August 31, 2010 
< | 1 | 2 | 3 | 4 | 5 | 6 | 7 | 8 | 9 | 10 | 11 | 12 | 13 | 14 | 15 | 16 | 17 | 18 | 19 | 20 | 21 | 22 | 23 | 24 | 25 | 26 | 27 | 28 | 29 | 30 | 31 | >
August 31, 2010 [00:00:18] <_Tassadar> http://www.postfix.org/postconf.5.html <- they are both in bytes and by default mailbox_size_limit is 51200000, smaller than message_size_limit 10240000[00:00:52] <_Tassadar> err larger ofcrz[00:01:28] <_Tassadar> message size of 200MB and mailbox size of 4GB seems reasonable[00:01:33] <_Tassadar> this didn't work?[00:01:51] <vaxerdec> right[00:02:03] *** sysmonk has joined #postfix[00:02:05] <_Tassadar> i don't know if any of those is a signed int[00:02:14] <_Tassadar> but even then, 2 << 31 -1 should still fit[00:02:38] <vaxerdec> well i just put the bytes[00:02:50] <vaxerdec> and: fatal: main.cf configuration error: mailbox_size_limit is smaller than message_size_limit[00:03:19] <_Tassadar> i have no clue, sorry[00:03:26] *** sysmonk_ has quit IRC[00:03:45] <vaxerdec> $ postconf -n | grep _limit[00:03:46] <vaxerdec> mailbox_size_limit = 4294967295[00:03:46] <vaxerdec> message_size_limit = 201326592[00:04:06] <vaxerdec> _Tassadar: hmm. ok, well thanks.[00:04:09] <_Tassadar> well aparently postfix understood your settings allright[00:11:20] *** vaxerdec has left #postfix[00:14:58] <jim---> What's the best way to figure out how many mails we send out per day?[00:15:37] <_Tassadar> simple way: grep and wc -l your maillog[00:16:18] <jim---> That's what I was trying to do, but couldn't decide what to grep for. Especially with N-way aliases and BCC's and stuff, worried about getting inaccurate.[00:16:45] <_Tassadar> well, for instance we use authenticated smtp only[00:17:13] <_Tassadar> so i could grep for messages of succesful auth-smtp acceptance[00:17:56] <jim---> Wouldn't that count mails with multiple recipients only once?[00:17:59] <_Tassadar> if you want to know not how many emails your users submit but how many you are actually sending out, you should count smtp messages[00:18:03] <_Tassadar> yes it would[00:18:20] <_Tassadar> hence count messages from the smtp client if you want to count those[00:18:25] <jim---> Yeah, we're shopping for a smarthost, and the pricing's based on volume. And we shamefully have no idea, heh[00:18:54] <_Tassadar> well since you need a ballpark figure only, i wouldn't worry about it too much[00:19:04] <jim---> Looks like analyzing mail logs is a rich tradition, finding some good scripts on google ;)[00:19:08] <_Tassadar> but smtp logs a message for every succesful remote delivery[00:19:13] <_Tassadar> grep for that and count it[00:19:24] <_Tassadar> actually gnu grep can count, using the -c option[00:23:34] <jim---> _Tassadar: pflogsumm.pl is pretty sweet :)[00:26:25] *** HarryS has quit IRC[00:28:49] *** Southron has joined #postfix[00:31:01] *** smica has quit IRC[00:31:22] *** Section1 has quit IRC[00:32:29] *** TomHome has joined #postfix[00:35:23] *** Southron has quit IRC[00:38:29] *** MAAAAAD has quit IRC[00:38:45] *** MAAAAAD has joined #postfix[00:41:03] <jeev> im getting too much spam from iweb[00:43:11] *** leroux has joined #postfix[00:50:32] <thumbs> jeev: that's terrible.[00:51:27] *** Zerberus has quit IRC[00:52:59] *** obadiah is now known as Vivek[00:53:46] *** hever has joined #postfix[01:03:01] *** cga has joined #postfix[01:10:20] *** Transformer has joined #postfix[01:11:25] <jeev> thumbs: cut it out[01:12:23] *** Transformer has quit IRC[01:13:45] *** GoGi has joined #postfix[01:18:09] *** sphenxes has quit IRC[01:24:31] *** Transformer has joined #postfix[01:27:23] *** Transformer has quit IRC[01:32:37] *** EagleWatch has quit IRC[01:35:56] *** Motoko-chan has joined #postfix[01:36:16] *** leroux has quit IRC[01:36:55] *** leroux has joined #postfix[01:38:01] *** forsberg is now known as fOrsberg[01:40:05] *** hever has quit IRC[01:45:49] *** brancaleone has quit IRC[01:53:43] *** HarryS has joined #postfix[02:00:05] *** HarryS has quit IRC[02:03:38] *** HarryS has joined #postfix[02:09:54] *** HarryS has quit IRC[02:13:42] *** HarryS has joined #postfix[02:16:12] *** CrazyFoam has joined #postfix[02:19:41] *** HarryS has quit IRC[02:23:41] *** HarryS has joined #postfix[02:29:38] *** HarryS has quit IRC[02:33:39] *** HarryS has joined #postfix[02:36:34] *** Vivek has quit IRC[02:39:39] *** HarryS has quit IRC[02:43:37] *** maix has quit IRC[02:43:39] *** HarryS has joined #postfix[02:45:56] <bimbo> silly (very silly) question: if my first restriction in smtpd_recipient_restrictions is permit, will all the other restrictions after permit be ignored?[02:46:09] <bimbo> AFAIK they will, but I just need to clear my doubt...[02:47:01] <lunaphyte> postfix will not allow that.[02:47:21] *** maix has joined #postfix[02:49:39] *** HarryS has quit IRC[02:50:04] *** Vivek has joined #postfix[02:53:41] *** HarryS has joined #postfix[02:58:37] <bimbo> lunaphyte: it will if you have: smtpd_recipient_restrictions: my_class, reject and myclass = permit[02:58:51] <bimbo> s/myclass/my_class[02:59:54] *** HarryS has quit IRC[03:01:31] *** bimbo has left #postfix[03:03:45] *** HarryS has joined #postfix[03:09:27] *** higuita has quit IRC[03:10:17] *** HarryS has quit IRC[03:11:54] *** higuita has joined #postfix[03:13:43] *** HarryS has joined #postfix[03:20:16] *** HarryS has quit IRC[03:23:31] *** robotarmy has quit IRC[03:23:41] *** HarryS has joined #postfix[03:25:42] *** higuita has quit IRC[03:26:10] *** grobe0ba is now known as grobe0ba|away[03:26:49] *** grobe0ba|away is now known as grobe0ba[03:28:22] *** higuita has joined #postfix[03:28:24] *** HarryS has quit IRC[03:33:45] *** HarryS has joined #postfix[03:37:41] *** ghoti has quit IRC[03:37:46] *** ghoti has joined #postfix[03:40:40] *** HarryS has quit IRC[03:43:45] *** HarryS has joined #postfix[03:47:17] *** higuita has quit IRC[03:48:15] *** Chaot_s has joined #postfix[03:50:10] *** HarryS has quit IRC[03:50:21] *** higuita has joined #postfix[03:53:45] *** HarryS has joined #postfix[03:57:44] *** tjikkun has quit IRC[03:59:57] *** HarryS has quit IRC[04:00:31] *** TomHome has quit IRC[04:02:22] *** |CTAPOMAK| has joined #postfix[04:04:15] *** HarryS has joined #postfix[04:06:51] *** leroux has quit IRC[04:09:50] *** HarryS has quit IRC[04:10:34] <Chaot_s> Hi all, i have 2 servers, both are individual servers and accept mail for the local domains. i would like to make each server a fallback for the other. I would like the fallback server to only accept mail for existing mail boxes / users.[04:13:42] <Chaot_s> i have mysql master master replication up and running, though i have no cleu on how to get the database to be automaticaly updated when adding, or changing users on the master server.[04:13:43] *** HarryS has joined #postfix[04:14:02] <Chaot_s> any tips / hints to good tutoials is welcome :)[04:19:50] *** uqlev has joined #postfix[04:20:00] *** HarryS has quit IRC[04:23:43] *** HarryS has joined #postfix[04:30:00] *** HarryS has quit IRC[04:32:19] *** jtgiri_ has joined #postfix[04:33:46] *** HarryS has joined #postfix[04:35:26] <jtgiri_> Hi guys, I am trying to relay email through some company, in generic file, I have following lines www-data at mydomain dot com noreply at mydomain dot com, however when I look at the logs on the server where i am relaying the mail to, it shows up like this: noreply at mydomain dot com (www-data)[04:35:33] <jtgiri_> is there a way to get rid of www-data ?