0> hparker uses a 30-second period on greylisting, IIRC.
[04:40:51] *** adv_ has joined #postfix
[04:40:56] <hparker> yup
[04:41:03] <adv_> how do i stop vrfy command ?
[04:41:06] <seekwill> hparker: Do you include that in your 4xx?
[04:41:17] <seekwill> hparker: The 30second limit
[04:41:26] <hparker> Hrrmm.... I forget :P
[04:41:27] <Dewi> I use a very short period as well
[04:41:29] <Dewi> the question is
[04:41:35] <Dewi> how long until the sender tries again?
[04:41:44] <stiv2k> how come I can connect to my smtp server with or without authentication?
[04:41:48] <Dewi> I also just messed up a setting on friday night and have been sending a lot of incorrect 450s since then
[04:41:54] <Dewi> and I was wondering, how many will have bounced?
[04:41:55] <stiv2k> shouldnt it only accept authenticated people
[04:42:02] <Dewi> and how many will come in over the next 24 hours....
[04:42:03] <brad[]> Hi folks, I'm trying to solve a mail loop issue. Essentially there are two SMTP servers on the same host, each bound to an IP alias, and postfix is to use a transport map to relay mail destined for specific users to the other SMTP server. However, postfix doesn't do it, instead incorrectly stating that 'mail for <IP address> loops back to myself'. Any way around this?
[04:42:16] <seekwill> I'm not sure how short you guys are talking about, but I think Yahoo uses a 4 hour block "retry in four hours, or else!"
[04:42:27] <rob0> stiv2k, that's what "permit_mynetworks" means.
[04:42:45] <rob0> !loopback
[04:42:45] <knoba> rob0: "loopback" : 'Mail loops back to myself' means that your Postfix wanted to send out the mail to the internet but then discovered that the DNS says your mail server should be responsible. Most likely you forgot to list your domain in mydestination or virtual_(alias|mailbox)_domains
[04:42:56] <Dewi> stiv2k: not from the local network, which may be as small as 127.0.0.1
[04:42:59] <stiv2k> rob0: so by default it will allow anything from localhost or on the 192.168.1.0/24
[04:43:16] <Dewi> stiv2k: if that's what your_networks are, then yes
[04:43:24] <Dewi> (my_networks)
[04:43:27] <stiv2k> Dewi: is that what the default is?
[04:43:28] <rob0> it will allow what YOU set in mynetworks, if you set mynetworks
[04:43:39] <rob0> postconf -d knows
[04:43:44] <stiv2k> ok
[04:43:52] <Dewi> stiv2k: localhost is probably in there by default, 192.168.1.0 won't be because it's specific to your network
[04:44:09] <hparker> Dewi: Looks like I return the time limit
[04:44:19] <stiv2k> it says this
[04:44:21] <Dewi> stiv2k: but it's going to depend on where you got postfix... I generally use a debian package and I think it asks me during install
[04:44:22] <stiv2k> mynetworks = 127.0.0.0/8 192.168.1.0/24
[04:44:37] <stiv2k> Dewi: but I also have a 'rickb.net' defined in main.cf
[04:44:46] <stiv2k> mynetworks = rickb.net
[04:44:50] <stiv2k> why doesnt that appear there
[04:45:25] <Dewi> guys, would the 'sendmail' command require postfix to have 127.0.0.1 in mynetworks? because you don't wanna break that...
[04:45:30] <Dewi> (usually)
[04:45:55] <RabidW> I'm trying to reject emails for specific sender (domains) and recipient pairs. Is there anyway to make smtpd_sender_restrictions or smtpd_recipient_restrictions do this or do I need to write something myself?
[04:45:55] <Dewi> stiv2k: rickb.net isn't an IP range, it's a hostname
[04:46:19] <Dewi> stiv2k: and things don't "appear" in mynetworks, you have to type them in there
[04:46:57] *** Motoko-chan has quit IRC
[04:47:13] <Dewi> stiv2k: it's a configuration setting to control who needs to auth to use your relay. You obviously have to be careful because you don't want the internet to send mail through you without auth
[04:47:54] <stiv2k> Dewi: I cant put hostnames in mynetworks?
[04:47:59] <Dewi> stiv2k: not to be confused with "my domains"; postfix will accept mail from anywhere for those
[04:48:15] <rob0> The Postfix default for mynetworks is all locally-connected networks.
[04:48:28] <Dewi> stiv2k: the normal situation is that "your networks" can send mail anywhere, but other networks can only send to "your domains"
[04:48:57] <Dewi> stiv2k: um, you might be able to put a hostname in there, but you'd have to think carefully about when that reverse-lookup is going to happen
[04:49:25] <stiv2k> Dewi: i dont understand
[04:50:06] <Dewi> stiv2k: well when a machine connects to a server, the server only immediataely knows their IP address
[04:50:40] <rob0> As documented, "mynetworks" is a list of IP networks. But a name in /etc/hosts will work.
[04:50:43] <Dewi> stiv2k: it can attempt to convert an IP to a name, of course
[04:51:14] <hparker> RabidW: I'd look at a policy server
[04:51:16] <rob0> (depending on your nsswitch and resolver configuration I guess)
[04:51:17] <stiv2k> ok
[04:51:26] <stiv2k> this is kind of over my head, but bear with em
[04:51:33] <Dewi> stiv2k: but why are you wanting to use a name instead of an IP?
[04:51:43] <rob0> !restriction_class
[04:51:43] <knoba> rob0: "restriction_class" : http://www.postfix.org/RESTRICTION_CLASS_README.html
[04:51:45] <stiv2k> I want to allow a remote machine to connect to my SMTP server.
[04:51:52] <rob0> RabidW: ^^
[04:51:58] <stiv2k> Dewi: I dont have to use a name, I can use the servers static IP, I was just curious
[04:52:03] <Dewi> stiv2k: does it have a static IP address?
[04:52:06] <stiv2k> Dewi: yes
[04:52:44] <stiv2k> like, it can telnet to my server on port 25 already.
[04:53:01] <stiv2k> or, let me rephrase
[04:53:11] <stiv2k> what if I want to check my mail from my laptop when Im not on my LAN?
[04:53:16] <stiv2k> is it going to allow me
[04:53:25] <Dewi> stiv2k: I just mean that the only reason to want to use a name instead of an IP, is if the IP for that name sometimes changes, and if that is the case, you need to worry about how often (if ever) your reverse lookup on that name is going to "refresh"
[04:53:36] <rob0> "Check your mail" is not a Postfix issue at all.
[04:53:38] *** Zeit|awy_ has joined #postfix
[04:53:41] <Dewi> stiv2k: often when you put a name in a config file it will work, but it will never refresh again until the daemon restarts.
[04:53:43] <RabidW> rob0, thanks! Looks like I can have check_sender_access in a check_recipient_access map :D
[04:53:49] <stiv2k> rob0: excuse me, i mean send
[04:53:50] <Dewi> stiv2k: in postfix's case I don't know how it deals with names
[04:54:05] *** mutante has quit IRC
[04:54:46] <stiv2k> rob0: what would happen?
