[00:02:44] *** floor- has joined #postfix
[00:02:58] *** Luke-Pacman has joined #postfix
[00:03:24] <floor-> i'm curious why in the workaround.org article passwords are saved as plain-md5? wouldn't it be more prudent to advice people to go with md5-crypt?
[00:03:33] <floor-> or was it there to maintain backwards compatibilty ?
[00:03:42] *** standel has joined #postfix
[00:04:50] <xpoint> md5 is not plain
[00:05:16] <floor-> i'm referring the the password scheme, it's a plain md5 hash
[00:06:15] <floor-> if someone got a hold of your mail database he could with more ease crack the passwords compared to md5 salted password hashes
[00:06:45] <xpoint> md5 is still not plain passwords
[00:07:02] <Luke-Pacman> I have a problem currently, my postfix install sends out email's but can't receive them, not sure as to why, here's my postconf -n http://pastebin.com/m5413cd4
[00:07:23] <floor-> xpoint: i never said it was, i said it is a -plain md5 hash-
[00:07:37] <rob0> use the LOGS Luke
[00:07:58] <Luke-Pacman> I've tried looking at the maillog
[00:08:04] <Luke-Pacman> It never shows anything about incoming mail
[00:08:36] <xpoint> maybe you isp blocked port 25 ?
[00:08:48] <Luke-Pacman> What would explain me being able to send out from it though?
[00:09:02] <xpoint> you are client then
[00:09:04] <floor-> because isp block incoming port 25 traffic
[00:09:07] <floor-> not outgoing
[00:09:11] <Luke-Pacman> ahh
[00:09:15] <Luke-Pacman> Hmm
[00:09:46] *** UQlev has joined #postfix
[00:10:56] <rob0> that's not likely.
[00:10:58] <floor-> oh this is on cox? i'm pretty sure they block incoming smtp traffic on port 25
[00:11:02] <rob0> !no_logs
[00:11:03] <knoba> rob0: "no_logs" : Nothing in your Postfix logs commonly means one of two things: either your syslogd is broken (try restarting it), or the connections are not coming to your server. Check your firewall/networking and the DNS for the domain in question.
[00:11:12] <Luke-Pacman> Well, it's Cox Business
[00:11:22] <floor-> oh if it's business they shouldn't
[00:11:29] <floor-> but i don't know their policies
[00:11:36] <Luke-Pacman> Yeah i'm looking at their policies right now
[00:11:41] <Luke-Pacman> To see if i have to request it open
[00:11:53] <rob0> you should be reading the factoid I just gave you.
[00:12:30] <rob0> Few ISP's block inbound SMTP, especially not business class, static IP space.
[00:12:38] <Luke-Pacman> Hmm
[00:12:58] <rob0> (I've only heard of inbound blocking on a small number of consumer ISPs.)
[00:14:17] <floor-> 'small number' but some of those small number of isps serve a lot of customers :P
[00:14:32] <floor-> but yea if it's a business line, there should be no filtering
[00:15:14] 
[00:15:19] <Luke-Pacman> Means it shouldnt be blocked
[00:15:40] <Luke-Pacman> Like you were saying before about the Static IP Space
[00:15:47] <seekwill> rob0 is always right
[00:15:55] <rob0> Actually the only ISP I know of sor sure is one you probably have not heard of, Knology.net.
[00:16:02] <rob0> *for sure
[00:16:07] <floor-> rob0: optimum online does it
[00:16:19] <floor-> you have to pay to run your own mail server
[00:16:30] <rob0> Comrade Napoleon is always right. I will work harder. -Boxer
[00:17:02] <floor-> and i -think- verizon does it also
[00:17:37] <Luke-Pacman> What if i can connect to the telnet via the website's mail subdomain?
[00:17:45] <floor-> Luke-Pacman: you need to telnet from outside your network to the ip of your mail server
[00:17:50] <Luke-Pacman> Hmm
[00:17:51] <Luke-Pacman> k
[00:18:46] <floor-> if you do it right and you can't connect, it's probably a firewall issue
[00:18:59] <floor-> are you running a firewall?
[00:19:07] <Luke-Pacman> Yeah it's on, but 25 is allowed
[00:19:07] <rob0> !tell Luke-Pacman no_logs
[00:19:23] *** UQlev has quit IRC
[00:21:26] <floor-> and why would you say it's not common practice for most consumer isps to filter incoming smtp traffic?
[00:21:46] <floor-> it helps if some consumer sets up an open relay
[00:22:52] <rob0> So does proxying all traffic, all protocols.
[00:24:08] <floor-> yea but it does make it somewhat harder to be found and exploited if it's on the default smtp port
[00:24:18] <floor-> easier*
[00:30:32] *** pirho has quit IRC
[00:30:53] <rob0> seekwill: Actually once I thought I was wrong, but as it turned out, I was mistaken.
[00:31:12] <seekwill> rob0 is always right
[00:31:22] <seekwill> What you think doesn't matter. You're just right.
[00:32:33] *** brad_ has quit IRC
[00:33:42] *** brad_ has joined #postfix
[00:34:18] <r8> Luke-Pacman: You run an SSH daemon, right?
[00:34:25] <floor-> so anyone know why the author of the wokaround.org ispmail article went with plain md5 hash for passwords instead of something stronger?
[00:34:31] <Luke-Pacman> Yeah
[00:34:58] <r8> If I'm guessing your IP right, I can get to your SSH daemon but not port 25.
[00:35:21] <Luke-Pacman> Yeah someone i know ran a port scan on the ip, didnt have 25 coming back, which is confusing
[00:35:26] <Luke-Pacman> I have it setup under the rules
[00:35:36] <Luke-Pacman> Of the firewall machine
[00:35:44] <r8> Does it show as closed or filtered?
