[00:05:00] *** BuenGenio has quit IRC
[00:05:27] *** BuenGenio has joined #postfix
[00:10:23] *** BuenGenio has quit IRC
[00:10:39] *** BuenGenio has joined #postfix
[00:11:04] *** adnc has quit IRC
[00:20:31] *** BuenGenio has quit IRC
[00:21:21] *** BuenGenio has joined #postfix
[00:23:40] *** TeraHertz has quit IRC
[00:25:54] *** BuenGenio has quit IRC
[00:26:22] *** BuenGenio has joined #postfix
[00:26:45] *** j_s has quit IRC
[00:44:56] *** Tykling has left #postfix
[00:46:33] *** BuenGenio has quit IRC
[00:47:01] *** BuenGenio has joined #postfix
[00:51:53] *** BuenGenio has quit IRC
[00:52:29] *** BuenGenio has joined #postfix
[00:56:03] *** F6F has quit IRC
[01:12:57] *** BuenGenio has quit IRC
[01:13:20] *** BuenGenio has joined #postfix
[01:28:28] *** BuenGenio has quit IRC
[01:28:44] *** BuenGenio has joined #postfix
[01:28:53] * vice-versa hands BuenGenio a good used router
[01:34:19] <jeev> lol
[01:35:41] <hparker> nice... http://blog.vipul.net/2008/08/24/redhat-perl-what-a-tragedy/
[01:38:35] *** BuenGenio has quit IRC
[01:39:03] *** BuenGenio has joined #postfix
[01:39:54] *** Robot101 has joined #postfix
[01:40:19] <Robot101> anyone got any cunning tips to help with http://thread.gmane.org/gmane.mail.postfix.user/187381 ?
[01:43:58] *** BuenGenio has quit IRC
[01:44:28] *** BuenGenio has joined #postfix
[01:54:20] *** BuenGenio has quit IRC
[01:54:39] *** BuenGenio has joined #postfix
[02:04:29] *** BuenGenio has quit IRC
[02:05:01] *** BuenGenio has joined #postfix
[02:08:25] *** BuenGenio has quit IRC
[02:10:36] *** war9407 has quit IRC
[02:18:33] *** nphase_ has joined #postfix
[02:20:01] *** tobi1canobe has quit IRC
[02:20:26] *** tobi1canobe has joined #postfix
[02:21:02] *** alpkaiser has joined #postfix
[02:21:41] <alpkaiser> Good Night all...
[02:22:09] *** alpkaiser has quit IRC
[02:22:23] <vice-versa> O.o
[02:24:00] <vice-versa> unusual behaviour
[02:41:35] *** jetole has joined #postfix
[02:42:13] <jetole> hey guys, I seem to be having an issue with postfix not running the command in mailbox_command and I don't know why
[02:42:21] <jetole> does anyone know what I should look at
[02:43:31] <vice-versa> !obvious
[02:43:32] <knoba> vice-versa: "obvious" : look for obvious signs of trouble, egrep '(warning|error|fatal|panic):' /some/log/file See: !logs factoid if you're unsure of where your mail logs are located
[02:44:33] <jetole> nada, I am using procmail which is set to do maildir and I am getting mail in the traditional mbox
[02:44:38] <jetole> nothing in syslog
[02:44:56] <jetole> oh wait
[02:45:03] <jetole> it says delieverd to command
[02:45:07] *** pirho has quit IRC
[02:45:48] <vice-versa> what's your procmailrc look like?
[02:47:56] *** albech_ has quit IRC
[02:58:09] *** virtualroot has joined #postfix
[03:05:09] *** virtualroot has left #postfix
[03:19:08] *** jeev is now known as tomleykus
[03:20:33] *** tomleykus is now known as stewie_griffin
[03:20:46] *** stewie_griffin is now known as jeev
[03:46:00] <lunaphyte> like a big fat chick, with clothes that are too small.
[03:46:23] * hparker thought it'd look like text
[03:53:15] *** mavrick61 has quit IRC
[03:54:20] *** mavrick61 has joined #postfix
[04:23:21] *** elfMobile has quit IRC
[04:30:11] *** efi has joined #postfix
[04:30:19] <efi> hi
[04:30:43] <efi> anyone can helpme with postfix?
[04:31:20] <efi> i cannot relay mails to external server
[04:31:52] <efi> and i don't know if is a problem with config or with server
[04:32:01] <dragonheart> what do the logs say?
[04:32:12] <efi> sorry for me english, i'm spanish
[04:32:26] *** razym is now known as Guest19799
[04:32:56] *** Guest19799 is now known as razym
[04:33:14] <dragonheart> your english is readably  by me
[04:33:19] <dragonheart> readable
[04:33:26] <efi> error while reciving the intial server greeting
[04:33:35] <efi> thanks
[04:33:45] <efi> but, in mail.log
[04:34:02] <efi> it's says, relay=none
[04:34:12] <efi> i try to relay to yahoo
[04:34:46] <efi> in main.cf, i have relayhost = [smtp.correo.yahoo.es]:645
[04:35:09] <efi> if i use normal port (25), the host don't respond
[04:35:10] <dragonheart> oh - you poor thing. are you using some authentication to relay to yahoo?
[04:35:35] <efi> i have configured sasldb
[04:35:44] <dragonheart> 645 is an odd port. 465 is used for SSL transported smtp
[04:36:14] <rob0> relay=none ?
[04:36:18] <aut> Hi, I'm getting the following error in my logs 5 times in the same second.  all of the errors refer to the same pid and message id, but each one shows a different destination mx server.  does postfix try parallel connections under the same pid?  postfix/smtp[17616]: BA414175C1B: host c.mx.mail.yahoo.com[216.39.53.3] refused to talk to me: 421 Message from (x.x.x.x) temporarily deferred - 4.16.50. Please refer to http://help.yahoo.com/
[04:36:18] <aut> help/us/mail/defer/defer-06.html
[04:36:42] <rob0> !yahoo
[04:36:43] <knoba> rob0: Error: "yahoo" is not a valid command.
[04:36:55] <aut> I'm afraid that yahoo is continuing to block me because of the 5 attempts every time a 421 is encountered
[04:37:21] <efi> if i try with telnet, when sen ehlo. connection closed by foreing host
[04:38:12] <rob0> !learn yahoo as Yahoo and other providers throttle inbound connections in an attempt to reduce spam. If you're a big operator, talk to them about whitelisting. If not, just wait for the retry, your mail eventually goes through.
[04:38:37] <aut> rob0: do you know the answer to my question, though? it's unrelated to yahoo
[04:39:24] <efi> rob0 --> yes "Sep 14 04:33:14 SuperServer postfix/error[2753]: 9572A6478185: to=<xxx at yahoo dot es>, orig_to=<root>, relay=none, delay=91985, delays=91965/21/0/0, dsn=4.4.2, status=deferred (delivery temporarily suspended: lost connection with smtp.correo.yahoo.es[217.12.10.145] while receiving the initial server greeting)
[04:39:29] <aut> i consistently see 5 send attempts to 5 different mx servers logged with the exact same timestamp (and they all refer to the same message)
[04:39:31] <efi> sorry, for the paste
[04:40:22] <efi> my local mailing, run great
[04:41:08] <efi> i searched in google, but i don't find anything that helpme
[04:41:15] <rob0> Why is mail to "root" being rewritten to a yahoo.es destination? And what's this about port 645? Who told you to use 645?
[04:41:49] <rob0> also, the "error" transport? Are you using some broken distribution of Postfix from a third party?
[04:42:35] <efi> sorry, i used 465 don't 645
[04:42:48] <efi> i use gentoo
[04:43:00] <rob0> Postfix doesn't have a SMTPS client. See here for a workaround:
[04:43:05] <rob0> !tls_readme
[04:43:06] <knoba> rob0: "tls_readme" : http://www.postfix.org/TLS_README.html : Transport Layer Security (TLS/SSL) features in Postfix
[04:43:08] <efi> i have some mails in qued
[04:45:54] <sahil> efi: and?
[04:46:23] <rob0> and Postfix won't natively send mail via smtps.
[04:51:05] <efi> rob0: i cannot do anything?
[04:53:15] <rob0> Sure you can, see http://www.postfix.org/TLS_README.html for a workaround, which uses stunnel(1) for SSL.
[04:53:49] *** manofwar has joined #postfix
[04:59:10] <aut> why would postfix deliver SO much faster with smtp_destination_recipient_limit = 1  instead of = 5
[04:59:23] <aut> while smtp_destination_concurrency_limit = 2
[04:59:47] <aut> is it because initial_destination_concurrency = 2?
[05:02:32] *** pitakill has joined #postfix
[05:02:51] <rob0> The question posed was concerning Yahoo's throttling policy. If that wasn't the actual question, perhaps you should clarify.
[05:03:15] <aut> i was asking why postfix appears to be attempting 5x parallel delivery of the same message
[05:03:21] <aut> unless the log timestamps are not accurate
[05:03:40] *** pitakill has quit IRC
[05:03:45] <aut> i somehow doubt that postfix is able to sequentially establish 5 separate connections to yahoo in the same second
[05:05:00] <aut> my second question is different, and may be related to yahoo's policy in that sending more than one message in a single session may cause delayed responses from yahoo... not sure though
[05:05:40] <rob0> Perhaps if you did a pastebin with logs, an answer might be possible.
[05:08:53] <aut> fair enough... http://pastebin.com/m7b0e091a
[05:09:22] <efi> rob0, thanks i'm triying it
[05:09:27] *** hparker has quit IRC
[05:10:25] <efi> but in the log, it said relay=none
[05:11:00] <efi> i don't understand
[05:12:16] <rob0> aut, those are all yahoo, looks like 7 different MX hosts with priority 1.
[05:12:34] <aut> but how did it hit all of them within 1 second?
[05:12:37] *** pitakill has joined #postfix
[05:12:37] <aut> from the same pid
[05:13:51] <rob0> not sure what you're asking
[05:14:07] <rob0> 03:03 < aut> i was asking why postfix appears to be attempting 5x parallel delivery of the same message
[05:14:19] <rob0> they're not parallel, they're sequential
[05:14:40] <rob0> try one, get deferred, keep going
[05:14:55] <aut> ok, that's what i thought at first... just didnt think it could do it that fast
[05:15:26] <aut> what's strange is that when i set the smtp_destination_recipient_limit to 1, my messages go through wayyy faster than with a setting of 5
[05:15:35] <aut> but i guess that's yahoo's fault
[05:15:58] <aut> could you tell me what exactly is initial_destination_concurrency?
[05:16:00] <rob0> This is a FAQ on the mailing list since Yahoo started throttling.
[05:16:08] *** goldfischli has joined #postfix
[05:16:08] <aut> i dont understand the documentation about it
[05:16:22] <sahil> sigh
[05:16:23] <efi> aut: you deliver messagues to yahoo?
[05:16:30] <aut> efi: i try to!
[05:16:36] <rob0> No, I'd have to look it up myself, I never mess with those settings.
[05:16:52] <rob0> (most sites should not!)
[05:16:54] <sahil> yahoo sucks; they do this to almost everyone; just let mail queue and it will eventually get delivered unless you or your users are doing something particularly nefarious.
[05:17:18] <aut> rob0: yeah, i dont want to.. im just concerned that the defaults might be too generous for yahoo
[05:17:27] <sahil> search mailing list archives (and www.postfix.org) for some other measures to "help" with this situation but it is really a waiting game with the yahoo d-bags.
[05:17:31] <aut> seems the lower the settings, the better my throughput
[05:17:42] <efi> anyone tried deliver to gmail?
[05:18:18] <sahil> efi: yes.
[05:18:27] <rob0> Generally the best approach to yahoo is to forget about it, it goes through eventually.
[05:23:02] <efi> shail: gmail use tls too
[05:27:31] <rob0> Postfix smtp(8) client has no problem with TLS. There are numerous howto's regarding relay through gmail, also see:
[05:27:34] <rob0> !sasl
[05:27:35] <knoba> rob0: "sasl" : SASL is 'Simple Authentication and Security Layer', necessary for SMTP AUTH, and provided to Postfix by addin software. Cyrus SASL and/or Dovecot IMAP/POP3 can provide SASL. See http://www.postfix.org/SASL_README.html for details.
