September 7, 2010 
< | 1 | 2 | 3 | 4 | 5 | 6 | 7 | 8 | 9 | 10 | 11 | 12 | 13 | 14 | 15 | 16 | 17 | 18 | 19 | 20 | 21 | 22 | 23 | 24 | 25 | 26 | 27 | 28 | 29 | 30 | >
September 7, 2010 [00:00:44] <adaptr> srsly, the one reason I would invest in a raid card is to not lose speed when it's degraded - and possibly OLCE[00:00:54] <adaptr> although I have no idea how well that works[00:01:05] <Aprogas> I've never dealt with serious setups actually, just hobby-hardware.[00:01:31] <adaptr> oh we have some very serious setups - which is why I know that that's unrealistic for the home[00:03:16] <adaptr> but you can go a long way with an 8-port card and some decent drives - since I'm limited by gigE the drive speed doesn't matter, I use 5400 green power drives that max out at 50MB/sec - which gives me over 200MB/sec in RAID-5[00:03:30] <Aprogas> Biggest thing I have touched is a mailserver with 1000 aliases and some mailing lists.[00:04:41] *** dragonheart has joined #postfix[00:06:11] *** Knoedel2 has quit IRC[00:10:39] *** weedar has joined #postfix[00:11:50] *** mandragor has quit IRC[00:12:26] *** dustybin has left #postfix[00:12:41] *** friskd has joined #postfix[00:17:09] *** smica has quit IRC[00:17:40] *** Section1 has quit IRC[00:19:34] *** forsberg is now known as fOrsberg[00:22:24] *** demetan has quit IRC[00:32:03] *** Vivek has joined #postfix[00:32:04] *** Vivek has joined #postfix[00:51:34] *** olek has quit IRC[00:51:44] *** uqlev has quit IRC[00:54:54] *** brancaleone has quit IRC[01:01:28] <denysonique> Aprogas, postfix of course. Right?[01:08:07] *** weedar has quit IRC[01:12:11] *** mandragor has joined #postfix[01:13:32] *** wiiiz has joined #postfix[01:20:27] <wiiiz> heys!! i'm Trying to "Integrade" AD with postfix, always at log give me this error : Sep 7 02:25:42 mail postfix/smtpd[3111]: warning: dict_ldap_lookup: /etc/postfix/ldap-aliases.cf: Search base 'cn=users,dc=mail-kad,dc=redirectme,dc=net' not found: 32: No such objec , i use as :"http://www.yenlo.nl/johnpaulvanhelvoort/2009/12/using-postfix-ldap-search-against-active-directory/" configuration[01:25:11] *** higuita has quit IRC[01:27:43] *** higuita has joined #postfix[01:29:52] *** jwit_ has joined #postfix[01:30:46] *** jwit has quit IRC[01:30:58] *** jwit_ is now known as jwit[01:34:26] *** n0ctum has joined #postfix[01:37:47] *** aditsu has joined #postfix[01:38:39] <aditsu> hi, how can I write a rule to redirect certain emails to a certain address? (e.g. based on a word in the subject)[01:39:09] *** leroux has quit IRC[01:47:51] *** loddafnir has quit IRC[01:53:48] *** swarog_ has quit IRC[01:57:11] *** tharkun has left #postfix[01:57:29] *** TomHome has quit IRC[01:58:52] *** raw_ has quit IRC[02:01:30] *** JonnyV has quit IRC[02:02:12] *** Vivek has quit IRC[02:06:40] *** raw_ has joined #postfix[02:08:07] *** swarog has joined #postfix[02:08:22] <wiiiz> aditsu, maybe http://rackerhacker.com/2007/07/01/redirect-e-mails-in-postfix-based-on-subject-line/ ?[02:09:08] <aditsu> wiiiz: thanks I'll check it out[02:34:57] *** praedor has quit IRC[02:45:07] *** higuita has quit IRC[02:53:39] *** higuita has joined #postfix[03:11:55] *** higuita has quit IRC[03:15:01] *** higuita has joined #postfix[03:47:54] *** passthru has joined #postfix[03:55:56] *** pala has joined #postfix[03:56:01] <pala> how can i disable bounce messages[03:56:01] <pala> ?[04:05:55] *** neorise-rider has quit IRC[04:06:53] <Dominian> pala: You don't.[04:07:05] <pala> fair enough[04:08:55] *** n0ctum has quit IRC[04:16:32] <wiiiz> how does "dovecot" know which path mailbox to give "Accounts from AD", if there' "Intergrated" with AD ?[04:16:50] <Dominian> ask dovecot?[04:17:07] * Dominian rephrases: "Ask #dovecot?"[04:17:07] <Dominian> :)[04:17:19] <wiiiz> did nothing reply for 2 days :P so i though someone know here =)[04:17:24] <Dominian> heh[04:17:29] <Dominian> Possibly, I for one, will not know that answer.[04:17:37] <wiiiz> :P[04:17:40] <Dominian> but since is AD integrated.. I'd say it has something to do with LDAP[04:18:05] <Dominian> Probably something set in the for the user in the group etc[04:18:17] <Dominian> set FOR the user in the group or what not.. sheesh[04:18:56] <wiiiz> even "Integration" From Postfix with LDAP work but with dovevot still didn't work out although i did everything at "https://help.ubuntu.com/community/DovecotLDAP" =)[04:19:13] <Dominian> !dovecot[04:19:13] <knoba> Dominian: "dovecot" : http://www.dovecot.org/ : IMAP/POP3 server software with emphasis on security; recent versions can also provide SASL AUTH for Postfix 2.3+.[04:19:14] <Dominian> !ldap[04:19:14] <knoba> Dominian: "ldap" : a lookup method that can be used by Postfix. An introduction can be found in the LDAP_README also found at http://www.postfix.org/LDAP_README.html. A worthy project dealing with LDAP and Postfix can be found at: http://jamm.sourceforge.net/howto/html/[04:19:32] <Dominian> Those ar ethe only "links" I know to refer you to in this instance.. I myself Haven't messed with LDAP much[04:19:55] <wiiiz> thx =)[04:20:03] <wiiiz> i'll check them now[04:20:07] <Dominian> k[04:23:12] *** neekfenwick_ has joined #postfix[04:24:11] *** pala has quit IRC[04:28:16] <neekfenwick_> hi all.. i believe my VPS is being used as a relay, but i don't know postfix very well.. could someone glance and tell me if the maillog output shows actual relaying going on?[04:28:20] <neekfenwick_> http://scsys.co.uk:8002/50186[04:29:24] <neekfenwick_> i went through an online 'secure your postfix install' thing yesterday, but the problem persists.. lots of postfix processes, and maillog fills up and exceeds my disk quota too quickly for logrotate to manage[04:29:42] <Dominian> for one...[04:29:45] <Dominian> turn off the debugging[04:29:48] <Dominian> it makes the logs impossible to read[04:29:52] <neekfenwick_> yeah[04:29:54] <Dominian> for two..[04:30:03] <Dominian> post a new log without debuggin and post: postconf -n[04:30:09] <neekfenwick_> ok will do[04:30:16] <Dominian> cool[04:30:56] <neekfenwick_> Dominian: would that be "debug_peer_level = 2" in main.cf?[04:31:07] <Dominian> !debug[04:31:07] <knoba> Dominian: "debug" : http://www.postfix.org/DEBUG_README.html : a good starting point for how to deal with problems and to report information to those who might help. Post your information in a pastebin such as http://pastebin.ca/ or http://dpaste.com/[04:31:44] <Dominian> and.. no[04:31:45] <Dominian> :)[04:33:28] <aditsu> is there a way to do multiple header checks with a single action? does "if" work for that?[04:34:26] *** wiiiz has quit IRC[04:35:17] <Dominian> aditsu: that.. I dunno[04:36:13] <aditsu> I'll have to try a couple of things[04:37:03] <neekfenwick_> Dominian: grr, since i deleted /var/log/maillog, postfix won't log to it .. 'service postfix restart' restarts it ok.. 'touch /var/log/maillog' and chowning to postfix:postfix doesn't help[04:37:10] <neekfenwick_> so i can't actually get fresh logging[04:37:18] <Dominian> odd[04:37:21] <Dominian> postfix stop[04:37:30] <Dominian> touch the logs.. make sure the ownership is proper..[04:37:31] <Dominian> then postfix start[04:37:38] <Dominian> BUT postfix should write its own logs[04:37:39] <Dominian> just FYI[04:37:49] <Dominian> and more than likely not owned by postfix user[04:38:10] <Dominian> postfix uses the SYSLOG to write logs.. the syslog facility 'mail' is used[04:38:24] <Dominian> so 'root' would probably own it... with 640 perms.. at least on my system[04:38:40] <neekfenwick_> /var/log/maillog.1 is root:root, but owned by cron/logrotate i think .. ps shows processes owned by postfix user. ok will check syslog conf[04:39:00] <Dominian> !logging[04:39:00] <knoba> Dominian: Error: "logging" is not a valid command.[04:39:01] <Dominian> !log[04:39:02] <knoba> Dominian: Error: You don't have the owner capability. If you think that you should have this capability, be sure that you are identified before trying again. The 'whoami' command can tell you if you're identified.[04:39:03] <Dominian> bah[04:39:05] <Dominian> !syslog[04:39:05] <knoba> Dominian: Error: "syslog" is not a valid command.[04:39:08] <Dominian> damn it beavis[04:39:15] <Dominian> !maillog[04:39:16] <knoba> Dominian: "maillog" : see !logs[04:39:18] <Dominian> !logs[04:39:19] <knoba> Dominian: "logs" : postfix logs to the mail facility of syslog. Something like grep -i `postconf -h syslog_facility` /etc/syslog.conf should tell you where logs are going. also see !no_logs and !have2mung[04:39:22] <Dominian> there it is[04:39:24] <Dominian> sheesh[04:39:28] <neekfenwick_> yeah, "mail.