[00:00:33] <nickelone> yeah......
[00:02:01] *** _Radiance is now known as Radiance
[00:03:06] *** AcTiVaTe has quit IRC
[00:05:31] *** Bombo_ has joined #postfix
[00:08:57] <MarkRichman> Anyone here know how to set up postfix on leopard?
[00:09:06] <rjbs> It comes with it.
[00:09:08] <rjbs> HTH.
[00:09:34] <MarkRichman> is there a pref pane for it, or is it all just standard command line stuff
[00:10:23] *** Sylphid|work has quit IRC
[00:10:35] <rjbs> It's just like any other unix, for the most part.
[00:10:48] <rjbs> The only idiosyncracy I can think of is that by default it is not constantly running.
[00:11:02] <rjbs> This may be helpful: http://rjbs.manxome.org/rubric/entry/1297
[00:11:17] *** Bombo has quit IRC
[00:11:18] *** Bombo_ is now known as Bombo
[00:11:40] <rjbs> I'm not entirely sure that the launchd-related stuff is still entirely relevant.  These days, I would use Lingon.app to edit launchd configuration.
[00:12:12] <MarkRichman> its just for development purposes, so i dont need it running all the time
[00:12:30] <MarkRichman> am i looking at /private/etc/postfix ?
[00:12:53] <rjbs> Yeah, your postfix configuration is there.
[00:13:01] <Weasel[DK]> which attribute does postfix use for alias (like aliases)  in and LDAP directory ?
[00:13:06] <MarkRichman> thanks
[00:13:46] *** magyar_ has joined #postfix
[00:33:17] *** dft has quit IRC
[00:39:22] *** nickelone has quit IRC
[00:51:10] *** war9407 has quit IRC
[00:54:07] *** pitakill has joined #postfix
[00:55:02] <deface> does anyone have a server @ skiplink ?
[00:57:22] *** hparker has quit IRC
[00:58:05] <stockholm> can i have different mailclasses?
[00:59:52] <stockholm> i would like to be able to send out generic info mail to people, with heavy throttling per recipient (-domain) and still be able to send invites quickly, bypassing the per-domain queue
[01:00:07] <stockholm> is that possible?
[01:02:08] <vice-versa> should be able to do that with a dedicated transport and appropriate maps
[01:03:03] <stockholm> dedicated transport for the info mail?
[01:03:08] <stockholm> what maps?
[01:03:32] <vice-versa> transport maps
[01:03:38] <vice-versa> !dedicated_transport
[01:03:39] <knoba> vice-versa: "dedicated_transport" : dedicated transports are used to control delivery behaviour for a specific domain or a user@domain pattern based on transport_maps. For an example see: http://linuxnet.ca/postfix/dedicated_transport.html
[01:07:40] <stockholm> vice-versa: but i dont need to throttle for one specific domain, but for one specific type of mail i send
[01:08:42] <stockholm> how can postfix tell those appart?
[01:08:58] <stockholm> i could set a special header if that helps
[01:09:20] <stockholm> (that could help people even to filter it out :-)
[01:10:28] *** Deffie has quit IRC
[01:11:48] *** pirho has quit IRC
[01:14:53] *** githogori has joined #postfix
[01:15:58] <stockholm> vice-versa: transport maps can only operate on the recipient address
[01:16:02] *** hparker has joined #postfix
[01:22:25] *** Weasel[DK] has quit IRC
[01:28:49] <vice-versa> !sender_dependent_relayhost_maps
[01:28:50] <knoba> vice-versa: "sender_dependent_relayhost_maps" : a configuration directive in main.cf for sender based message routing. See http://www.postfix.org/postconf.5.html#sender_dependent_relayhost_maps
[01:29:27] * vice-versa takes the dog out for a smoke
[01:47:27] <thumbs> vice-versa: your dog is smoking?
[01:48:53] *** Toerkeium has joined #postfix
[01:49:10] <vice-versa> yeah, damn shame, but at least he's off the booze now ;)
[01:49:20] <thumbs> good man^H^Hdog
[01:49:34] <Toerkeium> hey, any argentinian here who knows of a NTP server updated with the programmed changes next sunday?
[01:49:52] *** jpalmer has joined #postfix
[02:12:40] *** alienbrain has quit IRC
[02:20:34] <googlah> vice-versa: my dog just quitted, so can yours! ;-p
[02:29:25] *** inflex has joined #postfix
[02:29:31] <inflex> *klunk* falls out of bed.
[02:30:02] <inflex> Thou shalt not be an idiot and code till 2am
[02:31:38] *** Motoko-chan has joined #postfix
[02:37:04] <vice-versa> gonna cut him back slowly, tried the patch but that didn't go so well
[02:37:21] *** Tykling has left #postfix
[02:38:00] *** amrit|wrk has quit IRC
[02:39:31] <thumbs> vice-versa: give him booze. He'll forget about smoking
[02:42:00] *** amrit|zzz has joined #postfix
[02:46:26] *** githogori has quit IRC
[03:06:55] <rd1089> i have made some changes to transport file, do i have to include it in main.cf? or will the changes be included automatically?
[03:08:05] <adaptr> reload
[03:08:32] <adaptr> nothing happens automatically except lookups
[03:12:50] <rd1089> adaptr, can i also specify a local address in the transport file? for ex. a address with domain that is specified in $myhostname?
[03:13:12] <adaptr> waht does "the transport file" mean to you ?
[03:13:18] <adaptr> it means little to me
[03:14:44] <rd1089> adaptr, i was referring to the transport file in /etc/postfix/transport
[03:15:08] <adaptr> yes, but since that is not defined to have any specific purpose by postfix, what does it *do* >
[03:15:42] <rd1089> adaptr, my understanding was that this file would provide a way to specify what transport method to use for different users mentioned
[03:15:53] <adaptr> !transport_maps
[03:15:54] <knoba> adaptr: "transport_maps" : a configuration parameter in the main.cf: Optional lookup tables with mappings from recipient address to (message delivery transport, next-hop destination). See transport(5) for details.
[03:16:58] <adaptr> there's a postfix command line option to show all available lookup table types; a text file is only one of half a dozen different table types
[03:17:29] <xpoint> postconf -m
[03:17:30] <adaptr> so no, there is no such thing as "the transport file"
[03:18:08] <adaptr> if it has been defined in your config then either you did or your distro didl either way, the definition is in main.cf, and is NEVER implicit
[03:18:16] <rd1089> adaptr, do i specify transport_maps option in the main.cf file? that is if i want to mention the type of transport for users?