[05:27:43] <rob0> !client_sasl
[05:27:44] <knoba> rob0: Error: "client_sasl" is not a valid command.
[05:28:16] <rob0> There's a #client_sasl anchor in that
[05:32:48] *** goldfisc1li has quit IRC
[06:06:16] *** manofwar has quit IRC
[06:33:57] <googlah> sasl2bin, or should I stick to Dovecot's SASL?
[06:33:59] *** chadmaynard has joined #postfix
[06:34:53] *** growltiger_ has joined #postfix
[06:38:27] <vice-versa> sasl2bin?
[06:39:36] <googlah> saslauthd, think it's provided by sasl2bin-package.
[06:39:58] <vice-versa> ahh, cyrus-sasl
[06:40:23] <vice-versa> do you need client-side sasl support?
[06:41:26] <googlah> got it working now with cyrus-sasl, just thought which one provided best functionality. doesn't really matter.
[06:42:13] <vice-versa> dovecot doesn't have client sasl support with postfix iirc
[06:42:20] <vice-versa> !saslclient
[06:42:20] <knoba> vice-versa: "saslclient" : See http://www.postfix.org/SASL_README.html#client_sasl when you need client-side SASL authentication to deliver mail to another server
[06:43:25] <googlah> ah, so cyrus-sasl have more features?
[06:44:34] *** Nockian has quit IRC
[06:44:57] <vice-versa> I've yet to use dovecot to any real extent myself, so I can't really comment as how it compares to cyrus
[06:45:59] <vice-versa> I've seen other here with experience with both claim dovecot is easier to work with
[06:46:06] <vice-versa> *others
[06:47:19] <googlah> No, me neither.. just got authing working by SASL. yes, but as long Postfix can relay mails, without having to specify mynetworks =, it's good :)
[06:47:50] <googlah> which I think is the purpose of sasl..
[06:48:52] <vice-versa> yes it's used for authentication, however it's not limited to smtp in anyway
[06:50:39] *** growltiger has quit IRC
[06:50:59] <vice-versa> if you have roaming users requiring relay access from unknown and untrusted networks, sasl with submission service is the best choice
[06:52:39] <googlah> submission is like smtp, but on port 587?
[06:52:49] <vice-versa> yes
[06:53:20] <googlah> because, I have one user.. whereas ISP only accept him to connect to their ISP's smtp.
[06:53:26] * vice-versa tries to remember the url cpm is constantly using for this
[06:53:49] <vice-versa> googlah: exactly
[06:54:00] <vice-versa> [16:25:40] <cpm> http://www.maawg.org/port25        Read it, Learn It, Live It.
[06:54:18] <googlah> turning submission on, and let him connect through 587, by-passes this? :p
[06:54:29] <vice-versa> yes
[06:55:16] <vice-versa> http://tools.ietf.org/html/rfc4409
[06:55:25] <googlah> simply a gate? then, why not enable. lol
[06:55:50] <vice-versa> not sure I get what you mean
[06:57:25] <googlah> Ah, well, you agreed on the other parts, so I think we both agrees.
[06:58:05] <vice-versa> if it makes you happy ;)
[06:59:37] *** Nockian has joined #postfix
[07:00:16] <googlah> yeye ;P learned something new today, hehe
[07:01:03] <vice-versa> what was that?
[07:01:36] <vice-versa> dovecot's lack of client-side sasl support with postfix?
[07:02:46] <googlah> I guess so. if I'm right, submission with sasl, is only possible with cyrus-sasl?
[07:03:12] <rob0> postconf -A
[07:03:15] <vice-versa> nope, will work with dovecot also
[07:03:21] <googlah> Just tried relay on port 587. worked great
[07:03:45] <vice-versa> hey rob0
[07:04:11] <googlah> mornin
[07:04:37] <vice-versa> you buying the coffee googlah?
[07:05:31] <googlah> yep, from own account, lol
[07:06:07] <googlah> morning on your side, vice-versa?
[07:06:22] <vice-versa> 2:06 am
[07:06:45] <vice-versa> ADT
[07:06:50] <googlah> gosh
[07:07:01] <vice-versa> and you?
[07:07:09] <googlah> 7.07am
[07:07:27] <googlah> :)
[07:07:56] <vice-versa> Sweden?
[07:07:59] *** chadmaynard has quit IRC
[07:08:14] <googlah> right
[07:08:56] <googlah> could have been more south.. but not. you are.. .us, .ca?
[07:09:18] <vice-versa> Halifax, NS Canada
[07:10:13] <googlah> nice thing. :)
[07:11:03] <vice-versa> if that sounds similar to you, it's where the Swissair flight 111 disaster occured
[07:11:20] <vice-versa> s/similar/familiar/
[07:13:05] <vice-versa> yeah, hard to believe that was 10 years ago now
[07:13:11] <vice-versa> http://en.wikipedia.org/wiki/Swissair_Flight_111
[07:13:34] <vice-versa> fuck I'm aging fast
[07:15:44] <googlah> Hehe, we all do. not a fun story though.. what to tell about sweden, hmm
[07:16:18] <googlah> We're quite hot in ice-hockey, or at least were ;P
[07:16:19] <vice-versa> ahh, nm me, brain fart
[07:18:14] <googlah> ye
[07:19:41] <vice-versa> no coffee, so I'll blame it on you
[07:20:57] <googlah> yeah.. just having a few cups. getting fall in Canada, btw?
[07:22:43] *** pigeon has joined #postfix
[07:23:05] *** EmAnOn has joined #postfix
[07:24:37] <vice-versa> googlah: yup, just starting
[07:25:14] <vice-versa> 14?C tonight
[07:29:40] <googlah> It's here as well.
[07:34:18] <googlah> Thanks anyhow, for pointing out to start submission. In that way, I can let one of my user, to use my SMTP, instead of his ISP's one (which he is forced to use)
[07:34:38] <vice-versa> you're welcome
[07:35:34] <pigeon> hi all, a question with postfix and spamassassin. i've set it up using the -o content_filter, and it pipes to spamc -u ${recipient} -e /usr/sbin/sendmail... etc. But the problem is when an e-mail has multiple recipients that tends to break. is there way around that?
[07:37:37] <vice-versa> define break
[07:39:19] <pigeon> from what i see, ${recipient} will contain multiple ones, seperated by spaces, so the command line becomes wrong.
[07:44:46] <vice-versa> I don't use spamassassin myself, but I would think it has something to do with how you implemented it
[07:45:14] *** EmAnOn has quit IRC
[07:45:27] <pigeon> hmm ok, i was pretty much following http://wiki.apache.org/spamassassin/IntegratedSpamdInPostfix
[07:46:36] <vice-versa> dunno, most here use amavis or amavis-new to have spamassassin and clamav filter mail
[07:50:07] *** skor_ has quit IRC
[07:50:33] <pigeon> ok
[07:52:45] *** martianixor has joined #postfix
[07:55:21] *** proppen has joined #postfix
[07:57:50] *** googlah is now known as googlah2
[07:58:19] *** googlah2 is now known as googlah
[08:11:41] *** SRobinson has joined #postfix
[08:24:22] *** rsk_ is now known as rsk
[08:28:39] *** SRobinson has quit IRC
[08:28:53] *** Srobinson has joined #postfix
[08:33:40] *** githogori has joined #postfix
[08:44:04] *** Tykling has joined #postfix
[08:54:56] *** j_s has joined #postfix
[08:57:18] *** seekwill has quit IRC
[08:59:09] *** pitakill has quit IRC
[09:15:38] *** martianixor has quit IRC
[09:25:43] *** tstaerk has joined #postfix
[09:25:57] <tstaerk> hi, how can I find out what messages my postfix has sent?
[09:26:15] <vice-versa> !logs
[09:26:16] <knoba> vice-versa: "logs" : by default, postfix logs to the mail facility of syslog. Something like grep -i `postconf -h syslog_facility` /etc/syslog.conf or grep -rl `postconf -h syslog_name` /var/log/* should tell you where logs are going.
[09:26:35] <vice-versa> !pflogsumm
[09:26:36] <knoba> vice-versa: "pflogsumm" : a perl script to analyse your mail log file and generate nice reports. See: http://jimsun.linxnet.com/postfix_contrib.html (metalog users see the !mpflogsumm factoid)
[09:27:54] <tstaerk> thanks
[09:28:02] <vice-versa> yw
[09:30:31] *** Severed_Head_Of_ has joined #postfix
[09:32:24] *** Srobinson has quit IRC
[09:33:35] *** Zblakany has joined #postfix
[09:34:21] <sahil> postfix-logwatch > pflogsumm imho. :P
[09:43:56] *** F6F has joined #postfix
[09:47:28] *** growltiger_ has quit IRC
[09:56:19] *** k-man_ has joined #postfix
[09:56:56] *** war9407 has joined #postfix
[10:14:01] *** githogori has quit IRC
[10:15:09] *** madrescher has joined #postfix
[10:20:20] *** deftunix has joined #postfix
[10:27:00] *** shoonya has quit IRC
[10:32:51] *** Zeit|awy_ has joined #postfix
[10:40:17] *** Zeit|awy has quit IRC
[10:43:33] *** deftunix_ has joined #postfix
[10:45:10] *** amrit is now known as amrit|zzz
[10:45:30] *** deftunix has quit IRC
[10:55:15] *** Thorn has joined #postfix
[10:58:44] <Lukemob> hi
[10:59:11] <Lukemob> is that a case of postfix, that in webmail interface I will put mail at domain dot com instead of just mail?
[11:00:43] <googlah> It is probably in your POP3/IMAP-server-configuration
[11:02:27] *** keffer has quit IRC
[11:03:26] <Lukemob> i have courier pop3
[11:20:03] <googlah> What is it you are trying to do?
[11:22:35] <Lukemob> well
[11:22:48] <Lukemob> I'm using squirrelmail user interface
[11:22:53] <Lukemob> but
[11:23:03] <Lukemob> if I add an email like
[11:23:08] <Lukemob> me at domain dot com
[11:23:20] <Lukemob> I use only "me" while logging in to an email
[11:23:34] <Lukemob> I would like to use "me at domain dot com" instead of "me"
[11:23:37] <Signum> Lukemob: depends on how your imap server is configured.
[11:24:58] <Lukemob> aha
[11:25:09] <Lukemob> do you know, what exactly I should look for?
[11:27:12] *** carl- has joined #postfix
[11:36:56] <Signum> Lukemob: yes, the configuration of your imap server. the authentication data (username/password) that you use in your imap client is the same you are supposed to use in squirrelmail.
[11:37:01] <googlah> when you use "me" and log in, squirrelmail then sends a email as me@yourdomain, you have specified in /etc/mailname.
[11:37:06] <Signum> Lukemob: if in doubt ask the administrator of your imap server.
[11:37:38] <googlah> You can specify whatever you like to send as, in Squirrelmail User Preferences.
[11:38:29] <Lukemob> googlah, yes, but i want to login as "me at domain dot com" - not only "me"
[11:38:36] <Lukemob> Signum, I'm an administrator
[11:39:08] <googlah> Lukemob: I understand. Well, if there is any Courier-channel, I think the question is better there.
[11:39:20] <Lukemob> ok
[11:39:40] <googlah> Because it's the courier, which handles the login process. :)
[11:40:22] <Lukemob> ah aright thhanks :)
[11:40:37] <googlah> np dude
[11:46:42] *** tstaerk has left #postfix
[11:47:03] *** carl- has quit IRC
[11:47:45] *** hever has joined #postfix
[11:58:43] *** carl- has joined #postfix
[12:00:19] *** BuenGenio has joined #postfix
[12:00:29] <BuenGenio> hello!
[12:01:06] *** Fallenou has joined #postfix
[12:01:43] <BuenGenio> anyone getting bored?
[12:02:17] *** Robot101 has left #postfix
[12:38:54] *** devdas has joined #postfix
[12:42:59] *** sv-- has quit IRC
[13:09:47] *** pirho has joined #postfix
[13:12:14] *** pirho has quit IRC
[13:13:00] *** pirho has joined #postfix
[13:19:22] *** Knoedel2 has joined #postfix
[13:23:56] *** denis has joined #postfix
[13:29:50] *** devdas has quit IRC
[13:37:06] *** mattx814 has quit IRC
[13:47:06] *** Thorn_ has joined #postfix
[13:48:57] *** DanGer has joined #postfix
[13:49:38] <DanGer> hello, how do I test whether check_client_access actually respect it's content?
