[00:08:03] *** Knoedel2 has quit IRC
[00:08:18] <ThersiT> i've got postfix setup to the point that a can send mail to a local user using real domain names (eg mail to: user at mydomain dot com) and it works.. now i've tried to send mail to an outside domain, at the end of the telnet session postfix said the message was queued but it never arrived.
[00:08:41] <ThersiT> any ideas?
[00:10:39] <ThersiT> if postfix did want to relay mail to the internet where does it sent it (using direct delivery)
[00:15:17] <seekwill> Paste the exact log
[00:16:53] <ThersiT> where do i get the log from?
[00:19:37] *** SlappyWilson has quit IRC
[00:29:05] *** ritslinux has quit IRC
[00:36:32] *** pirho has quit IRC
[00:40:12] *** seekwill has quit IRC
[00:46:23] *** k-man__ has quit IRC
[00:49:18] *** madrescher has quit IRC
[00:52:58] <ThersiT> I keep getting a error 554 saying "Your access to this mail system has been rejected due to the sending MTA's IP **.***.**.** poor reputation"
[00:53:35] <ThersiT> do i need to set a relay host to my isp's mail server?
[00:53:58] <AcTiVaTe> ThersiT: Go to http://www.mxtoolbox.com/blacklists.aspx and enter the MTA's IP there
[00:54:13] <AcTiVaTe> ThersiT: The site will tell you why the IP has a poor reputation
[00:54:19] <ThersiT> k
[00:55:01] *** Tykling has joined #postfix
[01:01:14] *** war9407 has quit IRC
[01:05:43] *** knoba has quit IRC
[01:06:13] *** knoba has joined #postfix
[01:06:54] *** alienbrain has joined #postfix
[01:08:01] *** Tapout has quit IRC
[01:24:21] <neurodamage> postfix/pipe gives me relay=spamassassin, delay=2.9, delays=0.33/0.01/0/2.5, dsn=4.3.0, status=deferred (system resource problem)
[01:24:33] <neurodamage> any ideas what that's about it only happens every so often, but not all the time
[01:24:55] <neurodamage> and if I reque selected it'll let'em through :(, no idea what's going on there?
[01:25:36] *** cyr- has joined #postfix
[01:26:34] *** F6F has quit IRC
[01:28:32] <neurodamage> I've posted my master.cf and main.cf before, they're valid, I'm just not sure what's going on?
[01:48:29] *** gutocarvalho has joined #postfix
[01:56:07] *** cyr- has quit IRC
[01:56:49] <ThersiT> does postfix look at a default main.cf before the real main.cf? and if it does where is the default file?
[02:08:42] <Dominian> main.cf is it
[02:18:49] *** cilly has quit IRC
[02:39:12] *** pitakill has joined #postfix
[02:43:53] *** oblio_ has joined #postfix
[02:44:00] <oblio_> hola
[02:44:57] *** gonewestcoast_ has quit IRC
[02:45:21] *** shoonya has quit IRC
[02:47:10] <lunaphyte> hi
[02:57:24] *** ming_zym has joined #postfix
[03:10:23] *** msshams has joined #postfix
[03:11:48] <msshams> hi, my postfix and dovecot server works fine in send and receive. but only, i can't send email to yahoo! yahoo doesn't get my emails. can you help me plz?
[03:14:04] <lunaphyte> i bet yahoo gets your email just fine, and then dumps it right in the garbage. :)
[03:15:19] <lunaphyte> or is it truly getting rejected?
[03:16:42] <msshams> lunaphyte: yes, it forward my emails to spam folder
[03:17:11] <lunaphyte> why did you say that yahoo doesn't get your emails then?
[03:18:19] <lunaphyte> anyway, you'll need to ask yahoo why they're considering your email spam.
[03:18:23] <msshams> lunaphyte: because my english id bad. so i can't write true sentences.
[03:18:30] *** msshams has left #postfix
[03:24:32] *** Fallenou has quit IRC
[03:29:40] *** jeev has quit IRC
[03:29:57] *** ThersiT has left #postfix
[03:30:01] *** jeev has joined #postfix
[03:31:04] *** eric2 has joined #postfix
[03:32:14] <eric2> I'm seriously stuck... here my error: ...     Invalid Addresses   554 5.7.1 <test at hotmail dot com>: Relay access denied
[03:32:43] <Dominian> ok
[03:32:45] <Dominian> what about it?
[03:33:13] <eric2> I've created an application that is to send out emails but my server won't allow it go to out
[03:33:20] <eric2> something in main.cf ?
[03:33:28] <Dominian> need to see the full log
[03:33:36] <eric2> k, I'll get it...
[03:33:41] <Dominian> You have 127.0.0.0/8 set to allow for relay?
[03:34:02] <lunaphyte> either add the address of the computer submitting messages to mynetworks or use smtp auth
[03:34:33] <Dominian> aye
[03:35:27] <eric2> http://pastebin.ca/1205491
[03:35:48] <eric2> I'll check the 127.0.0.0/8 thing... in master.cf?
[03:36:08] <lunaphyte> !tell eric2 mynetworks
[03:36:09] <knoba> eric2: -> "mynetworks" : a configuration parameter in the main.cf: The list of "trusted" SMTP clients that can relay email.
[03:39:04] <Dominian> mynetweorks.. yah
[03:39:05] <eric2> mint, it works... I only had 127.0.0.0  as an entry for  mynetworks...
[03:39:17] <Dominian> you slapped /8 on there and it worked?
[03:39:19] <eric2> I added /8 and the end and it works... thanks
[03:39:20] <eric2> yes
[03:39:23] <Dominian> heh
[03:39:28] <Dominian> no problem
[03:39:42] <Dominian> You were basically telling postfix to only allow 127.0.0.0 which doesn't exist as an actual IP ;P
[03:39:44] *** Tykling has left #postfix
[03:40:41] <eric2> hmm... what does the /8 mean?
[03:40:48] <brd> !cidr
[03:40:49] <knoba> brd: "cidr" : cidr_table(5) - format of Postfix CIDR table. Lookup table in Classless Inter-Domain Routing form. In this case, each input is compared against a list of patterns. When a match is found, the corresponding result is returned and the search is terminated.
[03:40:58] <eric2> I've seen it before.. but never paid much attention
[03:42:18] <Dominian> CIDR notation for IP network subnets
[03:53:31] *** mavrick61 has quit IRC
[03:54:43] *** mavrick61 has joined #postfix
[03:55:47] *** alienbrain has quit IRC
[04:03:58] *** gutocarvalho has quit IRC
[04:36:22] *** Juspion has joined #postfix
[04:40:58] *** neurodamage has quit IRC
[04:41:21] *** neurodamage has joined #postfix
[04:45:30] *** wepy has joined #postfix
[04:45:37] <wepy> hey i have a weird question
[04:46:14] <wepy> a few hours ago, i sent an e-mail to two people, and after a minute or so, received a notification that the mail would not be delivered (user not found blah blah)
[04:46:44] <wepy> then like 10 minutes ago, i come back to check my mail, and those rejected mail messages are gone (there was one for each)
[04:47:04] <wepy> is it possible for postfix to delete mail?
[04:47:27] <wepy> i checked my imap delete folder.. not there..
[04:47:37] <wepy> logs show nothing happening after the two mails arrived
[04:57:26] *** keffer has joined #postfix
[05:03:08] *** goldfischli has joined #postfix
[05:08:19] *** roe__ has joined #postfix
[05:14:51] *** Thorn has quit IRC
[05:15:13] *** roe__ has quit IRC
[05:16:00] *** Thorn has joined #postfix
[05:17:19] *** imm has joined #postfix
[05:17:57] <imm> hello all. is there a way to set up postfix so that local will deliver mail for a .forward file that isn't owned by the user whose home directory contains it?
[05:19:33] *** wepy has left #postfix
[05:19:52] *** goldfisc1li has quit IRC
[05:31:50] *** Severed_Head_Of_ is now known as growltiger
[05:40:48] *** roe__ has joined #postfix
[05:41:16] *** roe__ is now known as roe_
[05:49:57] *** Juspion has quit IRC
[05:52:23] *** Thorn has quit IRC
[06:11:33] *** the1 has joined #postfix
[06:11:47] <the1> i'm retarded.  can i put a * at domain dot com in the sender_whitelist?
[06:11:51] <the1> or something similar
[06:16:17] <the1> damn
[06:16:23] <the1> this place full of idlers?
[06:17:26] *** the1 has quit IRC
[06:17:29] *** Motoko-chan has joined #postfix
[06:28:27] *** githogori has joined #postfix
[06:35:11] *** saurabhb has joined #postfix
[06:42:31] *** corle0ne has joined #postfix
[06:42:35] <corle0ne> how do i fix this: delivery temporarily suspended: unknown mail transport error ?
[06:42:52] <Motoko-chan> Check the errors above that one.
[06:43:32] <corle0ne> Sep 19 04:43:47 mail postfix/qmgr[6301]: 0210643E2A: to=<mrniceguy10 at gmail dot com>, relay=none, delay=2, status=deferred (delivery temporarily suspended: unknown mail transport error)
[06:45:22] <corle0ne> Motoko-chan any idea?
[06:45:38] <Motoko-chan> Check previous errors
[06:45:52] <corle0ne> theres no previous errours, only this
[06:45:57] <Dominian> !transport
[06:45:58] <knoba> Dominian: "transport" : transport(5) The optional transport(5) table specifies a mapping from email addresses to message delivery transports and next- hop destinations. Look at: http://www.postfix.org/transport.5.html
[06:46:58] <corle0ne> ?!
[06:47:29] <Dominian> read
[06:49:30] *** Zblakany has joined #postfix
[06:49:33] <corle0ne> shit.. dont understand
[06:49:42] <corle0ne> it was working yesterday
[06:56:03] <corle0ne> ?!
[06:56:06] <corle0ne> anyone can help me
[06:57:00] <Dominian> What did you change?
[06:57:01] <Dominian> something changed
[06:57:04] <Dominian> or someone changed something
[06:57:12] <Dominian> and if you don't know what changed.. you really need to star tlooking
[06:57:16] <Dominian> postfix doesn't randomly stop working
[06:57:23] <Dominian> it has to physically have something changed.
