[00:01:55] *** Firehand_ has quit IRC
[00:01:56] *** coniptor3 has joined #postfix
[00:02:17] *** Firehand_ has joined #postfix
[00:02:20] <A_ok> jadewolf mainly the line start-stop-daemon --start says it all
[00:02:57] <Jadewolf>  if start-stop-daemon --start --exec ${DAEMON} -- quiet-quick-start; then
[00:03:24] <A_ok> it launches postfix and postfix does the rest so the problem cant be there sorry
[00:04:45] <Jadewolf> sudo apt-get remove postfix
[00:04:45] <A_ok> gtg get some sleep later. and thats for your time pickcoder
[00:04:47] <Jadewolf> oops
[00:04:52] <A_ok> lol
[00:05:02] <A_ok> no problem there
[00:05:15] <A_ok> as there is also sudo apt-get install postfix
[00:05:23] *** A_ok has quit IRC
[00:07:04] *** Jadewolf has left #postfix
[00:10:35] *** coniptor1 has joined #postfix
[00:11:40] *** xpoint has quit IRC
[00:13:59] *** seekwill has quit IRC
[00:16:50] *** toytoy_ has joined #postfix
[00:16:52] *** coniptor2 has quit IRC
[00:20:53] *** martiancode has joined #postfix
[00:23:12] <toytoy_> guys, any help. I got this message with my postfix -> http://pastebin.org/56846
[00:23:35] *** Fallenou has quit IRC
[00:23:49] <toytoy_> but I have no idea about the message is. first time in postfix :)
[00:24:27] <coniptor1> Anyone know the answer to my question?
[00:24:32] *** Firehand_ has quit IRC
[00:24:40] *** rootsvr has quit IRC
[00:25:07] <hparker> coniptor1: Look into header checks
[00:25:15] *** Firehand_ has joined #postfix
[00:25:34] *** toytoy_ has quit IRC
[00:25:43] *** toytoy_ has joined #postfix
[00:25:51] <coniptor1> hparker: thank you. :)
[00:25:55] *** toytoy_ has quit IRC
[00:27:43] *** coniptor3 has quit IRC
[00:28:13] *** toytoy has joined #postfix
[00:28:31] <toytoy> guys any idea about this message -> http://pastebin.org/56846 ?
[00:37:11] *** Motoko-chan has joined #postfix
[00:38:00] *** F6F has quit IRC
[00:38:38] *** pickcoder has quit IRC
[00:54:13] <hparker> toytoy: And the logs say?
[00:54:52] *** rcsu has quit IRC
[00:58:47] *** war9407 has quit IRC
[00:59:33] <toytoy> hi hparker I got this part from my /var/log/maillog -> http://pastebin.org/56850
[00:59:49] <toytoy> hparker: i've seen this -> verify_user(user.testuser) failed: Mailbox does not exist
[01:00:05] <toytoy> hparker: now, how would I create a mailbox for a specific user?
[01:00:15] <toytoy> let's say for that "testuser"
[01:00:19] <hparker> send it an email
[01:00:43] <toytoy> i have tried that, and i got this error http://pastebin.org/56846
[01:00:49] *** makerc has joined #postfix
[01:01:02] <hparker> no clue about lmtp...
[01:01:06] <toytoy> hparker: i'm sure this is the prob -> verify_user(user.testuser) failed: Mailbox does not exist
[01:01:36] *** Draecos has quit IRC
[01:01:41] <toytoy> unlike the sendmail, i can have the /var/mail/testuser here
[01:01:44] <hparker> I've never tried delivering via lmtp
[01:01:59] <hparker> lmtp to amavisd-new is all i've done
[01:02:13] <toytoy> hparker: ah i see, so it's with the lmtp also? it's my first time for postfix reall :)
[01:02:22] <toytoy> i c :)
[01:05:10] <toytoy> hparker: do you know how to create a mailbox? or i'm sure that's the lacking once, but i don't know where it must be placed or should be located
[01:05:52] <hparker> maildirmake?
[01:07:23] *** Firehand_ has quit IRC
[01:09:11] <toytoy> hparker: yeah but I don't have that. anyway i find this forum but i'll try it if it works :)
[01:14:49] *** openssh has joined #postfix
[01:16:33] *** openssh has quit IRC
[01:21:14] *** seekwill has joined #postfix
[01:28:13] *** alienbrain has joined #postfix
[01:29:15] <Laibsch> I basically want "reject_rhsbl_client google.com" except when the sender uses a google.com or gmail.com address
[01:29:28] *** makerc has quit IRC
[01:29:31] <Laibsch> I really cannot figure out how to get this into postfix config code
[01:29:35] <Laibsch> Any help?
[01:33:07] *** allan has quit IRC
[01:34:46] <hparker> toytoy: Might be part of courier-imap
[01:35:13] <hparker> Laibsch: Pastebin your postfix -n
[01:35:53] <Laibsch> hparker: Thank you for your reply. http://rafb.net/p/CioPo239.html
[01:36:08] *** makerc has joined #postfix
[01:39:39] <hparker> Laibsch: What's in hash:/etc/postfix/recipient_checks, and what policy server are you running?
[01:39:48] <toytoy> hparker: here -> http://pastebin.org/56855
[01:40:34] <hparker> that's postconf output
[01:41:02] <Laibsch> hparker: /etc/postfix/recipient_check
[01:41:10] <Laibsch> http://rafb.net/p/GBS3Uc80.html
[01:41:16] <hparker> what's in that file?
[01:41:31] <toytoy> hparker: yeah sorry i'm wrong. btw, i tried postfix -n the "-n" is not a valid option
[01:41:53] <hparker> postfix != postconf
[01:42:38] <toytoy> hparker: postfix -n? i know, i was wrong because I issue postconf priorly and its my first time hearing that
[01:43:07] <hparker> postconf -n shws changes in main.cf
[01:45:03] <Laibsch> hparker: I have postgrey running (I guess that qualifies as the policy server you were asking about)
[01:45:17] <toytoy> hparker: # /usr/sbin/postfix -n
[01:45:30] <toytoy> hparker: postfix: invalid option -- n
[01:45:46] <toytoy> sorry but I don't know how to use postfix yet
[01:45:58] <hparker> Laibsch: that would be your policy server, yes... What's in that file
[01:46:06] <hparker> toytoy: postconf!
[01:46:15] <hparker> not postfix
[01:46:17] <hparker> ...
[01:46:35] <Laibsch> hparker: What file the recipient check file?
[01:46:39] <Laibsch> http://rafb.net/p/GBS3Uc80.html
[01:46:47] <hparker> As I tell my kids "Hear what I'm saying, not what you think I'm saying"
[01:47:16] <Laibsch> hparker: Are you referring to me?
[01:47:21] <hparker> Laibsch: then i have no clue as to why you're getting the error you say you are
[01:47:24] <hparker> no
[01:47:26] <Laibsch> I really am trying to follow your instructions
[01:47:33] <Laibsch> hparker: Error?
[01:47:44] <Laibsch> I never said anything about an error
[01:47:59] <hparker> Laibsch: Shit, now i need to read better :P
[01:48:03] <toytoy> hparker: this is it -> http://pastebin.org/56855
[01:48:05] <Laibsch> Hehe ;-)
[01:48:26] <Laibsch> hparker: Any help?
[01:48:27] <toytoy> hparker: that's postconf -n
[01:48:34] <hparker> Laibsch: I think you'll need a policy server for that
[01:48:46] <Laibsch> Wow?
[01:48:50] <hparker> Laibsch: header checks just check a line at a time
[01:49:07] <Laibsch> postfix cannot do dependent checks?
[01:49:34] <Laibsch> IOW, if A then try if B and if both are true reject the mail?
[01:49:41] <Laibsch> That sort of thing is not possible?
[01:49:57] <Laibsch> in plain postfix
[01:50:00] <hparker> Might If Then, but one line at a time, so...
[01:50:37] <hparker> toytoy: Uhm.. What was your problem, other then mailboxes not created?
[01:51:53] <toytoy> hparker: ohm as of now that's only :( where I receive a 505 error
[01:52:37] <toytoy> hparker: i found the list of mails in /etc/postfix/turbopanel/virtual_alias where I added the testuser there
[01:52:54] <hparker> No clue with lmtp delivery, sorry
[01:53:13] <toytoy> hparker: after I have added, I restarted postfix -> /etc/init.d/postfix restart but still trying to send email fails and gives 505
[01:53:18] <toytoy> ic :(
[01:53:23] <hparker> What's on the other end of the socket?
[01:53:57] <toytoy> hparker: like how would I know that?
[01:54:24] <hparker> What is supposed to listen on that socket and deliver?
