[00:00:38] *** tshine has quit IRC
[00:05:39] *** Xcaliber009 has quit IRC
[00:08:11] *** havvg has joined #postfix
[00:09:27] <jaldhar> is there anything in master.cf that could affect virtual alias domains?
[00:11:00] *** Xcaliber009 has joined #postfix
[00:12:35] *** j_s has quit IRC
[00:12:58] *** martianixor has joined #postfix
[00:13:48] *** war9407 has quit IRC
[00:15:32] *** war9407 has joined #postfix
[00:16:03] *** ramy_ has joined #postfix
[00:18:27] <jaldhar> how about permissions?  What should be the permissions of /etc/postfix/virtual.db?
[00:23:23] *** tombar has quit IRC
[00:26:49] *** devurandom has left #postfix
[00:28:05] *** ramy_ has quit IRC
[00:32:39] *** war9407 has quit IRC
[00:32:49] *** action09 has quit IRC
[00:33:17] *** redduck666 has quit IRC
[00:34:28] *** war9407 has joined #postfix
[00:47:37] <pickcoder> jaldhar: if you have problem why don't you just state it
[00:48:02] <pickcoder> obviously, postfix needs read access to any postmap db
[00:48:17] *** troythetechguy has joined #postfix
[00:48:54] <pickcoder> you can configure an smtpd service in master.cf with any of the standard paramters
[00:49:07] <pickcoder> so, yes, master.cf could affect vitual alias domains
[00:49:26] *** idle-boy has quit IRC
[00:52:27] *** suuuper has quit IRC
[00:55:52] *** troythetechguy has quit IRC
[00:57:05] *** baver has joined #postfix
[00:59:23] <baver> I have postfix set up on a server on a LAN to relay messages and do local delivery for our domain. Problem is, we also have an internet mta for the same domain, which includes mailing lists. We'd rather not have to duplicate the ml's on the local machine. Is there anyway to have postfix relay the message to the internet server if the user/mailing list isn't found?
[01:00:04] *** havvg has quit IRC
[01:00:10] <jaldhar> pickcoder: my problem is that despite all attempts, virtual aliases result in 'User unknown in virtual alias table' i've been trying all kinds of things with other people on this channel but to no avail :(
[01:02:06] <pickcoder> jaldhar: did you postmap the text map?
[01:02:24] <jaldhar> pickcoder: over and over ;)
[01:02:40] <higuita> baver: setup a aliases/virtual from the original mailling list to the internet server (ie: ml at domain dot com -> ml at internet dot domain)
[01:03:09] <baver> higuita: domain.com and internet.domain are identical
[01:03:41] <higuita> then use the normal delivery to the internet.domain ..err.. domain or use a transport to forward the internet.domain to the internet ip
[01:04:03] <higuita> baver: @gmail.com -> @internal.gmail.com
[01:04:27] <higuita> setup the internet server to also accept emails to @internal.gmail.com
[01:06:06] <pickcoder> jaldhar: I don't have time right now to go through the debugging steps, but I may later tonight
[01:06:31] <jaldhar> pickcoder.  Ok roughly when?
[01:06:51] <baver> higuita: for various reasons, we'd rather use the same domain for both ... assuming it's possible. If it's not, we can do what you're saying, but I just want to know if we can do it using the same domain.
[01:07:18] <pickcoder> I dunno.. I have to wait for a file save to finish, go home. and put two 10 month-olds to bed before I can "play"
[01:07:28] <pickcoder> it may be 10pm
[01:07:32] <pickcoder> et
[01:08:45] <jaldhar> pickcoder: heh i know how that is.  A 3 year-old is climbing on top of me as we speak. ;-) I'll be here.
[01:11:56] <pickcoder> one more "are they twins" question and I'm going to attack
[01:15:38] <vice-versa> jaldhar: are you using no_address_mappings in receive_override_options anywhere by any chance?
[01:16:54] <vice-versa> not sure what your woes are exactly, but no_address_mappings disables virtual alias map expansion and commonly surfaces in here as the culprit with virtual alias expansion issues
[01:18:04] *** hever has quit IRC
[01:19:11] *** hever has joined #postfix
[01:22:57] *** war9407 has quit IRC
[01:23:39] *** harlan has quit IRC
[01:27:22] *** allan has quit IRC
[01:27:56] *** [diablo] has quit IRC
[01:30:25] *** cafuego has quit IRC
[01:30:36] *** cafuego has joined #postfix
[01:35:34] <baver> higuita: found what I was looking for ... "fallback_transport" option. thanks for the other suggestions
[01:35:36] *** baver has left #postfix
[01:37:55] *** protonchris has quit IRC
[01:44:37] *** tombar has joined #postfix
[01:46:25] *** ullio has quit IRC
[01:47:13] *** cafuego has quit IRC
[01:49:15] *** martianixor has quit IRC
[01:49:42] *** cafuego has joined #postfix
[01:54:06] *** linkslice has quit IRC
[01:54:39] *** Xcaliber009 has quit IRC
[01:56:48] <jaldhar> vice-versa: I didn't think of that.  Let me check...
[01:57:51] <pickcoder> bbl
[01:57:53] *** pickcoder has quit IRC
[01:59:01] <jaldhar> yikes!
[01:59:11] <jaldhar> receive_override_options = no_address_mappings
[01:59:23] <jaldhar> where did that come from?
[02:01:19] *** Zblakany has quit IRC
[02:02:29] <jaldhar> AAAAAAARGH!
[02:02:44] <jaldhar> Thankyou vice-versa!
[02:03:39] <vice-versa> np
[02:06:10] <jaldhar> I've been banging my head againsts this for two days off and on
[02:13:55] *** githogori has quit IRC
[02:19:30] *** ramy_ has joined #postfix
[02:19:31] *** makerc has quit IRC
[02:39:19] *** _Jense has joined #postfix
[02:39:39] *** rokra has left #postfix
[02:44:06] *** _Jense is now known as Jense
[02:44:44] *** robboplus has quit IRC
[02:46:49] *** cafuego has quit IRC
[02:49:23] <Rockj> Signum, I got the postfix-postgresql part to work now in chroot env. without setting ssl = false in postgres. :-)
[02:50:08] *** dan__t has quit IRC
[02:50:16] *** dan__t has joined #postfix
[02:53:25] *** jerrcs has quit IRC
[02:59:44] *** cafuego has joined #postfix
[03:06:28] *** EGBlue has joined #postfix
[03:08:49] *** EGBlue has left #postfix
[03:10:37] *** Tachy_ has joined #postfix
[03:19:26] *** pr0t has joined #postfix
[03:20:07] <pr0t> Hello, I have a small problem I have taken a bunch of email from a dead drive and would like to copy them to my new system and requeue them for delievery how can i do that with postfix?
[03:24:02] <mwalling> !sendmail
[03:24:03] <knoba> mwalling: "sendmail" : a pretty cryptic MTA that was famous in the ancient days of UNIX and still runs on a lot of mail servers. Don't confuse it with the "sendmail" command that is offered by Postfix to send emails (for compatibility reasons).
[03:24:08] <mwalling> arg
[03:24:16] <mwalling> i confused the !factoids
[03:24:24] <jeev> uh huh
[03:24:28] <mwalling> anyway, you want sendmail(1)
[03:25:07] *** Tachy has quit IRC
[03:29:59] <pr0t> Hello, I have a small problem I have taken a bunch of email from a dead drive and would like to copy them to my new system and requeue them for delievery how can i do that with postfix?
[03:30:24] <mwalling> do you fscking listen to anything?
[03:30:29] <mwalling> 21:24 < mwalling> anyway, you want sendmail(1)
[03:38:50] <pr0t> you talking to me?
[03:39:40] *** dcmwai has joined #postfix
[03:39:44] <dcmwai> hello all
[03:40:05] <mwalling> no, i'm talking to the other person who has come into the channel and asked the same question twice in the last 20 minutes
[03:40:19] <dcmwai> Anyone can help me on the transport_map for yahoo?
[03:40:37] <dcmwai> There are so many yahoo domain how should I include them all
[03:41:26] <vice-versa> huh, are ya, huh, huh are ya talken to me punk
[03:41:34] <dcmwai> yahoo.* smtp:[smtp server?]
[03:42:52] <vice-versa> mwalling: having a bad night are we?
[03:43:04] <mwalling> no, its a good night
[03:43:14] <vice-versa> good
[03:43:44] <mwalling> i'm getting converted into an employee from a contractor, wife got 2 job offers today, one is .9 miles from the house
[03:43:52] <mwalling> the other is 2.8
[03:43:57] <mwalling> er, no, 2.3
[03:44:26] <vice-versa> nice
[03:44:42] <vice-versa> dcmwai: don't think you want the []
[03:45:14] <dcmwai> vice-versa, oh ya /haha
[03:45:34] <dcmwai> vice-versa, can I use relayhost instead of smtp?
[03:46:19] <vice-versa> !relayhost
[03:46:20] <knoba> vice-versa: "relayhost" : a configuration parameter in the main.cf: The default host to send non-local mail to when no entry is matched in the optional transport(5) table. When no relayhost is given, mail is routed directly to the destination.
[03:47:56] <vice-versa> dcmwai: perhaps you should explain in a little more detail what your issue is or what it is you want to accomplish
[03:48:48] <dcmwai> vice-versa, oh, Sorry. Let me explain abit. I've my office mail server
[03:49:43] <dcmwai> vice-versa, and all my mail must relay to our hosting provider for smtp (as our ISP block 25 from outgoing)
[03:50:18] <dcmwai> vice-versa, but this hosting server have some issue with some other domain e.g yahoo.*
[03:50:54] *** magyar has quit IRC
[03:51:02] <dcmwai> vice-versa, too bad is that I Cannot contact them yet so I'll have to fine a way around and route it to the gmail.com smtp
[03:51:34] <dcmwai> but gmail.com smtp have a limitation on sending and also will reweite the sender address...
[03:51:41] <dcmwai> So :(
[03:51:52] <dcmwai> only certain mail will route there.
[03:52:49] <vice-versa> then you indeed have issues
[03:53:42] <vice-versa> so obviously you're using your ISPs smtp to relay for you via relayhost
[03:53:49] *** pr0t has quit IRC
[03:55:44] <dcmwai> vice-versa, right
[03:56:13] <dcmwai> vice-versa, but now with this smtp...
[03:56:26] <dcmwai> I'm not too sure if it can go...
[03:56:29] <dcmwai> let try :)
[03:57:02] <vice-versa> does Yahoo! support submission?
[03:57:51] <dcmwai> vice-versa, har?
[03:58:04] <mwalling> heh
[03:58:06] <mwalling> !submission
[03:58:07] <knoba> mwalling: Error: "submission" is not a valid command.
[03:58:17] *** magyar has joined #postfix
[03:58:24] <mwalling> dcmwai: submitting mail to yahoo on an alternate port
[03:58:44] <vice-versa> port 587 to be exact
[03:59:34] <dcmwai> mwalling, vice-versa: I don't think so... yahoo will block my smtp sending as span.
[03:59:58] <mwalling> submission is usually authitencated
[04:00:43] <vice-versa> yeah, was just thinking it might be a service they offered
[04:01:02] <dcmwai> mwalling, authitencated?
[04:01:06] <mwalling> ueah
[04:01:08] <vice-versa> dunno, don't do much with Yahoo! myself
[04:01:11] <mwalling> the wine is spelling
[04:01:48] <dcmwai> but who have the username and password?
[04:01:53] <dcmwai> using TLS or etc?
[04:02:21] <mwalling> vice-versa: i'm not even going to try with the !factoid
[04:02:30] <mwalling> its like !sasl_client or something
[04:02:45] <vice-versa> lol, yeah you're batting 0 tonight ;)
[04:02:52] <mwalling> !basic
[04:02:52] <knoba> mwalling: "basic" : http://www.postfix.org/BASIC_CONFIGURATION_README.html : a good starting place for Postfix beginners, many common questions are answered here.
[04:02:54] <mwalling> :)
[04:02:55] <vice-versa> !sasl
[04:02:55] <knoba> vice-versa: "sasl" : SASL is 'Simple Authentication and Security Layer', necessary for SMTP AUTH, and provided to Postfix by addin software. Cyrus SASL and/or Dovecot IMAP/POP3 can provide SASL. See http://www.postfix.org/SASL_README.html for details.