[04:39:56] *** HarryS has quit IRC[04:43:43] *** HarryS has joined #postfix[04:48:04] *** HarryS has quit IRC[04:49:18] *** tharkun has joined #postfix[04:53:00] *** Vivek has quit IRC[04:53:43] *** HarryS has joined #postfix[04:59:41] *** HarryS has quit IRC[05:03:45] *** HarryS has joined #postfix[05:09:41] *** HarryS has quit IRC[05:12:16] *** tharkun has quit IRC[05:13:45] *** HarryS has joined #postfix[05:14:33] *** MAAAAD has joined #postfix[05:17:41] *** MAAAAAD has quit IRC[05:18:03] *** HarryS has quit IRC[05:23:48] *** HarryS has joined #postfix[05:30:12] *** HarryS has quit IRC[05:33:47] *** HarryS has joined #postfix[05:40:12] *** HarryS has quit IRC[05:43:49] *** HarryS has joined #postfix[05:45:45] *** cga has quit IRC[05:50:15] *** HarryS has quit IRC[05:51:59] *** cga has joined #postfix[05:53:03] *** leroux has joined #postfix[05:53:47] *** HarryS has joined #postfix[05:56:41] *** uqlev has quit IRC[05:57:15] *** cga has quit IRC[05:59:19] *** uqlev has joined #postfix[06:00:17] *** HarryS has quit IRC[06:02:23] *** cga has joined #postfix[06:03:46] *** HarryS has joined #postfix[06:08:23] *** HarryS has quit IRC[06:12:35] *** saurabhb has joined #postfix[06:13:50] *** HarryS has joined #postfix[06:18:01] *** Tadej has joined #postfix[06:18:08] *** Tadej has quit IRC[06:18:08] *** Tadej has joined #postfix[06:20:03] *** HarryS has quit IRC[06:22:54] *** rajijoom has joined #postfix[06:23:50] *** HarryS has joined #postfix[06:28:23] *** HarryS has quit IRC[06:30:50] *** edoceo has quit IRC[06:32:17] *** HarryS has joined #postfix[06:38:05] *** axisys has quit IRC[06:38:39] *** JoKoT3 has quit IRC[06:39:23] *** axisys has joined #postfix[06:40:56] *** HarryS has quit IRC[06:41:09] *** HarryS has joined #postfix[06:42:09] *** loddafnir has joined #postfix[07:04:27] *** jtgiri_ has quit IRC[07:10:09] *** bimbo has joined #postfix[07:15:25] *** uqlev has quit IRC[07:16:13] <bimbo> hello, I'm restricting emails that get to the smtpd server per user, but this instance of postfix will be accesible from the outside (e.g. internet), so I need to place the restriction "reject_unauth_destination" before checking for user restrictions (sender and recipient), the problem is that if I do it this way, then "reject_unauth_destination" will reject mail going to (rcpt to) a destination not handled by postfix (mydestinations, virtual_alias_maps, relay_[07:16:30] <bimbo> is there a way to fix this?[07:17:04] *** bhagat has joined #postfix[07:22:42] *** falz has quit IRC[07:22:44] *** falz has joined #postfix[07:25:49] *** henriknj has joined #postfix[07:35:48] <Motoko-chan> Do a network check first.[07:35:56] <Motoko-chan> If it's from trusted, then pass it.[07:43:37] *** devglue has joined #postfix[07:44:38] <devglue> question in regards to receiving email from outside my network[07:45:28] <devglue> such as smtpd_sasl_auth_enable[07:45:32] <devglue> master.cf I assume overrides main.cf when using the same -o options under smtp, smtps[07:46:14] <devglue> when using telnet localhost 25, and telnet localhost pop3, I'm able to successfully complete local tests[07:47:33] <devglue> sasl and tls for smtp and pop3 is working[07:49:30] *** henriknj_ has joined #postfix[07:51:34] *** henriknj has quit IRC[07:51:54] *** devglue has quit IRC[07:56:41] *** henriknj has joined #postfix[07:58:20] *** henriknj_ has quit IRC[08:08:47] *** cga has quit IRC[08:19:35] *** henriknj has quit IRC[08:26:48] *** googlah has quit IRC[08:30:10] <Aprogas> bimbo: You can run seperate smtpd's on different ports with different restriction sets.[08:31:26] <Aprogas> bimbo: I'm not sure how reject_unauth_destination is going to be a problem though, you must have some way for users at the outside to indicate they are who they claim.[08:43:15] *** micols has quit IRC[08:44:01] *** tomocha6 has quit IRC[08:44:38] *** twobithacker has quit IRC[08:44:42] *** twobithacker has joined #postfix[08:44:56] *** pinoyskull has joined #postfix[08:45:01] *** micols has joined #postfix[08:52:17] *** schnoobby has joined #postfix[08:53:05] *** pinoyskull has quit IRC[08:55:46] *** tjikkun has joined #postfix[08:57:43] *** Wilkins has joined #postfix[09:03:26] *** cilly has joined #postfix[09:05:09] *** fOrsberg is now known as forsberg[09:06:36] *** pinoyskull has joined #postfix[09:08:53] *** neorise-rider has quit IRC[09:11:40] *** mosno has joined #postfix[09:12:33] *** henriknj has joined #postfix[09:13:38] *** snoopy has joined #postfix[09:14:07] *** snoopy is now known as Guest59219[09:17:07] *** schnoobby has quit IRC[09:17:50] *** Zerberus has joined #postfix[09:21:17] *** Guest59219 has quit IRC[09:25:03] *** Motoko-chan has quit IRC[09:26:48] *** schnoobby has joined #postfix[09:38:44] *** pinoyskull has quit IRC[09:41:45] *** bimbo has quit IRC[09:46:05] *** leroux has quit IRC[09:46:43] *** _ruben has quit IRC[09:49:49] *** JoKoT3 has joined #postfix[09:51:16] *** pinoyskull has joined #postfix[10:01:20] *** brancaleone has joined #postfix[10:04:56] *** sphenxes has joined #postfix[10:05:56] *** pinoyskull has quit IRC[10:10:22] *** jlaunay has quit IRC[10:24:13] *** pinoyskull has joined #postfix[10:27:27] *** EagleWatch has joined #postfix[10:29:49] *** cilly has quit IRC[10:29:58] *** cilly has joined #postfix[10:39:08] *** henriknj has quit IRC[10:44:08] *** tomocha6 has joined #postfix[11:03:51] *** henriknj has joined #postfix[11:05:01] *** makomi has joined #postfix[11:24:25] *** henriknj has quit IRC[11:28:26] *** henriknj has joined #postfix[11:28:50] *** henriknj has joined #postfix[11:30:40] *** henriknj_ has joined #postfix[11:31:35] *** henriknj has quit IRC[11:34:41] *** _ruben has joined #postfix[11:35:43] *** TomHome has joined #postfix[11:39:25] <Aprogas> I want my Postfix to accept mail for certain domains and their subdomains as local. I specified domain.tld and .domain.tld in mydestination, but it seems the explicit .domain.tld notation gets ignored. http://pastie.org/private/w93tv2bb7yrb8suyjqkqmq[11:40:07] <lennard> I do know there are some options influencing this 'wildcard' behavior[11:40:29] <Aprogas> Yes, this option mentions that in the future all notation should be explicit, so this is what I did.[11:40:44] <Aprogas> !parent_domain_matches_subdomains[11:40:44] <knoba> Aprogas: "parent_domain_matches_subdomains" : a configuration parameter in main.cf: What Postfix features match subdomains of domain.tld automatically, instead of requiring an explicit .domain.tld pattern. This is planned backwards compatibility: eventually, all Postfix features are expected to require explicit .domain.tld style patterns when you really want to match subdomains.[11:43:23] *** UQlev has joined #postfix[11:44:20] <Aprogas> I don't think masquerade_domains or generic can cause interference, since smtpd rejects before such rewriting is applied.[11:44:48] *** juergen_dose has joined #postfix[11:45:51] <Aprogas> I also tried specifying .aprogas.net in mydestination directly, instead of reading from a file.[11:47:21] *** henriknj_ has quit IRC[11:48:03] <lennard> I think I may be as baffled as you are[11:49:40] <Aprogas> mydestination documentation doesn't specify it can take .domain.tld input, I just assumed it could.[11:55:46] *** henriknj has joined #postfix[11:58:53] <Aprogas> Let's see if making it a hash changes anything.[12:00:23] <lennard> I'd probably be spitting through smtpd -v output by now[12:01:10] <Aprogas> Hmm.. that might be useful.[12:07:06] <Aprogas> private/rewrite rewrites the address to itself, and then resolves nexthop to the relayhost[12:12:10] <Aprogas> I think I used to specify my domains as pcre.[12:13:07] *** juergen_dose is now known as car[12:14:01] <lennard> you don't perchance have it in transport_maps as well, do you?[12:14:29] *** p3rror has quit IRC[12:15:24] *** chriscohen has joined #postfix[12:15:35] <Aprogas> transport_maps contains: jd.test smtp:[vmdebian.aprogas.local][12:15:48] *** car has quit IRC[12:15:50] *** juergen_dose has joined #postfix[12:15:56] *** war9407 has quit IRC[12:16:07] <chriscohen> hi all - my postfix has stopped logging - are there any common reasons for this? what ought i to check?