[01:54:27] <toytoy> hparker: am i right that if the virtual_alias file is being modified, i have to restart postfix? or is there any command prior than that
[01:54:54] <hparker> All of the virtuals I've done have bee via a db
[01:54:57] <toytoy> hparker: sorry i don't have idea about your question, can you make it simpler? or let's say by viewing it in logs, might make me know that
[01:55:19] <hparker> virtual_transport = lmtp:unix:/var/lib/imap/socket/lmtp
[01:55:28] <hparker> What listens to that socket?
[01:55:52] <hparker> what is postfix delivering to?
[01:55:53] <toytoy> is that it? as far as I know, cyrus is attached with this postfix
[01:56:14] *** Motoko-chan has quit IRC
[01:56:20] <hparker> oh, never messed with cyrus, just courier and dovecot
[01:56:28] <toytoy> cyrus + imap + postfix.
[01:57:05] <toytoy> i c, its actually installed btw so that's why i don't know much the installation since I'm just trying to hack the flow
[01:57:11] <hparker> I prefer an imap/pop server that stores things in a normal format
[01:57:39] <toytoy> i wish, is that so but here it's already being installed :( so i just let it of and try following the flow
[01:57:39] <hparker> Well, it looks like cyrus isn't creating the mailbox
[01:58:20] <toytoy> hparker: perhaps, but i'm sure there's a command or way for it w/c i miss something since I added it manually, i.e. my colleague did create mail account but through a cpanel
[01:59:44] <hparker> I also have no clue on panels.. I have root on all of the servers I admin
[02:03:39] <toytoy> i see, this is my first time diving with postfix, i only have knowledge about sendmail but seems postfix is much great but big lots of configurations
[02:05:28] <adaptr> yes, big big lots
[02:07:00] *** toytoy has quit IRC
[02:07:24] <hparker> no where near the sendmail conf file
[02:08:46] <adaptr> true, but I'm betting he doesn't mean sendmail.cf ;)
[02:08:59] * adaptr has read the book, once and long ago
[02:10:19] *** toytoy has joined #postfix
[02:10:25] <hparker> sendmail.cf makes my eyes bleed
[02:11:21] <adaptr> it makes me want to do drugs, in case that helps
[02:12:12] <hparker> heh
[02:12:15] <toytoy> hparker: really? I only use my sendmail.cf in a minimalistic approach.
[02:12:47] *** pitakill has joined #postfix
[02:12:49] <hparker> I started using sendmail 10+ years ago, .m4 was minimal then
[02:13:35] <toytoy> wow :D
[02:13:39] <toytoy> long time ago huh
[02:13:53] <hparker> yes, I've been at this a short while...
[02:14:24] * hparker is also an old fart
[02:15:38] <toytoy> hparker: how old are you?
[02:15:52] <hparker> All but 45
[02:16:20] <toytoy> hehe not old yet, still young :D
[02:16:35] * toytoy having breakfast
[02:16:56] *** ming_zym has joined #postfix
[02:18:02] <hparker> toytoy: You're older then me? If so, that's unusual
[02:18:05] *** pirho has quit IRC
[02:20:39] *** Zblakany has joined #postfix
[02:25:19] *** Joe_Wulf has joined #postfix
[02:39:25] *** JoeWulf has quit IRC
[02:40:10] *** PhilKC has joined #Postfix
[02:40:32] *** Joe_Wulf is now known as JoeWulf
[02:42:01] *** madrescher has quit IRC
[02:45:27] *** toytoy has quit IRC
[02:54:45] *** tshine has quit IRC
[03:06:24] *** bpgoldsb has quit IRC
[03:07:35] *** qiyong has joined #postfix
[03:07:55] <qiyong> how to control an account send mail to only certain domains?
[03:08:03] *** PhilKC has quit IRC
[03:08:05] *** coniptor1 has left #postfix
[03:09:12] <adaptr> an *account* ? do you mean a system mail account ?
[03:10:31] <qiyong> adaptr: virtual account
[03:10:35] *** Tachy has joined #postfix
[03:10:39] <qiyong> adaptr: mail account
[03:11:23] <adaptr> accounts don't send mail - *senders* send mail ;)
[03:11:50] *** Zblakany has quit IRC
[03:11:56] <qiyong> ok, so senders adaptr
[03:12:17] <qiyong> how to control some senders only can send mails to certain domains?
[03:12:21] <qiyong> adaptr:
[03:12:24] <adaptr> and you want to control that certain *senders* can only send mail to certain *domains* ?
[03:12:28] <qiyong> is it access control?
[03:12:40] <qiyong> adaptr: yes
[03:13:17] <adaptr> senders is easiest with access control, I think
[03:13:28] <adaptr> recipient domains, not so much
[03:13:35] <adaptr> !access_readme
[03:13:36] <knoba> adaptr: Error: "access_readme" is not a valid command.
[03:13:38] *** toytoy has joined #postfix
[03:13:40] <adaptr> why not ?
[03:14:23] <qiyong> so?
[03:14:49] <qiyong> certain senders can send to certain recipient
[03:15:07] <qiyong> that's the it
[03:15:07] <qiyong> how?
[03:16:44] <adaptr> !ACCESS_README
[03:16:45] <knoba> adaptr: Error: "ACCESS_README" is not a valid command.
[03:16:48] <adaptr> blast!
[03:16:52] <adaptr> !access
[03:16:53] <knoba> adaptr: "access" : http://www.postfix.org/SMTPD_ACCESS_README.html : An overview of access(5) controls in the Postfix smtpd(8) SMTP server.
[03:16:55] <adaptr> pfft
[03:17:04] <adaptr> start there and work your way ... sideways
[03:23:02] *** Tachy_ has quit IRC
[03:27:40] *** ikaro has quit IRC
[03:32:09] *** allan has joined #postfix
[03:42:08] *** Laibsch has quit IRC
[03:54:24] *** pickcoder has joined #postfix
[03:59:08] *** toytoy has quit IRC
[04:00:23] *** toytoy has joined #postfix
[04:00:55] *** alienbrain has quit IRC
[04:11:41] *** Motoko-chan has joined #postfix
[04:26:39] <qiyong> adaptr: help
[04:27:18] <adaptr> sorry ?
[04:31:05] <sysmonk> adaptr: yelp
[04:35:07] *** pitakill has quit IRC
[04:38:11] *** neoeinstein has joined #postfix
[04:39:17] *** makerc has quit IRC
[04:42:27] *** roe___ has joined #postfix
[04:45:07] *** roe___ has quit IRC
[04:46:29] <qiyong> adaptr: how to do that?
[04:46:55] <adaptr> sysmonk: whelp
[04:57:54] *** martiancode has quit IRC
[05:10:11] *** learning_more has joined #postfix
[05:12:40] *** learning_more has left #postfix
[05:15:27] *** neoeinstein_ has joined #postfix
[05:17:19] *** newz2000 has joined #postfix
[05:21:47] *** tom__ has joined #postfix
[05:23:09] <tom__> Can someone lend a hand? I'm trying to get SA to filter out spam on a postfix system. It's tagging the spam properly, but it's acting like it's not running it through procmail afterwards. It's got to be something simple but for the life of me i can't figure it out...
[05:24:46] <tom__> I've been at this for weeks -- read through the postfix guide...I'm really at the end of my rope...
[05:25:16] *** neoeinstein has quit IRC
[05:25:59] <tom__> Anyone?
[05:32:03] <tom__> anyone even here?
[05:32:50] <newz2000> 186 people here tom__
[05:33:01] <tom__> well yeah, but i was wondering how many weren't afk
[05:33:03] <newz2000> (I can't help though)
[05:33:31] <newz2000> but normally if I need help I describe the problem and when someone comes around they give a good answer
[05:34:02] <Dominian> I'm assuming you're using some sort of content_filter?
[05:34:14] <tom__> yes
[05:34:22] <Dominian> !content_filter
[05:34:22] <knoba> Dominian: "content_filter" : a configuration parameter in the main.cf: The name of a mail delivery transport that filters mail after it is queued.
[05:34:27] <Dominian> k hang on
[05:34:33] <Dominian> i don't do filtering with a content_filter unfortunately
[05:34:37] <Dominian> need to read up on it I guess
[05:34:41] <Dominian> what's the line in main.cf look like?
[05:34:43] <tom__> :-) thanks
[05:37:57] *** neoeinstein_ has quit IRC
[05:38:21] <Dominian> tom__: If you haven't already: http://www.postfix.org/FILTER_README.html
[05:38:25] <Dominian> I'd read that.. very detailed
[05:38:38] <Dominian> but the line in main.cf and whatever is in master.cf is what we would need to see for the content_filter
[05:39:45] <tom__> I read that earlier -- i'll go through it again though just to see if i missed something..
