[00:00:25] *** hever has quit IRC
[00:05:58] *** brotig has quit IRC
[00:08:46] *** jaclinuxhelp has joined #postfix
[00:09:06] *** Fallenou has quit IRC
[00:09:24] <jaclinuxhelp> i have 2 internet gateways: ppp0 and eth0. it is possible to make postfix to send mail always through ppp0 ?
[00:09:57] <jaclinuxhelp> i have 2 internet gateways: ppp0 and eth0. it is possible to make postfix to send mail always through ppp0 ? (right now, if i change my default gateway, postfix sends through it)
[00:10:09] <Zelest> I would relay the mail to another mailserver using relayhost, and then route all traffic to that host through ppp0.
[00:10:46] <shasta> no need
[00:11:00] <shasta> Zelest, your metod requires a relayhost :)
[00:11:05] <shasta> !smtp_bind_address
[00:11:05] <knoba> shasta: "smtp_bind_address" : a configuration parameter in the main.cf: An optional numerical network address that the SMTP client should bind to when making a connection.
[00:11:19] <shasta> jaclinuxhelp, ^^^^^^
[00:11:31] <Zelest> isn't that only for listening on port 25?
[00:11:44] <Zelest> and not only sending?
[00:11:47] <shasta> sigh
[00:11:54] <shasta> !smtp!=smtpd
[00:11:55] <knoba> shasta: Error: "smtp!=smtpd" is not a valid command.
[00:11:58] <shasta> !smtpd!=smtp
[00:11:59] <knoba> shasta: "smtpd!=smtp" : Postfix smtpd_* and smtp_* configuration parameters are not the same thing. smtpd_ = server while smtp_ = client, the server-side receives mail whilst the client-side sends mail. (smtpd = server = receives mail) (smtp = client = sends mail)
[00:12:01] <shasta> Zelest, ^^^^^^^^^^
[00:12:39] <Zelest> aah
[00:12:41] <Gokee2> Anyone mind explaining to me (or telling of a web page that tells) why in my virtual_alias_maps if I do "test at domain dot com test" postfix sends the email off to dovecot for the user test but if I do "test at domain dot com test_domain" postfix sends the email off to dovecot for my catchall account?
[00:12:41] <jaclinuxhelp> ggrat shasta
[00:12:44] <jaclinuxhelp> great
[00:13:12] <Trengo> thats if the ip is always the same
[00:13:25] <jaclinuxhelp> that smtp_bind_address goes in main.cf ?
[00:13:34] <shasta> yes
[00:13:52] *** depquid has left #postfix
[00:14:29] <Gokee2> nevermind I think there is something off with the word test.....
[00:15:15] <rob0> No, smtp_bind_address cannot override the system routing table.
[00:15:36] <rob0> See the LARTC HOWTO for Linux routing.
[00:15:52] <jaclinuxhelp> shasta, if my ppp0 is dynamic IP, smtp_bind_address can be set to = ppp0 ?
[00:15:58] <jaclinuxhelp> or must be an IP address ?
[00:16:00] <rob0> ^^
[00:16:20] <shasta> no
[00:16:58] <shasta> (rob0 has point, tho)
[00:17:08] <shasta> source routing should do
[00:17:18] <Gokee2> How with a postfix setup feeding to dovcot should I go about making mail that goes to mailman at domain dot com exacute the command "|/usr/local/mailman/domain/mail/mailman post mailman"?  I can`t seem to get it to work even if I try hand writting a aliases file and virtual_alias_maps file.   What should go into those files?
[00:17:42] <rob0> !append_at_myorigin
[00:17:42] <knoba> rob0: "append_at_myorigin" : a configuration parameter in the main.cf: Append the string "@$myorigin" to mail addresses without domain information.
[00:18:17] <rob0> Gokee2: ^^ "@$myorigin" is appended to mail addresses without domain information.
[00:18:53] <jaclinuxhelp> shasta, so... to use ppp0 with any ip address it has... what must i do ?
[00:18:56] <jaclinuxhelp> it is possible ?
[00:19:41] <shasta> source routing + smtp_bind_address should do
[00:20:08] <Gokee2> rob0, Hmmm....   what do I do with that?  The email comes in with domain information...?
[00:20:36] <rob0> "test at domain dot com test" "test at domain dot com test_domain"
[00:21:14] *** jaclinuxhelp has quit IRC
[00:21:32] <rob0> Don't use unqualified addresses as targets in virtual_alias_maps.
[00:22:11] <Gokee2> I was trying to send the email to test_domain then in a local aliases map have test_domain send the email to the mailman command
[00:22:42] <Gokee2> Hmm
[00:22:43] <vice-versa> try test_domain@localhost
[00:23:12] <vice-versa> or test_domain@ <-- something valid from mydestination
[00:23:45] <Gokee2> then in the aliases map have "test_domain@localhost command"?
[00:23:57] <vice-versa> nope
[00:24:07] <rob0> aliases(5) != virtual_alias_maps
[00:24:16] <vice-versa> test_domain: command
[00:24:48] <rob0> and if "command" is a command, that's wrong syntax
[00:24:54] <Gokee2> aliases takes anything comming to localhost?
[00:25:13] <rob0> !address_classes
[00:25:13] <knoba> rob0: "address_classes" : http://www.postfix.org/ADDRESS_CLASS_README.html describes how Postfix deals with different classes of addresses: local, relay, virtual alias, virtual mailbox, and Internet.
[00:25:36] <rob0> aliases(5) is for local address class.
[00:26:11] *** tombar has quit IRC
[00:26:42] <Gokee2> Ok I will go read that
[00:27:01] <vice-versa> what i described will work
[00:27:08] <vice-versa> virtual(8) to local(8) aliases(5)
[00:27:57] <Gokee2> ahha  with the @localhost I get Mailman mail-wrapper: Group mismatch error.  Mailman expected the mail wrapper script to be executed as group "mailman", but the system's mail server executed the mail script as group "nogroup".  Try tweaking the mail server to run the script as group "mailman", or re-run configure,  providing the command line option `--with-mail-gid=nogroup'.
[00:28:22] <Gokee2> So it "worked" just not with the right group
[00:28:29] <vice-versa> indeed
[00:29:14] <Gokee2> Is there somewhere I can tell postfix what group to use for a aliases map?
[00:32:57] <Xcaliber009> Gokee2: Wb, however, doesn't postfix sync with /etc/aliases?
[00:34:06] <wols> only if you create the hash:// iirci
[00:34:53] <Gokee2> Xcaliber009, I think so...   But the mailman install needs its own alieses table
[00:35:52] <Xcaliber009> Gokee2: The other thing to check out would be the postmap
[00:37:13] <Gokee2> postmap?  What would I want to do to postmap?
[00:38:13] <Xcaliber009> check /usr/local/mailman/data/virtual-mailman
[00:39:07] <Gokee2> Thats what I have been changing around trying to make work
[00:40:05] <Gokee2> with the @localhost thing that feeds into aliases, and aliases almost works but then postfix uses the wrong group
[00:40:41] <Xcaliber009> oops then i'm looking at the wrong area
[00:41:17] <vice-versa> what are the owner and group on the aliases db?
[00:41:56] <vice-versa> iirc, postfix uses the owner of the aliases file(s) to determine the user and group under which they run
[00:42:08] <Gokee2> I think that is my problem
[00:42:10] <Gokee2> :)
[00:42:20] <vice-versa> make the group mailman
[00:44:38] <Gokee2> HAHA my email got to mailman
[00:45:27] <Xcaliber009> what file was that under?
[00:46:26] *** tshine has joined #postfix
[00:46:44] <Gokee2> data/virtual-mailman
[00:47:02] <Gokee2> I mean data/aliases
[00:47:44] <Xcaliber009> ah
[00:48:12] *** afallenhope has left #postfix
[00:48:37] <Xcaliber009> I'm stuck in the middle of a reinstall of postfix ATM :-P
[00:48:54] <Xcaliber009> running through the postconf's for smtp-auth :-(
[00:50:30] <Gokee2> I have my setup working :)
[00:51:11] <Gokee2> I spent three days on it
[00:51:36] <vice-versa> damn
[00:51:37] *** [diablo] has quit IRC
[00:52:51] *** tellus_ has joined #postfix
[00:53:57] <Xcaliber009> I've been working on this for a couple weeks, coming in newbie, and this project is starting to make me sick to my stomach
[00:54:19] <vice-versa> double damn
[00:54:27] <Xcaliber009> I just don't think that what my boss wants is going to work lol
[00:54:49] <Gokee2> Whats your boss want?
[00:54:50] <vice-versa> what does he want?
[00:55:12] <Xcaliber009> he wants 1 mailman list for 2 domains, 1 which doesn't have email and should be easy
[00:55:22] <Xcaliber009> the second using a domain that is already used with email
[00:56:01] <Xcaliber009> we have an outsourced email server that handles all of our emails via everyone.net
[00:56:57] <Gokee2> How are you planing to get email back from the outsourced server?
[00:57:44] *** tellus has quit IRC
[00:57:50] <Xcaliber009> but he wants the mailman list to share the same domain as our email, so our normal emails from soandso at domain dot net and our mailman lists will share the same name at domain.net :P
[00:58:22] <Xcaliber009> well, when i did the initial configuration to test, it seemed to work fine
[00:58:33] <Xcaliber009> all except for the new email addresses that it generated
[00:59:15] <Xcaliber009> so postfix would email out the response from creating a list, but you couldn't email back to the list for confirm or subscribe
[00:59:29] *** tellus has joined #postfix
[01:00:03] <Xcaliber009> i was originally using ubuntu desktop, but i just now rebooted with ubuntu server and am just finishing the install of postfix
[01:00:34] <Xcaliber009> i was sending our emails from postfix via the outsourced smtp server
[01:00:49] <vice-versa> so what is this, some kind of vanity issue with your boss?
[01:01:23] <Xcaliber009> i'm not sure what you mean?
[01:01:37] *** war9407 has quit IRC
[01:01:54] <Xcaliber009> 2 lists actually serve a company purpose, the other is just for his own personal use via the domain name that will be easier to configure
[01:02:28] <Xcaliber009> if you're referring to a vanity issue over the company name being part of the list name, then yeah probably
[01:02:47] <vice-versa> yes, that's what I meant
[01:02:56] <Xcaliber009> i recommended using just 1 new domain, let mailman configure the email addresses and postifx handle the delivery automatically
[01:03:03] <vice-versa> couldn't you use a subdomain?
[01:03:29] <Xcaliber009> have that on it right now
[01:03:40] <Xcaliber009> but its currently a C name, not an MX
[01:04:35] <vice-versa> make it an A and create a MX for the sub.domain.tld zone
[01:05:30] * Gokee2 has his mailman working on the same domain name as his normal email
[01:05:32] <Xcaliber009> i'm assuming that the emails that are created via postfix will then be soandso at sub dot domain.net?
[01:05:41] <Gokee2> But no strange outsouceing
[01:05:54] <Xcaliber009> yeah that really is the crappy part of it
[01:06:21] <Xcaliber009> if we were using our own unix-based MTA, this would have never been an issue
[01:06:48] <vice-versa> can that be fixed?
[01:06:49] <Xcaliber009> because then i could have configured the machine for apache2 and mailman and let it do all the work
[01:07:20] <Xcaliber009> too many customers, he is dead-set on keeping the other company, he claims because of the spamblocking and some other functions they perform
[01:07:34] <Xcaliber009> which I told him that postfix has the capability of as well...
[01:07:46] *** PhilKC has quit IRC
[01:08:01] <vice-versa> even more so as it will be under your control
[01:08:51] <Xcaliber009> very true
[01:09:13] <Xcaliber009> i called the company to get some help with it, their response was they don't generally support that kind of thing
[01:10:39] <vice-versa> but it's most likely a lost cause as you would most likely have better luck at shagging Kate Hudson
[01:11:26] * vice-versa loathes PHBs
[01:11:41] <thumbs> now that sounds like a good idea.
[01:12:19] <Xcaliber009> reverting to my previous question, changing to A name and creating an MX record will give the email addresses as soandso at sub dot domain.net?
[01:12:40] <vice-versa> yes
[01:12:47] <Xcaliber009> *whew
[01:12:49] <vice-versa> well not just that alone...but
[01:14:08] <Xcaliber009> ?
[01:16:56] *** tellus_ has quit IRC
[01:27:50] *** allan has quit IRC
[01:43:22] *** McJerry has quit IRC
[01:44:06] *** McJerry has joined #postfix
[01:48:36] *** stefan__ has joined #postfix
[01:51:49] *** tsh has quit IRC
[01:52:09] *** tsh has joined #postfix
[01:52:24] *** madrescher has quit IRC
[01:56:21] *** tsh has quit IRC
[01:56:41] *** tsh has joined #postfix
[01:59:47] *** hparker has quit IRC
[02:00:31] *** allan has joined #postfix
[02:05:05] *** stefan_ has quit IRC
[02:11:53] *** stefan_ has joined #postfix
[02:12:08] *** Zblakany has quit IRC
[02:17:27] *** Gothi[c] has left #postfix
[02:21:40] *** Xcaliber009 has quit IRC
[02:24:56] *** ming_zym has joined #postfix
[02:28:04] *** stefan__ has quit IRC
[02:28:09] *** stefan__ has joined #postfix
[02:33:09] *** stefan_ has quit IRC
[02:33:24] *** stefan_ has joined #postfix
[02:37:51] *** rcsheets has joined #postfix
[02:38:56] <rcsheets> ooh pretty graphs
[02:46:40] *** amrit|wrk is now known as amrit|bbl
[02:47:15] <will_> Graphs?
[02:47:39] <rcsheets> mail-trends in the topic
[02:48:08] <will_> ah
[02:48:36] <will_> Google always makes the purdiest stuff
[02:49:57] *** stefan__ has quit IRC
[02:50:10] *** stefan__ has joined #postfix
[02:53:11] *** stefan_ has quit IRC
[02:53:15] *** stefan_ has joined #postfix
[02:55:17] *** stefan__ has quit IRC
[02:55:34] *** stefan__ has joined #postfix
[02:57:14] *** tore has quit IRC
[03:01:09] *** m0f0x_ has quit IRC
[03:01:18] *** m0f0x has joined #postfix
[03:05:01] *** pirho has quit IRC
[03:08:07] <rcsheets> any thoughts on particularly awesome open-source webmail apps?
[03:11:06] *** Tachy_ has joined #postfix
[03:13:02] *** stefan_ has quit IRC
[03:13:07] *** stefan_ has joined #postfix
[03:15:43] *** cafuego has quit IRC
[03:15:54] *** cafuego has joined #postfix
[03:17:03] *** stefan__ has quit IRC
[03:17:25] *** stefan__ has joined #postfix
[03:22:51] *** Tachy has quit IRC
[03:23:05] *** githogori has quit IRC
[03:23:57] *** stefan__ has quit IRC
[03:24:10] *** stefan__ has joined #postfix
[03:29:06] <Korthrun> I dig roundcube a bit, though it's still growing
[03:29:33] <Korthrun> If you really hate yourself there's always horde/imp. they do great things, they do them well. configureing/maintaining them I've found to be an adventure
[03:29:41] *** cafuego has quit IRC
[03:29:52] <snadge> im a fan of squirrelmail, easy to install, easy to use
[03:30:00] <snadge> but it looks a little bit dated these days.. no ajaxy stuff
[03:30:13] <snadge> but that could also be a feature.. its very light weight
[03:30:56] <rcsheets> i don't particularly hate myself
[03:31:13] <rcsheets> i have squirrelmail but i'd like to offer an alternative for folks who want ajaxy glitz
[03:31:39] <snadge> give roundcube a shot, that has all that
[03:31:51] <snadge> its more like gmail than any other free webmail program i've seen
[03:31:52] <rcsheets> i think i tried roundcube once but it's been a while. i actually forget why i didn't continue using it.
[03:31:59] <rcsheets> is it pretty actively developed?
[03:32:22] <snadge> i'd presume so
[03:32:58] <rcsheets> their website is teh broken
[03:33:08] <rcsheets> does it work for anyone else?
