postfix IRC logs [December 4

[00:00:28] <rob0> well, they CAN actually go in the same lookup, but I find it logically better to use separate tables
[00:01:41] <SARGuy> that's fair enough, i would prefer that as well..  however, for the time being, i have user at domain dot com | deliver_location as 1 table..  in theory, it should work, correct?  that's the part that doesn't seem to be working for me
[00:01:51] *** Southron has quit IRC
[00:02:04] <rob0> well no, see "man 5 virtual"
[00:02:04] *** solexious has quit IRC
[00:02:54] <rob0> the right-hand side (lookup result) is all email addresses
[00:03:06] <rob0> so is the left side (lookup keys)
[00:03:37] *** gutocarvalho has quit IRC
[00:04:09] <rob0> virtual_alias_domains (plural) is documented also in that man page
[00:05:17] <SARGuy> reading it now...  i think i'm confusing myself more than i should....
[00:06:16] <SARGuy> can i enable debug to a level that will tell me if it is actually reading the virtual alias table...
[00:06:26] <SARGuy> cause it looks like i have all of these requirements mety
[00:06:29] <SARGuy> met that is...
[00:08:02] *** nentis has left #postfix
[00:11:22] <rob0> !verbose
[00:11:22] <knoba> rob0: "verbose" : You probably do not need verbose logging, but in rare cases the extra detail can assist in debugging. To set verbose logging add a -v after the command name (such as smtpd) in master.cf, then 'postfix reload' after that.
[00:11:34] <rob0> !postmapq
[00:11:34] <knoba> rob0: "postmapq" : You can check your lookups with the postmap command. Example: if you defined "transport_maps = mysql:/etc/postfix/transport.cf" you may check this mapping by running "postmap -q domain.com mysql:/etc/postfix/transport.cf" and see if it works.
[00:11:42] <rob0> ^^ helps more than verbose logs
[00:11:47] *** pirho has quit IRC
[00:12:23] *** pirho has joined #postfix
[00:13:27] <SARGuy> rob0...  wtf all of a sudden, i am now able to send mail as i was before to a user/domain listed in the mysql db..  however, now, i can send not just to the explicit list of users in that table, but to anyone @thedomain.com...  like it's doing a catchall...  damn i thought i was close
[00:13:33] <SARGuy> andthanks for that command
[00:13:36] <SARGuy> trying that now
[00:15:12] *** Doctor-Steve has joined #postfix
[00:15:17] <Doctor-Steve> need some mx records help
[00:15:22] *** BuenGenio_ has joined #postfix
[00:15:38] <SARGuy> i think i'm seeing the light...  running the above command, Postfix returns the maildrop location.  Good!  Problem is though, I only want mail accepted for users actually in that table, not just anyone in the domain
[00:17:39] <Muffin> Hi...I'm looking for a way to tell postfix to only try a given "bounce" message once.
[00:18:31] <Muffin> Someone is using an address at my server in spam emails, which bounce back to my server. my server tries to "bounce" the bounce messages back to the sender, which also doesn't exist. Result: A bunch of undeliverable messages, such that mail.log and syslog grow by several MB per hour.
[00:19:49] <rob0> And this goes back to the !virtual_alias_domains factoid for SARGuy ... it's a mapping of ADDRESS to ADDRESS[ES]. You're trying to force a square peg in a round hole?
[00:20:48] <rob0> Muffin, don't accept mail for addresses you cannot deliver. See:
[00:20:53] <rob0> !address_classes
[00:20:54] <knoba> rob0: "address_classes" : http://www.postfix.org/ADDRESS_CLASS_README.html describes how Postfix deals with different classes of addresses: local, relay, virtual alias, virtual mailbox, and Internet.
[00:21:10] <rob0> and set up recipient validation as appropriate.
[00:23:22] *** BuenGenio__ has joined #postfix
[00:24:04] *** deadpigeon has quit IRC
[00:25:03] <SARGuy> rob0...  so what am i missing then?  am i just not getting it or what, it seems like a simple configuration
[00:25:18] <Muffin> rob0: Excellent-sounding, but that link doesn't tell me what to put where. :-\ Is it as simple as "address_classes = relay" ? Also, the options of local/virtual alias/virtual mailbox/relay/default isn't stated as being explicitly subsetted. Does "relay" include "virtual" and "local"?
[00:27:03] <SARGuy> rob0: The SMTP server validates recipient addresses with $virtual_alias_maps and rejects non-existent recipients.
[00:27:08] <SARGuy> that's what I want...
[00:28:06] <Muffin> rob0: Or can I just specify "address_classes = myhostname, mydestination, virtual_alias_domains" and have it work?
[00:32:06] *** BuenGenio has quit IRC
[00:34:12] <rob0> Okay Muffin, note that you came up with the wrong diagnosis for your problem. You want a quick fix. It might not be quick, you might have a huge job ahead.
[00:34:36] <rob0> I cannot possibly tell you where to start, because I don't know where you are.
[00:35:08] <rob0> SARGuy can pastebin some logs and "postconf -n".
[00:35:24] <rob0> but I am running out of time to spend here
[00:35:56] *** BBishop has quit IRC
[00:36:12] *** BBishop has joined #postfix
[00:37:30] <Muffin> I'm not sure how you know I'm misdiagnosing my problem. My confusion is about how to test the "address class" tweak you suggested, which looks good.
[00:37:32] *** BuenGenio__ has quit IRC
[00:37:41] *** BuenGenio__ has joined #postfix
[00:38:29] <SARGuy> sure
[00:38:51] <Muffin> I quite appreciate the suggestion, I'll just go digging around some more to see if I can figure out what to change where in main.cf.
[00:38:59] *** Fallenou has quit IRC
[00:41:57] <SARGuy> http://pastebin.com/m30de134c
[00:42:06] *** eanxgeek|laptop has quit IRC
[00:42:25] <SARGuy> rob0: 1st message in log is from a user in the virtual table..  second one is not in the table but was still delivered...
[00:42:58] *** Zblakany has quit IRC
[00:43:35] *** BuenGenio_ has quit IRC
[00:45:21] *** non-sequitir has quit IRC
[00:54:59] <SARGuy> rob0, I'm wondering if the sql query is hosed...  i never even thought of that one: query = select coalesce(destination, 'maildrop') from users_bridge_log ubl LEFT JOIN forwardings f ON source='%s' WHERE date_sub(now(), interval 2 minute) > ubl.lastbridged OR f.source is not null limit 1
[00:55:18] *** githogori_ has joined #postfix
[00:55:34] *** githogori_ has quit IRC
[00:57:35] *** githogori_ has joined #postfix
[00:57:47] *** githogori_ has quit IRC
[00:57:56] *** madrescher has quit IRC
[01:01:46] *** pirho has quit IRC
[01:02:59] *** pirho has joined #postfix
[01:04:02] *** Mark_Knopfler has quit IRC
[01:04:47] *** war9407 has quit IRC
[01:04:57] *** g0rd0n has quit IRC
[01:06:36] * Muffin adds reject_unverified_recipient to smtpd_recipient_restrictions and hopes.
[01:07:10] *** nonsequitir has joined #postfix
[01:13:54] *** hparker has quit IRC
[01:32:36] *** brancaleone has quit IRC
[01:34:05] *** Doctor-Steve has quit IRC
[01:41:06] *** UQlev has quit IRC
[01:45:04] *** bluethundr has joined #postfix
[01:56:09] *** Daviey has joined #postfix
[02:00:39] *** emcepe has joined #postfix
[02:08:26] *** albino has joined #postfix
[02:09:00] <albino> Under a really old version of postfix how would one change the envelope-from user when trying to send email through an isps server?
[02:11:05] *** prob8 has joined #postfix
[02:15:26] *** mcp has quit IRC
[02:15:27] *** emcepe is now known as mcp
[02:15:57] <bluethundr> riddle me this.. this actually involves courier pop to a large extent
[02:16:14] <bluethundr> but when I connect to my courier/postfix server on mac using mail.app
[02:16:23] <bluethundr> I see Maildir as my mailbox, which is my intention
[02:16:37] <bluethundr> but when I connect under Windows using OE
[02:16:51] <bluethundr> I see /var/username/mail as the mailbox
[02:16:58] <bluethundr> why would that be?
[02:17:20] <bluethundr> also, I _can_ send locally off of the mac pop client
[02:17:29] <bluethundr> but I am denied relay to external domains on either client
[02:17:43] <albino> weird, although I'm guessing that has a lot more to do with your imap dameon than your mta daemon
[02:17:51] <bluethundr> yet running mutt on my mail server allows me to send to the entire universe
[02:18:00] <bluethundr> that's my thinking too
[02:18:07] <bluethundr> although, this is actually pop not imap
[02:18:27] <bluethundr> I haven't done much testing of imap just yet other than to verify that imap is working
[02:24:11] *** zzattack2 has joined #postfix
[02:25:10] *** lunaphyte has quit IRC
[02:29:16] *** pirho has quit IRC
[02:30:55] *** growltiger has joined #postfix
[02:34:44] *** Juspion has joined #postfix
[02:36:49] *** m0f0x has joined #postfix
[02:41:22] *** growltiger is now known as deadly
[02:41:44] *** deadly is now known as growltiger
[02:41:56] *** prob8 has left #postfix
[02:47:43] *** m0f0x is now known as colesterol_dog
[02:47:59] *** eanxgeek|laptop has joined #postfix
[02:48:36] *** eanxgeek|laptop has quit IRC
[02:52:53] *** Knoedel2 has quit IRC
[02:58:01] *** zzattack2 has quit IRC
[03:12:50] *** fury has quit IRC
[03:14:17] *** githogori has quit IRC
[03:14:50] *** Juspion has quit IRC
[03:16:14] *** xpoint has quit IRC
[03:17:37] *** rcsu_ has joined #postfix
[03:21:58] *** growltiger is now known as karisha
[03:24:56] *** l-fy has joined #postfix
[03:24:59] <l-fy> hello
[03:26:05] <karisha> hi!
