June 1, 2008 
< | 1 | 2 | 3 | 4 | 5 | 6 | 7 | 8 | 9 | 10 | 11 | 12 | 13 | 14 | 15 | 16 | 17 | 18 | 19 | 20 | 21 | 22 | 23 | 24 | 25 | 26 | 27 | 28 | 29 | 30 | >
June 1, 2008 [00:05:00] *** netcrash has quit IRC[00:06:00] *** makerc has joined #postfix[00:30:47] *** Zblakany has quit IRC[00:32:30] *** Mez has joined #postfix[00:41:40] *** hemry has quit IRC[00:41:42] *** Tinozaure has quit IRC[00:41:42] *** sv-- has quit IRC[00:41:42] *** xous has quit IRC[00:41:42] *** ircmojo has quit IRC[00:41:44] *** ftp3 has quit IRC[00:41:44] *** aba- has quit IRC[00:41:51] *** Tjikkun has quit IRC[00:41:51] *** checkers has quit IRC[00:41:55] *** thumbs has quit IRC[00:41:55] *** zamba has quit IRC[00:41:55] *** rob0 has quit IRC[00:43:07] *** hemry has joined #postfix[00:43:07] *** Tinozaure has joined #postfix[00:43:07] *** sv-- has joined #postfix[00:43:09] *** xous has joined #postfix[00:43:09] *** ircmojo has joined #postfix[00:43:09] *** ftp3 has joined #postfix[00:43:09] *** aba- has joined #postfix[00:43:09] *** checkers has joined #postfix[00:43:09] *** Tjikkun has joined #postfix[00:43:09] *** zamba has joined #postfix[00:43:09] *** thumbs has joined #postfix[00:43:09] *** rob0 has joined #postfix[00:43:13] *** rob0 has quit IRC[00:43:13] *** xous has quit IRC[00:43:13] *** rob0 has joined #postfix[00:43:27] *** xous has joined #postfix[00:46:07] *** tonyyarusso has joined #postfix[01:09:27] *** havvg has quit IRC[01:13:47] *** madrescher has quit IRC[01:20:13] *** suuuper has quit IRC[01:24:29] *** makerc has quit IRC[01:27:16] *** oxtail has quit IRC[01:41:07] *** Sypher has quit IRC[01:41:22] *** Sypher has joined #postfix[01:45:27] <basic`> howdy[01:46:15] <`k> postfix is awesome.[01:49:00] <sysmonk> it is ;P[01:50:30] * vice-versa hands sysmonk a rootbeer[01:50:59] <rob0> rootbeer is awesome[01:51:05] <vice-versa> indeed[01:51:10] <vice-versa> !rootbeer[01:51:10] <knoba> vice-versa: "rootbeer" : any popular domestic ale or lager consumed while logged into the super user account[01:51:27] <rob0> especially when someone else paid for it[01:52:39] <basic`> anyone familiar with this error: chdir /home/vmail/wilcox-co.com/dane.wilcox/.maildir: Not a directory[01:53:11] <basic`> the .maildir was created with maildirmake[01:56:06] <rob0> What was created, how?[01:56:14] <rob0> the error is very clear[01:59:06] <basic`> following http://www.gentoo.org/doc/en/virt-mail-howto.xml -- so it was created with these commands:[01:59:28] <basic`> # mkdir -p /home/vmail/virt-domain.com/foo[01:59:28] <basic`> # chown -R vmail:vmail /home/vmail/virt-domain.com[01:59:30] <basic`> # maildirmake /home/vmail/virt-domain.com/foo/.maildir[02:01:32] <basic`> sending mail works, the directory just wont behave[02:03:16] <rob0> I am pretty confident that basic Unix tools such as ls(1) would tell you that /home/vmail/wilcox-co.com/dane.wilcox/.maildir is not a directory.[02:03:38] <basic`> you're right, i found that right after i posted that[02:04:57] *** hparker has quit IRC[02:06:19] <basic`> okay, rob0 any insight into this one?[02:06:25] *** internat85 has quit IRC[02:06:27] <basic`> i just remade the maildir, and it appears to be working[02:06:35] <basic`> but now when i try and recieve mail i get this: (delivery failed to mailbox ///home/vmail/wilcox-co.com/dane.wilcox/.maildir: cannot open file: Is a directory[02:07:26] *** Mavvie has quit IRC[02:07:44] <rob0> well, looks like you missed a minor detail about delivery to maildir, because it is trying to deliver to mbox.[02:09:38] <rob0> !maildir[02:09:38] <knoba> rob0: "maildir" : a mailbox format introduced by qmail where emails are saved as individual files in a directory structure rather than into a single flat text file. Postfix settings like !home_mailbox and !virtual_mailbox_maps will allow delivery to maildir if the path value returned ends in /[02:10:54] <basic`> oh snap, i wonder if the / is missing somewhere[02:10:56] * basic` checks[02:15:52] *** war9407 has quit IRC[02:20:14] <basic`> ha, so the one account i was testing with was missing the /[02:23:46] *** internat85 has joined #postfix[02:24:06] <basic`> !imap[02:24:08] <knoba> basic`: "imap" : is an application layer Internet protocol that allows a local client to access e-mail on a remote server (see: http://en.wikipedia.org/wiki/IMAP)[02:32:15] *** pirho has quit IRC[02:36:49] *** Mavvie has joined #postfix[02:46:45] <basic`> !maildir[02:46:45] <knoba> basic`: "maildir" : a mailbox format introduced by qmail where emails are saved as individual files in a directory structure rather than into a single flat text file. Postfix settings like !home_mailbox and !virtual_mailbox_maps will allow delivery to maildir if the path value returned ends in /[03:00:55] *** Samonoske_ has joined #postfix[03:02:13] <Samonoske_> can I change postfix port number from 25 to 587?[03:10:25] *** c00l2sv has quit IRC[03:10:42] *** Tachy has joined #postfix[03:20:46] *** brancaleone has quit IRC[03:25:15] *** Tachy_ has quit IRC[03:26:51] *** JoseUK has quit IRC[03:28:29] *** stickystyle has quit IRC[03:32:05] *** syneus has joined #postfix[03:32:09] *** syneus has quit IRC[03:36:34] *** cyr- has joined #postfix[03:41:31] <basic`> Samonoske_: i think that's in the master.cf[03:42:52] <dragonheart> it is - aka sumbission[03:44:58] <basic`> woot, ssl/tls work now :)[03:45:03] * basic` is a happy man[03:46:17] <Samonoske_> dragonheart i'm not sure what's wrong with postfix atm..I can't get it to send any mail.. localhost nor external.