* -/var/log/maillog"[04:39:31] <neekfenwick_> ok[04:40:33] <neekfenwick_> postconf shows it's using 'mail' facility.. dunno what that '-' means on the syslog.conf line[04:43:15] <neekfenwick_> ok, taking it out seems to have fixed logging to maillog[04:43:57] <neekfenwick_> Dominian: i'm not sure how to anonymise this log output :S run it through sed perhaps.. bit of a pain[04:43:59] *** rajijoom has joined #postfix[04:45:59] <Dominian> neekfenwick_: if it worries you that much.. you can use securepastebin.com and PM me the pass for it and the link[04:46:03] <neekfenwick_> !no_logs[04:46:04] <knoba> neekfenwick_: "no_logs" : Nothing in your mail logs commonly means one of two things: either your syslogd is broken (try restarting it), or the connections are not coming to your server. Check your firewall/networking and the DNS for the domain in question. also see !logs.[04:46:05] * Dominian isn't going to disclose anything.[04:50:00] <Dominian> neekfenwick_: it does appear that way..[04:50:08] <Dominian> neekfenwick_: Can you track whre the original message came from?[04:51:03] <Dominian> neekfenwick_: Looking at your main.cf.. whatever is spamming.. is possibly coming off the mail server itself.. does your mailserver also host websites with form input on them ?[04:52:17] <neekfenwick_> i believe relay attempts are coming from many different remote sites.. seems like a botnet pattern.. i get error emails sent to my root account saying "Postfix SMTP server: errors from unknown[nnn.nnn.nnn.nnn]" when my disk fills up, and the ip is always different, although perhaps that's the recipient ip not the sender[04:52:33] <neekfenwick_> no, my webserver _ought_ to be extremely clean[04:52:36] <Dominian> rcipient more than likely[04:52:40] <neekfenwick_> just a personal VPS with apache and jetty web servers[04:52:51] <Dominian> neekfenwick_: does the output of mailq show a bunch of delayed messages?[04:53:03] <neekfenwick_> mqueye is empty[04:53:09] <Dominian> the other thing i see, you're running an extrememly old version of postfix[04:53:10] <neekfenwick_> this is with postfix stopped[04:53:20] <Dominian> so if you type: mailq[04:53:22] <Dominian> it's empty?[04:53:32] *** pinoyskull has joined #postfix[04:53:38] <neekfenwick_> yes[04:53:49] <Dominian> what happens if you start it back up[04:53:53] <Dominian> and tail the log?[04:53:57] <Dominian> where are the attempts originating?[04:53:59] <neekfenwick_> this is a fairly fresh (early this year) centos install done by the VPS hosting company. postfix ought to be fresh :S[04:54:13] <Dominian> I mean according to your postconf -n .. the only mynetwork entry is the loopback address[04:54:21] <Dominian> neekfenwick_: Not coming from CentOS[04:54:34] <Dominian> CentOS lags a bit behind in versions.. 2.3.3 is no where near 'recent'[04:55:01] <neekfenwick_> Name : postfix Relocations: (not relocatable)[04:55:02] <neekfenwick_> Version : 2.3.3 Vendor: CentOS[04:55:02] <neekfenwick_> Release : 2.1.el5_2 Build Date: Thu 14 Aug 2008 22:06:38 BST[04:55:02] <neekfenwick_> Install Date: Sun 28 Feb 2010 15:54:51 GMT Build Host: builder16.centos.org[04:55:02] <neekfenwick_> Group : System Environment/Daemons Source RPM: postfix-2.3.3-2.1.el5_2.src.rpm[04:55:15] <Dominian> Yeah.. that's old[04:55:49] <neekfenwick_> started postfix.. log is active.. mailq reports empty[04:56:07] <neekfenwick_> ah shit, yeah i just saw 'build date 2008' hmm[04:56:24] <neekfenwick_> this vps company is damn strange. they cripple some yum config, though mine doesn't appear to exlude package like some i've seen[04:56:52] <Dominian> doe smaillog show any new activity?[04:57:23] <neekfenwick_> yes, it's just as i pastebin'd to you, logs of rejections from hotmail[04:57:43] *** higuita has quit IRC[04:57:50] *** mandragor has quit IRC[04:58:11] <Dominian> neekfenwick_: where's it originating? just different addresses?[04:58:15] <Dominian> something has to be firiting it off[04:58:23] <Dominian> and it is most likely coming from your own server[04:58:24] <neekfenwick_> sorry, how do i find that? tcpdump?[04:58:30] <Dominian> the only 'relay' is 127.0.0.1[04:59:07] <Dominian> neekfenwick_: if you watch the maillog.. and you see new mail being pushed through but no outside connection, its coming from your box[04:59:10] <neekfenwick_> let me try stopping squid[04:59:14] <neekfenwick_> i see no other evil processes[04:59:34] <Dominian> Do you have squid proxy opened to the net?[04:59:46] <psilo2> ma'am, this is the sysadmin. Those relay emails.. they're coming from INSIDE THE BOX[05:00:01] <neekfenwick_> i don't know how to detect an "outside connection" .. yeah, password protected squid[05:00:08] <neekfenwick_> with what i thought was a good password[05:00:11] <Dominian> neekfenwick_: le tme find you an example[05:00:16] *** higuita has joined #postfix[05:00:57] <Dominian> You'll see something like this:[05:00:59] <Dominian> postfix/smtpd[2984]: connect from mail.secunia.com[213.150.41.240][05:01:09] <Dominian> that right ther eis an 'outside' connection from another server to mine[05:01:15] <neekfenwick_> well, stopped squid, started postfix, postfix still v active[05:02:07] <neekfenwick_> only one instance of 'connect from' in maillog: Sep 7 03:50:35 vps11530 postfix/smtpd[9561]: connect from unknown[89.238.216.236][05:02:21] <Dominian> doe sit try to relay mail?[05:03:17] <neekfenwick_> i dunno, i'm trying to grok this log[05:03:33] <Dominian> That's where I'd start.[05:03:39] <Dominian> figure out where the emails are originating..[05:03:41] <Dominian> then go from there[05:04:06] <neekfenwick_> that pid, 9561, doesn't do much, just some "match_list_match: nn.nn.nn.nn: no match" logging[05:04:15] <neekfenwick_> but i guess that pid spawns other processes that do the relaying?[05:04:21] *** MAAAAD has quit IRC[05:04:53] <neekfenwick_> do you think upgrading my postfix will make all this go away?[05:04:58] <Dominian> possibly, but the key is to find out who connected from where and tried to send the message[05:05:10] <Dominian> neekfenwick_: hard to say.. could be something in postfix[05:05:41] <neekfenwick_> that ip is a romanian one, nothing to do with me (i'm UK/Thailand based)[05:06:23] <Dominian> I'd first determine if it sent mail.. if it was able to pipe a bunch into your mail server.. well, then you know where it started.[05:07:06] <neekfenwick_> i'm finding it hard to understand the log :) most lines are postfix/smtp attempts relaying to hotmail, and their verbose nack message[05:07:18] <neekfenwick_> i'll restart postfix and try to find more 'connect from' lines[05:07:26] <Dominian> Ho wlong has it been going on?[05:07:35] <neekfenwick_> about 4 days i think[05:07:41] <neekfenwick_> perhaps since 5th sep[05:07:51] <Dominian> I mean you can let it go, see if it happens again.. when it does.. dig through the log and fin dout what is doing it.. then ban it.. then figure out how it got in.[05:09:24] <neekfenwick_> 'let it go' = run postfix? .. trying now.. i get a 'connect from' every 10 seconds or so, different IP each time[05:10:09] <Dominian> are thry trying to send mail?[05:11:08] <neekfenwick_> i'll have to cherry pick some ip's and correlate in the log (i'm doing "tail -f maillog | grep 'connect from'")[05:11:27] <aditsu> cool, "if" seems to work[05:15:03] *** xpeed has joined #postfix[05:17:07] *** MAAAAD has joined #postfix[05:18:23] <neekfenwick_> Dominian: if i locate a single ip, grep for the pid that handled the request, then i get a maillog section showing what happened for that connection.. is that a good way to investigate?[05:18:23] <neekfenwick_> http://scsys.co.uk:8002/50191[05:18:52] <neekfenwick_> i would expect it to be denied.. there's a bunch of match_hostname etc. logging but it doesn't seem to deny access[05:19:33] <Dominian> Well, without seeing the entire log snippets related to those.. I'd say it didn't relay[05:19:41] <Dominian> right[05:20:09] <neekfenwick_> this is really giving me a headache[05:20:28] <Dominian> neekfenwick_: it will.. we all go through it at least once.[05:20:39] <rob0> Why verbose logging? Turn that off.[05:20:50] <neekfenwick_> i'm certainly getting a shit load of connects: http://scsys.co.uk:8002/50192[05:20:50] <Dominian> rob0: he did finally.. those are from older logs unfortunately[05:21:08] <neekfenwick_> no this is fresh, server time 04:27 sep 7[05:21:08] <Dominian> neekfenwick_: I do dnotice you aren't doing any rbl checks[05:21:12] <Dominian> ahh[05:21:19] <Dominian> neekfenwick_: can you pastebin your main.cf one more time[05:21:26] <Dominian> that way rob0 can see it as well[05:21:31] <neekfenwick_> pasteconf -n?