postfix IRC logs [June 27

[00:00:10] *** Aw0L has quit IRC
[00:00:19] *** adaptr has quit IRC
[00:00:30] *** adaptr has joined #postfix
[00:02:45] *** amrit|wrk is now known as amrit|afk
[00:03:12] *** tombar has quit IRC
[00:04:07] <olliu> yes. oh i am so old. indeed, Message accepted for delivery is the last entry for all my mails being eaten by dspam :)
[00:04:49] <olliu> several hundred keys being again pressed in vain.
[00:06:30] *** j_s has quit IRC
[00:16:15] *** xnixan has joined #postfix
[00:27:35] *** Nockian has joined #postfix
[00:43:47] *** tombar_ has quit IRC
[00:52:39] *** neoeinstein has quit IRC
[00:58:47] *** war9407 has quit IRC
[01:00:35] *** dusty_ has joined #postfix
[01:00:35] *** hever has quit IRC
[01:01:25] *** hever has joined #postfix
[01:08:20] <dusty_> mwalling, postconf -n is http://rafb.net/p/SdT5ai49.html and www.stoned-hacker.co.uk/mail.log is the log file, grep it for securityfocus.com
[01:09:41] <mwalling> You don't have permission to access /mail.log on this server.
[01:09:42] <mwalling> fail
[01:17:23] *** magyar has joined #postfix
[01:20:45] <hever> Hi I wrote a simple autoresond perl script (it works but postfix doesn't call it). I get "postfix/trivial-rewrite[1785]: `local' `AUTOREPLY-EMAIL at DOMAIN dot TLD.' -> `AUTOREPLY-EMAIL at DOMAIN dot TLD'" In the logs. Does this mean postfix tries to forward the mail to "local" and not to my autoresponder tool ?
[01:20:55] *** havvg has quit IRC
[01:22:56] <Fallenou> see you guyz
[01:22:57] *** Fallenou has quit IRC
[01:23:39] <hever> In virtual_alias_maps, there is a map from email at domain dot tld to email at domain dot tld and autoreply-email at domain dot tld. Then I have a transport map regexp "/^autoreply.*/ autoreply".
[01:25:59] <mwalling> !tutorial
[01:26:00] <knoba> mwalling: "tutorial" : A very common problem is that some people prefer to follow a step-by-step tutorial that shows them how to setup their mail server without reading the documentation or understanding what they are doing. If something goes wrong, they have no clue whatsoever about where to look for hints, and they sometimes decide to start from scratch using a different tutorial. This is not The Proper Way.
[01:26:09] <hever> I also used postmap to check if the lookup tables work. I get the two addresses and the correct transport map...
[01:26:22] <dusty_> mwalling, now try..
[01:27:13] <dusty_> mwalling, http://rafb.net/p/hCE5kJ59.html <-- that is my whitelist
[01:28:43] <mwalling> Jun 25 08:38:19 stoned-hacker postfix/smtpd[11754]: NOQUEUE: reject: RCPT from outgoing.securityfocus.com[205.206.231.27]: 550 5.1.1 <test-mailinglist1 at stoned-hacker dot co.uk>: Recipient address rejected: User unknown in virtual mailbox table; from=<binaryanalysis-return- at securityfocus dot com> to=<test-mailinglist1 at stoned-hacker dot co.uk> proto=ESMTP helo=<outgoing.securityfocus.com>
[01:28:57] <mwalling> line 3?
[01:30:34] <hever> (My setup looks like described in the oreilys postfix book) In the logs I don't see that the autoreply-email at domain dot tld is checked against the transport map regexp so I think only incoming mails are checked against it before a adress rewrite through virtual_alias maps is done. So now the question is can I tell postfix, that it also should check the transport map after an adress rewrite against virtual alias maps? Or missed I something ?
[01:31:34] * mwalling starts from the bottom
[01:34:26] <mwalling> dusty_: ha! i found logs!
[01:34:28] <mwalling> Jun 26 21:34:52 stoned-hacker postfix/qmgr[1791]: 3243119E098A: from=<double-bounce at stoned-hacker dot co.uk>, size=280, nrcpt=1 (queue active)
[01:34:31] <mwalling> Jun 26 21:34:52 stoned-hacker postfix/smtp[1828]: 3243119E098A: to=<postmaster at you dot dontlike.us>, relay=mail.dontlike.us[67.18.208.100]:25, delay=0.4, delays=0.01/0/0.31/0.08, dsn=2.1.5, status=deliverable (250 2.1.5 Ok)
[01:34:36] <mwalling> Jun 26 21:34:52 stoned-hacker postfix/qmgr[1791]: 3243119E098A: removed
[01:34:57] <mwalling> that is you sending SAV to me. look at whats happing then near where secfocus lists are getting rejected
[01:35:31] <olliu> good night!
[01:35:34] *** olliu has left #postfix
[01:40:48] *** magyar has quit IRC
[01:41:15] *** magyar has joined #postfix
[01:53:55] <hever> Ok the problem was that the autoresponse-email at domain dot tld addess must be also listed itself in virutal_alias_maps...
[02:03:44] <dusty_> I don't understand ?
[02:04:23] <dusty_> mwalling, its the dusty at fuckthegov dot co.uk address that is concerned not the test mailing one
[02:04:30] <dusty_> i cant see any issues?
[02:05:28] <mwalling> dusty_: 19:31 * mwalling starts from the bottom
[02:05:39] <dusty_> ?
[02:06:42] *** slide has joined #postfix
[02:07:19] <slide> I got a complaint about backscatter from my server where its accepting disabled (or nonexisting) accounts and later sending back emails
[02:07:28] <slide> how do I stop my server from sending ANY emails out
[02:07:58] <mwalling> stop it?
[02:08:09] <slide> yes, how
[02:08:15] <mwalling> postfix stio
[02:08:17] <mwalling> stop
[02:08:21] <slide> uhm
[02:08:21] <slide> no
[02:08:22] <slide> lol
[02:08:28] <mwalling> fine
[02:08:32] <mwalling> fix it yourself
[02:08:39] <slide> lol helpfull
[02:09:14] <shasta> slide, that's not what you want to do
[02:09:21] <slide> Anyone else? I want it to accept emails, but never ever (under any circumstance) send mails
[02:09:32] <shasta> you want to make sure that your postfix doesn't accept emails for nonexisting accounts
[02:09:50] <mwalling> shasta: well, stopping it until he fixes it cant hurt
[02:09:57] <slide> yes it can
[02:09:59] <slide> ill miss emaisl
[02:10:03] <mwalling> no you wont
[02:10:05] <shasta> no you won't
[02:12:50] <slide> so, how do i tell it to not accept emails from nonexisting accounts?
[02:13:04] <mwalling> !backscatter
[02:13:04] <knoba> mwalling: "backscatter" : http://www.postfix.org/BACKSCATTER_README.html
[02:14:14] *** pirho has quit IRC
[02:15:01] <shasta> mwalling, that's for blocking incoming backscatter (:
[02:15:06] <mwalling> oh
[02:15:08] *** neoeinstein has joined #postfix
[02:15:23] <mwalling> meh, i was hoping it was a longer thing that had a wtf it is kinda thing too
[02:15:41] <shasta> slide, first of all, what did you screw up that made your postfix accept emails to nonexistant accounts?
[02:15:50] <shasta> because it doesn't in its default configuration
[02:16:05] *** ullio has left #postfix
[02:16:26] <slide> well, 1) i set this up like 2 years ago
[02:16:50] <slide> which was pre2.0 right?
[02:17:42] <slide> man configuring this thing is too complicated...
[02:18:09] <slide> but im not sure exactly what I did wrong lol
[02:18:36] <shasta> no, most times it's kinda easy
[02:19:03] <slide> well, i set it up to use mysql for account auth
[02:19:33] <shasta> postconf -n
[02:19:58] <slide> you want to see that?
[02:20:45] <shasta> yes, pastebin that
[02:20:51] <slide> http://www.brandonnason.com/postconf.txt
[02:21:33] *** makerc has joined #postfix
[02:24:48] <shasta> and some logs where your postfix accepts mail to nonexisting account and sends a DSN
[02:24:48] <slide> how bad is it?
[02:27:31] <slide> http://www.brandonnason.com/bounce.txt
[02:29:52] <shasta> unknown user: "postmaster at brandonnason dot com"
[02:29:54] <shasta> oh my
[02:29:58] <slide> ya
[02:30:04] <mwalling> the second time today?
[02:30:27] <slide> i think it may be that I have that in my maildb, but i have it disabled
[02:30:46] <shasta> slide, http://www.rfc-ignorant.org/rfcs/rfc2821.php#section4.5.1
[02:30:47] <slide> well, had it disabled, now its getting routed to my account =\
[02:31:04] <rob0> RELEASE_NOTES-2.0 is dated 2003-09-28
[02:31:43] <shasta> but still, how come it got to amavis?
[02:32:12] <slide> asking me that?
[02:32:17] *** ming_zym has joined #postfix
[02:33:44] <shasta> pastebin your /etc/postfix/mysql*.cf (minus hostnames/usernames/passwords)
[02:34:03] <rob0> the only logs are amavis, smtp and virtual ... NO smtpd logs in there
[02:34:33] <rob0> why not just show ONE COMPLETE bounce from receipt?
[02:36:21] <rob0> also, I don't think that's right, to have "receive_override_options = no_address_mappings" in main.cf ... don't the FILTER_README and amavisd-new docs show it in master.cf for the reinjection smtpd?
[02:37:42] <rob0> !postmapq
[02:37:42] <knoba> rob0: "postmapq" : You can check your lookups with the postmap command. Example: if you defined "transport_maps = mysql:/etc/postfix/transport.cf" you may check this mapping by running "postmap -q domain.com mysql:/etc/postfix/transport.cf" and see if it works.
[02:38:11] <rob0> my guess here is that postmaster at brandonn dot .. is not in virtual_mailbox_maps
[02:39:42] <slide> http://www.brandonnason.com/mysql.txt
[02:44:49] *** idle-boy has joined #postfix
[02:47:57] *** aedaemoen has quit IRC
[02:49:21] <slide> so whats the verdict?
[02:53:43] *** bondoer has joined #postfix
[02:55:11] <bondoer> hi everybody, i am just making some policy daemon and i would like to know more info about it. Is it somehow possible to obtain the body(content) of the inspected mail in this phase? or somehow thru message ID from system?
[02:55:24] <rob0> nope.
[02:55:41] <rob0> check into milters.
[03:02:19] <bondoer> and is there some way how can i delegate the control from policy phase to content filtering phase and then back? :)
[03:03:39] *** idle-boy has quit IRC
[03:03:49] *** idle-boy has joined #postfix
[03:09:35] * rob0 is trying to understand that
[03:09:59] <rob0> maybe by using a FILTER target from your policy daemon?
[03:10:52] <bondoer> i was thinking of PREPENDING my infos to header and then analyzing it in content_filter phase, but FILTER seems also a possibility... will check
[03:10:55] *** Tachy_ has joined #postfix
[03:11:12] <bondoer> btw if i understand good milter is similar to amavis
[03:12:16] * rob0 has not yet played with milters
[03:12:58] * neoeinstein played just enough to enable dkim
[03:13:05] *** martianixor has quit IRC
[03:13:12] <bondoer> :)
[03:14:17] <bondoer> heh and i only what to have some kind of commands inside mail which will be inspected within policy daemon :/
[03:14:39] <rob0> maybe you're reinventing a wheel?
[03:16:12] <bondoer> i dont think so :)
[03:17:02] <bondoer> and if yes, then it means that previous implementation wasnt successful ;)
[03:17:58] <bondoer> but maybe you know something more than me, so tell me ;)
[03:18:01] <rob0> The best wheels are very close to being perfectly round. ;)
[03:18:27] <rob0> I can't, because I am not sure what the ultimate goal is.
