[00:00:00] *** growltiger_ has joined #postfix
[00:03:41] *** m1n3s6 has quit IRC
[00:04:04] *** m1n3s6 has joined #postfix
[00:05:20] * seekwill plays with adaptr's transports
[00:07:14] *** Draecos has joined #postfix
[00:08:14] <loadkast> i have open the main.cf file open
[00:08:28] <loadkast> what line do i need to edit
[00:09:57] <Juzzy> Is there a way to forward ALL emails (local and remote) to a specific remote mailbox, and not to the original recipient (for a QA and dev enviroment) ??
[00:10:24] *** al-Quaknaa has quit IRC
[00:10:47] *** c00l2sv has joined #postfix
[00:12:41] *** pickcoder has quit IRC
[00:13:40] *** Draecos_ has joined #postfix
[00:16:50] *** growltiger has quit IRC
[00:21:23] <Led-Hed> rob0 & pickcoder,  thanks for the help
[00:21:26] *** Led-Hed has quit IRC
[00:27:54] *** Draecos has quit IRC
[00:30:01] *** z00md0r has quit IRC
[00:42:19] *** brancaleone has quit IRC
[00:43:57] *** Fallenou has joined #postfix
[00:53:34] *** sahil has joined #postfix
[00:56:28] *** Fallenou has quit IRC
[00:59:42] *** Draecos_ has quit IRC
[01:00:09] *** war9407 has quit IRC
[01:01:10] <higuita> pingouin: the message_size_limit should have given a "message too big" error
[01:01:33] <pingouin> higuita: it has not, dont know why
[01:01:37] <higuita> maybe your postfix is really old? maybe its time to upgrade? 8)
[01:01:44] <pingouin> higuita: but changing the default value , make it work
[01:01:51] <pingouin> higuita: debian ;)
[01:02:09] <higuita> i tested it on my machine and it game me the message too big
[01:02:17] <higuita> i'm using 2.5.1 IIRC
[01:02:18] <pingouin> ii  postfix                                         2.3.8-2+b1
[01:02:29] <higuita> mail_version = 2.5.1
[01:03:08] <higuita> i would say that 2.x would give the message too big, but look like i'm mistaken :)
[01:03:14] <pingouin> postconf mail_version  =  mail_version = 2.3.8
[01:03:48] <pingouin> that's ok now, it solved ;) and i learned something ;)
[01:04:08] <pingouin> but, ok debian version is a bit...old...but stable ;)
[01:06:42] <higuita> postdrop: warning: uid=0: File too large
[01:06:51] <higuita> mail_version = 2.3-20060405
[01:07:26] <higuita> even on a old machine, with a 2.3 version it gives a file too large/message too big error
[01:07:45] <higuita> maybe it was on that versions that they changes that
[01:08:01] <higuita> anyway, glad its solved
[01:13:40] *** GoneWestCoast has quit IRC
[01:14:31] *** jpalmer has quit IRC
[01:19:21] *** hever has quit IRC
[01:22:44] *** Jense has quit IRC
[01:25:46] *** cilly has quit IRC
[01:35:42] *** diveli has quit IRC
[01:37:55] *** ttf has left #postfix
[01:39:12] *** Motoko-chan has quit IRC
[01:43:15] *** growltiger has joined #postfix
[01:51:42] *** crazybyte has quit IRC
[01:59:49] *** growltiger_ has quit IRC
[02:12:49] *** cruxeternus has quit IRC
[02:18:17] *** slackjr has joined #postfix
[02:19:09] *** hark has quit IRC
[02:19:34] *** hark has joined #postfix
[02:19:47] <slackjr> hi all, im new to spam control and im looking for a good soluction for this, what is the best spam control spamassassin or dspam ( or other ) ?
[02:20:16] <sahil> slackjr: there is no one-fits-all.  give more information.
[02:21:24] <seekwill> Both! :)
[02:21:38] <seekwill> Guessing you mean best "free" spam control?
[02:21:58] <sahil> best spam control is staying off the internet and abstaining from email. :-)
[02:22:15] <seekwill> hehe
[02:22:35] <slackjr> sahil: im new to this, i want to know the more effective way to control spam i always use rbls, but for some clients isnt enough...
[02:23:18] <seekwill> Why can't you run both dspam and SA?
[02:23:24] <sahil> slackjr: and for others, it's too much.
[02:24:05] * sahil only runs SA via amavisd, which also runs clamd.  prior to that many postfix-internal checks reduce the amount of spam that even makes it that far.
[02:24:25] <slackjr> im looking for a simple way, i like dspam ( i just read the documentation i never used ) , but few users will report spam ....
[02:24:56] <slackjr> spamassasin have lots of tests, but i dont know how effective it is...
[02:25:13] <seekwill> Is there a good paper out that compares the two?
[02:25:20] <sahil> slackjr: it's only as effective as you make it.  you must tune the rules as you see fit and train the bayes database.
[02:25:25] * sahil shrugs
[02:25:34] <madsage> how old is postfix, just currious. doesnt seem very mature yet.  judging by the fixes.
[02:25:41] <seekwill> heh
[02:25:48] <sahil> the paper, if it were to exist, would be awfully general because each site has its own idiosyncracies.
[02:25:54] <madsage> an upgrade resolved my issues as well
[02:25:56] <sahil> madsage: shoo, troll.
[02:26:08] <madsage> sahil, naw. not trolling
[02:26:27] <slackjr> sahil: im looking just fo personal opinions....
[02:26:39] <madsage> seekwill, thanks for trying to help me this morning. after upgrading all my shit works now.
[02:26:45] *** jonez_ has quit IRC
[02:26:45] <seekwill> My zimbra box I think uses both dspam and sa
[02:26:51] <seekwill> madsage: What was the problem?
[02:26:53] <sahil> madsage: postfix is very mature.
[02:27:07] <madsage> i dont know.. old version with a problem?
[02:27:29] <madsage> all i did was upgrage version a nd everything is working now
[02:27:42] *** madrescher has quit IRC
[02:27:46] <madsage> upgrade^
[02:27:46] <seekwill> heh
[02:27:55] <seekwill> How old was the version you were using?
[02:28:05] <seekwill> How did you upgrade/install it?
[02:28:09] <madsage> 2.2.9 i belive it was. i can check
[02:28:30] <seekwill> Na, not that important. Just curious. As a sysadmin, I always keep track of that kind of stuff
[02:28:40] <seekwill> Our clients sorta... require that.
[02:29:02] *** slackjr has quit IRC
[02:30:53] *** pirho has quit IRC
[02:31:01] *** loadkast has left #postfix
[02:32:59] <madsage> spam vigilante came with version 2.2.9  i rebuilt from source 2.3.8 and everything started working. same configs
[02:33:52] <seekwill> I'd question that...
[02:34:02] <seekwill> Before calling foul play on Postfix
[02:34:07] <madsage> its very possible the packaged 2.2.9 was not right?
[02:34:10] <seekwill> Yeah
[02:34:29] <madsage> maybe they fucked with the source or something i dont know
[02:34:31] <sahil> well, before complaining about postfix, compile from source and try again.  it's typically dumbass packagers that screw it up.
[02:35:22] <madsage> oh i wasnt complaining, if it sounded as such. i take it back. its working wonderfully now
[02:35:40] *** olinux has quit IRC
[02:35:44] <seekwill> the whole "doesn't seem mature" made me feel really bad :(
[02:36:03] <madsage> are you guys contributors? if so.. by no means am i complaining, infact i appreciate all the hard work.
[02:36:20] <sahil> i'm a user.
[02:36:22] <madsage> ok i guess i jumped to conclutions there
[02:36:36] <madsage> conclusions, whatever
[02:36:48] <seekwill> I don't really use Postfix...
[02:37:12] <seekwill> I'm just here to make fun of adaptr and thumbs
[02:37:35] <madsage> ok, well this is working very nice now
[02:37:52] <sahil> seekwill: is your userbase kept on flat files, sql or ldap or none of the above?
[02:38:27] <madsage> openldap > *
[02:38:30] <seekwill> sahil: Not sure what you're talking about
[02:38:37] <seekwill> madsage: Boo! Active Directory!
[02:38:41] <sahil> seekwill: your users authenticate to check email some how, yes?
[02:38:52] <sahil> *where* are their login names, passwords, and other particulars housed?
[02:38:53] <seekwill> sahil: I have many customers
[02:38:57] <sahil> omg
[02:39:02] <sahil> n/m. :)
[02:39:19] <seekwill> So it depends on which customer you are referring to... or my personal email system
[02:39:25] *** nitbix has quit IRC
[02:39:36] *** nitbix has joined #postfix
[02:39:48] <sahil> for illustrative purposes, choose ANY customer.  at random.
[02:39:52] <seekwill> ok
[02:39:54] <madsage> sounds liek he is a windows guy, yes active directory is a spin off of ldap,  why pay for m$ version when there is openldap?
[02:40:04] <seekwill> When you have a Windows network
[02:40:20] <madsage> mmkay, i was just razzin you
[02:40:23] <seekwill> Let's not bash non MTAs :P
[02:40:26] <sahil> haha
[02:40:38] <sahil> slapd
[02:40:57] <madsage> yup, works for us.  i have over 20,000 users
[02:41:09] * cafuego points out openldap and samba work fine if you do have a windows network
[02:41:16] <madsage> ISP
[02:41:36] <seekwill> Small ISP?
[02:41:47] <seekwill> What kind of ISP?
[02:41:49] <sahil> we are growing so i want to move users away from UNIX accounts to virtual.  i've got everything spec'd out and working on a test box EXCEPT a way to let users change their passwords themselves, remotely, if the information is stored in a passwd-style password flatfile.  this is unrelated to postfix, but since we're going off topic here. :)
[02:42:06] <seekwill> sahil: Currently, I tend to favor SQL databases to store that info
[02:42:21] <seekwill> ah
[02:42:22] <sahil> seekwill: i find it overkill but might have to go that route.
[02:42:32] <cafuego> 's wat i use as well, on the mail/ftp system.
[02:42:35] <seekwill> Well, I use SQL because it integrates into other solutions
[02:42:43] <madsage> no, the shit i was working on is for a llc of the owner of the ISP, which is small. we have a class B
[02:42:45] <cafuego> and pam_mysql means it also works fine for system users :-)
[02:42:46] <seekwill> LDAP is pretty good too, but I already have a user database in SQL
[02:43:14] <sahil> i guess i'll have to write a perl script that runs off the web and manipulates the passwd database files.
[02:43:42] <seekwill> How do you currently handle your users?
[02:44:04] <sahil> they all have UNIX accts that have their shell set to nologin, so they have entries in the "real" passwd database of the mail server.
[02:44:25] <sahil> we have a client coming on in 1wk and i really want to use it as an opportunity to start migrating everyone to non-UNIX virtual accounts.
[02:44:41] *** nitbix has quit IRC
[02:44:52] <madsage> sounds like a good candiate for ldap
[02:44:55] *** nitbix has joined #postfix
[02:45:09] <madsage> or NIS maybe
[02:45:11] <cafuego> sahil: I'd just suck them into mysql, makes writing a webapp for chaging password trivial too.
[02:45:36] <sahil> cafuego: i have very poor mysql knowledge.  have been putting it off intentionally.  maybe it's time i made the jump. :)
[02:45:52] <cafuego> sahil: Well, it'no different for ldap or postgres
[02:46:00] * seekwill checks what channels he's in
[02:46:05] <cafuego> s/it'/it'd be /
[02:46:10] <seekwill> I say a Postgres database if you don't have one already
[02:46:13] <sahil> cafuego: *nod*
[02:46:32] <madsage> ldap is much easier to learn than sql, ok i'll jump off my ldap soap box.  no pun intended
[02:46:33] <seekwill> I think RHEL's postfix comes preconfigured with PG
[02:46:40] <cafuego> sahil: I just used mysql coz i knew it. There's a prtty hood howto on how to set that up with postfix and courier
[02:46:51] * seekwill slaps cafuego with dovecot!
[02:46:54] <sahil> cafuego: link?
[02:46:58] <sahil> yes, dovecot >*!
[02:47:04] <cafuego> sahil: google://etch+ispmail
[02:47:14] <sahil> ah, that one.
[02:47:44] <cafuego> and yes, it'll work fine with dovecot too. and cyrus.
[02:47:58] <cafuego> modularity ftw
[02:48:06] <sahil> ha, word.
[02:48:11] <sahil> ok, i'm off to do some reading, thanks folks.
[02:49:39] <cafuego> does dovecot do server side filtering?