[05:21:38] <Dominian> postconf -n[05:21:39] <Dominian> sorry[05:21:39] <rob0> oh sorry, I won't be able to look[05:21:44] <neekfenwick_> whatever :)[05:21:44] <Dominian> beer running through veins[05:21:47] <Dominian> rob0: punk[05:22:03] <Dominian> anyway, adding rbl checks into smtpd_recipient_restrictions is probably a good idea[05:22:17] <neekfenwick_> postconf -n: http://scsys.co.uk:8002/50193[05:22:38] <Dominian> Yeah.. you got now rbl checks[05:22:41] <Dominian> er.. no[05:22:44] *** rajijoom has quit IRC[05:23:32] <Dominian> neekfenwick_: put something like this in your smtpd_recipient_restrictions, at the end: reject_rbl_client zen.spamhaus.org[05:23:35] <Dominian> then restart postfix[05:23:40] <Dominian> see how many of those 'connects' get pwned[05:23:42] <Dominian> :)[05:24:17] *** bubbles| has quit IRC[05:24:29] <neekfenwick_> ok, at present that's a comma seperated list: smtpd_recipient_restrictions = permit_sasl_authenticated,permit_mynetworks,reject_unauth_destination[05:24:36] <neekfenwick_> is the space ok?[05:24:38] <Dominian> right[05:24:39] <Dominian> no[05:24:43] <Dominian> er[05:24:48] <Dominian> it would look like this:[05:25:03] <Dominian> smtpd_recipient_restrictions = permit_sasl_authenticated,permit_mynetworks,reject_unauth_destination,reject_rbl_client zen.spamhaus.org[05:25:07] <Dominian> so that would work[05:25:12] <roe> Dominian, were you the one that uses LDAP?[05:25:18] <neekfenwick_> i'm reading the README_FILES thing that mentions rbl, but this is my first time, so i'm slow :)[05:25:21] <Dominian> roe: unfortunately no[05:25:31] <Dominian> roe: I have yet to have a reason to use LDAP with postfix.. I need a reason though :[05:25:34] <Dominian> :)[05:26:00] <roe> well you know have one....to help me figure out some ACL weirdness[05:26:07] <Dominian> ha[05:26:18] <Dominian> not at 11:30PM at night and beer in my veins[05:26:23] <Dominian> you'd find yourself hurtin'[05:27:20] <Dominian> I think I have a spider running around here trying to bite me..[05:27:25] <Dominian> he's going to get piss drunk if he does[05:28:14] <rob0> with great power comes great responsibility ;)[05:28:32] <Dominian> :)[05:29:59] <Dominian> neekfenwick_: You've become quiet...[05:30:02] <Dominian> too quiet...[05:30:15] <neekfenwick_> ah, you do care :P yeah i'm still getting connects[05:30:23] <neekfenwick_> trying to grok the new logging to see if rbl is having any effect[05:30:40] <Dominian> Just tail -f[05:30:43] <neekfenwick_> frikking whoisbyip service is under heavy load and not working for me[05:30:46] <Dominian> you'll KNOW if it is[05:30:56] <neekfenwick_> well, no, it hasn'thelped then[05:32:00] <neekfenwick_> maillog starts to mention rbl stuff at the right time, so it took effect, but at least some nasties are still talking to me[05:32:05] <rob0> If it's non-verbose, you'd see connect, reject, disconnect for anything on Zen. Might see more than one reject if the spammer has more than one address for you.[05:33:46] <neekfenwick_> i don't see any connect,reject,disconnect patterns at all[05:34:25] <neekfenwick_> but the log is swamped with 'your mail is spam' tpye responses from various servers, hotmail, yahoo, etc[05:34:38] <neekfenwick_> i've been blacklisted by them, in other words.. all good, but doesn't help me[05:34:39] <rob0> sounds like you queued some[05:35:17] <rob0> You being rejected means YOU are connecting out, not that anyone connects to you.[05:35:36] <neekfenwick_> i see infrequest 'connect from' and a shit load of rejections, so i think a single connect from Mr Bad Guy is causing a lot of send attempts via me.. they don't seem to apepar in mailq[05:35:40] <neekfenwick_> yes[05:35:55] <Dominian> rob0: i asked if he could track down the original source[05:36:00] <Dominian> rob0: his mynetwork is 127.0.0.1[05:36:01] <rob0> not in mailq, why?[05:36:03] <Dominian> with no relay_domains[05:36:28] * rob0 suspects a compromised PHP script[05:36:43] <neekfenwick_> i normally connect to this VPS via thunderbird on port 25[05:36:45] <Dominian> that was my guess as well[05:36:59] <neekfenwick_> let me check my httpd config/webroot for dodgy scripts[05:37:07] <rob0> Running httpd+PHP?[05:37:50] <rob0> That would mean that the connection came in via port 80, and that spammer is using you as a spam source.[05:38:25] <neekfenwick_> i can't see anything in my web root that's changed in 60 days[05:38:36] <neekfenwick_> i do have a mediawiki install but it's up to date[05:39:33] <rob0> Look at one or two of the ones you had rejected by yahoo et al, trace back in logs to where it came in.[05:39:58] <neekfenwick_> this maillog is driving me crazy, i haven't managed to trace anything yet[05:40:12] <neekfenwick_> i don't understand the postfix/smtpd /smtp /qmgr pids that i'm seeing[05:40:14] <rob0> yeah, verbose will do that, bad idea[05:41:21] <neekfenwick_> those docs didn't really tell me what to do re: turning off verbose loging[05:41:32] <neekfenwick_> i uncommented debug_peer_list=127.0.0.1[05:41:42] <rob0> !verbose[05:41:42] <knoba> rob0: "verbose" : You probably do not need verbose logging, but in rare cases the extra detail can assist in debugging. To set verbose logging add a -v after the command name (such as smtpd) in master.cf, then 'postfix reload' after that.[05:41:54] <neekfenwick_> ah[05:41:59] <rob0> you had to have turned it on originally ...[05:42:21] <neekfenwick_> ok, it's on for smtpd.. turning off[05:44:52] <aditsu> grrrrr I can't use different headers in conditions[05:45:35] <rob0> aditsu, correct, a condition only evaluates one header.[05:45:35] <neekfenwick_> ok.. some fresh maillog: http://scsys.co.uk:8002/50197[05:45:40] <rob0> !goal[05:45:41] <knoba> rob0: "goal" : describe your goal, not what you think the solution is[05:46:53] <aditsu> rob0: yes, I'm trying to do header checks based on subject and "to"[05:47:19] <aditsu> rob0: e.g. if subject contains "foo" AND it's sent to "bar", then redirect to "baz"[05:47:36] <aditsu> rob0: how can I do that?[05:49:36] <aditsu> I was trying with if..endif, but the header checked in the if condition has to be the same as the header checked between if and endif[05:50:01] <aditsu> which makes it kinda useless[05:54:12] <rob0> Use a content filter or a MDA.[05:55:51] <rob0> neek, if all those qmgr messages are not showing in mailq, maybe you are rooted.[05:56:46] <aditsu> rob0: such as a sieve filter in dovecot?[05:57:08] <aditsu> or still something in postfix?[05:57:51] <roe> deliver is the MDA and sieve is the filtering method for deliver[05:57:52] <rob0> neek, still remains for you to trace some of those back to origin. Open the log in a pager and search for the queue ID, then track back to the "connect from" ... or if it's pickup(8), you know you are in trouble.[05:58:04] *** fbh has quit IRC[05:58:04] *** fbh has joined #postfix[05:58:21] <neekfenwick_> rob0: ok.. these are all new tricks to me :) will have a look[05:58:39] <neekfenwick_> i'm looking into upgrading postfix from centosplus (with care, cause that's a dangerous repo to enable freely)[05:58:40] *** lifeofguenter has quit IRC[05:59:08] <rob0> Postfix's own MDAs local(8) and virtual(8) cannot do what you want, but it would be simple in procmail(1) for example.[05:59:15] <neekfenwick_> by 'queue ID' do you mean the pid of qmgr?[06:00:02] <rob0> Sep 7 04:49:28 vps11530 postfix/smtp[14256]: D18286858B53: host f.mx.mail.yahoo.com[98.137.54.237] refused ...[06:00:12] <rob0> D18286858B53 is the queue ID[06:00:15] <neekfenwick_> ahh[06:01:18] <aditsu> rob0: ok I'll try to write a sieve filter then[06:06:04] <neekfenwick_> rob0: weird, i can't trace any queueID back to a connect[06:06:21] <neekfenwick_> my log hasn't rotated, so it's not that[06:06:39] <neekfenwick_> are you sure the queueid would be on the same line as a connect statement?[06:09:50] <rob0> I am sure it would NOT be. Reread, and find examples in your own logs.[06:10:44] <rob0> "...search for the queue ID, then track back to the 'connect from'..."[06:11:40] *** ghobad_ has joined #postfix[06:13:26] <neekfenwick_> rob0: maybe i'm being dense.. the queue IDs are reported by postfix/smtp and /qmgr .. while the connect is reported by smtpd.. so what piece of info do i use to track back from a queue id to the connect?[06:18:23] <rob0> Are you saying that you found no other reference to "D18286858B53" in all your logs?[06:19:40] <neekfenwick_> after restarting postfix, i see only attempts to send mail out using that ID .. nothing seems to connect and quote that ID on teh same line[06:20:20] <neekfenwick_> that id does seem to exist across postfix restarts[06:21:08] *** superbofh has joined #postfix[06:21:24] <neekfenwick_> i can't find a connect, but it's possible i deleted the maillog with the connect in it, because i had debu gon and it filled my disk to 100%[06:21:39] <rob0> Postfix does not create spam, unless it was a bounce. It had to come from somewhere. And if it was a bounce, there was an original mail ... ah, deleted log, well sucks to be you. :([06:21:42] <neekfenwick_> i think i can't find recent id's either, though.. let me try one[06:22:07] <rob0> Looks like you are learning some hard lessons the hard way.