August 25, 2008 
< | 1 | 2 | 3 | 4 | 5 | 6 | 7 | 8 | 9 | 10 | 11 | 12 | 13 | 14 | 15 | 16 | 17 | 18 | 19 | 20 | 21 | 22 | 23 | 24 | 25 | 26 | 27 | 28 | 29 | 30 | 31 | >
August 25, 2008 [00:10:09] <Motoko-chan> ...[00:10:28] <Motoko-chan> If you want Dovecot support, you'll need to build Postfix from source.[00:11:02] <Motoko-chan> Will this be a gateway or an actual server with boxes?[00:12:03] <sysmonk> somebody on my ignore list you're talking to ? :)[00:12:27] <Motoko-chan> seekwill.[00:12:35] <adaptr> +1[00:12:39] <adaptr> but no[00:12:41] <sysmonk> ah[00:12:52] <sysmonk> nope, he's not on my ignore list... yet...[00:13:01] <Motoko-chan> I'm not either, it seems.[00:15:29] <seekwill> Motoko-chan: Dovecot support for?[00:16:21] <seekwill> Why does it matter? Doesn't postfix write out emails to a maildir and Dovecot just picks it up?[00:16:45] <rob0> Everyone's on my /ignore list. I don't see any of this, especially my own drivel.[00:16:53] <sysmonk> seekwill: another kb war ? :)[00:16:56] <adaptr> seekwill: he means Dovecot *SASL* support[00:16:58] <seekwill> rob0: I want to send you money!!![00:17:25] <seekwill> sysmonk: War, no. :)[00:17:28] <sysmonk> seekwill: woops, you somehow matched rob0 except list! :)[00:17:32] <seekwill> adaptr: oh[00:18:05] <adaptr> seekwill: or, rather, he can't mean anything but[00:18:23] *** chadmaynard has joined #postfix[00:18:39] <sysmonk> hmmm[00:18:52] * sysmonk gets out the popcorn, again[00:19:07] <adaptr> indeed[00:19:09] <chadmaynard> sysmonk: kick/ban seekwill[00:19:18] <sysmonk> chadmaynard: as if i could :P[00:19:23] * sysmonk doesn't have a user here[00:19:30] * sysmonk doesn't have a user on any channel in freenode[00:19:31] <chadmaynard> sysmonk: in #mysql[00:19:41] <sysmonk> chadmaynard: neither i have it out there ;P[00:20:21] * seekwill joins #sysmonk bwahahha[00:20:41] <adaptr> what is your damage, I mean *new* damage ?[00:22:33] <Motoko-chan> Well, you can use Dovecot as an LDA.[00:22:38] <Motoko-chan> If you want virtual users.[00:22:53] <seekwill> I always do virtual users[00:22:57] <Motoko-chan> Anyway, if the box is an incoming gateway, you don't need to worry.[00:23:03] <rob0> Virtually always.[00:23:05] <Motoko-chan> That's why I thought to ask.[00:24:57] <seekwill> Well, this box is planned to be an inbound edge gateway, relaying to Exchange. But setting up Exchange is another project, so it'll probably also host imap for the time being[00:25:14] <sysmonk> then you'll move to pop3?[00:25:27] <Motoko-chan> So, you'll have boxes on it now?[00:25:44] <Motoko-chan> Exchange is overrated and broken with standards support.[00:26:03] <seekwill> yeah[00:26:06] <sysmonk> Motoko-chan: realllyyyy???[00:26:11] <seekwill> I like Exchange :P[00:26:29] * sysmonk remembers a talk with my teacher about lotus (but same goes to exchange)[00:26:29] <seekwill> I can log into my boss's box and delete his email telling me not to reboot the web server[00:26:36] <rob0> What I like best about MSexChange is that I don't have to work with it.[00:26:48] <adaptr> yes.. your behaviour on #mysql would bear out that trait in you...[00:26:50] <sysmonk> i was saying that lotus doesn't keep up with standards and etc[00:27:02] <sysmonk> and she say's that no, it does, it just has ITS OWN standards[00:27:08] <adaptr> yuh-uh[00:27:21] <adaptr> which are just ever so slightly fucked in comparison with the ACTUAL standards[00:27:45] <adaptr> ever wonder wehy postfix needs a HACK built-in to deal with sexchange traffic ?[00:27:50] <Motoko-chan> seekwill, Maildir can do that too[00:28:08] <seekwill> Motoko-chan: ok, maybe you didn't get the reference :([00:28:21] <Motoko-chan> Maybe not.[00:28:29] <seekwill> Motoko-chan: www.thewebsiteisdown.com[00:28:50] <seekwill> adaptr: What kind of hack?[00:29:04] <Motoko-chan> Will look later. Coding[00:29:08] <sysmonk> um, yeah, what kind of hack are you talking about ?[00:29:23] <adaptr> broken_sasl_auth_clients[00:29:34] <seekwill> Motoko-chan: It's a video. Click link, pause to let it download[00:29:38] <adaptr> that is there specifically for outhouse/exchange[00:29:51] <seekwill> Oh, I thought that was just Outlook/Outlook Express[00:30:03] <adaptr> it follows that you don't work with either :)[00:30:20] <rob0> oh I've seen that one, funny[00:30:23] <sysmonk> adaptr: isn't that outlook shit? not exchange?[00:30:24] <adaptr> outhouse=sexchange=outhouse[00:30:28] <sysmonk> seekwill: ye[00:31:08] <Motoko-chan> I don't think MSE does SASL Auth directly.[00:31:29] <Motoko-chan> But that's okay. You'll be too busy kicking the stuck outbound SMTP queue to worry.[00:31:45] <adaptr> I would give anything not to have to deal with exchange[00:31:58] <adaptr> thank god I don't do support[00:36:30] <chadmaynard> hi everyone[00:36:46] * sysmonk does /names #postfix to see who has ops[00:36:56] <sysmonk> ah, nobody :)[00:37:03] <seekwill> sysmonk: /cs access #postfix list[00:37:19] <sysmonk> seekwill: i know the commands :)[00:37:22] <seekwill> oh[00:37:37] * sysmonk an ircop on a 'local' network[00:37:50] *** logione has quit IRC[00:37:51] <seekwill> /server 'localhost'[00:38:13] * sysmonk has quit ["Changing servers"][00:38:41] <seekwill> Now that sysmonk is gone, let's talk about him behind his back. I hear he really uses qmail![00:39:03] <thumbs> I hear that seekwill uses windows[00:40:44] <sysmonk> thumbs: pff, and not just any windows, he uses vishta[00:40:44] <adaptr> Vishnuta[00:40:54] <seekwill> Vista is awesome![00:41:14] <seekwill> I mean, the new Darwin kernel, plus this beautiful Aqua interface... so inuitive![00:42:11] <adaptr> fanboi[00:43:22] <seekwill> chadmaynard likes Exchange![00:43:32] * adaptr hates change - any change[00:43:41] <sysmonk> yeah, i heard vista rules, there are less viruses for it[00:43:49] <adaptr> that we know of[00:43:53] <sysmonk> cause they just don't work... as most of the software ...[00:44:46] <seekwill> lol[00:45:15] <chadmaynard> i love exchange[00:45:28] <sysmonk> so do i[00:45:37] <sysmonk> especially when smtp stuff is done by postfix[00:45:44] <sysmonk> imap stuff is done by cyrus[00:45:49] <sysmonk> calendar stuff is done by caldav...[00:45:52] <sysmonk> and so on...[00:50:18] *** seekwill has quit IRC[00:50:27] <Motoko-chan> Why not just use Zimbra at that point?[00:50:34] <Motoko-chan> Or some other groupware suite?[00:50:37] <adaptr> because.. it's not free ?[00:50:41] <sysmonk> Motoko-chan: cause there's exchange!!![00:50:48] <sysmonk> adaptr: zhymbra is free, isn't it?[00:50:50] <Motoko-chan> adaptr, Zimba is free.[00:50:55] <sysmonk> (with additional functionality for some fee)[00:50:58] <adaptr> depends which version[00:51:04] <Motoko-chan> Unless you want the MAPI translator for Outlook.[00:51:05] <Motoko-chan> That costs.[00:51:18] <Motoko-chan> As does stuff like live backup[00:51:30] <Motoko-chan> I believe Scalix is free too.[00:51:41] <Motoko-chan> But it is more limited, and uses Sendmail at its core.[00:53:00] *** Aron is now known as aron[00:55:32] <sysmonk> yuk.[00:56:11] <adaptr> no yuk please[00:56:20] <adaptr> take it home or summin[00:59:17] *** Fallenou has quit IRC[01:01:13] * hparker passes out yuk to everyone[01:01:39] <thumbs> hey, I'm having dinner! Be considerate[01:01:44] * sysmonk forwards his yuk to adaptr[01:07:25] * adaptr bounces all yuk[01:08:53] <hparker> mmMmm.... bouncy yuk[01:09:05] <sysmonk> adaptr: you must be runing qmail[01:09:18] <thumbs> hahaha[01:09:23] <adaptr> if I could ruin qmail, I would[01:09:33] <sysmonk> adaptr: if you'd run postfix - you'd send a DSN[01:09:44] <sysmonk> with qmail you bounce all the shit back :P[01:09:59] <sysmonk> a fullblown 80 meg attachment ;P[01:10:14] <adaptr> ...or I have my limit set at 20megs[01:10:34] <sysmonk> wee, qmail can do THAT?[01:10:53] * adaptr vaporises sysmonk[01:10:54] <sysmonk> how many patches do you need to apply for that functionality ? :P[01:10:58] <adaptr> no, but it can do THIS[01:13:15] <chadmaynard> if you google search "support" microsoft comes back first[01:13:55] <hparker> but... there's no support there[01:17:40] <vice-versa> google search for "no support"[01:20:23] *** dhg has quit IRC[01:20:50] *** dhg has joined #postfix[01:48:07] *** jeffspeff has quit IRC[01:48:37] *** jeffspeff has joined #postfix[01:49:24] *** F6F has quit IRC[01:51:02] <xpoint> google free mail olso gives sites where mail is paid[01:57:16] *** jeev has quit IRC[01:58:01] *** gonewestcoast has joined #postfix[02:01:57] *** pirho has quit IRC[02:06:40] *** xpoint has quit IRC[02:21:41] *** madrescher has quit IRC[02:22:28] *** jeev has joined #postfix[02:32:15] *** cilly has quit IRC[02:35:23] *** cilly has joined #postfix[02:35:29] *** Zblakany has quit IRC[02:38:41] *** jeev has quit IRC[02:39:07] *** jeev has joined #postfix[02:52:10] *** AcTiVaTe has quit IRC[02:54:59] *** slurpee- has joined #postfix[02:56:01] <magyar> hi, I have an odd issue with amavis and can't find a solution. Some messages are not being tagged and I can't figure it out why. I checked the size limitation and so forth but still get "Hits: -" and no score[02:56:12] <magyar> can anyone help with this?[03:10:55] *** ming_zym has joined #postfix[03:26:34] <shasta> magyar, read amavisd documentation concerning local_domains_maps[03:26:41] <shasta> i believe that's the source of your issue[03:42:33] *** jeffspeff2 has joined #postfix[03:44:09] *** Juspion has joined #postfix[03:45:31] *** m1n3s6 has quit IRC[03:56:52] *** mavrick61 has quit IRC[03:57:59] *** mavrick61 has joined #postfix[03:59:00] *** jeffspeff has quit IRC[04:24:09] *** lambda has quit IRC[04:26:05] *** seekwill has joined #postfix[04:27:13] <harlan> anybody here good with postfix and mailmail on a machine that does virtual mail delivery?[04:28:34] *** Chicago has quit IRC[04:30:10] <ek> harlan: Not familiar with mailmail.[04:30:15] <harlan> mailman[04:30:22] * harlan is typing badly tonight...[04:30:40] *** technoid_ has quit IRC[04:31:00] <ek> harlan: Ah.[04:31:03] <ek> I'm familiar with it.[04:31:21] <harlan> I've got several sites running postfix and mailman. No problems.[04:31:40] <harlan> I have one site running postfix and mailman and virtual delivery, no problem.[04:32:09] <harlan> I have one site, however, where several things are not working (and at all these sites I used the FreeBSD ports tree to handle the installation).[04:32:47] <ek> harlan: Can you be more specific about what isn't working?[04:32:54] <ek> Any errors or anything that you can go off of?[04:32:56] <harlan> If email comes in for user at virt dot site, it gets stripped down for local delivery to 'user', which is dutifully handed off to the *main* domain email machine for delivery[04:32:59] <harlan> nothing.[04:33:17] <harlan> The mailman web interface does not save changes, but no errors are logged.[04:33:24] <harlan> I can do things OK using mailman's CLI.[04:33:42] <harlan> I'm happy to knock these bugs out one by one.[04:34:02] <harlan> I figure the first one to attack is "why is mailman mail not being properly sent to mailman for processing"?[04:34:11] <ek> harlan: What kind of virtual hosting are you using? SQL based? Flat file?[04:34:17] <harlan> flat file.[04:34:22] <ek> Okay.[04:34:42] <harlan> I have the mailman/data/aliases file OK, but those same entries are in the virtual-mailman file, which concerns me.[04:34:45] <ek> harlan: What are you using to deliver to Mailman? Postfix-to-Mailman?[04:34:54] <harlan> I think this last bit is why things are not being properly delivered.[04:35:03] <ek> Hrm.[04:35:03] <harlan> postfix to mailman.[04:35:21] <ek> harlan: What does your transport map file say about the virtual domain?[04:35:51] * harlan looks[04:37:01] <harlan> The transport file says "deliver email for the virtual machine to the dedicated IP on this box", ie: example.com :[192.168.1.212][04:37:12] <harlan> and .example.com :[192.168.1.212][04:37:54] <harlan> or do you mean something else?[04:39:07] <harlan> If I send email to user at example dot com it is properly delivered to that user's virtual mailbox.[04:40:12] <ek> Right. Maybe the problem is that the domain that mailman should be accepting mail for hasn't been added to the transport map.[04:40:51] <ek> So, if the domain for the mailing list was list.domain.com, you would add it to Postfix's transport map like... list.domain.com mailman:[04:41:01] <harlan> OK, but if that's they case why, when I send email to user at virt dot site does that email end up in the virtual mailbox on the machine?[04:41:04] <harlan> hmmm[04:41:08] <ek> Then, of course, you will need to set up your 'mailman' service in Postfix's master.cf file.[04:41:30] *** chadmaynard has quit IRC[04:41:37] <ek> harlan: Well, shouldn't mail for user at virt dot site go to their mailbox?[04:42:23] <harlan> it does. It's that mail to mailmanlist at virt dot site gets the domain stripped and then forwarded to the mail handler for the "real" domain.[04:42:54] <harlan> I'm wondering if it is because mailman's aliases file says: list: "|.../mailman post list"[04:43:04] <ek> Ah. That could very well be.[04:43:23] <harlan> but the virtual-mailman file says: list at virt dot site list[04:45:55] <harlan> Hmmm, I'd think the virtual-mailman would translate list at virt dot site to list, and the mailman-generated aliases list would catch 'list' and send it to mailman.[04:47:11] <harlan> Is there a command I can give that says "postfix, what will you do if you get email for user@site?"[04:47:57] <ek> Not that I'm aware of.[04:48:04] <ek> You could always send a local mail to that address though.[04:48:19] <ek> mail -s "Some Subject" user@site[04:50:03] <harlan> I'm trying to debug why mail to 'list@site' ends up being delivered to list at main dot domain instead of locally.[04:53:11] <harlan> Hmmm, I see the mailman aliases database listed in alias_maps but not in alias_database...[04:53:32] <harlan> OK, that's apparently a non-issue[04:59:22] <ek> Hrm.[04:59:29] <seekwill> arrrrrrrrrrrrrrg!!! I didn't do crap this weekend! I was supposed to fill out that damn yahoo whitelist form...gah[04:59:58] <ek> When you send mail to list@site, what does the maillog say? It should show where it converts list@site to list at main dot domain and hopefully why.[05:00:06] <ek> seekwill: =/[05:00:14] <seekwill> Sorry... ranting :)[05:00:43] <harlan> The only thing I see in /var/log/maillog is when it sends the email to <list at main dot domain>[05:01:01] <harlan> I'm sending this test email from the box itself, I'll now try submitting a message from a remote site.[05:06:12] <harlan> OK, I have a hint, and I wasn't expecting this. I'm trying dspam on this box, and the incoming email is getting its domain name rewritten from list at virt dot site to list at real dot domain when it goes in to dspam.[05:06:19] <harlan> So that's where I get to look.[05:06:42] <harlan> dspam then dutifully delivers the mail back to postfix with list at real dot domain as the recipient.[05:07:11] <harlan> dspam is fast becoming more trouble than it could be worth.[05:19:13] <harlan> join #dspam[05:20:10] *** goldfischli has joined #postfix[05:20:34] *** m0f0x has quit IRC[05:22:23] *** Juspion has quit IRC[05:25:36] <harlan> I wonder if my problem is with lmtp.[05:35:31] *** ziro has quit IRC[05:36:12] *** goldfisc1li has quit IRC[05:48:03] *** pitakill has quit IRC[06:17:32] *** keffer has quit IRC[06:19:45] <seekwill> Hmm...[06:23:02] *** boink__ has joined #postfix[06:24:47] * seekwill sends his whitelist application to Yahoo, and crosses fingers[06:30:21] *** bhagat has joined #postfix[06:35:05] *** raz has quit IRC[06:35:05] *** boink__ is now known as raz[06:40:06] <harlan> so is anybody here good with dspam and postfix?[07:04:17] *** Drezard has joined #postfix[07:04:21] <Drezard> hello?[07:04:27] <harlan> g'day[07:04:31] <Drezard> i need some help with putting together a postfix server[07:04:36] <harlan> what OS?[07:04:42] <Drezard> ive tired about 9 times now from 3 - 4 different tutorials[07:04:44] <Drezard> im using ubuntu[07:04:57] <seekwill> Get, the book[07:04:59] <Drezard> harlan, anychance u can help?[07:05:09] <Drezard> ive got the LinuxCBT mail editions[07:05:12] <harlan> I'm a freebsd guy, but I'll do what I can unless somebody else wants to jump in.[07:05:12] <Drezard> they were no help :([07:05:18] <Drezard> ok pretty much[07:05:26] <Drezard> i want JUST the basic mail functions on my server[07:05:56] <Drezard> so sending and recieving to other emails (like offsite ones) and being able to access it thro thunderbird[07:06:08] <Drezard> i dont care about SSL or much more then the basic security[07:06:12] <Drezard> can u help with that?[07:06:17] <harlan> thunderbird will want an IMAP or POP server, that is outside of postfix.[07:06:31] <Drezard> could u help with the postfix bit of that?[07:06:44] <harlan> virtual domains/users, or just local users?[07:07:00] <seekwill> The Book of Postfix is all you need[07:07:12] <Drezard> i have bought the domain poweredsecurity.com from godaddy.com, not sure if the MX records are set up correctly tho[07:07:36] <seekwill> It is not[07:07:38] <Drezard> seekwill, can u help me set up the basics?