[13:55:08] *** tobi1canobe has left #postfix
[13:55:38] <DanGer> because I have added 92.240.234.116  FILTER smtp:[92.240.234.125]:10025 to my client_access, but whenever I get an email from 92.240.234.116 it still goes through amavisd
[13:59:29] *** AcTiVaTe has quit IRC
[14:10:40] *** pulsar has quit IRC
[14:10:45] *** pulsar has joined #postfix
[14:13:14] *** Thorn has quit IRC
[14:19:51] *** rimad has joined #postfix
[14:25:30] *** xnixan has quit IRC
[14:26:36] <rimad> is anyone here using dkfilter
[14:39:53] *** ries has joined #postfix
[14:40:16] <ries> hey guys... I have a OT question... if you setup mail services on a domain... are you obligated to have a postmaster mail address?
[14:46:50] <Knoedel2> DanGer you need to set check_recipient_access
[14:46:56] <Knoedel2> and not check_client_access
[14:47:11] *** Thorn_ is now known as Thorn
[14:48:06] <Knoedel2> postmaster at domain dot com               FILTER amavis:[127.0.0.1]:10025
[14:48:45] *** dh__ has joined #postfix
[14:49:44] <DanGer> Knoedel2: why recipient?
[14:50:34] *** dh has quit IRC
[14:50:38] *** dh__ is now known as dh
[14:51:02] <Knoedel2> i have also tryed with client and he reads only the first value and not the FILTER once
[14:51:02] <DanGer> Knoedel2: do you have that in smtpd_client_restrictions?
[14:51:36] <Knoedel2> smtpd_recipient_restrictions =
[14:51:40] <Knoedel2> i have t there
[14:52:14] <Knoedel2> with client_access i'm cheking only CIDR files
[14:52:43] *** Gee has joined #postfix
[14:52:53] <Gee> ep 14 04:49:04 mercure postfix/trivial-rewrite[6830]: warning: do not list domain peace-node.net in BOTH mydestination and virtual_alias_domains
[14:52:53] <Gee> Sep 14 04:49:04 mercure postfix/trivial-rewrite[6830]: warning: do not list domain peace-node.net in BOTH mydestination and virtual_mailbox_domains
[14:52:58] <Gee> how I may fix it?
[14:53:42] <Knoedel2> Gee do you use peace-node.net on this server as local or do you relay ?
[14:54:08] <Knoedel2> cause you have currently this domain in mydestination and in virtual*
[14:54:16] *** xnixan has joined #postfix
[14:54:20] <Knoedel2> you need to decide where to use
[14:54:32] <Knoedel2> if its local use in mydestination
[14:55:27] <Gee> knoba, I use this domaine for pop/smtp, it not my primary domain on the box, When I sent mail to gloweb at gloweb dot ca work fine, when I sent to snewp at peace-node dot net i got this error, my ldap login: snewp.peace-node
[14:56:11] <Knoedel2> then remove this domain from mydestination
[14:56:20] <Knoedel2> and reload postfix
[14:56:43] <Knoedel2> DanGer is it workin ?
[14:57:14] *** carl- has quit IRC
[14:58:08] <Gee> keanne
[14:58:12] <Gee> Sep 14 04:54:47 mercure postfix/smtpd[6973]: NOQUEUE: reject: RCPT from nf-out-0910.google.com[64.233.182.190]: 550 5.1.1 <snewp at peace-node dot net>: Recipient address rejected: User unknown in virtual alias table; from=<jpaulp at gmail dot com> to=<snewp at peace-node dot net> proto=ESMTP helo=<nf-out-0910.google.com>
[14:58:16] <Gee> now it the new error
[14:58:31] *** Roman123 has joined #postfix
[14:59:00] *** Roman123 has joined #postfix
[14:59:12] <Knoedel2> patsebin postconf -n
[15:00:01] *** Roman123 has left #postfix
[15:01:21] <Gee> keanne http://pastebin.com/m3f323242
[15:03:53] <Knoedel2> virtual_alias_domains and virtual_mailbox_domains
[15:03:54] <Knoedel2> showme
[15:04:50] <Gee> hum, i dont have those file
[15:05:30] <impulze> those are postfix settings
[15:06:07] <Gee> I dont have it in main.cf
[15:06:21] <Knoedel2> hm weird that he shows you both in mydestination and virtual*
[15:06:21] *** sebjo has joined #postfix
[15:06:53] *** Fallenou has quit IRC
[15:07:32] <sebjo> hi. this might be a dumb newbie question. i am sending out a newsletter to approx 1000 recipients and it takes > 5 mins. is there any easy way to speed up this process?
[15:07:58] <Knoedel2> Gee: you have it set:
[15:07:58] <Knoedel2> virtual_alias_maps = hash:/etc/postfix/virtual
[15:07:58] <Knoedel2> virtual_mailbox_domains = peace-node.net
[15:08:12] <Knoedel2> line 22/23
[15:09:48] <Gee> oh yeh, heh sorry abit tired, I added it yesterdays before go sleep, and not working
[15:10:39] <Knoedel2> then comment both out
[15:10:47] <Knoedel2> and try to set both domains in mydestination
[15:11:32] <sebjo> any1 who has any ideas on how to speed up the mailing? all input is appreciated
[15:12:52] <Knoedel2> sebjo there are many rate limiting options
[15:14:30] <Gee> keanne, I have have any error right now, but When i try to get the mail from my pop, no new message
[15:15:03] <sebjo> knoedel2: okey, i'm all ears
[15:15:52] <Knoedel2> sebjo: http://www.postfix.org/anvil.8.html
[15:16:12] <Knoedel2> and http://www.postfix.org/TUNING_README.html
[15:18:31] <Knoedel2> Gee show me /etc/postfix/virtual
[15:19:19] <Knoedel2> lias_database = hash:/etc/aliases an a is missing ^^
[15:21:12] <sebjo> knoedel2: ok, i am not sure that i understand exactly what anvil is and how it would help me.
[15:23:18] <Knoedel2> !default_destination_concurrency_limit
[15:23:18] <knoba> Knoedel2: "default_destination_concurrency_limit" : a configuration parameter in the main.cf: The default maximal number of parallel deliveries to the same destination. This is the default limit for delivery via the lmtp(8), pipe(8), smtp(8) and virtual(8) delivery agents.
[15:23:44] <Gee> keanne http://pastebin.ca/1202514
[15:25:25] <Knoedel2> sebjo try to set this option higher: default_destination_recipient_limit (default is 50)
[15:25:31] <Knoedel2> try to set it too 100
[15:25:48] <Knoedel2> it should then take 2,5 minutes etc. ...
[15:27:05] *** carl- has joined #postfix
[15:27:08] <Knoedel2> Gee for what is line 27 ?
[15:27:29] <Knoedel2> !virtual_alias_maps
[15:27:30] <knoba> Knoedel2: "virtual_alias_maps" : a configuration parameter in the main.cf: Optional lookup tables that alias specific mail addresses or domains to other local or remote address. The table format and lookups are documented in virtual(5).
[15:30:26] <Knoedel2> Gee: http://www.postfix.org/VIRTUAL_README.html#forwarding
[15:31:29] *** nphase_ has quit IRC
[15:32:07] *** cilly has joined #postfix
[15:33:41] *** devdas has joined #postfix
[15:34:02] <Gee> keanne, I setup my mail server with virtuadmin setup script, So I add my domain in virtual interface, and sould work
[15:34:10] <Gee> and it work for the main domain
[15:34:13] <Gee> but other not working
[15:34:15] <Knoedel2> NEVER list a virtual alias domain name as a mydestination domain!
[15:34:59] *** whatever__ has joined #postfix
[15:35:58] <Knoedel2> have you made a postmap on virtual_alias && reload ?
[15:39:08] <Gee> yep
[15:39:32] <Knoedel2> then watch again over virtual_readme
[15:47:39] <sebjo> knoedel2: default_destination_concurrency_limit only applies to smtp ? at the moment i'm using php's in-built mail command, which (i guess) is my first and main mistake?
[15:50:22] <Knoedel2> is it using /usr/sbin/sendmail ?
[15:50:27] *** whatever__ has quit IRC
[15:53:44] *** Haris has quit IRC
[15:54:31] <sebjo> knoedel2: yes
[15:57:02] *** denis has quit IRC
[16:02:26] *** c00l2sv has quit IRC
[16:11:46] *** deftunix_ has quit IRC
[16:29:37] *** cilly has quit IRC
[16:31:11] *** Gee has quit IRC
[16:32:44] *** LeeBee has joined #postfix
[16:33:48] <LeeBee> Greetings.... If anyone is here, I'm having a problem with sending email. It appears to send, but never reaches its destination.
[16:34:19] *** xpoint_dell has joined #postfix
[16:34:47] <devdas> LeeBee: logs?
[16:35:02] <LeeBee> ????
[16:35:07] <vice-versa> all destinations or just a select few. what do your logs say
[16:35:09] <devdas> !logs
[16:35:10] <knoba> devdas: "logs" : by default, postfix logs to the mail facility of syslog. Something like grep -i `postconf -h syslog_facility` /etc/syslog.conf or grep -rl `postconf -h syslog_name` /var/log/* should tell you where logs are going.
[16:35:25] <LeeBee> ah..... sorry.... noob here.... lemme check
[16:37:09] <LeeBee> again... i'm a noob.  I'm running webmin, and do not see any logs.  It also might be a problem that the sendmail server is still installed. Could that be it?
[16:37:30] <devdas> LeeBee: we won't know until we see the logs
[16:37:50] <LeeBee> very cool... where do i find the logs?
[16:38:42] <devdas> !logs
[16:38:43] <knoba> devdas: "logs" : by default, postfix logs to the mail facility of syslog. Something like grep -i `postconf -h syslog_facility` /etc/syslog.conf or grep -rl `postconf -h syslog_name` /var/log/* should tell you where logs are going.
[16:38:53] <devdas> Read
[16:40:32] <LeeBee> thank you. I will try to learn me a lil sumthin, and come back later. Thanks again.
[16:40:57] *** c00l2sv has joined #postfix
[16:41:18] *** LeeBee has quit IRC
[16:43:03] <vice-versa> scary
[16:54:55] *** adnc has joined #postfix
[16:55:40] *** cilly has joined #postfix
[16:56:33] <adnc> how can i make a mailaddress which when sent to will send the mail to any user on the system. but this mail should only be sendable from an internal address. is this a postfix issue?
[16:57:25] *** Verilium has quit IRC
[17:05:11] <xpoint_dell> adnc, use domain with resolves to 127.0.0.1
[17:05:51] <xpoint_dell> and use email adresses that are local (unix users) on that domain
[17:06:45] <xpoint_dell> adnc, finaly poke a hole from outside world with virtual_alias to ALL local users
[17:06:59] <xpoint_dell> should be it
[17:07:32] <xpoint_dell> only want it local, dont add the virtual then
[17:09:52] <vice-versa> adnc: use a check_recipient_access map for this
[17:12:06] <higuita> adnc: create a smtpd_restriction_classes  and something like this
[17:12:06] <higuita> check_client_domain = reject_unknown_client,
[17:12:09] <higuita>         check_client_access hash:/etc/postfix/client_checks_spoof,
[17:12:09] <higuita>         check_sender_access regexp:/etc/postfix/sender_client.regexp,
[17:12:10] <higuita>         reject
[17:12:49] <higuita> this enables you to limit a email to be used from some IPs only (add the variants you want)
[17:12:58] <vice-versa> wow
[17:15:40] * devdas sometimes prefers to use a real mailing list manager
[17:25:23] <xpoint_dell> higuita, nice but policyd v2 rooks :)
[17:25:53] <devdas> That it does
[17:26:02] * devdas needs to send in his patch(es) to it
[17:26:15] <xpoint_dell> please dont :)
[17:26:46] <xpoint_dell> i olso need to send my patches for 1.80 (innodb)
[17:32:08] <xpoint_dell> higuita, problem in postfix is that classes is not always stable in the way it works, best results comes when all is clases or not clases at all
[17:32:26] <roe_> before I spend  time researching, does anyone know if it is possible to use the same cert for apache, postfix and dovecot?