[03:26:06] <karisha> wb
[03:28:21] <l-fy> can i have a file like sasldb2 for cyrus and use the same file for postfix?
[03:30:25] *** rcsu has quit IRC
[03:30:25] *** ming_zym has joined #postfix
[03:32:38] <karisha> postfix can use cyrus sasl if that is what you are asking
[03:36:06] <l-fy> karisha > i know that
[03:36:09] <l-fy> i got that done
[03:36:24] <l-fy> the problem is that my server it's on the internet
[03:36:44] <l-fy> and i need to verify when i receive an e-mail that the user exists
[03:36:45] <l-fy> right?
[03:36:54] <karisha> good thinking
[03:36:59] <l-fy> and my users are living in salsdb2 file
[03:37:36] <l-fy> but postfix doen't know how to read sasldb2 file
[03:37:40] <l-fy> how can i handle that?
[03:39:57] *** hark has quit IRC
[03:40:52] *** m1n3s6 has joined #postfix
[03:47:58] *** growltiger has joined #postfix
[03:54:24] *** pickcoder has joined #postfix
[03:56:11] <wdp> nini
[03:58:48] <cite> Good morning.
[03:58:52] *** growltiger_ has joined #postfix
[03:59:37] *** karisha has quit IRC
[03:59:51] *** lunaphyte has joined #postfix
[04:01:07] *** olinux has joined #postfix
[04:01:56] <olinux> hey all i have a question, I am seeing this error quite often in postfix log
[04:04:46] <olinux> Dec  3 05:15:03 www1 postfix/smtpd[19211]: NOQUEUE: reject: RCPT from www.example.com[75.xxx.xxx.42]: 451 <recipient at yahoo dot com>: Temporary lookup failure; from=<sender20081201 at www dot example.com> to=<recipient at yahoo dot com> proto=ESMTP helo=<[75.xxx.xxx.218]>
[04:05:27] <olinux> Temporary lookup failure, but at the same time I can quickly resolve names from the mail server
[04:05:38] <olinux> ping yahoo.com resolved immediate
[04:05:49] <pickcoder> what about rdns for thathelo  IP?
[04:07:51] <pickcoder> it's debugging a resolver problem when the error is masked
[04:07:58] <pickcoder> ~it's tough
[04:10:35] *** growltiger has quit IRC
[04:11:04] <olinux> ok, here's a couple errors http://pastebin.com/d13ed2181
[04:13:06] <pickcoder> so this is local mail going to yahoo?
[04:16:26] <olinux> sorry back
[04:16:31] <olinux> ya local machine to yahoo
[04:16:44] <olinux> using smtp auth because i need the log format like that
[04:17:02] <olinux> i need the sender id because the messages are auditted
[04:17:18] <olinux> now my prob is that the app that sends them thinks they were sent
[04:17:26] <olinux> but postfix never queued them
[04:21:57] <olinux> not sure if I can handle that more effectively
[04:22:15] *** mavrick61 has quit IRC
[04:22:45] <olinux> basically i need to know senddate/recipient/and what message was sent
[04:23:22] <pickcoder> well 451 is not a successful SMTP error code
[04:23:23] *** mavrick61 has joined #postfix
[04:23:34] <pickcoder> it means it will keep trying for a limit time
[04:27:55] *** colesterol_dog has quit IRC
[04:29:01] <pickcoder> are you forcing fqdn for helo?
[04:29:14] <olinux> pickcoder, i also have a number of errors like warning: 704B880C112: virtual_alias_maps map lookup problem for somebody at example dot com
[04:29:49] <olinux> forcing fqdn idunno
[04:31:15] <olinux> well, i have not explicitly set values for reject_non_fqdn_hostname, reject_non_fqdn_sender, reject_non_fqdn_recipient,
[04:31:39] *** bluethundr has quit IRC
[04:33:23] <growltiger_> you dont set values for those
[04:33:27] *** jense has quit IRC
[04:33:30] <growltiger_> you either have them, or you dont
[04:33:36] <pickcoder> olinux: well the virtual alias lookup should be obvious
[04:34:07] <pickcoder> either the look method is failing or the lookup key is not valid
[04:36:46] <lunaphyte> who are you calling an invalid?!
[04:39:33] * pickcoder is trying to get opinions on public site beta testing
[04:39:40] <pickcoder> #apache won't play
[04:40:37] <olinux> growltiger_ ya they are commented out
[04:40:38] <lunaphyte> i'm all for public site beta testing!  what is it?
[04:40:48] <pickcoder> it's a commerce site
[04:40:59] <pickcoder> it will be htaccess protected
[04:41:03] <pickcoder> until we're ready for bots
[04:41:39] <pickcoder> is it worth the management hassle, apart from the "more eyes" argument
[04:45:36] <olinux> pickcoder, sounds worthwhile
[04:47:30] <lunaphyte> there's no such thing as public beta testing.
[04:48:27] <pickcoder> O_o
[04:49:13] <pickcoder> public == not lan-restricted
[04:49:35] <pickcoder> the domain will be published
[04:52:00] <lunaphyte> the internet at large will have access to the site?
[04:52:15] <pickcoder> for the most part
[04:52:25] <pickcoder> initally it will be htaccess protected
[04:52:40] <lunaphyte> in what sense?
[04:53:13] <pickcoder> beta testers will have to request to participate, which will give them some sort of sales incentive
[04:53:29] <pickcoder> they'll be given the login when approved
[04:58:21] <lunaphyte> we go through this exercise periodically with our software, and in my humble, insignificant opinion, it's of value to nothing beyond the relationship with the parties who are given "special" access to make them feel some sense of exclusivity.
[04:58:52] <pickcoder> no user suggestions that help with design?
[04:59:55] <lunaphyte> no - not to say that, but the suggestions come when they come. releasing the software to some psuedo-exclusive group doesn't generate feedback of any more value than a "normal" release.
[05:01:35] <lunaphyte> it has zero impact on the development of the software.  the software is built/developed/whatever, at some point it begins to be used by non-developers (customers, partners, whatever) and at that point (whether you call it beta or pre-release or whatever) feedback begins to get generated and it's either acted upon or not, just like it would be at any other point in the product's life cycle.
[05:04:18] *** growltiger_ has quit IRC
[05:04:26] <lunaphyte> i guess that might have a bit of a cynical sentiment to it - it's not really meant quite that way - just that i feel it's nothing beyond a sales tool, which is fine, but it just doesn't change the process for me one way or the other.
[05:06:40] *** saurabhb has joined #postfix
[05:06:58] <olinux> maybe true, but relationship and exclusivity drive sales
[05:10:57] *** pitakill has joined #postfix
[05:11:38] <lunaphyte> agreed - i'd never debate that, and i value it's importance in an organization.  to put it another way,  the sales/marketing folks are more than welcome to give the product to whoever they want whenever they want to and under whatever terms/auspices they desire - but the bottom line for me doesn't change - once a customer/whatever is using the product, it is released.  not "sort of" released, not half-ish released - just released.
[05:12:02] *** jimpop has joined #postfix
[05:19:22] <pickcoder> hm
[05:25:54] *** jimpop has quit IRC
[05:27:25] *** growltiger has joined #postfix
[05:31:16] *** jeffi has quit IRC
[05:31:26] *** jeffi has joined #postfix
[05:32:40] *** Chiku has quit IRC
[05:34:03] *** growltiger has quit IRC
[05:34:36] *** Chiku has joined #postfix
[05:34:44] *** growltiger has joined #postfix
[05:38:30] *** githogori has joined #postfix
[05:38:53] *** growltiger is now known as karisha
[06:12:29] *** amrit|wrk is now known as amrit
[06:13:08] *** adaptr has quit IRC
[06:13:18] *** adaptr has joined #postfix
[06:14:26] *** rcsu_ has quit IRC
[06:16:55] *** pickcoder has quit IRC
[06:18:48] *** chadmaynard has joined #postfix
[06:25:08] *** malex has left #postfix
[06:37:48] *** nphase_ has joined #postfix
[06:44:14] *** Haris1 has joined #postfix
[07:10:48] *** chadmaynard has quit IRC
[07:12:42] *** nphase_ has quit IRC
[07:22:29] *** roe__ has quit IRC
[07:27:38] *** weedar has quit IRC
[07:27:58] *** googlah has quit IRC
[07:29:01] *** googlah has joined #Postfix
[07:32:26] *** Fallenou has joined #postfix
[07:32:43] *** growltiger_ has joined #postfix
[07:34:12] *** bacaci__2 has joined #postfix
[07:35:46] *** karisha has quit IRC
[07:35:47] *** ming_zym has quit IRC
[07:35:47] *** f3ew has quit IRC
[07:35:47] *** _bugz_ has quit IRC
[07:35:47] *** incidence has quit IRC
[07:35:47] *** bacaci__ has quit IRC
[07:35:47] *** PatrickDK has quit IRC
[07:35:47] *** fluxdude has quit IRC
[07:35:47] *** jonez has quit IRC
[07:35:47] *** jiffe98 has quit IRC
[07:38:55] *** g0rd0n has joined #postfix
[07:39:23] *** PatrickDK has joined #postfix
[07:45:28] *** Fallenou has quit IRC
[07:45:31] *** incidence has joined #Postfix
[07:51:02] *** ming_zym has joined #postfix
[07:51:19] *** pitakill has quit IRC
[07:51:34] *** _bugz_ has joined #postfix
[07:51:53] *** amrit is now known as amrit|zzz
[07:54:07] *** f3ew has joined #postfix
[07:55:02] *** jiffe99 has joined #postfix
[07:55:02] *** jonez has joined #postfix
[08:01:38] *** jiffe99 has quit IRC
[08:02:21] *** jiffe99 has joined #postfix
[08:12:23] *** sophokles has joined #postfix
[08:20:59] *** weedar has joined #postfix
[08:28:41] *** robert83a1 has joined #postfix
[08:30:01] *** robert83a5 has joined #postfix
[08:31:46] *** adaptr has quit IRC
[08:31:55] *** adaptr has joined #postfix
[08:35:25] *** g0rd0n_ has joined #postfix
[08:38:07] *** Mr_Grim has quit IRC
[08:42:23] *** jonez has quit IRC
[08:49:24] <Chiku> anyone already use DBmail?