[07:07:44] <Drezard> one second[07:07:51] <seekwill> Drezard: I really don't have time to hold your hand on it[07:07:57] <seekwill> I would buy the book[07:08:22] <Drezard> i seem to look through tutorials and watch videos but they all go thro the ENTIRE setup not jsut the basics[07:08:35] <harlan> are you taking it one step at a time?[07:08:42] <harlan> Does local email via postfix work?[07:10:07] <Drezard> thats the problem, the tutorials i can find (like howtoforge.com and ubuntu docs) dont do the whole 'troubleshooting' side of things, so i have no idea[07:10:45] <harlan> Does local email via postfix work?[07:11:01] <Drezard> one second...[07:11:16] <slurpee-> i have been folowing a tutorial on how to setup a basic mail server in etch with postfix. I am doing some troubleshooting and need to clarify this.....what does the author mean by this?[07:11:18] <slurpee-> make sure that your /etc/hostname contains the host name without the domain part. The file /etc/mailname is supposed to contain the fully-qualified host name with the domain part.[07:12:17] <harlan> slurpee-: /etc/hosts should contain lines like: 127.0.0.1 localhost localhost.my.domain[07:12:39] <Drezard> harlan, im going to quickly restore my server from backup and try and run through the basic sets again...[07:12:42] <harlan> sorry - I misread your question[07:12:47] <Drezard> harlan, take two or so mins[07:12:52] <harlan> ok Drezard[07:13:07] <Drezard> harlan, is this the right setup for the MX records though: http://img187.imageshack.us/img187/2918/setupap1.png[07:13:42] <harlan> slurpee-: what is confusing to you about those directions?[07:13:55] <slurpee-> harlan, i am curious about /etc/hostname & /etc/mailname[07:14:17] <harlan> one is apparently used to set the "short" hostname, and the other sets the FQDN.[07:14:23] <slurpee-> ./etc/hostname contains the host name without the domain part ?[07:14:33] <slurpee-> im not sure about the "without the domain part"[07:14:51] <slurpee-> right now both of /etc/hostname & /etc/mailname are the same.[07:15:09] <harlan> Do they both use a FQDN?[07:15:36] <slurpee-> fqdn? (i am a newb, this is my first full mails server I am setting up as an experiment)[07:15:47] <harlan> fully-qualified domain name.[07:15:59] <slurpee-> they both has fqdn[07:16:47] <harlan> the instructions you quted say one of those files should not contain the "domain" part, just the first part of the domain name (a, a,b,c)[07:16:50] <harlan> a.b.c[07:17:39] <slurpee-> lets say i am using example.net[07:17:57] <harlan> let's say foo.example.net.[07:18:09] <slurpee-> file /etc/hostname should just have example ?[07:18:11] <harlan> that is a FQDN, and the "short" name would be foo[07:18:15] <Drezard> u would just use foo instead of foo.example.com in one of those??[07:18:17] <harlan> ues[07:18:19] <Drezard> i see :)[07:18:20] <harlan> yes[07:18:30] <slurpee-> i don't have a subdomain though[07:18:33] <slurpee-> just example.com[07:18:40] <harlan> Drezard: I cannot ead that - it is too small.. Lemme see if I can blow it up a bit.[07:18:43] <Drezard> it should be ur hostname[07:18:43] <slurpee-> should both files simple be "example.com" ?[07:19:36] <harlan> apparently not.[07:19:49] <harlan> one should be 'example' and the other should be 'example.com'[07:20:05] <harlan> and I have no idea how to do what you want as I'm not an etch guy.[07:20:39] <Drezard> try one way and if it dont work its the other???[07:21:05] <harlan> the directions say which file gets the "short" name and which gets the long (FQDN) name.[07:21:11] <harlan> Drezard: that looks OK[07:21:22] <harlan> Drezard: can you send email between local users?[07:22:45] <Drezard> harlan, im just restoring the system (back to a state without postfix)[07:22:59] <Drezard> harlan, then ill slowly go thro the basics[07:23:23] <harlan> 'k[07:25:47] <Drezard> harlan, aything ill need to do to the actual computer?[07:25:56] <Drezard> harlan, like i mean, change any hostnames or such?[07:26:21] <harlan> no idea[07:26:34] <harlan> yuo have already done partial config of postfix?[07:26:40] <Drezard> slurpee- your installing yours on a debian install arent you?[07:27:12] * snadge uses etch[07:27:29] <slurpee-> yes[07:27:34] <slurpee-> im giving up for the night though[07:27:37] <Drezard> slurpee- wait[07:27:46] <snadge> its a great choice for a production mail system[07:27:56] <slurpee-> http://workaround.org/articles/ispmail-etch/[07:28:06] <slurpee-> that is the tutorial i have been using[07:28:21] <snadge> mostly because its so easy to get cheap virtual hosting on xen with debian[07:28:31] <snadge> thats the tutorial i used also.. and have been using for about 4 years[07:28:46] <snadge> (obviously it was not for etch back then)[07:28:50] <slurpee-> pretty good stuff, but I had previously installed iscpconfig (a control pannel) on this server which had some mail configs. i believe it is conflicting with the tutorial I am using.[07:30:49] <slurpee-> snadge, any ideas why /home/vmail/ is empty?? I assumed my mail users should have directories in there, but it is empty. when I try doing a local smtp mail send, mail log shows the users don't exist.[07:35:17] <harlan> real users or virtual users?[07:35:27] <Drezard> slurpee- can i ask what hostname files you had to change to get everything working?[07:35:52] <Drezard> harlan, ok help time :P[07:36:35] <harlan> 'k[07:36:52] <Drezard> harlan, so my MX records look ok?[07:37:10] <harlan> yes, but the first thing to check out is that 2 local users on your box can send email to each other.[07:37:41] <Drezard> kk[07:37:53] <Drezard> so just create two local users and send mail to each other[07:38:04] <harlan> what happens to root's email?[07:38:16] <harlan> But if you want to use 2 non-root local users that's fine too.[07:38:23] <Drezard> kk[07:38:24] <harlan> or email from root to a non-root local user[07:38:38] <Drezard> kk[07:39:16] <Drezard> harlan, can i ask? im curious, how many postfix servers have you made?[07:39:27] <harlan> a bunch[07:39:34] <Drezard> harlan, im always wondering what it takes to become 'good' at setting up servers lol[07:39:44] <harlan> :)[07:39:51] <Drezard> hehehe[07:40:11] <harlan> I'm having tons of trouble with one right now - postfix+mailman+dspam+virtual.[07:40:22] <harlan> The ones that don't give me trouble are easy.[07:40:28] <Drezard> i see[07:40:32] <harlan> and there are many ways to do things.[07:40:39] <harlan> some work better than others.[07:40:56] <Drezard> ok question 1. what do i use as the "System mail name:" when first installing it???[07:41:04] <harlan> the more I read/understand/do the better I get at it. And I would rather be doing other things than being a postfix admin.[07:41:39] <harlan> I use the machine's 'regular' domain name.[07:41:43] <Drezard> as in?[07:41:54] <harlan> unless postfix is set up to only listen on specific IPs.[07:41:57] <Drezard> like my server is called dc-server and my domain is poweredsecurity.com[07:42:00] <harlan> what are you calling the machine?[07:42:09] <Drezard> dc-server[07:42:22] <Drezard> i have set up a sub domain called mail.poweredsecurity.com aswell[07:42:38] <harlan> this is the powerwhatever.com domain?[07:42:44] <Drezard> yeap[07:42:46] <harlan> ok[07:43:12] <harlan> so I'd probably call the system mail name dc-server.poweredsecurity.com[07:43:13] <Drezard> so its just poweredsecurity.com?[07:43:27] <harlan> No, I'd use the hostname not the domain name.[07:43:31] <Drezard> kk[07:43:37] <Drezard> :)[07:43:46] <harlan> there is a chance that down the line I'd call it mail.powered... but for now I'd use the real name.[07:43:48] <Drezard> installed[07:44:47] <Drezard> ok[07:44:54] <Drezard> im getting local mail[07:45:27] <Drezard> now what do i do?[07:45:33] <harlan> OK, can you send mail from that local user to somebody else on the net? Preferably an account you have on another machine?[07:45:42] <harlan> Then look closely at the headers.[07:45:44] <Drezard> one second[07:47:29] <Drezard> i cant send it to another host on the net[07:47:47] <harlan> that's a good first step. What is the error message/problem?[07:48:00] <harlan> can other hosts on the net send mail to that other box?[07:49:08] <Drezard> ok[07:49:16] <harlan> ??[07:49:28] <Drezard> when trying to send an email outside the network im getting a "Undelivered Mail Returned..." message[07:49:52] <harlan> and there should be more info in that bounce[07:50:27] <Drezard> I know its alittle off topic but do I need Maildir-style Mailboxes?[07:50:50] <harlan> it depends. Wnat do your users want to use to get their email?[07:51:06] <Drezard> at the end of this, thunderbird or another client like it?[07:51:23] <harlan> thunderbird expect POP or IMAP.[07:51:34] <harlan> You;ll need to install a POP or IMAP server.[07:51:51] <harlan> That software will determine what format the inbox should take.[07:52:26] <Drezard> kk[07:52:30] <Drezard> so no point as of yet?[07:52:36] <harlan> not yet.[07:52:40] <Drezard> kk[07:52:51] <Drezard> so in that bounce what should i be looking for?[07:53:02] <harlan> why was the email undeliverable[07:53:24] <Drezard> doesnt say...[07:53:37] <harlan> I bet it does...[07:54:08] <harlan> what email client are you using to read the bounce?[07:54:28] <Drezard> terminal?[07:54:31] <Drezard> mailx i think[07:54:44] <harlan> OK, that probably does not hide much.[07:54:54] <harlan> You can always look at the raw file and see.[07:55:15] <harlan> there should als be info in your maillog, wherever syslog wrote it.[07:55:15] <Drezard> im still looking...[07:55:16] <Drezard> one sec[07:55:23] *** EasilyOdd has quit IRC[07:55:25] <harlan> /etc/syslog.conf may tell yuo.[07:58:40] <Drezard> anyidea where the mail would be stored in raw?[07:58:56] <harlan> /var/mail/ or /var/spool/mail[08:04:10] <Drezard> ive sent some mail[08:05:05] <Drezard> my mail worked...[08:05:17] *** ming_zym has quit IRC[08:05:17] *** no_maam has quit IRC[08:05:17] *** Zeit|awy_ has quit IRC[08:05:17] *** brancaleone has quit IRC[08:05:17] *** fx0 has quit IRC[08:05:17] *** REdOG has quit IRC[08:05:17] <harlan> Good, how do the headers look?[08:05:27] <Drezard> but it automatically got dumped into my hotmail addresses junk mail for some reason??[08:05:43] <harlan> no idea - hotmail has rules...[08:05:53] <harlan> do you have working rDNS?[08:06:03] *** REdOG has joined #postfix[08:06:10] *** no_maam has joined #postfix[08:07:32] <Drezard> rDNS?[08:07:38] <Drezard> can i send an email to you...[08:07:53] <Drezard> my ISP address is blocking it completely and those are the only two addresses ive got...[08:08:22] <harlan> reverse DNS. if you 'dig -x 1.2.3.4' (where 1.2.3.4 is your correct IP) does it give the same name as your dc-server.power... name?[08:09:13] <Drezard> nope...[08:09:25] <Drezard> gives me a bunch of my isps stuff...[08:09:33] <Drezard> try dig -x 123.243.120.136[08:09:51] *** Zeit|awy_ has joined #postfix[08:10:21] <Drezard> ??[08:10:25] <Drezard> harlan, anything?[08:10:36] *** ming_zym has joined #postfix[08:10:42] <harlan> You need to talk to your ISP and get them to either change the rDNS to the name you want or have them give you instructions on how to delegate rDNS to you.[08:10:56] <Drezard> whys that?[08:11:22] <harlan> because many anti-spam measures will check the rDNS of the incoming email and reject if it does not match.[08:11:27] <Drezard> whys the best place to get the just of what DNS actually is??? as in rDNS and such cause im blanking...[08:11:55] <harlan> Plan B is to always relay your email thru your ISP's email server, but then you have to worry more about SPF records in your DNS zone.[08:12:12] <Drezard> ok goto plan A[08:12:18] <Drezard> explain what an rDNS is?[08:12:20] <Drezard> please[08:12:53] <harlan> If you say "dig mail.powerfoo.com" and get back 1.2.3.4, that is "forward" DNS.[08:13:21] <harlan> If you say 'dig -z 1.2.3.4' the answer should be 'mail.powerfoo.com', which is "reverse" DNS.[08:13:37] <Drezard> oh i see[08:13:43] <harlan> so domainname matches IP, and vice-versa[08:13:50] <snadge> dig -x actually ;)[08:13:57] <Drezard> and whats the difference between an A record and a CNAME?[08:13:58] <harlan> :)[08:14:17] <harlan> CNAME is an aliase - it says "treat this name as meaning the other name".[08:14:27] <harlan> CNAMES are sometimes not allowed for certain things.[08:14:50] <snadge> but cnames are convenient.. since you can have a single A record.. and update that[08:15:00] <snadge> without having to update the dozens of cnames you could have pointing to it[08:15:05] <harlan> it is *possible* that multiple A records point to the same IP, and it *should* be that looking up the PTR record (rDNS) could return multiple names for a single IP.[08:15:21] <harlan> IN reality most software does not know how to handle multiple PTR records.[08:15:42] <harlan> yes, but then yuo have to read RFCs and see where CNAMES are not allowed.[08:15:52] <snadge> an mx record is one thing[08:16:10] <harlan> that is a way to say "send mail for this host to the following places".[08:16:12] <snadge> it must resolve to a host which resolves to an A record (i could be wrong)[08:16:25] <harlan> since a domain name could have several sites that accept mail for it.[08:16:42] <harlan> I think you ar eright - an MX record must point to a name that is an A record.[08:16:49] <harlan> as I recall.[08:17:05] <Drezard> so does it matter i have two A records?[08:17:12] <Drezard> and whats an MX record then?[08:17:21] <harlan> the MX record says where email should be sent.[08:17:22] <snadge> you can have as many a records mapping to a single ip as you like[08:17:27] <harlan> yes[08:17:43] <harlan> if yuo do not have an MX record, email is sent to the A record.[08:17:56] <harlan> you can also 'dig foo.bar.com MX'[08:18:15] <snadge> swap mx with hostname ;)[08:18:22] *** f3ew has joined #postfix[08:18:51] <Drezard> harlan, check ur email/[08:18:52] <Drezard> ?[08:19:32] <rob0> harlan, I don't recommend using bare usernames. They do not ensure local(8) delivery. It only works if $myorigin is in $mydestination. Which means it could break without warning if either of those changes.[08:20:13] <harlan> when did I mention bare usernames rob0?[08:20:19] <rob0> What I use is virtual alias mapping from mailman-aliases at virtual dot alias.domain to mailman-aliases@localhost[08:20:22] <rob0> I scrolled up[08:20:26] <harlan> ah, thanks.[08:20:40] <harlan> The place they get remapped is from mailman's building the tables.[08:20:44] <Drezard> harlan, did u get the email i sent?[08:20:46] <harlan> I left that aln.[08:20:52] <harlan> not yet Drezard[08:21:01] <rob0> 02:33 < harlan> If email comes in for user at virt dot site, it gets stripped down for local delivery to 'user', which is dutifully handed off to the *main* domain email machine for delivery[08:21:23] <rob0> dang, almost 4 hours ago, I am behind the times[08:21:58] <Drezard> harlan, if i sent an email from administrator at powered dot .. to you, would i get the reply in my administrator@localhost box?[08:22:07] <harlan> rob0: yes, that is happenning I think because dspam is being fed to=<user at real dot domain>, orig_to=<user at virt dot site>[08:22:39] <harlan> Drezard: were you logged in as "administrator"? If so, then probably yes.[08:22:51] <harlan> Is there anything interesting in your maillog file?[08:23:06] <Drezard> having a look now :P[08:23:45] <harlan> rob0: I think the stripping problem is way after the horse has escaped the barn.[08:24:29] *** gabbernaster has joined #postfix[08:25:11] <Drezard> harlan, get the email?[08:25:21] <rob0> ok, well give me the executive summary and I'll have a look[08:25:31] <harlan> Drezard: not yet.[08:26:02] <harlan> rob0: I'm trying freebsd+postfix+mailman+virtual+dspam. I think this is a dspam problem.[08:26:34] <harlan> incoming email shows up, and gets passed to the dspam socket, but at that time the recipient gets rewritten from user at virt dot site to user at real dot site.[08:26:54] <harlan> dspam re-injects are user at real dot site and things go downhill from there.[08:28:28] <harlan> what is extra strange is this only happens for mailman (list) recipients.[08:28:32] <rob0> ahhh, no, I'm not dspam-literate, sorry.[08:28:43] <harlan> Email to realuser at virt dot site is properly sent via dspam.[08:29:44] <Drezard> im so confused :([08:29:44] <harlan> I wonder if this is because the real virtual users are in the virtual_mailbox_maps list, but the mailman lists are not.[08:29:52] <harlan> Drezard: ??[08:30:01] <Drezard> harlan, i cant get postfix to do anything :([08:30:07] <Drezard> its just weird[08:30:08] <Drezard> lol[08:30:47] <harlan> rob0: I'm using dspam because I want to make it easy for users to move miscategrized spam/ham out of/in to the SPAM folder and have the 'scoring' fixed.[08:30:59] <harlan> Drezard: we just find one problem at a time and fix it.[08:31:19] <harlan> Do your logs show the email to me was bounced, delivered, or still in the queue?[08:31:36] <Drezard> harlan, i have a log file the size of most constitutions[08:31:45] <harlan> grep is your friend.[08:32:04] <harlan> once you find 1 good line, you can grep on the message ID and find the others.[08:32:15] <Drezard> one second[08:32:43] <harlan> biab[08:34:10] *** sypher has quit IRC[08:36:01] *** Lap_64 has joined #postfix[08:36:17] *** F6F has joined #postfix[08:37:58] <Drezard> :'([08:38:09] <harlan> ??[08:38:10] <Drezard> rob0[08:38:27] <Drezard> rob0, do u know how to set up a mail server on debian?