[17:32:45] <xpoint_dell> should be no problem
[17:33:00] <xpoint_dell> if it same domain
[17:33:05] <roe_> yup, and hostname
[17:33:06] <xpoint_dell> and same ip
[17:33:18] <roe_> yup
[17:33:21] <higuita> xpoint_dell: i use classes for years and never had problems
[17:34:55] <xpoint_dell> higuita, problem is mostly when mixing restrictions, then there is always something hidded in what missed to be tested, or something that get tested 2 times
[17:35:50] <higuita> like all chain rules, when building we have to check and recheck then :)
[17:36:04] <xpoint_dell> yes
[17:36:08] <higuita> the kiss principle is a must to avoid errors
[17:36:40] <higuita> trying to shoot to high, too fast, will always backfire :)
[17:37:42] <vice-versa> indeed
[17:39:44] <devdas> KISS++
[17:40:00] <higuita> na... that is too complex!! :D
[17:41:02] <vice-versa> adnc: your head stop spinning yet?
[17:49:06] *** hparker has joined #postfix
[17:50:53] <adnc> vice-versa: sorry?
[17:51:10] <adnc> i'm thinking how to manage it. i can not restrict to an IP
[17:51:54] <vice-versa> I didn't say anything about restricting it to an ip
[17:51:57] <adnc> as stated above since the users will connect from any
[17:52:06] <adnc> vice-versa: no other kind user did above
[17:52:19] <adnc> i'm just looking what i can find out with check_recipient_access
[17:53:12] <vice-versa> you want to restrict delivery to mynetworks and authed users for a global alias correct?
[17:53:33] <adnc> yes
[17:54:11] <adnc> let say an address called all at mydomain dot tld where only from mydomain.tld sent mails will be delivered to everyone
[17:54:41] <vice-versa> ok, I was gonna use everyone as an example
[17:54:45] <adnc> vice-versa: your description faces exactly the issue, if you do have any ideas, i would be thankfull
[17:55:16] <vice-versa> it's pretty simple actually, kiss like they mentioned earlier ;)
[17:55:38] <adnc> is it check_recipient_access which solves the prblem?
[17:56:41] <vice-versa> yes, I use it like this on may MTA's for exactly the scenario you mentioned
[17:56:49] <adnc> cool
[17:56:51] <vice-versa> s/may/many/
[17:57:23] <vice-versa> I take it you have the alias created and working correct?
[17:57:44] <adnc> aliases do work here
[17:58:13] <adnc> ahh no i didnt worry
[17:58:20] <adnc> sorry
[17:58:24] <adnc> s/worry/sorry
[17:59:27] <vice-versa> ok, well that's the easy part, so for the sake of a simple example let's assume a small LAN and user base of local Unix accounts
[17:59:40] <adnc> yes
[18:01:26] <vice-versa> in /etc/aliases or whatever your alias_database points to....
[18:01:32] <vice-versa> everyone:	jack,john,jim,jane,jone,jill
[18:01:42] <adnc> ohh i would have to add every single user in there?
[18:02:27] <vice-versa> well we did say for a simple example of local Unix accounts...
[18:02:32] <adnc> ok
[18:02:57] *** efi has quit IRC
[18:03:13] <vice-versa> you can get creative with sql aliases, which is in fact how we do it to have users included automatically
[18:04:17] <vice-versa> given that the idea is the same
[18:04:32] <adnc> and how do i restrict the rest, except my users from making use of this address
[18:05:00] <vice-versa> well if you'll stop interrupting me I'll get to that ;)
[18:05:07] <adnc> ;) sorry
[18:05:28] <vice-versa> with the alias working....
[18:06:14] <vice-versa> create a hash map, /etc/postfix/restriced_rcpt_access
[18:06:35] <vice-versa> in that map...
[18:06:38] <vice-versa> everyone at example dot com	550 User unknown
[18:07:56] <adnc> is there a particular character in your last line, i see "everyone at example dot comI550 User unknown" this
[18:08:31] <vice-versa> then, smtpd_recipient_restrictions = permit_mynetworks, permit_sasl_authenticated, reject_unauth_destination, check_recipient_access hash:/etc/postfix/restriced_rcpt_access
[18:08:59] <vice-versa> everyone at example dot com     550 User unknown
[18:09:47] <vice-versa> and that's it
[18:10:18] <vice-versa> oh, you have to postmap /etc/postfix/restriced_rcpt_access
[18:12:02] <adnc> my /etc/aliases file has the this form alias:user1,user2 but when i do postmap then i get warnings
[18:12:21] <adnc> it expects whitespace in between
[18:12:42] <vice-versa> yeas, alias: user1,user2
[18:13:04] <vice-versa> see aliases(5)
[18:14:06] <vice-versa> and use newaliases not postmap
[18:15:17] *** BuenGenio_ has joined #postfix
[18:15:27] <BuenGenio_> hello
[18:15:42] <BuenGenio_> got a Q - how do i get IMAPD to automatically create a user maildir?
[18:17:12] <vice-versa> !pop
[18:17:14] <knoba> vice-versa: "pop" : postfix is not a pop or imap server
[18:18:20] <vice-versa> that being said, let postfix create the maildir structure if you're using it as your mda
[18:18:49] <adnc> is this ok sor for? just to make it sure http://pastebin.com/d28cca159
[18:20:25] <vice-versa> adnc: use it just after reject_unauth_destination
[18:21:01] <adnc> thank you
[18:22:20] <vice-versa> BuenGenio: you can do this by sending a "Welcome to the mail system" type email to new users after account creation
[18:23:07] <adnc> vice-versa: does the user everyone at mydomain dot tld need to exist?
[18:23:24] <vice-versa> no, it's an alias
[18:23:31] <adnc> ahh, no is an error from spamd, not postfix
[18:23:41] <adnc> surely not, i was just unsure because of an error
[18:24:03] <adnc> from spamassassin
[18:26:03] <adnc> vice-versa: yes, that worsk great. i'm impressed
[18:29:33] *** keffer has joined #postfix
[18:30:15] <vice-versa> adnc: yup, the kiss principle ;)
[18:30:26] <adnc> ohh there why is it called kiss principle?
[18:30:42] <adnc> sorry. it should be only "why is it called kiss principle?"
[18:30:49] <vice-versa> Keep It Simple Stupid
[18:30:59] <adnc> ah
[18:31:04] <vice-versa> ;)
[18:31:15] *** _bugz_ has quit IRC
[18:31:19] <adnc> there is no way to address all users?
[18:31:24] *** BuenGenio has quit IRC
[18:31:39] <adnc> i would have to go by adding them all one by one, or making use of sql users-list?
[18:33:16] <vice-versa> not that I know of for local accounts, all our users are virtual which are maintained in sql
[18:33:29] <adnc> i see
[18:33:52] <adnc> postfix is great, are there huge mail-operators which use postfix?
[18:33:58] <vice-versa> yup
[18:34:05] *** cilly has quit IRC
[18:34:36] <vice-versa> many ISPs and large corporations use postfix
[18:34:50] <adnc> vice-versa: which ones, do you know by hard, or is somewhere a list?
[18:36:20] <vice-versa> I don't know of any lists, but Wietse Venema, the creator of postfix is employed by IBM
[18:36:28] <vice-versa> !father
[18:36:29] <knoba> vice-versa: "father" : Dr. Wietse Zweitze Venema, father of postfix. http://en.wikipedia.org/wiki/Wietse_Venema
[18:36:46] <adnc> wow
[18:37:03] <adnc> has he got a book to postfix
[18:37:06] <devdas> adnc: Return Path, Outblaze, Nortel
[18:37:10] <devdas> no
[18:37:17] <vice-versa> yes he does
[18:37:32] <adnc> nortel, is norwegian telecom isn't it? huge
[18:37:46] <adnc> vice-versa: he has a book?
[18:38:37] <vice-versa> I'm pretty sure he co authored one
[18:39:29] <devdas> Nortel is the network/telco equipment manufacturer
[18:39:35] <devdas> Not on Postfix
[18:39:35] <vice-versa> but if you're looking for a good book on postfix, I would recommend "The Book of Postfix"
[18:39:56] <adnc> ahh, i think this also exist in german
[18:40:02] <adnc> Das Postfix Buch
[18:40:31] <vice-versa> yes, one of the main authors is German iirc
[18:40:59] <vice-versa> Ralf Hildebrandt
[18:41:11] <devdas> Both of them are
[18:41:13] <adnc> i see it is not that cheap. but i will have to buy it
[18:42:01] <vice-versa> not sure what you're seeing for a price there, but it's cheaper than most comparable books
[18:42:40] <vice-versa> if you find one solution and learn two new things, it's worth every cent ;)
[18:43:35] <adnc> we are not talking about this, do we? http://www.amazon.de/Postfix-Buch-Sichere-Mailserver-Linux/dp/3937514503/ref=sr_1_1?ie=UTF8&s=books&qid=1221410564&sr=8-1
[18:44:07] <vice-versa> nope
[18:44:09] <adnc> i think this is the one
[18:44:10] <adnc> http://www.amazon.de/Postfix-Einrichtung-Betrieb-Ralf-Hildebrandt/dp/3898645185/ref=sr_1_2?ie=UTF8&s=books&qid=1221410645&sr=1-2
[18:44:38] <adnc> well 46? is not that cheap for a book. but this seems to be worth it
[18:44:59] <vice-versa> yup that looks like the one
[18:45:54] <adnc> this book is brand new in the second edition. just about twenty days old
[18:46:41] *** k-man_ has quit IRC
[18:46:55] *** k-man_ has joined #postfix
[18:47:10] <vice-versa> yeah, this is the one we have several copies of floating around... http://oreilly.com/catalog/9781593270018/
[18:49:09] <adnc> you have several copies?
[18:49:39] <vice-versa> not me personally, work does
[18:49:55] <adnc> ahh, otherwise i would ask for a copy ;)
[18:50:19] <xpoint_dell> 24 timer tilbage til fremtiden
[18:50:45] <xpoint_dell> ups sorry
[18:50:57] <vice-versa> well we had a dozen, 5 are missing and the rest are getting tattered, so that speaks volumes for the book imo
[18:52:44] <vice-versa> adnc: even if i did have one to give you, it would cost more in shipping to get it to you then what you could purchase it new for
[18:52:58] <adnc> vice-versa: usa?
[18:53:01] *** Verilium has joined #postfix
[18:53:08] <vice-versa> colse enough, Canada
[18:53:14] <vice-versa> *close
[18:53:45] <adnc> i see, well i bought some electrotecnical books from the usa, i remember to do not have payed that much. there i think is a particular fair for book shipment
[18:53:45] <BuenGenio_> vice-versa, thanks
[18:53:59] <adnc> but in general you are right
[18:54:03] *** seekwill has joined #postfix
[18:54:19] <vice-versa> BuenGenio_: np
[18:54:27] <BuenGenio_> vice-versa, also if i want to use postfix as an MDA on port 25 and as an MTA on a different port, does it mean I have to run two different instances of postfix?
[18:54:51] <devdas> no
[18:55:01] <devdas> uncomment submission in master.cf
[18:55:07] <BuenGenio_> oh
[18:55:13] <BuenGenio_> lemme check
[18:55:29] <BuenGenio_> nice
[18:55:32] <BuenGenio_> how do i specify the port?
[18:55:54] <BuenGenio_> (in case i don't want 587)
[18:56:04] <vice-versa> adnc: I prefer 'dead tree' reference material myself
[18:56:13] <vice-versa> just old school I guess
[18:56:14] <adnc> dead tree
[18:56:24] <adnc> what is dead tree, sorry for my bad english
[18:56:24] <vice-versa> yeah, real paper
[18:56:31] <adnc> ohh, yes like mee.
[18:56:44] <adnc> everytime. it is much better if you can hold it on your hands.
[18:57:06] <adnc> for learningn purposes, and reading longer paper is a must
[18:57:16] <vice-versa> yup, bet's dragging the workstation into the shitter too
[18:57:38] <BuenGenio_> man, i think i need to grow a beard to learn how to manage postfix!
[18:57:40] <adnc> vice-versa: did you ever see that book-"close" ebook reader from amazon?