[03:46:25] <Samonoske_> basic`[03:47:10] <dragonheart> basic`: make sure you set smtp_tls* and smtpd_tls*[03:47:24] <basic`> oh? in master.cf?[03:47:38] <dragonheart> Samonoske_: error messages normally help[03:47:45] <dragonheart> basic`: no - just main.cf[03:49:07] <basic`> ya, those are set[03:49:52] <basic`> with certificates and everything[03:49:57] <basic`> it all works[03:50:50] <dragonheart> yay[03:51:39] <basic`> silly, i was up til 9am working on this, went to bed, woke up, found the problem and had it working almost instantly[03:51:41] <basic`> sleep++[03:52:37] <dragonheart> sleep well with tls encrypted dreams[03:54:10] <Samonoske_> dragonheart this is the error in the log Jun 1 05:34:52 Server1 postfix/smtp[5166]: warning: no MX host for thecondenser.com has a valid address record[03:55:47] <basic`> do you have a fqdn?[03:56:01] <dragonheart> thecondenser.com. 120 IN MX 0 mail.renovotia.com.[03:56:12] <dragonheart> however mail.renovotia.com. doesn't resolve[03:56:12] <basic`> dragonheart: got a good spam filter guide for postfix/gentoo?[03:57:25] <dragonheart> http://www.gentoo.org/doc/en/mailfilter-guide.xml perhaps[03:57:27] <Samonoske_> dragonheart in my dns setup should i add it as an a record?[03:58:03] <dragonheart> basic`: if you do use it please give some feedback - this kina doco gets stale quickly[03:58:08] <dragonheart> Samonoske_: is it your domain?[03:58:41] <Samonoske_> yes dragonheart[03:59:01] <basic`> dragonheart: thanks, im looking at http://gentoo-wiki.com/Complete_Virtual_Mail_Server/Installing_Amavisd_and_SpamAssassin right now -- but i'll try the official docs first[03:59:05] <dragonheart> and mail.renovotia.com is where you've setup a mail server[03:59:33] <Samonoske_> yes..when i setup postfix i put mail.renovotia.com[03:59:35] <dragonheart> basic`: steal and understand the ideas from both[04:00:05] <dragonheart> Samonoske_: mail.renovotia.com doesn't resolve to an IP address. it kinda needs to to receive mail[04:01:07] <Samonoske_> okay i added to cname so in a few it should do something[04:01:38] <basic`> :)[04:02:25] <dragonheart> Samonoske_: there is a RFC that says no cnames in MX records. i don't recommend it.[04:03:06] <Samonoske_> okay i'll make an A record..[04:03:20] <dragonheart> much more standards[04:03:24] *** stickystyle has joined #postfix[04:03:29] <dragonheart> standard*[04:04:54] <Samonoske_> okay now A record now must wait till things change in like 2 min[04:06:44] <Samonoske_> okay dragonheart it's up now[04:08:37] <Samonoske_> connect to mail.renovotia.com[68.74.1.14]: Connection timed out (port 25)[04:08:39] <Samonoske_> new error[04:09:05] <Samonoske_> both domains are hosted on this server... thecondenser.com and renovotia.com[04:09:56] <basic`> hmm, This server is meant to run in front of the mail servers actually keeping the mail accounts -- i dont need an exchange server do i?[04:11:00] <basic`> the accounts are stored in a mysql db[04:12:31] *** cyr- has quit IRC[04:13:05] <dragonheart> basic`: no - but you'll needs a imap/pop3 service like dovecot / courier installed[04:14:52] <basic`> ah okay, using courier-imap :)[04:22:28] <rob0> Ewww, "need" MSexChange? What a bizarre thought![04:24:18] <rob0> Sam hasn't given a real problem description.[04:26:11] <basic`> rob0: i know, but it suggested it in the gentoo guide[04:26:51] *** bipolar has quit IRC[04:27:03] <Samonoske_> rob0 talking about me?[04:27:03] <basic`> !alias[04:27:05] <knoba> basic`: Error: "alias" is not a valid command.[04:27:10] <basic`> Samonoske_: no me[04:27:14] <Samonoske_> kk[04:27:57] <basic`> "This server is meant to run in front of the mail servers actually keeping the mail accounts"[04:33:20] <rob0> A Gentoo guide suggests MSexChange?[04:34:02] <rob0> Yes Sam, you haven't given a real problem description yet.[04:35:40] <rob0> Why are you trying to connect to mail.renovotia.com if you ARE mail.renovotia.com ?[04:40:36] <basic`> it doesnt suggest it, it just says ' i.e. Microsoft Exchange or Lotus Notes.'[04:40:41] *** `k_ has joined #postfix[04:41:12] <basic`> i would've assumed that courier-imap would have a mention[04:42:13] <rob0> Hmmm, even that sounds inappropriate to me. Those two monstrosities are absolute crap. If mail is important to your organization, stick to free software.[04:43:53] <rob0> !relayhost[04:43:53] <knoba> rob0: "relayhost" : a configuration parameter in the main.cf: The default host to send non-local mail to when no entry is matched in the optional transport(5) table. When no relayhost is given, mail is routed directly to the destination.[04:44:14] <rob0> Samonoske_: ^^ my best guess about your issue without really knowing what it is.[04:44:21] <rob0> <== afk[04:45:15] <rob0> (Um I should clarify, I think maybe your ISP blocks outbound port 25.)[04:45:17] <rob0> bye[04:53:09] *** `k has quit IRC[04:55:24] *** Zeit|awy_ has joined #postfix[05:01:27] *** Zeit|awy has quit IRC[05:03:57] <Samonoske_> rob0 it does[05:04:05] <Samonoske_> but shouldn't localhost mail work?[05:04:47] <Samonoske_> rob0 also i was reading something on port 587 being a smtp submission port... Is it possibility that I can use it?