[06:22:15] <seekwill> :D[06:22:38] <neekfenwick_> let me check - a queue id will appear in maillog even across postfix restarts, even if mailq reports it's always empty?[06:24:08] <neekfenwick_> i'm learning that my VPS company installed an insecure postfix for me with verbose logging turned on[06:24:32] <rob0> Sounds like you want a refund.[06:24:53] <seekwill> heh[06:25:08] <seekwill> Who's the VPS?[06:25:17] <rob0> maybe you're rooted ... maybe it's some non-Postfix mailq(1) ...[06:25:40] <neekfenwick_> http://www.webhosting.uk.com/ . i do pay them peanuts[06:25:41] <rob0> but indeed, I would not pay for crap that was installed like that.[06:25:59] <neekfenwick_> i opted not to take the cPanel/WHM package, and their support guys don't know how to sysadmin a server without those tools[06:26:25] <seekwill> I wouldn't pay for those packages ...[06:27:03] <neekfenwick_> seekwill: who would you recommend? i wanted a UK based host for the slightly better ping time, but perhaps that's entirely academic[06:27:18] <seekwill> I unfortunately don't know of any UK VPS's[06:28:08] <neekfenwick_> i went with http://www.eapps.com/ for a while, they seemed ok but i got no real experience of their service[06:28:19] <seekwill> I used both Linode and Slicehost (slicehost is a subsidiary of Rackspace)[06:28:34] <seekwill> But as far as I know, they are all in the US[06:28:45] <seekwill> Service has been exceptional[06:29:23] <neekfenwick_> cool[06:30:15] <neekfenwick_> but back to postfix :) not sure you answered.. i'm seeing queue id's in the log, after a restart, that i don't see connect.. so are they persistent across restarts, or does that indicate something weird going on?[06:30:52] <seekwill> Messages stuck in your spool?[06:31:13] <rob0> Linode has UK.[06:32:03] <rob0> A queue ID is assigned when mail enters Postfix. It is unique during the time Postfix has it.[06:32:15] <neekfenwick_> /var/spool has mqueue, mail, clientmqueue, but nothing's building up in any of them[06:32:38] <rob0> < rob0> maybe you're rooted ... maybe it's some non-Postfix mailq(1) ...[06:32:56] <seekwill> rob0: You forgot to paste the timestamp...[06:33:13] <rob0> 04:31 UTC[06:33:17] <neekfenwick_> don't think i'm rooted, master.cf does no chrooting[06:33:52] <rob0> "rooted", which here means, your system has been penetrated and an attacker has gained root access[06:33:55] <neekfenwick_> hmm. rpm -qf /usr/bin/mailq reports both postfix and sendmail[06:34:10] <neekfenwick_> ah, that kind of rooted[06:34:14] <rob0> In .AU slang I understand "rooted" has a similar meaning.[06:34:22] <neekfenwick_> yeah, i normally like a good root[06:35:24] <neekfenwick_> i thought ps would show some nasty processes, and/or top activity .. i've seen that before when one of our hosts was invaded after the guy took his laptop to china and they installed some search engine friendly .php scripts in our web root[06:35:57] <neekfenwick_> for this host, i have kept the secure password, and use ssh with secure key pairs for access,, so i don't think i'm rooted[06:36:05] <rob0> If rooted, one of the first things to replace is ps[06:36:20] <rob0> (for an attacker to replace)[06:36:26] <neekfenwick_> yeah[06:37:26] <seekwill> neekfenwick_: _only_ ssh keys?[06:37:29] <neekfenwick_> things may have improved.. maillog mostly shows just connect/disconnect stuff[06:37:50] <neekfenwick_> seekwill: do you mean, do i use username/password auth anywhere?[06:37:50] *** JoKoT3 has quit IRC[06:38:10] <seekwill> neekfenwick_: I mean, do you only allow key access? If they don't use an ssh key, they cannot get access?[06:38:22] <seekwill> Or can people still use password auth?[06:38:30] <neekfenwick_> maybe i should rpm -e sendmail and reboot, in case mailq is bogus[06:38:32] <seekwill> (not like it really matters)[06:38:45] <neekfenwick_> i imagine they can still use password[06:39:30] <neekfenwick_> i wouldn't want to completely lock myself out, if my keys get corrupt or, and you'll like this, the VPS host needs access.. they sometimes connect, although it's usually via the local console i.e. instant root[06:39:41] <rob0> Find out how your OS manages multiple MTAs, and ensure you have the right mailq symlink.[06:39:52] <seekwill> neekfenwick_: heh[06:40:01] <neekfenwick_> i've stopped giving the online support guys the root password, though they still ask for it now and then, claiming they cannot do the job otherwise.. based in India, I believe, without console access[06:40:08] <rob0> then, look at mailq and delete the spams[06:40:16] <rob0> yikes[06:40:40] <seekwill> neekfenwick_: 1.) Lock yourself out? Allow multiple keys. A good VPS would be able to give you console access (Linode and Slicehost provide a web front end to a console). Giving your VPS provider root access??? yikes.[06:40:50] <seekwill> neekfenwick_: Local console is not "instant root"[06:41:26] <neekfenwick_> hmm, well i spoke with a more informed UK guy one time, he said he got on as root from the VPS master (i.e. host), he can switch into root on my VPS without password/whatever[06:41:30] <seekwill> neekfenwick_: Why are you letting them do stuff? It doesn't sound like a VPS is a proper solution for you[06:41:32] <neekfenwick_> i've never seen it done, so cannot comment[06:42:10] <neekfenwick_> we had trouble on my client's machine, the one that was invaded.. i wanted to show them the top activity (load average over 100) and see if they wanted to take any actions[06:42:21] <neekfenwick_> they pretty much offered to reinstall and ignored my requests that they learn from our invasion[06:42:25] <seekwill> We'll talk about this later. Probably best to figure out what's going on with your email :)[06:42:27] <rob0> Only once did I ever give root access to a support guy, and that was Digium (asterisk), so I know they were competent and trustworthy. Even so, I watched the whole session in screen.[06:42:42] <neekfenwick_> rob0: screen, good idea[06:43:04] <aditsu> great, now I got a mail forwarding loop x_x[06:43:08] *** xpeed has quit IRC[06:43:23] <neekfenwick_> aditsu: is spamming himself! :)[06:43:39] <aditsu> actually the email doesn't get delivered at all[06:43:51] <aditsu> just gets returned to sender[06:43:52] <seekwill> Even better![06:44:05] <neekfenwick_> aditsu: just punning :) if anyone's going to email me against my wishes, i'd rather it was me[06:45:10] <neekfenwick_> ah. w00t. removed sendmail.. /usr/bin/mailq is symlinked via alternatives to postfix one.. now mailq shows a shed load of messages[06:45:14] <neekfenwick_> progress[06:45:35] <neekfenwick_> i'm smiling for the first time in hours[06:45:43] <seekwill> :D[06:45:51] <aditsu> so I'm redirecting the email to an alias that forwards to several addresses, including the original receiver[06:46:50] <aditsu> do I need another alias of "all of them except me"? (or redirect individually to the others)? or is there a smarter way?[06:47:40] <aditsu> hm... maybe if I can modify the subject so it doesn't match the filter?[06:48:43] *** Dessa has joined #postfix[06:48:44] <neekfenwick_> postsuper: Deleted: 133764 messages[06:49:15] <aditsu> or even better, custom header[06:50:15] *** Dessa has quit IRC[06:50:51] <rob0> And we'll never know where any of those came from, or if you're still vulnerable.[06:52:06] <neekfenwick_> rob0: i kept a gz of the log that filled my system locally, though i think i did lose some logs.. the main attack that filled my maillog was saved, i just deleted a second maillog the next time it filled up.. by then the queu was already probably well loaded[06:52:30] <neekfenwick_> frankly though it's probably a waste of time going through the maillog, and i don't have skills/time[06:54:05] <neekfenwick_> i'm still being attacked.. now that mailq is empty (really empty, not sendmail empty but postfix full) maillog shows lots of connect..NOQUEUE sequences .. many many NOQUEUE's[06:54:35] *** Dessa has joined #postfix[06:54:58] <neekfenwick_> my server must still be on the spammer's "usable relay" list, and will be hammered for some time, i imagine, before they give up[06:55:26] <aditsu> pfft, editheader is not available[06:58:46] <neekfenwick_> rob0: by the way, i still don't know if/why i was vulnerable.. i was running sendmail a few days ago.. could the sendmail queue have been filled, then i switched to postfix, and postfix continued to try to deal with the queue left over from sendmail?