[08:49:35] <robert83a5> hello, I have a serious problem, I'm using CentOS 4.5 and postfix postfix-2.2.10-1.1.el4 , and since now I had no problem, today it started my messages queue gets filled up with spam messages , and I don't know what to do, it goes filled up to the point I cannot send recieve e-mails.
[08:50:45] *** cilly has joined #postfix
[08:50:58] <robert83a5> messages like these 507EA82BE1*     817 Thu Dec  4 08:50:27  burnettn at capriolo dot com
[08:50:58] <robert83a5>                                          burnettn at capriolobike dot com
[08:52:31] *** g0rd0n has quit IRC
[09:05:36] *** phnord has joined #postfix
[09:20:50] <robert83a5> can anyone tell me how can I find out who is sending most e-mails from inside?
[09:21:11] <robert83a5> I've blocked smtp port on firewall, e-mail server cannot get mail from outside, the problem is one of my inside clients, but don't know which
[09:24:12] <_ruben> originating ip addresses are in the logs
[09:27:03] <robert83a5> ok
[09:27:19] <robert83a5> I don't know what to do here, what can one do? if mail server is public, seems like someone started attacking me
[09:27:40] <robert83a5> the moment I open smtp port, I get like 160+ mails and going up...postfix and amavisd can cope with it for a while...but it fills up
[09:27:52] <robert83a5> can my ISP help me in this case?
[09:28:07] <robert83a5> seems like I was wrong, when I shut off port 25 I get no spamm from inside...
[09:29:04] <_ruben> still .. the originating ip(s) are in the logs (like /var/log/mail.log for example, depends on syslog configuration) .. find out where its coming from first, then go from there
[09:29:46] <robert83a5> hey
[09:29:51] <robert83a5> I was able to locate 3 offending ips
[09:30:05] <robert83a5> these are nonstop connecting ...
[09:30:05] <robert83a5> 58.62.198.44 211.226.51.88 59.97.80.121
[09:30:14] <robert83a5> maybe I should block these first...and see if the queue goes down?
[09:32:09] <robert83a5> no this is useless...I'm getting mail from all over different ip addresses already located like 20
[09:32:38] *** denis_ has joined #postfix
[09:39:09] <growltiger_> iptables -I INPUT -s 59.0.0.0/8 -j DROP
[09:39:13] <growltiger_> iptables -I INPUT -s 58.0.0.0/8 -j DROP
[09:39:17] <growltiger_> those are korea
[09:39:27] *** cedric33 has quit IRC
[09:39:27] <growltiger_> i already have those blocked :)
[09:39:41] <growltiger_> 211 is china
[09:40:24] <growltiger_> just block those whole countries, else you will be fighting a never-ending battle
[09:43:53] *** weedar has quit IRC
[09:44:32] *** weedar has joined #postfix
[09:44:42] <robert83a5> oh
[09:44:52] <robert83a5> so I should just block 211 entirely?
[09:44:57] <growltiger_> i do
[09:45:11] <robert83a5> growltiger : thankyou! I will try now
[09:45:15] <growltiger_> i dont want any email from china, ever
[09:45:55] <robert83a5> my problem is we do bussines with chine, but I will try and block korea
[09:46:00] <robert83a5> see if it improves
[09:46:03] <growltiger_> lookup the ips on senderbase and then it will tell you the net range they are using, then you can use that in iptbales
[09:46:36] *** brancaleone has joined #postfix
[09:48:08] <robert83a5> ok I wrote into the first line where my INPUT rules start
[09:48:20] <robert83a5> iptables -A INPUT -s 59.0.0.0/8 -j DROP  and the rest
[09:48:39] <robert83a5> sorry I'm no expert with iptables, the rules are read line by line right ? so this is correct?
[09:48:45] <f3ew> yes
[09:48:58] <growltiger_> well A puts at the bottom and I puts at top
[09:49:13] <robert83a5> so I should use I instead?
[09:49:35] <growltiger_> dont matter really, if you just want to block whole ranges like that
[09:50:15] <growltiger_> if you want to whitelist some ranges, it's best to put at top, say you want to block 58.0.0.0/8 but want 58.2.2.2/24
[09:56:48] <robert83a5> growltiger, since the mail server is not on my public ip, but inside so I'm natting
[09:57:02] <robert83a5> do I need to specify those rules anywhere else, seems like the INPUT rule is not working
[09:57:04] *** war9407 has joined #postfix
[09:57:10] <robert83a5> still getting mail from 58,59,211...
[09:58:38] <growltiger_> did you put those in the iptables-save file or what?
[09:58:56] <growltiger_> you have to reload iptables if you just put them in a file
[09:59:00] <robert83a5> no I'm using a custom script I wrote myself...
[09:59:04] <robert83a5> I did reload iptables
[09:59:36] <growltiger_> well, it's probably matching a previous rule and getting in
[09:59:43] <robert83a5> I think I need the forward rules
[09:59:52] <robert83a5> not the input
[09:59:58] <growltiger_> input is from internet to your machine
[10:00:06] <growltiger_> forward is from interface to interface
[10:00:11] <robert83a5> cause the smtp is not going directly to FIrewall...but going trough firewall to internal mail server
[10:00:18] <growltiger_> output is form your machine to the internet
[10:00:19] <robert83a5> yeah, my setup
[10:00:25] <robert83a5> internet---firewall----mail server
[10:00:36] <robert83a5> so I think I need the foreward rule here
[10:01:04] <growltiger_> if you say so...
[10:03:59] <robert83a5> ok seems like this way korea and japan is terminated...but I'm still gettiing spam from .de germany, is it possible that some
[10:04:13] <robert83a5> idiot spammer used my domain address to send spamm and I'm getting the result back?
[10:05:23] <growltiger_> maybe
[10:05:33] <robert83a5> growltiger_ : one other quesion, possible cause
[10:05:43] <growltiger_> "joe job"
[10:05:55] <growltiger_> that's what we used to call it in the old days
[10:05:59] <robert83a5> this domain , I'm getting most spam from was till now at our ISP , yesterday I've told them to set the mx record to point to us
[10:06:18] *** g0rd0n_ has quit IRC
[10:06:24] <robert83a5> all the spam atleast the header says comes from blablabla at capriolo dot com and destined to blablabla at capriolobike dot com
[10:06:29] <Haris1> robert83a5: any idiot can use any domain, while sitting anywhere in the world and spam anyone =D
[10:07:03] <robert83a5> is it possible since this domain was not used for e-mail for a year or more...these e-mail got accumlated...or no it's not possible?
[10:07:49] <growltiger_> they could have just been silently accepting the mails all this time
[10:08:00] <robert83a5> oh...
[10:08:06] <robert83a5> and now I'm getting the result?
[10:08:15] <growltiger_> and they got on spam lists because noone was doing any bouncing
[10:08:28] <growltiger_> so it got spread around
[10:08:46] <robert83a5> seems like I could block the entire world... getting spam from all over the place
[10:09:05] <robert83a5> growtiger_ : can you reccomend me what to do ? maybe limit smtp connections on firewall ?
[10:09:08] <robert83a5> would that help?
[10:09:16] <robert83a5> to say 100 messages / minutes?
[10:09:22] <growltiger_> i just use iptables and rbls
[10:09:25] <robert83a5> atleast the mail server would be able to handle the incoming mails
[10:09:34] <growltiger_> i dont do any content filtering at all
[10:09:45] <robert83a5> growtiger_ : I use the same thing, worked like a charm till now, + amavisd
[10:09:59] <robert83a5> all these mails are going to spam folder...just that it's overloading the server
[10:10:24] <robert83a5> not much but server is now 2.69 2.68 2.05
[10:10:40] <Haris1> growltiger_: talking about apf, bfd and the like or manual usage of RBLs with iptables?
[10:10:45] <growltiger_> the other place i worked, when it got really bad, is we setup a front end machine to do the iptables and rbl checks and other sanity checks, and then they were passed to the real mail machine
[10:11:19] <robert83a5> growltiger_ : what do you think, would iptables --m limit hepl here? like limit incoming smtp connections to 50-100 / minute?