[03:18:47] <adaptr> go see for yourself, obviously
[03:18:54] <adaptr> postconf transport_maps
[03:19:54] <xpoint> there is olso good books about postfix why wasting time on irc ? :)
[03:20:11] <adaptr> nononono, I'm wasting time on IRC, he still has hopes
[03:20:47] <xpoint> irc could be waste olso
[03:21:33] <Motoko-chan> xpoint, indeed.
[03:21:36] <Motoko-chan> Like TBOP.
[03:21:44] <Motoko-chan> Good book, that.
[03:22:20] <xpoint> Motoko-chan, point being on irc is for me to help where i can
[03:22:53] * xpoint have it, and 2 others
[03:23:06] * Motoko-chan has it too
[03:23:16] <Motoko-chan> And the SAMS book, which is mostly useless.
[03:23:22] <rd1089> adaptr, thanks man, its works now. i specified a the transport_maps and it seems to be doing the job
[03:23:27] <adaptr> most SAMS books are
[03:23:35] <Motoko-chan> Some are okay.
[03:23:51] <adaptr> "be an EXPERT in a 4th-generation language in 24 HOURS"
[03:24:04] <adaptr> I specifically hate those
[03:24:09] <Motoko-chan> heh
[03:24:09] <xpoint> rd1089, what are you using transport_maps to ?
[03:24:57] <adaptr> it doesn't mention that you also have to A. not be a complete moron, and B. have some experience and a hell of a lot of aptitude for programming in the first place
[03:25:21] <Motoko-chan> They do work well for when you need to jump into a different language.
[03:25:24] <rd1089> xpoint, for specific address that have the domain part which specified in the $mydestination
[03:25:30] <Motoko-chan> Although Dietel books are good for heavy learning.
[03:25:53] <rd1089> xpoint, sometime users travel so i would like to forward their mail to the remote host and not locally
[03:26:03] <inflex> mmm... Learn Craptacula in 24 HOURS.... yes, wonderful books
[03:26:05] <adaptr> !local
[03:26:05] <knoba> adaptr: "local" : The local(8) daemon processes delivery requests from the Postfix queue manager to deliver mail to local recipients, meaning users that exist in your /etc/passwd. This is done for domains listed in $mydestination. See !basic.
[03:26:26] <inflex> What's worse is that people reading those books then become self-proclaimed experts
[03:26:38] <adaptr> rd1089: meaning no, what you want cannot be solved with a transport_map, since they are not used in local domains
[03:26:50] <adaptr> use a normal alias - like normal people
[03:27:04] <xpoint> rd1089, but remote users is imap users :)
[03:27:18] <rd1089> adaptr, but would that not create a loop?
[03:27:24] <adaptr> but if they have real local accounts and you have unix:byname enabled then you cannot override their real account name with an alias
[03:27:37] <rd1089> adaptr, hm
[03:27:41] <adaptr> so you would have to let them use an alias at all times
[03:27:59] <adaptr> why do you need to SEND mail for your local users anywhere ?
[03:28:10] <adaptr> install dovecot, configure for 5 minutes, go sleep
[03:28:39] <xpoint> local aliases file can have root: abuse at microsoft dot com
[03:28:46] <adaptr> as xpoint said, remote users use imap, that's what it's for
[03:28:59] <adaptr> xpoint: really ?
[03:29:06] <xpoint> :-)
[03:29:57] <rd1089> adaptr, i think i should make myself clear
[03:30:14] <adaptr> I think so too ;)
[03:30:17] <rd1089> adaptr, the server i am working on right now is a local server
[03:30:29] <rd1089> and this downloads all mails from a remote host
[03:30:41] <adaptr> with fetchmail ?
[03:30:43] <rd1089> y
[03:30:46] <adaptr> okay
[03:30:57] <adaptr> and injects it to postfix SMTP ?
[03:31:15] <rd1089> so i have setup to route all local email locally and not send it to the remote smtp and then again download it via fetchmail
[03:31:28] <adaptr> that makes sense
[03:31:45] <xpoint> fetchmail can use dovecot lda direct without postfix :)
[03:31:52] <rd1089> but i wanted some exceptions that some local user's mail get sent to the remote smtp
[03:32:08] <adaptr> so let him make a .forwward file
[03:32:13] <adaptr> or make one for him
[03:32:27] <rd1089> hm
[03:32:42] <adaptr> because sending your domain's mail to a remote SMTP will only cause it to be downloaded AGAIN
[03:32:42] <rd1089> ok, lets say that my domain is xy.com
[03:32:50] <adaptr> it's a neverending loop
[03:32:56] <rd1089> yes
[03:32:57] <adaptr> it has to end somewhere
[03:33:06] <xpoint> adaptr, dovecot can be powered by sieve :)
[03:33:26] <rd1089> but if the user is traveling he will only access the remote site through webmail
[03:33:30] <rd1089> and not my local server
[03:34:02] <adaptr> this begs the question why you would use a local server at all
[03:34:05] <rd1089> and i configure my fetchmail to not fetchall for that user, so a copy stays there untill the user is back
[03:34:18] <adaptr> either that, or make it available from the outside
[03:34:45] <adaptr> that sounds horribly complicated compared to exposing the mali server to the world and letting the user use IMAP, whether it's locally or remotely
[03:35:04] <rd1089> :(
[03:35:04] <adaptr> you can use IMAPS if you're security-conscious
[03:35:30] <adaptr> what you DON'T want to do is hand-adjust every damn Joe-Bob's email settings whenever he farts out of state
[03:35:38] <adaptr> a sysadmin must be lazy by nature
[03:36:00] <rd1089> :)
[03:36:01] <xpoint> i dont agree adaptr
[03:37:10] <xpoint> even my cat can turn down my server when i am not home :)
[03:38:17] *** Templar_Xion has quit IRC
[03:38:46] <xpoint> install dovecot or any other imap server and let users use it as so rd1089
[03:38:56] <inflex> Agreed, I've found that being a sysadmin is typically a lot of annoying monitoring work - and if you should so much as blink, it'll leap on you with a thousand problems
[03:39:11] <inflex> eg, all is going well, so I take an afternoon nap, only to wake up to chaos
[03:40:04] <xpoint> facebook servers ?
[03:40:37] <xpoint> random helo abusers :/
[03:42:03] <inflex> just random life events.
[03:42:26] <inflex> *phew* okay, finally got my new softwre manual written sufficiently that I can take a break and users will be able to get what they need from it
[03:43:03] <xpoint> no facebook team should hire cload9.org as there email hosters
[03:56:29] *** rd1089 has quit IRC
[03:57:18] *** Juspion has joined #postfix
[03:59:16] *** DarklyCute has joined #postfix
[04:00:10] *** DarklyCute has quit IRC
[04:13:22] *** Motoko-chan has quit IRC
[04:23:10] *** mavrick61 has quit IRC
[04:24:18] *** mavrick61 has joined #postfix
[04:30:33] *** Juspion has quit IRC
[04:39:38] *** A|3x has quit IRC
[04:44:19] *** pulsar has left #postfix
[04:45:38] *** Zelest has joined #postfix
[04:53:52] <thumbs> xpoint: why?