[06:58:52] *** henriknj has joined #postfix[06:59:58] <neekfenwick_> oh, wait, fresh spam in mailq.. i'll trace the queue id as you said earlier[07:00:16] <rob0> nope, queues are not interchangeable[07:00:51] <rob0> paste the first line with the spam's queue ID here, is it smtpd or pickup?[07:00:53] <neekfenwick_> postfix/smtpd[20070]: 5216A33A80AC: client=unknown[96.44.177.18][07:01:03] <neekfenwick_> later, that queueid is rejected from hotmail[07:01:10] <rob0> ok, pastebin the whole thing coming in[07:01:44] <neekfenwick_> there's a LOT of log.. should i filter by smtpd pid, or queue id, or do you really want it all?[07:02:03] <rob0> !relevant_logs[07:02:04] <knoba> rob0: "relevant_logs" : Relevant logs are mail.* syslog entries which show the entire handling of a single mail which illustrates the problem you are seeing. Random selections from your mail log might not do. IMAP/POP3 daemons and external delivery agents typically log to the same facility (mail); those are usually not relevant here.[07:02:34] <neekfenwick_> well ok. lets see how big this sucker is[07:02:42] <rob0> it would be connect, that line, from and to, and then the smtp(8) line where hotmail rejected you, that is NOT a lot.[07:04:01] <rob0> oh, and a qmgr(8) line before smtp[07:04:43] <neekfenwick_> 1425 lines in between[07:05:03] <neekfenwick_> i'm being hammered by lots of spammers, remember? :)[07:05:45] <neekfenwick_> i'll pastebin it[07:08:39] *** Dessa has quit IRC[07:08:39] *** Dessa has joined #postfix[07:09:08] <rob0> pick through it, do you expect me to do it for you?[07:09:54] <neekfenwick_> rob0: http://filebin.ca/srxkwu/maillog_snippet.gz .. sorry, i thought you were interested in who was spamming me? i'll struggle through if you like[07:10:19] <neekfenwick_> 5216A33A80AC was the queue id .. it actually appears as 'relay denied' in the log between the connect and the Hotmail line[07:11:11] <neekfenwick_> this is with the "reject_rbl_client zen.spamhaus.org" in main.cf .. i'll go look at their website, see if i can figure why this ip wasn't blocked[07:15:55] <rob0> Sep 7 06:04:19 vps11530 postfix/qmgr[19950]: 5216A33A80AC: from=<ozgiuwf at return dot pec.pchome.com.tw>, size=2542, nrcpt=22 (queue active)[07:16:11] <rob0> 22 recipients!![07:16:32] *** root has joined #postfix[07:16:47] *** root is now known as Guest46753[07:16:51] <neekfenwick_> yeha, mailq shows most of the 10 or so that got in before i stopped postfix have about 15 recipients on average[07:19:05] <rob0> best guess would be that the spammer auth'ed[07:19:37] <neekfenwick_> the spamhaus website shows that ip (96.44.177.18) in not in any block lists[07:19:56] <neekfenwick_> so how do i tell what auth the spammer is using? put smtpd back into -v?[07:21:03] <rob0> $ fgrep 96.44.177.18 maillog_snippet | wc[07:21:04] <rob0> 672 9363 107003[07:21:22] <rob0> put that in debug_peer_list[07:21:42] <rob0> but damn, I would just pull the plug and talk about getting a refund[07:23:30] <Guest46753> Hi all,[07:23:31] <Guest46753> I want to reimplement attachment mechanisem in postfix source code.[07:23:31] <Guest46753> I want to khow that attachment exist in which component of source code of postfix?[07:23:31] <Guest46753> anyone can help me?please.[07:26:33] *** rajijoom has joined #postfix[07:28:57] <rob0> First off, IRC as root is a bad idea. You should only use root for system administration.[07:29:51] <rob0> Second, no, Postfix does not create attachments, a MUA does that. They are MIME-encoded and sent as part of the message DATA.[07:30:51] <rob0> Postfix (cleanup(8) I think) has limited understanding of MIME, via a mime_header_checks feature.[07:30:57] <rob0> !mime_header_checks[07:30:57] <knoba> rob0: "mime_header_checks" : a configuration parameter in the main.cf: Optional lookup tables for content inspection of MIME related message headers, as described in the header_checks(5) manual page.[07:31:40] * roe roots rob0[07:31:43] <rob0> I would suggest that you learn more basics about how email works before you try to change Postfix source code.[07:31:52] <roe> haha[07:31:57] <roe> yes, that is probably wise[07:32:05] <roe> sorry didn't mean to laugh[07:32:25] <Guest46753> thank you so much .[07:32:30] <rob0> yw[07:36:46] <rob0> afk[07:39:29] <ghobad_> Hi all,[07:39:29] <ghobad_> I want to know labeling mechanisem does in postfix or MUA?[07:39:30] <ghobad_> anyone can help me? thanks[07:39:52] <roe> labeling?[07:40:55] <ghobad_> roe hmmmm, marking an emial by a custom flag[07:41:03] <ghobad_> *email[07:41:12] <roe> based on what?[07:42:49] <ghobad_> roe what do you mean by that ? i want to create a functionality like gmail label inside of my mail system (mail server +webmail) an i think of implement the labels by flags[07:43:15] <roe> ah that is much clearer[07:43:49] <ghobad_> roe so can you guide me ?[07:44:01] <roe> I don't know of anything that works *exatly* like gmail's labels[07:44:53] <roe> but the closest thing I know of would be provided by the MDA[07:45:12] <roe> something like maildrop, procmail, sieve[07:45:59] <ghobad_> roe aha , and one more to go , does mail attachment s handled via MDA?[07:46:24] <ghobad_> *attachments[07:46:36] <roe> what does that mean?[07:48:36] <ghobad_> roe, hmmmmmmmm i mixed up with mail attachments and its handler inside a mail server , which components handle the attached files? MTA or MTU or MDA?[07:49:07] <roe> I still don't understand the question[07:49:19] <roe> and I don't know what MTU is[07:49:28] <roe> other than Maximum trasmit unit[07:49:34] <roe> which has nothign to do with mail[07:49:50] *** passthru has quit IRC[07:50:07] <ghobad_> mail transport agent, as postfix[07:50:17] <roe> that is MTA.[07:50:31] <roe> what is MTU?[07:50:51] <ghobad_> ohh, sorry,[07:51:21] *** passthru has joined #postfix[07:51:22] <ghobad_> i mean MUA, not MTU[07:51:57] <roe> ah, ok. what is your actual goal, because asking a vague and unintelligible question isn't going to get you very far[07:54:10] <ghobad_> attachment is postfix duty, or MUA duty(as courier-IMAP)?[07:54:32] <ghobad_> I mean storage attachment?[07:54:45] <roe> ah ha![07:54:53] <roe> all email is stored in a mailstore[07:54:57] <roe> !mailstore[07:54:58] <knoba> roe: Error: "mailstore" is not a valid command.[07:55:02] <roe> !mail_store[07:55:03] <knoba> roe: Error: "mail_store" is not a valid command.[07:55:06] <roe> !maildir[07:55:06] <knoba> roe: "maildir" : a mailbox format introduced by qmail where emails are saved as individual files in a directory structure rather than into a single flat text file. Postfix settings like !home_mailbox and !virtual_mailbox_maps will allow delivery to maildir if the path value returned ends in /[07:55:12] <roe> !mbox[07:55:12] <knoba> roe: Error: "mbox" is not a valid command.[07:56:05] <roe> the MTA sends the message, attachement and all, to the mailstore, and the imap server accesses the mailstore for the user[07:57:50] <ghobad_> ok, thank you[07:59:02] *** nokia3510 has quit IRC[08:00:55] <ghobad_> I want to know that, how MUA(as courier-imap) create mail folders in ~/Maildir/ ?[08:06:27] <joschi> ghobad_: Courier IMAP is not a MUA[08:06:46] <joschi> ghobad_: and creating the Maildir directory is usually the MDA's job[08:07:06] <joschi> ghobad_: ie. Postfix's virtual(8) and local(8) MDAs can do that[08:11:46] <ghobad_> when I use kmail and courier-imap and postfix, and I use courier-imap command :"maildirmake -f 'folder name' Maildir" in ~/, for create mail folder, what happen?[08:14:15] *** mandragor has joined #postfix[08:17:33] *** Matic`Makovec has joined #postfix[08:20:30] <Guest46753> I have same question,anyone can reply to ghobad_?please.[08:23:41] *** mandragor has quit IRC[08:23:44] *** weedar has joined #postfix[08:26:03] <joschi> and very surprisingly, ghobad_ and Guest46753 have the same IP address. bugger.[08:29:01] <denysonique> joschi, maybe two friends connecting from the same network ;)[08:29:03] <Guest46753> oh yes,how you get it?we are in one company.[08:29:55] <Guest46753> but still waiting for your responses.[08:32:41] <aditsu> ghobad_: it probably creates a folder?[08:33:30] *** bhagat has joined #postfix[08:34:11] <ghobad_> yes,[08:35:50] <ghobad_> this folder add in ~/Maildir/."foldername that inter as parameter in maildirmake command"[08:37:44] <ghobad_> I want to know, courier-imap directly do this, or request to postfix to do[08:40:23] <denysonique> when you create a new folder using kmail over imap, courier-imap is the one that creates the folder[08:42:07] <ghobad_> you mean, postfix not any role in create this folder?