August 12, 2008 
< | 1 | 2 | 3 | 4 | 5 | 6 | 7 | 8 | 9 | 10 | 11 | 12 | 13 | 14 | 15 | 16 | 17 | 18 | 19 | 20 | 21 | 22 | 23 | 24 | 25 | 26 | 27 | 28 | 29 | 30 | 31 | >
August 12, 2008 [00:00:06] *** Hurup has joined #postfix[00:03:03] *** githogori has quit IRC[00:03:40] *** Hurup has quit IRC[00:03:49] *** Hurup has joined #postfix[00:04:37] *** adaptr_ has joined #postfix[00:08:34] <pickcoder> when I run a perl script via aliases pipe getlogin() is null[00:09:03] *** adaptr has quit IRC[00:11:52] *** dty0 has quit IRC[00:11:57] *** githogori has joined #postfix[00:13:41] *** Draecos__ has quit IRC[00:20:29] *** alienbrain has quit IRC[00:22:09] *** karrier has joined #Postfix[00:23:39] <karrier> Hi, the bounce messages of my mail server are delivered to postmaster, how can I change this behavior? i try 2bounce, but i get this: undeliverable postmaster notification discarded[00:23:55] <karrier> i want it return to the sender[00:24:06] *** zack23 has quit IRC[00:32:54] *** Hurup has quit IRC[00:35:27] <vice-versa> !notify_classes[00:35:27] <knoba> vice-versa: "notify_classes" : a configuration parameter in the main.cf: The list of error classes that are reported to the postmaster. The default is to report only the most serious problems. The paranoid may wish to turn on the policy (UCE and mail relaying) and protocol error (broken mail software) reports.[00:37:40] *** jonez has joined #postfix[00:39:03] *** felix-da-catz is now known as felix-da-catz_zz[00:43:06] *** Tykling has left #postfix[00:45:14] *** cilly has quit IRC[00:54:30] <pickcoder> how can I change what user an aliases script is run as?[01:00:23] *** pickcoder has quit IRC[01:00:39] *** tkooda_ has joined #postfix[01:06:49] *** war9407 has quit IRC[01:06:56] *** skyweb has quit IRC[01:07:46] *** seekwill has quit IRC[01:10:49] *** jamesdean44 has joined #postfix[01:10:53] <jamesdean44> Hi[01:12:16] <jamesdean44> what is the option to set in eather main.cf or master.cf so that outging mail requiers password[01:12:28] *** AcTiVaTe has quit IRC[01:14:31] *** tkooda has quit IRC[01:17:42] <vice-versa> jamesdean44: postfix knows nothing about passwords, are you perhaps wanting to implement a policy enforcing SASL auth only to relay?[01:19:03] <jamesdean44> thanx for reponding vice[01:20:50] <jamesdean44> yes what is the option[01:21:07] <vice-versa> !sasl[01:21:07] <knoba> vice-versa: "sasl" : SASL is 'Simple Authentication and Security Layer', necessary for SMTP AUTH, and provided to Postfix by addin software. Cyrus SASL and/or Dovecot IMAP/POP3 can provide SASL. See http://www.postfix.org/SASL_README.html for details.[01:22:04] <vice-versa> there's more to it then just changing an option in postfix conf files though[01:23:34] <jamesdean44> No, See this is my problem, I can send email requiering password and not requiring password, but I just was to only enable AUTH via SASL[01:24:45] <vice-versa> smtpd_recipient_restrictions = permit_sasl_authenticated, reject[01:25:05] *** Fallenou has quit IRC[01:25:39] <vice-versa> that's the simplest of examples, you will have to check your existing smtpd_recipient_restrictions and decide how to implement it[01:26:24] <jamesdean44> cool thanx vice thanks knoba[01:27:04] *** jeffspeff has quit IRC[01:29:05] <jamesdean44> Vice-versa that optioin you gave me is under master.cf and sud sec 'smtp inet'?[01:33:27] <jamesdean44> never mine tahnx[01:33:30] *** jamesdean44 has left #postfix[01:38:39] <vice-versa> karrier: you're better off asking in the channel, I've got my own fires to put out so I may or may not be able to answer. There are many knowledgeable people in this channel[01:39:12] <karrier> vice-versa, ok, thanks[01:44:04] <karrier> I have postfix with virtual transport, the problem is that when I put an incorrect mail, the log says: status=bounced, but the user isnt notified[01:45:22] <karrier> if you need more information or configuration parameters, please ask me[01:46:32] <karrier> I've been googlin many time, but i understand how exactly bounce subsystem works[01:49:23] <vice-versa> a pastebin of the output from postconf -n wouldn't hurt[01:50:17] <vice-versa> so the user doesn't get the bounce, but instead it's delivered to the postmaster?[01:53:23] <karrier> i been playing with the postmaster, but i dont need this behavior[01:53:33] <karrier> so, here is the postconf output[01:53:35] <karrier> alias_database = hash:/etc/aliases[01:53:36] <karrier> alias_maps = hash:/etc/aliases[01:53:36] <karrier> append_dot_mydomain = no[01:53:36] <karrier> biff = no[01:53:36] <karrier> broken_sasl_auth_clients = yes[01:53:36] <karrier> config_directory = /etc/postfix[01:53:38] <karrier> default_destination_concurrency_limit = 10[01:53:40] <karrier> home_mailbox = Maildir/[01:53:42] <karrier> inet_interfaces = all[01:53:44] <karrier> local_destination_concurrency_limit = 2[01:53:46] <karrier> mail_spool_directory = /var/spool/mail/[01:53:48] <karrier> mailbox_size_limit = 0[01:53:50] <karrier> mydestination = localhost[01:54:02] <karrier> myhostname = $host[01:54:05] <vice-versa> now idid say PASTEBIN![01:54:12] <vice-versa> !patebin[01:54:13] <knoba> vice-versa: Error: "patebin" is not a valid command.[01:54:19] <vice-versa> !pastebin[01:54:20] <knoba> vice-versa: "pastebin" : a way to paste larger amounts of text so that other people can read it. Try http://www.rafb.net/paste/ or http://paste.debian.net/ - Do not forget to tell us the URL where you pasted it.[01:54:21] <karrier> mynetworks = 127.0.0.0/8[01:54:32] <karrier> myorigin = $origin[01:54:42] <vice-versa> STOP[01:54:42] <karrier> recipient_delimiter = +[01:54:42] <karrier> relay_domains = $mydestination[01:54:42] <karrier> relayhost =[01:54:42] <karrier> smtp_tls_note_starttls_offer = yes[01:54:42] <karrier> smtp_tls_session_cache_database = btree:${queue_directory}/smtp_scache[01:54:43] <karrier> smtp_use_tls = yes[01:54:45] <karrier> smtpd_banner = $myhostname ESMTP[01:54:47] <karrier> smtpd_client_restrictions = permit_mynetworks,check_client_access pcre:/etc/postfix/dspam_filter_access[01:54:49] <karrier> smtpd_data_restrictions = reject_multi_recipient_bounce, permit[01:54:51] <karrier> smtpd_recipient_restrictions = permit_mynetworks,permit_sasl_authenticated, reject_non_fqdn_hostname, reject_non_fqdn_recipient, reject_unauth_destination, reject_invalid_hostname, reject_rbl_client zen.spamhaus.org, reject_rbl_client list.dsbl.org, reject_rhsbl_sender dsn.fc-ignorant.org, permit[01:54:56] <karrier> smtpd_sasl_auth_enable = yes[01:54:57] <karrier> smtpd_sasl_exceptions_networks = $mynetworks[01:54:59] <karrier> smtpd_sasl_local_domain =[01:55:01] <karrier> smtpd_sasl_path = private/auth[01:55:05] <karrier> smtpd_sasl_security_options = noanonymous[01:55:08] <karrier> smtpd_sasl_type = dovecot[01:55:10] <karrier> smtpd_tls_CAfile = /etc/postfix/ssl/cacert.pem[01:55:11] <karrier> smtpd_tls_auth_only = no[01:55:13] <karrier> smtpd_tls_cert_file = /etc/postfix/ssl/smtpd.crt[01:55:15] <karrier> smtpd_tls_key_file = /etc/postfix/ssl/smtpd.key[01:55:17] <karrier> smtpd_tls_received_header = yes[01:55:19] <karrier> smtpd_tls_session_cache_database = btree:${queue_directory}/smtpd_scache[01:55:21] <karrier> smtpd_use_tls = yes[01:55:23] <karrier> tls_random_source = dev:/dev/urandom[01:55:25] <karrier> transport_maps = hash:/etc/postfix/transport[01:55:27] <karrier> virtual_alias_maps = mysql:/etc/postfix/mysql/mapas_alias_virtuales_mysql.cf[01:55:29] <karrier> virtual_gid_maps = static:9001[01:55:31] <karrier> virtual_mailbox_base = /home/buzones[01:55:35] <karrier> virtual_mailbox_domains = mysql:/etc/postfix/mysql/mapas_dominios_virtuales_mysql.cf[01:55:37] <karrier> virtual_mailbox_limit = 0[01:55:39] <karrier> virtual_mailbox_maps = mysql:/etc/postfix/mysql/mapas_mailbox_virtuales_mysql.cf[01:55:41] <karrier> virtual_minimum_uid = 9001[01:55:42] <jeev> wow[01:55:43] <karrier> virtual_transport = procmail[01:55:44] <jeev> pastebin.com asshole[01:55:45] <karrier> virtual_uid_maps = static:9001[01:55:47] <karrier> ohh, sorry[01:55:56] <jeev> didn't you see what vice-versa said earlier ?[01:56:03] *** dusty_ has quit IRC[01:56:08] <karrier> too late[01:56:10] <jeev> you owe us a $100 fee[01:56:14] <jeev> paypal accepted[01:56:34] <karrier> jeje, if i can i wold pay you feed :)[01:57:56] <vice-versa> s/fee/fine/[01:59:06] <vice-versa> is jeje a farmer or something?[01:59:15] <jeev> lol[01:59:23] <jeev> no, he's offering me feed for cows or something[01:59:49] <vice-versa> ahh, one healthy goat will suffice then[02:00:44] <karrier> i dont belive you dont know what is jeje[02:02:53] *** githogori has quit IRC[02:05:04] *** githogori has joined #postfix[02:07:55] *** dusty_ has joined #postfix[02:13:54] *** m0f0x_ has quit IRC[02:17:58] <derrick> can masquerade_domains be a hash? it doesn't seem to be working for me if so. going flat does work[02:19:14] *** ming_zym has joined #postfix[02:19:42] *** F6F has quit IRC[02:20:39] <karrier> ok masters, i bring you a farmer quiz. why the bounces works if mail if local sent and doesnt work if they are send from a remote client[02:25:24] *** seekwill has joined #postfix[02:27:38] *** pirho has quit IRC[02:31:09] <vice-versa> define local sent[02:33:53] <karrier> when i send a mail from a webmail for example[02:34:27] <karrier> in this case, the bounce is deliver to the mailbox, its strange, but true[02:35:33] <karrier> i play with smtpd_recipient_restrictions an client ones but it doesnt work for me[02:36:31] <vice-versa> again, *PASTEBIN* the output from postconf -n and show some log excerpts of both one that failed and one that was successful (as it pertains to bounce notification)[02:36:39] <vice-versa> !pastebin[02:36:39] <knoba> vice-versa: "pastebin" : a way to paste larger amounts of text so that other people can read it. Try http://www.rafb.net/paste/ or http://paste.debian.net/ - Do not forget to tell us the URL where you pasted it.[02:36:43] <vice-versa> !logs[02:36:43] <knoba> vice-versa: "logs" : by default, postfix logs to the mail facility of syslog. Something like grep -i `postconf -h syslog_facility` /etc/syslog.conf or grep -rl `postconf -h syslog_name` /var/log/* should tell you where logs are going.[02:37:49] <karrier> ok, it make me busy for a while[02:38:56] *** lumpek has joined #postfix[02:55:35] *** loompek has quit IRC[03:06:41] <karrier> hi, I PASTEBIN the info[03:06:50] <karrier> here is it http://pastebin.com/d47f3f233[03:17:13] <karrier> if you want more verbose, ask me, but for one mail its more 300 lines long[03:18:36] <karrier> sure it wold be a stupid mistake, but i dont see it[03:21:34] <lumpek> what seems to be the problem[03:21:37] *** lumpek is now known as loompek[03:23:38] *** jhoue has joined #postfix[03:25:53] <jhoue> does any1 know what RBL tiscali.co.uk uses ? bounce back error just says the mailserver has been blocked but doesnt say what org[03:27:11] *** githogori has quit IRC[03:28:00] <vice-versa> jhoue: what makes you think it's a rbl policy reject?[03:29:04] <jhoue> hmm.. thats usually it right? i mean.. educate me if u think otherwise..[03:30:49] <vice-versa> not necessarily, they may have other policy rules in place[03:31:39] <vice-versa> what's the ip being blocked/rejected?[03:31:59] <jhoue> but since the error msg says rejected mail from blacklisted ip [mailserver] .. then it mst be an rbl[03:32:09] <jhoue> what do u think?[03:32:11] <roe_> robtex does a pretty exhaustive search for your ip on blacklists[03:32:19] <vice-versa> no[03:33:17] <jhoue> aight.. here's the mailserver that got blacklisted.. by whatever tiscali.co.uk has in place.. 209.86.89.69[03:34:03] <vice-versa> for example, I could create a sender_access policy like, someone at example dot com REJECT Blacklisted: Unwanted BCE[03:34:43] <roe_> jhoue, that ip is on sorbs blacklist[03:35:04] <jhoue> yeah but usually when it's sorbs, it will tell you that it's sorbs[03:35:15] <vice-versa> but fwiw, dnsbl-1.uceprotect.net spam.dnsbl.sorbs.net and ucepn.dnsbl.net.au all list that ip[03:35:53] <roe_> it is entirely up to the mta to divulge that information, and what vice-versa said is true, it could have nothing to do with a blacklist[03:36:23] <vice-versa> roe- is correct, see default_rbl_reply[03:36:25] <jhoue> hmm.. what do u advise then? email abuse?[03:36:39] <jhoue> i mean email their abuse team to ge a clarification?[03:37:07] <karrier> i been tried without external checkins but it dont help me[03:38:19] <jhoue> or just blindly request delisting from whatever has blacklisted that ip?[03:38:23] <vice-versa> jhoue: wouldn't hurt, but I would start by trying to figure out why 209.86.89.69 got listed[03:38:45] <vice-versa> resolve and attempt to get it delisted[03:38:49] <jhoue> why else.. source of spam i bet at some point.. hehehe[03:39:08] <roe_> karrier, takata2323erer at gmail dot com is a good email address?[03:39:36] <karrier> no, i put the firs[03:39:51] <roe_> huh?[03:39:51] <karrier> the first in mind[03:39:54] <jhoue> i mean u cant really control that right.. it's a problem among most isps are trying to deal with.[03:40:26] <vice-versa> roe_: he's purposely inducing bounces[03:40:33] <roe_> oh[03:40:46] <roe_> I guess I am coming to this problem mid-stream?[03:40:58] * roe_ uses his scroll buffer[03:41:20] <jhoue> hmm who are we talking about? hehehe[03:41:47] <vice-versa> karrier[03:42:09] <jhoue> ah...[03:42:15] <vice-versa> roe_: yeah, he claims he's not receiving bounces when sending from remote, but local works[03:42:46] <jhoue> because u said he when im a she.. oh well.. thanks guys..[03:42:58] <vice-versa> or other way around, not sure now ;)[03:43:05] <jhoue> :)[03:43:29] <karrier> <vice-versa> : whats the matter?