[06:57:26] <Dominian> at least in my experience
[06:57:38] <Dominian> So if you ran some sort of update on your box last night/yesterday.. i'd start there
[06:57:59] <corle0ne> fixed
[06:58:01] <corle0ne> it was chroot
[06:58:02] <corle0ne> heh
[06:58:10] <corle0ne> i del /var/spool/postfix to clean all queues
[06:58:10] <corle0ne> heh
[06:58:19] <corle0ne> what a good way to clear queues/
[06:58:55] <Dominian> hehe
[06:59:02] <Dominian> man postsuper next time
[06:59:04] <Dominian> ;)
[06:59:16] <Dominian> postqueue -p helps
[07:07:17] *** neurodamage has left #postfix
[07:09:02] *** egwuser has joined #postfix
[07:11:22] *** egwuser has left #postfix
[07:12:26] *** f3ew has joined #postfix
[07:13:58] *** chadmaynard has joined #postfix
[07:15:21] *** weedar has joined #postfix
[07:15:48] *** bhagat has joined #postfix
[07:21:34] *** k-man has joined #postfix
[07:21:48] <k-man> what do you have to do after adding a new alias for postfix to recognise it?
[07:22:17] <chadmaynard> postalias
[07:22:50] <k-man> thanks
[07:28:27] *** anoncos has quit IRC
[07:28:53] <k-man> out of interest, why does restarting postfix not seem to do the postalias thing?
[07:32:08] *** anoncos has joined #postfix
[07:32:40] <f3ew> k-man, because the Postfix startup script doesn't call newaliases, unlike the Sendmail startup script on Linux
[07:38:39] *** pitakill has quit IRC
[07:53:05] <k-man> f3ew: fair enough
[07:53:07] <k-man> thanks
[07:57:27] *** _Driver_ has quit IRC
[08:04:36] *** rcsu has joined #postfix
[08:06:07] *** mandragor has joined #postfix
[08:07:19] *** weedar has quit IRC
[08:26:03] *** mandragor is now known as weedar
[08:26:19] *** sophokles has joined #postfix
[08:27:31] *** sbathe_ has joined #postfix
[08:29:09] *** sbathe_ has quit IRC
[08:32:11] *** sophokles1 has joined #postfix
[08:39:53] *** hparker has quit IRC
[08:48:45] *** sophokles has quit IRC
[08:56:22] <k-man> i want to set up a mailing list
[08:56:39] <k-man> can anyone recommend one that plays nicely with postfix?
[08:59:06] <f3ew> mailman?
[09:02:06] <k-man> ok - is it easy to integrate with postfix?
[09:09:29] *** madrescher has joined #postfix
[09:11:31] <f3ew> yes
[09:11:31] <Motoko-chan> mailman is nice
[09:11:33] <f3ew> they all are
[09:11:51] <k-man> ok
[09:11:52] <k-man> thanks
[09:13:53] *** szaszka has quit IRC
[09:14:27] <weedar> Some users have noticed duplicate emails in their inbox, but according to email logs on the message-id I see only one "status=sent" message - has anyone experienced this before?
[09:15:01] <sysmonk> i start debuging this kind of problems with asking for headers
[09:15:15] <sysmonk> and looking if their dublicates have same message-id's and looking at queue-id's
[09:15:34] <sysmonk> mostly it's "dublicate" on the sender side, so postfix can't "fix" those
[09:15:38] <weedar> sysmonk: that's the weird part, the headers for the duplicate emails have the same message-id
[09:15:56] <weedar> so it doesn't seem like the sender sent two emails
[09:16:36] <f3ew> weedar, two copies of the same mail?
[09:16:42] <f3ew> Possibly from two aliases?
[09:17:40] <weedar> f3ew: no, I have 3 occurences of duplicate emails delivered yesterday, all of them were sent to single accounts (two different addresses) and has shown up twice in the inbox
[09:17:56] <sysmonk> weedar: and what about queue-id's?
[09:18:01] <sysmonk> do they all match in both emails?
[09:18:02] <weedar> But since postfix only seems to know of one delivery I'm thinking, could this be an error on the part of the imap-server?
[09:18:10] <weedar> sysmonk: exactly the same
[09:18:25] <f3ew> weedar, possibly
[09:18:32] <f3ew> ell, or the mail client
[09:18:44] <f3ew> which didn't realiase the message was downloaded earlier
[09:18:45] <sysmonk> the mail client might be it
[09:18:47] <f3ew> realise*
[09:18:58] <f3ew> a broken proxy/antivirus/pop3 download
[09:19:18] <weedar> because this occured for two different users on two different machines - so if so there were two mail clients that suddenly decided to act weird at about the same time
[09:19:22] *** justin__ has joined #postfix
[09:19:56] <f3ew> the network
[09:20:15] <f3ew> If they are using POP3, and the network connection breaks, downloaded mail won't be purged
[09:20:25] <weedar> they both use IMAP
[09:24:31] *** devil` has joined #postfix
[09:27:29] <Captain> anybody knows how to say postfix that users who login (SASL) are permited und not "Client host rejected: cannot find your hostname"
[09:27:52] <Captain> if no ptr exists..
[09:28:42] <f3ew> Captain add permit_sasl_authenticated before the reject_unknown_helo_hostname
[09:28:53] *** growltiger_ has joined #postfix
[09:33:11] *** devil` has quit IRC
[09:35:24] *** corle0ne has quit IRC
[09:36:39] *** Bigmack83 has joined #postfix
[09:37:33] *** kexman has joined #postfix
[09:37:34] <kexman> hi
[09:37:59] <kexman> im trying to send mail an account on one mailserver to a mail account on another server
[09:39:47] <Bigmack83> i have just set up my mail server. I am able to connect to my account via pop. and my smtp connects with port 25 with either none,ssl, or tls encryption but it cannot connect in anyway via port 587. i checked my iptables and 587 is open. all references (that i can find) to the articles i used (on slicehost.com) are set up the same. i followed them to set mine up. Any idea where i can start to diagnose this? my /etc/postfix/master.conf
[09:40:32] <Bigmack83> oops sorry i meant pop connects via port 25, not smtp which is wont connect
[09:40:36] <Hyperi> kexman: Try aliases?
[09:40:54] <Hyperi> Bigmack83: SMTP enabled ?
[09:41:56] <Bigmack83> Hyperi: The precess that i went through should have made it enabled. is there a command i can run to test it?
[09:42:36] <Bigmack83> im relatively new to using linux so not familiar with a lot of the advanced commands
[09:43:01] <kexman> Hyperi: my problem is TLS
[09:43:35] <Hyperi> Bigmack83: telnet localhost smtpport
[09:43:36] <Hyperi> replace the 'smtpport' with your smtp's port
[09:43:43] <kexman> i have set up my postfix in this way : for me to be able to send a mail i must connect to my smtp server and that is set up in way that it only accepts connections that use TLS
[09:43:52] <kexman> both server have the same setup
[09:43:55] <Hyperi> If you can connect, it's open atleast locally. If not - it's not open .P
[09:44:07] <kexman> smtpd_tls_security_level = encrypt
[09:44:13] <kexman> smtpd_tls_auth_only = yes
[09:44:24] *** growltiger has quit IRC
[09:44:29] <Hyperi> Bigmack83: replace it with numbers :)
[09:44:33] <kexman> host xx.xx.xx.xx said: 530 5.7.0 Must issue a STARTTLS command first (in reply to MAIL FROM command)
[09:44:47] <Bigmack83> oh. lol duh
[09:47:14] <kexman> Hyperi: should i add smtp_use_tls = no
[09:47:20] <kexman> aaa smtp_use_tls=yes
[09:48:35] <Captain> f3ew: "before" where?
[09:48:46] <Captain> http://www.pastebin.ca/1205708
[09:48:50] <Bigmack83> Hyperi: ok i am in the telnet prompt
[09:49:04] <kexman> Hyperi: if i set smtp_use_tls=yes then i am able to send the mail from one server to the other
[09:49:08] <kexman> but not otherwise
[09:53:53] *** cmatheson has quit IRC
[09:54:04] *** growltiger_ has quit IRC
[09:55:09] <Bigmack83> Hyperi: are there any commands that i should enter into the postfix cli to test my smtp port?
[09:57:31] *** war9407 has joined #postfix
[09:57:36] <Hyperi> I'm having major DC issues :S
[09:58:06] <Hyperi> kexman: Why you don't want to use TLS then? :S
[09:58:32] <Hyperi> Bigmack83: Just type 'telnet localhost smtp'
[09:58:38] <kexman> Hyperi: well i want to use tls for client authenticating for they're mailboxes
[09:58:43] <Hyperi> It should take your default port from services anyway
[09:59:05] <Hyperi> Bigmack83: If it opens up = It means you've it enabled and listening the port.
[09:59:09] <Hyperi> aka. it works
[09:59:11] <kexman> you know when someone trys to send a message from the server using its user account (user at domain dot com + password) so that info is transmitted via tls
[09:59:15] <Hyperi> So check your client side settings .)
[09:59:22] <kexman> Hyperi: im very new to postfix :) and mail in general :)
[09:59:43] <Hyperi> kexman: I'm adequately new to postfix myself aswell, but I do know some :)
[10:00:00] <kexman> Hyperi: i am using dovecot to authenticate using a mysql background.
[10:00:14] <kexman> at least i think that i am using dovecot to authenticate :)
[10:00:20] <Hyperi> kexman: Butbut, you want postfix to forward the usrs password? :S
[10:00:31] <kexman> Hyperi: forward ? no
[10:00:42] <Hyperi> Kind of confused now here :P
[10:00:46] <kexman> Hyperi: can you give me your postfixes main.cf ? :)
[10:00:50] <Hyperi> Anyways - brb.
[10:00:55] <kexman> okay
[10:00:58] <kexman> see ya later
[10:05:45] <xpoint> kexman, delete main.cf is safe :)
[10:18:22] *** Motoko-chan has quit IRC
[10:18:28] *** knoba has quit IRC
[10:18:38] *** knoba has joined #postfix
[10:20:56] *** thumbs has quit IRC
[10:21:05] *** thumbs has joined #postfix
[10:22:12] <kexman> xpoint: :) hello
[10:22:23] <kexman> xpoint: im trying to figure out how stuff works :)) hehe
[10:22:39] <xpoint> who say it works ?