[05:40:11] <Dominian> yeah, but pastebin you main.cf content_filter line and the one in master.cf if you put it in there.. which I'm sure you did.
[05:40:40] *** pitakill has joined #postfix
[05:44:10] <newz2000> so I had a nice working config... then I edited /etc/aliases and instead of running newaliases accidently ran updatedb. Of course things broke so I deleted /etc/aliases.db and ran newaliases. But now my line that looks like this doesn't work (it just dumps the email to /tmp): support:   |"/usr/bin/run_email2trac"
[05:44:12] <tom__> http://rafb.net/p/G8hQFr47.html
[05:44:46] <newz2000> I'm not sure how to debug this... is there a way to find out what's going wrong?
[05:45:41] <newz2000> log file says: Jul 25 03:42:01 staff postfix/local[336]: 6135F3FC1F5: to=<support@...>, relay=local, delay=0, status=sent (delivered to command: /usr/bin/run_email2trac)
[05:45:53] <sahil> newz2000: so isn't that working as expected?
[05:46:17] <newz2000> no, it's supposed to insert something into the trac database and it doesn't. It just leaves the file in /tmp
[05:46:38] <sahil> well, postfix delivered the mail to that command as directed by the alias.  so check the script.
[05:46:40] *** pitakill has quit IRC
[05:46:58] <newz2000> ok. thanks.
[05:47:21] <newz2000> finding where the failure is probably the trickiest part
[05:47:26] * sahil nods
[05:47:54] <sahil> i guess if you set a more simple alias like foo: bar, check if that delivers mail to user bar's mailbox.  if that works, then aliases are working fine.
[05:48:15] * sahil reckons it will work, because your alias above is "working".
[05:48:36] <newz2000> I'll bet its some kind of permissions issue
[05:49:04] <newz2000> the oddity is the timing... it broke at the same time I edited the alias file
[05:49:16] <sahil> and now i'm intrigued by trac.  do you just use it as a way to track emails to your support staff?
[05:49:32] <sahil> newz2000: might just be coincidence rather than causation.
[05:50:05] <newz2000> sahil: yes but more... that's all the email part does, it replaces rt which was overkill
[05:50:16] <newz2000> so emails create a ticket
[05:50:36] <newz2000> then one tool does everything... wiki, tickets, and my favorite is the timeline - which has an rss feed for the svn repo
[05:50:49] <sahil> we are thinking of deploying something similar to have a ticket simple that just doesn't do much more because rt (as you said) is total overkill.  it's becoming a bit inefficient to just have the staff "wing it". :)
[05:51:12] <sahil> hm, we don't need svn.  just a way to ticket/track support requests.
[05:51:31] <newz2000> sahil: it's got its challenges. This feature is not as mature rt. I've had to deal with a host of issues, espeically corner cases that cause a mail loop
[05:52:01] <newz2000> If I were a really good mail admin I'd probably use procmail rules to detect and prevent loops
[05:52:12] <sahil> heh
[05:52:34] <newz2000> https://subtrac.sara.nl/oss/email2trac/wiki/Email2tracConfiguration if you're interested
[05:52:47] <sahil> thanks, i just found that by way of google.
[05:54:08] <qiyong> how to restrict the from?
[05:54:16] <qiyong> like my auth user is qiyong
[05:54:30] <qiyong> I can't only send out by qiyong@domain
[05:54:40] <qiyong> not other@domain
[05:54:46] <qiyong> how to do that? thanks
[05:54:52] <sahil> qiyong: wow, you're going to have to stop hitting enter after every few words and explain your situation clearly.
[05:55:18] <qiyong> ok sahil
[05:55:27] <qiyong> but any idea?
[05:57:04] <sahil> mhmm.
[05:58:09] <sahil> look into reject_sender_login_mismatch, reject_unauthenticated_sender_login_mismatch, and smtpd_sender_login_maps for starters.
[05:58:20] <Dominian> tom__: are these local or virtual users?
[05:58:32] <sahil> qiyong: that last msg is for you.
[05:59:01] <tom__> Dominian: local
[05:59:53] <Dominian> tom__: odd
[06:00:04] <Dominian> tom__: Like I said.. I don't use content_filter in that manner.. so me helping you is probably a waste of your time hehe
[06:00:52] <tom__> it's alright...i have someone in spamassassin helping me...as long as there's a fresh pair of eyes maybe this will get resolved ...
[06:01:16] * Dominian nods
[06:01:18] <sahil> tom__: do you scan mail for viruses?  this is only somewhat related.
[06:01:40] <tom__> sahil: not yet. Just a simple spamassassin setup right now
[06:03:04] <sahil> fair enough.  i strongly urge you to consider a simple amavisd-new setup which will integrate nicely with SA and allow you to activate virus scanning when you become comfortable with it.  other than that, good luck!
[06:04:15] <tom__> sahil: thanks :-) is it easier to set up amaviss than spamassassin? I figured if I can't get SA working i'd better not try amavis
[06:14:06] <sahil> tom__: that fear is unfounded.  amavisd-new integrates rather easily.  of course you should read the docs.  give it a shot.
[06:24:34] *** johnf has joined #postfix
[06:25:04] <johnf> how does qmgr know where to deliver mail to? It's trying to connect to eth0 IP when it should use lo
[06:33:05] <pickcoder> johnf: DNS?
[06:33:13] <pickcoder> qmgr doesn't btw
[06:33:16] <pickcoder> smtp does
[06:33:24] <pickcoder> inet_interfaces
[06:33:26] <pickcoder> !inet_interfaces
[06:33:27] <knoba> pickcoder: "inet_interfaces" : a configuration parameter in the main.cf: The network interface addresses that this mail system receives mail on. By default, the software claims all active interfaces on the machine. The parameter also controls delivery of mail to user at [ip dot address]. If your server does not react to connection attempts on a certain interface you should check this setting.
[06:33:36] <pickcoder> meh
[06:33:38] <pickcoder> never mind
[06:33:40] <pickcoder> that's smtpd
[06:33:48] <pickcoder> maybe it's bed time
[06:34:02] *** saurabhb has joined #postfix
[06:35:38] *** pickcoder has quit IRC
[06:41:40] *** c0n3 has joined #postfix
[06:44:10] *** tshine has joined #postfix
[06:50:17] *** hparker has quit IRC
[06:53:49] *** tshine has left #postfix
[06:57:50] *** c0n3 has left #postfix
[07:01:37] *** tshine has joined #postfix
[07:08:34] *** tom__ has quit IRC
[07:13:14] *** newz2000 has left #postfix
[07:20:45] <toytoy> guys any idea for this error -> http://pastebin.org/56899
[07:37:02] <qiyong> sahil: what's the format of smtpd_sender_login_maps ?
[07:37:35] <qiyong> an exmple?
[07:38:44] <qiyong> smtpd_sender_login_maps seems specify per user
[07:38:54] <qiyong> i want to specify for all the users
[07:39:02] <qiyong> foo@domain foo
[07:40:16] *** martiancode has joined #postfix
[07:43:28] *** johnf has left #postfix
[08:05:24] *** seekwill has quit IRC
[08:13:08] *** Fallenou has joined #postfix
[08:16:11] *** toytoy has quit IRC
[08:21:14] *** SniZ has quit IRC
[08:21:55] *** toytoy has joined #postfix
[08:23:24] *** m1n3s6 has joined #postfix
[08:31:34] *** sophokles has joined #postfix
[08:33:04] *** madrescher has joined #postfix
[08:47:37] *** phnord has joined #postfix
[08:52:17] *** F6F has joined #postfix
[09:17:03] *** master_o1_master has joined #postfix
[09:26:34] *** Motoko-chan has quit IRC
[09:28:45] *** master_of_master has quit IRC
[09:29:40] *** cilly has quit IRC
[09:43:36] *** cilly has joined #postfix
[09:48:05] *** Filbert- has quit IRC
[09:51:58] *** war9407 has joined #postfix
[09:53:43] *** Filbert has joined #postfix
[09:58:42] *** rootsvr has joined #postfix
[09:59:18] *** madrescher has quit IRC
[10:00:43] *** mjoseph_ has joined #postfix
[10:00:47] *** mjoseph_ has quit IRC
[10:02:51] *** hever has joined #postfix
[10:05:12] *** n215 has quit IRC
[10:06:16] *** JoKoT3 has joined #postfix
[10:07:35] *** rootsvr has quit IRC
[10:22:22] *** martiancode has quit IRC
[10:23:13] *** thojo has joined #postfix
[10:30:55] *** tibyke has joined #postfix
[10:32:27] *** slashdotfx has joined #postfix
[10:37:52] *** master_o1_master is now known as master_of_master
[10:42:34] *** AcTiVaTe has joined #postfix
[10:59:26] *** kRocKodile has joined #postfix
[11:02:08] *** Flxr has joined #postfix
[11:08:05] *** denis_ has joined #postfix
[11:09:58] *** Zblakany has joined #postfix
[11:33:14] *** F6F has quit IRC
[11:33:30] *** F6F has joined #postfix
[11:39:02] *** F6F has quit IRC
[11:39:47] *** F6F has joined #postfix
[12:01:24] *** rakosh76_ has quit IRC
[12:04:26] *** Zeit|awy_ has joined #postfix
[12:11:50] *** Zeit|awy has quit IRC
[12:15:54] *** mark-use has joined #postfix
[12:19:13] <thojo> I'm having the following entry (sa-spam unix - n n - - pipe user=amavis:amavis argv=/usr/bin/sa-learn --spam) in my master.cf and my log says (delivered via sa-spam service). But my "sa-learn --dump magic" doesn't increse in the nspam number. Any idea what's missing in my cmd?