[03:44:07] <vice-versa> dunno, haven't really looked your pastebin over[03:45:33] <vice-versa> jhoue: sorry, hard to tell the gender without the usual audio/visual clues ;)[03:45:43] <karrier> hehe[03:46:51] <karrier> ok, i dont understand why it dont work, i keep trying...[03:47:06] <karrier> thanks for all[03:48:26] <vice-versa> karrier: they both look like they worked to me[03:48:44] <vice-versa> where it ended up is another story[03:49:31] <jhoue> can i see the error this karrier is getting.. educate me with his issue vice-versa.. hehehe[03:49:50] <vice-versa> he claims he's not receiving bounces when sending from remote, but local works[03:50:11] <vice-versa> that's not clearly defined though[03:50:17] <vice-versa> http://pastebin.com/d47f3f233[03:50:27] <roe_> remote of from virtual users[03:50:30] <roe_> s/of/or[03:50:46] <jhoue> im sorry i dont understand.. remote access? local network?[03:51:15] <karrier> if you want i append more verbose info[03:51:23] <vice-versa> right, that's what I meant by "that's not clearly defined though"[03:51:41] <vice-versa> karrier: it's too verbose now as it is[03:51:52] *** Juspion has joined #postfix[03:52:06] <karrier> ahh, ok[03:52:18] <karrier> the test are from the same computer[03:52:32] <karrier> the mailserver is in a data center[03:52:33] <roe_> the second instance "from thunderbird" has a client ip of localhost?[03:53:13] <karrier> both are remote, the difference is than what i mean as loca i a webmail y the mailserver[03:53:37] <karrier> local is a webmail, sorry[03:54:00] <roe_> ok so the first pastebin is using webmail the second is using thunderbird and in both instances you are sending as a virtual user or a system uer?[03:54:07] <roe_> s/uer/user?[03:54:23] <karrier> both virtual, same user[03:55:21] <roe_> but you sent to a different email address to generate the bounce?[03:55:53] <karrier> but same domain: google.com[03:55:56] *** amrit|wrk is now known as amrit|bbl[03:55:59] <jhoue> byebye :)[03:56:02] *** jhoue has quit IRC[03:56:59] <karrier> i can try the same recipient, but i think it dont care[03:57:28] <roe_> karrier, you sure, if so why don't we see the same message from the gmail servers in the top, and why does the top look like t is sending mail to root[03:58:15] <karrier> that may be because the grep, so i dig the logs for a while[03:59:12] *** mavrick61 has quit IRC[04:00:18] *** mavrick61 has joined #postfix[04:04:00] *** stegbt1 has joined #postfix[04:05:33] *** tuxinator has left #postfix[04:09:10] *** _Driver_ has quit IRC[04:15:46] <mjoseph> hey[04:16:02] <mjoseph> do you guys know if it's possible to access environment variables (or shell commands) from the main.cf file?[04:16:54] *** stegbth has quit IRC[04:19:13] *** Kako has quit IRC[04:20:30] <karrier> i dont know if its posible, but i do it with a services from master.cf and scripts[04:22:56] <mjoseph> yeah, i thought about doing it in master.cf, seems cumbersome, though[04:23:03] *** keffer has quit IRC[04:28:24] *** jeffspeff has joined #postfix[04:30:31] *** neoeinstein has joined #postfix[04:35:11] <vice-versa> mjoseph: no it doesn't, you can have user defined parameters though, but I'm guessing that's of little use to you. What are you trying to accomplish?[04:36:04] <mjoseph> in this case, pull in hostname information from outside[04:36:22] <mjoseph> i worked out around it for now, but in general env variables would be useful[04:37:31] <vice-versa> you can have it in an external file, then myhostname = /etc/postfix/hostname[04:38:34] <vice-versa> or use postconf -e in a startup script to set myhostname[04:39:25] <karrier> im going sleep, y will try tomorrow, thanks for all guys[04:39:38] <vice-versa> sure[04:41:07] *** karrier has quit IRC[04:41:41] *** hparker|laptop has joined #postfix[04:41:48] *** hever has quit IRC[04:41:51] *** hparker has quit IRC[04:42:57] *** neoeinstein has quit IRC[04:43:09] *** hparker|laptop is now known as hparker[05:06:13] *** xnixan has quit IRC[05:08:25] *** _bugz_ has quit IRC[05:13:37] *** Juspion has quit IRC[05:16:57] *** goldfisc1li has joined #postfix[05:26:36] *** keffer has joined #postfix[05:29:39] <pfak> Is it possible to put domain aliases in MySQL with postfix?[05:30:08] <jeev> like virtual hosting and stuff?[05:33:51] *** goldfischli has quit IRC[05:36:58] <pfak> Never mind.[05:37:01] <pfak> yeah, I can just make an alias ..[05:37:17] <pfak> @blah.com -> @blah2.com[05:37:24] <jeev> hmm[05:37:28] <pfak> it works.[05:37:28] *** m1n3s6 has joined #postfix[05:37:30] <jeev> you need to do virtual stuff[05:37:35] <pfak> what are you talking about[05:37:42] <jeev> i never said no.[05:38:13] <pfak> ah.[05:40:16] <mjoseph> vice-versa: ah, the external file is a great idea, thanks![05:40:25] <vice-versa> np[05:41:19] <mjoseph> actually[05:41:25] <mjoseph> that might not work in chroot?[05:43:38] <vice-versa> I fairly sure it will[05:43:44] <vice-versa> tias[05:43:56] <vice-versa> s/I/I'm/[05:44:10] <mjoseph> ok, i'll give it a shot[06:04:09] *** keffer has quit IRC[06:05:26] *** _bugz_ has joined #postfix[06:06:53] *** _nalle has quit IRC[06:09:47] *** keffer has joined #postfix[06:12:19] *** _bugz_ has quit IRC[06:13:10] *** _bugz_ has joined #postfix[06:20:00] *** pulsar has joined #postfix[06:22:59] *** saurabhb has joined #postfix[06:37:54] *** _nalle has joined #postfix[06:48:48] *** pfak has left #postfix[07:00:28] *** pitakill has quit IRC[07:02:02] *** darkphader has quit IRC[07:34:59] *** jmazaredo has joined #postfix[07:51:34] *** dty has joined #postfix[07:58:28] *** Zeit|awy_ has joined #postfix[08:04:36] *** Zeit|awy has quit IRC[08:08:53] *** shinao1 has joined #postfix[08:10:09] *** hparker has quit IRC[08:12:55] *** shinao1 has quit IRC[08:19:39] *** githogori has joined #postfix[08:28:34] *** Filbert has joined #postfix[08:35:09] *** Kako has joined #postfix[08:43:33] *** Tykling has joined #postfix[08:45:16] *** seekwill has quit IRC[08:49:40] *** xnixan has joined #postfix[08:49:55] *** sophokles has joined #postfix[08:53:28] *** toytoy has joined #postfix[08:54:38] *** Skorp has joined #postfix[08:55:21] *** stegbt1 has left #postfix[09:02:25] *** F6F has joined #postfix[09:07:03] *** tshine has quit IRC[09:10:54] *** Muhammad has joined #postfix[09:11:57] <Muhammad> i'd like to ask : can i run postfix on local network ? i mean is it possible to configure it to use private ip and localhost domain ?[09:12:23] <jeev> yea[09:13:20] <Muhammad> jeev, so i searched the web alot about that issue but didn;t fine any step by step guide to do that " newbie here "[09:14:17] <jeev> uh[09:14:31] <jeev> it's the same thing as setting it up normally[09:14:32] <jeev> just make it listen locally and accept locally.[09:14:32] <Muhammad> all tutorials assumed that there should be a previous experience about mail servers issues[09:14:59] <f3ew> You need to know networking basics first[09:15:01] <f3ew> and Unix[09:15:42] <Muhammad> am using debian already networking basics also is found[09:18:24] <F6F> anybody an idear where this error comes from? Aug 12 08:28:39 antifuse postfix/virtual[5845]: 8FE322CE403B: to=<dummy at piffpaffpuff dot net>, relay=virtual, delay=29786, delays=29786/0.01/0/0.02, dsn=4.2.0, status=deferred (delivery failed to mailbox //1002: unable to create lock file //1002.lock: Permission denied)[09:19:02] <F6F> Im using postfix with mysql look up[09:23:24] <jeev> looks like your permissions are messed up.[09:23:26] <jeev> good night guys[09:28:06] *** j_s has joined #postfix[09:28:16] <F6F> **G jeev can you tell me where he want to create the lock file?[09:29:29] *** Muhammad has left #postfix[09:32:09] <jeev> i have no idea man.. sorry.[09:32:11] <jeev> i gotta sleep[09:38:57] <F6F> hf[09:40:05] <vice-versa> F6F: something's hosed up for sure, I would have expected it to look more like, delivery failed to mailbox /var/mail/dummy.lock: unable to create lock file /var/mail/dummy.lock: Permission denied[09:41:12] <F6F> thx vice-versa[09:41:28] <F6F> im also unable to send Emails to the vmail user[09:41:45] <F6F> Recipient address rejected: User unknown in local recipient table[09:41:58] <F6F> hm[09:42:23] <vice-versa> was this a functional server, or fresh setup?[09:42:32] <F6F> fresh setup[09:42:50] <F6F> śetup is like this http://www.gentoo.org/doc/en/virt-mail-howto.xml[09:43:09] <vice-versa> like or is?[09:43:25] <F6F> is[09:43:31] <F6F> should be *G*[09:44:20] <vice-versa> let's see a pastebin of the output from postconf -n[09:44:27] <vice-versa> !pastebin[09:44:28] <knoba> vice-versa: "pastebin" : a way to paste larger amounts of text so that other people can read it. Try http://www.rafb.net/paste/ or http://paste.debian.net/ - Do not forget to tell us the URL where you pasted it.[09:45:29] <F6F> http://rafb.net/p/5dLryz87.html[09:46:14] *** toytoy has quit IRC[09:48:34] <vice-versa> F6F: 1002 is the correct uid for the vmail user?[09:49:13] <F6F> cat /etc/passwd | grep vmail[09:49:13] <F6F> vmail:x:1002:1002::/home/vmail:/bin/false[09:51:29] <vice-versa> what's postmap -q dummy at piffpaffpuff dot net mysql:/etc/postfix/mysql-virtual-maps.cf spit out[09:52:29] <vice-versa> change dummy to something valid if you munged your log excerpt above[09:52:59] <F6F> 1002[09:53:41] <vice-versa> ok, that's the problem[09:53:53] <F6F> i dont see it *G*[09:54:00] <vice-versa> it should give you the path to the users mailbox[09:54:11] <F6F> ah ok[09:54:21] <F6F> so its an error in the mysql db?[09:55:00] <vice-versa> that's what I'm thinking, but lets start with a pastebin of the contents of /etc/postfix/mysql-virtual-maps.cf[09:55:52] <vice-versa> feel free to munge the password ;)[09:56:22] <F6F> i think I have the error[09:56:34] <F6F> mysql-virtual-uid.cf[09:56:40] <F6F> select_field = uid[09:56:43] <F6F> zonk[09:58:02] *** war9407 has joined #postfix[09:58:18] <vice-versa> F6F: yeah, I would guess you mixed mysql-virtual-maps.cf and mysql-virtual-uid.cf for each other[09:58:19] <F6F> http://rafb.net/p/O1eJ5K79.html[09:58:23] <F6F> jo[09:58:28] <F6F> I did *G*[09:58:38] <F6F> do you wanna have a kiss?[09:58:40] <vice-versa> you need sleep or more coffee ;)[09:58:40] <F6F> *G*[09:59:38] <F6F> is it ok when I copy this text in a german from[09:59:48] <F6F> as an solution for the problem[09:59:50] <F6F> ??[10:00:11] <vice-versa> huh?[10:00:23] <vice-versa> as for the kiss, are you female and under 250 pounds? <in the voice of SNL's the Lady's Man>[10:00:44] <F6F> *G*[10:00:49] <F6F> <<< male sry[10:01:03] <vice-versa> yeah I figured as much[10:01:32] <vice-versa> speaking of coffee[10:01:34] * vice-versa wanders off[10:02:58] <robtone_> maybe he has contact to some escorts - for the kiss[10:05:00] <vice-versa> da dirty German girls[10:05:58] <robtone_> true, sexy carwash is not that common here[10:07:20] *** fleximus has joined #postfix[10:08:02] <fleximus> Hi, can you please tell me what the default behaviour is when a name service error occurs? Will the mail bounce?[10:11:40] <F6F> vice-versa, there are still Errors :-([10:11:41] <F6F> http://rafb.net/p/tsXvaV90.html[10:14:06] <vice-versa> fleximus: name service error on what exactly?[10:14:25] <vice-versa> F6F: what are the permissions on /home/vmail/piffpaffpuff.net[10:14:58] <F6F> drw------- 3 vmail vmail 4096 Aug 11 21:28 piffpaffpuff.net[10:15:33] <vice-versa> and /home/vmail/piffpaffpuff.net/dummy[10:16:04] <F6F> drw------- 3 vmail vmail 4096 Aug 11 21:29 dummy[10:16:15] <F6F> drw------- 5 vmail vmail 4096 Aug 11 21:29 .maildir[10:17:17] *** _Driver_ has joined #postfix[10:17:26] <fleximus> vice-versa: the name server fails to resolve names[10:21:42] <vice-versa> normally on resolver failures it goes to the deferred queue to be tried again later[10:24:39] <F6F> vice-versa, setting die permissons for /home/vmail to 666 changed the error to[10:25:02] <F6F> http://rafb.net/p/O0B1fD10.html[10:25:05] <F6F> this one[10:27:15] <vice-versa> 666 wouldn't be what you want on the directory structure[10:27:22] <vice-versa> try 755 for now[10:27:27] <F6F> ok[10:29:29] <F6F> still the same error[10:31:56] <vice-versa> F6F: I would rm -rf /home/vmail/piffpaffpuff.net/dummy and just let the virtual(8) transport create the directory structure on mail delivery[10:32:18] <F6F> ok[10:34:02] <vice-versa> I know tutorials are handy when you know jack, and that gentoo one isn't too bad, albeit a little dated, but you really should know your Unix and postfix basics first[10:34:11] <vice-versa> !tutorial[10:34:11] <knoba> vice-versa: "tutorial" : A very common problem is that some people prefer to follow a step-by-step tutorial that shows them how to setup their mail server without reading the documentation or understanding what they are doing. If something goes wrong, they have no clue whatsoever about where to look for hints, and they sometimes decide to start from scratch using a different tutorial. This is not The Proper Way.[10:34:12] <F6F> http://rafb.net/p/oyw8M875.html[10:35:15] <F6F> hm[10:40:41] *** Braden` has joined #postfix[10:41:23] *** brancaleone has joined #postfix[10:42:46] <vice-versa> F6F: what are the permissions on /home/vmail/piffpaffpuff.net/dummy now?[10:43:00] <F6F> 755[10:43:21] <F6F> user & group vmail[10:43:38] <vice-versa> what fs is this and is it local?[10:43:46] <F6F> ext3[10:44:01] <F6F> on software raid 1[10:45:42] <vice-versa> hmm, let's see postmap -q dummy at piffpaffpuff dot net mysql:/etc/postfix/mysql-virtual-maps.cf[10:47:04] <F6F> home/vmail/piffpaffpuff.net/dummy/.maildir[10:47:55] <Braden`> I have in my virtual file an address, but whenever I send an e-mail to that address it forwards it to another. Why is that?[10:48:21] <vice-versa> F6F: should be home/vmail/piffpaffpuff.net/dummy/.maildir/[10:50:06] <vice-versa> Braden`: another alias in there that you're not seeing?