[03:20:47] <bondoer> something like greylisting implementation but it wont defer the message but will give user chance to pass it right away just after he correctly answer the question thru another email. After that he will be whitelisted.
[03:21:06] <jduggan> bondoer: you dont have to add a header to track it to another filter
[03:21:14] <jduggan> you can use the unique smtp instance
[03:21:22] <jduggan> which will get sent and remains the same
[03:22:13] <jduggan> so your policy daemon can do its shit, add the smtp instance to a db entry, then ur other filter/policyd can take look that smtp instance up and do wotever u wanted
[03:22:32] <jduggan> severly broken english there, but you get the picture
[03:22:46] <bondoer> and how i can pass information between this two modules(content_filter and policy daemon)
[03:22:53] <bondoer> hmm
[03:23:13] <jduggan> you'd have to store in a database, and pick it back up in the content filter module, or policy daemon
[03:23:13] <bondoer> "add the smtp instance to a db entry" some more info about this operation, i cannot get it into my head :)
[03:23:22] <rob0> "User" = postmaster / site admin?
[03:24:23] <bondoer> jduggan: ahh yea, i got it, i was thinking about this one, but i am still little bit stil confused about hwo each modules of ptosfix is called and in which phase i can read the appropriate data and so on
[03:24:32] <bondoer> rob0: what user?
[03:24:54] <jduggan> bondoer: when postfix sends the info to your policy daemon it sends var=value... one of those is smtp_instance (or something similar), you can take these values, store it in a database return DUNNO, or REJECT or wotever it is you're doing... then when postfix passes to your content filter you can once again match based on smtp_instance
[03:25:04] <jduggan> bondoer: its up to you which order you put the modules
[03:25:07] <rob0> "... it wont defer the message but will give user chance to pass it right away ..."
[03:25:09] <bondoer> jduggan: but its raelly seems to be best solution to have one filter and one policyd
[03:25:15] <jduggan> its in your restrictions
[03:25:22] <jduggan> bondoer: yep, thats how i explained
[03:25:23] <jduggan> :)
[03:25:31] *** Tachy has quit IRC
[03:25:42] <bondoer> ahhhh sooo, i somehow missed that smtp_instance in that policy protocol
[03:25:48] <rob0> you sure CAN have a separate post-filter policy service, if you want.
[03:26:17] <jduggan> yep, you can have as many policy daemons as you want, that all track the same message at various stages
[03:26:18] <rob0> as many on either side of the filter as you can manage :)
[03:26:31] <jduggan> and track by unique smtp instance
[03:26:34] <bondoer> yea i hoped that somehow by mesasge ID i coudl pick up the msg content and that additional filter wouldn't be needed, to many overhead just because of one comparison within the body
[03:26:57] <jduggan> bondoer: rather than message id, track by smtp instance
[03:28:14] <bondoer> hmm, truly said i though now that message ID is more uniquely tracable that smtp instance
[03:28:31] <rob0> The thing I hope you understand about greylisting after DATA, is that at the end of DATA you must either return success or a deferral.
[03:28:55] <rob0> (in real time)
[03:29:24] <jduggan> what benefit do you get greylisting after data... kind of goes against its intention eh?
[03:30:22] <rob0> indeed, it's ugly.
[03:30:31] *** idle-boy has quit IRC
[03:31:16] <bondoer> yea i know, i want to be able to add third possibility to HOLD email
[03:31:38] <jduggan> bondoer: hold based on what?
[03:31:58] <bondoer> whether the user is whitelisted or not
[03:32:09] <jduggan> you dont need DATA for that
[03:32:15] <jduggan> you can do that pre-data
[03:32:45] <bondoer> yea but i need that in second phase, when the user send me answer and i need to analyze the email whether the answer is good and depending on this i will unhold the email
[03:33:16] <bondoer> hope it is clear enough
[03:33:34] <jduggan> not really
[03:33:42] <jduggan> where are you getting your 'answers' from ?
[03:33:49] <jduggan> not real time db lookup etc?
[03:34:33] <bondoer> from the user who want to contact me and he's not on the whitelist. so he obtain email which is requesting answer to certain question. he reply to that email and then i will check for the answer
[03:35:25] <jduggan> does anyone else understand this? :)
[03:35:31] <bondoer> okay once again :)
[03:36:00] <rob0> hmmm, like C/R?
[03:36:34] <rob0> You're going to send challenges to sender addresses?
[03:36:50] <bondoer> A send email to B; B doesnt have A on his whitelist, so the postfix do not deliver the mail, instead it HOLD it and send email with some generated question to user A; A reply to email with his answer; postfix check the answer and if it is good the original email will be delivered to B and A will be whitelisted
[03:38:38] <bondoer> ehh what is C/R. i think none of this one :D http://acronyms.thefreedictionary.com/C%2FR
[03:38:46] <jduggan> challenge/response
[03:38:47] <rob0> How do you know that "A" is really "A" and not a spammer using A's address?
[03:38:50] <bondoer> oh change request, man i am blind ;)
[03:39:03] <rob0> 01:38 < jduggan> challenge/response
[03:39:17] <jduggan> yes its challenge/response
[03:39:32] <jduggan> postfix does already have something vaguely similar
[03:39:36] <jduggan> sender verification
[03:39:42] <rob0> If you cannot be relatively certain that "A" is "A", then this whole scheme sucks.
[03:40:02] <bondoer> rob0: i dont know; it can be, but i know that spammer wont reply
[03:40:25] <rob0> Sender verification sucks somewhat too, but if you're a small site you only commit a small amount of abuse.
[03:40:40] <rob0> (it still IS abuse however)
[03:41:11] <rob0> The amavisd-new fellow did something interesting ... C/R inband.
[03:41:32] <rob0> The challenge is given as a 5xx rejection.
[03:41:55] <rob0> This is the only way for C/R to be clean.
[03:42:05] <bondoer> the main point here is that the questions are provided by user itself
[03:42:14] <bondoer> but after i reject the mail, then i lose it :/
[03:42:40] <rob0> Sending unsolicited bulk mail to innocent 3rd parties is abuse.
[03:42:54] <jduggan> the whole idea sucks tbh, bondoer :)
[03:43:02] <bondoer> ahh i see now your points
[03:43:28] <bondoer> and damn it, both of you are right
[03:43:40] <rob0> http://en.wikipedia.org/wiki/Challenge-response_spam_filtering
[03:44:04] <jduggan> sucks in that so much effort.. there's lots of other methods to cut spam
[03:45:49] <rob0> I'm sorry to burst your bubble, but I do thank you for seeing the light. :) A lot of people go wacko about C/R schemes ... the FUSSP.
[03:45:53] <rob0> !fussp
[03:45:53] <knoba> rob0: Error: "fussp" is not a valid command.
[03:46:04] <bondoer> yea, but in many cases they don't work
[03:46:23] <jduggan> lots of people dont admit their idea sucks, so grats on that account :)
[03:46:31] <bondoer> damn it, but this is bad; why i havent seen it before, arghhh :)
[03:46:48] <rob0> yeah, it is possible to make C/R better, but there's still going to be more spam as a result of even the best.
[03:46:51] <bondoer> but anyway that C/R is really exactly same as i meant to do
[03:47:03] <rob0> DO check out the amavisd-new thing ... um ...
[03:47:21] <jduggan> also, it lets spammers know your address is active if you're sending a response from it..
[03:47:56] <bondoer> rob0: what for?
[03:48:10] <rob0> ... damn can't find it at http://www.ijs.si/ijsw/People,_contacts
[03:48:11] <bondoer> jduggan: yea, but with this C/R you shouldn't got any email
[03:49:50] <jduggan> bondoer: sure, but the spammer keeps hitting your mta, increasing load.. you keep replying, yadda yadda
[03:50:04] <jduggan> all more load
[03:51:08] <bondoer> yea yea, but its cheaper to buy more HW than to kill more hours of filtering spam at work
[03:51:33] <jduggan> bondoer: there's cheaper methods of combatting spam than what you proposed :)
[03:51:33] <bondoer> man i would put all the spammers into the jail
[03:52:04] <bondoer> jduggan: like?
[03:52:31] <jduggan> !cheatsheet
[03:52:32] <knoba> jduggan: "cheatsheet" : http://jimsun.linxnet.com/misc/postfix-anti-UCE.txt : A HOWTO for pre-DATA spam control.
[03:52:39] <jduggan> have you been over thids
[03:52:41] <jduggan> this*
[03:52:43] <bondoer> jduggan: the prob is that my "customer" receive almost thousand spams per day
[03:52:45] <bondoer> yep
[03:53:14] <jduggan> spamassassin?
[03:53:16] <jduggan> dspam?
[03:53:27] <rob0> HELO checks and Zen might knock that down to 10 or so.
[03:53:47] <jduggan> helo checks arent covered in the cheatsheet?
[03:53:54] <rob0> yes they are
[03:53:54] <bondoer> jduggan: yea but you must learn them all the time
[03:54:10] <rob0> no, it's a one-time setup basically
[03:54:20] *** slide has quit IRC
[03:54:32] <jduggan> bondoer: not true :)
[03:54:36] <jduggan> read some documentation
[03:54:48] <jduggan> oh man
[03:54:53] <jduggan> how does it get to 3am
[03:54:59] <jduggan> i have work @ 9
[03:55:04] <jduggan> i'd better shoot, g'night
[03:55:26] <bondoer> the spam is evolving, i am really sometimes surprised that our corporate spam filter let the spam with words like CIALIS and VIAGRA to reach our mailboxes
[03:55:35] <bondoer> good night and thanks alot
[03:56:19] <jduggan> bondoer: see header checks and body checks
[03:56:35] <jduggan> if you google, perhaps rob0 has some fine examples you can get some good regexps that catch most of those
[03:57:25] <rob0> oh not at all ... it's a battle you cannot possibly win
[03:58:05] <bondoer> heh :)
[03:58:15] <lunaphyte> How about a nice game of chess?
[03:58:26] <rob0> I hosted a small but heavily spammed domain, and I learned a lot from that.
[03:58:50] <bondoer> and how much did you reduced the spam traffic?
[03:59:31] <jduggan> unfortunately i host like 2500+ domains
[03:59:33] <rob0> This lady (the executive assistant in the company) was spending most of her day going through the email. It went down to under an hour a day. They were thrilled.
[03:59:41] <jduggan> we're a spam magnet
[03:59:56] <bondoer> if hour a day, still much; how many domains?
[04:00:17] <rob0> She was a bad user ... clicking the links she should have known not to.
[04:00:41] <bondoer> :)
[04:00:45] <bondoer> porn :)
[04:00:54] <rob0> Cheatsheet and RBL put her down in the "JHD" category.
[04:01:01] <rob0> (just hit delete)
[04:01:19] <bondoer> :D
[04:01:22] <jduggan> wow, two more domains and we're handling 2600
[04:01:23] <rob0> haha not really, she's very religious and uptight about such things
[04:01:39] <bondoer> nice, you work in some big hoster :)
[04:01:51] <bondoer> thank god i host only 65 domains :)
[04:01:54] <rob0> oh I did set her up with amavisd-new too
[04:02:21] <rob0> it was tough to tweak to avoid FP's and take out the spam
[04:02:27] <jduggan> bondoer: not extremely big, we only handle about 7k recipients, but its getting to be a sizeable cluster
[04:03:21] <jduggan> its not our core business, we're a datacenter providing rack space/colo facilities primarily.. just do some virtual hosting on the side
[04:03:25] <bondoer> jduggan: imho its pretty big :) btw you have also some antispam lady ;)
[04:04:12] <bondoer> jduggan: is it worth of doing sucha  bussiness, friend of mine wanted to become rich on providing virtual hosting :)
[04:04:27] <bondoer> rob0: FP? i am really lost in those abbreviatations ;)
[04:04:27] <jduggan> bondoer: everybody wants to do virtual hosting ;)
[04:04:44] <jduggan> bondoer: its too competitive IMO these days
[04:05:02] <bondoer> i think that in our country(CZ) is still place for this
[04:05:16] <jduggan> unless you do things a little different, make it unique, it'd be hard to break into the market
[04:05:28] <jduggan> there are providers almost giving away virtual hosting
[04:05:58] <bondoer> btw dont you knwo the percentage of spam/ham mails passed in your hosting?