[00:36:08] <Luke-Pacman> The firewall machine? or the Web server
[00:36:18] <rob0> what is the domain name you're supposed to be the MX for?
[00:36:24] <Luke-Pacman> mail.
[00:37:30] <rob0> "dig mail. mx" NXDOMAIN here :)
[00:38:13] <r8> I just got to port 25 of 68.99.158.46, Bob.
[00:38:27] <Luke-Pacman> hmmm
[00:38:38] <r8> What's a valid destination address?
[00:39:11] <Luke-Pacman> For an email?
[00:39:11] <rob0> bobroffconsulting.com.  38400   IN      MX      5 mail.bobroffconsulting.com.bobroffconsulting.com.
[00:39:45] <r8> I sent one to postmaster there.
[00:39:57] *** boink__ has joined #postfix
[00:40:04] <Luke-Pacman> k
[00:40:06] <rob0> missing trailing "." on the MX name
[00:40:15] <Luke-Pacman> Hmm
[00:41:30] <r8> BIND or djbdns or something else?
[00:41:37] <Luke-Pacman> BIND
[00:41:52] <r8> I don't do BIND, sorry I can't help.
[00:42:15] <Luke-Pacman> hm
[00:42:16] <r8> Probably like rob0 says, missing the '.' to fully qualify your MX domain.
[00:42:20] <Luke-Pacman> the CNAME seemd to be screwed up
[00:42:34] <Luke-Pacman> oh
[00:43:09] <Luke-Pacman> I *think* i fixed it
[00:43:32] <Luke-Pacman> rob0 do you know what it should look like in BIND's hosts file?
[00:45:23] <r8> Maybe something like "IN MX 10 mail.bobroffconsulting.com."
[00:46:10] *** floor- has quit IRC
[00:51:15] *** raz has quit IRC
[00:51:15] *** boink__ is now known as raz
[00:57:13] <rob0> r8, leading whitespace or s/IN/@/
[00:57:28] <Luke-Pacman> Yeah we fixed it I believe
[00:57:29] <rob0> also, mail.bobroffconsulting.com. should not be a CNAME.
[00:57:33] <Luke-Pacman> Oh?
[00:57:43] <Luke-Pacman> We changed it to an A Record anyway
[00:57:54] <Luke-Pacman> But something i had read had it as a CNAME so i was just following along
[00:58:00] <rob0> technically it MUST not be a CNAME, but it usually works anyway
[00:58:31] * jpalmer dislikes CNAMES.  I use them,  but generally,  I dislike them. ;)
[01:00:27] *** war9407 has quit IRC
[01:10:25] *** pickcoder has joined #postfix
[01:21:47] *** standel has quit IRC
[01:23:06] *** dean has joined #postfix
[01:24:23] *** dean is now known as ack_syn
[01:28:15] <r8> RFC 2181: 10.3. MX and NS records: The domain name used as the value of a NS resource record, or part of the value of a MX resource record must not be an alias.
[01:29:11] <Luke-Pacman> Well then, that solves it
[01:39:52] *** googlah has joined #Postfix
[01:51:58] *** pingouin_ has quit IRC
[01:52:08] *** pingouin has joined #postfix
[01:55:13] *** hparker has quit IRC
[01:59:39] *** havvg has quit IRC
[02:04:45] *** stonith has joined #postfix
[02:09:29] *** seekwill has quit IRC
[02:11:50] *** madrescher has quit IRC
[02:28:48] *** pitakill has joined #postfix
[02:36:05] *** ack_syn is now known as dean
[02:40:02] *** dean is now known as ack_syn
[02:40:11] *** ack_syn is now known as ack
[02:40:33] *** ack is now known as ack_syn
[03:02:34] *** adaptr_ has joined #postfix
[03:02:52] *** jelly has quit IRC
[03:02:52] *** jwit_ has quit IRC
[03:02:53] *** sysmonk has quit IRC
[03:02:53] *** sega01 has quit IRC
[03:02:53] *** tshine has quit IRC
[03:02:53] *** SeJo has quit IRC
[03:02:53] *** Drognan has quit IRC
[03:02:53] *** Bejgli has quit IRC
[03:02:54] *** Spec has quit IRC
[03:02:54] *** ph8 has quit IRC
[03:02:54] *** dragonheart has quit IRC
[03:02:54] *** sdasdaseer has quit IRC
[03:02:54] *** tm-30740-exa has quit IRC
[03:02:54] *** Tanguy has quit IRC
[03:02:54] *** chrisq has quit IRC
[03:02:54] *** glitch- has quit IRC
[03:02:55] *** Zeit|awy has quit IRC
[03:02:55] *** ribasushi has quit IRC
[03:02:55] *** mcblady has quit IRC
[03:02:55] *** goldfischli has quit IRC
[03:02:55] *** ikaro has quit IRC
[03:02:56] *** adaptr has quit IRC
[03:02:56] *** biz has quit IRC
[03:02:56] *** dhg has quit IRC
[03:02:56] *** acidchild has quit IRC
[03:02:56] *** lysander has quit IRC
[03:02:56] *** mathez has quit IRC
[03:02:56] *** linkslice has quit IRC
[03:02:56] *** memic has quit IRC
[03:02:56] *** Zerberus has quit IRC
[03:02:57] *** slurpee has quit IRC
[03:02:57] *** Zborg has quit IRC
[03:02:57] *** soren has quit IRC
[03:02:57] *** sv-- has quit IRC
[03:02:57] *** rmayorga has quit IRC
[03:03:28] *** Zeit|awy has joined #postfix
[03:03:28] *** jwit_ has joined #postfix
[03:03:28] *** ribasushi has joined #postfix
[03:03:28] *** tshine has joined #postfix
[03:03:28] *** mcblady has joined #postfix