[10:51:34] <F6F> jo vice-versa *G* it works mail was deliverd to the mail dir[10:51:39] <F6F> *G*[10:51:45] <vice-versa> good[10:52:13] <F6F> but the vmail user still cant login[10:52:22] <vice-versa> do you know what was happening?[10:52:42] <vice-versa> well that's a good thing is it not?[10:52:53] <F6F> I think i know[10:53:11] <vice-versa> why would you want the vmail user logging in?[10:53:34] <Braden`> http://pastebin.com/d206b2bb <--- There are the alias/access/sender_access/virtual files.[10:54:46] <F6F> i thougt via imap[10:54:53] <F6F> +h[10:55:55] <F6F> the user dummy isnt able to get an imap conection to the server[10:55:55] <vice-versa> well you thought wrong, the users login[10:56:51] <F6F> hm?[10:57:21] <Braden`> vice-versa: Any clue if my problem is located in those files, or do you need to see my main.cf?[10:57:44] <F6F> but how are the vmail users getting there emails?[10:58:27] <vice-versa> Braden`: I'll have a look in a few minutes[10:58:31] <vice-versa> !vmail[10:58:31] <knoba> vice-versa: "vmail" : a commonly used system account with no shell access which is the owner of the virtual(8) per-recipient file system mailboxes, the UID/GID is set to that of the vmail user within packages used to access the virtual mailboxes such as the postfix virtual_gid_maps and virtual_uid_maps main.cf parameters[10:59:21] *** alienbrain has joined #postfix[10:59:38] <vice-versa> F6F: however you decide they should, but that's not postfix's responsibility[10:59:46] <F6F> hm[10:59:48] <vice-versa> it's job is done[10:59:56] <vice-versa> mail was delivered[11:00:01] <F6F> when dummy want to read his mail[11:00:24] <F6F> he need to log in via imap or pop am I right?[11:01:29] <vice-versa> yes[11:01:38] <F6F> but dummy cant *G*[11:02:05] <F6F> so he cant get his mail ...[11:02:12] <vice-versa> check your logs[11:05:20] <F6F> hm I cant find anything in the mail logs[11:05:57] <F6F> also not in the postfix log[11:07:39] <vice-versa> what logger are you using?[11:08:53] <vice-versa> Braden`: what alias are taling about here?[11:09:37] <vice-versa> bah, are we taling about...[11:09:56] <F6F> syslog-ng[11:10:36] <Braden`> hmm[11:10:37] <Braden`> Well[11:12:34] <vice-versa> F6F: look in /val/log/messages[11:14:26] <F6F> antifuse mysql # cat /var/log/messages[11:14:26] <F6F>[11:14:26] <F6F> antifuse mysql #[11:14:31] *** _bt has quit IRC[11:14:51] <vice-versa> O.o[11:15:24] <Braden`> F6F: http://www.pastebin.com[11:15:25] <vice-versa> try restarting syslog-ng[11:16:06] <Braden`> vice-versa: Same result[11:16:20] <Braden`> I remembered to run postmap on virtual as well[11:16:33] <vice-versa> ok[11:16:41] <F6F> http://rafb.net/p/5DwUQs11.html[11:19:17] <vice-versa> F6F: try logging in again and check the mail logs[11:20:15] <vice-versa> Braden`: let's see a trace of this in the mail logs[11:20:39] <Braden`> Sure[11:20:40] <Braden`> One sec[11:22:49] <Braden`> vice-versa: http://pastebin.com/d1994995[11:23:52] <vice-versa> ok, this seems too obvious to ignore, warning: do not list domain tenament.com in BOTH mydestination and virtual_alias_domains[11:24:37] *** madrescher has joined #postfix[11:24:39] <F6F> http://rafb.net/p/dePnKa36.html[11:24:47] <Braden`> Yea, but that shouldn't affect the users the e-mail goes to. I will fix it though.[11:25:20] *** AdvoWork has joined #postfix[11:25:46] <AdvoWork> hi there, ive got a few different master.cf files, is there a way I can find the one my system is actually using?(on ubuntu)?[11:26:18] <riz_> AdvoWork usually it is in /etc/postfix/master.cf[11:26:49] <vice-versa> postconf config_directory[11:26:59] *** toytoy has joined #postfix[11:27:04] <AdvoWork> ok, and does this sound like a problem you've come across before at all? postdrop: warning: uid=0: File too large sendmail: fatal: root(0): message file too big[11:27:26] <AdvoWork> ahhh found config_directory = /opt/zimbra/postfix-2.4.3.4z/conf[11:27:50] *** Matt has quit IRC[11:28:33] <AdvoWork> hmm, this looks fine? message_size_limit = 40960000[11:28:37] <vice-versa> F6F: what are you showing us here?[11:28:41] *** toytoy has quit IRC[11:28:57] <F6F> cat /var/log/mail.*[11:29:08] <riz_> AdvoWork I have the same size: message_size_limit = 40960000[11:29:33] <AdvoWork> riz_ is that 20mb?[11:29:52] <vice-versa> F6F: is this still about your login issue?[11:29:55] <AdvoWork> 40 even[11:29:55] <riz_> AdvoWork yes.[11:29:57] <AdvoWork> oh[11:29:58] <F6F> yes[11:30:16] <vice-versa> F6F: what are we trying to log into?[11:30:31] <F6F> dummy at piffpaffpuff dot net[11:30:45] <F6F> the vmail user[11:30:48] *** Haris1 has joined #postfix[11:31:18] <vice-versa> that's not the vmail user, but I meant what service[11:31:24] *** xpoint has joined #postfix[11:31:36] <F6F> imap[11:32:02] <vice-versa> do you have even have an imap daemon running?[11:32:30] <riz_> AdvoWork the value of message_size_limit is in bytes[11:32:30] <F6F> yes nomal users get there mail[11:32:50] <F6F> dummy also cant log in via Squirrel[11:33:16] *** skyweb has joined #postfix[11:34:57] <vice-versa> nomal users?[11:35:22] <sysmonk> vice-versa: nomal nomal[11:35:29] <sysmonk> morning all[11:35:40] <Haris1> morning[11:35:45] <Haris1> afternoon, I should say[11:35:52] <sysmonk> ye, afternoon here to[11:35:54] <sysmonk> too*[11:35:55] *** Fallenou has joined #postfix[11:35:57] <vice-versa> F6F: you mean local unix account?[11:36:01] <F6F> yes[11:36:02] <F6F> *G*[11:39:21] <vice-versa> F6F: authenumerate[11:39:44] <vice-versa> that show anyhting for your virtual users?[11:40:22] <F6F> jo[11:40:50] <F6F> http://rafb.net/p/KE8ILQ71.html[11:41:41] <sysmonk> what's authenumerate?[11:42:25] <vice-versa> courier testing utility[11:42:50] <sysmonk> oh[11:42:54] * sysmonk doesn't use courier[11:43:09] <sysmonk> thought that i'm lame and don't know some kind of 'default' unix command :([11:43:20] *** kRocKodile has joined #postfix[11:43:31] <vice-versa> :)[11:43:35] *** Jense_ has joined #postfix[11:43:46] *** Jense_ is now known as Jense__[11:44:12] *** Jense has quit IRC[11:44:52] *** Jense__ is now known as Jense[11:44:55] *** Muhammad has joined #postfix[11:46:16] <vice-versa> F6F: two things that jump out at me are the incomplete path for the the virtual users home directory, and the missing / on the beginning of the maildir path[11:46:34] <Muhammad> am using debian ethc installed postfix using apt-get now i have a pop-up message have some options like no configuration , internet site ..... i want to run postfix on private network what should i choose local only ?[11:47:31] <vice-versa> F6F: that's working in postfix because you have virtual_mailbox_base = /[11:48:11] *** dusty_ has quit IRC[11:48:29] <F6F> ok so you think home dir should look like this /home/vmail/piffpaffpuff.net/dummy/[11:49:04] *** dusty_ has joined #postfix[11:49:21] <vice-versa> F6F: seems more logical to me[11:49:41] <F6F> im trying[11:49:42] <F6F> moment[11:51:31] <fleximus> How can a mail stay deferred for 3 months when maximal_queue_lifetime = 1d ?[11:51:47] <fleximus> Some mails bounced after a restart of the complete server...[11:52:50] *** Muhammad is now known as EnG1n33R[11:52:58] *** EnG1n33R has left #postfix[11:53:24] <F6F> vice-versa, dummy still cant log in[11:54:08] <f3ew> fleximus, mail on HOLD?[11:54:35] *** shoonya has joined #postfix[11:54:43] <shoonya> hello all[11:54:59] <shoonya> how to add custom error for error code 550 ?[11:55:29] <shoonya> can someone give me a pointer for this[11:56:08] <fleximus> f3ew: no, I don't think so[11:57:30] <Roobarb> shoonya: why would you want to?[11:58:03] <vice-versa> F6F: anything relevant in the logs now?[11:59:02] <shoonya> Roobarb: i have setup local_recipient_map and would like to display a shorter message like "user does not exist" for my webmail users[11:59:07] <F6F> jo[11:59:33] <vice-versa> jo = no?[11:59:37] <F6F> http://rafb.net/p/wDl2Zc90.html[11:59:41] <F6F> jo = yes[11:59:44] <fleximus> the messages got deferred but no bounce was sent?![11:59:48] <F6F> sry[12:00:11] <shoonya> Roobarb: how to set custom error ?[12:00:20] <Roobarb> so "Recipient address rejected: User unknown in local recipient table" is too long ?[12:00:29] <shoonya> yes[12:00:30] <vice-versa> F6F: umm, wrong login credentials[12:01:08] <Roobarb> shoonya: you probably need to change the code[12:01:33] <shoonya> ErrorThere was an error sending your message: Failed to add recipient: ddd at domain dot com [SMTP: Invalid response code received from server (code: 550, response: 5.1.1 <ddd at domain dot com>: Recipient address rejected: User unknown in local recipient table)][12:01:43] <shoonya> this is the current error displayed[12:02:23] <Roobarb> " Invalid response code received from server " ?[12:02:26] <Roobarb> what rubbish[12:02:35] <shoonya> this is in webmail[12:03:06] <fleximus> status is expired, but I wonder why postfix has not seen this 3 months ago[12:04:35] <F6F> vice-versa, password is the same like in the mysqldb users/clear field[12:05:23] <vice-versa> I didn't say password specifically, credentials in this context is username/password[12:06:03] <F6F> sry[12:06:13] <vice-versa> what's the username?[12:09:26] <vice-versa> F6F: ?[12:09:31] <F6F> dummy[12:09:48] <vice-versa> what makes you think that?[12:10:11] <F6F> dummy at piffpaffpuff dot net is allowed to log in with squirrel[12:10:25] <vice-versa> right[12:10:28] <F6F> i also tried dummy at piffpaffpuff dot net in evolution[12:10:34] <F6F> as user name[12:10:43] <F6F> but it wont work :-([12:10:49] *** EugenA has joined #postfix[12:11:13] <vice-versa> and the logs say what when logging in with evolution[12:11:49] *** JoeWulf has quit IRC[12:12:11] *** JoeWulf has joined #postfix[12:12:34] *** JoeWulf has joined #postfix[12:14:08] <F6F> woq[12:14:13] <F6F> its working *G*[12:14:17] <F6F> year year[12:14:24] <F6F> I had to restart Evolution *G*[12:14:25] <F6F> lol[12:14:46] *** Draecos has joined #postfix[12:14:49] <F6F> vice-versa, tell me when ever I can help you[12:14:51] <vice-versa> does that mean it took two years?[12:14:53] <vice-versa> sure felt like it ;)[12:14:59] <F6F> yes[12:15:01] <F6F> G**[12:15:15] <F6F> dummy has 15 new mails *G*[12:15:17] <F6F> Oo[12:15:57] <F6F> vice-versa> sure felt like it ;) << I dont undstand[12:15:58] <F6F> sry[12:16:26] <vice-versa> felt like two years[12:16:30] <F6F> ah ok[12:16:34] <F6F> yes *G*[12:16:37] *** hever has joined #postfix[12:17:21] <vice-versa> F6F: so is this server on the same ip you're ircing on?[12:19:11] <F6F> no[12:19:24] *** AdvoWork has left #postfix[12:19:25] <vice-versa> ok, good thing[12:19:39] <F6F> im using irc here on my laptop[12:19:56] <F6F> the server dont do anyting about irc[12:20:33] *** m1n3s6 has quit IRC[12:21:07] <F6F> some month ago I had a homeserver here under my desk[12:21:14] <F6F> a old thinkpad T30[12:21:27] <F6F> *G*[12:21:31] <vice-versa> not what I meant, just the ip you're using to irc from would not be suitable for a mail server[12:23:02] *** EugenA has quit IRC[12:23:03] <vice-versa> dip.t-dialin.net netblocks are blocked by many rbls[12:23:24] *** bhagat has joined #postfix[12:23:55] <vice-versa> horrid amount of spam comes from that isp's network[12:24:35] * vice-versa guesses mainly zombie windows boxen[12:25:17] <F6F> yes vice-versa i already noticed that with my home server[12:25:27] <F6F> *G*[12:25:47] <F6F> google dont block sucht domains[12:25:51] <vice-versa> yeah I can just imagine being right there on the front lines ;0[12:25:51] <F6F> *G*[12:25:53] <F6F> google mail[12:26:32] <F6F> but it is sad they are doing so[12:26:54] <vice-versa> google does more SPAM directory filing then blocking though[12:30:52] <F6F> yes[12:30:56] <F6F> perhaps[12:31:36] <F6F> probably is might the better word here G**[12:31:57] <F6F> in the meaning more probably than not[12:31:58] <F6F> *G*[12:32:09] <F6F> << worse english[12:32:11] <vice-versa> aye[12:37:57] *** cpm has joined #postfix[12:44:50] <vice-versa> shoonya: you can reduce that down to just 'User unknown' by setting show_user_unknown_table_name = no[12:47:32] <sysmonk> ho cpm[12:49:06] <vice-versa> cpm's a ho?[12:49:07] <cpm> hey sysmonk[12:49:25] *** _ke has joined #postfix[12:49:27] <_ke> hi[12:50:37] <_ke> stupid question: i have set up a postfix with virtual domains and virtual users. now i have a forwarder named "info at domain dot org" which forwards everything to "steve at domain dot org". what is now the easiest way if steve wants to write a mail, but have "info at domain dot org" as sender?[12:51:18] <sysmonk> configure the mail client correctly[12:51:19] <sysmonk> ;)[12:53:39] <shoonya> vice-versa: thanks[12:55:29] <_ke> sysmonk, sure :) but i mean, "info@" is not a real account?[12:55:59] <sysmonk> so what?[12:57:05] <_ke> sysmonk, i dont get it, sorry[12:58:14] <vice-versa> it's more a mua issue then an mta one[12:58:48] <_ke> vice-versa, sure, but you would have a password to send the mail, and of course "info@" does not have one, as its not a real account[12:58:55] <sysmonk> _ke: you can tell you're anyone. you can set your email to bill.gates at microsoft dot com in your MUA[12:59:09] <sysmonk> _ke: from and user/password are different things[12:59:24] <sysmonk> you can have user _ke, but that doesn't mean that your email will be '_ke', right?[12:59:28] <_ke> sysmonk, and postfix wont accept it, as it isnt acting as an open relay[12:59:42] <_ke> sysmonk, sure[13:00:25] <sysmonk> _ke: auth != from[13:02:33] *** k4z has joined #postfix[13:02:42] <_ke> sysmonk, thanks ;) now i understand it[13:03:53] <sysmonk> took a while :0[13:04:00] <vice-versa> hehe[13:04:19] *** Skorp has quit IRC[13:04:19] *** tkooda_ has quit IRC[13:04:19] *** jeev has quit IRC[13:04:19] *** zchef2k has quit IRC[13:04:19] *** VivekVC has quit IRC[13:04:20] *** chrisq has quit IRC[13:04:20] *** glitch- has quit IRC[13:04:20] <_ke> ;)[13:04:48] *** Skorp has joined #postfix[13:04:48] *** tkooda_ has joined #postfix[13:04:48] *** jeev has joined #postfix[13:04:48] *** zchef2k has joined #postfix[13:04:48] *** glitch- has joined #postfix[13:04:48] *** chrisq has joined #postfix[13:04:55] <vice-versa> wb[13:07:49] <_ke> sysmonk, vice-versa thanks[13:09:38] <vice-versa> yw[13:17:04] <k4z> Hi, anyone know what this error means? - EX_IOERR in msmtp? :)[13:18:04] <cpm> don't think it has a lot to do with postfix.