[12:16:14] <Aprogas> !tell chriscohen no_logs[12:16:14] <knoba> chriscohen: "no_logs" : Nothing in your mail logs commonly means one of two things: either your syslogd is broken (try restarting it), or the connections are not coming to your server. Check your firewall/networking and the DNS for the domain in question. also see !logs.[12:16:25] <chriscohen> Aprogas: thanks[12:16:35] <lennard> or your disk is full[12:17:07] <lennard> (or has been, most syslogggers wont recover from that themselves)[12:17:13] <Aprogas> full /var/log falls under "syslogd broken"[12:17:21] <Aprogas> Since it breaks syslogd. :)[12:17:24] <chriscohen> lennard... which disk is that? '/'?[12:17:42] <lennard> it might be, only you know for sure[12:18:41] <chriscohen> hmm well they do all have at least 90% free, so maybe sysklogd needs a kicking[12:21:22] <chriscohen> hmm no sysklogd at /etc/init.d[12:23:11] *** BlackFate has quit IRC[12:25:08] <Aprogas> Using pcre: worked around my subdomains in mydestination issue.[12:25:45] <lennard> chriscohen: syslog-ng, rsyslogd... *log*... figure it out ;)[12:26:12] <lennard> Aprogas: bit ugly though ;)[12:26:32] <sysmonk> ho ho[12:29:14] *** p3rror has joined #postfix[12:29:18] <Aprogas> lennard: I'll write to the mailinglist about it.[12:29:22] <chriscohen> lennard, Aprogas: seems like rsyslog had shut itself off after all - thanks for the help[12:29:44] <Aprogas> lennard: My even uglier solution was moving the domains to relay_domains and specifying .domain.tld notation in transport_maps with local: as transport.[12:31:10] <sysmonk> Aprogas: what's the problem?[12:31:37] *** juergen_dose has left #postfix[12:31:47] <Aprogas> http://pastie.org/private/w93tv2bb7yrb8suyjqkqmq[12:32:25] <Aprogas> mydestination doesn't seem to accept the explicit .domain.tld notation, even though the parent_domain_matches_subdomains setting indicates that setting is only meant for backwards compat and all settings should use .domain.tld notation instead.[12:32:36] <Aprogas> I have to take a shower now, I'll read your responses when I get back.[12:33:21] *** chriscohen has left #postfix[12:38:57] <sysmonk> Aprogas: it _doesn't_ work even with '.domain.tld' ?[12:45:19] *** henriknj has quit IRC[12:45:45] *** thunderstrike has joined #postfix[12:53:07] *** jelly has left #postfix[12:58:51] *** cpm has joined #postfix[12:59:31] *** joker_89 has joined #postfix[12:59:32] <joker_89> hi[12:59:33] <joker_89> hi[12:59:37] <joker_89> anyone uses amavis-new?[13:05:42] <Zerberus> !poll[13:05:42] <knoba> Zerberus: "poll" : please do not ask if anyone uses some program or postfix feature. Instead ask your real question.[13:06:59] *** mosno has quit IRC[13:11:04] <joker_89> Zerberus:[13:11:14] <joker_89> i have the tmp directory of amavis full[13:11:20] <joker_89> and i see this messages in my log:[13:11:26] <joker_89> Requesting process rundown after fatal error[13:11:32] <Aprogas> sysmonk: Correct.[13:11:35] <joker_89> TROUBLE in process_request: Can't create directory /var/lib/amavis/tmp/amavis-20100831T103449-07572: Too many links at[13:11:42] <joker_89> this is my problem[13:11:45] <Aprogas> I just messed up my pcre table and have been rejecting valid mail in a backscatter-way.[13:11:58] <Aprogas> Like 2 hours after submitting myself to dnswl.org, real smart move.[13:15:43] <Zerberus> joker_89: just delete old leftovers from the amavis tmp dir[13:16:38] <joker_89> ok[13:16:42] <joker_89> i restart amavis[13:16:48] <joker_89> and now seems work[13:16:59] <joker_89> Zerberus: how i can count the amount of directories inside tmp folder?[13:17:08] <joker_89> i dont know any command for do this.[13:17:22] <Zerberus> joker_89: man find[13:17:51] <joker_89> i only want to count[13:18:51] <joker_89> ok i see: find -type f -maxdepth 1 | wc -l[13:19:02] <joker_89> but i see that in mailq i have 1400 requests[13:19:18] <joker_89> now i flush this requests, but the amavis tmp folder will go down?[13:19:48] <joker_89> directories in the amavis tmp are mails that are not sended to the destination¿[13:20:24] <joker_89> i have...[13:20:26] <joker_89> total 32336[13:20:39] <Aprogas> Oh great, I bounced a reply to the spam report I sent to an abuse mail too.[13:20:55] *** johe|work has joined #postfix[13:20:58] <schnoobby> use find -type d for directories[13:21:13] <joker_89> but i have 32336 messages in amavis tmp[13:22:39] <joker_89> but htis comand didnt work: find -type d -maxdepth 1 | wc -l[13:23:36] <joker_89> now owrks i have 7616 sorry[13:23:54] <joker_89> how can i empty this sending the messageS?[13:24:08] <schnoobby> or use ls -l | grep '^d' | wc -l[13:25:00] *** UQlev has quit IRC[13:25:16] <joker_89> works[13:25:23] <joker_89> but i have always 7600 directoryes[13:25:32] <joker_89> how i can re-send it?[13:25:39] <Zerberus> joker_89: you don't want to[13:25:56] <joker_89> why not?[13:26:05] <Zerberus> joker_89: the temp dir is just the place where amavisd deflated inspected mails[13:26:34] <Zerberus> joker_89: you could delete everything within it and will not loose mails[13:26:35] <joker_89> i have a problem of clamav version[13:26:41] <joker_89> now i dissablte the antivirus scanner[13:26:44] <joker_89> and i restart amavis[13:26:50] <joker_89> perhaps the problem was with clamav[13:27:04] <joker_89> i can remove all?[13:30:06] <schnoobby> as it is a temporary folder, yes[13:31:32] <joker_89> and i dont lose any mail?[13:31:42] *** pinoyskull has quit IRC[13:31:46] <schnoobby> like Zerberus said[13:33:33] <schnoobby> the mails should all be in the queue, amavis only allowes to delete it from there if it proccessed it and resent it(correct me if i'm wrong)[13:34:06] <schnoobby> s/from there/from the queue/[13:34:28] <joker_89> adn why tody i have this problem of directory full[13:35:14] <Aprogas> I think I'm just going to keep soft_bounce indefinitely on my backend mailserver.[13:35:23] <Aprogas> Worst it can do is fill up my forwarder.[13:35:25] <schnoobby> sorry, i'm not to deep into that stuff. don't know[13:36:45] <joker_89> all occurs when i see on my maillog: delivery temporarily suspended: lost connection with 127.0.0.1[127.0.0.1] while sending RCPT TO[13:39:10] *** mosno has joined #postfix[13:42:01] *** _marix has joined #postfix[13:46:54] <Chaot_s> Hi all, i have 2 servers, both are individual servers and accept mail for multiple local domains. i would like to make each server a fallback for the other. I would like the fallback server to only accept mail for existing mail boxes / users.[13:47:45] *** saurabhb has quit IRC[13:48:00] *** joker_89 has quit IRC[13:48:36] <Chaot_s> LDAP Seems to be the best choice for that. though i only want ldap for the mail. and as far as i found out LDAP needs to take over the local user authentification for this to work. can someone help me clear things up a bit?[13:50:50] *** pinoyskull has joined #postfix[14:04:48] *** makomi has quit IRC[14:05:16] *** mosno has quit IRC[14:11:56] *** pinoyskull has quit IRC[14:12:15] *** famicom has quit IRC[14:12:44] *** robotarmy has joined #postfix[14:12:45] *** famicom has joined #postfix[14:14:19] *** bhagat has quit IRC[14:17:02] *** robotarmy has quit IRC[14:33:12] *** Section1 has joined #postfix[14:40:42] *** wdp_ has quit IRC[14:47:14] *** TomHome has quit IRC[14:52:14] *** henriknj has joined #postfix[14:54:31] *** wdp_ has joined #postfix[14:56:49] *** Captain has quit IRC[14:57:31] *** KTL has joined #postfix[14:59:41] <KTL> postfix delivers the mail but with a umask of 600 ... is there no way to change that? the best thing would be the ability to execute a script that sets the wanted owner/group/mask immediately after deliver ...