[02:49:50] <cafuego> actually, never mind
[02:50:01] <seekwill> sahil: heh, going back... it would be easier to just say what kind of authentication I like, vs. what I use. Maybe what I use was for a specific case that I wouldn't use again?
[02:50:19] *** diveli has joined #postfix
[02:52:56] *** xnixan has quit IRC
[02:54:16] *** maxquerry has joined #postfix
[03:05:55] <sahil> whatevs.
[03:07:00] *** PcPixel has joined #postfix
[03:07:15] *** magyar has quit IRC
[03:07:23] <PcPixel> if i stop postfix and delete my verified senders database, what would cause it to not get recreated? or does it get written later on
[03:10:13] *** Tachy_ has joined #postfix
[03:11:30] <PcPixel> could it be SELinux?
[03:11:54] *** vegbx has quit IRC
[03:11:55] *** Motoko-chan has joined #postfix
[03:17:11] *** Danskmand1 has joined #postfix
[03:17:43] <PcPixel> nobody? :)
[03:23:16] *** Tachy has quit IRC
[03:25:36] <PcPixel> ok thats odd, the file got created at one point, but the folder im storing it in has only read permission for postfix. could that be it?
[03:28:09] <PcPixel> ah well. ill try thursday. day off tomorrow :)
[03:28:11] <PcPixel> night all!
[03:28:13] *** PcPixel has quit IRC
[03:33:44] *** Danskmand has quit IRC
[03:49:45] *** McJerry has quit IRC
[03:54:39] *** m1n3s6 has quit IRC
[03:58:15] *** AcTiVaTe has joined #postfix
[03:58:19] *** seekwill has quit IRC
[04:02:01] *** maxquerry has quit IRC
[04:03:14] *** pickcoder has joined #postfix
[04:03:54] *** jpalmer has joined #postfix
[04:04:32] *** Kako has joined #postfix
[04:07:34] *** Kako_ has quit IRC
[04:11:41] *** ki__ has quit IRC
[04:16:42] *** magyar has joined #postfix
[04:19:53] *** toytoy has quit IRC
[04:21:02] *** Azrael_- has quit IRC
[04:21:15] *** Azrael_- has joined #postfix
[04:23:18] *** nphase_ has joined #postfix
[04:23:26] *** Kako has quit IRC
[04:23:55] *** Kako_ has joined #postfix
[04:36:30] *** _barnie has joined #postfix
[04:42:38] *** nphase_ has quit IRC
[04:45:22] *** amrit|wrk is now known as amrit|afk
[04:45:47] *** overrider has joined #postfix
[04:46:16] *** barnie has quit IRC
[04:46:27] *** _barnie is now known as barnie
[04:50:57] <overrider> hi, my users cannot send mail via port 25 in some countries, how can i make postfix listen for mail on a higher port, say 10025 in addition to port 25? thanks
[04:52:38] <sahil> overrider: use submission port 587.
[04:54:56] <sahil> overrider: you'll see the service master.cf; activate it and allow sasl-authenticated users to relay via there.
[05:01:03] <overrider>  sahil, this has worked, thank you very much. now do you think that when people block the normal port 25 (i guess to fight spam), they will not also more than often block 587? everytime this one user travels to USA, or israel, he cannot send mail because it seems they block him.
[05:07:09] <pickcoder> overrider: webmail??
[05:08:27] <overrider> pickcoder, yea thats what i would do, but my users and also staff want to use their own email client. you cannot expect your boss or manager to jump trough hoops if all there is to it for now is either a vpn tunnel, or accepting mail for authenticated users on a high arbitrary port
[05:08:30] *** Juspion has joined #postfix
[05:11:37] <Dominian> Normally 587 isn't blocked..
[05:11:49] <Dominian> as it is the preferred method of authenticating offsite usrers
[05:17:21] *** Danskmand1 has quit IRC
[05:19:11] *** lvictor has joined #postfix
[05:19:36] <sahil> overrider: you should be ok having them relay through 587.  i don't know of a single ISP that blocks that outgoing.
[05:20:01] <Dominian> and if they do.. they are morons.
[05:20:05] *** lvictor has quit IRC
[05:23:59] <sahil> ya!
[05:33:19] *** master_of_master has quit IRC
[05:38:41] <cafuego> telstra are, but they don't block 587 (They block 465 tho)
[05:41:37] <Dewi> cafuego: ugh, really?
[05:41:53] <Dewi> I know my dad has it happen various places while travelling in asia
[05:42:06] <Dewi> but telstra... heh
[05:42:15] *** gonewestcoast has joined #postfix
[05:43:32] <Dewi> so what's port 587?
[05:43:58] <Dewi> my services files just say "submission"
[05:44:38] <Dewi> is that the port that technically works just like 25, but is designated specifically for submission from mail clients?
[05:44:51] <Dewi> and if so... is crypto possible?
[05:44:59] <overrider> sure
[05:45:27] <Dewi> port-465-style TLS, or differently?
[05:46:49] <Dewi> (I am useless at keeping track of all the variants, but I promise to note this stuff down from now on!)
[05:49:21] *** Juspion has quit IRC
[05:57:08] *** gonewestcoast has quit IRC
[05:58:31] <lunaphyte> port 587, or submission, is meant for communication between muas and mtas. starttls can be employed, if desired, but isn't a requirement.
[05:59:30] <lunaphyte> port 465 is really not used at this point.  it was intended to be smtps only.
[06:12:09] *** toytoy has joined #postfix
[06:13:02] <cafuego> Dewi: On non-business cable/dsl... yup.
[06:16:04] *** jonez has joined #postfix
[06:24:37] *** saurabhb has joined #postfix
[06:33:05] *** mase_desktop has quit IRC
[06:34:54] *** AcTiVaTe has quit IRC
[06:38:11] *** pickcoder has quit IRC
[06:53:19] *** gonewestcoast has joined #postfix
[06:58:33] <Dewi> lunaphyte: 465 is very useful for using a remote (trusted) network to send mail
[06:59:00] <Dewi> I will look into starttls
[06:59:25] <Dewi> Is SASL the only auth method in common use?
[06:59:54] <Dewi> (other than being on the right network, the most common auth method!)
[07:14:47] *** ming_zym has joined #postfix
[07:30:06] *** nphase_ has joined #postfix
[07:30:55] *** nphase_ has quit IRC
[07:31:03] *** nphase_ has joined #postfix
[07:34:04] *** AcTiVaTe has joined #postfix
[07:36:20] *** madrescher has joined #postfix
[07:42:47] *** Kako_ is now known as Kako
[07:45:08] *** mari1 has joined #postfix
[07:45:54] *** mari1 has quit IRC
[07:47:41] *** saurabhb has quit IRC
[07:51:45] *** AcTiVaTe has quit IRC
[07:55:55] *** madsage has quit IRC
[08:02:36] *** Zeit|awy_ has quit IRC
[08:13:32] <cmot> Yo all (again ... no answer yesterday evening...)
[08:14:26] <cmot> How to direct all mail for a domain (not mydestination) into a command, preserving (or at least passing along in some way) full envelope?
[08:15:04] <f3ew> cmot, transport to a pipe(8)
[08:15:23] *** seekwill has joined #postfix
[08:15:25] <cmot> f3ew, Hmmm....  will look into it.
[08:15:52] <cmot> f3ew, (haven't used pipe before) how is the envelope usually passed along?
[08:16:01] <cmot> in env vars (like local)?
[08:16:09] <f3ew> cmot see TFM
[08:16:14] <f3ew> you have choices
[08:16:20] *** nphase_ has quit IRC
[08:16:33] * cmot wanders over to that xterm in the corner
[08:16:34] <cmot> thanks
[08:16:52] <cmot> (I was reading about virtual but not entirely happy...)
[08:20:08] *** gonewestcoast has quit IRC
[08:20:24] <seekwill> How could you not be happy about virtual?!?!
[08:23:00] <f3ew> Doesn't send to commands
[08:23:03] <cmot> seekwill, to deliver to a command, I need to define an additional alias, and as far as I can see, passing on the original envelope is non-trivial (one solution I've seen is using pcre maps)
[08:23:05] *** ming_zym has quit IRC
[08:23:39] *** kRocKodile has joined #postfix
[08:23:41] <seekwill> oh
[08:23:55] <cmot> seekwill, so I'd like to avoid all that.  I've thought about using a transport before but didn't look hard enough to discover pipe
[08:29:25] *** Filbert has joined #postfix
[08:31:10] *** cilly has joined #postfix
[08:34:17] <cmot> f3ew, yep, pipe(8) will do the trick.
[08:35:07] <cmot> f3ew, does postfix have a bug/wishlist item tracker?  I think what would be nice is to be able to tell pipe to emulate the local(8) interface for delivering to an external program.
[08:35:24] *** Motoko-chan has quit IRC
[08:36:43] <cmot> (so a tool could either be put into /etc/aliases to handle a few addresses on mydestination, or could be called as a pipe(8) transport to handle a full domain, without wrappers or long commandlines etc. being necessary to handle the different ways of passing the envelope data.
[08:36:46] <cmot> )
[08:37:10] <cmot> But as said, that's a pure wishlist item.
[08:43:25] *** madrescher has quit IRC
[08:44:14] *** sophokles has joined #postfix
[08:44:57] *** sophokles has joined #postfix
[08:47:21] *** gonewestcoast has joined #postfix
[08:50:34] *** phnord has joined #postfix
[08:55:10] *** sophokles has quit IRC
[08:57:52] *** sophokles has joined #postfix
[09:01:28] *** xnixan has joined #postfix
[09:10:24] *** seekwill has quit IRC
[09:15:53] *** cmot has quit IRC
[09:23:51] *** hooch_ has joined #postfix
[09:25:32] *** hooch has quit IRC
[09:38:22] *** xous has quit IRC
[09:45:08] *** gonewestcoast_ has joined #postfix
[09:47:13] *** gonewestcoast_ is now known as Sorthum
[09:51:55] *** hooch_ is now known as hooch
[09:53:17] *** alys has joined #postfix
[09:55:10] *** alys has quit IRC
[09:55:20] *** xous has joined #postfix
[09:57:45] *** war9407 has joined #postfix
[10:00:37] *** gonewestcoast has quit IRC
[10:06:10] *** tshine has quit IRC
[10:07:17] *** alienbrain has joined #postfix
[10:17:37] <cedric3> hi i have a probleme i use yaa autoresponder reply an email to user at autoreply dot domain.fr domain.fr is ok but autoreply.domain.fr is not ok i have an errorSender address rejected: Domain not found (in reply to RCPT TO command))
[10:17:43] <cedric3> if one ave any idea very thanks
[10:18:40] *** rizi has joined #postfix
[10:20:10] *** ming_zym has joined #postfix
[10:22:04] *** Sorthum has quit IRC
[10:22:43] *** tomocha6 has quit IRC
[10:25:29] *** rizi_ has quit IRC
[10:28:41] *** Fallenou has joined #postfix
[10:30:23] *** Fallenou has quit IRC
[10:30:37] *** Andri[DK] has joined #postfix
[10:31:13] *** overrider has quit IRC
[10:31:37] <Andri[DK]> I've having weird problems with Postfix after reinstalling Centos on a machine. Got a recent backup of my configuration files but I'm getting 'Permission denied' errors when I start postfix or when i run postmap on the configuration files.
[10:31:50] <Andri[DK]> However the permissions on the "old" config and the "new" config are the same
[10:32:39] *** noneo has joined #postfix
[10:39:48] *** sophokles has quit IRC
[10:40:23] *** sophokles has joined #postfix
[10:46:01] *** thumbs has quit IRC
[10:46:54] *** thumbs has joined #postfix
[10:47:07] <Andri[DK]> nvm, just copying the needed config files, one by one worked fine
[10:50:47] *** toytoy has quit IRC
[10:53:36] *** rakosh76 has quit IRC
[10:58:36] *** sophokles has quit IRC
[11:02:11] *** growltiger has quit IRC
[11:03:52] *** sophokles has joined #postfix
[11:07:58] *** smultron has joined #postfix
[11:14:31] *** Andri[DK] has quit IRC
[11:16:44] *** smultron has left #postfix
[11:19:27] *** rizi has quit IRC
[11:21:20] *** hever has joined #postfix
[11:31:11] *** madrescher has joined #postfix
[11:43:31] *** diqpib has joined #postfix
[11:57:55] *** Niemi has joined #postfix
[12:05:27] *** tomocha6 has joined #postfix
[12:16:16] *** morpheus08 has joined #postfix
[12:17:49] *** mm1 has quit IRC
[12:17:49] *** Internat has quit IRC
[12:18:07] *** Internat has joined #postfix
[12:18:25] <morpheus08> salve helo
[12:18:33] <morpheus08> ce qualcuno che parla italiano?