[13:18:14] *** skyweb has quit IRC[13:18:26] <k4z> my postfix cannot start /usr/lib/postfix/smtpd: bad command startup -- throttling <- and i wonder if this is because of errors in msmtp? ;d[13:18:54] <cpm> msmtp is a smtp client..[13:19:14] <cpm> pastebin the lines up to and including the bad command startup[13:19:18] <cpm> from the logs[13:19:22] <k4z> ok wait[13:20:34] *** dusty_ has quit IRC[13:21:31] <Braden`> What would an entry in a file specified by local_recipient_maps look like?[13:21:40] <Braden`> ie. "braden" or "braden at tenament dot com" ?[13:22:39] <sysmonk> Braden`: braden[13:23:15] <Braden`> Thanks[13:25:02] <k4z> cpm: http://pastebin.com/m1168ec3b - mail.err | http://pastebin.com/m29369c91 - mail.info | http://pastebin.com/m4d055a80 - mail.warn[13:26:09] * cpm sighs[13:26:20] <cpm> Pop3d isn't postfix. msmtp isn't postfix[13:27:04] <cpm> postfix is attempting to start, and failing. Probably a misconfiguration.[13:27:10] <cpm> !topic[13:27:11] <knoba> cpm: "topic" : The Postfix MTA || Wiki: postfixwiki.org || On using IRC: workaround.org/moin/GettingHelpOnIrc || Bot info: workaround.org/f=postfix || post postconf -n and relevant logs to a pastebin when asking questions / check your logs / know your unix basics[13:28:34] *** skyweb has joined #postfix[13:28:49] <k4z> cpm: ok, can i paste my postconf -n ?[13:29:13] <cpm> you may post it to a pastebin, yes.[13:30:44] <k4z> cpm: http://pastebin.com/m7fc4a399[13:31:39] *** Skorp has left #postfix[13:33:34] *** PcPixel has joined #postfix[13:33:35] *** Matt has joined #postfix[13:33:40] <PcPixel> Morning all! :)[13:33:43] *** Juspion has joined #postfix[13:35:16] <vice-versa> reject_unauth_desti[13:35:17] <vice-versa> nation,[13:35:31] <PcPixel> i have reject_unknown_recipient_domain before reject_unauth_destination. Yet if i feed it an invalid recipient domain, i get Relay access denied instead of Domain not found.[13:35:32] <vice-versa> k4z: is that just a pastebin glitch?[13:35:37] <PcPixel> why would that be?[13:36:33] <k4z> vice-versa: i pasted result of postconf -n in pastebin ;p[13:37:03] *** cilly has joined #postfix[13:37:11] <vice-versa> k4z: I know, but look at lines 27 & 28[13:37:45] <vice-versa> 192.168.0.2/16 doesn't look right either, but that's not a pastebin glitch ;)[13:37:55] <k4z> vice-versa: so maybe problem in syntax?[13:39:15] <k4z> w8[13:39:32] <vice-versa> looks like the return key was hit by mistake while editing main.cf[13:40:06] <k4z> vice-versa: ok i try to reedit :) thanks[13:41:10] <PcPixel> vice: any idea on my problem? :)[13:41:36] <vice-versa> not really a problem is it?[13:41:49] <PcPixel> correct, but i dont get why the check isnt triggering[13:41:57] <PcPixel> i mean im getting what i want which is the mail doesnt get through[13:42:17] <PcPixel> but it just seems odd that its the reject_unauth_destination catching it and not reject_unknown_recipient_domain[13:42:40] <PcPixel> i mean, im still ginna leave it in my main.cf[13:43:23] <vice-versa> I would think it logical that one of the first things postfix would know would be be the client connection and whether it is authorized to relay or not[13:44:48] <PcPixel> right, but you wouldnt know that until the RCPT TO[13:46:38] <PcPixel> i dunno.. i know im just knitpicking :) was just hoping for clarification. no biggie :)[13:47:06] *** VivekVC has joined #postfix[13:47:10] *** Draecos has quit IRC[13:48:16] <vice-versa> the order of restrictions in main.cf does not necessarily logically define how they're processed[13:48:31] <PcPixel> really?[13:48:43] <PcPixel> interesting[13:49:57] *** tuxinator has joined #postfix[13:50:56] <PcPixel> im hoping by end of today ill have my new main.cf ready for review :)[13:52:17] <vice-versa> the order important, but may not work as anticipated at times[13:52:32] <PcPixel> understood :)[13:52:58] <Braden`> Not sure why I am getting that error[13:53:04] <Braden`> postfix should recieve mail for both domains[13:53:14] *** manlymatt83 has quit IRC[13:53:51] <vice-versa> PcPixel: I think the document the cheatsheet factoid links to covers this a little[13:54:07] *** _ke has left #postfix[13:54:38] <vice-versa> !loopback[13:54:39] <knoba> vice-versa: "loopback" : 'Mail loops back to myself' means that your Postfix wanted to send out the mail to the internet but then discovered that the DNS says your mail server should be responsible. Most likely you forgot to list your domain in mydestination or virtual_(alias|mailbox)_domains[13:55:02] *** manlymatt83 has joined #postfix[13:55:31] <vice-versa> !tell PcPixel cheatsheet[13:59:59] <PcPixel> lol[14:00:13] <PcPixel> thats cute :)[14:00:17] <PcPixel> yeah i have that one bookmarked[14:00:54] <vice-versa> clearer now?[14:01:00] <PcPixel> brb. service call.[14:03:21] <Braden`> Thank you![14:03:24] *** Braden` has quit IRC[14:06:50] *** ming_zym has quit IRC[14:11:25] *** skyweb has quit IRC[14:24:16] <PcPixel> back[14:24:22] <PcPixel> yeahi need to read that one through a litthe more[14:24:46] <PcPixel> and i need more coffee. man i cant type![14:25:09] <PcPixel> vice: do you use reject_unknown_client and/or reject_unknown_hostname ?[14:26:06] *** cilly has quit IRC[14:28:48] <vice-versa> reject_unknown_client_hostname is a tad too strong imo[14:29:40] <vice-versa> I use reject_unknown_reverse_client_hostname on some mta's, but only ones I monitor frequently[14:29:45] *** anebi has joined #postfix[14:30:30] <PcPixel> vice: thats for an earlier version of postfix, yes?[14:30:36] <PcPixel> same things just earlier syntax?[14:31:58] <vice-versa> no it's for newer[14:32:40] <PcPixel> ah, i read it backwards[14:33:27] <PcPixel> oh wow, i didnt know about that one[14:34:02] <vice-versa> reject_unknown_helo_hostname can be a PITA, be prepared to whitelist[14:34:39] <PcPixel> vice: thats what we were doing, we had a white list for it. but we got complaints we were rejecting too much legitimate mails after someone did get 3 emails in 1 week.[14:34:42] <PcPixel> didnt[14:35:06] <vice-versa> yup, you have to be careful with that one[14:35:10] <anebi> hi[14:35:43] <anebi> can you give me some links for postfix optimization and queue managing?[14:35:44] <PcPixel> vice: oh i agree. but the amount of spam that we were dropping versus the false poz, it was easier to whitelist and talk the people into converting[14:36:00] *** EasilyOdd has joined #postfix[14:36:12] *** dusty_ has joined #postfix[14:36:55] *** pulsars has joined #postfix[14:37:29] *** pulsar has quit IRC[14:37:53] <vice-versa> PcPixel: yeah it's a tough call sometimes, depends on the users, but the first time you cost someone money they forget everything they agreed to previously when it was the spam that was agitating the shit out of them[14:38:02] *** r0mzo has joined #postfix[14:38:05] <roe_> vice-versa, have reject unknown helo name - no issues for at least 6months[14:38:12] <r0mzo> how can i stop the greylist on postfix?[14:38:36] <lunaphyte_> turn off your policy restriction.[14:38:39] <PcPixel> yeah i know.[14:38:52] <r0mzo> lunaphyte_: how?[14:39:11] <vice-versa> roe_: lucky, must be low traffic/consistent traffic[14:39:12] <PcPixel> vice: just swapped out unknown_client for reject_unknown_reverse_client_hostname[14:39:24] <PcPixel> i have that too[14:39:26] <roe_> no, I'm sorry I have reject invalid and non fqdn hostname[14:39:52] <lunaphyte_> r0mzo: postconf | grep -i check_policy_service[14:40:32] <vice-versa> roe_: yah, that's a must have[14:40:37] <PcPixel> ive got: invalid_helo, non_fqdn_helo, (now) unknwon_reverse[14:40:37] <r0mzo> smtpd_recipient_restrictions = permit_mynetworks permit_sasl_authenticated reject_unauth_destination check_policy_service inet:127.0.0.1:2501[14:40:51] <PcPixel> i was using unknown_helo with a whitelist[14:40:53] <r0mzo> i get that lunaphyte_ where do i # that line to restart[14:40:54] <r0mzo> ?[14:41:09] <lunaphyte_> huh?[14:41:42] <r0mzo> lunaphyte_: do i have to comment that line and restart postfix and greylist will stop?¿[14:42:07] <lunaphyte_> r0mzo: pastebin postconf -n[14:42:16] <robtone_> you have to remove, or comment, "check_policy_service inet:127.0.0.1:2501"[14:42:58] <robtone_> r0mzo, how did you install it?[14:43:10] *** Juspion has quit IRC[14:43:20] <r0mzo> i comment the line and now i dont get nothing when i do postconf | grep -i check_policy_service[14:43:27] <r0mzo> that means now i dont got greylist[14:43:28] <r0mzo> ?[14:43:41] <robtone_> r0mzo, and why do you even dare to remove the greylister from a service whose syntax and semantics you don't even know?[14:43:54] <lunaphyte_> yes, once you restart postfix.[14:45:15] *** anebi has left #postfix[14:45:37] <r0mzo> lunaphyte_: http://pastebin.com/d7a8d14e7 (postconf -n)[14:46:01] <roe_> robtone_, "seemed like a good idea at the time"[14:46:15] <robtone_> roe_, that's okay[14:46:32] <vice-versa> PcPixel: here's an example of some restrictions I commonly use for pre-data spam control, http://pastey.net/93592[14:46:39] <robtone_> roe_, but - it rather seems like he fiddles with a configuration which he doesn#t know[14:46:58] <roe_> as long is it isn't production it is a good way to learn[14:47:18] <r0mzo> lunaphyte_: is ok now? greylist should be down?[14:47:25] <lunaphyte_> it's an even better way to learn if it's production ;)[14:47:26] <robtone_> yeah, sure, but shouldn't he have learned while installing it in the first place?[14:47:31] <robtone_> hehe :-)[14:47:43] <lunaphyte_> r0mzo: yup. you're all set.[14:48:01] <r0mzo> thxs lunaphyte_ very helpfull[14:48:03] <r0mzo> :)[14:48:04] <PcPixel> vice: oh cool! ill check it out now.[14:48:12] <roe_> could be the replacement and the boss fired the hax0r and this guy needs to fix this issue first then will have time to learn[14:48:43] <robtone_> r0mzo, for more information about policy services: http://www.postfix.org/SMTPD_POLICY_README.html[14:48:47] <lunaphyte_> of course, my guess is that you either didn't have it active in the first place, or you've now completely commented out all of your smtpd_recipient_restrictions, but whatever.[14:48:55] <r0mzo> nice, thxs robtone_ :)[14:50:37] *** McJerry has joined #postfix[14:51:14] <PcPixel> vice: pvt ok?[14:51:51] <sysmonk> pvt!!![14:51:52] <sysmonk> ;)[14:52:23] <vice-versa> wow, a promotion ;)[14:52:24] *** toytoy has joined #postfix[14:52:30] <sysmonk> wee[14:52:32] <robtone_> r0mzo, you have commented smtpd_recipient_restrictions, this means, you are using the default, which doesn't handle sasl auth[14:52:33] <sysmonk> congrats :)[14:54:01] <robtone_> r0mzo, you want this in order to only disable the policy service: smtpd_recipient_restrictions = permit_mynetworks permit_sasl_authenticated reject_unauth_destination[14:54:07] <robtone_> r0mzo, and you want a handbook[14:54:15] <roe_> I like pastey.net[14:55:51] <r0mzo> thxs robtone_ :)[15:02:25] *** Braden` has joined #postfix[15:02:26] <Braden`> Hello[15:02:31] <robtone_> Hm, it's vacation time. I wonder how many head-admins return with a completely messed up infrastructure[15:02:55] <Braden`> I am having problems resolving a problem.[15:02:56] <Braden`> Aug 12 09:01:28 balthasar postfix/smtp[18841]: warning: host mail.tenament.com[74.137.173.144]:25 greeted me with my own hostname balthasar.tenament.com[15:02:56] <Braden`> Aug 12 09:01:28 balthasar postfix/smtp[18841]: warning: host mail.tenament.com[74.137.173.144]:25 replied to HELO/EHLO with my own hostname balthasar.tenament.com[15:03:12] <Braden`> I have 74.137.0.0/16 in mynetworks[15:03:21] <Braden`> So I am not sure why I am still getting the loopback error[15:03:48] *** _bt has joined #postfix[15:08:03] <robtone_> this rather looks like a symptom, not a reason[15:08:57] <robtone_> you are sending from host_x to host_x[15:09:07] <robtone_> the question is, why?[15:09:28] <Braden`> Right. Shouldn't it know its the same machine if I specify the ip address in mynetworks?[15:09:51] <robtone_> do you want to send it to the same machine?[15:10:06] *** saurabhb has quit IRC[15:10:15] <robtone_> because it would try to send it again to the same machine[15:11:07] <robtone_> if you want, that it sends this mail forever to the same machine, and traverse the mailrouting to discover that it should be delivered again to the same machine, then - hm, I don't know[15:11:22] <robtone_> I didn't have to challenge such a situation[15:12:12] <_Tino> Hello[15:12:34] <_Tino> I am trying to exec qshape from snmp and Hell it's difficult[15:12:44] *** xnixan has quit IRC[15:13:19] <_Tino> I am about something with sudo but I am blocked as user snmp must sudo -u postfix /usr/sbin/postfix :([15:13:36] <Braden`> How do I make it just simply accept the mail?[15:13:50] <_Tino> I miss something in sudoers[15:14:57] <robtone_> Braden`, postconf -n to some paste side, my bet would be that you should become final destination for that domain, or add it to your virtual domains[15:15:30] <robtone_> Braden`, this will become tricky if you have some quirky transports[15:21:01] <Haris1> Ok[15:21:56] <Haris1> I'v setup a) mysql_virtual_alias_maps.cf b) mysql_virtual_domain_maps.cf c) mysql_virtual_mailbox_maps.cf d) mysql_virtual_transport_maps.cf (for local delivery). Now I need to know what to do for domains that are not hosted locally[15:22:04] <Haris1> sasl_auth is left[15:22:08] <Haris1> that I can handle[15:23:16] <zchef2k> i'm eagerl;y paying attention to this conversation[15:27:43] *** fantata has joined #postfix[15:28:03] *** zchef2k has left #postfix[15:29:03] <Haris1> !virtual_overquota_bounce[15:29:04] <knoba> Haris1: Error: "virtual_overquota_bounce" is not a valid command.