[15:00:58] <cpm> why would it be anything else? that's typical.[15:01:25] *** forsberg is now known as fOrsberg[15:01:45] <KTL> it is for shared mailboxes, mail doesnt belong to a user but to a team, all ppl in the group should be able to access and modify that mail[15:04:44] * KTL discovers "local" versus maildrop[15:05:17] *** cga has joined #postfix[15:07:09] *** Dingofest2 has joined #postfix[15:11:33] *** MariusKarthaus has joined #postfix[15:15:06] *** UQlev has joined #postfix[15:17:52] *** hever has joined #postfix[15:20:04] *** henriknj has quit IRC[15:20:10] *** war9407 has joined #postfix[15:20:29] *** hever has quit IRC[15:21:18] *** hever has joined #postfix[15:23:29] *** jim_SFU has joined #postfix[15:24:21] *** UQlev has quit IRC[15:29:04] *** DocOcassi has joined #postfix[15:29:34] *** sphenxes has quit IRC[15:32:04] *** makomi has joined #postfix[15:33:39] *** higuita has quit IRC[15:36:31] <Aprogas> Seems .domain.tld matching in mydestination isn't desirable by design.[15:36:42] *** brancaleone has quit IRC[15:39:11] <lennard> Aprogas: the ml said that?[15:39:23] <Aprogas> Yes, basically.[15:40:25] <Aprogas> I forgot to mention explicitly that I know the mydestination documentation does not specify that .domain.tld will work.[15:43:38] <alcohol> domain.tld does work? :<[15:44:54] <lennard> .domain.tld doesn't work[15:44:58] <lennard> not the dot :)[15:46:53] *** bluethundr has joined #postfix[15:50:03] *** brancaleone has joined #postfix[15:52:30] *** pyco has quit IRC[15:52:49] *** pyco_ has joined #postfix[15:54:39] *** JoKoT3 has quit IRC[15:55:22] *** JoKoT3 has joined #postfix[15:55:26] <KTL> how do i set the group and file permissions of the delivered mail ??[15:55:47] <KTL> what is the default value for mailbox_command?[15:55:57] <sysmonk> for local users it uses the users real uid/gid. for virtual users - virtual_{uid,gid}_maps[15:56:05] <sysmonk> postconf -d mailbox_command[15:56:11] <sysmonk> !virtual_uid_maps[15:56:11] <knoba> sysmonk: "virtual_uid_maps" : a configuration parameter in the main.cf: Lookup tables with the per-recipient user ID that the virtual(8) delivery agent uses while writing to the recipient's mailbox.[15:56:14] <sysmonk> !virtual_gid_maps[15:56:14] <knoba> sysmonk: "virtual_gid_maps" : a configuration parameter in the main.cf: Lookup tables with the per-recipient group ID for virtual(8) mailbox delivery. In a lookup table, specify a left-hand side of " at domain dot tld" to match any user in the specified domain that does not have a specific "user at domain dot tld" entry.[15:56:16] <sysmonk> !mailbox_command[15:56:16] <knoba> sysmonk: "mailbox_command" : a configuration parameter in the main.cf: Optional external command that the local(8) delivery agent should use for mailbox delivery. The command is run as the recipient. Exception: command delivery for root executes with $default_user privileges.[15:56:20] <KTL> mmm nice :)[15:56:38] <KTL> thanks :)[15:56:43] <sysmonk> 300$[15:56:47] *** sphenxes has joined #postfix[15:57:07] *** higuita has joined #postfix[15:57:29] <KTL> http://fc04.deviantart.net/fs71/f/2010/204/0/f/Nixon_on_the_300_Dollar_Bill_by_Invader_Johnny.jpg[15:59:00] *** |CTAPOMAK| has quit IRC[15:59:28] <sysmonk> blocked page for me :([15:59:42] *** sphenxes has quit IRC[15:59:45] <KTL> http://images.google.com/images?q=300+dollar :D[16:01:10] *** sphenxes has joined #postfix[16:03:56] *** Tykling has quit IRC[16:04:11] *** UQlev has joined #postfix[16:04:13] *** Tykling has joined #postfix[16:09:03] <KTL> !help[16:09:03] <knoba> KTL: (help [<plugin>] [<command>]) -- This command gives a useful description of what <command> does. <plugin> is only necessary if the command is in more than one plugin.[16:10:52] *** sphenxes01 has joined #postfix[16:13:04] *** brancaleone has quit IRC[16:13:06] *** sphenxes has quit IRC[16:19:20] *** thunderstrike has quit IRC[16:21:08] *** jtgiri_ has joined #postfix[16:24:38] *** GoGi has quit IRC[16:27:52] *** JonnyV has joined #postfix[16:32:25] *** hever has quit IRC[16:42:15] *** schnoobby has quit IRC[16:45:19] *** Polikuj has joined #postfix[16:46:51] <Polikuj> !welcome[16:46:52] <knoba> Polikuj: "welcome" : welcome to #postfix! if you're joining for the first time, or are new to irc, the first thing you'll want to do is read the channel topic (/topic). it includes crucial instructions on how to effectively ask for help here, and what data you should include with your questions. the degree of success you'll have is directly related to how effectively you're able to follow those guidelines.[16:55:57] *** brancaleone has joined #postfix[17:00:32] *** henriknj has joined #postfix[17:01:56] *** makomi has quit IRC[17:02:19] *** makomi has joined #postfix[17:03:15] *** scampbell has joined #postfix[17:03:33] *** scampbell has left #postfix[17:04:50] *** Polikuj has left #postfix[17:06:39] *** makomi has quit IRC[17:09:12] *** higuita has quit IRC[17:09:14] *** bluethundr has quit IRC[17:11:32] *** bluethundr has joined #postfix[17:11:44] *** higuita has joined #postfix[17:11:56] *** Zerberus has quit IRC[17:13:55] *** tharkun has joined #postfix[17:19:42] *** lepine has joined #postfix[17:20:13] *** Tadej_ has joined #postfix[17:20:25] *** Signum has quit IRC[17:20:25] *** Signum has joined #postfix[17:22:53] *** gabrieL has quit IRC[17:23:34] *** Tadej has quit IRC[17:26:40] <cga> hi all, i'm reading this http://www.postfix.org/TLS_README.html because i want only TLS connections on 465 (or 587 ?) , but the first statement says "Assuming that OpenSSL is written as carefully as Wietse's own code, every 1000 lines introduce one additional bug into Postfix." Provided the statement, is it secure to do TLS only?[17:27:53] <cpm> yes.[17:28:07] <cga> thanks cpm =)[17:28:09] <cpm> keeping in mind that 'secure' is a question of degree. Nothing is 'secure'.[17:28:21] <cga> security is a process, not a product ;)[17:28:33] <Aprogas> 465 is not needed.[17:28:36] *** fOrsberg is now known as forsberg[17:28:43] <cga> hi Aprogas, nope?[17:29:06] <lennard> 465 is silly and outdated[17:29:10] <Aprogas> You can just starttls on 25 or 587 or any other port.[17:29:17] <lennard> however, you may need it if you have outlook users[17:30:02] <cga> i'm not doing anything for outlook users[17:30:10] *** Zerberus has joined #postfix[17:30:15] <cpm> good for you.[17:30:21] <cga> eh[17:30:30] <cga> this is my private server, so i choose[17:30:48] <cga> if windows people want to use it, they must use an RFC compliant client[17:30:55] *** tona has joined #postfix[17:31:43] <tona> why i am getting this error and how could i fix it Aug 31 08:57:23 mail postfix/pipe[31350]: F06AE1EC34: to=<mayte at conectividadinternacional dot com>, relay=cyrus, delay=0.22, delays=0.13/0.01/0/0.09, dsn=4.3.0, status=deferred (temporary failure)[17:32:13] <tona> i am sending this email from one local account to another local accoutn i mean same domain[17:32:28] <tona> could someone help me[17:33:17] <cga> Aprogas: at the moment i'm using STARTTLS on 25 but with smtpd_tls_auth_only=no (http://workaround.org/ispmail/lenny/authenticated-smtp) , now i want to force encryption. i might keep 25 though[17:33:28] <UQlev> tona: use pastebin to show more lines of log[17:33:44] <Aprogas> cga: Don't force encryption on port 25, you'll break things.[17:33:55] <cga> Aprogas: ok i'll go for 587 then[17:34:14] <cga> Aprogas: thanks =)[17:34:20] <Aprogas> Forcing encryption mostly makes sense in conjunction with SASL, especially if you use a SASL backend that only supports plaintext mechanisms.[17:35:02] <cga> Aprogas: i'm using dovecot and it is already forced on imaps with SSL (does this make sense? is it related?)[17:35:18] <cpm> yeah, if you actually *look* at the rfc for submission, tls is required.