[10:11:19] <growltiger_> what are apf and bfd?
[10:11:55] <growltiger_> yeah, spammers dont like delays when spewing out their crap
[10:12:06] <growltiger_> greylisting would help wonders as well
[10:12:22] <Haris1> how ?
[10:12:27] <Haris1> about the iptables+rbls
[10:14:18] <growltiger_> i have a list of netranges of spammy countries, i simply block those ip ranges from even trying to talk to mailserver
[10:14:40] <growltiger_> the ones that get through that, get to be checked with zen.spamhaus.org and the like
[10:15:06] <growltiger_> then they get checked for valid hostnames, valid reverse dns, and the like
[10:15:49] <growltiger_> i get maybe 1 or 2 spams a day
[10:16:01] <growltiger_> out of hundreds of attempts
[10:17:06] <growltiger_> and the few i do get are from throwaway yahoo and hotmail accounts
[10:23:23] <Haris1> that's like di-secting half the internet, so they can't send mail
[10:24:07] <growltiger_> yep
[10:24:44] <growltiger_> considering 90 percent of all email is spam, it's just a start. but it works
[10:27:06] *** BuenGenio has joined #postfix
[10:28:56] *** robert83a5 has quit IRC
[10:30:03] <_ruben> one of our customers domains is even worse .. only based on valid rcpt : in 3hrs, 15k invalid rcpt, 100 valid rcpt :P
[10:30:39] *** saurabhb has quit IRC
[10:30:45] *** recon1025 has joined #postfix
[10:31:06] *** m1n3s6 has quit IRC
[10:31:22] *** m1n3s6 has joined #postfix
[10:33:42] *** BuenGenio__ has quit IRC
[10:35:47] *** saurabhb has joined #postfix
[10:40:24] *** saurabhb has quit IRC
[10:43:09] *** saurabhb has joined #postfix
[10:45:01] *** saurabhb has quit IRC
[10:51:21] *** saurabhb has joined #postfix
[10:55:37] *** Lap_64 has joined #postfix
[10:55:53] *** UltraCool has joined #postfix
[10:57:16] <UltraCool> Hi what could be the cause of a 533 error?
[10:59:58] *** Lap_64 has quit IRC
[11:00:48] *** cedric3 has joined #postfix
[11:04:25] <cedric3> hi  i have one question please i try to use procmail i write on main.cf : mailbox_command = /usr/bin/procmail -t -a "$EXTENSION" and  i create a file /etc/procmailrc with  http://pastebin.com/m566d6805  but when i send a mail with subjet  test it now work idf you can help me please thanks
[11:10:11] *** hachiya has quit IRC
[11:11:12] <UltraCool> Hi, i asked the wrong question, here's the real problem: 553 sorry, that domain isn't in my list of allowed rcpthosts
[11:11:17] *** pingouin_ has quit IRC
[11:11:42] *** madrescher has joined #postfix
[11:15:38] *** randra has joined #postfix
[11:17:11] *** stas has joined #postfix
[11:18:28] <Roobarb> UltraCool: thats a pretty self-explanitory message
[11:28:58] <UltraCool> Roobarb, yeh i figured out a mailrelay was required... so we're not testing.
[11:29:38] <UltraCool> *not=now
[11:36:34] *** mohsen has joined #postfix
[11:36:40] <Twinkletoes|W> I installed postfix on FreeBSD to replace sendmail, but now whenever a cron job runs, it's output is emailed to root instead of me, even though, 'postmap -q root hash:/etc/aliases' gives my personal address
[11:37:19] <Twinkletoes|W> Not sure if it's a FreeBSD config issue, or something I can check in postfix
[11:38:45] <munga> which map should I use to reject email for an entire domain with a 554 and a custom message ?
[11:39:27] <f3ew> munga check_sender_access
[11:39:39] <munga> Twinkletoes|W: do you get anything if u send an email directly to root ?
[11:39:58] <f3ew> Twinkletoes|W see postconf alias_maps to see what Postfix is using
[11:40:17] <Twinkletoes|W> f3ew: Thats' what you said yesterday, thank you - and it poitns to /etc/aliases
[11:40:30] <Twinkletoes|W> munga: I can try, but can I suspend the outbound queue so I don't p*** off the sysadmins?
[11:40:54] <f3ew> Twinkletoes|W what's in the logs?
[11:41:29] <Twinkletoes|W> f3ew: Let me pastbin an example...
[11:42:59] <cedric3> nobody any idea for my problem .
[11:43:53] <Twinkletoes|W> f3ew: http://rafb.net/p/tjRGnP90.html
[11:45:19] *** BuenGenio has quit IRC
[11:48:29] <f3ew> cedric3 logs?
[11:49:05] <f3ew> Dec  4 02:10:04 bonnie postfix/smtp[79773]: 3A77DD5: to=<<me>@<my_domain>>, relay=smtp.<my_domain>[192.168.1.16]:25, delay=0.16, delays=0.09/0.04/0.02/0.01, dsn=2.0.0, status=sent (250 2.0.0 mB42AA7v013831 Message accepted for delivery)
[11:49:05] <f3ew> Dec  4 02:10:04 bonnie postfix/qmgr[59639]: 3A77DD5: removed
[11:49:29] <f3ew> That looks like Postfix sent to you on 1.16 where Sendmail handled delivery
[11:50:01] <cedric3> f3ew :  i have only this message :  procmail[20943]: Suspicious rcfile "/etc/procmailrc"
[11:51:16] <f3ew> cedric3 permissions on /etc/procmailrc?
[11:54:08] <cedric3> f3ew : you can see on http://pastebin.com/m2f4f09c7 i use a maildir not a mailbox
[11:54:09] *** BuenGenio has joined #postfix
[11:54:21] *** ming_zym has quit IRC
[11:55:47] *** pirho has joined #postfix
[11:56:35] *** gothikon85 has joined #postfix
[11:57:39] <Twinkletoes|W> f3ew: Your not going to belive this, I pasted the wrong log
[11:58:47] <f3ew> Twinkletoes|W, I do believe it :)
[12:01:00] *** wdp_ has joined #postfix
[12:01:21] <Twinkletoes|W> f3ew: I'm sorry - try this one
[12:01:36] <cedric3> f3ew : the owner  ans group is mail and it's 755 permition
[12:07:32] *** BuenGenio has quit IRC
[12:07:36] *** BuenGenio has joined #postfix
[12:08:40] <cedric3> f3ew ; no idea i don't know if the line on main.cf is good i search now if it's this problem
[12:08:44] <Twinkletoes|W> f3ew: Duh! - I didn' tpost the link:   http://rafb.net/p/ERQoEx35.html
[12:15:06] <f3ew> cedric3 /etc/procmailrc should be root:root and 644
[12:15:09] *** albertoandrade has joined #postfix
[12:15:10] *** nfi|ermes has joined #postfix
[12:16:50] <cedric3> f3ew ; i try now
[12:18:04] <f3ew> Twinkletoes|W alias_maps is used by local(8), not smtp
[12:18:28] *** wdp has quit IRC
[12:18:43] <f3ew> Either add my.domain to mydestination, or set myorigin = $myhostname
[12:19:05] <cedric3> f3ew : do you see a wrong syntaxe on http://pastebin.com/m566d6805 (it's my file procmail) because now when i send mail  procmail is not use
[12:19:08] <Twinkletoes|W> f3ew: Sorry, I don't quite understand... the local(8) / smtp thing
[12:19:33] <Twinkletoes|W> f3ew: I had to set myorigin = $mydomain just so the relayhost would accept mail from me
[12:19:42] <f3ew> Twinkletoes|W smtp and local are different processes invoked by the Postfix master process
[12:19:48] *** nonsequitir has quit IRC
[12:20:27] <f3ew> See man 8 smtp and man 8 local
[12:20:37] <Twinkletoes|W> f3ew: Thank you very much - I'll look at those now
[12:20:38] <f3ew> you could also look at smtp_generic_maps
[12:20:50] <f3ew> but forcing stuff to go into local via mydestination is easier
[12:21:19] * Twinkletoes|W nods knowingly at f3ew
[12:21:37] *** [M4rk0] has joined #postfix
[12:22:00] <[M4rk0]> Hello everybody
[12:23:54] <[M4rk0]> I have problem '552 5.3.4 Error: message file too big' I use postfix + mysql (virtual users) and in main.cf there is mailbox_size_limit = 0 & message_size_limit = 0
[12:24:04] <[M4rk0]> What else I can do to fix this?
[12:24:37] <f3ew> is it really your host?
[12:25:11] *** Zblakany has joined #postfix
[12:25:15] <[M4rk0]> what do you mean?
[12:26:03] <[M4rk0]> t3ew ... OMG!
[12:26:16] <[M4rk0]> I'm using my second server :|
[12:26:45] <[M4rk0]> killmyself
[12:26:45] <[M4rk0]> :D
[12:26:57] <[M4rk0]> t3ew thanx! :)
[12:28:29] <[M4rk0]> It works :P
[12:28:55] *** growltiger_ has quit IRC
[12:29:15] *** growltiger has joined #postfix
[12:29:27] <Twinkletoes|W> f3ew: I fully understand what you were saying now... because "mydestination" wasn't set correctly, the mail was sent straight to the relayhost without going via local delivery.