[15:29:07] <Haris1> ?[15:29:23] <Haris1> !virtual_bounce[15:29:23] <knoba> Haris1: Error: "virtual_bounce" is not a valid command.[15:29:25] <Haris1> hmm[15:29:28] <Haris1> !bounce[15:29:28] <knoba> Haris1: Error: "bounce" is not a valid command.[15:29:30] <Haris1> !bounces[15:29:31] <knoba> Haris1: Error: "bounces" is not a valid command.[15:29:33] <Haris1> shEEP[15:30:04] <roe_> !ball_bounce[15:30:05] <knoba> roe_: Error: "ball_bounce" is not a valid command.[15:30:11] <roe_> nope I got nothing either[15:30:39] <Haris1> !virtual[15:30:39] <knoba> Haris1: "virtual" : a way to configure additional domains and user accounts (that do not need to exist in your /etc/passwd). See: http://www.postfix.org/VIRTUAL_README.html[15:31:15] <fantata> hi guys - any of you know how I've got the same mail, aliased to 2 people, but one copy has BAYES_00 score and one has BAYES_20. There is no difference in the user_prefs config files. I'm confused[15:33:37] <Haris1> !virtual_mailbox_limit_maps[15:33:38] <knoba> Haris1: Error: "virtual_mailbox_limit_maps" is not a valid command.[15:33:41] <Haris1> shEEP![15:34:18] <roe_> !sheep[15:34:18] <knoba> roe_: Error: "sheep" is not a valid command.[15:35:14] <Haris1> !virtual_mailbox_limits[15:35:15] <knoba> Haris1: Error: "virtual_mailbox_limits" is not a valid command.[15:35:17] <Haris1> !virtual_mailbox_limit[15:35:17] <knoba> Haris1: "virtual_mailbox_limit" : a configuration parameter in the main.cf: The maximal size in bytes of an individual mailbox or maildir file. Specify a value of zero to disable the limit.[15:35:26] <roe_> we have a winner![15:40:36] <Haris1> I'v set it all up[15:40:43] <Haris1> just am confused about relay to outside domains[15:40:52] <Haris1> I guess that's natural[15:41:16] <Haris1> I guess naturally that'll be taken care of as well[15:42:11] *** cilly has joined #postfix[15:42:47] *** fantata has quit IRC[15:46:04] *** toytoy has quit IRC[15:48:14] *** fleximus has left #postfix[15:51:36] *** xpoint has quit IRC[15:53:09] *** felix-da-catz_zz is now known as felix-da-catz[15:54:37] *** PcPixel has quit IRC[15:56:02] *** fleximus has joined #postfix[15:56:48] <fleximus> I have some mails in my active queue which are 3 months old.... why haven't they bounced?[16:01:20] *** cilly has quit IRC[16:03:01] <vice-versa> fleximus: broken content filter?[16:03:34] <fleximus> vice-versa: there is no content filter. The installation is quite simple and is only for outbound[16:05:52] <vice-versa> hmm, high volume?[16:06:14] *** shoonya has quit IRC[16:06:51] <fleximus> vice-versa: 900 Mails. This is not very much[16:07:19] <fleximus> The spool dir is on an nfs server[16:07:48] <fleximus> but I've never had any problems with that[16:09:27] *** Knoedel2 has joined #postfix[16:13:20] *** madrescher has quit IRC[16:14:47] *** kRocKodile has quit IRC[16:15:24] *** skyweb has joined #postfix[16:16:30] *** pulsars is now known as pulsar[16:16:35] *** seekwill has joined #postfix[16:18:58] *** Morbus has joined #postfix[16:19:49] <Morbus> eh oh. quick question. i'm testing some mail sending via an app and my (receiving) server temporarily disappeared; thus, the outgoing message is stuck in the postfix queue. is there a way i can tell postfix to resend the queue Right Now? I'd like not to wait for the next flush.[16:22:03] <vice-versa> postsuper -r ALL[16:22:28] <Morbus> thanks, /just/ found that in google too. naturally, right.[16:23:20] <Morbus> so that requeud a number of messages, but still not seeing them sent out in the log.[16:23:41] <Morbus> nevermind. there it goes.[16:24:02] <vice-versa> :)[16:24:29] <vice-versa> fleximus: interesting, never ran across or heard of this myself, might be worth bring up in the postfix mailing list[16:25:12] <vice-versa> do you have any other details to share on the stuck mail?[16:25:19] *** pitakill has joined #postfix[16:26:20] <Morbus> thanks again. /me waves.[16:26:21] *** Morbus has left #postfix[16:33:59] *** pickcoder has joined #postfix[16:41:57] <fleximus> vice-versa: might be worth to upgrade postfix. It is 2.3.x[16:46:05] <vice-versa> think I would rather have a better idea on what is going on myself rather than performing an upgrade on a production server to just tias[16:52:01] *** ming_zym has joined #postfix[16:52:15] <lunaphyte_> i would just pick it up and shake it. sometimes they can get stuck to the sides.[16:54:52] <pickcoder> did you install gremlin guards?[16:55:35] <lunaphyte_> gremlins was a fantastic movie.[16:56:13] <pickcoder> michael winslow rocks[16:57:13] <Braden`> robtone_: Are you still here?[17:01:48] *** UQlev has joined #postfix[17:02:02] *** havvg has joined #postfix[17:06:47] *** ikonia has quit IRC[17:06:50] *** ikonia has joined #postfix[17:08:19] *** UQlev has quit IRC[17:12:26] *** ikonia has quit IRC[17:12:50] *** JT has quit IRC[17:12:59] *** JT has joined #postfix[17:13:10] *** hparker has joined #postfix[17:22:09] *** madrescher has joined #postfix[17:22:55] *** sophokles1 has joined #postfix[17:23:46] *** REdOG has joined #postfix[17:25:21] <REdOG> is there some way to edit queued messages? I would like to change the destination...the mx record changed and the message in the queue is trying to deliver to the old host[17:26:20] <lunaphyte_> re-queue it.[17:26:25] <Dominian> what lunaphyte_ site[17:26:34] <Dominian> s/site/said[17:27:53] *** toytoy_ has joined #postfix[17:28:42] *** bhagat has quit IRC[17:32:15] *** rcsu has joined #postfix[17:33:32] *** mmcr has joined #postfix[17:34:24] <REdOG> postsuper -r ALL ?[17:35:11] <REdOG> guess so[17:35:12] <REdOG> hehe[17:36:04] <REdOG> they still try to go to the wrong place[17:38:33] <lunaphyte_> make sure the stale mx record isn't still alive in a cache somewhere.[17:39:06] *** sophokles has quit IRC[17:39:28] *** mmcr has quit IRC[17:42:22] <REdOG> dig mx shows the correct answer[17:44:19] <lunaphyte_> postfix uses the system resolver library, not dig.[17:44:25] *** xnixan has joined #postfix[17:46:55] *** zack23 has joined #postfix[17:47:19] <REdOG> and dig doesn't?[17:47:44] <zack23> I wanted to thank all those who have helped me on here over the past few days to transition over from Qmail to Postfix - things are working good and I definitely like the fact that I can use PostgreSQL[17:48:05] <zack23> I just have one question about hosting virtual users with maildrop if anyone uses this at all?[17:48:15] <lunaphyte_> REdOG: no[17:54:09] *** gangans has joined #postfix[17:55:04] *** gangans has quit IRC[17:55:35] *** skyweb has quit IRC[17:58:06] *** Maddog has joined #postfix[17:58:08] *** PcPixel has joined #postfix[17:58:08] <Maddog> hi[17:59:18] *** dty has quit IRC[17:59:54] <Maddog> I have a problem getting my sasl authentication to work..i configured the smtpd.conf but postfix keeps complaining, that it can't find any authantication mechanism..[17:59:59] <REdOG> well everything else destin for that domain goes to the correct host so I dont know why the queued, requeued emails would still be trying to go to the old record, if it were cached and was using an old record then wouldn't the rest of the mails fail trying to go to that host?[18:00:02] <PcPixel> would it be a bad move to use check_helo_mx_access to look for IP's that cant possibly be out on the internet? (192.168.x.x,etc)[18:03:36] *** PcPixel has quit IRC[18:05:00] *** githogori has quit IRC[18:05:41] *** syllogism has joined #postfix[18:06:10] <syllogism> hey guys. What's the easiest way to determine what helo my postfix server is using when sending mail?[18:07:20] <REdOG> reading the destination server's log?[18:07:24] *** brancaleone has quit IRC[18:07:34] *** car_watt has joined #postfix[18:07:50] *** xnixan has quit IRC[18:07:52] <lunaphyte_> postconf smtp_helo_name[18:08:02] <car_watt> hello guys, quick question, one has installed or seen a spam filter that is based on the domains of whois?[18:08:02] <car_watt> hello guys, quick question, one has installed or seen a spam filter that is based on the domains of whois?[18:08:02] <REdOG> you win[18:08:04] <REdOG> lol[18:08:17] <zack23> are there any good postfix analysis tools , ie. to show graphs or usage, etc?[18:08:18] *** sophokles1 has quit IRC[18:11:01] *** syllogism has quit IRC[18:11:21] <Maddog> zack23: just google, there are many arround[18:12:12] *** syllogism has joined #postfix[18:16:44] <seekwill> Google has one :)[18:17:51] <seekwill> google mail trends[18:18:44] *** Niemi_ has joined #postfix[18:18:50] *** cilly has joined #postfix[18:25:22] <riz_> zack23 there is a perl script called pflogsumm.pl, but doesn't graph. You can use cacti with some customization.[18:25:55] <lunaphyte_> !mailgraph[18:25:56] <knoba> lunaphyte_: "mailgraph" : a graphical statistics tool for postfix. See: http://people.ee.ethz.ch/~dws/software/mailgraph[18:26:16] *** madrescher has quit IRC[18:26:42] <riz_> or mailgraph but don't know if it is maintained yet[18:31:04] *** tshine has joined #postfix[18:34:32] <syllogism> I've googled for a couple of hours now, but I can't seem to find any way that my postfix server is sending mail as localhost.localdomain[18:35:19] <syllogism> CBL offers a service that lets you send them an email and they will respond with the HELO that your server used[18:35:49] *** havvg has quit IRC[18:37:12] <syllogism> Does anyone have any ideas ?[18:37:18] <syllogism> I can provide any information you need..[18:38:55] *** Braden` has quit IRC[18:40:01] <rob0> Did you read *** LOGS *** and see that your "postfix server is sending mail as localhost.localdomain"?[18:40:16] <rob0> postconf myorigin[18:40:21] <rob0> !myorigin[18:40:22] <syllogism> rob0: no, it's a response from CBL[18:40:22] <knoba> rob0: "myorigin" : a configuration parameter in the main.cf: The default domain name that locally-posted mail appears to come from, and that locally posted mail is delivered to. The default $myhostname, which is fine for small sites. If you run a domain with multiple machines, you should (1) change this to $mydomain and (2) set up a domain-wide alias database that aliases each user to user at that dot users.mailhost.[18:40:26] <rob0> !basic[18:40:27] <knoba> rob0: "basic" : http://www.postfix.org/BASIC_CONFIGURATION_README.html : a good starting place for Postfix beginners, many common questions are answered here.[18:40:33] <syllogism> myorigin is set to my fqdn[18:40:51] <rob0> Did you read the rest of the links on the CBL site?[18:40:51] <syllogism> myhostname is set to mail.<mydomain>.com[18:41:03] <syllogism> rob0: yes I did, but they don't seem to resolve my problems[18:41:16] <syllogism> I am running postfix on openbsd,[18:41:22] <syllogism> my hostname is set to mail.<mydomain>.com[18:41:35] <syllogism> my nameserver has an mx record for mail.<mydomain>.com[18:41:46] <rob0> You are repeating yourself repeating yourself.[18:41:54] *** tore has quit IRC[18:42:02] <rob0> WTF does MX have to do with sending mail?[18:42:12] <jonez> rob0: nothing whatsoever[18:42:19] <syllogism> alright alright, I'[18:42:24] <syllogism> m just trying to provide some details[18:42:28] <rob0> jonez: it was a rhetorical question[18:42:52] <rob0> ok, I'll go to CBL and find the page you need[18:42:52] <jonez> rob0: rhetorical for some but not necessarily all :)[18:43:34] *** xnixan has joined #postfix[18:43:36] *** alienbrain has quit IRC[18:43:42] <jonez> syllogism: are you using 'localhost' to send mail from the local machine?[18:43:46] <Maddog> Can anyone maybe tell me, where the sasl config should be on a Freebsd system?[18:45:14] <rob0> http://cbl.abuseat.org/faq.html "I'm running Linux (FreeBSD, OpenBSD, UNIX...) and CANNOT be infected with a virus!" example #3[18:45:16] <syllogism> jonez: I don't believe so. I am sending from another computer on my network.[18:45:24] *** tore has joined #postfix[18:45:36] <rob0> Wait, you said you did NOT check your logs?[18:46:11] <syllogism> rob0: i do check my logs[18:46:22] <syllogism> I said that the localhost.localdomain wasn't coming from y logs[18:46:32] <rob0> ARE you sending out mail as "localhost.localdomain"? Okay. NAT.[18:46:36] *** hparker has quit IRC[18:46:42] *** tore has quit IRC[18:47:36] <hooch> hmm my nfs server fell over, and mail started bouncing. is there a method to have postfix queue mail internally if the mailbox file isn't available?[18:47:45] *** tore has joined #postfix[18:47:50] <syllogism> Yes I do have NAT set up, but that can't be my problem[18:48:05] <rob0> Oh? Why?[18:48:21] <syllogism> CBL Responds to a single email that I send them with the response included in my message[18:48:27] *** ming_zym has quit IRC[18:49:32] <rob0> Right over my head.[18:49:43] <syllogism> I'll get you the CBL page, one second.[18:50:01] <hooch> rob0: how about my dillemma :) stupid question?[18:50:09] <rob0> Just block outbound NAT for port 25.[18:50:27] <hooch> i see soft_bounce .. i guess that would sort of help, but not an ideal solution[18:51:08] <syllogism> http://cbl.abuseat.org/helocheck.html[18:51:36] <hooch> otherwise what, some sort of cron job to test the nfs server and call postsuper if the nfs server goes down?[18:52:22] <syllogism> You send them an email, they send a response with the helo that my server used within seconds. So it's not a virus, it's some kind of configuration problem that I can't put my finger on.[18:53:18] <hooch> syllogism: did you restart postfix?[18:53:48] <syllogism> hooch: yes[18:53:50] <hooch> after setting the fqdn, etc[18:54:00] <syllogism> hooch: yes[18:54:22] <rob0> postconf myhostname[18:54:32] <Maddog> is there any way to find out, which sasl authentication mechanisms are installed?