[12:20:40] *** cpm has joined #postfix
[12:27:00] <dragonheart> sounds more like a amavis question that a postfix one. (and I don't know the answer)
[12:29:40] *** saurabhb has quit IRC
[12:36:59] *** ikaro has joined #postfix
[12:37:52] *** maxquerry has joined #postfix
[12:38:35] *** saurabhb has joined #postfix
[12:39:54] <thojo> ok, thanks..
[12:40:02] <sysmonk> happy sysadmins day guys!
[12:40:12] <sysmonk> and don't forget to update your dns servers
[12:41:02] <dragonheart> happy sysadmin day to you  to sysmonk. just think today is the day users are ment to help you (good luck)
[12:42:02] <sysmonk> yeah, right, help me
[12:42:30] <sysmonk> i've started my sysadmin day at 5am by updating one of dns servers ( woops, how could i forget about that one :P )
[12:42:43] <sysmonk> and when i came to work there was plenty of tasks to do
[12:42:50] <sysmonk> so, suuuure, users are 'helping' me :)
[12:44:15] <dragonheart> keeping you employed (bastards)
[12:44:26] <sysmonk> yeah
[12:45:35] <dragonheart> have you noticed anyone trying to exploit dns vulnerabilities?
[12:47:44] <sysmonk> uhg
[12:47:54] <sysmonk> with my 500+ req/s - it's a bit hard to notice
[12:48:26] <sysmonk> unless you'd like to analyze my ~10 gibs of logs / day from dns ;)
[12:49:45] <dragonheart> i think i've got to wash my hair instead :-)
[12:49:55] <sysmonk> ;))
[12:49:57] <dragonheart> patch and ignore is so much easier
[13:01:10] <kRocKodile> i know its not exactly in the subject of this channel but i need to ask... if anyone uses fetchmail with catchall account to get the mails from the ISP and how is that related with postfix
[13:03:39] <kRocKodile> (very bad english again....)
[13:04:25] <kRocKodile> i mean... i need something else except postfix/dovecot/fetchmail for my mail server?
[13:14:11] <sysmonk> kRocKodile: yeah
[13:14:14] <sysmonk> kRocKodile: you also need a sysadmin
[13:14:24] <sysmonk> you can find one in wallmart, on ile 6
[13:14:36] <sysmonk> or order one from amazon/ebay
[13:14:40] <cpm> oh nice sysmonk
[13:14:45] <cpm> what a nice guy
[13:14:46] <cpm> :)
[13:14:53] <sysmonk> cpm: :P
[13:14:59] <kRocKodile> i noob i know but i learn fast
[13:15:16] <f3ew> kRocKodile, it isn't related to Postfix at all
[13:15:24] <f3ew> See multidrop in the fetchmail manual
[13:16:30] <sysmonk> f3ew: ordering a sysadmin is sooo much easier than reading a manual
[13:17:08] <kRocKodile> i am the sysadmin :p
[13:21:31] <sysmonk> oh you are THE sysadmin ? :)
[13:21:33] <sysmonk> ok ok joking :)
[13:24:21] <kRocKodile> no prob:p
[13:24:47] <stony> is there a way to create own error messages instead of the default ones (like own error pages on webservers) ?
[13:27:44] <sysmonk> stony: yeah
[13:27:46] <sysmonk> one sec
[13:27:54] <sysmonk> !bounce_template_file
[13:27:54] <knoba> sysmonk: Error: "bounce_template_file" is not a valid command.
[13:27:56] <sysmonk> doh
[13:27:58] <stony> sysmonk: thx
[13:28:20] <sysmonk> !learn bounce_template_file as Pathname of a configuration file with bounce message templates. These override the built-in templates of delivery status notification (DSN) messages for undeliverable mail, for delayed mail, successful delivery, or delivery verification. The bounce(5) manual page describes how to edit and test template files.
[13:28:23] <stony> that's the one i found in a newsgroup right in this moment
[13:28:25] <sysmonk> !bounce_template_file
[13:28:26] <knoba> sysmonk: "bounce_template_file" : Pathname of a configuration file with bounce message templates. These override the built-in templates of delivery status notification (DSN) messages for undeliverable mail, for delayed mail, successful delivery, or delivery verification. The bounce(5) manual page describes how to edit and test template files.
[13:28:30] <sysmonk> here it is :)
[13:29:20] <adie> wht do I need to change in my config to make postfix add the "receipt to" envolope address to it's headers?
[13:30:14] <stony> aren't they added automagically when the mail is checked for missing headers ?
[13:30:32] <sysmonk> not really
[13:30:40] <sysmonk> postfix 'fixes' the required headers
[13:30:45] <sysmonk> and receipt-to isn't a required header
[13:31:07] <sysmonk> postfix only adds the received header, and "Fixes" the from,to,message-id and date
[13:31:13] <sysmonk> man 8 cleanup
[13:32:23] <stony> ah i mixed the receipt-to header with the to header
[13:34:27] *** xpoint has joined #postfix
[13:35:53] <adie> hmm not sure that fixes the issue
[13:36:06] <sysmonk> there's no issue
[13:39:51] *** ming_zym has quit IRC
[13:40:42] <adie> hmmm can't fin anything in there.
[13:46:49] <tuxick> got a postfix here that starts up without complaining, but it's not listening on :25
[13:46:58] <tuxick> where to look?
[13:47:46] <dragonheart> log file + master.cf for smtp line
[13:47:47] *** Draecos has joined #postfix
[13:48:06] <tuxick> logfile says nothing
[13:48:13] <tuxick> but i'll check master :)
[13:48:35] <sysmonk> tuxick: is it really not listening?
[13:48:44] <sysmonk> netstat -nap | grep :25
[13:49:02] <tuxick> it's not there
[13:49:06] <sysmonk> tuxick: sockstat -4l | grep 25 ;)
[13:49:10] <dragonheart> i thought you'd suggest looking  wallmart, on ile 6
[13:49:27] <sysmonk> tuxick: also, inet_interfaces
[13:49:55] <tuxick> ok, it was screwed up master.cf
[13:49:56] <tuxick> thanks
[13:50:09] <tuxick> funny it didn't complain in logs
[13:50:12] <sysmonk> hooray for the main.cf-screwers
[13:50:38] <tuxick> the what??
[13:50:51] <sysmonk> main.cf-screwers!
[13:51:04] <sysmonk> it's a job title
[13:51:28] <tuxick> i guess i qualified then
[13:51:32] <dragonheart> do you need to be a main.cf-screwer before you become a master.cf-screwer?
[13:51:50] <tuxick> probably
[13:52:04] <tuxick> main.cf-screwers overrule
[13:52:06] <tuxick> hm
[13:52:21] <adie> hmm, it appears that sometimes postfix is adding the "for <user@dest> <date>" entry to the receipt header, but inconsistently
[13:53:00] <dragonheart> is it the entry for your postfix your looking at or the hop before you?
[13:54:10] <adie> dragonheart: it's the one labled with "by <my mx name> (Postfix) ...."
[13:54:41] <dragonheart> examples please
[13:55:52] <adie> erm where to paste?
[13:56:13] <dragonheart> http://pastebin.ca/index.php
[13:56:21] <dragonheart> for exampel
[13:59:46] * adie taps fingers
[14:00:18] <adie> http://pastebin.ca/1082501
[14:00:23] *** hever has quit IRC
[14:00:28] <adie> the bottom one displays it.
[14:00:59] <adie> the top one doesn't.
[14:02:58] <dragonheart> so the bottom one is delivered locally and the top one is transported elsewhere?