[04:54:52] <rob0> !sasl
[04:54:53] <knoba> rob0: "sasl" : SASL is 'Simple Authentication and Security Layer', necessary for SMTP AUTH, and provided to Postfix by addin software. Cyrus SASL and/or Dovecot IMAP/POP3 can provide SASL. See http://www.postfix.org/SASL_README.html for details.
[04:55:09] <brad[]> Taking another approach, is there a postfix equivalent to exim's 'self = send'?
[04:55:11] <Dewi> stiv2k: for that you should just use a username/password
[04:55:34] <Dewi> stiv2k: (and perhaps some cryptography)
[04:55:38] <rob0> SASL AUTH is the only supported inband means for relaying from a roaming user.
[04:55:50] <Dewi> rob0: aren't there a few auth methods?
[04:56:03] <rob0> but I used to use openvpn and relay through the VPN
[04:56:04] <Dewi> rob0: the mail clients certainly have a few options
[04:56:05] <stiv2k> rob0: I have SASL
[04:56:18] *** RabidW has left #postfix
[04:56:18] <stiv2k> Dewi: I have TLS setup for imap, i dont think it works for sending
[04:56:47] <Dewi> I'm not sure if anyone really seriously supports IMAP for sending
[04:56:54] <stiv2k> no,
[04:56:59] <Dewi> I have heard rumours that technically it can be done, but I've never seen it
[04:57:08] <stiv2k> i meant I have TLS for receiving mail but not sending? if thats the correct way to term it
[04:57:28] <stiv2k> Dewi: if i enable TLS for the smtp server it does not work, but it does for the imap server
[04:57:39] <Dewi> stiv2k: oh, I *do* use TLS for sending
[04:58:01] <stiv2k> Dewi: is it optional or forced
[04:58:10] <stiv2k> like do you *have* to use the crypto
[04:58:31] <Dewi> well I'm thinking of the one that runs on a totally different port
[04:58:53] <Dewi> so you do need to use crypto on that port
[04:58:57] <Dewi> but you can open both if you want
[04:59:00] <stiv2k> oh
[04:59:33] * Dewi forgets exactly what the different systems are
[04:59:51] <Dewi> I seem to recall one that mixes crypted and unencrypted on the same port, but I might be thinking of IMAP
[04:59:55] *** Zeit|awy has quit IRC
[05:00:55] * Dewi sighs. Stupid dodgy memory. Other people here will configure mail *much* more frequently than I do
[05:02:43] <stiv2k> can I setup some sort of mail alias
[05:03:13] <stiv2k> such that mail sent to foo at bar dot com gets sent to person1 at bar dot com, person2 at bar dot com, and person3 at bar dot com
[05:04:07] <stiv2k> Dewi: is this feasible?
[05:04:21] <Dewi> stiv2k: yes
[05:04:29] <Dewi> stiv2k: for normal accounts use /etc/aliases
[05:04:36] <Dewi> (after updates run 'newaliases')
[05:04:48] <Dewi> for virtual accounts you configure that in your virtual tables
[05:05:11] <stiv2k> can I make it send to a remote address
[05:05:16] <Dewi> yeah
[05:05:21] <stiv2k> foo at bar dot com sends to person4 at otherdomain dot com
[05:05:35] <Dewi> just add " at bar dot com" to the end
[05:05:51] <Dewi> and it will stop thinking it's a local username
[05:07:42] *** adv_ has left #postfix
[05:12:10] <stiv2k> Dewi: do I put multiple aliases on the same line or different lines
[05:12:34] <stiv2k> it says this
[05:12:35] <stiv2k> postalias: warning: /etc/aliases.db: duplicate entry: "support"
[05:13:44] <Dewi> stiv2k: comma separate
[05:13:58] <stiv2k> oh
[05:13:59] <stiv2k> ok
[05:15:43] <Dewi> hmm
[05:15:54] <Dewi> 'man qmgr' doesn't seem to talk about transient and permanent failures much
[05:16:17] <Dewi> do senders keep trying for about the same maximum time regardless?
[05:18:42] <hparker> Sane retry is 5 days
[05:19:37] <Dewi> hparker: on both transient and permanent?
[05:20:10] <Dewi> hparker: for some reason I had the idea in my head that relays would try for longer to correct a transient failure, because it has more chance of being corrected
[05:20:16] <hparker> permanent should be immediate... 5xx == immediate ... 4xx == try again later
[05:20:48] <Dewi> but from man qmgr it looks like postfix defaults to trying 5 days for both
[05:20:53] <Dewi> and then trying for another 5 days to return the bounce
[05:21:10] * Dewi sighs.
[05:21:20] <Dewi> Oh well, at least I screwed up on a friday..sunday morning
[05:21:27] <hparker> 5xx gives and immediate bounce back to the sender
[05:21:44] <Dewi> hparker: oh
[05:22:01] <Dewi> hparker: so how does a 'connect timeout' get treated?
[05:22:07] <Dewi> hparker: also 'connection refused'
[05:22:34] <hparker> timeout == IP stack timeout ... refused == server didn't answer
[05:22:49] <hparker> In genralization
[05:22:59] <hparker> timeout could be other end overloaded
[05:23:02] <Dewi> yeah I mean like
[05:23:13] <Dewi> timeout as in "firewalled or the machine is missing, no reply packets at all"
[05:23:28] <Dewi> and refused as in "no listening socket, port closed"
[05:23:34] <hparker> timeout is it started but too too long to complete for some reason
[05:23:44] <hparker> s/too too/took too
[05:23:48] <Dewi> right
[05:23:59] <Dewi> so how do senders respond to each of these?
[05:24:04] <Dewi> retry? and for how long?
[05:24:13] <hparker> That should be  atemp fail
[05:24:30] <hparker> Depends on the admin, normal is retry every 4 hours for 5 days
[05:24:33] <Dewi> oh, I just thought of another one
[05:24:42] <Dewi> what if 1) there's no MX
[05:24:55] <Dewi> or 2) the MX points to invalide name
[05:25:18] <Dewi> are those immediate fail?