[17:35:20] <cga> forced with TLS*[17:35:25] <cpm> !submission[17:35:25] <knoba> cpm: "submission" : Port 587 is submission, for user submission of mail, NOT suitable for mail exchange. See the commented example in master.cf. also see !msa, and rfc 2476 and 4409. Also read http://www.maawg.org/sites/maawg/files/news/MAAWG_Port25rec0511.pdf[17:35:57] <cga> thanks cpm[17:36:21] <Aprogas> dovecot too can do TLS on port 143[17:37:05] * cpm thinks that all user-client interactions *should* be via tls.[17:37:13] <cpm> but in the case of submission, it must.[17:39:04] <tona> could someone help me with my problem[17:40:10] <Aprogas> tona: You were asked to show more lines of the log on a pastebin.[17:40:58] <cga> Aprogas: i see, now i understood why on 993 (imaps only) i had not TLS choice on the client, but only SSL. enabling imap 143 and not changing anything about SSL/TLS made the client use 143 with TLS again.[17:43:16] <cga> Aprogas: anyway 993 SSL was using TLS by looking at the logs. so it might just be a "naming convention" on 993[17:48:01] *** MariusKarthaus has quit IRC[17:48:20] *** Tadej__ has joined #postfix[17:48:28] *** GoGi has joined #postfix[17:51:21] *** Tadej_ has quit IRC[17:55:49] *** pyco_ has quit IRC[17:56:36] *** robotarmy has joined #postfix[17:58:15] <UQlev> tona: y se ven mejor para el canal espan~ol si no puedes leer las preguntas en Ingle's[17:59:14] <cga> cpm: i tooka look at master.cf for submission, should i enable it there with smtpd_* options or use main.cf ?[18:00:35] <cga> cpm: or enable it there and put smptd_* in main.cf ? i like this better.[18:00:57] <Dominian> smtpd_* restrictions should be in main.cf unless you have specifics you want for submission or something else in master.cf[18:01:16] <Dominian> if you want submission to have different restrictions... sure you can add them to the submission line.. nothing wrong with that.[18:01:46] <Aprogas> main.cf is less strict on whitespacing, so if possible define things in main.cf[18:02:04] <cga> Dominian: thanks, i tought so but since the commented submission lines have some commented smtpd_* options there (debian at least), i tought it was proper to enalbe them there.[18:02:09] <cga> thanks Aprogas,too[18:02:35] <Dominian> cga: smtpd_recipient_restrictions=permit_sasl_authenticated is what I believe I have on mine[18:02:35] <cga> :q[18:02:38] * Dominian checks[18:02:39] <cga> ohps...[18:02:55] <Dominian> yah[18:03:01] <Dominian> on my submission port that's what I use[18:03:13] <Dominian> that way it bypasses rbl checks and other restrictions in place.. like no rDNS etc[18:04:39] <cga> thanks =)[18:05:04] <cga> in a short while i'll postconf -n. just to make sure[18:05:25] *** smica has joined #postfix[18:10:29] <seekwill> Dominian likes submission[18:12:44] *** pyco has joined #postfix[18:14:44] <cpm> yeah, how he is.[18:15:33] *** loddafnir has quit IRC[18:19:56] *** Wilkins has quit IRC[18:20:33] *** Breaking_Pitt has joined #postfix[18:20:56] <Breaking_Pitt> !welcome[18:20:56] <knoba> Breaking_Pitt: "welcome" : welcome to #postfix! if you're joining for the first time, or are new to irc, the first thing you'll want to do is read the channel topic (/topic). it includes crucial instructions on how to effectively ask for help here, and what data you should include with your questions. the degree of success you'll have is directly related to how effectively you're able to follow those guidelines.[18:21:22] <Breaking_Pitt> I'm looking for a way so sent messages from a private ip[18:21:41] <Breaking_Pitt> some advice please? I have found some info googling but I'm still not able to do it[18:21:58] <f3ew> Advice?[18:22:11] <f3ew> IPs are IPs, just add them to mynetworks[18:22:14] <f3ew> !mynetworks[18:22:14] <knoba> f3ew: "mynetworks" : a configuration parameter in the main.cf: The list of "trusted" SMTP clients that can relay email.[18:22:15] <f3ew> !basic[18:22:15] <knoba> f3ew: "basic" : http://www.postfix.org/BASIC_CONFIGURATION_README.html : a good starting place for Postfix beginners, many common questions are answered here.[18:23:17] <Breaking_Pitt> i have it added to mynetworks f3ew but still not able of doing it[18:23:24] <Breaking_Pitt> ok let me do a test[18:23:34] <Aprogas> Prove it with logs, and be more clear in what exactly you want to do.[18:24:19] <Breaking_Pitt> ok let me see[18:24:48] <f3ew> !debug[18:24:48] <knoba> f3ew: "debug" : http://www.postfix.org/DEBUG_README.html : a good starting point for how to deal with problems and to report information to those who might help. Post your information in a pastebin such as http://pastebin.ca/ or http://dpaste.com/[18:25:07] <Breaking_Pitt> http://pastebin.com/Yzab63G6[18:26:47] <Breaking_Pitt> this log is from the private ip[18:27:04] <Aprogas> mailer.libresoft.es refuses to accept your message[18:27:27] <Breaking_Pitt> but what's the reason[18:27:37] <Breaking_Pitt> I have added the internal ip to my allowed networks[18:27:38] <Aprogas> Do you operate mailer.libresoft.es ?[18:27:46] <Breaking_Pitt> a little bit![18:27:55] <Breaking_Pitt> I'm not the one that run the system[18:28:00] <Breaking_Pitt> but I have complete access to ti[18:28:01] <Breaking_Pitt> it[18:28:27] <Aprogas> It seems the machine these logs are from is called brian. If mailer doesn't allow brian to relay, it doesn't matter who brian allows to relay, if brian has to use mailer as a relayhost.[18:29:00] <Aprogas> Speak with the operator of mailer.libresoft.es and the network administration, to make sure what the intended layout and setup is.[18:29:04] <lunaphyte_> poor, anthropomorphized brian.[18:29:33] <Aprogas> lunaphyte_: You don't have to get anthropomorphized to be used as a noun.[18:29:59] <Breaking_Pitt> Aprogas: I have configured brian to use mailer as relayhost and everything works correct until I've changed the ip to a private one[18:30:02] <lunaphyte_> no, the server has been, by being named brian.[18:30:12] <lunaphyte_> ha. this is cracking me up.[18:30:22] <lunaphyte_> i've found a new passtime.[18:30:27] <Breaking_Pitt> :P[18:30:36] <Aprogas> Breaking_Pitt: Why did you change the IP-address of brian?[18:31:04] <Breaking_Pitt> because this machine need a private ip[18:31:16] <lunaphyte_> yes. brian is very private.[18:31:49] <Aprogas> If the operator of mailer agrees, have them put that private IP-address in mynetworks or whatever access policy they use on mailer.[18:32:30] <Breaking_Pitt> i've added the private address to mynetworks but still not work ([18:33:33] <Aprogas> On which server did you add the private address?[18:33:41] <Breaking_Pitt> in mailer[18:33:48] <Breaking_Pitt> in the mynetworks[18:34:21] <Aprogas> Did you reload?[18:34:28] <Breaking_Pitt> yes I'vereload[18:34:45] <Aprogas> Prove that you get rejected with logs from mailer and brian.[18:34:57] <Breaking_Pitt> ok[18:35:26] <lunaphyte_> if i were brian, i'm not sure i'd want anyone inspecting my logs.[18:36:04] <Aprogas> Also share postconf -n and other relevant config from both servers.[18:36:59] *** cga_ has joined #postfix[18:37:23] *** tona has quit IRC[18:40:51] *** cga has quit IRC[18:41:46] <Breaking_Pitt> Aprogas: I've found this trying with a different mail addres http://pastebin.com/kPXq9GjG[18:42:09] <Breaking_Pitt> so seems to be working, so my problem has to be other I think[18:43:08] *** makomi has joined #postfix[18:44:05] <Aprogas> You shouldn't employ greylisting in an internal network.[18:44:19] <seekwill> You should not employ graylisting at all![18:44:47] <Aprogas> If you are not the primary person operating mailer.libresoft.es, I think the whole mailserver team should get together to make sure everybody is on the same page.[18:44:56] *** cga_ has quit IRC[18:44:57] <Aprogas> This whole thing has "mutual miscommunication" written all over it.