[03:03:28] *** jelly has joined #postfix
[03:03:28] *** SeJo has joined #postfix
[03:03:28] *** goldfischli has joined #postfix
[03:03:28] *** Drognan has joined #postfix
[03:03:28] *** sega01 has joined #postfix
[03:03:28] *** Bejgli has joined #postfix
[03:03:28] *** acidchild has joined #postfix
[03:03:28] *** Spec has joined #postfix
[03:03:28] *** ikaro has joined #postfix
[03:03:28] *** slurpee has joined #postfix
[03:03:28] *** ph8 has joined #postfix
[03:03:28] *** biz has joined #postfix
[03:03:28] *** dhg has joined #postfix
[03:03:28] *** sdasdaseer has joined #postfix
[03:03:28] *** dragonheart has joined #postfix
[03:03:28] *** tm-30740-exa has joined #postfix
[03:03:28] *** sysmonk has joined #postfix
[03:03:28] *** Tanguy has joined #postfix
[03:03:28] *** linkslice has joined #postfix
[03:03:28] *** memic has joined #postfix
[03:03:28] *** chrisq has joined #postfix
[03:03:28] *** glitch- has joined #postfix
[03:03:28] *** Zerberus has joined #postfix
[03:03:28] *** mathez has joined #postfix
[03:03:28] *** rmayorga has joined #postfix
[03:03:28] *** lysander has joined #postfix
[03:03:28] *** soren has joined #postfix
[03:03:28] *** Zborg has joined #postfix
[03:03:28] *** sv-- has joined #postfix
[03:15:57] <r8> Meng Wong has a different opinion of the legitimacy of the MX->CNAME prohibition: http://mengwong.com/misc/rfc1912-is-wrong.html
[03:16:24] <r8> Anyone have a setup with a CNAME MX?  I'd just like to query it and see what it responds.
[03:17:53] <Dominian> Nope.. I don't use CNAME as an MX
[03:17:59] <Dominian> breaks too many things
[03:19:52] <ack_syn> hey, anyone knows a good web interface to postfix log? I already tested mailgraph and pflogsumm
[03:24:17] *** xpoint has quit IRC
[03:24:31] *** m1n3s6 has quit IRC
[03:25:09] <dragonheart> ack_syn: what do your required? and for my own benefit as I dont' use either - what do you find deficient about mailgraph/pflogsumm?
[03:27:22] <r8> Dominian: May I ask which things exactly are broken by MX CNAMEs?
[03:32:22] *** hparker has joined #postfix
[03:32:26] *** GoGi has quit IRC
[03:39:59] <dragonheart> r8: mta implementations that don't know how to process MX CNAMES don't deliver email to those domains.
[03:41:19] <dragonheart> what driving requirement do you have for it anyway?
[03:41:52] <ack_syn> dragonheart, list the messages
[03:42:25] <ack_syn> something like ID   MAIL_FROM   RCPT_TO   DATA
[03:42:40] <r8> dragonheart: I thought that was the primary concern.  But according to Meng Wong's article (ca. 2001, http://mengwong.com/misc/rfc1912-is-wrong.html), "Allegedly widespread implementation incompatibilities are in fact far less numerous than feared."
[03:42:46] <dragonheart> ack_syn: could bcc the messges to a mbox and put a webmail on that
[03:43:04] <Luke-Pacman> Does anyone know how to fix this? deliver(lbobroff): file_lock_dotlock() failed with mbox file /var/spool/mail/lbobroff: Permission denied
[03:43:40] <ack_syn> LOL
[03:44:22] <dragonheart> Luke-Pacman: group write permissions on /var/spool/mail . map its permissions with what deliver is running as anyway
[03:45:12] <r8> My driving requirement is to well understand the RFCs and this specific technical point as it relates to real-world practices.
[03:45:42] <r8> (A.k.a. padding my pedantry quiver.)
[03:46:29] <dragonheart> fair enough. have fun
[03:50:22] <r8> But seriously, if I'm someplace where a sysadmin says "I want to point it to a CNAME so that I can ...", I should have a good response with more than "it's in the rules."
[03:50:46] <r8> What I'm discovering is that people are saying it's not really a problem.  All the reasonable MTAs handle it.
[03:51:52] <r8> E.g.:  http://article.gmane.org/gmane.mail.postfix.user/116116/ :  "The Postfix dns_lookup() routine..."
[03:56:04] *** mavrick61 has quit IRC
[03:57:13] *** mavrick61 has joined #postfix
[03:59:57] *** Luke-Pacman has quit IRC
[04:01:29] *** Luke-Pacman has joined #postfix
[04:10:59] *** hparker has quit IRC
[04:12:47] *** seekwill has joined #postfix
[04:26:48] *** githogori has quit IRC
[04:46:20] *** JeffH has joined #postfix
[04:47:14] <JeffH> I've suddenly had a problem crop up with my postfix setup.  I now get 'connect to 127.0.0.1[127.0.0.1]: Connection refused (port 10024)'
[04:50:58] <JeffH> amavisd-new apparently didn't start after my reboot of my server.