[05:25:23] <hparker> 1) postix falls back to A record
[05:25:35] <hparker> 2) DNS errors are normally temp
[05:41:33] *** syneus has joined #postfix
[05:57:07] <Dewi> hparker: thanks for your help
[05:57:16] <hparker> yw
[06:03:16] *** mutante has joined #postfix
[06:13:18] *** UQlev has joined #postfix
[06:14:12] *** McJerry has quit IRC
[06:23:42] *** Internat has quit IRC
[06:24:14] *** UQlev has quit IRC
[06:27:06] *** Lap_64 has joined #postfix
[06:30:28] *** Mavvie_ has joined #postfix
[06:37:36] *** Mavvie has quit IRC
[06:39:08] *** INternat has joined #postfix
[06:51:23] *** INternat has quit IRC
[06:51:55] *** INternat has joined #postfix
[06:54:50] *** syneus has quit IRC
[06:57:11] *** syneus has joined #postfix
[07:09:20] *** quieteyes has joined #postfix
[07:16:00] *** Motoko-chan has joined #postfix
[07:16:52] *** stiv2k has left #postfix
[07:19:39] *** nfsnobody has joined #postfix
[07:26:00] *** muecke77 has joined #postfix
[07:30:47] *** syneus has quit IRC
[07:35:09] *** nfsnobody- has quit IRC
[07:39:16] *** muecke77 has left #postfix
[07:59:14] *** seekwill has quit IRC
[08:01:09] *** syneus has joined #postfix
[08:05:58] *** INternat has quit IRC
[08:08:45] *** INternat has joined #postfix
[08:22:05] *** DTE_ has joined #postfix
[08:22:11] <DTE_> hi all
[08:22:35] <DTE_> i'm having some problems with sasl and postfix
[08:22:58] <DTE_> i got  warning: SASL authentication problem: unable to open Berkeley db /etc/sasldb2
[08:23:25] <DTE_> and postfix/smtpd[15025]: NTLM server step 1
[08:23:45] <DTE_> if i run saslfinger i get that there's no smtpd.conf
[08:24:10] <DTE_> but it's there
[08:24:37] <sahil> so it's not in the place where it's supposed to be.
[08:24:44] <sahil> !sasl
[08:24:45] <knoba> sahil: "sasl" : SASL is 'Simple Authentication and Security Layer', necessary for SMTP AUTH, and provided to Postfix by addin software. Cyrus SASL and/or Dovecot IMAP/POP3 can provide SASL. See http://www.postfix.org/SASL_README.html for details.
[08:24:51] <sahil> read that doc.
[08:26:22] *** stony__ has joined #postfix
[08:26:34] <DTE_> no....nevermind...i found it why...i think i need to get some more sleep :-)
[08:27:21] <sahil> bye, then.
[08:28:19] <DTE_> oh not now...now i have apache and heartbeat to clean a bit :-)
[08:39:17] *** Filbert has quit IRC
[08:43:31] *** stony_ has quit IRC
[08:52:24] *** DTE_ has quit IRC
[08:53:15] *** Filbert has joined #postfix
[08:56:27] *** seekwill has joined #postfix
[08:57:09] *** quieteyes has left #postfix
[08:58:44] *** jpalmer has quit IRC
[08:59:17] *** jpalmer has joined #postfix
[09:03:29] *** Fallenou has joined #postfix
[09:04:29] *** Trengo has quit IRC
[09:07:24] *** cekz|work has quit IRC
[09:07:47] *** cekz|work has joined #postfix
[09:16:30] *** syneus has quit IRC
[09:23:42] *** j_s has joined #postfix
[09:29:45] *** syneus has joined #postfix
[09:35:21] *** insertable has joined #postfix
[09:37:12] <insertable> hi all. i m about to lose my mind here. i am running postfix 2.5.1 and ubuntu-server. when i first installed it the mail server worked fine. after i reboot it though i keep getting a Host or domain not found, Name service error. does anyone know why? thanks
[09:38:01] <hparker> dns server running?
[09:38:14] <insertable> yes
[09:38:32] <insertable> i haven't changed anything either. it just stopped working after i reboot the machine
[09:38:39] <hparker>  /etc/resolv.conf correct?
[09:38:40] <sahil> check logs
[09:38:45] <sahil> specify what 'works'?
[09:38:50] <sahil> and what 'doesn't work' means?
[09:39:29] <insertable> works = i could send mail from the mail server with no error
[09:39:48] <insertable> doesn't work = i get the host or domain not found and name service error
[09:39:59] <insertable> so i am getting a queue
[09:40:24] <sahil> can you look up the domains/hosts in question from the command line on the same machine on which postfix is running?
[09:40:36] <sahil> paste the exact error from maillog.
[09:41:20] <insertable> Host or domain name not found. Name service error for name=tpg.com.au type=MX: Host not found, try again
[09:41:32] <insertable> i could send to that address before i rebooted
[09:42:52] <insertable> and yes i can look up the domains/hosts from the postfix machine
[10:00:35] *** war9407 has joined #postfix
[10:04:14] *** syneus has quit IRC
[10:05:34] *** af_ has joined #postfix
[10:06:11] *** pingouin_ has quit IRC
[10:07:11] *** pingouin_ has joined #postfix
[10:12:22] *** xpoint has joined #postfix
[10:26:54] *** Motoko-chan has quit IRC
[10:36:26] *** af_ has quit IRC
[10:36:39] *** suuuper has joined #postfix
[10:40:26] *** pingouin_ has quit IRC
[10:40:33] *** pingouin_ has joined #postfix
[10:45:15] *** hever has joined #postfix
[10:58:20] *** pa has quit IRC
[11:01:23] *** robboplus has quit IRC
[11:02:07] *** seekwill has quit IRC
[11:09:20] *** insertable has quit IRC
[11:14:59] *** pa has joined #postfix
[11:15:07] *** wladek has quit IRC
[11:38:46] *** Filbert has quit IRC
[11:41:03] *** robboplus has joined #postfix
[11:43:48] *** [diablo] has joined #postfix
[11:44:31] *** wdp has joined #postfix
[11:47:25] *** hparker has quit IRC
[11:50:07] *** hever has quit IRC
[11:50:50] *** hever has joined #postfix
[12:00:01] *** gnot has joined #postfix
[12:00:59] *** msshams has joined #postfix
[12:01:07] <msshams> ?which webmail software is better than other? Claros - AtMail - RoundCube - SquirrelMail (please answer me).
[12:05:34] *** Zblakany has joined #postfix
[12:09:45] *** rootsvr has joined #postfix
[12:13:07] <wdp> msshams, i would suggest try it out.
[12:14:34] <war9407> was curious what everyone does here for anti-spam/uce measures?
[12:15:04] <sysmonk> nevefr saw claros, atmail sucked for me, roundcube is really nice looking, but not stable enough yet, squirrelmail design sucks, but it's stable
[12:15:16] *** devdas has joined #postfix
[12:23:20] *** pirho has joined #postfix
[12:28:06] *** msshams has left #postfix
[12:32:41] <cite> I have defined a transport in master.cf, called "foo". In main.cf I set foo_destination_recipient_limit=1, but in one out of a few 1000s of deliveries, the ${recipient} macro (it's a pipe(8) type transport) will expand two more than one recipient. Any ideas?
[12:33:54] <cite> sysmonk: don't forget all those plugins you get for squirrelmail.
[12:37:32] *** msshams has joined #postfix
[12:37:58] <msshams> during config postfix it says: dpkg: serious warning: files list file for package `qmailadmin' missing, assuming package has no files currently installed.
[12:38:01] <msshams> what is this
[12:38:04] <msshams> ?
[12:40:49] *** msshams has left #postfix
[12:45:14] *** albanach_ has joined #postfix
[12:45:17] *** albanach_ is now known as albanach
[12:50:02] <wdp> hey. some mails of my mailserver are classified as spam at mailers like googlemail and co. i have right now no idea why - the MX record of the specific domain (let's call it example.com) points to anotherexample.com (mail gateway for incoming mail) the sending mailserver is mail.anothersecondexample.com there's a correct PTR Record, there's also a correct A Record. There's also a correct SPF Record. mail.anothersecondexample.com is not in a blacklist.