[12:29:37] <Twinkletoes|W> f3ew: I am sure this will be fixed now - thank you very much
[12:29:38] <f3ew> right
[12:30:02] *** [M4rk0] has quit IRC
[12:30:54] *** cpm has joined #postfix
[12:37:58] *** denis_ has quit IRC
[12:43:55] <cedric3> f3ew : thanks for your help
[12:54:18] *** githogori has quit IRC
[12:58:50] *** Doctor-Steve has joined #postfix
[12:59:04] *** stas has quit IRC
[13:01:59] *** stas has joined #postfix
[13:07:16] *** non-sequitir has joined #postfix
[13:22:49] *** non-sequitir has quit IRC
[13:22:56] *** Doctor-Steve_ has joined #postfix
[13:23:25] <stockholm> how do i rewrite the To: part of a mail? both envelop and header?
[13:23:52] <stockholm> i want all mails sent to root on my machines sent to an other address in an other domain.
[13:23:56] <f3ew> !smtp_generic_maps
[13:23:57] <knoba> f3ew: Error: "smtp_generic_maps" is not a valid command.
[13:24:01] <f3ew> !alias_maps
[13:24:02] <knoba> f3ew: "alias_maps" : a configuration parameter in the main.cf: The alias databases that are used for local(8) delivery. See aliases(5) for syntax details.
[13:24:05] <f3ew> !generic_maps
[13:24:06] <knoba> f3ew: Error: "generic_maps" is not a valid command.
[13:24:11] <f3ew> !canonical_maps
[13:24:12] <knoba> f3ew: "canonical_maps" : a configuration parameter in the main.cf: Optional address mapping lookup tables for message headers and envelopes. The mapping is applied to both sender and recipient addresses, in both envelopes and in headers. This is typically used to clean up dirty addresses from legacy mail systems, or to replace login names by Firstname.Lastname. The table format and lookups are documented in (1 more message)
[13:24:21] <jeffi> quit
[13:24:22] *** jeffi has quit IRC
[13:35:56] *** toxygen has quit IRC
[13:36:00] *** toxygen has joined #postfix
[13:38:04] *** war9407 has quit IRC
[13:41:05] *** Doctor-Steve has quit IRC
[13:41:10] *** pirho has quit IRC
[13:42:06] *** pirho has joined #postfix
[13:43:32] *** BuenGenio has quit IRC
[13:48:56] *** denis_ has joined #postfix
[13:53:37] *** ming_zym has joined #postfix
[14:00:22] *** mohsen has quit IRC
[14:01:26] *** Doctor-Steve__ has joined #postfix
[14:01:31] *** tmjb has joined #postfix
[14:02:51] *** Doctor-Steve_ has quit IRC
[14:24:09] *** cilly has quit IRC
[14:25:23] *** DrChandra has joined #postfix
[14:35:18] *** saurabhb has quit IRC
[14:38:51] *** cilly has joined #postfix
[14:39:49] *** cafuego has quit IRC
[14:40:33] *** googlah has quit IRC
[14:40:54] *** eanxgeek has joined #postfix
[14:41:47] *** denis_ has quit IRC
[14:42:36] *** BuenGenio has joined #postfix
[14:49:34] *** Haris1 has quit IRC
[14:51:58] *** DrChandra is now known as g0rd0n
[14:52:39] *** googlah has joined #Postfix
[15:01:53] *** fury has joined #postfix
[15:10:23] *** Haris1 has joined #postfix
[15:11:57] *** cilly has quit IRC
[15:13:46] *** xpeed has joined #postfix
[15:34:06] *** mathuaerknedam has left #postfix
[15:35:17] *** BuenGenio has quit IRC
[15:37:04] *** deadpigeon has joined #postfix
[15:38:31] *** m0f0x has joined #postfix
[15:40:03] *** david_ has joined #postfix
[15:41:53] *** david_ has quit IRC
[15:43:53] *** hparker has joined #postfix
[15:45:06] *** Zelest has quit IRC
[15:47:49] *** Zelest has joined #postfix
[16:03:51] *** xpoint has joined #postfix
[16:06:11] *** ming_zym has quit IRC
[16:08:06] *** F|oFF has quit IRC
[16:09:55] *** cpbills has left #postfix
[16:10:20] *** F|oFF has joined #postfix
[16:19:55] *** adj has joined #postfix
[16:20:28] <adj> i have a postfix server for a company that pulls most info from ldap
[16:20:34] *** fury has quit IRC
[16:21:01] <adj> i'd like to add a new domain, but use files to store the user accounts for this name (or an alternate LDAP basedn)
[16:21:17] <adj> is this doable? or do i need another postfix instance?
[16:28:56] *** ChrisW1 has joined #postfix
[16:29:09] *** madrescher has quit IRC
[16:29:30] <ChrisW1> hi all, surely when postfix receives a 421 when trying to deliver a message the message should be queued and not removed?
[16:32:39] *** growltiger_ has joined #postfix
[16:33:29] <Verilium> Afaik, that would be correct.
[16:35:03] <cpm> 421 is a 'please hang up, and try your call again' message.
[16:35:33] *** mandragor has joined #postfix
[16:37:27] *** weedar has quit IRC
[16:37:55] *** mio has joined #postfix
[16:38:07] *** albino has left #postfix
[16:38:43] <mio> ola
[16:39:56] <mio> hello everyone, I have a question. I am using postfix + cyrus + ldap. and I would like to forward whatever comes at a given user (or multiple users) to another user
[16:40:20] <mio> Any clue how I could do this?
[16:40:54] <ChrisW1> cpm: indeed, but postfix didn't...
[16:41:02] <ChrisW1> pastebin of choice?
[16:41:31] <mio> !pastebin
[16:41:31] <knoba> mio: "pastebin" : a way to paste larger amounts of text so that other people can read it. Try http://www.rafb.net/paste/ or http://paste.debian.net/ - Do not forget to tell us the URL where you pasted it.
[16:41:51] <mio> !mail forward
[16:41:52] <knoba> mio: Error: "mail" is not a valid command.
[16:41:57] <mio> !forward
[16:41:58] <knoba> mio: Error: "forward" is not a valid command.
[16:41:58] <ChrisW1> http://paste.pocoo.org/show/93813/
[16:42:42] <ChrisW1> mio: virtual_alias might well do ti for you here...
[16:42:49] *** UltraCool has quit IRC
[16:45:14] <ChrisW1> Verilium/cpm: what happened in the stuff I posted for that message?
[16:45:20] *** aichainz has joined #postfix
[16:45:41] <mio> ChrisW1: yeah but can I have multiple aliases for 1 user?
[16:45:48] <ChrisW1> mio: yes
[16:45:54] <ChrisW1> I have about 27 for me :-)
[16:46:41] <cpm> tatus=sent (250 ok dirdel)
[16:46:45] <cpm> looks like it was sent
[16:47:47] *** growltiger has quit IRC
[16:48:19] <ChrisW1> yep, as a friend just pointed out, postfix tried a second mx, which worked :-)
[16:48:20] <g0rd0n> can i make a check_recipient_access hash:/etc/postfix/recipient_access with the postmap file looking like this @domain.tld     reject_non_fqdn_helo_hostname, reject_invalid_helo_hostname, reject_unknown_helo_hostname ? i basically want to run those three checks only for drecipient omains i specifically enable  in the recipient_access file...
[16:48:29] <mio> ChrisW1: how can I change" query_filter            = (&(mail=%s))" to add more select attributes ?
[16:49:06] <mio> query_filter            = (&(mail=%s) ||&(somevar=%s))
[16:49:08] <mio> hehe
[16:49:22] <ChrisW1> er, no idea what you're on about mio...
[16:49:59] <Verilium> ChrisW1:  I was looking at my logs and just noticed the same thing, with yahoo destinations.
[16:50:14] <mio> ChrisW1: Well I am already using virtual_alias_maps
[16:50:22] <Verilium> Yeah, different mx, indeed.
[16:51:17] <ChrisW1> mio: I didn't say virtual_alias_maps ;-)
[16:51:21] <ChrisW1> or maybe i did
[16:51:26] <ChrisW1> I dunno, anyway, I gotta go...
[16:51:42] <mio> k cya
[16:52:26] *** m1n3s6 has quit IRC
[16:52:39] *** ChrisW1 has left #postfix
[16:53:14] <mio> sysmonk: you there ? :)
[16:55:14] <aichainz> is there a way to send ndr messages to another box that is dedicated to dealing only with ndr deliveries ?
[16:57:00] *** pulsar has joined #postfix
[16:58:40] *** gothikon85 has left #postfix
[16:58:57] *** albertoandrade has quit IRC
[16:59:10] *** rbgarga has joined #postfix
[17:00:47] <rbgarga> I have a strange case here, postconf -n and EHLO show me message_size limit as 10485760, but i don't know how, a much bigger message went into queue, size=154850500
[17:00:53] *** recon1025 has quit IRC
[17:00:58] <rbgarga> does anyone have idea what could be happening?
[17:01:12] *** recon1025 has joined #postfix
[17:01:39] *** Haris has joined #postfix
[17:04:26] *** xXx_JaZz_xXx has joined #postfix
[17:04:36] <xXx_JaZz_xXx> hi
[17:04:47] <xXx_JaZz_xXx> i could use some help
[17:05:14] <xXx_JaZz_xXx> installed a multidomain server like : http://wiki.sharlaan.net/us:howto:postfix:debian
[17:05:16] <xXx_JaZz_xXx> but:
[17:06:11] <xXx_JaZz_xXx> when i attempt to login via pop3 it says:
[17:06:12] <xXx_JaZz_xXx> ec  4 17:00:26 root1 pop3d: scancur opendir("cur"): No such file or directory
[17:06:26] <xXx_JaZz_xXx> Dec  4 17:00:26 root1 pop3d: scancur opendir("cur"): No such file or directory
[17:07:23] <xXx_JaZz_xXx> could you tell my where i set the cur directory?