[04:07:10] <jduggan> i havent checked in a while, last i looked i believe it was about 80% rejection rate before data analysis
[04:07:24] <jduggan> we have a dspam cluster also
[04:07:38] <jduggan> which does data analysis, which is pretty good
[04:07:51] <jduggan> assuming users move stuff into their junk folder when it's junk ;)
[04:07:57] <jduggan> and out when its not, etc :)
[04:08:12] <bondoer> yea yea, but 80% is pretty nice
[04:08:20] <bondoer> are you using greylisting?
[04:08:32] <jduggan> yes
[04:09:09] <jduggan> lol, the evening i enabled greylisting.. the whole week following i had customers calling me thinking something was wrong, they must be losing emails because they werent even getting email into their junk folders
[04:09:31] <jduggan> this is going back a while now
[04:09:41] <jduggan> i wish i had stats as to how effective greylisting is
[04:09:47] <bondoer> :D
[04:09:49] <jduggan> im sure it doesnt catch as much as it used to
[04:10:01] <jduggan> spammers adapt, etc
[04:10:04] <jduggan> oh well
[04:10:06] <jduggan> really must sleep now
[04:10:08] <jduggan> good night
[04:10:32] <bondoer> imho not, because sending again emails cost time, so it will at least slow down it a little bit
[04:10:35] *** pitakill has joined #postfix
[04:10:37] <bondoer> okay good night ;)
[04:24:18] *** Draecos has joined #postfix
[04:28:11] *** Draecos has quit IRC
[04:33:01] *** githogori has quit IRC
[05:02:22] *** Zeit|awy_ has joined #postfix
[05:08:23] *** Zeit|awy has quit IRC
[05:26:50] *** samtresler has joined #postfix
[05:28:43] <samtresler> Hi, thanks in advance if anyone can give a hand.  I am following this: http://workaround.org/articles/ispmail-etch/ and am getting "fatal: bad string length 0 < 1: virtual_mailbox_base ="  I see in the man pages that virtual_mailbox_base needs to be set, but I thought using dovecot instead of the built in virtual would get around that.  Should I just set it to / ?
[05:29:25] <samtresler> or can I make it so virtual doesn't try to start up with postfix?
[05:35:10] *** master_of_master has joined #postfix
[05:37:12] <mwalling> !basic
[05:37:12] <knoba> mwalling: "basic" : http://www.postfix.org/BASIC_CONFIGURATION_README.html : a good starting place for Postfix beginners, many common questions are answered here.
[05:37:34] <mwalling> !standard
[05:37:35] <knoba> mwalling: "standard" : Your question is probably answered in http://www.postfix.org/STANDARD_CONFIGURATION_README.html
[05:39:21] *** makerc has quit IRC
[05:46:48] <samtresler> nifty
[05:46:49] <samtresler> thanks
[05:47:22] *** master_o1_master has quit IRC
[05:48:54] <mwalling> huh?
[05:49:02] <mwalling> oh, that wasnt for you, but glad it helped
[05:49:11] <mwalling> i neededd the links for another channel
[05:49:25] <samtresler> ah, it didn't so much, but thanks anyway
[05:52:12] <mwalling> what does the tutorial recommend setting virtual_mailbox_base to?
[05:52:28] <mwalling> it seems i have it set even though i am running deliver as well
[05:52:54] *** pickcoder has joined #postfix
[05:55:17] <samtresler> mwalling: it doesn't that is the issue.  what is your set to?
[05:55:35] <mwalling> /var/mail/virtual/
[05:56:00] <mwalling> but thats might be a dropping from when i was using virtual
[05:56:12] <samtresler> ok, That tutorial recommends a separate user for the virtual mailboxes so the mailboxes are in /home/vmail/domain/mailbox
[05:56:50] <mwalling> then i would set /home/vmail
[05:56:58] <samtresler> What I fear is that I have something /else/ misconfigured but the logs indicate dovecot is hanling the local delivery, so I guess that I'll just set it to /home/vmail
[05:57:05] <mwalling> !virtual_mailbox_base
[05:57:05] <knoba> mwalling: "virtual_mailbox_base" : a configuration parameter in the main.cf: A prefix that the virtual(8) delivery agent prepends to all pathname results from $virtual_mailbox_maps table lookups. This is a safety measure to ensure that an out of control map doesn't litter the filesystem with mailboxes. While virtual_mailbox_base could be set to "/", this setting isn't recommended.
[05:57:30] <samtresler> seems like virtual should be out of the picture at this point, but I guess it isn't.
[05:58:19] *** CrazyFoam has joined #postfix
[06:01:55] *** githogori has joined #postfix
[06:05:56] <samtresler> ok, well that got rid of the error.
[06:07:11] *** amrit|afk is now known as amrit
[06:15:52] *** diqpib has quit IRC
[06:22:27] *** Internat has quit IRC
[06:23:54] *** c00l2sv has quit IRC
[06:24:15] *** allan has joined #postfix
[06:34:21] *** m1n3s6 has joined #postfix
[06:43:25] *** tomocha6 has quit IRC
[06:44:45] *** saurabhb has joined #postfix
[06:45:07] *** tomocha6 has joined #postfix
[07:05:00] *** Motoko-chan has joined #postfix
[07:05:01] *** idle-boy`` has joined #postfix
[07:07:59] *** pickcoder has quit IRC
[07:10:15] *** sparkley1one is now known as sparkleytone
[07:25:33] *** idle-boy` has quit IRC
[07:26:20] *** ming_zym has quit IRC
[07:26:49] *** rour has joined #postfix
[07:32:55] *** af_ has joined #postfix
[07:35:23] *** xpoint has quit IRC
[07:39:22] *** ming_zym has joined #postfix
[07:40:30] *** slackjr has joined #postfix
[07:49:12] *** slackjr has quit IRC
[07:55:07] *** Fallenou has joined #postfix
[08:05:47] *** Zelest has joined #postfix
[08:11:04] *** sophokles has joined #postfix
[08:11:18] *** m1n3s6 has quit IRC
[08:15:08] *** pitakill has quit IRC
[08:16:12] *** phnord has joined #postfix
[08:16:57] *** sophokles has quit IRC
[08:17:58] *** sophokles has joined #postfix
[08:19:42] *** loompek has quit IRC
[08:19:52] *** loompek has joined #postfix
[08:21:15] *** EoN has quit IRC
[08:22:09] *** Fallen[oqp] has joined #postfix
[08:28:24] *** goldenfox has joined #postfix
[08:28:42] *** m0f0x has quit IRC
[08:34:45] *** af_ has quit IRC
[08:42:02] *** syneus has joined #postfix
[08:44:55] *** EasilyOdd has quit IRC
[08:46:00] *** pulsar has quit IRC
[08:46:22] *** pulsar has joined #postfix
[08:51:23] *** pulsar has quit IRC
[08:51:26] <dusty_> mwalling, so do you have any idea about why this isn't working?
[08:51:38] *** adie_ has joined #postfix
[08:51:39] *** adie has quit IRC
[08:51:47] *** pulsar has joined #postfix
[08:56:59] *** pulsar has quit IRC
[08:57:18] *** rour has quit IRC
[08:57:26] *** pulsar has joined #postfix
[09:03:48] *** madrescher has joined #postfix
[09:05:35] *** pulsar has quit IRC
[09:05:45] *** kiliko has joined #postfix
[09:11:01] *** rour has joined #postfix
[09:11:52] *** action09 has quit IRC
[09:12:38] *** onik has joined #postfix
[09:14:37] *** allan has quit IRC
[09:15:04] *** Motoko-chan has quit IRC
[09:16:20] *** pulsar has joined #postfix
[09:17:30] *** idle-boy has joined #postfix
[09:21:22] *** pulsar has quit IRC
[09:22:13] *** pulsar has joined #postfix
[09:26:30] *** amrit is now known as amrit|zzz
[09:27:19] *** pulsar has quit IRC
[09:28:05] *** pulsar has joined #postfix
[09:28:24] *** rootsvr has joined #postfix
[09:30:05] *** empirixc has joined #postfix
[09:30:39] <empirixc> hi all i want to send emails through tls with ldap and cyrus any good how to i have set this but can not send email
[09:31:11] <empirixc> Jun 27 03:09:48linux1 postfix/smtpd[6806]: warning: SASL authentication failure: cannot connect to saslauthd server: No such file or directory
[09:31:16] <empirixc> ?
[09:33:09] *** pulsar has quit IRC
[09:34:22] *** pulsar has joined #postfix
[09:35:28] *** Jense has quit IRC
[09:35:45] *** Jense has joined #postfix
[09:36:39] *** manlymatt83 has quit IRC
[09:36:48] *** manlymatt83 has joined #postfix
[09:39:32] *** pulsar has quit IRC
[09:39:53] *** Evill has quit IRC
[09:40:15] *** Evill has joined #postfix
[09:40:26] *** pulsar has joined #postfix
[09:40:58] <dusty_> mwalling, I have now added a postmaster alias for both domains.
[09:43:19] *** idle-boy has quit IRC
[09:45:33] *** pulsar has quit IRC
[09:45:49] *** pulsar has joined #postfix
[09:47:29] *** [Chaos|Krieger]_ has joined #postfix
[09:47:56] *** sophokles has quit IRC
[09:48:19] *** tld has quit IRC
[09:49:11] *** [Chaos|Krieger] has quit IRC
[09:49:15] *** f3ew has quit IRC
[09:49:22] *** idle-boy`` has quit IRC
[09:50:56] <dusty_> Hey guiys I have this strange issue affecting my mailserver something to do with sender address verification... I am trying to subscribe to the securityfocs.com mailing list, i get the confirm email, reply to it then nothing comes back.. here are logs of this happening and also postconf -n output: http://rafb.net/p/Arv1Ml93.html
[09:51:03] <dusty_> Anyone lend a hand in fixing this ?
[09:53:04] *** sophokles has joined #postfix
[09:53:27] *** f3ew has joined #postfix
[09:54:07] *** rootsvr has quit IRC
[09:55:31] *** pulsar has quit IRC
[09:55:40] *** idle-boy`` has joined #postfix
[09:55:49] *** pulsar has joined #postfix
[09:56:57] *** war9407 has joined #postfix
[10:02:08] *** denis_ has joined #postfix
[10:04:02] *** m_p has joined #postfix
[10:17:42] *** pulsar has quit IRC
[10:18:37] *** pulsar has joined #postfix
[10:21:05] *** idle-boy` has joined #postfix
[10:22:34] *** keffer has quit IRC
[10:25:00] *** diqpib has joined #postfix
[10:26:20] *** Rouri has joined #postfix
[10:26:49] *** pulsar has quit IRC
[10:26:55] *** rour has quit IRC
[10:27:17] *** pulsar has joined #postfix
[10:32:12] *** pulsar has quit IRC
[10:34:00] *** riz_ has joined #postfix
[10:36:34] <dusty_> anyone awake?
[10:37:02] <riz_> yes, me :)
[10:38:12] <riz_> I have a problem to implement SPF on postfix
[10:38:15] <riz_> http://pastebin.com/m2a4923c1
[10:38:39] <riz_> seems like privacy/policy is not installed or something like that
[10:40:13] <dusty_> hrm
[10:40:17] <dusty_> any ideas with my issue?