[04:51:19] *** ack_syn has quit IRC
[04:51:34] *** JeffH has left #postfix
[04:58:57] <Luke-Pacman> So i'm having a problem with SMTP authing
[05:01:32] <seekwill> :(
[05:03:18] <Luke-Pacman> Getting an authentication failed "bad protocol / cancel"
[05:03:24] <Luke-Pacman> 5.7.0 Error
[05:16:19] *** goldfisc1li has joined #postfix
[05:26:22] *** pickcoder has quit IRC
[05:32:09] *** goldfischli has quit IRC
[05:45:27] *** PhilKC has quit IRC
[06:01:36] *** roy52 has joined #postfix
[06:01:40] <roy52> hi
[06:02:31] <roy52> i am getting authentication failed error in evolution
[06:02:49] <roy52> http://workaround.org/articles/ispmail-etch/#ronny-tiebel-s-php-administration-frontend
[06:03:42] <roy52> but thru telnet it connects without any error
[06:07:44] <roy52> ?
[06:11:59] *** roy52 has quit IRC
[06:15:10] <seekwill> Someone REALLY has to fix that article...
[06:18:59] *** githogori has joined #postfix
[06:22:51] <seekwill> !cheatsheet
[06:22:53] <knoba> seekwill: "cheatsheet" : http://jimsun.linxnet.com/misc/postfix-anti-UCE.txt : A HOWTO for pre-DATA spam control.
[06:23:02] <seekwill> Thank you!
[06:23:11] <thumbs> !kill seekwill
[06:23:12] <knoba> thumbs: Error: "kill" is not a valid command.
[06:24:21] <seekwill> :(
[07:03:19] *** mcblady has quit IRC
[07:03:34] *** mcblady has joined #postfix
[07:13:01] *** UQlev has joined #postfix
[07:23:45] *** danbeck has quit IRC
[07:28:58] *** redduck666 has joined #postfix
[07:38:01] *** cafuego has joined #postfix
[07:39:58] *** redduck676 has quit IRC
[08:25:03] *** madrescher has joined #postfix
[08:30:09] *** madrescher has quit IRC
[08:34:45] *** j_s has joined #postfix
[08:35:50] *** Broken|work__ has quit IRC
[08:51:53] *** redduck666 has quit IRC
[08:54:40] *** Haris has joined #postfix
[09:12:40] *** UQlev has quit IRC
[09:17:14] *** tombar_ has quit IRC
[09:17:45] *** rootsvr has joined #postfix
[09:32:50] *** pitakill has quit IRC
[09:33:26] *** rootsvr has quit IRC
[09:39:06] *** Haris_ has joined #postfix
[09:39:13] <seekwill> Is there a way to deliver locally and smarthost the message to a different server?
[09:39:20] <seekwill> On a per-user basis?
[09:39:47] *** Haris_________ has joined #postfix
[09:46:55] *** war9407 has joined #postfix
[09:48:36] *** Lap_64 has joined #postfix
[09:51:29] *** viyyer has joined #postfix
[09:57:02] *** Haris has quit IRC
[09:58:18] *** Haris_ has quit IRC
[09:58:29] *** Haris_________ has quit IRC
[09:59:29] *** amrit|wrk is now known as amrit|zzz
[10:08:21] *** hark has joined #postfix
[10:09:06] *** kkmaslowski has joined #postfix
[10:26:10] *** lambda__ has joined #postfix
[10:32:28] *** kkmaslowski has left #postfix
[10:33:34] *** F6F has joined #postfix
[10:42:57] *** sophokles has joined #postfix
[10:43:36] <viyyer> any config snippets.. I needs to have both esmtp authenticated  forwarding( got it working) but how do I get postfix to forward it to my other mail server for other destination of the same hostname
[10:49:07] *** sophokles has quit IRC
[10:49:13] *** sophokles1 has joined #postfix
[10:51:46] *** Lap_64 has quit IRC
[10:54:30] *** sophokles has joined #postfix
[10:55:21] *** bkw has joined #postfix
[10:56:29] <bkw> Can I rewrite email to user@domain1, to user2@domain2 when it hits my postfix relay?
[10:57:55] <viyyer> bkw, forwarding ?
[11:00:09] <bkw> I would like to rewrite the header if possible, I've virtual accounts so I don't know with forwarding. The mail is sent from a host that uses my postfix as smarthost. So it can receive mail to itself since there's nothing listening for public:25, hence I would like to rewrite that to address to another domain instead
[11:06:02] *** AcTiVaTe has joined #postfix
[11:06:22] <dragonheart> bkw: virtual_alias_maps = hash:/etc/postfix/virtual   with virtual containing " user@domain1 user2@domain2"
[11:10:53] <bkw> dragonheart: I already have virtual_alias_maps = proxy:mysql:$config_directory/mysql_virtual_alias_maps.cf, should I add ",hash:/etc/postfix/virtual" to that line?
[11:11:36] <dragonheart> either that or put the mapping in your database
[11:12:16] *** sophokles1 has quit IRC
[11:14:36] <viyyer> dragonheart, any pointer for me?
[11:16:31] *** Filbert has quit IRC
[11:18:44] <dragonheart> viyyer: having trouble working out what you have/want based on the description provided. bit of postconf -n  and some contraints about what you want forwarded could help. I'm not a postfix master either. just happened to have implemented bkw's setup.
[11:21:26] <bkw> dragonheart: ok, looks like it worked. thanks.
[11:26:01] <viyyer> dragonheart,  two services I have from postfix is 1) esmtp forwarding(no-reply@domain). 2) mailman(lists.domain).  http://pastebin.com/f4fe28d68  the services are working fine. except that . as all other mails are hosted elsewhere. I want to forward all other emails@domain (except the one doing esmtp forwarding) to be delivered to the server as mentioned in the mxrecord.
[11:26:49] <viyyer> the problem I am facing is with the mails with destination to the same domain. which postfix thinks is on the same server and then denies relay access
[11:27:12] <viyyer> dragonheart, hope I am clear?
[11:27:19] *** seekwill has quit IRC
[11:31:20] <dragonheart> think so. still reading/thinking
[11:35:31] <dragonheart> so your transport map contrains something like domain  smtp:domain?