[18:45:26] *** tona has joined #postfix[18:45:33] <Aprogas> Breaking_Pitt: Using the submission port with other rules than what other MTAs have to adhere to, might be useful for you.[18:45:38] <Aprogas> !tell Breaking_Pitt submission[18:45:39] <knoba> Breaking_Pitt: "submission" : Port 587 is submission, for user submission of mail, NOT suitable for mail exchange. See the commented example in master.cf. also see !msa, and rfc 2476 and 4409. Also read http://www.maawg.org/sites/maawg/files/news/MAAWG_Port25rec0511.pdf[18:46:24] *** rajijoom has quit IRC[18:46:38] *** higuita has quit IRC[18:46:51] *** Breaking_Pitt has quit IRC[18:48:59] *** cga has joined #postfix[18:49:07] *** higuita has joined #postfix[18:51:29] *** JonnyV has quit IRC[18:51:35] *** cga_ has joined #postfix[18:53:51] *** effting has joined #postfix[18:54:46] *** cga has quit IRC[18:55:46] <effting> is there an option somewhere in postfix to specify which mta to use for a destination domain?[18:56:14] *** tona has quit IRC[18:56:52] <Aprogas> Yes, but are you sure you need this?[18:57:18] <seekwill> Some MX records are really messed up...[18:57:20] <effting> depends on the amount of configuration hassle it gives me[18:57:34] *** praedor has joined #postfix[18:57:38] <Aprogas> seekwill: Give three examples.[18:57:46] *** cga_ has quit IRC[18:57:51] <seekwill> Why?[18:58:12] <seekwill> Many people misconfigure their MX records[18:58:21] <seekwill> I.e., putting IP addresses instead of A records[18:58:29] <effting> I work together with a company which has messed up mx records. It first tries the primary MX, which time-outs. Then goes over to one of the 2 backup MX'es to which it can connect[18:58:57] <Aprogas> !tell effting transport_maps[18:58:57] <knoba> effting: "transport_maps" : a configuration parameter in the main.cf: Optional lookup tables with mappings from recipient address to (message delivery transport, next-hop destination). See transport(5) for details.[18:59:12] <Aprogas> I still think it's better to just get the other side to fix their MX records.[18:59:30] <effting> agree; but i already tried that one[18:59:44] <effting> probably just live with it is also a good option[18:59:50] <seekwill> Aprogas: lol[19:00:52] <effting> thanks for the advise anyway[19:01:07] <effting> i'll have a look into this transport_maps parameter[19:03:52] *** hever has joined #postfix[19:05:02] <seekwill> i see spam[19:05:42] <Aprogas> "Let's see where these MX records really point to" "The gardener?!" "And I would have gotten away with it, if it weren't for you meddling transport_maps"[19:06:00] *** hever has quit IRC[19:06:52] *** hever has joined #postfix[19:13:25] *** hever has quit IRC[19:14:03] *** UQlev has quit IRC[19:14:24] *** hever has joined #postfix[19:15:50] *** jlaunay has joined #postfix[19:19:33] <adaptr> "rule #1: respect the man's car"[19:19:41] <adaptr> no, wait, that's transporter_maps[19:22:47] <Aprogas> transformer_maps makes your mailserver turn into a truck[19:27:07] *** Dingofest2 has quit IRC[19:29:50] *** biggimat has joined #postfix[19:33:35] *** brancaleone has quit IRC[19:35:23] *** Transformer has joined #postfix[19:36:59] *** Transformer has quit IRC[19:38:20] *** hever has quit IRC[19:38:54] *** Vivek has joined #postfix[19:39:02] *** Vivek has joined #postfix[19:41:52] *** makomi has quit IRC[19:52:23] *** weedar has joined #postfix[19:56:37] *** Dingofest2 has joined #postfix[19:58:32] *** Meskalyn-Freenod has quit IRC[20:01:36] *** neorise-rider has joined #postfix[20:02:05] *** Meskalyn-Freenod has joined #postfix[20:06:51] *** higuita has quit IRC[20:07:00] *** Tadej_ has joined #postfix[20:09:57] *** Tadej__ has quit IRC[20:13:40] *** higuita has joined #postfix[20:14:24] *** neorise-rider has quit IRC[20:19:29] *** neorise-rider has joined #postfix[20:21:48] *** jangell has joined #postfix[20:22:02] *** mandragor has joined #postfix[20:22:03] *** weedar has quit IRC[20:22:03] <jangell> how do you guys feels about using fake mx records like this wiki seems to encourage? http://wiki.apache.org/spamassassin/OtherTricks[20:23:42] *** micols has quit IRC[20:24:09] * cpm isn't a fan of such things.[20:24:29] <twobithacker> yeah, I'm not a fan either[20:24:41] <twobithacker> I don't have any good solid reasoning for why I don't like it, just feels wrong[20:26:22] *** sysmonk has quit IRC[20:26:22] *** JonnyV has joined #postfix[20:26:30] <jangell> how about if you set the first one as 0.0.0.0 so it loops back to localhost and doesn't deliver?[20:26:39] *** sysmonk has joined #postfix[20:26:54] <jangell> seems like a friendly thing to do[20:26:55] <lunaphyte_> it's best to just avoid those games altogether.[20:27:04] <lunaphyte_> btw, 0.0.0.0 isn't localhost[20:27:15] <jangell> no it's not exactly local host[20:27:25] <twobithacker> yeah, and when it loops back to localhost on a legit mail server and gets rejected, you lose mail[20:27:27] <jangell> but on a lot of systems the local mail server will answer to it[20:27:27] <lunaphyte_> there is almost certainly a better solution to whatever your problem might be.[20:27:43] <jangell> I'm not suggesting any of this. I just saw it and thought it was funny :)[20:28:18] *** _marix has quit IRC[20:29:34] *** shinao1 has joined #postfix[20:30:45] *** shinao1 has quit IRC[20:30:48] *** sysmonk has quit IRC[20:31:45] *** uqlev has joined #postfix[20:32:04] *** sysmonk has joined #postfix[20:32:17] *** schnoobby has joined #postfix[20:32:38] *** micols has joined #postfix[20:34:01] <Aprogas> bogusmx is ground for rfc-ignorant listing[20:37:28] *** schnoobby has quit IRC[20:37:35] *** Tadej__ has joined #postfix[20:37:46] *** schnoobby has joined #postfix[20:37:59] *** _marix has joined #postfix[20:40:16] *** Tadej_ has quit IRC[20:40:17] *** sysmonk has quit IRC[20:40:17] *** sysmonk has joined #postfix[20:44:51] *** Alagar has joined #postfix[20:45:27] *** Vivek has quit IRC[20:45:49] *** bimbo has joined #postfix[20:47:08] <bimbo> hello, is it possible to deny sasl authentication on the smtp server on a per user basis?[20:48:09] <bimbo> I think this can be done using a custom policy service[20:48:17] <Zerberus> bimbo: just use a SASL backend which lists just your wanted users[20:49:03] <bimbo> Zerberus: ok, looking into it, thank you[20:54:03] <bimbo> Zerberus: I'm sorry but I'm really lost, how can this be done? anywhere I can read about it?[20:54:38] <Zerberus> bimbo: what is your SASL setup now?[20:57:07] <bimbo> Zerberus: I'm using dovecot sasl backend with mysql[20:58:04] *** ramoni has joined #postfix[20:58:32] <Zerberus> bimbo: then you use an sql query statement - add a new field in the database which you set 0/1, depending on whether the user should be able to auth or not. and finally extend the existing sql query[20:59:08] <bimbo> Zerberus: ah, I get it now, very simple actually, thank you very much![21:01:20] *** master_of_master has quit IRC[21:03:37] *** master_of_master has joined #postfix[21:05:54] *** weedar has joined #postfix[21:06:09] *** mandragor has quit IRC[21:13:45] *** Tadej_ has joined #postfix[21:14:48] *** brancaleone has joined #postfix[21:14:54] *** ramoni has quit IRC[21:15:50] *** weedar has left #postfix[21:17:30] *** Tadej__ has quit IRC[21:27:49] *** context has joined #postfix[21:28:04] <context> is there a way to "kill" the actual delivery mechanism temporarily[21:28:15] <context> dovecot/deliver is busted and we are in the middle of fixing[21:28:23] <context> but we just want the mail to get queued instead of bounced[21:31:10] *** siteswapper has joined #postfix[21:33:37] *** xabbuh has joined #postfix[21:34:18] *** cpm has quit IRC[21:35:33] <Aprogas> !tell context soft_bounce[21:35:33] <knoba> context: "soft_bounce" : a configuration parameter in the main.cf: Safety net to keep mail queued that would otherwise be returned to the sender. This parameter disables locally-generated bounces, and prevents the Postfix SMTP server from rejecting mail permanently, by changing 5xx reply codes into 4xx. However, soft_bounce is no cure for address rewriting mistakes or mail routing mistakes.