[18:57:46] *** diego__ has joined #postfix
[18:58:06] <adnc> it is only sold in the us and people say that it is very close to paper
[18:58:35] <vice-versa> yeah, the kindel or some such
[18:58:53] <seekwill> sysmonk: :(
[18:58:54] <adnc> yes, kindel called. did you have it in your hands?
[18:59:40] <vice-versa> no, I'm gonna wait a while for it to improve, I'm never one to jump right on new tech toys
[18:59:51] <BuenGenio_> vice-versa, do they vibrate?
[19:00:13] <vice-versa> what?
[19:00:42] <BuenGenio_> the new toys
[19:00:43] <BuenGenio_> :)
[19:00:53] <vice-versa> oh, lol
[19:00:59] <vice-versa> pervert
[19:01:08] <BuenGenio_> postfix
[19:01:31] <BuenGenio_> anyway
[19:01:39] <BuenGenio_> sunday
[19:01:48] <vice-versa> all day too
[19:05:44] <BuenGenio_> ok, can i change the submission port number from 587?
[19:06:02] *** denis_ has joined #postfix
[19:06:06] <devdas> why would you want to do that?
[19:06:16] <devdas> submission is the RFC name for 587/tcp
[19:09:20] <vice-versa> grep ^submission /etc/services
[19:12:37] <BuenGenio_> is SPA different from TLS?
[19:12:53] *** pitakill has joined #postfix
[19:13:02] *** Thorn_ has joined #postfix
[19:21:52] *** MrNaz has quit IRC
[19:24:05] <seekwill> What's spa?
[19:26:24] <devdas> Is that the Outlook Secure Provider Authentication thingy?
[19:26:31] <devdas> That's Outlook/Exchange specific
[19:29:35] *** xpoint_dell is now known as xpoint
[19:33:56] <BuenGenio_> thanks
[19:34:13] *** Thorn has quit IRC
[19:35:16] <BuenGenio_> this is weird  - how come sending mail works with Thunderbird, but generates  NOQUEUE: reject: RCPT from <ip_addres> 554 5.7.1 : Client host rejected: Access denied; from=<email> when sending using the same account from Outlook?
[19:35:57] <devdas> authentication needed?
[19:36:22] <BuenGenio_> using SSL
[19:36:33] <BuenGenio_> actually this might be it
[19:36:41] <BuenGenio_> i'm using TLS in Thunderbird
[19:36:47] <BuenGenio_> but there's no TLS in Outlook, afaik
[19:37:24] <BuenGenio_> can i make it fall back to using SSL instead?
[19:37:34] <BuenGenio_> i read SSL is tricky in some setups
[19:38:38] <devdas> yes
[19:39:13] <BuenGenio_> what could be a work around for Outlook in my case?
[19:44:39] <BuenGenio_> helo?
[19:44:50] <vice-versa> !wait
[19:44:51] <knoba> vice-versa: "wait" : Thank you for choosing #postfix for your postfix related issue. All our knowledgeable volunteers are currently busy or have more important things to take care of. Your inquiries are very important to us, please wait until the next knowledgeable volunteer becomes available. (knoba queues admin waiting music)
[19:45:28] <devdas> SSL?
[19:47:41] * hparker lols at vice-versa
[19:52:25] *** Marticus has quit IRC
[19:57:43] <BuenGenio_> smtpd_tls_wrappermode ?
[20:02:37] *** Tykling has quit IRC
[20:03:30] *** Tykling has joined #postfix
[20:05:12] <vice-versa> BuenGenio_: that's generally only required to appease some broken ms clients if you're enforcing tls and it's advised that you enable this only for smtps/465
[20:06:27] <BuenGenio_> vice-versa, thanks. so there is currently i can't send any mail from Office/Outlook
[20:06:30] <BuenGenio_> on port 587
[20:07:01] <BuenGenio_> rather, outlook appears to have sent the letter, but postfix rejects this mail based on relaying denied.
[20:07:40] <vice-versa> is the client configured to auth?
[20:08:00] <BuenGenio_> YES
[20:08:02] <BuenGenio_> sorry
[20:08:03] <BuenGenio_> yes
[20:08:14] <BuenGenio_> same settings as with Thunderbird
[20:08:28] <vice-versa> on the same host?
[20:08:33] <BuenGenio_> except, obviously, the authentications scheme tickbox in Outlook is SSL
[20:08:37] <BuenGenio_> yep
[20:08:38] <hparker> outhouse sux in oh so many ways
[20:08:44] <vice-versa> indeed
[20:08:51] <vice-versa> !relevant
[20:08:51] <BuenGenio_> hparker, so do our customers
[20:08:52] <knoba> vice-versa: "relevant" : Please pastebin the relevant mail log excerpts for your issue. See the !logs channel factoid if you do not know where your mail logs are located. See the !pastebin channel factoid if you do not know what a pastebin is.
[20:09:18] <hparker> BuenGenio_: I know the feeling, glad I sold the ISP
[20:09:20] <vice-versa> also, outhouse has the ability to do advanced transport logging
[20:09:20] <BuenGenio_> who are Outlook BOFHs for life
[20:09:59] <vice-versa> google for 'transport logging in Outlook'
[20:10:42] <BuenGenio_> vice-versa, what about getting Outlook to work though
[20:10:55] <BuenGenio_> sorry the directness
[20:10:57] <BuenGenio_> :)
[20:11:14] <vice-versa> get a better idea on what's going wrong
[20:11:22] <BuenGenio_> just been trying to get a working setup for a week now
[20:11:34] <BuenGenio_> ok, easy, i'm already googling :)
[20:11:47] <vice-versa> you should find a related ms tech support doc
[20:11:55] <BuenGenio_> http://support.microsoft.com/kb/300479
[20:11:56] <BuenGenio_> ?
[20:12:22] <vice-versa> looks like it yes
[20:12:58] <hparker> M$ and support in the same sentence.....
[20:14:54] *** Haris_ has joined #postfix
[20:14:55] <BuenGenio_> ok, so here's the log http://pastebin.com/m3e28eb02
[20:15:01] *** Haris_ is now known as Haris
[20:15:01] <BuenGenio_> hparker, haha
[20:15:02] <BuenGenio_> ha
[20:15:29] <BuenGenio_> it appears that postfix doesn't advertise TLS
[20:16:29] *** devdas has left #postfix
[20:17:02] <vice-versa> hparker: yeah, oxymoron
[20:18:23] <BuenGenio_> though when connecting via Telnet STARTTLS does come up
[20:18:26] <BuenGenio_> after HELO
[20:18:49] <vice-versa> BuenGenio_: yup, no STARTTLS announcement
[20:19:17] <hparker> BuenGenio_: check the outhouse is using the proper port
[20:19:47] <BuenGenio_> 587
[20:19:54] <BuenGenio_> and Use SSL ticked
[20:20:29] <sysmonk> seekwill: what?
[20:21:12] <vice-versa> BuenGenio_: as a test, add the following to submission in master, -o smtpd_tls_wrappermode=yes
[20:21:19] <vice-versa> postfix reload
[20:21:25] <vice-versa> and try again
[20:21:45] *** weedar has joined #postfix
[20:22:39] <BuenGenio_> still no STARTTLS
[20:23:42] <vice-versa> ok, remove it and enable LOGIN as one of your auth offerings
[20:24:16] *** pitakill has quit IRC
[20:24:54] <BuenGenio_> that would be which option_
[20:24:54] <BuenGenio_> ?
[20:25:26] <vice-versa> sasl mech list
[20:26:03] <vice-versa> what are you using for sasl, cryus?
[20:26:09] <BuenGenio_> sasl2
[20:26:28] <vice-versa> config is smtpd.conf?
[20:26:28] <BuenGenio_> so /etc/sasl2/smtpd.conf says: mech_list: PLAIN LOGIN
[20:26:35] <vice-versa> yes
[20:26:46] <BuenGenio_> that was already enabled
[20:27:00] <BuenGenio_> do they need to be the other way around?
[20:27:05] <vice-versa> try listing the LOGIN first
[20:27:08] <BuenGenio_> ok
[20:27:22] <sysmonk> vice-versa: shouldn't matter
[20:27:31] <sysmonk> vice-versa: does he use cyrus or dovecot?
[20:27:33] <hparker> might to outhouse
[20:27:42] <vice-versa> shouldn't, but it's MS stuff in use
[20:27:54] <BuenGenio_> cyrus
[20:28:14] <Tapout> anyone know of a guide on setting up multiple MX's with lower priority to catch mail when you reboot main MX and stuff?
[20:28:33] <vice-versa> !backup
[20:28:34] <knoba> vice-versa: Error: "backup" is not a valid command.
[20:28:38] <vice-versa> bah
[20:28:56] <hparker> Tapout: not worth it imo
[20:28:57] <vice-versa> !mxbackup
[20:28:58] <knoba> vice-versa: "mxbackup" : Setting up a backup MX server is described in http://www.postfix.org/faq.html#backup
[20:29:01] <BuenGenio_> mech_list: PLAIN LOGIN
[20:29:05] <BuenGenio_> <rx> 250-ETRN
[20:29:06] <BuenGenio_> 2008.09.14 21:28:50 SMTP (steelheadventures.com): <rx> 250-AUTH PLAIN
[20:29:06] <BuenGenio_> 2008.09.14 21:28:50 SMTP (steelheadventures.com): <rx> 250-AUTH=PLAIN
[20:30:07] <BuenGenio_> restarted saslauthd and courier-authdaemon, btw, after changing mech_list to LOGIN PLAIN
[20:30:12] * vice-versa seconds hparker's motion
[20:30:23] *** growltiger has joined #postfix
[20:30:44] <hparker> way too much maint overhead
[20:31:28] <sysmonk> and almost zero wins
[20:31:55] <sysmonk> unless your reboot takes 5 days
[20:31:56] <sysmonk> ;)
[20:31:57] <BuenGenio_> sorry
[20:32:05] <BuenGenio_> oh
[20:32:10] <BuenGenio_> :P
[20:33:39] <BuenGenio_> http://pastebin.com/m193822a6
[20:33:41] <BuenGenio_> this is main.cf
[20:33:52] <BuenGenio_> if that's of any use
[20:34:11] <BuenGenio_> smtp_tls_mandatory_ciphers = medium
[20:34:11] <sysmonk> BuenGenio_: main.cf are useless except some situations
[20:34:15] <BuenGenio_> should i set this to high?
[20:34:16] <sysmonk> go for postconf -n
[20:34:20] <sysmonk> that's more readable
[20:34:28] <vice-versa> !showme
[20:34:30] <knoba> vice-versa: "showme" : Please pastebin the output from the following as root, uname -a;postconf -h mail_owner mail_version;echo;postconf -n;echo;cat `postconf -h config_directory`/master.cf
[20:34:32] <Tapout> Sep 14 13:31:49 tps postfix/smtpd[28343]: warning: non-SMTP command from 118-167-136-146.dynamic.hinet.net[118.167.136.146]: GET http://www.scanproxy.com:80/p-25.html HTTP/1.0
[20:35:04] <vice-versa> nice
[20:35:16] <xpoint> BuenGenio_, delete main.cf
[20:35:28] <vice-versa> O.o
[20:35:28] <BuenGenio_> ?
[20:35:32] <xpoint> BuenGenio_, touch main.cf
[20:35:34] <sysmonk> BuenGenio_: kick ass xpoint
[20:35:34] <sysmonk> ;)
[20:36:06] <vice-versa> is it really that bad?
[20:36:06] <xpoint> BuenGenio_, you did postconf -d > main.cf with is wroung
[20:36:11] * vice-versa never looked
[20:36:19] <sysmonk> vice-versa: i just looked
[20:36:22] <BuenGenio_> is it pretty much default?
[20:36:23] <sysmonk> vice-versa: it has all the options
[20:36:25] <sysmonk> ;)
[20:36:27] <vice-versa> lol
[20:36:29] <hparker> Tapout: just a scan from China to see if they can relay through you
[20:36:42] <sysmonk> vice-versa: it's the main.cf.default
[20:36:47] <BuenGenio_> :)
[20:36:52] <vice-versa> damn
[20:36:57] <BuenGenio_> so what?
[20:37:02] <BuenGenio_> got it off howtoforge!