[05:15:25] *** stickystyle has quit IRC[05:15:52] *** `k_ is now known as `k[05:38:27] *** cyr- has joined #postfix[05:39:51] *** cyr- has quit IRC[05:51:39] *** boss has joined #postfix[05:52:21] <boss> hi, anhyone know if you can get postfix to do a "pull" email ? its over a firewall where only the internal can initiate the connect. thanks.[05:54:49] *** Motoko-chan has joined #postfix[05:59:06] <dragonheart> boss: pull from where - a specific server? - get the firewall fixed is my recommendation[05:59:45] <boss> specific server, yes, but can't do anything with the server unfortunately, it isn't able to allow incoming connections at all[05:59:51] <boss> firewall i mean[06:00:10] <`k> contact your domain administrator to allow connections through the firewall[06:00:58] <`k> or if what you want to do is pull the email down there is a fetch plugin on squirrelmail that will allow the server to pull email from another server at each login[06:01:29] <`k> that is a per account setting though useful when you are migrating mail systems 100% uptime[06:03:16] <boss> basically what i want is an ETRN that delivers on the same connection[06:09:20] <boss> fetchmail multidrop ?[06:10:07] <dragonheart> deliver over a portforwarded ssh connection that is scripted to be persistant[06:10:35] <dragonheart> there's a reason ETRN never really took off[06:10:56] *** nfsnobody has joined #postfix[06:11:14] <`k> I really just don't see a reason for this boss[06:11:54] <dragonheart> me neither - please rethink what your doing[06:12:52] <basic`> !transport_maps[06:12:52] <`k> running a mail server secretly behind company firewall... who knows[06:12:52] <knoba> basic`: "transport_maps" : a configuration parameter in the main.cf: Optional lookup tables with mappings from recipient address to (message delivery transport, next-hop destination). See transport(5) for details.[06:14:17] <boss> sure, but the transport_maps implies initiating a connection to the destination, which i can do[06:14:25] <basic`> that was for me, not you :p[06:14:36] <boss> ah ;)[06:15:53] <basic`> dragonheart: so i have a q about the transport_maps, the mysql virtual hosting guide has me create a transport table w/ domain and destintion -- this is the transport map correct?[06:18:54] <dragonheart> basic`: i haven' t played with virtual hosting before so i'll go with the i don't know option. gut feel its transports are something different from virtual maps but i'm not sure[06:20:13] <basic`> ah, hmm[06:20:44] <basic`> how does transport_maps tie in with amavis?[06:22:38] <dragonheart> amavis is a transport because it accepts smtp/lmtp connections[06:22:49] <basic`> ahh[07:02:53] *** mehulved_ has joined #postfix[07:04:34] *** mehulved has quit IRC[07:17:35] <basic`> err, does the ebuild not create an amavis user?[07:20:21] *** keffer has quit IRC[07:40:05] *** Zblakany has joined #postfix[07:59:47] *** joshhunt has joined #postfix[07:59:54] <joshhunt> Hello eveyone[08:04:46] *** keffer has joined #postfix[08:10:46] *** xnixan has quit IRC[08:18:09] <dragonheart> basic`: looking at the ebuild it does mail-filter/amavisd-new[08:18:14] <dragonheart> joshhunt: hi[08:19:22] <joshhunt> Im trying to set up postfix to send mail when i use mail(). It should also be noted that i am using google apps for my mail, so i full-scale set-up isnt required[08:19:27] <joshhunt> Hmm... ive had a look at my postfix logs, but i cant pick up anything...[08:19:27] <joshhunt> Can someone please take a look and tell me what is going wrong?[08:19:29] <joshhunt> http://massiveatom.com/files/mail.info[08:21:43] <dragonheart> authenticate to the google mail server if thats what your using for all your outgoing email[08:25:15] *** mehulved_ is now known as mehulved[08:32:00] *** stony_ has joined #postfix[08:40:36] *** wladek_ has quit IRC[08:43:48] *** stony has quit IRC[08:49:53] <joshhunt> dragonheart: Why would i want to do that? I want to send it directly from my server[08:56:15] *** j_s has joined #postfix[08:58:06] *** boss has quit IRC[09:02:41] <basic`> dragonheart: looks like it created it when i re-emerged it[09:12:44] *** xnixan has joined #postfix[09:15:14] *** xnixan has quit IRC[09:15:28] *** xnixan has joined #postfix[09:19:42] *** joshhunt has quit IRC[09:21:15] *** madrescher has joined #postfix[09:21:22] *** muecke77 has joined #postfix[09:23:48] *** muecke77 has quit IRC[09:37:19] *** Motoko-chan has quit IRC[09:39:30] <basic`> mail for domain.tld loops back to myself -- i got this after setting up amavisd, i'll pastebin my configs if they'll help[09:49:11] *** amrit|bbl is now known as amrit|zzz[09:59:54] *** war9407 has joined #postfix[10:11:01] *** Haris__ has joined #postfix[10:20:10] *** Haris__ has quit IRC[10:21:34] *** muecke77 has joined #postfix[10:28:47] <basic`> !biff[10:28:47] <knoba> basic`: "biff" : a configuration parameter in the main.cf: Whether or not to use the local biff service. This service sends "new mail" notifications to users who have requested new mail notification with the UNIX command "biff y".