[14:03:14] <dragonheart> got bigger things to worry about really
[14:04:48] <adie> nope, they're both delivered to my user
[14:06:24] <adie> hmmm...
[14:06:42] <adie> I'll have a think about it some more and read some more docs.. :-/
[14:08:13] <dragonheart> or solve world hunger
[14:08:27] <dragonheart> much more worthwhile
[14:09:18] <adie> :) I wish.
[14:09:31] <adie> people at working whining about duped mails.
[14:10:02] * adie goes and grabs some food
[14:10:06] <adie> thanks for the help.
[14:14:08] <cipherz> Hello, when a PREPEND hdrline (http://www.postfix.org/access.5.html) is used by a policy filter, is the header then added to the bottom of the orig. header or beginning or ?
[14:24:32] *** Nockian has quit IRC
[14:31:51] *** internat has joined #postfix
[14:31:56] *** internat1 has quit IRC
[14:34:55] <stony> is there a list in which order the config values of the main.cf for the smtpd are checked ?
[14:36:04] <dragonheart> whats your real question - which otoins
[14:36:12] <dragonheart> optiosn
[14:36:44] *** saurabhb has quit IRC
[14:37:01] <stony> i'm talking about the smtpd_helo_restriction smtpd_sender_restrictions, but i think the question is obsolete
[14:41:14] <adaptr> stony: they are checked in order of occurence
[14:41:48] <stony> adaptr: aren't they checked the moment the specific command arrives ?
[14:42:05] <stony> smtpd_helo_restrictions on EHLO/HELO, smtpd_sender_restrictions on FROM and so on ?
[14:42:08] <adaptr> ..which would be the order of occurence
[14:42:28] <adaptr> *SMTP* portocol occurence
[14:42:36] <stony> adaptr: the order of occurence in my question (...entries in main.cf...) would be the order they occur in the file ...
[14:42:41] <adaptr> no
[14:42:52] <stony> yes
[14:42:53] <adaptr> it is the order in which those blocks of data *occur*
[14:43:03] <adaptr> SMTP defines the order
[14:43:26] <stony> yeah and in the context of my question ... blah blubb
[14:43:28] <stony> meta discussion
[14:43:56] <adaptr> you already answered your own question
[14:44:45] <rob0> [client helo sender] recipient data end_of_data
[14:45:29] <rob0> and the [] ones are evaluated at RCPT TO with smtpd_delay_reject
[14:48:02] *** m1n3s6 has quit IRC
[14:49:45] *** jahze has joined #postfix
[14:52:17] <jahze> Hey Guys. I want to add a hook into postfix for received emails. I need to be able to 1) match emails that I want to process 2) send matched emails to a custom script (the hook) 3) delete matched emails. Is this possible with postfix?
[14:53:14] <stony> jahze: is there a constant mail-adress involved ?
[14:53:23] <stony> jahze: i mean - same receipient everytime ?
[14:53:31] <stony> or same sender everytime
[14:54:20] <jahze> different sender, same recipient
[14:55:51] <stony> jahze: use receipient_bcc_maps
[14:56:13] <stony> jahze: and then bcc the all mails to a second account the is forwarded to a pipe service in postfix
[14:56:16] <stony> and then call your cmd there
[14:57:43] <stony> jahze: create a service in master.cf, fe: myserv unix - n n - - pipe user=your_user argv=/your/command
[14:57:52] <stony> the command should read the mail from stdin
[14:58:34] <stony> the create an entry in transport_maps that forwards the mail for myserv at yourdomain dot com to the myserv: service (myserver at yourdomain dot com myserv:)
[14:59:05] <stony> and then create a table with the recipient_bcc_maps where you add the recipient mail and the myserv at yourdomain dot com as bcc
[14:59:34] <jahze> Ok I think I've got you, so 1) recipient_bcc_maps to new addr 2) transport_maps to pipe email from new addr to service 3) set up service in master.cf ?
[14:59:48] <stony> what happens then is: mail arrives, recipient matches, it's bcc'ed to myserv at yourdomain dot com, that ends up in the myserv service, that executes the script, and sends the mail to stdin
[14:59:59] <stony> exactly
[15:00:10] <jahze> Awesome, cheers stony :)
[15:00:13] <rob0> with local(8) delivery it's far simpler, just use a .forward file.
[15:02:06] <jahze> Don't think I will be dealing with local mail, in the main I want to parse DSNs
[15:02:46] <stony> is there a way to get postfix to deliver mail using the connection the ETRN was send on ?
[15:03:02] <rob0> I'm just saying, if your recipient was local(8), you don't need all that.
[15:03:14] <jahze> Ok, thanks anyway
[15:03:29] <rob0> parse DSN? This sounds ugly.
[15:04:23] * sysmonk already imagines a dsn about dsn about dsn about .... .... ... about dsn parser unable to parse dsn
[15:05:12] * f3ew twitches
[15:05:19] <f3ew> VERP is your friend?
[15:06:11] <sysmonk> damn, they sold out all the sysadmins on ile 6 in wallmart, where can find more sysadmins?
[15:06:30] <jahze> To some extent probably, but I need a way to automate DSNs, i.e. to show in summary whether a group of emails were delivered successfully or not, and checking all the sender inboxes is uglier.
[15:07:00] <adaptr> DSNs *are* automated - postfix sends them for you
[15:07:12] <jahze> I know that
[15:07:45] <jahze> But I want a summary of DSNs, not to have to check an inbox for them.
[15:08:19] <adaptr> you'd have to trick postfix into sending them to a specific address, then
[15:10:01] *** denis_ has quit IRC
[15:10:30] <f3ew> or parse your logs
[15:11:40] <jahze> Hmm might be a better idea f3ew, but can you think of a way to do it without a cron job or something similar? The way I've been thinking about means you only look at DSNs when they come in...
[15:12:05] <f3ew> perldoc File::Tail
[15:12:15] <f3ew> Also see the code for mailgraph
[15:12:47] <jahze> Ok cool I'll have a look. Is File::Tail interrupt based or does it poll the file to see if anything has changed?
[15:14:14] <f3ew> there's also a POE example of that
[15:16:48] <dragonheart> jahze: strace it and find out
[15:17:30] <jahze> dragonheart: good idea
[15:17:42] <jahze> Thanks guys, you've been helpful
[15:18:24] *** jellis-real has joined #postfix
[15:26:30] *** maxquerry has quit IRC
[15:28:20] *** JoeWulf has quit IRC
[15:28:53] *** vargadanis has joined #postfix
[15:29:40] <vargadanis> hi folks.. I get a funny error message when trying to send mail...
[15:29:41] <vargadanis> Jul 25 12:15:13 dreamact postfix/qmgr[19049]: 377C838C3D1: from=, size=723, nrcpt=1 (queue active)
[15:29:41] <vargadanis> Jul 25 12:15:13 dreamact postfix/qmgr[19049]: 20D2638C3CD: from=, size=717, nrcpt=1 (queue active)
[15:29:41] <vargadanis> Jul 25 12:15:13 dreamact amavis[18474]: (!)DENIED ACCESS from IP 192.168.1.10, policy bank ''
[15:29:41] <vargadanis> Jul 25 12:15:13 dreamact amavis[18484]: (!)DENIED ACCESS from IP 192.168.1.10, policy bank ''
[15:29:41] <vargadanis> Jul 25 12:15:13 dreamact postfix/smtp[25258]: 20D2638C3CD: to=, relay=127.0.0.1[127.0.0.1]:10024, delay=2286, delays=2286/0.04/0.12/0, dsn=4.4.2, status=deferred (lost connection with 127.0.0.1[127.0.0.1] while receiving the initial server greeting)
[15:29:45] <vargadanis> Jul 25 12:15:13 dreamact postfix/smtp[25257]: 377C838C3D1: to=, relay=127.0.0.1[127.0.0.1]:10024, delay=2508, delays=2507/0.01/0.24/0, dsn=4.4.2, status=deferred (lost connection with 127.0.0.1[127.0.0.1] while receiving the initial server greeting)
[15:29:57] <vargadanis> i wonder, why is that?
[15:30:04] <vargadanis> sorry for pasting here so long error message
[15:30:20] *** rachet2 has joined #postfix
[15:31:37] <rachet2> Alright guys, when you configure you mail account in any piece of mail software (specifically thunderbird) everytime it connects to the postfix mta to send mail etc it comes up with the ssl stuff (accept the cert stuff) how can i stop that  ? I want to keep using certs but i dont want the users to have to keep click ok, ok, accept to these certs every time then connect, they are moaning at me and im not sure how to stop this ?