[12:50:17] <wdp> i double checked everything but i'm out of ideas..
[12:51:12] <wdp> anyone some ideas what i could check?
[12:53:29] <devdas> wdp: ask Google?
[12:53:41] * devdas points wdp to postmaster@google
[12:54:13] <devdas> cite: that should not happen, send in the postconf -n and logs to postfix-users at postfix dot org
[12:54:25] <devdas> Wietse will get on it quite quickly
[12:55:59] <wdp> devdas, think i'll get an answer?
[12:57:07] <devdas> wdp: it might be the content, the formatting, anything
[12:57:26] <devdas> Or it could just be users clicking on "this is spam"
[12:57:41] <wdp> devdas, i don't think it's the content or formatting, i think it's something general, i have the same problem at some other providers too.
[12:57:51] <wdp> s/provider/freemailers
[12:58:08] <devdas> wdp: they all handle enough mail to be able to see patterns
[12:58:16] <devdas> you might be innocently hitting those
[12:58:45] <wdp> devdas, would it help if i send you an email from one of those accounts, maybe you'll see something in the mail causing that?
[12:59:56] <devdas> wdp: probably not
[13:00:09] <devdas> the information would be in their logs
[13:00:37] <wdp> okay, some general questions:
[13:01:05] <wdp> hm, second.
[13:02:06] <cite> devdas: Ok, next time this happens I will copy that logfile to a save place to avoid it being deleted during logrotation.
[13:02:23] <wdp> heh.
[13:02:56] <cite> devdas: It would probably be wiser not to use a pipe(8) type transport at all but to use Postfix's vortual(8) lda.
[13:09:26] <wdp> devdas, could it be a problem if the sending mailserver is mail.example.com and the client uses his own domain for contacting the mailserver, e.g. another.com, mail.another.com points to mail.example.com by an a record
[13:18:26] *** jmazaredo has joined #postfix
[13:19:37] <wdp> k. something else:
[13:19:42] <wdp> http://nopaste.tshw.de/121171373071db9/
[13:19:54] <wdp> i recieve 3 up to 10 similar mails per day..
[13:19:58] <wdp> ..any way to stop that?
[13:20:32] *** albanach_ has joined #postfix
[13:21:43] <cite> !tell wdp backscatter
[13:22:07] <wdp> cite, i know about backscatter.
[13:22:13] <wdp> and i thought i did things against it.
[13:22:26] <wdp> and i read that document.
[13:22:36] <wdp> AND finally.. thats why i ask here ;)
[13:22:58] <cite> wdp: If those are forged DSNs, there is not much more you can do against it, safe for the usual anti-spam measures.
[13:23:14] <wdp> ic.
[13:24:20] <cite> If you could show full, unobfuscated headers, we might see something.
[13:25:26] <wdp> sure, second.
[13:28:33] <wdp> http://nopaste.tshw.de/121171490471db9/
[13:28:52] <wdp> i replaced my ip's with xx.xx and my domains with example.com
[13:29:37] <wdp> X-Spam stuff is added by my gateway.
[13:30:07] <wdp> it's just this thing: "Delivery Status Notification (Failure)"
[13:30:12] *** wolfgang has quit IRC
[13:30:33] <cite> wdp: So the attached DSN does not include any header fiels apart of "From:", "To:" and "Subject:"?
[13:32:08] <wdp> http://nopaste.tshw.de/121171512271db9/
[13:32:15] <wdp> thats all.
[13:32:35] <wdp> well, there are some recieved lines..
[13:32:36] <cite> Well, you are screwed. then.
[13:32:44] <cite> Oh, there are?
[13:32:57] <wdp> same as in my first paste
[13:33:19] <wdp> wouldn't it be good just to filter out such notifications?
[13:33:38] <cite> Are you alluding to that "Received-From-MTA: dns;relhubc02-ukbr.tcrelay.net" line?
[13:34:04] <wdp> i don't know the word alluding - if you mean weather thats from me or not - no i don't know that host.
[13:34:04] *** devdas has quit IRC
[13:35:43] <cite> wdp: Well, basically, there is not much you can do. If you want to make sure those mails are recognized as forged DNSs, you will have to take a look at BATV.
[13:36:10] <wdp> ty for explaination.
[13:36:12] <cite> wdp: Or give amavsid-new 2.6.x a shot. It has something called "bounce killer"
[13:36:25] <cite> None of these are relaible, though.
[13:36:36] <wdp> killing bounces isn't a good way, or
[13:36:37] <wdp> ?
[13:36:59] <cite> It tries to only kill bounces which do originate from messages _you_ or other ppl using your server(s) didn't send.
[13:37:19] <wdp> hm. maybe a try worth.
[13:37:30] <cite> But recent discussion on amavis-users suggests it still has some, erm, "nasty glitches".
[13:37:43] <wdp> can you tell me some of them?
[13:37:56] *** albanach has quit IRC
[13:38:11] <cite> It breaks on forwarded mail unless some kind of SRS is appleid and it breaks on some types of MIME types.
[13:38:16] <cite> applied*
[13:38:42] <wdp> heh.. i'm using a mailgateway.
[13:38:48] <wdp> it's forwarding mails..
[13:38:55] <cite> As for your suggestion to REJECT bounces: Don't do that.
[13:40:46] *** Sypher has joined #postfix
[13:40:49] <cite> Ah, no, by forwarding I mean if mail sent through your gateway (and therefore, your amavisd-new) to a mailbox like foo at example dot org is then forwarded back to your domain, amavisd-new will kill that message.
[13:40:52] *** Sypher has quit IRC
[13:42:17] <wdp> maybe i should write a script for automatic abuse reports..
[13:42:19] <wdp> and filling there mailservers
[13:42:27] <cite> Don't do that ;)
[13:42:31] <wdp> s/there/their
[13:42:56] * wdp is just wondering, why nobody is doing something against such things.
[13:43:11] <cite> I'm afraid you'll have to live through it.
[13:43:29] <wdp> i'll create some domain blacklists.
[13:43:39] <cite> Or go and take the time to apply a BATV solution to your site.