[08:42:27] <denysonique> no[08:42:45] <denysonique> postfix does not create this folder[08:42:55] *** nokia3510 has joined #postfix[08:42:56] <denysonique> ghobad_, to test. stop postfix and create a new folder[08:43:00] <denysonique> it will work[08:43:12] <denysonique> ghobad_, then stop imap and try to do this. it will not work[08:43:39] <ghobad_> thank you,[08:46:03] <denysonique> ghobad_, np[08:48:04] <ghobad_> but, flags that add to message names exist in this directory "~Maildir/cur" , do by courier-imap?[08:49:23] *** Matic`Makovec has quit IRC[08:50:33] <ghobad_> for example, "2,S" flag, that mean , message seen[09:00:25] <rcsheets> good morning.[09:02:18] *** nokia3510 has quit IRC[09:06:10] *** jeremymcs has quit IRC[09:06:33] *** fOrsberg is now known as forsberg[09:10:47] *** denis_ has joined #postfix[09:14:30] <jdoe> question about STANDARD_CONFIGURATION_README, the secondary mx section...[09:14:49] <jdoe> shouldn't that be the other way around? It's the backup that needs the transport map[09:15:55] *** cga has joined #postfix[09:17:07] <Aprogas> The backup MX can rely on MX records to find the primary MX and doesn't need a transport map per se.[09:17:26] <joschi> jdoe: "When your system is PRIMARY MX host for a remote site *you need the above [describing the configuration of the backup MX], plus*: [transport map configuration]"[09:19:41] *** kervel has quit IRC[09:23:17] *** niki has quit IRC[09:25:58] *** henriknj has quit IRC[09:55:52] *** juergen_dose has joined #postfix[09:56:26] *** juergen_dose is now known as car[09:56:58] *** brancaleone has joined #postfix[09:57:03] *** henriknj has joined #postfix[10:03:16] *** Guest46753 has quit IRC[10:05:15] *** aditsu has left #postfix[10:09:48] *** _W_ has quit IRC[10:09:59] *** spc has quit IRC[10:10:17] *** ^octodick^ has joined #postfix[10:10:41] *** Emoteleco has quit IRC[10:10:42] *** spc has joined #postfix[10:11:46] *** _W_ has joined #postfix[10:12:50] *** weedar has quit IRC[10:18:28] *** jeremymcs has joined #postfix[10:22:26] *** jim--- has quit IRC[10:23:20] *** neekfenwick__ has joined #postfix[10:25:23] *** car has left #postfix[10:26:37] *** neekfenwick_ has quit IRC[10:37:00] *** e-jones has joined #postfix[10:46:00] *** LouB has joined #postfix[10:48:25] <LouB> hi! can it be possible, that mails to unknown users are rejected when using local delivery/system users, but are bounced, if i use virtual?[10:50:49] <Aprogas> Yes, it is possible, but probably a wrong configuration.[11:09:00] *** henriknj has quit IRC[11:14:17] <LouB> which parts of the config would affect such a behavior? (im using the dovecot delivery agent and dovecot auth.. postfix says "status=bounced (user unknown)")[11:14:49] *** UQlev has joined #postfix[11:17:45] *** nokia3510 has joined #postfix[11:18:46] *** juergen_dose has joined #postfix[11:19:03] *** juergen_dose is now known as car[11:19:56] *** car has quit IRC[11:20:55] <LouB> this is my config btw.. http://pastebin.com/1ssa7ZX7[11:21:49] <LouB> the problem is not, that the mail is not delivered, but that it is bounced instead of rejected[11:23:49] *** makomi has joined #postfix[11:24:36] *** juergen_dose has joined #postfix[11:24:52] *** juergen_dose is now known as car[11:25:40] *** master_of_master has quit IRC[11:27:21] *** master_of_master has joined #postfix[11:29:06] *** niki has joined #postfix[11:32:35] *** makomi has quit IRC[11:34:17] *** cpm has joined #postfix[11:52:29] *** shal3r has joined #postfix[11:56:33] *** denis_ has quit IRC[11:58:43] <sysmonk> LouB: you'd better add some more information (log file to be more specific)[12:04:12] * cpm specifies sysmonk[12:07:28] *** navaki has joined #postfix[12:07:59] *** lennard has quit IRC[12:09:41] *** denis_ has joined #postfix[12:10:33] *** lennard has joined #postfix[12:10:37] *** r00t3d has joined #postfix[12:11:06] <navaki> Hi all, anyone can tell me how to configure the dovecot ?thanks.[12:11:31] <Trengo> there's an excellent #dovecot channel[12:11:43] *** Twinkletoes has joined #postfix[12:11:49] <Trengo> it's just, you know, somewhere else[12:12:05] *** navaki has quit IRC[12:12:20] <r00t3d> Hi, I configured a server as a antispam gateway using postfix. Now how can I make this server act as a gateway? What's the best choice? I want all the inboding email traffic come to my postfix antispam gateway, then I want to redirect it to my mail servers. How is this possible? Any help is appreciated, thanks.[12:12:20] *** navaki has joined #postfix[12:12:37] <r00t3d> s/inboding/inbound[12:13:18] <LouB> this is the logfile http://pastebin.com/fSaTP1mE .. i actually just what to reject mails to unknown users instead of bouncing them..[12:16:09] *** henriknj has joined #postfix[12:16:59] <LouB> i think rejecting unknown recipients only works with users of the local domain (not virtual) is that true?[12:17:04] <r00t3d> !help[12:17:05] <knoba> r00t3d: (help [<plugin>] [<command>]) -- This command gives a useful description of what <command> does. <plugin> is only necessary if the command is in more than one plugin.[12:18:20] *** denis_ has quit IRC[12:22:25] <dragonheart> !tell r00t3d basic[12:22:25] <knoba> r00t3d: "basic" : http://www.postfix.org/BASIC_CONFIGURATION_README.html : a good starting place for Postfix beginners, many common questions are answered here.[12:22:27] *** navaki has quit IRC[12:27:46] <UQlev> r00t3d: what are your other mailservers and how many?[12:30:01] <r00t3d> UQlev: I have 2 mailservers and they are Windows machines running MailEnable[12:31:14] <UQlev> r00t3d: where will be your IMAP server?[12:32:46] <r00t3d> UQlev: IMAP is running on Windows mail servers[12:36:14] <Aprogas> One drawback to postfwd, no IPv6-support (no built-in workaround like policyd-weight has either).[12:41:04] <UQlev> main drawback is to run 3 servers instead of 1[12:42:31] <UQlev> problems = K * (number of servers)^2[12:48:17] *** LouB has left #postfix[13:10:47] *** UQlev has quit IRC[13:11:04] *** ghobad_ has quit IRC[13:12:18] *** higuita has quit IRC[13:15:02] *** higuita has joined #postfix[13:19:41] *** makomi has joined #postfix[13:21:49] *** denis_ has joined #postfix[13:22:47] *** saurabhb has joined #postfix[13:27:45] *** sphenxes has quit IRC[13:29:32] *** sphenxes has joined #postfix[13:30:26] *** makomi has quit IRC[13:34:08] *** saurabhb has quit IRC[13:36:14] *** loddafnir has joined #postfix[14:00:29] *** pinoyskull has quit IRC[14:05:25] *** car has quit IRC[14:06:13] *** juergen_dose has joined #postfix[14:06:14] *** bhagat has quit IRC[14:21:16] *** henn1nk has joined #postfix[14:23:58] *** Section1 has joined #postfix[14:25:20] *** juergen_dose has quit IRC[14:37:47] *** wdp__ has joined #postfix[14:41:01] *** wdp_ has quit IRC[14:42:58] *** juergen_dose has joined #postfix[14:46:30] *** Vivek has joined #postfix[14:46:31] *** Vivek has joined #postfix[14:47:51] <jelly> what's the most efficient way to implement a devnull at example dot org address?[14:48:53] <Aprogas> Do you really need one?[14:49:34] <cpm> jelly? Yeah, he probably does. Kinda how he is.[14:49:48] <Aprogas> local(8) can deliver to files, incl. /dev/null[14:49:57] <sysmonk> jelly: dev-null: /dev/null alias[14:49:58] <sysmonk> ;)[14:50:15] *** rajijoom has quit IRC[14:50:23] <rob0> send it all to cpm[14:50:29] <Aprogas> If example.org is a local domain, use local aliases; if not a local domain, do the same, but also use a virtual alias to rewrite it to a local address.[14:50:31] <cpm> or f3ew[14:50:39] <jelly> it's bugwards combatability, also a nice way to test throughput[14:51:24] <jelly> I'll need cpm's address in case I want to test outbound mail throughput[14:56:12] *** saurabhb has joined #postfix[14:56:57] <rob0> jelly at seepy-em dot org[14:57:14] <jelly> I thought it was pee, not pie.[14:57:41] <jelly> I probably prefer pie, though.[14:59:31] *** e-jones has quit IRC[15:01:13] *** r00t3d has quit IRC[15:02:46] *** henn1nk has left #postfix[15:03:22] <rob0> Lemon pie[15:05:08] *** karlgus has joined #postfix[15:05:11] *** e-jones has joined #postfix[15:12:42] *** jim_SFU has joined #postfix[15:14:48] <cpm> lemon curry?[15:16:08] *** karlgus has quit IRC[15:16:15] <rob0> And now for something completely different.[15:16:27] *** karlgus has joined #postfix[15:26:32] <cpm> brought to you by Carl Jr's.