[04:03:00] <vice-versa> !saslclient
[04:03:01] <knoba> vice-versa: "saslclient" : See http://www.postfix.org/SASL_README.html#client_sasl when you need client-side SASL authentication to deliver mail to another server
[04:03:05] <mwalling> yeah, that one
[04:03:07] <mwalling> dcmwai: ^^
[04:03:24] <dcmwai> oh I see
[04:03:34] <vice-versa> but to be honest, I think he's sol
[04:04:08] *** jaldhar has quit IRC
[04:04:11] <mwalling> ditto
[04:04:32] <dcmwai> sol?
[04:04:36] <mwalling> dcmwai: if you've got the budget, you can get a vps for $20/mo and run postfix there and use that as your relay host
[04:04:41] <mwalling> Shit Outta Luck
[04:05:18] <dcmwai> mwalling, my Hosting of 1GB only cost me USD4/mo :
[04:05:31] <mwalling> VPS != Shared Hosting
[04:05:31] <dcmwai> which including this bad smtp services :)
[04:05:43] * mwalling points dcmwai to linode.com
[04:05:43] <dcmwai> virtual private server
[04:05:46] <mwalling> yeah
[04:06:20] <mwalling> vice-versa: my idea makes sense, right ;)
[04:07:15] <dcmwai> mwalling, vice-versa: anything wrong with this files? http://pastebin.com/m7600f307
[04:07:20] <dcmwai> transport_map
[04:07:25] *** cafuego has quit IRC
[04:11:39] *** githogori has joined #postfix
[04:11:59] <vice-versa> dcmwai: don't think yahoo.* is valid
[04:12:20] <dcmwai> vice-versa, But * also don't seem to get through also..
[04:12:26] <dcmwai> let me remove one *
[04:13:01] <dcmwai> vice-versa, anyway I could include all yahoo domian e.g yahoo.com, yahoo.com.tw. etc etc
[04:15:48] *** cafuego has joined #postfix
[04:16:09] *** pirho has quit IRC
[04:16:37] <dcmwai> vice-versa,  relay=none, delay=742, delays=741/1.1/0/0, dsn=4.3.0, status=deferred (unknown mail transport error)
[04:16:49] <dcmwai> still have this for the *
[04:17:16] <vice-versa> dcmwai: that or create a regexp table specifically the yahoo domains
[04:17:33] <dcmwai> vice-versa, can you guide me how?
[04:17:48] * dcmwai going to wc...
[04:18:36] <vice-versa> see transport(5) and regexp_table(5)
[04:19:52] *** makerc has joined #postfix
[04:23:43] *** maordeb has quit IRC
[04:23:55] *** allan has joined #postfix
[04:28:43] *** hever has quit IRC
[04:35:27] <dcmwai> vice-versa, need some help
[04:35:42] <dcmwai> my transport_map for catch alll don't seem to be working
[04:36:15] <dcmwai> for all the domain spicified it work but for any other domain not in the list will not relay...
[04:36:27] <dcmwai> What do you think is wrong there?
[04:36:53] *** amrit|wrk is now known as amrit|bbl
[04:38:50] *** cafuego has quit IRC
[04:39:25] *** makerc has quit IRC
[04:39:40] *** cafuego has joined #postfix
[04:46:21] *** tombar_ has joined #postfix
[04:53:07] *** allan has quit IRC
[04:53:10] *** m0f0x has joined #postfix
[04:53:58] *** irc___ has joined #postfix
[05:00:40] *** Zeit|awy_ has joined #postfix
[05:00:59] *** jonkristian has quit IRC
[05:02:56] *** tombar has quit IRC
[05:06:02] *** head has quit IRC
[05:06:42] *** Zeit|awy has quit IRC
[05:28:31] *** jcrites has joined #postfix
[05:30:16] <jcrites> hey
[05:30:34] <jcrites> what are important considerations I should ... consider ... if I'm going to start using PostFix to send mail to the Internet at large, or receive bounces?
[05:31:30] <mwalling> !basic
[05:31:30] <knoba> mwalling: "basic" : http://www.postfix.org/BASIC_CONFIGURATION_README.html : a good starting place for Postfix beginners, many common questions are answered here.
[05:32:42] <jcrites> also, are there any important configuration steps to ensure that my servers will have good bandwidth?  any particular partioning or organization of the server file structure on the disk?
[05:32:51] <jcrites> perhaps a link on "high performance postfix"?  :-)
[05:33:06] <jcrites> I found one:  http://www.postfix.org/TUNING_README.html
[05:33:18] *** green-ant has quit IRC
[05:33:30] <jcrites> one more question:  what kind of hardware should I use for machines that will primarily (or only) be running postfix?  is disk IO the most important?
[05:33:49] <jcrites> if I wanted a really beefy machine, would I want database-type hardware?
[05:34:26] *** master_o1_master has joined #postfix
[05:34:32] *** green-ant has joined #postfix
[05:35:29] <jcrites> eventually I would like to transition my company's mail infrastructure to use PostFix (or another Linux MTA); we'll need to support about 50 - 75 million emails per day
[05:35:42] <jcrites> any idea how much hardware we'll need for that?
[05:35:53] <jcrites> 20 machines?  200?
[05:37:37] <jcrites> somewhere around 20 kb - 150 kb per mail
[05:40:07] *** idle-boy`` has joined #postfix
[05:41:01] *** tshine has joined #postfix
[05:42:11] <jcrites> any ideas, anyone?
[05:42:13] <jcrites> :)
[05:44:25] <shasta> doing any content filtering, jcrites?
[05:44:54] <jcrites> hmmm
[05:44:56] <jcrites> in general, no
[05:45:04] <jcrites> however, we were hoping to segregate our external IPs
[05:45:06] <shasta> that's what's most cpu-intensive
[05:45:16] <jcrites> one set of IPs for marketing mail, and one set for transactional (order-related) email
[05:45:28] <jcrites> that way if an ISP blocks us because of complaints about what our marketers send, we will still be able to deliver important mail
[05:45:39] <jcrites> but that would be a very basic "switch" on a mail header.  no filtering otherwise
[05:45:54] <shasta> unless they block your entire netblock ;)
[05:46:06] *** master_of_master has quit IRC
[05:46:09] <jcrites> we keep the IPs on different class B subnets actually :)
[05:48:05] <jcrites> I know you can't give specifics, but about how many emails per day can a postfix machine handle do you think? :)
[05:48:21] <jcrites> don't worry we aren't spamming :-)  we allocate mail to users based on how the mails actually perform, based on user preferences, etc.  :)
[05:48:35] <jcrites> we want to send useful mail, but also want the capacity to send very high volumes
[05:48:54] <jcrites> (we only send to customers who have purchased from our company and are opted in to that mail type etc)
[05:49:16] * mjoseph really wonders who is sending 75 million emails per day
[05:49:40] <shasta> no idea, I don't have that much mail traffic :)
[05:50:01] * mjoseph can't comment, but still it piques his interest
[05:51:13] <jcrites> we're not at 75 million right now
[05:51:24] <jcrites> but will be in a little while based on growth ;-)
[05:51:54] <jcrites> we're going to rework some of our inrastructure and I want to make sure we'll be able to scale horizontally
[05:52:12] <jcrites> right now we have a mail solution from a proprietary vendor, and the machines are extremely expensive
[05:52:29] <jcrites> like tens of thousands per box...  (from before I joined the company ;) )
[05:52:53] <jcrites> so I want to get rid of that shit and replace it with standard Linux, because we don't use any of the features of those other boxes that would make them worth that much to some companies
[05:53:16] <jcrites> (mostly stuff about receiving mail...  centralized reputation checking, virus scanning, various kinds of aggregation and traffic analysis)
[05:53:25] <jcrites> we don't receive mail; we just send it :-)
[05:53:40] <jcrites> except for our bounce and complaints server, which we process to opt users out
[05:56:55] <shasta> i have no experience with such high volumes; out of curiosity: how do you submit those emails to your mailservers?
[05:57:18] *** tombar_ has quit IRC
[05:57:27] <jcrites> currently it's via SMTP from applications using the Apache Commons email library
[05:57:31] <jcrites> MailClient I think it's called
[05:57:38] <jcrites> but I've considered reworking that too
[05:57:43] *** idle-boy` has quit IRC
[05:58:07] <jcrites> we have problems with latency so I've considered, rather than having the applications talk directly to the external MTAs, the applications could deliver to a local PostFix server, which would then buffer the mail to the servers that send externally
[05:58:19] <jcrites> (not all machines can send properly to the outside due to network configuration, etc.)
[05:58:57] <jcrites> I mean, we don't want mail going out through the datacenter common IP :-)  we want to use dedicated static IPs which would be given to the specific machines who sit on the border
[05:59:19] <jcrites> our system is kind of weird because internal applications actually initiate this mail through a web service call
[05:59:28] <jcrites> so we have a website where customers buy things
[06:00:02] <jcrites> the checkout page will make a web service call to our application fleet (through a load balancer)... then those fleet machines make an SMTP call to our MTA systems (through a load balancer)
[06:00:25] <jcrites> right now we have high enough volumes, or other problems that cause the MTA systems to have really high latency
[06:01:56] <jcrites> I have been considering advocating a shift where all internal systems generate actual emails
[06:02:14] <jcrites> and the internal systems are configured to route them (external mails) to our mail infrastructure, which processes them and sends them out the right IPs
[06:03:08] <shasta> you need good (efficient) storage
[06:04:18] <shasta> 75 million emails daily, let's say only 1% isn't delivered right away, that gives you 7.5 million emails staying in your queue
[06:04:39] <jcrites> hmmm yeah, true
[06:04:48] <jcrites> we'd have to keep those for 24 hours or more
[06:05:16] <jcrites> 143 gigabytes at 20 kilobytes per email....
[06:05:24] <jcrites> I'm guessing we'd have a fleet of these, probably at least 20
[06:05:41] <jcrites> thanks for mentioning that :)
[06:06:11] <shasta> external storage is often more efficient, but i'm not sure if NFS is good for mail queues
[06:06:45] <mjoseph> jcrites: the rpc model isn't horrible
[06:07:28] <mjoseph> my advice to setup a test mail server
[06:07:38] <mjoseph> and inject (using your HTTP-based RPCs) messages
[06:07:53] <mjoseph> so set up a few test injectors that respond to those RPCs from your message-send-systems
[06:08:00] <mjoseph> have them point a postfix MX
[06:08:01] <mjoseph> at your edge
[06:08:12] <mjoseph> and test a bunch of mail to somewhere or somewheres
[06:08:22] <mjoseph> by poking your message-send-ssytems with a decent number of RPCs
[06:08:23] <jcrites> cool :-)
[06:08:30] <jcrites> that sounds like a plan
[06:08:35] <mjoseph> you need to gauge the postfix performance under your specific configuration
[06:08:40] <jcrites> and I can test different hardware types to see what kind of performance they give
[06:08:44] <mjoseph> your message style, your hardware
[06:08:51] <mjoseph> types of tables used
[06:08:56] <mjoseph> how fast your DNS is
[06:08:57] <mjoseph> etc
[06:09:19] <jcrites> DNS... good point...
[06:09:32] <mjoseph> see when the postfix server tips over (you'll notice that some of the queues don't drain)
[06:09:59] <shasta> yeah, you need a decent DNS performance
[06:10:19] <mjoseph> at these volumes, you'll want to spend a good amount of time tuning the postfix variables
[06:10:51] <mjoseph> while you're right to consider scalability horizontally (it's very much the correct approach), you want to maximize the throughput per $ of one server
[06:11:05] <mjoseph> and, btw, that is key
[06:11:29] <jcrites> yeah, good point, not just throughput
[06:11:34] <mjoseph> if you can double the throughput of a given server by going with more expensive hardware, but that hardware costs 3x
[06:11:40] <jcrites> do you think virtualized servers would work well, or should I focus on real hardware?
[06:11:55] <mjoseph> it _might_ not be worth it (you do need to consider datacenter costs too)
[06:12:06] <mjoseph> real hardware
[06:12:18] <mjoseph> _except_ if you are trying to get rapid redeployment
[06:12:29] <mjoseph> at your scale, yo0u likely have a good number of various servers
[06:12:38] <mjoseph> virtualization really buys you a few things
[06:12:49] <jcrites> yeah it's just easier to get within the company, easier to manage
[06:12:53] <mjoseph> in the most basic level, it buys you machine multiplexing
[06:12:55] <jcrites> cheaper for our group ;-)
[06:13:02] <mjoseph> that is a detriment to your operation
[06:13:02] <jcrites> but only if it is cheaper per unit mail...