[11:35:53] *** Filbert has joined #postfix
[11:41:40] <viyyer> dragonheart,  nope...
[11:41:53] <viyyer> dragonheart, do I add that ?
[11:42:42] *** pirho has joined #postfix
[11:42:45] <dragonheart> what does it contrain - the lists.domain map?
[11:43:10] <dragonheart> where does the no-reply@domain handled? (aliases I'm guessing)
[11:43:21] <viyyer> dragonheart, the transpot map contains only one entry which is for mailman
[11:43:47] <viyyer> lists.domain  mailman:
[11:44:59] <dragonheart> ok
[11:45:09] <dragonheart> and your virtual_* is doing what?
[11:46:36] <viyyer> dragonheart, virtual_* is mainly having all my mailman ids
[11:47:19] <dragonheart> ok. I think it should eb safe enough to add a line to the bottom of the transport maps
[11:48:18] <viyyer> ok
[11:51:08] <viyyer> dragonheart, added .. lemme postmap and test it
[11:52:32] <viyyer> dragonheart, recipient address is still rejected
[11:54:04] <dragonheart> with a relay denied error?
[11:54:31] <dragonheart> is that error coming from the second server?
[11:54:48] <viyyer> dragonheart, it works for other domains.. still sending mails to same domain is a problem
[11:54:54] <viyyer> dragonheart, Recipient address rejected: User unknown in virtual alias table'
[11:55:10] <viyyer> dragonheart, no the error is coming for this postfix..
[11:55:21] <viyyer> the other server is google apps.
[11:58:14] <dragonheart> sorry haven't done much virual alias stuff so i'm stuck
[11:58:37] <viyyer> dragonheart, thanks for trying
[12:13:28] *** diqpib has joined #postfix
[12:32:46] *** rour has joined #postfix
[12:43:56] *** Tykling has joined #postfix
[12:48:39] *** havvg has joined #postfix
[12:56:23] *** PhilKC has joined #Postfix
[13:00:01] *** internat1 has quit IRC
[13:06:25] *** Internat has joined #postfix
[13:51:11] *** Knoedel2 has joined #postfix
[13:52:07] <Knoedel2> hi all
[13:58:50] *** dragonheart has quit IRC
[13:59:41] *** dragonheart has joined #postfix
[14:04:45] *** pirho has quit IRC
[14:07:23] *** pirho has joined #postfix
[14:21:13] *** dragonheart has quit IRC
[14:23:04] *** Rouri has joined #postfix
[14:24:35] *** Zeit|awy_ has joined #postfix
[14:30:39] *** Zeit|awy has quit IRC
[14:32:43] *** rour has quit IRC
[14:38:18] *** sophokles has quit IRC
[14:39:10] *** sophokles has joined #postfix
[14:45:33] <Knoedel2> sysmonk are u around ?
[14:55:59] *** dragonheart has joined #postfix
[15:20:46] <Knoedel2> http://rafb.net/p/UBxTmh16.html -> why postfix not take port 10021 if i send a mail to testmail@domain ?
[15:22:11] <Knoedel2> main.cf: content_filter = smtp:[127.0.0.1]:10020
[15:26:40] *** Haris_ has joined #postfix
[15:26:48] *** Haris_ is now known as Haris
[15:28:31] <Knoedel2> nobody ?
[15:28:42] <Haris> Knoedel2: What's up?
[15:30:05] *** jonez has quit IRC
[15:30:49] 
[15:31:30] <Knoedel2> i'm trying to work with restriction_classes to define user1 has greylisting, user2 bypass amavis
[15:31:45] <Knoedel2> i see that postfix parse my no_filter file
[15:32:29] <Knoedel2> but if i sent a mail from testmail@domain he should transfer it to port 10021 and not to 10024 (amavis), i cant understand why he wont
[15:34:27] <Haris> what pastebin?
[15:34:33] <Haris> I just got here
[15:34:42] <Knoedel2> (15:20) <Knoedel2> http://rafb.net/p/UBxTmh16.html -> why postfix not take port 10021 if i send a mail to testmail@domain ?
[15:34:42] <Knoedel2> (15:22) <Knoedel2> main.cf: content_filter = smtp:[127.0.0.1]:10020
[15:34:54] <Knoedel2> and log: http://rafb.net/p/Gdjkd370.html
[15:35:20] *** Haris1 has joined #postfix
[15:41:37] *** spion has quit IRC
[15:41:41] *** spion has joined #postfix
[15:42:59] *** spion has quit IRC
[15:43:24] *** havvg has quit IRC
[15:46:41] *** spy6 has joined #postfix
[15:49:56] *** pitakill has joined #postfix
[15:52:03] <Knoedel2> Haris1 any idea ?
[16:12:37] <Knoedel2> hmpf
[16:20:17] *** jonez has joined #postfix
[16:20:23] <Haris> no idea
[16:21:35] <Knoedel2> is maybe my regexp wrong ?
[16:23:54] *** pirho has quit IRC
[16:24:51] *** spy6 is now known as spion
[16:25:18] *** spion has quit IRC
[16:25:22] *** spy6 has joined #postfix
[16:27:52] <Haris> check with postmap
[16:28:30] *** Haris1 has quit IRC
[16:30:19] *** mark-use has joined #postfix
[16:36:51] *** spy6 is now known as spion
[16:40:18] *** tombar has joined #postfix
[16:45:54] *** hparker has joined #postfix
[16:54:46] <Knoedel2> also not :(
[16:55:10] *** tom_wifi has joined #postfix
[16:56:47] *** jonez has quit IRC
[17:01:23] *** mark-use has quit IRC
[17:13:55] *** viyyer has quit IRC
[17:15:04] *** jonez has joined #postfix
[17:25:57] <styx-tdo> q: my apache sends spam via dumb CGIs - can o prevent mail from non-FQDN senders that are inserted by postdrop (via CLI sendmail)? Currently postfix adds the FQDN of the webhost - and my main mailserver tries to bounce (which fails)
[17:26:14] <styx-tdo> (CGI in this case are perl and php scripts=
[17:26:32] <Haris> guys, someone told me about running another process via master.cf on port 587 for smtp auth
[17:26:35] <Haris> how was that?