[10:22:45] <kexman> heheheh
[10:23:06] <kexman> currently reading on : http://www.postfix.org/postconf.5.html#smtp_enforce_tls
[10:23:51] <xpoint> this option is for when you dont want anon users send mail to you
[10:24:40] <kexman> who are anon users ?
[10:24:48] <xpoint> me
[10:24:58] <kexman> hehe :)
[10:25:18] <Hyperi> anon = anonymous
[10:25:24] <Hyperi> aka. unknow
[10:25:24] <kexman> i know what it means
[10:25:27] <xpoint> anon users is all user that do not smtp auth
[10:25:32] <kexman> aaa
[10:26:24] <xpoint> but the option is trickky, if forced tls one need to use tls auth
[10:26:38] <kexman> xpoint: so sending a mail works like this : i write my mail with my client (thunderbird for example) and i send it to my smtp server. this is an smtp to smtp send ? i mean server to server send already ?
[10:26:41] *** BartVB has joined #postfix
[10:26:59] <Hyperi> Eh ? :D
[10:27:04] <xpoint> thunderbird is client
[10:27:06] <kexman> yeah im confused myself :)
[10:27:11] <Hyperi> You just said "with my client", and asked if It's server to server? oO
[10:27:40] <kexman> xpoint: when i send mail with my client then smtp or smtpd options imply ?
[10:27:51] <sysmonk> for accepting - smtpd
[10:27:53] <sysmonk> for sending - smtp
[10:27:56] <sysmonk> !smtpd!=smtp
[10:27:57] <knoba> sysmonk: "smtpd!=smtp" : Postfix smtpd_* and smtp_* configuration parameters have different meanings. smtpd_ = server and smtp_ = client, the server-side receives mail whilst the client-side sends mail. (smtpd = server = receives mail) (smtp = client = sends mail)
[10:28:14] <kexman> sysmonk: okay
[10:28:45] <kexman> this now explains why i cant send mail only when using smtp_use_tls then :)
[10:28:46] <xpoint> kexman, sysmonk forgets pickup and submissions services olso
[10:29:07] <sysmonk> ...
[10:29:12] <sysmonk> submission = smtpd
[10:29:13] <kexman> xpoint: i have smtpd_tls_security_level = encrypt and smtpd_tls_auth_only = yes
[10:29:15] <sysmonk> just on another port
[10:29:24] <kexman> this is why i must use smtp_use_tls on the other server
[10:29:24] <kexman> right ?
[10:29:27] <sysmonk> pickup - it's neither smtpd_ nor smtp_
[10:29:50] <kexman> lets not get too far :)
[10:29:57] <sysmonk> kexman: does your postfix auth to any other serveer?
[10:30:05] <kexman> aaa i dont know :)
[10:30:16] <sysmonk> i don't think it does if you don't know
[10:30:25] <sysmonk> then you don't need smtp_tls_auth_only
[10:30:41] <sysmonk> if you want your MUA ( as in thunderbird ) to auth over TLS to your postfix then you need smtpd_tls_auth_only
[10:30:51] <kexman> i just wanted the users that can use the postfix server (the ones that i set up in my mysql db) to be able to authenticate only after the TLS session has begun
[10:31:07] <sysmonk> then smtpd_ is the way to go
[10:31:07] <kexman> sysmonk: that is what i want
[10:31:19] <kexman> i dont have smtp_tls_auth_only i have smtpd_tls_auth_only
[10:31:26] <kexman> then its set up right then . right ?
[10:31:27] <sysmonk> hare_krishna is even a better way to go
[10:31:38] <sysmonk> kexman: right...
[10:32:07] <BartVB> Hotmail is refusing to accept mail from one of my mailservers (rate limit, is supposed to be lifted somewhere tomorrow according to their techs). In the meantime I would like to use another mailserver that's in good standing with hotmail to deliver my email. I've tried using 'relayhost' for this purpose but that doesn't seem to affect already queued emails? Is there any way to redirect the existing mails in the queue?
[10:32:28] <kexman> sysmonk: sooo
[10:32:30] <sysmonk> BartVB: postsuper
[10:32:40] <kexman> i dont have no option like smtp_ in my main.cf
[10:32:50] <sysmonk> kexman: you don't need smtp_tls_*
[10:32:51] <kexman> and i get this error when trying to send to that mailserver :
[10:32:59] <BartVB> sysmonk, I tried 'postsuper -r ...' but that just seemd to retry sending the mail to hotmail.com again. It seems to ignore the relayhost setting?
[10:33:02] <kexman> sysmonk: i have no smtp_ option in my main.cf
[10:33:14] <sysmonk> BartVB: did you restart postfix?
[10:33:24] <BartVB> sysmonk, :) Yup, several times
[10:33:42] *** Zeit|awy_ has joined #postfix
[10:34:07] <sysmonk> BartVB: are you sure that the mail you -r'ed was still delivering directly to hotmail?
[10:34:11] <sysmonk> and not using your relayhost
[10:34:18] <sysmonk> i mean, maybe it was some other mail, not the one you -r'ed
[10:34:29] <sysmonk> or did you -r ALL ?
[10:35:04] <BartVB> sysmonk, very sure. But just re-checked and it seems like postfix is ignoring relayhost alltogether. Is still sending mail directly, not using the relayhost. Hmm.
[10:35:24] <kexman> sysmonk: this is what i get : <kex at host1 dot domain.com>: host host1.domain.com[xx.xx.xx.xx] said: 530 5.7.0 Must issue a STARTTLS command first (in reply to MAIL FROM command
[10:35:30] *** mark-use has joined #postfix
[10:35:44] <sysmonk> BartVB: so new mails don't use the relayhost too?
[10:35:59] <sysmonk> kexman: so, your thunderbird doesn't use tls
[10:36:05] <sysmonk> kexman: it's thunderbird configuration problem
[10:36:08] <kexman> sysmonk: wait wait wait ! nooo
[10:36:14] <kexman> i get that from the other mailserver
[10:36:19] <sysmonk> ah
[10:36:23] <kexman> i get back a Undelivered Mail Returned to Sender
[10:36:38] <sysmonk> kexman: what's the other server? is it yours?
[10:36:49] <BartVB> sysmonk, omg. I need more coffee :) there was a blank 'relayhost=' hidden around the end of my postfix config :\ No wonder *sigh*
[10:36:56] <BartVB> Thanks for the help though! It's working now :)
[10:36:58] <Hyperi> haha :D
[10:37:02] <sysmonk> BartVB: that's what postconf does for you
[10:37:03] <kexman> sysmonk: yes and both have the same setup
[10:37:05] <Hyperi> BartVB: It happends to all of us :P
[10:37:17] <sysmonk> BartVB: other time just look at postconf -n output to check if everything is fine
[10:37:29] <sysmonk> if you had a mistype or overriding param - postconf would show it to you
[10:37:35] *** Bigmack83 has left #postfix
[10:37:36] <sysmonk> Hyperi: doesn't for me :)
[10:37:50] <kexman> sysmonk: if i dont set up tls in thunderbird then the server doesnt even sends the message and i get back a 5.7.0 response but from host2.domain.com. so its not thunderbird setup problem. definitly not :)
[10:37:57] <BartVB> hmm, nice one. Need to look into postconf :)
[10:37:59] <sysmonk> Hyperi: i have a clean main.cf with only the stuff i need, so i don't have to go through the 500+ lines main.cf to edit something
[10:38:15] <Hyperi> sysmonk: :o)
[10:38:26] <Hyperi> sysmonk: I can but a bet on that :P
[10:38:39] <sysmonk> um, what do you mean?
[10:38:40] <Hyperi> sysmonk: That even you have a typo of some sort somewere soemtimes :P
[10:38:50] <Hyperi> "I can put"* :S
[10:38:58] <Hyperi> See? Typos live their own life ^^
[10:39:25] <Hyperi> And the more you're tired, the more they live :<
[10:39:26] <sysmonk> Hyperi: sre noh tipoz hir
[10:39:27] <sysmonk> ;:)))
[10:39:32] <Hyperi> sysmonk: ^^
[10:39:41] <Hyperi> (brb)
[10:39:52] <Hyperi> Just ate a lunch in restaurant, now back home :)
[10:40:00] <sysmonk> working from home?
[10:40:06] <Hyperi> Today yes :)
[10:40:14] <sysmonk> maybe you have a remote job to offer? :P
[10:40:22] <Hyperi> But usually I sit in a boring office room :<
[10:40:24] <Hyperi> idk
[10:40:29] <Hyperi> I'm just a low peon :)=
[10:40:31] <kexman> sysmonk: do you have any suggestion ? postconf | grep -i smtp_ | grep -i tls > http://rafb.net/p/mV77Qb95.html
[10:40:39] <sysmonk> i've already asked a question kexman
[10:40:42] <sysmonk> and you didn't answer
[10:40:54] <kexman> sorry i didnt saw it. let me check back
[10:40:57] <sysmonk> ah you did
[10:40:59] * sysmonk lame
[10:41:13] <kexman> about the other server
[10:41:15] *** Zeit|awy has quit IRC
[10:41:16] <Hyperi> sysmonk: Actually he did check :D
[10:41:16] <sysmonk> kexman: it's the problem on the other server, not on the one you connect with thunderbird too
[10:41:21] <Hyperi> err answer :P
[10:41:28] <Hyperi> You see! You failed!
[10:41:35] <Hyperi> Now I'll boast about it until I get bored and die.
[10:41:36] <sysmonk> Hyperi: i've already told i failed
[10:41:47] <Hyperi> I'm just taking counts (o:
[10:41:50] <Hyperi> Now seriously brb :P
[10:42:10] <kexman> sysmonk: yes i replyed its my server and its the same setup i use on this server. exactly the same. well with slightly little differences. like host and stuff like that
[10:42:41] <sysmonk> kexman: pastebin postconf -n for both of the servers
[10:42:47] <kexman> okay
[10:44:21] <xpoint> or better postfinger
[10:45:52] <kexman> i dont have that
[10:46:19] <sysmonk> postfinger is a 3rd party app
[10:46:51] *** vaq has joined #postfix
[10:46:55] <sysmonk> and i hate the lunixish way of looking at the things - that is, installing some 3rd party app to do something you can do with base stuff anyway
[10:47:36] <Hyperi> Back :)
[10:47:49] <xpoint> postconf dont display master.cf configs
[10:48:06] <Hyperi> huh?