[10:40:53] <dusty_> check_policy_service unix:policy
[10:40:54] <dusty_> try that
[10:41:20] <riz_> dusty_ I'm reading here http://osdir.com/ml/mail.spam.spf.help/2006-12/msg00024.html
[10:41:35] <riz_> seems /usr/lib/postfix/policyd-spf-perl must be owned by "nobody"
[10:41:46] <dusty_> ive never set that up before
[10:42:02] <dusty_> but why reference privacy/policy when its privacy in master.cf
[10:46:33] *** idle-boy` has quit IRC
[10:46:55] *** idle-boy` has joined #postfix
[10:47:29] *** pulsar has joined #postfix
[10:47:55] *** idle-boy` is now known as idle-boy
[10:52:22] <riz_> dusty_ doesn't works
[10:52:30] *** Lap_64 has joined #postfix
[10:52:52] <Lap_64> can some one please help me with fatal: chdir /var/spool/postfix: Permission denied
[10:53:55] <riz_> dusty_ you mean "put check_policy_service unix:policy in main.cf" instead of check_policy_service unix:policy/privacy ?
[10:54:44] <dusty_> yes
[10:57:13] *** pulsar has quit IRC
[10:57:14] *** madrescher has quit IRC
[10:57:41] *** pulsar has joined #postfix
[11:02:50] *** pulsar has quit IRC
[11:03:05] *** pulsar has joined #postfix
[11:06:54] *** idle-boy has quit IRC
[11:07:21] *** idle-boy has joined #postfix
[11:16:00] *** madrescher has joined #postfix
[11:17:14] *** tm-30740-exa has quit IRC
[11:20:05] *** tm-30740-exa has joined #postfix
[11:25:15] *** idle-boy has quit IRC
[11:26:06] *** idle-boy has joined #postfix
[11:27:33] <riz_> dusty_ I'm back, sorry for delay.
[11:28:01] <dusty_> thats ok
[11:28:32] <riz_> dusty_ I've tryed to modify policy. Now error is "warning: connect to policy: No such file or directory"
[11:28:50] <dusty_> then you need to make it lookup the master.cf file i assume
[11:29:29] *** munga has joined #postfix
[11:30:55] <riz_> dusty_ mmm. Could you please check http://pastebin.com/m2c85bf02 ?
[11:33:49] <dusty_> if i were you i would ask someone else
[11:33:56] <dusty_> i have problems of my own, im no expert.
[11:34:23] *** havvg has joined #postfix
[11:35:18] *** madrescher has quit IRC
[11:37:44] *** madrescher has joined #postfix
[11:39:48] *** Draecos has joined #postfix
[11:40:12] <munga> Hi all, I'm migrating a sympa installation from sendmail to postfix . I need to buy me some time to do some testing before starting to accept emails for all mailing lists. How can I a rule to refuse email to a specific faqn triggering a resend in a few hours ?
[11:42:50] *** Tinozaure is now known as _Tino
[11:44:19] <dusty_> munga, you may be able to help me
[11:44:24] <dusty_> do you have minute
[11:44:47] <munga> try ...
[11:44:50] *** cafuego has quit IRC
[11:44:53] <dusty_> <dusty> Well, I run my own mailserver, (Postfix -> Dovecot -> Amavis -> MySQL).  Virtual domains/users.  I am trying to sign-up to security focus mailing list via the website.  I get the initial email saying "reply with the special string" so I do, and don't get anything back.  I check my logs and see the mails get sent succesfully its just sec focus doesn't reply.  So, I setup an alias on my server and pointed it at hotm
[11:44:53] <dusty_> ail and gmail account, signed up with that ad
[11:44:53] <dusty_> <dusty> dress and it worked fine, mails flowed through the server.
[11:44:53] <dusty_> <dusty> I did a bit of googling and found this: http://www.postfix.org/ADDRESS_VERIFICATION_README.html which I implemented and whitelisted securityfocus.com but still same stuff happens.
[11:44:56] <dusty_> <dusty> I've tried emailing the listadmin off another address and had no response.
[11:44:58] <dusty_> <dusty> I still think it may have something to do with SAV but, I don't get any rejections or errors to go on.
[11:45:03] <dusty_> thats the question that i am stumped on :(
[11:46:21] *** _AleX_ has joined #postfix
[11:46:29] <munga> dusty_: maybe it's greylisting ...
[11:46:36] <munga> on their side ?
[11:46:48] <dusty_> what ya mean by that ?
[11:47:34] <munga> basically they put you on hold for a while before authorizing their mta to talk to you...
[11:48:01] <dusty_> i have been dealing with this issue for over a week
[11:48:18] <dusty_> i should of got the mails by now, also i aliases a domain to hotmail/gmail they came straight through to there
[11:48:59] <munga> uhmmmm... I had a similar problem with sourceforge ... I my case was a problem with the spf checking ...
[11:49:09] <_AleX_> hi all ! I've a very strange problem with postfix : in /etc/postfix/main.cf : virtual_alias_maps = hash:/etc/postfix/virtual, and I've a mail defined in virtual "mylogin at mydomain dot tld mylogin", I've done postmap virtual; postfix reload .. but i've this error : User unknown in virtual alias table ...  an idea ?
[11:49:35] <dusty_> postmap virtual
[11:49:40] <dusty_> then restart postfix
[11:49:45] <dusty_> munga, i dont do spf checks
[11:49:52] <dusty_> i have no txt records in my dns setup
[11:49:57] <_AleX_> dusty_: done (read the end of the line)
[11:50:00] <dusty_> im all out of ideas i really hope someone can help
[11:50:04] <dusty_> sorry
[11:50:10] <_AleX_> np :)
[11:50:22] *** idle-boy has joined #postfix
[11:50:30] <_AleX_> very strange problem
[11:55:47] *** cafuego has joined #postfix
[11:56:26] *** allan has joined #postfix
[12:00:17] *** internat85 has joined #postfix
[12:03:18] *** idle-boy has quit IRC
[12:03:29] <munga> dusty_: since you don't receive the email, it's probably something on their side ... maybe you ended up in the rbl list ?
[12:03:43] <dusty_> how can i check that ?
[12:03:49] <dusty_> how can i find out for definate what it is
[12:04:06] *** keffer has joined #postfix
[12:05:16] *** _AleX_ has left #postfix
[12:06:41] *** goldenfox has quit IRC
[12:07:18] *** goldenfox has joined #postfix
[12:08:05] <dusty_> dusty@stoned-hacker:~$ nc securityfocus.com 25
[12:08:05] <dusty_> 421 4.4.1 cacy-fpe-srv-1.symantec.com Unable to contact destination
[12:08:08] <dusty_> whats that mean ?
[12:08:12] *** githogori has quit IRC
[12:10:08] <onre> at least one use for 421 is to denote temporary unavailability
[12:14:06] <dusty_> hmm
[12:19:06] *** Draecos has quit IRC
[12:23:47] *** sophokles has quit IRC
[12:26:14] *** madrescher has quit IRC
[12:29:23] *** madrescher has joined #postfix
[12:35:06] *** sophokles has joined #postfix
[12:41:22] *** ADMIN__ has joined #postfix
[12:41:23] *** onik has quit IRC
[12:48:20] <dusty_> Anyone ?
[12:48:25] <dusty_> please i'm at my witts end with this? :(
[12:50:11] <f3ew> check your MX records?
[12:50:17] *** [diablo] has joined #postfix
[12:50:24] <f3ew> and your logs
[12:54:52] *** bbinotto has joined #postfix
[12:54:54] <rob0> "EMAIL ADDRESS PATTERNS" in access.5.html
[12:56:02] <bbinotto> hi, i have one server at example.org and another at test.example.org, both have mx entries in der dns. Wehn i send an email to
[12:56:29] *** [diablo] has quit IRC
[12:56:42] <bbinotto> person at test dot example.org using the server example.org, it answers: error, user person at example dot org does noed exist
[12:57:35] <bbinotto> is this a postifx problem?
[13:01:43] *** ming_zym has quit IRC
[13:03:57] *** onik has joined #postfix
[13:06:06] <munga> what shall I respond to a client to convince it to retry after a while ?
[13:07:12] *** cpm has joined #postfix
[13:07:22] *** onik has quit IRC
[13:07:37] *** onik has joined #postfix
[13:08:27] *** ADMIN__ has quit IRC
[13:13:10] <rob0> bb, without logs, it's impossible to guess.
[13:13:38] <munga> ok, a different question then. what is the error that generates client-side the warning that says that the email is still waiting to be delivered...
[13:14:10] <munga> basically I don't want to write it on the disk but ask the client to re--send it after a while...
[13:19:31] <lennard> a client - as in a piece of software running on ones desktop (thunderbird, outlook) doesn't really support that kind of stuff
[13:20:08] <munga> no no... a client as a mda talking to my server at port 25
[13:20:19] <dusty_> f3ew, mx records are fine, nothing in the logs.
[13:20:43] <munga> I guess I can do it with smtpd_recipient_restrictions = example.org , defer ?
[13:21:16] *** Tex-Twil has joined #postfix
[13:23:55] <munga> dusty_: did you check if you're on any rbl  ?
[13:24:15] <dusty_> how do i check that
[13:24:16] *** Bagualas has joined #postfix
[13:24:48] <rob0> The "error" that causes a delay warning is when there is mail in the queue past a non-zero delay_warning_time. The warning is sent as an email by bounce(8)/defer(8).
[13:25:48] *** sophokles has quit IRC
[13:26:21] <dusty_> ?
[13:27:55] <munga> dusty_: for example : http://www.spamhaus.org/sbl/index.lasso but depends if they are using one and which one they are using ...
[13:28:35] *** sophokles has joined #postfix
[13:29:09] <dusty_> 		38.106.105.139 is not listed in the SBL
[13:29:09] <dusty_> 38.106.105.139 is not listed in the PBL
[13:29:09] <dusty_> 38.106.105.139 is not listed in the XBL
[13:29:20] <dusty_> is there anyway to find out what list they use >
[13:29:39] <dusty_> surely i would get a bounce back and also they wont accept my first mail if i was on a RBL
[13:30:10] <munga> well, this depends if they bother to send you a warning or they just drop your email...
[13:30:26] <dusty_> fair point
[13:33:25] <bbinotto> rob0: http://pastebin.com/m29ffc465
[13:33:47] <munga> rob0: if I understand correctly, this delay warning is not generated by me, but from the mta talking to me ... how should I respond to convince him to keep the email on its queue ?
[13:34:03] <bbinotto> rob0: why does he rewrite tmueller at test dot example.com
[13:35:58] * cpm rewrites rob0
[13:36:19] <bbinotto> ?
[13:38:21] *** phnord has quit IRC
[13:38:32] *** phnord has joined #postfix
[13:39:49] *** onik has quit IRC
[13:40:09] <bbinotto> test.example.com is an extra ip with en extra mx entry in dns
[13:40:16] *** allan has quit IRC
[13:40:46] <dusty_> munga, i wouldn't get the initial email through if i was on a blacklist though would i ?
[13:41:30] *** Bagualas has quit IRC
[13:42:04] *** allan has joined #postfix
[13:42:38] <rob0> "status=sent (delivered via kolabfilter service)" I have no idea what kolabfilter is.
[13:42:53] <rob0> !debug
[13:42:54] <knoba> rob0: "debug" : http://www.postfix.org/DEBUG_README.html : a good starting point for how to deal with problems and to report information to those who might help. Post your information in a pastebin such as http://pastebin.ca/ or http://rafb.net/paste/ .
[13:42:56] *** Bagualas has joined #postfix
[13:43:23] <munga> dusty_: no, I guess no...