[15:32:38] <dragonheart> import the certificate and mark as accepted
[15:33:06] *** JoeWulf has joined #postfix
[15:33:45] <stony> rachet2: get a officially signed certificate of one of the companies that are listed in the certificate list of thunderbird
[15:38:06] <rachet2> You have to pay for those right ?
[15:38:25] <rachet2> is that the only way to get these popup boxes to stop poping up as there are about 4 of them before they login ?
[15:38:47] <stony> rachet2: there are other ways, but all require that you go to the client and add/modify something there
[15:38:52] <f3ew> they can import the root cert once
[15:39:13] * stony still wonders why openca isn't in the thunderbird list
[15:40:12] <stony> eeer cacert.org
[15:41:17] <rachet2> hrm so what is the best way to do this
[15:41:48] <stony> rachet2: best would be: get a cert at cacert.org, and write everybody a mail how to import the root cert of cacert.org from their homepage
[15:41:54] <stony> rachet2: or go and buy one
[15:42:48] <rachet2> ok so the first one is free ?
[15:43:19] <stony> ?
[15:44:12] <dragonheart> rachet2: yes cacert is free
[15:44:20] <sysmonk> cacert ftw
[15:45:38] <rachet2> thank you for everything guys, you've been wicked. most appriciated.
[15:45:48] <rachet2> now i can have  a beer in peace tonight
[15:46:59] <lunaphyte_> i like them, but if you're using cacert, you might as well sign your own keys.
[15:48:08] <stony> lunaphyte_: yeah, but they're working on an assurance, and then they'll be added to the common apps (windows, firefox, thunderbird ...)
[15:48:20] *** internat1 has joined #postfix
[15:48:20] <lunaphyte_> rachet2: meaning create a signing cert and distribute that once, and then sign your application certs with that.
[15:48:24] *** vargadanis has left #postfix
[15:48:36] *** internat has quit IRC
[15:50:13] <dragonheart> stony: cacert isn't in thunderbird because it hasn't met the requirements of mozilla for inclusion http://www.mozilla.org/projects/security/certs/policy/
[15:51:02] <lunaphyte_> stony: as they have been for the last 6+ years.  perhaps someday, yes (unlikely for some time, imho), but even then that will only benefit users who are cognizant enough to be using the latest version of a particular piece of software.
[15:51:57] <lunaphyte_> and i'm saying this being someone who genuinely likes the idea.
[15:52:30] <dragonheart> lunaphyte: they are after help with admining a few systems if you have time/interest
[15:52:37] *** Aw0L has joined #postfix
[15:53:05] *** simsimon has joined #postfix
[15:53:31] <Aw0L> how do I enable smtps?
[15:53:34] <Aw0L> master.cf?
[15:54:02] <dragonheart> how do you answer your own questions so quickly?
[15:54:14] <Aw0L> a talent
[15:54:17] <sysmonk> ;))
[15:54:20] <Aw0L> well I found it, I was just wanting to make sure
[15:54:47] *** denis_ has joined #postfix
[15:54:55] <Aw0L> I think that line got commented out somehow
[15:54:57] <Aw0L> odd
[15:55:07] <lunaphyte_> there is too much economy in certs, and therefore too much politics, which means the hurdles are almost guaranteed to be non-technical and stem from self absorbed intentions.
[15:55:10] <dragonheart> it is by default - its a deprecated protocol
[15:55:19] <simsimon> hello everybody
[15:55:28] <lunaphyte_> dragonheart: sounds interesting.
[15:55:30] <Aw0L> dragonheart, why is it depricated?
[15:55:52] <sysmonk> Aw0L: in favor of tls
[15:55:59] <Aw0L> aaaah
[15:56:00] <dragonheart> submission - smtp tls extensions
[15:56:04] <Aw0L> so is imaps depricated too?
[15:56:26] <dragonheart> not as much:-)
[15:56:33] <stony> isn't tls the old cow with a new name ?
[15:56:54] <lunaphyte_> tls is, yes, but the method is what he's referring to.
[15:56:55] <sysmonk> stony: and a few new black dots
[15:57:55] <Aw0L> is it possible to establish a tls connection without it being encrypted?
[15:58:09] <Aw0L> looks like my logs are showing a cipher though
[15:58:27] <stony> Aw0L: the tls is the encryption in the connection ...
[15:58:38] *** kRocKodile has quit IRC
[15:58:39] <rachet2> hrm, sorry was afk, what do you mean about that lunaphyte_ ?
[15:58:40] <dragonheart> lunaphyte: there opportinities for maintain the blog/wiki/test server and a few other for cacert.org happy to talk off channel if your interested
[15:59:14] <Aw0L> stony, aaaah
[15:59:32] <Aw0L> I must've missed something cause I don't remember setting that up
[15:59:39] <dragonheart> Aw0L: you could make tls over a null cipher but it seems kinda pointless
[15:59:42] <lunaphyte_> rachet2: about what?
[16:00:09] <Aw0L> dragonheart, nah, just making sure it's working correctly
[16:00:10] <lunaphyte_> establish a tls session without encryption?  how odd.  why?
[16:00:25] <Aw0L> so is it better to use tls or ssl for imap?
[16:00:33] <lunaphyte_> tls
[16:01:32] <lunaphyte_> the longer answer is that people seems to have their own interpretations/opinions on what exactly "tls" or "ssl" mean, so don't get derailed by the semantics.
[16:02:57] <Aw0L> hmm...yep, I can't recall how enabled imaps
[16:03:53] <dragonheart> there's imaps - port 993 or there is imap-tls which is just like smtp - standard port with a starttls command
[16:04:30] *** seekwill has joined #postfix
[16:05:33] <stony> does permit_mx_backup check the dns or do i have to add the domains to a database ?
[16:07:41] *** lysander_ has joined #postfix
[16:13:57] <rachet2> lunaphyte_: regarding the cert, signing it myself
[16:21:39] <tuxick> what's wiser? using amavis for clamav/spamassassin or milters?
[16:24:22] <jahze> Is there a way to get postfix to tell you which process queued/sent an email?
[16:24:30] *** lysander has quit IRC
[16:25:11] *** tibyke has quit IRC
[16:26:34] *** lysander_ has quit IRC
[16:27:05] *** lysander has joined #postfix
[16:28:35] <lunaphyte_> rachet2: rather than re-handing out self signed certs every year, create a ca cert and make it's expiration date much later.  then create the certificate to use with postfix, and sign it with your ca cert.
[16:29:02] <lunaphyte_> then you need only distribute your cacert.
[16:32:59] *** F6F has quit IRC
[16:41:03] <rachet2> ah i see
[16:55:14] *** brancaleone has joined #postfix
[17:01:45] *** checkers has joined #postfix
[17:02:06] <checkers> hi, how can I restrict sending to certain addresses to allow only sasl authenticated users?
[17:02:29] *** SniZ has joined #postfix
[17:07:23] <simsimon> Hi, I configured postfix so that it uses my existing LDAP db but I have a "Relay access denied" when I receive a mail. ( http://pastebin.com/d221ccf5b )
[17:07:37] <simsimon> what is wrong ?
[17:08:29] <checkers> simsimon: what does the log say?
[17:08:47] <simsimon> see my pastebin link
[17:09:47] <checkers> mydom.fr is not in the list of local or virtual domains the server accepts mail from
[17:10:08] <checkers> should this server be the final destination for mydom.fr?
[17:10:13] <simsimon> ok I check that
[17:10:47] <checkers> if so, you should have mydom.fr in either mydestination or virtual_mailbox_domains (assuming postfix 2.5)
[17:13:16] <simsimon> mydom.fr is in mydestination but I've just changed to virtual mailboxes so I think I forgot something
[17:14:30] <checkers> `postfix reload`?
[17:14:50] <checkers> mydestination is for local delivery btw, afaik you can't use virtual mailboxes with local domains
[17:15:28] *** pitakill has joined #postfix
[17:16:48] <simsimon> I have this line : virtual_mailbox_domains = $mydomain
[17:17:04] <simsimon> and mydomain = mydom.fr
[17:17:33] <checkers> I don't think that's legal, you can't use a domain as a local and virtual destination
[17:17:44] <checkers> to answer my own above question: check_recipient_access
[17:18:53] <simsimon> but I want only virtual destinations
[17:19:25] <checkers> sorry, it is legal, I was mistaking mydomain for mydestinatio
[17:19:38] * checkers gets back to work
[17:20:00] <simsimon> ok thanks
[17:20:06] *** Fallenou has quit IRC
[17:29:15] *** frubi has quit IRC
[17:33:03] <jeev> shit, how do i whitelist an ip? i have an old domain that's forwarding to a new one
[17:33:10] <jeev> postfix is sending to openspf
[17:33:21] <jeev> talking about envelope sender
[17:37:06] <checkers> iptables
[17:37:10] <checkers> oh, *white >_>
[17:37:12] <simsimon> I have no longer the "relay access denied" error after adding $mydomain to the "relay_domains" parameter. But now postfix says : "mail for mydom.fr loops back to myself"
[17:37:23] <simsimon> I don't understand why...