[06:13:11] <jcrites> true
[06:13:12] <mjoseph> virtualized servers will not perform as well, generally
[06:13:16] <mjoseph> however
[06:13:26] <mjoseph> many virtualization systems also handle things like job rescheduling
[06:13:32] <mjoseph> and moving VMs between machines
[06:13:35] <jcrites> eventually we would like to use something like EC2 even :)
[06:13:59] <mjoseph> that could help you deal with machine issues, and might make things better for you in the long run...it might be worth the performance cost
[06:13:59] <snadge> im going to be testing Xen at work, we may end up partitioning some functions of existing servers, into vms
[06:14:07] <mjoseph> it's a business decision you have to make
[06:14:15] <mjoseph> Xen on it's own isn't really a good help for this application
[06:14:20] <mjoseph> not without a frontend system
[06:14:52] <mjoseph> the _1_ reason to virtualize for a system like this is to allow easier machine management
[06:15:18] <snadge> im giving it a shot because it seems people are actually using it, and distributions are designed and have documentation on how to set up dom0 and domU servers
[06:15:26] <jcrites> the only reason we'd use virtualization is that it would potentially be a better efficiency ratio, because the servers cost us less (charged to us by the infrastructure teams) than real hardware
[06:15:36] <jcrites> so I'll need to add up throughput and divide by dollars :)
[06:15:41] <mjoseph> yeah
[06:16:00] <mjoseph> snadge: i'm a fan of virtualization
[06:16:04] <snadge> im presuming there are ways and means to do live migration, set resource limits etc with xen.. looking forward to learning it
[06:16:12] <mjoseph> just saying that in this setup, it's not going to help performance particularly
[06:16:19] <jcrites> thanks for all your help guys, it's been really helpful :)
[06:16:33] <mjoseph> its' really good when you can pack unlike services
[06:16:44] <mjoseph> like something CPU intensive on a machine that is also doing disk-intensive stuff
[06:16:50] <mjoseph> postfix does both :/
[06:17:23] * jeev has to impliment antivirus and DKIM today
[06:17:23] <jcrites> hey, one more question .... what is the right way to *test* PostFix throughput on some system?
[06:17:27] <jcrites> something like smtp-source?
[06:17:34] <jcrites> oh shit, I forgot about that
[06:17:37] <jcrites> we use DKIM and DomainKeys
[06:17:46] <jcrites> that will be CPU intensive I think :/
[06:17:56] <jcrites> our current boxes running average hardware can pull 250 or 500k/hour
[06:18:04] <jeev> huh
[06:18:06] <jcrites> I hope that postfix running on solid hardware can do that much
[06:18:08] <jeev> yea domainkeys too
[06:18:14] <jeev> i dont do much mail
[06:18:25] <jeev> probably 400 legit and 5000 spam hehe per day
[06:18:32] <jcrites> lol
[06:18:33] <mjoseph> i don't have personal experience with domainkeys
[06:18:39] <mjoseph> but again, one more variable to measure
[06:18:43] <mjoseph> also, notice what fails first
[06:18:45] <mjoseph> is the CPU maxed
[06:18:50] <mjoseph> is it disk I/O
[06:18:55] <mjoseph> network (unlikely)
[06:18:56] <snadge> thats where live migration helps
[06:18:59] <jcrites> yeah.... we have good monitoring systems that we can help with that, I think
[06:19:12] <mjoseph> jcrites: you can use smtp-source
[06:19:17] <mjoseph> to measure discrete smtp performance
[06:19:25] <snadge> if you're using too much cpu/ram for one mail server.. move it to a beefier server
[06:19:37] <mjoseph> however, sicne you already have a modularized mail sending system
[06:19:43] <mjoseph> i'd say replicate a few of those machines :)
[06:19:49] <mjoseph> it is a more realistic test
[06:20:06] <jcrites> so we're not necessarily interested so much in where things fail as getting to maximum cost efficiency... so in that case, would it be useful to use smtp-source to try to find the maximum bandwidth it can handle, for each hardware config?
[06:20:28] <mjoseph> maybe
[06:20:39] <jcrites> we have a couple of different hardware types, like, IO-oriented virtual, compute-oriented virtual, etc.
[06:20:43] <jcrites> hmmm
[06:20:54] <mjoseph> i mean, whether you use (smtp-source|your mail sending servers) is up to you, the latter is more involved, but more accurate
[06:20:56] <jcrites> actually, we don't need to decide this in advance... we can get 5 of each type running and see which handles more over time :D
[06:21:15] <jcrites> here is an advanced question....
[06:21:20] <mjoseph> as for where it breaks
[06:21:22] <jcrites> so we send to our MTAs through load balancers
[06:21:27] <jcrites> what's the right way to load balance?
[06:21:34] <mjoseph> the reason i suggest that is that you want to maximize your system utilization
[06:21:36] <jcrites> by default the loadbalancers use # of connections and health
[06:21:46] <mjoseph> ideally, you want all measures of system utilization at approx teh same level
[06:21:49] <jcrites> but we might be able to use another statistic like latency or ........ not sure
[06:22:02] <mjoseph> you should size your i/o throughput and cpu speed and memory similarly
[06:22:03] <jcrites> hmmm true
[06:22:17] <mjoseph> it's silly to have a machine maxing disk i/o, but using 10% cpu and 30% memory
[06:22:17] <jcrites> we don't want to use a solution where one stat is totally pegged, even if it's cost efficient, because it might be unreliable or offer high latency
[06:22:25] <mjoseph> well
[06:22:29] <mjoseph> you could also fix that problem
[06:22:34] <mjoseph> and get better throughput
[06:22:40] <mjoseph> like if you are seeing really high cpu due to dkim
[06:22:48] <mjoseph> you could requisition some cpu-intesnive resources
[06:22:52] <mjoseph> to do the dkim calculation
[06:22:59] <jcrites> yeah
[06:23:01] <mjoseph> and then pass the resulting messages to front-line mx's
[06:23:10] <jcrites> ahhh, neat idea
[06:23:18] <jcrites> hell or make the originator sign the messages ;-)
[06:23:22] <mjoseph> sure
[06:23:37] <mjoseph> the idea when designning large, scalable systems to maximize throughput at each stage
[06:23:44] <mjoseph> even if each stage handles some discrete part
[06:24:19] <jcrites> one difficulty is the two classes of mail
[06:24:28] <jcrites> one class is the marketing mail which is basically a build-like operation
[06:24:40] <jcrites> it calls the same service but it doesn't matter what latency it receives, generally
[06:24:46] <jcrites> the other class is the transactional mail from the website directly
[06:25:02] <jcrites> if we maximize throughput, the latency tp99.9 is pretty bad for the transactional mail
[06:25:26] <mjoseph> regarding load-balancing, you need to figure out what works best for you.  in theory, you could probably get by with round-robin + health checks
[06:25:29] <jcrites> my solution for right now is to set up two different (virtual) load balancers
[06:25:33] <jcrites> with different sets of mail servers
[06:25:42] <mjoseph> since your mails are mostly homogenous
[06:26:01] <jcrites> effectively the low-volume highly-available servers and the high-volume high-throughput notsomuch-available mail servers
[06:26:07] * mjoseph nods
[06:26:10] <mjoseph> seems reasonable
[06:26:21] <mjoseph> you may be able to re-use some elements internally
[06:26:35] <mjoseph> anyway
[06:26:39] <mjoseph> i hope that helps you
[06:26:44] <jcrites> yes it does very much
[06:26:49] * mjoseph feels slightly dirty
[06:26:51] <jcrites> thank you for spending this time with me, I have a lot of leads to work on now :)
[06:27:47] <jcrites> our mail is totally legit -- don't feel dirty.... the only mails that get large volume from our marketers are the ones that perform well, that customers are really interested in based on open rates, click rates, and purchases
[06:28:00] <jcrites> and it's customized to the user based on the things they've bought from us in the past and are interested in
[06:28:17] <jcrites> the system measures all this and prioritizes content based on these factors :)
[06:28:40] <jcrites> it makes the marketers really pissed off too
[06:28:49] <jcrites> because they're like "why can't I just send a mail to everyone who is a customer"
[06:28:58] <jcrites> we have to come back and be like .. "uhhh.... "
[06:29:10] <jcrites> "because your email campaign is shit and has negative value"
[06:30:10] <jcrites> most of the email campaigns that get sent to any volume of people have a high chance of interesting people... and we honor opt-outs and everything properly :)
[06:30:19] <jcrites> also, a lot of our customers rely on our email for important notices
[06:30:22] <jcrites> like people who sell stuff on our site
[06:30:33] <jcrites> they get email when another customer has purchased their item
[06:30:38] <jcrites> we need to make sure those emails get delivered
[06:30:42] <Dominian> You ever feel like your talking, but no one is really listening.. only nodding their head and blinkign?
[06:30:53] * mjoseph chuckles
[06:31:02] <jcrites> imagine using ebay (not our company but same idea) and having someone buy one of our things and not finding out ;-)
[06:31:07] <jcrites> your*
[06:31:11] <jcrites> Dominian: nope, never
[06:31:17] <Dominian> Just making sure.
[06:31:21] * Dominian goes back to work
[06:31:36] <jcrites> well, maybe in the past, before I had a track record of successfully implementing solutions and positively impacting companies ;-)
[06:31:45] <jcrites> but I am known as being verbose.
[06:32:15] <jcrites> people on IRC channels have been very sensitive to the question of being a spammer so I thought I would explain what we do, and why I think our email system is cool :)
[06:32:25] <Dominian> eh
[06:32:26] <jcrites> I don't know of many other companies who actually do individual personalization for their email
[06:32:40] <Dominian> To you its cool, to someone else its questionable.. you have to understand that.
[06:32:47] <jcrites> maybe netflix -- but that's just "we're going to send you this email with your top picks"
[06:33:09] <jcrites> the system we have actually has automatically-generated campaigns fight against human-generated and whichever has the highest value to the customer wins the most volume
[06:33:36] <jcrites> questionable to whom?  our customers?  the ones who get an email and don't click the opt-out link?  :-)  or the ones that do click the opt-out link and then we stop sending them email?
[06:34:11] <jcrites> I don't know what's questionable about being a company and having customers and sending them a notice of products we think they're interested in based on their purchase history.... is that wrong?
[06:34:23] <jcrites> maybe I'm in the wrong business if so :-(
[06:34:54] <jcrites> I've only ever thought of email as wrong if you're sending it indiscriminately .. perhaps regardless of an individual user's preferences, or even (if you're spamming) to someone who isn't a customer
[06:35:33] <mjoseph> i think the point is, we helped you
[06:35:41] <jcrites> but I'll admit I haven't been working with an email-related software department for more than y ear, so maybe I have not thought about the issue as long as some other people :)
[06:35:51] <mjoseph> we don't necessarily need a debate on the merits :)
[06:36:26] <snadge> sure you do, you dont really want to be helping spammers.. i think we've established that it sounds legit
[06:37:01] <Dominian> according to comcast everyone's a spammer.. except them
[06:37:31] <mjoseph> snadge: possibly
[06:37:33] <jeev> lol
[06:38:14] <snadge> honouring opt-outs is an excellent start.. and also not containing the word viagra/cialis gets bonus points
[06:43:00] *** Motoko-chan has joined #postfix
[07:15:49] *** usicow has joined #postfix
[07:20:02] <usicow> Im running ubuntu 8.04, Ive just installed postfix and Im trying to set it up. Its running, and if I try to send an email to my account@localhost it all looks like it works, but then using 'mail' always says No mail for usicow'.
[07:20:20] <usicow> The last line in syslog is Jun 21 01:18:23 ubuntu postfix/qmgr[2545]: F353E11CEE: removed
[07:20:27] <usicow> is that normal?
[07:20:32] <usicow> and correct? :)
[07:21:24] *** bisoc has quit IRC
[07:27:48] <usicow> all spool directories (active, bounce, corrupt, deferred, hold) are empty..
[07:30:36] <usicow> hmm.. in my home directory I've got both a Mail directory and a Maildir directory.. the emails *are* actually in ~/Maildir/cur.. but using the 'mail' command tells me I've got no emails.. why is that?