[12:20:20] <tuxick> many italians do
[12:21:50] *** PhilKC has joined #Postfix
[12:22:31] <morpheus08> don't understend
[12:27:07] *** ming_zym has quit IRC
[12:27:09] <cedric3> nobody use yaa ?
[12:27:44] <morpheus08> I want to create a mail server of my sister to tell me how do you know?
[12:29:20] <sysmonk> ouch, a mail server OF a sister
[12:29:33] <lennard> don't make fun of the poor guy :P
[12:29:38] <sysmonk> chop her first, then sell as meat, then you can buy a server from those money
[12:29:49] <sysmonk> then you can come here :P
[12:29:56] <f3ew> morpheus08, look for Md in this server
[12:30:04] <f3ew> He isn't in the channel though
[12:30:22] <sysmonk> f3ew: allow_mail_to_ircnicks is off!
[12:30:22] <sysmonk> ;)
[12:31:10] <morpheus08> whot is Md?
[12:32:16] <f3ew> * [Md] (i=md@freenode/staff/md): Marco d'Itri
[12:32:17] <f3ew> * [Md] #obluraschi #dovecot #udev #upstart #ipv6 #linux-it
[12:32:17] <f3ew> * [Md] irc.freenode.net :http://freenode.net/
[12:32:36] <morpheus08> I want to create a mail server of backup to tell me how do you know?
[12:36:35] *** morpheus08 has quit IRC
[12:37:46] *** jelly has quit IRC
[12:43:41] *** madrescher has quit IRC
[12:44:04] *** Bejgli has joined #postfix
[12:46:46] *** sysadmin-lb22 has joined #postfix
[12:46:55] *** madrescher has joined #postfix
[12:47:34] <sysadmin-lb22> hi all ..how can I force held emails to be handled ?
[12:48:18] <f3ew> mailq -q
[12:49:41] *** cpm has joined #postfix
[12:52:22] <cedric3> cpm : hi can i ask you one question please for yaa i have only one problem after it's good thanks
[13:00:28] *** madrescher has quit IRC
[13:04:00] *** keffer has quit IRC
[13:04:48] *** noneo has quit IRC
[13:06:40] *** noneo has joined #postfix
[13:08:40] <cpm> !ask
[13:08:41] <knoba> cpm: "ask" : If you have a question, just ask. Precise questions lead to precise answers. Vague descriptions of your problem will get you nowhere. See also: http://workaround.org/moin/GettingHelpOnIrc
[13:14:33] *** m_p has joined #postfix
[13:17:40] *** nphase_ has joined #postfix
[13:18:14] *** dinar has joined #postfix
[13:21:18] *** m_p has quit IRC
[13:23:03] *** m_p has joined #postfix
[13:27:14] *** nardul has joined #postfix
[13:39:31] *** pulsar has quit IRC
[13:40:53] <dinar> hello
[13:41:10] <dinar> i want to make a webmail
[13:41:34] <dinar> first i want to make mail to access with evolution, opera
[13:42:02] <dinar> i installed dovecot it seems to be working
[13:42:48] *** havvg has joined #postfix
[13:43:05] <dinar> i installed exim and could not configure it for a little amount of time
[13:43:15] <dinar> i read about postfix
[13:43:35] <dinar> see that there is more people in this channel to help
[13:43:43] <dinar> read that it is more secure
[13:44:02] <dinar> and installed postfix
[13:44:21] <dinar> os is ubuntu 7.10
[13:44:32] <dinar> i read help.ubuntu.com
[13:45:16] <dinar> https://help.ubuntu.com/8.04/serverguide/C/postfix.html and https://help.ubuntu.com/7.10/server/C/postfix.html
[13:46:04] <dinar> exim did not work also postfix is not working ...seems to me..
[13:46:21] <dinar> says "relay not permitted"
[13:47:06] <dinar> and also one message is sent but i don't see it in evolution
[13:47:18] <f3ew> !debug
[13:47:19] <knoba> f3ew: "debug" : http://www.postfix.org/DEBUG_README.html : a good starting point for how to deal with problems and to report information to those who might help. Post your information in a pastebin such as http://pastebin.ca/ or http://rafb.net/paste/ .
[13:47:20] <dinar> i sent it with telnet
[13:48:05] <cpm> !basic
[13:48:06] <knoba> cpm: "basic" : http://www.postfix.org/BASIC_CONFIGURATION_README.html : a good starting place for Postfix beginners, many common questions are answered here.
[13:53:02] *** pulsar has joined #postfix
[13:53:23] <cedric3> cpm : when i send a mail i receiv a notification  to user at autoreply dot domain.fr but  i have this error  Sender address rejected: Domain not found (in reply to RCPT TO command))  i think the smtp of the user try to see if autoreply.domain.fr is  solve by dns but the dns i have domain.fr not autoreply.domain.fr
[13:54:02] <cedric3> cpm : when you receiv a respondeur notification is to user at domain dot Fr or user at autoreply dot domain.fr
[13:54:05] <cedric3> thanks for your help
[13:54:56] <cedric3> i don't know if you understand me
[13:57:57] *** Jense has joined #postfix
[13:57:57] *** nardul has quit IRC
[14:05:05] <cedric3> cpm : and if you have user at autoreply dot domail.fr have you modify your dns ?
[14:06:19] <sysmonk> o_o
[14:06:27] <sysmonk> is cpm on my ignore list, or what?
[14:06:53] <cedric3> sysmonk : why you not see cpm on the list user channel ? :)
[14:09:26] <lunaphyte_> yeah, i don't see cpm either.
[14:12:51] <sysmonk> no, i do, but i don't see that cpm would talk here
[14:13:04] <cpm> cedric3, on my machine, autoreply.domain.tld is a virtual domain.
[14:13:06] <f3ew> cpm !basic
[14:14:33] *** jelly has joined #postfix
[14:14:43] <cedric3> cpm : you have tow domain  domain.tld and autoreply.tld because  i have a virtual domain domain.tld
[14:15:42] <cedric3> is it normal for you if i have one virtual domain domail.tld and when i receiv a mail and i am on holliday i send the notification autoreply.domail.tld and this not work
[14:18:53] *** madrescher has joined #postfix
[14:19:55] <cedric3> cpm : i  try a test and see if it's a bug or no
[14:25:47] <cpm> cedric3, I don't know what to tell you. I followed the instructions that came with yaa.pl, adapted them to my environment, and it works fine.
[14:26:59] *** nardul has joined #postfix
[14:29:12] *** m0f0x has joined #postfix
[14:29:16] <cedric3> cpm : ok  thanks i try to see if's it's an error or no
[14:29:27] <nardul> Hello, just a quick question. Does "relay_recipient_maps = hash:/etc/postfix/relay_recipients" work with "relay_recipient_maps = hash:/etc/postfix/relays/*"  .  We have alot of domains,w ith alot of users. And we'd like to be able to automatically update userfiles, it's easier if they're in seperate files. And it looks better in main.cf only to have one *, instead of say, 200 different files.
[14:29:41] <nardul> Oh, and awesome software.
[14:29:53] <cpm> cedric3, you've been messing with this for many months, it's an afternoon type of problem, maybe a few days to fine tune it. Perhaps you need a different solution.
[14:31:14] <cedric3> cpm : yaa work  but i have a more domain and user use my serveur mail postfix
[14:32:32] <cedric3> i search a good autorespondeur on linux free but there are not more i see yaa or vacation but there solution is not complete i must modify the source script
[14:32:58] *** nardul has quit IRC
[14:34:54] *** nardul has joined #postfix
[14:35:21] <nardul> My computer just shut down, but i'm back and waiting for an answer for my previous question.
[14:35:54] <f3ew> nardul, use make(1) to build your maps
[14:35:59] <f3ew> or use a RDBMS or LDAP
[14:37:23] <cedric3> i think  yaa now work  i see  Sender address rejected: Domain not found (in reply to RCPT TO command))  but it's not my problem it's smtp of where i send the notification  exemple :  Connection refused (port 25)
[14:37:42] <cedric3> cpm : and very thanks for your help
[14:37:51] <jduggan> is there any way to make the cidr:// maps lookup via mysql?
[14:38:00] <jduggan> mysql://cidr:// sorta deal? :)
[14:38:53] <jduggan> cedric3: use sieve with vacation :)
[14:39:48] *** fortsev_ has joined #postfix
[14:42:32] *** Swat2 has joined #postfix
[14:43:13] *** Jense has quit IRC
[14:43:17] <cedric3> cpm :  i paste a small log when you have a time to see i think it's a basic problem http://pastebin.com/m4f585393
[14:43:24] <cedric3> http://pastebin.com/m4f585393
[14:44:42] <nardul> f3ew, I'm not sure what you mean, but 'make'
[14:44:57] <nardul> f3ew, to cat all the files into a single file, and postmap the file?
[14:45:34] <nardul> The servers are different places, so i don't think LDAP is possible. BUt my understanding of it is flawed.
[14:45:37] *** Jense has joined #postfix
[14:46:58] <cpm> cedric3, my autoreplies DO NOT originate from user at autoreply dot domain.tld but rather from user at domain dot tld
[14:47:48] <dinar> http://pastebin.ca/1087108
[14:49:19] <cedric3> cpm : ok i understand but i search on the config file to replace autoreply.domain.tld to   user at domain dot tld  i want to have the same of you   i want to autoreplies user at domain dot tld
[14:50:24] <cedric3> thanks i search i don't want to  take your time and thanks
[14:51:38] <cpm> it's not a question of time, I just don't think I can help you.
[14:51:53] <cpm> again, I got the software, read the docs, incorporated it. done.
[14:52:30] <cedric3> ok  thanks
[14:52:48] <cpm> sorry
[14:52:55] <dinar> http://pastebin.ca/1087118
[14:53:53] <cedric3> no problem  i search how to use user at domain dot tld not autoreply.domain.tld thanks  for your help ;)
[14:53:58] *** fort_sev has quit IRC
[14:54:48] *** diqpib has quit IRC
[14:55:08] *** diqpib has joined #postfix
[14:56:32] <dinar> anybody can change what i pasted?
[14:57:44] <dragonheart> dinar: why would we want to?
[15:00:34] *** Snitch has quit IRC
[15:01:34] <dinar> why i don't see that message in inbox? (http://pastebin.ca/1087108: "123")
[15:06:06] <dinar> as if its maildir is in another place
[15:07:11] <dinar> i tried to send with opera from and to dinar@localhost, also no message, no error.
[15:08:19] <dinar> is my postconf -n output normal?
[15:09:00] *** toytoy has joined #postfix
[15:13:25] *** PhilKC has quit IRC
[15:13:49] <dinar> why it is "home_mailbox = Maildir/", not "home_mailbox = ~/Maildir/"?
[15:14:08] <dinar> no..
[15:14:16] <dinar> is hat correct?
[15:14:23] <dinar> that
[15:18:51] <dinar> why don't these mtas simply work? even after dpcg reconfigure?
[15:19:09] <dinar> (sudo dpkg-reconfigure postfix)
[15:24:34] <dinar> (i "switch"ed to postfix not only because heard "more secure")
[15:25:32] <dinar> i want to make an imap mail server as simple as possible.
[15:25:45] <dinar> even don't do ssl
[15:25:58] <dinar> if will need will make in future
[15:27:31] <dinar> irc is unhelpful seems to me with mail servers...
[15:29:20] <lennard> that, or we're all just busy people
[15:30:36] <lennard> dinar: have you looked in the logs?
[15:30:49] <dinar> no
[15:30:57] <lennard> I suggest you do
[15:31:01] <lennard> those generally help
[15:31:11] <lennard> in the case of debian its probably /var/log/mail.info
[15:34:10] *** dinar_ has joined #postfix
[15:34:10] *** dinar has quit IRC
[15:35:07] *** magyar has quit IRC
[15:40:01] *** Andri[DK] has joined #postfix
[15:41:27] <Andri[DK]> I just upgraded on of my postfix servers (from Fedora Core 3) and now Postfix isn't rewriting the From: in mail coming from our internal Exchange server anymore. So people get exchange.domain.com as a from addressm, instead of doamin.com like it used to be. Any hints?
[15:41:52] <f3ew> masquerade_domains setting
[15:41:55] <Dominian> Check your config?