[18:54:55] *** quieteyes has joined #postfix[18:55:02] <syllogism> myhostname = mail.<mydomain>.com[18:55:26] *** toytoy_ is now known as toytoy[18:55:43] <syllogism> smtp_helo_name = $myhostname[18:55:52] <rob0> Got a Cisco PIX or other such braindead SMTP proxy in front of you?[18:56:09] <syllogism> rob0: negative. I'm using an openbsd box as my router[18:56:20] <syllogism> I've got port 25 forwarded to my mail server[18:56:22] *** Haris has joined #postfix[18:56:25] <rob0> ISP equipment?[18:56:33] <syllogism> just a cable modem[18:56:40] <syllogism> it's a fairly small business[18:56:56] *** akke has joined #postfix[18:57:45] <akke> I have postfix setup with mysql virtual hosting ... Now, we need to limit concurrent connection to a specific provider. Anyone can give me some points on how to do this?[18:57:48] <Maddog> why do you ignore my questions?[18:58:03] <rob0> try a manual SMTP session to mail to helocheck at cbl dot abuseat.org, so you can control the EHLO manually[18:58:29] <rob0> Maddog: So sorry sir. I shall move you up to the top of my priority list.[18:58:42] <rob0> Why do you feel entitled?[18:59:12] <rob0> Where should I send your invoice?[18:59:43] <Maddog> i dont feel entitled, its just the fact that no one says anything to my question, so im not even sure if im right with my question in this channel[19:00:03] <rob0> It's NOT right in this channel. You are asking about SASL.[19:00:04] <hooch> Maddog: a good way is to telnet to your server, do the HELO blah and watch the AUTH lines that com back[19:00:37] <Maddog> but as far as i see im not, cause it seems that i joined the cocky know-it-all channel and not the postfix support channel[19:01:03] <Maddog> hooch: i did this but the connection is resettet and the log says "no sasl auth mechanism"[19:01:09] <rob0> 16:57 < Maddog> why do you ignore my questions?[19:01:11] <hooch> there you go[19:01:22] <rob0> That's the cocky rude question I saw.[19:01:24] <hooch> so sasl isn't installed[19:01:33] <Maddog> it is[19:01:36] <hooch> sasl is annoying as hell to set up btw[19:01:54] <lunaphyte_> postfix not offering auth is not an indication that sasl isn't installed.[19:01:58] <Maddog> thats the point, i dont know where the error could be[19:02:06] <hooch> unless some recent version of postfix made sasl easier[19:02:23] <hooch> ok rephrase, so sasl isn't configured to postfix's liking[19:02:25] <rob0> !sweet[19:02:25] <knoba> rob0: "sweet" : http://sweet.nodns4.us/[19:02:31] <Maddog> sasl is installed, postfix is compiled with sasl support[19:02:40] <Maddog> and there is a sasl config file in place[19:02:40] <lunaphyte_> dovecot's sasl implementation made sasl a bit less painful.[19:03:26] <syllogism> rob0: That actually came back good. CBL came back with my actual IP Address instead of localhost.localdomain...[19:04:14] <akke> I have transport_maps configured for mysql, but when I add a domain with transport set to a clone of smtp: my mailserver is not able to deliver mail to this specific domain. Instead it sais "recipient address rejected: unknown user in virtual mailbox table" ... any idea how to tell postfix not to lookup virtual mailbox?[19:04:39] *** m4r71x has joined #postfix[19:04:46] <m4r71x> hey guys[19:04:48] <rob0> !unknown_virtual[19:04:48] <knoba> rob0: "unknown_virtual" : \"User unknown in virtual $X table\" means that the recipient domain was found in $virtual_$X_domains but the username@domain was not found in $virtual_$X_maps. ("$X" can be either alias or mailbox .)[19:04:55] <m4r71x> glad to be here, I have a problem[19:05:01] <Maddog> hooch: is there any way to find out, what exactly is missconfigured?[19:05:16] <m4r71x> my postfix is running very well (actually ive been using postfix for since 4years)[19:05:16] <rob0> transport_maps in mysql sounds seriously ugly[19:05:49] <hooch> Maddog: for sasl i remember the best approach was to keep bashing my head against the wall until it finally magically worked[19:06:00] <akke> rob0: it's used for easy maintenance .. not a high load mailserver anyway[19:06:00] <hooch> i'd probably jump on dovecot sasl next time[19:06:00] <rob0> Also, "how to tell postfix not to lookup virtual mailbox?" is absolutely the wrong question.[19:06:06] <Maddog> haha, k didnt try this so far..[19:06:22] <akke> rob0: well, then can you tell me what's going wrong here?[19:06:23] <lunaphyte_> man, wth is going on in here?[19:06:46] <hooch> the convenient way to get saslauthd running was to use the rimap mech[19:07:08] <syllogism> thanks for the help rob0 and you all.. problem resolved........[19:07:09] <hooch> let me reference that[19:07:24] <lunaphyte_> that sounds like the antithesis of convenience.[19:08:02] *** Guest37376 has joined #postfix[19:08:08] <rob0> akke, no. You seem to have gone way too far down the wrong road, and I am not interested in retracing your steps.[19:08:19] *** Guest37376 has quit IRC[19:08:27] *** cilly has quit IRC[19:08:47] <akke> rob0 I only followed some howto on the web for configuring postfix with mysql :p[19:08:59] <rob0> Sounds like a lousy howto.[19:09:06] <rob0> !google[19:09:07] <knoba> rob0: "google" : Those who use Google before reading the Postfix documentation, if fortunate, end up at http://www.postfix.org/ . If not, they end up in a jumble of bad questions, misleading or wrong answers, and outdated information.[19:09:10] <lunaphyte_> it's like a room full of four year olds and a loose frog in here right now. :)[19:09:11] <syllogism> akke: what OS are you running?[19:09:11] <rob0> !basic[19:09:12] <knoba> rob0: "basic" : http://www.postfix.org/BASIC_CONFIGURATION_README.html : a good starting place for Postfix beginners, many common questions are answered here.[19:09:19] <akke> syllogism: linux[19:09:23] <hooch> don't think i've ever used transports in years of running mysql postfix setups[19:09:25] <syllogism> akke: what distribution[19:09:26] * seekwill grabs lunaphyte_'s frog[19:09:30] <akke> syllogism: debian[19:09:45] <hooch> ^ akke[19:09:45] <lunaphyte_> that's not my frong.[19:09:52] <lunaphyte_> frog.[19:10:01] <rob0> but it IS your frong?[19:10:12] <seekwill> Is that so wrong?[19:10:25] <rob0> in Hong Kong?[19:10:38] <rob0> smoking a bong?[19:11:16] * hooch takes his missing-mailbox-mount-with-gentle-landing question to the pillow[19:11:19] <hooch> nn[19:11:51] <lunaphyte_> i don't evnen know whnere thant n came fromn. my keynboard is revnolting.[19:12:12] *** akke has quit IRC[19:13:43] <quieteyes> I have a question - my installation has a bound interface specified, let's call it "A". "A" is a subnet within a larger subnet, and that larger subnet is serviced by a forward-facing interface "B". The intent here is that all SMTP connections are supposed to come to "A" only, not the interface for "B". There's just one problem - for some reason, data is travelling in and out with "B"'s address, not "A"'s address. This is a big issue as we should ne[19:15:34] <lunaphyte_> if you change your mind, I'm the first in line, honey i'm still free, take a chance on me![19:16:12] <rob0> Sounds like a failure to understand how your OS is handling the routing.[19:16:33] <lunaphyte_> darn. i though it was a failure to understand abba.[19:17:03] <seekwill> What's abba?[19:17:26] <rob0> Fortunately the members of Abba have definitely ruled out a reunion concert / tour.[19:18:06] *** fleximus has quit IRC[19:18:37] <quieteyes> rob0: I'll go back and check. The machine is set up as a three interfaces, a public interface "A", a DMZ interface "B", and a private inteface "C". The data must travel through interface "A" to get anywhere in "B". Machines on the DMZ subnet attached to "B" have their data travel into "B" and back out "A", with the machine acting as the router for the subnet. As the IP address is directly reachable, I would be surprised if its rewriting the packet[19:19:09] <quieteyes> rob0: um, last I checked I think one of them was definitely dead...kinda makes a "get back together" concert a bit, uh, gruesome. :)[19:19:18] *** PcPixel has joined #postfix[19:19:21] <PcPixel> back[19:19:39] <PcPixel> is it bad to use check_helo_mx_access for private/non-routable ips?[19:19:48] <PcPixel> to check for i should say[19:20:40] *** syllogism has left #postfix[19:21:00] <PcPixel> or would you run into issues simlar to reject_unknown_helo_hostname[19:21:19] <rob0> probably would. You can always try it with "warn_if_reject".[19:21:26] <PcPixel> this is true.[19:21:30] <PcPixel> ok i might do that.[19:25:31] <rob0> check_sender_{mx,ns}_access is reasonably safe, though. There are domains with FUBAR DNS, but you won't be the only one rejecting them.[19:25:40] *** r0mzo has left #postfix[19:25:44] *** Maddog is now known as Maddog_[19:25:54] *** xpoint has joined #postfix[19:26:08] <sysmonk> ho ho[19:27:11] *** fx0 has joined #postfix[19:27:12] *** Zeit|awy_ has quit IRC[19:27:16] *** Zeit|awy_ has joined #postfix[19:29:50] *** xintron has joined #postfix[19:30:14] <PcPixel> rob0: yeah im using it on sender_mx right now[19:30:26] <PcPixel> but as i read throuh the options i wondered if added the helo_mx would be good as well[19:32:00] <xintron> I've been trying to setup postfix and atm I can recieve mail but not send. I get "No route to host" when trying to send (using PHP mail() ). I don't know where I should start so all help is appreciated[19:32:07] <sysmonk> PcPixel: don't bother with all those rules, just use 'reject'[19:32:07] <sysmonk> ;)[19:32:34] <sysmonk> xintron: do you have teh network ?[19:32:48] <sysmonk> no route to host is connectivity problems, not postfix[19:33:02] <xintron> sysmonk: what do you mean more exactly?[19:33:09] <sysmonk> + don't test with php's mail(), use sendmail directly[19:33:19] <rob0> PHP mail() is not a Postfix issue.[19:33:23] <xintron> sysmonk: ok[19:33:35] <sysmonk> rob0: woot? postfix isn't integrated to php yet?[19:33:36] <sysmonk> :)[19:33:38] *** amrit|bbl is now known as amrit|wrk[19:33:43] <PcPixel> phpostfix?[19:33:57] <sysmonk> PcPixel: phpfix[19:34:04] <PcPixel> hehehe[19:34:06] <sysmonk> PcPixel: let's rewrite postfix in php![19:34:15] <PcPixel> sysmonk: sweet! ill go get the meth![19:34:29] <PcPixel> sysmonk: new main.cf is coming along very nicely[19:34:30] <sysmonk> echo 'phpinfo()' | mail eval@localhost[19:34:31] <sysmonk> ;)[19:37:08] *** githogori has joined #postfix[19:37:56] <seekwill> mail-abuse.org... nice[19:43:12] <PcPixel> we just saw a new type of virus come in in a zip attachment. there isnt currently a AV for it yet. i put: /WW2_ASH.*\.zip/ REJECT Virus in my header checks, but it went through. is that incorrect?[19:43:33] <sysmonk> header_checks?[19:43:40] <PcPixel> yes, header_checks[19:43:46] <sysmonk> why should it match headers?[19:43:54] <sysmonk> how can a virus be found by headers?[19:44:02] <PcPixel> Content-Disposition: attachment;[19:44:02] <PcPixel> filename="WW2_ASH182.zip"[19:44:07] <PcPixel> that's whats in the header[19:44:14] <sysmonk> PcPixel: that's mime info, not headers[19:44:21] <PcPixel> ah[19:44:23] <PcPixel> so mime checks[19:44:24] <PcPixel> got it[19:45:46] <PcPixel> so far only 4 AV companies out of 32 are catching it[19:46:00] *** toytoy has quit IRC[19:46:24] <PcPixel> yup, that got it. thanks monk![19:46:57] <PcPixel> grp WW2_ASH[19:47:00] <PcPixel> doh[19:47:01] <PcPixel> lol[19:47:08] <pickcoder> is AVG?[19:47:28] <PcPixel> no[19:47:34] <pickcoder> that's surprising[19:47:34] <PcPixel> Icarus, F-Secure,[19:47:36] <sysmonk> PcPixel: send it to me :P[19:47:48] <pickcoder> clamav?[19:48:08] <PcPixel> Authentium[19:48:11] <PcPixel> and Sunbelt[19:48:13] <PcPixel> those are the only 4[19:48:24] <PcPixel> Ikarus rather[19:48:55] <PcPixel> sysmonk: seriously?[19:49:30] <sysmonk> PcPixel: ye[19:49:37] <PcPixel> sysmonk: ok, give me your address[19:51:21] <pickcoder> hah it got caught on mine[19:51:36] <PcPixel> clam caught it?[19:51:44] <pickcoder> no[19:51:46] <pickcoder> .exe[19:51:54] <pickcoder> inside a zip[19:51:57] <PcPixel> right[19:52:04] <PcPixel> pick: what are you doing to catch it?[19:52:10] <pickcoder> nothing[19:52:20] <PcPixel> what did you do to make it look inside the zip[19:52:21] <pickcoder> .exe are banned[19:52:24] <PcPixel> ah[19:52:28] <PcPixel> well wait[19:52:29] <pickcoder> it's part of amavis[19:52:33] <pickcoder> with s/a[19:52:33] <PcPixel> aaaah[19:52:35] <pickcoder> and vlamav[19:52:36] <PcPixel> thats why[19:52:39] <pickcoder> clamav[19:52:46] <PcPixel> so it unzipped it[19:52:51] <PcPixel> and then scanned the .exe?[19:52:52] *** dty has joined #postfix[19:52:56] <pickcoder> it saw an exe[19:53:01] <pickcoder> I don't allow executables[19:53:03] <pickcoder> at all[19:53:20] <pickcoder> that's what web shares are for[19:53:21] <PcPixel> saaaah[19:53:23] <PcPixel> ok[19:53:25] <PcPixel> gotcha :)[19:53:26] <PcPixel> makes sense[19:53:37] <PcPixel> but you did get the one im talking about? was it from "UPS"?[19:53:57] <pickcoder> From: "United Parcel Service" <umw at bluebeatmusic dot com>[19:54:05] <pickcoder> Received: from [216.142.52.195] by mx0.digitalwest.net; Tue, 12 Aug 2008 12:49:56 -0500[19:54:10] <PcPixel> you thats the one[19:54:12] <PcPixel> yup[19:54:24] <PcPixel> mine was from: United Parcel Service [oeopxek at blowerengineering dot com][19:54:53] <pickcoder> From: "United Parcel Service" <ukcodgwxsm at blueridgechina dot com>[19:55:03] <pickcoder> Received: from [216.142.52.195] by smtp.secureserver.net; Tue, 12 Aug 2008 12:49:56 -0500[19:55:13] <pickcoder> they could at least use a few different IPs[19:55:21] <PcPixel> lemme see wher emine came from[19:56:04] <PcPixel> Received: from fs02.kenyonplastering.us (fs02.kenyonplastering.us [67.128.112.35])[19:56:20] <pickcoder> hm[19:58:18] <xintron> When sending or trying telnet (to any host) I get this "telnet: Unable to connect to remote host: No route to host". How do i fix this problem so that I can send mail (recieving is no problem)[19:58:52] <pickcoder> xintron: what telnet command[19:59:22] <xintron> pickcoder: telnet gsmtp183.google.com 25[19:59:37] <pickcoder> did you try another domain?