[10:29:18] *** Haris has quit IRC[10:47:49] *** loddafnir has joined #postfix[10:50:01] *** c00l2sv has joined #postfix[10:50:39] *** Vaidozas has joined #postfix[10:55:36] *** Vaidozas has quit IRC[11:05:13] *** Haris has joined #postfix[11:05:51] <Haris> Hello people[11:05:57] <Haris> Trengo: Well, spam is still seeping through[11:08:31] <war9407> take more anti-spam measurements! :)[11:08:56] <Haris> that's exactly what I asked for[11:10:45] *** Zblakany has quit IRC[11:12:17] <war9407> read jim seymours anti-uce faq[11:12:19] <war9407> to start[11:25:37] *** Zend_ has joined #postfix[11:26:12] <Zend_> Hi, where can I get a list of what all of the proper email headers are so my emails dont get filtered by junk mail filters?[11:38:38] *** Zend_ has quit IRC[11:47:17] *** stas_ has joined #postfix[11:53:02] *** hever has joined #postfix[12:00:00] *** stas_ has quit IRC[12:01:26] *** `k has left #postfix[12:02:44] *** [diablo] has joined #postfix[12:17:44] *** hemry has quit IRC[12:26:43] *** hemry has joined #postfix[12:37:14] *** pirho has joined #postfix[12:47:00] *** Draecos has joined #postfix[13:03:30] *** Tinozaure is now known as Tino[13:03:38] *** Tino is now known as Tinozaure[13:30:36] *** robboplus_ has quit IRC[13:30:57] *** muecke77 has left #postfix[13:58:49] *** robboplus has joined #postfix[13:59:32] *** denis__ has joined #postfix[14:05:12] *** Haris has quit IRC[14:34:22] *** Haris__ has joined #postfix[14:35:23][14:35:27] <cite> EWCHAN, sorry.[14:50:10] <dragonheart> np[14:55:38] <checkers> can anyone suggest how I can send outgoing mail on different IPs based on the sender's domain?[14:58:51] *** pa has joined #postfix[15:01:20] *** wdp has joined #postfix[15:06:36] *** Haris__ is now known as Haris[15:43:11] <dragonheart> checkers: (guess) transport maps perhaps. need to setup transports on different ips in master.cf though. need to sleep so i'm hoping this is on the right track[15:47:57] *** wdp has left #postfix[15:48:20] *** xpoint has joined #postfix[15:53:26] *** madrescher has quit IRC[15:54:26] *** muecke77 has joined #postfix[16:00:04] *** suuuper has joined #postfix[16:45:34] *** reiner_ has joined #postfix[16:54:34] *** Alocado has joined #postfix[16:54:39] <Alocado> hello[16:55:35] <Alocado> what could be the reason for this error (i'm working with postfix-mysql): warning: connect to mysql server localhost:3306: Can't connect to local MySQL server through socket '/var/run/mysqld/mysqld.sock' (2)[16:55:52] <Alocado> mysql is running, username and password are correct[16:58:43] <checkers> what happens if you try and connect to the database through that ocket?[17:02:31] <Alocado> it works.. ;)[17:02:36] <Alocado> i've found the problem...[17:02:44] <Alocado> postfix is working in chrooted environment[17:03:06] <Alocado> you have to force ip-connections with 'hosts = 127.0.0.1'[17:03:11] <Alocado> instead of hosts = localhost[17:03:49] *** muecke77 has left #postfix[17:08:19] *** Alocado has quit IRC[17:09:57] <mwalling> aren't chroots grand?[17:12:45] *** devdas has joined #postfix[17:12:59] *** reiner has joined #postfix[17:17:54] *** adaptr has joined #postfix[17:18:11] *** danbeck has joined #postfix[17:27:54] *** danbeck has quit IRC[17:28:47] *** alys has joined #postfix[17:29:08] *** alys has quit IRC[17:48:19] *** FJITA has quit IRC[17:55:44] *** reiner has quit IRC[17:55:58] *** reiner_ has quit IRC[18:14:30] *** [diablo] has quit IRC[18:19:04] *** roe_ has quit IRC[18:28:30] *** Sypher_ has joined #postfix[18:29:35] *** Sypher has quit IRC[18:33:34] *** nphase has joined #postfix[18:34:48] *** Maphor has joined #postfix[18:35:57] *** Draecos_ has joined #postfix[18:36:58] *** Draecos has quit IRC[18:44:37] *** nphase has quit IRC[18:54:30] *** Fallenou has joined #postfix[18:57:05] *** af_ has joined #postfix[18:57:07] *** seekwill has joined #postfix[18:57:07] *** Maphor has quit IRC[19:08:18] *** PhilKC has quit IRC[19:12:26] *** nphase has joined #postfix[19:22:07] *** pitakill has joined #postfix[19:27:21] *** af_ has quit IRC[19:32:45] *** tshine has quit IRC[19:51:45] *** nphase has quit IRC[20:01:11] *** JoaoCarneiro has joined #postfix[20:01:16] <JoaoCarneiro> ahoy[20:02:24] <JoaoCarneiro> i want to make postfix relay through a smarthost but with authentication, is that possible? anyone?[20:03:51] *** JoaoCarneiro has quit IRC[20:04:42] <mwalling> heh[20:08:21] <devdas> that was quick[20:09:37] <adaptr> commendable![20:10:18] *** JoaoCarneiro has joined #postfix[20:10:26] <JoaoCarneiro> ups[20:10:28] <JoaoCarneiro> back[20:10:33] <JoaoCarneiro> anyone replyed?[20:10:41] <JoaoCarneiro> my laptop whent down on me[20:10:43] <devdas> yes[20:10:43] <JoaoCarneiro> hehe[20:10:51] <devdas> The answer is yes[20:10:53] <adaptr> ewww nasty[20:10:53] <JoaoCarneiro> cool[20:11:01] <devdas> See http://www.postfix.org/SASL_README.html#client_sasl[20:11:05] <adaptr> now I need to worry about skanky laptops ?[20:11:10] <JoaoCarneiro> :)[20:11:38] <JoaoCarneiro> devdas, :)[20:11:40] <JoaoCarneiro> thsnks[20:12:12] <JoaoCarneiro> i think i might have a bad ddr memory[20:12:14] <JoaoCarneiro> but[20:12:17] <JoaoCarneiro> ...[20:12:22] <JoaoCarneiro> must memtest86[20:12:29] <JoaoCarneiro> takes hours...[20:12:36] <devdas> adaptr: only if they run Windows[20:12:54] <adaptr> what, are you telling me that free-thinking hippy laptops will never go down on me ?[20:13:10] <devdas> No[20:13:12] <adaptr> this sort of thing makes me remember why I am a capitalist[20:13:19] <devdas> they are known for their uptimes ;)[20:13:21] <adaptr> Vista here I come[20:13:23] <JoaoCarneiro> # relayhost = [mail.myisp.net]:submission[20:13:32] <JoaoCarneiro> what the submission stands for?