[07:32:18] *** onik has joined #postfix
[07:39:15] <jeev> any smarties here? i've got a quick question! http://dkimproxy.sourceforge.net/postfix-outbound-howto.html, the -o restrictions, is that the same in main.cf? i dont get it
[07:46:39] <onik> i am having problem in using plain text authentication.. can anyone help..
[07:48:27] *** usicow has quit IRC
[07:51:31] <jeev> what's the prob
[07:52:46] *** ramy_ has quit IRC
[07:53:13] <jeev> how come when i connect to 587 without tls, it still sends the mail while my config says " -o smtpd_recipient_restrictions=permit_mynetworks,permit_sasl_authenticated,reject"
[07:54:00] *** usicow has joined #postfix
[07:55:12] <onik> Jeev: cannot connect to saslauthd server: Permission denied
[07:55:51] <usicow> sorry I was disconnected.. was there an answer to my question about why 'mail' says theres no email, but its in Maildir/cur?
[07:55:58] <jeev> no usicow
[07:56:00] <jeev> why is it in Maildir/cur
[07:56:05] <jeev> have you checked your mail via imap ?
[07:56:12] <jeev> or any pop client that leaves messages
[07:56:18] <jeev> onik, have you googled the error?
[07:56:23] <jeev> i was having that problem i think with authdaemond
[07:56:28] <onik> ya
[07:56:38] <jeev> what's google bring up
[07:56:54] <jeev> are you using debian ?
[07:57:17] <usicow> jeev: I was under the impression that mail thats waiting to be picked up was waiting in /Maildir/cur?
[07:57:37] <jeev> no way
[07:57:41] <jeev> it goes into Maildir/new
[07:57:45] <jeev> cur is if it has been read by a client.
[07:57:50] <jeev> AFAIK
[07:57:54] <jeev> wow, i've always wanted to say that
[07:58:01] <usicow> hmm
[07:58:34] <onik> Jeev: it says it says adduser postfix sasl
[07:58:40] <onik> i did
[07:58:41] <jeev> huh
[07:58:45] <jeev> are you using debian ?
[07:58:49] <onik> centos
[07:58:56] <onik> centos 4.6
[07:58:58] <jeev> ls -la /var/spool/postfix/var/run
[07:59:12] *** bisoc has joined #postfix
[07:59:19] <jeev> paste it to me
[07:59:20] <jeev> dont flood here
[08:00:01] <usicow> thats strange.. but you're right.. they do go in Maildir/new now (not curr) maybe my gmail setters (which Im using to check via pop) was leaving them there. But still.. why would they be in Maildir/new, but 'mail' says I've got no new mail? However, my pop client (gmail) does login and find new mail for me.
[08:04:06] <jeev> duno
[08:04:22] <jeev> no idea dood
[08:04:26] <jeev> i cant think now
[08:06:18] *** tshine_ has joined #postfix
[08:06:53] <usicow> thanks for trying though :) thats more than I could get from anyone else :)
[08:06:55] *** tshine has quit IRC
[08:09:32] <jeev> hehe no problem
[08:09:36] <jeev> what are you trying to do anyway
[08:10:15] <usicow> only setup email on a virtual host..
[08:10:25] <usicow> just got it at linode.com
[08:10:50] <jeev> ah
[08:13:40] *** af_ has joined #postfix
[08:14:31] <usicow> looks like its all working, so dont know why the mail command doesnt work.. but I'll work that out. Another question (if you've got the energy) to give someone a mailbox so that they can just pickup and send email via the domain hosted on my server, do I have to make a whole new user for the whole box? And maybe just disable ssh access for the account?
[08:15:11] *** amrit|bbl is now known as amrit
[08:17:16] <usicow> hmm I see theres virtual mailboxes.. I'll read up on that
[08:17:46] <jeev> :)
[08:18:01] <jeev> virtual
[08:18:04] <jeev> is best
[08:18:05] <jeev> but difficult i guess
[08:20:32] <loompek> umm.. just a question... in case i have to do address rewriting (both sender and recipient's address) can i use regexp/pcre? it's intended to use for mms mta... i have to translate +123456789 at mms dot domain.com to +123456789 at mms dot mccxxx.mncxxx.gprs for a bunch of mails... and send it out either via grx (gprs) or internet ipsec tunnel
[08:24:12] <jeev> damn
[08:24:13] <jeev> sorry no idea
[08:35:08] *** adaptr_ has joined #postfix
[08:36:13] *** adaptr has quit IRC
[08:37:57] *** af_ has quit IRC
[08:39:22] *** mwalling has quit IRC
[08:39:22] *** higuita has quit IRC
[08:39:22] *** lennard_- has quit IRC
[08:39:22] *** irc___ has quit IRC
[08:39:23] *** jelly has quit IRC
[08:39:23] *** tm-30740-exa has quit IRC
[08:39:23] *** Flobbie_ has quit IRC
[08:39:23] *** grabur has quit IRC
[08:39:23] *** robtone_ has quit IRC
[08:39:23] *** amrit has quit IRC
[08:39:23] *** Zerberus has quit IRC
[08:39:23] *** w0rd54 has quit IRC
[08:39:23] *** msbhvn has quit IRC
[08:39:23] *** FWP^^^ has quit IRC
[08:39:23] *** DreamThief has quit IRC
[08:39:23] *** Knoedel2 has quit IRC
[08:40:11] *** irc___ has joined #postfix
[08:40:11] *** jelly has joined #postfix
[08:40:11] *** mwalling has joined #postfix
[08:40:11] *** grabur has joined #postfix
[08:40:11] *** higuita has joined #postfix
[08:40:11] *** tm-30740-exa has joined #postfix
[08:40:11] *** Flobbie_ has joined #postfix
[08:40:11] *** lennard_- has joined #postfix
[08:40:11] *** msbhvn has joined #postfix
[08:40:11] *** FWP^^^ has joined #postfix
[08:40:11] *** Zerberus has joined #postfix
[08:40:11] *** DreamThief has joined #postfix
[08:40:11] *** robtone_ has joined #postfix
[08:40:11] *** w0rd54 has joined #postfix
[08:40:11] *** amrit has joined #postfix
[08:40:11] *** Knoedel2 has joined #postfix
[08:40:25] *** m1n3s6 has joined #postfix
[08:40:59] *** Lap_64 has joined #postfix
[08:43:25] *** allan has joined #postfix
[08:49:30] *** m1n3s6 has quit IRC
[08:55:13] *** amrit is now known as amrit|zzz
[08:56:41] <jeev> damn man
[08:56:43] <jeev> i love postfix
[09:09:36] *** j_s has joined #postfix
[09:15:21] *** McJerry has quit IRC
[09:25:26] <Signum> jeev: I'll tell your wife!
[09:39:44] <jeev> what wife
[09:39:44] <jeev> heh
[09:39:49] <jeev> girlfriend? she's on AIM, tell her!
[09:39:51] <jeev> i'm so pissed
[09:39:53] <jeev> i did DKIM and for what
[09:39:54] <jeev> it failed
[09:53:56] <sysmonk> so, you still don't want to hire a sysadmin?
[09:53:56] <sysmonk> ;P
[09:54:11] *** usicow_ has joined #postfix
[09:54:43] *** SeJo_ has joined #postfix
[09:54:53] *** war9407 has joined #postfix
[09:54:57] *** usicow_ has quit IRC
[09:55:13] <jeev> postfix/smtp[93974]: certificate verification failed for smtp.sendmail.net[209.246.26.21]:25: untrusted issuer /C=US/ST=California/L=Emeryville/O=Sendmail, Inc./OU=IT/CN=Sendmail Certificate Authority/emailAddress=rootca at sendmail dot com
[09:55:15] <jeev> how could i just
[09:55:16] <jeev> enable it anyway ?
[09:55:19] <jeev> force it, non validate
[09:55:21] *** SeJo has quit IRC
[09:55:53] <sysmonk> hire a sysadmin, and he'll force it
[09:56:16] *** _bugz_ has quit IRC
[09:56:20] *** c00l2sv has quit IRC
[09:56:23] *** Sysctl__ has joined #postfix
[09:56:33] <jeev> har har sysmonk
[09:56:40] <jeev> i'm sysadmin of the year
[09:56:43] <jeev> 1994 through current
[09:58:25] <sysmonk> ah, then you'll be able to do that yourself, after reading the documentation ;)
[09:58:52] <jeev> sysmonk
[09:58:58] <jeev> you and your 15" monitor
[09:59:02] <jeev> dont make me scroll so much it'll fill up
[09:59:10] <Motoko-chan> ...
[09:59:20] <sysmonk> jeev: yeah, me and my 15" :)
[09:59:51] <jeev> sysmonk..
[10:02:47] * sysmonk goes to make his breakfast
[10:03:24] <sysmonk> jeev: hint: smtp_tls_enforce_peername
[10:03:31] * sysmonk afk
[10:05:04] *** _bugz_ has joined #postfix
[10:07:15] <jeev> make me breakfast too
[10:08:24] <jeev> dkim fixed
[10:08:29] <jeev> but through webmail, it wont work
[10:08:37] *** Sysctl has quit IRC
[10:10:03] *** usicow has quit IRC
[10:11:22] *** _apk has joined #postfix
[10:11:28] <_apk> hi! goodmorning :)
[10:11:59] *** fwp has joined #Postfix
[10:12:17] *** norman` has joined #postfix
[10:12:36] *** mathez has joined #postfix
[10:12:47] <norman`> guten morgen
[10:12:53] *** dcmwai has quit IRC
[10:13:18] *** dcmwai has joined #postfix
[10:14:05] *** lennard_- has quit IRC
[10:14:05] *** mwalling has quit IRC
[10:14:05] *** higuita has quit IRC
[10:14:06] *** robtone_ has quit IRC
[10:14:06] *** grabur has quit IRC
[10:14:06] *** w0rd54 has quit IRC
[10:14:06] *** tm-30740-exa has quit IRC
[10:14:06] *** amrit|zzz has quit IRC
[10:14:06] *** DreamThief has quit IRC
[10:14:06] *** Zerberus has quit IRC
[10:14:06] *** FWP^^^ has quit IRC
[10:14:06] *** msbhvn has quit IRC
[10:14:06] *** Knoedel2 has quit IRC
[10:14:07] *** Flobbie_ has quit IRC
[10:14:07] *** jelly has quit IRC
[10:14:07] *** irc___ has quit IRC
[10:15:50] *** irc___ has joined #postfix
[10:15:50] *** jelly has joined #postfix
[10:15:50] *** mwalling has joined #postfix
[10:15:50] *** grabur has joined #postfix
[10:15:50] *** higuita has joined #postfix
[10:15:50] *** tm-30740-exa has joined #postfix
[10:15:50] *** Flobbie_ has joined #postfix
[10:15:50] *** lennard_- has joined #postfix
[10:15:50] *** msbhvn has joined #postfix
[10:15:50] *** Zerberus has joined #postfix
[10:15:50] *** DreamThief has joined #postfix
[10:15:50] *** robtone_ has joined #postfix
[10:15:50] *** w0rd54 has joined #postfix
[10:15:50] *** amrit|zzz has joined #postfix
[10:15:50] *** Knoedel2 has joined #postfix
[10:17:03] <norman`> ich versuche mit Hilfe der Anleitung auf http://workaround.org/articles/ispmail-etch/index.html.de einen Mailserver einzurichten. Leider habe ich mit dovecot Probleme. In der mail.log erhalte ich nach dem Starten von Dovecot folgende Zeile dovecot: imap-login: inotify_init() failed: Function not implemented
[10:17:39] 
[10:17:49] <jeev> wow
[10:17:51] <jeev> no german for me
[10:18:33] <loompek> me neither :D
[10:18:40] <jeev> oh my god
[10:18:48] <jeev> this pitcher pitches left and right handed
[10:18:50] <jeev> he kept changing the side
[10:18:50] <loompek> norman` tryen sie enein english sprachen :D
[10:18:54] <jeev> with the batter who was a switch hitter too ha haha
[10:20:18] <norman`> oh sorry, i thought this is a german chat, i hope i could you explain my problem in english, on moment...