[20:37:03] <BuenGenio_> :)
[20:37:08] <sysmonk> ohmy
[20:37:08] <vice-versa> bad
[20:37:11] <sysmonk> bad bad bad
[20:37:13] <vice-versa> !tutorial
[20:37:14] <knoba> vice-versa: "tutorial" : A very common problem is that some people prefer to follow a step-by-step tutorial that shows them how to setup their mail server without reading the documentation or understanding what they are doing. If something goes wrong, they have no clue whatsoever about where to look for hints, and they sometimes decide to start from scratch using a different tutorial. This is not The Proper Way.
[20:37:14] <sysmonk> evil evil evil
[20:37:15] <sysmonk> ;)
[20:37:23] *** whatever__ has joined #postfix
[20:37:33] <hparker> whee
[20:37:41] <BuenGenio_> yes, i thought about that when taking one
[20:38:03] * sysmonk head hurts, but that's not vodkas fault
[20:38:18] <BuenGenio_> damn
[20:38:32] <xpoint> BuenGenio_, only add things to main.cf that is not okay from output in postconf -d
[20:38:38] * hparker needs some VoIP lovin'..... Vodka over IP that is...
[20:38:44] *** Severed_Head_Of_ has quit IRC
[20:39:00] <xpoint> hparker, and a 3d printer :)
[20:39:04] <hparker> heh
[20:39:36] <vice-versa> I've got a script here somewhere for cleaning up shit main.cf's like that
[20:39:44] <sysmonk> hparker: just send me the VoIP PBX and i'll send you teh vodka
[20:39:53] <xpoint> BuenGenio_, its NOT a joke to delete main.cf
[20:40:00] <hparker> sysmonk: sounds like a plan!
[20:40:08] <sysmonk> vice-versa: postconf, postconf -d, diff > main.cf ?
[20:40:09] <sysmonk> ;)
[20:40:26] * hparker needs to remember who had their last fish stolen, thinks it was lunaphyte
[20:40:40] <sysmonk> fish over IP ?
[20:41:09] <hparker> naw, was teaching someone to fish rather than giving him one... cpm then stole his last fish :P
[20:41:21] <vice-versa> hehe
[20:41:24] <hparker> I left to go fishing
[20:41:31] <hparker> Have some extras now
[20:41:50] <vice-versa> !fish
[20:41:51] <knoba> vice-versa: "fish" : Give an admin a fish and you feed them for a day. Teach an admin to fish and you feed them for a life. -- All new anglers, please see the following channel factoids, !tutorial !docs !basic !standard !faq !manuals !logs !debug !smtpd!=smtp
[20:42:18] <hparker> Results of last fishing trip http://cartercountydodge.com/new/tmp/directions4.html  what a pita that was
[20:42:53] <BuenGenio_> ok, so the diff is now about 3k
[20:42:56] <BuenGenio_> long
[20:43:00] <BuenGenio_> as apposed to 21k
[20:43:15] <xpoint> better, just not perfekt
[20:43:34] <sysmonk> i'd kill myself with that long configs
[20:43:39] * hparker would recommend BuenGenio_ grab the default one his distro installs to start with
[20:43:45] <sysmonk> i find few of my main.cf's long enough
[20:43:54] <xpoint> BuenGenio_, postconf -n after you deleted and changed what needed to be changed it better
[20:44:28] <BuenGenio_> postconf -n returns about as much as the current main.cf
[20:44:31] <xpoint> hparker, my advise is start with a totaly empty main.cf
[20:44:36] <BuenGenio_> does it mean that most of the variables are changed?
[20:44:42] <BuenGenio_> default var*
[20:45:05] <xpoint> BuenGenio_, start with a empty main.cf
[20:45:15] <hparker> xpoint: Not always easy for someone new to postfix
[20:45:15] <BuenGenio_> ok
[20:45:25] <xpoint> see postconf -d what to change later
[20:45:27] <BuenGenio_> i'm a fast learner :)
[20:45:37] *** BuenGenio_ is now known as BuenGenio
[20:45:49] <hparker> deleting main.cf will help with that :P
[20:46:02] <xpoint> hparker, if new users need more info thay may ask developpers to change the bad defaults
[20:46:28] <hparker> i just hack up the default one installed
[20:46:30] <BuenGenio> so then, postconf -n &> main.n; postconf -d &> main.d; diff main.n main.d
[20:46:45] <hparker> Leave the explainations, come in handy at times
[20:46:54] <BuenGenio> ?
[20:47:00] <xpoint> BuenGenio, just make.cf empty will solve it olso, most settings is fine pr default
[20:47:34] <xpoint> BuenGenio, see topic more :)
[20:47:34] <BuenGenio> xpoint, ok i have server that's over half functional at the mo - ideally want it to be better
[20:47:58] <BuenGenio> at least not break it
[20:48:00] <BuenGenio> more
[20:48:12] <xpoint> postconf -n on pastebin
[20:48:16] <xpoint> !pastebin
[20:48:16] <knoba> xpoint: "pastebin" : a way to paste larger amounts of text so that other people can read it. Try http://www.rafb.net/paste/ or http://paste.debian.net/ - Do not forget to tell us the URL where you pasted it.
[20:48:55] <xpoint> but we wont help you with postconf -d totaly in main.cf
[20:49:30] <BuenGenio> http://pastebin.com/d5e97ad4a
[20:49:37] <BuenGenio> xpoint, that's fine
[20:49:47] <BuenGenio> i'd rather take the opportunity and learn what i can for now
[20:50:01] <BuenGenio> won't have time to go through the whole doc this month ;)
[20:50:36] <xpoint> you did not delete the main.cf :/
[20:50:59] <xpoint> sorry cant help then
[20:51:00] <BuenGenio> oh yeh, that's the old one sry
[20:51:46] <BuenGenio> config_directory = /etc/postfix
[20:51:50] <BuenGenio> that's it
[20:52:09] <xpoint> olso default, oh my :)
[20:52:21] <xpoint> remove it in main.cf
[20:52:38] <BuenGenio> just did touch /etc/postfix/main.cf
[20:52:43] <vice-versa> BuenGenio: your main.cf cleaned up, http://pastebin.com/m6816fa9f
[20:53:55] <BuenGenio> thanks, was just actually about to diff
[20:54:08] <vice-versa> actually that looks broken, one sec
[20:54:25] <xpoint> haha, its hard to delete :)
[20:55:25] <vice-versa> BuenGenio: ignore me, it's fine, use it
[20:56:26] <BuenGenio> so, back to TLS / Outlook? i don't want to waste more of your time on a sunday
[20:56:29] <BuenGenio> ...
[20:56:30] <BuenGenio> :)
[20:56:47] <BuenGenio> vice-versa, thanks!
[20:56:53] <vice-versa> like any other day would be better ;)
[20:57:59] *** rio has left #postfix
[20:59:19] <xpoint> BuenGenio, you running postfix behind nat ?, then add wan ip to main.cf with proxy_interfaces=123.123.123.123 where 123.123.123.123 is changed to your wan ip, this part is very important
[20:59:45] *** GoGi has joined #postfix
[21:00:01] <BuenGenio> xpoint, running on a dedicated IP, but thanks'
[21:00:12] <BuenGenio> that ' was accidental btw :)
[21:01:13] <xpoint> BuenGenio, so wan ip still miss in main.cf
[21:01:14] <BuenGenio> anyway, looks like postfix is still kicking ...
[21:01:14] <BuenGenio> :)
[21:02:49] *** lambda__ has joined #postfix
[21:05:12] <BuenGenio> but no STARTTLS for Outlok
[21:06:55] *** sebjo has quit IRC
[21:08:10] <BuenGenio> the only thing i found on M$ KB is - http://support.microsoft.com/kb/307772/en-us
[21:08:27] <BuenGenio> but here i have Outlook 2003 SP3
[21:09:48] <vice-versa> let's see a pastebin of the current outlook logs again BuenGenio
[21:11:29] <BuenGenio> http://pastebin.com/d31c8e5b6
[21:13:03] *** carl- has quit IRC
[21:13:40] <vice-versa> ok, different from what you showed previously
[21:14:11] <BuenGenio> yeah, STARTTLS comes up
[21:14:15] <BuenGenio> sort of
[21:14:47] <BuenGenio> yeah
[21:14:50] <vice-versa> announces STARTTLS, reconnects using tls so no need to announce STARTTLS again
[21:15:34] <xpoint> smtpd_connection_cache
[21:15:42] <xpoint> no ?
[21:15:51] <vice-versa> dunno, sort of looks like an auth issue maybe
[21:16:07] <vice-versa> bah, no it doesn't, ignore me
[21:17:14] <vice-versa> BuenGenio: let's see some postfix logs of the delivery attempt
[21:17:54] <BuenGenio> Client host rejected: Access denied; f
[21:18:17] <xpoint> means no auth is working
[21:18:22] <vice-versa> pastebin complete transaction
[21:18:37] <vice-versa> and appease me here....
[21:18:42] <vice-versa> !showme
[21:18:43] <knoba> vice-versa: "showme" : Please pastebin the output from the following as root, uname -a;postconf -h mail_owner mail_version;echo;postconf -n;echo;cat `postconf -h config_directory`/master.cf
[21:18:50] <xpoint> are sasl enabled on port 587
[21:19:10] <vice-versa> yup
[21:19:27] <BuenGenio> http://pastebin.com/d38b52a26
[21:20:07] <vice-versa> err, maybe not
[21:21:00] <BuenGenio> well, telnet 62.149.27.85 587
[21:21:07] <BuenGenio> returns STARTTLS
[21:21:14] <vice-versa> but no auth
[21:21:17] *** der_soenke has joined #postfix
[21:22:04] <BuenGenio> ok, this is going to sound really corny, but 'how come?'
[21:22:39] <vice-versa> well now, if you would have given me the !showme output I've asked for like 3 or 4 times now we might be done with this
[21:25:01] <sahil> BuenGenio: did you just say 'corny'?
[21:25:02] <sahil> dork
[21:26:02] <BuenGenio> sahil means 'bush' in Ukrainian
[21:26:13] <sahil> BuenGenio: riveting.
[21:26:24] <sahil> BuenGenio: do you have smtpd_tls_auth_only set anywhere in your main or master.cf?
[21:26:28] <BuenGenio> don't mean to upset you
[21:26:35] * sahil is not upset
[21:26:44] * rob0 is upset
[21:26:59] * sahil hands rob0 a cold bluemoon; from tap, of course.
[21:27:03] <sahil> sip that, lad.
[21:27:30] <sahil> BuenGenio: would it be accurate to say you have not for a second looked at the DEBUG_README before asking for help here?
[21:27:30] <rob0> 0qoj umop ep!sdn
[21:27:45] <sahil> rob0: sorry, i don't speak whateverthatis-fu.
[21:27:52] <sahil> :P
[21:27:57] <rob0> (stand on your head)
[21:28:25] <rob0> l!yes
[21:28:30] <Haris> I HATE bush's actions
[21:28:35] <vice-versa> or flip your monitor over
[21:28:37] <BuenGenio> http://pastebin.com/d38b52a26
[21:28:38] <Haris> the word bush has become an abomination
[21:28:44] <Haris> in my mind
[21:29:15] * vice-versa gives up
[21:29:16] <sahil> Haris: i *love* bush.  especially when it's well groomed.
[21:29:17] <rob0> Haris, agreed. Fortunately so do most of the USA voters, tho likely not for the same reasons as you. :)
[21:29:55] *** _Driver_ has quit IRC
[21:29:55] <sahil> volia?  *cringe*
[21:30:01] <Haris> rob0: agreed
[21:30:23] <sahil> ok, you folks have fun with BuenGenio and his bush.
[21:30:34] <BuenGenio> sahil, are you taking a course in hard alcohol consumption or something?
[21:30:57] <rob0> This election will be difficult for the GOP to diebold. :)
[21:31:01] *** der_soenke has left #postfix
[21:31:22] *** Thorn_ has quit IRC
[21:31:29] <rob0> and they probably won't, because they don't like their own nominee very much
[21:32:09] <vice-versa> BuenGenio: stay focused on your problem as you're not doing a very good job at following instructions
[21:32:13] <rob0> BG, what's the problem?
[21:32:17] <rob0> indeed.