[04:54:30] <xpoint> ?
[04:56:23] <thumbs> 21:44 < xpoint> no facebook team should hire cload9.org as there email hosters
[04:56:28] <thumbs> nm, I'll read the backlog.
[04:56:48] <xpoint> okay with me :)
[04:57:19] <xpoint> Thorn, its just me that found facebook makes helo random abuse
[04:57:45] <xpoint> cload9.net does not
[04:59:54] <inflex> random HELO abuse? in what respect?
[05:00:02] <Zelest> facebook.com --> /dev/null
[05:00:05] <Zelest> easily solved .D
[05:02:41] <xpoint> inflex, mta level
[05:03:15] <inflex> but I mean, what do they do?  eg,  do they do thigns like HELO MWHAHAH.com.blah
[05:03:17] <xpoint> inflex, changes helo pr ip as we others changes pants
[05:04:30] <xpoint> that helo is ok with me, i just block if the ip changes it
[05:05:48] <xpoint> it will happen when there is more then one mta behind nat that send out emails with there on lan helo
[05:06:11] <xpoint> own vs on
[05:07:14] <xpoint> facebook use a whole /22 for there mta park, does it makes sense to use nat olso ? :)
[05:08:12] <xpoint> olso that if one mta cant deliver that try to change the email over to another lan ip that might still greylist one more time
[05:08:41] <xpoint> its endless until we whitelist them :(
[05:09:07] <Zelest> a whole /22 !?
[05:10:31] <Zelest> sure, facebook is huge, but ~1000 "machines" just for their mail.. eh?
[05:10:54] <xpoint> http://www.robtex.com/ip/204.15.20.129.html see graph
[05:12:39] <inflex> That's forward thinking
[05:13:12] <xpoint> how ?
[05:13:16] <inflex> Consider, if they get 50,000,000 users, one email/day, that's still 50,000 messages per machine per day, not a lot really but certainly not 'minimal'
[05:13:55] <Zelest> and how many of those 50mil users are active? :P
[05:14:09] <xpoint> all
[05:14:32] <inflex> Actually, I'm sure they probably have more users than that right now perhaps
[05:14:38] <inflex> esp if you consider all the stupid spam accounts
[05:14:51] <xpoint> yep :)
[05:14:54] <Zelest> yeah, might be true..
[05:14:56] <inflex> and now with the new status-commenting system my emails from FB have increased a lot
[05:15:14] <inflex> so, yes, I think 1000 email servers is a pretty 'nominal' potential figure
[05:15:15] <Zelest> still, there's loads of people who registered and "deleted" their accounts.. at least around where I live..
[05:15:34] <Zelest> the thing is, you can't delete your account.. and I'm pretty sure all "inactive" accounts are listed within those 50mil :P
[05:16:18] *** Drezard__ has joined #postfix
[05:16:22] <Drezard__> need some help
[05:16:29] <Drezard__> im getting flagged as Spam!
[05:16:36] <Zelest> stop spamming! :D
[05:16:37] <Drezard__> i think my MX record is set up incorrectly
[05:17:03] <Drezard__> no im not a spammer tho
[05:17:06] <xpoint> http://www.robtex.com/ip/69.63.178.160.html olso a facebook range here
[05:17:16] <Drezard__> an incorrect mx record i believe
[05:17:22] <Drezard__> my domain is poweredsecurity.com
[05:17:27] <Drezard__> can someone check my mx record?
[05:17:54] <inflex> wait, you're going into security... but...
[05:17:55] <Zelest> xpoint/inflex, but yeah, consider they probably have LOADS of webservers, and I assume those servers are able to deliver mail.. 1k servers might be "normal" yeah.
[05:18:01] <inflex> ;; ANSWER SECTION:
[05:18:01] <inflex> poweredsecurity.com.    3600    IN      MX      0 mail.powersecurity.com.
[05:18:35] <Drezard__> is that correct or ?
[05:18:47] <xpoint> Drezard__, http://www.robtex.com/dns/poweredsecurity.com.html
[05:18:49] <inflex> well, your MX is a CNAME, which a lot of places don't always like
[05:18:58] <Zelest> the question is, is mail.powersecurity.com configured correct. ;)
[05:19:04] <inflex> it's preferred to have an A name record for MX
[05:19:13] <xpoint> Drezard__, dont use CNAME for MX records !
[05:19:33] <Drezard__> inflex, and no im not going into security, i wanted a domain name i could play with and this is the only thing i could come up with
[05:19:40] <inflex> oh okay ;)
[05:19:40] <xpoint> inflex, you show a mx without CNAME
[05:19:55] <Drezard__> i have an A record with mail pointing to the IP?
[05:20:12] <inflex> pldaniels.com.          3600    IN      MX      10 vm.pldaniels.com.
[05:20:13] <xpoint> Drezard__, http://www.robtex.com/dns/poweredsecurity.com.html
[05:20:15] <inflex> vm.pldaniels.com.       60      IN      A       119.63.204.66
[05:20:35] <inflex> Drezard__: but the actual name used on the MX line should be explicitly an A record
[05:20:39] <inflex> (as above demonstrated)
[05:20:59] <Drezard__> inflex, so i should point that to an ip??
[05:21:07] <Zelest> no
[05:21:20] <Drezard__> explain how to setup an A instead of a CNAME
[05:21:20] <Zelest> mail.powersecurity.com is a CNAME..
[05:21:23] <Zelest> it should be a A record.
[05:21:24] <inflex> mail.poweredsecurity.com should resolve to an IP directly
[05:21:29] <inflex> (eg, be an A record)
[05:21:35] <Drezard__> it is an A record
[05:21:39] <inflex> no, it's not
[05:21:46] <inflex> mail.powersecurity.com. 14400   IN      CNAME   powersecurity.com.
[05:21:50] <Drezard__> well it should be
[05:21:53] <inflex> See, it's CNAME'd
[05:21:57] <Drezard__> hmmm
[05:22:01] <Drezard__> that shouldnt be
[05:22:04] <Zelest> 14400 is a painful TTL :D
[05:22:10] <Zelest> still..
[05:22:18] <inflex> Indeed... over an hour :D
[05:22:29] <Zelest> I doubt you being flagged as a spammer because of a CNAME tbh.