[15:42:11] *** edje2 has joined #postfix
[15:42:12] <Dominian> More than likely the upgrade you performed obseleted some of the settings you were used
[15:42:15] <Dominian> using
[15:42:18] <f3ew> dinar_ home_mailbox is a path relative to ~
[15:42:35] <Andri[DK]> f3ew, its set as "domani.com, domain.is"
[15:42:41] <Andri[DK]> without the type :)
[15:42:42] <Andri[DK]> typo
[15:42:56] *** master_of_master has joined #postfix
[15:43:12] <Andri[DK]> the return path is domain.com, the from address just isn't rewritten
[15:45:30] <edje2> hi all, i am using postfix and spamassassin. is there a way to stop mail processing if a user is unkown in the virt usertable? now the messages is scanned and discarded after the whole process
[15:47:20] <roe_> verified recipients?
[15:47:49] <Dominian> edje2: er.. your system should do recipient verificationb efore it even HITS the scanning process...
[15:47:59] <Andri[DK]> Dominian: any ideas? I've been googling this for hours
[15:48:15] <Dominian> Andri[DK]: masquerade_domains as f3ew pointed out?
[15:48:20] <edje2> Dominian: exactly, how do i set the order in which these steps are taken?
[15:48:37] <Andri[DK]> Dominian, its set as the domain
[15:50:04] <f3ew> smtp_generic_maps <=== perhaps?
[15:50:20] <Dominian> edje2: smtpd_recipient_restrictions
[15:50:39] <Dominian> edje2: usually applys to anything coming inbound to your server.. you can set the order there.
[15:51:13] <edje2> Dominian: alright, let me take a look at it it is in main.cf i assume?
[15:53:09] <Dominian> yes
[15:53:46] *** m_p has quit IRC
[15:58:57] <Andri[DK]> f3ew, been looking through sender_canonical and the generic tables... just can't get it working :S
[16:01:01] *** kRocKodile has quit IRC
[16:01:39] <Andri[DK]> are there any debug options to specifically debug rewrite procedures?
[16:04:10] <f3ew> Andri[DK], I generally run the service in verbose mode
[16:05:05] <Andri[DK]> k, thx
[16:05:38] <cedric3> cpm : i see i think my problem i don't use  rewrite_recipient  rewrite_sender  i try now
[16:06:54] <edje2> hmm... the man page is not all to clear to me.  would i get something like:     -o smtpd_recipient_restrictions=smtpd_reject_unlisted_recipient,reject to stop mail for non existing users ?
[16:10:13] <dinar_> a part from /var/log/mail.log : http://rafb.net/p/a63I6l14.html
[16:10:55] <dinar_> first is when i sent with telnet second is with opera
[16:12:14] *** seekwill has joined #postfix
[16:16:01] *** nphase_ has quit IRC
[16:16:07] <dinar_> http://rafb.net/p/oblG7415.html
[16:16:39] <dinar_> this is in /var/log/mail.warn
[16:19:13] *** Juzzy has left #postfix
[16:20:11] *** elux has joined #postfix
[16:20:13] <elux> hey guys
[16:20:34] <elux> im getting a 554 Denied??(Mode: normal) (in reply to end of DATA command) response from a server
[16:20:46] <elux> what could be the reason? i looked up the SMTP code and it means "transaction failed"
[16:21:04] <cpm> yup. That's what it means.
[16:21:11] <elux> what could be the causes of this?
[16:21:12] <cpm> sounds like they don't want to hear from you
[16:21:32] <Dominian> elux: what domain are you sending to?
[16:21:40] <elux> riskmetrics.com
[16:22:21] <Dominian> hrm.. it could be anumber of things
[16:22:47] <cpm> yeah, not the least of which is that they use mxlogic
[16:23:35] *** nardul has quit IRC
[16:23:43] <elux> not a popular mail system?
[16:24:47] <cpm> gives me a nice 250 status sent. No worries.
[16:24:59] <elux> in this case it doesnt work tho...
[16:25:27] <cpm> works for me.
[16:26:11] <cpm> elux, you sending them through your postfix box and failing?
[16:26:16] <cpm> what's your boxes hostname?
[16:26:23] <elux> ziggy
[16:26:45] <cpm> and it's domain? it's fully qualified domain name?
[16:26:51] <elux> ziggy.nulayer.com
[16:26:53] <elux> yes it is
[16:27:08] *** Kako has quit IRC
[16:27:28] <elux> mail.canadianhedgewatch.com is the host im trying to send mail from .. which really is the same server
[16:27:36] <rob0> "(in reply to end of DATA command)" might mean that they have a pre-queue content filter which doesn't like what you're sending.
[16:27:47] <cpm> actually, ziggy's IN A record reverses to a PTR that doesn't resolve to a hostname. That might be a fail right there.
[16:28:01] <rob0> MXlogic probably does have a pre-queue content filter
[16:28:06] <rob0> ah
[16:28:25] <rob0> but they're stupid for waiting until end-of-DATA
[16:28:32] <rob0> which is not surprising
[16:28:46] <elux> so the mail client is not sending the end-of-DATE ?
[16:28:55] <rob0> or, maybe it's a scoring system
[16:28:56] *** RaiieL has joined #postfix
[16:29:00] <rob0> !fcrdns
[16:29:01] <knoba> rob0: "fcrdns" : http://en.wikipedia.org/wiki/Forward_Confirmed_reverse_DNS : $myhostname should resolve to your IP address, which in turn should resolve to $myhostname. This is very important if you want big sites to accept your mail. If you can't have it from your ISP, see !relayhost .
[16:29:21] <cpm> elux, just for fun, if you really want this to work, rather than to be pedantically correct, get ONE MX host with a fully qualified domain name, and have the PTR record for it's A record to match. This is good practice.
[16:30:08] <RaiieL> foo at bar dot com, what is the maximum size for foo and for bar (user/domain)?
[16:30:24] <elux> you're saying host ziggy.nulayer.com -> 67.228.9.179 -> ziggy.nulayer.com
[16:30:28] <elux> instead of back to nulayer.com
[16:30:41] <rob0> "postconf -e 'myhostname = nulayer.com'" would fix the fcrdns thing and maybe break a few other things
[16:30:54] <rob0> !basic
[16:30:55] <knoba> rob0: "basic" : http://www.postfix.org/BASIC_CONFIGURATION_README.html : a good starting place for Postfix beginners, many common questions are answered here.
[16:30:58] <elux> ive never had a problem like this
[16:31:19] *** githogori has joined #postfix
[16:31:42] <cpm> elux, technically, it isn't required by RFC that it all match up. But a lot of folks use sanity checks to test that these things are true. It's called best practice.
[16:31:55] <rob0> it's called WAR
[16:32:02] <cpm> rob0, well, that too.
[16:32:17] <elux> lol
[16:32:34] <cpm> I check *only* that a PTR record exists, and that the machine that helos is a fqdn, and that fqdn resolves.
[16:32:46] <cpm> but a lot of other folks are much more strict.
[16:33:15] <rob0> you reject_unknown_helo_hostname ? That would block a lot of spam, but also a lot of MSexChange.
[16:33:31] <roe_> so it would block spam and spam?
[16:33:51] <rob0> roe_, depends who's paying you, I suppose.
[16:34:11] <roe_> I suppose
[16:34:34] <jduggan> rob0: exchange doesnt send fqdn as helo ?
[16:36:03] <Andri[DK]> f3ew, smtp_generic maps worked, thanks... wasnt working because my main.cf didn't have generics defined anywhere :P
[16:37:28] <rob0> jduggan, sure it does, but 99% of those sites seem to run behind some firewall, usually a NAT firewall, so it doesn't know its own FQDN. Plus, clueless admins don't know what FQDN means nor why it matters.
[16:37:56] <rob0> um, maybe we're talking at odds here
[16:38:14] <jduggan> rob0: being strict and rejecting mail from clueless admins is a good thing, no doubt they'll see these rejections and fix it
[16:38:15] <rob0> I mean it sends an UNKNOWN name as helo, not a non-fqdn name.
[16:38:49] <rob0> The name might resolve just fine, behind that NAT firewall.
[16:38:52] *** Andri[DK] has quit IRC
[16:39:03] <rob0> but not out here
[16:39:30] <cpm> rob0, not some many exchange from clueful admins. But some, sure. Oddly, I never get any complains. Yeah, the helo=<exchange.local> go away.
[16:39:38] <cpm> s/some/so
[16:40:06] <rob0> exchange.local is fqdn, but also unknown
[16:40:08] *** RaiieL has left #postfix
[16:40:30] <cpm> yup
[16:40:49] <rob0> reject_unknown_helo_hostname blocks it, but reject_non_fqdn_helo_hostname won't.
[16:40:59] <cpm> as I keep trying to explain to the v6 nazi's, 'Look, if it's .local, I don't EVER want to see it'.
[16:41:19] <cpm> because it's local, so I never should.
[16:41:25] <rob0> right, they have no business sending mail like that
[16:41:58] <cpm> not just that, I don't want iPhones and their bluetooth headsets beating my dns servers up looking for .local
[16:42:57] <elux> thanks for the help guys
[16:43:34] <cpm> best of luck
[16:45:08] *** elux has left #postfix
[16:51:17] *** PcPixel has joined #postfix
[16:52:30] <PcPixel> Two questions: if the directory that my verified senders file islocated in doesnt have write/execute permisions for postfix then it cant create the database file correct? Second, i've seen an upswing in accepted mail on my system. from ~10% accepted to about 20% accepted. but im not getting anny additional alerts from our internal antispam system.
[16:56:42] <jelly> cpm: [if it's .local, I don't EVER want to see it] unless you're standing between a .local domain and the outside world
[16:58:12] *** jimi has joined #postfix
[16:58:49] *** Fallenou has joined #postfix
[16:59:04] <jimi> How can I accomplish this? I want to create 2 groups of users, A & B. If someone in group A sends outbound email, I want it to always_bcc foo@   and if someone in group b sends an email, i want it to always_bcc bar@ , how can I do this?
[17:00:17] <rob0> not always_bcc, it's sender_bcc_maps, pretty simple actually.
[17:00:30] *** edje2 has quit IRC
[17:01:08] <jimi> Can you point me at some documentation? I only have a text browser today :/
[17:02:47] <jimi> Does sender_bcc_maps work on outgoing mail? or only incoming mail from senders?
[17:04:18] <rob0> postconf.5.html has hyperlinks to every parameter, postconf.5.html#sender_bcc_maps in this case. And of course there's always "man 5 postconf".
[17:04:59] <jimi> ty
[17:05:14] <jimi> According to this, it is when mail enters from outside of postfix though.
[17:05:54] <rob0> How are your users submitting mail, if not from outside of Postfix?
[17:06:20] <jimi> oh
[17:06:21] <jimi> duh
[17:07:36] <jimi> so the format for sender_bcc_maps is : from to ?
[17:07:46] <jimi> jimi@localhost jimi at yahoo dot com ?
[17:09:30] *** subq has joined #postfix
[17:09:47] *** subq has left #postfix
[17:12:38] <cedric3> anybody are already use postfix_pcre because i want to rewrite adresse mail thanks
[17:13:34] *** brancaleone has joined #postfix
[17:13:36] <PcPixel> um....?
[17:13:41] *** pickcoder has joined #postfix
[17:17:08] <cedric3> i write on main.cf header_checks = pcre:/etc/postfix/header_checks
[17:17:16] <cedric3> but when i send a mail is not modify headerr
[17:17:30] <PcPixel> header_checks dont modify the header.
[17:18:59] <pickcoder> they do if you use REPLACE or PREPEND
[17:19:02] <cedric3> how modify if my serveur want to send a mail to user at toto dot domain.tld i want it modify to user at domain dot tld i see on the google PCRE can do that
[17:19:41] <cedric3> on the header_check i write this /^([\w\-\.]+) at autoreply\ dot domain\.tld/i      $1 at domain dot tld
[17:20:10] <pickcoder> !header_checks
[17:20:11] <knoba> pickcoder: "header_checks" : a configuration parameter in the main.cf: Optional lookup tables for content inspection of primary non-MIME message headers, as specified in the header_checks(5) manual page.
[17:20:50] <cedric3> yes i think it replace no ?
[17:21:34] <pickcoder> http://www.postfix.org/ADDRESS_REWRITING_README.html
[17:22:42] <cedric3> pickcoder : thanks i read this doc
[17:23:28] *** sysadmin-lb22 has quit IRC
[17:23:58] *** kreg has joined #postfix
[17:24:43] <kreg> why am I having a hard time finding a tool that can parse maillog and count number of authenticated users and show how many per user
[17:25:04] <kreg> want to know who's sending mail the most for the day
[17:25:24] <pickcoder> does pflogsumm do it?