[08:38:33] <Drezard> harlan, i just cant get it too work[08:38:39] <Drezard> and the logs are huge![08:38:50] <harlan> grep is your friend.[08:38:56] <harlan> or rotate your logs.[08:38:58] <harlan> or both.[08:39:48] <rob0> !basic[08:39:49] <knoba> rob0: "basic" : http://www.postfix.org/BASIC_CONFIGURATION_README.html : a good starting place for Postfix beginners, many common questions are answered here.[08:39:54] <rob0> Drezard: ^^[08:42:27] <Drezard> dns just makes like confusing as heck![08:43:47] <Drezard> im just going to stop no[08:43:49] <Drezard> now*[08:43:50] <Drezard> lol[08:43:58] <rob0> You do need to have a pretty good grasp of DNS concepts to run a mail server.[08:44:04] <Drezard> its doing my head in![08:44:12] <f3ew> heh[08:44:16] <f3ew> DNs is easy for mail[08:44:21] <rob0> yes, you should take it in digestible pieces.[08:44:23] <f3ew> Just stick to MX and A records[08:44:42] <seekwill> And TXT, PTR![08:44:59] *** sophokles has joined #postfix[08:46:24] <seekwill> What's that spam/virus test string called?[08:46:32] <soren> GTUBE[08:46:48] <seekwill> ah! Thanks[08:46:49] <soren> and EICAR.[08:46:55] <soren> (former is spam, latter is virus)[08:50:18] *** majikman has quit IRC[08:50:24] *** Motoko-chan has quit IRC[08:50:34] *** Lap_64 has quit IRC[08:50:48] *** Fallenou has joined #postfix[08:51:30] *** Fallenou[oqp] has joined #postfix[08:52:53] *** rootsvr has joined #postfix[08:53:18] *** majikman has joined #postfix[08:53:35] *** Lap_64 has joined #postfix[08:54:18] <seekwill> FYI, this is a great CentOS howto to setup amavisd, spamassassin, and clamav[08:54:32] *** HelloWorld123 has joined #postfix[08:54:33] <HelloWorld123> hello[08:54:42] <seekwill> http://wiki.centos.org/HowTosAmavisd[08:54:47] <seekwill> (stupid copy/paste)[08:55:06] <HelloWorld123> I have 5 domains and 5 IPs. How can I make each domain to use 1 specific IP for outgoing e-mails ?[08:58:13] <harlan> HelloWorld123: how many machines do you have?[08:58:19] <HelloWorld123> 1[08:58:47] <harlan> I'd guess 5 separate instances of postfix, but there may be a better way.[08:59:01] <HelloWorld123> harlan, do you think it's possible using transport file?[09:01:11] <harlan> You might be able to do it with a relay transport, and run an internal SNTP relay that listens to each IP for connections from localhost and resends the email out from there.[09:01:46] <Drezard> does anyone here use godaddy?[09:01:53] <seekwill> Running 5 instances is easier :)[09:02:00] <seekwill> Drezard: Yes[09:02:27] <Drezard> seekwill, how do i point my domain registered with godaddy.com to my dns server here?[09:02:39] <Drezard> seekwill, what menu/way do i use?[09:02:48] <seekwill> Drezard: Are you sure you want to host the DNS server?[09:02:56] <harlan> that won't fix rDNS Drezard, if that's what you have in mind.[09:03:00] <seekwill> I highly suggest you let them, unless you know what you're doing[09:03:01] <Drezard> yea.. educational purposes[09:03:06] <Drezard> na i just wana play around with it[09:03:11] <seekwill> ok[09:03:20] <Drezard> its not a high traffic (except for me, theres no traffic) domain lol[09:03:45] <harlan> you could host internal.dom.ain pretty easily and learn that way...[09:03:54] <seekwill> Drezard: On the main domain page, change the "Name Server" section[09:04:04] *** madrescher has joined #postfix[09:04:06] <harlan> and make your machine have private IP space and use foo.internal.dom.ain for one machine...[09:04:23] <seekwill> ain?[09:04:31] <seekwill> oh, lol[09:04:38] <seekwill> (it's late...)[09:04:48] <Drezard> my custom nameservers should be?[09:04:51] <harlan> 00:04 for me[09:04:54] <Drezard> like ns.1.2.3.4?[09:05:00] <seekwill> harlan: Same for me too![09:05:07] *** alienbrain has joined #postfix[09:05:46] <Drezard> how do i set up the name servers for mine?[09:06:13] <seekwill> Type in your IP address...[09:06:50] <Drezard> i have to have two diff ips?[09:06:57] <seekwill> Oh this is bad... "connection refused" on the server I'm trying to ssh into[09:07:09] <seekwill> Drezard: You have a lot to learn. How about learning about mail before DNS>?[09:07:14] <f3ew> oops[09:07:19] <Drezard> seekwill, tried that[09:07:29] <Drezard> probably annoyed harlan for about 2 hours today :P[09:07:29] <seekwill> Drezard: But?[09:07:29] <Drezard> lol[09:07:37] <seekwill> Drezard: GET THE BOOK[09:07:42] <Drezard> kk[09:07:43] <Drezard> lol[09:07:45] <harlan> not at all.[09:08:24] <seekwill> gah,,, wtf... why did it kick me off??? :([09:08:51] <seekwill> harlan: Where are you located?[09:09:26] <harlan> right now, Sunnyvale CA. I'd rather be in southern OR though.[09:09:35] <seekwill> heh, why?[09:09:43] <harlan> that's where my sweetie and her son live.[09:09:48] <seekwill> ah[09:09:53] <harlan> I'm down here on a contract at the moment.[09:09:56] <seekwill> Telecommute![09:10:00] <seekwill> oh[09:10:38] <harlan> They don't like that. This is a place where folks are so busy they don't answer email, so if I need something I have t physically go to the person and interact with them.[09:10:46] <seekwill> lol[09:11:03] <harlan> it kinda sucks, but hey, every place I have ever worked has *something* insane going one.[09:11:06] <harlan> on[09:11:11] <seekwill> That's the fun part[09:11:18] <harlan> yup[09:11:34] <seekwill> I wonder if the box like segfaulted or something...[09:12:05] <seekwill> Drezard: Use CentOS, and use that wikipage I linked to :P[09:12:10] <seekwill> Drezard: A real OS :P[09:12:17] <seekwill> err... distro.[09:12:22] <harlan> Nowadays I get machines with IPMI-KVM-over-IP on them so I can reboot or interact with the boot remotely.[09:12:24] <Drezard> lol[09:12:34] <Drezard> im using ubuntu currently cause its all ive ever used lol[09:12:44] <seekwill> You DO NOT want to know what kind of box I'm using for this mailserver...[09:12:45] <Drezard> what do both of u work as?[09:13:07] <seekwill> Drezard: RHEL is the path to redemption[09:13:15] <harlan> I mostly do build team work and software toolchains these days. I used to be a sr. developer, then a sysadmin.[09:13:16] <seekwill> I work as a support engineer[09:13:45] <Drezard> nice[09:14:00] <Drezard> ive just started as a hepldesk zombie at my local ISP[09:14:01] <Drezard> lol[09:14:09] *** tshine has quit IRC[09:14:11] *** DDevine has joined #postfix[09:14:19] <DDevine> Greetings.[09:14:23] <Drezard> hey :P[09:14:25] <harlan> I could not do that job Drezard.[09:14:34] <Drezard> yea pretty much :P[09:14:39] <Drezard> its a start tho[09:14:44] <harlan> yup[09:14:45] <seekwill> harlan: Have more info on that? Is it a special card like DRAC?[09:14:49] <Drezard> i have CCNA and a few CCSP exams so hopefully ill get bumped up[09:15:30] <harlan> It's a special card - lately I've been getting supermicro boxes, and it is available on them. I suspect the mobos are from somebody "well known".[09:15:47] <seekwill> Figures[09:15:55] <seekwill> (kinda have to be...)[09:16:28] <Drezard> harlan, the only way i survive is setting up arbitrary (i hope i spelt that right) and pointless advanced home networks lol[09:16:31] <seekwill> This box has 1GB of RAMBUS :([09:16:41] <harlan> that works![09:16:46] <seekwill> Drezard: Work harder at your job![09:16:55] <seekwill> Drezard: Small ISP?[09:16:58] <Drezard> i have servers running RAID1 and 5 here, plus, a large cisco routing network, plus a LAMP[09:17:09] <Drezard> na, its 100 or so staff but, i start next monday :P[09:17:11] <seekwill> I have two lamps...[09:17:18] <Drezard> so i technically havent started yet[09:17:19] <Drezard> lol[09:17:20] <seekwill> Oh, you haven't started...[09:17:24] <Drezard> funny seek will[09:18:07] <Drezard> do either of you guys do any cisco based stuff?[09:18:43] <harlan> seekwill: http://supermicro.com/products/system/1U/5015/SYS-5015M-NT.cfm[09:18:56] <harlan> not much, although I worked there for several years.[09:19:27] <Drezard> harlan for cisco?[09:19:33] *** rootsvr has quit IRC[09:19:52] <harlan> yes, I was the software build guy for the MDS switches.[09:20:21] <harlan> I have no real idea what they did, but I could build the software.[09:20:28] <harlan> I gather they are expensive boxes.[09:20:38] <Drezard> harlan, lol nice[09:20:42] <harlan> honkin' big fabric switches.[09:21:20] <Drezard> hehehe[09:21:39] <f3ew> Mmmm, MDS[09:22:15] <Drezard> harlan, on the rDNS thing, it says i need a business account to change it[09:22:17] <seekwill> Yeah, my router is a Linksys[09:22:22] <Drezard> so whats the other way of doing it?[09:22:22] * f3ew is merely a humble BOFH[09:22:31] <f3ew> Drezard there isn't[09:22:45] *** boink__ has joined #postfix[09:22:47] <f3ew> harlan where do you work now?[09:22:48] <Drezard> harlan, of going thro my ISPs SMTP servers?[09:22:57] <harlan> to change so that you manage your DNS? Probably - otherwise they'd probably be eaten alive by spammers.[09:23:12] <f3ew> !relayhost[09:23:13] <knoba> f3ew: "relayhost" : a configuration parameter in the main.cf: The default host to send non-local mail to when no entry is matched in the optional transport(5) table. When no relayhost is given, mail is routed directly to the destination. If your relay host requires authentication see the !saslclient channel factoid.[09:23:24] <harlan> I'm on a short-term contract to sncorp.com[09:23:28] <f3ew> ah[09:23:48] <harlan> seekwill: http://supermicro.com/products/accessories/addon/SIM.cfm[09:24:02] <f3ew> Drezard, my recommendation for a new sysadmin is usually (a) learn to document, (b) learn DNS, (c) learn the rest[09:24:09] <DDevine> in /var/log/mail.log i get: warning: SASL authentication failure: cannot connect to saslauthd server: No such file or directory[09:24:19] <seekwill> harlan: Ah, that's a nice little box[09:24:22] <DDevine> and i cant authenticate to the server (i cant sign in)[09:24:43] <Drezard> f3ew, tried to learn dns, seekwill told me to mail first lol[09:24:43] <harlan> it's one of many - I just picked one that I know supports a decent IPMI card.[09:24:45] <DDevine> which config file do i need to edit to make sure it connects to the SASL server?[09:25:13] <Drezard> harlan, so what exactly do u do know then?[09:25:14] <seekwill> Drezard: You don't need to host a DNS server to learn DNS[09:25:16] <f3ew> !chroot[09:25:16] <knoba> f3ew: "chroot" : The fifth column in master.cf, if not n , means that the Postfix process described on that line runs in a chroot, see !debug , !queue_directory and files in the examples/chroot-setup subdirectory of the Postfix source archive which show examples of a Postfix chroot environment on a variety of systems[09:25:20] <harlan> DDevine: that should be documented in your saslauthd server.[09:25:21] <Drezard> harlan, sys admining or programming[09:25:24] *** phnord has joined #postfix[09:25:47] <seekwill> harlan: You generally like Supermicro products?[09:26:20] <harlan> Drezard: I do both, but I rarely do programming for money anymore. In development there is a never-ending, even growing list of things that must be done ASAP. Nowadays, I sometimes get 15 minutes every couple of weeks where things are not on fire.[09:26:42] <harlan> seekwill: more and more - I get my boxes from ixsystems.com these days.[09:26:54] <harlan> There's just too much to know to build a box that has to work right.[09:27:40] <harlan> I've also just started playing with ZFS and that is *most* impressive.[09:27:51] <DDevine> harlan: there is nothing besides @^@^@^@^@^ in /etc/sasldb2[09:27:53] <seekwill> harlan: Definitely. But I'm thinking about going towards HP or Sun for a server[09:27:58] <DDevine> what should i fix?[09:28:06] <seekwill> harlan: ZFS definitely is[09:28:14] <harlan> seekwill: makes sense.[09:28:25] <harlan> DDevine: man -k sasl[09:28:36] <DDevine> ok[09:28:50] <harlan> somewhere you will find config docs.[09:30:16] *** Drezard has quit IRC[09:30:48] *** Fallenou[oqp] has joined #postfix[09:31:07] *** Fallenou has quit IRC[09:31:12] <seekwill> harlan: Darn, no pricing on their site :([09:31:46] <harlan> ixsystems? Yeah, I've noticed. Lame, but if they listed priced they'd be updating them every day.[09:31:51] *** aron is now known as Aron[09:31:58] <seekwill> It changes that often?[09:32:01] *** Bushmills has joined #postfix[09:32:16] <Bushmills> g'day[09:32:31] <seekwill> Ah, they seem to be more of a BSD shop. I would definitely be interested if they were RHEL certified[09:33:04] <harlan> I have no idea if they do RHEL or not, but I'm sure there are similar shops out there.[09:33:42] <Bushmills> before i try to figure out what the reason of a behaviour with virtual recipients is, i want to know whether that behaviour is really - as i think - unexpected. description following:[09:34:19] <Bushmills> (that's in a config which has been running with virtual users for several years now)[09:34:59] *** raz has quit IRC[09:34:59] *** boink__ is now known as raz[09:37:19] <Bushmills> i have set recipient delimiter to ".", instead of the default "+'". after adding an entry to /etc/postfix/virtual like foo at domain dot tld bar at otherdomain dot tld, and sending mail to foo.test at domain dot tld, the new recipient address becomes bar.test at otherdomain dot tld - i had expected it to become bar at otherdomain dot tld[09:37:51] *** denis has joined #postfix[09:38:19] <seekwill> Time to bed, since obviously this server is bricked...[09:38:20] <seekwill> nite![09:38:30] <Bushmills> otherdomain.tld is an external address, not knowing about the "." recipient delimiter, and therefore not knowing recipient bar.test[09:38:32] <harlan> Bushmills: I recently had to fix +/. mapping...[09:38:34] <harlan> nite seekwill[09:38:39] *** seekwill has quit IRC[09:39:02] <Bushmills> harlan, fix what with that?[09:39:06] *** kjkoster5489 has joined #postfix[09:39:07] *** _Driver_ has joined #postfix[09:39:39] <harlan> Bushmills: I did it with a regexp map in virtual_aliases, so I left + as the delimiter and I rewrote user\.(.*)(@.*)?$ as user+$1[09:40:11] <Bushmills> ah. so it seems to be a bug? a known bug, even?[09:40:44] <harlan> no idea. I got burned once too often by sites that allow . but not + so if I wanted something to work I needd to hack around it.[09:40:54] <Bushmills> i found a different work around, but that one is not satisfactory.[09:41:17] <Bushmills> that's what i'd had to figure out then, why in one case it works, and not in the other.[09:41:21] <harlan> I already do First.Last stuff, so changing that internally to First+Last (since "First" is what we use for logins) was easy.[09:42:02] <Bushmills> the "fix" was to send mail to a user with a local account, and use a procmail recipe, or .forward, to redirect to the real destination address[09:42:12] <harlan> that work.[09:43:04] <harlan> I just use main.cf:virtual_alias_maps = regexp:/usr/local/etc/postfix/virtual_aliases[09:43:18] <harlan> where I put the above regexp in that file.[09:43:25] *** Lap_64 has quit IRC[09:44:14] <Bushmills> good to know that[09:44:41] <Bushmills> ah, i seem to understand now what it does[09:44:53] <Bushmills> you just leave recipient delimiter on +[09:45:10] <Bushmills> but massage the recipient address before expansion[09:45:15] <harlan> yup[09:45:29] <Bushmills> clever[09:45:53] <harlan> somebody here recommended it to me last week.[09:46:25] *** snadge has left #postfix[09:46:38] <Bushmills> but it seems that you need to add a reg expr for every user[09:47:13] <harlan> or use 2 regexps, one to grab the user name and the other to handle the \..* stuff[09:47:14] <Bushmills> unless you use ^.*\. instead of user\.[09:47:38] *** brancaleone has joined #postfix[09:47:41] <harlan> since I'm using this on a small domain it's easy for me to list the fokls who should have this done.[09:48:15] <harlan> you need 2 regexps "groups" so you can rewrite to $1+$2[09:48:22] <Bushmills> true[09:48:59] <milligan_> Trying my luck with a postfixadmin question: In the domainlist, there is a quota setting. Does that quota mean the total quota available to the domain, or the max quota pr mailbox on the domain ?[09:49:05] <Bushmills> that gives a new angle on the problem. thanks for sharing, harlan[09:49:08] <harlan> and this probably makes it harder for me to push known user lists to my backup MX sites.[09:49:12] <harlan> NP[09:57:27] <DDevine> this line was blank in my postfix/main.cf: smtpd_sasl_local_domain =[09:57:32] <DDevine> should it be filled?[09:57:44] *** ribasushi has joined #postfix[09:57:49] *** madrescher has quit IRC[09:57:50] <ribasushi> hi[09:58:09] <harlan> DDevine: it is set to the domain name I want to use for sasl auth on my configs.[09:58:22] *** war9407 has joined #postfix[09:58:23] <ribasushi> is it normal practice for a mailer to return a perm error (554) with a temp errror DSN (4.0.0)?[09:58:27] <Bushmills> other way may be ... i run a script before expansion, for spam filtering (to avoid that spam is bounced to the usually spoofed sender) .. that script extracts recipient from the mail, piped to it, anyway - i might handle the translation from . to + in there.[09:58:46] <DDevine> harlan: so... localhost?[09:58:58] *** fx0 has joined #postfix[09:59:08] <harlan> the domain name of the site you are answering for[09:59:10] <DDevine> or "ddevnet.net"?