[20:13:39] <adaptr> your solution[20:13:43] <devdas> adaptr, do you really want it to go down on you?[20:13:53] <devdas> JoaoCarneiro: grep submission /etc/services[20:14:11] <adaptr> devdas: no, but, comp0licated mens as we are in this here day and age, I would be sorely disappointed if she WOULDN'T :)[20:14:23] <adaptr> not that she SHOULD[20:14:39] <adaptr> but she should at least not be unwilling :)[20:14:58] <devdas> adaptr: it's vista, it will go down on you[20:16:00] <adaptr> yes, I think I will upgrade now, thank you[20:16:51] <JoaoCarneiro> i should put the brackets on [relayhost] so that it bypasses mx lookups, right?[20:16:58] <devdas> yes[20:17:47] *** wladek_ has joined #postfix[20:18:34] *** wdp has joined #postfix[20:19:36] <wdp> i want to reject all incoming mails, not coming from a specific ip[20:19:40] <wdp> how would i do that?[20:22:11] <devdas> Allow stuff from a given IP, reject everything else?[20:22:23] <devdas> Is stuff from that IP subject to further filteration?[20:23:18] <wdp> stuff from that ip is filtered.[20:23:24] <wdp> everything else should be rejected.[20:23:51] <wdp> we have two mailservers. the second isn't MX but it's recieving mails. as the second isn't filtered spam comes through.[20:23:59] *** GoGi has joined #postfix[20:24:14] <wdp> as the second isn't MX it should be safe to reject such things not coming from the first mailserver.[20:25:16] <devdas> check_client_access, reject?[20:25:29] <devdas> or just firewall port 25 off?[20:26:42] <JoaoCarneiro> devdas, iptables seems a good idea[20:27:14] <wdp> i'm not sure over what port clients are sending mails.[20:27:19] <wdp> the sending mailserver is the second one.[20:27:32] <wdp> if the clients are using port 25 for sending mails, using iptables would block that, too.[20:27:45] <devdas> wdp: ah[20:27:50] <wdp> in that case iptables would be bad. while check_client_access is a good idea.[20:27:52] <wdp> ty.[20:27:54] <devdas> that is why you need submission running[20:28:51] *** stickystyle has joined #postfix[20:29:18] <seekwill> vpn :)[20:29:28] *** stickystyle has quit IRC[20:29:39] *** stickystyle has joined #postfix[20:34:25] <JoaoCarneiro> devdas, if i follow that doc i get tls, right?[20:35:09] <JoaoCarneiro> i needed to get plain text, plain auth, smarthost[20:35:16] <JoaoCarneiro> any idea?[20:37:00] <devdas> JoaoCarneiro: SASL != TLS[20:37:12] * devdas linked you correctly[20:38:39] <JoaoCarneiro> :)[20:38:44] <JoaoCarneiro> i'm a bit noob on this[20:40:15] <JoaoCarneiro> devdas, how do i garantee that for that specific client i have no TLS/SSL[20:42:06] <devdas> JoaoCarneiro: if you don't enable TLS, you don't get TLS[20:42:27] <JoaoCarneiro> hehe, but i wanted it for client access[20:42:34] <JoaoCarneiro> but not for relay[20:42:52] <JoaoCarneiro> as it's required by my ISP[20:44:03] <mwalling> TLS is negotiated after connection[20:46:18] <JoaoCarneiro> mwalling, yes, but auth goes after[20:46:21] <JoaoCarneiro> imho[20:47:26] <mwalling> if your relayhost advertises STARTTLS, and you support TLS, then a TLS connection will be negotiated[20:47:59] <JoaoCarneiro> how can i force it to stick to plain smtp?[20:52:06] <adaptr> by.. not enabling TLS as a security method on SMTP ?[20:53:53] <JoaoCarneiro> adaptr, but if i did so, then my thunderbird would receive email in plain text[20:54:02] <JoaoCarneiro> and that was the deal...[20:54:10] <adaptr> is this yet another victim of the "smtp is not smtpd" erhm.. problem ?[20:54:32] <adaptr> JoaoCarneiro: let's get one thing perfectly straight up front: thunderbird does not, EVAH EVAH, receive mail[20:54:43] <seekwill> heh[20:54:45] <adaptr> it may *collect* it[20:54:45] <JoaoCarneiro> ok, it collects it via imap[20:54:56] <adaptr> fine, and ?[20:54:59] <adaptr> imap != smtp[20:55:06] <seekwill> It's not???[20:55:08] <seekwill> Since when?[20:55:16] <adaptr> sssh... late 2007 addendum[20:55:16] <JoaoCarneiro> ok, you're right i mixed it[20:55:27] <JoaoCarneiro> if i send an email[20:55:27] <adaptr> you were out smoking teh pot, remembe... oh never mind[20:55:29] <JoaoCarneiro> via smtp[20:55:37] <adaptr> yes, and.. no[20:55:47] <adaptr> you do not send an email with *postfix's* smtp[20:55:49] <adaptr> you cannot[20:56:06] <JoaoCarneiro> i'm starting to like your speech :)[20:56:08] <adaptr> your mail client connetcs to postfix's smtp*d*[20:56:22] <JoaoCarneiro> ok, and negociates TLS[20:56:30] <JoaoCarneiro> if i disabled it globaly[20:56:32] <adaptr> which is not related to smtp in any way (well, except for speaking the same protocol)[20:57:01] <adaptr> you can't[20:57:18] <adaptr> smtp and smtpd are ALWAYS treated separately in postfix[20:57:32] <adaptr> mail come in, mail go out[20:57:51] <adaptr> paint me green and call me yoda[20:58:12] <JoaoCarneiro> so what component does handle outgoing smtp email?[20:58:14] * devdas spraypaints adaptr black[20:58:20] <adaptr> the smtp service[20:58:28] <adaptr> of which you can have any number[20:58:36] <devdas> smtp(8), lmtp(8), local(8), virtual(8), relay(8)[20:58:41] <adaptr> with one being the most common[20:58:54] <adaptr> devdas: he did say *outgoing* *smtp* mail[20:59:15] <adaptr> anyhoo[20:59:34] * JoaoCarneiro grabs a couple of green spay paint cans[20:59:49] <adaptr> well, if you're going to spay me...