[17:25:33] *** jeffspeff has quit IRC
[17:25:37] <pickcoder> I use mailgraph.. I don't track users.
[17:26:04] <kreg> ive been looking at pflogsum, but so far it doesn't seem to do that specifically
[17:26:12] <kreg> is tracking users unusual?
[17:26:21] <kreg> everything seems to be based on mail, not users.
[17:26:53] <pickcoder> I wouldn't think it'd be unusual
[17:27:06] <kreg> ya, i wouldn't think so.
[17:27:36] <kreg> my system only delivers mail based on smtp auth.    if someones password got picked up by a spammer, i think i'd see high number of deliveryes by that username for the day
[17:28:03] <dusty> Hey guys I have a mailserver running on one vps (postfix/dovecot/amavis/mysql) got another vps and im toying with the idea of setting up a backup mailserver so if the first vps goes down mail still gets routed, how would I go about setting that up in the sense of 'how would it work' ?
[17:28:11] *** jimi has quit IRC
[17:28:32] <pickcoder> kreg: pflogsumm shows messages by sender and recipient
[17:30:37] <pickcoder> dusty: do they both have public IPs?
[17:30:45] <dusty> ofcourse
[17:32:05] <pickcoder> apart from MX, I dunno
[17:32:10] <pickcoder> even that's not perfect
[17:32:35] <pickcoder> I get traffic constantly on my "backup" route
[17:33:03] <pickcoder> I only have one machine running though
[17:33:45] *** phnord has quit IRC
[17:37:11] <cedric3> pickcoder : i see this option sender_canonical_maps  i think this can do rewrite domain name on an adress email but i see  on the autorespondeur documentationPCRE driver can use and parse any postfix pcre tables rewrite recipient * at autoreply dot domain.tld to * at domain dot tld
[17:37:20] <cedric3> "/^([\w\-\.]+) at autoreply\ dot domain\.tld/i      $1 at domain dot tld"
[17:37:40] <cedric3> i use yaa software and i see i can replace by PCRE
[17:43:36] *** Radiance has quit IRC
[17:44:29] <PcPixel> pickcoder: im using postfix-logwatch right now. would you recomend pflogsumm over it, or to compliment it?
[17:46:51] *** Radiance has joined #postfix
[17:52:01] <pickcoder> I don't use the logwatch for Postfix
[17:52:50] <PcPixel> do you like pflogsumm?
[17:55:33] *** alienbrain has quit IRC
[17:59:09] <pickcoder> I use mailgraph and queuegraph
[18:01:29] <PcPixel> are those on the system itself? also my mail server is headless
[18:05:55] *** githogori has quit IRC
[18:06:06] <pickcoder> they are web scripts
[18:06:24] <pickcoder> they don't show user stats
[18:06:44] <PcPixel> ok
[18:09:24] *** jfreeman has joined #postfix
[18:09:38] <jfreeman> usr/bin/sendmail doesn't exist.. is there a sym link i can create to make it work w/ postfix
[18:09:47] <jfreeman> i have apps that call /usr/bin/sendmail but it got deleted on accident
[18:13:56] *** magyar_ has quit IRC
[18:14:11] *** ph8 has joined #postfix
[18:14:49] <ph8> hey guys, i'm just thinking it would be really convenient to store messages for users in a mysql database, does anyone know of anything like that? Presumably there'd need to be mysql-imap as well
[18:15:12] <cpm> sqlmail
[18:15:59] *** edje has joined #postfix
[18:16:30] <cpm> or dbmail, can't rememer
[18:16:49] <cpm> http://www.dbmail.org/index.php?page=overview
[18:16:53] <cpm> yeah, that's it.
[18:17:05] <cpm> zimbra also uses mysql for the mailstore.
[18:17:34] *** Drognan has joined #postfix
[18:18:01] *** jmazaredo has joined #postfix
[18:18:17] <cpm> I find the concept terrifying myself. Not sure why.
[18:18:30] <Drognan> Is there a way to make an address that forwards to all users?  LDAP user db,I'd like not to have to change it if someone else gets a new email
[18:19:15] <edje> hi all, i use spamassassin and postfix. mail always gets scanned, regardless the existence of the recipient. is there a way to stop the process if the local user does not exist? ( i asked earlier, but can;t get it to work)
[18:20:23] <cpm> edje, why would you accept mail for a user that doesn't exist?
[18:20:35] <PcPixel> oh wow, pflogsumm is very nice
[18:20:44] <PcPixel> i didnt know redhat made it available via yum
[18:21:43] <edje> cpm: it is the other way arround: i don't want to scan the ail, i just want to reject it
[18:21:56] <edje> ( and not first scan it and reject it afterwards)
[18:23:31] <cpm> http://www.postfix.org/ADDRESS_VERIFICATION_README.html#recipient
[18:23:33] <jmazaredo> is there a audit software for mail to see all mails that was sent also the attachments it have for future reference?
[18:24:32] <cpm> http://www.postfix.org/LOCAL_RECIPIENT_README.html
[18:24:35] *** toytoy has quit IRC
[18:24:44] *** gonewestcoast has joined #postfix
[18:25:04] *** Preytell has joined #postfix
[18:25:06] *** blackflag has quit IRC
[18:25:14] *** toytoy has joined #postfix
[18:26:26] <Preytell> hello, is there a way in postfix to do the same thing as Exim called an "unseen" delivery to an outside address. Basically is there a way to forward "all" incoming messages to another server without affecting the normal delivery of that message?
[18:26:41] <Preytell> auto_bcc will not work for this.
[18:26:53] <cpm> !always_bcc
[18:26:54] <knoba> cpm: "always_bcc" : a configuration parameter in the main.cf: Optional address that receives a "blind carbon copy" of each message that is received by the Postfix mail system.
[18:27:08] <cpm> no, that's the wrong one
[18:27:12] <Preytell> sorry always_bcc
[18:27:16] <Preytell> will not work.
[18:27:23] <PcPixel> pickcoder: thanks for mentioning pflogsumm. That thing is very useful
[18:27:40] <Preytell> it looks for a local account to copy the message to, not an outside account.
[18:27:46] <cpm> !recipient_bcc_maps
[18:27:47] <knoba> cpm: "recipient_bcc_maps" : a configuration parameter in the main.cf: Optional BCC (blind carbon-copy) address lookup tables, indexed by recipient address. The BCC address (multiple results are not supported) is added when mail enters from outside of Postfix.
[18:28:02] <edje> cpm: thanks, i found that one, but there is no entry with smtpd_recipient_restrictions in my main.cf. i run postfix 2.4.5
[18:28:23] <cpm> edje, put one in there.
[18:28:25] <cpm> !basic
[18:28:26] <knoba> cpm: "basic" : http://www.postfix.org/BASIC_CONFIGURATION_README.html : a good starting place for Postfix beginners, many common questions are answered here.
[18:28:57] <PcPixel> bbl. got to get some studying done.
[18:28:59] *** PcPixel has quit IRC
[18:28:59] <Preytell> I looked at that and I thought it sounded like the server would have to allow relaying to do this.
[18:29:26] <Preytell> with recipient_bcc_maps
[18:29:47] *** jfreeman has quit IRC
[18:29:53] *** dinar_ has quit IRC
[18:29:56] <edje> cpm: thanks i will.
[18:31:00] <jmazaredo>  can i log "all" things that happen mail server? including all messages and attachments that will be stored in a folder for future reference?
[18:32:52] *** netcrash has joined #postfix
[18:33:03] *** kreg has quit IRC
[18:39:54] *** havvg has quit IRC
[18:40:29] *** jfreeman has joined #postfix
[18:40:44] <jfreeman> usr/bin/sendmail doesn't exist. is there  a symlink that i can create to make it exist for postfix?
[18:42:08] <higuita> jfreeman: sendmail is and should exist in /usr/sbin/sendmail
[18:42:14] <cpm> indeed.
[18:42:20] <higuita> no need to put it in /usr/bin
[18:42:24] * cpm doesn't have a /usr/bin/sendmail either
[18:42:30] <cpm> hasn't for quite some time.
[18:42:37] <jfreeman> oh
[18:42:46] <jfreeman> my system is complaining about not having /usr/bin/sendmail
[18:43:02] <cpm> do you have a /usr/sbin/sendmail?
[18:43:05] <higuita> IIRC, the original sendmail also didnt have it in bin... but the mail command is in there
[18:43:24] <jfreeman> i have /usr/sbin/sendmail
[18:43:38] <cpm> hrmm, I have had a /bin/mail but not a /usr/bin/mail, unless I was doing something odd.
[18:43:39] <jfreeman> [root@intranet sbin]# echo "test" | mail -v me at you dot com
[18:43:39] <jfreeman> /usr/sbin/sendmail: No such file or directory
[18:43:52] <jfreeman> but, the file exists.
[18:44:01] <higuita> your system is wrongly configured, point the program to /usr/sbin/sendmail... but it its too much work, ok, create the synlink... isnt the most correct thing, but also, no harm done
[18:44:05] <jfreeman> sendmail           sendmail.postfix   sendmail.sendmail
[18:44:23] <higuita> ls -l /usr/sbin/sendmail
[18:44:32] <higuita> its probably a bad synlink
[18:45:18] <jfreeman> lrwxrwxrwx 1 root root 21 2008-02-27 16:16 /usr/sbin/sendmail -> /etc/alternatives/mta
[18:45:23] <jfreeman> ah
[18:45:48] <jfreeman> so i can remove /usr/sbin/sendmail and create it at /usr/sbin/sendmail.postfix ?
[18:46:34] *** blackflag has joined #postfix
[18:46:35] *** jmazaredo has quit IRC
[18:46:56] *** Zblakany has quit IRC
[18:47:23] <jfreeman> ah
[18:47:23] <jfreeman> n/m
[18:47:32] <jfreeman> alternatives --set mta /usr/sbin/sendmail.postfix
[18:49:46] <jfreeman> Mail doesn't seem to be getting out of the system though.
[18:50:33] *** jfreeman has quit IRC
[18:51:30] <cpm> take a peek at your logs.
[18:51:42] <cpm> pastebin the last 10 lines from your maillogs
[18:52:18] <jelly> unless, of course, you've left the channel and can't read
[18:52:30] <cpm> heh
[18:52:31] <cpm> indeed
[18:53:26] <higuita> dont worry... he probably have telepatic powers :)
[18:55:02] <edje> cpm: i still have trouble with it. i send mail to nouser at kapitein dot org and it still is just accepted: Jul 30 18:54:07 neo postfix/lmtp[6090]: AB78918B90: to=<nouser at kapitein dot org>, relay=127.0.0.1[127.0.0.1]:10024, delay=41, delays=32/0.21/0.22/8.2, dsn=2.0.0, status=sent (250 2.0.0 Ok: queued as 867ED18BFE)
[19:03:53] *** sophokles has quit IRC
[19:05:54] *** Zblakany has joined #postfix
[19:12:14] *** deftunix has joined #postfix
[19:12:30] <deftunix> hi all
[19:12:38] <deftunix> i've one question about postfix
[19:12:40] <deftunix> and TLS
[19:13:32] <deftunix> is possible in a configuration with postfix support for multiple virtual domain
[19:13:50] <deftunix> using different certificate for each domain
[19:14:17] *** j_s has joined #postfix
[19:15:50] <deftunix> ??
[19:16:55] <cpm> deftunix, the servers at gmail, handle mail for thousands of domains. The servers at Outblaze handle hundreds of thousands of domains. But they don't fuss around giving hundreds of thousands of domains their very own MX. Why should they? Why should you?
[19:17:39] <cpm> if someone wants to pay for their very own boutique MX host, that's fine. Set them up their own box.
[19:19:22] *** Jense has quit IRC
[19:22:01] <seekwill> hehe
[19:22:20] <seekwill> esxi
[19:22:28] <jelly> can I customize the SMTP "queued as [queueid]" response?  I'd like to add something to it, to identify which server mail was forwarded to on the sender *cough*qmail*cough* side
[19:23:16] *** gonewestcoast has quit IRC
[19:23:33] <edje> cpm: i narrowed it down a bit: i have cyrus for local mailbox delivery. if i change that to normal unix mailbox format recipients *are* checked. any idea on how to have cyrus *and* recipient checking ?
[19:24:22] *** hever has quit IRC
[19:24:26] *** havvg has joined #postfix
[19:25:51] <deftunix> cpm, my problem in detail is:
[19:26:00] <deftunix> i've 2 virtual domain
[19:26:10] *** netcrash has quit IRC
[19:27:15] <deftunix> domain1.com and domain2.com
[19:28:17] <deftunix> each with 2 postfix for smtp relay with sasl auth and tls
[19:28:34] <deftunix> and 2 mx server for delivery inbound mail
[19:28:37] <deftunix> now
[19:29:09] <cpm> then both of those boxes should have their own set of certs
[19:29:12] <cpm> what's the problem?