[20:00:07] <xintron> pickcoder: I've tried a few and all gives me the same result[20:00:16] <pickcoder> port 25 may be blocked[20:00:22] <pickcoder> check your router/firewall config[20:00:26] <PcPixel> your antivirus might be doing it[20:00:29] <pickcoder> if it's fine then your ISP is blocking port 25 out[20:00:42] <PcPixel> example: our mcafee thinks any program connecting outbound to 25 is a "mass mailing worm"[20:00:52] <xintron> pickcoder: my iptables are accepting port 25 and my ISP does not block any ports[20:01:28] <pickcoder> xintron: on OUTPUT it's allow?[20:01:52] <xintron> OMG! I'm so fucking stupid[20:01:58] <xintron> No, I'll fix that :/[20:05:06] <PcPixel> McAfee just released an update[20:10:01] *** cilly has joined #postfix[20:10:08] *** VivekVC has quit IRC[20:10:13] <pickcoder> bbl[20:10:18] *** pickcoder has quit IRC[20:12:48] *** xnixan has quit IRC[20:14:17] *** devdas has joined #postfix[20:17:21] *** Lukemob_ has joined #postfix[20:18:07] *** master_o1_master has joined #postfix[20:27:39] *** _Driver_ has quit IRC[20:29:04] *** cilly has quit IRC[20:30:39] *** Lukemob has quit IRC[20:30:43] *** master_of_master has quit IRC[20:36:53] <sysmonk> wee, flooders in mysql[20:36:53] <sysmonk> ;)[20:36:57] <PcPixel> ?[20:37:12] *** xintron has left #postfix[20:37:43] <sysmonk> nah, nothing[20:38:43] <seekwill> Am I the only one who found it funny when he repasted it?[20:38:51] <derrick> where should rbl checks go, smtpd_recipient_restrictions or smtpd_client_restrictions?[20:39:52] <devdas> !cheatsheet[20:39:53] <knoba> devdas: "cheatsheet" : http://jimsun.linxnet.com/misc/postfix-anti-UCE.txt : A HOWTO for pre-DATA spam control.[20:39:53] <derrick> or better question, in the process chain, which comes first, client?[20:40:01] <devdas> derrick: see that[20:40:14] <rob0> The reason why we normally recommend putting ALL restrictions in smtpd_recipient_restrictions is for simplicity. Easier to see what happens that way. And yes, !cheatsheet is excellent.[20:40:18] <derrick> well, that and the sorbs page are what made me ask the question[20:40:25] <derrick> sorbs has client, that url has recipient[20:40:33] *** lrp has joined #postfix[20:40:34] <derrick> so which check comes first, client, or recipient? i assume client?[20:40:36] <lrp> hello[20:40:46] <rob0> !smtpd_delay_reject[20:40:47] <knoba> rob0: "smtpd_delay_reject" : a configuration parameter in the main.cf: Wait until the RCPT TO command before evaluating $smtpd_client_restrictions, $smtpd_helo_restrictions and $smtpd_sender_restrictions.[20:40:52] <rob0> !access[20:40:53] <knoba> rob0: "access" : http://www.postfix.org/SMTPD_ACCESS_README.html : An overview of access(5) controls in the Postfix smtpd(8) SMTP server.[20:40:53] <lrp> how can i reject 2 emailaddress from internet to my server ?[20:41:00] <derrick> ty :)[20:41:23] <lrp> example pepe at gmail dot com reject[20:41:46] <rob0> derrick, you are correct, client comes first, but they all happen at the same point in SMTP.[20:42:53] <devdas> !cheatsheet[20:42:56] <derrick> rob0 thanks for the clarification[20:43:18] *** Flobbie has quit IRC[20:43:42] <jduggan_> !permit_mx_backup[20:43:43] <knoba> jduggan_: Error: "permit_mx_backup" is not a valid command.[20:44:13] <sysmonk> seekwill: heh, "denormalize it", "nevermind, i'll just add a row with a weekday"[20:44:21] <seekwill> :)[20:44:29] <seekwill> Don't we love #mysql ;)[20:45:59] <devdas> #postgresql FTW[20:47:08] <sysmonk> devdas: nah, you don't have such fun questions out there[20:47:08] *** dni has joined #postfix[20:47:40] <cpm> yeah, #postgresql is folks asking clueful relatively high level questions, what fun is that?[20:47:49] <sysmonk> ye[20:48:05] <dni> hello room,. i was hoping someone could help me,. ive been trying to created virtual mailboxes with a mysql backend for auth,. now it seems when i connect to port 25 and try and send a mail, i dont get a response,. can someone point me to what the issue may be,..[20:48:05] <dni> [root@limx1 sbin]# telnet localhost 25[20:48:06] <dni> Trying 127.0.0.1...[20:48:06] <dni> Connected to localhost.localdomain (127.0.0.1).[20:48:06] <dni> Escape character is '^]'.[20:48:07] <dni> helo belcore.ocm[20:48:10] <dni> mail from: one at two dot com[20:48:12] <dni> no response[20:48:36] <sysmonk> hello dni, should i flood you too?[20:48:50] <dni> ino sorry, not trying to flood anyone it was only 4 lines[20:49:01] <dni> thus why i didnt pastebin it[20:49:04] * sysmonk types in /query dni \n /exec -o tail -f /dev/urandom[20:49:27] <sysmonk> dni: somehow it was 8 lines, not 4 ;/[20:50:00] <sysmonk> dni: anyway, look in the logs[20:50:10] <lrp> them[20:51:05] <dni> i did, here is what im getting[20:51:05] <dni> http://pastebin.ca/1168433[20:51:51] <sysmonk> dni: hooray, Aug 12 12:52:49 limx1 postfix/proxymap[14830]: fatal: unsupported dictionary type: mysql[20:51:58] <dni> Aug 12 12:52:49 limx1 postfix/proxymap[14830]: fatal: unsupported dictionary type: mysql[20:52:01] <sysmonk> postconf -m has 'mysql' in the output ?[20:52:01] <dni> yea i saw that[20:52:21] <dni> no it doesnt[20:52:24] <rob0> If you didn't install mysql support, you can't use mysql maps.[20:52:31] <sysmonk> so your postfix doesn't have mysql compiled in[20:52:35] <dni> hmm yea i yum'd the package[20:52:50] <dni> i see[20:53:29] *** lrp has left #postfix[20:53:52] <dni> trying to install postfix-mysql[20:56:07] *** Draecos has joined #postfix[20:56:16] <sysmonk> woot if i want postfix with mysql and cyrus and dovecot with pcre and cdb maps ?[20:56:28] <sysmonk> i have to install postfix-mysql-cyrus-dovecot-pcre-cdb ?[20:56:52] <sysmonk> or is it postfix-cdb-cyrus-dovecot-mysql-pcre ?[21:02:02] *** Flobbie has joined #postfix[21:02:57] <lunaphyte_> can i haz widget diddler?[21:04:01] *** jonez has quit IRC[21:05:21] <sysmonk> kan kan[21:05:37] <sysmonk> haz from get internet[21:06:45] *** Juspion has joined #postfix[21:07:06] *** Pretoriab has joined #postfix[21:07:09] <Pretoriab> hello all[21:07:18] <Pretoriab> i am trying to bind postfix to a single ip address[21:07:29] <PcPixel> ...[21:07:31] *** jonez has joined #postfix[21:07:51] *** Juspion has quit IRC[21:07:58] <lunaphyte_> !inet_interfaces[21:07:59] <knoba> lunaphyte_: "inet_interfaces" : a configuration parameter in the main.cf: The network interface addresses that this mail system receives mail on. By default, the software claims all active interfaces on the machine. The parameter also controls delivery of mail to user at [ip dot address]. If your server does not react to connection attempts on a certain interface you should check this setting.[21:08:01] <Pretoriab> i tried a couple of thing already, like xxxx.xxx.xxx.xxx:smtp and smtp_bind_address = xxx.xxx.xxx.xxx == but that didnt work for me ?[21:08:04] <cpm> Pretoriab, smtp_bind_address[21:08:07] *** Juspion has joined #postfix[21:08:13] <cpm> sure it does[21:08:20] <lunaphyte_> *_bind_address[6][21:08:28] <cpm> are you talking about smtp, or smtpd ?[21:08:46] <cpm> !reload[21:08:47] <knoba> cpm: Error: You don't have the owner capability. If you think that you should have this capability, be sure that you are identified before trying again. The 'whoami' command can tell you if you're identified.[21:09:02] <cpm> !restart[21:09:03] <knoba> cpm: "restart" : (#1) When edit thou thine master.cf, restarteth thou thins Postfix, lest ye die!, or (#2) There is no postfix restart command. There is postfix stop, postfix start, or postfix reload. Changes made to master.cf and some functional changes to main.cf will require a stop and a start in order to take effect[21:09:17] <Pretoriab> i think smtp but not sure[21:09:32] <cpm> this is classified as a functional change. Did you stop and then start postfix after making this change?[21:09:35] <Pretoriab> its zimbra's mail system that has postfix[21:09:38] <cpm> well, you need to be sure.[21:09:41] <cpm> :)[21:09:43] <devdas> Twitch[21:09:43] *** dinar has joined #postfix[21:09:48] * cpm shudders[21:09:53] <devdas> See /opt/zimba/etc/postfix/*[21:09:55] <cpm> take it to the zimbra formums[21:10:04] <lunaphyte_> someone write a factoid for for !no guessing.[21:10:19] <cpm> !lunaphyte[21:10:19] <lunaphyte_> !notsure[21:10:19] <knoba> cpm: "lunaphyte" : someone who generally does more harm than good.[21:10:20] <Pretoriab> it has postfix version 2.2.9[21:10:21] <knoba> lunaphyte_: Error: "notsure" is not a valid command.[21:10:29] <lunaphyte_> hey![21:10:31] <cpm> Pretoriab, doesn't matter[21:10:39] <lunaphyte_> i re sent that![21:10:59] <Pretoriab> i have been in the zimbra forums and ##linux and scoured internet[21:11:19] <cpm> Pretoriab, smtp_bind_address works. Why don't you explain your real issue?[21:11:53] <Pretoriab> real issue is that i want to run two mail programs binding to separate ip addresses[21:11:57] <Pretoriab> bottom line[21:12:12] <Pretoriab> one has a simple interface for binding services to ip address[21:12:29] <Pretoriab> the other zimbra doesnt and so i am trying to edit the master.cf file manually[21:12:51] <Pretoriab> what and where should the line smtp_bind_address = xxx.xxx.xxx.xxx go please?[21:12:59] <Pretoriab> obviously in master.cf[21:13:08] <lunaphyte_> nein![21:13:54] <Pretoriab> no ?[21:14:22] <lunaphyte_> well, maybe.[21:14:29] <lunaphyte_> have you tried flipping a coin?[21:14:38] <Pretoriab> got it[21:14:42] <Pretoriab> heads up[21:14:44] <Pretoriab> 10-4[21:14:45] *** Pretoriab has quit IRC[21:17:58] <Maddog_> has anyone an idea why smtpd keeps complaining that "sql_select option missing"?[21:18:01] <Maddog_> even if i define one[21:20:39] *** tshine has quit IRC[21:21:59] <lunaphyte_> my guess is that you're not defining it in the right place.[21:22:53] *** xnixan has joined #postfix[21:23:14] <Maddog_> lunaphyte_: hmm..where do i have to define it?[21:24:57] <lunaphyte_> postconf | grep -i mysql[21:25:09] <lunaphyte_> actually - what is postconf mail_version ?[21:25:24] <Maddog_> mail_version = 2.4.6[21:25:46] <Maddog_> and the mysql output is only about the virtual mailboxes[21:26:23] <lunaphyte_> what do you mean "only"?[21:26:57] <Maddog_> as a result i get the lines virtual_mailbox_domains and virtual_mailbox_maps[21:27:06] <Maddog_> which seem to have nothing to do with smtpd[21:28:50] <zack23> for maildrop, where can I put the custom file that is processed. It works great in /etc/maildroprc but I want a certain file for my user - just like running $HOME/.procmailrc[21:29:37] *** Pretoriab has joined #postfix[21:30:12] <Pretoriab> hi again all[21:30:14] <Pretoriab> i am running smtpd and trying to bind to a single ip address[21:30:22] <Pretoriab> the reason is so i can run two email applications on a single machine using separate ip addresses[21:30:26] <devdas> smtpd? inet_address[21:30:50] <dni> you can bind per itnerface in postfix[21:31:03] <Pretoriab> yes i am using postfix[21:31:33] <Maddog_> devdas: was it in connection to my problem?[21:31:52] <Maddog_> ah sorry, it was about Pretoriabs problem[21:31:53] <Maddog_> :)[21:31:58] <Pretoriab> not sure whether i need to be editing main.cf or master.cf[21:32:08] <dni> main.cf[21:32:16] <Pretoriab> thanks[21:33:03] *** rcsu has quit IRC[21:33:25] <devdas> Maddog_: see smtpd.conf[21:33:49] *** Haris1 has quit IRC[21:33:53] <Pretoriab> so in main.cf - i add a line == smtp_bind_address=xxx.xxx.xxx.xxx ??[21:34:07] <Maddog_> devdas: i defined it right there[21:34:34] <devdas> Maddog_: is that the right smtpd.conf?[21:34:52] <Maddog_> hm..good question, i think so, but im not sure..[21:35:01] <Maddog_> is there any way to find out?[21:35:17] <Maddog_> like postconf smtpd.conf_location ? ;)[21:35:32] *** Juspion has quit IRC[21:37:00] *** cpm has quit IRC[21:38:55] <dni> im trying to compile postfix with mysql support,. and im getting this error when it tries to build master.o :[21:38:55] <dni> http://pastebin.ca/1168490[21:39:27] <dni> Pretoriab : in postfix i believe you just tell it what itnerface to listen on,, i.e: my_interface or some thing like that[21:39:39] <jeev> dni, your libraries aren't in the right place probably[21:39:40] <dni> i just removed my postfix rpm so i can compile manually so i cant look for myself[21:40:01] <devdas> !inet_interfaces[21:40:01] <knoba> devdas: "inet_interfaces" : a configuration parameter in the main.cf: The network interface addresses that this mail system receives mail on. By default, the software claims all active interfaces on the machine. The parameter also controls delivery of mail to user at [ip dot address]. If your server does not react to connection attempts on a certain interface you should check this setting.[21:40:56] <dni> jeev: shouldnt they be in /usr/lib/mysql ?[21:41:06] <Pretoriab> dni my last did not work[21:41:21] <dni> [root@limx1 postfix-2.5.3]# ls /usr/lib/mysql/libmysqlclient*[21:41:21] <dni> /usr/lib/mysql/libmysqlclient.a[21:41:37] <Pretoriab> i added smtp_bind_address = xxx.xxx.xxx.xxx line to main.cf[21:42:27] <dni> Pretoriab : copy/paste the inet_interfaces directive[21:42:28] <jeev> are you pointing the install to that folder ?[21:42:54] <jeev> i dont remember but is there a --with-mysql in postfix?[21:42:57] <Pretoriab> dni from where ?