[09:59:14] <DDevine> oh thanks[09:59:16] <harlan> ddevnet.net[10:00:04] *** gonewestcoast has quit IRC[10:15:28] *** boink__ has joined #postfix[10:22:57] *** jduggan has joined #postfix[10:25:43] *** rabbit7 has quit IRC[10:25:49] *** rabbit7 has joined #postfix[10:27:19] *** raz has quit IRC[10:27:19] *** boink__ is now known as raz[10:32:01] *** gah has joined #postfix[10:33:32] *** jduggan_ has quit IRC[10:33:41] *** biz has quit IRC[10:34:27] *** biz has joined #postfix[10:36:01] <gah> Hello all, I have a spam problem (doh), is there any way I could block any address not on my local network and how i could filter out all the incoming spam to my mail users[10:37:01] <Bushmills> gah, define "spam"[10:37:35] <Bushmills> also, define "address"[10:37:36] <gah> Undisered mail from unknown recipients[10:37:44] <gah> IP's[10:38:02] <gah> s/recipients/senders/[10:38:16] <harlan> what about forged senders?[10:38:34] <Bushmills> gah, iptables seem to be the proper way to block connection attempts to your port 25 from ip addresses you don't want to receive mail from[10:39:08] *** HelloWorld123 has quit IRC[10:39:42] <gah> Bushmills, I have tried closing port 25 to the net but I then am unable to recieve mail[10:39:50] *** Nibbler has joined #postfix[10:40:05] <Bushmills> gah, but ... why should your postfix on local network listen to external connections anyway?[10:40:09] <Nibbler> hi.[10:40:51] <gah> Bushmills, I know it shouldn't, but besides iptables I am not savvy enough with postfix to know how to do it...[10:41:00] <Nibbler> i have a postfix running, and need to read an email that is currently in postfix cache. sadly i fail to decode the url correctly that is within this mail. is there any convenient program to read the cached mail?[10:41:09] <Bushmills> gah, yes sure you won't. i thought your idea is to allow mail on/from local net only[10:41:16] <f3ew> postcat -q <QUEUEID?[10:41:23] <Nibbler> :) thanks[10:41:36] <harlan> gah, what about the access table?[10:42:03] <Bushmills> gah, if external mail sources should be allowed, check greylisting as level one, and spamassassine as level two spam restrictor[10:43:03] <Bushmills> gah, if you don't want to allow external mail sources, check your network configuration[10:43:08] <Nibbler> f3ew: still gives me "/reminder=2Easpx?ticket=3Dsqk=zDq" escaped stuff :\ the =2e and =3d is not the problem, but the =zDq is....[10:46:49] <f3ew> Nibbler those appear to be parameters to the script[10:47:31] <Nibbler> so it does nothave to be decoded anymore?[10:47:33] <Nibbler> good[10:47:59] <Nibbler> yet the website says, the url is invalid... might be another problem anyways....[10:48:10] <f3ew> everything after the ? isn't part of the URL itself[10:48:29] <Nibbler> well, i need to pass on the ticket id[10:48:37] <f3ew> ah[10:48:44] <Bushmills> Nibbler, i think percent signs have disappeared[10:48:57] <f3ew> Bushmills, it's quoted printable[10:48:57] <Bushmills> 2e might have been %2e, which is a period[10:49:00] <gah> Bushmills, I will explain what I actually want after I had a look at greylisting and then spamassasin I think those are the two keywords I was looking to get started[10:49:05] <Nibbler> =2e is %2e[10:49:10] <Bushmills> 3d was %3e, a =[10:49:15] <gah> I will borther you lads later if I can't solve the problem :>[10:49:19] <Bushmills> sorry. 3d was %3d[10:49:48] <Nibbler> Bushmills: nope, postfix does not use % here, but = - i noticed in the domain name which has quoted dots, too[10:50:08] <f3ew> Bushmills, it's quoted printable <===[10:51:27] <Bushmills> f3ew, yes, still 2e and 3d look very much like hex numbers of asciis to me[10:52:17] <Bushmills> could maybe just try to substitute these two against the actual characters in the URL[10:52:20] <Nibbler> it is....[10:52:38] <Nibbler> but thats not the problem..... ofc. i decoded those, resolve to = and .[10:53:57] <f3ew> Maybe the ticketid has an =[10:54:05] <f3ew> Since=z doesn't mean anything[10:55:13] <Nibbler> i left the other = untouched, if they were not followed by 2 hex digits[10:55:54] *** jeffspeff has joined #postfix[10:55:56] *** jeffspeff2 has quit IRC[10:56:00] *** hparker has quit IRC[11:01:14] *** _Driver_ has quit IRC[11:01:49] *** _Driver_ has joined #postfix[11:03:26] *** bhagat has quit IRC[11:07:22] *** bhagat has joined #postfix[11:08:24] <Nibbler> website is broken, and i try decoding this stuff for 1h now.... ffs[11:08:27] <sysmonk> morn guys & gals[11:08:27] <sysmonk> ;)[11:08:42] <sysmonk> Nibbler: man, can't you just use a function for that?[11:08:53] *** alienbrain has quit IRC[11:09:25] <Nibbler> sysmonk: the website is broken, so i decoded right, but wont work due to other reasons.[11:09:58] <sysmonk> Nibbler: your last words were 'i try DECODING this stuff for 1h now'[11:10:05] <sysmonk> that's why i offered using a function to do that[11:10:14] <sysmonk> i.e. php's quoted_printable_decode[11:10:25] <Nibbler> hehe oki.... thanks.[11:11:07] * sysmonk tries to stay alive after all those tomatoes thrown at me for php[11:12:12] <Nibbler> ;-)[11:12:24] <Nibbler> ok, now i might get back my fixed ip \o/[11:14:49] *** Nibbler has quit IRC[11:21:17] *** dotplus has quit IRC[11:23:27] *** rootsvr has joined #postfix[11:29:28] *** Nibbler has joined #postfix[11:29:39] <Nibbler> re[11:30:46] *** biz has quit IRC[11:54:43] *** bsdnux has joined #postfix[11:55:15] *** biz has joined #postfix[11:55:33] *** _Driver_ has quit IRC[11:58:09] <bsdnux> i'm currently using postfix with a global procmailrc which uses spamc and clamassassin to filter incomming mail. is this good practise or would it be better/more scalable to use amavisd?[12:00:02] <Bushmills> bsdnux, from postfix point of view, procmail is invoked. whether user-local procmail recipes, or global recipes are used, is of no concern to postfix[12:00:51] <Bushmills> you say that spamc is called from one of your procmail recipes?[12:01:29] <bsdnux> yes.. i only got 1 global procmailrc, first it calls spamc then clamassassin, which is a wrapper of clamav[12:01:42] <bsdnux> but i wondered if this is more overhead than using amavisd[12:03:03] <bsdnux> my setup works fine for now, just not sure if it's scalable too[12:03:26] *** COiN has joined #postfix[12:03:30] <COiN> hello there[12:03:39] *** _Driver_ has joined #postfix[12:03:46] <Bushmills> i suppose many would call spamc by adding lines to master.cf but i suppose in terms of overhead, you're not worse off. if procmail gets invoked anyway, a few more recipes shouldn't hurt[12:03:59] <Bushmills> spam testing itself takes probably much longer[12:04:37] <COiN> I followed Signum 's great ISP-style Postfix howto, everything is working so far. But in the documenteation, there is mention something about a spamassassin bayes per-user database. Can anyone tell me which steps would be required to get such an setup?[12:04:48] <COiN> *documentation*[12:05:52] <Bushmills> bsdnux, there are ways to reduce overhead though. by doing a first level spam check, before passing mail to spamc[12:05:53] <bsdnux> Bushmills, thx for the input. haven't checked out the master.cf way of invoking clamav.[12:06:23] <Bushmills> two are known to me.. both do rfc compliancy testing[12:06:45] <bsdnux> ah ok[12:07:07] <Bushmills> one uses backup mx testing, the other is called greylisting[12:07:34] <Bushmills> overhead for smtp server is very low, and they filter out most of the spam[12:07:41] <bsdnux> are these postfix modules?[12:07:46] *** UQlev has joined #postfix[12:08:21] <Bushmills> they can both be used with postfix, but require a little bit of configuration[12:08:40] *** _Driver_ has quit IRC[12:09:29] <bsdnux> mom[12:11:45] <bsdnux> Bushmills, you mean postgrey?[12:12:09] <Bushmills> bsdnux, that's one of the greylisters[12:12:26] <Bushmills> works[12:13:34] <bsdnux> looks good.. what's backup mx testing?[12:13:55] <Bushmills> two mx records for the recipient domain, and test whether mail is sent to both[12:14:05] <Bushmills> botnet spam mailers usually don't[12:14:23] <bsdnux> and what if a domain only has one mx?[12:14:58] <Bushmills> bsdnux, recipient domain, i.e. the domain your postfix is serving. i assume you have control over dns zone too[12:15:10] <bsdnux> ah[12:15:56] <bsdnux> are mails sent to all MX when there are more than one?[12:16:02] <Bushmills> yes[12:16:07] <bsdnux> oh.. didn't know that[12:16:23] <Bushmills> at least, rfc compliant smtp server do[12:16:25] <bsdnux> i thought it's a fallback[12:17:00] <Bushmills> so did i, until i added a 2nd mx to try.[12:17:43] <bsdnux> :) ok. do you happen to remember the name of such a backup mx checker?[12:19:01] <ribasushi> is it possible to somehow gather all undelivered messages (4xx) and send them over to a different mail system which will be handling these "slow" deliveries?[12:19:19] *** Nibbler has quit IRC[12:20:00] <Bushmills> bsdnux, no, can't remember atm. look here, maybe this helps: http://www.howtoforge.com/forums/showthread.php?t=7847[12:22:16] *** viyyer has joined #postfix[12:25:23] <bsdnux> Bushmills, ok, thanks. i guess i got some reading to do. atm i got postfix-pgsql->procmail->dbmail-pgsql, there's surely some room for optimization in between.[12:39:26] *** rootsvr_ has joined #postfix[12:43:36] *** bsdnux has quit IRC[12:54:28] *** Zikey has joined #postfix[12:55:17] <Zikey> Hi, is it possible to enable content_filter only for non sasl authentificated users ?[12:57:09] *** blackflag has quit IRC[12:58:37] *** UQlev has quit IRC[12:59:12] *** cpm has joined #postfix[13:00:07] *** rootsvr has quit IRC[13:01:46] *** ming_zym has quit IRC[13:02:00] *** stony_ is now known as stony[13:02:08] *** blackflag has joined #postfix[13:06:23] <f3ew> Zikey, check_recipient_access w/ FILTER[13:10:26] *** sophokles1 has joined #postfix[13:12:11] <Zikey> thx :)[13:15:54] *** denis has quit IRC[13:18:34] <DDevine> i keep getting "Fatal: listen(143) failed: Address already in use" from dovecot[13:20:01] <sysmonk> DDevine: what channel are you on now?[13:20:20] <DDevine> ...postfix... but the programs are related.[13:20:28] <sysmonk> they're not[13:20:33] <sysmonk> they are different softwares[13:20:39] <DDevine> ok well ill ask #dovecot[13:20:41] <sysmonk> and this problem you have is in no way related to postfix[13:20:44] *** sophokles has quit IRC[13:20:48] <DDevine> calm down.[13:21:03] <sysmonk> oh noes, the 'calm down' phrase! :)[13:24:29] *** blackflag has quit IRC[13:26:47] <Zikey> f3ew i almost got it, do you have any idea how to specify an access line that matches any recipient ? does "*" work ?[13:27:15] <sysmonk> Zikey: a regexp with /.*/ will match everyone[13:27:47] *** rootsvr_ has quit IRC[13:28:08] <Zikey> sysmonk, is that ok in a mysql table ? check_recipient_access mysql: ...[13:28:19] <sysmonk> no[13:28:36] <sysmonk> you need pcre/regexp table for that[13:29:20] <Zikey> k :)[13:29:59] *** blackflag has joined #postfix[13:30:51] *** sophokles has joined #postfix[13:33:33] *** sophokles1 has quit IRC[13:38:13] <Zikey> damn no postfix-regexp package in ubuntu, switching to pcre...[13:43:27] <f3ew> regexp is built in[13:43:54] *** Chris-NB has joined #postfix[13:43:57] <Chris-NB> hi[13:44:37] <Chris-NB> I've postfix running with spamassassin and clamav (via amavisd). for webmail I'm using horde incl. vacation for autoresponder[13:45:03] <Chris-NB> my question: is there a possibility to only respond to mails which are NOT marked as spam?[13:45:28] <f3ew> Chris-NB modify the autoresponder script?[13:45:33] <Chris-NB> currently mails are delivered via maildrop (and vacation for the autoresponder)[13:46:20] *** ph8 has joined #postfix[13:46:26] <viyyer> hi I have problems configuring postfix + mailman . onsending a mail to the mailman mailing list id. I get a error[13:46:28] <viyyer> Aug 25 11:44:09 Slice2 postfix/local[6048]: 05F59AC371: to=<post at shire dot ocricket.com>, orig_to=<dev at lists dot ocricket.com>, relay=local, delay=143, delays=143/0.04/0/0.03, dsn=5.1.1, status=bounced (unknown user: "post")[13:46:44] <viyyer> why does this happen ?[13:47:22] <f3ew> because you don't have post in your alias_maps?[13:47:44] <f3ew> Chris-NB a maildrop recipe which handles the stuff marked as spam?[13:48:36] <Chris-NB> f3ew, I've added this header field: Precedence: junk[13:48:39] <Zikey> f3ew, ok figured it out, regexp files are plain text and not databases so postmap doesn't create it[13:49:01] <viyyer> f3ew, but the recipient is not post@shire .. it's dev@lists.[13:49:01] *** cilly has quit IRC[13:49:11] <f3ew> Chris-NB, I offered you two suggestions. I don't know either tool :)[13:49:28] <Zikey> f3ew, the postmap error when trying to generate a regexp database is confusing: postmap: fatal: dict_mkmap_func: unsupported dictionary type: regexp: Is the postfix-regexp package installed?[13:49:55] <f3ew> viyyer, you are doing a virtual_alias_maps rewrite to move the recipient from your virtual domain to your local domain (because postfix will not deliver to pipes in virtual(8))[13:50:01] <f3ew> Hmmm[13:50:03] <f3ew> Strange[13:50:19] <f3ew> See the orig_to in your logs @ vice-versa[13:50:23] <f3ew> err, viyyer[13:50:43] <Chris-NB> f3ew, I've read, that vacation do net reply to mails where this header field is set.[13:51:32] <Chris-NB> f3ew, but it doesn't really work : / It seems, postfix is giving the mail to maildrop and to vacation[13:51:50] <viyyer> f3ew, which mean orig_to is translated in to an post@ then .. do I have to manually add post@shire as an alias too ?[13:51:56] <Chris-NB> f3ew, so If I modify the email with maildrop, vacation doesn't get this[13:52:24] <f3ew> viyyer, your mailman aliases need to be in alias_maps, and the local alias needs to deliver to mailman[13:52:31] <f3ew> Chris-NB, right[13:52:35] <Chris-NB> is there a possibility to add a headerfield in postfix?[13:52:51] <Chris-NB> f3ew, so maildrop(rc) won't help me.[13:53:14] <f3ew> Chris-NB, you use maildrop to move tagged mail along a different path, and don't hand them to vacation[13:53:24] *** pulsar has quit IRC[13:55:06] *** ziro has joined #postfix[13:55:07] <viyyer> f3ew, I have my mailman aliases added to alias_maps . how do I ensure local alias delivers to mailman ?[13:55:18] <Chris-NB> f3ew, *hmm but how are mails delivered to maildrop/vacation?[13:55:35] <f3ew> Chris-NB you configured Postfix to do it?[13:55:55] <f3ew> viyyer, what does the listname in your mailman aliases show?[13:55:55] <Chris-NB> f3ew, if I activate my autoresponder, a .forward file is created. This file is used by postfix, right?[13:55:55] *** gcleric has joined #postfix[13:56:14] <f3ew> Chris-NB by the local delivery agent[13:56:24] <Chris-NB> f3ew, yep ... seems too : ) but can't see where/how exactly this is done[13:56:30] <f3ew> man 8 local[13:56:34] <Chris-NB> f3ew, okay[13:57:36] <viyyer> f3ew, this is how a mailman alias file looks like -> dev: "|/var/lib/mailman/mail/mailman post dev"[13:58:04] <f3ew> and what does your virtual_alias_maps entry look like?[13:58:16] <f3ew> for dev at lists dot ocricket.com?[13:58:52] *** boink__ has joined #postfix[13:59:07] <viyyer> f3ew, virtual_alias_maps = proxy:mysql:/etc/postfix/mysql-virtual_forwardings.cf, mysql:/etc/postfix/mysql-virtual_email2email.cf[14:01:17] <Chris-NB> f3ew, can I filter in a .forward file? like in maildroprc?[14:02:18] <viyyer> f3ew, the entry from db wrt to mailman is - > dev | |/var/lib/mailman/mail/mailman post dev |[14:02:37] *** blackflag has quit IRC[14:03:36] <f3ew> no[14:03:48] <f3ew> viyyer, that won't work[14:04:00] <viyyer> f3ew, aah ok[14:04:15] <f3ew> you need dev at lists dot ocricket.com dev at shire dot ocricket.com[14:04:21] <viyyer> f3ew, so.. mailman posts are not forwardings :([14:04:23] <viyyer> ok[14:04:38] <f3ew> they are, but they are a speacil type of forwarding[14:05:21] <viyyer> f3ew, ok[14:05:41] *** mark-use has joined #postfix[14:07:02] *** gcleric has quit IRC[14:07:12] <viyyer> f3ew, so the forwarding entry just simple translation of dev at lists dot ocricket.com to dev at shire dot ocricket.com[14:08:19] *** blackflag has joined #postfix[14:09:20] *** idle-boy is now known as BadMemory[14:10:20] *** raz has quit IRC[14:10:20] *** boink__ is now known as raz[14:10:51] *** Lethargik has joined #postfix[14:12:06] <f3ew> yes[14:12:49] <viyyer> f3ew, so no mucking with this destination as a whole ?? /var/lib/mailman/mail/mailman post dev[14:13:11] <f3ew> right[14:16:05] *** lambda has joined #postfix[14:21:32] *** Rockj has quit IRC[14:23:04] *** COiN has quit IRC[14:24:11] *** _Driver_ has joined #postfix[14:24:22] *** hwdyki has joined #postfix[14:26:27] *** xpoint has joined #postfix[14:30:20] *** Zeit|awy_ has quit IRC[14:39:32] <Zikey> f3ew there is one major problem of using access/FILTER rather than (content_filter), you can not specify "receive_override_options=no_address_mappings"[14:39:58] <Zikey> basically you can not disable address mapping for your filter (when you filter)[14:42:18] *** ribasushi has quit IRC[14:42:26] <viyyer> f3ew, hmm.. no mailer daemon nor delivery? any pointers?[14:42:54] *** ribasushi has joined #postfix[14:47:59] *** piti has joined #postfix[14:49:10] *** denis has joined #postfix[14:51:42] *** Morbus has joined #postfix[14:52:31] <Morbus> g'day. i'm behind comcast, who has recently blocked my outgoing port 25. thus, my local dev server's capability to send out php-generated emails is failing (no, they're not spam, they're development-related tests). where's the local queue? can i read the entire message from inside the queue?