[10:48:08] <kexman> sysmonk: here it is : server1: http://rafb.net/p/ErDpHm12.html server2: http://rafb.net/p/LRsdUm45.html
[10:48:11] <xpoint> postconf dont test sasl is working
[10:48:14] <vaq> Hello, I am trying to reject mails for unknown users in my spam gateway so the mails are not delivered to the final MTA where my users mailboxes are located, this works on many mails however on 20% i get this error: http://pastebin.ca/1205732 -  Out: 452 4.3.1 Insufficient system storage neither my spam gateway or my final mta lack of diskpace. They both have over 40% free. Any ideas?
[10:48:17] <Hyperi> ah
[10:48:28] <sysmonk> xpoint: who told i need it
[10:48:50] <xpoint> sysmonk, linux is olso tools freedom :)
[10:49:06] <sysmonk> sure it is
[10:49:17] <Hyperi> Now this might get intresting... linux vs linux? :P
[10:49:28] <sysmonk> but why the f*** do i have to install 'lsof' just to see that something is listening on port 80 ?
[10:49:29] <Hyperi> Already got bored frmo the epic win vs lin :P
[10:49:36] <sysmonk> Hyperi: i'm bsd :)
[10:49:39] <f3ew> netstat
[10:49:41] <Hyperi> Fail :<
[10:49:45] <Hyperi> f3ew: agreed
[10:49:48] <f3ew> sysmonk netstat -lntpe
[10:49:49] <sysmonk> f3ew: no! linux guys need lsof for that!!!!
[10:49:52] <sysmonk> f3ew: i know
[10:49:55] <f3ew> No!
[10:50:04] <sysmonk> f3ew: but 90% of lunix people install lsof to look at that
[10:50:04] <sysmonk> ;)
[10:50:04] <kexman> no
[10:50:06] <xpoint> and knowing what tools to use to get more info is nice since it can reduce fails when one know more about why it does work / not work
[10:50:13] <kexman> i use netstat -nptul
[10:50:15] <Hyperi> sysmonk: No? :P
[10:50:17] <kexman> for listening
[10:50:49] <vaq> Hello, I am trying to reject mails for unknown users in my spam gateway so the mails are not delivered to the final MTA where my users mailboxes are located, this works on many mails however on 20% i get this error: http://pastebin.ca/1205732 -  Out: 452 4.3.1 Insufficient system storage neither my spam gateway or my final mta lack of diskpace. They both have over 40% free. Any ideas?. Another question, why is my gateway contacting adsl-84-227-14-106.adslpl
[10:50:57] <sysmonk> vaq: wait in your queue :)
[10:51:10] <vaq> sysmonk: ?
[10:51:13] <kexman> f3ew: hmm netstat -npteal
[10:51:16] <Hyperi> vaq: Did you try to google it ?
[10:51:26] <vaq> Hyperi: yes
[10:51:34] <kexman> f3ew: ment to say netstat -napteul
[10:51:38] <Hyperi> And got nothing?
[10:51:39] <f3ew> vaq mail the list
[10:51:57] <vaq> f3ew: Should i ask on the postfix mail list?
[10:51:59] <f3ew> vaq what's your message_size_limit ?
[10:52:08] <sysmonk> kexman: you have smtpd_tls_security_level = encrypt on the other box
[10:52:15] <kexman> on both boxes
[10:52:17] <xpoint> vaq, setup vrfy on master server, and let slave use it
[10:52:18] <sysmonk> kexman: that's why the other box _requires_ you to auth to send email
[10:52:26] <sysmonk> kexman: s/auth/use tls/
[10:52:29] <vaq> f3ew: message_size_limit = 100240000
[10:52:40] <vaq> xpoint: I do not control all my final MTA slaves.
[10:52:53] <kexman> sysmonk: what is the general use out there. may ?
[10:52:54] <xpoint> vaq, another problem
[10:53:03] <sysmonk> kexman: yes
[10:53:09] <kexman> sysmonk: i want to be able to send email with or without tls. depending on the other servers capabilities
[10:53:24] <kexman> if the server doesnt knows it F it :) dont use it :) but if it can do it then use it :)
[10:53:34] <kexman> sysmonk: to be able to use it what should i set up ?
[10:53:42] <f3ew> and is the free space > 100240000 * 1.5 ?
[10:53:49] <sysmonk> kexman: just set it to may
[10:53:50] <kexman> additional smtp_ parameters ? use may instead of encrypt ?
[10:54:03] <sysmonk> kexman: you're reasking the same question 3 times
[10:54:03] <kexman> sysmonk: can i still make my thunderbird clients NEED to use TLS ?
[10:54:15] <xpoint> vaq, then use reject_unverified_recipient or use relay_recipient_maps on slave that is ALWAYS synced to the master, but you soon see its impossible
[10:54:16] <sysmonk> kexman: NEED to use tls for auth != need to use TLS
[10:54:19] <sysmonk> different things
[10:54:21] <kexman> sysmonk: i want thunderbird to strictly use tls
[10:54:27] * f3ew sighs
[10:54:34] <Hyperi> (omg the amount of text :S Can't keep up reading it :<)
[10:54:37] <kexman> smtpd_tls_auth_only = yes
[10:54:38] <vaq> f3ew: yes
[10:54:52] <sysmonk> kexman: smtpd_tls_auth_only requires your clients to use TLS for AUTHORIZATION
[10:54:57] <f3ew> kexman: how do you distinguish between an end user MUA and another MTA?
[10:55:06] <f3ew> vaq then postfix-users at postfix dot org
[10:55:09] <kexman> f3ew: well that is what i am asking from sysmonk
[10:55:22] <sysmonk> o_o
[10:55:27] <vaq> xpoint: I do not control the slaves, and they are not all postfix installations, however i am allowed to query them to verify the existence of the mail account, and they all reply to that.
[10:55:36] <kexman> so i can force MUA's to use TLS only . i force other MTA-s to use TLS only if i force the MUA-s right ?
[10:55:36] <f3ew> kexman, my suggestion is to send all MUAs to the submission port and mandate TLS there
[10:55:46] <f3ew> while MTA -> MTA is over port 25
[10:55:53] <kexman> uhumm
[10:55:58] <kexman> so how the heck do i do that ? :))
[10:55:59] <kexman> hehe
[10:56:06] <f3ew> !submission
[10:56:06] <sysmonk> f3ew: or requiring AUTH to send mail
[10:56:07] <knoba> f3ew: "submission" : I am knoba! Yield to my power and authority mortal
[10:56:14] <sysmonk> f3ew: and setting smtpd_tls_auth_only
[10:56:20] *** kofiann has joined #postfix
[10:56:25] <f3ew> sysmonk submission must have auth and tls, by RFC
[10:56:33] <xpoint> vaq, let postfix figure out the mess itself with reject_unverified_recipient
[10:56:39] <kexman> baaah im F confused
[10:56:43] <sysmonk> f3ew: i'm talking about 25
[10:56:46] <f3ew> !!forget submission
[10:56:46] <knoba> f3ew: Error: "!forget" is not a valid command.
[10:56:49] <f3ew> !forget submission
[10:56:54] <vaq> xpoint: i already use: permit_mynetworks, reject_unauth_destination, reject_unverified_recipient
[10:56:59] <sysmonk> f3ew: although i agree about submission is the best way to go
[10:57:12] <xpoint> vaq, perfekt
[10:57:30] <kexman> sysmonk: f3ew what should i do ?
[10:57:32] <f3ew> xpoint, vaq's problem is that enablin reject_unverified_recipient causes free space warnings
[10:57:45] <sysmonk> kexman: there's two ways of doing it
[10:57:53] <xpoint> how ?
[10:57:58] <vaq> f3ew and many mails are still allowed in for accounts that do not exist.
[10:58:11] <sysmonk> kexman: 1. use submission and enforce tls there 2. use port 25 and enforce auth. and make auth work ONLY with tls
[10:58:44] <kexman> settings this : smtpd_tls_auth_only = yes wpi;d fpr auth and make auth work ONLY with tls ?
[10:58:56] <kexman> or i need additional setups for option number 2. ? :)
[10:59:33] <sysmonk> kexman: for option 2 you need to set the security_level to may, set the smtpd_tls_auth_only = yes, and remove your clients networks from mynetworks
[11:00:08] <kexman> huhh .... why do i need to remove the clients networks from mynetwork ? what does that do ? could you be so kind to explain ?
[11:00:30] <sysmonk> kexman: because you have permit_mynetworks which will accept their emails even if they're not authed
[11:00:37] <kexman> aha
[11:00:40] <f3ew> http://www.faqs.org/rfcs/rfc4865.html @ kexman
[11:00:52] <kexman> sysmonk: okay thanx
[11:00:58] <kexman> f3ew: readin up
[11:01:02] <f3ew> xpoint that is what we have not been able to figure out
[11:01:10] <sysmonk> kexman: that's the link to the 1.
[11:01:37] <vaq> f3ew, xpoint: The problem seems to be that i recieve alot of warnings because my MTA tries to send back a e-mail to the sender that he tried to mail to a account that didnt exist. And the sender's MTA is out of space, how do i disable sending a error message back?
[11:01:50] <kexman> soooo what if i want to enable my server to talk to other mta's via tls if possible ? then i would need to set smtp_ variables ?
[11:02:25] <sysmonk> kexman: yes, but fix your current issue first :)
[11:02:43] <kexman> sysmonk: doing that :) thanx alot
[11:02:54] <f3ew> vaq set notify_classes to something sane?
[11:03:03] <xpoint> vaq, ah not i get it
[11:03:08] <xpoint> now
[11:03:20] <Hyperi> vaq: Still here?
[11:03:20] <kexman> sysmonk: i could remove permit_mynetworks , couldnt i ? would that give me other headaches, errors?
[11:03:26] <vaq> Hyperi: yes
[11:03:32] <xpoint> f3ew, olso what i belive is the way to solve this
[11:03:37] <sysmonk> kexman: yes
[11:03:46] <sysmonk> kexman: yes as in headaches
[11:03:52] <vaq> Doesnt it have something to do with: unverified_recipient_reject_code = 550 ?