[05:22:29] <rob0> 4 of 'em
[05:22:29] <inflex> Drezard__: but that'll be at least the start of the issues
[05:22:43] * Zelest refuse to put his TTL above 600
[05:22:57] <inflex> Zelest: bah! you're killing the backbone
[05:22:59] * rob0 uses 3600, typically
[05:23:01] <Drezard__> Zelest, whenever i send emails to my ISP email account or hotmail it flags it as spam
[05:23:07] <inflex> *hides his 60 second TTL*
[05:23:14] <Zelest> inflex, ;)
[05:23:36] <inflex> Drezard__: well, I've had a long history of Hotmail flagging my emails as spam because they -lack- a HTML  text/html section
[05:23:56] <inflex> soon as I start using a combined  text/plain + text/html disposition two part email, they are happy
[05:23:57] <Drezard__> inflex, kk i have a bounce email from my ISP email if that helps?
[05:23:58] <Zelest> HTML mails however are evil by default ;)
[05:24:11] <inflex> Oh, I totally agree, I'm plain-text.
[05:24:16] <rob0> Hotmail is clueless. Don't use them as an example of how to run an email service.
[05:24:19] * Zelest wubs his mutt
[05:24:54] *** goldfisc1li has joined #postfix
[05:25:00] <inflex> Drezard__: what is the bounce-back message the MTA gives you for why it refused?
[05:25:11] <Drezard__> inflex, pastebinning it now
[05:25:15] <inflex> ok
[05:25:20] <Drezard__> inflex, it was diff to the one last night but ill show u
[05:25:22] * inflex ponders a coffee
[05:25:28] <Drezard__> http://pastebin.com/m57d8898d
[05:25:29] <Zelest> as long as the machine aint an open relay and speak proper SMTP, it's at their end if you get flagged as a spammer tbh.
[05:25:33] <Zelest> unless you spam of course. :)
[05:25:33] *** growltiger_ has joined #postfix
[05:25:51] <inflex> <danhood at tpg dot com.au>... recipient denied, because MX 0
[05:26:18] <Drezard__> Zelest, i can hardly kep up with my normal emails let alone setting up an app to spam lool
[05:26:24] <Drezard__> inflex, which means?
[05:26:34] <Drezard__> should be MX 10?
[05:26:35] <inflex> rejected address saying: Authentication turned on in your email client.  <=- so, TBH has a problem with your auth?
[05:26:51] <Drezard__> what does taht mean
[05:26:54] <Drezard__> ?
[05:27:01] <Zelest> argh! out of battery.. too lazy to move to the charger :(
[05:27:16] <inflex> well, basically tpg is complaining that they think you have security turned on in your email
[05:27:29] <inflex> Drezard__: does gmail barf at you?
[05:27:41] *** jwit_ is now known as jwit
[05:27:42] *** Haris_ is now known as Haris
[05:27:49] <Drezard__> inflex, hotmail doesnt barf at me, they just add me to junk...
[05:27:51] <inflex> Anmyhow, i'd still fix up that CNAME record
[05:27:58] <Drezard__> inflex, not sure bout gmail
[05:28:01] <inflex> yes well, I'd ignore hotmail
[05:28:12] <inflex> people still using hotmail deserve to get nothing
[05:28:52] <Zelest> agreed.
[05:29:11] <Drezard__> inflex... kk, i sure hope u guys understand this....
[05:29:12] <Drezard__> http://pastebin.com/m77996231
[05:29:12] <Zelest> postfix + dspam + graylisting + spf = no more spam, ever.
[05:29:17] <Drezard__> thats my dns records in my thing....
[05:29:28] <Drezard__> in my dns server
[05:29:49] <Haris> Zelest: greylisting, isn't that manually telling the mail server, these are the only email accounts I want to receive mail from?
[05:29:51] <inflex> Zelest: I also added rx-milter to my setup... helps block out harvesters
[05:29:58] <inflex> oh, ooops, wait, this is #postfix, not #sendmail
[05:30:01] <Haris> that's seriously limiting one's incomming email
[05:30:19] <inflex> greylisting comes in many forms
[05:30:26] <inflex> I like the one that just says "Come back in 30 mins"
[05:30:42] <Zelest> yeah
[05:30:48] <Zelest> that's the one I'm talking about..
[05:30:53] <inflex> I do not like the ones that try to subsequently query the sender server for valadity - because that creates loops of distrust and no email ever gets delivered
[05:31:14] <Haris> I like sender verification
[05:31:22] <Zelest> I don't.. as my ISP is nazi :(
[05:31:24] <Haris> it saves me from alot of incomming spam
[05:31:32] <Haris> what's 'nazi' ?
[05:31:39] <Zelest> blocking outgoing port 25. :(
[05:31:43] <inflex> SPF / RMX is fine - but having your greylist program actively try to -email- the sending server is just a woeful way to setup loops
[05:31:50] <Haris> you must not be a corporate client
[05:31:54] <inflex> well, can you use them to route your email?
[05:32:02] <Zelest> Haris, nope
[05:32:08] * inflex pays $60/mth for a colobox + 2ips, so I'm free to do most things
[05:32:22] <Drezard__> so please help...
[05:32:23] <Zelest> Haris, still, how does sender verification work?
[05:32:34] <Drezard__> my domain records are they right?
[05:32:50] <Zelest> Haris, I mean, if you send a mail to me, my server won't let you know if it's a real mail or not, will it?
[05:33:02] <Zelest> Haris, as in, doesn't it rely on the VRFY command to be enabled?
[05:33:10] <Haris> Zelest: I perceive, it checks email address in the from headers, tries to send a blank email to the server set as MX in DNS for the domain
[05:33:39] <xpoint> rob0, hotmail and yahoo.com is both clueless :)
[05:33:40] <Haris> it the target server rejects, it simply discards the mail
[05:33:48] <Zelest> ah
[05:33:49] <inflex> Haris: that fails because what if the other server has the same system
[05:33:56] <xpoint> rob0, but atleast yahoo have dkim
[05:33:59] <inflex> that's the loop of distrust that I was talking about :(
[05:34:11] <Zelest> SPF! the way to go :D
[05:34:13] <Haris> inflex: It doesn't fail, if the email account exists
[05:34:16] <inflex> (or at least another system of the same concept
[05:34:26] <Drezard__> lol
[05:34:40] <inflex> but you might not get a validation of the authenticity of the address from the server
[05:34:45] * Zelest can't wait for SPF v2, when/if they integrate PGP keys into it. :)
[05:34:50] <Drezard__> i work at an ISP and weve had hotmail block ALL ISP emails for weeks before....
[05:34:51] <Haris> inflex: ?