[13:52:22] *** hever has quit IRC
[14:10:23] *** hing has quit IRC
[14:10:33] *** higuita has joined #postfix
[14:14:20] *** Juspion has joined #postfix
[14:25:39] *** martianixor has joined #postfix
[14:26:08] *** Tex-Twil has quit IRC
[14:27:12] *** jellis-real has joined #postfix
[14:30:26] <bbinotto> rob0: if send an email to tmueller at test dot example.org from a compelty different server it arrives at the right ip, but it says: too many hops
[14:32:45] <rob0> !too_many_hops
[14:32:46] <knoba> rob0: "too_many_hops" : In brewing, it means you should add more barley. In Postfix it means you have a mail routing loop. No machine in the loop considers itself the final destination for the looping mail.
[14:36:13] <bbinotto> rob0: considerung as the final destination, postfix needs something like: mydestination test.example.org
[14:36:19] <bbinotto> is this true?
[14:37:17] <bbinotto> to be final destination of text.example.org, should it be also final destination of example.org?
[14:37:37] <rob0> try setting "relay_domains =", and OF COURSE, set mydestination on each machine as you want it to be set.
[14:37:41] <rob0> !basic
[14:37:41] <knoba> rob0: "basic" : http://www.postfix.org/BASIC_CONFIGURATION_README.html : a good starting place for Postfix beginners, many common questions are answered here.
[14:38:00] <sysmonk> rob0: he should add more barley
[14:38:32] <rob0> You're evil, it's too early for beer here.
[14:38:43] <sysmonk> nah, 15:38 here
[14:38:56] <sysmonk> and it's friday ... and we're working till 17:30 today :(
[14:42:04] *** spsoni has joined #postfix
[14:42:15] *** spsoni has left #postfix
[14:42:25] *** PcPixel has joined #postfix
[14:42:39] <PcPixel> having an emergency. just put my postfix server online. incoming email works ok. but cant relay email out.
[14:42:57] <sysmonk> !pricelist
[14:42:58] <knoba> sysmonk: Error: "pricelist" is not a valid command.
[14:43:01] <PcPixel> it is rejecting the exchange server saying access denied. ive moved permit_mynetworks to the top of my restrictions list
[14:43:10] <PcPixel> and specifically listed my exchange server in the mynetworks list
[14:43:12] <PcPixel> but still nothing
[14:43:13] * sysmonk knoba: emergency help - 999.99$
[14:43:34] <sysmonk> PcPixel: postconf -n && pastebin it
[14:43:49] <PcPixel> itll take ma moment
[14:44:17] <sysmonk> !add_to_pricelist 1 moment - +50$
[14:44:17] <knoba> sysmonk: Error: "add_to_pricelist" is not a valid command.
[14:44:28] <rob0> or just a log of one such rejection, right here
[14:45:06] <rob0> Show me that log, and I'll show you an IP address which isn't in mynetworks. (Unless it was some other mistake.)
[14:45:09] <sysmonk> yeah, or full log to rob0
[14:45:29] <sysmonk> rob0: _or_ badly crafted _restrictions
[14:45:52] <PcPixel> all the rejection says is:
[14:45:53] <PcPixel>  scena at frontiernet dot net on 6/27/2008 8:37 AM
[14:45:53] <PcPixel>             You do not have permission to send to this recipient.  For assistance, contact your system administrator.
[14:45:56] <PcPixel>             <valkyrie1.ogpnet.com #5.7.1 smtp;554 5.7.1 <valkyrie1.ogpnet.com[64.128.118.78]>: Client host rejected: Access denied>
[14:46:09] <sysmonk> PcPixel: pastebin the postconf -n
[14:46:28] <PcPixel> ok one sec. the system is headless and i need to get the files over
[14:46:36] <PcPixel>  scena at frontiernet dot net on 6/27/2008 8:37 AM
[14:46:36] <PcPixel>             You do not have permission to send to this recipient.  For assistance, contact your system administrator.
[14:46:47] <PcPixel> damn mouse
[14:46:48] <rob0> that is NOT A LOG ... but it doesn't say "Relay access denied", either.
[14:46:49] <PcPixel> sorry bout that
[14:47:00] <rob0> "Client host rejected: Access denied"
[14:47:24] <PcPixel> yes thats all i have in Outlook right now
[14:47:34] <sysmonk> rob0: nah, it's only the regexp map /./ REJECT Access denied
[14:47:34] <sysmonk> ;)
[14:47:39] *** syneus has quit IRC
[14:47:42] <sysmonk> PcPixel: just pastebin the damn postconf -n
[14:47:44] <rob0> Outlook? You don't have access to the server logs?
[14:47:50] <PcPixel> i do
[14:47:53] <PcPixel> but not from my machine
[14:47:58] <rob0> why not?
[14:47:58] <PcPixel> trust me, thats a whole other story
[14:47:59] <sysmonk> oh great
[14:47:59] *** Trengo has quit IRC
[14:48:06] <rob0> absurd
[14:48:12] <PcPixel> rob0: you dont knwo the half of it
[14:48:19] <rob0> nor do I care.
[14:48:22] <sysmonk> rob0: absurd(random()) reason
[14:48:42] <rob0> anyway, you probably put a "reject" in your smtpd_client_restrictions
[14:48:50] <sysmonk> ya
[14:48:58] <PcPixel> but permit_mynetworks is the very first line
[14:49:12] <sysmonk> PcPixel: can you pastebin the damn postconf or not?
[14:49:17] <rob0> "postconf -n" will tell all.
[14:49:23] <PcPixel> yes
[14:49:24] <PcPixel> i am working on it
[14:49:28] <PcPixel> i had to copy it to a floppy
[14:49:34] <PcPixel> move the files over the net to thw workstation im remoted into
[14:49:35] <sysmonk> i think it's not an emergency situation if he can't pastebin
[14:49:37] <PcPixel> and web pastebin it there
[14:49:42] <sysmonk> ...
[14:49:46] <PcPixel> my companys IT deopt is FUCKED
[14:49:53] <lunaphyte_> what's a floppy?
[14:49:53] <PcPixel> but my boss wont ket me fix anything
[14:49:56] <PcPixel> so im doing the best i can
[14:49:59] <sysmonk> PcPixel: OR you could postconf -n | uuencode pastebin.txt | mail your at email dot com
[14:50:13] <sysmonk> lunaphyte_: it's a next-generation flash cards
[14:50:18] <PcPixel> sysmonk: i cant. inbound email isnt working remember
[14:50:23] <lunaphyte_> oh, cool.
[14:50:34] <sysmonk> PcPixel: postcfon -n from the server is not inbound..
[14:50:38] <sysmonk> postconf*
[14:50:47] <sysmonk> it's injected directly into the queue
[14:50:59] <PcPixel> mail my at email dot com is
[14:51:19] <sysmonk> pop3/imap isn't smtp, so you don't have to think about inbound.
[14:51:29] <rob0> mail(1) uses sendmail(1), not SMTP
[14:51:43] <PcPixel> either weay
[14:51:44] <PcPixel> almost got it
[14:51:56] <sysmonk> what? bought a floppy disk at antique shop?
[14:52:05] * sysmonk hides
[14:52:08] <PcPixel> http://pastebin.com/d438b2800
[14:52:29] <lunaphyte_> sounds to me like it's time for some ssh wizardry.
[14:53:20] <sysmonk> PcPixel: check_client_access is before permit_mynetworks
[14:53:20] <rob0> check_client_access hash:/etc/postfix/checks/internal_networks
[14:53:38] <PcPixel> thats right...
[14:53:39] <PcPixel> fuck
[14:53:42] <PcPixel> that damn internal check
[14:53:49] <PcPixel> i bet i omitted the exchange servers IP
[14:53:59] <rob0> also, we didn't see the IP address of the host that was denied.
[14:54:04] <sysmonk> we did
[14:54:10] <sysmonk> 06-27 15:45:57 < PcPixel>             <valkyrie1.ogpnet.com #5.7.1 smtp;554 5.7.1 <valkyrie1.ogpnet.com[64.128.118.78]>: Client host
[14:54:19] <rob0> aha yes
[14:54:30] <sysmonk> rob0: i think you need more beer
[14:54:31] <sysmonk> ;P
[14:55:29] <PcPixel> ok
[14:55:31] <PcPixel> ive rehashed it
[14:55:33] <PcPixel> instead of:
[14:55:39] <PcPixel> 64.128.118. has_our_domain_as_sender
[14:55:44] <PcPixel> (forget that last period)
[14:55:56] <PcPixel> its now: 64.128.118.78 has_our_domain_as_sender
[14:56:02] <sysmonk> anyway, your emergency is fixed, right?
[14:56:10] <PcPixel> dont know yet
[14:56:15] <PcPixel> i have to try to send an email out
[14:57:20] <PcPixel> nope
[14:57:21] <PcPixel> same error
[14:57:30] <PcPixel> any mail trying to leave the exchange server via my system dies
[14:57:35] <PcPixel> let me remove the check line all together
[14:57:53] <sysmonk> PcPixel: just add 64.128.118.78 DUNNO
[14:57:55] <sysmonk> and postmap it
[14:58:18] <rob0> has_our_domain_as_sender
[14:58:23] <sysmonk> OR change places of  permit_mynetowkr with check_client_access
[14:58:33] <PcPixel> party of the whole mess
[14:58:43] <PcPixel> is he refuses to run internal DNS and give the exchange server an FQDN on its DMZ card
[14:59:15] <PcPixel> the dmz exchange card is only reference by IP only
[14:59:20] <sysmonk> so, !hire a sysadmin :P
[14:59:29] <PcPixel> part of what i thought was killing it originally was because i was forcing name resolution for everyone
[14:59:37] <PcPixel> so since it couldnt do an mx/dns lookup it failed
[14:59:56] <rob0> huh
[15:00:02] <PcPixel> bingo
[15:00:03] <PcPixel> that did it
[15:00:06] <PcPixel> removing that check let the mail out
[15:00:11] <sysmonk> now...
[15:00:18] <sysmonk> emergency problem cost - 999.99$
[15:00:21] <sysmonk> 1 moment - 50$
[15:00:27] <sysmonk> stupid problem - 500$
[15:00:28] <PcPixel> trust me... my places IT dept *SUCKS* out loud
[15:00:35] <sysmonk> so, 999.99+50+500
[15:00:41] <PcPixel> but im not allowed to make big decisions yet
[15:00:42] <sysmonk> 1549.99
[15:00:53] <PcPixel> hell, he pissed and moaned about me using postfix over sendmail and refuses to learn anything about the server as a result
[15:01:12] <rob0> 10% goes into the channel's beer fund, sysmonk and I split the rest.
[15:01:18] <sysmonk> yeah
[15:01:30] <riz_> Does someone use SPF with postfix?
[15:01:44] <sysmonk> 1000$ to me, 150$ to channel beer fund, and 400$ to rob0
[15:01:57] <rob0> um
[15:02:03] <sysmonk> uh, did my math suck?
[15:02:03] <PcPixel> i would totally doante to the beer fund
[15:02:13] <sysmonk> rob0: ah, too much for you?
[15:02:14] <rob0> suck, yes
[15:02:41] <sysmonk> rob0: ah yes, i see now, it's 399.99 to you
[15:02:44] <sysmonk> 1 ct too much
[15:03:02] *** dut1 has joined #postfix
[15:03:05] * rob0 goes back to $DAYJOB
[15:03:07] *** dut has quit IRC
[15:03:18] <sysmonk> rob0: you mean morning-job ?