[03:33:12] <rcsheets> roundcube.net
[03:33:58] <snadge> lol.. yeah their website is broken
[03:34:10] <snadge> maybe someone hacked it ;)
[03:34:14] *** ScottK has joined #postfix
[03:34:45] *** stefan_ has quit IRC
[03:34:49] <rcsheets> that's always a possibility
[03:34:57] *** stefan_ has joined #postfix
[03:35:00] *** cafuego has joined #postfix
[03:36:15] <rcsheets> their trac site seems healthy
[03:36:37] <snadge> i am tempted to post a message in the forum, saying that their website is broken
[03:36:59] <rcsheets> perhaps i'll open a trac ticket about it :)
[03:38:43] <snadge> i might install roundcube on the new mail server
[03:38:54] *** tellus has quit IRC
[03:39:06] <rcsheets> hmmm
[03:39:18] <snadge> just for giggles.. they use openwebmail which is ummm.. dodgy, it doesnt support imap
[03:39:28] <rcsheets> who's "they"?
[03:39:46] *** tellus has joined #postfix
[03:39:53] <snadge> oh maybe i should say we.. i meant the company i work for
[03:40:03] <snadge> i said they, because it wasnt my decision to use any of the stuff they're using ;)
[03:40:10] <roe> I have a weird problem
[03:40:13] <rcsheets> oh i see
[03:40:19] <rcsheets> hi roe. sorry to hear that.
[03:40:41] <roe> I have two mailservers, A, and B.  A is setup to be a the final destination for domain A and a gateway for domain B
[03:40:43] <snadge> roe: no.. your pee should not be red, that indicates a potentially serious health problem
[03:41:05] <rcsheets> snadge: could've just consumed a lot of red food coloring though
[03:41:23] <roe> I have an alias entry in /etc/aliases that points user@domainA to user@domainB
[03:41:26] <rcsheets> roe: so is B not accessible to the internet?
[03:41:39] <roe> B is accessible
[03:41:44] <rcsheets> ok
[03:41:55] <rcsheets> so mail could go straight to B or to B via A?
[03:42:19] <roe> when I connect via telnet to to A and send a message to user@domainA it ends up in user@domainB maildir, perfect.
[03:42:40] <roe> however, when I use gmail to send an email to user@domainA, I get relay access denied messages
[03:43:09] <roe> yes, if I didn't have parameters limiting that activity, mail could go right to B
[03:43:15] *** stefan__ has quit IRC
[03:43:23] <roe> A is my amavis/SA box
[03:43:50] <rcsheets> lok
[03:43:53] <rcsheets> ok even
[03:47:15] *** stefan__ has joined #postfix
[03:48:22] * rcsheets falls asleep
[03:48:28] *** stefan_ has quit IRC
[03:48:31] <rcsheets> best of luck with your relaying problem
[03:48:39] <roe> thanks
[03:48:40] <rcsheets> gotta go before i fill my keyboard with drool
[03:51:36] *** stefan_ has joined #postfix
[03:52:33] *** wols_ has joined #postfix
[03:54:52] *** wols has quit IRC
[03:58:50] <lunaphyte> !logs
[03:58:51] <knoba> lunaphyte: "logs" : by default, postfix logs to the mail facility of syslog. Something like grep -i `postconf -h syslog_facility` /etc/syslog.conf or grep -rl `postconf -h syslog_name` /var/log/* should tell you where logs are going.
[03:58:56] <lunaphyte> roe: ^^
[04:07:47] *** stefan__ has quit IRC
[04:07:55] *** stefan__ has joined #postfix
[04:11:13] *** stefan_ has quit IRC
[04:11:45] *** roe_ has joined #postfix
[04:11:49] <roe_> http://www.pastebin.ca/1050732
[04:11:59] <roe_> any able to help with the above issue?
[04:12:11] <roe_> it was too long to type into chat
[04:12:38] *** lunaphyte__ has joined #postfix
[04:14:12] *** stefan_ has joined #postfix
[04:17:27] *** idle-boy`` has quit IRC
[04:17:27] *** lunaphyte__ has quit IRC
[04:17:43] *** lunaphyte__ has joined #postfix
[04:18:06] *** lunaphyte__ has quit IRC
[04:18:32] *** lunaphyte has quit IRC
[04:18:46] *** lunaphyte has joined #postfix
[04:22:59] *** keffer has quit IRC
[04:23:26] *** idle-boy` has joined #postfix
[04:31:46] *** stefan__ has quit IRC
[04:32:03] *** stefan__ has joined #postfix
[04:38:25] *** killerchicken_ has joined #postfix
[04:39:01] *** stefan_ has quit IRC
[04:39:19] *** stefan_ has joined #postfix
[04:39:22] *** stefan__ has quit IRC
[04:41:58] *** idle-boy has quit IRC
[04:45:37] *** stefan__ has joined #postfix
[04:49:13] *** killerchicken has quit IRC
[04:53:48] *** irc___ has joined #postfix
[04:54:48] *** keffer has joined #postfix
[04:55:18] *** githogori has joined #postfix
[05:00:01] *** Zeit|awy_ has joined #postfix
[05:03:12] *** stefan__ has quit IRC
[05:03:19] *** stefan_ has quit IRC
[05:03:27] *** stefan__ has joined #postfix
[05:06:10] *** head has quit IRC
[05:07:10] *** Zeit|awy has quit IRC
[05:08:42] *** stefan_ has joined #postfix
[05:15:34] *** kalevra has joined #postfix
[05:15:54] <kalevra> hey, has anyone else been getting bouce emails from sbcglobal.net with error code 553?
[05:17:09] <kalevra> usually the 552 error code is caused by an unverified sbc account but my domain has nothing to do with sbcglobal.net other than sending email to it.
[05:21:43] <Dominian> nope
[05:25:42] *** stefan__ has quit IRC
[05:25:56] *** stefan__ has joined #postfix
[05:29:43] *** stefan_ has quit IRC
[05:30:57] *** echinos_ is now known as echinos
[05:33:16] *** stefan_ has joined #postfix
[05:33:42] *** master_o1_master has joined #postfix
[05:39:48] *** kalevra has quit IRC
[05:43:31] *** simon has joined #postfix
[05:44:08] <simon> hi. what's the fastest way to achieve a mail forward for a certain user; adding "user: foo at bar dot tld" in /etc/aliases doesn't seem to yield any effect.
[05:45:16] *** saurabhb has joined #postfix
[05:45:52] *** master_of_master has quit IRC
[05:46:13] <simon> ah, there's .forward, too.
[05:46:30] <simon> haha, trying to do some final changes to a system with 5 minutes of battery life left. :)
[05:50:47] *** stefan__ has quit IRC
[05:50:49] *** stefan__ has joined #postfix
[05:53:13] <Gokee2> Korthrun, I thought roundcube was at like .5? It is stable?
[05:54:19] *** bigredradio has joined #postfix
[05:55:53] <bigredradio> My goal is to send email via the mailx command or via script. However, emails are coming from user@localhost instead of my hostname.
[05:56:21] <bigredradio> If I change main.cf, my normal smtp setup no longer works. Any ideas?
[05:58:22] *** dMaggot has joined #postfix
[05:58:47] *** dMaggot has left #postfix
[06:02:37] *** stefan_ has quit IRC
[06:02:53] *** stefan_ has joined #postfix
[06:09:47] <Korthrun> Gokee2: I've been using it for a few months now with no issues. but the site i run it on consists of about 9 users
[06:10:44] *** stefan__ has quit IRC
[06:10:48] <Korthrun> but it went officially stable sometime earlier this year
[06:12:14] *** stefan__ has joined #postfix
[06:12:25] *** Motoko-chan has joined #postfix
[06:14:48] *** diqpib has quit IRC
[06:16:04] *** Korthrun has quit IRC
[06:20:07] *** tshine has quit IRC
[06:22:09] *** yopyop has quit IRC
[06:22:48] *** slackjr has joined #postfix
[06:26:52] *** Lap_64 has joined #postfix
[06:28:37] *** stefan_ has quit IRC
[06:28:51] *** stefan_ has joined #postfix
[06:32:28] *** stefan__ has quit IRC
[06:32:47] *** stefan__ has joined #postfix
[06:38:08] *** slackjr has quit IRC
[06:42:30] *** bigredradio has left #postfix
[06:48:49] *** stefan_ has quit IRC
[06:48:52] *** stefan_ has joined #postfix
[06:55:55] *** stefan__ has quit IRC
[06:56:05] *** stefan__ has joined #postfix
[07:05:49] <snadge> why is postfix now giving me "successful delivery report"
[07:05:58] <snadge> i upgraded from 2.2 to 2.3, didnt change any config settings
[07:07:32] <ScottK> What's an example of the exact log line you get?
[07:08:04] <snadge> its an email that appears in our support mailboxes
[07:08:20] <snadge> eg.. support person sends out email with a return receipt on it (im presuming)
[07:08:45] <ScottK> IIRC DSN support was added in 2.3, so that'd be why then.
[07:08:47] <snadge> then the mail server generates a message saying "Successful Mail Delivery Report"
[07:08:50] *** stefan_ has quit IRC
[07:09:02] <jeev> anyone running saslauthd.. mysql, virtual?
[07:09:03] <ScottK> Yeah.  That's a DSN that Postfix didn't support in 2.2.
[07:09:41] <snadge> how do i turn it off? :P
[07:10:26] <snadge> they're more interested in if the client has actually displayed the message than if their mail server has accepted it ;)
[07:10:52] <f3ew> snadge then they need a read receipt, not a delivery notification
[07:11:11] <f3ew> but the best you can get is a DSN actually
[07:11:31] * ScottK hands snadge http://www.postfix.org/DSN_README.html
[07:16:46] *** keanne has quit IRC
[07:21:26] <snadge> i dont quite understand what it means by disabling dsn support
[07:21:34] <snadge> does that mean i wont get delivery failure messages?
[07:22:37] *** simon has left #postfix
[07:23:11] <wols_> snadge: not possible to check if someone has read it
[07:23:33] <wols_> some companies (and spammers) use various techniques for know but none of them are foolproof. it's actually evil to do
[07:25:39] *** stefan__ has quit IRC
[07:26:03] <jeev> you guys mind typing saslauthd
[07:26:04] <jeev> if you have it
[07:26:07] <jeev> and tell me what mechanisms are supported
[07:26:43] <shasta> # saslauthd -v
[07:26:43] <shasta> saslauthd 2.1.22
[07:26:43] <shasta> authentication mechanisms: getpwent rimap shadow
[07:26:58] <jeev> hmm
[07:27:47] <jeev> saslauthd has --with-authdaemond
[07:27:51] <jeev> how come when i configure with that
[07:27:52] <jeev> build..
[07:27:54] <jeev> nothing happens
[07:28:07] <jeev> it doesn't add it anymore, i fucked up my postfix box and newfs'd it.. so i lost my configs
[07:28:12] <jeev> so i dunno how i used to do it
[07:29:31] *** seekwill has joined #postfix
[07:30:48] <wols_> jeev: what sasl mechanisms have you installed?
[07:31:59] <snadge> wols_: its not intended to be a foolproof or invasive method of determining whether someone has read the email.. its a support list, if people dont send back the read receipts.. thats fine
[07:32:29] <snadge> all im interested in at the moment.. is blocking the success messages.. not ALL dsn messages (including delivery failure)
[07:32:56] <jeev> i just want authdaemond
[07:32:58] <jeev> that's all i want.
[07:33:07] <seekwill> That's what you say now...
[07:33:28] <snadge> i cant remember what authdaemond does.. isnt it obsolete?
[07:33:57] <jeev> nope
[07:34:23] <jeev> authentication mechanisms: sasldb getpwent kerberos5 pam rimap
[07:34:50] <roe_> how do I tell postfix not to accept any mail from any server except the one I tell it is ok?
[07:35:16] <wols_> roe_: incoming or outgoing for sending?
[07:35:21] <roe_> incoming
[07:35:26] *** idle-boy has joined #postfix
[07:35:34] <ScottK> roe_: The most robust solution is to use iptables so it all just never makes it to Postfix.
[07:36:06] <shasta> roe, check_client_access
[07:43:03] *** qiyong has joined #postfix
[07:43:15] <qiyong> how do I watch the defered queue?
[07:43:18] <jeev> yea so i can't build authdaemond
[07:46:09] *** Lap_64 has quit IRC
[07:46:15] *** roe_ has quit IRC
[07:46:16] *** pitakill_ has quit IRC
[07:49:20] <jeev> http://www.freebsd.org/cgi/query-pr.cgi?pr=95102
[07:49:21] <jeev> how come that shits gone
[07:50:46] <snadge> so let me get this straight.. it is not possible to turn of DSN for successful mail, without also turning off failure/delay messages as well?
[07:50:52] <snadge> s/of/off
[07:52:13] *** roe_ has joined #postfix
[07:53:32] <roe_> mind if I paste 4 lines in or should I paste bin it?
[07:53:49] <jeev> dunno
[07:53:50] <jeev> nobody
[07:54:30] <roe_> smtp_client_restrictions =
[07:54:30] <roe_>         check_client_access hash:/etc/postfix/client_access,
[07:54:30] <roe_>         permit_sasl_authenticated,
[07:54:30] <roe_>         reject
[07:54:54] <roe_> that should accept connections from only what is in client_access and those that authenticate correct?
[07:56:03] *** qiyong has left #postfix
[07:56:51] <roe_> nm, fsking typos
[07:57:28] <jeev> rpe
[07:57:29] <jeev> roe
[07:57:30] <jeev> no idea but
[07:57:34] <jeev> do you have smtpd auth working?
[07:57:40] <jeev> saslauthd -V please
[07:57:42] <jeev> what are your mechanisms
[07:59:21] *** Fallenou has joined #postfix
[07:59:55] <shasta> sigh
[08:02:07] *** seekwill has quit IRC
[08:04:45] *** madrescher has joined #postfix
[08:05:50] <roe_> saslauthd is definitely working
[08:05:56] <roe_> I've been using it for weeks
[08:06:06] <jeev> no
[08:06:06] <jeev> roe
[08:06:10] <jeev> sorry
[08:06:15] <jeev> could you run roe_ and paste me your mechanisms
[08:07:45] <roe_> !tell roe_ check_client_access
[08:09:21] <jeev> you're going to just ignore me ?
[08:09:29] <jeev> you could possibly be the savior to two days of headaches.
[08:10:05] *** m_p has joined #postfix
[08:14:40] *** bhagat has joined #postfix
[08:14:49] *** bhagat_ has joined #postfix
[08:16:08] <roe_> as much as I'd like to help you, I am fighting my own problems as well jeev
[08:16:23] <roe_> when I finish figuring out my issues, I can give you some of my attention
[08:17:25] *** sophokles has joined #postfix
[08:19:35] *** stefan-f has joined #postfix
[08:20:03] <jeev> wow
[08:20:03] <jeev> roe
[08:20:07] <jeev> dood all i asekd you to do
[08:20:12] <jeev> was type saslauthd on your server
[08:20:15] <jeev> and tell me what meechanisms it is
[08:20:17] <jeev> wow
[08:20:19] <jeev> are you kidding me man ?
[08:20:29] <jeev> i just lost 140 gigs of unrecoverable data
[08:20:29] <shasta> jeev, start
[08:20:31] <shasta> erm
[08:20:34] <shasta> jeev, stop
[08:20:35] <jeev> and i'm sitting here for 2 days
[08:20:35] <shasta> typing
[08:20:36] <shasta> like
[08:20:37] <shasta> that
[08:20:39] <shasta> 'cause
[08:20:42] <shasta> it's
[08:20:44] <shasta> annoying
[08:20:50] <jeev> i dont understand man
[08:21:31] <jeev> roe_: i'm not asking for attention, i'm hoping you'll just tell me what mechanisms show up when you type 'saslauthd'
[08:21:58] <f3ew> saslauthd 2.1.19
[08:21:58] <f3ew> authentication mechanisms: getpwent kerberos5 pam rimap shadow ldap
[08:22:04] <jeev> thank you
[08:22:06] <jeev> so much
[08:22:06] <f3ew> RHEL 4.x
[08:22:10] <jeev> but i needed roe's
[08:22:13] <jeev> f3ew
[08:22:19] <jeev> are you using authdaemond?