[05:34:55] <Drezard__> becuase of 2 - 3 spammers
[05:35:06] <Haris> Drezard__: Have you used snds?
[05:35:12] <Drezard__> snds?
[05:35:16] <Drezard__> nope never heard of it
[05:35:20] <Zelest> Haris, how does that verification handle mails like "noreply at some-forum dot com" ?
[05:35:22] <Haris> check it out
[05:35:26] <inflex> Haris: basically, we've had cases where emails just don't get delivered because of that system - one system waits on the other to validate - but both are waiting on the other
[05:35:27] <Drezard__> im just one of the helpdesk techies so im one of the mindless drones lol
[05:35:28] <Zelest> as they clearly don't exist.
[05:35:50] <Haris> Zelest: well, in my view, they should, even if they are to remain empty
[05:36:04] <xpoint> Zelest, spf v2 will be dkim :)
[05:36:06] <inflex> Though perhaps they've improved the process and now they should say something like "If you're sending an email, -anticipate- the server to query you"
[05:36:14] <Zelest> xpoint, what's that? :o
[05:36:32] <Haris> inflex: There is no wait. I can clearly configure the re-try option of the MTA and it works it checks again at the next interval
[05:36:45] <Zelest> though, i must say, graylisting rocks compared to most antispam features..
[05:36:55] <inflex> Zelest: indeed
[05:37:03] <inflex> Zelest: I actually turfed out SpamAssassin
[05:37:07] <inflex> it was becoming more of a pain than the spam
[05:37:09] <Zelest> it's VERY simple, if you get false positives, it's not at your end.. and it seriously disrupts the spammers work :)
[05:37:28] <Zelest> my mailbox usually have 250 spams or so a day..
[05:37:38] <Zelest> with graylisting and dspam, I get 1-2 at most, a WEEK
[05:37:40] <xpoint> Zelest, http://search.cpan.org/dist/Mail-DKIM/
[05:37:42] <Zelest> and they're always tagged as spam.
[05:37:44] * inflex uses milter-greylist + rx-milter + spamhaus-XBL,  went from 60,000/wk down to 600/wk :)
[05:37:46] <Drezard__> Zelest, just buy a pack of viagra and theyll go a way! lol
[05:37:52] <Zelest> Drezard__, haha
[05:38:15] <Zelest> xpoint, aah
[05:38:28] <inflex> Drezard__: damn, I got even MORE spam after buying :( and the pills didn't work *wail*
[05:38:40] <Drezard__> inflex, hehehe
[05:38:52] <Drezard__> question, whats the funniest or most memorable spam i got
[05:38:55] <Haris> I always think, viagra is a fraud
[05:38:57] <Zelest> inflex, the only time graylisting really fails, is when some tard is forwarding mail :P
[05:39:45] <Drezard__> my fav was the idiot who sent out one of those "Ur 2nd cousins nephew has died and is giving u 108Million! Please enter credit card and other personal details to continue....
[05:40:01] <Drezard__> but what made it so funny was the example.... the guy had given his own credit card details :P
[05:40:06] <Drezard__> real ones!
[05:40:22] <xpoint> Drezard__, and you did ?
[05:40:33] <inflex> or the ones where they go "To check if you're on the spammers card list, please enter your card details + expiry"
[05:40:51] * inflex should put that on his WWW site
[05:40:57] *** growltiger has quit IRC
[05:41:01] <Zelest> I loved when the banks in our country started allowing "personal photos" on your cards.. people added like pedobear and other "fun" pictures on it.. and took a pic of it and uploaded it to random sites..
[05:41:02] *** goldfischli has quit IRC
[05:41:04] <xpoint> Drezard__, what did you do with that email ?, just delete it ?
[05:41:07] <inflex> and when they press 'submit', it'll come up "You are NOW!"
[05:41:24] <Zelest> though, scamming and such is good..
[05:41:30] <Zelest> stupidity SHOULD be painful.
[05:41:35] <inflex> yes, you have to fleece idiots of their cash
[05:41:39] <Drezard__> xpoint, thought id test them out with 0.01 charge for curiousity, and it worked.... didnt take it any further except sent it to the abuse department of our ISP
[05:41:49] *** Motoko-chan has joined #postfix
[05:41:58] <Zelest> brb
[05:42:19] <Drezard__> brb, me and Zelest are going to have a sword fight in the bathroom (if you know what i mean ;))
[05:44:15] <xpoint> Drezard__, add email here as a phish would help more
[05:44:21] <xpoint> Drezard__, http://www.clamav.net/sendvirus/
[05:45:04] <Drezard__> hmmmm..
[05:45:06] <Drezard__> i shall
[05:45:27] *** githogori has joined #postfix
[05:45:35] <Drezard__> xpoint, i opened the exe it gave me... but nothing happened?
[05:45:43] <xpoint> thanks for this so, helps stop spammers and phishers
[05:46:26] <xpoint> try send it to clamav then
[05:47:24] *** existx has quit IRC
[05:48:05] <Drezard__> im so lost
[05:48:11] <Drezard__> xpoint, do u help ClamAV?
[05:48:13] <xpoint> me2 :)
[05:48:48] <Drezard__> anyone got a real easy to understand tut to set up postfix with SASL?
[05:48:52] <Drezard__> or some form of STMP auth
[05:48:57] <Drezard__> SMTP*
[05:49:01] <xpoint> !sasl
[05:49:01] <knoba> xpoint: "sasl" : SASL is 'Simple Authentication and Security Layer', necessary for SMTP AUTH, and provided to Postfix by addin software. Cyrus SASL and/or Dovecot IMAP/POP3 can provide SASL. See http://www.postfix.org/SASL_README.html for details.
[05:49:14] <xpoint> !tell Drezard__ sasl
[05:50:32] <Drezard__> thanks :)
[05:50:38] <xpoint> np
[05:50:44] <Drezard__> !sasl xpoint
[05:50:45] <knoba> Drezard__: Error: "sasl" is not a valid command.
[05:50:54] <Drezard__> !tell xpoint
[05:50:55] <knoba> Drezard__: (tell <an alias, 2 arguments>) -- Alias for "Misc tell $1 [Factoids whatis $2]".
[05:51:12] <Drezard__> yea ok bored lol
[05:51:24] <xpoint> knoba, are you perl powered :)
[05:51:46] <Drezard__> why is it called knoba/
[05:51:47] <Drezard__> ?
[05:52:16] <xpoint> kernel noops on basic accussions :)
[05:52:30] <Drezard__> lol
[05:52:39] <Drezard__> its obviously coded in Perl
[05:52:56] <Drezard__> C++ would take too long and Python/Java Knoba would be going down every 2 - 5 mins for updates
[05:54:03] <Drezard__> although, i wrote an IRC bot a little while ago... in C++..