[11:03:52] <Hyperi> vaq: I *googled* some, and seems like the only possible way is that you're out of space.
[11:04:01] <kexman> i also have 127.0.0.1 and that would allow people who are using the server to auth ... generally that wouldnt really happen since i dont allow unix users but in this setup i am authenticating from 127.0.0.1
[11:04:32] <Hyperi> vaq: "The disk partition hosting your Postfix queue ($queue_directory) must have at least max(1.5 * $message_size_limit, $queue_minfree) bytes available. Your /var partition apparently doesn't. http://www.postfix.org/postconf.5.html#queue_minfree "
[11:05:01] 
[11:05:02] <vaq> Hyperi: read my response above, it is the senders MTA who are out of disk space.
[11:05:13] <Hyperi> Uhm?
[11:05:21] <Hyperi> And why does it fill your error logs?
[11:05:33] <vaq> f3ew: notify_classes only allow me to bounce or send other error messages.
[11:05:41] <vaq> Hyperi: The problem seems to be that i recieve alot of warnings because my MTA tries to send back a e-mail to the sender that he tried to mail to a account that didnt exist. And the sender's MTA is out of space, how do i disable sending a error message back?
[11:05:51] <Hyperi> vaq: ah
[11:06:43] <vaq> There doesnt seem to be any way of disabling this :-/
[11:06:47] <Hyperi> Well tbh you should be mailing the postmaster to notify his problem
[11:06:58] <Hyperi> Easiest way
[11:06:59] <Hyperi> Or
[11:07:13] <Hyperi> You can block the malfunctioning MTA from your box :)
[11:07:13] <vaq> iknow, but i recieve 20k+ of this every day because i scan 500+ mails.
[11:07:22] *** szaszka has joined #postfix
[11:08:20] <Hyperi> But with server<->server issue I can't help you, sorry :<
[11:08:31] <vaq> hmm
[11:08:41] <Hyperi> Or can't you remove the mails from queue ?
[11:08:42] <kexman> hehh i removed the network from mynetworks and i can still authenticate without tls ... :((
[11:09:45] <sysmonk> kexman: cause you're testing with 127.0.0.1
[11:09:50] <sysmonk> kexman: atelast you said so
[11:10:15] <kexman> sysmonk: nope
[11:10:35] <sysmonk> kexman: then pastebin how you login + postconf -n on that server
[11:10:38] <kexman> sysmonk: i was connecting from ip1 to ip2
[11:10:43] <kexman> but i was sending to myself
[11:10:49] <kexman> but still that shouldnt work
[11:10:51] <kexman> right ?
[11:11:06] <sysmonk> postfix would accept the mail without auth
[11:11:19] <sysmonk> but if you're saying the AUTH worked without tls - then yes, it shouldn't work
[11:12:04] <kexman> sysmonk: huhh what do you mean postfix would accept the mail without auth ? in what situation ?
[11:12:20] *** milligan_ has quit IRC
[11:12:29] <kexman> well sysmonk i can try without tls + bad password :) see what i get like that :)
[11:12:32] <sysmonk> kexman: when postfix is responsible for the mail
[11:12:54] <sysmonk> that is, when the domain you send to is in postfix's mydestination || virtual_*_domains
[11:13:34] <vaq> okay, i boiled the whole thing down to what the problem really is, the error messages it just regardign that my MTA is trying to tell the sender address that he mailed a user that didn't exist, the sender's mta then say it lack of diskspace, I cant do anything about this and it's fine.. My problem is that some e-mail accounts on the same domain seems to get verified and denied, but some others just slip right trough. It's like the postfix server is to bussy
[11:14:21] <kexman> sysmonk: then it will send the mail without auth ? why the heck ? is that how it should work like ?
[11:14:42] <sysmonk> kexman: yes, that's how it should work.
[11:14:46] <kexman> oo :)
[11:14:49] *** Zblakany has quit IRC
[11:14:50] <sysmonk> kexman: how do you think other people will be able to send you the mail?
[11:15:02] <sysmonk> you can't auth people sending you mail from gmail
[11:15:04] <kexman> yeah yeah i was just thinking about that :) hehe sorry :)
[11:15:04] <sysmonk> or whatever
[11:15:45] <kexman> i am trying to figure out where thunderbird stores its passwords
[11:15:48] * sysmonk sings the hare_krishna song
[11:16:46] <vaq> f3ew: Have you seen such a problem before?
[11:18:21] <kexman> sysmonk: now i get 5.7.1 trying to send from host1 to host2 authentication from host2 . i get relay access denied. what the heck does that mean ?
[11:18:47] <kexman> Please check the message recipients and try again. did it send the password before tls commenced ?
[11:20:41] <kexman> sysmonk: well without tls i get this ^^ and with tls i can send the mail ...
[11:21:08] <kexman> but now i dont have no idea what that message means .... i was expecting a message saying that i cant auth before STARTTLS
[11:21:18] * kexman thinks sysmonk got tired of him :P
[11:21:31] * Hyperi agrees
[11:21:39] <kexman> Hyperi: should stay out of this
[11:21:45] <Hyperi> Tho he'll back soon awake again after he finishes his 'hare_krishan song' :P
[11:22:04] <kexman> Hyperi: its hare_krishna
[11:22:26] <Hyperi> kexman: don't go there :S
[11:22:29] <sysmonk> kexman: yes i did get tired of you
[11:22:33] *** msshams has joined #postfix
[11:22:34] <sysmonk> kexman: that's why i sing the hare_krishna song
[11:22:38] *** kofiann has quit IRC
[11:23:04] <Hyperi> :)
[11:23:15] * kexman :(
[11:23:36] <msshams> postfix with dovecot can send and receive my emails successfully. but please tell me why Yahoo transfer my emails to spam folder?
[11:23:38] * kexman thinks its gonna go with 1. option that is submission
[11:24:24] <Hyperi> msshams: Yahoo mail is hungry? oO
[11:26:06] <msshams> Hyperi: what?
[11:26:59] *** Signum has quit IRC
[11:27:21] *** knoba has quit IRC
[11:28:13] *** knoba has joined #postfix
[11:29:27] <Hyperi> msshams: uhm, I was trying to be a comedian :S
[11:29:57] <Hyperi> Anyways
[11:30:06] <Hyperi> Took me 5 minutes to google answer for you
[11:30:08] *** Signum has joined #postfix
[11:30:11] <Hyperi> (Which you should've done)
[11:30:13] <Hyperi> msshams: http://help.yahoo.com/l/us/yahoo/mail/postmaster/forms_index.html
[11:30:37] <Hyperi> You'll propably need the "Yahoo! Mail Bulk Sender Form
[11:30:39] <Hyperi> Use this form if you send legitimate bulk mail and your mailings are not being delivered to the Inbox." part
[11:31:27] *** BartVB_ has joined #postfix
[11:31:59] <kexman> legitimate bulk mail :) hhehh sound funny
[11:32:41] <Hyperi> :)
[11:32:48] <Hyperi> msshams: Also don't forget to read http://help.yahoo.com/l/us/yahoo/mail/postmaster/postmaster-15.html
[11:36:12] <Hyperi> msshams: Helped? :)
[11:37:07] *** kk_CHN has joined #postfix
[11:37:42] *** kk_CHN has quit IRC
[11:37:47] <msshams> Hyperi: thank you.
[11:37:58] <Hyperi> msshams: yw :)
[11:37:58] *** kk_CHN has joined #postfix
[11:38:03] *** BartVB has quit IRC
[11:38:33] <msshams> Hyperi: i found that yahoo says you must authenticate your mails with domainkeys and similar. can you help me in this way? i use postfix and debian
[11:38:49] <Hyperi> Don't have those myself :/
[11:38:52] <Hyperi> Try googling first ;)
[11:39:16] <Hyperi> I just proved how easy and fast it's to find your answers with it :)
[11:40:02] <sysmonk> woot? you can find answers with google?!
[11:40:09] <Hyperi> :P
[11:40:10] <sysmonk> damn, i thought google is only for searching for pr0n
[11:40:32] <Hyperi> sysmonk: Is this the moment I'm supposed to say something with pure evil purposes? :)
[11:40:38] <Hyperi> Just to counter-mock :P
[11:41:03] <sysmonk> nah, you don't have to respond with evil to evil
[11:41:05] <sysmonk> !sysmonk
[11:41:06] <knoba> sysmonk: "sysmonk" : evil
[11:41:06] <sysmonk> !evil
[11:41:08] <knoba> sysmonk: "evil" : is sysmonk
[11:41:19] <Hyperi> pfft
[11:41:36] <Hyperi> You can't be evil by just adding definition to a bot :P
[11:41:42] <Hyperi> Evil is defined by the others ^^
[11:42:14] *** denis_ has joined #postfix
[11:42:17] <kexman> sysmonk: man im lost
[11:42:48] <Hyperi> Try google maps
[11:42:50] <Hyperi> ^^
[11:43:12] *** pirho has joined #postfix
[11:43:28] *** hever has joined #postfix
[11:43:31] <kexman> :)
[11:44:29] <sysmonk> kexman: hare_krishna is teh way
[11:44:36] <Hyperi> :DDD
[11:44:44] <Hyperi> Stop smoking weed m8
[11:44:48] <Hyperi> It's bad for your configs ^^
[11:44:50] <sysmonk> kexman: are you doing this for a company?
[11:45:00] <sysmonk> Hyperi: do you know what's hare_krishna/
[11:45:04] <kexman> sysmonk: i am doing this for myself
[11:45:14] <sysmonk> kexman: still, hare_krishna is nice ;P
[11:45:19] <Hyperi> sysmonk: A song afaik ?
[11:45:24] <sysmonk> Hyperi: no!
[11:45:25] <Hyperi> Krishan was indian god of some sort
[11:45:26] <kexman> :) hehh :)
[11:45:29] <sysmonk> !hare_krishna
[11:45:29] <knoba> sysmonk: "hare_krishna" : Rumor has it that Hare Krishna means hire a consultant in Hindi.
[11:45:29] <sysmonk> ;)
[11:45:37] <Hyperi> Lies!
[11:45:43] <sysmonk> not lies!
[11:45:50] <Hyperi> You're lies!
[11:45:54] <Hyperi> I dare you!