[17:08:55] <xXx_JaZz_xXx> and is my config file okay?
[17:08:55] <xXx_JaZz_xXx> http://pastie.org/private/wvclphtybmwjuqcdziu05w
[17:09:37] *** dupondje has joined #Postfix
[17:10:01] <dupondje> Is it possible to disable spamassassin only for users auth'ed with SASL ?
[17:14:49] <Verilium> xXx_JaZz_xXx:  If you go into /usr/local/virtual
[17:15:06] <Verilium> xXx_JaZz_xXx:  Is there anything in there?  Do you see any mail that's been received?
[17:16:22] <Verilium> xXx_JaZz_xXx:  If you've got mail in there, /usr/local/virtual/test at domain dot com...  In there, you should see at least 3 directories, cur, new and tmp.
[17:18:49] <dupondje> any id ?
[17:20:49] *** _Driver_ has joined #postfix
[17:22:03] *** mandragor has quit IRC
[17:22:10] *** g0rd0n has left #postfix
[17:22:23] <xXx_JaZz_xXx> these dirs are automatically generated?
[17:23:09] <Verilium> xXx_JaZz_xXx:  Should be, yes.
[17:23:53] <Verilium> I haven't read that howto completely, but it looks a bit like how I'm setup at the moment, although using postfixadmin.
[17:24:44] <Verilium> xXx_JaZz_xXx:  If no mail has come in for the user yet though, I'm not sure if the dirs will be created.
[17:25:45] <xXx_JaZz_xXx> alright i'll check that
[17:25:55] <xXx_JaZz_xXx> postfixadmin is a webbased tool?
[17:27:09] <xXx_JaZz_xXx> but otherwise the cfg looks okay?
[17:27:57] <Verilium> xXx_JaZz_xXx:  Yes, web-based.
[17:28:34] <Verilium> xXx_JaZz_xXx:  I haven't looked at your config in detail, can't say. :)
[17:30:12] *** dupondje has quit IRC
[17:30:20] *** tmjb has quit IRC
[17:33:59] *** R1ck has joined #postfix
[17:34:30] <nfi|ermes> Dec  4 17:37:48 spam-proxy postfix/master[1798]: warning: /usr/libexec/postfix/smtpd: bad command startup -- throttling
[17:34:42] <nfi|ermes> i think it s using the wrong sendmail
[17:35:07] <R1ck> f3ew: iirc, you admin a large number of mailboxes.. what kind of storage appliance do you use? netapps?
[17:35:38] <R1ck> or, does anyone have recommendations about stable NAS appliances which are able to sync data between eachother?
[17:39:32] *** olinux has quit IRC
[17:39:44] *** _fury has joined #postfix
[17:40:28] <xXx_JaZz_xXx> so:
[17:40:37] <xXx_JaZz_xXx> this is the latest error log
[17:40:37] <xXx_JaZz_xXx> http://pastie.org/private/vb6tzh3dva3jgrk4hqg0a
[17:41:17] <xXx_JaZz_xXx> i tried to send a mail to this test mail address
[17:41:24] <xXx_JaZz_xXx> here my cfg again: http://pastie.org/private/wvclphtybmwjuqcdziu05w
[17:41:28] <xXx_JaZz_xXx> any idead?
[17:41:32] <xXx_JaZz_xXx> *ideas
[17:46:01] *** mio has quit IRC
[17:46:30] *** recon1025 has quit IRC
[17:46:35] *** recon1025 has joined #postfix
[17:51:58] <Verilium> xXx_JaZz_xXx:  Well, you're supposed to have something listening on that port, and nothing's there. :P
[17:54:26] <xXx_JaZz_xXx> ?
[17:54:35] <xXx_JaZz_xXx> that means? :-)
[17:54:45] <xXx_JaZz_xXx> sry i new to mail ^^
[17:54:49] <xXx_JaZz_xXx> *i'm
[17:55:42] <xXx_JaZz_xXx> or how can i solve it?
[17:56:49] <nfi|ermes> i compiled postfix with cyrus authentication: make makefiles CCARGS="-DUSE_SASL_AUTH -DUSE_CYRUS_SASL -I /usr/local/include/sasl" AUXLIBS="-L/usr/local/lib -lsasl2"
[17:57:04] <nfi|ermes> i enabled sasl authentication in main.cf
[17:57:10] <nfi|ermes> Dec  4 17:37:48 spam-proxy postfix/master[1798]: warning: /usr/libexec/postfix/smtpd: bad command startup -- throttling
[17:58:17] <nfi|ermes> how can i debug it ?
[17:59:46] <Verilium> xXx_JaZz_xXx:  Your postgrey isnt running?
[18:14:21] *** rcsu has joined #postfix
[18:15:17] *** brancaleone has quit IRC
[18:19:03] <xXx_JaZz_xXx> damn i'm an idiot ^^
[18:19:09] <xXx_JaZz_xXx> you were right
[18:19:14] <Dominian> Just remember.. we didn't say it ;)
[18:19:27] <xXx_JaZz_xXx> i didn't start the daemon
[18:19:28] <xXx_JaZz_xXx> ^^
[18:20:00] <xXx_JaZz_xXx> how can i send a test mail from my local server to this test address?
[18:20:11] <Dominian> telnet localhost 25
[18:20:12] <Dominian> hehe
[18:20:31] <xXx_JaZz_xXx> i know but i mean on my local server
[18:20:39] <xXx_JaZz_xXx> its a linux sys ^^
[18:21:58] *** phnord has quit IRC
[18:23:20] *** jonez has joined #postfix
[18:24:54] <Dominian> That's how I test it
[18:24:56] <Dominian> telnet localhost 25
[18:25:00] <Dominian> helo <domain.tld>
[18:25:04] <Dominian> mail from: <address>
[18:25:08] *** rbgarga has left #postfix
[18:25:11] <Dominian> rcpt to: <address>
[18:25:12] <Dominian> data
[18:25:15] <Dominian> <input data here>
[18:25:16] <Dominian> .
[18:26:02] *** david_ has joined #postfix
[18:31:51] *** _Driver_ has quit IRC
[18:32:10] *** _Driver_ has joined #postfix
[18:35:13] *** soh-mrtot has joined #postfix
[18:35:45] <nfi|ermes> anyone can help me witth saslauthd and postfix problem ?
[18:37:26] <soh-mrtot> hehehe, first read http://workaround.org/moin/GettingHelpOnIrc <-- second headline :)
[18:38:29] *** pulsar has quit IRC
[18:44:00] <nfi|ermes> eheh
[18:44:03] <nfi|ermes> you are right
[18:44:45] <nfi|ermes> #/usr/sbin/testsaslauthd -u xxxxxxxx -p xxxxx connect() : No such file or directory
[18:46:11] <soh-mrtot> when do you get that error?
[18:47:06] <nfi|ermes> when i execute that command
[18:47:21] <nfi|ermes> if i enble sasl auth in postfix i get throttling
[18:48:18] <nfi|ermes> in inti script of saslauthd the s a aparameter -m /var/state/saslauthd
[18:49:08] <soh-mrtot> hmm dunno...
[18:49:33] <nfi|ermes> perhaps a chroot problem
[18:55:18] <soh-mrtot> My Question: I always get the following error message in mail.log: Dec  4 18:32:00 blabla postfix/trivial-rewrite[6816]: warning: do not list domain blabla.webhop.net in BOTH mydestination and virtual_mailbox_domains . Here is my postconf -n output: http://pastebin.com/d65aa287f ... I bet it's very simple but I don't know where I should look to solve this issue... Is it an issue after all? Seems as if it's only a warning...
[18:58:00] <shasta> what? you don't know where you should look? that error message exactly tells you...
[19:02:17] <soh-mrtot> ok let's see... virtual_mailbox_domains points to a SQL query... mydestination is "blabla.webhop.net, localhost, localhost.localdomain". Does it mean I need to delete the domain from mydestination since it's allready provided by the SQL Query?
[19:03:09] *** m0f0x has quit IRC
[19:11:06] <shasta> you need to read http://www.postfix.org/VIRTUAL_README.html
[19:12:54] <soh-mrtot> I removed the domain from mydestination... that solved the problem. :) Oh my god... my first own mailserver :))
[19:14:52] <stockholm> soh-mrtot: cool!
[19:16:01] *** denis_ has joined #postfix
[19:16:41] <cpm> welcome to hell
[19:20:43] <soh-mrtot> hehehe
[19:23:52] *** Zeit|awy_ has quit IRC
[19:29:54] *** funburn has joined #postfix
[19:31:48] <funburn> We need to send out ~14K messages to our membership. I would like to create a special alias that we can send the message to. This alias will pipe to a program or script that will then control the transmission of the messages so that they don't flood postfix. Does anyone know of a solution that would achieve this goal?
[19:32:00] <funburn> extra credit if the script could read in a csv file
[19:32:39] *** stonith has joined #postfix
[19:32:51] *** denis_ has quit IRC
[19:32:52] <funburn> restate: We need to send a message to ~14K members
[19:33:22] *** amrit|zzz is now known as amrit|wrk
[19:34:21] *** denis_ has joined #postfix
[19:40:40] <aichainz> is there a way to send ndr messages to another box that is dedicated to dealing only with ndr deliveries ?