[14:53:36] <Dominian> man postcat[14:53:39] <Chris-NB> how can I speed up maildelivery from mailq?[14:54:05] <Dominian> stop using ClamAV and SA... that'll speed it up ;)[14:54:13] <Chris-NB> I've about 4000 Mails in the queue, the system as a load average of 0.32, 0.32, 0.33[14:54:27] <Chris-NB> but that's not the best idea ; )[14:54:54] <Chris-NB> is there something else? can I force postfix/sa/clamav to do more paralell work?[14:55:07] <Chris-NB> cause the load average isn't that high![14:55:11] <rob0> Zikey, you can, but you have to do it going in rather than coming out.[14:55:16] <Morbus> Dominian: where woudl I get the name of the file? there are no files in /var/spool/mqueue, and I passed in the queue ID (as reported from mailq) to n o avail.[14:55:32] *** sophokles has quit IRC[14:55:41] <Dominian> Morbus: postqueue -p ?[14:55:45] <rob0> (or maybe I got that reversed ... anyway, do the no_address_mappings on the other side.)[14:55:48] <xming> Morbus: mailq will show you the queue filename[14:56:01] <Morbus> my postqueue -p shows the same thing as mailq.[14:56:07] <Morbus> which just has a queue Id.[14:56:13] <rob0> Gee, I thought postcat(1) explained all how to use it.[14:56:15] <Morbus> and i used that against postcat, and it said there was no file.[14:56:44] <Dominian> postcat /path/to/QUEUE_FILE[14:57:02] <sysmonk> Dominian: or postcat -q ...?[14:57:14] <xming> Morbus: that is the filename, now you just need the right path, usually /var/spool/postfix/[active|incoming|defeerred][14:57:28] <Morbus> yeah, i just noticed it was /var/spool/postfix and not mqueue :)[14:57:32] <xming> the path is in your main.cf[14:57:44] <xming> mqueue is so sendmail-isc[14:57:49] <Morbus> heh, heh[14:58:07] <Dominian> sysmonk: that'll work too[14:58:16] <Dominian> sysmonk: I forgot about postcat -q[14:58:20] <Dominian> :*)[14:58:22] <sysmonk> :)[14:58:27] <xming> postmouse[14:58:29] <Dominian> Morbus: do what sysmonk said hehe[14:58:53] *** sophokles has joined #postfix[14:58:56] <sysmonk> i said 'shutdown -h now' ?[14:58:57] <sysmonk> ;)[15:00:12] <Morbus> thankee much :)[15:01:05] <xming> and pfqueue for the n00bs :D[15:02:13] * cpm shuts sysmonk down now[15:03:39] * sysmonk is going to shut down in 1 minute. please log off.[15:03:55] <Zikey> f3ew, I see, do you think I can add it in master.cf in the content filter line (ie: -o receive_override_options = no_address_mappings), would it work or is it too late in the postfix chain ?[15:04:17] <Zikey> (i mean the content filter IN and not the content filter OUT line)[15:04:48] <f3ew> yes[15:04:54] <f3ew> try it and see?[15:05:00] <Zikey> that's the idea :)[15:05:21] <rob0> no spaces in -o options[15:07:22] * cpm removes the -rob0 options[15:10:05] *** madrescher has joined #postfix[15:13:33] *** rootsvr has joined #postfix[15:18:42] *** hparker has joined #postfix[15:22:24] *** ziro has quit IRC[15:24:02] *** Chris-NB has quit IRC[15:26:52] *** lrp has joined #postfix[15:27:26] <lrp> hello everyone i have the tollowing trouble im my mail server , can you check at my dns config and postfix to let me know where is the trouble ?[15:28:08] <sysmonk> !ask[15:28:08] <knoba> sysmonk: "ask" : If you have a question, just ask. Precise questions lead to precise answers. Vague descriptions of your problem will get you nowhere. See also: http://workaround.org/moin/GettingHelpOnIrc[15:29:16] <lrp> [sysmonk] http://pastebin.ca/1184239[15:29:22] <lrp> there is my config[15:29:32] <lrp> [sysmonk] dns and postfix config[15:29:46] <sysmonk> woot[15:29:48] <sysmonk> Hi. This is the qmail-send program at yahoo.com.[15:29:51] <sysmonk> :))[15:30:57] <sysmonk> that's kinda garbage out there[15:31:01] <sysmonk> problem is in qmail[15:31:07] <sysmonk> it's qmail which rejects the stuff[15:31:11] <jelly> sysmonk: no, it's not[15:31:12] <f3ew> heh[15:31:25] <sysmonk> jelly: not garbage? or not qmail?[15:31:25] <jelly> RTF bounce notice[15:31:30] <xming> .cu == cuba?[15:31:39] <sysmonk> ah, yes, it's not qmail[15:31:47] <sysmonk> reject is postfix like[15:31:57] <jelly> qmail is what reports the error on the remote side, and the rejection message is rather postfixy[15:32:05] <sysmonk> yeah[15:32:11] <sysmonk> i just don't like the way he 'showed' this[15:32:21] <sysmonk> a dns zone with all teh newlines and stuff[15:32:23] <lrp> exactly[15:32:26] <sysmonk> axfr would be great[15:32:41] <sysmonk> + i don't get which server is which ;/[15:32:43] <lrp> but in the server domain.cu i dont have any accounts[15:32:47] <xming> axfr would be more readable[15:32:59] <jelly> lrp: dns doesn't enter into the picture at all, IMHO[15:33:01] <lrp> the accounts are located in my internal servers with internal subdomains[15:33:09] <xming> yahoo does sender verification?[15:33:13] <sysmonk> xming: that's what i'm talking about[15:33:38] *** bhagat has quit IRC[15:33:54] <jelly> sysmonk: why would they pretend to be qmail-send while doing that? no sense[15:34:21] <sysmonk> i don't get anything at all in that pastebin[15:34:25] <sysmonk> it's garbage like pastebin[15:34:57] <jelly> lrp: pastebin the _real_ bounce message you got, and only that.[15:35:21] <xming> including headers if you can[15:35:26] <jelly> we don't care about your IPs and domains, so there's no need to hide them[15:36:17] *** BadMemory is now known as idle-boy[15:36:26] <lrp> [jelly] did you saw the config ?[15:39:14] <jelly> lrp: please do as instructed; with the info you gave up until now, there's no reason to think this is a DNS issue[15:39:30] *** RedShift has joined #postfix[15:39:33] <RedShift> hey[15:39:36] <RedShift> I'm reading in my logs this:[15:39:57] <RedShift> NOQUEUE: reject: RCPT from unknown[194.78.210.178]: 450 4.7.1 Client host rejected: cannot find your hostname, [194.78.210.178]; from=<censored> to=<censored> proto=SMTP helo=<mail.boekan.be>[15:40:15] <Dominian> RedShift: rDNS is failing for 194.78.210.178[15:40:17] <xming> een Belg[15:40:22] <RedShift> however, when I look up 194.78.210.178 in reverse DNS I get: 178.210.78.194.in-addr.arpa name = mail.boekan.be.[15:40:45] <RedShift> so why is postfix still complaining that 194.78.210.178 has an unknown reverse?[15:40:54] <Dominian> RedShift: using the command "dig" so: dig 194.78.210.178[15:40:59] <Dominian> RedShift: returns now rDNS[15:41:17] <Dominian> hrm.. hang on[15:41:23] <xming> dig -x[15:41:24] <Dominian> ok. yeah yu're right[15:41:26] <xming> for reverse[15:41:42] <Dominian> xming: aye[15:41:42] <xming> and it's returning mail.boekan.be[15:41:45] <Dominian> yep[15:41:55] <Dominian> RedShift:Looks like maybe.... DNS caching is happening?[15:42:31] <xming> DNS on your postfix box is b0rked, caching? restart named/nscd[15:42:45] <Dominian> dnsmasq.. whatever you use to query[15:43:50] <sysmonk> people[15:43:54] <sysmonk> what is happening with you?[15:44:05] <sysmonk> can't you check where mail.boekan.be shows?[15:44:08] <RedShift> xming: not running any caching daemon[15:44:21] <Dominian> haha[15:44:25] <Dominian> sysmonk: good point[15:44:30] <xming> lol[15:45:09] <sysmonk> so, who's drunk here now?!! ah ? :)[15:45:18] <xming> dig -xstill not right[15:45:44] <sysmonk> um, woot?[15:45:51] *** Haris has joined #postfix[15:45:52] <xming> mail.boekan.be -> 81.188.4.222, 81.188.4.222->222.4.188.81.in-addr.arpa. 86400 IN PTR mail.boekan.be.[15:46:19] <sysmonk> ...[15:46:27] <sysmonk> xming: but he IS connecting from 194.78.210.178[15:46:32] <sysmonk> not 81.188.4.222[15:47:16] <Dominian> yep[15:47:25] <Dominian> 194.78.210.178 says it is mail.boekan.be[15:47:36] <Dominian> but mail.boekan.be points to 81.188.4.222[15:47:38] *** mark-use has quit IRC[15:47:59] <RedShift> so the hostname it resolves too, also must resolve back to the same IP address?[15:48:04] * sysmonk checks for some blood in his alcohol[15:48:08] <RedShift> is that good practice to check on that?[15:48:09] <sysmonk> RedShift: yes[15:48:10] <lrp> grrr[15:48:14] <lrp> im the same eeror[15:48:15] <lrp> error[15:48:29] <rob0> !address_class[15:48:29] <knoba> rob0: Error: "address_class" is not a valid command.[15:48:32] <rob0> !address_classes[15:48:32] <knoba> rob0: "address_classes" : http://www.postfix.org/ADDRESS_CLASS_README.html describes how Postfix deals with different classes of addresses: local, relay, virtual alias, virtual mailbox, and Internet.[15:48:37] <rob0> lrp: ^^[15:49:00] <lrp> [rob0] im on it pal[15:49:09] *** slurpee- has quit IRC[15:49:09] <rob0> !parent_domain_matches_subdomains[15:49:10] <knoba> rob0: "parent_domain_matches_subdomains" : a configuration parameter in the main.cf: What Postfix features use "domain.tld matches sub.domain.tld" style pattern matching instead of ".domain.tld matches any subdomain". This is planned backwards compatibility: eventually, all Postfix features are expected to require explicit ".domain.tld" style patterns when you really want to match subdomains.[15:49:25] <Haris> !smtpd_recipient_restrictions[15:49:25] <knoba> Haris: "smtpd_recipient_restrictions" : A configuration parameter in the main.cf: The access restrictions that the Postfix smtpd(8) applies in the context of the SMTP RCPT TO command. See access(5) for an overview of access restriction features. These restrictions control relaying to external domains. Default is to relay only for client IP addresses in $mynetworks; see also !sasl if SMTP AUTH is needed.[15:49:34] <rob0> (I recommend unsetting that, "parent_domain_matches_subdomains =".)[15:49:50] <RedShift> sysmonk: is it good practice to check on that?[15:50:04] <lrp> [rob0] ther is one detail from yahoo .es and other domains the server dreject mail , howeebvr from hotmail.com gmail.com yahoo.com he just delivery mail successfully[15:50:14] <RedShift> I mean, does some RFC say that foo must resolve to y, and y must resolve back to foo?[15:50:29] <Haris> I have a list of email accounts in mysql db, that I receive mail for. How can I allow them to send mail?[15:50:35] <Haris> without smtp auth[15:50:37] *** car_watt has joined #postfix[15:52:05] <lrp> [rob0] http://pastebin.ca/1184252[15:53:22] *** seekwill has joined #postfix[15:53:34] <Haris> !permit_auth_destination[15:53:35] <knoba> Haris: Error: "permit_auth_destination" is not a valid command.[15:53:43] <Haris> permit_auth_destination is not a valid command?[15:53:45] <Haris> o_O[15:53:54] <lrp> [Haris] did you saw the pasted postfix config?[15:54:01] *** Zikey has left #postfix[15:54:07] <lrp> [knoba] check the pasted pal[15:54:12] <lrp> [knoba] http://pastebin.ca/1184252[15:54:41] <vice-versa> !knoba[15:54:42] <knoba> vice-versa: "knoba" : an informational bot in this channel (see http://workaround.org/f=postfix)[15:55:22] <Haris> does permit_auth_destination need relay_domains to be set to the domains postfix is primary MX for?[15:56:32] <lrp> [Haris] postfix yes is primary mx[15:56:48] <lrp> [Haris] is there something that i have to add or remove in my postfix config?[15:56:55] <jelly> mail.boekan.be has address 81.188.4.222[15:56:57] <rob0> lrp, don't waste my time. READ the documentation I suggested before you flag me on anything.[15:57:09] <rob0> You're obviously spending your time asking, not reading.[15:57:20] <jelly> aiee, someone scrolled my #postfix window way up[15:57:38] <Haris> lrp: I'm talking about my issue and you are talking about yours. These are 2 different things[15:57:57] <lrp> [rob0] the trouble is that i have a hole netowkr stuck and i dont have too much time now my friend , i really sorry if my questions make you get mad , i apologices for that[15:58:07] <seekwill> rob0: Yeah, but you're more fun to talk to than the docs[15:58:42] <seekwill> lrp: You know, if you read the docuementation, you learn a lot more and can actually fix the problem quicker[15:59:44] <lrp> [seekwill] im on it but i dont have too much time , if only you can tell me in the config what line i have to add the trouble would be solve and solved the toruble i read more carefully the doc to avoid the misstake in the next server[16:00:33] <seekwill> You're spending an awful amount of time asking here... I don't really know what situation you're in. I just joined the channel.[16:00:54] <xming> knoba: how do you like humans talking to you?[16:01:03] * xming kicks knoba[16:01:10] <seekwill> knoba: How come you didn't call me?[16:01:25] <lrp> [seekwill] http://pastebin.ca/1184252[16:01:36] <xming> knoba: you don't feel pain, obviously you are not human[16:01:37] <seekwill> lrp: What documentation did rob0 give you before?[16:01:43] <lrp> [seekwill] the mail server is rejecting mail from yahoo.es and other domains from internet[16:01:58] <seekwill> lrp: What documentation did rob0 give you before?[16:02:03] <lrp> [seekwill] http://pastebin.ca/1184239[16:02:13] <seekwill> lrp: What documentation did rob0 give you before?[16:02:19] <lrp> [seekwill] there is one mail and bind config also postfix config[16:02:25] <seekwill> I give up[16:02:29] <xming> seekwill is becoming like a repeating bot[16:02:35] <seekwill> Sorry...[16:02:39] <xming> :D[16:02:45] <jelly> this is so going on a bash.org of some sort[16:02:52] <Dominian> lrp: sweet.nodns4.us[16:03:00] <Dominian> actually:[16:03:02] <Dominian> !sweet[16:03:02] <knoba> Dominian: "sweet" : http://sweet.nodns4.us/[16:03:30] <seekwill> heh[16:03:41] <jduggan> lol[16:03:51] <lrp> ok thanks for you rtime[16:03:58] <xming> nice, I mean sweeeeeet[16:04:03] *** lrp has quit IRC[16:04:15] <seekwill> hah[16:04:23] <jelly> sweet.[16:04:51] * jelly steals it for #distro channel bot[16:05:11] <xming> I am having more fun here (in 3 days) than I have ever had in my whole punny life on irc[16:06:06] * seekwill has been on IRC for too long[16:07:19] <Dominian> woot[16:07:20] *** Morbus has left #postfix[16:07:25] <Dominian> I got rid of lrp by referencing sweet?[16:07:28] * Dominian dances[16:07:32] <hparker> :-o[16:07:38] <hparker> meanie![16:07:43] <Dominian> heh[16:07:46] <Dominian> its all rob0's fault[16:07:51] *** madrescher has quit IRC[16:08:05] <shasta> hm[16:08:13] * xming has been on irc since '93[16:08:41] <shasta> lrp's url lines were strange[16:09:01] <shasta> 00000020 52 49 56 4d 53 47 20 23 70 6f 73 74 66 69 78 20 |RIVMSG #postfix |[16:09:01] <shasta> 00000030 3a 5b 0f 73 65 65 6b 77 69 6c 6c 0f 5d 0f 20 68 |:[.seekwill.]. h|[16:09:08] <shasta> 00000020 52 49 56 4d 53 47 20 23 70 6f 73 74 66 69 78 20 |RIVMSG #postfix |[16:09:08] <shasta> 00000030 3a 5b 0f 73 65 65 6b 77 69 6c 6c 0f 5d 0f 20 68 |:[.seekwill.]. h|[16:09:19] <xming> Dominian: internet in .cu is so damn expensive so he decided to read the docs instead of waisting his expensives bytes with us[16:09:25] <shasta> 00000040 74 74 70 3a 2f 2f 70 61 73 74 65 62 69 6e 2e 63 |ttp://pastebin.c|[16:09:25] <shasta> 00000050 61 2f 31 31 38 34 32 33 39 0f 0a |a/1184239..|[16:09:27] <hparker> too early for that shasta![16:09:31] <xming> flood alert[16:09:37] <shasta> wtf is 0x0f there?[16:09:49] <seekwill> You IRC in hex?[16:09:59] <shasta> i know hex-fu, yes[16:10:42] <jelly> shasta: some bold or similar attribute for irc?[16:10:47] <shasta> 0x07 is "shift in", what the heck it's doing here?[16:11:29] <jelly> xchat says it's underline[16:11:39] <shasta> hm[16:11:41] <seekwill> Yeah, I noticed when he said my name, he changed the color of the text, desite xchat suppsedly trying to highlight it[16:11:42] <shasta> let's see[16:11:53] <shasta> underline[16:11:54] <seekwill> I think it's black text[16:11:59] <shasta> do you see underline?[16:12:32] <xming> nope[16:12:38] <seekwill> I saw (in red) <lrp> [(black)seekwill].....[16:12:56] <seekwill> The whole line should have been red since he said my name[16:13:33] <shasta> irssi sends 0x1f as underline marker[16:13:45] <shasta> this channel is +c so maybe it's stripped somehow?[16:15:06] <shasta> (oh, and i meant 0x0f is shift in, of course)[16:15:27] <xming> IIRC +c does idd strip[16:15:44] *** manofwar has joined #postfix[16:15:59] <shasta> +c (color filter) This cmode activates the colour filter for the channel. This filters out bold, underline, reverse video, beeps, mIRC colour codes, and ANSI escapes. Note that escape sequences will usually leave cruft sent to the channel, just without the escape characters themselves.[16:16:12] <rob0> Haha, Dominian, !sweet job there[16:16:16] <shasta> yet it didn't filter his 0x0f[16:18:15] <rob0> 200.14.48.40 - - [25/Aug/2008:14:03:26 +0000] "GET / HTTP/1.1" 200 1902 "-" "Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.8.1.12) Gecko/20080129 Iceweasel/2.0.0.12 (Debian-2.0.0.12-0etch1)"[16:18:56] *** Zikey has joined #postfix[16:18:59] <rob0> 81.169.170.201 - - [25/Aug/2008:14:03:13 +0000] "HEAD / HTTP/1.1" 200 - "-" "IrssiUrlLog/0.2"[16:19:09] <rob0> someone's logging here[16:19:38] <rob0> Oh I'm a lumberjack and I'm okay, I sleep all night and I type all day[16:20:03] <f3ew> heh[16:20:08] * sysmonk wants to use some url loging plugin too[16:20:15] *** sophokles has quit IRC[16:21:11] * seekwill starts pasting his favorite porn sites[16:21:54] <shasta> bah, I'm even providing an RSS feed with URL-s from here (:[16:22:20] <shasta> unless lrp comes back and crashes my script again with his \x{f}[16:22:33] <seekwill> ah, that's why you were so interested[16:22:38] <xming> oh he crashed your script[16:22:44] *** Haris has quit IRC[16:22:45] <shasta> indeed[16:23:16] <Dominian> rob0: :)[16:23:22] <Zikey> f3ew, do you use SPF ? did you choose the python or perl policyd ?