[21:32:46] <rob0> The paste illustrates a nice example of denying a client host. What's wrong with that?
[21:33:12] <rob0> helo=<mangosteen>, I would nab it with the HELO.
[21:33:21] <rob0> s/nab/block/
[21:33:32] *** amrit|zzz is now known as amrit|bbl
[21:34:44] <vice-versa> rob0: the short version, Outhouse is not authing on submission
[21:35:00] <BuenGenio> apprarently not
[21:35:15] <vice-versa> and it appears auth is not enabled for submission
[21:35:23] <BuenGenio> although according to M$ KB it's a 2002 year problem that was allegedly fixed in an update to Outlook the same year
[21:35:27] <BuenGenio> oh
[21:35:44] <BuenGenio> is that in master.cf?
[21:35:44] <vice-versa> right, oh
[21:35:51] <vice-versa> !showme
[21:35:52] <knoba> vice-versa: "showme" : Please pastebin the output from the following as root, uname -a;postconf -h mail_owner mail_version;echo;postconf -n;echo;cat `postconf -h config_directory`/master.cf
[21:35:55] <BuenGenio> well it is for thunderberd
[21:35:57] <vice-versa> for the final fucking time
[21:36:00] <BuenGenio> http://pastebin.com/d38b52a26
[21:36:02] <BuenGenio> http://pastebin.com/d38b52a26
[21:36:05] <BuenGenio> :)
[21:36:15] <BuenGenio> it's like the 3rd time now
[21:36:16] <BuenGenio> sorry
[21:36:24] * vice-versa gives up
[21:36:31] <BuenGenio> it was a bit bushy here, i suppose
[21:36:38] <BuenGenio> ?
[21:36:47] <BuenGenio> oh
[21:36:52] <BuenGenio> 1 ???
[21:36:54] <BuenGenio> sec
[21:36:57] <vice-versa> !wait
[21:36:57] <BuenGenio> wrong pastebin
[21:36:58] <knoba> vice-versa: "wait" : Thank you for choosing #postfix for your postfix related issue. All our knowledgeable volunteers are currently busy or have more important things to take care of. Your inquiries are very important to us, please wait until the next knowledgeable volunteer becomes available. (knoba queues admin waiting music)
[21:37:11] *** hever has quit IRC
[21:37:31] <BuenGenio> http://pastebin.com/d1a917d06
[21:37:42] <BuenGenio> #
[21:37:43] <BuenGenio>   -o smtpd_sasl_auth_enable=yes
[21:38:04] <BuenGenio> and tried with smtpd_tls_wrappermode=yes
[21:41:52] <BuenGenio> thoughts?
[21:41:58] * BuenGenio is waiting
[21:44:34] <xpoint> try outlook on port 25, just to see if that fails to
[21:45:29] <BuenGenio> NOQUEUE: reject:
[21:45:42] <BuenGenio> plus some customers can't use port 25 for outbound mail
[21:45:49] <BuenGenio> due to ISP blocking
[21:46:37] <xpoint> its inbound to YOU
[21:46:53] <xpoint> and you still miss the wan ip
[21:47:39] <BuenGenio> ok
[21:47:55] <BuenGenio> xpoint, i'm on a direct ip
[21:48:07] <BuenGenio> or do i need to provide the gateway anyway?
[21:48:17] <xpoint> so add that ip to mynetworks in main.cf
[21:48:33] <BuenGenio> own ip or gateway ip, just to clear up?
[21:48:52] <xpoint> postconf -d | grep mynetworks
[21:48:58] <BuenGenio> not to proxy_interfaces, righr?
[21:49:16] <BuenGenio> mynetworks = 127.0.0.0/8
[21:49:26] <xpoint> proxy_interfaces is when you running nat
[21:50:00] <xpoint> wierd mac os x
[21:51:01] <xpoint> if wan ip missing in postconf -d then search network outside of your postconf
[21:51:22] <xpoint> its not postfix relayted then
[21:51:37] <BuenGenio> how did you deduce that again?
[21:51:58] <xpoint> if postfix see no wan ip then you dont have one
[21:53:15] <BuenGenio> that authentication is not postfix related?
[21:54:06] <xpoint> :)
[21:54:25] <xpoint> i should give link to a wiki side here, but its not fun
[21:55:01] <BuenGenio> i want to go to bed :)
[21:55:07] <BuenGenio> it's sunday night
[21:55:24] <xpoint> solve the ip so postfix see a wan ip
[21:55:50] <xpoint> then postfix might begin to rook for you to
[21:56:07] <BuenGenio> xpoint, it already does, doesn't it?
[21:56:18] <xpoint> there is no listen else outlook can connect to
[21:56:18] <BuenGenio> for Thunderbir
[21:56:30] <BuenGenio> hmm, ok
[21:56:50] <BuenGenio> so i just add 62.149.27.85/32 ?
[21:56:54] <BuenGenio> to mynetworkds
[21:56:55] <xpoint> you may have other servers that confuse the problem
[21:57:07] <rob0> !outlook
[21:57:08] <xpoint> yes
[21:57:08] <knoba> rob0: "outlook" : MS Outlook has numerous problems with TLS and AUTH support. Try using a better client to troubleshoot your Postfix server's AUTH features; then once you know it works, you can go back and break it such that Outlook will work.
[21:57:42] <xpoint> rob0, he nice saying
[21:57:59] <rob0> BTW I am not paying much attention here, in case that is not obvious, and I WILL NOT divert my attention from what I need to do, to help someone support MS crapware.
[21:58:38] <xpoint> BuenGenio, postconf -d | grep mynetworks should include you wan ip, if missing fix network setup first
[21:59:13] <BuenGenio> mynetworks = 127.0.0.0/8 62.149.27.0/24
[21:59:19] <shasta> postconf -d lists default values, i don't think it'll include his wan ip ;)
[21:59:29] <xpoint> yes that ok BuenGenio
[21:59:32] <BuenGenio> shasta, ha
[21:59:45] <xpoint> shasta, it does
[22:00:04] <shasta> oh, from interfaces
[22:00:05] <seekwill> rob0: NFL? :)
[22:00:08] <shasta> nice to know ;)
[22:00:13] <xpoint> shasta, but postconf -n does not
[22:01:02] <xpoint> mynetworks should really not be changed in main.cf
[22:01:25] <xpoint> get my point now ?
[22:01:58] <vice-versa> BuenGenio: if you're still having issues after the current suggestions, increase the logging verbosity for the remote host ....
[22:02:01] <vice-versa> debug_peer_level = 2
[22:02:01] <vice-versa> debug_peer_list = 82.144.210.80
[22:02:10] <rob0> seekwill: $DAYJOB
[22:02:15] <BuenGenio> i am
[22:03:20] <xpoint> BuenGenio, last time now: if settings shown in postconf -d is okay do not add them in main.cf
[22:03:43] <BuenGenio> xpoint, i don't know  - is it ok?
[22:03:49] <BuenGenio> just to have 127.0.0.1/8?
[22:03:57] <seekwill> rob0: :(
[22:04:06] <xpoint> no this is not ok if you wan ip is missing
[22:04:22] <xpoint> its not a postfix issue
[22:05:04] <BuenGenio> what is not a postfix issue??
[22:05:26] <xpoint> crappy network setup is outside of postfix help
[22:05:46] <BuenGenio> routing works! what are you talking about?
[22:06:07] <xpoint> fix network setup so you from postfix see the wan ip, we take it from there later
[22:06:37] <xpoint> point takeing your route works on lo interface
[22:07:08] <BuenGenio> i can send mail on the same port, using TLS with thunderbird. anywhere.
[22:07:26] <xpoint> this is NOT that postfix install
[22:08:12] * BuenGenio memory protection activated.
[22:08:33] <BuenGenio> we're talking about the same server
[22:08:42] <xpoint> nope
[22:08:46] <BuenGenio> yes
[22:08:55] <BuenGenio> thunderbird is configured with the same settings
[22:08:59] <xpoint> you configure one and use another
[22:09:26] <BuenGenio> successful connections and relaying (from thunderbird) are appearing in the same log as the ones from Outhouse
[22:09:31] <BuenGenio> ?
[22:09:35] <BuenGenio> how do you explain that?
[22:09:47] <xpoint> i wont
[22:09:51] <BuenGenio> roundcube works
[22:09:51] <vice-versa> prove it, change the smtpd_banner
[22:10:02] <BuenGenio> in pastebin? :)
[22:10:07] <BuenGenio> i'm telling you
[22:10:33] <vice-versa> smtpd_banner = $myhostname ESMTP $mail_name rocks (OSX 10.4.12)
[22:10:37] <xpoint> its more fun to play bzflag
[22:11:24] <rob0> !tell BuenGenio outlook
[22:11:35] <rob0> 20:09 < BuenGenio> how do you explain that?
[22:11:56] *** sv-- has joined #postfix
[22:14:11] <BuenGenio> vice-versa, what? your email address
[22:14:14] <BuenGenio> let me send you an email
[22:14:19] <BuenGenio> from this server
[22:14:36] <vice-versa> no thanks
[22:14:52] <vice-versa> I don't need to be convinced it's the same host
[22:14:53] <BuenGenio> anyway, we're talking about the same server..
[22:15:40] <vice-versa> but changing the banner as I mentioned should clear all doubt
[22:16:24] <BuenGenio> wasn't that already in the Outlook log?
[22:16:35] <vice-versa> what was
[22:17:02] <BuenGenio> the banner!
[22:17:05] <BuenGenio> string
[22:18:07] <vice-versa> not the one i just suggested
[22:19:04] <vice-versa> 220 byng-systems.com.ua ESMTP Postfix (OSX 10.4.12)
[22:19:15] <vice-versa> that's what it is currently
[22:20:28] <vice-versa> change the smtpd_banner as I suggested, postfix reload and we'll look again
[22:23:03] <BuenGenio> ok, try it
[22:23:04] *** denis_ has quit IRC
[22:23:33] <BuenGenio> had to turn wrapper mode off, cos that broke thunderbird's ability to send mail
[22:24:04] <BuenGenio>  amavis[13788]: (13788-05) Passed CLEAN, [82.144.210.80] [82.144.210.80] <malcolm.wood at steelheadventures dot com> -> <xxxxx at gmail dot com>, Message-ID: <48CD72AC.8070508 at steelheadventures dot com>, mail_id: rmIX9Bx+Dkw0, Hits: 1.459, size: 574, queued_as: EBFDE125A13, 2713 ms
[22:24:04] <BuenGenio> Sep 14 23:23:14 madrid postfix/smtp[11523]: 2CE16125A12: to=<mr.fruit at gmail dot com>, relay=127.0.0.1[127.0.0.1]:10024, delay=2.8, delays=0.11/0/0/2.7, dsn=2.0.0, status=sent (250 2.0.0 Ok: queued as EBFDE125A13)
[22:24:18] <xpoint> thunderbird works with tls on port 25
[22:24:40] <BuenGenio> Thunder bird is configured to use port 587
[22:24:52] <xpoint> point taked :)
[22:25:48] <xpoint> my question for you now is why is 82.144.210.80 mising in postconf -d `
[22:26:30] <BuenGenio> why should it be there?
[22:26:35] <vice-versa> 220 byng-systems.com.ua ESMTP Postfix rocks (OSX 10.4.12)
[22:26:47] <BuenGenio> do you want me to add the whole internet to postconf ?
[22:26:51] <vice-versa> so that proves the misconception it's some othe server
[22:27:30] <vice-versa> xpoint: 82.144.210.80 is the remote client
[22:27:34] <BuenGenio> yes
[22:27:48] <xpoint> with is his server ?
[22:28:35] <xpoint> i see no outher wan ips above
[22:28:47] <BuenGenio> the mail still routes
[22:29:04] <BuenGenio> to gmail, to hotmail, to colombia
[22:29:27] <xpoint> close other servers down then
[22:29:33] *** lambda__ has quit IRC
[22:29:37] <xpoint> try sending mail then
[22:29:43] <vice-versa> I chalk the lack of network addesses up as a Mac OS idiosyncrasy
[22:30:15] <xpoint> same here vice-versa i hate macs
[22:30:18] <BuenGenio> xpoint, i'm successfully sending mail with thunderbird
[22:30:38] <BuenGenio> it's a Linux box
[22:30:43] <xpoint> BuenGenio, but please get a better postfix box
[22:31:00] <BuenGenio> it's a linux problem?