[21:37:06] <context> knoba: thnx :D[21:40:14] *** p3rror has quit IRC[21:48:59] *** biggi_mat has joined #postfix[21:50:28] <lepine> How does postfix manage deferral queues versus multiple domains?[21:51:22] <lepine> scratch that, is there a document that explains in more detail the outbound smtp process? (compared to this, anyway, http://www.postfix.org/OVERVIEW.html#delivering )[21:51:47] *** sherr has quit IRC[21:51:52] *** p3rror has joined #postfix[21:51:54] *** biggimat has quit IRC[21:52:39] <Aprogas> Something like http://www.postfix.org/SCHEDULER_README.html ? I haven't read it, but it might be what you are looking for.[21:52:49] *** siteswapper has left #postfix[21:54:17] <lepine> Thank you, that already looks more precise[21:55:16] *** higuita has quit IRC[22:04:34] *** sherr has joined #postfix[22:04:38] *** sherr has quit IRC[22:06:09] *** sherr has joined #postfix[22:07:36] <lepine> Aprogas: well, there is per domain queuing, which is most of what I wanted to know[22:07:55] *** uqlev has quit IRC[22:08:06] <lepine> All there's left is understanding the queuing process :)[22:08:17] *** Haraken has joined #postfix[22:08:25] <Aprogas> Are you sure you need to worry about this? Postfix will do sensible things without you having to configure it for that.[22:08:48] <Haraken> quick question, I have a mail alias that points to lets say, joe at home dot com, well home.com email is hosted on another server and there are mx records in place for that... but since the website is on the same server it just delivers the mail locally instead. how do i get postfix to respect the mx records in place for that domain?[22:09:28] <lepine> Aprogas: I'm not looking to configure it really[22:10:02] <lepine> My bosses are stuck on ironports, which I am told work really well[22:10:17] <lepine> I want to see how postfix compares for our usecase[22:11:50] *** Vivek has joined #postfix[22:11:51] *** Vivek has joined #postfix[22:14:15] *** cga has joined #postfix[22:19:29] *** forsberg is now known as fOrsberg[22:20:05] *** TomHome has joined #postfix[22:25:10] *** cga has quit IRC[22:26:31] *** MAAAAD has quit IRC[22:27:00] *** MAAAAD has joined #postfix[22:31:02] *** Cain has quit IRC[22:31:23] *** hever has joined #postfix[22:39:10] *** schnoobby has quit IRC[22:39:22] *** Chaot_s has quit IRC[22:40:06] *** effting has left #postfix[22:45:28] *** help` has joined #postfix[22:48:53] <context> aprogas: thnx again. got everything all straightened out and soft_bounce removed :D[22:48:56] *** context has left #postfix[22:49:04] *** makomi has joined #postfix[22:50:21] <help`> heys!! i'm studying about "Postfix" i need to make sure of something, now when we receive mail to Postfix: it receive at Postfix, the "sendmail process" handle it and drop it in the "maildrop", then it's picked up by the "cleanup" which it check the "FROM and TO ". then go to "Trivial rewrite to write/check header" then it will be sent to the "incoming queue"? is that right ? thx alot =)[22:53:41] <Aprogas> help`: http://www.postfix.org/OVERVIEW.html[22:54:03] <Aprogas> Usually mail will be received by smtpd over a TCP-socket.[22:56:03] <help`> Aprogas, ah this is when msg send from local to local right at " How Postfix receives mail Topic" ?[22:56:35] <Aprogas> I'm not sure I understand your question, or why you are curious about the architecture.[22:57:35] <help`> Aprogas, well, it's good to know for troubleshooting ? i/m afraid later on[22:57:47] <Aprogas> Are you sure you need to run a mailserver?[22:58:03] <help`> i'm studying it so hope so[22:58:11] <Aprogas> It is definitely a good idea to understand the architecture, but it is not always a good idea to run a mailserver.[22:58:14] *** Zerberus has quit IRC[22:58:15] *** JoKoT3 has quit IRC[22:58:28] <help`> why[22:58:29] <help`> ?[22:58:41] *** henriknj has quit IRC[22:58:44] <Aprogas> !why[22:58:44] <knoba> Aprogas: "why" : are you sure that installing, configuring and maintaining a mailserver is really what you want to do here? it's not something that's for the faint of heart, and definitely not something for folks that are still just learning the basics of linux or unix. also see !nullclient[22:58:51] *** Zerberus has joined #postfix[22:58:53] <Aprogas> Many things can go wrong with running a mailserver.[22:59:39] *** arnotixe_ has quit IRC[22:59:45] <help`> hrmm[23:00:14] <Aprogas> Start simple, don't try to run before you can walk.[23:00:39] <help`> well, i'm just start studying it =)[23:00:47] *** Verilium has quit IRC[23:00:50] <Aprogas> I don't know the exact sequence of services between sendmail and cleanup, just that there are various steps.[23:02:44] <help`> i think this what i was searching for to understand from the link you give it to me =)[23:02:44] *** Verilium has joined #postfix[23:02:45] <help`> #[23:02:45] <help`> Local submissions are received with the Postfix sendmail(1) compatibility command, and are queued in the maildrop queue by the privileged postdrop(1) command. This arrangement even works while the Postfix mail system is not running. The local pickup(8) server picks up local submissions, enforces some sanity checks to protect Postfix, and gives the sender, recipients and message content to the cleanup(8) server.[23:04:20] *** devglue has joined #postfix[23:05:14] <devglue> can someone help me with my server's ability to receive email?[23:05:20] <devglue> I don't understand where the problem is[23:05:33] <Aprogas> !tell devglue logs[23:05:33] <knoba> devglue: "logs" : postfix logs to the mail facility of syslog. Something like grep -i `postconf -h syslog_facility` /etc/syslog.conf should tell you where logs are going. also see !no_logs and !have2mung[23:05:38] <Aprogas> !tell devglue welcome[23:05:38] <knoba> devglue: "welcome" : welcome to #postfix! if you're joining for the first time, or are new to irc, the first thing you'll want to do is read the channel topic (/topic). it includes crucial instructions on how to effectively ask for help here, and what data you should include with your questions. the degree of success you'll have is directly related to how effectively you're able to follow those guidelines.[23:05:43] <help`> :P[23:05:46] <help`> egeg[23:05:48] <help`> eheh*[23:06:57] <devglue> my mail is going to /var/log/mail.log[23:07:02] <devglue> my log I mean[23:07:39] <devglue> I'm just having trouble with master.cf[23:07:52] <devglue> most places on the web doesn't treat that section very well[23:08:01] *** jim_SFU has quit IRC[23:08:07] <Aprogas> You usually don't need to touch it, and it is pretty straightforward.[23:08:16] <Aprogas> Was your mailsystem working before changing master.cf ?[23:09:34] <devglue> fully? no. got sasl and ssl/tls working for postfix and dovecot[23:09:50] <devglue> checked with telnet localhost 25 and telnet localhost pop3[23:09:56] <devglue> so local tests come out ok[23:09:59] <Aprogas> !tell devglue goal[23:09:59] <knoba> devglue: "goal" : describe your goal, not what you think the solution is[23:10:20] <devglue> goal is to receive mail[23:10:26] <devglue> not locally[23:10:34] <Aprogas> I don't recommend starting to support POP3 in a new environment, I'd only keep it around for backwards compat in an existing environment.[23:11:04] <Aprogas> Although if you don't want to handle storing, securing, backing up, etc. user's email, POP3 could still be a good idea.