[17:26:42] <styx-tdo> (i hate badly written php scrips :/ - but they are out of my control)
[17:27:01] <styx-tdo> Haris: that
[17:27:06] <styx-tdo> 'that's submission port
[17:27:12] <styx-tdo> RFC2476
[17:27:48] <styx-tdo> Haris in master.cf:
[17:27:50] <styx-tdo> submission inet n      -       -       -       -       smtpd
[17:27:51] <styx-tdo>         -o smtpd_etrn_restrictions=reject
[17:27:51] <styx-tdo>         -o smtpd_client_restrictions=permit_sasl_authenticated,reject
[17:30:13] <styx-tdo> anyone an idea about my CGI  problem?
[17:30:39] <styx-tdo> my issue is that the postdrop process doesn't obey _any_ smtpd_ restrictions
[17:34:29] *** jonez has quit IRC
[17:36:04] <rob0> !authorized_submit_users
[17:36:05] <knoba> rob0: Error: "authorized_submit_users" is not a valid command.
[17:36:41] *** Haris has quit IRC
[17:36:42] <rob0> postconf.5.html#authorized_submit_users
[17:37:12] <rob0> also, make some threats
[17:37:47] <styx-tdo> yes, no, yes.. erm
[17:38:14] <styx-tdo> problem: the same user may have other scripts that are allowed to send mail
[17:38:24] <styx-tdo> but use a proper sender address
[17:42:20] <rob0> then that's going to get ugly.
[17:43:04] <rob0> It would be easier (and obviously better) to just fix the broken code.
[17:57:05] *** hark has quit IRC
[18:00:48] *** magyar has joined #postfix
[18:07:35] <styx-tdo> on that server, there are >200 webspaces
[18:07:39] <styx-tdo> i cannot do that
[18:10:05] *** xpoint has joined #postfix
[18:15:30] *** rikkyc is now known as rikkyc|a
[18:16:17] *** Haris has joined #postfix
[18:20:00] *** ribasushi_ has joined #postfix
[18:25:39] *** PaSzCzUs has quit IRC
[18:26:42] *** hparker has quit IRC
[18:28:13] *** PaSzCzUs has joined #postfix
[18:30:48] *** sophokles has quit IRC
[18:34:57] *** zoid_ has joined #postfix
[18:35:08] *** ribasushi has quit IRC
[18:38:39] <zoid_> hi
[18:38:57] <zoid_> i'm having troubles setting up virtual alias domain, using postgres
[18:39:02] <magyar> any news on 800 files?
[18:39:08] <zoid_> here's my postconf -n: http://rafb.net/p/Ll7Za016.html
[18:39:22] <magyar> bahh
[18:39:48] <zoid_> i need to do user1 at domain1 dot com > user1 at domain2 dot com for every user
[18:59:20] *** glad_work has quit IRC
[19:00:11] <styx-tdo> noone an idea with my apache issue? *sigh*
[19:03:44] *** amrit|zzz is now known as amrit
[19:05:19] <shasta> !append_at_myorigin
[19:05:20] <knoba> shasta: "append_at_myorigin" : a configuration parameter in the main.cf: Append the string "@$myorigin" to mail addresses without domain information.
[19:10:23] *** livid has quit IRC
[19:12:30] *** Luke-Pacman has quit IRC
[19:13:09] <styx-tdo> yes, that just makes it not append  my domain... still creating a bouncestorm...
[19:22:43] <zoid_> how do I map every single user from my domain1.tld  to my domain2.tld?
[19:25:04] *** mark-use has joined #postfix
[19:26:30] <styx-tdo> !virtual_usermap
[19:26:31] <knoba> styx-tdo: Error: "virtual_usermap" is not a valid command.
[19:26:34] <styx-tdo> mist
[19:27:21] <styx-tdo> !virtual_maps
[19:27:22] <knoba> styx-tdo: "virtual_maps" : The virtual_maps postconf(5) parameter has been deprecated since Postfix 2.0. If you're using virtual_maps, you're probably following old, outdated information. See !virtual_alias_maps and !virtual_alias_domains for the replacements. See also !google.
[19:27:41] <styx-tdo> ok zoid_ check virtual_alias_domains
[19:28:57] <zoid_> ok
[19:38:54] *** piksi- has joined #postfix
[19:39:19] <zoid_> sorry, I need some help, I'm using virtual stuff
[19:39:46] <zoid_> witch postgres as backend
[19:41:56] *** pirho has joined #postfix
[19:53:35] <vice-versa> zoid_: I can give you a basic overview of how we achieve 1-to-1 virtual domain aliases using mysql, perhaps you can adapt this to your postgres db
[19:53:56] <zoid_> vice-versa: please :)
[19:54:56] <zoid_> the thing is, i'm using postfixadmin
[19:55:30] <zoid_> and i created the alias theere, then i see a table alias_domain in the db, but postifix is not doing the query
[19:57:28] * vice-versa rolls eyes
[19:58:15] * zoid_ is in shame
[19:58:32] <vice-versa> well I can't help you with your postfixadmin limitations
[19:59:03] <zoid_> i don't mind solving this outside PA
[19:59:51] <zoid_> so, if you give me a clue in how to "hard code" or do the query I will appreciate it  very much
[20:00:06] <vice-versa> is domain aliases supposed to be a feature of postfixadmin?