[15:03:38] <PcPixel> ok one sec. ill brb. i gotta go run some more tests
[15:03:45] <thumbs> nah, rob0's job is to entertain this channel
[15:03:50] <sysmonk> yeah, sure, you can run but you can't hide
[15:04:04] <sysmonk> we'll bill you anyway PcPixel, even if it doesn't work
[15:04:55] <bbinotto> rob0: I've read the Postfix Basic Configuration, but stilt I don'w know how to solve the problem
[15:05:41] <bbinotto> rob0: i have a user with primary email: tmueller at example1 dot org
[15:06:07] <bbinotto> rob0: and an alias: tmueller at test dot example2.org
[15:06:26] <bbinotto> sending an email to tmueller at test dot example2.org gives me: too many hops
[15:06:50] <bbinotto> DNS mx entry of test.example2.org points to the ip of this email server
[15:07:05] <shasta> MX record MUST NOT point to an IP address
[15:07:09] <shasta> only to FQDN
[15:07:12] <bbinotto> DNS mx Entry of example1.org points to an other IP
[15:07:53] <bbinotto> shasta: i does, sorry
[15:08:17] <bbinotto> shasta: it points to mail.test.example2.org and mail points to the ip
[15:12:03] <PcPixel> ok back
[15:12:08] <PcPixel> so far its working
[15:12:17] <PcPixel> so now my next step is to figure out why it thinks the site is "bad"
[15:12:18] <sysmonk> PcPixel: so, we HAD to wait again
[15:12:21] <sysmonk> +150$ for waiting
[15:12:22] <PcPixel> yers
[15:12:29] <PcPixel> i had to take a flight of stairs & talk to the CIO
[15:12:30] <PcPixel> brb
[15:13:09] <sysmonk> what do CIO's do?
[15:13:51] *** neoeinstein has quit IRC
[15:15:36] <thumbs> make people run, apparently
[15:17:07] <PcPixel> aha
[15:17:14] * PcPixel does Retard Clap(tm)
[15:18:03] <PcPixel> it was that check
[15:18:08] <PcPixel> but it wasnt the IP address causing the problem
[15:18:11] <PcPixel> or a name look up
[15:18:19] <PcPixel> if youre going to tell it that only specific domains can go out
[15:18:27] <PcPixel> its REALLY helpful to actually LIST all the domains it can send for
[15:18:53] <sysmonk> but really, what does CIO do ?
[15:19:04] <sysmonk> what's his daily job?
[15:19:05] <PcPixel> cheifinfo officer is the boss over the it dept
[15:19:12] <PcPixel> hes the guy we all report to
[15:19:33] <sysmonk> ahhh, so he's a guy sitting in irc and chatting around?
[15:19:38] <sysmonk> hey, i can be your Cio
[15:20:34] <PcPixel> lol
[15:20:35] <PcPixel> i wish
[15:20:42] <PcPixel> no i caught him in the hallway when i was running up the stairsa
[15:21:27] <sysmonk> ah, so you're now jobless?
[15:21:27] <sysmonk> ;)
[15:21:36] <PcPixel> 1 sec
[15:21:56] *** idle-boy`` has quit IRC
[15:22:51] *** slackjr has joined #postfix
[15:23:29] *** idle-boy`` has joined #postfix
[15:24:41] *** Vivek has joined #postfix
[15:30:34] <PcPixel> no not jobless yet
[15:30:37] <PcPixel> though i ahve to say
[15:30:46] <PcPixel> this email server is currently kicking the snot out of our old sendmail server
[15:30:59] <PcPixel> if anything this is sloidifying my job
[15:31:05] <PcPixel> cause im replacing one of his servers with one of mine
[15:31:09] <PcPixel> step #1 :P
[15:32:45] *** saurabhb has quit IRC
[15:42:11] <PcPixel> whew
[15:42:15] <PcPixel> ok
[15:42:19] <PcPixel> looks like that got it all
[15:42:37] <PcPixel> i hope
[15:42:45] <PcPixel> thank you guys *SO* much
[15:42:49] <PcPixel> thank you thank you thankyou
[15:43:03] <PcPixel> i honestly dont know how i would have pulled this project off without the help of people in this room
[15:45:01] *** slackjr has quit IRC
[15:46:44] *** rour has joined #postfix
[15:47:50] *** marl_ has joined #postfix
[15:49:27] *** jssa has joined #postfix
[15:49:51] <marl_> good afternoon folks, anyone here use YAA ? am trying to get it to work with postix and virtual users, if i run the yaa.pl program from command line as root, it works fine, if i run it as user vmail (after a su vmail) it dosnt work :(, it still runs, and gets as far as confirming that the user has autoresponder enabled, but dosnt seem to be able to send the autorespns out :( any on eany ideas?
[15:50:31] <jssa> Hi. I have an issue: my mail gets stored in the "incoming" directory, but is not deliveried to the users mailbox. It started happening this morning, after 6 months of working fine. Any hint???
[15:51:01] <marl_> jssa, have u tried flushing the mail queue?
[15:51:26] *** marl_ is now known as marl
[15:52:56] <rob0> 6 months of working fine seems to have made you forget to READ YOUR LOGS
[15:53:37] <jssa> yes, marl_ with no changs
[15:53:51] <shasta> reading logs is so 1990's
[15:54:06] <jssa> I've read the logs rob0 and there is nothing wrong :(
[15:54:21] <rob0> indeed
[15:54:31] <jssa> I've also read the postfix FAQ but is not a performance problem or so.
[15:54:44] <marl> i found BIG problems when i got hit by a large number of junk emails and it ended up with queue times in excess of 8 hours
[15:55:37] *** PcPixel has quit IRC
[15:56:20] *** neoeinstein has joined #postfix
[15:56:45] *** Rouri has quit IRC
[15:59:30] <jelly> F*k, I've received a hundred backscatter messages in the last half-hour.  One of those is from my own system. :-|
[16:01:46] *** Draecos has joined #postfix
[16:04:55] *** ChrisWMac has joined #postfix
[16:05:08] <ChrisWMac> where does the local delivery agent deliver mail for root?
[16:05:33] <f3ew> nobody
[16:05:42] <ChrisWMac> so i just bins it? :-S
[16:05:47] <ChrisWMac> i->it
[16:05:55] <rob0> !default_privs
[16:05:56] <knoba> rob0: "default_privs" : a configuration parameter in the main.cf: The default rights used by the local(8) delivery agent for delivery to external file or command. These rights are used when delivery is requested from an aliases(5) file that is owned by root, or when delivery is done on behalf of root. DO NOT SPECIFY A PRIVILEGED USER OR THE POSTFIX OWNER.
[16:06:30] <ChrisWMac> rob0: not sure what that means...
[16:07:02] <rob0> If using the default mbox delivery to /var/mail/$USER, you get /var/mail/root, owned by the default_privs user.
[16:07:06] <ChrisWMac> but anyway, the real problem is that i've specified a full email address as an alias for root in /etc/root but mail is still being sent to the local delivery agent
[16:07:09] <rob0> !basic
[16:07:10] <knoba> rob0: "basic" : http://www.postfix.org/BASIC_CONFIGURATION_README.html : a good starting place for Postfix beginners, many common questions are answered here.
[16:07:15] <ChrisWMac> any idea why this would be or how I can debug?
[16:07:37] <rob0> What is /etc/root?
[16:08:06] <ChrisWMac> sorry, meant /etc/aliases
[16:08:08] <rob0> As with any debugging, you would look in your logs.
[16:08:14] <ChrisWMac> er, /etc/alias
[16:08:26] *** grabur has left #postfix
[16:08:31] * rob0 is continually amazed at how many times that needs to be said here
[16:08:33] <ChrisWMac> er, wait, /etc/aliases
[16:08:45] <ChrisWMac> rob0: yep, and I did that
[16:08:54] <f3ew> did you run newaliases?
[16:08:56] <ChrisWMac> it told me delivery was still being done using the local delivery agent
[16:08:59] <ChrisWMac> f3ew: yep
[16:09:34] <ChrisWMac> well, postalias /etc/aliases
[16:09:40] <rob0> pastebin the logs of one such delivery, and the line for root in aliases
[16:09:55] <ChrisWMac> any pastbin you guys favour?
[16:10:10] <rob0> I like ones that do wordwrap :)
[16:10:18] <ChrisWMac> url?
[16:10:32] <f3ew> rafb.net/paste
[16:10:49] <rob0> that one doesn't wordwrap, but oh well
[16:11:04] <rob0> pastebin.ca does, I think
[16:11:37] *** _goldenfox has joined #postfix
[16:11:55] <ChrisWMac> pastebin.ca is too slow :-(
[16:13:21] <ChrisWMac> ha, I lied
[16:13:31] <ChrisWMac> looks like it's working... weird, but my bad, apologies ;-)
[16:13:34] *** ChrisWMac has quit IRC
[16:16:07] *** Fallen[oqp] has quit IRC
[16:16:21] *** denis_ has quit IRC
[16:16:57] *** jssa has quit IRC
[16:22:05] *** goldenfox has quit IRC
[16:24:16] *** tonyyarusso has quit IRC
[16:29:07] *** Juspion has quit IRC
[16:37:05] *** madrescher has quit IRC
[16:41:45] *** pulsar has quit IRC
[16:42:12] *** pulsar has joined #postfix
[16:43:39] *** dan__t has quit IRC
[16:47:25] *** Trengo has joined #postfix
[17:02:37] *** marl has quit IRC
[17:02:41] *** marl has joined #postfix
[17:05:58] *** syneus has joined #postfix
[17:08:28] *** phnord has quit IRC
[17:17:15] <riz_> I don't understand why SPF tell me "warning: problem talking to server private/policy: Connection refused" does someone have experience on it?
[17:17:32] *** martiancode has joined #postfix
[17:19:05] *** sophokles has quit IRC
[17:19:08] *** xdie has joined #postfix
[17:26:05] *** pitakill has joined #postfix
[17:26:40] *** j_s has joined #postfix
[17:28:06] <rob0> "Connection refused" is basic Unix as per /topic. It means your socket isn't there (the service is not running.)
[17:28:24] *** Edheldil is now known as Ed_away
[17:30:53] *** xdie has quit IRC
[17:31:40] * cpm refuses rob0
[17:31:53] <riz_> ehe cpm :)
[17:32:25] * mwalling refuses to listen
[17:32:29] <riz_> rob0 don't understand. I've installed spf (perl and python)
[17:32:35] <riz_> via apt-get
[17:34:02] <riz_> so probabily means apt-get don't installa some other package necessary to spf working
[17:34:12] <riz_> s/installa/install
[17:34:44] <mwalling> i thought that was the point of apt- automated dependancy tracking and resolution
[17:35:13] <rob0> apt-* doesn't automatically start a service.
[17:35:26] <mwalling> ...
[17:35:33] <mwalling> rob0: you sure on that? ;)
[17:36:03] <rob0> no
[17:36:03] *** martianixor has quit IRC
[17:36:24] * mwalling had aptitude start postfix and dovecot during the install
[17:36:29] <mwalling> pissed me off ot
[17:38:21] <rob0> So maybe riz_ has yet another Debian bug.
[17:41:14] *** munga has quit IRC
[17:42:41] <riz_> I'm investigating..
[17:43:00] *** [Chaos|Krieger]_ is now known as [Chaos|Krieger]
[17:43:07] *** rour has quit IRC
[17:43:52] <riz_> http://svn.debian.org/wsvn/python-apps/packages/pypolicyd-spf/trunk/debian/README.Debian?op=file&rev=0&sc=0
[17:44:23] <riz_> the installation README it's clear
[17:45:01] *** dut1 has quit IRC
[17:45:35] *** dut1 has joined #postfix
[17:47:19] <riz_> are this packages sufficient for spf working? http://pastebin.com/m2c1633ec
[17:50:39] <rob0> 1. That's a question for your distro and/or SPF implementation. 2. Who cares? SPF is a waste of time anyway, half-baked idea.