[08:23:55] <shasta> jeev, for god's sake. you'd probably die if I took out the "enter" key from your keyboard? seems like you are used to it just like to breathing
[08:24:27] *** amrit|bbl is now known as amrit
[08:24:35] <jeev> ;/
[08:24:43] *** Jax has joined #postfix
[08:24:46] <jeev> i dont understand that guy
[08:25:02] <Jax> morning
[08:25:34] <jeev> hi
[08:25:49] <f3ew> no
[08:25:58] * f3ew uses rimap
[08:26:10] <jeev> yea, see
[08:26:17] <jeev> roe_ uses what i need.. but he wont give me an output
[08:26:22] *** af_ has joined #postfix
[08:26:31] <jeev> or maybe he doesn't, either way..
[08:26:57] <roe> saslauthd 2.1.22
[08:26:57] <roe> authentication mechanisms: sasldb getpwent kerberos5 pam rimap shadow ldap
[08:27:26] <roe> gonna stop whining?
[08:27:59] <jeev> thank you
[08:28:01] <jeev> now go kill yourself
[08:28:24] <jeev> i can't believe you made me sit here and beg for half an hour
[08:28:28] <jeev> you inconsiderate idiot
[08:28:38] <shasta> f3ew, can you, please?
[08:32:17] <f3ew> kickban for being annoying?
[08:32:36] *** ChanServ sets mode: +o shasta
[08:33:04] * vice-versa smells blood
[08:34:08] * Jax lifts an eyebrow
[08:35:48] *** madrescher has quit IRC
[08:37:49] *** syneus has joined #postfix
[08:39:55] *** kk_CHN has joined #postfix
[08:41:28] *** diqpib has joined #postfix
[08:41:45] <roe> is this the morning shift coming ?
[08:48:17] *** af_ has quit IRC
[08:50:30] <Gokee2> Wow...   That should go on a "what no to do when getting help on irc" page.
[08:55:00] *** Internat has quit IRC
[08:56:35] *** [diablo] has joined #postfix
[08:56:40] *** internat85 has joined #postfix
[08:56:59] *** phnord has joined #postfix
[08:58:33] <jeev> what's the safe and secure method to send mail? saslauthd?
[09:01:08] <roe_> TLS is the preferred secure method of communication between the mua and the mta
[09:01:14] <vice-versa> !tls
[09:01:14] <knoba> vice-versa: "tls" : short for "Transport Layer Security" (RFC2246). It adds an additional layer of encryption to protocols like SMTP, POP3 or IMAP to improve security during transmission over the internet. You can find HOWTOs on that topic on http://www.postfix.org/docs.html
[09:01:31] <jeev> thanks
[09:01:37] <jeev> that includes smtpd authentication ?
[09:01:37] *** Motoko-chan has quit IRC
[09:01:50] <vice-versa> !tls_readme
[09:01:50] <knoba> vice-versa: "tls_readme" : http://www.postfix.org/TLS_README.html : Transport Layer Security (TLS/SSL) features in Postfix
[09:02:14] <jeev> ah, that's pretty much what i'm doing.. i just gotta get the verification working. i think i got it
[09:09:16] *** tellus has quit IRC
[09:18:37] *** master_o1_master is now known as master_of_master
[09:24:44] *** bhagat has quit IRC
[09:24:44] *** bhagat_ has quit IRC
[09:26:00] <Ed_away> nick Edheldil
[09:26:05] *** Ed_away is now known as Edheldil
[09:26:14] <Edheldil> Hi, I use postfix+procmail to deliver mail to users with usernames of the 'name@domain' kind. These users are authorized by an NSS module. The problem is that when there's a problem delivering to "user@domain" 's maildir (overquota, no such user), postfix/procmail tries to deliver to "user domain". Any idea what I am doing wrong?
[09:26:42] *** internat85 has quit IRC
[09:28:42] *** tellus has joined #postfix
[09:30:44] *** archvile has joined #postfix
[09:31:58] *** kk_CHN has quit IRC
[09:32:02] *** kk_CHN has joined #postfix
[09:34:35] *** internat85 has joined #postfix
[09:34:54] <jeev> c84df360 stream 0 0 c6492bb0 0 0 0 /var/run/authdaemond/socket.tmp
[09:34:56] <jeev> could that be my problem
[09:36:58] <jeev> :0
[09:45:37] *** Joelwork has joined #postfix
[09:46:40] <jeev> if i kill saslauthd, it still sort of works......
[09:46:48] <Joelwork> Hi, I have sasl running with saslauthd and pam+mysql, Im currently using the PLAIN LOGIN method, I want to disable the others CRAM-MD5 DIGEST-MD5
[09:46:54] <Joelwork> how do I do that?
[09:47:54] <jeev> what's your smtpd.conf look like?
[09:48:11] <Joelwork> jeev: I dont have CRAM-MD5 DIGEST-MD5 in my mech_list:
[09:48:16] <Joelwork> just PLAIN LOGIN
[09:48:56] <Joelwork> pwcheck_method:saslauthd
[09:48:56] <Joelwork> mech_list: plain login
[09:48:56] <Joelwork> log_level: 7
[09:50:05] <Joelwork> jeev: my bad, I didnt restart postfix
[09:50:10] <Joelwork> just saslauthd
[09:50:18] <Joelwork> thanks anyway :p
[09:50:41] <jeev> heh
[09:50:43] <jeev> no prob
[09:50:53] <jeev> i'm so stuck too
[09:51:06] <Joelwork> with?
[09:51:14] <jeev> saslauthd / mysql
[09:51:18] <jeev> hold up a sec, i'm gettin somewhere
[09:51:24] <Joelwork> oh, you use pam?
[09:51:55] <jeev> 68295 smtpd NAMI "/var/run/authdaemond/socket"
[09:51:55] <jeev> 68295 smtpd RET connect -1 errno 13 Permission denied
[09:51:57] <jeev> i got to there so far
[09:51:58] <jeev> nope
[09:52:27] <jeev> so let me fix permies
[09:54:05] *** idle-boy has quit IRC
[09:54:12] *** ultrav1olet has quit IRC
[09:54:22] <Joelwork> strace always helps
[09:54:34] *** ultrav1olet has joined #postfix
[09:54:41] <jeev> yea, i'm using bsd..
[09:54:42] <jeev> using ktrace
[09:54:42] <jeev> heh
[09:54:43] <jeev> 68412 smtpd NAMI "/var/run/authdaemond/socket"
[09:54:43] <jeev> 68412 smtpd RET connect -1 errno 13 Permission denied
[09:54:45] <jeev> i dont understand
[09:54:50] <jeev> courier:courier, it has read all
[09:55:32] <jeev> it's not chrooted.. hmm i wonder
[09:56:03] * wols_ wonders why smtpd needs read perms on a socket
[09:57:36] *** war9407 has joined #postfix
[09:59:03] <jeev> it's in smtpd.conf
[10:00:39] <jeev> i could smell it, hrmf
[10:06:18] *** amrit is now known as amrit|zzz
[10:08:02] *** Jax has quit IRC
[10:09:45] <jeev> wow
[10:09:47] <jeev> daemon wont respond now heh
[10:10:04] *** idle-boy has joined #postfix
[10:10:17] *** f3ew has quit IRC
[10:12:30] <jeev> wow
[10:12:31] <jeev> lol
[10:14:29] <jeev> note to self, make sure you chown the proper user.
[10:21:37] <jeev> next on the list
[10:21:39] <jeev> figure out spamassassin
[10:21:44] <jeev> DKIM..
[10:27:18] *** HendrikAndresen has joined #postfix
[10:27:24] <HendrikAndresen> hello
[10:27:36] <HendrikAndresen> i have a problem with postfix
[10:28:39] <sysmonk> you don't.
[10:28:47] <HendrikAndresen> i get this message in var/mail/mail.log Jun 19 10:18:46 ing-gdp postfix/trivial-rewrite[3134]: warning: do not list domain ing-gdp.de in BOTH mydestination and virtual_mailbox_domains
[10:29:15] <sysmonk> so, what don't you get about that message?
[10:29:18] <sysmonk> it says what to NOT do
[10:30:11] <jeev> what's the sexiest webmail, i need to have a sexy one
[10:30:35] <sysmonk> roundcube ?
[10:30:38] <HendrikAndresen> i am from germanyand i undederstand this message that this domain must have two entry, each on ion both
[10:30:38] <jeev> ahh
[10:30:39] <sysmonk> porncube
[10:30:40] <sysmonk> ;)
[10:30:42] <jeev> my friends bitch about roundcube
[10:30:53] <sysmonk> harlan: no, it says NOT to have that
[10:30:59] <sysmonk> you must have it only in ONE of those places
[10:31:01] <sysmonk> not in BOTH
[10:31:11] <wols_> HendrikAndresen: nein es sagt das gegenteil
[10:31:33] <sysmonk> yeah, right, let's start talking in your native language
[10:31:38] <wols_> du hast die gleiche domain in mysdestination und virtual_mailbox_domains wenn du es nur in einem der beiden haben solltest
[10:31:51] <wols_> sysmonk: just explaining him the error message.
[10:31:52] <sysmonk> wols_: matau megsti sneketi vokiskai? :)
[10:31:59] <wols_> so he actually understands it
[10:32:05] <sysmonk> wols_: PM ? :)
[10:32:09] <wols_> no
[10:32:26] <jeev> UCLA uses imp
[10:32:44] <sysmonk> jeev: horde is suuuuch a .... um... monster ;)
[10:32:46] <jeev> ya
[10:32:49] <jeev> what's up with that thing
[10:32:53] <sysmonk> maybe i'd use it, but it's a monster, a big one
[10:33:15] <sysmonk> jeev: download horde, and download squirrelmail/roundcube
[10:33:20] <sysmonk> and check how much code they have
[10:33:26] <HendrikAndresen> thanks
[10:33:27] <sysmonk> i bet horde has atleast twice more ;)
[10:34:27] <jeev> yea
[10:34:33] <jeev> i dont care, as long as people dont bitch
[10:34:36] <jeev> why would i care about the code ? :D
[10:35:24] <wols_> jeev: then run exchange+OWA. nice outlook webmail, people will love it!
[10:35:45] <jeev> hahahaha
[10:35:53] <jeev> wols_, why dont you help hang me?
[10:36:15] <wols_> you do it well on your own: you want to use horde. why need my help?
[10:36:34] <jeev> to hang myself (if you're asking me to use exchange)
[10:37:25] <wols_> if you still don't get what I told you, you're hopeless
[10:37:38] <jeev> i get what you told me
[10:37:48] <jeev> but what do you want me to do. i dont get the issue here
[10:37:53] <jeev> just cause it has twice as more code, i shouldn't use it ?
[10:40:22] <jeev> ya, i'm done with qmail.
[10:44:13] *** af_ has joined #postfix
[10:48:13] <HendrikAndresen> @sysmonk thanks a lot it works
[10:52:40] <jeev> k
[10:52:41] <jeev> running horde
[10:52:42] <jeev> it's decent
[10:58:34] *** f3ew has joined #postfix
[11:03:16] *** new has joined #postfix
[11:03:35] <new> how to check postfix setup
[11:04:03] <wols_> check in what way?
[11:05:00] <sysmonk> automagicaly
[11:05:01] <dragonheart> test your configuration according to your design critieria
[11:05:08] <sysmonk> dragonheart: hah, good answer
[11:05:09] <sysmonk> :P
[11:05:34] <new> whether it is working properly so that mails can be send from applications
[11:05:35] <Edheldil> wols_: unless you use IE, OWA can't search in messages, which is major PITA
[11:05:52] <dragonheart> thanks - didn't even need any postfix knowlege for that one
[11:06:22] <wols_> Edheldil: what else would you use, you use exchnage and OWA after all :)
[11:06:43] <sysmonk> ahhh
[11:06:48] <sysmonk> so OWA can only search with IE ?
[11:07:01] <sysmonk> damn, and i was searching for teh search button for 20 minutes
[11:07:01] <sysmonk> ;)))
[11:07:25] <wols_> you need good software which plays well toegether. weren
[11:07:28] <Edheldil> wols_: I use firefox on freebsd
[11:07:30] <wols_> weren't you taught that?
[11:07:36] <sysmonk> Edheldil: ++ ;)
[11:08:11] * wols_ thinks there should be mandators sarcasm detector checks
[11:08:43] <sysmonk> wols_: see, Edheldil does use a GOOD software, which plays well together
[11:08:56] <sysmonk> and owa is a bad software, and it doesn't play with any other kids
[11:09:05] <jeev> if only i could get horde to stop showing administratof ro everyone
[11:09:12] <Edheldil> wols_: I got it, not worry :). Just if I could (not that I want to) use IE, I would use OE :)
[11:09:15] <sysmonk> jeev: #horde
[11:09:23] <wols_> sysmonk: blasphemy!
[11:10:34] *** new has quit IRC
[11:12:13] <Edheldil> (err, Outlook, not OE, of course)
[11:13:13] <Edheldil> Does anybody have a clue?, I use postfix+procmail to deliver mail to users with usernames of the 'name@domain' kind. These users are authorized by an NSS module. The problem is that when there's a problem delivering to "user@domain" 's maildir (overquota, no such user), postfix/procmail tries to deliver to "user domain". Any idea what I am doing wrong?
[11:23:16] *** idle-boy has quit IRC
[11:33:30] *** thumbs has quit IRC
[11:43:39] *** af_ has quit IRC
[11:43:47] *** f_ has joined #postfix
[11:43:51] <f_> hello
[11:44:41] <f_> ive ave a little issue with postfix 2.4.6-r2
[11:45:15] *** thumbs has joined #postfix
[11:45:29] <f3ew> what?
[11:45:32] *** diqpib has quit IRC
[11:46:34] <f_> the error in logs is related to a error in a comunication wuth amavisd
[11:46:46] <sysmonk> oh how much information!
[11:47:18] <sysmonk> lower the debug level as with THAT MUCH information we don't even know where to start :P
[11:47:18] <f_> but i can't find the problem, the error is (host 127.0.0.1[127.0.0.1] said: 451 4.5.0 From MTA([127.0.0.1]:10025) during fwd-connect (Negative greeting:  at (eval 64) line 442, <GEN115> line 77.):
[11:47:50] <sysmonk> f_: the smtpd which gets the mail from amavisd has too low max proc
[11:47:56] <sysmonk> make it higher
[11:48:20] <f_> it that?
[11:48:44] <f_> i must set more connection?
[11:49:33] <f_> no i've tried but is not the real problem
[11:50:31] <f_> my question is, the timeout problem is caused by postfix or amavis?
[11:50:59] <sysmonk> i don't think you tried it
[11:51:12] <sysmonk> pastebin you're master.cf
[11:51:17] <f_> oki
[11:52:31] <f_> http://rafb.net/p/dwxKQt98.html
[11:54:37] *** jelly has left #postfix
[11:54:49] <f_> now postfix work with tath master.cf
[11:55:00] *** jelly has joined #postfix
[11:57:36] <f_> there are errors in the main.cf?
[11:57:51] <f3ew> f_ there shoould be a corresponding error in the logs from Postfix
[11:57:54] <f3ew> should*
[11:58:40] <f_> yes but in this case i not reach to find the problem :(
[12:00:13] <f_> ive search in google, forum mailing list, but it seem a time out problem
[12:02:22] <f_> postfix 24.6.r2 differ to much to the old versions?