[22:31:11] <BuenGenio> xpoint, it's a linux problem?
[22:31:32] <xpoint> hmm maybe
[22:31:55] <xpoint> as long postfix does not see the wan ip it can be anything
[22:31:56] <BuenGenio> i think it's more of an outlook problem
[22:32:04] <vice-versa> take the misleading OSX 10.4.12 out of the banner
[22:32:09] <BuenGenio> but somehow gmail manages to get it to work
[22:32:27] *** LeeBee has joined #postfix
[22:32:36] <BuenGenio> vice-versa, what do the clients care?
[22:32:46] <BuenGenio> i already pasted the uname -a output too
[22:33:10] <BuenGenio> i think i'll change it to iPhone OS 1.0.1
[22:33:20] * BuenGenio ducks
[22:33:21] <xpoint> lol
[22:33:42] *** LeeBee has quit IRC
[22:33:51] <xpoint> BuenGenio, you should really keep away from C64 :)
[22:33:53] <BuenGenio> LeeBee couldn't stand the heat
[22:34:00] <vice-versa> use whatever you like, did you add the debugging suggestion I gave you
[22:34:05] <BuenGenio> yeah
[22:34:12] <BuenGenio> my log increased by 20MB in 2 seconds
[22:34:22] <vice-versa> for one host?
[22:34:25] <vice-versa> bs
[22:34:29] <BuenGenio> :)
[22:34:41] <BuenGenio> my httpd stalled to a halt when i tried sending mail
[22:34:57] * BuenGenio rofl
[22:35:11] <BuenGenio> sorry
[22:36:09] <BuenGenio> 1 sec
[22:36:12] <BuenGenio> i'll paste the output
[22:36:16] <xpoint> too long
[22:36:20] <vice-versa> hold on
[22:36:44] <BuenGenio> vice-versa, sorry for being excessively sarcastic
[22:36:54] <BuenGenio> it's the boarding schools' fault ;)
[22:37:09] <vice-versa> look at it yourself, remember it now contains your auth credentials
[22:37:49] <vice-versa> if you don't see anything obvious, mung your auth string then pastebin it
[22:38:16] * BuenGenio listening to Brighton Rock
[22:38:19] *** pitakill has joined #postfix
[22:39:02] <BuenGenio> Sep 14 23:03:03 madrid postfix/smtpd[9865]: send attr request = seed
[22:39:07] <BuenGenio> Sep 14 23:03:03 madrid postfix/smtpd[9865]: private/tlsmgr: wanted attribute: seed
[22:39:13] <vice-versa> not here
[22:39:16] <BuenGenio> this looks like some TLS handshaking is going on
[22:39:37] <BuenGenio> Sep 14 23:03:03 madrid postfix/smtpd[9865]: < ip.82.144.210.80.stat.volia.net[82.144.210.80]: EHLO mangosteen
[22:39:40] <BuenGenio> Sep 14 23:03:03 madrid postfix/smtpd[9865]: > ip.82.144.210.80.stat.volia.net[82.144.210.80]: 250-byng-systems.com.ua
[22:39:46] <BuenGenio> Sep 14 23:03:03 madrid postfix/smtpd[9865]: > ip.82.144.210.80.stat.volia.net[82.144.210.80]: 250-AUTH PLAIN
[22:39:49] <BuenGenio> no STARTTLS
[22:39:53] <vice-versa> NOT HERE!
[22:39:56] <BuenGenio> where
[22:39:58] <vice-versa> !pastebin
[22:39:58] <BuenGenio> ?
[22:39:59] <knoba> vice-versa: "pastebin" : a way to paste larger amounts of text so that other people can read it. Try http://www.rafb.net/paste/ or http://paste.debian.net/ - Do not forget to tell us the URL where you pasted it.
[22:40:02] <BuenGenio> oh
[22:40:08] <BuenGenio> which part of the log do you want?
[22:40:12] *** der_soenke has joined #postfix
[22:40:26] <vice-versa> the entire transaction for that delivery
[22:40:30] <vice-versa> attempt
[22:41:18] <BuenGenio> I'll let in a little spoiler
[22:41:23] <BuenGenio> it terminates with Sep 14 23:03:03 madrid postfix/smtpd[9865]: generic_checks: name=permit_sasl_authenticated status=0
[22:41:28] <BuenGenio>  generic_checks: name=reject
[22:42:30] <vice-versa> you said Thunderbird works from the same hosts correct?
[22:42:30] <der_soenke> hello, i have an issue with postfix, i guess. I have tried so add realtime blacklists, but now i don't get any e-mail, even not from myself. so i've done the configuration backwards, but nothing has changed. how can i try to figure out the problem?
[22:42:42] <vice-versa> s/hosts/host/
[22:42:53] *** sebjo has joined #postfix
[22:42:57] <BuenGenio> tripped pastebin's spam fileter
[22:43:03] <BuenGenio> vice-versa, ye
[22:43:03] <BuenGenio> s
[22:43:11] <vice-versa> http://www.rafb.net/paste/
[22:43:17] *** sebjo has left #postfix
[22:43:48] <BuenGenio> http://rafb.net/p/ojfZUY36.html
[22:44:31] <vice-versa> BuenGenio: you said Thunderbird works from the same hosts correct?
[22:44:37] <BuenGenio> vice-versa, yes
[22:44:46] <BuenGenio> same port
[22:44:49] <BuenGenio> same username
[22:44:51] <BuenGenio> same password
[22:45:02] <BuenGenio> which leads me to believe it's an Outlook problem
[22:45:28] <BuenGenio> the only difference being, is that Thunderbird has a setting "TLS if available", which means it checks for availability
[22:45:36] <BuenGenio> whereas Outlook expects it, and doesn't get it
[22:46:51] <vice-versa> 2008.09.14 22:10:43 SMTP (steelheadventures.com): Securing connection
[22:47:01] <vice-versa> would seem to suggest otherwise
[22:47:03] <BuenGenio> yes, but no 250 STARTTLS
[22:47:23] <BuenGenio> didn't we already establish that Outlook has problems with TLS?
[22:47:38] <vice-versa> http://pastebin.com/d31c8e5b6
[22:47:55] <BuenGenio> i even remember knoba saying "get it working with a better client, then break it "
[22:48:02] <BuenGenio> something along those lines
[22:48:09] <vice-versa> right, which it works
[22:48:33] *** Fallenou has joined #postfix
[22:48:46] <BuenGenio> STARTTLS is in Outlook log, but not in info.log
[22:53:58] <vice-versa> I believe you're not seeing STARTTLS because the TLS session has already been established, hense no need to announce STARTTLS
[22:55:55] <BuenGenio> http://es.youtube.com/watch?v=5hYELUfns74&feature=related
[22:57:03] <vice-versa> anyhow I'm out of time, my shift is over and I've got a dinner reservation
[22:57:25] <vice-versa> might be back on later to see how you're making out
[22:58:34] <vice-versa> I would continue by comparing the output from both a failed and successful delivery
[22:59:02] <lunaphyte> has anyone seen my fish?
[22:59:15] * seekwill just had some sushi
[22:59:36] <BuenGenio> vice-versa, thanks x 10^5 for your help!
[22:59:42] <vice-versa> BuenGenio: and perhaps increasing the auth verbosity too as i think this is where it's breaking down
[22:59:55] <vice-versa> np mate, I'll check with you later
[23:00:16] * BuenGenio whips out google
[23:00:29] <vice-versa> !debug
[23:00:30] <knoba> vice-versa: "debug" : http://www.postfix.org/DEBUG_README.html : a good starting point for how to deal with problems and to report information to those who might help. Post your information in a pastebin such as http://pastebin.ca/ or http://rafb.net/paste/ .
[23:00:34] <vice-versa> !sasl
[23:00:34] <knoba> vice-versa: "sasl" : SASL is 'Simple Authentication and Security Layer', necessary for SMTP AUTH, and provided to Postfix by addin software. Cyrus SASL and/or Dovecot IMAP/POP3 can provide SASL. See http://www.postfix.org/SASL_README.html for details.
[23:01:35] <Knoedel2> why my sender_canoncial_maps not working ? i'm trying to send over sasl and i have set local_header_rewrite_clients = permit_inet_interfaces, permit_sasl_authenticated
[23:02:38] *** madrescher has quit IRC
[23:05:36] *** growltiger has quit IRC
[23:06:12] *** growltiger has joined #postfix
[23:06:14] <Knoedel2> made writng mistake
[23:06:18] <Knoedel2> writing
[23:11:00] *** j_s has quit IRC
[23:31:17] *** mitcheloc has joined #postfix
[23:31:36] <mitcheloc> hello, does postfix support catch-alls at the domain level?
[23:31:41] *** Zblakany has quit IRC
[23:34:17] <seekwill> mitcheloc: What other level is there?
[23:34:33] <seekwill> You mean, accept any domain?
[23:34:36] <mitcheloc> seekwill: the user level ie. *anything* at domain dot com
[23:34:45] <mitcheloc> seekwill: yes, but without configuring each domain seperately
[23:35:01] <seekwill> Catchalls arent really that great
[23:35:11] <mitcheloc> in eseense.. i want postfix to act as a public relay but just to accept the e-mail then pass it off to my own program
[23:36:18] <seekwill> Well, yeah, you want to be an open relay..
[23:36:40] <mitcheloc> sort of, but not in the evil sense
[23:37:16] *** whatever__ has quit IRC
[23:37:22] <mitcheloc> i will be filtering the messages based on content, not recipient
[23:37:38] <seekwill> I don't know how to do that...
[23:38:20] <mitcheloc> okay.. no prob.. i'm considering just writing an smtp server from scratch to accept the e-mails and then i'll queue them back into postfix once they've been filtered
[23:38:38] <mitcheloc> that will save me from having to write reliable delivery code
[23:39:13] *** war9407 has quit IRC
[23:40:28] <seekwill> Set yourself up as an open relay. That isn't too hard
[23:41:01] <seekwill> Not sure how to do the content filtering part.
[23:41:32] <mitcheloc> seekwill: ahhh, i get what you mean.. duhh
[23:42:05] <mitcheloc> seekwill: so i'd just need to hook into the mail flow in postfix then.. i think something like the mailbox_command
[23:42:20] <seekwill> Just curios, what are you doing?
[23:42:21] <mitcheloc> i'll just use a simple php script to do the filtering
[23:42:41] <mitcheloc> seekwill: trying to process attachments on e-mails..
[23:43:17] *** _RiCo_ has joined #postfix
[23:43:19] <_RiCo_> hi
[23:44:43] *** der_soenke has left #postfix
[23:45:30] <_RiCo_> i have a problem with config postfix. can any help me?
[23:45:45] <_RiCo_> i^m a noob and can^t very good english :-(
[23:47:42] <_RiCo_> i have the msg:
[23:47:44] <_RiCo_> postsuper: fatal: scan_dir_push: open directory defer: Permission denied
[23:47:59] *** _bugz_ has joined #postfix
[23:48:03] <rob0> Why are you running postsuper(1)?
[23:48:46] <_RiCo_> i have only started postfix
[23:48:55] <_RiCo_> postfix start
[23:48:55] <_RiCo_> postsuper: fatal: scan_dir_push: open directory defer: Permission denied
[23:48:55] <_RiCo_> postfix/postfix-script: fatal: Postfix integrity check failed!
[23:53:15] <shasta> run this: postfix check; echo $?
[23:54:49] <rob0> um, you are running "postfix start" as root? How did you install this? Source, or OS packages? (Which OS?)
[23:55:13] <_RiCo_> postsuper: fatal: scan_dir_push: open directory defer: Permission denied
[23:55:35] <_RiCo_> i have it installed as packege
[23:56:06] <_RiCo_> jex, postfix start as root
[23:56:09] <_RiCo_> jes
[23:56:14] <_RiCo_> yes, sry *g*
[23:56:36] <shasta> permissions are messed up
[23:56:55] <shasta> man postfix to find out more
[23:59:13] *** mitcheloc has left #postfix
[23:59:18] <_RiCo_> sry, i dont understand, what you mean
[23:59:51] <rob0> ^^ (Which OS?)





top