[10:22:20] <norman`> i try to setup a mailserver with the howto on the website workaround.org. The postfix part of the setup worked realy fine. I have got some problems with dovecot. if i start dovecot i got the follow errors in in /var/log/mail.log
[10:22:46] <jeev> paste the errors in rafb.net
[10:22:47] <jeev> and give a link
[10:22:47] <norman`> Jun 21 10:06:04 h1380188 dovecot: Dovecot v1.0.beta3 starting up Jun 21 10:06:05 h1380188 dovecot: imap-login: inotify_init() failed: Function not implemented Jun 21 10:06:05 h1380188 last message repeated 2 times Jun 21 10:06:05 h1380188 dovecot: pop3-login: inotify_init() failed: Function not implemented Jun 21 10:06:05 h1380188 last message repeated 2 times Jun 21 10:06:05 h1380188 dovecot: auth(default): Error: inotify_init()
[10:22:50] <jeev> ok
[10:22:51] <jeev> lol
[10:22:59] <jeev> i dont use dovecot, i have no idea, did you google
[10:23:07] <_apk> I know that this question is OT...but I don't know where to ask...can someone suggest me a program to manage newsletters? :)
[10:23:19] <norman`> yes i googled already but i don't found something
[10:24:43] <norman`> the url is http://rafb.net/p/dYCIQP43.html, rafb.net is really cool
[10:26:14] <_apk> norman`, did you check this pages: http://www.google.it/search?hl=it&q=inotify_init%28%29+failed%3A+Function+not+implemented&btnG=Cerca+con+Google&meta=
[10:26:19] *** [diablo] has joined #postfix
[10:27:56] <norman`> thanks, this site is new to me, maybe it will help, i'll try
[10:30:27] <Signum> norman`: I suppose it has to do with your kernel version on the strato server you are on.
[10:30:36] <Signum> norman`: see also: https://bugs.launchpad.net/ubuntu/+source/dovecot/+bug/236459
[10:39:02] *** qiyong has joined #postfix
[10:39:11] <qiyong> no SASL authentication mechanisms
[10:39:20] <qiyong> with dovecot, how to check?
[10:41:33] <norman`> it looks like a kernel problem. maybe i'll try another distribution, not suse thx for help
[10:42:03] <qiyong>  postfix/tlsmgr[9328]: warning: request to update table btree:/var/spool/postfix/smtpd_scache in non-postfix directory /var/spool/postfix
[10:48:53] *** Motoko-chan has quit IRC
[10:56:27] *** idle-boy has joined #postfix
[10:56:55] *** DL7LN has joined #postfix
[10:57:02] <DL7LN> good morning everybody!
[10:58:16] <jeev> good night everybody!
[10:58:29] <qiyong> upgrade breaks dovecot SASL auth
[10:58:37] <DL7LN> my postfix-server does not start after my /var-filesystem was full... postfix -vv start doesn't return any useful information
[10:58:53] <jeev> DL7LN, have you cleaned /var? :D
[10:59:04] *** action09 has joined #postfix
[10:59:16] <DL7LN> Jun 21 08:56:44 srv01 postfix/master[1316]: warning: /usr/local/libexec/postfix/smtpd: bad command startup -- throttling
[10:59:17] <DL7LN> Jun 21 08:56:44 srv01 postfix/master[1316]: warning: /usr/local/libexec/postfix/smtpd: bad command startup -- throttling
[10:59:17] <DL7LN> jeev: cleaned?
[10:59:23] <jeev> heh
[10:59:24] <DL7LN> sry...
[10:59:29] <jeev> so you made space>?
[10:59:35] <DL7LN> yes...
[10:59:41] <jeev> postfix stop
[10:59:42] <DL7LN> i deleted some history-logfiles
[10:59:45] <jeev> edit master.conf, put a -v
[10:59:46] <jeev> after smtpd
[10:59:48] <jeev> smtpd -v
[10:59:50] <DL7LN> jeev: i did
[10:59:50] <jeev> and start.. what happens
[10:59:55] <DL7LN> mom
[10:59:57] <qiyong> is it known 2.5 breaks dovecot auth?
[11:00:06] <jeev> qiyong, no idea.. i dunt even know what dovecot is
[11:00:24] <jeev> ah
[11:00:24] <DL7LN> jeev, i put -vv after smtpd
[11:00:27] <jeev> imap and pop server, i should check it out
[11:01:11] <DL7LN> jeev, postfix/postfix-script: starting the Postfix mail system
[11:01:22] <DL7LN> thats the message i get when i do postfix start
[11:01:37] <jeev> and then
[11:01:41] <jeev> when you send it a message?
[11:02:01] <DL7LN> but when i do postfix reload (to check if its alive) he answers me, that the postfix mailsystem is not running..
[11:02:19] <DL7LN> when i send a message, nothing happens...
[11:02:39] <jeev> netstat -an | grep 25
[11:02:39] <jeev> nothing?
[11:02:48] <DL7LN> i sent two messages to my own address (on the postfix server) for testing...the messages didn't arrive yet
[11:03:23] <jeev> ?
[11:03:26] <DL7LN> jeev, a lot of connections
[11:03:41] <DL7LN> jeev, one thing....
[11:04:51] *** rodneyk has joined #postfix
[11:05:15] *** onik has quit IRC
[11:07:46] <DL7LN> what does this msg mean? /usr/local/libexec/postfix/smtpd: bad command startup -- throttling
[11:07:53] <DL7LN> is that normal?
[11:08:11] <DL7LN> or will it prevent smtpd from working correctly?
[11:08:58] <DL7LN> there are a few more messages (only warnings) like this: master_wakeup_timer_event: service public/pickup: Not a directory
[11:12:16] *** norman` has quit IRC
[11:21:01] *** babo has joined #postfix
[11:21:10] <babo> when i set my mail server to forward mail from my domain to my email address, the mail server fills the Reply-To: header with an obsolete email address ... help !
[11:23:31] <DL7LN> mmmh...my postfix does not start, no error-msgs special caught...please someone help!
[11:26:36] *** jMCg has joined #Postfix
[11:26:46] <jMCg> Hi folks
[11:27:12] <babo> what does this mail log message mean ? is my server acting as a relay or not ?
[11:27:14] <babo> Jun 21 04:39:24 ina postfix/qmgr[31045]: A2C69A4686: to=<daburkee78 at park dot funnel.revenuedirect.com.akadns.net>, relay=none, delay=151041, status=deferred (delivery temporarily suspended: connect to park.funnel.revenuedirect.com.akadns.net[69.25.47.164]: Connection timed out)
[11:27:23] <babo> why does it say 'Connection Timed Out' ?
[11:29:41] *** Zelest is now known as BSDWizard
[11:29:57] *** BSDWizard is now known as Zelest
[11:31:31] *** rodneyk has quit IRC
[11:32:37] <babo> hello ?
[11:34:24] <jMCg> babo: try to connect to port 25 of park.funnel.revenuedirect.com.akadns.net
[11:34:47] <babo> jMCg: i have nothing to do with that domain ...
[11:34:59] <babo> is says relay=none, then it says connection timed out ... why's it trying to open a connection in the first place ... ?
[11:35:14] <babo> i don't want to be running an open relay ...
[11:35:17] <jMCg> Because someone was trying to send a mail there?
[11:35:28] <babo> jMCg: right. but noone from my system
[11:36:55] *** Mavvie has quit IRC
[11:39:09] <jMCg> babo: postqueue -p ?
[11:40:44] <babo> j(connect to park.funnel.revenuedirect.com.akadns.net[69.25.47.164]: Connection timed out)
[11:40:44] <babo>                                          darrkee78 at park dot funnel.revenuedirect.com.akadns.net
[11:40:55] <babo> jMCg, why's it trying to connect ?
[11:41:26] <babo> what's the best way to test whether my mail server is an open relay ?
[11:41:40] <Zelest> try send a mail to another host
[11:41:57] <Zelest> as in, to a mailbox that's not on your box
[11:42:16] <Zelest> and of course from a IP that's not listed in mynetwork
[11:43:23] <DL7LN> my mta does not start anymore...help! the beginning was a full /var-partition...but there are no distinctive errors...
[11:43:41] <DL7LN> how can i increase the loglevel to see more info?
[11:45:51] *** pirho has joined #postfix
[12:05:15] *** Longkong has joined #postfix
[12:05:24] <Longkong> hi there :)
[12:07:00] *** ramy_ has joined #postfix
[12:11:07] *** GoGi has joined #postfix
[12:12:05] *** Longkong has left #postfix
[12:12:34] <babo> when i set my mail server to forward mail from my domain to my email address, the mail server fills the Reply-To: header with an obsolete email address ...
[12:13:18] *** suuuper has joined #postfix
[12:18:38] *** vocis has joined #postfix
[12:18:52] <vocis> hello
[12:18:58] <vocis> i'm having a hard time here!
[12:19:12] <vocis> Jun 21 10:43:04 [postfix/master] fatal: 0.0.0.0:smtp: Servname not supported for ai_socktype
[12:19:20] <vocis> not running a chroot...
[12:19:52] <vocis> /etc/services is also readable
[12:21:14] <babo> vocis, it's refusing to build a socket to that ip address ...
[12:22:18] <vocis> weird, it worked before the reboot
[12:23:34] <vocis> smtp_bind_address is set, so 0.0.0.0 shouldn't be bound then, should it?
[12:23:57] <vocis> lsof doesn't show it as open. And i'm not using grsec or selinux
[12:24:20] <vocis> i can also confirm that nothing is set to chroot in master.cf
[12:24:27] <vocis> got clues? :)
[12:24:28] <babo> vocis: i'm not an expert, try google :-)
[12:34:42] <shasta> vocis, new kernel? :)
[12:37:28] *** jmazaredo has joined #postfix
[12:37:37] <shasta> vocis, also, grep smtp /etc/services
[12:37:39] *** DL7LN has quit IRC
[12:38:49] <jmazaredo> is it safe to change smtp_banner to whathever word or sntence?
[12:38:55] *** Fallenou has joined #postfix
[12:40:09] *** qiyong has left #postfix
[12:48:20] <shasta> no
[12:48:45] <jmazaredo> why
[12:48:47] *** TheN00b has quit IRC
[12:50:25] <shasta> rfc2821, 4.3.1
[12:52:34] <jmazaredo> so it should be standard
[12:53:38] <shasta> it should be at least 220 your.host.name
[12:53:56] <shasta> where your.host.name should be valid, as in resolving to your ip address
[12:55:07] <jmazaredo> i see so "220 myhostname + some other text"   is ok
[12:55:55] <shasta> yes
[12:59:27] *** action09 has quit IRC
[12:59:37] *** action09 has joined #postfix
[12:59:55] <jmazaredo> thank you for the nice information
[13:00:01] <jmazaredo> very good
[13:03:03] *** jonkristian has joined #postfix
[13:10:09] *** Mavvie has joined #postfix
[13:12:56] *** jonkristian has quit IRC
[13:19:05] *** ekimus has joined #postfix
[13:28:51] *** havvg has joined #postfix
[13:30:48] *** war9407 has quit IRC
[13:40:14] *** idle-boy` has joined #postfix
[13:44:26] *** ullio has joined #postfix
[13:45:49] <ullio> hello. is there a way to strip the extension from ${sender} in transport.cf so that the transport would consider the correct virtual user (wich is a valid email-address (virtual))
[13:46:19] <ullio> i cant find a way to get dspam to get riff of the +dspam-add extension of the mail address
[13:46:41] *** sophokles has joined #postfix
[13:51:33] <ullio> what i dont get is where can i kill the extension after the transport decision without preventing the virtual and users lookup
[13:52:54] *** action09 has quit IRC
[13:52:57] *** action099 has joined #postfix
[13:54:21] <ullio> is there a way to cascade e.g. virtual_alias_maps ?
[13:55:00] <ullio> like virtual_alias_maps = pcre:/first_get_rid_of_the_extension, mysql:then_do_the_lookup?
[13:57:44] *** pa has joined #postfix
[13:58:58] *** idle-boy`` has quit IRC
[14:01:43] *** jmazaredo has left #postfix
[14:03:51] *** Zequi1 has quit IRC
[14:09:18] *** war9407 has joined #postfix
[14:10:11] <ekimus> hi, smtp_tls_policy_maps (yes the client) - is postfix doing some magic like mydestination where "example.org" really stands for all hosts in example.org or are the entries like "example.org encrypt" saying that exactly the host "example.org" must do TLS? (am I making sense?)