[17:52:27] *** martiancode is now known as martianixor
[17:52:37] *** martianixor is now known as martiancode
[17:55:49] *** Vivek has quit IRC
[17:58:06] *** bbinotto has quit IRC
[18:00:01] *** xpoint has joined #postfix
[18:00:01] *** Lap_64 has quit IRC
[18:00:48] *** Vivek has joined #postfix
[18:02:07] *** dut2 has joined #postfix
[18:02:15] *** allan__ has joined #postfix
[18:03:09] *** allan has quit IRC
[18:03:15] <sysmonk> mwalling: so apt-* automaticaly starts the software?
[18:03:25] <mwalling> maybe?
[18:03:27] <mwalling> donno
[18:03:29] <sysmonk> hmm
[18:03:37] <mwalling> i use slackware primarally
[18:03:40] <sysmonk> so, does porn-get automatically 'run' it too ? :P
[18:03:46] *** allan__ is now known as allan
[18:03:59] * sysmonk doesn't use linux primarally at all
[18:04:12] <mwalling> i tried an ubuntu deploy, but spent 2 hours trying to get svn 1.5 running, threw it out and switched to slackware, had it going in 10 minutes
[18:04:39] <sysmonk> switched to freebsd, never looked back at linux
[18:04:40] <rob0> ITYM pr0n-get(1): "-bash: porn-get: command not found"
[18:04:42] <sysmonk> ;P
[18:05:09] <sysmonk> rob0: it's in lesbian linux
[18:05:36] <rob0> oh you might not like what you get then ... or maybe ... you would!
[18:06:06] *** Juspion has joined #postfix
[18:06:17] <sysmonk> rob0: i see you have too many time in your day-job :P
[18:08:25] *** dut1 has quit IRC
[18:11:02] *** dut2 has quit IRC
[18:11:21] *** syneus has quit IRC
[18:13:22] *** dut2 has joined #postfix
[18:16:10] *** githogori has joined #postfix
[18:17:42] *** m1n3s6 has joined #postfix
[18:20:01] *** martiancode is now known as martianixor
[18:20:13] *** havvg has quit IRC
[18:30:00] *** Fenix|work has joined #postfix
[18:30:02] <Fenix|work> Greetings
[18:30:06] <Fenix|work> I need a hand with Postfix
[18:30:07] *** martiancode has joined #postfix
[18:30:13] * Fenix|work hopes he came to the right place
[18:30:29] *** githogori has quit IRC
[18:30:50] <Fenix|work> I don't want to have local mailboxes ... I want each user to have his or her mail automatically forwarded to a domain address... ie. *@localhost gets redirected to * at domain dot com
[18:31:10] <Fenix|work> how do I achieve this?
[18:32:25] <f3ew> !virtual_alias_maps
[18:32:27] <knoba> f3ew: "virtual_alias_maps" : a configuration parameter in the main.cf: Optional lookup tables that alias specific mail addresses or domains to other local or remote address. The table format and lookups are documented in virtual(5).
[18:35:25] <Fenix|work> is that inbound?
[18:35:30] <Fenix|work> or outbound?
[18:35:47] <f3ew> in
[18:35:48] *** GoGi has joined #postfix
[18:36:20] <Fenix|work> I need out
[18:36:37] <Fenix|work> no mail will ever be sent to the server
[18:36:48] <Fenix|work> just mail sent out from the server
[18:37:13] <Fenix|work> let me rephrase that
[18:37:26] <Fenix|work> The server will only receive mail from itself,
[18:37:46] <Fenix|work> that mail then has to automatically be forwarded to another domain
[18:37:53] <Fenix|work> without creating an alias for each user
[18:38:37] <Fenix|work> I think I need address rewriting
[18:43:53] *** martianixor has quit IRC
[18:45:49] *** Fallenou has quit IRC
[18:46:11] <rob0> !virtual
[18:46:11] <knoba> rob0: "virtual" : a way to configure additional domains and user accounts (that do not need to exist in your /etc/passwd). See: http://www.postfix.org/VIRTUAL_README.html
[18:46:33] <rob0> !virtual_alias_domains
[18:46:33] <knoba> rob0: "virtual_alias_domains" : a configuration parameter in the main.cf: Optional list of names of virtual alias domains, that is, domains for which all addresses are aliased to addresses in other local or remote domains.
[18:46:45] *** brancaleone has joined #postfix
[18:47:33] <rob0> not a good idea to do this way: 16:37 < Fenix|work> without creating an alias for each user
[18:48:06] <rob0> normally you would populate your virtual_alias_maps with all valid addresses
[18:48:20] <Fenix|work> and when users come and go, that list has to be maintained
[18:48:29] <Fenix|work> all I'm using mail for is for cvs notifications
[18:48:55] <Fenix|work> so user by the name of jsmith@localhost doesn't use that email, but rather jsmith at domain dot com
[18:48:59] <rob0> so there is NO mail coming in from the Internet?
[18:49:06] <Fenix|work> none whatsoever
[18:49:25] <Fenix|work> nor is there mail coming in from other computers on the LAN...
[18:49:30] <Fenix|work> ... just local -> LAN
[18:50:04] <rob0> and all these usernames are aliased to the same domain?
[18:50:14] <Fenix|work> all the usernames match yes
[18:50:27] <Fenix|work> I'm looking at address masquerading
[18:50:39] <rob0> yeah, or a wildcard alias
[18:50:48] <Fenix|work> wildcard alias?
[18:50:59] <Fenix|work> yeah
[18:51:05] <Fenix|work> *@localhost -> * at domain dot com
[18:51:16] <rob0> !catchall
[18:51:16] <knoba> rob0: "catchall" : Sending all emails for non-existing users in domain to a special account. See man 5 virtual for the @domain syntax, which applies in virtual_*_maps and relay_recipient_maps. For local(8) delivery, unset local_recipient_maps and see luser_relay. WARNING: catchalls are rarely a good idea. Spammers will abuse them.
[18:51:28] <Fenix|work> but isn't that in?
[18:51:30] <Fenix|work> I need out
[18:52:36] *** dusty_ has quit IRC
[18:52:44] <rob0> All mail comes in. Then it goes out. What goes out must have come in first.
[18:53:05] *** m_p has quit IRC
[18:53:20] <Fenix|work> yeah, I know what you're saying... but I want to change the envelope as well cus I know my 'sophisticated' users will get confused if they see a different email addres
[18:53:37] <rob0> ok, then see the rewriting readme
[18:53:46] <Fenix|work> I am reading it
[18:53:53] <Fenix|work> I've added the following to my main.cf
[18:54:43] <Fenix|work> local_header_rewrite_clients = static:all, masquerade_domains = ..., masquerade_classes = envelope_sender, envelope_recipient, header_sender, header_recipient
[19:11:36] *** amrit|zzz is now known as amrit|wfh
[19:12:28] *** riz_ has left #postfix
[19:12:42] *** krondorl has joined #postfix
[19:12:46] <krondorl> allo all
[19:13:13] <krondorl> Well that is to those that are awake...
[19:13:28] <Fenix|work> Another quick question
[19:13:41] <Fenix|work> where do I look to masquerade usernames?
[19:14:11] <Fenix|work> I have the domain portion working fine, but if root sends mail it's addressed as root at domain dot com ... how do I change root to another name?
[19:14:21] <Fenix|work> so that the email address is valid
[19:15:54] <krondorl> I think you can add a line to the aliases file to redirect it.
[19:16:30] <Fenix|work> that redirects when the user receives mail... but I want the whole from address to change when the user sends mail... specifically for root
[19:17:08] <Fenix|work> I think this is in relocated
[19:17:16] *** hparker has joined #postfix
[19:18:11] <krondorl> I'm not sure about that.  When we send to root, it sends it to our monitoring account and not root.  That's what we put in the aliases file.
[19:18:12] *** linkslice has joined #postfix
[19:19:59] *** tombar has joined #postfix
[19:22:53] *** havvg has joined #postfix
[19:24:14] <Fenix|work> krondorl, I understand... but I'm not sending to root... I'm sending from root
[19:24:23] <Fenix|work> Looking at smtp_generic_maps
[19:27:06] <krondorl> then wouldn't that be part of the client email software like outlook where you give the return address?
[19:27:09] *** m1n3s6 has left #postfix
[19:27:56] <krondorl> nvm, i'm having a bad day and just understood what you wanted..
[19:28:23] <Fenix|work> no worries :)
[19:30:39] <Fenix|work> I've created a generic file... contents include root at domain dot com me at domain dot com ... but it isn't working (I ran postmap afterwards)
[19:31:21] <sysmonk> krondorl: how's your server? :)
[19:31:58] <krondorl> sysmonk: No change since yesterday
[19:32:10] <sysmonk> no new co-workers?
[19:32:11] <sysmonk> ;))
[19:34:40] <krondorl> lol.. nope, egonis is out all day on a service call..  Just got back not long ago myself.
[19:36:47] *** Trengo has quit IRC
[19:37:42] <sysmonk> what does your company do that you're on service calls all day?
[19:38:33] <krondorl> Hmmm ===  SSL_accept:error in SSLv2/v3 read client hello A
[19:39:47] <krondorl> We are a server pool and hosting location.  We have service contract with some companies to support their computers and network infrastructure and sometimes servers either here or at their main office.
[19:40:17] <krondorl> http://www.auricnet.ca
[19:40:28] *** githogori has joined #postfix
[19:40:48] <sysmonk> yeah, i've saw the website but it's not really informative
[19:42:11] <krondorl> DOH, your right..  I've never really looked at the site as it was setup before I joined the company..  I assumed to was informative.
[19:48:59] *** suuuper has joined #postfix
[19:50:55] *** pitakill has quit IRC
[19:51:55] *** Juspion has quit IRC
[20:04:47] *** taec has quit IRC
[20:06:20] *** ullio has joined #postfix
[20:06:41] *** denis has joined #postfix
[20:08:44] <ullio> hello. my question today: i would like to do some db checking witin my header checks. i've found the FILTER directive useful - but that would override my amavis filter settings
[20:10:15] <ullio> or dspam ... as it is
[20:11:48] *** albech has joined #postfix
[20:12:53] *** albech has left #postfix
[20:17:02] <Fenix|work> can someone explain to me what the "+" style address extensions are?
[20:17:36] <Fenix|work> I'm looking at the 'generic' example of @localdomain.local    hisaccount+local at hisisp dot example
[20:17:55] *** havvg has quit IRC
[20:18:02] <Fenix|work> what does that mean?
[20:18:39] <ullio> everythiing between the + and the @ is considered a parameter
[20:18:52] <ullio> like page.php?param=value
[20:19:00] <ullio> where local is your value
[20:19:17] <Fenix|work> ok... so translate that into the actual email address
[20:19:23] <ullio> very practical if you want an email address to feed a script
[20:19:48] <Fenix|work> his at localdomain dot local    hisaccount at hisisp dot example
[20:19:59] <Fenix|work> @localdomain.local   hisaccount+local at hisisp dot example
[20:20:08] <Fenix|work> what's the actual email address that this goes to?
[20:20:19] <krondorl> how do I reprocess deferred emails
[20:20:39] <ullio> local at hisisp dot example i hisaccount at hisisp dot example
[20:21:13] <Fenix|work> so the email is sent to local at hisisp dot example
[20:21:34] <Fenix|work> ?
[20:21:41] <ullio> @localdomain.local is a catchall. all mails to go to @localdomain.local like xxx at localdomain dot local will be sent to local at hisisp dot example
[20:21:48] <ullio> if i read your example correctly
[20:22:04] <Fenix|work> http://www.postfix.org/ADDRESS_REWRITING_README.html#generic
[20:22:34] <Fenix|work> that's the example I'm using
[20:23:05] <ullio> if its not his at localdomain dot local
[20:23:13] <ullio> oops
[20:23:19] <ullio> offccourse if also
[20:23:50] *** denis_ has joined #postfix
[20:24:00] *** action09 has joined #postfix
[20:24:53] *** denis has quit IRC
[20:29:27] *** Juspion has joined #postfix
[20:38:17] *** pr0t has joined #postfix
[20:38:19] <pr0t> Hello I just recently setup courier, postfix, amavsd, sa, and all the trimmings, but now I want a simple web interface or something to be able to add and remove users and do other administration functions is there anything good out there that is easy to setup that won't require a lot of tweaking of my current system?