[16:23:31] <f3ew> no, perl[16:23:32] <Dominian> perl[16:23:42] <shasta> well, something went wrong in XML::RSS, to be precise[16:23:46] <sysmonk> shasta: irssi ?[16:23:51] <shasta> yes[16:23:56] <sysmonk> shasta: wanna share the script?[16:23:59] <xming> I use the python one here[16:24:00] *** lambda has quit IRC[16:24:12] <xming> shasta: where is the feed?[16:24:37] *** sophokles has joined #postfix[16:24:47] <shasta> sysmonk, http://scripts.irssi.org/ -> urlfeed[16:24:52] <sysmonk> ah[16:25:13] <sysmonk> that's the one i was looking at yesterday ;)[16:25:16] <shasta> xming, unless somebody crashes my script again, it's http://toxcorp.com/rss/freenode/postfix.rdf[16:25:47] *** madrescher has joined #postfix[16:25:56] <xming> shasta: nice :D[16:26:08] *** sophokles has quit IRC[16:26:12] <seekwill> Hmm...[16:26:39] *** sophokles has joined #postfix[16:26:49] <seekwill> So if those spammers come in, pasting that url ending with ?id=1234, it'll get hit huh?[16:28:22] <shasta> it gets everything what matches that regexp there[16:28:32] <xming> maybe I should go and upgrade my kvm[16:28:58] <shasta> seekwill, it doesn't *fetch* anything, if you're asking that[16:29:16] <seekwill> shasta: Ah[16:29:54] <xming> http://playboy.com/[16:30:34] <xming> now you are a referrer of playboy :D[16:30:53] <seekwill> This surely can be abused :)[16:31:12] <jelly> seekwill: implement URIBL! :->[16:31:22] <shasta> xming, I don't care (-:[16:31:39] *** Zeit|awy has joined #postfix[16:31:45] <xming> shasta: maybe you should ask for referring commission :D[16:32:02] <seekwill> jelly: Good question. Does SpamAssassin check for URLs in the body against a BL?[16:32:34] <jelly> it can, there are a few well known URI blacklists[16:33:03] <RedShift> surbl is a very good one[16:33:16] <RedShift> (we have an authorative mirror running here)[16:33:52] <seekwill> Seems like that would be a good way to block the same message being spammed by multiple locations[16:34:21] <jelly> if the submitters are quick enough to add the url to the blacklist, yes[16:34:26] <xming> some spam use images :([16:34:49] <jelly> xming: some filters use character recognition and image checksumming[16:35:22] <xming> even more CPU intensive[16:35:55] * jelly shrugs and adds one more server into the filter farm[16:36:22] <xming> I guess it's inevitable[16:37:06] <seekwill> Is there a way to block image-only messages?[16:37:24] *** lambda has joined #postfix[16:37:56] <xming> http://www.snertsoft.com/sendmail/milter-link/ -> fro surbl[16:38:56] <jelly> * 3.4 URIBL_JP_SURBL Contains an URL listed in the JP SURBL blocklist[16:38:56] <jelly> * 3.3 URIBL_AB_SURBL Contains an URL listed in the AB SURBL blocklist[16:39:08] *** Haris1 has joined #postfix[16:41:35] <jelly> xming: bring me your commercial milter thingy![16:42:05] <Haris1> Hello people[16:42:19] <Haris1> I have this in my main.cf -> smtpd_recipient_restrictions = permit_mynetworks, check_recipient_access mysql:/etc/postfix/mysql_check_sender_access.cf, reject_unauth_destination, permit[16:42:33] <Haris1> the check_recipient_access returns OK for all locally hosted email accounts[16:42:44] <Haris1> Does that mean, this postfix box will send email from all locally hosted accounts?[16:44:50] *** Pupeno has joined #postfix[16:45:12] <Pupeno> How do you do imap/server-side filtering when using postfix?[16:45:17] *** hwdyki has left #postfix[16:45:45] <vice-versa> !pop[16:45:46] <knoba> vice-versa: "pop" : postfix is not an imap or pop server[16:46:00] <xming> jelly: hehe, I just saw "Free Source Downloads" havne't read the license[16:46:15] <vice-versa> Haris1: that's a really really really bad idea[16:46:33] <xming> !vice-versa[16:46:33] <knoba> xming: "vice-versa" : adv : with the order reversed; on the contrary; on opposite sides. eg: 'rob0 loathes cpm and vice-versa'[16:48:04] *** Aron is now known as aron[16:54:22] *** aron is now known as Aron[17:00:19] <Haris1> vice-versa: Explain, please?[17:00:34] <Haris1> You think this box will be exploited in the name of email accounts hosted locally?[17:00:34] <magyar_> hi, why am I getting these emails from the backup MX? >> http://pastebin.ca/1184302[17:02:06] <Haris1> well;[17:02:07] <Haris1> rcpt to: hariskhan at gmail dot com[17:02:08] <Haris1> 454 4.7.1 <hariskhan at gmail dot com>: Relay access denied[17:02:15] <Haris1> its still saying relay access denied[17:02:28] <rob0> !relay_denied[17:02:28] <knoba> rob0: "relay_denied" : \"554 5.7.1 <RECIPIENT@RCPT_DOMAIN>: Relay access denied; from=<SENDER_ADDRESS> to=<RECIPIENT@RCPT_DOMAIN> proto=ESMTP helo=<HELO>\": This typically means that CLIENT_IP is not in mynetworks (and did not AUTH), and that RCPT_DOMAIN was not recognized as one of this Postfix's domains (not listed in mydestination, relay_domains or virtual_*_domains).[17:03:03] <Haris1> ah yes, relay_domains[17:03:04] <Haris1> forgot that[17:03:44] *** kjkoster5489 has quit IRC[17:04:14] <Haris1> what was that egrep command to view all postfix error messages, rather than the usual log[17:04:18] <rob0> magyar_, why are you wasting our time with a paste like that? If you don't know by now how and when to read your LOGS, you are beyond help.[17:05:08] <seekwill> rob0: Oh, but I love reading SMTP[17:08:06] <Haris1> still! it says relay denied[17:08:07] <Haris1> I have relay_domains = mysql:/etc/postfix/mysql_relay_domains_from_maps.cf[17:08:07] <magyar_> NOQUEUE: reject: RCPT from ebsmtp3.capris.net[204.10.242.82]: 451 4.3.5 Server configuration error; << that is my log entry[17:08:25] <Haris1> this file says; select_field = transport[17:08:25] <Haris1> where_field = domain[17:08:41] <Haris1> the field transport contains relay in all cases[17:08:50] <Haris1> why is it not allowing that domain to relay?[17:08:56] <magyar_> my server configuration error? and why do I receive these errors to "postmaster"?[17:09:26] <Haris1> :o[17:09:29] <Haris1> the RCPT domain[17:09:31] <Haris1> got it[17:09:44] <Haris1> !RCPT_DOMAIN[17:09:44] <knoba> Haris1: Error: "RCPT_DOMAIN" is not a valid command.[17:09:46] <Haris1> hmm[17:12:22] *** pitakill has joined #postfix[17:12:27] <Haris1> shEEP, still relay access denied[17:12:42] <Haris1> maybe I'm trying too hard[17:13:22] *** j_s has joined #postfix[17:14:39] <Haris1> !smtpd_recipient_restrictions[17:14:40] <knoba> Haris1: "smtpd_recipient_restrictions" : A configuration parameter in the main.cf: The access restrictions that the Postfix smtpd(8) applies in the context of the SMTP RCPT TO command. See access(5) for an overview of access restriction features. These restrictions control relaying to external domains. Default is to relay only for client IP addresses in $mynetworks; see also !sasl if SMTP AUTH is needed.[17:15:13] <Haris1> Why do we have a if in the above? before SMTP AUTH?[17:15:19] <Haris1> an if+[17:15:38] *** madrescher has quit IRC[17:17:11] *** Draecos_ has joined #postfix[17:18:03] *** pUmkInhEd has left #postfix[17:19:04] <Haris1> I don't have smtp auth on this box, and I need to allow relaying[17:20:08] *** Slashman has quit IRC[17:20:42] *** Slashman has joined #postfix[17:22:40] <vice-versa> Haris1: you need to implement sasl auth if you require roaming user relay access from untrusted networks[17:22:43] <rob0> How do you propose to secure it against abuse if you don't use AUTH?[17:23:27] <rob0> It can be done, but you will need a plan, not something idiotic like check_sender_access or check_helo_access.[17:24:47] <Haris1> rob0: yes, I know[17:24:47] <jelly> in my time, we had pop-before-smtp and we liked it[17:24:47] <Haris1> this is a fc6 box[17:24:54] <Haris1> I don't think it can have sasl auth[17:24:55] *** lrp has joined #postfix[17:25:05] <lrp> im back[17:25:07] <f3ew> It can[17:25:10] <jelly> Haris1: why couldn't it?[17:25:20] <lrp> i had solved the trouble[17:25:22] * vice-versa confiscates Haris1's crack pipe[17:25:36] <lrp> but i have the same woth some other subdomains receibing mail from yahoo.es and other domains[17:25:47] <Haris1> do we need something in postconf -m's output to have sasl auth?[17:25:53] <Haris1> ah, sorry[17:26:03] <Haris1> the main reason is, that passwords are not md5[17:26:12] <Haris1> they are broken into 2 parts. password + salt[17:26:18] <lrp> i ll explain , take a look to my config , is there anything wrong http://pastebin.ca/1184316 ?[17:27:11] *** Aron is now known as aron[17:27:55] <sysmonk> lrp: have you tried to read the topic atlesat?[17:28:12] *** viyyer has quit IRC[17:29:03] *** phoenix7863 has joined #postfix[17:29:22] <jelly> Haris1: couldn't you, dunno, generate a decent looking passwd file out of that, use saslauthd and a pam module that can read your password file?[17:29:27] <lrp> sysmonk: aha[17:29:36] <sysmonk> i don't think so[17:30:28] *** Tykling has joined #postfix[17:31:11] <Haris1> I'm thinking[17:31:26] *** Draecos has quit IRC[17:32:54] <lrp> :(( i dont know how to solve that trouble grrrrrrrrrrrrr i can receibe mail from one and from onther nop[17:33:27] <sysmonk> !hare_krishna[17:33:28] <knoba> sysmonk: "hare_krishna" : Rumor has it that Hare Krishna means hire a consultant in Hindi.[17:33:30] <sysmonk> lrp: ^^[17:33:38] <seekwill> lrp came back?[17:33:50] <Haris1> sysmonk: LOL![17:33:55] <lrp> sysmonk: http://pastebin.ca/1184316[17:33:57] * Haris1 rofl[17:36:02] <sysmonk> hare krishna again to lrp[17:36:07] <sysmonk> lrp: you can't even READ A TOPIC[17:36:43] <lrp> sysmonk: why did you say that ?[17:36:55] <sysmonk> maybe because you can't ?[17:36:59] <sysmonk> have you read it?[17:37:14] <lrp> yes postxoncf .-n relevant logs pastebin etc etc[17:37:23] <sysmonk> does your pastebin have a postconf -n output?[17:38:06] <lrp> ok[17:38:31] <seekwill> wtf... so Netzero encrypts their 5xx notices?[17:38:51] * sysmonk doesn't even know what's netzero :P[17:39:04] <seekwill> An ISP[17:39:13] <sysmonk> how does it 'encrypt' them ?[17:39:48] <lrp> sysmonk: http://pastebin.ca/1184351 there is your postconf -n[17:40:13] <sysmonk> nice... it also has log entries showing the problem? POSTFIX log entries?[17:40:23] <sysmonk> or wasn't that in the topic too?[17:40:59] <lrp> sysmonk: the postfix apparently have no errors in the config[17:41:23] <sysmonk> lrp: LOG entries[17:41:24] <lrp> sysmonk: but he is not receibing mail from yahoo.es and other domains[17:41:34] <lrp> sysmonk: mail.inf=?[17:41:37] <sysmonk> show the log entries in postfix which show that it rejects mail[17:41:53] <sysmonk> mail.*[17:45:45] <lrp> sysmonk: http://pastebin.ca/1184356 ther is the log from yahoo[17:46:26] <lrp> sysmonk: from yahoo he ask for edel at domain dot cu instead edel at inica dot domain.cu i dont understand why[17:49:17] <lrp> sysmonk: did you sawe it ?[17:49:33] <lrp> mean saw[17:50:01] <sysmonk> is domain.cu in your mydestination ?[17:50:55] <lrp> my hole domain is mydomain.cu my destination are the internal smtp servers[17:51:06] <lrp> witchs are with subdomains.domain.cu[17:51:17] <sysmonk> i'm reasking, is domain.cu in your mydestination ?[17:51:27] <lrp> sysmonk: wait a sec[17:52:54] <lrp> sysmonk: yes[17:53:07] <sysmonk> lrp: is there a user called 'edel' on your system?[17:53:11] <sysmonk> on the postfix server[17:53:23] <lrp> sysmonk: in the root postfix server no[17:53:39] <lrp> sysmonk: and in domain.cu no but in inica.domain.cu yes[17:53:47] <sysmonk> then what's the problem?[17:54:00] <lrp> sysmonk: domain.cu--------smtp1------inica.domain.cu[17:54:04] <sysmonk> it sends to domain.cu which postfix is responsible for[17:54:09] <sysmonk> and postfix doesn't have that user[17:54:10] <sysmonk> so it rejects[17:54:38] <lrp> sysmonk: the problem is yahoo.es thinks that edel at inica dot domain.cu is = edel at domain dot cu[17:55:09] <lrp> because domain.cu receibed all the email from internet to delivery to the internal subdomains[17:55:12] <lrp> via smtp[17:55:37] <sysmonk> did you send mail to domain.cu from yahoo?[17:55:39] <jelly> lrp: the problem is that your postfix server doesn't know that it should send the mail for "inica.domain.cu" to inica.domain.cu[17:55:40] <sysmonk> or to inica.domain.cu ?[17:55:56] <sysmonk> jelly: inica.domain.cu isn't even in the logs[17:56:05] <lrp> exactly[17:56:09] <jelly> wow, we have logs now?[17:56:14] <lrp> however[17:56:21] <sysmonk> jelly: yeah, after a bit of bitching he even pastebined postconf -n and some logs[17:56:24] <lrp> from yahoo.com i sent a mail[17:56:25] <sysmonk> postfix logs, even[17:56:35] <sysmonk> lrp: did you send it to @domain.cu or @inica.domain.cu[17:56:38] <lrp> and he receibed mail syuccesfully[17:56:57] <lrp> sysmonk: check this pther log from google sending mail to the same subdomain[17:57:13] <sysmonk> is there one? :)[17:57:24] <sysmonk> i didn't see it in the pastebin[17:58:33] <jelly> good thing he takes the time to hide the domain, else we could figure out it's "minaz.cu"[17:58:53] <sysmonk> or sldh.cu[17:59:09] <jelly> a mystery![17:59:20] <sysmonk> although it must be minaz.cu[17:59:49] <vice-versa> !mung[17:59:49] <knoba> vice-versa: "mung" : Mash Until No Good : the art of obfuscating data which ultimately results in unintentional consequences such as making diagnostics impossible.[18:00:43] <lrp> sysmonk: exactly[18:02:16] <magyar_> hmm, ok I have a virtual mydomain.com that has a mysql userbase. Than there is a mydomain.com unix /etc/aliases hash table. also I have "local_recipient_maps = $virtual_mailbox_maps $alias_maps proxy:unix:passwd.byname" in my main.cf. When I send an email to postmaster at mydomain dot com I get "Recipient rejected, user unknown in virtual tables"[18:02:19] <magyar_> wtf?[18:02:34] <sysmonk> lrp: exactly what?[18:02:55] <roe_> isn't that a shell silverstein poem?[18:03:32] <lrp> sysmonk: http://pastebin.ca/1184375[18:03:33] <sysmonk> magyar_: local_recipient_maps are used although the domain is virtual[18:03:41] <lrp> there is the config and the log[18:03:43] <sysmonk> magyar_: use virtual_alias_maps for virtual domains[18:04:28] <lrp> sysmonk: dont know what is the trouble receibing mail from one domains or other to that subdomain[18:06:12] <sysmonk> lrp: are you 'dani' ?[18:06:33] <lrp> sysmonk: dani=??[18:06:36] <jelly> no, his initials are, indeed, lrp :-)[18:06:44] <sysmonk> i should reask[18:06:51] <sysmonk> is there a system user called 'dani' on the postfix server?[18:07:13] <lrp> sysmonk: nope that user are in the internal servers[18:07:19] <jelly> nb, @minaz.cu is systematically getting refused, while @inica.minaz.cu gets accepted[18:07:25] <lrp> sysmonk: that server are only for relay[18:07:29] <sysmonk> lrp: grep A751223CF9 in the log and pastebin[18:07:43] <kreg_work> what are the assumed mailbox addresses? support, abuse, info.... ?[18:07:44] *** tundra has quit IRC[18:07:48] <kreg_work> what ones am I suppose to have in place based on whatever rfc's[18:07:54] <sysmonk> !rfc[18:07:54] <knoba> sysmonk: Error: "rfc" is not a valid command.[18:08:00] <sysmonk> kreg_work: or check out rfc-ignorrant.org[18:08:24] <jelly> sysmonk: you seem to be speling-ignorant![18:08:37] <magyar_> sysmonk, so I should have "local_recipient_maps = proxy:unix:passwd.byname $alias_maps" and "virtual_alias_maps = proxy:mysql:/etc/postfix/mysql_virtual_alias_maps.cf" ?[18:08:38] <sysmonk> jelly: yeah i am[18:08:48] <lrp> sysmonk: can you get it what is the trouble ? for example you send a mail to that address and he accepted but i dont know why yahoo.es sayd that the subdomain is redirected to minaz.cu grrrr[18:09:00] <lrp> sysmonk: its dryving me crazy :(([18:09:05] <sysmonk> magyar_: yes,[18:09:18] <kreg_work> rfc-ignorrant.org appears to be dead. typo?[18:09:22] <magyar_> sysmonk, still nada, just tried it[18:09:23] <sysmonk> kreg_work: typo[18:09:30] <sysmonk> kreg_work: see jelly comment :)[18:09:34] <kreg_work> ahh[18:09:39] <sysmonk> magyar_: restarted postfix?[18:09:52] <magyar_> <postmaster at mydomain dot com>: Recipient address rejected: User unknown in virtual mailbox table[18:09:56] <sysmonk> lrp: !hare_krishna is the best solution ;)[18:09:57] <magyar_> yeap[18:10:10] <sysmonk> magyar_: and is it in the virtual_alias_maps ?[18:10:15] <sysmonk> !postmapq[18:10:15] <knoba> sysmonk: "postmapq" : You can check your lookups with the postmap command. Example: if you defined "transport_maps = mysql:/etc/postfix/transport.cf" you may check this mapping by running "postmap -q domain.com mysql:/etc/postfix/transport.cf" and see if it works.[18:10:17] <sysmonk> magyar_: ^^[18:10:18] *** sophokles has quit IRC[18:10:37] <sysmonk> magyar_: lookup postmaster at mydomain dot com in your /etc/postfix/mysql_vritual_alias_maps.cf[18:10:44] <kreg_work> sysmonk: i'm not sure what you are suggesting i lookup here[18:10:56] <sysmonk> kreg_work: ignoRant.org[18:10:56] <lrp> sysmonk: i beg you apart ?????? what do you mean ?[18:11:09] <kreg_work> sysmonk: i've browsed some rfc's for my answer, but seems it's in debate. how is rfc-ignorant.org different?