[13:45:06] *** Filbert has joined #postfix
[13:54:36] *** albanach_ has quit IRC
[14:09:43] *** akirk has joined #postfix
[14:12:04] *** albanach_ has joined #postfix
[14:12:07] *** albanach_ is now known as albanach
[14:14:07] *** albanach_ has joined #postfix
[14:21:34] *** githogori has quit IRC
[14:21:34] *** deemon has quit IRC
[14:21:35] *** cafuego has quit IRC
[14:21:36] *** elshaa has quit IRC
[14:21:36] *** linkslice has quit IRC
[14:21:37] *** maw_ has quit IRC
[14:21:37] *** memetic has quit IRC
[14:21:37] *** adie has quit IRC
[14:21:38] *** fwp has quit IRC
[14:21:38] *** glitch- has quit IRC
[14:23:23] *** deemon has joined #postfix
[14:23:32] *** githogori has joined #postfix
[14:23:32] *** elshaa has joined #postfix
[14:23:32] *** adie has joined #postfix
[14:23:32] *** cafuego has joined #postfix
[14:23:32] *** linkslice has joined #postfix
[14:23:32] *** maw_ has joined #postfix
[14:23:32] *** memetic has joined #postfix
[14:23:32] *** fwp has joined #postfix
[14:23:32] *** glitch- has joined #postfix
[14:32:24] *** albanach has quit IRC
[14:41:06] *** McJerry has joined #postfix
[15:23:25] *** hparker has joined #postfix
[15:37:27] *** hemry has joined #postfix
[15:52:11] *** confound has joined #postfix
[15:57:03] *** Haris has quit IRC
[15:58:28] *** checkers has joined #postfix
[16:10:42] *** adaptr has joined #postfix
[16:11:03] *** rootsvr has quit IRC
[16:18:33] *** wdp has quit IRC
[16:18:47] <checkers> Signum: thanks for your workaround tutorial with debian etch, it was very helpful while I've setup many servers :). but one suggestion. the dovecot LDA treats addresses like user+foo@domain as different to user@domain. You can get around this by using this argv in master.cf: argv=/usr/lib/dovecot/deliver -f ${sender} -d ${user}@${domain}
[16:19:42] *** Trengo has joined #postfix
[16:33:21] *** [arm] has joined #postfix
[16:36:12] *** gnot has left #postfix
[16:42:38] <pingouin_> a little bit out of topic, but what are you using to archive old mail ?
[16:42:53] <pingouin_> i got too much in some box, that make it slow
[16:43:05] <pingouin_> wish to still can read them if necessary
[16:46:14] <Signum> checkers: Thanks. I'll see that I can work that in.
[16:47:59] <brad[]> Hi folks, I'm trying to solve a mail loop issue. Essentially there are two SMTP servers on the same host, each bound to an IP alias, and postfix is to use a transport map to relay mail destined for specific users to the other SMTP server. However, postfix doesn't do it, instead incorrectly stating that 'mail for <IP address> loops back to myself'. Any way around this?
[16:50:21] *** albanach_ has quit IRC
[17:04:54] *** PhilKC has quit IRC
[17:13:50] *** BillyButtlove has quit IRC
[17:14:01] *** keffer has joined #postfix
[17:14:18] *** keffer has quit IRC
[17:14:34] *** keffer has joined #postfix
[17:15:11] *** unixtippse_ has joined #postfix
[17:16:13] *** McJerry has quit IRC
[17:16:33] <checkers> Signum:  the dovecot wiki has suggestions for using the extension as the destination folder too (for IMAP): http://wiki.dovecot.org/LDA/Postfix
[17:16:44] *** McJerry has joined #postfix
[17:18:09] *** unixtippse has quit IRC
[17:18:10] *** Bejgli has quit IRC
[17:26:01] *** adaptr_ has joined #postfix
[17:26:02] *** pitakill has joined #postfix
[17:26:02] *** adaptr has quit IRC
[17:26:03] *** Bejgli has joined #postfix
[17:28:48] *** rootsvr has joined #postfix
[17:31:29] *** albanach_ has joined #postfix
[17:31:30] *** albanach_ is now known as albanach
[17:35:09] *** UQlev has joined #postfix
[17:40:39] *** hparker has quit IRC
[17:43:43] <Signum> checkers: interesting
[17:46:58] *** tshine has joined #postfix
[17:48:47] *** jonez has joined #postfix
[17:49:52] *** hparker has joined #postfix
[17:55:28] *** amrit|zzz is now known as amrit
[17:57:54] *** rootsvr has quit IRC
[17:58:03] <jonez> greetings.
[17:58:26] <jonez> I made some network changes, and I need to requeue a bunch of email that has been stored up on a remote site while my network was down.
[17:58:55] <jonez> what I need to do is change the expansion of some addresses from "toast.zoid" to "gate.zoid" and kick postfix to requeue. can I do that easily enough or is that email lost?
[18:01:44] <jonez> ermm.. maybe I can make this simpler on myself.
[18:01:46] <jonez> heh
[18:12:33] *** akirk has quit IRC
[18:13:02] *** albanach has quit IRC
[18:13:46] *** [diablo] has quit IRC
[18:15:23] *** wdp has joined #postfix
[18:28:11] *** seekwill has joined #postfix
[18:33:15] *** GoGi has joined #postfix
[18:34:15] *** CrazyFoam has quit IRC
[18:42:56] *** Draecos has joined #postfix
[18:46:51] *** craigbass1976 has joined #postfix
[18:47:48] <craigbass1976> I'm trying to get virtual hosts running, and not sure where to start.  Currently, I've got it setup so that each mail account also has a linux user account, so craig at this dot com mail will also go into craig at that dot com.
[18:48:46] <craigbass1976> and I don't have a /usr/local/postfix/ directory, so the tuts I'm reading are a bit confusing
[18:54:29] <adaptr_> !virtual
[18:54:29] <knoba> adaptr_: "virtual" : a way to configure additional domains and user accounts (that do not need to exist in your /etc/passwd). See: http://www.postfix.org/VIRTUAL_README.html
[18:54:43] <adaptr_> they're not virtual "hosts - they're virtual *domains*
[18:54:56] <adaptr_> fundamental difference there
[18:56:03] <adaptr_> and it's independent of how postfix was set up, as it is configuration-based
[18:56:33] *** adaptr_ is now known as adaptr
[18:56:50] <adaptr> god fucking netpissing splitfucks
[18:56:56] <adaptr> in a manner of speaking
[19:00:09] <seekwill> adaptr: Ask for a refund!
[19:02:23] *** tshine_ has joined #postfix
[19:02:51] *** tshine_ has quit IRC
[19:04:44] *** pitakill has quit IRC
[19:08:11] *** tshine has quit IRC
[19:08:23] *** silverblade has joined #postfix
[19:09:30] <silverblade> Hey guys, I've got Postfix set up using MySQL for alias tables etc. however the config files have the MySQL DB password within them and it seems if I try to restrict access to these files to Postfix, mail doesn't work properly.
[19:09:44] <silverblade> How can I use a MySQL backend whilst keeping the config secure?
[19:09:55] *** bip has joined #postfix
[19:11:35] <rob0> craigbass1976, where are you seeing /usr/local/postfix/ directories? Maybe a FBSD-specific HOWTO? That is not a default path used by Postfix.
[19:11:51] <bip> I have just setup postfix,and it works but since I m using dyn dns and a dynamic ip even if I can receive mail w/o problems , most smtp server refuse to accept email from me, I m sure it is a FAQ but where I can read how to tel postfix to use my ISp
[19:11:58] <sysmonk> freebsd usese /usr/local/etc/postfix, not /usr/local/postfix
[19:12:01] <sysmonk> uses*
[19:12:03] <bip> smtp server to send out email
[19:12:12] <silverblade> bip: is this on a home internet connection?
[19:12:50] <silverblade> i think some mail servers refuse smtp from "residential" IPs.