[21:43:10] <PcPixel> preto: main.cf[21:43:13] *** Jax has joined #postfix[21:43:23] <PcPixel> !inet_interfaces[21:43:24] <knoba> PcPixel: "inet_interfaces" : a configuration parameter in the main.cf: The network interface addresses that this mail system receives mail on. By default, the software claims all active interfaces on the machine. The parameter also controls delivery of mail to user at [ip dot address]. If your server does not react to connection attempts on a certain interface you should check this setting.[21:43:26] <jeev> crap, i used ports for mine on bsd.[21:44:06] <Pretoriab> cool[21:44:08] *** Motoko-chan has joined #postfix[21:44:19] <dni> jeev: postfix didint even have a configure option[21:44:34] <jeev> POSTFIX_CCARGS+= -DHAS_MYSQL -I${LOCALBASE}/include/mysql[21:44:34] <jeev> POSTFIX_AUXLIBS+= -L${LOCALBASE}/lib/mysql -lmysqlclient -lz -lcrypt -lm[21:44:38] <jeev> that's how i built mine.[21:44:46] <dni> what i did was,.. make makefiles 'CCARGS=-DHAS_MYSQL -I/usr/include/mysql -DUSE_SASL_AUTH -I/usr/include/sasl' 'AUXLIBS=-L/usr/lib/mysql -lmysqlclient -lz -lm -L/usr/lib -lsasl'[21:44:49] <jeev> search for more mysql libs and try configuring it a different way[21:44:54] <dni> then make && make install[21:44:56] <jeev> hm[21:45:00] <jeev> what are you in? redhat?[21:45:04] <dni> yea[21:45:04] <dni> centos[21:45:21] <dni> AUXLIBS seems right[21:46:13] <jeev> i dont know man, i'm bad at passive advice, if you dont care, i can connect and look.[21:46:19] <jeev> that's the most i could do[21:46:22] <jeev> i'm not great at helping.[21:46:26] <jeev> i'm not great at documenting either[21:46:59] <dni> man if this was personal id give you ana ccount right away,. but its in my offices network[21:47:06] <Maddog_> ok, just double checked the file location and it seems that this is not the problem[21:47:07] <dni> and only way in and out is via vpn[21:47:19] <dni> unless your on the lan[21:47:28] <dni> thanks alot tho[21:47:57] <jeev> hmm dni[21:48:06] <jeev> find / -name "libmysql*"[21:48:08] <jeev> and see what else comes up[21:48:19] <Pretoriab> thanks dni - you the man[21:49:22] <dni> no prob[21:49:26] <dni> k will do jeev[21:49:28] <Maddog_> devdas: so, any other ideas, maybe?[21:49:49] <rob0> Postfix doesn't use GNU Autoconf, thus no ./configure script.[21:49:59] <jeev> ahh[21:51:24] <dni> jeev : these ar ethe results of the find[21:51:25] <dni> http://pastebin.ca/1168526[21:51:42] <jeev> are you using 64bit ?[21:51:47] <sysmonk> *irony* why can't you install the postfix-mysql-cdb-postgresql-mssql-oracle-pcre-bdb4-cidr-cyrus-dovecot-tls.rpm ? */irony*[21:51:58] <dni> jeev: yea[21:52:11] <jeev> why aren't you trying to link them to 64bit libs?[21:54:07] <dni> i tried that as well[21:54:09] <dni> same issue tho[21:54:09] <dni> make makefiles 'CCARGS=-DHAS_MYSQL -I/usr/include/mysql -DUSE_SASL_AUTH -I/usr/include/sasl' 'AUXLIBS=-L/usr/lib/mysql -lmysqlclient -lz -lm -L/usr/lib64 -lsasl'[21:54:26] *** Jax has quit IRC[21:55:55] <jeev> auxlibs should be 64bit/ man, i have no idea honestly........[21:55:57] <jeev> i'd have to try it.[21:56:39] <dni> i wonder if its an issue with sasl and its devel[21:56:41] <dni> packages[21:56:59] <jeev> well, are you compiling things 32bit or 64? i've never used 64bit in those env.. so i dunno how it works[21:57:03] <jeev> but it's backwards compat i'm sure[21:57:07] <dni> 64[21:57:39] <jeev> hmm[21:57:48] <dni> damn, im pretty stuck also[21:58:02] <dni> ive been googling trying to find some feedback[21:58:05] <dni> but nothing yet[21:58:08] <jeev> why dont you set up the same environment on a vmware box[21:58:10] <jeev> and let me connect[21:58:47] <sysmonk> dni: why can't you use postfix-mysql or whatever?[21:58:58] <sysmonk> if you'll compile it now and install it, you'll still have to update it in some time[21:59:03] <dni> sysmonk : package didnt exist for centOS..[21:59:09] <sysmonk> so you have to stick to package OR sources[21:59:24] <sysmonk> dni: look in another repository ?[22:01:28] <dni> yea let me try and find what other repo it can be in[22:03:14] *** JoeWulf has quit IRC[22:06:03] *** JoeWulf has joined #postfix[22:07:54] *** PcPixel has quit IRC[22:08:09] *** devdas has quit IRC[22:19:26] *** pirho has joined #postfix[22:19:47] *** pirho has quit IRC[22:21:47] *** pirho has joined #postfix[22:23:59] *** unsolo has joined #postfix[22:26:01] <sysmonk> seekwill: [year 2019] somerandomguy joins #mysql, <somerandomguy> wtf? why did you kick everybody out? wtf?!?!! why did you do it? what for?!?![22:26:56] *** alienbrain has joined #postfix[22:28:01] <seekwill> sysmonk: lol[22:28:22] <seekwill> That was funny[22:28:47] <sysmonk> really, how much time did it pass?[22:29:05] * sysmonk goes to grep the logs[22:29:13] <seekwill> I did it Sunday night (PST)[22:29:29] <sysmonk> heh, should i go to ~/.irssi/logs/FreeNode/2008 or ~/.irssi/logs/FreeNode/2006/ ?[22:34:24] <seekwill> _rainmkr_ did it a few years ago as well[22:34:44] <seekwill> Hey, when a feature in chanserv is there, you just have to try it[22:35:34] *** F6F has quit IRC[22:35:36] <sysmonk> heh :)[22:36:12] <seekwill> Should have seen the responses when people returned[22:36:31] *** xpoint has quit IRC[22:37:32] *** EasilyOdd has quit IRC[22:38:44] <sysmonk> ye, it was ~5-6 am here, so i was in deep shi^Wsleep[22:39:20] *** unsolo_ has quit IRC[22:39:45] <seekwill> Yeah... not like there was any active discussions going on[22:40:11] <sysmonk> ye, /me got logs :)[22:40:21] <seekwill> Did you autojoin?[22:40:26] <sysmonk> nah[22:40:29] <seekwill> aww[22:40:30] * sysmonk doesn't do autojoins[22:40:39] *** Niemi_ has quit IRC[22:40:43] <seekwill> I won't do that anymore if you're in the channel then[22:41:15] <sysmonk> or just tell me when you will, i'll turn on the autojoin and log everything :P[22:41:44] <seekwill> hehe[22:42:22] <seekwill> Ok, 2012-02-23 at 9:12PM PST, I'll do it again[22:43:10] <sysmonk> okey dokey[22:43:23] * sysmonk sets up an alarm clock for that time[22:43:50] *** Pretoriab has quit IRC[22:43:57] <seekwill> Great, now I'm beind held to that[22:46:03] *** dty has quit IRC[22:46:46] <sysmonk> btw, seekwill, i really did :)[22:46:54] <seekwill> hah[22:47:06] <seekwill> Then remind me the day before.[22:47:12] <sysmonk> no i won't :P[22:47:38] <sysmonk> ofcourse, by that time i (probably, eventually, 99%) will change my job and my phone[22:47:42] <sysmonk> so the reminder will be lost[22:47:43] <sysmonk> ;)[22:47:47] *** dni has quit IRC[22:47:51] <seekwill> That's my problem too :)[22:50:25] <sysmonk> what? you'll loose job too? :)[22:53:51] <seekwill> Yeah[22:53:55] <seekwill> Talking on IRC too much![22:54:03] *** pirho has quit IRC[22:54:20] <sysmonk> duh, irc is teh work![22:58:29] *** cssbkgn has quit IRC[23:00:16] <zack23> Maildrop doesn't automatically create the Maildir directories does it?[23:02:47] *** Draecos has quit IRC[23:07:28] <jduggan_> hmm guys[23:08:35] *** Draecos has joined #postfix[23:08:59] <jduggan_> permit_mx_backup.. postfix docs says for obvious reasons you should use it in conjunction with permit_mx_backup_networks, so with that in mind, how are you supposed to place your restrictions? if you permit the network, its going to accept that match before you neccessarily want to permit the domain, and the other way round has the same issue, so how are you supposed to secure it?[23:09:46] <jduggan_> im not sure i understand why you need the permix_mx_backup_networks, since the destination domain cant be spoofed?[23:10:01] <sysmonk> jduggan_: if you KNOW the domain list - sure[23:10:06] <sysmonk> and what if you don't ?[23:10:22] <jduggan_> ok, so i see why when you dont know the domain list[23:10:33] <jduggan_> but the docs say for safety you need to use both[23:10:49] <jduggan_> Safety: permit_mx_backup can be vulnerable to mis-use when access is not restricted with permit_mx_backup_networks.[23:11:46] <jduggan_> i don't necessarily want to permit a host, since that host could uknowingly to me handle 50,000 domains and i open myself up, i only want to handle specific domains, so i dont see where i'd use permit_mx_backup_networks[23:12:07] *** pirho has joined #postfix[23:12:43] <sysmonk> jduggan_: in your case you don't have to use permit_mx_backup_networks[23:12:45] <jduggan_> unless i'm misreading the documentation?[23:13:09] <sysmonk> jduggan_: look, i have a /22 where i have my other clients[23:13:16] <sysmonk> and Client A has a mail server with 100 domains[23:13:26] <sysmonk> and i give him a 'backup mx' service[23:13:32] <sysmonk> i can't know what 100 domains are pointing to his server[23:13:42] <jduggan_> Yes, i understand that principal[23:13:46] <sysmonk> i just tell him 'when you add a domain, point it to my mxbackup host'[23:14:17] <jduggan_> im just saying, the postfix docs say when you know the domain, it can be mis-used so you should also use it with permit_backup_mx_networks.. this is teh bit that i dont see :)[23:14:30] <sysmonk> where do they tell that?[23:14:43] <jduggan_> http://www.postfix.org/postconf.5.html#permit_mx_backup[23:14:48] <jduggan_> second 'Safety' bullet point[23:15:21] *** VaNNi has quit IRC[23:15:53] <jduggan_> first, i dont see how a `destination` domain can be misused, second, i dont see how on earth you can have both restrictions without coming up with a false match :), since first match wins.. etc[23:15:57] <sysmonk> and? where does it say about the domain?[23:16:02] <jduggan_> do you read it the same? or am i reading it wrong[23:16:25] <jduggan_> Safety: permit_mx_backup can be vulnerable to mis-use when access is not restricted with permit_mx_backup_networks.[23:16:27] <sysmonk> about the 'second bullet' - i disagree[23:16:36] <sysmonk> that is, disagree with you[23:16:44] <jduggan_> ok, explain :)[23:17:11] <sysmonk> jduggan_: about permit_mx_backup and permit_mx_backup_networks - those are two different things[23:17:15] <sysmonk> one is a restriction[23:17:17] <sysmonk> second one is a list[23:17:43] <sysmonk> one you define ( like mydestinations ) and the second you add to the restrictions ( like permit_mynetworks )[23:18:20] *** tshine has joined #postfix[23:18:23] <jduggan_> ok, so if you dont neccessarily want to define a whole host, (permit_mx_backup_networks), how do you permit a domain?[23:18:52] <jduggan_> host/subnet[23:19:22] <sysmonk> jduggan_: use relay_domains for that?[23:19:42] <sysmonk> if you already know the domains you want to be 'backup' for, that's no different than relaying them[23:20:51] <jduggan_> i've just taken hold of someone elses system who was defining domain names in his permit_mx_backup_networks[23:20:59] <jduggan_> does that even work?[23:21:33] <sysmonk> um, should work imho[23:21:40] <sysmonk> it would resolve the domain to ip on startup[23:23:08] <jduggan_> ok well thats fair enough, but i see some domains who's primary MX are some big mailhouses, i can see a situation where he could be relaying mail that isnt neccessarily for him or his customer doing it like this[23:23:37] <jduggan_> chances are he doesnt even really need backup mx, but lets not go there[23:23:43] <sysmonk> heh[23:23:44] <sysmonk> i did :P[23:23:54] <sysmonk> i turned off my 'mxbackup' almost a year ago[23:24:06] <sysmonk> few clients called back and i told them to f*ck off :P[23:24:12] <jduggan_> yea[23:24:18] <jduggan_> but it is a saleable service[23:24:23] <jduggan_> so i can see why some companies do it[23:24:27] <sysmonk> yeah[23:24:52] <seekwill> Everyone needs a backup mx![23:24:53] <sysmonk> we did, and from >20k companies only few 'bought' teh service[23:25:07] <sysmonk> maybe not even bought, but somebody gave them it 'for free'[23:25:31] <seekwill> I think it should be provided for free if you provide email services[23:25:52] <sysmonk> no, we are/were an isp[23:26:23] <seekwill> Just my opinion... :P[23:28:07] *** toytoy has joined #postfix[23:30:00] *** skyweb has joined #postfix[23:30:01] *** chainsaw1 has joined #postfix[23:34:26] *** mgeary has joined #postfix[23:37:22] *** PhilKC has joined #Postfix[23:38:02] <mgeary> what's the best way to figure out why this is happening:[23:38:21] <mgeary> Aug 12 15:26:56 gemini postfix/local[1016]: 918F7E24183: to=<user at domain1 dot com>, orig_to=<user2 at domain2 dot com>, relay=local, delay=0, status=sent (delivered to mailbox)[23:38:38] <mgeary> the "orig_to" is resolving to the wrong address[23:39:25] <mgeary> user2 at domain2 dot com should resolve to internal (unix) user "user2", instead it's resolving to unix user "user1"[23:40:51] <chainsaw1> hi[23:41:01] <mgeary> oy[23:42:57] <chainsaw1> just a little postfix q... is it possible to use the $home/.forward file with postfix virtual alias maps?[23:43:25] * mgeary shrugs and waits to see if chainsaw1's question gets any more attention than his own did... ;)[23:44:16] <sysmonk> chainsaw1: .forward is read on delivery[23:44:33] <chainsaw1> im using postfix and now,.. just for testing maildrop/procmail as MDA[23:44:37] <sysmonk> chainsaw1: so if you have virtual alias aa at bb dot com sent to aa at yourdomain dot com which is a local user aa - then yes[23:44:44] <sysmonk> the file ~aa/.forward will be read[23:45:24] <chainsaw1> jep,.. but the user aa at bb dot com is virtual... so it doesnt work this way?[23:45:48] <chainsaw1> so i have to use maildrop?[23:46:06] <chainsaw1> or do u prefer procmail?[23:46:14] <sysmonk> chainsaw1: virtual alias != virtual users[23:46:24] <sysmonk> virtual user doesn't have a home, remember that ;)[23:46:47] <chainsaw1> *g* ur right! ;)[23:48:01] <chainsaw1> so i need maildrop to deliver and "forward" the mail?[23:50:18] *** VaNNi has joined #postfix[23:52:48] <sysmonk> why? why can't you just use virtual lda and have virtual aliases ?[23:58:32] <chainsaw1> hmm,. because i dont get postfix ignores the .forward in the home/vmail/[23:59:07] <chainsaw1> i read in the man it doesnt work in virtual settings[23:59:13] <sysmonk> why do you need to use a .forward ?!