[12:02:42] <f_> i mean postfix 2.5
[12:03:20] <f_> sorry for the missing dot
[12:03:56] <sysmonk> f_: check if you can connect fine to 127.0.0.1 10025
[12:04:03] <sysmonk> and send an email
[12:04:11] <sysmonk> but 10025, not 25
[12:04:14] <f_> ok
[12:05:13] <f_> opss i not ave a promt
[12:05:19] <f_> prompt
[12:06:16] <f_> after the ehlo postfix don't return a response
[12:07:06] <sysmonk> there should be an error in the logs why it didn't
[12:07:36] <sysmonk> anyway, you know where's the problem, i'm going afk so f3ew will help ya fix it :P
[12:10:23] <f_> ok tanks sysmonk
[12:11:00] *** martianixor has joined #postfix
[12:11:21] <f_> but in the logs dont compare any
[12:19:20] <f3ew> f_ Postfix always logs errors
[12:21:07] <f_> mmm not always ( or im miss the trace flag)
[12:21:55] <f_> but the problem is relativa at the option -o myhostname=
[12:22:04] *** diqpib has joined #postfix
[12:22:13] *** PhilKC has joined #Postfix
[12:22:17] <f_> i've set a domain and not a host
[12:23:04] <f_> now is work, tanks
[12:23:45] *** idle-boy`` has joined #postfix
[12:30:31] *** jra has joined #postfix
[12:32:00] *** ramy has joined #postfix
[12:34:13] *** hever has joined #postfix
[12:43:04] *** cpm has joined #postfix
[12:44:00] *** idle-boy` has quit IRC
[12:50:42] *** _Bukazoid has joined #postfix
[12:50:56] *** havvg has joined #postfix
[12:50:57] <_Bukazoid> Hello! Anybody russian here?
[12:51:12] * sysmonk is lithuanian
[12:51:19] <sysmonk> but i do speak russian ( translit only )
[12:51:38] <_Bukazoid> sysmonk, ??? ????? ???????
[12:51:55] <sysmonk> _Bukazoid: yes i do, but please speak english only in the channel
[12:54:25] <_Bukazoid> sysmonk, go to privat?
[12:55:25] <sysmonk> k
[13:02:54] *** killerchicken_ is now known as killerchicken
[13:02:56] <ramy> I woder if it possible to use LMTP delivery to deliver multi-recipient emails to different LMTP backend based on the account.. currently, I am only able to make postfix deliver to a single LMTP server
[13:06:00] <f3ew> ramy per recipient transport_maps
[13:07:44] <ramy> f3ew: I tried to use "transport_maps = inet:127.0.0.1:2233", so that I can provide mapping through external service, but that didn't work
[13:09:10] <ramy> I can't use hash maps for this because the MAP is very dynamic
[13:09:30] <ramy> isn't it possible to use inet maps with transport_maps
[13:09:32] <ramy> ?
[13:10:33] <sysmonk> ramy: where do you get the maps from?
[13:10:42] <sysmonk> are they stored in mysql ? postgresql? ldap?
[13:11:02] <sysmonk> or is it only you who know which user is where? :)
[13:11:09] <sysmonk> dynamic-in-head-maps ;P
[13:11:31] <ramy> sysmonk: from mysql
[13:11:45] <sysmonk> then use a mysql table map for that
[13:11:58] <ramy> but I wish to use external program to be able to cache the map in memory
[13:11:58] <sysmonk> you can do transport_maps = mysql:/etc/postfix/mysql_transport_maps.cf
[13:12:08] <sysmonk> and specify the required query in that map to get the ip of the server
[13:12:57] <sysmonk> ramy: mysql does cache the results...
[13:12:58] <ramy> sysmonk: the problem with mysql maps is that for a single email, many queries are made
[13:13:01] <sysmonk> unless you have query cache off
[13:13:36] <sysmonk> ramy: if first query returns something, other queries aren't done
[13:13:42] <ramy> sysmonk: AFAK, mysql only caches the result is queries with exactly identical
[13:14:06] <sysmonk> ramy: yes, and why will your queries won't be identical ?
[13:14:32] <sysmonk> one query will be done for ramy at domain dot com -> will be cached
[13:14:40] <sysmonk> second query will be done for sysmonk at domain dot com -> will be cached
[13:14:48] <sysmonk> third query will be done for ramy at domain dot com -> results from cache
[13:15:38] *** ultrav1olet has quit IRC
[13:15:41] <sysmonk> ramy: how much users do you have?
[13:17:53] <ramy> sysmonk: The local_recipient_maps is different from my_distination_maps is different from transport_maps
[13:18:09] <ramy> sysmonk: 5.3Million users
[13:19:07] *** tsh has quit IRC
[13:19:54] <sysmonk> 5.3 milion users, hm
[13:20:11] <ramy> sysmonk:  also mysql maps does not give me the flexibility I want ..
[13:20:21] <sysmonk> oh doesn't it? :)
[13:20:27] <sysmonk> anyway
[13:21:21] <sysmonk> you could try to use policy service
[13:21:29] <ramy> for example, the local_recipient_maps for mysql can only say if user exists or does not exists . I just couldn't make it tell the user that "Account was disabled for being inactive" , "Account was suspended due to policy violation" ,... etc
[13:21:39] <sysmonk> and return a FORWARAD lmtp:server
[13:22:12] <sysmonk> ramy: then policy service is all i can offer
[13:22:21] <sysmonk> if you want teh fancy REJECT's ;)
[13:22:41] <ramy> yeah :)
[13:23:10] <ramy> This is perfect, I just didn't know how a policy service can be used with LMTP
[13:29:44] *** ming_zym has quit IRC
[13:30:58] <ramy> sysmonk: any hints about how to make postfix consult a policy service to get transport map ? I am only able to use policy service in smtpd_recipient_restrictions
[13:31:37] <sysmonk> ramy: that's where you have to use it
[13:31:44] *** HendrikAndresen_ has joined #postfix
[13:31:47] <sysmonk> you don't need a transport_map for it
[13:31:58] <sysmonk> it will tell where to transport the mail by using FORWARD command
[13:32:21] <f3ew> sysmonk what about multiple recipients?
[13:32:32] <f3ew> FORWARD gives you only one destination
[13:33:09] <f3ew> ramy transport_maps can always return an error: transport
[13:33:20] <f3ew> but it would make more sense to use a check_recipient_access
[13:33:26] <sysmonk> yeah
[13:33:32] <sysmonk> but it'll double the queries he has
[13:33:55] <f3ew> transport_maps will result in bounces :P
[13:34:17] <f3ew> Well, you could always host with us in a couple of months ;)
[13:34:30] <cpm> f3ew, cooking up a new hosting service?
[13:34:44] <f3ew> no
[13:34:54] <f3ew> just launching a new mail hosting platform
[13:35:17] <cpm> ah, interesting
[13:35:31] <sysmonk> f3ew: more details! :)
[13:36:00] *** _Bukazoid has left #postfix
[13:36:32] <HendrikAndresen_> @ sysmonk where are you from?
[13:37:25] *** _apk has joined #postfix
[13:37:30] <_apk> hi! :)
[13:37:49] <f3ew> sysmonk, you want to divest your users to us?
[13:38:05] * cpm would dearly love to get rid of his users
[13:38:18] <cpm> but I wouldn't do that to f3ew, too much respect/regard
[13:38:56] <f3ew> lol
[13:39:01] *** rcsheets has left #postfix
[13:39:29] *** idle-boy` has joined #postfix
[13:39:38] <ramy> f3ew: what do you mean by "transport_maps can always return an error: transport"
[13:39:56] <f3ew> man transport
[13:41:40] *** harobed has joined #postfix
[13:42:33] <sysmonk> HendrikAndresen_: lithuania
[13:43:12] <sysmonk> f3ew: nah, i'm not pointing to global market
[13:43:13] *** green-ant has joined #postfix
[13:43:18] <sysmonk> but i'm thinking something about local market
[13:43:20] <HendrikAndresen_> @sysmonk ahh, okay
[13:43:27] <sysmonk> HendrikAndresen_: why do you ask?
[13:47:33] <HendrikAndresen_> @sysmonk just wanna know, i am sorry i can't offer you a job ;-)
[13:47:55] *** HendrikAndresen has quit IRC
[13:50:40] <cite> I cannot find the announcement for Postfix 2.5.2 on the official postfix-announce or postfix-users mailing lists. Am I blind?
[13:57:52] *** idle-boy`` has quit IRC
[14:04:05] *** chrisq has joined #postfix
[14:05:47] *** diqpib has quit IRC
[14:11:03] *** madrescher has joined #postfix
[14:26:14] *** jellis-real has joined #postfix
[14:33:03] *** Broken|work has joined #postfix
[14:33:26] *** HendrikAndresen_ has quit IRC
[14:42:57] *** saurabhb has quit IRC
[14:50:17] *** ramy has quit IRC
[14:55:20] *** Tex-Twil has joined #postfix
[15:09:11] *** jaldhar has joined #postfix
[15:09:42] *** af_ has joined #postfix
[15:09:56] <jaldhar> hello.  Is there a way to dump out the list of what postfix thinks are virtual users?
[15:10:49] <cpm> there are all kinds of ways. Since I handle my virtual users with mysql, it's completely trivial.
[15:12:41] *** ScottK has left #postfix
[15:13:30] <jaldhar> cpm: I'm just using the regular dbm files.  I'm trying to integrate mailman which creates its own and this is where things are going wonky I think.
[15:13:47] <rob0> !postmapq
[15:13:47] <knoba> rob0: "postmapq" : You can check your lookups with the postmap command. Example: if you defined "transport_maps = mysql:/etc/postfix/transport.cf" you may check this mapping by running "postmap -q domain.com mysql:/etc/postfix/transport.cf" and see if it works.
[15:14:00] <rob0> There's also a -s IIRC
[15:14:13] <rob0> to dump the whole list
[15:14:19] <jaldhar> aha.  thanks will check that out
[15:16:16] <cpm> what wonkiness are you seeing?
[15:18:39] <jaldhar> cpm: things like <list at blah dot com>: User unknown in virtual alias table
[15:18:50] <rob0> !unknown_virtual
[15:18:51] <knoba> rob0: "unknown_virtual" : \"User unknown in virtual $X table\" means that the recipient domain was found in $virtual_$X_domains but the username@domain was not found in $virtual_$X_maps. ("$X" can be either alias or mailbox .)
[15:20:31] <rob0> With Mailman and virtual_alias_domains you need virtual_alias_maps pointing the list aliases to local(8) delivery and local aliases(8).
[15:21:06] <rob0> s/8).$/5)./
[15:22:17] <jaldhar> rob0: I have:
[15:22:24] *** madrescher has quit IRC
[15:22:24] <jaldhar> virtual_alias_maps = hash:/etc/postfix/virtual, hash:/var/lib/mailman/data/virtu
[15:22:24] <jaldhar> al-mailman
[15:22:42] *** madrescher has joined #postfix
[15:22:43] <rob0> perhaps "list.example.com" in mydestination, virtual_alias_maps with "list at example dot com list at list dot example.com" and so on
[15:23:14] *** madrescher has quit IRC
[15:23:35] *** madrescher has joined #postfix
[15:23:39] <jaldhar> hmm
[15:23:51] <rob0> anyway I think the Mailman docs cover Postfix virtual alias domains.
[15:23:56] <jaldhar> you mean virtual_alias_domains right?
[15:24:26] <jaldhar> I'm trying to follow the mailman docs but I'm doing something  wrong
[15:25:27] <jaldhar> I don't have the lists subdomain in mydestination but I thought it is unnecessary if it is in virtual_alias_domains?
[15:29:36] <jaldhar> aha!  somewhere along the line I have lost /etc/postfix/aliases.db regenerating...
[15:30:10] <rob0> Mailman requires delivery to commands in aliases(5). And aliases only work with local delivery, thus mydestination.
[15:30:47] *** ianbeyer has joined #postfix
[15:30:56] <rob0> http://www.gnu.org/software/mailman/mailman-install/postfix-virtual.html has some quite bad advice actually. It would work, but it's far from ideal.
[15:33:13] <jaldhar> that's what I'm using :(
[15:34:50] <ianbeyer> question for you guys - I have a pair of servers at our web datacenter that are running postfix, and I want them to handle all incoming and outgoing mail for my domains. Inbound mail all has to be delivered to our mail filtering appliance which then sends it on to our exchange server.
[15:34:58] *** Joelwork has quit IRC
[15:35:12] <ianbeyer> Inbound is fine, all I need to do is set smarthost to the filtering appliance.
[15:35:43] <ianbeyer> problem with outbound is that when I try to send it from the appliance (which gets it as a smarthost from exchange), it then sees the smarthost entry and tries to send it back, causing a mail loop
[15:36:01] <ianbeyer> how can I alleviate that?
[15:36:09] <rob0> Why not do the filtering at the ingress point? Sounds like a bad design to me.
[15:36:40] *** Nockian has quit IRC
[15:36:42] <ianbeyer> because I need multiple redundancy on the MX hosts All postfix is going to be doing is queing mail
[15:36:55] *** noneo has left #postfix
[15:37:11] <rob0> !transport_maps
[15:37:12] <knoba> rob0: "transport_maps" : a configuration parameter in the main.cf: Optional lookup tables with mappings from recipient address to (message delivery transport, next-hop destination). See transport(5) for details.
[15:37:16] <ianbeyer> I'm also not too keen on the windows-based filtering software sitting directly on the public internet
[15:37:26] <rob0> !cheatsheet
[15:37:26] <knoba> rob0: "cheatsheet" : http://jimsun.linxnet.com/misc/postfix-anti-UCE.txt : A HOWTO for pre-DATA spam control.
[15:37:41] <rob0> I'm not too keen on accepting obvious spam from the Internet.
[15:38:32] *** marl has joined #postfix
[15:38:35] *** Tex-Twil has quit IRC
[15:39:39] * ianbeyer doesn't do RBLs
[15:40:06] <ianbeyer> there's absolutely no control over who gets on or off those things - it's entirely at the whim of whoever runs that particular list
[15:40:25] <ianbeyer> and there's no incentive for them to get it right.
[15:40:32] <rob0> FUD.
[15:40:48] <marl> hi folks, am hitting a BIG problem with a new postfix installation, i am using virtual users with mysql and quota support, i am getting mail rejected because it is to large (over 10Mb) but i cant find a way of changing the max_message_size limits, any time i try and set max_message_size in the main.cf file, i get 'virtual_mailbox_limit is smaller than message_size_limit' and i cant work out how to get around this, im sure its just a conf entry im missing,
[15:41:04] <ianbeyer> yeah, come back and scream FUD when AOL decides you're a spammer and refuses to do anything about it.
[15:41:39] <rob0> AOL actually has a highly functional and accessible Postmaster desk.
[15:41:52] <ianbeyer> you have a strange definition of "accessible"
[15:42:49] <ianbeyer> accessible to me means a phone number staffed by someone at the other end who has the ability to fix the problem then and there. and AOL fails miserably at that
[15:46:36] <rob0> Are you at least clueful enough to implement HELO checks? Those will block ~25% of all spam without risk nor fuss. Or do you just send it on to your crapware "filtering appliance"?
[15:46:37] *** McJerry has quit IRC
[15:47:34] <ianbeyer> It amuses me that you assume that the internet-facing MX isn't going to do any traffic checking.
[15:48:21] *** pa has quit IRC
[15:48:51] <rob0> Well, I've talked to RBL FUD spreaders before. Most of them are woefully lacking in understanding. And your inability to figure out a mail loop casts suspicion as well.
[15:49:11] <rob0> This was particularly silly: 13:40 < ianbeyer> and there's no incentive for them to get it right.
[15:49:25] <ianbeyer> I'm not spreading FUD, I'm speaking from our organizational experience
[15:49:26] <rob0> You have no idea.
[15:50:00] <ianbeyer> we used to use RBLs. It caused us so many support issues with our members that we dropped it.
[15:51:40] <ianbeyer> nothing like a bunch of people on $DSL_ISP calling up the IT department because some RBL got a wild hair and blocked their entire class A
[15:51:42] <Edheldil> ianbeyer: how can mail sent from the appliance see the smarthost entry???
[15:51:55] <ianbeyer> Edheldil: ?
[15:52:12] <ianbeyer> The mail appliance is configured as a smarthost MTA
[15:52:45] <Edheldil> <ianbeyer> problem with outbound is that when I try to send it from the appliance (which gets it as a smarthost from exchange), it then sees the smarthost entry and tries to send it back, causing a mail loop
[15:52:46] <ianbeyer> exchange sends to the appliance, sanitizes it, and then sends it on to postfix, which sends it out to the tubes
[15:52:46] <rob0> Oh goodness. You don't know how to except authenticated users from spam checks?