[20:59:54] <JoaoCarneiro> hehehe[21:00:06] <adaptr> NEUTER NUETER SPAM COMPUTER[21:00:24] * adaptr wonders when, exactly, one would use spay paint[21:00:37] <adaptr> and whether one would want to know[21:06:35] <JoaoCarneiro> well, guy's i think i'm going out to dinner, appreciate your hints ;)[21:06:38] <JoaoCarneiro> thanks[21:06:44] <JoaoCarneiro> be back later[21:06:47] <JoaoCarneiro> :)[21:06:52] <adaptr> and we're not coming to dinner ?[21:07:03] <JoaoCarneiro> lol[21:07:05] <adaptr> this IRC job sucks balls[21:07:19] *** oxtail has joined #postfix[21:07:37] <JoaoCarneiro> adaptr, you's payed to answer in here?[21:11:00] <devdas> JoaoCarneiro: it was a joke[21:11:27] *** c00l2sv has quit IRC[21:11:40] <adaptr> JoaoCarneiro: I always expect ot get rewarded - don't you ?[21:11:45] <adaptr> else, why get out of bed[21:14:24] <JoaoCarneiro> lol[21:18:51] <JoaoCarneiro> hum[21:18:58] <JoaoCarneiro> new question:[21:19:32] <JoaoCarneiro> how to permit relay from mail submitted from a specific dns hostname?[21:19:48] <JoaoCarneiro> instead than from a trusted network[21:21:20] <adaptr> !relay_domains[21:21:20] <knoba> adaptr: "relay_domains" : a configuration parameter in the main.cf: What destination domains (and subdomains thereof) this system will relay mail to. Subdomain matching is controlled with the parent_domain_matches_subdomains parameter.[21:21:25] <adaptr> erm, sorry, no[21:21:27] <adaptr> damn[21:21:51] <JoaoCarneiro> i have a relay domains, but i believe that's for incoming mail, not for outgoing[21:22:00] <adaptr> !sender_dependent_relayhost_maps[21:22:02] <knoba> adaptr: "sender_dependent_relayhost_maps" : A configuration directive in main.cf for sender based message routing. See http://www.postfix.org/postconf.5.html# sender_dependent_relayhost_maps[21:22:10] <adaptr> that's the right one[21:22:22] <JoaoCarneiro> adaptr, :)[21:24:15] <JoaoCarneiro> this docs are dificult to understand, is there any info on the sintax?[21:24:31] <JoaoCarneiro> i see it is a map[21:24:40] <JoaoCarneiro> just like relay_domains[21:24:40] <devdas> all maps are alike[21:24:52] *** wdp has left #postfix[21:24:54] <JoaoCarneiro> so i place address@domain OK[21:24:56] <devdas> key value, value, values[21:25:04] <JoaoCarneiro> oh[21:25:08] <devdas> relay_domains is a list[21:25:32] <JoaoCarneiro> but what values? *@domain would be nice[21:25:49] <devdas> see what Postfix uses to query the map[21:25:56] <devdas> the return value is the relayhost[21:26:42] <adaptr> JoaoCarneiro: wildcarding is fully supported, yes[21:27:03] <JoaoCarneiro> so something like: *@domain [ip address][21:27:10] <JoaoCarneiro> would do it?[21:27:21] <adaptr> I hope you are aware that faking a sender address is trivial,, which is exactly WHY you normally relay based on networks or authentication[21:27:42] <JoaoCarneiro> yes, i understand that[21:27:50] <adaptr> caveat emptor et al[21:28:22] <JoaoCarneiro> however, this is only for a couple of day's until i get this auth issue sorted[21:28:36] <JoaoCarneiro> or my fixed ip address[21:29:18] <JoaoCarneiro> so i think it is a reasonable compromise[21:29:32] *** [diablo] has joined #postfix[21:29:34] <adaptr> it's a compromise alright ;)[21:29:37] <JoaoCarneiro> lol[21:30:35] <JoaoCarneiro> brb[21:31:04] *** Filbert has quit IRC[21:34:04] *** Ramattack has joined #postfix[21:34:06] <Ramattack> Hi!!![21:34:19] <Ramattack> I'm running a testing mailserver[21:34:21] <adaptr> oh look, it's our good freind Ramattack[21:34:25] <adaptr> yes, we know[21:34:31] <adaptr> for some time now[21:34:39] <Ramattack> :) lol[21:34:41] <sysmonk> like 4 months *cough*[21:34:54] <Ramattack> cough... let's see what it means[21:35:14] <Ramattack> :p[21:35:37] <adaptr> it means.. expectorate, heave, wallop... any more ?[21:37:08] <Ramattack> how do you mates :) mainly how goes that ISP sysmonk :)[21:37:20] <sysmonk> which ISP?[21:37:28] <adaptr> don't you remember ?[21:37:30] <Ramattack> I envy you by you're job[21:37:34] <sysmonk> did i miss something?[21:37:36] <sysmonk> :)[21:37:39] <Ramattack> remember what[21:37:44] <adaptr> stay off teh pot![21:37:46] <Ramattack> didn't you work on an ISP?[21:37:53] <sysmonk> Ramattack: i'm working IN a ISP[21:38:11] <Ramattack> that's it[21:38:16] <adaptr> I would think you're either working FOR one, or AT one[21:38:22] <sysmonk> by saying 'on a ISP' i'd think you're talking about me creating a new ISP[21:38:22] <adaptr> never heard of IN[21:38:24] <Ramattack> :) how are you're adventures there :)[21:38:24] <wladek_> what's the easiest way to implement a quota for a users /var/mail spool file?[21:38:29] <sysmonk> adaptr: right :P[21:38:39] <sysmonk> wladek_: system quotas[21:38:43] <adaptr> wladek_: with.. a quota on /var/mail ?[21:38:55] <sysmonk> Ramattack: as always.[21:39:05] <sysmonk> i'm more bussy with my studies right now ;/[21:39:07] <adaptr> but seriously, mbox is not of this century - use maildir[21:39:13] <wladek_> i've never actually used system quotas before[21:39:15] <Ramattack> wladek_, did you mean you use mailbox format?[21:39:19] <Ramattack> sysmonk, too much work?[21:39:39] <sysmonk> Ramattack: too much work in college...[21:39:51] <sysmonk> wladek_: simple, very simple[21:39:56] <Ramattack> I'm finishing now my postfix project... are you studing too?