[14:10:57] *** allan__ has joined #postfix
[14:11:38] *** allan has quit IRC
[14:12:51] <cite> ekimus: Search for parent_domain_matches_subdomains in man 5 postconf
[14:14:57] *** xnixan has quit IRC
[14:17:54] <ekimus> cite: thanks, so that parameter is telling all other parameters that deal with domains how to behave. I thought it was only for mydestination...
[14:19:18] <jMCg> master.cf http://dpaste.com/57941/ ; postconf -n: http://dpaste.com/57942/ - dovecot -n: http://dpaste.com/57944/ -- dspam.conf: http://dpaste.com/57947/
[14:19:21] <jMCg> The setup: [postfix]->[virtual_transport=dspam]->[lda=dovecot's deliver]->Maildir
[14:19:26] <jMCg> The error: http://dpaste.com/57949/
[14:20:29] *** havvg has quit IRC
[14:25:35] <cite> jMCg: Can you connect to /tmp/dspam.sock using socat or somethign similar?
[14:25:58] <cite> jMCg: Do you have dspam debug logs available?
[14:27:05] <jMCg> How do I connect with socat?
[14:27:30] *** dcmwai has quit IRC
[14:27:39] <jMCg> unix-connect:/tmp/dspam.sock
[14:30:37] *** action099 has quit IRC
[14:30:59] <jMCg> Oh.
[14:31:28] <jMCg> cite: from the log: http://dpaste.com/57953/
[14:32:48] <jMCg> That looks about wrong.
[14:33:14] <jMCg> I guess I can leave the --user stuff out.
[14:35:03] <cite> Yes, mail delivered using LMTP will extract the recipients mail address and use that as user name.
[14:36:48] *** xnixan has joined #postfix
[14:38:11] <jMCg> Jun 21 12:49:31 metis postfix/pipe[31367]: 20E7118406B: to=<argh at pro-games dot net>, relay=dspam, delay=0.14, delays=0.1/0.01/0/0.03, dsn=5.3.0, status=bounced (Command died with status 1: "/usr/bin/dspam". Command output: Syntax: dspam [--client|--daemon] --mode=[toe|tum|teft|notrain] --user [user1 user2 ... userN] [--feature=[ch,no,wh,tb=N,sbph]] [--class=[spam|innocent]] [--source=[error|corpus|inoculation]] [--profile=[PROFILE]] [--deliver=[spam,inno
[14:40:52] <cite> jMCg: Start dspam as a daemon ("--daemon", I think).
[14:41:22] <cite> jMCg: Remove the dspam entry from master.cf. Deliver to dspam using lmtp:....
[14:41:45] <cite> jMCg: Have dspam reinject messages to Postfix by definig an additional smtpd listener in main.cf.
[14:42:18] <jMCg> I am starting it as daemon.
[14:42:45] <cite> You don't need a dedicated dspam transport then. Simply add dspam as a content_filter.
[14:43:13] <ullio> how can i make dspam to ignore the extension in an email. dspam seems to extract the recipient from them passed mail...
[14:43:24] <ullio> using rcpt-to i assume
[14:47:44] *** allan__ has quit IRC
[14:52:07] <ullio> the emails in /var/log/dspam/dspam.messages are what dspam gets from postfix, right?
[14:53:20] *** suuuper has quit IRC
[14:55:07] *** McJerry has joined #postfix
[14:56:58] *** suuuper has joined #postfix
[14:57:42] <jMCg> cite: Jun 21 13:04:33 metis postfix/pipe[31602]: 33E3F18406B: to=<argh at pro-games dot net>, relay=dspam, delay=0.46, delays=0.45/0.01/0/0.01, dsn=2.0.0, status=sent (delivered via dspam service) --- of course the mail never arrives :)
[14:58:02] <jMCg> I've configured dpsam with --stdout assuming that pipe really means pipe.
[15:01:23] *** j_s has quit IRC
[15:03:39] *** j_s has joined #postfix
[15:03:57] <ullio> is there a way to manipulate the To: header after the transport descision?
[15:06:48] *** troythetechguy has joined #postfix
[15:08:33] *** Bagualas has joined #postfix
[15:08:37] <Bagualas> Hello all
[15:08:45] <Bagualas> how do I customize the greylist message ?
[15:22:59] *** action09 has joined #postfix
[15:33:18] *** action09 has quit IRC
[15:33:21] *** action09 has joined #postfix
[15:34:28] *** action09 has left #postfix
[15:34:39] *** [diablo] has quit IRC
[15:36:18] *** ramy_ has quit IRC
[15:47:47] *** action09 has joined #postfix
[15:53:30] *** shinao1 has joined #postfix
[15:54:06] *** action09 has quit IRC
[15:54:10] *** action09 has joined #postfix
[15:55:28] *** action09 has quit IRC
[15:55:36] *** action09 has joined #postfix
[16:03:21] *** jpalmer has quit IRC
[16:04:28] *** sophokles has quit IRC
[16:08:23] <Bagualas> how do I customize the greylist message ?
[16:09:00] <robtone_> Bagualas, why are we supposed to know?
[16:10:26] <robtone_> Bagualas, I'd only know the answer if it was postgrey, for other greylist implementations you shoudl consult its manual
[16:10:45] <Bagualas> robtone_, ok, dont need to be rude
[16:10:59] <rob0> sheesh
[16:11:42] <rob0> And he still didn't answer!
[16:12:05] <Bagualas> if im here, its becouse i would like help.. if u dont know or dont wanna help, dont need to answer me
[16:12:34] <rob0> You asked a question which NO ONE CAN ANSWER. Get a clue. Bye.
[16:13:11] <robtone_> Bagualas, postgrey -h | less +/greylist\-text
[16:13:22] <robtone_> Bagualas, HTH
[16:17:28] <cite> I'm begging to think that there might be some secret correlation between the name prefix "rob" and the way other people consider perfectly normal and helpful answers as "rude".
[16:17:41] <cite> Perhaps the both of you might want to try another nickname ;)
[16:18:36] <robtone_> perhabs we should use 3 times sugar on top
[16:18:40] <robtone_> perhaps, too
[16:19:12] <cite> Or bend over in the first place, yes.
[16:19:23] <cite> OTOH, that might be considered a bit too extreme. YMMV.
[16:20:10] <rob0> :)
[16:20:27] <rob0> !sweet
[16:20:28] <knoba> rob0: "sweet" : http://sweet.nodns4.us/
[16:29:21] <jMCg> Jun 21 14:37:25 metis postfix/pipe[32223]: 0FC9A18406B: to=<argh at pro-games dot net>, relay=dspam, delay=0.15, delays=0.1/0.01/0/0.04, dsn=5.3.0, status=bounced (Command died with status 255: "/usr/bin/dspam")
[16:29:29] <jMCg> Postfix/pipe says it's dying with 255, but dspam .debug says:
[16:29:33] <jMCg> 32224: [06/21/2008 14:37:25] DSPAM Instance Shutdown.  Exit Code: 0
[16:47:39] *** keffer has joined #postfix
[16:53:09] <vocis> [postfix/master] fatal: 0.0.0.0:smtp: Servname not supported for ai_socktype
[16:53:12] <vocis> Got clues for me, guys?
[16:53:31] <vocis> /etc/services is readable...
[16:53:32] <mwalling> !debug
[16:53:32] <knoba> mwalling: "debug" : http://www.postfix.org/DEBUG_README.html : a good starting point for how to deal with problems and to report information to those who might help. Post your information in a pastebin such as http://pastebin.ca/ or http://rafb.net/paste/ .
[16:56:18] <vocis> i have no idea
[16:56:22] <vocis> debugging helps me not
[16:56:25] <vocis> i get just this error
[16:56:27] <vocis> it's on startup
[16:56:36] <vocis> so i cannot trace any running process
[16:58:10] <rob0> chroot would be a good guess here ... http://www.postfix.org/DEBUG_README.html !!
[16:58:37] <rob0> possibly also something like SELinux
[16:58:55] <vocis> there's no chroot and no selinux installed
[16:59:02] <vocis> services is readable at mode 644
[16:59:06] <vocis> also no grsec
[16:59:26] <vocis> it used to work with no config modifications
[16:59:50] <vocis> i've been looking for clues for hours now :(
[17:01:47] <vocis> :((((((((((
[17:05:08] <mwalling> are you *sure* there is no chroot?
[17:05:22] <mwalling> is it installed from a distro package or built from source
[17:05:27] <mwalling> has hit ever worked in the past?
[17:05:31] <mwalling> !debug
[17:05:32] <knoba> mwalling: "debug" : http://www.postfix.org/DEBUG_README.html : a good starting point for how to deal with problems and to report information to those who might help. Post your information in a pastebin such as http://pastebin.ca/ or http://rafb.net/paste/ .
[17:06:22] <vocis> mwalling, i am very sure; it's installed from a distro package (archlinux), and it worked yesterday
[17:06:34] <mwalling> ok, what did you change?
[17:06:37] <vocis> i have no clue what debug option to choose, i'm not a programmer
[17:06:50] <vocis> nothing, that's the weird part, the system was updated though so no one knows for sure
[17:08:32] <vocis> isn't there a way to strace?
[17:08:44] <vocis> that's something i can handle
[17:12:47] <vocis> please
[17:13:13] <vocis> it's very important to me that i get some help
[17:13:44] <vocis> because my email won't send now
[17:15:24] <vocis> guysss please
[17:15:36] <vocis> it's a weird thing that's giving me a headache the size of jupiter!
[17:15:39] <_apk> hi! I have a postfix server, with tls auth configured on submission port (587)...all is working well with thunderbird, but with outlook express (with the same settings) i'm getting this: http://rafb.net/p/DwktOM20.html
[17:16:05] <mwalling> vocis: aparently its an arch issue.
[17:16:15] <mwalling> google for your error message
[17:16:20] <_apk> is outlook sending command to postfix, that smtpd is not able to undestand?
[17:16:38] <vocis> well ok then
[17:17:16] <mwalling> second hit goes to arch's forum, with someone with the same problem
[17:17:55] *** _zsh has joined #postfix
[17:18:11] <ullio> is there a  way to change an email header before itssent thru postfix via transport?
[17:18:36] *** babo has quit IRC
[17:18:47] <ullio> i need to remove the extension because otherwise the constant filter will not be  able to determine the real recipient
[17:18:57] *** robboplus has joined #postfix
[17:20:09] <ullio> constant = content
[17:21:42] <mwalling> isnt that the job of the content filter?
[17:22:19] <ullio> the content filter (dspam) doesnt offer any sort of handling.. :(
[17:22:45] <ullio> it queries the address it gathers from the mail on my user table.
[17:22:54] <ullio> my extension +dspam-add kills it
[17:25:44] <vocis> mwalling, my post :)
[17:26:29] <mwalling> vocis: ohg
[17:26:32] <mwalling> fsck
[17:26:45] <mwalling> well still, the fact that you did nothing makes me think its arch's fault
[17:26:55] <mwalling> did you ask in their irc channel?
[17:27:28] <vocis> mwalling yeah, the only thing of importance was a kernel upgrade
[17:27:41] <mwalling> what else
[17:29:11] <vocis> didn't ask in their irc channel.. i never got lucky there
[17:34:19] <rob0> !outlook
[17:34:19] <knoba> rob0: Error: "outlook" is not a valid command.
[17:34:28] <rob0> neither is it a valid MUA
[17:35:54] <vice-versa> lol
[17:36:48] <mwalling> vocis: i'm going to continue to blame arch
[17:36:49] *** Bagualas has quit IRC
[17:37:54] *** Lap_64 has quit IRC
[17:39:28] *** action099 has joined #postfix
[17:39:58] * vice-versa blames it on mwalling
[17:41:31] *** action099 has quit IRC
[17:41:35] *** action099 has joined #postfix
[17:43:46] <mwalling> mah
[17:46:27] <rob0> and vice-versa
[17:49:13] *** daemoen has joined #postfix
[17:53:18] <vocis> I guess i'm going to join you
[17:54:53] *** tombar has joined #postfix
[17:55:10] *** action09 has quit IRC
[17:56:01] * rob0 sighs
[17:56:04] <rob0> getent services smtp
[17:58:30] *** denis has joined #postfix
[17:58:58] *** action09 has joined #postfix
[18:00:55] *** denis has quit IRC
[18:01:41] *** action099 has quit IRC
[18:07:34] *** action09 has quit IRC
[18:08:49] *** EGBlue has joined #postfix
[18:08:55] *** action09 has joined #postfix
[18:09:24] <EGBlue> hey guys, not sure if it is a dumb question but, i have imap set up on my server, is imap taking care of both incoming aswell as outgoing? or do i still need an smtp?