[19:12:56] <silverblade> to reduce spam/virii etc
[19:13:13] <seekwill> I would...
[19:13:22] *** craigbass1976 has quit IRC
[19:13:52] *** archvile has joined #postfix
[19:13:56] <bip> i know silverblade
[19:14:02] <rob0> !relayhost
[19:14:02] <knoba> rob0: "relayhost" : a configuration parameter in the main.cf: The default host to send non-local mail to when no entry is matched in the optional transport(5) table. When no relayhost is given, mail is routed directly to the destination.
[19:14:32] <bip> what i want to do is to tell postfix to relay ougoing email to my ISP smtp server Sieg
[19:14:37] <silverblade> ah.
[19:15:55] <bip> relayhost ?
[19:20:56] <roe_> can someone finish this analogy for me:
[19:21:07] <roe_> postfix is to mta as dovecot is to <blank>
[19:21:16] *** craigbass1976 has joined #postfix
[19:21:57] <craigbass1976> I'm a little confused about the virtual_transport line.  I was going to go with unix, but the path...  supposed to be something like /var/mail/vhosts/domainname/  ?
[19:24:18] <rob0> 17:11 < rob0> craigbass1976, where are you seeing /usr/local/postfix/ directories? Maybe a FBSD-specific HOWTO? That is not a default path used by Postfix.
[19:24:50] <rob0> Also, most sites do not need to set virtual_transport, you're adding unnecessary complication.
[19:25:05] <craigbass1976> there is no /usr/local/postfix.  One was referred to in a tut I was reading, but the link adaptr agve was better
[19:25:54] <rob0> A HOWTO which uses non-default paths without making note of that fact is probably not a good resource.
[19:26:11] <rob0> !google
[19:26:11] <knoba> rob0: "google" : Those who use Google before reading the Postfix documentation, if fortunate, end up at http://www.postfix.org/ . If not, they end up in a jumble of bad questions, misleading or wrong answers, and outdated information.
[19:26:27] <craigbass1976> True...
[19:29:10] *** McJerry has quit IRC
[19:29:11] <seekwill> glitch-: Hey
[19:34:04] *** lunaphyte_ has joined #postfix
[19:37:55] <craigbass1976> rob0, I'm at http://www.postfix.org/VIRTUAL_README.html#virtual_mailbox in the separate domains, non-UNIX accounts section.  I've followed the docs, and still have the issue that I check for eail as craig at onedomain dot com, but see mail for craig at theotherdomain dot com
[19:38:20] <adaptr> "check for mail" is vague, as is "see mail"
[19:38:37] <adaptr> both domains MUST be configured, be it as unix domain or virtual domain
[19:38:54] <craigbass1976> you mean in postfix or bind?
[19:38:56] <adaptr> unix domain goes in mydestination, virtual domains go there
[19:39:04] <rob0> If this is a small-scale setup, you'd be better off with virtual alias domains.
[19:39:11] <adaptr> and yes, you rmachine MUSt be the MX for these domains
[19:39:30] <craigbass1976> ok, it is
[19:39:45] <adaptr> yes, for small numbers of addresses, a full vdomain setup is overkill - just alias them
[19:39:52] <craigbass1976> But I want to have mail for craig at two domains
[19:40:02] <adaptr> then they have to have distinct recipients
[19:40:03] <rob0> again ^^
[19:40:26] <adaptr> craigbass1976: at this point, there are apporximately 6 things you could be doing wrong
[19:40:39] <adaptr> we don't know which ones
[19:40:40] <craigbass1976> nice
[19:40:41] <rob0> You want the craig@ mail in ONE mailbox, or in two separate ones?
[19:41:02] <seekwill> Ok, I need a second opinion. I'm allowing my home server to relay to my vps-hosted mta. It's allowed by a relay host. But my ip could change, and that would suck. TLS auth is the obvious choice, but, it seems a lot of hassle for just one server. Other options?
[19:41:16] <craigbass1976> I've got moultonlumber.com, and thecabinetfolks.com.  I want a craig at each one, and have them in two seperate mailboxes
[19:41:21] <rob0> seekwill, I use openvpn
[19:41:33] <adaptr> seekwill: TLS auth is not that much hassle, but yeah, any tunnel in a tight spot ;)
[19:41:45] <seekwill> Hmm, I do like that idea.
[19:41:51] <rob0> seekwill, another benefit of that is that my real home IP is hidden from headers :)
[19:41:55] <adaptr> add openvpn tunnel range to mynetworks, done
[19:42:04] <craigbass1976> Right now I have it so that I need a seperate unix account and have to have a different username
[19:42:11] <seekwill> I was actually doing that before but with an ssh tunnel
[19:42:17] <seekwill> rob0: True!
[19:42:33] * adaptr nukes rob0's REAL HOME IP
[19:42:36] <adaptr> as if
[19:45:28] *** harukomoto has joined #postfix
[19:45:31] *** harukomoto has left #postfix
[19:45:44] <rob0> I would have a Unix account "craigml" and another one "craigtcf". Virtual(5) alias craig@moulton to craigml@localhost, and craig@thecabinet to craigtcf@localhost
[19:46:28] <rob0> (localhost in $mydestination, and "append_dot_mydomain = no")
[19:47:21] *** bip has left #postfix
[19:48:35] *** m0f0x has joined #postfix
[19:54:33] <seekwill> gah... which server to put the openvpn server on .... so many choices!
[19:54:47] *** PhilKC has joined #Postfix
[19:58:20] *** devdas has joined #postfix
[20:01:07] <seekwill> rob0: dude... openvpn is such a good idea. I forgot I need to replicate the local mysql db to the edge mta as well. this'll make it so much easier
[20:01:13] <seekwill> thanks! :)
[20:03:27] *** albanach_ has joined #postfix
[20:03:29] *** albanach_ is now known as albanach
[20:04:36] * adaptr congratulates rob0 on his newly-acquired "dude" status
[20:04:58] <seekwill> adaptr: babe, you rock too
[20:05:22] <adaptr> ehm... I reject your babe-status and replace it with my own!
[20:05:35] <seekwill> adaptr: babe, you rock too
[20:05:37] <adaptr> REJECT 6.9.0 I am not your babe, babe
[20:05:46] <devdas> adaptr, congratulations on your self-babe status
[20:06:09] <adaptr> (faux-Fat-Bastard-imitation) Oooh yeah! I'm soo SEXAH
[20:06:25] <adaptr> (all barf)
[20:06:33] *** madrescher has joined #postfix
[20:06:34] <craigbass1976> rob0, so I still have to log in as the craigtcf when checking mail, but everyone else sees only craig@blahblah ?
[20:07:31] <adaptr> craigbass1976: addresses and mailboxes are not related as such
[20:07:43] <adaptr> so that's up to you to decide
[20:07:52] <craigbass1976> tricky.   THanks
[20:09:20] *** denis has joined #postfix
[20:09:37] <denis> Hi
[20:11:50] *** craigbass1976 has left #postfix
[20:14:39] <denis> I use lists in thunderbird and i have somes duplicates when using multiple lists, each containing the same contact.