[19:42:45] *** carl- has joined #postfix
[19:43:52] *** cilly has joined #postfix
[19:47:34] *** Zeit|awy has joined #postfix
[19:51:52] <stonith> aichainz: maybe send as email at hostname dot domain.com should redirect bounce messages to a particular server as long as you use FQDN.  Of course there are other alternatives.
[19:52:22] *** pirho has quit IRC
[19:52:57] *** hark has joined #postfix
[19:53:35] *** pirho has joined #postfix
[19:55:00] <stonith> aichainz: other alternative is to use aliases on your MTA to point your no-reply at domain dot com to another e-mail address email at hostname dot domain.com if you don't want to publish FQDN of the so called NDR server
[19:55:04] *** gutocarvalho has joined #postfix
[20:00:19] *** growltiger has joined #postfix
[20:08:14] <aichainz> which configuration options are  you talking about, stonith
[20:08:45] *** Mr_Grim has joined #postfix
[20:09:22] <stonith> aichainz: well the latter option - should reside in your aliases file, it might be /etc/aliases or /etc/postfix/aliases, look in your main.cf.
[20:10:40] <aichainz> the users are not local users though so im not sure how the aliases file comes into play
[20:10:42] *** devdas has joined #postfix
[20:13:31] <stonith> aichainz: please clarify.  I'm assuming you have a mass e-mail and eventually there are e-mails that are bouncing back that you want to forward to another MTA to process?
[20:14:21] *** growltiger_ has quit IRC
[20:16:32] *** githogori has joined #postfix
[20:16:35] *** randra has quit IRC
[20:16:56] <aichainz> i host email for a large number of domains - a handful of them get absolutely pounded by spammers through a variety of techniques, many of which end up with a non-deliverable NDR being generated.  these non-deliverables have a negative effect on the mail system, in that it consumes resources - i want to offload this low-priority ndr deliveries to a dedicated system
[20:19:23] <devdas> aichainz: reject during the SMTP transaction, don't generate a bounce
[20:19:31] <devdas> Also see fallback_relay
[20:20:02] <aichainz> agreed
[20:20:13] <aichainz> devdas i am working on strategies of reducing the number of ndrs
[20:20:24] <aichainz> and fallback_relay i am also already investigating.
[20:20:41] *** whiteflag has joined #postfix
[20:21:00] <devdas> validate your recipients at the edge
[20:21:11] <devdas> !virtual_mailbox_maps
[20:21:11] <knoba> devdas: "virtual_mailbox_maps" : a configuration parameter in the main.cf: Optional lookup tables with all valid addresses in the domains that match $virtual_mailbox_domains.
[20:21:15] <devdas> !virtual_alias_maps
[20:21:16] <knoba> devdas: "virtual_alias_maps" : a configuration parameter in the main.cf: Optional lookup tables that alias specific mail addresses or domains to other local or remote address. The table format and lookups are documented in virtual(5).
[20:21:17] <aichainz> i thought there might be something i am missing which is native to postfix, because fallbackrelay actually will send more than just the ndr garbage to the fallback relay
[20:21:43] *** Haris1 has quit IRC
[20:21:53] <devdas> Well, yes
[20:22:04] <devdas> but fixing the right problem will help you far more
[20:22:12] *** growltiger_ has joined #postfix
[20:22:13] <whiteflag> is there any alternative or any method to specify  "luser_relay" to a separate MTA  rather than an address ?
[20:22:46] *** growltiger has quit IRC
[20:22:58] <devdas> !relayhost
[20:22:58] <knoba> devdas: "relayhost" : a configuration parameter in the main.cf: The default host to send non-local mail to when no entry is matched in the optional transport(5) table. When no relayhost is given, mail is routed directly to the destination. If your relay host requires authentication see the !saslclient channel factoid.
[20:23:28] <devdas> or transport_maps using a regexp
[20:25:41] *** cilly has quit IRC
[20:27:57] <aichainz> agreed devdas
[20:28:05] <aichainz> and i am tackling both problems.
[20:28:34] <aichainz> thanks for your input.
[20:31:38] *** xpeed has quit IRC
[20:32:02] <whiteflag> devdas: well what I am looking for is, I just want to relay undeliverable bounces to a separate MTA  ? any option ?
[20:32:30] <whiteflag> or just discard it
[20:35:51] <devdas> why do you have undeliverable bounces?
[20:37:48] <whiteflag> devdas: getting spoofed mails :(
[20:37:56] <whiteflag> so return address invalid
[20:41:17] <whiteflag> devdas: or is there any option to relay all bounce messages to a separate MTA ?
[20:41:25] *** cafuego has joined #postfix
[20:42:38] *** xXx_JaZz_xXx has quit IRC
[20:46:31] *** ponyofdeath has joined #postfix
[20:46:58] *** sophokles has quit IRC
[20:47:35] *** growltiger has joined #postfix
[20:48:06] <ponyofdeath> hi, i would like to have postfix pass all reply mail through spamassassin's ham learning filter is that possible and can someone point me in the right direction if so?
[20:48:48] *** recon1025 has quit IRC
[20:49:28] *** recon1025 has joined #postfix
[20:49:54] <seekwill> There's no such thing as "reply mail"
[20:50:33] <ponyofdeath> seekwill: well i guess mail sent than
[20:52:29] <seekwill> Hmm... You'd probably have to put stuff in place, where it is only authorized email that it gets... like authed email.
[20:52:35] <seekwill> Not sure how to do it in Postfix
[20:55:38] <ponyofdeath> seekwill: ok thanks il keep googling :)
[20:57:52] *** Severed_Head_Of_ has joined #postfix
[20:58:58] *** growltiger has quit IRC
[20:59:46] <devdas> Use a policy daemon to FILTER all authenticated email to another Postfix instance with sender_bcc_maps
[20:59:56] <devdas> and send to an alias which relays to SA
[21:00:04] <devdas> nmon-trivial
[21:00:11] <devdas> non-trivial
[21:00:11] *** denis_ has quit IRC
[21:00:18] <devdas> ponyofdeath: see that
[21:00:46] <ponyofdeath> ponyofdeath: cool thanks
[21:01:43] *** growltiger_ has quit IRC
[21:02:08] *** denis_ has joined #postfix
[21:09:28] *** hparker has quit IRC
[21:10:11] <SARGuy> rob0 you there
[21:11:55] <SARGuy> hey everyone...  how do you redirect mail from a specific address (i.e. postmaster at mydomain dot com) to another address?
[21:12:21] <SARGuy> aliases isn't it
[21:14:02] *** nonsequitir has joined #postfix
[21:14:07] *** growltiger has joined #postfix
[21:14:14] <rob0> Good timing, I just looked in. I saw your paste last night, and that was delivering to local.
[21:14:52] <SARGuy> actually, i got it all working finally..  turns out, they guy that wrote the SQL statement really screwed the pooch...  i got it all working perfectly this morning..  thanks for all your help yesterday
[21:15:08] *** Knoedel2 has joined #postfix
[21:15:31] *** UQlev has joined #postfix
[21:15:36] <rob0> What do you mean, "from" an address? Mail is routed by recipient, not by sender.
[21:16:16] <rob0> maybe you want sender_bcc_maps
[21:16:39] <SARGuy> there are a ton of messages come in which are all from a single address but I want to redirect to an "admin" mailbox instead of failing
[21:18:39] *** jwit has quit IRC
[21:18:54] *** jwit_ has joined #postfix
[21:20:39] *** emo_ninja has joined #postfix
[21:21:30] <emo_ninja> hello. I would like postfix to only accept email that's been relayed by a particular server, and I'm not sure how to do that
[21:22:49] <devdas> check_client_access with two CIDR entries
[21:23:01] <rob0> and/or a firewall rule
[21:24:56] <emo_ninja> thanks!
[21:25:08] *** Xzisted has joined #postfix
[21:27:28] *** hparker has joined #postfix
[21:27:40] *** growltiger_ has joined #postfix
[21:29:13] *** Severed_Head_Of_ has quit IRC
[21:29:46] *** UQlev has quit IRC
[21:31:05] *** gvachon has joined #postfix
[21:32:24] 
[21:32:56] <devdas> gvachon: that's an encoding issue, I think
[21:33:23] <gvachon> devdas what can i do about it ?!
[21:33:53] <devdas> gvachon: you will have to see what the data actually looks like on the wire with tcpdump
[21:33:59] <devdas> and then build a regexp from that
[21:34:06] <rob0> There is no universal standard for encoding for 8-bit characters in headers.
[21:34:22] <rob0> so, possibly more than one expression
[21:35:34] <gvachon> hmmm
[21:35:37] <gvachon> i am thinking
[21:36:59] 
[21:37:22] <rob0> ugh
[21:37:23] <gvachon> if i try it like this would it work ?! " "/^Subject: Le message que vous avez envoy.*par notre filtre antipolluriel"
[21:37:44] <gvachon> its french between the ""
[21:37:48] <rob0> yes, that might do it
[21:37:57] <gvachon> hmm il try it
[21:38:30] *** brancaleone has joined #postfix
[21:38:36] * rob0 hates brain-dead spam/virus software
[21:40:30] *** GoGi has joined #postfix
[21:41:35] *** growltiger has quit IRC
[21:41:39] *** Severed_Head_Of_ has joined #postfix
[21:42:24] *** growltiger_ has quit IRC
[21:47:15] *** m0t3jl has joined #postfix
[21:50:34] <Xzisted> hey all.  i have a backup mx server that i set up.  i want to modify it so that it only accepts mail and forwards it to the primary mx if the user can be matched in an ldap table.  can i get some help with that?