[15:53:33] *** Fallenou is now known as Guest74611
[15:53:37] <ianbeyer> rob0, if you're going to be an ass, just shut up.
[15:53:57] <ianbeyer> not everyone has the vast postifix knowledge and experience you apparently got from the Almighty himself.
[15:54:24] <rob0> Fragile feelings. Yes, I apologize for stepping on your feelings.
[15:54:25] <ianbeyer> if we did, we wouldn't be coming in here to bother you and take you away from your morning starbucks.
[15:54:44] <rob0> BTW if you noticed, I already answered your question.
[15:54:52] <ianbeyer> yes, and I'm researching it
[15:56:34] <ianbeyer> I know linux/postfix is the only way to do mail in your world, but many of us out in the real world have to deal with filtering appliances and exchange too.
[15:57:14] *** EoN has joined #postfix
[15:58:36] <EoN> Hi guys.  I'm setting up a new dedicated box, and the mail server appears to be working - except when I sent emails to hotmail from the box, it returns a status 250, but then the mail just DOESN'T arrive to the hotmail user, not even in the junk mail!  Im trying to work out what i'm doing wrong.  here is a snapshot of the log from an email i sent not long ago: (with ip/hotnames replaced with dummy values) http://pastesite.com/1082
[15:58:43] <ianbeyer> it's been many years since I've dealt with postfix, and apparently being old and senile has caught up with me. Especially given that this particular architecture is one that I've not dealt with in postfix before.
[15:58:53] <rob0> !hotmail
[15:58:53] <knoba> rob0: "hotmail" : http://www.circleid.com/posts/hotmail_running_own_smtp/
[15:59:11] <EoN> Could anyone please help suggest what might be wrong?  I noticed that it says client=mordor[207.111.222.333] <-- does that mean my box is not identifying with the FQDN?
[16:00:02] <rob0> I won't bother with munged logs. But I can tell you, a lot of folks have hotmail problems. They accept and discard a lot of real mail, presumably as spam suspects.
[16:00:15] <ianbeyer> that's because hotmail sucks.
[16:00:45] <rob0> Finally one point on which "an ass" and ianbeyer can agree.
[16:00:49] <EoN> no doubt - I find it appalling!
[16:01:14] <jaldhar> mail for blah.com loops back to myself  <--- I'm making progress :-)
[16:01:16] <ianbeyer> probably because a lot of people like me use the hotmail account as an account that's OK to give to potential spammy sites
[16:01:19] <EoN> if they're going to reject it, why in GODS NAME do they retrutn 250!??!!?
[16:02:18] <EoN> ok... but 'hotmail sucks' aside, I want to make sure I've at least got everything set up right.  my web application relies on this.
[16:02:27] <EoN> should that client= line have the fqdn, does anyone know?
[16:02:34] *** Mez has quit IRC
[16:04:11] <ianbeyer> rob0: if I'm understanding transport(5) correctly, I need a statement in main.cf local_transport = smtp:spamfilter.domain.com ?
[16:04:15] *** Broken|work_ has joined #postfix
[16:04:19] <rob0> Possibly try a transport_maps entry for Hotmail through a relayhost. I've heard that they will accept and discard mail with only one Received: header. I haven't tested it, but my own discarded mail to hotmail had only one.
[16:04:22] <Edheldil> EoN: and do you accept mail from them, so you did not miss a DSN?
[16:04:38] <ianbeyer> and then set the domains for which I accept mail as an endpoint in mydestination?
[16:06:06] *** Broken|work has quit IRC
[16:06:38] <rob0> ianbeyer, one rule for seeking free support is that you don't call the ones you want to help you, "an ass". At this point anything you want to ask me is billable and payable in advance.
[16:06:54] *** Mez has joined #postfix
[16:07:52] <EoN> Edheldil: hmmm... well here's where its sort of confusing (not really, but explaining it might be.) I currently have an existing domain mainone.com where i sent my @mainone.com emails through mail.mainone.com - so thats all normal.  I now have a NEW dedicated box, newbox.com, and am testing sending mail from me at mainone dot com through mail.newbox.com
[16:07:55] *** idle-boy has joined #postfix
[16:08:08] <EoN> im not sure if that makes a difference?
[16:08:13] <EoN> im sort of new to this - trying to get my head around it.
[16:08:15] <ianbeyer> let me offer you a bit of advice in return then... If you want people to take you seriously and not write you off as some kiddie, don't go passing judgments on someone's architecture decisions. There's usually a reason that it's done in a certain way.
[16:09:36] <EoN> would sending an email from me at mainone dot com through the mail server mail.newbox.com make hotmail not play nice?  (where mainone.com has its mail server at a DIFFERENT IP than mail.newbox.com)
[16:09:41] *** slackjr_ has joined #postfix
[16:09:42] <cite> ianbeyer: rob0 built himself a good reputation on postfix-users. As far as I am concerned, he can rant about other ppls (including mine) setup as much as he wants, 24/7, and I will even pay his popcorn and coke bills.
[16:09:49] <wols_> ianbeyer: and very often a bad one :P
[16:10:47] <ianbeyer> wols_: the whole point of this exercise is to try and improve on the mess we've got now - we're moving from shared/dedicated hosting (which cpanel has managed to royally jack up) and make the whole system more efficient.
[16:11:05] <ianbeyer> BTW, Cpanel completely and totally blows. But we all knew this.
[16:11:25] <ianbeyer> <-- very glad to be running this on a real box with real console access.
[16:11:59] <EoN> I don't want to bother you guys with silly questions - but is there any documentation or url you can recommend that i can use to 'troubleshoot' what i might have wrong that would be causing hotmail to drop my emails?
[16:12:05] <ianbeyer> but we do still have some architecture constraints, the key one being exchange :(
[16:12:51] <cite> EoN: There is http://postmaster.msn.com/ and there is a hard to find submission form at https://support.msn.com/eform.aspx?productKey=edfsmsbl&ct=eformts
[16:13:10] <cite> EoN: You are in for a lot of troublesome work ;)
[16:13:25] <EoN> thanks cite.  yeah i was starting to guess that :(
[16:13:28] <EoN> lol
[16:13:41] <EoN> and - nothing looks out of the ordinary here? --> http://pastesite.com/1082
[16:13:53] <rob0> cite, thanks, and I don't think I was really rude per se, just very direct.
[16:14:08] <cite> EoN: You might want to search the list archives of postfix-users - http://www.postfix.org/lists.html
[16:14:15] <EoN> great! thanks
[16:14:50] <rob0> And I am all too familiar with the reasoning behind many IT decisions.
[16:14:54] <ianbeyer> rob0: there's often overlap between the two.
[16:15:13] <ianbeyer> and perhaps I just need more coffee.
[16:15:19] <cite> EoN: I do remember there were some very lengthy discussions about hotmail.com. And if I _do_ remember correctly, a lot of pepople with a lot of experience as postmasters came to the conclusion that nobody who values his or her mails should use hostmail.com
[16:15:27] <ianbeyer> <-- can be a grumpy SOB in the morning
[16:16:17] <rob0> haha again some things we have in common :)
[16:16:27] <rob0> It's afternoon for cite.
[16:16:38] <ianbeyer> no wonder he's so annoyingly cheerful then
[16:16:45] <cite> 4:16pm, yes ;)
[16:16:57] <ianbeyer> doubly so - it's almost beer:30
[16:17:20] <rob0> !address_classes
[16:17:21] <knoba> rob0: "address_classes" : http://www.postfix.org/ADDRESS_CLASS_README.html describes how Postfix deals with different classes of addresses: local, relay, virtual alias, virtual mailbox, and Internet.
[16:17:39] <cite> Our beer is stored in the server room - nothing like some cold "Augustiner Helles" after work ;)
[16:17:48] <rob0> ^^ another bone for ianbeyer, who needs the relay class for MSexChange.
[16:18:15] <ianbeyer> rob0: fortunately, postfix won't be speaking directly to exchange.
[16:18:35] <rob0> s/MSexChange/$FOO/
[16:18:35] <ianbeyer> the spam filter brokers that conversation
[16:18:45] <cite> That said - when a message enteres the active queue, a message like the following is logged:
[16:18:47] <ianbeyer> exchange--
[16:19:11] <cite> qmgr[3962]: B630678004: from=<listname-bounces at listserver dot example.org>, size=42627, nrcpt=26 (queue active)
[16:19:33] <ianbeyer> rob0: last time I jacked around with postfix on any kind of regular basis was in 2000.
[16:19:45] <cite> Now, the "nrcpt=$NUMBER" part - is this guaranteed to be the number of "RCPT TO" statements that were accepted or is it possible the message has more than 27 recipients?
[16:19:50] <ianbeyer> my brain's having a bitch of a time locating the backup tapes with that knowledge
[16:20:03] <cite> (given there are NO address rewritings)
[16:21:46] <EoN> Jun 19 09:53:00 207-111-222-333 postfix/smtpd[7306]: B74311A8BDC: client=mordor[207.111.222.333] <-- is the fact that it is not using the fqdn here (just 'mordor', rather than 'mordor.domain.com') a problem?
[16:22:23] <cite> EoN: Only if you decide to block based on the reverse client hostname.-
[16:22:37] <EoN> cite: which hotmail are very likely to do, yeah?
[16:22:42] <ianbeyer> OK, so local_domains is anything local to the box, and then relay_domains goes to my spam filter?
[16:22:57] <cite> EoN: Is 207.111.222.333 the server sending mails to hotmail?
[16:23:02] <EoN> yeah
[16:23:15] <EoN> (dummy ip)
[16:23:15] *** simmerz has joined #postfix
[16:23:16] <cite> Yo have a DNS problem.
[16:23:18] <EoN> but yeah.
[16:23:28] <cite> 207.111.222.333 doesn't have a PTR-RR.
[16:23:30] <EoN> sorry - to clarify, i've replaced the ip with a dummy one, but its relative.
[16:23:44] <cite> So what's the real IP?
[16:24:01] <cite> What's the output of dig -x $IP +short?
[16:24:20] <simmerz> can i make postfix only appear to exist to certain IP addresses? for example, I only want it to be accessible to 127.0.0.1 and another IP range. do i have to use a firewall for that?
[16:24:39] *** kiliko has quit IRC
[16:24:43] <simmerz> i know about permit_my_networks, but i'd like to not even have the server respond if it's not part of those networks.
[16:24:51] <ianbeyer> simmerz: inet_interfaces is your friend
[16:25:01] <simmerz> ianbeyer: ok thanks
[16:25:37] <cite> EoN: Your IP has a PTR-RR which includes: 1. the IP address in dashed decimal notation and 2. the keyword "static".
[16:26:36] <EoN> cite: is this a bad thing? :/
[16:26:40] <cite> EoN: Or, in other words and as direct as rob0 would say it: You are fsck'ed.
[16:26:47] <EoN> lol
[16:26:52] <cite> .o0(Or is ist "directly"?)
[16:26:54] *** UQlev has joined #postfix
[16:26:56] <wols_> simmerz: firewall then
[16:27:07] <rob0> In my implementation of IPv4, a quad of "333" would be a bit too high.
[16:27:24] <cite> rofl. I didn't notice that.
[16:27:29] <EoN> cite: can I correct those things?
[16:28:00] <cite> EoN: I don't know if _you_ can correct those things. Talk to the person responsible for setting up your network's DNS data.
[16:28:35] <rob0> As I hinted above, perhaps the munging is masking the real issue.
[16:28:42] <EoN> my brother is a network administrator (but is being lazy).  This is a newly obtained dedicated box.  i think he was planning on putting the dns on this box.
[16:28:51] <EoN> so in that case it can be corrected hey? :)
[16:28:55] <EoN> i will kick his ass tomorrow
[16:28:59] <cite> rob0: He /msg#ed me the real IP and it's RDNS is 207-111-222-333.static.provider.net
[16:29:09] <rob0> ah
[16:29:21] <rob0> !fcrdns
[16:29:21] <knoba> rob0: "fcrdns" : http://en.wikipedia.org/wiki/Forward_Confirmed_reverse_DNS : very important if you want big sites to accept your mail. If you can't have it from your ISP, see !relayhost .
[16:29:39] <EoN> ahhhhh.. thank you!!  you guys are absolute champions! :)
[16:29:52] <EoN> cite & rob0 - can't thank you enough :)
[16:29:56] <rob0> BTW a lot of sites will reject such a host (or consider it a likely spammer.)
[16:30:11] <rob0> Definitely consider a "real" rDNS name.
[16:30:15] <EoN> but i can get my brother to fix the RDNS right?
[16:30:16] <EoN> oh absolutely
[16:30:27] <EoN> i want to get it configured correctly
[16:30:31] <rob0> mail.example.org is a winner
[16:30:35] <Edheldil> rob0: .333 is a perfectly acceptable part of an IP address in any MovieOS :)
[16:30:43] <rob0> Edheldil: :)
[16:31:07] <cpm> Edheldil, heh
[16:31:43] <UQlev> rob0: how can I check whether my mailserver has fcrdns?
[16:31:59] <cite> EoN: If this is a dedicated box, there is usually a web interface which allows you to set the rDNS name.
[16:32:44] <rob0> UQlev: $myhostname should resolve to your IP address, which in turn should resolve to $myhostname.
[16:32:52] <cite> EoN: After you created the "forward mapping" (name -> IP) in a DNS zone you or your brother control, you can usually set rDNS to that name.
[16:32:53] <EoN> i'll log into the portal interface and see what i can find
[16:33:05] <EoN> awesome
[16:33:12] <rob0> !forget fcrdns
[16:33:16] <cite> EoN: Use "dig -x $IP soa" to get an idea of how log it will take until other sites pick up the new setting.
[16:34:03] <cite> EoN: Do it right the first time if you really care about hotmail: Get your SenderID/SPF data set up correctly (they cache those, so simply changing them in DNS won't work), think about DK(IM).
[16:34:06] <rob0> !learn fcrdns as http://en.wikipedia.org/wiki/Forward_Confirmed_reverse_DNS : $myhostname should resolve to your IP address, which in turn should resolve to $myhostname. This is very important if you want big sites to accept your mail. If you can't have it from your ISP, see !relayhost .
[16:34:39] <EoN> cite: damn :/ i was wondering about caching... ouch :(
[16:34:58] <EoN> is that like, a show stopper? will they black list after about 10 emails from this badly set rdns?
[16:34:59] *** tellus has quit IRC
[16:35:05] <simmerz> wols_: is a firewall the only way? I can't configure that kind of policy within postfix?
[16:35:08] <cite> No, they won't.
[16:35:37] *** marl has quit IRC
[16:35:42] <rob0> More aggressive sites (which are fairly rare) will 55x you at connect time.
[16:35:55] <wols_> simmerz: postfix always has to accept() the connection first to check where it's coming from
[16:35:58] <wols_> no way to change that
[16:36:18] <wols_> iptables can block even the connection attempt
[16:36:23] <simmerz> ianbeyer: inet_interfaces is only which local ip addresses to listen on.
[16:36:27] <simmerz> wols_: ok
[16:36:47] <simmerz> wols_: but then I can use permit_my_networks to stop further communication, right?
[16:36:52] <rob0> Less aggressive, yet thorough sites (which include many big providers) will subject you to more scrutiny.
[16:37:02] <ianbeyer> simmerz: ah, sorry, I misunderstood your question
[16:37:08] <EoN> one question with rdns.  Say you have a primary domain name on your box, and rdns is all correct etc, but what if you have multiple domains on that box, sending from their own mail.theirdomainname.com?
[16:37:09] <simmerz> ianbeyer: np
[16:37:23] <EoN> because the ip wouldnt resolve to the same domain name as theirs... how does that work?
[16:38:02] <cite> EoN: Only sites with very, erm, "ignorant" postmasters would ever do filtering based solely on a client's name and the MAIL FROM.
[16:38:14] <rob0> "permit_mynetworks" controls relaying. If you want to block access altogether, use a firewall. But follow up with a check_client_access restriction.
[16:38:18] <Edheldil> EoN: fcrdns is not about domain in From: or MAIL FROM:
[16:38:28] <EoN> ahhh ok, i see
[16:38:30] <cite> EoN: If your box is mail.example.org and your EHLO is mail.example.org you are fine.