[18:11:13] <rob0> "Dumb question" is a harsh way to say it. It says that you don't know anything about how mail works, and if you're going to run a mail server, you need to. About your "need" ...
[18:11:21] *** action09 has quit IRC
[18:11:30] <vice-versa> !imap
[18:11:30] <knoba> vice-versa: "imap" : is an application layer Internet protocol that allows a local client to access e-mail on a remote server (see: http://en.wikipedia.org/wiki/IMAP)
[18:11:31] <rob0> ... not enough information. Maybe so, maybe not?
[18:11:34] *** action09 has joined #postfix
[18:11:56] <EGBlue> hah, i got my answer ;)
[18:12:57] <rob0> If you're just using fetchmail/getmail to retrieve an ISP/ESP email account, you probably do not need an SMTP server.
[18:13:01] <_apk> rob0, i know that outlook is not a valid program...but I have some users that are using it...I asked here, because I was willing that someone had seen that error before...
[18:13:22] *** action09 has quit IRC
[18:13:29] *** action09 has joined #postfix
[18:14:08] <EGBlue> rob0, i do have smtp server configured, i just wasnt sure if imap provides also with outgoing, but now i know it doesn't, so i have to open port 25 aswell. thanks for the answer to the "dumb question" ;)
[18:16:10] *** action09 has quit IRC
[18:16:20] *** action09 has joined #postfix
[18:18:22] <mwalling> or 587
[18:18:26] <mwalling> !submission
[18:18:26] *** action09 has quit IRC
[18:18:26] <knoba> mwalling: Error: "submission" is not a valid command.
[18:18:29] *** action09 has joined #postfix
[18:18:33] <mwalling> damnit
[18:18:41] <mwalling> someone write a submission factoid... i keep hitting it
[18:18:54] <vice-versa> then you write it ;)
[18:20:22] *** action09 has quit IRC
[18:20:29] *** action09 has joined #postfix
[18:21:10] <mwalling> too lazy :)
[18:22:25] <vice-versa> !submission
[18:22:25] <knoba> vice-versa: "submission" : I am knoba! Yield to my power and authority mortal
[18:22:41] <rob0> haha
[18:22:53] <mwalling> heh
[18:22:56] <rob0> Beat your users into submission.
[18:23:41] <Zelest> rofl
[18:30:31] <robtone_> A mail submission agent or MSA is a computer program or software agent which receives electronic mail messages only from authenticated and authorized mail user agent (MUA) and cooperates with a mail transfer agent (MTA) for delivery of the mail. The used protocol, a variant of SMTP, is specified in RFC 4409.
[18:30:37] <robtone_> sounds too long
[18:31:23] <robtone_> (and doesn't decribe postfix integration either)
[18:31:33] *** Southron has joined #Postfix
[18:32:04] *** checkers has joined #postfix
[18:35:36] <checkers> hi all, I send mail to people from my own postfix server
[18:35:52] <checkers> sometimes however I send through a blacklisted IP
[18:35:59] *** e-proyecta has joined #postfix
[18:36:03] <checkers> (a proxy used by my mobile internet provider)
[18:36:10] *** e-proyecta has left #postfix
[18:36:19] <checkers> how can I get postfix to strip the first recieved: header from my mails that I send?
[18:36:48] <checkers> I suspect it's related to header_checks, but that's about all I can work out. No idea how to make it only fire for my own outgoing mail
[18:38:56] <vice-versa> what's the header in question look like?
[18:39:01] *** EGBlue has left #postfix
[18:39:56] <checkers> Received: from [10.120.4.21] (unknown [202.81.69.132]) by mx.bluebottle.net.au (Postfix) with ESMTPSA id 16310C341F0 for <alex at bluebottle dot net.au>; Sun, 22 Jun 2008 00:28:53 +0800 (WST)
[18:40:30] *** devdas has joined #postfix
[18:41:15] <checkers> 202.81.69.132 <-- this is the one in a few RBLs
[18:41:49] <robtone_> checkers, if you relay to a provider then this provider should strip the headers in question
[18:41:54] *** c00l2sv has joined #postfix
[18:42:08] <devdas> robtone_: why?
[18:42:17] <robtone_> because the provider inserts it?
[18:42:24] <robtone_> usually
[18:42:39] <checkers> err, what I mean is that I send mail via the bluebottle MTA, no matter where in the world I am
[18:43:28] <checkers> I'd like that postfix install to strip (or obfustucate) the initial recieved: header it recieves as above, to hide the orinating IP
[18:43:52] <robtone_> you can use the IGNORE header action
[18:44:55] <checkers> yes, but what rule do I use to make it only fire outgoing mail, not incoming?
[18:45:14] <devdas> you can't
[18:45:18] <devdas> It's all email
[18:45:29] <robtone_> my.bluebottle.net.au is your MTA?
[18:45:32] <robtone_> err
[18:45:36] <robtone_> mx.bluebottle.net.au is your MTA?
[18:45:39] <checkers> yes
[18:45:40] *** pitakill has joined #postfix
[18:45:58] <checkers> < devdas> you can't <-- any idea what I can do instead?
[18:46:18] <devdas> checkers: I wouldn't bother with stripping headers
[18:47:53] <checkers> what do you suggest?
[18:48:28] <robtone_> /^Received: .* by mx.bluebottle.net.au .* for <notyourdomains>/ IGNORE
[18:48:31] <vice-versa> change the IP
[18:48:33] <robtone_> don't quote me on that
[18:48:54] <vice-versa> fawk, everyone's got your number checkers
[18:49:15] <checkers> I can't, it's a transparent proxy used by my ISP
[18:49:33] <checkers> for certain values of transparent, at least
[18:49:50] <vice-versa> guess that's why everyone and their dog has it listed
[18:50:12] <checkers> yes, which is why I'd like to work around it
[18:50:54] <checkers> robtone_: thanks, that's definately something to go on. the only problem is there are around 10 domains in use for this machine, which means either 10 rules or one long one. but is there another way?
[18:51:10] <robtone_> checkers, yes
[18:52:28] *** daemoen has quit IRC
[18:53:59] *** githogori has quit IRC
[18:56:03] *** daemoen has joined #postfix
[18:56:09] <checkers> < robtone_> checkers, yes <-- what would it be?
[18:57:08] <robtone_> I thought you will never ask
[18:57:12] <robtone_> get another IP
[18:57:33] <checkers> >_> if I could I would
[18:57:48] <robtone_> no other ISP around?
[18:58:25] <checkers> plenty, but these is a contract involved that would cost too much to break
[18:58:37] <robtone_> the live with header quirks
[18:59:16] <robtone_> or use a VPN
[18:59:28] <robtone_> (to mx.bluebottle.net.au)
[18:59:33] *** devdas has quit IRC
[19:00:05] <robtone_> which would result in Received: from [10.120.4.21] (unknown [10.120.4.21])
[19:01:19] <robtone_> (an ssh forward would be sufficient, too)
[19:01:24] <robtone_> s/an/a/
[19:01:35] <checkers> aha, my genius friend suggests a solution
[19:02:15] <checkers> ignore mail /^Received: .* by mx.bluebottle.net.au .* ESMTPSA .*/ IGNORE
[19:02:39] <robtone_> Mh, good idea, yes.
[19:03:18] *** tshine_ has quit IRC
[19:03:50] <robtone_> however, if your account is hacked, you are fucked and you rely on the MTA logs.
[19:03:55] *** action09 has quit IRC
[19:04:11] *** action09 has joined #postfix
[19:04:34] *** _zsh has quit IRC
[19:16:56] *** action09 has quit IRC
[19:16:59] *** action09 has joined #postfix
[19:17:10] *** chequers has joined #postfix
[19:18:31] *** c00l2sv has quit IRC
[19:19:01] *** devdas has joined #postfix
[19:20:21] *** checkers has quit IRC
[19:22:23] <rob0> He would never SEE the headers added by the relayhost. Can't remove a header which is added later.
[19:23:03] <rob0> Sure, his own Postfix's initial Received: header can be stripped.
[19:25:49] <chequers> i'm still here :)
[19:25:57] <rob0> ah
[19:26:17] <chequers> i'm using this in header_checks:
[19:26:28] <chequers>  /^Received:.*by\ mx.bluebottle.net.au\ \(Postfix\)\ with\ ESMTPSA/              IGNORE
[19:26:41] <rob0> mx.bluebottle.net.au is your relayhost
[19:27:01] <jeev> hm, i have horde connecting to localhost.. but the actual hostname + 587, i have submission running with dkimproxy
[19:27:09] <jeev> when i use outlook and shit, it signs the message.. when i use horde, it's not
[19:27:20] <chequers> rob0: sorry, what does that imply?
[19:27:41] <rob0> Where do the mails go after mx.bluebottle.net.au ?
[19:27:55] <chequers> The World(tm)
[19:28:07] <chequers> or if incoming, the dovecot LDA
[19:28:26] <rob0> This is quite simple to understand. You cannot strip headers which do not exist.
[19:28:51] <rob0> (Unless of course you control mx.bluebottle.net.au )
[19:29:08] <chequers> yes, I do
[19:29:21] * chequers points at whois
[19:29:34] <mwalling> wait, what are you attempting?
[19:29:46] <mwalling> you want to strip headers you add to the message?
[19:30:04] <chequers> no, I want my postfix server to strip the first recieved header it creates when I send a message through it
[19:30:16] <rob0> Anyway, this is also a good example of why it's a bad idea to apply RBL checks to Received: headers.
[19:30:20] <mwalling> why ?
[19:30:37] <chequers> some of the IPs I send from are RBLed
[19:31:06] <rob0> as are most of the IP addresses in the world from which personal email originates.
[19:31:27] <mwalling> is there actually a problem, or are you trying to be proactive?
[19:31:38] <chequers> the former
[19:31:45] <mwalling> whats the problem
[19:32:07] <devdas> Idiots with spamassassin
[19:32:14] <chequers> quite :)
[19:32:37] <mwalling> wait, SA does RBL on Received?
[19:32:37] <robtone_> chequers, why no VPN?
[19:32:50] <robtone_> mwalling, yes
[19:33:04] * mwalling scratches his head
[19:33:07] <rob0> Yes, a VPN is your most elegant solution.
[19:33:22] <rob0> forget / bypass the proxy
[19:33:37] <chequers> no VPN so far because of the Effort required
[19:33:47] <rob0> and then your headers are entirely RFC 1918 addresses
[19:33:58] <chequers> depending on how hard header_checks is to maintain I might start to move that way though
[19:34:04] <mwalling> chequers: openvpn isnt that hard
[19:34:22] <mwalling> both my laptops and my router here at the house have vpn connections to my server
[19:34:39] <rob0> "Old style" (pre-2.0) openvpn with static keys is real easy.
[19:34:45] <chequers> mwalling: as I said, I'll use whichever is less hard, and so far that is header_checks (assuming neither fails, that is)
[19:34:54] <robtone_> chequers, VPN is less hard.
[19:35:05] <mwalling> its quite nice, because, f.e. i can expose the management console of asterisk to the house for CID notification
[19:35:20] <robtone_> chequers, header quirks introduce other problems. A VPN solves all problems.
[19:35:53] <chequers> hmm, what problems does the header_checks method allow?
[19:36:06] <rob0> Stripping Received headers removes a protection against mail loops.
[19:36:19] <rob0> don't ask how I know this :)
[19:36:19] <robtone_> chequers, your account being hacked and no trace/evidence of the origin
[19:36:51] <chequers> hmm, the loop problem is true.. I feel your past pain rob0 ;)
[19:37:23] <chequers> robtone_: I am confident enough to disregard that. it's not like I would trust the received headers anyway in that case
[19:37:42] <robtone_> I wouldn't trust them either :-)
[19:38:22] <rob0> The funny thing is, I guess you already have AUTH working. With a VPN you could have skipped that step, thus making it *much* easier overall. :)
[19:39:02] <chequers> auth was virtually painless, dovecot makes it so much easier than all the previous methods I have played with
[19:39:26] <chequers> I can Highly Recommend dovecot in general, for small installations at least
[19:39:52] <chequers> I attempted to migrate a bincIMAP install to it at work however and it exploded, so take that recommendation with a grain of salt
[19:40:48] * rob0 has been using Dovecot SASL since the days of the Postfix 2.2.x patch (before 2.3.0)
[19:43:11] <rob0> In fact it was a post from me which got Wietse and Timo talking about implementing Dovecot SASL in Postfix 2.3.