[05:54:09] <Drezard__> it didnt take aslong as i thought it would
[05:54:24] <xpoint> you just compile a c++ both and commit the sources
[05:54:32] <xpoint> bot even
[06:06:59] <inflex> *lol* @ python going down for updates
[06:07:01] <inflex> sad but true
[06:07:05] * inflex prefers Lua these days
[06:10:26] <xpoint> lua = sieve ?
[06:11:44] <xpoint> if i could i world setup horde on my server, but configs is very random, and help what vere
[06:16:05] <Drezard__> whats horde?
[06:16:54] <growltiger_> webmail redefined
[06:17:02] <growltiger_> or something like that
[06:18:02] <Drezard__> nice
[06:18:47] <inflex> something I found nice the other day, though not specifically PFX/email related, a nice simple clean and small forum web system called PunBB (uses SQLite)
[06:18:58] <inflex> no need anymore for a massive RDBMS running
[06:34:36] <xpoint> horde is more then just webmail
[06:34:52] *** pitakill has quit IRC
[06:35:03] <xpoint> but there is olso ignorants
[06:40:54] <Zelest> aw..
[06:41:03] <Zelest> off-topic, but jesus f christ I love requiem for a dream :D
[06:41:10] <Zelest> by far the best movie ever made :D
[06:45:43] <xpoint> its like seeing sarah palin in a porn film naked :-)
[06:48:31] <Zelest> rofl
[06:49:29] *** mandragor has joined #postfix
[06:51:05] <inflex> O_o
[06:51:16] <inflex> oh man, I'm not even in the US but that made my brain burn with fear
[06:51:53] <inflex> "Palin does Florida"
[06:52:30] *** Drezard has joined #postfix
[06:53:57] <Drezard> trying to isntall postfix
[06:54:14] <Drezard> more specifically SASL
[06:57:04] *** muecke77 has joined #postfix
[07:06:11] <xpoint> Drezard, only if you need it
[07:06:34] <Drezard__> i need it
[07:06:47] <Drezard__> or i need someway of SMTP authenticating
[07:07:16] <xpoint> more then localhost ?
[07:08:03] <Drezard> as in?
[07:08:11] <Drezard> im lost lol
[07:08:27] <Drezard> i need someway of authenticating SMTP so i dont have an open relay :(
[07:08:45] <Drezard> but all the tuts i find are broked lol
[07:08:52] <inflex> Drezard: can you resrict SMTP deliveries to only come via port 443 (for ones going out) and use SSL on your clients
[07:09:06] <Drezard> hmmm
[07:09:08] <Drezard> i duno
[07:09:11] <inflex> also, can you restrict accepting addresses for relaying to a fixed set of IPs ?
[07:09:20] <Drezard> no i cant
[07:09:27] <Drezard> cause i wana access it everyweher
[07:09:28] <inflex> darn, not even a range?
[07:17:14] *** internat1 has quit IRC
[07:24:44] <xpoint> localhost is everywhere
[07:25:50] <xpoint> maybe i am clueless so night :)
[07:26:29] *** xpoint has quit IRC
[07:27:23] *** Lap_64 has joined #postfix
[07:43:01] *** muecke77 has left #postfix
[07:54:45] *** mandragor has quit IRC
[07:56:52] *** jelly has quit IRC
[08:06:05] *** Weasel[DK] has joined #postfix
[08:24:04] <shasta> inflex, 443? you're violating standards just for fun, or are there any other reasons?
[08:24:09] <shasta> sigh
[08:24:20] <shasta> !sasl
[08:24:20] <knoba> shasta: "sasl" : SASL is 'Simple Authentication and Security Layer', necessary for SMTP AUTH, and provided to Postfix by addin software. Cyrus SASL and/or Dovecot IMAP/POP3 can provide SASL. See http://www.postfix.org/SASL_README.html for details.
[08:24:21] *** rouri has joined #postfix
[08:24:26] <shasta> Drezard, ^^^^^^^^^
[08:26:00] <inflex> shasta: oh, sorry, not 443
[08:26:10] * inflex had his brain wired wrong
[08:26:25] *** hparker has quit IRC
[08:26:27] <inflex> 465 isn't it?
[08:26:32] <inflex> (busy doing something else atm)
[08:35:17] *** sypher has joined #postfix
[08:35:29] *** sypher_ has joined #postfix
[08:42:59] <Zborg> verdict du matin : il caille dehors
[08:43:02] <Zborg> oops
[08:43:06] <Zborg> sorry, wrong chan
[08:43:19] <Zborg> (good morning)
[08:43:26] <shasta> inflex, and what exactly does that help to authenticate users?
[08:45:03] <inflex> shasta: nothing - rather it's just a way of keeping other people from sniffing your credentials with too much ease
[08:50:49] *** F6F has joined #postfix
[08:51:00] *** denis__ has quit IRC
[08:53:23] *** rouri has quit IRC
[08:56:33] *** nphase_ has joined #postfix
[09:02:50] <shasta> exactly, nothing
[09:13:48] *** nphase_ has quit IRC
[09:17:59] *** muecke77 has joined #postfix
[09:23:08] *** Tykling has joined #postfix
[09:27:02] *** nphase_ has joined #postfix
[09:34:30] *** niki has quit IRC
[09:38:53] *** Deffie has joined #postfix
[09:42:41] *** muecke77 has left #postfix
[09:47:09] *** niki has joined #postfix
[09:57:11] *** war9407 has joined #postfix
[09:57:26] *** Sephiroth_ has quit IRC
[09:57:39] *** Sephiroth_ has joined #postfix
[10:20:19] *** Motoko-chan has quit IRC
[10:26:35] *** piparkuka has joined #postfix
[10:30:54] <inflex> well, over an hour working on the property... and no one has said a thing
[10:31:11] *** CrazyFoam has quit IRC
[10:31:22] *** gturner_ has joined #postfix
[10:36:35] *** war9407 has quit IRC
[10:40:55] *** war9407 has joined #postfix
[10:52:30] *** Internat has joined #postfix
[11:04:19] *** war9407 has quit IRC
[11:06:54] *** war9407 has joined #postfix
[11:08:02] *** nphase_ has quit IRC
[11:15:04] *** _Driver_ has joined #postfix
[11:25:57] *** rikkyc has left #postfix
[11:31:57] *** sophokles has joined #postfix
[11:45:37] *** pirho has joined #postfix
[11:59:51] *** Fallenou has joined #postfix
[12:12:08] *** sophokles has quit IRC
[12:12:35] *** sophokles has joined #postfix
[12:18:11] *** havvg has joined #postfix
[12:20:06] *** vivek has joined #postfix
[12:22:01] *** rouri has joined #postfix
[12:24:08] *** sophokles has joined #postfix
[12:28:30] *** Deffie has quit IRC
[12:36:28] *** Bombo_ has joined #postfix
[12:37:05] *** Bombo has quit IRC
[12:37:05] *** Bombo_ is now known as Bombo
[12:50:08] *** blackflag has quit IRC
[12:54:30] *** blackflag has joined #postfix
[12:59:44] *** devdas has joined #postfix
[13:20:07] *** growltiger has joined #postfix
[13:22:35] *** sypher_ has joined #postfix
[13:30:43] *** denis has joined #postfix
[13:31:08] *** growltiger_ has quit IRC
[13:38:51] *** sypher has quit IRC
[13:40:55] *** growltiger_ has joined #postfix
[13:49:22] *** paddy2706 has joined #postfix
[13:50:05] <paddy2706> hey everyone, i can't figure out how to get my postfix to accept addresses starting with a "-" for sending. im always getting an rfc822 error. any hints?