[16:38:43] <EoN> yeah i follow now
[16:39:16] <EoN> thanks again guys - i've got a path of action now - really appreciate your help :)
[16:43:04] <cite> Oh c'mon - anyone here just has to know if those nrcpt=$NUMBER lines that are logged once a message enters the active queue are guaratneed values.
[16:46:15] *** kk_CHN has quit IRC
[16:46:21] <rob0> um, guaranteed, how so? Wouldn't be if somehow the mail is split up.
[16:47:31] <cite> receive_override_options=...,no_address_amppings is set.
[16:47:56] <cite> It's a dedicated smtpd for mailman reinjection purposes.
[16:51:18] <cite> And either mailman or postfix are lying to me.
[16:51:37] <cite> Mailman claims it submitted X messages, Postfix claims it received X-1 messages.
[16:52:35] *** pheldens has joined #postfix
[16:53:21] <rob0> Postfix should account for each one on the way out of the queue. I'd tend to believe the X-1 figure.
[16:53:28] <rob0> s/should/will/
[16:54:01] <cite> There were X-1 messages going out, verified that.
[16:54:37] <pheldens> ls
[16:54:39] <pheldens> oops
[16:55:09] <pheldens> Hi, is comma seperation required for postfix main fields?
[16:58:36] <rob0> no, see the syntax section at the top of postconf(5)
[17:00:00] <pheldens> thanks
[17:00:23] *** pheldens has quit IRC
[17:06:33] *** nphase has joined #postfix
[17:18:34] *** ramy_ has joined #postfix
[17:20:19] *** pitakill has joined #postfix
[17:21:04] *** Mavvie has quit IRC
[17:21:38] *** hever has quit IRC
[17:24:53] *** will_ has quit IRC
[17:25:32] *** idle-boy has quit IRC
[17:25:43] *** c0m has quit IRC
[17:25:59] *** c0m has joined #postfix
[17:27:29] *** nphase has quit IRC
[17:27:40] *** nphase has joined #postfix
[17:33:13] *** nphase has left #postfix
[17:35:21] *** tellus has joined #postfix
[17:38:32] *** idle-boy has joined #postfix
[17:39:25] <simmerz> I'm using virtual_mailbox_maps = pgsql:/file_with_query_in.cf but for some reason, testing to send to email addresses stored in the database still fail saying relay denied
[17:41:34] <cite> simmerz: Do you have virtual_mailbox_domains set?
[17:42:17] *** will_ has joined #postfix
[17:42:21] <simmerz> as default, which is apparently $virtual_mailbox_maps
[17:42:23] <cite> simmerz: If the query provided in file_with_query_in.cf uses %d or %u (or both of them), you will have to define virtual_mailbox_domains.
[17:42:53] <simmerz> it does SELECT address,'OK' FROM email_aliases WHERE address='%s'
[17:42:55] <cite> virtual_mailbox_domains stored in a *SQL map will need to utilize %s only and return any value (ore none at all)
[17:43:45] <cite> "OK" is not a valid mailbox map.
[17:43:58] <rob0> Unless you expect virtual_mailbox_domains to change frequently, it's best to use a hash: map or just a plain list for that lookup.
[17:44:11] <cpm> or a rob0 map
[17:44:29] <cite> Like "! <tab> basic"? ;-)
[17:44:32] <simmerz> rob0: I have the data in the database, which is also the mailstore. I'd rather not have to reconfigure if i add a domain to the config
[17:44:46] <simmerz> cite: what would be a valid mailbox map?
[17:45:27] *** tshine has joined #postfix
[17:46:09] <simmerz> cite: the "physical" mailbox as specified in the db? for instance someuser/INBOX ?
[17:46:28] <rob0> You figure out the SQL query. Just make the virtual_mailbox_domains query return anything for YOUR virtual mailbox domains, and nothing for all others.
[17:46:56] <rob0> a query for example.com should return "cpm"
[17:47:19] <cite> simmerz: If you do not specify your own query for virtual_mailbox_domains the query must return only _one_ value for _your_ virtual_mailbox_domains.
[17:47:24] <simmerz> but what will %s actually be?
[17:47:40] <rob0> the recipient domain
[17:47:59] <cite> simmerz: And it _should_ return a mailbox location (given you are using virtual(8)) if a recipient address is looked up.
[17:48:04] <simmerz> ok. can virtual_mailbox_domains also be a specified pgsql:some.cf?
[17:48:11] <cite> It sure can.
[17:48:26] <simmerz> ok, docs didn't seem to suggest it could.
[17:48:32] <rob0> um, virtual_mailbox_maps is where the mailbox location would be.
[17:49:04] 
[17:49:15] <simmerz> rob0: yep. so virtual_maps.cf would return user at domain dot tld    user/INBOX for instance?
[17:49:29] <simmerz> virtual_transport = lmtp:[127.0.0.1
[17:49:33] <simmerz> ]:2026
[17:49:40] <simmerz> oops. enter too near the other keys
[17:49:43] <rob0> in that case, no
[17:49:52] <rob0> well, it doesn't matter
[17:50:01] <simmerz> ok, so "OK" is fine?
[17:50:24] <rob0> the mailbox location is only used by Postfix's own VDA, virtual(8). You don't use that.
[17:50:29] <rob0> yes
[17:50:37] 
[17:51:00] <Edheldil> has anybody experience with usernames of the type name at domain dot tld for *non-virtual* users?
[17:51:00] <rob0> what is this LMTP daemon? Cyrus IMAP?
[17:51:16] <cite> Just define the domains as relay_domains, turn on recipient verifying for those and let Postfix verify recipient maps on that LMTP server.
[17:51:19] <rob0> Ed, clarify?
[17:51:46] <simmerz> rob0: archiveopteryx, which is a postgres mailstore
[17:51:52] <cite> simmerz: There is no need to keep recipient maps twice if your LMTP server can do recipient verification.
[17:51:55] <Edheldil> rob0: I have to deliver mail to users with logins e.g. joedoe at mydomain dot cz
[17:52:18] <simmerz> cite: ok
[17:52:39] *** Veni has joined #postfix
[17:52:40] <Veni> hi
[17:52:42] <Edheldil> for quota reasons, they are real users, albeit real in the 'known by PAM and NSS' sense
[17:52:44] <simmerz> so would I use a %s type query for relay_domains?
[17:52:47] <rob0> local(8) users are managed by your OS. I don't think "@" is a valid character in Unix usernames, but ymmv.
[17:52:57] <cite> simmerz: http://www.postfix.org/ADDRESS_VERIFICATION_README.html#recipient
[17:53:10] <cite> simmerz: Yes, you would.
[17:53:19] <simmerz> cite: ok cheers
[17:53:45] <rob0> however, your IMAP daemon might be persuaded to accept user at example dot com and authenticate the Unix user "user".
[17:54:53] <Edheldil> rob0: postfix+procmail delivers to them, unless there's a problem with overquota or no such user, in which case it tries to deliver to joedoe
[17:55:27] <Edheldil> instead of joedoe at domain dot cz
[17:56:54] <Edheldil> I have inherited the @ in usernames and it's not possible for me to change it :(
[17:58:43] *** j_s has joined #postfix
[17:58:44] *** mellen has joined #postfix
[17:59:41] *** harobed has quit IRC
[18:00:01] <Veni> any can help me with header_check plz I want to REJECT on subject a word
[18:00:37] <Veni> but with /^Subject: .*men.*$/    REJECT Spam if in the subject there are "mendian" he's removed :/
[18:01:05] *** exodos has joined #postfix
[18:01:28] *** Xcaliber009 has joined #postfix
[18:01:28] <Edheldil> Veni: that right, is not it?
[18:02:01] <rob0> yikes
[18:02:03] <exodos> hi, we're trying to mirror all emails to another server, so we've setted up recipient_bcc_maps
[18:02:04] *** pitakill_ has joined #postfix
[18:02:52] <exodos> problem is coused by content filter (dspam): all messages are sent twice to another server (i think becouse address rewriting is done twice)
[18:03:01] <exodos> how can we go around this?
[18:03:07] *** pitakill has quit IRC
[18:03:25] <cite> exodos: Specify -o receive_override_options=no_address_mappings to the smtpd accepting the coneections from the outside.
[18:03:44] <cite> Or specify -o recipient_bcc_maps= to the reinjecting smtpd.
[18:03:50] <cite> Go for the latter.
[18:04:36] <exodos> i was trying the latter, but it didnt work, so i tought im doing something wrong
[18:05:09] <exodos> ill try your first solution now
[18:05:10] <exodos> thx
[18:05:24] <cite> Did you try it the other way round? I.e. specifying  -o recipient_bcc_maps= to incoming smtpd,  -o recipient_bcc_maps=hash:file to reinjecting smtpd?
[18:06:57] <cite> How is your content_filter specified? in main.cf?
[18:07:47] <exodos> check_client_access pcre:/etc/postfix/filter_access;
[18:07:54] <exodos> and: /./             FILTER smtp-amavis:[127.0.0.1]:10024
[18:08:01] <cite> Or Schmitt.
[18:08:23] *** Veni has left #postfix
[18:08:37] <cite> I see.
[18:09:24] <simmerz> cite: ok, it now works with a combination of relay_transport, relay_domains, and relay_recipient_maps. where do I need to look to change the error message on a nonexistant user? I tried unverified_recipient_reject_reason but that didn't work. (btw, the lmtp server doesn't respond correctly if the user doesn't exist)
[18:09:57] <cite> simmerz: What does "the lmtp server doesn't respond correctly if the user doesn't exist" mean?
[18:10:25] <cite> exodos: You do realize you could get rid of that check_client_access by simply specifying -o content_filter=... to that accepting smtpd? :)
[18:10:33] <simmerz> you mean if i don't use relay_recipient_maps?
[18:10:48] <cite> simmerz: What is the LMTP servers response to a nonexistant user?
[18:10:52] *** ramy_ has quit IRC
[18:11:56] <simmerz> hang on, let me paste the log
[18:12:00] *** Spec has quit IRC
[18:13:49] <simmerz> cite: http://rafb.net/p/nT46B912.html
[18:15:03] <cite> simmerz: You have a pgsql lookup problem.
[18:15:42] <simmerz> postfix isn't doing user validation here. just domain validation, and it accepts the domain fine
[18:15:44] <cpm> indeed
[18:16:03] <simmerz> the stuff after line 2 is after I put a "." in the telnet session
[18:16:06] <simmerz> after data
[18:16:12] *** githogori has quit IRC
[18:16:27] *** phnord has quit IRC
[18:17:12] <cite> simmerz: Buest guess: Your chroot doesn't contain the libraris "lmtp" needs to open an SSL connection ot pgsql.
[18:17:47] <simmerz> cite: how do i resolve that?
[18:18:22] <cite> simmerz: Check your master.cf. It should contain an entry for "lmtp". Make sure the fifth column doesn't read "y" or "-" but instead "n".
[18:18:27] *** stefan-f has quit IRC
[18:18:39] <simmerz> ah right ok. hang on let me check that
[18:18:51] <cite> simmerz: If you have to change that value, execute a "postfix reload" and retry. We cannot aid in debugging if you don't fix this first.
[18:20:07] <simmerz> that's fair enough. yep, it was still chrooted. let me try again
[18:20:12] <cite> simmerz: A better solution would be to access this map using the "proxymap" service.
[18:20:25] <simmerz> and keep the lot chrooted that way?
[18:20:26] 
[18:20:47] <simmerz> cite: ok. thanks.
[18:20:57] <cite> simmerz: Yes - keep lmtp as it is, just make sure that proxymap is not running chrooted (fifth column of proxymap and proxywrite entries).
[18:21:00] *** roe has quit IRC
[18:21:04] <simmerz> I'll get it working like this, and then proxy afterwards
[18:21:12] <simmerz> one step of learning at a time :)
[18:21:18] <cite> I do strongly recommend you go for the proxy way.
[18:21:25] <cite> It's a lot less painful.
[18:21:58] <cite> And you have better control about the maximum number of connections postfix opens to your pstgres database.
[18:22:17] <simmerz> ok
[18:22:30] <cite> Besides, it's only adding like, erm, 5 chars? ;)
[18:22:33] <simmerz> cite: even unchrooting lmtp, i still get the table lookup problem
[18:23:30] <cite> Using proxy:pgsql?
[18:23:42] <simmerz> not yet. do i want lmtp: to be proxy:lmtp?
[18:23:59] <cite> Nope.
[18:24:16] <cite> Somehwere in main.cf you have something like relay_domains = pgsql:file, right?
[18:24:28] <simmerz> yep. I've put proxy: before the pgsql
[18:24:37] <cite> Did you execute postfix reload?
[18:24:43] <simmerz> did a full restart
[18:25:00] <cite> Ok. This .cf file - does it read hosts = localhost or hosts = 127.0.0.1?
[18:25:13] <cite> You might want to try to change it to 127.0.0.1 if it isn't liek that yet.
[18:25:14] <simmerz> ok, now I get this - no lookup errors
[18:25:24] <simmerz> but, it just says the mail is queued
[18:25:40] <cite> Can I see the logs again?
[18:25:45] <simmerz> yep, hang on
[18:26:56] <simmerz> http://rafb.net/p/O8Pfol97.html
[18:27:01] *** madrescher has quit IRC
[18:27:33] <simmerz> so when i enter rcpt to: <nonexis...> it says: 250 2.1.5 Ok
[18:28:46] <cite> Ol. Can you please initiate a LMTP session to localhost on port 2026 and verify the results?
[18:29:02] <cite> Write "LHLO" instead of EHLO.
[18:30:27] <simmerz> 450 4.1.1 nonexistant at domain dot tld is not a legal destination address
[18:30:36] <simmerz> when i get to the rcpt to: bit
[18:31:16] <exodos> wierd: even if i specify -o always_bcc=something in the configuration of reinjection smtpd its not working
[18:32:19] <cite> simmerz: Can you show me your smtpd_recipient_restrictions, i.e. all data I need to understand how and when you are calling the reject_unverified_recipient restriction?
[18:32:20] *** blackspyder has joined #postfix
[18:32:37] <exodos> is there any other option besides receive_override_options=no_address_mappings to disable bcc adding?
[18:32:43] <simmerz> cite: just reject_unauth_destination at the moment
[18:32:53] <cite> simmerz: Well, it cannot work, then
[18:32:59] <simmerz> cite: oh
[18:33:09] <blackspyder> what's the best postfix book? 'The book of Postfix' by no starch press sucks
[18:33:38] <simmerz> cite: what else do I need?
[18:33:51] <cite> simmerz: I posted a link.
[18:34:08] <cite> simmerz: http://www.postfix.org/ADDRESS_VERIFICATION_README.html#recipient
[18:34:12] <simmerz> sorry, yes, I'll look back at that again
[18:34:13] <cite> simmerz: http://readlist.com/lists/postfix.org/postfix-users/16/83377.html
[18:34:55] <cite> simmerz: You can even use your existing pgsql query. Just return "reject_unverified_recipient" for all domains in %s and stuff.
[18:34:57] *** Spec has joined #postfix
[18:35:21] *** UQlev has quit IRC
[18:35:23] <cite> simmerz: The relay_domains setting doesn't care for the result of a pgsql lookup, so you can reuse that query for check_recipient_access settings.
[18:35:41] <cite> Ok, I'm off, that headache is killing me.
[18:35:55] <simmerz> cite: thanks for your help
[18:40:33] <mellen> I'm trying to do transport mapping for a catch-all domain in ldap, but when it matches the catch-all domain it then looks up in the transport map using the original email address and not the @domain?
[18:42:59] *** madrescher has joined #postfix
[18:43:06] *** McJerry has joined #postfix
[18:43:50] *** havvg has quit IRC
[18:45:41] <adaptr> mellen: what , exactly, are you referring to when you say "catch-all *domain*" ?