[21:40:06] <adaptr> you WHUT[21:40:17] <sysmonk> Ramattack: yes, i'm studying[21:40:19] <wladek_> ok.. i'll look into that[21:40:39] <Ramattack> :) nice then studing and working on an ISP too :)[21:40:48] <adaptr> sigh[21:41:03] <sysmonk> *cough* at an ISP *cough*[21:41:18] <adaptr> not *for* ?[21:41:18] <Ramattack> but are u scholar on the ISP or working working[21:41:34] <sysmonk> sorry don't get you :)[21:42:00] <adaptr> Ramattack: stop it with all the questions - he's not going to brownnose you in[21:42:43] <sysmonk> oh, btw, anyone works at/for ISP ?[21:42:43] <Ramattack> brownnose?[21:42:51] <sysmonk> i'm curious about security policies you've got[21:43:04] <Ramattack> you say for me?[21:43:04] <sysmonk> want to improve our companies security policies[21:43:24] <Ramattack> me not :)[21:43:46] <Ramattack> shit, what do you use normally for enforcing quotas in postfix sysmonk ?[21:44:07] <Ramattack> I normally but maildrop but I'm not very sure it¡s the best way[21:44:15] <sysmonk> postfix is a MTA, it's not postfix job to do quotas.[21:44:38] <Ramattack> but any ISP should enforce quotas...[21:44:46] <Ramattack> for they're users...[21:45:05] <Ramattack> naaa I'm having some troubles just now[21:45:07] <sysmonk> are you talking about mailbox quotas?[21:45:07] <adaptr> Ramattack: I'll repeat it: mailboxes are NOT the MTAs responsibility[21:45:18] <sysmonk> if so, then read what adaptr just repeated :)[21:45:25] <Ramattack> ;p[21:45:42] <adaptr> or else man local(8), or man deliver(8)[21:46:06] <Ramattack> there aren't too many ways of doing this... if you use virtual users and you don't use something at mta like maildrop you have nothing to do[21:46:12] <sysmonk> *cough* no such thing as deliver(8)[21:46:16] <sysmonk> local or virtual you meant adaptr :)[21:46:21] <adaptr> even though postfix comes with an MDA, it is not, strictly speaking, part of the MTA[21:46:41] <Ramattack> I now...[21:46:48] <sysmonk> Ramattack: as adaptr just said, postfix is ant MTA, not a MDA, and it's not postfix's job to do quotas.[21:46:59] * adaptr could have sworn it was one of postfix's processes[21:47:14] <Ramattack> it was just curiosity how did you enforced them...[21:47:22] <adaptr> Ramattack: if you want more control over that, install maildrop and use lmtp[21:47:32] <adaptr> or use dovecat like a sane person[21:47:37] <adaptr> miaaow[21:47:42] <sysmonk> sane people use cyrus, not dovecot[21:47:45] <sysmonk> ;PP[21:47:50] <adaptr> FLAMEWAR[21:47:52] <Ramattack> why not maildrop?[21:47:55] <adaptr> now yo dunnit[21:47:57] * sysmonk brings some oil[21:48:02] <sysmonk> where's the flame?[21:48:02] <sysmonk> ;)[21:48:04] <devdas> sane people use mutt and local(8)[21:48:13] <devdas> http://newsvote.bbc.co.uk/1/hi/world/americas/7430048.stm[21:48:13] <adaptr> PINE YER BASTARD[21:48:17] <devdas> @ sysmonk[21:48:28] <devdas> adaptr: mail(1)[21:48:41] <sysmonk> oh no, just not that[21:48:46] <adaptr> greybeard[21:48:46] <sysmonk> cat(1) ftw ![21:48:51] <adaptr> dog![21:49:05] <adaptr> I use dog and most, and y'all can all barf off[21:49:17] <sysmonk> and then echo(1) + uuencode(1) + sendmail(1)[21:49:19] <sysmonk> ;)[21:49:27] <sysmonk> adaptr: liar![21:49:30] <sysmonk> 06-01 22:47:38 < adaptr> miaaow[21:49:33] <sysmonk> that doesn't sound like a dog[21:49:35] <adaptr> sendmail ? I WROTE MY OWN SMTP CLIENT IN HASKELL< HMMKAY[21:50:01] <adaptr> and ran it through a perl obfuscator[21:50:16] <sysmonk> perl IS the obfuscator[21:50:18] <sysmonk> ;P[21:50:29] <adaptr> yes, imagine obfuscated perl[21:50:57] <sysmonk> boogie[21:50:57] <sysmonk> ;)[21:51:05] <adaptr> /disco![21:51:24] <adaptr> come one, let's all do that![21:51:29] *** muecke77 has joined #postfix[21:51:56] * sysmonk puts back the oil[21:51:58] <sysmonk> no more fire[21:52:57] * devdas does not like IMAP[21:53:13] <devdas> OTOH, I use pop3 because my desktop is more reliable than my server[21:53:18] <sysmonk> lol[21:53:34] <sysmonk> you could always do local caching with imap[21:53:34] <sysmonk> ;P[21:57:34] <devdas> nah, just an issue of reliability[22:00:47] *** madrescher has joined #postfix[22:12:53] *** [diablo] has quit IRC[22:18:01] *** Zblakany has joined #postfix[22:21:15] *** devdas has left #postfix[22:32:19] *** xpoint has quit IRC[22:35:50] *** Siegfried has joined #postfix[22:42:11] *** tshine has joined #postfix[22:44:01] <seekwill> How is your desktop more reliable than your server?[22:45:00] *** muecke77 has left #postfix[22:45:42] <JoaoCarneiro> seekwill, bad hardware...[22:46:03] *** denis__ has quit IRC[22:47:02] <adaptr> you misunderstand the question[22:47:21] <adaptr> if your server-hardware is less dependable than your desktop, it is not, strictly speaking, a server[22:47:57] <adaptr> the main definition of a server is "doesn't die as easily as your average Windblows piece of plastic"[22:48:14] <adaptr> I would quickly swap them around :)[22:48:16] * seekwill runs mission critical servers on Winblows[22:48:38] <adaptr> oh, so do we, but I am referring to the $300 desktop type, obviously[22:48:54] <adaptr> we run Windblows... on $25K server crap[22:48:56] * seekwill runs mission critical servers on $300 Winblows machines[22:49:09] * adaptr seeks out will-i-am for a righteous spanking[22:49:43] <adaptr> unless mission critical means quakeworld :)[22:49:49] *** PhilKC has joined #Postfix[22:50:32] *** nphase has joined #postfix[22:52:35] * seekwill runs mission critical services on a $300 Winblows machine with a dual T3 link[22:52:49] *** hever has quit IRC[22:54:12] *** roe has joined #postfix[22:54:51] <adaptr> ah, you spent all your money on Cisco gear :)[22:56:13] <JoaoCarneiro> adaptr, could be, lol[22:56:20] <JoaoCarneiro> at the prices they have![22:57:01] <adaptr> zactly[22:57:12] <adaptr> worth it, nevertheless[22:57:36] * seekwill uses dlink[22:57:55] * seekwill uses no-name realtek[22:58:34] <adaptr> are you an entrepeneur, by any chance ?