[13:54:09] *** growltiger has quit IRC
[14:00:15] <devdas> paddy2706: quote the '-'
[14:04:52] <paddy2706> thanks. just tried it but it doesn't work like that . the - is at the beginning of the address, e.g. -something at somewhere dot com, '-'something at somewhere dot com caused the remote server to refuse the mail
[14:08:10] <paddy2706> i also tried "\\-something" at somewhere dot com what caused my postfix to refuse to send the message
[14:10:14] <devdas> http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=165244
[14:11:03] <devdas> http://www.postfix.org/postconf.5.html#allow_min_user
[14:13:27] *** Lap_64 has quit IRC
[14:15:52] <paddy2706> thanks devdas - that did it
[14:17:00] *** vivek has quit IRC
[14:20:30] *** rouri has quit IRC
[14:21:25] *** lataffe has quit IRC
[14:22:59] *** Lap_64 has joined #postfix
[14:27:22] <vice-versa> so other than being valid as per rfc822, what are the merits if any of having addresses prefixed with a hyphen?
[14:28:16] * inflex wakes up
[14:28:19] <inflex> darned granny naps!
[14:28:29] <devdas> vice-versa: none, really
[14:28:41] * devdas tells inflex to stop growing so old
[14:28:47] <inflex> :(
[14:31:00] *** Severed_Head_Of_ has joined #postfix
[14:31:44] *** growltiger_ has quit IRC
[14:34:30] <vice-versa> devdas: hmm good, I was starting to think 'allow_min_user' had some reference to a Unix user account name that started with a hyphen for some special reason that I was unaware of
[14:34:50] <devdas> no
[14:35:14] <devdas> Some people have stupid names, which conflict with Unix naming conventions
[14:36:06] *** Drezard has quit IRC
[14:38:50] <vice-versa> indeed, I fail to see why someone would even want that in the first place other than "because I/we can"
[14:39:18] <devdas> "someone else set up this broken system"
[14:42:27] *** growltiger has joined #postfix
[14:51:02] *** Severed_Head_Of_ has quit IRC
[14:51:17] *** Drezard__ has quit IRC
[14:53:28] *** rouri has joined #postfix
[14:58:08] *** Internat has quit IRC
[15:11:02] *** rouri has quit IRC
[15:15:32] *** madrescher has joined #postfix
[15:23:54] *** Lap_64 has quit IRC
[15:43:30] *** zamba has quit IRC
[15:52:41] *** havvg has quit IRC
[16:05:00] *** Juspion has joined #postfix
[16:15:26] *** inflex has quit IRC
[16:18:27] *** rouri has joined #postfix
[16:25:20] *** war9407 has quit IRC
[16:27:09] *** war9407 has joined #postfix
[16:32:33] <matt_> hello, I would like to create a script that will check to see if a user it allowed to send an email and up a counter when an email is sent, I would like to do all of this from a perl script but is it possiable to tell postfix to use a shell script for the check_recipient_access option ?
[16:37:56] *** _Driver_ has quit IRC
[16:41:36] *** paddy2706 has left #postfix
[16:51:39] <devdas> matt_: you might want to look at a policy daemon
[16:51:42] <devdas> !policyd
[16:51:43] <knoba> devdas: "policyd" : http://www.policyd.org/ : an anti-spam Postfix policy daemon
[16:53:37] *** Entroacceptor has joined #postfix
[16:56:09] *** ikaro has quit IRC
[17:01:58] *** pitakill has joined #postfix
[17:13:48] *** sophokles has quit IRC
[17:32:54] *** idle-boy is now known as Fugitive
[17:39:53] <matt_> devdas| ok thanks :)
[17:39:57] *** denis has quit IRC
[17:40:35] <MarkRichman> Are there any front ends for postfix that are *not* web based?
[17:41:55] <lennard> vim
[17:42:12] <thumbs> vim, I agree.
[17:42:14] *** Fugitive is now known as XShape
[17:42:20] <MarkRichman> cute
[17:43:07] <vice-versa> postconf ;)
[17:44:58] <thumbs> postconf | sed > file ?
[17:49:40] <thumbs> right.
[17:50:52] *** rouri has quit IRC
[17:51:03] *** rouri has joined #postfix
[17:54:24] *** XShape is now known as idle-boy
[18:03:48] *** Thorn has quit IRC
[18:04:10] *** Bombo_ has joined #postfix
[18:04:32] *** Thorn has joined #postfix
[18:06:36] *** _Driver_ has joined #postfix
[18:09:19] *** Bombo has quit IRC
[18:09:19] *** Bombo_ is now known as Bombo
[18:13:08] *** thumbs has quit IRC
[18:13:36] *** hparker has joined #postfix
[18:14:10] *** thumbs has joined #postfix
[18:14:20] *** growltiger_ has joined #postfix
[18:16:38] *** xpoint has joined #postfix
[18:17:33] *** ikaro has joined #postfix
[18:21:36] *** tombar has joined #postfix
[18:29:24] *** growltiger has quit IRC
[18:32:07] *** rouri has quit IRC
[18:35:59] *** devdas has quit IRC
[18:48:40] *** Haris_ has joined #postfix
[18:53:19] *** tombar has quit IRC
[18:53:25] *** pitakill has quit IRC
[18:58:54] *** Tykling has left #postfix
[18:59:54] *** Haris has quit IRC
[19:05:31] <war9407> Is there any 'benefit' to using -A INPUT -p tcp --dport 25 -j ACCEPT  vs. -A INPUT -p tcp --dport 25 --syn -j ACCEPT?