[20:38:56] <mwalling> postfixadmin?
[20:39:22] <cpm> probably require an entire reconfig, but who cares
[20:39:31] <mwalling> heh
[20:39:38] <mwalling> i just use vim :)
[20:40:29] * cpm wrote his own bletcherous steaming pile of php
[20:40:37] <pr0t> ya postfix admin seems like it will require an entire reconfig of the system
[20:40:47] <pr0t> and the only tutorial on how to do it for centos really really sucks
[20:40:49] <pr0t> its horrid
[20:40:52] <pr0t> id never use that tutorial
[20:42:11] *** githogori has quit IRC
[20:42:20] <mwalling> if youre using a custom virtual backend, you're going to have a hell of a time getting an admin interface to work with your system
[20:42:39] <cpm> unless you write your own.
[20:42:55] <mwalling> cpm: would be easier to reconfig the backend
[20:43:06] <pr0t> well maybe I should learn how to do it from the command line
[20:43:07] <cpm> maybe, depends
[20:43:22] <pr0t> I am use to sendmail and cyrus-imap and I always added users manually no fancy interface
[20:43:30] <pr0t> but I know crap about postfix and courier really
[20:43:34] <mwalling> theres prolly a emacs plugin to do it
[20:43:38] <pr0t> emacs!
[20:43:39] <pr0t> ewww
[20:43:49] <mwalling> emacs does everything
[20:44:01] <rob0> This is nothing about Postfix nor Courier, it's all about whatever backend you chose.
[20:44:07] <pr0t> what happen to you using vim :P
[20:44:26] <pr0t> my backend is mysql :P
[20:44:53] * cpm uses the rob0 backend, but not for what one might think
[20:45:04] <mwalling> ...
[20:45:12] * mwalling doesnt want to know where this is going
[20:45:57] <cpm> see, it's not what you would think,
[20:46:00] *** brancaleone has quit IRC
[20:46:25] <rob0> If you have mysql questions, #mysql might be a better place.
[20:47:12] <rob0> There are numerous web frontends for mysql, I know ... look on freshmeat.
[20:48:03] <mwalling> you could use mysql to dump it to plaintext, edit it in vim, then load it back into mysql
[20:48:11] <rob0> oh nice!
[20:48:43] <rob0> s/vim/sed/
[20:48:45] <mwalling> thank you!
[20:48:50] <mwalling> haha
[20:54:03] *** mathez has quit IRC
[20:55:58] *** jellis-real has quit IRC
[20:56:57] *** martiancode is now known as martianixor
[21:03:15] *** pa has quit IRC
[21:05:57] *** _goldenfox has quit IRC
[21:07:17] *** Juspion has quit IRC
[21:09:11] *** Fenix|work has quit IRC
[21:09:52] *** dan__t has joined #postfix
[21:10:54] <krondorl> holy carps on a flat stick!!!!  Yahoo mail takes forever to process inbound emails..  I sent a message from our testing system and one from our live system 10 minutes ago and it's still not in the inbox.
[21:13:08] *** mXr has quit IRC
[21:16:01] <shasta> ohnoes! mail isn't instant messaging! who would expect that?!
[21:17:06] <onre> in my experience well-configured mail systems are quite instant.
[21:22:09] *** _zsh has joined #postfix
[21:24:16] <cpm> except when they aren't.
[21:25:34] <onre> yup. when.
[21:26:10] <rob0> Since greylisting, that has become much more common.
[21:27:53] <krondorl> Well I would think that greylisting would be a possibility if I hadn't emailed myself at least 5 times a day..  (Work to home)
[21:28:26] <krondorl> I'm on an email list that autoforwards all my emails to the house for an extra copy.
[21:28:57] <krondorl> so we are now at 30 minutes with no show..
[21:29:43] * rob0 orders tickets to the show
[21:33:44] * sysmonk gets the free tickets from krondorl and sells them to rob0 for $_$
[21:34:16] *** GoGi has quit IRC
[21:34:35] <rob0> !sysmonk
[21:34:36] <knoba> rob0: "sysmonk" : evil
[21:35:23] <sysmonk> i'm not evil, i'm just poor
[21:35:26] <sysmonk> need money
[21:35:26] <sysmonk> ;P
[21:35:35] <sysmonk> hungry for teh moneeeey
[21:35:50] *** cpm has quit IRC
[21:43:24] *** pulsar has quit IRC
[21:43:46] *** pulsar has joined #postfix
[21:47:26] *** Draecos has left #postfix
[21:54:05] *** pulsar has quit IRC
[21:54:32] *** pulsar has joined #postfix
[21:54:48] *** Fallenou has joined #postfix
[22:04:49] *** pulsar has quit IRC
[22:06:11] *** pulsar has joined #postfix
[22:15:59] *** w0rd54 has quit IRC
[22:16:44] *** w0rd54 has joined #postfix
[22:18:42] * thumbs paypals 5 dollars to sysmonk
[22:19:21] *** rootsvr has joined #postfix
[22:19:23] *** pulsar has quit IRC
[22:20:26] *** pulsar has joined #postfix
[22:23:33] *** pirho has joined #postfix
[22:25:37] *** pulsar has quit IRC
[22:28:22] *** Jense has quit IRC
[22:29:34] <krondorl> Ok that's what 1 and 1/2 hours now...
[22:31:34] <pr0t> your face
[22:31:34] *** pulsar has joined #postfix
[22:34:37] *** Jense has joined #postfix
[22:35:34] <sysmonk> ?
[22:35:56] <sysmonk> pr0t: ?
[22:38:22] <pr0t> I dunno...
[22:38:23] <pr0t> :-/
[22:38:26] <pr0t> Ilke face
[22:38:31] <pr0t> I like face!
[22:38:59] <sysmonk> nevermind...
[22:39:42] <pr0t> ya im silllly
[22:39:43] <pr0t> :P
[22:42:26] <krondorl> Night all Time to go home!!!
[22:42:43] <sysmonk> time to hire a sysadmin!
[22:42:43] <sysmonk> ;P
[22:42:46] * sysmonk hides
[22:42:51] <sysmonk> night krondorl
[22:43:43] *** krondorl has quit IRC
[22:46:01] *** supa_user has quit IRC
[22:47:58] *** pulsar has quit IRC
[22:48:20] *** Trengo has joined #postfix
[22:48:50] *** pulsar has joined #postfix
[22:51:07] *** pulsar has quit IRC
[22:54:30] *** pirho has quit IRC
[22:55:06] *** netcrash has joined #postfix
[22:56:29] *** Vivek has quit IRC
[22:57:36] *** pirho has joined #postfix
[23:05:13] *** idle-boy` has joined #postfix
[23:09:56] *** samtresler has left #postfix
[23:12:13] *** rootsvr has quit IRC
[23:15:38] *** havvg has joined #postfix
[23:22:30] <linkslice> I have a client that wants me to switch his mail server from exim to postfix, is there a way for postfix to take over the exim mail queue?
[23:23:04] *** idle-boy`` has quit IRC
[23:23:30] *** denis_ has quit IRC
[23:24:44] *** danbeck has joined #postfix
[23:26:27] *** danbeck has quit IRC
[23:29:03] <sysmonk> linkslice: nope
[23:29:20] <linkslice> sysmonk, that's what I thought
[23:30:32] *** kiliko has quit IRC
[23:30:51] *** FuriousGeorge has joined #postfix
[23:33:50] <FuriousGeorge> hey all
[23:35:31] <FuriousGeorge> i know this is somewhat out of place in #postfix, but all of a sudden postgrey has broken my production mail server
[23:35:40] <FuriousGeorge> ??Jun 27 17:35:17 thedude postfix/smtpd[5299]: warning: problem talking to server 127.0.0.1:10030: Connection timed out
[23:36:19] <FuriousGeorge> my log says nothing much more interesting
[23:36:46] <mwalling> is postgrey alive?
[23:37:01] <FuriousGeorge> the service says it started, and i can connect to it on telnet
[23:37:50] <FuriousGeorge> mwalling: but beyond that im not entirely sure what i should be looking for
[23:38:13] <FuriousGeorge> this all started when linode restarted the server thurday morning or so
[23:38:49] <mwalling> which host?
[23:38:57] <FuriousGeorge> dallas
[23:38:59] <mwalling> which host?
[23:39:03] <mwalling> 47?
[23:39:35] <mwalling> anywho, you can telnet to port 10030?
[23:39:42] <mwalling> and you can talk to it?
[23:39:52] <mwalling> or you can telnet to 25
[23:40:17] <FuriousGeorge> mwalling: as far as talking to it, i dunno...  should i be able to type EHLO and get some sort of respone?
[23:40:22] <FuriousGeorge> response
[23:40:24] <mwalling> donno
[23:40:37] <mwalling> i dont run a policy server
[23:40:39] <sysmonk> no
[23:40:42] <sysmonk> it's a policy server
[23:40:48] <sysmonk> policy servers don't talk SMTP
[23:40:57] <sysmonk> but atleast you have to _connect_ to it
[23:41:09] <sysmonk> and the log you pasted says it can't connect to it ( 127.0.0.1:10030 )
[23:41:19] *** diqpib has quit IRC
[23:41:32] <FuriousGeorge> right, which is postgrey's port
[23:41:40] <sysmonk> so, can you connect to it?
[23:41:43] <FuriousGeorge> but in fact i can telnet to that port....  unlike 10031
[23:41:58] <FuriousGeorge> (where 10031 is arbitrary)
[23:42:00] <sysmonk> sorry we reeaaaally can't know what's on your 10031
[23:42:29] <FuriousGeorge> what i meant was that i do connect when i telnet to postfix's port
[23:42:46] <sysmonk> so CAN you connect to 10030 ?
[23:42:49] <FuriousGeorge> yes
[23:42:53] <sysmonk> we're not talking postfix right now
[23:43:02] <sysmonk> ah wait
[23:43:09] <sysmonk> it said connectino timed out o_o
[23:43:14] <sysmonk> somehow i read it connection refused :P
[23:43:18] <mwalling> fail
[23:43:25] <sysmonk> ye
[23:43:32] <mwalling> FuriousGeorge: restart your policy server, look for logs from it
[23:43:37] <sysmonk> FuriousGeorge: then read it's logs
[23:43:43] <sysmonk> ye, listen to mwalling :P
[23:44:01] <FuriousGeorge> mwalling: sysmonk:  i thought of that...  would be nice if postgrey was logging to its own file, but its not
[23:44:16] <mwalling> where is it logging?
[23:44:41] <FuriousGeorge> mwalling: when i find out ill let you know :)  i think messages...  or not at all
[23:44:51] <mwalling> alternativly learn to speak policy server: http://www.postfix.org/SMTPD_POLICY_README.html
[23:45:25] *** suprsonic has joined #postfix
[23:45:48] *** lysander has quit IRC
[23:46:01] <suprsonic> if I create fake mx records, what's the default retry for postfix to connect to the next mx host in line?
[23:46:09] *** tombar_ has joined #postfix
[23:46:19] <FuriousGeorge> of course, i am on vacation in the middle of no where behind dialup
[23:47:03] <FuriousGeorge> and to make matters worse, i some how activated 'insert' cursor on my new laptop, and dont know how
[23:47:03] <mwalling> i was kinda wondering what you were doing in spain
[23:47:04] <mwalling> hehe
[23:47:07] <FuriousGeorge> it lacks the button
[23:49:44] *** lysander has joined #postfix





top