[15:27:37] *** UQlev has joined #postfix[15:30:12] *** grande has joined #postfix[15:30:48] *** grande has left #postfix[15:44:33] *** denis_ has quit IRC[15:45:11] *** ssureshot has joined #postfix[15:46:25] *** higuita has quit IRC[15:47:34] *** ssureshot has quit IRC[15:48:00] *** ssureshot has joined #postfix[15:49:36] *** dragonheart has quit IRC[15:49:50] *** higuita has joined #postfix[15:51:00] *** ssureshot has quit IRC[15:59:26] *** mandragor has joined #postfix[16:04:31] *** mandragor has quit IRC[16:06:40] *** bluethundr has joined #postfix[16:12:15] *** wdp__ is now known as wdp[16:12:20] *** wdp has quit IRC[16:12:20] *** wdp has joined #postfix[16:21:09] *** lifeofguenter has joined #postfix[16:23:14] *** jamesmacleod has joined #postfix[16:30:26] <madduck_> what am I overlooking when I have my client restrictions do check_client_access cidr:$conf_dir/whitelisted_clients.cidr before RBL, and yet, mails from whitelisted IPs still get caught in the RBL[16:30:38] *** jeremymcs has quit IRC[16:30:48] <madduck_> "554 5.7.1 Service unavailable; Client host [210.54 …" → suggesting it's a client-address-based reject[16:31:18] *** jeremymcs has joined #postfix[16:31:27] *** tharkun has joined #postfix[16:33:02] <sysmonk> madduck_: i think you overlooked the topic of this channel :)[16:33:37] <madduck_> sysmonk: sure… except my postconf -n would make wietse refuse to talk to me[16:33:39] <madduck_> ;)[16:33:53] <sysmonk> wietse is not here as far as i know[16:33:54] <madduck_> I am working on a new server, and don't want to trim down the config of this one, which has been working for 8 years…[16:34:04] <madduck_> I'll try then. ;)[16:34:45] <sysmonk> and logs, ofcourse[16:34:53] *** sphenxes has quit IRC[16:34:59] <cpm> errr, postfix configs have changed a bit in 8 years.[16:35:40] <madduck_> sysmonk: http://scratch.madduck.net/.tmp__script.madduck.10481.20100907.1640[16:35:44] <madduck_> cpm: yeah sure.[16:35:53] * f3ew looks[16:36:00] <madduck_> grrr[16:36:01] <madduck_> sec[16:36:17] *** shoonya has joined #postfix[16:36:37] *** sphenxes has joined #postfix[16:36:45] <madduck_> alrigth[16:38:27] <Aprogas> madduck_: What action does your .cidr file return?[16:38:43] <madduck_> "OK"[16:38:49] <madduck_> (the cidr file is included in the script too)[16:40:31] <madduck_> oh dear, typescript is useless for debugging. ;)[16:41:05] <Aprogas> I cannot find your whitelisted_clients.cidr in your postconf -n output.[16:41:05] <f3ew> smtpd_client_restrictions = submission check_client_access pcre:$conf_dir/greylist_dialups.pcre check_recipient_access pcre:$conf_dir/checks_recipient.pcre reject_rbl_client zen.spamhaus.org reject_rbl_client ix.dnsbl.manitu.net[16:41:07] <madduck_> and postconf -n does not include custom restriction classes[16:41:23] <f3ew> Is the whitelist in "submission"?[16:41:35] <madduck_> yes[16:41:52] <madduck_> submission = check_client_access cidr:$conf_dir/whitelisted_clients.cidr check_client_access regexp:$conf_dir/checks_client.pcre sleep 3, reject_unauth_pipelining permit_mynetworks check_ccert_access hash:$conf_dir/checks_ccerts.hash permit_sasl_authenticated[16:42:11] *** daguz has joined #postfix[16:42:27] <f3ew> # xtra.co.nz[16:42:27] <f3ew> 210.54.141.245[16:42:31] <f3ew> See the IP?[16:42:48] <f3ew> mta01.xtra.co.nz[210.54.141.254][16:42:59] <madduck_> NO WAY.[16:43:01] <madduck_> SERIOUSLY[16:43:07] <madduck_> I HAVE BEEN STARING AT THIS FOR 10 MINUTES[16:43:11] <madduck_> ;)[16:43:12] <cpm> heh[16:43:14] <cpm> yeah, happens[16:43:15] <madduck_> f3ew: thanks.[16:44:29] *** JonnyV has joined #postfix[16:51:27] *** karlgus has quit IRC[16:51:35] <madduck_> okay, at least they also changed their IP and I am not 100% stupid. ;)[16:52:27] <Aprogas> Are these the default settings of the new Debian package?[16:52:52] <madduck_> "these"?[16:55:06] *** karlgus has joined #postfix[16:55:46] <madduck_> Aprogas: I am not directly involved in postfix packaging, but I can guarantee you that Debian's postfix package will not grow more complex with its settings than what it has to offer right now, simply because there is no One True Way™ to do it.[16:57:24] *** karlgus has quit IRC[16:59:53] *** cga has quit IRC[17:00:11] <tharkun> madduck_: Adding as default procmail for an internet standing server is not precisely a good option for postfix[17:02:14] <madduck_> tharkun: well, there is no other way to set up proper spam filtering than using procmail, I found.[17:02:20] <madduck_> I'd gladly be proven wrong.[17:02:44] <madduck_> point being: I want even virtual users to have their own settings, editable via a web iface, and be able to train the bayesian filter[17:03:54] *** niki has quit IRC[17:04:32] <tharkun> madduck_: Please for the sake of sanity do seperate packages for each one of your "Ideas" some people do not share them with you. And it is a pain to rip them appart[17:04:57] <madduck_> tharkun: what are you talking about?[17:05:47] <tharkun> the ones you just mentioned and the ones allready in place on the postfix package and its dpkg-reconfigure options.[17:06:57] <madduck_> tharkun: read what I wrote at :02[17:08:05] <tharkun> madduck_: Sorry didn't mean to be rude.[17:08:50] <madduck_> you can be rude as much as you want, but at least read what others write. ;)[17:10:45] <tharkun> My English reading skills are very diminished at this early hour of the morning sans coffee ;P[17:11:12] <lunaphyte_> procmail is all but irrelevant at this point.[17:11:34] *** niki has joined #postfix[17:12:58] *** Panlflzs has joined #postfix[17:13:47] <lunaphyte_> if you find yourself compelled to use procmail, that is almost certainly a sure sign that you should rethink your strategy.[17:15:30] <Aprogas> "* $ $SPR^0" is a very logical way to specify "OR", I don't see what people have against Procmail.[17:16:13] <lunaphyte_> s/logical/intuitive/[17:16:56] * rob0 slips a shot of tequila in tharkun's coffee[17:17:40] <lunaphyte_> i had relatives visiting over the weekend and had to put up with the foul smell of coffee every morning for 3 days.[17:18:08] *** Ahroun has joined #postfix[17:18:47] * f3ew adjusts lunaphyte_'s nose[17:18:56] *** higuita has quit IRC[17:19:18] * f3ew wonders how far rob0 is from San Jose[17:19:19] <rob0> I like the smell of coffee, but I did quit drinking it.[17:19:42] <rob0> Does rob0 know the way to San Jose?[17:19:45] <lunaphyte_> i've never had it.[17:20:02] <rob0> f3ew, far, very far.[17:20:11] <f3ew> damn[17:20:22] * f3ew *may* be attending LISA[17:20:25] <f3ew> budget permitting\[17:20:34] <rob0> when?[17:21:14] *** higuita has joined #postfix[17:21:49] <rob0> November 7-12[17:21:58] <f3ew> http://www.usenix.org/event/lisa10/[17:22:11] <f3ew> feel free to sponsor :)[17:22:12] <rob0> yup, found it :)[17:24:46] <Ahroun> Question: Is it possible to redirect messages requesting relay to a local account such as I can with messages sent to non-existing users? I've tried googling various combinations of relay and redirect but never quite found that (mostly got pages with the redirect for non-existant users). Links to a howto would be great, but help would be cool too.[17:25:26] <lunaphyte_> how about a scolding for using catchalls?[17:25:54] <rob0> You mean, rather than "relay access denied" you want to say "ok"?[17:26:02] <f3ew> !luser_relay[17:26:02] <knoba> f3ew: "luser_relay" : a configuration parameter in the main.cf: Optional catch-all destination for unknown local(8) recipients. By default, mail for unknown recipients in domains that match $mydestination, $inet_interfaces or $proxy_interfaces is returned as undeliverable.[17:26:52] <rob0> I'm still not understanding the goal ... if it's what I think it is, it sounds insane.[17:27:01] <Ahroun> rob0: Not quite. I don't want to pass it on at all for actual delivery, I'd be okay with providing an access denied, but I'd still love to see the messages.[17:27:43] <lunaphyte_> why?[17:27:49] <rob0> Postfix rejects those at RCPT TO, so there is no message yet, but you have the envelope.[17:28:28] <rob0> You can be pretty sure that the envelope sender is a spammer-controlled account.[17:28:30] <Ahroun> rob0: Hrm. Good to know. Probably why I couldn't find anything about it in the documentation. Much obliged for the info.[17:28:51] <Aprogas> If you are very crazy, you could move all your recipient_restrictions to end_of_data_restrictions or something like that.[17:29:04] <Ahroun> lunaphyte: morbid curiousity, nothing more.[17:29:04] <Aprogas> But I will probably be tortured just for suggesting this.[17:29:25] <rob0> Aprogas, no, open-relay control is required at recipient restrictions.[17:29:34] <Ahroun> Aprogas: Very likely. Your sacrifice will be remembered fondly. ^>^[17:29:39] <lunaphyte_> Ahroun: i'd expend the energy on something more worthwhile.[17:29:40] <Ahroun> er, ^.^[17:29:46] <rob0> you could, of course, trick Postfix into not rejecting anything there[17:29:54] <Aprogas> rob0: You can easily bypass that, if you (don't) know what you're doing.