[19:29:19] <deftunix> ok
[19:29:56] <deftunix> and how i will configure it?
[19:30:46] <cpm> you aren't making any sense
[19:31:06] <cpm> how many MX hosts do you have?
[19:32:15] <deftunix> 2 mx host
[19:32:25] <deftunix> and 2 smtp for outbound relay
[19:33:01] <cpm> so, that's 4 boxes? or 2 boxes?
[19:33:13] <deftunix> 4 boxes
[19:33:17] *** brancaleone has quit IRC
[19:33:58] <cpm> so, each one should have it's own set of certificates. A certificate identifies a host, that's the intention. What's the problem?
[19:34:24] *** adaptr has quit IRC
[19:34:35] <cpm> unless you are using wildcard certs, in which case, you could run the same cert across all boxes. But that approach gives me migranes.
[19:34:36] *** adaptr has joined #postfix
[19:34:52] * cpm hides from adaptr
[19:34:56] *** hark has quit IRC
[19:35:25] *** hark has joined #postfix
[19:38:26] <seekwill> 4 boxes... nice.
[19:38:36] * seekwill would use four Solaris zones :)
[19:39:25] *** githogori has joined #postfix
[19:42:02] * cpm slaps seekwill for that Solaris silliness
[19:43:28] *** m1n3s6 has joined #postfix
[19:44:45] *** gonewestcoast has joined #postfix
[19:46:37] *** hever has joined #postfix
[19:47:02] <deftunix> cmp, my dubious is about the possibility of use not one certificate for
[19:47:22] <deftunix> boxe but one certificate for service or cname
[19:48:35] <deftunix> hence for the some box i've in the dns
[19:48:53] <deftunix> smtp.domain1.it and smtp.domain2.it
[19:49:16] *** Lukemob has joined #postfix
[19:49:38] <deftunix> with two certs: one with cname=smtp.domain1.it and one with cname=smtp.domain2.it
[19:49:38] <cpm> deftunix, NEVER EVER use a cname for mail handlers.
[19:49:41] <deftunix> is it possible?
[19:49:50] <cpm> I thought you said you had 4 boxes.
[19:50:28] <deftunix> cmp, ok...
[19:50:32] <cpm> why are you messing with CNAMEs?
[19:51:03] <cpm> I think maybe we are not understanding each other very well.
[19:51:13] <cpm> Do you have 4 physical boxes?
[19:51:21] <cpm> as in real, you can touch them, hosts?
[19:52:24] <deftunix> cmp,
[19:52:25] <deftunix> then I have to use certificates based on box not on service / cname name? is it right
[19:53:11] <cpm> certificates are *SUPPOSED* to be based on the host. That's their entire point.
[19:53:24] * cpm falls over.
[19:54:00] <deftunix> cmp, thank you very much
[19:55:04] <Lukemob> hello
[19:55:20] <Lukemob> i have a problem, when I try to send an email, it doesn't give any error
[19:55:26] <Lukemob> but it also doesn't deliver it
[19:55:33] <Lukemob> it gets in mail queue, and stands there
[19:55:37] <Lukemob> saying, connected timed out
[19:55:40] <Lukemob> ports are opened
[19:56:16] <pickcoder> content_filter
[19:56:18] <seekwill> cpm: Bah, Solaris is cool!
[19:56:21] *** rizi has joined #postfix
[19:56:21] *** neoeinstein has quit IRC
[19:56:53] <Lukemob> pickcoder, was that to me?
[19:57:15] * cpm slaps seekwill again
[19:57:25] <cpm> Say it again! Go ahead, Say it again!
[19:57:40] <pickcoder> Lukemob: yes
[19:58:06] <pickcoder> Lukemob: unless you're using LTMP for transports
[19:58:11] <pickcoder> LMTP
[19:59:24] <seekwill> cpm: I LOVE SOLARIS! I'M GOING TO BE SOLARIS CERTIFIED!!!!!1111one
[19:59:47] * cpm slaps seekwill repeatedly
[19:59:58] * cpm quits. his hand is getting sore
[20:00:18] <Lukemob> pickcoder, I'm not pro... I dont know what LMTP is :)
[20:00:26] <pickcoder> !lmtp
[20:00:27] <knoba> pickcoder: Error: "lmtp" is not a valid command.
[20:00:36] *** hark has quit IRC
[20:01:11] *** hark has joined #postfix
[20:01:28] <pickcoder> Lukemob: pastebin the error log for the queue entry that's stuck
[20:01:46] <pickcoder> maybe the mailq lines for it too
[20:02:56] <Lukemob> http://paste.tclhelp.net/?id=is
[20:03:11] <seekwill> cpm: You know you like Solaris
[20:03:37] <Lukemob> and when I tried to send an email to my own domain from internet mail provider, it said
[20:03:51] <Lukemob> Remote host said: 553 Dynamic pool x.x.x.x
[20:03:59] <Lukemob> x.x.x.x (as an IP address)
[20:04:45] <seekwill> My IP address is 127.0.0.1
[20:05:55] <cpm> seekwill, I'll never admit it.
[20:06:05] <cpm> you can't prove it.
[20:06:19] *** xpoint has quit IRC
[20:06:52] <cpm> I had a roommate who was a solaris administrator, and she was very cute, and very single, vietnamese, and I never would admit anything like that to her, what makes you think I'd admit it here?
[20:07:05] <cpm> she hated linux
[20:07:05] <Lukemob> pickcoder, there's no firewall behind the server
[20:07:05] <cpm> :)
[20:07:10] *** nardul has joined #postfix
[20:07:35] <nardul> Hello, in relay_recipients_map can i put a  ' ! ' infront to dny a spcific recipient?
[20:09:11] *** Andri[DK] has joined #postfix
[20:10:14] <Andri[DK]> Anyone here using Postfix for a filter gateway between Internet and local Exchange server? I'm having problems with rewriting the addresses correctly.
[20:10:42] <edje> cpm: well, in the end i figured it out:  i use to have a catchall in my virtuser table and that needed the local_recipient_maps to be empty. i now removed the catchall and set the local_recipient_maps and everything is working. thanks for your help so far !
[20:12:27] <pickcoder> Lukemob: maybe your ISP is blocking port 25?
[20:12:42] <Lukemob> no
[20:12:44] *** Filbert has quit IRC
[20:13:23] <gonewestcoast> nardul: Try it and see.
[20:13:37] <Lukemob> in front of the server stands router, which makes my own private network, pickcoder
[20:14:02] <pickcoder> does gmail accept on port 25 at all?
[20:14:14] <Lukemob> sure
[20:14:34] <gonewestcoast> pickcoder: How would it NOT? :-)
[20:14:39] <pickcoder> send to another destination
[20:14:48] <pickcoder> if that fails on port 25 then something is blocking outgoing 25
[20:15:05] <gonewestcoast> Not necessarily.
[20:15:11] <gonewestcoast> dig gmail.com mx
[20:15:25] <gonewestcoast> Returns gmail-smtp-in.l.google.com.
[20:15:36] <gonewestcoast> Telnet to that host on 25...
[20:15:37] <gonewestcoast> It answers.
[20:15:47] <gonewestcoast> Or are you talking about something else?
[20:15:48] <Lukemob> pickcoder, no, it's all free
[20:15:58] <pickcoder> Lukemob: you can telnet to port 25 on gmail?
[20:16:34] <gonewestcoast> smtp.gmail.com responds on 25.
[20:16:53] <gonewestcoast> But for outbound you should use SMTP-AUTH on the submission port, 587.
[20:18:09] <Lukemob> pickcoder, no :S but that's strange
[20:18:54] <pickcoder> it's not postfix then
[20:19:05] <Lukemob> Starting Nmap 4.11 ( http://www.insecure.org/nmap/ ) at 2008-07-30 20:18 CEST
[20:19:05] <Lukemob> Interesting ports on smtp.seznam.cz (77.75.72.43):
[20:19:05] <Lukemob> PORT STATE SERVICE
[20:19:05] <Lukemob> 25/tcp filtered smtp
[20:19:08] <pickcoder> no firewall script?
[20:19:08] <Lukemob> what does mean
[20:19:11] <Lukemob> filteret?
[20:19:13] <Lukemob> filtered*
[20:19:17] <Lukemob> no
[20:19:22] <Lukemob> there's no firewall nowhere :(
[20:19:41] <pickcoder> well there HAS to be else port 25 would be accessible
[20:19:48] <pickcoder> maybe gmail is blocking it for you
[20:19:52] <pickcoder> try another domain
[20:19:56] <Lukemob> yeah
[20:20:00] <Lukemob> 25 seems to be blocked
[20:20:02] <Lukemob> globally
[20:20:44] <seekwill> Hmm.. I wonder if I should allow people to relay through me. Would I be popular in #postfix?
[20:21:10] <deftunix> cmp, i've found another solution... it consist of using alternative subject name or CN in my certificat
[20:21:11] <deftunix> e
[20:21:18] <pickcoder> only with people who don't have a relay and port 25 outgoing
[20:21:42] <Lukemob> pickcoder, I will check it more, let me see mate
[20:22:05] <gonewestcoast> Lukemob: The solution to being unable to relay on 25 is to use port 587.  That's what it's FOR. :-)
[20:22:18] <gonewestcoast> RFC 2476 sets this out.
[20:22:27] <seekwill> Which section?
[20:23:25] <Lukemob> gonewestcoast, will it work properly?
[20:24:01] *** idle-boy| has joined #postfix
[20:24:54] <nardul> gonewestcoast, I take it that's a no. As i can't seem to make it work.
[20:25:20] <edje> Lukemob: perhpas your ISP is blocking port 25, try telnet 25 your-isp-relayhost
[20:26:00] <Lukemob> ok let me try
[20:26:18] <Lukemob> squirrelmail said: connection refused, 111 Can't open SMTP stream. - after changing port to 587
[20:26:57] * pickcoder shakes the bottle some more
[20:27:19] <pickcoder> Lukemob: telnet <relay> 25
[20:27:32] <pickcoder> and try to leave squirrelmail out of the issues for now
[20:28:43] <Lukemob> well
[20:28:45] <Lukemob> I read
[20:28:51] <Lukemob> the provider blocks globally port 25
[20:28:58] <Lukemob> I can telnet to his smtp servers
[20:28:59] <Lukemob> :(
[20:29:05] <pickcoder> even the ISP's server?
[20:29:47] <Lukemob> no, I can code to their smtp server on port 25
[20:29:50] <Lukemob> but not others
[20:29:54] <pickcoder> *sigh*
[20:29:58] * pickcoder goes for break
[20:30:09] <Lukemob> im sorry
[20:30:32] <Lukemob> is there any another solution?
[20:30:34] <Lukemob> I could use
[20:30:51] <Andri[DK]> Ok, I had a classic local server -> smtp gateway setup with Sendmail and then later Postfix 2.0 or 2.1. Then I upgraded today and now the envelope address isn't being rewritten as it comes out of the exchange server unless I use generic. But if I use generic then it rewrites the address on its way in as well, and fucks up the aliases used for forwarding the mail to the internal exchange server. Help please.
[20:30:51] <Lukemob> maybe just use his smtp?
[20:31:37] <edje> Lukemob: so they are blocking your outgoing port 25 traffic. a lot of ISP's do, take a look at their website and see if they mention something about it. ( in the spam section probably...)
[20:31:55] <Lukemob> ye they said its blocked mate
[20:32:01] <Lukemob> i will use their smtp servers
[20:32:09] <edje> ok, that will work
[20:34:34] <Lukemob> but its strange I can't receive an emails
[20:34:41] <Lukemob> to my own mail servers
[20:34:48] <Lukemob> is it also caused by the smtp?
[20:35:49] *** amrit|afk is now known as amrit|wrk
[20:38:15] <seekwill> gonewestcoast: I'm only seeing 587 for MSA's...
[20:39:09] <seekwill> I don't see it as an alternate for 25
[20:39:21] <Lukemob> edje, is it this setting? relay_domains
[20:39:33] <gonewestcoast> seekwill: Correct, but to my understanding he's trying to use an external relayhost.