[22:59:22] <seekwill> No, I'm your employee, remember? This is what you told me to do[22:59:38] <JoaoCarneiro> if he is it is likely that he will go down with his servers[22:59:43] <JoaoCarneiro> when it happens[23:00:12] <adaptr> seekwill: aaah, I remember now... and.. what was that bankaccount I gave you again ? never mind, I'll PM you the new one...[23:00:25] <seekwill> kthx[23:00:35] <adaptr> bankaccount *number*, darnit![23:02:20] *** stickystyle has left #postfix[23:04:30] *** hemry has quit IRC[23:05:27] <JoaoCarneiro> adaptr, i'm going nuts with this auth issue[23:05:38] <JoaoCarneiro> just can't seem to figure it out[23:05:47] <adaptr> look, it's easy[23:06:20] <adaptr> you map specific relay senders to specific relay transports, and add client auth to those[23:06:32] <adaptr> !relay_transport_maps[23:06:32] <knoba> adaptr: Error: "relay_transport_maps" is not a valid command.[23:06:36] <adaptr> aargh![23:06:43] <adaptr> something like that, anyway[23:07:43] <JoaoCarneiro> may i pvt?[23:08:27] *** Ramattack has quit IRC[23:09:32] <JoaoCarneiro> guess not[23:09:52] <JoaoCarneiro> http://info.mail.sapo.pt/autenticado/thunderbird.html#topo[23:10:00] <JoaoCarneiro> this is what the ISP demmands[23:10:12] *** Draecos_ has quit IRC[23:10:39] <seekwill> You'll be fine[23:10:55] <seekwill> If your postfix has TLS support or not, it won't matter[23:11:25] <JoaoCarneiro> but i keep getting my mail bounced[23:11:41] <JoaoCarneiro> my outbound[23:11:44] <JoaoCarneiro> email[23:11:58] <adaptr> yes, if they require your authentication, that probably means they really mean it[23:12:08] <seekwill> What does the bounce message say?[23:12:13] <JoaoCarneiro> http://info.mail.sapo.pt/autenticado/thunderbird.html#topo[23:12:15] <JoaoCarneiro> ups[23:12:15] <adaptr> so set up a relay transport to them, and map it as appropriate[23:12:18] <JoaoCarneiro> status=bounced (host smtp.sapo.pt[212.55.154.44] said: 553-Relaying denied 553[23:14:10] <adaptr> and what did you try to send ?[23:14:50] <JoaoCarneiro> a simple plain email[23:15:01] <JoaoCarneiro> from thunderbird via smtp[23:15:11] <JoaoCarneiro> that was relayed to the isp[23:15:17] <JoaoCarneiro> postfix/smtpd[7630]: warning: SASL authentication problem: unable to open Berkeley db /etc/sasldb2: No such file or directory[23:15:21] <JoaoCarneiro> i also have this[23:15:32] <seekwill> adaptr: Good luck with this one![23:15:38] <adaptr> yers.. never seen that one before! ;)[23:15:45] <adaptr> what a strange error message[23:15:56] <seekwill> It is pretty cryptic[23:16:23] <JoaoCarneiro> i saw an error on debian bugtracking[23:16:28] <JoaoCarneiro> just a moment ago[23:16:45] <JoaoCarneiro> where they stated that a wrong dir was mentioned somewhere[23:17:09] <JoaoCarneiro> but it was on another version of postfix[23:17:31] <JoaoCarneiro> postfix is on the sasl group[23:17:38] <JoaoCarneiro> and therefore has access[23:17:40] <JoaoCarneiro> unless[23:17:48] <JoaoCarneiro> there is some kind of chroot[23:17:54] <JoaoCarneiro> on postfix or sasl[23:17:59] <JoaoCarneiro> any hints?[23:18:54] <JoaoCarneiro> i folowed this: http://adomas.org/2006/08/postfix-dovecot/[23:18:59] <JoaoCarneiro> to setup and test[23:19:08] <JoaoCarneiro> and it validated the user[23:19:24] <JoaoCarneiro> so sasl should be ok[23:21:28] <JoaoCarneiro> :\[23:21:40] <JoaoCarneiro> just tested again and it validates the user[23:22:36] <JoaoCarneiro> and also[23:23:02] <JoaoCarneiro> * it does not complains about /etc/sasldb2[23:25:04] *** roe has quit IRC[23:37:05] <JoaoCarneiro> hum[23:37:22] <JoaoCarneiro> adaptr, just tested one thing, it might be the username i have[23:37:58] <JoaoCarneiro> any idea on what do do with '@' on the username?[23:38:01] <JoaoCarneiro> in these maps[23:38:15] *** Siegfried has quit IRC[23:47:12] *** action09 has joined #postfix[23:47:14] <action09> hi all[23:48:22] <action09> lines between parameters in smtpd_recipient_restrictions don't accept comments with # :([23:48:54] <action09> i wanted to add comments to detail these parameters but it wasn't a good idea :D[23:49:08] <action09> really strict[23:49:22] *** nphase has quit IRC[23:53:39] <rob0> I think it does work with [[:blank:]]# comment[23:55:56] <rob0> yes it does[23:56:44] <rob0> [[:blank:]]+# comment to be precise[23:56:58] <jonez> greetings.. I'm attempting to get sasl_auth working between two machines, "hermes" and "eros"[23:57:21] <jonez> my issue is when eros acts as smtpd and hermes as smtp[23:57:29] <Mez> JoaoCarneiro, I have to regularly sudo chown postfix:postfix /var/run/saslauthd[23:57:39] <jonez> I can telnet from hermes to eros and get an "authentication successful" message.