[18:46:36] *** ramy_ has joined #postfix
[18:48:20] <mellen> ie. I have "mellen at domain dot com" and " at domain dot com" virtual accounts. If I send a mail to mellen at domain dot com it will look it up, see it exists, then look up the transport map and in this case receive "dovecot" for dovecot lda delivery. When a mail is sent to notmellen at domain dot com it matches " at domain dot com" but when it makes the transport lookup it looks up "notmellen at domain dot com" again and not " at domain dot com" as I expected. " at domain dot com" would have
[18:48:20] <mellen> returned "smtp:1.2.3.4"
[18:49:08] <adaptr> @domain.com is not an account - it can't be
[18:50:34] <mellen> ldap logs show that it looks up filter="(&(objectClass=PostfixMailAccount)(mail=notmellen at domain dot com))" and then filter="(&(objectClass=PostfixMailAccount)(mail= at domain dot com))"
[18:51:21] <adaptr> I don't care about ldap - it's not a valid map return (RHS) value
[18:51:37] <adaptr> the destination must always and forever be an actual address
[18:52:07] <mellen> Well, this is what postfix asks of the ldap server.
[18:52:29] <adaptr> on the *L*HS, yes
[18:52:43] <adaptr> but that merely means it's an alias to match against, i.e. a wildcard
[18:52:50] <adaptr> it is not, and will never be, an *account*
[18:52:51] *** Edheldil is now known as Ed_away
[18:54:13] *** exodos has quit IRC
[18:57:13] *** madrescher has quit IRC
[19:00:16] <simmerz> hi. just trying to get this recipient rejection sorted. I've got the following paste which contains my smtpd_recipient_restrictions and an error that manifests itself when the last line of the restrictions exists. http://rafb.net/p/GbevLa56.html
[19:00:26] <simmerz> it shows to the user as Server configuration error
[19:01:50] <simmerz> the query returns: initforthe.com, reject_unverified_recipient as the two columns of the query
[19:03:11] <mellen> adaptr: Do you have any pointers on how to do this then?
[19:03:13] <adaptr> then you have an error in your line
[19:03:16] <shasta> simmerz, which is wrong
[19:03:33] <simmerz> shasta: what should it be?
[19:04:03] <simmerz> that's what the hash appears to show: domain   reject_unverified_recipient
[19:04:09] <adaptr> mellen: I don't know what it is you want to do - why not try to configure it as a text map first, before plunging in with LDAP ?
[19:04:12] <shasta> simmerz, man 5 access
[19:05:14] <mellen> I want all unknown-virtual accounts for a domain to be forwarded to a different smtp server.
[19:05:51] <adaptr> if they are unknown then they cannot be virtual, either - they're *unknown*
[19:05:59] <adaptr> i.e. they don't exist
[19:06:04] <adaptr> but you probably want
[19:06:04] <mellen> THat's why there's a catch-all entry.
[19:06:13] <adaptr> !virtual_alias_maps
[19:06:14] <knoba> adaptr: "virtual_alias_maps" : a configuration parameter in the main.cf: Optional lookup tables that alias specific mail addresses or domains to other local or remote address. The table format and lookups are documented in virtual(5).
[19:06:20] <mwalling> shasta has ops?
[19:06:31] <adaptr> apparently... makes me wonder whodunnit :)
[19:06:34] <simmerz> shasta: right, which is what I'm giving
[19:06:41] <mwalling> damn, i guess i didnt need to go find weasel that time then
[19:06:51] <shasta> simmerz, no you're not :)
[19:06:59] <simmerz> shasta: http://readlist.com/lists/postfix.org/postfix-users/16/83377.html is what i'm using as an example
[19:07:16] *** m_p has quit IRC
[19:07:17] *** hever has joined #postfix
[19:07:23] <simmerz> but I'm using a pgsql query instead of a hash
[19:07:30] *** syneus has quit IRC
[19:07:34] <shasta> bah
[19:07:53] <shasta> hash table with record
[19:07:56] <shasta> abc def
[19:07:56] <simmerz> so based on that, I have no idea what I'm doing wrong, only that i must be doing something wrong
[19:08:05] *** neurodamage has joined #postfix
[19:08:07] <jeev> what you trying to do simmerz
[19:08:09] <shasta> means: if queried for "abc", return "def"
[19:08:35] <simmerz> shasta: so I just want to return one column in the query?
[19:08:48] <shasta> yes
[19:08:59] *** af_ has quit IRC
[19:09:55] <simmerz> great. thanks. that works :)
[19:10:46] <simmerz> how would I go about changing the message given to the user?
[19:11:01] <simmerz> it now gives a horrible long one that suggests to the user how the configuration might work
[19:11:32] <adaptr> you don't change the message - you correct your screwup
[19:11:58] <simmerz> adaptr: it isn't a screwup
[19:12:19] <adaptr> if your config causes server errors, yes it is
[19:12:25] <simmerz> it doesn't now
[19:12:34] <simmerz> you've just missed me change the config and have it working
[19:12:46] <adaptr> I might of...
[19:12:50] <adaptr> I admit nuffin
[19:12:58] <simmerz> now I get something different when i get an invalid user: 450 4.1.1 <james at initforthe dot com>: Recipient address rejected: unverified address: host 127.0.0.1[127.0.0.1] said: 450 4.1.1 james at initforthe dot com is not a legal destination address (in reply to RCPT TO command)
[19:13:09] <simmerz> which is the lmtp server response
[19:13:15] <simmerz> verbatim
[19:13:31] <simmerz> now I just want to say "Address lookup failed" instead or something like that
[19:13:53] <simmerz> unverified_recipient_reject_reason doesn't seem to affect it
[19:14:52] <simmerz> oh, I'm using 2.3.8, that's why
[19:14:58] <adaptr> no, it's a 450 - unknown client reject
[19:15:30] *** pa_ has joined #postfix
[19:16:42] <simmerz> adaptr: right ok. so is there a way pre 2.6 of modifying the message?
[19:16:51] <adaptr> not to my knowledge, sorry
[19:17:11] <adaptr> youcan change the code, but that will only obfuscate what the error is
[19:18:05] <simmerz> no, I don't want to do that. thanks anyhow
[19:18:45] *** roe has joined #postfix
[19:18:54] <neurodamage> for some reason sasl_auth isn't working how do I test to see if it is?
[19:19:32] <roe> when I am using /etc/aliases, how do I get the final destination to only include the domain, not the fqdn of the server
[19:20:25] *** amrit|zzz is now known as amrit|wrk
[19:21:23] <adaptr> roe: by not using the FQDN
[19:21:28] *** simmerz has quit IRC
[19:21:36] *** havvg has joined #postfix
[19:21:44] <adaptr> the aliases do not alter the destination, the server does that
[19:22:08] <roe> adaptr, where should I not be using the FQDN?
[19:22:28] <adaptr> in the aliases file
[19:22:51] <roe> I am not using any domain at all in the aliases file, just... alias: user
[19:23:09] <adaptr> then you need to fix your configuration
[19:23:16] <adaptr> !append_dot_mydomain
[19:23:16] <knoba> adaptr: "append_dot_mydomain" : a configuration parameter in the main.cf: Append the string ".$mydomain" to addresses that have no ".domain" information.
[19:23:21] <adaptr> and
[19:23:27] <adaptr> !mydomain
[19:23:28] <knoba> adaptr: "mydomain" : a configuration parameter in the main.cf: The internet domain name of this mail system. The default is to use $myhostname minus the first component. $mydomain is used as a default value for many other configuration parameters.
[19:23:41] <adaptr> you have the FQDN as your mail name
[19:23:51] <adaptr> but wish to use your domain name (as most people do)
[19:24:32] <adaptr> it may also be in $myorigin
[19:24:48] <adaptr> and you should usually list the domain before the FQDN in $mydestination
[19:24:57] <adaptr> and.. probably more
[19:25:00] <adaptr> but start there
[19:25:49] *** stefan-f has joined #postfix
[19:28:14] <jra> listing the domain first in $mydestination? any special reason for that?
[19:28:28] <adaptr> part of one
[19:28:42] <adaptr> similar to listing the short name before the FQDN in your hosts file
[19:29:11] <adaptr> if an address lacks domain ifo, postfix has to guess what is meant, and it has several ways it does that
[19:29:14] <adaptr> *info
[19:30:53] <jra> okay. I also have it first and more exotic stuff like [127.0.0.1] last, but then... not for a special reason
[19:32:09] <adaptr> it may be half-imagined, but that still makes it half-possible :)
[19:32:19] <roe> I need to sit down and hash out the differences between, myorigin, mydomain,myhostname
[19:33:44] <adaptr> !myorigin
[19:33:45] <knoba> adaptr: "myorigin" : a configuration parameter in the main.cf: The default domain name that locally-posted mail appears to come from, and that locally posted mail is delivered to. The default $myhostname, which is fine for small sites. If you run a domain with multiple machines, you should (1) change this to $mydomain and (2) set up a domain-wide alias database that aliases each user to user at that dot users.mailhost.
[19:34:02] <adaptr> or, that is what I actually meant to tell you
[19:34:11] <adaptr> you need to change $myorigin
[19:34:19] <adaptr> as it defaults to the *hostname*
[19:37:40] *** mellen has left #postfix
[19:46:50] *** roe_ has quit IRC
[19:51:29] *** jaldhar has quit IRC
[19:52:58] <Rockj> Hi, I'm currently using the ISP tutorial from workaround.org, and Ive used it it before on debian lenny and modified it for postgresql 8.3. Thought, im trying to setup another mailserver here on debian etch and I seem to get abit stuck here:
[19:53:07] <Rockj> http://pastebin.ca/1051243
[19:56:20] *** dj_ has joined #postfix
[19:57:08] <Signum> Rockj: I run exactly that here. But it seems like you are having trouble with connecting to the postgresql server via SSL.
[19:57:16] <dj_> can i get some help with postfixMyadmin here?
[19:57:32] *** jra has left #postfix
[19:58:52] <adaptr> nor, nor with postfixadmin
[19:58:54] *** opensauce has joined #postfix
[20:01:50] *** ramy_ has quit IRC
[20:02:34] *** opensauce has left #postfix
[20:02:54] *** action09 has joined #postfix
[20:05:11] *** pulsars has quit IRC
[20:09:02] *** pulsars has joined #postfix
[20:09:07] *** martianixor has quit IRC
[20:09:50] *** Aw0L has joined #postfix
[20:11:06] *** action09 has quit IRC
[20:11:11] *** action09 has joined #postfix
[20:12:36] <Rockj> Signum: hmf, Ive tried adding hostssl in postgresql's hba config. Ill search abit more around to see if I figure it out. Because this works without troubles on my lenny install. hm
[20:13:21] <Signum> Rockj: can't speak for it. I just use non-ssl connections to 127.0.0.1.
[20:14:35] *** [diablo] has quit IRC
[20:14:37] <Rockj> I see around on forums that they mention disabling ssl in postgres fixes it, that would be okey database was only for the mailserver.
[20:15:10] *** dj_ has quit IRC
[20:16:19] *** logyati has joined #postfix
[20:16:25] <logyati> hello
[20:16:31] *** djcox has joined #postfix
[20:17:06] *** tld has joined #Postfix
[20:19:42] <tld> I'm considering starting to use TLS (STARTTLS) on my postfix server.  I worry about one thing though.  If someone tries to send me email, their server notices I support TLS, enable it, but doesn't recognize my certificate, they might not deliver the email.
[20:19:44] <djcox> having a problem getting postfixadmin to work correctly. can I get any help here?
[20:20:17] <tld> Anyone know what would be a safe certificate to get?  Should self-signed be ok?  cacert.org?  godaddy?  or would I need to consider something expensive, like VeriSign?
[20:20:54] *** martianixor has joined #postfix
[20:22:31] <lunaphyte_> i use a certificate signed by my private ca, and i haven't ever had any problems.
[20:23:20] <tld> lunaphyte: sounds great! :)
[20:23:21] <tld> thanks. :)
[20:23:34] <tld> lunaphyte: do you see it used a lot (or even some?) against other domains?
[20:24:05] <lunaphyte_> i see a a fair amount of deliveries that employ tls.
[20:24:35] <tld> very nice. :)
[20:24:38] <tld> heaps of thanks. :)
[20:24:54] *** killerchicken has quit IRC
[20:25:13] <lunaphyte_> in terms of public smtp, only a moron would refuse a certificate if they couldn't verify it.
[20:25:17] <shasta> mwalling, what, you think I'm not worthy? :)
[20:25:29] *** shasta sets mode: -o shasta
[20:25:42] <mwalling> heh
[20:26:13] <tld> lunaphyte: yeah, I mostly agree with you
[20:26:25] <tld> lunaphyte: I try to support the morons too though. ;)
[20:26:37] *** pitakill_ has quit IRC
[20:26:46] <lunaphyte_> sigh.  yeah.
[20:28:45] <tld> rather than knawing my brain out over this, I think I'll run with your experience, use "whatever" now, and re-think if I start seeing problems.
[20:28:48] <tld> heaps of thanks. :)
[20:33:49] <logyati> im trying to configure postfix smtp with LDAP... postfix is searching for the email recipient, but it says unknown user.. here is my main.cf ---> http://pastebin.com/m4c69b7c7
[20:34:26] <logyati> its not an ldap problem, cos i have courier authenticating sucessfully
[20:34:40] <logyati> the problem is postfix, to find the user
[20:34:40] *** McJerry has quit IRC
[20:39:31] <adaptr> logyati: why would postfix need to supply a recipient for *sending* mail ?
[20:39:38] <adaptr> I think you are confusing things
[20:40:57] *** pitakill__ has quit IRC
[20:41:54] *** pitakill__ has joined #postfix
[20:47:34] *** oremanj has joined #postfix
[20:50:39] <oremanj> Hi all. Is there any way to get mail forwarding loop detection turned off in selected circumstances?
[20:51:21] <oremanj> The situation: I have both a gmail account and a self-hosted account, and I want to make sure messages sent to one get sent to the other. I have a procmail rule on my home account that only forwards messages without gmail's headers, but gmail doesn't allow that sort of customization so I have to set it to forward indiscriminately.
[20:52:10] <oremanj> If someone sends a message to the home account, it'll forward to gmail, which forwards it back to home. Procmail sees the new headers and drops the message - or it would, if Postfix didn't notice first and bounce it.
[20:52:40] <oremanj> I'm looking to get rid of those bounce message duplicates.
[20:53:15] *** blackspyder has left #postfix
[20:56:21] <logyati> adaptr: well, when i send an email to test at testemail dot lan, postfix needs to search ldap base if user test exist right?
[20:58:13] *** robboplus has joined #postfix
[20:59:19] *** suuuper has joined #postfix
[21:01:38] *** Nockian has joined #postfix
[21:01:50] *** djcox has left #postfix
[21:05:59] *** Chemistrygeek has joined #postfix
[21:06:10] *** Chemistrygeek has left #postfix
[21:08:56] *** iEatChildren has joined #postfix
[21:09:12] *** tombar has joined #postfix
[21:11:07] <logyati> adaptr: so?
[21:11:17] <logyati> guys i really need this help :D
[21:11:18] *** McJerry has joined #postfix
[21:11:22] <logyati> i know its easy for you
[21:11:41] <logyati> postfix cannot find any user i try to send the email
[21:12:27] <logyati> im using LDAP
[21:17:42] *** f_ has quit IRC
[21:24:56] <logyati> mcjerry
[21:25:43] *** dj50 has joined #postfix
[21:25:55] <logyati> dj50: hey
[21:26:54] <dj50> logyati: hey
[21:28:03] <dj50> I am looking for help with postfixadmin
[21:34:30] <archvile> I'm trying to setup a solution where a server will forward email to another email address, I'm sure postfix could do this, but for just that purpose is it necessary? Thanks in advance
[21:34:49] <logyati> first help me with postifox+ldp
[21:34:50] <logyati> ldap
[21:34:51] <logyati> hehehe
[21:39:36] *** idle-boy`` has joined #postfix
[21:42:54] *** Zblakany has joined #postfix
[21:47:25] <roe> can someone help me understand this bounce: http://www.pastebin.ca/1051363
[21:50:21] <adaptr> A) you're relaying spam, which B) contains viruses
[21:54:33] <roe> I see, it is a fsking exchange server on the network
[21:54:40] *** action09 has quit IRC
[21:55:22] *** cpm has quit IRC
[21:56:38] <iEatChildren> i can see my exchange server connecting to postfix but then it looks like postfix might be relaying it on...i have nothing im my mailbox and see  relay=192.168.100.52[192.168.100.52]:25, delay=0.2, delays=0.04/0/0/0.15, dsn=2.0.0, status=sent (250 Ok: queued as 00EE6A070)  in the log
[21:56:39] <iEatChildren> any ideas?