[20:39:43] <gonewestcoast> You CAN configure a relayhost across 587, I've done it here. :)
[20:39:56] <edje> Lukemob: i think it is smarhost.. let me check
[20:40:24] <seekwill> gonewestcoast: Ah, ok. I thought he was hosting something internal. Gotcha
[20:40:33] *** lrp has joined #postfix
[20:40:58] <gonewestcoast> seekwill: Not as I understand it.  What's fun is doing SASL / TLS across 587 in a relayhost. :D
[20:41:25] <lrp> hellow there , im having the following trpouble im having trouble with delivering mail , and in the header i see permit_sasl_authenticated,
[20:41:25] <lrp> reject_invalid_hostname,
[20:41:25] <lrp> reject_non_fqdn_hostname,
[20:41:25] <lrp> reject_non_fqdn_sender,
[20:41:25] <lrp> reject_non_fqdn_recipient,
[20:41:26] <lrp> reject_unknown_sender_domain,
[20:41:28] <lrp> reject_unknown_recipient_domain,
[20:41:30] <lrp> permit_mynetworks,
[20:41:32] <lrp> reject_rbl_client list.dsbl.org,
[20:41:34] <lrp> reject_rbl_client sbl.spamhaus.org,
[20:41:36] <lrp> reject_rbl_client cbl.abuseat.org,
[20:41:38] <lrp> reject_rbl_client dul.dnsbl.sorbs.net,
[20:41:40] <lrp> permit
[20:41:40] <pickcoder> lrp: please use a pastebin
[20:41:42] <lrp> smtpd_error_sleep_time = 1s
[20:41:44] <lrp> smtpd_soft_error_limit = 10
[20:41:46] <lrp> smtpd_hard_error_limit = 20
[20:41:48] <lrp> ups
[20:41:49] *** Jense has joined #postfix
[20:41:50] <lrp> sorry
[20:42:02] *** Matt has quit IRC
[20:42:22] <pickcoder> permit_mynetworks should be first
[20:42:38] <higuita> hehehe, wrong paste content :)
[20:42:38] <pickcoder> if you want to allow unrestricted smtp from the networks/hosts listed
[20:42:50] <higuita> pickcoder: no
[20:43:14] <pickcoder> ?
[20:43:19] <Lukemob> edje, its probably relayhost
[20:43:43] <higuita> that oeder is rigth, he is rejecting bad or unknown email, even from his users
[20:44:06] <pickcoder> what if it's to a local machine with no dns match?
[20:44:17] <edje> Lukemob: i guess so, samrthost is a sendmail term
[20:44:32] <higuita> pickcoder: a smtp server with no DNS?
[20:44:42] <pickcoder> sure.. for internal processing
[20:44:46] <lrp> http://pastebin.ca/1087455
[20:44:51] <lrp> tyhis is my main.cf config
[20:45:07] <lrp> i dont klnow why but he is rebooting all the incoming mail
[20:45:10] <higuita> its possible, but if true, then he would already found out what to do, it would need more tunning :)
[20:45:14] <lrp> what is wrong in that config ?
[20:45:14] <pickcoder> spool at 192 dot 168.0.100
[20:45:21] <Lukemob> ah, edje seems to work :)
[20:45:33] <higuita> you want to say spool at [192 dot 168.0.100]
[20:45:54] <Lukemob> edje, do you have also knowledges with receiving an emails?
[20:46:02] <higuita> the ip in the "domain" must be inside []... its invalid without it (but usually it works) :)
[20:46:02] <Lukemob> it seems to not work for me
[20:46:18] <pickcoder> !relayhost
[20:46:20] <knoba> pickcoder: "relayhost" : a configuration parameter in the main.cf: The default host to send non-local mail to when no entry is matched in the optional transport(5) table. When no relayhost is given, mail is routed directly to the destination.
[20:46:38] <higuita> edje: smarkhost is the sendmail, relayhost is the postfix config for the same end
[20:47:05] <lrp> relayhost ?
[20:47:35] <lrp> did ya saw my config ?
[20:47:37] <edje> Lukemob: yes, but if your ISP is blocking outgoing traffic, they are almost sure to block incomming traffic as well
[20:47:52] <Lukemob> pickcoder, well, I have used ISP's smtp server... it works now
[20:48:30] <Lukemob> edje, my server responds on port 25... and, isn't the port for receiving 143?
[20:48:32] <Lukemob> imap?
[20:49:02] <gonewestcoast> Lukemob: Are you talking about clientside access to the IMAP port, or are you talking about MTA peering?
[20:49:10] <pickcoder> lrp: no. .that was for Lukemob
[20:49:18] <pickcoder> Lukemob: no.. IMAP != SMTP
[20:49:19] *** brancaleone has joined #postfix
[20:49:26] <Lukemob> gonewestcoast, I'm new to this... I don't know what are you talking about
[20:49:39] <lrp> [pickcoder] i can see now , and for me what do you have , ?
[20:49:43] <pickcoder> Lukemob: forget about squirrelmail
[20:49:50] <pickcoder> postfix does SMTP
[20:50:22] <gonewestcoast> Lukemob: http://www.siteground.com/tutorials/email/email_clients.htm Read.
[20:50:45] <Lukemob> yes, pickcoder, I have used ISP's smtp server, sending works as well, but how comes receiving doesn't work?
[20:51:03] <pickcoder> Lukemob: maybe port 25 is blocked for incoming too?
[20:51:13] <pickcoder> in that case you need a public relay to accept for you
[20:51:28] <pickcoder> then forward over a non-25 port
[20:51:34] <gonewestcoast> Lukemob: Is your BSD box plugged directly into your cable modem?
[20:51:41] <gonewestcoast> Er, your postfix box rather.
[20:51:44] <gonewestcoast> Or is there a router in place?
[20:51:54] <gonewestcoast> If there's a router / firewall device, you'll need to port forward port 25.
[20:52:10] <Lukemob> there's a router, gonewestcoast, but firewall is off
[20:52:16] <gonewestcoast> Probably also 143, 993, 995, 110, and 80 if you want a webmail client.
[20:52:16] <pickcoder> gonewestcoast: that depends on the modem's router config
[20:52:20] <Lukemob> all others port work
[20:52:25] <lrp> hello can anyone help me out people ????
[20:52:39] <pickcoder> Lukemob: do you have a local IP or public IP on your ethernet device
[20:52:43] <lrp> i have my mail server stopped waiting for some1 to my call :(
[20:52:55] <gonewestcoast> lrp: I see whining, I don't see a problem description.
[20:53:00] <gonewestcoast> Do you have a question besides "It's broken?"
[20:53:18] <Lukemob> pickcoder, well, the router makes the network internal, but outgoing IP from router is public
[20:53:20] <lrp> http://pastebin.ca/1087455 there is my main.cf postfix configuration
[20:53:45] <gonewestcoast> lrp: Something you should learn is that YOUR problems are not OUR problems.  Last I checked you weren't paying us to be at your beck and call.  :-)
[20:53:49] <lrp> i was testing webmin and i made a change in the config , since i did that change all the email are rebooting
[20:54:05] <gonewestcoast> lrp: Ugh, webmin?
[20:54:07] <pickcoder> Lukemob: that is a subtle, but very important piece of info
[20:54:27] <gonewestcoast> pickcoder: I called it, port forwarding. ;-)
[20:54:31] <pickcoder> Lukemob: if the router is NATing to you then you may need to do what gonewestcoast said about forwarding
[20:54:31] <lrp> [gonewestcoast] thanks
[20:54:46] <edje> lrp: restore yesterday's backup and start from there
[20:54:57] <gonewestcoast> edje: Oh, that's not nice. :)
[20:55:00] <lrp> that is what im going to do
[20:55:16] <gonewestcoast> lrp: Is it JUST inbound that's bouncing?
[20:55:26] <gonewestcoast> lrp: Try posting an error message from your log-- what's the reject line?
[20:55:38] <Lukemob> pickcoder, port 25 is not in-use by any other computer... NAT is probably off
[20:56:02] <seekwill> How much would one pay to have an external MTA relay to another MTA on a different port?
[20:56:07] <seekwill> $20/year maybe?
[20:56:28] *** deftunix has quit IRC
[20:56:33] <gonewestcoast> seekwill: Someone clued would just use 587 to talk to the relayhost. :)
[20:56:45] <gonewestcoast> seekwill: There are commercial services that offer this though.
[20:56:47] <seekwill> You can't..
[20:56:55] <gonewestcoast> http://www.authsmtp.com/
[20:57:02] <gonewestcoast> seekwill: What do you mean you can't?
[20:57:15] <pickcoder> Lukemob: how can it be off if your ethernet device has a local IP?
[20:57:23] <pickcoder> it = NAT
[20:57:52] <Lukemob> it's just DHCP
[20:57:55] <pickcoder> if pass-through was enabled then your device would be getting a public IP via DHCP from the router
[20:58:12] <Lukemob> NAT is used for forwarding ports to devices in local network
[20:58:22] <pickcoder> no... it's not just port forwarding
[20:58:38] <pickcoder> 200.200.200.1 is not on the same network as 192.168.0.0
[20:58:39] <seekwill> gonewestcoast: 587 is only for submission from a MUA
[20:58:43] <Lukemob> yes, not "just" but...
[20:58:49] <seekwill> gonewestcoast: Gmail will only send you mail via port 25
[20:58:54] <Lukemob> yeah
[20:58:56] <seekwill> This is inbound
[20:58:57] <pickcoder> translations have to be made for all packets.. regardless of the port
[20:59:02] <gonewestcoast> seekwill: Ah, we're talking about inboud?
[20:59:03] <pickcoder> so NAT _has_ to be on
[20:59:16] <gonewestcoast> seekwill: I don't think I've seen 25 inbound blocked many places...
[20:59:16] <seekwill> gonewestcoast: Well, I was :)
[20:59:29] <seekwill> gonewestcoast: Lots of ISPs do. Mine does!
[20:59:35] <lrp> oka
[20:59:39] <gonewestcoast> seekwill: Who're you with?  That's kinda nutsy. :)
[20:59:42] <seekwill> But 25 outbound isn't
[20:59:44] <seekwill> Verizon DSL
[20:59:45] <Lukemob> pickcoder, means, just forward 25 to internal IP address of server?
[20:59:55] <pickcoder> yes
[20:59:55] <lrp> [gonewestcoast] http://pastebin.ca/1087477 there is the config and the mail message
[20:59:57] <gonewestcoast> seekwill: Ugh-- so in other words they don't mind if their bot infected clients spam the intarwebs?
[21:00:05] <seekwill> gonewestcoast: Yep! grr
[21:00:15] <Lukemob> pickcoder, but each port worked even without this, web servers, ftp, game, etc...
[21:00:20] <pickcoder> or see if pass-through is available and let your box handle the routing and firewall
[21:00:20] <Lukemob> no NAT change
[21:00:34] <pickcoder> Lukemob: those are enabled by default on most consumer modems
[21:00:43] <seekwill> gonewestcoast: I think they care more of not wanting people to run servers. But outgoing 25 could be used for legit reasons so they need it open
[21:00:45] <gonewestcoast> lrp: What's the body of that email message?
[21:01:11] <Lukemob> well, to be honest, all the ports even of BNC of eggdrop bots were automatically handled by server.. even without a NAT change
[21:01:13] <pickcoder> Lukemob: ok.. well I dunno what else to say
[21:01:16] <gonewestcoast> Lukemob:  They might call it a "DMZ.'  Set the internal IP of your postfix server as the DMZ.
[21:01:46] <lrp> yes
[21:01:55] <lrp> thats the body of the email message
[21:01:55] <Lukemob> gonewestcoast, DMZ in router device?
[21:02:08] <gonewestcoast> lrp: No, there's just headers.  I don't see any message explaining the rejection.
[21:02:13] <Lukemob> pickcoder, well mate, thank you a lot for trying me to help...
[21:02:19] <pickcoder> gonewestcoast: the DHCP server should serve DMZ addresses
[21:02:41] <gonewestcoast> pickcoder: Don't get the term DMZ confused with private IP. :)
[21:02:44] <lrp> Recipient address rejected: Domain not found;
[21:02:47] <pickcoder> ugh
[21:02:52] * pickcoder goes back to work
[21:02:59] <gonewestcoast> lrp: Oh, that means your DNS is broken. :)
[21:03:15] <lrp> how come ?
[21:03:19] <gonewestcoast> On Linksys routers, the DMZ gets all non-otherwise assigned ports forwarded to itself.
[21:03:21] <lrp> ping www.google.com -c3
[21:03:21] <lrp> PING www.l.google.com (64.233.169.99) 56(84) bytes of data.
[21:03:59] <Lukemob> gonewestcoast, you know what setting option in main.cf is used for receiving emails?