[17:37:36] <checkers> jeev: smtpd_client_restrictions
[17:37:42] *** checkers has left #postfix
[17:40:21] <simsimon> relay_transport = virtual
[17:40:24] <jeev> huh
[17:40:42] <jeev> i know the denial is caused there, but how do i allow 1 ip to do it?
[17:41:37] *** j_s has joined #postfix
[17:41:52] *** rachet2 has quit IRC
[17:42:35] *** phnord has left #postfix
[17:42:47] *** Zblakany has quit IRC
[17:43:58] *** amrit|wrk is now known as amrit|bbl
[17:59:45] *** jonny_diodka has joined #postfix
[18:00:11] *** jonny_diodka has left #postfix
[18:03:24] *** neuonyx has joined #postfix
[18:06:00] <neuonyx> hello a.. I have the following: emails sent from address A through postfix, domain keys in place, attempting to set bounce destination by  specifying  return-path -- I'm finding that return path is set wtih smtp envelope header - to set this From(envelope)  can be set, however this must match the From(header) -- we cant do this becuase bounces should come back to a different address -- can anyone shed some light on this subject?
[18:06:33] *** neoeinstein has joined #postfix
[18:06:43] <neuonyx> can an alternate bounce (return-path) be set when domain keys are in use?
[18:09:59] <seekwill> DomainKeys are based off the From (or Sender) header.
[18:10:12] <seekwill> ... specifically for that use case.
[18:10:24] <neuonyx> u sure?  I just read that they are based off of envelope
[18:10:31] <seekwill> What you read is wrong.
[18:10:38] *** hparker has joined #postfix
[18:10:42] <neuonyx> hrm
[18:10:44] <seekwill> Are you reading the RFC?
[18:10:48] <neuonyx> surprising its from orilley
[18:10:53] <seekwill> Are you reading the RFC? :)
[18:10:53] <neuonyx> also read the rfc
[18:10:56] <neuonyx> rfc was confusing
[18:11:01] <neuonyx> let me read again
[18:11:04] <seekwill> Ok
[18:11:46] <seekwill> neuonyx: After you get that, read up on DKIM! :)
[18:12:19] <neuonyx> 822
[18:12:19] <neuonyx> ?
[18:12:24] <neuonyx> 2822
[18:12:24] <neuonyx> ?
[18:12:34] <seekwill> No
[18:12:45] <seekwill> Are you really going to make me look up the RFC #?
[18:13:20] <neuonyx> you really going to make me read the rfc and really dont know how to specify in postfix?
[18:13:42] <seekwill> Specify what in postfix?
[18:13:52] *** Draecos has quit IRC
[18:14:55] <neuonyx> i want to be able to send from address A to address B and have bounces come back to address C (with domain keys in place)
[18:15:02] <neuonyx> cant figure out how to do this
[18:15:26] <seekwill> Bounce address (or Return-Path) is based off the envelope from. DK is signed from your From header.
[18:15:43] <seekwill> So your envelope will have address C, your from header will be address A.
[18:15:57] <seekwill> If you don't believe me, refer to the RFC
[18:17:12] *** Zblakany has joined #postfix
[18:17:26] <neuonyx> sigh.. according to rfc -- return-path isnt even the correct parameter to set for bounces :(
[18:17:43] <seekwill> URL?
[18:17:58] <seekwill> Section number
[18:18:09] <neuonyx> 4.3.1.  RETURN-PATH This field  is  added  by  the  *FINAL TRANSPORT SYSTEM * that delivers  the message to its recipient.  The field is intended to contain definitive information about the address and  route back to the message's originator.
[18:18:18] <neuonyx> so if i send to you
[18:18:25] <neuonyx> YOUR mail system adds the return path
[18:20:09] <seekwill> Hmm.. I might be off on that... but in any case, the return-path is from the envelope
[18:21:10] <neuonyx> http://www.ietf.org/rfc/rfc2821.txt - page 49
[18:21:16] <neuonyx> yeah return-path is the envelope
[18:21:17] <neuonyx> hrm
[18:21:25] *** hever has joined #postfix
[18:21:55] <neuonyx> either way
[18:21:55] <neuonyx> haha
[18:21:57] <neuonyx> the big questions is
[18:22:10] <neuonyx> how the hell do i tell your mail server who to bounce to
[18:22:11] <neuonyx> ;-)
[18:22:17] <seekwill> MAIL FROM envelope
[18:24:03] <jahze> Errors-To: This is a non-standard RFC2822  message header added by sendmail and other e-mail clients.
[18:24:12] <jahze> http://www.expita.com/header1.html
[18:27:35] <seekwill> Yay for non-standard RFC2822 message headers! :)
[18:28:56] *** rour has joined #postfix
[18:29:58] *** F6F has joined #postfix
[18:31:34] <maqr> is it possible to see the full list of BCC addresses when mail is received by postfix?
[18:31:42] *** pickcoder has joined #postfix
[18:34:00] <neuonyx> We've tried setting Errors-To: as well. but by non-standard that means its not really valid right?
[18:34:08] <neuonyx> doesnt necessarily work anywhere?
[18:34:18] <neuonyx> 2822 isn't used anywhere either is it? (SMTP is 2821)
[18:35:29] <seekwill> Just set your mail from....
[18:35:37] <maqr> or rather, is there some way to make postfix forward along the bcc headers to me so i can see who's really on the bcc list?
[18:36:20] <seekwill> I thought that's the point of 'b'?
[18:37:08] <seekwill> I should do a tcpdump on this to verify, but I thought BCC was more of an MUA thing
[18:38:10] <maqr> seekwill: that's what i originally thought too, but i just saw on some site that it's stripped out at the last MTA and not the first
[18:38:21] <maqr> seekwill: i can't confirm it easily though, that's why i'm asking :)
[18:38:24] *** Zblakany has quit IRC
[18:40:02] <seekwill> So, why do you need to know?
[18:41:27] <maqr> seekwill: because i want to create a mailing list where the recepients can't see each other's messages, and BCC would be convenient to do that, if the addresses aren't all passed along to the recepients MTAs
[18:41:41] <seekwill> Use a mailing list manager
[18:41:48] <maqr> such as?
[18:41:52] <seekwill> mailman?
[18:42:00] *** JoKoT3 has quit IRC
[18:42:02] <maqr> any idea how that sends the mail?
[18:42:38] <seekwill> I believe it's a python script that sends to the local MTA
[18:43:06] *** Zblakany has joined #postfix
[18:43:16] <maqr> seekwill: does it do it with BCC?
[18:43:21] <seekwill> No
[18:43:26] <maqr> so it's one email per user?
[18:43:30] <seekwill> Yeah
[18:43:42] <maqr> seekwill: i'm actually going to be doing this from a web application, so i can do it either way, but i'd rather offload it all to the MTA with a BCC, if it's safe
[18:44:00] <seekwill> Let's start over... what are you trying to do?
[18:44:04] * pickcoder imagines a 200,000 user list BCC
[18:44:10] <seekwill> pickcoder: hehe
[18:44:32] <maqr> seekwill: i'm setting up a website where people will subscribe to a mailing list, but not mailman
[18:44:45] <maqr> seekwill: i'm just going to send it myself with php or something, because this is on a shared host
[18:44:56] <maqr> seekwill: so it's either BCC or loop over mail()
[18:45:03] <seekwill> That shouldn't be a problem. Your webapp should be able to interface to mailman's database
[18:45:24] <maqr> seekwill: yeah, but i'd have nowhere to actually run mailman
[18:45:33] <seekwill> hmm
[18:45:41] <pickcoder> BCC just saves you a little CPU time on the sending side
[18:45:51] <maqr> pickcoder: but does it expose the BCC addresses to every recepient?