[23:11:20] <devglue> I can receive local mail, and send out local mail, the pop3 and imap isn't an issue[23:11:44] <devglue> the issue is, receiving email from other users from outside my network[23:11:50] *** hever has quit IRC[23:11:53] <Aprogas> Maybe you should describe the issue, and back it up with logs and other requested information as listed in the welcome-factoid and channel-topic.[23:12:35] <devglue> for example: using pingability, it states that: Error There was a problem while talking with the mail server. Got 'Connect Exception: Connection refused'[23:12:50] <devglue> so an open relay test cannot be done[23:13:47] <devglue> my master.cf is as follows: http://pastebin.com/BvetSQ3b[23:15:12] <devglue> mail.log doesn't have anything since the connection is refused right away[23:15:44] <devglue> it isn't a firewall issue I think[23:16:22] <Aprogas> I hope that isn't your complete master.cf. Also smtps is outdated. Also by commenting submission, the -o lines below get passed to your regular smtpd.[23:16:59] <devglue> it's not my complete master.cf[23:17:33] <Aprogas> Shutdown Postfix and run a netcat listener on port 25 and try to connect to it from a remote place. Does that work? Try sending some data too, it should echo on the other end.[23:18:28] <devglue> I'm running debian/lenny[23:19:16] <devglue> this computer is running on vista[23:19:38] <devglue> I guess using debian running inside sunbox would work[23:19:51] <devglue> virtualbox I mean[23:20:13] <Aprogas> It will work, but you must make sure your networking is setup correctly. Hence my comment on running a netcat listener to test that.[23:20:23] <devglue> netcat listener 25 resulted in: listener.com [209.62.105.15] 25 (smtp) : Connection refused[23:20:38] <devglue> on the server where postfix will run[23:20:57] <Aprogas> I didn't mean you should literally copypaste what I said, I meant you should run netcat in listen-mode on port 25.[23:21:11] <devglue> how do I do so?[23:21:14] <Aprogas> It will be very useful to know UNIX basics before trying to run a mailserver.[23:21:30] <devglue> well, unix basics has many categories[23:21:39] <rcsheets> man netcat[23:21:45] <devglue> I haven't fully gotten into networking yet[23:21:51] <devglue> I only use netstat and nmap so far[23:22:06] <Aprogas> devglue: networking isn't really optional before running a mailserver[23:22:21] <Aprogas> I applaud that you are trying to learn new things, but you should do so in the right order.[23:22:44] <devglue> understood, but had to spend time on uid, file permissions, adduser commands, etc[23:22:52] <devglue> daemons, it goes on[23:22:56] <Aprogas> Your problem right now isn't really Postfix related, it's probably VirtualBox networking not being configured correctly to work nice with what you are expecting.[23:23:23] <devglue> no, my environment (the server) is running on a vps server[23:23:28] <devglue> I'm connected via putty[23:23:39] <devglue> my vista machine has virtualbox[23:24:14] <devglue> with a debian image[23:24:23] <Aprogas> If you run a mailserver inside virtualbox, and networking is setup as NAT or host-only, that will make it tricky to contact that mailserver.[23:24:52] <rcsheets> i think the mail server is on the VPS somewhere[23:24:59] <rcsheets> not on the virtualbox guest[23:25:01] <devglue> yes, the mail server is on the vps[23:25:20] <Aprogas> Then how is this VirtualBox related?[23:25:27] <rcsheets> devglue: may i PM you?[23:25:29] <devglue> I can use unix commands and tools however from the debian image, is what I was getting at[23:25:30] <devglue> sure[23:26:27] *** jonkri has joined #postfix[23:26:55] <jonkri> how do you recommend me to convert an old pop account of mine into an imap account?[23:28:34] <devglue> ok, reading man netcat[23:28:58] <Aprogas> jonkri: POP and IMAP are protocols for accessing a mailbox.[23:29:33] <jonkri> Aprogas: oh, okay. well i don't have access to the mailbox file[23:29:51] <jonkri> it's on a web hotel where i only have pop access[23:30:09] <Aprogas> How is Postfix related to this?[23:30:37] *** sphenxes01 has quit IRC[23:31:25] <jonkri> my apologies[23:32:02] <Aprogas> You could use getmail or fetchmail to retrieve the mail, but I've never been a big fan of those tools.[23:32:05] *** sphenxes has joined #postfix[23:32:19] <devglue> ok, I have don: nc -l 25[23:32:24] <Aprogas> You could just buy your own domain at a registrar that offers email-hosting, or use Google Apps.[23:32:43] <devglue> now, what command in cmd in my windows machine would complete the handshake or what do I do?[23:32:47] <devglue> *done[23:32:57] <Aprogas> devglue: Verify with netstat that it succesfully bound, and telnet to it on port 25.[23:33:13] <Aprogas> I believe Vista for some reason doesn't install the telnet client by default, so you must enable that first; or just use putty.[23:33:27] <jonkri> Aprogas: may i ask why you don't like those tools?[23:33:59] <Aprogas> jonkri: I like when a mail delivery chain uses SMTP until the place where it is actually delivered to the user's mailbox.[23:34:18] <Aprogas> SMTP makes sure that email is delivered, or when that fails that the original sender gets notified. SMTP is robust.[23:34:56] <Aprogas> Having POP3 -> fetchmail -> IMAP-server in your delivery chain introduces more places for failure, and failure might be silent.[23:35:43] *** biggi_mat has quit IRC[23:41:02] *** |neorise-rider| has joined #postfix[23:41:27] <devglue> ok, so on the vps server, I did the command, nc -l 25 (which doesn't run in the background), and over where I am, I tried to telnet to my domain 25[23:41:44] *** neorise-rider has quit IRC[23:41:56] <devglue> as for the telnet to the domain, it doesn't get past trying myipaddress[23:42:37] <Aprogas> Verify that the IP-address is correct.[23:42:51] <devglue> it is[23:45:41] <devglue> connect timed out[23:46:08] <Aprogas> I think "nc -l 25" isn't right, it looked odd to me.[23:46:25] <Aprogas> It's close though.[23:46:39] <Aprogas> I did tell you to use netstat to verify it was indeed bound to port 25.[23:47:21] <devglue> but it doesn't show me # so as to input new command, so hold on, let me see which command to use[23:48:09] <Aprogas> Look in the synopsis part of the man-page for a hint.[23:49:09] <Aprogas> I'm going to bed soon and I doubt anyone else in this channel is patient enough to teach your networking basics; you might be better off on a more generic help channel, until your question becomes actually Postfix-specific.[23:52:14] <devglue> I appreciate your help, but if you got to go, you got to go[23:52:24] <devglue> meanwhile, I'm reading[23:53:59] <devglue> don't know what the syntax has to be thus far[23:54:24] <devglue> nc -lc 25 netstat -tap ?[23:54:43] <Aprogas> No.[23:55:33] <Aprogas> nc -lp 25 ; -p specifies the local port, which is relevant for a listening socket[23:55:58] <Aprogas> Run netstat/lsof in another screen to verify the port is opened, and that netcat is listening on it.[23:56:24] *** |neorise-rider| is now known as neorise-rider[23:56:34] *** smica has quit IRC[23:56:37] <devglue> so I can run two putty connections using root?[23:57:18] <devglue> nm, the answer to that one is yes.[23:57:21] <devglue> kinda cool[23:57:22] <Aprogas> Or use a tool like screen or tmux. I really cannot stress enough that I think you should put the idea of running a mailserver out of your head for a while, and first get more familiar with Linux/UNIX.[23:57:56] <devglue> well, my purpose using postfix is more for programming[23:58:19] <devglue> w/ a database, but sys admin skills are essential, which I agree[23:58:47] <Aprogas> How do you need Postfix for programming?[23:59:27] <devglue> sort of like postfixadmin[23:59:43] <devglue> and zimbra