[21:03:59] <gonewestcoast> lrp: Unless you'd like to pay me to hold your hand through this, I suggest you read http://www.catb.org/~esr/faqs/smart-questions.html
[21:04:05] *** JoeWulf has quit IRC
[21:04:13] <gonewestcoast> Lukemob: A fair number of them? :-)
[21:04:35] <Lukemob> gonewestcoast, mydestination?
[21:05:01] <gonewestcoast> Lukemob: mydestination stipulates who the server self-identifies as, yes.
[21:06:26] *** JoeWulf has joined #postfix
[21:06:36] <Lukemob> gonewestcoast, what exactly do I need to set to correctly receive an emails?
[21:08:14] <seekwill> I wonder if Lukemob's ISP is filtering on 25.
[21:08:27] *** magyar_ has joined #postfix
[21:09:17] <Lukemob> seekwill
[21:09:17] <Lukemob> PORT STATE SERVICE
[21:09:17] <Lukemob> 25/tcp open smtp
[21:09:30] <Lukemob> used by another server @ another location with nmap
[21:09:39] <seekwill> Ah nice
[21:10:25] <gonewestcoast> seekwill: You need my_destination.
[21:10:33] <seekwill> I do?
[21:10:56] *** c0m has quit IRC
[21:10:58] <seekwill> What's your domain name..I'll set it to that.
[21:10:59] <gonewestcoast> ER.
[21:11:01] <gonewestcoast> Sorry.
[21:11:02] <gonewestcoast> :)
[21:11:06] <gonewestcoast> I meant that to Lukemob
[21:11:09] <seekwill> ah
[21:11:16] <seekwill> Yeah, the S and L key are like right next to each other
[21:11:19] * cpm sets it to seekwill's domain name
[21:11:32] <gonewestcoast> Lukemob:  Let's back up a bit.  What happens when you try to email user@yourhost?
[21:11:47] <seekwill> Well, first off...
[21:12:01] <seekwill> We should test to see if we can connect to his server...
[21:13:25] *** gonewestcoast_ has joined #postfix
[21:13:41] <Lukemob> 1 sec 1 sec... I'm updating DNS records
[21:13:45] <gonewestcoast_> seekwill: Yes.  As root.  He'd better hand over his password.  Probably his SSN as well to be safe. :-D
[21:13:58] <seekwill> I mean like, port25
[21:14:22] <seekwill> Lukemob: What is your IP?
[21:14:56] <gonewestcoast_> seekwill: Yeah, verify we get a helo.
[21:15:02] <seekwill> oh
[21:15:06] <gonewestcoast_> 90.183.248.193 doesn't answer, so if that's it he's kinda misconfigured. :)
[21:15:08] <seekwill> Ok, I'm going to go back to work then...
[21:15:21] <seekwill> huh?
[21:15:28] <seekwill> That's his public IP?
[21:15:34] <gonewestcoast_> At least, of where he's connecting from.
[21:15:39] <seekwill> heh
[21:15:43] <seekwill> I never assume :)
[21:15:48] * seekwill hops to another box to IRC
[21:16:01] <seekwill> Where did the helo come from? telnet localhost?
[21:17:02] <Lukemob> wait
[21:17:04] <Lukemob> please
[21:17:07] <Lukemob> 5 minutes
[21:18:31] <seekwill> Time is money
[21:18:34] <Lukemob> I probably see the problem
[21:18:39] <seekwill> What?
[21:18:50] *** Andri[DK] has quit IRC
[21:22:30] *** lrp has quit IRC
[21:28:27] *** gonewestcoast has quit IRC
[21:31:16] *** gonewestcoast_ is now known as GoneWestCoast
[21:32:34] *** Draecos has joined #postfix
[21:38:52] *** cpm has quit IRC
[21:39:23] *** neoeinstein has joined #postfix
[21:40:07] *** nardul has quit IRC
[21:41:58] *** maxquerry has joined #postfix
[21:43:27] *** lgbr has joined #postfix
[21:43:43] <lgbr> if I just do 'relayhost = ' in my main.cf, how vulnerable am I?
[21:47:14] *** Draecos has quit IRC
[21:48:15] *** Draecos has joined #postfix
[21:48:17] *** Draecos has quit IRC
[21:49:24] <higuita> lgbr: is just mean that postfix will do DNS queries to know where to deliver email
[21:50:06] <lgbr> oops, I mean 'mynetworks = 0.0.0.0/0'
[21:50:18] <higuita> ok, that is BAD!!
[21:50:35] <lgbr> Just found that out the hard way
[21:50:39] <higuita> you are probably a open relay
[21:50:50] <lgbr> yep
[21:51:01] <higuita> why the hell you are saying that you own the internet?!
[21:51:19] <lgbr> I wanted to be able to send email from anyway
[21:51:20] <lgbr> *anywhere
[21:51:30] <higuita> mynetworks should be... guess what... your network IPs!!
[21:51:31] <lgbr> but what I should probably be doing is smtp auth, yeS?
[21:52:28] <higuita> yes, sasl auth is the way to "open" the relay to people you trust... saying "i trust everybody" seens a little...err..dumb :)
[21:52:50] <lgbr> yeah, but if I'm on a computer outside of my network and I want to send email, then I need to open it up to all IPs, right?
[21:53:01] <higuita> NO
[21:53:10] <lgbr> ah
[21:53:16] <lgbr> what do you suggest?
[21:53:47] <higuita> mynetworks is your internal network IPs, all rest, setup the sasl and every IP that sucess the sasl auth will be able to send emails
[21:54:07] <lgbr> ah ok
[21:54:25] <higuita> ie: i trust my network and anyone with the correct username and password
[21:54:31] <lgbr> or if I make it 127.0.0.1/32 I can just require everyone to use SASL, yes?
[21:55:14] <higuita> yes... sort of
[21:55:17] <lgbr> er, mynetworks_style = host  would do it
[21:55:23] <higuita> 127.0.0.0/8 is the localhost network
[21:55:53] <lgbr> now that that's done. I run `postfix flush` to get rid of the spam people were trying to send, yes?
[21:56:10] <higuita> but other than that, you are right, this way you require sasl to all networks
[21:56:22] <higuita> postsuper -d ALL
[21:56:26] <seekwill> lgbr: If you're on a computer outside your network, use VPN
[21:56:32] <higuita> remove all that spam, dont send it, please!!
[21:56:41] <seekwill> lol
[21:56:57] <lgbr> this command is taking a while :(
[21:57:50] <lgbr> seekwill: if I'm using SMTPS and IMAPS, I should be just as secure as if I were using a VPN, right?
[21:58:04] <seekwill> Sure
[21:58:12] <seekwill> VPN just makes it a lot easier
[21:58:37] <lgbr> for the server setup, yes. It's a real pain on clients
[21:58:59] <seekwill> Yeah, depends on who you're serving
[21:59:37] <lgbr> `postsuper -d ALL` has been going for a couple minutes now.. Oh dear
[21:59:54] <seekwill> Just wondering, do you know what that command does?
[22:00:03] <lgbr> no
[22:00:08] <seekwill> ...
[22:00:24] <seekwill> You should find out what commands do before running them
[22:00:42] <lgbr> it's a testbed, not a production server
[22:00:50] <seekwill> Sure ok
[22:01:58] <lgbr> postsuper: Deleted: 52689 messages
[22:02:03] <seekwill> Nice
[22:02:10] <lgbr> :D
[22:08:14] *** Juzzy has joined #postfix
[22:09:32] *** dex has joined #postfix
[22:09:56] <dex> hello, I am working with virtual users and everything is working fine, except deleting the user,
[22:10:11] <dex> I can delete the user but I cannot find a way to delete his/her mailboxes
[22:10:11] <Juzzy> ok, I'm trying to setup a postfix to send ALL email it recieves (from local and remote) to 1 remote user. I did a: virtual_alias_maps = pcre:/etc/postfix/virtualalias.regex which contains: /.*/ my at mydomain dot com
[22:10:31] <dex> can anyone tell me how I can delete the user's mailboxes as well?
[22:10:52] *** lgbr has left #postfix
[22:11:02] <Juzzy> but nomatter what I do after that, I get:  relay=none, delay=0.03, delays=0.02/0/0/0.01, dsn=5.0.0, status=bounced (User unknown in virtual alias table)
[22:11:28] <Juzzy> even though it should relay, ive tried to force relay_host
[22:12:01] <higuita> so lgbr had 52689 spam in queue!!... ohh well, one more open relay down...
[22:12:29] *** dex has left #postfix
[22:12:33] <roe_> only 100,000 to go
[22:13:23] <higuita> Juzzy: first, put /./, no need to consume more ram and cpu with /.*/
[22:13:51] <higuita> next, you need to put the mydomain.com in mydestination
[22:14:09] <higuita> and of course, the user/email/alis me@ must exist
[22:15:08] <higuita> i'm assuming that you have pcre support (as the file name is virtualalias.regex ... regexp and pcre are different things, very similar, but have different support)
[22:16:16] <Juzzy> well i think that works, ive tested with postmap -q
[22:16:24] <Juzzy> sec lemme test
[22:16:47] *** pirho has joined #postfix
[22:17:47] <Juzzy> I did rename that to a different domain b/c I was getting a warning:
[22:21:37] <Juzzy> hm it now seems to relay=local
[22:21:48] <Juzzy> once I added it to mydestination
[22:22:14] <Juzzy> ah ok
[22:22:25] <Juzzy> once I turned back on transport_maps for that domain it worked
[22:22:50] *** Zeit|awy has joined #postfix
[22:24:16] *** ME|Lukemob` has joined #postfix
[22:28:45] <penrod> greetings: furhter problems with the vacation program, some e-mail addresses will get an "out of office" response, and others won't. I have wiped out the .vacation.db file and had it recreated, thus every one should should get a reply on the first e-mail. any ideas ?
[22:29:56] <pickcoder> penrod: "vacation" program?
[22:30:15] *** bisoc_ has joined #postfix
[22:30:30] <penrod> pickcoder: yes the one which was ported over from freebsd many moons ago
[22:30:38] <pickcoder> is it part of postfix?
[22:30:50] *** bisoc has quit IRC
[22:30:54] <penrod> pickcoder: vacation = auto responder
[22:31:02] <Juzzy> higuita: thanks a mil, you're my hero of the day :)
[22:31:16] <penrod> pickcoder: no, it is an add on
[22:31:48] <higuita> you are welcome
[22:33:05] * pickcoder notices that the yaa! link on the web site is dead
[22:35:01] <higuita> penrod: if you deleted the vacation.db, all emails should have generate a auto-reply (i dont know if it checks for the bulk header, probably yes)
[22:35:21] <higuita> are you sure you are testing for the same emails in both cases?
[22:36:02] * pickcoder wouldn't mind running an auto-responder that wasn't header and mailinglist ignorant
[22:36:07] *** VaNNi has quit IRC
[22:38:08] *** VaNNi has joined #postfix
[22:42:26] *** Lukemob has quit IRC
[22:45:01] *** Fallenou has quit IRC
[22:46:50] *** c0m has joined #postfix
[22:47:49] *** ME|Lukemob` is now known as Lukemob
[22:48:43] *** dex has joined #postfix
[22:48:57] *** dogmeat has quit IRC
[22:49:06] <dex> how can I delete a complete user mailbox?
[22:50:41] <penrod> pickcoder: I am going to start the whole troubleshooting procedure over, I thank you for the suggestion
[22:53:37] *** dex has left #postfix
[22:58:19] *** madrescher has quit IRC
[23:12:54] *** Juzzy has quit IRC
[23:13:46] *** j_s has quit IRC
[23:22:58] *** havvg has quit IRC
[23:25:35] *** hever has quit IRC
[23:26:25] *** Haris has joined #postfix
[23:26:28] <Haris> Hello people
[23:30:35] <Haris> !virtual_mailbox_domains
[23:30:36] <knoba> Haris: "virtual_mailbox_domains" : a configuration parameter in the main.cf: The list of domains that are by default delivered via the $virtual_transport mail delivery transport. This list uses the same syntax as the mydestination configuration parameter.
[23:32:19] <Haris> does this keyword point out the domain or the related transport?
[23:32:53] <Haris> the sample configuration I'v seen for mysql, suggest, it results in transports, that are assigned to domains
[23:39:44] *** idle-boy| has quit IRC
[23:41:16] *** dusty has quit IRC
[23:43:13] *** dogmeat has joined #postfix
[23:45:04] <pickcoder> Haris: the description says it all
[23:45:16] <pickcoder> $virtual_transport is the virtual transport
[23:51:49] *** brancaleone has quit IRC





top