[20:00:21] <zoid_> yes
[20:00:54] *** knoba has quit IRC
[20:00:59] *** knoba` has joined #postfix
[20:01:38] <zoid_> I think virtual_alias_dolmains is the directive i'm looking for, but don't know how to use it
[20:01:47] *** knoba` has quit IRC
[20:02:21] *** knoba has joined #postfix
[20:02:37] <vice-versa> !knoba
[20:02:53] <zoid_> or recipient_canonical_maps
[20:02:57] <knoba> vice-versa: "knoba" : an informational bot in this channel (see http://workaround.org/f=postfix)
[20:03:09] <vice-versa> !virtual_alias_domains
[20:03:09] <knoba> vice-versa: "virtual_alias_domains" : a configuration parameter in the main.cf: Optional list of names of virtual alias domains, that is, domains for which all addresses are aliased to addresses in other local or remote domains.
[20:04:29] <zoid_> it doesn't work :(
[20:04:36] <vice-versa> hmm, that factoid needs revising
[20:05:10] <vice-versa> it works fine, just not as you think it should ;)
[20:05:32] <zoid_> that's possiblle
[20:05:46] <vice-versa> http://www.postfix.org/postconf.5.html#virtual_alias_domains
[20:07:56] *** pitakill has quit IRC
[20:08:08] <zoid_> maybe the problem is  that the users in the database are stored with the @domain
[20:09:55] <vice-versa> and probably for good reason, most notably for name space separation
[20:13:07] <zoid_> yes
[20:13:41] <vice-versa> anyhow, this is how we do it...
[20:14:13] *** vecsigma has joined #postfix
[20:14:24] <vice-versa> we use a table named domain_alias with two fields, domain and destination
[20:14:33] <vecsigma> anyone know how to fix this (spamassassin?):  spamd[32099]: bayes: cannot open bayes databases /var/spamassassin/bayes/bayes_* R/W: lock failed: File exists
[20:15:24] <zoid_> vice-versa: mine it's called  alias_domain :S
[20:15:53] <vice-versa> a mysql query like so, SELECT email FROM users WHERE email = concat('%u','@',(select destination from domain_alias where '%d' = domain))
[20:16:01] <zoid_> fields are: alias_domain ,target_domain, created,modified, active
[20:16:02] *** ribasushi_ has quit IRC
[20:16:32] <vice-versa> sure
[20:16:54] <vice-versa> is it being utilized in virtual_alias_maps?
[20:18:01] <zoid_> no
[20:18:16] <zoid_> virtual_alias_maps does: SELECT goto FROM alias WHERE address='%s' AND active = true
[20:18:57] *** carl- has joined #postfix
[20:21:30] *** vecsigma has quit IRC
[20:21:50] *** googlah has quit IRC
[20:22:02] <vice-versa> zoid_: like many other postfix parameters, virtual_alias_maps supports multiple mixed table maps
[20:22:44] *** goldfisc1li has quit IRC
[20:22:51] <zoid_> so, i need to somehow, fix that query to get the domain_alias, right?
[20:23:09] <vice-versa> no
[20:23:13] * vice-versa wanders off to feed on some Louisiana style suicide wings
[20:24:25] <zoid_> i'm a little lost
[20:24:55] <Knoedel2> (15:34) <Knoedel2> (15:20) <Knoedel2> http://rafb.net/p/UBxTmh16.html -> why postfix not take port 10021 if i send a mail to testmail@domain ?
[20:24:55] <Knoedel2> (15:34) <Knoedel2> (15:22) <Knoedel2> main.cf: content_filter = smtp:[127.0.0.1]:10020
[20:24:55] <Knoedel2> (15:34) <Knoedel2> and log: http://rafb.net/p/Gdjkd370.html
[20:24:59] <Knoedel2> can someone help ?
[20:28:26] *** googlah has joined #Postfix
[20:32:04] * vice-versa hands zoid_ an *additional* table map
[20:33:36] <zoid_> vice-versa:  virtual_alias_domains?
[20:34:18] * zoid_ thinks in going to mysql
[20:34:38] <vice-versa> virtual_alias_maps
[20:35:43] <zoid_> SELECT goto FROM alias WHERE address='%s' AND active = true
[20:36:02] <zoid_> there should be my domain alias table=?
[20:36:39] * vice-versa licks his fingers
[20:36:40] <vice-versa> no
[20:36:53] <Dominian> is this virutal users?
[20:37:12] <Dominian> er.. virtual
[20:37:14] <Dominian> damn my typing
[20:37:19] <vice-versa> Dominian: 1-to-1 virtual domain aliases
[20:37:22] <zoid_> Dominian: yes, on postges
[20:37:38] <Dominian> dunno about postgres..
[20:37:44] <Dominian> I have a tutorial geared towards sql that does virtual domains.
[20:37:50] <Dominian> may give you a clue at the tables you'll need
[20:38:08] <vice-versa> been there done that
[20:38:10] *** diqpib has quit IRC
[20:39:09] *** hwdyki has joined #postfix
[20:39:25] <Dominian> in summary, alias_maps, domain_maps, mailbox_maps, mailbox_limit_maps, relay_domains_maps.. those are just wahat I named them.. but you get the gist
[20:40:27] *** tom_wifi has quit IRC
[20:41:24] <vice-versa> he already has virtual working, or at least that was my impression, what he is looking for now is a 1-to-1 virtual domain alias for an existing virtual domain
[20:41:30] *** carl- has quit IRC
[20:41:50] <Dominian> oh
[20:42:04] <zoid_> vice-versa: that's right
[20:42:08] <Dominian> so like test1.tld -> test2.tld?