[18:11:23] <magyar_> sysmonk, it doesn't exists, it only exists in /etc/aliases[18:11:31] <sysmonk> kreg_work: it should have all list of 'required' emails[18:11:42] <sysmonk> magyar_: so, add it in virtual_alias_maps[18:11:53] <sysmonk> magyar_: /etc/aliases is for LOCAL delivery, not for virtual[18:12:03] <sysmonk> lrp: did you pastebin the grep output i asked ?[18:12:26] <sysmonk> lrp: if not, don't cry. if you already have a headache with this problem - maybe hiring someone would be a better and FASTER idea[18:12:36] *** mofino has joined #postfix[18:13:08] <magyar_> sysmonk, is there a way to have virtual and nonvirtual users, so first we check if the users is a unix user and than see if he is virtual?[18:13:29] <sysmonk> oh my[18:13:38] <lrp> sysmonk: wait[18:13:43] *** Zikey has quit IRC[18:14:08] <magyar_> for example I have a real unix account for mydomain.com, but the clients have a virtual acccount[18:14:43] <sysmonk> magyar_: you can forward some users to local domain[18:15:09] <lrp> sysmonk: No such file or directory[18:15:18] <sysmonk> magyar_: i.e. your servers fqdn is server.mydomain.com, then you could add a alias which will send your magyar at mydomain dot com to magyar at server dot mydomain.com[18:15:39] <sysmonk> it would be delivered locally ( if you didn't take out $myhostname from $mydestinations )[18:15:45] <magyar_> sysmonk, thats the only way than[18:15:46] <mofino> Is it possible to extract a queued message without the postfix header info?[18:15:48] <kreg_work> sysmonk: interesting site. seems to be a group that did the homework i was trying. there apparently is not single list for the answer. the answer is based on some gathered suggestions from multiple rfc's. no standard list.[18:15:59] <sysmonk> lrp: i've told you what to grep and from what kind of logs, i didn't specifically tell the filename.[18:16:11] <lrp> sysmonk: aahh[18:16:12] <sysmonk> lrp: because it differs between the distributions[18:16:26] <sysmonk> mofino: postcat -q ?[18:16:58] <mofino> sysmonk, without the postfix stuff[18:17:01] <mofino> JUST the message[18:18:02] <f3ew> mofino from the queue?[18:18:03] <f3ew> no[18:18:06] <mofino> sigh[18:18:12] <mofino> why is postfix an administrative nightmare?[18:18:13] <sysmonk> mofino: not that i know of, but i think you can easily parse the stuff - that is, cut everything out untill MESSAGE CONTENTS line[18:18:13] <f3ew> you will need to parse it a bit[18:18:21] <f3ew> mofino, it really isn't[18:18:25] <sysmonk> mofino: it's not[18:18:27] <mofino> comparatively it is[18:18:33] <sysmonk> with what?[18:18:33] <f3ew> you know qmail better[18:18:34] * cpm wasn't aware that postfix was an administrative nightmare.[18:18:40] <lrp> sysmonk: okay http://pastebin.ca/1184397[18:18:43] <sysmonk> cpm: now we all know it...[18:18:56] <cpm> errr, , , okay.[18:19:03] <mofino> and qmail is MUCH easier to admin[18:19:04] <lrp> sysmonk: he is working but from yahoo.es he does not :([18:19:10] <mofino> this is speaking from experience[18:19:17] <cpm> mofino, so use it.[18:19:23] <mofino> but qmail is also very limited functionality wise[18:19:32] <f3ew> mofino, you don't have nough Postfix experience[18:19:35] <mofino> just when it comes to handling queueing issues, postfix is tricky[18:19:45] <f3ew> Just ... different[18:19:47] <lrp> sysmonk: thyere is the pasted http://pastebin.ca/1184398[18:19:51] <mofino> f3ew, huh? how does that change what is required for handling a queue?[18:19:59] <f3ew> *** MESSAGE CONTENTS <=== the raw message contents is available AFTER this line[18:20:00] <mofino> different being MORE DIFFICULT[18:20:05] <f3ew> no[18:20:07] <mofino> you don't think I realize this?[18:20:12] <mofino> it is MORE DIFFICULT[18:20:14] <f3ew> MTA queues are internals[18:20:18] <f3ew> NO[18:20:20] <mofino> haha[18:20:24] <mofino> how can you possibly say no[18:20:27] * f3ew smacks mofino WITH A djbISM[18:20:29] <mofino> it's a FACT, qmail is EASIER[18:20:35] <cpm> then use it.[18:20:36] <lrp> heheeh[18:20:39] <jelly> mofino: what common tasks are more difficult for you?[18:20:43] <mofino> cpm, already stated my reasons[18:20:45] <f3ew> Only if you know it after having learnt all it's quirks[18:20:50] <lrp> yahoo.es qmail is alittle bit crazy[18:20:53] <mofino> holy mother of living hell, i just described this[18:21:01] <lrp> sysmonk: did you saw the last pasted ?[18:21:10] <f3ew> mofino, why do you need that data?[18:21:11] <mofino> jelly, scroll up[18:21:16] <f3ew> What are you trying to do?[18:21:19] <mofino> f3ew, postfix misfired[18:21:26] <f3ew> Hmmm?[18:21:27] <mofino> i need to redeliver these messages manually[18:21:37] <mofino> through another MTA[18:21:48] <mofino> postfix obfuscates the messages for some unknown reason[18:22:08] <mofino> no clue why it hashes the message[18:22:08] <jelly> not that I care, mind; I have a lot of qmails and a few postfixen, and I had to download third-party scripts to be able to search+delete stuff from qmail[18:22:18] <jelly> from its queue, that is[18:22:21] <mofino> jelly, it's plain text, i use the shell[18:22:40] *** phnord has quit IRC[18:22:47] <jelly> mofino: you also need to down it first[18:22:55] <mofino> that's debatable[18:22:59] <mofino> i don't[18:23:16] <f3ew> mofino one suggestion: setup a custom transport for the relevant mails[18:23:24] <mofino> no[18:23:29] <f3ew> then requeue the messages with postsuper -r[18:23:39] <mofino> i'll just parse this and inject the messages[18:23:43] <sysmonk> ...[18:23:46] <mofino> into ANOTHER MTA[18:23:46] <sysmonk> the qmail style![18:23:47] <sysmonk> ;))[18:23:48] <mofino> not postfix[18:23:55] <mofino> my god, nobody reads[18:23:56] <f3ew> bleh[18:24:00] <f3ew> I did[18:24:01] <sysmonk> mofino: you don't read[18:24:06] <f3ew> I offered you a solution[18:24:10] <cpm> no kidding[18:24:14] <mofino> a solution to inject mail into postfix[18:24:16] <sysmonk> f3ew: offers you to 'reinject' the messages to another server using postfix[18:24:20] <mofino> which is NOT WHAT I'M DOING[18:24:22] <sysmonk> damn[18:24:31] <mofino> you assume you know what i'm doing[18:24:50] <sysmonk> mofino: no, to resend the mails from postfix to your other server[18:24:53] <f3ew> mofino, I offered you a way to get mail out of Postfix[18:24:58] * hparker feels the luv[18:24:59] <mofino> sysmonk, assumptions...[18:25:01] <f3ew> without parsing[18:25:02] *** Draecos__ has joined #postfix[18:25:02] <sysmonk> ...[18:25:14] <mofino> f3ew, and it won't work in this situation[18:25:19] * cpm hands hparker some popcorn[18:25:19] <f3ew> mofino, why not?[18:25:23] <mofino> anyway, i asked my question and received my answer[18:25:27] <hparker> cpm: thanks![18:25:30] * sysmonk steals some popcorn from cpm[18:25:35] <mofino> f3ew, because that's not going to do what i need?[18:25:45] * cpm apologizes to sysmonk and passes him the popcorn.[18:25:47] <f3ew> what do you need?[18:25:51] <lrp> sysmonk: hello i was out by a minute , i ask you again , dod you saw the pasted message pal ?[18:25:54] <mofino> to extract the messages from the queue![18:26:02] <jelly> f3ew: what, Lassie? The mails are stuck and your custom transport can't deliver them to a .mbox?[18:26:10] <lrp> i mean did[18:26:11] <f3ew> jelly mofino's[18:26:15] <f3ew> http://dvb.homelinux.org/~devdas/photos/2008/kalsubai/ @ cpbills[18:26:18] <f3ew> err cpm[18:26:19] * rob0 wants a PONY![18:26:25] <cpm> no pony[18:26:28] <f3ew> mofino, XY problem[18:26:33] <sysmonk> lrp: too much stuff going around here :) going to read it[18:26:48] <f3ew> what is the business need?[18:26:49] <mofino> postcat is fine, just a bit trickier to work with[18:26:56] <lrp> sysmonk: http://pastebin.ca/1184398[18:26:57] <jelly> rob0: http://sc.tri-bit.com/images/2/23/pony.jpg[18:27:07] <mofino> haha[18:27:12] <mofino> "Not Yours"[18:27:25] <f3ew> anyway, I'm going home[18:27:29] <mofino> f3ew, k late[18:27:30] <cpm> go home![18:33:23] *** Draecos_ has quit IRC[18:33:25] <sysmonk> lrp: take out minaz.cu out of mydestination, and then try again[18:34:16] <lrp> sysmonk: i let only localhost no =?[18:34:42] *** gonewestcoast has joined #postfix[18:34:43] <sysmonk> yes[18:35:31] *** dogmeat has joined #postfix[18:37:27] *** logione has joined #postfix[18:39:48] <lrp> sysmonk: not working[18:40:03] <lrp> sysmonk: not working he is accepting as edel at minaz dot cu not the other domain[18:40:31] <cpbills> boobs?[18:40:43] *** hesco has joined #postfix[18:41:37] *** Zblakany has joined #postfix[18:43:09] <sysmonk> lrp: your words mean nothing - pastebin the logs[18:43:14] <sysmonk> cpbills: big boobs[18:43:38] <cpbills> i'm not gonna filter through a hundred 4mb+ jpegs to find potential boobs :P[18:43:53] <lrp> sysmonk: okay[18:43:59] <cpbills> especially big boobs... ick[18:44:14] <rob0> We'll bring f3ew's Internet connection to it's knees in our hunt.[18:44:27] <cpbills> muhahaha[18:44:34] <lrp> sysmonk: http://pastebin.ca/1184422[18:44:43] *** gonewestcoast has quit IRC[18:44:44] <cpbills> or write a simple script to download them all[18:44:53] <lrp> sysmonk: he is accepting that mail , but what about edel at inica dot minaz?[18:44:53] <rob0> f3ew needs thumbnail images![18:44:54] <jelly> big bada boobs.[18:45:06] *** gonewestcoast has joined #postfix[18:45:40] <hesco> I'm writing a bash script to serve as an email transport. It relies on a shared key openssh connection to a remote server (which has better connectivity than this home based server). Because I'm on a dynamically assigned IP, using relayhost is not an option. My issue relates to permission issues for my shared keys file. I need any user on this server to be able to send email, including my www-data, postfix, hesco users and other users[18:45:40] <hesco> may be added in the future. Anyone with any advice on how I should proceed?[18:46:13] *** gonewestcoast_ has joined #postfix[18:46:30] <lrp> sysmonk: saw it ?[18:46:42] <hesco> I'm told that postdrop assumes the permissions of the owner of the mailbox it is delivering to.[18:46:44] <lrp> sysmonk: brb wait ok[18:47:25] <cpbills> and by script i mean wget[18:48:33] <rob0> hesco, scrap the scheme altogether and redesign it with openvpn.[18:49:09] <hesco> rob0: do you have any sample code I can adapt from, please?[18:49:23] <rob0> ???[18:49:26] <sysmonk> lrp: so, it did send it to your internal srever[18:49:32] <sysmonk> lrp: wasn't it what you wanted?[18:50:00] <jelly> hesco: passwordless sudo to that user for everyone, and that script and write another wrapper to do that?[18:50:13] <jelly> hesco: or a small setuid wrapper instead[18:50:42] <hesco> jelly: how do I create an setuid wrapper?[18:51:05] <rob0> yikes, insanity[18:51:32] <jelly> hesco: using wondrous C code, a compiler, chown and chmod :-)[18:51:49] <jelly> rob0: I send mail using toothpicks and old bubblegum[18:52:13] *** gonewestcoast has quit IRC[18:53:26] *** gades has joined #postfix[18:53:28] *** gonewestcoast_ has quit IRC[18:53:32] *** gades has left #postfix[18:53:56] *** jeffspeff has quit IRC[18:54:17] *** stickystyle has joined #postfix[18:54:26] *** jeffspeff has joined #postfix[18:55:03] <rob0> A VPN addresses all the Postfix and dynamic IP issues cleanly, without crazy hacks. But whatever, I'm sure it will be fun.[18:58:42] <seekwill> rob0: Do you know if Yahoo cares if they see a received from header from a residential IP address?[18:59:02] *** gah has quit IRC[18:59:03] <hesco> Googling setuid I came across a 379 slide presentation on writing secure programs. Would VPN be easier to wrap my head around?[18:59:25] *** pickcoder has joined #postfix[19:00:10] <jelly> now you're making me think that giving half-arsed setuid hacks into the hands of the unwary isn't such a smart idea http://pastebin.ca/1184427[19:00:21] *** xp_prg has joined #postfix[19:02:32] *** PcPixel has joined #postfix[19:03:05] <lrp> sysmonk: im back[19:03:08] <rob0> Not knowing your head, I can't say. A VPN is just like having another network interface, like another NIC.[19:03:21] *** F6F has quit IRC[19:03:24] *** leyoda has joined #postfix[19:03:44] <lrp> sysmonk: the trouble is that is is not accepting mail from edel at inica dot minaz.cu the mail server is taking minaz.cu as edel at inica dot minaz.cu :(([19:03:50] <rob0> I would bet that Yahoo rejects SMTP from known dynamic IP space, but I can't speak for them.[19:03:56] *** leyoda has left #postfix[19:04:25] <sysmonk> lrp: i don't get it. pastebin the logs where it doesn't accept that[19:05:15] <rob0> inica.minaz.cu. has two MX hosts. Why, and which one is the problem?[19:05:24] <lrp> rob0: mmm[19:05:58] *** jeffspeff2 has joined #postfix[19:06:00] <lrp> rob0: inica.minaz.cu mail exchanger = 1 faraon.minaz.cu.[19:06:01] <sysmonk> rob0: the problem changes from time to time[19:06:06] <sysmonk> :))[19:06:32] *** jeffspeff has quit IRC[19:06:40] <lrp> sysmonk: strange very strange that[19:06:52] <rob0> inica.minaz.cu. 38400 IN MX 10 mx3.minaz.cu.[19:07:52] <lrp> rob0: them[19:08:10] *** githogori has quit IRC[19:08:30] <lrp> why them he is rejecting mail and changing inica.minaz.cu to minaz.cu[19:08:39] <lrp> i just dont get it :([19:09:17] *** cilly has joined #postfix[19:09:37] <lrp> sysmonk: i cannot set in mydestination *.minaz.cu ?[19:11:44] *** mark-use has joined #postfix[19:13:46] *** Internat has quit IRC[19:14:14] *** Internat has joined #postfix[19:15:28] <mofino> after much toil, i have a postcat parser...[19:15:53] <ribasushi> mofino: now time for the lolcat parser[19:17:07] *** brancaleone has quit IRC[19:19:25] *** manofwar has quit IRC[19:28:14] *** jeffspeff has joined #postfix[19:28:16] <lrp> sysmonk: are you in there?[19:28:42] <sysmonk> no, i'm in hare_krishna[19:29:23] *** jeffspeff2 has quit IRC[19:31:30] <lrp> sysmonk: :/ im still in the same boat :( dunno what to do ,[19:32:50] <sysmonk> lrp: hare_krishna?[19:33:02] <PcPixel> sysmonk: priceless. :P[19:33:41] <sysmonk> :)[19:34:24] <vice-versa> lrp: bailout of the boat[19:34:46] *** PcPixel has left #postfix[19:35:11] * vice-versa just knows he's missed something good here[19:37:05] <sysmonk> mmm, maybe i should go buy some beer and watch some movie[19:37:22] <xming> nah, watching irc here is much more fun[19:37:56] <pickcoder> CWI can lead to keyboard failure[19:38:05] *** madrescher has joined #postfix[19:39:12] <rob0> Most folks normally shouldn't have 2 MX hosts, and definitely not until the main one is working as needed/expected.[19:39:15] <sysmonk> xming: it's what i've been doing here all day :P[19:40:19] *** cilly has quit IRC[19:40:31] <vice-versa> #postfix The Movie, PG13 Opens everywhere Sep 12[19:40:38] <pickcoder> would it suffice to say that most connections to MX #2, when DNS is setup properly, are spammers?[19:40:47] <sysmonk> vice-versa: when will it come out on dvd's ?[19:40:54] <xming> Category: comedy[19:40:59] <vice-versa> 13th most likely[19:41:00] <sysmonk> xming: nah[19:41:05] <sysmonk> xming: Category: comedy, crime, drama[19:41:06] <sysmonk> ;)[19:41:15] <sysmonk> oh, we should add thriller to that[19:41:20] <xming> lol[19:41:22] <hesco> rob0 and jelly: thanks for thea leads. Sorry for the delay in responding (distracted by a phone call from a client). I'll spend a little time studying up on openvpn and setuid to try to figure out how to proceed here.[19:42:19] <xming> pickcoder: depends how your primary is acting or not[19:42:30] <pickcoder> primary is normally active[19:42:44] <pickcoder> yet I still get connections on my secondary[19:42:46] <pickcoder> for WWW too[19:42:51] <lrp> :(([19:42:52] *** Zikey has joined #postfix[19:43:10] <xming> pickcoder: well check your log to see if they are spmmers :D[19:43:32] <pickcoder> xming: I'm been trying to think of a simple way to match them up[19:43:35] *** lrp has quit IRC[19:45:09] <pickcoder> eep[19:45:18] <pickcoder> there's 5425 bans on postfix fail2ban[19:45:42] <pickcoder> I guess some bots were being quite persistent[19:45:57] <pickcoder> (longer ban time for RBLs changed last week)[19:47:06] <pickcoder> and it's still growing[19:47:09] <Zikey> Hi, do you know what happens if you have 2 check_policy_service ? if the first one says reject, is the second one called ?[20:00:01] <vice-versa> REJECT is implicit, there would be no need to process other restrictions[20:00:21] <Zikey> great. thanks :)[20:03:59] *** level09 has joined #postfix[20:04:07] <level09> what advantages does postfix have over sendmail[20:05:33] <seekwill> Us[20:05:49] <level09> :D[20:06:13] <level09> does my mta config have anything to do with my email being marked as spam ?[20:06:29] <Zikey> damn I started with sendmail and all these crazy rulesets and m4 config files, i can for sure see the advantages :)[20:06:30] <seekwill> Could be[20:07:04] <seekwill> Lots of reason to consider you a spammer.[20:07:23] <level09> i'm on ubuntu machine, can I just install postfix and set it as a default mta ? or should I remove/disbale sendmail first ?[20:07:43] <level09> i had my reverse dns configured, and also created spf records[20:07:46] <seekwill> Disabling sendmail would be a good idea. But do you have a need to switch?[20:07:49] <Zikey> ubuntu servers run postfix by default, sendmail is a link to postfix[20:08:26] <level09> really ? I'm not really that linux expert, I just found out that my emails are being marked as spam[20:08:26] <seekwill> rDNS is good. spf is ok. Depends on who is considering you spam. Yahoo? Hotmail?[20:08:38] <level09> gmail[20:08:42] <seekwill> heh[20:08:47] <seekwill> I've NEVER had a problem with gmail[20:09:03] <seekwill> What's your domain/ip?