[11:45:57] <kexman> :) lol
[11:46:09] *** msshams has quit IRC
[11:46:12] * sysmonk genereates /kb command
[11:46:30] <Hyperi> I double-dare you :P
[11:46:50] * f3ew grins
[11:47:31] <Hyperi> "And suddenly #postfix turned into non-sexual cyber-sex channel" ? oO
[11:47:44] <Hyperi> Imagine that.... non-sexual cyber-sex.
[11:48:12] <Hyperi> Anyways, it seems it's about time for me to take a nap. :)
[11:48:27] <Hyperi> See you all later :)
[11:50:02] <kexman> grrrr /me boils in anger
[11:51:07] <Trengo> thats tantric cybersex
[11:51:23] <sysmonk> i think we're *slightly* offtopic
[11:51:26] <Trengo> its so boring its non-sexual
[11:51:34] <kexman> is it very bad idea to use smtpd_tls_security_level = encrypt
[11:51:37] <kexman> ?
[11:51:48] <sysmonk> yes
[11:51:52] <sysmonk> atleast on smtpd
[11:51:55] <kexman> umf . why ?
[11:51:56] <sysmonk> but you can use that on submission
[11:52:04] <sysmonk> kexman: because other servers won't be able to talk to you
[11:52:13] <kexman> why arent all server using tls ? :)
[11:52:14] *** knoba has quit IRC
[11:52:25] *** knoba has joined #postfix
[12:01:17] *** cilly has joined #postfix
[12:07:33] <xpoint> kexman, 42
[12:08:06] <xpoint> kexman, you found the devil here, if all used tls  we have another problem
[12:08:19] <kexman> what is that ?
[12:09:59] <xpoint> ssl keys is not easy to make, atleast not when its non payed at the same time
[12:13:14] *** knoba has quit IRC
[12:13:44] *** knoba has joined #postfix
[12:14:17] <justin__> hey, has anyone gotten dkim working on their mail servers yet?
[12:17:02] *** kk_CHN has quit IRC
[12:23:53] *** cpm has joined #postfix
[12:25:13] *** growltiger has joined #postfix
[12:30:37] <kexman> hare_krishna my friends :)
[12:30:57] <kexman> sorry to have brought so much headaches on your head :) and thanx alot for the help it is working how it should be working :)
[12:34:17] *** justin__ has left #postfix
[12:34:39] *** ming_zym has quit IRC
[12:36:46] *** rob0 has left #postfix
[12:37:13] *** denis_ has quit IRC
[12:38:12] *** cilly has quit IRC
[12:40:21] *** cilly has joined #postfix
[12:44:11] *** cpm has quit IRC
[12:45:21] *** cpm has joined #postfix
[12:49:28] *** amrit|wrk is now known as amrit|zzz
[12:58:55] *** madrescher has quit IRC
[13:01:39] *** hever has quit IRC
[13:05:24] *** kk_CHN has joined #postfix
[13:14:26] *** adnc has joined #postfix
[13:17:59] *** Fallenou has joined #postfix
[13:46:48] *** kk_CHN has quit IRC
[13:47:37] *** denis_ has joined #postfix
[13:56:21] *** MaD^MaRe` has quit IRC
[13:58:13] *** MaD^MaRe` has joined #postfix
[14:04:31] *** gutocarvalho has joined #postfix
[14:20:23] <kexman> what happens if i sent my mail to a host that has no mx record is an A record but it has no smtp configured on it ?
[14:20:32] <kexman> how long will postfix try to send the mail ?
[14:26:21] *** cilly has quit IRC
[14:26:35] <war9407> keffer: 5-7 days?
[14:30:33] *** cilly has joined #postfix
[14:31:14] *** _Driver_ has joined #postfix
[14:31:26] <lunaphyte_> !tell kexman maximal_queue_lifetime
[14:31:28] <knoba> kexman: -> "maximal_queue_lifetime" : a configuration parameter in the main.cf: The maximal time a message is queued before it is sent back as undeliverable, the default value is 5 days.
[14:41:03] *** brancaleone has joined #postfix
[15:08:49] *** saurabhb has quit IRC
[15:10:30] *** Tykling has joined #postfix
[15:18:55] *** bhagat has quit IRC
[15:28:12] *** cilly has quit IRC
[15:28:45] *** F6F has joined #postfix
[15:33:19] *** Thorn has joined #postfix
[15:34:12] <oblio_> dog
[15:38:47] *** Fallenou has quit IRC
[15:43:20] <adnc> is there a restriction that i can not use virtual_alias_maps and virtual_mailbox_maps at the same time?
[15:43:29] *** dft has joined #postfix
[15:43:32] <dft> morning
[15:46:17] *** Deffie has joined #postfix
[15:48:18] *** BartVB_ has quit IRC
[15:48:28] *** anordby has joined #postfix
[15:58:53] <adnc> virtual_mailbox_maps
[15:59:04] <adnc> !tell adnc virtual_mailbox_maps
[15:59:05] <knoba> adnc: -> "virtual_mailbox_maps" : a configuration parameter in the main.cf: Optional lookup tables with all valid addresses in the domains that match $virtual_mailbox_domains.
[16:02:15] *** danbeck has joined #postfix
[16:09:41] *** mark-use has quit IRC
[16:15:51] *** cilly has joined #postfix
[16:17:01] *** Jax has joined #postfix
[16:19:57] <adnc> in my main.cf i defined virtual_alias_maps as a hash file called virtual_mailbox_aliases. in this if i map one receipe address to two recipient, like info at mydomain dot tld   one at seconddomain dot tld,two@seconddomain.tld it doesnt work
[16:20:12] <adnc> am i doing something wrong? if i list only one recipient than it works without any problems
[16:22:27] <f3ew> adnc that should work
[16:22:37] *** denis_ has quit IRC
[16:23:29] <adnc> f3ew: i see in the logs that postfix/pipe deliveres those via the relay to spamassassin and qmgr removes them
[16:23:44] <adnc> does it mean that spamassassin is not requeueing it?
[16:24:40] <f3ew> adnc, you probably need to specify a recipient_limit = 1 for your pipe transport
[16:24:57] <f3ew> See http://www.postfix.org/MAILDROP_README.html for example
[16:25:24] <adnc> recipient_limit for limiting the max size of recipients?
[16:26:48] <adnc> i see
[16:27:13] <adnc> it just makes sure that only one recipient at a time is given to maildrop
[16:27:47] <adnc> will this have an effect on non virtual accounts?
[16:31:56] <adnc> f3ew: still here?
[16:32:21] *** Haris has joined #postfix
[16:32:21] *** weedar has quit IRC
[16:34:20] *** cilly has quit IRC
[16:34:30] <f3ew> yes
[16:34:46] <f3ew> adnc, only to the feed given to SA
[16:35:08] <adnc> f3ew: but i do not use maildrop
[16:35:21] <adnc> is this also possible with procmail
[16:35:29] <Haris> later folks
[16:35:31] *** Haris has left #postfix
[16:35:33] <adnc> which is doing to local delivery
[16:35:36] <adnc> here
[16:35:43] <f3ew> adnc the principle of giving mail to a pipe is the same
[16:35:47] <f3ew> one recipient at a time
[16:35:53] *** cilly has joined #postfix
[16:39:59] <adnc> mhh
[16:46:59] <adnc> f3ew: i do not understand the principle. could you help?
[16:49:31] <adnc> i use mailbox_command procmail
[16:49:46] <f3ew> f3ew> one recipient at a time <==== apply to the pipe feeding sa
[16:49:53] <adnc> is there a sort of procmail_destination_recipient_limit = 1
[16:49:55] <adnc> ?
[16:54:37] <adnc> !tell adnc procmail_destination_recipient_limit
[16:54:39] <knoba> adnc: Error: No factoid matches that key.
[16:54:52] <adnc> !tell adnc maildrop_destination_recipient_limit
[16:54:53] <knoba> adnc: Error: No factoid matches that key.
[16:55:10] <adnc> !tell adnc recipient_limit
[16:55:12] <knoba> adnc: Error: No factoid matches that key.
[16:56:23] <dft> if I have a transport with the following config http://pastebin.com/d5bb8a468
[16:56:35] *** itchi has quit IRC
[16:57:20] <dft> then this MX host would route all none my.domain mail to outbound-relay and all my.domain to [a.b.c.d]?
[16:57:24] *** cilly has quit IRC
[17:00:33] *** brancaleone has quit IRC
[17:02:40] <dft> bueller?
[17:02:48] <dft> uh..bueller!
[17:03:04] <dft> has anyone seen Ferris?
[17:03:33] *** _bt has quit IRC
[17:06:39] *** hparker has joined #postfix
[17:12:23] *** Fallenou has joined #postfix
[17:12:51] <adnc> !tell local_destination_concurrency_limit = 1
[17:12:52] <knoba> adnc: Error: No factoid matches that key.
[17:12:57] <adnc> !tell local_destination_concurrency_limit
[17:12:57] <knoba> adnc: (tell <an alias, 2 arguments>) -- Alias for "echo $1: -> [Factoids whatis $2]".
[17:14:13] *** Jax has quit IRC
[17:16:03] <hparker> !tell adnc help
[17:16:04] <knoba> hparker: Error: No factoid matches that key.
[17:16:06] <hparker> :P
[17:16:14] <f3ew> If you make a procmail transport entry in master.cf yes
[17:17:14] <adnc> f3ew: can you give me a bit more information?
[17:17:29] *** neurosys has joined #postfix
[17:17:49] <neurosys> Is there a way i can dump some real verbose debug info from postfix?
[17:19:26] <hparker> neurosys: Add -v to the service in master.cf.. There's also debug_client or something for main.cf
[17:19:48] <neurosys> hparker:  Thank you :)
[17:21:43] <adnc> f3ew: still here=?