[21:57:25] <roe> what is: 192.168.100.52
[21:57:39] <iEatChildren> another mail server on the network
[21:57:58] *** idle-boy` has quit IRC
[21:58:09] <roe> what is the mx record for the domain you're sending mail to?
[21:58:49] <iEatChildren> the fqdn of my linux box (the one i want the mail to go to...not 192.168.100.52)
[21:59:24] <roe> is "mydestinations" on your linux box populated with the domain?
[22:00:20] <iEatChildren> mydestination = $myhostname, localhost.$mydomain, localhost
[22:00:21] <archvile> what does your main.cf config look like?
[22:00:27] *** action09 has joined #postfix
[22:00:33] <roe> iEatChildren, so that is a no?
[22:00:35] <iEatChildren> the domain itself goes to the other mail server (192.168.100.52)
[22:00:44] <iEatChildren> mine would be like subdomain1.domain.com
[22:00:50] <iEatChildren> which is how the mx record is setup
[22:01:00] <tld> Anyone happened to be on a server which will use STARTTLS for outgoing mail?  I'd love to test something?
[22:01:22] <iEatChildren> so domain.com is routed to 192.168.100.52 and subdomain1.domain.com is routed to 192.168.100.15
[22:01:35] <roe> iEatChildren, you are sending mail to user at sub dot domain.com?
[22:01:38] <iEatChildren> yes
[22:01:49] <roe> is "sub.domain.com" in your mydestinations?
[22:01:50] <iEatChildren> user is a linux user on the system
[22:02:31] <iEatChildren> mydestination = $myhostname, localhost.$mydomain, localhost is exactly wht i have, ill type it in just to be safe
[22:03:00] <roe> iEatChildren, no one here knows how you have your variables set, so posting $blah is completely unhelpful to us
[22:03:23] <roe> is $myhostname = sub.domain.com?
[22:03:33] <adaptr> roe: actually, it isn't, sice he does NOT have $mydomain in $mydestination, which is clear enough
[22:05:05] <roe> adaptr, it is possible that $myhostname == sub.domain.com
[22:05:12] <iEatChildren> i added $mydomain and also added subdomain1.domain.com
[22:05:26] <adaptr> roe: not just possible, but very likely, but that's not what I said
[22:06:21] <roe> if it is equal than he isn't missing anything from mydestinations.
[22:06:27] <roe> s/than/then
[22:07:20] <adaptr> I have no idea what he wants to do, it's completely unclear
[22:07:40] <iEatChildren> its still relaying to 192.168.100.52...anything else i can check?
[22:07:59] <adaptr> iEatChildren: yes: the *logs*
[22:08:00] *** hparker has joined #postfix
[22:08:25] *** suuuper has quit IRC
[22:08:50] <iEatChildren> still getting this relay=192.168.100.52[192.168.100.52]:25, delay=0.2, delays=0.04/0/0/0.15, dsn=2.0.0, status=sent (250 Ok: queued as 00EE6A070)
[22:09:27] <adaptr> on which machine, from what, when doing *what* ?
[22:09:30] <logyati> hello guys
[22:09:33] <adaptr> you need to start at the beginning
[22:09:40] <logyati> postfix cannot find my LDAP users
[22:09:43] <archvile> are you trying to interface it with microsoft exchange..?
[22:10:02] <logyati> it binds the server, but keep saying user unknown
[22:10:08] <archvile> no idea what you're wanting to do iEatChildren
[22:10:23] <adaptr> see ?
[22:11:06] <logyati> my main.cf http://pastebin.com/m4c69b7c7
[22:11:33] <iEatChildren> i have dns setup on exchange so anything going to subdomain.domain.com forwards to postfix on my personal linux box. anything going to domain.com goes to our normal mail server which also runs postfix. when i send mail to user at subdomain dot domain.com i see it hitting postfix in my logs but i see it relaying to 192.168.100.52 (our normal mail server) instead of delivering to my local linux user
[22:11:36] *** pirho has joined #postfix
[22:11:36] <iEatChildren> that make sense?
[22:11:41] *** havvg has quit IRC
[22:11:51] <logyati> is anybody using postfix + LDAP?
[22:12:44] <roe> logyati, I am but through pam
[22:12:51] <adaptr> iEatChildren: then the sub box is not the final destination for that subdomain
[22:13:16] <archvile> adaptr yes yes
[22:13:19] <adaptr> iEatChildren: the sub box looks up the MX for sub. and gets the normal server back - it does not KNOW that it should keep the mail
[22:13:20] <logyati> roe: =/ i didnt want that... cos i dont want users loggin in the server
[22:13:26] <adaptr> you need to TELL it that
[22:13:32] <adaptr> !mydestination
[22:13:32] <knoba> adaptr: "mydestination" : a configuration parameter in the main.cf: The list of domains that Postfix delivers via the $local_transport mail delivery transport. By default, mail is given to the Postfix local(8) delivery agent that looks up all recipients in /etc/passwd and /etc/aliases, or their equivalents.
[22:13:42] *** rokra has joined #postfix
[22:13:42] <adaptr> and
[22:13:45] <adaptr> !mydomain
[22:13:45] <knoba> adaptr: "mydomain" : a configuration parameter in the main.cf: The internet domain name of this mail system. The default is to use $myhostname minus the first component. $mydomain is used as a default value for many other configuration parameters.
[22:13:52] <adaptr> set BOTH to sub.
[22:13:56] <adaptr> done.
[22:14:03] <iEatChildren> thank you, i will do that
[22:14:20] <logyati> roe: do you know how to block it?
[22:14:31] <roe> logyati, block what?
[22:14:48] <logyati> roe: ldap users to login inside mail srver
[22:14:59] <roe> logyati, you mean shell access?
[22:15:00] *** simmerz has joined #postfix
[22:15:28] <roe> not sure what "inside mail server" means
[22:15:29] <simmerz> I've would I get postfix to deny relaying to the outside world, but allow it if mail is sent from localhost?
[22:15:37] <logyati> roe: yes
[22:15:47] <logyati> roe: block shell access
[22:15:48] <roe> set their shell to /usr/bin/false?
[22:16:11] <logyati> roe: i cant, cos i have 40 machines login with ldap auth
[22:16:34] <iEatChildren> adaptr - that worked...thank you
[22:16:39] <adaptr> I know
[22:16:46] <archvile> lol
[22:16:48] <iEatChildren> hahaha
[22:17:06] <adaptr> see how easy it is once you state the problem clearly ?
[22:17:28] <iEatChildren> just trying to keep you on your toes
[22:17:52] <archvile> KISS
[22:18:53] <adaptr> ewww
[22:19:00] *** pulsars has quit IRC
[22:19:04] <archvile> ?
[22:19:16] <roe> logyati, I see, then how you're doing is probably best, but I can't help ya
[22:20:35] *** githogori has joined #postfix
[22:20:46] <logyati> roe: i can block ssh, but not normal login :(
[22:21:33] <adaptr> logyati: you mean you are physically unable to, or you just don';t have a clue HOW ?>
[22:21:42] *** asldkjfas has joined #postfix
[22:22:03] *** dj50 has left #postfix
[22:22:05] <logyati> adaptr: physically, or any kind of login, but related to email
[22:22:21] <adaptr> and you want to disable it ?
[22:22:25] <logyati> iyes
[22:22:51] <asldkjfas> if i use postfix for email server will it take emails even if my computer is shut off?
[22:22:54] <adaptr> set shell to /bin/false
[22:23:01] <adaptr> asldkjfas: guess!
[22:23:20] <adaptr> now I wish knoba had wow
[22:23:22] <asldkjfas> adaptr i think, no. but will it take in email when i put on computers again?
[22:23:25] <logyati> adaptr: i cant set it, cos i have 40 pcs authenticating through LDAP
[22:23:48] <adaptr> asldkjfas: since that has nothing to do with YOUR computer, it hardly matters which or even WHETHER you run an MTA, now does it ?
[22:24:00] <simmerz> http://rafb.net/p/Yl2HoM31.html is my main.cf, incoming mail always comes from a known host which is an incoming mail scanner. I have a postgres backed mailstore sitting on the server too which provides Submission. I want to use that for sending mail, which means it would go out through the mailstore, to postfix and out to the internet. when it gets to postfix I want outgoing mail to be scanned. how would I go about doing this if i have the usu
[22:24:05] <adaptr> logyati: I asked you if you wanted to disable login
[22:24:20] <asldkjfas> adaptr ok so computer must be on 24/7 for me to have postfix?
[22:24:22] <logyati> adaptr: only in the mail server
[22:24:26] <adaptr> that has a very definite meaning
[22:24:30] *** allan has quit IRC
[22:24:46] <asldkjfas> yes or no?
[22:24:56] <adaptr> asldkjfas: most public mail servers will retry for a few days if they ca'n't reach you
[22:25:03] <adaptr> oh go fuck yourself
[22:25:08] <archvile> exactly
[22:25:18] <adaptr> impatience is NOT what I need today, bitch
[22:25:29] <asldkjfas> adaptr are you angry?
[22:25:34] <asldkjfas> dont namecall me
[22:25:36] <adaptr> no, you are a clueless bitch
[22:25:42] <asldkjfas> yes i am
[22:25:42] <archvile> asldkjfas: test it.
[22:25:45] <asldkjfas> that is why i am here
[22:25:46] <asldkjfas> idiot
[22:25:54] * simmerz sits back
[22:25:57] <wols_> asldkjfas: the idiot is you. and you've already been answered
[22:26:14] <asldkjfas> he can take his bible riddles elsewhere i want a yes or no answer
[22:26:19] <wols_> asldkjfas: and if you insult other people, don't expect any help. I wanted to help you on debian too but with your attitude: no
[22:26:24] <asldkjfas> i dont even want to talk to him anymore. its fine. lol
[22:26:26] <archvile> asldkjfas: test it yourself.
[22:26:29] <wols_> asldkjfas: how much money did you pay to demand an answer?
[22:26:39] <wols_> asldkjfas: no one will talk to you anymore either
[22:26:50] <asldkjfas> wols i never forced him to come in here if his daddy put his penis up his butt
[22:26:59] <simmerz> asldkjfas: that's enough now
[22:27:00] <adaptr> oh, bye sucker
[22:27:02] <archvile> Zzz
[22:27:08] <asldkjfas> sheesus hahaha
[22:27:15] <asldkjfas> good luck on a job adaptr
[22:27:20] *** slackjr_ has quit IRC
[22:27:20] <asldkjfas> you are gonna get fired in ONE SEC
[22:27:28] <adaptr> how sad is THAT ?
[22:27:34] <archvile> quite
[22:27:44] <adaptr> you , little boi, could only dream of my job
[22:27:49] <simmerz> amazing how quickly people degenerate towards childhood
[22:27:53] <adaptr> sad, sick, wet dreams
[22:27:58] *** pulsars has joined #postfix
[22:28:09] <asldkjfas> what a waste of time...
[22:28:20] <adaptr> yes, you were an utter waste of my time
[22:28:30] <adaptr> no need to remind me
[22:28:30] <wols_> adaptr: can you stop it please
[22:28:33] <wols_> put him on ignore
[22:28:38] <archvile> asldkjfas: most of the people in here are working on things light years before everyday use, as a career. just keep that in mind.
[22:28:59] <simmerz> grow up, the lot of you. you're both acting like small children now. asldkjfas, your demanding of an answer like that is disrespectful to the fact that everyone in here is a volunteer. adaptr, you egged asldkjfas on.
[22:29:10] <asldkjfas> yawn
[22:29:17] <adaptr> sorry, I really don't need that today.. ignored
[22:29:21] <simmerz> heh
[22:29:35] <simmerz> any chance of a pointer in the right direction for my smarthost issue?
[22:29:42] <adaptr> I eggedid not !
[22:29:52] <adaptr> I do no egging, I don;t even have egges
[22:29:58] <simmerz> adaptr: heh
[22:30:23] <simmerz> anyway, peace restored
[22:30:33] <adaptr> now, if I had egges, I would have had a use for them
[22:30:43] <simmerz> adaptr: i dread to think
[22:30:47] <adaptr> yeah ? you the big piecekeeperz here now ?
[22:30:56] <adaptr> what happened to the real ops ? :P
[22:30:59] <simmerz> :P
[22:31:01] <simmerz> they've gone
[22:31:10] <asldkjfas> again how utterly pathetic. seriously. haha. this is like a comedy show.
[22:31:13] <adaptr> the palce is going to the dregs, that's fo; sho'
[22:31:14] <asldkjfas> :)
[22:32:44] <simmerz> would I be better off having two separate postfix instances? one for incoming mail and one for outgoing mail that acts as a smarthost to the rest of the local network?
[22:33:43] <simmerz> I'd like if possible to just use a new port in the one instance so that the smarthost side of things does some virus/spam checking before sending mail out
[22:33:53] <simmerz> but i don't want to have to auth to send
[22:34:38] *** jellis-real has quit IRC
[22:35:10] *** oremanj has left #postfix
[22:37:36] <simmerz> guess now
[22:37:37] <simmerz> not
[22:37:49] *** rokra has left #postfix
[22:41:27] *** Zblakany has quit IRC
[22:42:00] *** suuuper has joined #postfix
[22:46:05] *** Zblakany has joined #postfix
[22:47:12] *** neurosys0 has quit IRC
[22:48:56] <simmerz> I'm stuck :(
[22:49:32] <adaptr> submission
[22:49:40] <adaptr> !submission
[22:49:40] <knoba> adaptr: Error: "submission" is not a valid command.
[22:49:44] <adaptr> dumbot!
[22:49:51] <adaptr> anyhoo, that's what you want
[22:50:03] *** Zblakany has quit IRC
[22:54:23] *** asldkjfas has quit IRC
[22:58:26] <simmerz> adaptr: yes I know, but I'm not using submission in postfix. I'm using it built into my mailstore.
[22:58:38] <simmerz> so all direct "real" user connections will be to the mailstore only
[22:59:01] <simmerz> so submission on the mailstore wants to send via a smarthost, which i want to be my postfix instance
[23:00:15] <simmerz> however, incoming mail comes in on port 25, as per the default, and outgoing mail from the smarthost wants to just go out. but i want to content_filter it before it leaves. could use another port, like 20225 for instance, which only listens to localhost
[23:00:25] <simmerz> but i've tried that and it still says relay denied
[23:00:46] *** martianixor has quit IRC
[23:05:56] *** martianixor has joined #postfix
[23:11:09] *** simmerz has quit IRC
[23:12:44] *** Broken|work_ has quit IRC
[23:16:11] *** j_s has quit IRC
[23:16:37] *** simmerz has joined #postfix
[23:17:18] <simmerz> right, managed to get it working. had a wrong setting somewhere. anyway, now i have an amavis problem, and I'm going to guess it's a chroot issue: lstat() failed
[23:23:05] *** ianbeyer has quit IRC
[23:27:00] *** McJerry has quit IRC
[23:29:25] *** Mavvie has joined #postfix
[23:33:39] *** martianixor has quit IRC
[23:34:38] <rob0> I mist the fight?
[23:37:01] <simmerz> rob0: yep lol
[23:37:10] *** logyati has quit IRC
[23:42:25] *** Zblakany has joined #postfix
[23:44:17] *** [diablo] has joined #postfix
[23:45:39] *** Xcaliber009 has quit IRC
[23:45:50] *** yann_ has quit IRC
[23:57:04] *** Xcaliber009 has joined #postfix
[23:59:46] <jeev> "535 5.7.8 Error: authentication failed: authentication failure" is that normal for DIGEST MD5? under TLS..
[23:59:58] <jeev> i'm not sure what it shoudl be doing, i assume plain is fine under tls..





top