[20:15:09] <denis> The problem could not be resolved with postfix ? That postfix send the message once to the recipient?
[20:17:47] *** muecke77 has joined #postfix
[20:17:48] <adaptr> you don't "use lists" in a MUA - mailing lists are handled by an MTA
[20:18:41] *** Lap_64 has quit IRC
[20:18:52] *** muecke77 has quit IRC
[20:19:00] <seekwill> Really?
[20:19:41] <seekwill> Mailman?
[20:21:28] <seekwill> adaptr: babe
[20:22:36] <adaptr> seekwill: dude
[20:22:56] <adaptr> I meant figuratively, as it is being passed off and handled BY the MTA at some point, not by your MUA
[20:23:22] <seekwill> I'm still not seeing it
[20:23:31] <adaptr> and he probably does not understand the disticntion between maiolng lists that BCC all recipients, and MUA "distribution lists" that just dump everybody in the To: field
[20:24:03] <adaptr> the former would not mind duplication of recipients, the latter should be able to handle it
[20:24:47] <seekwill> Well, using a "real" program to handle these sorts of things will be able to figure it out
[20:24:52] <seekwill> mailman
[20:25:07] *** madrescher has quit IRC
[20:25:16] <seekwill> I still don't see how the MTA is involved...
[20:26:18] <adaptr> each and every single ML message passes through the MTA
[20:26:27] <adaptr> so it *can* be aware of duplicates
[20:26:46] <seekwill> It shouldn't be the job of the MTA to find duplicates
[20:26:50] <adaptr> but since a MLM BCCs everybody, it is (usually) transparent to the MUA
[20:26:54] <adaptr> I did not say that:)
[20:27:52] <seekwill> "BCC" is an MUA option. Not MTA. So it depends on how the MUA handles it. A good MLM wouldn't use multiple rcptto's in order to utilize verp
[20:28:13] <seekwill> And other unsubscribe features
[20:28:21] <adaptr> tru
[20:29:45] <denis> Yes, in this case this is not really a list, but rather an alias.
[20:29:58] *** muecke77 has joined #postfix
[20:30:02] <denis> Postfix is able to remove addresses duplicated in a field to, cc, bcc and send to this recipient only once?
[20:30:49] <seekwill> How about just fix the way you're injecting the message?
[20:31:21] <seekwill> I see what you mean though, with aliases.
[20:32:28] <seekwill> I really think since TB is handling the alias expansion, it should also take care of dupes
[20:32:53] <seekwill> Having the MTA keep track of all messages and checking to see if you sent to this person already isn't a fun idea.
[20:33:56] *** tuxianer has joined #postfix
[20:34:14] <denis> of course, the idea is just to solve this ... but maybe it's more the job of procmail ?
[20:34:42] <adaptr> wow, how about we alos throw in maildrop, and squirrelmail, and dovecot ?
[20:34:49] <adaptr> if TB does this, fix it in TB
[20:35:04] <tuxianer> hi guys, my mailserver tells me that he responsed mails with 5.7.1 Relay access denied i dont see anything in the logfiles, and i dont undestand why i test something in terms of SPAM
[20:35:12] <tuxianer> does anybody have an idea
[20:35:17] <adaptr> marshmellows!
[20:35:49] <seekwill> denis: Actually, we block dupes at our company. I think it's on the receiving side, vs. the sending side. I'll have to ask them on Tuesday how they did it
[20:35:53] <adaptr> come on, you all know it's a good idea
[20:35:58] <tuxianer> i am able to send  mails my network but not out
[20:36:25] <seekwill> adaptr: babe, ok
[20:37:55] <adaptr> dude...
[20:38:05] <seekwill> Yes honey suckle?
[20:38:26] <adaptr> now you're just getting my hopes up
[20:38:37] <seekwill> I'm a tease like that
[20:38:51] <seekwill> You want to come and fluff my lovesac? It's a bit flat...
[20:39:17] <seekwill> http://www.lovesac.com/item.asp?PID=237
[20:39:18] <devdas> get a room, you two
[20:39:37] <seekwill> ;)
[20:39:40] *** muecke77 has quit IRC
[20:42:41] *** wdp has quit IRC
[20:42:54] *** wdp has joined #postfix
[20:46:00] *** denis has quit IRC
[20:47:19] *** Draecos has left #postfix
[21:00:01] *** tuxianer has quit IRC
[21:09:13] *** devdas has left #postfix
[21:15:14] *** [arm] has quit IRC
[21:16:14] *** wladek has joined #postfix
[21:17:21] <wladek> hi, how do i specify a non standard location for my /etc/passwd file when defining the local_recipient_maps paramter in my main.cf ?
[21:20:57] <adaptr> !local_recipient_maps
[21:20:57] <knoba> adaptr: "local_recipient_maps" : a configuration parameter in the main.cf: Lookup tables with all names or addresses of local recipients. A recipient address is local when its domain matches $mydestination, $inet_interfaces or $proxy_interfaces.
[21:22:59] <wladek> yes, but how do i specify the location
[21:23:15] <wladek> defining unix:passwd.byname in local_recipient_maps will default to /etc/passwd
[21:23:37] *** trappist has joined #postfix
[21:23:40] <seekwill> Why do you have it in a non-standard location?
[21:23:54] <trappist> are there any docs on migrating from exim to postfix?
[21:24:00] <wladek> i want to use the /etc/passwd file from another jailed environment on my freebsd system
[21:24:07] <seekwill> oh
[21:24:14] <wladek> so i mounted it in my users jail at /users/users-etc/passwd
[21:24:21] <wladek> *mounted it in my mail jail
[21:28:43] <rob0> trappist, not specifically that I know of, but the Postfix docs are good.
[21:30:06] <trappist> rob0: I might be able to reimplement the accounts by hand, there aren't many of them, but if there are tools to migrate them, that would be very nice
[21:32:42] <wladek> so is there anyway to use /users/users-etc/passwd as a 'unix' paramater in my local_recipient_map? or should i be implementing this differently?
[21:37:43] <rob0> Unix accounts? If so it should be a simple switchover.
[21:37:50] <rob0> trappist: ^^
[21:38:11] <trappist> rob0: nope, but that's how I'd like to do it on the postfix side
[21:38:15] <rob0> wladek: not that I know of, you'd have to hack the C libraries
[21:38:48] <wladek> ouch..
[21:39:03] <rob0> trappist, just script something to make a system account for each of your Exim accounts.
[21:39:40] <trappist> rob0: yeah that shouldn't be hard, except I haven't figured out yet how or where exim stores the passwords or if they're portable as unix system passwords
[21:40:09] <rob0> Just curious, why leave Exim? There are things Exim can do (integrated content filtering) which are not so simple in Postfix because of the architecture.