[19:44:27] <rob0> (I was announcing my port of the 2.2.x patch to the 2.3 snapshot series.)
[19:44:49] *** action09 has quit IRC
[19:44:56] *** action09 has joined #postfix
[19:45:44] * chequers directs a large thankyou towards rob0
[19:45:52] <chequers> are you involved in dev of postfix at all?
[19:45:56] <rob0> no
[19:45:57] *** jmazaredo has joined #postfix
[19:46:43] <rob0> I'm not even a programmer. The patch was fairly simple to maintain.
[19:47:17] *** action09 has quit IRC
[19:47:22] <chequers> are you support on the ML too, or just IRC?
[19:47:28] *** action09 has joined #postfix
[19:47:52] <rob0> some, but I got behind on the list last week, still not caught up
[19:48:25] <jduggan> very commendable supporting users on teh list.. soo much traffic, so much guff, it gets tiresome
[19:50:07] <jeev> rob0, you use horde much ?
[19:52:36] *** action09 has quit IRC
[19:52:45] *** action09 has joined #postfix
[19:54:34] *** action09 has quit IRC
[19:54:47] *** action09 has joined #postfix
[19:55:20] *** the_d0ct0r has joined #postfix
[19:55:27] <the_d0ct0r> Hi
[19:55:45] <the_d0ct0r> I have a problem
[19:56:38] <the_d0ct0r> Can anyone help me please? My postfix server doesn't work very well. If I telnet into the server, It greets me, i can send EHLO and HELO, and get responses, but if i send MAIL FROM: <blah at blah dot com> it doesnt response
[19:57:11] <the_d0ct0r> if i open a new telnet connection, i can ask everything and get errors (thinks like RCPT TO: and so. It gives errors because i didn't give a MAIL FROM:
[19:57:18] <the_d0ct0r> does anyone knows what i am doing wrong?
[19:57:22] <chequers> irssiwhat do you see in the logs?
[19:57:34] *** amrit|zzz is now known as amrit|bbl
[20:00:20] *** CrazyFoam has joined #postfix
[20:01:07] *** c00l2sv has joined #postfix
[20:05:16] <devdas> "logs"?
[20:06:48] *** madrescher has joined #postfix
[20:08:09] *** sepski has joined #postfix
[20:08:44] *** jmazaredo has left #postfix
[20:14:51] *** chequers has quit IRC
[20:17:07] *** masterkiller has quit IRC
[20:19:51] <the_d0ct0r> hmm
[20:20:01] <the_d0ct0r> where does postfix store its logs?
[20:20:03] <the_d0ct0r> 1 sec
[20:25:44] <the_d0ct0r> can't find it
[20:26:46] <devdas>  /var/log/ ..
[20:26:46] <devdas> ?
[20:26:58] <the_d0ct0r> nothing
[20:27:50] *** action09 has quit IRC
[20:27:58] *** action09 has joined #postfix
[20:28:02] <the_d0ct0r> oh wait
[20:28:09] <the_d0ct0r> it stores it in /var/log/mail.log
[20:28:14] <the_d0ct0r> i did a telnet
[20:28:20] <the_d0ct0r> and it says this:
[20:28:40] <the_d0ct0r> connect to subsystem private/rewrite
[20:28:48] <the_d0ct0r> send attr request = rewrite
[20:28:51] <the_d0ct0r> send attr rule = local
[20:29:01] <the_d0ct0r> send attr addres = (my email adress)
[20:29:12] <the_d0ct0r> private/rewrite socket: wanted attribute: flags
[20:29:18] <the_d0ct0r> rewrite stream disconnect
[20:29:27] <the_d0ct0r> connect to subsystem private rewrite
[20:29:34] <the_d0ct0r> send attr request = resolve
[20:29:37] <devdas> turn off verbose logging
[20:29:44] <the_d0ct0r> send attr address = (my address)
[20:29:47] <the_d0ct0r> what do you mean?
[20:29:54] <the_d0ct0r> where do i turn of that?
[20:33:31] *** Motoko-chan has joined #postfix
[20:34:51] *** action09 has quit IRC
[20:34:56] *** action09 has joined #postfix
[20:35:23] <the_d0ct0r> hmm wait
[20:36:35] *** action09 has quit IRC
[20:36:39] *** action09 has joined #postfix
[20:36:54] <the_d0ct0r> i found the error
[20:37:11] <the_d0ct0r> after looking in /var/log/mail.err, i found out that i mistyped my mysql password in a postfix config file
[20:37:16] <the_d0ct0r> anyways, thanks for the help
[20:39:20] *** GoGi has quit IRC
[20:43:58] *** the_d0ct0r has quit IRC
[20:59:20] *** action09 has quit IRC
[20:59:27] *** action09 has joined #postfix
[21:01:09] *** action09 has quit IRC
[21:01:15] *** action09 has joined #postfix
[21:04:00] *** troythetechguy has quit IRC
[21:06:36] *** Fallenou has quit IRC
[21:07:08] *** tshine has joined #postfix
[21:13:51] *** action09 has quit IRC
[21:13:58] *** action099 has joined #postfix
[21:15:03] *** denis has joined #postfix
[21:28:51] *** sepski has quit IRC
[21:29:41] *** action099 has quit IRC
[21:29:48] *** action099 has joined #postfix
[21:33:05] *** action099 has quit IRC
[21:33:08] *** action099 has joined #postfix
[21:34:19] *** carl- has joined #postfix
[21:40:24] *** idle-boy`` has joined #postfix
[21:40:42] *** action099 has quit IRC
[21:43:47] *** pitakill has quit IRC
[21:43:49] *** pa has quit IRC
[21:46:30] *** mathez has quit IRC
[21:49:24] *** denis has quit IRC
[21:50:51] *** MrCoala has joined #postfix
[21:50:54] <MrCoala> hi
[21:50:55] *** tshine has quit IRC
[21:51:22] <MrCoala> is there a way to stop people trying to do bruteforce attacks against my mailsystem
[21:51:29] <jeev> wehat kind
[21:51:31] <jeev> of brute force
[21:51:33] <mwalling> !fail2ban
[21:51:33] <knoba> mwalling: Error: "fail2ban" is not a valid command.
[21:51:36] <mwalling> bah
[21:51:41] <mwalling> google it
[21:51:43] <MrCoala> courierpop3 daemon
[21:51:53] <mwalling> courier != postfix
[21:51:58] <MrCoala> courierpop3login: LOGIN FAILED, user=lmorales, ip=[::ffff:213.175.89.143]
[21:52:01] <MrCoala> logs are full :x
[21:52:16] <mwalling> courier != postfix.
[21:52:19] <MrCoala> :x
[21:52:41] <MrCoala> i thought postfix handles everything?
[21:52:54] <mwalling> no.
[21:53:03] <jeev> no way hose a
[21:53:34] <MrCoala> the courier_* daemons are under the postfix?
[21:53:43] <MrCoala> postfix/smtpd[5674]: connect from unknown[194.97.153.82]
[21:53:46] <MrCoala> like this i thought
[21:53:56] <mwalling> SMTP != POP3
[21:54:21] <MrCoala> courier-smtp + courier-pop3 = courier
[21:54:32] <MrCoala> i'm confused
[21:54:51] <mwalling> welcome to #postfix.
[21:55:04] <MrCoala> xD
[21:56:05] <MrCoala> wasnt there a policy daemon or so
[21:56:31] *** tombar has quit IRC
[21:58:02] *** idle-boy` has quit IRC
[21:59:16] *** madrescher has quit IRC
[22:01:44] <MrCoala> lol
[22:01:53] <MrCoala> i banned myself from my system xD
[22:02:00] <devdas> no
[22:02:06] <MrCoala> fail2ban
[22:02:21] <MrCoala> tested it with sshd and i thought if it works theres still my root session open..
[22:02:29] <jeev> hahahahahhahaha
[22:02:57] <MrCoala> not funny :(
[22:04:34] <MrCoala> i hope that time=600 are seconds
[22:05:56] <devdas> years
[22:06:00] <vice-versa> lol
[22:06:28] *** Fallenou has joined #postfix
[22:06:56] <MrCoala> aw
[22:07:11] <MrCoala> i dont have a dynip
[22:13:18] <mwalling> this is why you should always have an out of band management solution
[22:14:05] <MrCoala> too late :x
[22:14:41] <MrCoala> i'm afk on my way to another internet connection
[22:15:02] *** mathez has joined #postfix
[22:32:09] *** higuita has quit IRC
[22:32:46] *** higuita has joined #postfix
[22:36:12] *** MrCoala is now known as mrcoala
[22:36:45] *** rokra has joined #postfix
[22:47:51] *** tshine has joined #postfix
[22:51:36] *** glxman has joined #postfix
[22:53:46] <glxman> can someone please take a look, thank you http://paste.jpowermacg4.com/67
[22:54:22] <robtone_> don't you wath netherlands russia?
[22:54:27] <robtone_> ;-)
[22:54:40] <jeev> damn ned got lucky
[22:54:50] <glxman> prevate, moshas pamagit mena
[22:55:06] <jeev> glxman, you have any authentication enabled?
[22:55:18] <glxman> jeev, from efnet?
[22:55:36] <jeev> yes mam
[22:55:50] <glxman> 250-AUTH CRAM-MD5 DIGEST-MD5 PLAIN LOGIN
[22:55:50] <glxman> 250-AUTH=CRAM-MD5 DIGEST-MD5 PLAIN LOGIN
[22:56:00] <jeev> are you authenticating with your mail client ?
[22:56:22] <jeev> brb
[22:56:24] <glxman> i m not sure,
[22:56:25] <glxman> ok
[23:02:29] <rob0> You posted a hotmail bounce? Why not the LOGS? Also, there is nothing to say what the problem is. Are we supposed to infer that your server is the MX for binjx.com.? If so, that's odd, because that's NXDOMAIN.
[23:03:34] *** devdas has left #postfix
[23:04:13] *** Fallenou has quit IRC
[23:06:13] *** Fallenou has joined #postfix
[23:08:50] <glxman> i see, thank you let me follow up what you requesting..
[23:11:55] <glxman> i tailing the log file i don't even see the hotmail is hitting the box,
[23:13:15] <glxman> upon send hotmail send msg what i post..
[23:13:50] <rob0> NXDOMAIN means the domain or name does not exist.
[23:13:59] <jduggan> perhaps thats got something to do with it being NXDOMAIN ;]
[23:15:03] <jeev> wow
[23:15:05] <jeev> russia won
[23:15:05] <jeev> nice
[23:15:07] <glxman> i see, let me do search on NXDOMAIN
[23:15:54] <rob0> uh ... ???
[23:16:15] <jeev> oh wow
[23:16:17] <jeev> i didn't see the hotmail part
[23:16:46] <rob0> Read slowly. The domain "binjx.com." DOES NOT EXIST.
[23:17:01] * mwalling snickers
[23:17:09] <jeev> No match for "BINJX.COM".
[23:17:09] <rob0> You still have not said what the problem is.
[23:17:11] * jeev purchases
[23:17:24] * mwalling also needs a new geoip database... 99.2.237.129 isnt in mine
[23:17:57] <jduggan> haha
[23:20:40] <mwalling> jduggan: dont laugh... it comes in handy for determining if there might be a language barrier
[23:20:48] <mwalling> and for general freaking out :)
[23:20:53] <jeev> what are we talking about ?!!
[23:22:02] <rob0> Yeah, I was suspecting a language barrier too. Texican?
[23:27:27] *** shinao1 has quit IRC
[23:28:46] <jeev> i'm questinoing running dkimproxy
[23:28:51] <jeev> if it dies, incoming mail wont work
[23:28:55] <jeev> outgoing dies, at least we can resubmit it
[23:29:06] <jeev> it doesn't really have a service.. i'm starting it with daemontools
[23:31:29] <mwalling> mmm djbware
[23:47:02] <jeev> why am i watchikng neanderthals





top