[21:52:06] <Xzisted> anyone?
[21:53:15] <rob0> !ldap
[21:53:15] <knoba> rob0: "ldap" : a lookup method that can be used by Postfix. An introduction can be found in the LDAP_README also found at http://www.postfix.org/LDAP_README.html. A worthy project dealing with LDAP and Postfix can be found at: http://jamm.sourceforge.net/howto/html/
[21:54:33] <rob0> !relay_recipient_maps
[21:54:33] <knoba> rob0: "relay_recipient_maps" : a configuration parameter in the main.cf: Optional lookup tables with all valid addresses in the domains that match $relay_domains. Specify @domain as a wild-card for domains that do not have a valid recipient list.
[21:55:13] <rob0> relay_recipient_maps = ldap:/path/to/ldap/query
[21:56:48] <Xzisted> thanks rob0
[21:57:07] *** growltiger has joined #postfix
[22:01:03] *** SteveC has joined #postfix
[22:02:10] *** denis_ has quit IRC
[22:03:16] <SteveC> Where oh where does postfix get configured for the maximum size file it'll receive?  Getting error "message file too big" and no idea why :(
[22:03:37] <devdas> message_size_limit
[22:03:43] <devdas> !message_size_limit
[22:03:43] <knoba> devdas: "message_size_limit" : a configuration parameter in the main.cf: The maximal size in bytes of a message, including envelope information.
[22:04:14] <SteveC> does it have a default then?  Because I don't curently have that setting...
[22:04:51] <devdas> yes
[22:04:58] <devdas> postconf -d message_size_limit
[22:05:12] <SteveC> cheers :)
[22:06:10] *** GoGi has quit IRC
[22:08:22] *** ikaro^ has joined #postfix
[22:09:42] *** ikaro^ is now known as ikar
[22:12:03] *** growltiger_ has joined #postfix
[22:12:15] *** Severed_Head_Of_ has quit IRC
[22:12:51] *** SteveC has quit IRC
[22:12:57] *** ikaro has quit IRC
[22:12:59] *** ikar is now known as ikaro
[22:13:20] *** soh-mrtot has quit IRC
[22:15:15] *** gvachon has quit IRC
[22:17:31] *** timotiCK has joined #POSTFIX
[22:18:04] *** gutocarvalho has quit IRC
[22:18:44] *** BuenGenio has joined #postfix
[22:21:41] *** SteveC has joined #postfix
[22:22:26] <SteveC> Umm, so if I were to change message_size_limit in /etc/postfix/main.cf, reload, stop, start and then reboot the machine, should I expect the postconf -d message_size_limit to have changed from the default?
[22:25:12] *** mcp has quit IRC
[22:25:38] *** growltiger has quit IRC
[22:25:44] <SteveC> because (obviously otherwise i'd not mention it), it hasn't.
[22:26:18] *** mcp has joined #postfix
[22:27:40] *** l-fy has left #postfix
[22:31:42] *** whiteflag has left #postfix
[22:32:59] <devdas> remove -d to see current
[22:34:07] <SteveC> oh :)
[22:36:01] *** A has joined #postfix
[22:36:10] *** jiffe99 has quit IRC
[22:36:23] <A> hey, anyone can help me?
[22:36:45] <Verilium> If you asked what exactly you needed help with, maybe someone will.
[22:38:01] <A> i need a software, wich can organize the running of application. I mean, that the software automaticly run the application
[22:38:19] <devdas> hmmm?
[22:38:25] <higuita> cron?
[22:39:22] <A> is cron a software?
[22:39:42] <higuita> man crontab
[22:39:50] <devdas> Yes
[22:42:55] <A> oh, i found it thank you very much
[22:42:56] <A> :D
[22:43:02] <higuita> :)
[22:44:18] <A> how can I download files from rapidshare, without primium account, and without time limit`?
[22:44:19] *** Doctor-Steve__ has quit IRC
[22:45:38] *** BuenGenio has quit IRC
[22:45:41] <A> how can I download files from rapidshare, without primium account, and without time limit`?
[22:46:13] <higuita> A: this is not a warez channel
[22:46:25] <higuita> wait for it!
[22:50:07] <A> are you there?
[22:51:15] *** devdas has quit IRC
[22:51:40] *** cafuego_ has joined #postfix
[22:52:01] *** cafuego_ has quit IRC
[22:52:51] *** funburn has quit IRC
[22:53:14] *** BuenGenio has joined #postfix
[22:54:25] <A> hello?
[22:54:54] <stockholm> hej!
[22:56:17] <A> >	how can I download files from rapidshare, without primium account, and without time limit`?
[23:00:13] *** A has left #postfix
[23:01:09] *** carl- has quit IRC
[23:01:10] <Verilium> Wow, ok..  I have to wonder if that was a troll, or why he came into #postfix for that. :P
[23:01:21] *** Zblakany has quit IRC
[23:01:28] <SARGuy> "A" troll
[23:04:16] *** growltiger has joined #postfix
[23:04:32] <SARGuy> back to my question from earlier (scrolled up, didn't see answer)...  i have mail from a specific address that comes in but does'nt match anyone in the virt. alias table.  i need to redirect all that mail to a general delivery mailbox..  possible?  basically like a rule i guess...  mail from: postmaster at thisdomain dot com forward to -> postmaster at thisotherdomain dot com
[23:08:20] *** rcsu has quit IRC
[23:14:34] *** war9407 has joined #postfix
[23:16:47] *** BuenGenio_ has joined #postfix
[23:18:14] <seekwill> SARGuy: You should just reject the email instead
[23:18:30] *** growltiger_ has quit IRC
[23:18:37] <seekwill> Yes, possible. But it's a good way of getting spam, and losing legitimate email
[23:18:55] <SARGuy> this is a backend server and spam is already filtered out
[23:19:09] <SARGuy> i'm not really worried about that....
[23:19:27] <seekwill> If it's a backend server, why isn't your recipient/alias list match?
[23:19:35] *** stas has quit IRC
[23:21:05] <SARGuy> well... long story and it wasn't my doing...  basically the front end server has the list of domains...  the postfix servers have the domains AND virtual aliases....  so the front end server forwards all mail for domains we host to the backend server..  the backend server validates the domain and user and deals with the message appropriately...  problem is if the message is sent to unknown-user at domain dot com it gets to the backend server and kee
[23:21:35] <SARGuy> i just want it to dump into a mailbox that somone else can filter through if mail is missing...
[23:24:13] <SARGuy> maybe if i look at it this way: if User unknown in virtual alias table forward -> here
[23:24:19] <SARGuy> is that possible?  easier
[23:27:53] *** stas has joined #postfix
[23:28:45] <SARGuy> sender_canonical_maps?
[23:31:05] *** nonsequitir has quit IRC
[23:32:09] <sahil> SARGuy: front-end should validate that users exist.  that is NOT the job of a back-end server.  doing things the way you currently are is a recipe for backscatter which will, hopefully, get you blacklisted in a lot of places.
[23:32:46] <sahil> use a catchall in virtual alias maps to deliver all mail not intended for existing users to another mailbox, if you must.
[23:32:49] <SARGuy> yeah, well if i had it my way, i would redo the entire thing...  but i'm trying to work with what i have....
[23:33:02] <sahil> see what i just wrote.
[23:33:17] *** non-sequitir has joined #postfix
[23:33:34] *** BuenGenio_ has quit IRC
[23:33:49] <SARGuy> hmm...  ok, that might work.
[23:33:52] *** BuenGenio_ has joined #postfix
[23:34:39] <SARGuy> i take it i can use catchall AFTER the virtual alias table has been searched?
[23:35:11] *** BuenGenio has quit IRC
[23:39:25] *** BuenGenio has joined #postfix
[23:39:34] *** eanxgeek has quit IRC
[23:43:05] *** david_ has quit IRC
[23:44:01] *** Fallenou has joined #postfix
[23:45:08] *** m0t3jl has quit IRC
[23:46:44] *** stas has quit IRC
[23:47:55] <sahil> SARGuy yes.  with something like @domain.tld  catchall at domain dot tld.
[23:48:38] <SARGuy> thanks just read all about that...  now i just need to figure out how to keep it at the end of this sql database
[23:50:51] *** BuenGenio has quit IRC
[23:51:05] *** BuenGenio has joined #postfix
[23:51:20] *** syska has joined #postfix
[23:52:19] <Verilium> Hmm, I'm not quite sure the order is important.  I might be wrong though.
[23:52:39] <Verilium> !virtual
[23:52:40] <knoba> Verilium: "virtual" : a way to configure additional domains and user accounts (that do not need to exist in your /etc/passwd). See: http://www.postfix.org/VIRTUAL_README.html
[23:53:20] <syska> Hi ... I'm a little lost here ... I had a error earliar today with a user that entered a bad transport for a domain ... and now the old mail when the error still was there are still in the queue "postqueue -p" ... with the following error: "unknown mail transport error" ... google does not give me any good hints how to flush them ... so they will be delivered ... "postqueue -f" does not de anything ... what could be the error ?
[23:55:23] <Verilium> SARGuy:  http://www.postfix.org/virtual.8.html 'table search order'
[23:58:56] *** stas has joined #postfix
[23:59:11] *** BuenGenio_ has quit IRC





top