[21:40:57] <trappist> rob0: I guess that's a pretty good question... the only real answer I have is that I know postfix :)
[21:41:33] <trappist> rob0: somebody's hired me to move their stuff out of one hosting facility and onto a new (virtual) server, and they don't have an admin and it'll be my responsibility to maintain it, probably
[21:42:13] <trappist> and content filtering isn't *that* hard in postfix
[21:42:31] <trappist> they're using spamassassin now, and I think I'm gonna talk to em about dspam
[21:43:02] *** muecke77 has joined #postfix
[21:48:56] <wladek> rob0: do you think a good alternative would be to use a regexp_table on my waywardly passwd file?
[21:53:32] <rob0> No, content filtering isn't difficult, but it's not as capable as what Exim can do.
[21:55:45] <rob0> wladek, as I explained yesterday, there are 2 issues. First, local_recipient_maps, and that's easy, just list all your users in alias_maps.
[21:56:01] <rob0> (and set local_recipient_maps = alias_maps)
[21:56:43] *** SniZ has joined #postfix
[21:56:46] <rob0> The second is local(8) and how it determines UID and HOME and such. And I don't know a good solution for that.
[21:56:54] <SniZ> hi, anybody here?
[21:57:06] <rob0> But maybe "man local" will have some clues.
[21:57:12] <wladek> ok
[21:58:25] <rob0> What you want wouldn't be very hard to set up with virtual(8) (virtual_mailbox_* settings), but the virtual delivery agent lacks some features. (Might not matter to you.)
[22:00:07] *** albanach has quit IRC
[22:01:20] *** pa has quit IRC
[22:06:39] <SniZ> reject_unknown_hostname - can i use this?
[22:06:43] *** muecke77 has quit IRC
[22:06:56] <SniZ> i afraid, becouse in many configs it commented
[22:12:12] *** denis has joined #postfix
[22:15:11] <rob0> reject_unknown_hostname is deprecated, replaced by reject_unknown_helo_hostname, and it's NOT safe, because you will get a lot of real mail from hosts with unresolvable HELO names.
[22:15:45] <SniZ> rob0, can you give me your config?
[22:15:58] <SniZ> i configure my corp mail server
[22:17:24] <wdp> hm
[22:17:30] <wdp> *checking*
[22:18:47] <wdp> i use reject_non_fqdn_hostname, reject_invalid_hostname, reject_invalid_helo_hostname and reject_non_fqdn_helo_hostname
[22:19:46] <SniZ> http://rafb.net/p/GUO0Ib70.html
[22:19:50] <SniZ> i use this
[22:20:31] <SniZ> what i must delete or add?
[22:22:02] <rob0> reject_non_fqdn_helo_hostname and reject_invalid_helo_hostname (those are the new versions) are both safe and effective.
[22:23:12] <rob0> re: that paste, leading whitespace is REQUIRED for continuation of a single logical line, "man 5 postconf"
[22:24:01] <rob0> that's about all I have to say, gtg
[22:24:08] <SniZ> i know
[22:24:21] <SniZ> reject_non_fqdn_helo_hostname and reject_invalid_helo_hostname i need add?
[22:24:41] <rob0> you have the deprecated syntax
[22:25:35] <SniZ> i not understand
[22:26:02] *** stickystyle has joined #postfix
[22:36:49] *** albanach_ has joined #postfix
[22:36:51] *** albanach_ is now known as albanach
[22:36:55] *** muecke77 has joined #postfix
[22:38:26] <wdp> hm.
[22:38:40] <wdp> is it possible to use verify_sender adress only for mailer daemons?
[22:38:57] <SniZ> wdp, hm, where i can see blacklist of postgrey?
[22:39:08] <SniZ> May 25 19:58:14 mail postfix/smtpd[25656]: connect from mail.tut.by[195.137.160.40]
[22:39:09] <SniZ> May 25 19:58:15 mail postfix/smtpd[25656]: NOQUEUE: reject: RCPT from mail.tut.by[195.137.160.40]: 450 4.7.1 <forum at emo dot by>: Recipient address rejected: Greylisted, see http://isg.ee.ethz.ch/tools/postgrey/help/emo.by.html; from=<sniz at tut dot by> to=<forum at emo dot by> proto=SMTP helo=<speedy.tutby.com>
[22:39:09] <SniZ> May 25 19:58:15 mail postfix/smtpd[25656]: disconnect from mail.tut.by[195.137.160.40]
[22:39:19] <SniZ> May 25 20:27:44 mail postfix/smtpd[23861]: connect from adsl-ull-31-188.48-151.net24.it[151.48.188.31]
[22:39:20] <SniZ> May 25 20:27:45 mail postfix/smtpd[23861]: NOQUEUE: reject: RCPT from adsl-ull-31-188.48-151.net24.it[151.48.188.31]: 554 5.7.1 Service unavailable; Client host [151.48.188.31] blocked using zen.spamhaus.org; http://www.spamhaus.org/query/bl?ip=151.48.188.31; from=<Cufta-etireron at BROADLANE dot COM> to=<forum at emo dot by> proto=ESMTP helo=<adsl-ull-31-188.48-151.net24.it>
[22:39:20] <SniZ> May 25 20:27:45 mail postfix/smtpd[23861]: disconnect from adsl-ull-31-188.48-151.net24.it[151.48.188.31]
[22:39:30] *** muecke77 has quit IRC
[22:39:34] <wdp> SniZ, first: use nopaste
[22:39:51] <wdp> SniZ, pastebin.ca nopaste.tshw.de or whatever service you like, if you paste more than 3 lines.
[22:40:25] <wdp> SniZ, second: your greylist software should have a documentation and possibly a man page.
[22:40:31] <wdp> third: don't know.
[22:40:59] <SniZ> heh
[22:41:02] <SniZ> sorry for paste
[22:41:03] <SniZ> ^)
[22:54:52] *** hemry has quit IRC
[22:54:59] *** seekwill has quit IRC
[22:56:50] *** albanach has quit IRC
[22:57:35] *** jeffi has joined #postfix
[22:57:53] <jeffi> hi, does VDA suport local users ?
[23:03:47] *** tshine has joined #postfix
[23:05:52] *** j_s has quit IRC
[23:05:58] *** tshine has quit IRC
[23:08:39] <SniZ> in what postfixadmin crypt password?
[23:08:39] <SniZ> $1$14d50b84$KE0ckQBSowoy9lmYBLEuA.
[23:15:15] <jeffi> MD5Crypt i guess
[23:17:37] *** McJerry has joined #postfix
[23:20:47] *** stickystyle has left #postfix
[23:29:45] *** pitakill has joined #postfix
[23:37:31] *** denis has quit IRC
[23:47:19] *** BP-64672 has joined #postfix
[23:48:38] *** m0f0x has quit IRC
[23:50:47] <BP-64672> Hiya
[23:50:51] <BP-64672> Okay, when i first installed postfix it worked fine, i coudl send emails internally and externally. After I restart the computer I could still send internally, but nto externally. This is the error message I got in the postqueue
[23:51:19] <BP-64672> (Host or domain name not found. Name service error for name=tpg.com.au type=MX: Host not found, try again)
[23:53:21] <BP-64672> also, when i ran dig tpg.com.au MX it returned nothing
[23:58:16] *** hever has quit IRC





top