[20:09:07] <level09> hmm, probably some misconfiguration with google apps[20:09:11] <level09> level09.com[20:09:16] <Zikey> level09, if you forward them through your ISP smtp server it shouldn't :)[20:10:09] <level09> Zikey:hmm, my server is located in saint louis, how do I forward them through my iSP ?[20:10:21] <seekwill> level09: level09.com's inbound servers are set to Google. What is the hostname of your ubuntu server?[20:10:57] <Zikey> grep relayhost /etc/postfix/main.cf[20:11:03] <seekwill> It doesn't seem like you have spf...[20:11:10] <level09> 209.20.66.139[20:11:34] <level09> Zikey: are you sure that I have postfix by default ?[20:11:36] <level09> i'm using ubuntu gutsy[20:12:04] <seekwill> level09: mail.level09.com goes to Google. You'll want like "mail1.level09.com"[20:12:07] <level09> seekwill: yeah, I was confused whether to use my server's ip or google's ip[20:12:59] <seekwill> Since your mx for level09.com doesn't refer to mail.level09.com, it'll be best to change mail.level09.com to 209.20.66.139[20:14:20] <level09> okay thanks, let me try that ![20:14:48] *** boink__ has joined #postfix[20:15:24] <seekwill> level09: You're on a VPS right?[20:15:29] <level09> yea[20:15:35] <level09> slicehost[20:17:28] *** jeffspeff2 has joined #postfix[20:17:43] *** jeffspeff has quit IRC[20:17:53] * level09 just added a spf record[20:18:18] <seekwill> It'll take a while for that[20:18:42] <level09> yeah I know[20:19:02] <seekwill> Like, for ever[20:20:43] *** jeffspeff has joined #postfix[20:22:31] *** level09 has quit IRC[20:25:09] *** jeffspeff2 has quit IRC[20:25:39] *** idle-boy is now known as Shaker|[20:26:19] <sysmonk> mmm, beer[20:26:51] *** raz has quit IRC[20:26:51] *** boink__ is now known as raz[20:31:06] *** denis has quit IRC[20:43:02] *** danbeck has joined #postfix[20:46:32] *** Zikey has left #postfix[20:56:03] *** pitakill has quit IRC[20:57:22] *** Vivek has joined #postfix[21:02:34] *** githogori has joined #postfix[21:06:56] *** cilly has joined #postfix[21:19:48] <xming> oh oh oh beer[21:19:56] <xming> I hope it's Belgian beer[21:21:35] <seekwill> oooh[21:21:40] <seekwill> Belgian beer :)[21:21:58] <xming> seekwill: there is lot's of them here[21:22:05] <seekwill> Where is $HERE?[21:22:14] <mofino> can i run postsuper when postfix isn't running?[21:22:15] <xming> euh, Belgium? :D[21:22:19] <mofino> doesn't seem like i can...[21:22:21] <seekwill> oh[21:22:57] * xming ddcs some Belgian beer and food the channel with it[21:23:05] <xming> s/food/flood[21:23:21] <xming> burp burp burp[21:24:21] <mofino> nevermind... how do I hold a message not yet processed by postfix?[21:24:23] *** mark-use_ has joined #postfix[21:24:28] <mofino> I suppose it's not possible.[21:34:58] *** piti has left #postfix[21:35:26] *** gcleric has joined #postfix[21:35:44] *** Haris has joined #postfix[21:38:04] *** mark-use has quit IRC[21:55:08] *** car_watt has quit IRC[21:55:59] *** car_watt has joined #postfix[21:57:43] *** gcleric has quit IRC[22:09:38] *** blackflag has quit IRC[22:10:41] *** Shaker| is now known as idle-boy[22:11:08] *** JoeWulf has joined #postfix[22:11:08] *** adaptr_ has joined #postfix[22:13:14] *** blackflag has joined #postfix[22:13:14] <sysmonk> mofino: postsuper -H messageid[22:13:36] <sysmonk> err, -h, not -H[22:13:43] *** adaptr has quit IRC[22:15:50] <mofino> sysmonk, doesn't work on messages not-yet-processed[22:16:00] <sysmonk> define 'not-yet-processed'[22:16:12] <mofino> stop postfix, and use sendmail to inject messages[22:16:17] <mofino> those type[22:16:28] <mofino> in the queue, but not yet seen by postfix[22:17:00] <mofino> i think anything in incoming/ is ignored by postsuper[22:17:10] <mofino> judging by what files it accesses[22:17:55] *** Joe_Wulf has quit IRC[22:20:43] <sysmonk> mofino: man postsuper, /BUGS[22:20:58] <sysmonk> BUGS[22:20:59] <sysmonk> Mail that is not sanitized by Postfix (i.e. mail in the maildrop queue)[22:20:59] <sysmonk> cannot be placed "on hold".[22:21:30] <sysmonk> the injected mail is in the 'maildrop' queue[22:21:50] <mofino> thanks[22:22:31] *** deuterium has joined #postfix[22:29:00] *** pirho has joined #postfix[22:34:08] *** Chicago has joined #postfix[22:36:31] *** danbeck has quit IRC[22:38:33] *** Masterkiller has joined #postfix[22:38:45] <Masterkiller> hey is there a quick way to get the mailq total without having to display them all?[22:39:18] <sysmonk> mailq | tail -1 ?[22:39:49] <rob0> If the queue is that big, you have some other problem.[22:39:55] <sysmonk> hehe, yeah[22:40:05] *** tapped has joined #postfix[22:40:14] <Masterkiller> yea my amavis borked over the weekend, had a bunch of defunct processes so i have a 100k queue =/[22:40:30] <tapped> hey guys[22:40:33] <Masterkiller> but it seems to be flowing ok now i just want to see how fast it is catching up[22:40:37] <Masterkiller> any help?[22:41:05] <rob0> What you were already given was not adequate?[22:41:21] <tapped> i'm trying to set up an automated system that unsubscribed people that email a paricular address. i setup an account "fbl" to do so.[22:41:25] <tapped> i added the following to my master.cf[22:41:26] <tapped> fbl unix - n n - - pipe[22:41:26] <tapped> flags=F user=fbl argv=cat > /home/fbl/test.txt[22:41:39] <tapped> just to test, but it's not creating the file test.txt[22:41:42] <Masterkiller> no it still goes through the entire mailq command and gives the last line correct? still about a 15-20minute wait i'm guessing[22:42:41] <Masterkiller> rob0, you have a suggestion?[22:43:07] <rob0> maybe a "find /var/spool/postfix/ -type f | wc -l" would ... damn that's rude.[22:43:20] <rob0> !sweet[22:43:21] <knoba> rob0: "sweet" : http://sweet.nodns4.us/[22:44:20] <Masterkiller> rob0 so you arent really trying to help huh[22:44:52] *** F6F has joined #postfix[22:45:07] <rob0> 20:38 -!- Masterkiller [n=architec at mail dot deximaging.com] has joined #postfix[22:45:50] <Masterkiller> yes?[22:45:58] *** f3ew has quit IRC[22:46:05] *** Vivek has quit IRC[22:46:05] *** VivekVC has joined #postfix[22:46:27] <magyar_> hi, is it possible for postfix to check both user types virtual and unix when receiving email?[22:47:20] *** f3ew has joined #postfix[22:47:21] <Masterkiller> rob0, what was the point of giving my fqdn?[22:48:33] <xming> !sweet[22:48:33] <knoba> xming: "sweet" : http://sweet.nodns4.us/[22:50:21] <Masterkiller> kinda defeats the point of the irc channel huh?[22:50:33] *** DarienWork_ has joined #postfix[22:51:01] <Dominian> !tell magyar_ basic[22:51:08] *** DarienWork has quit IRC[22:56:00] <pickcoder> xpoint: do you have an RBL block count?[22:58:26] <xpoint> for ?[22:58:33] <pickcoder> in general[22:59:03] <pickcoder> fail2ban[22:59:24] <pickcoder> curious about how many I can expect on a 2 week ban period[22:59:33] *** hparker has quit IRC[22:59:54] <xpoint> 644 banned ip here[23:00:02] <pickcoder> oh[23:00:04] <pickcoder> heh[23:00:08] <xpoint> last 24 hours[23:00:43] <pickcoder> up to 7170 since fri afternoon[23:00:59] <xpoint> pickcoder, i make persistense db for f2b later[23:01:11] <pickcoder> ok[23:01:18] <pickcoder> shorewall[23:01:28] <xpoint> no patch needed :)[23:01:45] <pickcoder> can you do an iptables list / grep / wc and see how many perm bans you have?[23:01:56] <sysmonk> # zcat maillog.0.gz | grep "cbl.abuseat.org" | awk '{print $10}' | sort -u | wc -l 95346[23:02:05] <sysmonk> 95k yesterday[23:02:26] <pickcoder> sysmonk: RBL IPs?[23:02:31] <sysmonk> yes[23:02:34] <sysmonk> cbl.abuseat.org[23:02:41] <pickcoder> I'm use zen[23:02:56] <xpoint> why not count amavids log in sql where ip is S content ?[23:03:00] <sysmonk> we have a local cbl.abuseat.org mirror, that's why we use it[23:03:09] <pickcoder> hrm..[23:03:13] <pickcoder> that actually sounds like a great idea[23:03:39] <pickcoder> the level we're getting is just using up bandwidth[23:03:44] <pickcoder> RBL block queries[23:04:07] <pickcoder> xpoint: I'm just trying to determine how to handle my blocking ban[23:04:08] <xpoint> i do not use rbl in postfix, only exception is zen[23:04:27] <pickcoder> I don't want 200K IPs in the DROP chain[23:04:39] *** stickystyle has quit IRC[23:04:43] <xpoint> why not ?[23:04:49] <tapped> i'm trying to set up an automated system that unsubscribed people that email a paricular address. i setup an account "fbl" to do so.[23:04:52] <tapped> i added the following to my master.cf[23:04:55] <tapped> fbl unix - n n - - pipe[23:04:56] <tapped> flags=F user=fbl argv=cat > /home/fbl/test.txt[23:05:08] <tapped> this was to test, but it's not working[23:05:14] <pickcoder> xpoint: it's not really needed if the blocking is reiterative[23:05:19] <tapped> but i have another account (which i copied the entry from) that's working fine[23:05:26] <pickcoder> I can reduce my ban time and only increase bandwidth a tiny amount[23:05:37] <rob0> Sorry, Masterkiller, I have a very low tolerance for people who want free professional support and are not patient enough to wait for it.[23:05:54] <pickcoder> having an RBL mirror would probably reduce more bandwidth than blocking longer[23:05:58] *** rootsvr has quit IRC[23:06:29] *** hparker has joined #postfix[23:06:32] <sysmonk> pickcoder: zen blocks more, but you'd sure reduce the bandwidth[23:06:45] <rob0> people like hparker, for example[23:06:47] <Masterkiller> rob0 lol free professional support for asking if anyone has a way to check the queue total without scrolling through the whole queue? wow good thing debian, mysql or any other channel doesnt consider that "professional". was just asking if anyone already knew how...[23:07:59] * hparker wonders what he just stumbled in on[23:08:11] <Masterkiller> on a side note, found a slick graph for monitoring your queue...[23:08:40] <pickcoder> mailqueue?[23:08:44] <pickcoder> er[23:08:48] <pickcoder> mailgraph[23:09:06] <pickcoder> wait that's for traffic... queuegraph is for queue[23:09:13] <logione> mailgraph suit my ened it's really good[23:09:17] <logione> needs[23:09:53] <pickcoder> I wonder how large the zen database is[23:10:19] *** F6F has quit IRC[23:10:27] *** F6F has joined #postfix[23:10:34] <pickcoder> sysmonk: is abuseat free?[23:10:39] <Masterkiller> pickcoder, it was a template for cacti ;)[23:10:49] <pickcoder> Masterkiller: oh[23:11:05] <Masterkiller> pickcoder, i'll look at mailgraph, is it standalone?[23:11:30] <pickcoder> Masterkiller: yes.. it's an HTML builder.. so is queuegraph[23:11:42] <pickcoder> Perl scripts[23:11:47] <Masterkiller> pickcoder, awesome thanks[23:12:02] <pickcoder> looks like SpamHaus wants $ for data feed[23:14:38] <sysmonk> pickcoder: yeah, read about it in cbl.abuseat.org[23:14:48] <sysmonk> pickcoder: most other ones require $ ;/[23:17:39] <Haris> rob0: I'm ready to be inspired, lol[23:17:52] <Haris> rob0: Can you give me an idea on the relay without smtp auth?[23:18:23] <Haris> I'm testing an account for smtp auth. I hope that it works[23:19:28] <rob0> Sure. A simple out-of-band solution might be a Web authentication form which updates/postmap's a check_client_access map.[23:20:00] <rob0> A more elegant solution might be openvpn, you put your VPN IP range in mynetworks.[23:20:09] <Haris> well, there's a small problem. People using outlook won't like it[23:20:19] <mofino> how do i send virtual users to an external command for delivery?[23:20:28] <rob0> I'm not interested in helping with Outhouse. :)[23:20:41] <mofino> like with the command mailbox_command[23:20:46] <Haris> good, back to smtp auth[23:20:51] <mofino> err, directive[23:20:54] <rob0> That said, Outhouse can do auth sometimes.[23:21:40] *** gcleric has joined #postfix[23:21:45] <rob0> mo, not possible; but you can do virtual_alias_maps to redirect to local(8) users.[23:21:53] <pickcoder> sysmonk: for $500/year I think it's worth the $[23:21:55] <mofino> ...[23:22:03] <mofino> what if I don't have local users...[23:22:31] <rob0> Then it's not possible at all, unless you want to hack up some pipe(8) transport.[23:22:37] <mofino> oh man[23:22:51] <mofino> i just tried that, it bounces on execution failure[23:23:02] <pickcoder> mofino: aliases pipe[23:23:23] <pickcoder> keep in mind that it's not run a selected user[23:23:28] <mofino> yeah[23:23:40] <pickcoder> your other option is to setup a virtual map and use a transport[23:23:45] <mofino> so why exactly is mailbox* only for local?[23:24:08] <rob0> Because the OS requires a real user and a real shell to run a command.[23:24:10] <pickcoder> a pipe transport really isn't that complicated[23:24:17] <mofino> rob0, it does?[23:24:29] <mofino> pickcoder, it is when it BOUNCES ON EXECUTION FAILURE[23:24:34] <mofino> that's bloody madness[23:24:36] <rob0> Film at eleven.[23:24:43] <mofino> rob0, news to me[23:24:51] <mofino> we use non-existant uids in command execution now[23:24:56] <pickcoder> mofino: you need a valid user with a shell as rob0 already stated[23:25:16] <mofino> pickcoder, how does that solve the pipe() issue of bounce on execution error[23:25:26] <pickcoder> you can't pipe as a virtual user[23:25:38] <mofino> ... lets say i setup a pipe transport[23:25:45] <mofino> and the command FAILS, it will BOUNCE[23:25:52] <mofino> any way to handle this?![23:25:58] <pickcoder> the user you assign as the "run as" param must have a shell[23:26:08] <mofino> ....[23:26:10] <rob0> You would want to carefully read "man pipe" and sysexits.h as it suggests.[23:26:13] <mofino> can you answer my question?[23:26:22] <mofino> rob0, will do[23:26:40] <Dominian> !sweet[23:26:41] <knoba> Dominian: "sweet" : http://sweet.nodns4.us/[23:26:53] <mofino> rob0, ok that doesn't change anything[23:27:09] <mofino> i suppose i'm limited here[23:28:15] <mofino> what about .forward and virtual?[23:29:01] <rob0> nope, virtual(8) is a stripped down clone of local(8), no .forward possible.[23:29:22] <rob0> If you want the features of local, use local.[23:29:27] <mofino> ok[23:29:33] <sysmonk> pickcoder: 500 $ / year?[23:29:40] <sysmonk> pickcoder: where did you get that number from :)[23:29:43] <mofino> local requires users in /etc/passwd?[23:29:48] *** j_s has quit IRC[23:29:49] <sysmonk> it's really not 500 $ / year for my setup :)[23:29:50] <Dominian> mofino: yep[23:29:57] <mofino> haha[23:30:00] <Dominian> sysmonk: free/year ?[23:30:03] <Dominian> sysmonk: ;)[23:30:05] <sysmonk> Dominian: :P[23:30:07] <Dominian> lol[23:30:10] <rob0> well, that's the simple way, but it's possible to do other user databases.[23:30:31] <mofino> rob0, can i somehow do virtualdomains through local?[23:30:38] *** danbeck has joined #postfix[23:30:47] <rob0> !virtual[23:30:47] <knoba> rob0: "virtual" : a way to configure additional domains and user accounts (that do not need to exist in your /etc/passwd). See: http://www.postfix.org/VIRTUAL_README.html[23:30:52] <Dominian> !transport[23:30:53] <knoba> Dominian: "transport" : transport(5) The optional transport(5) table specifies a mapping from email addresses to message delivery transports and next- hop destinations. Look at: http://www.postfix.org/transport.5.html[23:30:53] <Dominian> !sweet[23:30:54] <knoba> Dominian: "sweet" : http://sweet.nodns4.us/[23:30:56] <Dominian> tiemt o head home[23:31:10] *** lambda has left #postfix[23:31:12] *** lambda has joined #postfix[23:31:14] <rob0> Virtual alias domains redirected to local users.[23:31:26] <mofino> ...[23:31:38] <mofino> so each user MUST have a local domain mailbox?[23:31:46] <pickcoder> sysmonk: for spamhaus[23:31:56] <sysmonk> pickcoder: yes, but afair it's not 500$ for my setup[23:31:58] <mofino> i suppose i can hack this...[23:32:20] <pickcoder> for < 100 e-mail users & corp it's $500/year[23:32:34] <rob0> Um, you can mix classes as you please, and even intermingle them using per-user transport_maps.[23:32:42] <vice-versa> \!virtuallySweet[23:33:00] <mofino> rob0, but to use the features of local, i need local users only.[23:33:20] <sysmonk> pickcoder: Internet Service Provider price for 50,000 - 100,000 users[23:33:20] <sysmonk> Per Year: US$ 10000.00[23:33:31] <sysmonk> pickcoder: a 'bit' more than 500$ ;/[23:33:34] <pickcoder> heh[23:33:40] <mofino> rob0, so i setup a local domain with all the users and make aliases on the virtual side to those users.[23:33:49] <pickcoder> a lot more traffic than here though[23:33:56] <rob0> sysmonk, tell them you have 49,999 users.[23:34:15] <vice-versa> sysmonk: or just ask for 500$ worth[23:34:36] <sysmonk> hey, we're looking in to the 'legal' data feed :P[23:34:42] <rob0> yeah, about a half a day of data feed[23:35:01] <pickcoder> got my "granted" e-mail[23:35:03] <pickcoder> time to play[23:39:26] *** hparker|laptop has joined #postfix[23:41:17] *** rootsvr has joined #postfix[23:41:20] *** hparker has quit IRC[23:41:57] *** hparker|laptop is now known as hparker[23:47:29] <logione> hi all, while doing a 'postconf -v' i see "postconf: dict_eval:" what does that mean please ?[23:48:23] *** Draecos__ has quit IRC[23:49:00] <logione> cf: http://pastebin.com/d43f1212[23:51:56] <logione> dunno what dict_eval mean, and see no ref in man postconf[23:55:50] <rob0> Ah, but there *is* a mention of what "-v" does, right?[23:56:17] <logione> yes verbose :)[23:57:48] *** gcleric has quit IRC[23:59:02] *** gcleric has joined #postfix[23:59:41] *** gcleric has quit IRC