[18:45:52] <pickcoder> postfix is still going to send an email to everyone in the list
[18:45:56] *** Aw0L has quit IRC
[18:45:57] <maqr> pickcoder: or at least, to their MTA
[18:46:13] <pickcoder> maqr: yes. it does
[18:46:20] <seekwill> I don't think the MTA will read a bcc header
[18:46:24] <pickcoder> and a huge BCC could blow up some mail clients
[18:46:33] <seekwill> I think the MUA needs to put in each RCPT TO
[18:47:06] <maqr> pickcoder: well, the whole point of BCC is that recepients' clients shouldn't be able to see the other addresses that were bcc'd
[18:47:23] <seekwill> maqr: There are mailing list services (some free even) that can handle this for you
[18:47:44] <maqr> seekwill: i know, but really, i'm going to do it myself, i just need to know if it's one mail per user, or if it's bcc
[18:47:57] <seekwill> One mail per user
[18:47:59] <maqr> seekwill: the only thing that depends on is at what point the bcc addresses are stripped off
[18:48:10] <seekwill> maqr: Try it now
[18:48:12] <pickcoder> maqr: send one
[18:48:26] <seekwill> I'm almost sure that postfix will not send to your bcc headers
[18:48:56] <pickcoder> I never use BCC so I dunno
[18:49:02] *** iNick_ has left #postfix
[18:49:02] <pickcoder> apart from sender_bcc_maps
[18:49:13] <maqr> pickcoder: i'm not sure how i'd tell :)
[18:49:23] <pickcoder> mail logs?
[18:49:29] <maqr> i can't really tcpdump my smtp server
[18:49:37] <seekwill> Surely you have more than one email address
[18:49:39] <maqr> pickcoder: they don't show copies of every message that goes through
[18:49:42] *** Tinozaure is now known as Tino
[18:49:48] *** Tino is now known as _Tino
[18:49:51] <pickcoder> verbose logging should show bcc expansion if it happens
[18:49:51] <maqr> seekwill: sure, yeah, but i'd have to capture what comes into postfix
[18:49:53] <seekwill> Put one name in your to, and the other in bcc
[18:49:57] <seekwill> maqr: Why?
[18:50:06] <maqr> pickcoder: alright, i'll have to turn it up and try it
[18:50:13] <maqr> seekwill: maybe the logs are verbose enough
[18:50:20] <seekwill> maqr: You run your own postfix server?
[18:52:29] <maqr> seekwill: yeah
[18:52:34] <seekwill> ...
[18:52:40] <seekwill> Why can't you run mailman on it?
[18:53:39] <maqr> seekwill: this is for a different project which won't be on my server
[18:54:15] <seekwill> maqr: I really really really suggest using a mailing list manager/service.
[18:54:57] *** Aw0L has joined #postfix
[18:55:01] <seekwill> How many people are you expecting
[18:55:26] <maqr> seekwill: i don't really know yet, but i'm just interested in how bcc works
[18:57:13] <seekwill> There's a lot more to this than you think
[18:57:16] <maqr> the majority of things i find on google say that bcc is private
[18:57:45] <seekwill> Google blows
[18:59:41] <seekwill> maqr: It's REALLY easy to test this, you know... Just do it.
[19:01:09] <maqr> seekwill: i'll probably end up taking down the MTA trying to do it, and it may not be consistent everywhere, so i'm actually looking through the rfc now
[19:01:17] <maqr> but i'll test it myself later for my case
[19:02:16] <seekwill> maqr: I still think you're going about this the wrong way
[19:02:47] *** havvg has joined #postfix
[19:04:10] *** sophokles has quit IRC
[19:05:38] <maqr> http://www.faqs.org/rfcs/rfc2822.html
[19:05:58] <seekwill> Is there a particlar section?
[19:06:34] <maqr> 3.6.3 and the last paragraph of 'security considerations'
[19:06:52] <maqr> it looks like in some implementations (of what?) the bcc recepients may see each other's addresses
[19:07:08] <maqr> but it doesn't explicitly say where the filtering happens
[19:07:23] <seekwill> So...one message per person :)
[19:07:39] *** rootsvr has joined #postfix
[19:07:42] <simsimon> I have a question : in my main.cf I'd like to define a path for the option "virtual_mailbox_maps". I'm using a LDAP db but I have to attribute with this path so I'd like to write sth like /var/vmail/xxx/Maildir where xxx is a query "ldap:ldapvirtual". Is that legal ?
[19:07:47] <maqr> seekwill: it's looking like it, yeah
[19:08:03] <simsimon> *I have no attribute
[19:08:58] <maqr> seekwill: i'm going to test later to see if bcc headers are always passed along to the destination MTA
[19:09:07] <maqr> because gmail->me should show that if it's the case
[19:09:18] <maqr> seekwill: anyway, i gotta run out for a bit, thanks for helping
[19:10:07] *** toytoy has quit IRC
[19:10:53] <seekwill> np
[19:15:17] <simsimon> Can I define my own option in the main.cf file ?
[19:15:18] *** Flxr has quit IRC
[19:18:03] *** rootsvr has quit IRC
[19:24:39] *** mark-use has quit IRC
[19:26:50] <simsimon> nobidy knows how to set "virtual_mailbox_maps = /var/vmail/uid/Maildir" where uid is the result of a LDAP query ?
[19:26:51] <stony> if i run a milter app, how can i prevent it from processing outgoing mail ?
[19:28:42] <simsimon> I have to quit
[19:28:46] <simsimon> bye !
[19:28:53] *** simsimon has quit IRC
[19:54:31] *** brancaleone has quit IRC
[20:01:35] *** f3ew has quit IRC
[20:02:47] *** f3ew has joined #postfix
[20:04:15] <lunaphyte_> what an odd mx record: dig scs.msg.yahoo.com mx +short
[20:04:23] <lunaphyte_> 0 .
[20:04:35] <stony> :D
[20:13:30] *** Nockian has joined #postfix
[20:14:10] <seekwill> What is that for?
[20:16:58] <rob0> to prevent mail from being sent to that name
[20:18:59] *** rour has quit IRC
[20:22:45] *** ac3 has joined #postfix
[20:33:18] * cpm prevents sending mail to rob0
[20:38:24] *** hparker has quit IRC
[20:41:45] *** martiancode has joined #postfix
[20:45:08] *** hparker has joined #postfix
[20:48:28] *** pickcoder has quit IRC
[20:52:59] *** penrod has joined #postfix
[20:53:40] * shasta prevents cpm sending mail
[20:55:35] *** hever has quit IRC
[21:02:08] *** hparker has quit IRC
[21:05:38] *** denis_ has quit IRC
[21:10:00] *** cpm has quit IRC
[21:10:30] *** AcTiVaTe has quit IRC
[21:12:26] *** hparker has joined #postfix
[21:23:06] <lunaphyte> you guys see the story about the spammer killing his family?
[21:23:28] *** jahze has left #postfix
[21:24:15] <stony> http://www.denverpost.com/breakingnews/ci_9985333
[21:26:41] <lunaphyte> yeah.  just sad.
[21:27:14] *** havvg has quit IRC
[21:27:43] *** jellis-real has quit IRC
[21:29:15] *** Fallenou has joined #postfix
[21:31:07] <seekwill> He must have been using qmail
[21:38:23] <rob0> Sad about the wife and kid, but at least there is now an ex-spammer.
[21:43:24] <neoeinstein> Does this mean it's safe to open my relay? :-P
[21:43:54] *** Filbert has quit IRC
[21:45:32] *** Motoko-chan has joined #postfix
[21:49:48] *** pirho has joined #postfix
[21:56:45] *** pirho has quit IRC
[21:57:14] *** pirho has joined #postfix
[22:00:00] *** pitakill has quit IRC
[22:08:23] *** PK_ has joined #postfix
[22:18:26] *** thojo has quit IRC
[22:19:07] *** hparker has quit IRC
[22:19:40] *** hparker has joined #postfix
[22:26:25] *** majikman has joined #postfix
[22:26:36] <majikman> how do i delete all mails queued in postfix?
[22:28:25] <majikman> nvm, i rftm
[22:29:49] <xpoint> postsuper -d ALL
[22:30:11] <xpoint> if rtfm is not near localhost
[22:30:49] *** xous has quit IRC
[22:31:57] <majikman> got it, thanks ;)
[22:36:36] *** cilly has quit IRC
[22:37:13] *** cilly has joined #postfix
[22:40:43] *** roe___ has joined #postfix
[22:42:22] *** ttf has left #postfix
[22:44:01] *** PK_ has left #postfix
[22:45:28] *** stony has quit IRC
[22:45:52] *** soren has quit IRC
[22:45:55] *** soren has joined #postfix
[22:47:03] *** stony has joined #postfix
[22:47:31] *** stony is now known as Guest74464
[22:47:43] *** madrescher has joined #postfix
[22:47:54] *** neoeinstein has quit IRC
[22:51:49] *** pickcoder has joined #postfix
[23:20:06] *** hparker has quit IRC
[23:34:11] *** hparker has joined #postfix
[23:35:48] *** j_s has quit IRC
[23:41:03] *** madrescher has quit IRC
[23:55:21] *** AcTiVaTe has joined #postfix
[23:57:09] *** seekwill has quit IRC





top