[19:05:41] <war9407> would it stop those [unknowns] in postfix logs? :P
[19:14:21] <Supaplex> are they hit and run connections before dns can resolve them?
[19:15:42] <Supaplex> I use fprobe on gateways, and flow-tools on another server to analyze traffic like that.
[19:20:25] *** muecke77 has joined #postfix
[19:28:49] <rob0> "unknown[ip.add.re.ss]" means that ip.add.re.ss (ss.re.add.ip.in-addr.arpa) did not resolve.
[19:37:54] *** aiju has joined #postfix
[19:38:07] <aiju> If I instruct postfix to write to a file, what user does it use to do so?
[19:38:10] *** _Driver_ has quit IRC
[19:44:35] *** aiju has left #postfix
[19:45:26] *** MalMen has joined #postfix
[19:49:52] *** _Driver_ has joined #postfix
[19:52:58] <MalMen> hello, anyone know where can i find a good tuturial how to install courier + postfix over ldap
[19:53:00] <MalMen> ?
[19:54:05] *** denis has joined #postfix
[19:58:16] <stockholm> i would like to be able to send out generic info mail to people, with heavy throttling per recipient (-domain) and still be  able to send invites quickly, bypassing the per-domain queue
[19:58:45] <stockholm> how can i do that?
[19:58:58] <stockholm> can i have different mailclasses?
[20:05:48] *** Zeit|awy_ has joined #postfix
[20:12:49] *** Zeit|awy has quit IRC
[20:13:48] *** rouri has joined #postfix
[20:19:44] *** amrit|zzz is now known as amrit|car
[20:21:07] *** looner has left #postfix
[20:27:26] *** muecke77 has quit IRC
[20:39:00] *** Juspion has quit IRC
[20:40:52] *** blackflag has quit IRC
[20:41:47] *** blackflag has joined #postfix
[20:56:09] *** gipsydon has joined #postfix
[20:57:18] <gipsydon> anyone able to help me test to see if my spf is working?  It works from my domainname.ca but not from mail.domainname.ca
[20:57:25] *** Guest98344 has joined #postfix
[20:58:38] *** FA-ncp has joined #postfix
[20:59:27] *** MalMen has quit IRC
[20:59:40] *** Guest98344 has left #postfix
[21:00:23] *** rouri has quit IRC
[21:12:32] *** gipsydon has left #postfix
[21:12:34] *** Juspion has joined #postfix
[21:15:44] *** mib_lasosq has joined #postfix
[21:16:25] *** FA-ncp has quit IRC
[21:16:39] <mib_lasosq> This isnt really related to postfix - per se - but ive been on this community awhile so w/e - listen :)
[21:16:48] <mib_lasosq> the company I am working for is streamcasting (w/ interactive bidding) the Bob Hope estate auction going on right now in Hollywood. http://www.auctionnetwork.com/
[21:16:54] <mib_lasosq> Take a look will ya :)
[21:54:27] *** mib_lasosq has quit IRC
[22:01:45] *** Juspion has quit IRC
[22:09:40] *** growltiger has joined #postfix
[22:12:11] *** tshine has left #postfix
[22:18:15] *** _ruben has joined #postfix
[22:19:24] *** muecke77 has joined #postfix
[22:20:04] <MarkRichman> How do I set the listen port for postfix?
[22:23:35] <MarkRichman> i.e. 587/tcp not 25/tcp
[22:23:59] <vice-versa> !msa
[22:24:00] <knoba> vice-versa: "msa" : Message Submission Agent : a process which accepts message submissions from MUAs on port 587 known as 'message submission service' using the 'message submission protocol' defined by rfc4409. To enable message submission service in postfix uncomment the relevant lines in master.cf
[22:24:15] <Dominian> MarkRichman: there's a service fo rsubmission in  postfix
[22:24:20] <Dominian> no need to change the "listen" port
[22:24:23] <Dominian> !submission
[22:24:24] <knoba> Dominian: Error: "submission" is not a valid command.
[22:24:27] <Dominian> damn it
[22:24:31] <Dominian> someone removed submission
[22:24:34] <Dominian> !auth
[22:24:35] <knoba> Dominian: Error: "auth" is not a valid command.
[22:24:52] *** growltiger_ has quit IRC
[22:24:52] <MarkRichman> whats the difference between submission and smtp?
[22:25:13] <thumbs> is that a trick question?
[22:25:25] <MarkRichman> no i really dont know
[22:25:28] <vice-versa> that's what i was thinking too
[22:25:59] <Dominian> MarkRichman: essentially the same thing.. but submission prot is usually used for authenticating your clients who want to send email via your server so they can bypass checks on port 25 tha tother servers have to go through
[22:26:13] <Dominian> like greylisting, spam content filters, etc
[22:26:27] <MarkRichman> ok so for mandatory tls, submission (587/tcp) is fine
[22:26:46] <Dominian> yes
[22:26:47] <MarkRichman> since my ISP blocks 25/tcp
[22:31:22] <MarkRichman> hmmm....i still get "no client certificate presented" when connecting via openssl
[22:32:05] <MarkRichman> I used TinyCA to create a test CA and client cert
[22:32:15] <MarkRichman> then connected with those certs: openssl s_client -connect smtp.gmail.com:587 -starttls smtp -CAfile TestCA-cacert.pem -key macpro.local-client-key.pem -cert macpro.local-client-cert.pem
[22:32:58] *** growltiger_ has joined #postfix
[22:33:05] *** aiju has joined #postfix
[22:33:59] <MarkRichman> (and that's markrichman.com:587 not smtp.gmail.com:587)
[22:34:27] <aiju> How to redirect mails with recipients which fit in a generic scheme, e.g. foo* at domain dot com, to a file?
[22:34:37] <MarkRichman> is it because my .pem files require passwords, or that i haven't trusted them on my postfix server?
[22:35:42] *** gutocarvalho has joined #postfix
[22:41:37] <MarkRichman> This is the whole conversation: http://pastie.org/295404
[22:44:02] *** growltiger has quit IRC
[22:50:22] *** muecke77 has left #postfix
[22:58:36] *** F6F has quit IRC
[22:58:50] *** aiju has left #postfix
[23:14:20] *** Lukemob has quit IRC
[23:15:18] *** Lukemob has joined #postfix
[23:23:10] *** A|3x has joined #postfix
[23:24:20] <rob0> Submission and SMTP are the same protocol, but SMTP (the port) is for mail exchange (server-to-server), whereas submission (the port) is for user submission of mail (MUA-to-server).
[23:35:16] *** Motoko-chan has joined #postfix
[23:48:15] *** havvg has joined #postfix
[23:53:37] *** henkie_ has joined #postfix





top