[20:42:16] <zoid_> exactly
[20:42:17] <vice-versa> yup
[20:42:20] <Dominian> er
[20:42:23] <Dominian> just create a catchall?
[20:42:37] <zoid_> no, every single user
[20:43:03] <Dominian> ok.. so create the domain and then alias off everything without creating mailboxes?
[20:43:06] <zoid_> userN at domain1 dot tld > userN at domain2 dot tld for every N ;)
[20:43:27] <hwdyki> is it possible to specify restrictions using 'or' boolean logic? sort of like: (psuedo config) smtpd_recipient_restrictions = permit_users_in_group_A || permit_users_in_group_B
[20:43:31] <vice-versa> right, with existing name space separation
[20:43:56] <Dominian> hwdyki: what are you trying to accomplish?
[20:45:39] <vice-versa> anyway, zoid_, I already gave you the answer, no Rosetta Stone required ;)
[20:45:43] *** deface has joined #postfix
[20:46:47] <zoid_> vice-versa: i know i'm just one little step from it,but frustration is taking over
[20:47:47] <hwdyki> eg. i want to give only users from certain locations access without requiring sasl authentication, but others are to use sasl.
[20:54:14] <vice-versa> zoid_: if postfixadmin is *supposed* to support 1-to-1 virtual domain aliases that's where you should be looking imo
[20:55:44] <vice-versa> like I said I do not use it nor do I advocate its use
[20:57:57] <vice-versa> but to supplement my previous example of how we do 1-to-1 virtual domain aliases...
[20:58:15] <vice-versa> virtual_alias_maps = mysql:/etc/postfix/mysql-virtual.cf, mysql:/etc/postfix/mysql-role-account-aliases.cf mysql:/etc/postfix/mysql-virtual-domain-aliases.cf
[20:59:45] *** hwdyki has left #postfix
[20:59:49] <zoid_> thanks vice-versa
[21:01:03] *** tombar has quit IRC
[21:11:42] *** Juspion has joined #postfix
[21:13:57] *** tombar has joined #postfix
[21:16:38] *** _bugz_ has quit IRC
[21:19:24] *** tombar_ has joined #postfix
[21:21:09] *** tombar_ has quit IRC
[21:22:12] *** tombar_ has joined #postfix
[21:31:46] *** Juspion has quit IRC
[21:34:11] *** tombar has quit IRC
[21:34:35] *** rour has joined #postfix
[21:49:53] *** AcTiVaTe has quit IRC
[21:50:40] *** Rouri has quit IRC
[21:53:00] *** mark-use has quit IRC
[21:53:43] *** mark-use has joined #postfix
[21:53:43] *** seekwill has joined #postfix
[21:54:36] *** _bugz_ has joined #postfix
[22:08:00] *** cheetahw26 has joined #postfix
[22:09:20] <cheetahw26> i want to install postfix and i am kind of confused about the different configurations regarding authentication
[22:09:36] <cheetahw26> right now i am using sendmail, and i authenticate over tls...
[22:10:01] <seekwill> Postfix does TLS
[22:10:12] <cheetahw26> while reading some of the doc on postfix i came across some examples where they installed with support for tls & cyrus-sasl
[22:10:30] <cheetahw26> in what case would someone need or use cyrus-sasl ?
[22:11:05] <cheetahw26> i basically just want to not send my username and password over the internet in plain text... i want it to be encrypted somehow...
[22:11:12] <cheetahw26> is just TLS is the best route ?
[22:11:38] <seekwill> TLS encrpts the connection. SASL is how you authenticate
[22:11:43] <seekwill> (user/pass)
[22:11:58] <cheetahw26> oh i see.. so to login encrypted i would need both
[22:12:15] <seekwill> y
[22:12:15] <higuita> TLS is just enable the encrypt of the SMTP traffic, itss useful for the LOGIN and PLAIN auth methods
[22:12:21] <cheetahw26> i also read postfix supports dovecot sasl... is that better than cyrus ?
[22:12:42] <seekwill> It's better if you use..dovecot... not so useful if you use cyrus...
[22:12:59] <cheetahw26> im currently using dovecot for imap with sendmail anyway... planning on using it with this setup too
[22:13:00] <higuita> as they dont do any encryptation for the password
[22:13:12] <cheetahw26> ok cool...
[22:13:27] <rob0> Sendmail is probably using Cyrus SASL.
[22:14:10] <cheetahw26> not sure.. how would i find out ?
[22:14:11] *** goldfischli has joined #postfix
[22:14:57] <cheetahw26> anyway... thanks for the clarification...
[22:15:39] <cheetahw26> oh... so if i want to include dovecot sasl... should i compile dovecot before postfix.. does it matter ?
[22:18:34] <rob0> Postfix doesn't have to link anything for Dovecot SASL. That's one of several advantages of Dovecot.
[22:19:54] <cheetahw26> nice
[22:20:31] <rob0> Really, the only disadvantages might be the lack of client SASL (you can't auth against a relayhost with Dovecot), and saslauthd(8) can work for things other than email, if desired.
[22:20:42] <rob0> Neither of those is a drawback for me.
[23:04:30] *** seekwill has quit IRC
[23:04:50] *** pickcoder has joined #postfix
[23:07:24] *** pirho has quit IRC
[23:18:03] *** blackflag has joined #postfix
[23:24:00] *** j_s has quit IRC
[23:24:45] *** seekwill has joined #postfix
[23:27:08] *** rour has quit IRC
[23:46:53] *** pickcoder has quit IRC
[23:52:48] *** styx-tdo has quit IRC





top