[17:21:45] *** Jax has joined #postfix
[17:30:23] *** madrescher has joined #postfix
[17:34:23] *** keffff has joined #postfix
[17:36:08] *** razym318 has joined #postfix
[17:36:18] *** keffer has quit IRC
[17:36:18] *** razym has quit IRC
[17:36:18] *** felix-da-catz_zz has quit IRC
[17:36:18] *** confound has quit IRC
[17:36:18] *** wooz has quit IRC
[17:36:18] *** lunaphyte_ has quit IRC
[17:36:18] *** shasta has quit IRC
[17:36:18] *** Dominian has quit IRC
[17:36:18] *** pa has quit IRC
[17:37:04] *** Dominian has joined #postfix
[17:37:21] *** wooz has joined #postfix
[17:37:49] *** confound has joined #postfix
[17:38:55] *** _bt has joined #postfix
[17:42:02] *** Dominian has quit IRC
[17:42:02] *** wooz has quit IRC
[17:42:02] *** keffer has joined #postfix
[17:42:02] *** lunaphyte_ has joined #postfix
[17:42:03] *** pa has joined #postfix
[17:42:03] *** Dominian has joined #postfix
[17:42:03] *** shasta has joined #postfix
[17:42:03] *** wooz has joined #postfix
[17:42:03] *** razym has joined #postfix
[17:42:03] *** felix-da-catz_zz has joined #postfix
[17:42:04] *** Dominian_ has joined #postfix
[17:42:06] *** wooz_ has joined #postfix
[17:42:14] *** lunaphyte__ has joined #postfix
[17:42:28] *** felix-da-catz_zz has quit IRC
[17:42:37] *** lunaphyte_ has quit IRC
[17:42:45] *** pa has quit IRC
[17:42:45] *** razym has quit IRC
[17:44:20] *** lunaphyte__ is now known as lunaphyte_
[17:45:36] <adnc> is there a paramter like maildrop_destination_recipient_limit  for procmail?
[17:46:46] <oblio_> if all my mail just started queueing
[17:46:51] <oblio_> any points on what to look for?
[17:49:40] <adnc> oblio_: look into your logs and see why they are queued
[17:49:49] <oblio_> no error messages that i can see
[17:50:04] *** keffer has quit IRC
[17:50:26] *** Dominian has quit IRC
[17:50:33] *** pa has joined #postfix
[17:54:08] *** brancaleone has joined #postfix
[18:03:15] *** Deffie has quit IRC
[18:03:30] *** pitakill has joined #postfix
[18:08:22] *** Dominian_ is now known as Dominian
[18:09:00] *** wooz has quit IRC
[18:12:10] *** Fallenou has quit IRC
[18:14:54] *** szaszka has quit IRC
[18:16:06] *** brancaleone has quit IRC
[18:21:23] *** sophokles1 has quit IRC
[18:23:56] *** dantix has joined #postfix
[18:24:13] *** dotplus has quit IRC
[18:25:27] *** gutocarvalho has quit IRC
[18:26:14] <dantix> hi all, I have a virtual map record that look likes: a at b dot com -> a at b dot com,c@b.com and if I send a mail to a at b dot com cc to c at b dot com, c at b dot com receive just one copy of it, why? how can I fix it to get c@b reciving two copies?
[18:28:30] *** j_s has joined #postfix
[18:31:47] *** Jax has quit IRC
[18:37:34] *** chadmaynard has quit IRC
[18:44:28] <dantix> hi all, I have a virtual map record that look likes: a at b dot com -> a at b dot com,c@b.com and if I send a mail to a at b dot com cc to c at b dot com, c at b dot com receive just one copy of it, why? how can I fix it to get c@b reciving two copies?
[18:47:32] *** brancaleone has joined #postfix
[19:10:20] *** Sup3rFly has joined #postfix
[19:10:29] *** githogori has quit IRC
[19:10:30] <Sup3rFly> can you whitelist entire domains?
[19:10:45] <Sup3rFly> in sender_whitelist?
[19:11:27] *** weedar has joined #postfix
[19:13:53] *** neurosys has quit IRC
[19:16:01] *** ploploop has joined #postfix
[19:17:21] *** ploploop has quit IRC
[19:19:17] *** danbeck has quit IRC
[19:22:25] *** Rayn has joined #postfix
[19:22:44] <dantix> I have a virtual map record that look likes: a at b dot com -> a at b dot com,c@b.com and if I send a mail to a at b dot com cc to c at b dot com, c at b dot com receive just one copy of it, why? how can I fix it to get c@b reciving two copies?
[19:23:33] <Rayn> Hey guys, I'm using always_bcc to backup mail, but I'm getting 3 copies of most messages. I know this is due to it passing through multiple smtpd's as it gets content filtered, but I've set '-o always_bcc=' on the smtpds that handle processing after amavis.. why are they still generating duplicates?
[19:24:35] *** adnc has quit IRC
[19:25:11] *** brancaleone has quit IRC
[19:28:09] *** Sup3rFly has quit IRC
[19:28:30] *** gutocarvalho has joined #postfix
[19:28:49] *** lambda has joined #postfix
[19:34:21] *** Motoko-chan has joined #postfix
[19:35:21] *** dantix has left #postfix
[19:37:14] <googlah> . .
[19:44:22] *** szaszka has joined #postfix
[19:46:15] *** amrit|zzz is now known as amrit|wrk
[19:46:46] *** felix-da-catz_zz has joined #postfix
[19:49:37] *** Rayn has left #postfix
[20:11:55] *** carl- has joined #postfix
[20:14:24] *** pickcoder has joined #postfix
[20:16:56] *** lambda has quit IRC
[20:17:45] *** githogori has joined #postfix
[20:21:40] *** lambda has joined #postfix
[20:22:12] <pickcoder> meh.. I forgot to set a rate limit transport for hotmail
[20:30:08] *** karrotx has joined #postfix
[20:30:31] <karrotx> what bin should i use to rebuild relay_domains.db? i'm used to sendmails "make all"
[20:31:03] <pickcoder> postmap
[20:31:13] *** lambda has quit IRC
[20:31:21] <karrotx> ah, thanks
[20:36:03] *** eanxgeek has joined #postfix
[20:52:34] *** Tykling has left #postfix
[21:03:23] *** cpm has quit IRC
[21:06:16] *** szaszka has quit IRC
[21:08:49] *** dantix has joined #postfix
[21:12:31] <dantix> hi there, I've setup a virtual alias map that looks like: alias@b -> a@b, c@b and works fine. But when som people sends a mail to alias@b with CC to a@b, a@b just receive one copy of mail, when should receive one by the expansion of alias@b and other by CC field on original message. Is it possible to fix this behaviour?
[21:25:53] *** omry has joined #postfix
[21:26:15] *** Fallenou has joined #postfix
[21:29:35] <omry> hi. does a log message that ends with nrcpt=1 (queue active) is an indication of a delivery problem?
[21:29:42] *** pitakill has quit IRC
[21:29:46] <omry> for some reason, my messages are stuck in the queue.
[21:31:51] *** unsolo has left #postfix
[21:32:34] <omry> here is something more substantial : CDF282528127: to=<omry at firefang dot net>, relay=127.0.0.1[127.0.0.1]:10024, delay=695, delays=395/0.12/300/0, dsn=4.4.2, status=deferred (conversation with 127.0.0.1[127.0.0.1] timed out while receiving the initial server greeting)
[21:32:46] <omry> I am probably doing something wrong..
[21:32:56] <oblio_> omry: i have the same problem
[21:33:03] <omry> oblio_, great :)
[21:33:09] <oblio_> but that log message does not indicate an issue
[21:33:21] <oblio_> well wait
[21:33:24] <omry> the machine is running the DNS for firefang.net, and I just added an mx record that redirect it to yadan.net
[21:33:38] <oblio_> you're setup to relay eh
[21:33:42] <oblio_> back to yourself
[21:33:45] <omry> so I am not sure why postfix is even trying to talk with localhost (itself?!) and timeout
[21:33:46] <oblio_> content filter
[21:33:51] <oblio_> thats for amavis
[21:33:52] <oblio_> or related
[21:34:01] <oblio_> is the port 10024 open on localhost?
[21:34:06] <oblio_> postfix is trying to run mail through that port
[21:34:36] <oblio_> also make sure in main.cf your postfix knows it handles mail for yadan.net
[21:36:37] *** gonewestcoast has joined #postfix
[21:37:11] *** gonewestcoast has quit IRC
[21:40:54] <omry> oblio_, just had a connectivity glitch.
[21:41:04] <omry> luckily I got what you were saying (wonders of tcp)
[21:41:11] <oblio_> cool
[21:41:14] <oblio_> mail running through now?
[21:41:20] <omry> nono
[21:41:36] <omry> I mean - I didn't receive any thing from you for a few minutes
[21:41:41] <omry> and I could not connect some servers
[21:41:50] <omry> including my own server.a
[21:41:57] <omry> trying to figure it out
[21:42:31] <omry> aright, connectivity restored.
[21:42:40] <omry> some server in the middle of my route got banged.
[21:42:52] <oblio_> nice
[21:42:55] <oblio_> "banged"
[21:43:25] <omry> :)
[21:43:30] <omry> just invented
[21:43:40] <omry> anyway, yes - amavis is listening on that port.
[21:45:41] <dantix> omry what if you do telnet localhost 10024?
[21:45:50] <omry> oblio_, that postfix does not handle mails for yadan.net
[21:46:19] <omry> dantix, conection opens. no chatter
[21:47:18] 
[21:47:30] <omry> I am probably trying something silly. I configured the MX record for firefang.net to be yadan.net
[21:47:52] *** vor has joined #postfix
[21:48:04] <omry> I configured lots of stuff, don't remember any specific details about amavis.
[21:48:31] <omry> ah, I see it should respond with 220 [127.0.0.1] ESMTP amavisd-new service ready
[21:48:35] <omry> (on another machine)
[21:48:41] <omry> so something is wrong with amavis..
[21:50:07] <omry> any idea how to debug this?
[21:50:34] <vor> omry HTH, http://www200.pair.com/mecham/spam/
[21:51:55] <omry> vor, which article?
[21:52:01] *** bugz__ has joined #postfix
[21:53:07] <omry> hmm, amavis is bitching on syslog:
[21:53:09] <omry> Sep 19 20:52:06 flux amavis[27109]: (27109-01) ClamAV-clamd: timed out, retrying (1)
[21:53:52] <dantix> right, ClamAV is not running
[21:54:16] <dantix> possible your database is wrong
[21:54:25] <omry> I think it is running
[21:54:33] <omry> clamav   16537  2.6  7.5 190068 155360 ?       Rs   Sep13 241:23 /usr/sbin/clamd
[21:54:53] <dantix> what if you try to restart it?
[21:54:58] <omry> tried.
[21:55:00] <omry> let me try again
[21:55:23] <omry> ah, I restarted amavis
[21:55:24] <omry> not clamd
[21:55:35] <dantix> try with clamd
[21:55:42] <omry> yup
[21:55:49] <omry> restarting . . . . . . .
[21:55:56] <omry> takes it's time :)
[21:56:18] <omry> maybe because it deadlocked
[21:57:02] <dantix> happens to me a time ago, resolved downloading the last version from Clam's site
[21:57:35] <omry> now I got lots ot stuff to the syslog when I tried to flush
[21:57:56] <omry> ClamAV-clamd: Can't connect to UNIX socket /var/run/clamav/clamd.ctl: Connection refused, retrying (1)
[21:58:38] <dantix> try to upgrade the last version of Clamav
[22:00:06] <omry> it smells like a configuration issue
[22:00:35] <omry> cat: /var/run/clamav/clamd.ctl: No such device or address
[22:01:33] <dantix> agree, check clamd config file for paths
[22:02:11] <omry> LocalSocket /var/run/clamav/clamd.ctl
[22:02:15] <omry> this is what you are after?
[22:02:42] <omry> db directory looks okay
[22:02:56] <omry> DatabaseDirectory /var/lib/clamav     , files are there
[22:03:56] <dantix> what user are you using to run amavis, clam?
[22:04:15] *** vor has quit IRC
[22:04:34] <omry> It's a pretty standard debian etch setup
[22:04:58] *** _bugz_ has quit IRC
[22:04:58] <omry> user for amavisd is amavis
[22:05:14] <dantix> check for permissions on Clamav paths
[22:06:12] <omry> think it's a problem with clamd
[22:06:14] <omry> Can't send to socket /var/run/clamav/clamd.ctl
[22:06:18] <omry> in syslog
[22:06:19] <omry> all over.
[22:07:12] <omry> what am I supposed to get when I cat a valid unix socket?
[22:07:54] *** carl- has quit IRC
[22:08:47] <dantix> never tryed, sorry
[22:10:29] <omry> how do I disable clam and amavis?
[22:10:58] <omry> all I want is to send an email, I don't care if I send a virus. let the other end worry about it.
[22:11:09] <lunaphyte_> that's nice.
[22:11:20] <lunaphyte_> i'm sure the other end will appreciate that.
[22:11:21] <omry> yes. I am the other end.
[22:11:52] <lunaphyte_> the only person you're sending mail to is yourself?
[22:12:16] <omry> from this server, at this point of time, yes.
[22:13:12] <lunaphyte_> tell amavis to not use clam.
[22:14:00] <omry> what is is the relation between amavis, clam and postfix?
[22:14:16] <omry> what's the big picture? postfix uses amavis as a generic scanner, and it uses clam as a specific scanner?
[22:15:35] <lunaphyte_> postfix uses amavis as a content filter.  amavis uses various subcomponents like sa, clamav, so on as part of that.
[22:16:03] <omry> ah, thanks.
[22:21:12] <omry> hmm, now amavis says hello when I telnet
[22:22:45] <omry> but the messages are still in the postqueue, and when I try to flush them I don't see any activity in syslog
[22:23:21] *** gutocarvalho has quit IRC
[22:25:27] <dantix> I've setup a virtual alias map that looks like: alias@b -> a@b, c@b and works fine. But when som people sends a mail to alias@b with CC to a@b, a@b just receive one copy of mail, when should receive one by the expansion of alias@b and other by CC field on original message. Is it possible to fix this behaviour?
[22:25:45] *** Radiance has quit IRC
[22:26:27] *** Radiance has joined #postfix
[22:27:52] *** pianohacker has joined #postfix
[22:28:57] <pianohacker> Is there any way to set up an email address in post fix that throws away incoming mail but doesn't return an error? (noreply@)
[22:32:02] <dantix> I've migrated from a old version of Postfix where this configuration worked for years...
[22:34:48] <omry> sigh. amavis on debian tries to use clamd even when it's not installed
[22:35:20] <omry> it's hard coded into some 15-av_scanners file.
[22:36:53] <pianohacker> Would I have to use procmail to do that?
[22:38:34] <dantix> amavis have it own list of antivirus to use, installed or not
[22:39:12] *** m0f0x has joined #postfix
[22:40:37] <omry> dantix, how does it figure out if it should use clamd or not?
[22:42:50] <dantix> take a look to /etc/aavis/conf/15-av_scanners
[22:42:59] <dantix> *amavis
[22:44:09] <omry> ask daemon
[22:44:18] <omry> I think I know what's going on
[22:44:25] <omry> I had 3 clamd instances running
[22:44:38] <omry> and the debian reinstall failed to stop them
[22:44:43] <omry> because it's expected only one
[22:48:03] *** dantix has left #postfix
[22:49:08] *** karrotx has quit IRC
[22:54:17] <pianohacker> Ahh, the solution is header_checks
[22:54:22] <pianohacker> Thanks a bundle :P
[22:54:24] *** pianohacker has left #postfix
[23:04:31] *** gonewestcoast has joined #postfix
[23:12:30] *** nh2 has joined #postfix
[23:12:38] <nh2> hi guys
[23:13:13] <nh2> can anyone tell me what sort of password encryption postfix uses reading passwords from mysql?
[23:14:21] *** madrescher has quit IRC
[23:14:46] *** Fallenou has quit IRC
[23:15:47] *** razym318 has quit IRC
[23:25:56] *** j_s has quit IRC
[23:35:18] *** Jailbait_ has quit IRC
[23:37:24] <pickcoder> nh2: none?
[23:37:36] <pickcoder> I didn't know it read passwords from mysql
[23:37:59] <nh2> there is a configuration for postfix using virtual users in mysql
[23:38:17] <pickcoder> http://www.postfix.org/mysql_table.5.html
[23:38:26] *** weedar has quit IRC
[23:39:02] *** Daviey has quit IRC
[23:43:27] <pickcoder> nh2: maybe you're confusing postfix with your sasl auth service?
[23:43:36] <jp-> nh2: if you're trying to do smtp auth via sasl you'll probably want to look at your sasl configuration. i can't think of any other reason postfix would be interested in a password.
[23:43:37] <pickcoder> like dovecot's auth service
[23:43:47] <pickcoder> which has MySQL connectivity
[23:43:52] <xpoint> postfix uses sasl, its upto you to configure sasl to read passwords in mysql
[23:43:59] *** BartVB has joined #postfix
[23:44:22] <nh2> yeah, im using dovecot
[23:45:03] <xpoint> postconf -a
[23:45:11] <xpoint> dovecot listed there
[23:46:06] <nh2> yeah, everything is working, but the problem is that all passwords are stored in plaintext atm
[23:46:14] <nh2> and i dont know how to change it
[23:46:36] <pickcoder> ask #dovecot
[23:46:57] <jp-> nh2: you can probably change that with your dovecot config, mysql has a function encrypt() and you can probably make use of password() which is what mysql uses for password encryption for it's own users table.
[23:47:07] <nh2> ah ok
[23:47:15] *** gonewestcoast has quit IRC
[23:47:19] <pickcoder> yeah.. password() is default
[23:47:31] <pickcoder> for internal
[23:47:36] *** pirho has quit IRC
[23:47:53] <xpoint> nh2, crypt md5 works for me, that say, cyrus sasl should be compiled with crypt mysql and all the reste disabled
[23:48:10] <nh2> yeah, ive read about something like this
[23:48:37] <nh2> can you tell me maybe how to create hashes in the passwd form (i think this is crypt-md5)
[23:48:43] <xpoint> postfix admin can use nearly all crap alternatives :)
[23:49:11] <nh2> i mean in the shell, how can i do this?
[23:49:30] <xpoint> newer tried here
[23:50:00] <nh2> i mean there must be a program because passwd uses it for the shadow hashes ^^
[23:50:09] <nh2> but just dont know where it is XD
[23:50:15] <xpoint> shadow is not mysql
[23:50:32] <jp-> passwd uses crypt(3)
[23:51:19] <nh2> is there any bash program to use this?
[23:51:28] <pickcoder> nh2: mysql cli
[23:51:33] <pickcoder> or phpmyadmin
[23:51:47] <pickcoder> (which isn't command line)
[23:51:55] <jp-> on debian there is a command called mkpasswd, there isn't any standard program that ships with all linux or unix like systems to make passwords from the shell that i'm aware of
[23:52:25] <nh2> i mean to just create a crypt(3) hash
[23:52:30] <nh2> yeah jp
[23:52:36] <nh2> ok
[23:52:41] <jp-> if you want to create encrypted passwords in mysql use one of it's various encryption functions.
[23:52:50] <jp-> google it, should be well documented.
[23:52:56] <nh2> yeah
[23:53:13] <pickcoder> password("string") in place of "string" in an update statement will encrpyt it using the password function
[23:53:22] <nh2> but i think it cannot do the crypt-md5-hashes, can it?
[23:53:32] <jp-> google it
[23:53:35] <jp-> i think it can.
[23:54:03] <jp-> but you should consult the mysql docs to be sure and i'm sure it's capabilities are documented.
[23:54:29] <pickcoder> there's also MD5("string")
[23:54:39] <jp-> http://dev.mysql.com/doc/refman/5.0/en/encryption-functions.html#function_encrypt
[23:54:45] <jp-> encrypt() in mysql calls crypt(3)
[23:54:49] *** BartVB has quit IRC
[23:55:28] <pickcoder> heh.. password() should not be used for applications
[23:55:32] <pickcoder> nice
[23:56:16] <jp-> using MD5 alone is not a good way to create a password hash, you need to salt it.
[23:58:25] <pickcoder> mm salt
[23:58:39] <nh2> i think it is exactly this question
[23:58:41] <nh2> http://www.dovecot.org/list/dovecot/2007-February/019475.html
[23:58:42] <kexman> hey guys
[23:58:44] <kexman> wazzap ?
[23:58:55] <nh2> but the answer is not satisfactioning
[23:58:56] <kexman> what would you recommend for spam filtering ?
[23:59:03] <nh2> greylisting
[23:59:10] <kexman> i was thinking amavisd-new + spamassasin
[23:59:36] <kexman> i would also like to add clamav that is why i need amavisd-new ... aaa okay i dont know why i need amavisd-new :))





top