[17:30:07] <rob0> right :)[17:30:18] <Aprogas> Will Postfix catch check_recipient_access static:OK[17:31:08] *** firojj has joined #postfix[17:31:09] <rob0> another such trick is mynetworks=0.0.0.0/1,128.0.0.0/1[17:31:33] <Aprogas> That would make mynetworks useless for end_of_data checking too.[17:31:50] <rob0> replace it with a check_client_access[17:32:53] <Aprogas> heh[17:33:08] *** juergen_dose has quit IRC[17:33:27] <Aprogas> Let's make a wiki, to combine all these bad ideas, into the Tutorial From Hell; and as a social experiment to see what a mailserver operated by crack-smoking monkeys would look like.[17:33:54] <rob0> lol, well, we sometimes see such mailservers right here! :)[17:34:58] * cpm whistles innocently[17:35:31] <Ahroun> Aprogas: I volunteer to be the crack-smoking monkey, if the research protocol has DEA approval and DEA provisioning of the crack. Otherwise, no dice. :([17:36:11] <Aprogas> Is there something between static:-table and a single-line file? e.g. check_client_access static:cidr:"::/0 OK"[17:39:59] *** jb has left #postfix[17:43:18] *** brancaleone has quit IRC[17:47:53] *** firojj has quit IRC[17:48:29] *** juergen_dose has joined #postfix[17:52:32] *** zamba has quit IRC[17:54:18] *** skeeved has joined #postfix[17:55:22] *** bluethundr has quit IRC[17:55:29] *** bluethundr has joined #postfix[17:55:34] *** firojj has joined #postfix[17:55:40] *** henriknj has quit IRC[18:02:14] *** henriknj has joined #postfix[18:03:21] *** robotarmy has quit IRC[18:04:32] *** robotarmy has joined #postfix[18:04:40] *** Ahroun has quit IRC[18:12:38] *** tjikkun has quit IRC[18:13:17] *** robotarmy has quit IRC[18:14:57] *** hparker has joined #postfix[18:15:28] *** robotarmy has joined #postfix[18:18:39] *** firojj has quit IRC[18:21:17] *** weedar has joined #postfix[18:22:25] *** Southron has left #postfix[18:23:01] *** rmayorga has quit IRC[18:26:29] *** firojj has joined #postfix[18:30:34] *** rmayorga has joined #postfix[18:30:34] *** rmayorga has joined #postfix[18:31:47] *** firojj has quit IRC[18:32:01] *** tjikkun has joined #postfix[18:34:02] *** JonnyV has quit IRC[18:36:44] *** weedar has quit IRC[18:36:46] *** mandragor has joined #postfix[18:39:28] *** firojj has joined #postfix[18:39:33] *** UQlev has quit IRC[18:40:12] *** lifeofguenter has quit IRC[18:40:24] *** sbathe_ has joined #postfix[18:40:41] *** saurabhb has quit IRC[18:45:46] *** e-jones has quit IRC[18:47:52] *** tjikkun has quit IRC[18:49:48] *** jamesmacleod has quit IRC[18:50:43] *** Twinkletoes has quit IRC[18:56:48] *** firojj has quit IRC[19:01:10] *** cga has joined #postfix[19:03:18] *** tjikkun has joined #postfix[19:04:24] *** firojj has joined #postfix[19:05:22] *** JonnyV has joined #postfix[19:11:01] *** uqlev has joined #postfix[19:16:57] *** rooky has joined #postfix[19:24:08] *** firojj has quit IRC[19:25:36] *** Panlflzs has left #postfix[19:26:19] *** karlgus has joined #postfix[19:29:34] *** jamesmacleod has joined #postfix[19:30:16] *** jamesmacleod has quit IRC[19:30:38] *** neekfenwick__ has quit IRC[19:32:00] *** firojj has joined #postfix[19:33:09] *** schnoobby has joined #postfix[19:35:08] *** firojj has quit IRC[19:36:23] *** jense_ has quit IRC[19:36:36] *** jense has joined #postfix[19:37:23] *** smica has joined #postfix[19:37:28] *** fahadsadah has quit IRC[19:42:34] *** fahadsadah has joined #postfix[19:42:53] *** firojj has joined #postfix[19:44:48] *** hparker has quit IRC[19:44:49] *** firojj has quit IRC[19:45:53] *** makomi has joined #postfix[19:46:35] *** makomi has quit IRC[19:46:40] *** karlgus has quit IRC[19:46:56] *** makomi has joined #postfix[19:50:32] *** shal3r has quit IRC[19:51:46] *** firojj has joined #postfix[19:54:14] *** Vivek has quit IRC[19:55:50] *** cga_ has joined #postfix[19:57:11] *** schnoobby has quit IRC[19:58:08] *** cga has quit IRC[19:59:18] *** firojj has quit IRC[19:59:56] *** firojj has joined #postfix[20:00:19] *** cga__ has joined #postfix[20:01:30] *** cga_ has quit IRC[20:05:40] *** cga__ has quit IRC[20:05:47] *** cga__ has joined #postfix[20:05:50] *** Vivek has joined #postfix[20:09:39] *** tab__ has joined #postfix[20:10:36] <tab__> what rule can i add to accept mail from a source that is an ip address instead of domain?[20:11:09] *** guenter_ has joined #postfix[20:12:01] *** guenter_ has quit IRC[20:12:19] *** lifeofguenter has joined #postfix[20:16:13] <Aprogas> tab__: Please be more specific. Can you provide an example of such a mail that isn't being accepted now?[20:16:55] <tab__> yup the source example would be 000 at 4 dot 4.4.4 and i get: 501 5.1.7 Bad sender address syntax[20:17:43] <Aprogas> I think using an IP-address as righthandside of an email-address is bad syntax.[20:18:23] <tab__> heh. is there any way i can permit bad syntax?[20:18:35] <tab__> its easier than modifying the application :P[20:18:51] <Aprogas> Please pastebin some postconf -n and relevant logs first.[20:18:59] <Aprogas> I'd like to make sure I understand what is going on.[20:19:03] <tab__> sure.[20:21:40] <adaptr> tab__: the RFC states unequivocally that IP literals are valid ONLY when properly delimited.[20:22:22] <adaptr> if some mail system sends you mail that comes from an IP literal address, tell them to fix their mail system[20:23:19] <tab__> what about user@ip?[20:23:30] <tab__> http://pastebin.ca/1935210[20:24:00] <adaptr> what did I just say ?[20:24:19] <tab__> heh :/[20:24:29] <tab__> this app isnt going to be easy to change sadly[20:24:35] *** Vivek has quit IRC[20:25:00] <Aprogas> Maybe the host on which the app runs simply has no hostname set, or has broken DNS, or something like that.[20:25:04] <adaptr> whoever wrote it deserves spankage[20:25:09] <tab__> haha[20:25:20] <adaptr> Aprogas: no, the app sets the sender address. a host never sets anything[20:25:42] <adaptr> you're confusing a random host with a host that has a mail server installed and functioning[20:25:56] <tab__> yeah, thats right.[20:26:00] <Aprogas> The app might try to set @hostname and failing that use @ipaddr with incorrect format; so fixing the hostname would workaround the broken ipaddr syntax.[20:26:02] <tab__> under normal circumstances this isn't an issue[20:26:19] <adaptr> we were already past the point where the app is braindead[20:26:32] <tab__> its interesting that gmail supports receiving email from ip addresses[20:26:46] <adaptr> tab__: you didn't understand what I said earlier, did you ?[20:26:54] <tab__> its possible i dont[20:27:58] <Aprogas> !tell tab__ resolve_numeric_domain[20:27:58] <knoba> Aprogas: Error: No factoid matches that key.[20:28:49] <adaptr> whut ?[20:29:07] *** VaNNi has quit IRC[20:29:25] <tab__> apparently knoba doesnt know either[20:29:31] <tab__> so i'm not the only one :P[20:29:41] <adaptr> it's not a configuration option[20:29:52] *** VaNNi has joined #postfix[20:30:10] <Aprogas> It is according to postconf.5.html[20:30:38] <Aprogas> It is mentioned in trivial-rewrite.8.html too.[20:30:58] <adaptr> !resolve_numeric_domain[20:30:59] <knoba> adaptr: Error: "resolve_numeric_domain" is not a valid command.[20:31:38] <adaptr> This feature is available in Postfix 2.3 and later.[20:31:44] <adaptr> guess the factoids need updating[20:31:57] <adaptr> anyway, it's Bad, but apparently doable[20:32:09] <Aprogas> Several factoids are missing actually, but they don't often come up.[20:32:20] <adaptr> note that an IP literal is also valid when passed as <joe at 1 dot 2.3.4>[20:32:35] <adaptr> as long as it is delimited in such a way that it cannot be mistaken for anything else[20:32:46] <Aprogas> Isn't < and > also RFC-mandatory?[20:32:51] <adaptr> yes and no...[20:33:01] <Aprogas> < is and > isn't? :)[20:33:15] *** cga__ is now known as cga[20:33:29] <adaptr> it is mandatory for the address if the friendly name contains whitespace[20:33:42] <adaptr> but that's a gray area, os might as well say "yes"[20:33:56] <adaptr> read the RFC some day for fun and games![20:38:10] *** juergen_dose has left #postfix[20:40:01] *** higuita has quit IRC[20:41:22] <Aprogas> I cannot figure out how to feed knoba doublequotes as a literal.[20:42:14] <Aprogas> Signum: how do I escape or encapsulate a string with double-quotes so they remain intact in the factoid?[20:42:15] <adaptr> you shouldn't be feeding the bot at all![20:42:20] *** higuita has joined #postfix[20:43:32] <adaptr> I can't even teach him a single thing, go figure[20:45:02] *** schnoobby has joined #postfix[20:46:22] *** firojj has quit IRC[20:50:56] <Aprogas> A space followed by double-quotes becomes more spaces. Double-quotes not following a space, don't get converted nor disappear.[20:53:22] <Aprogas> knoba also seems to think [ipaddress] is intended as a command.[20:53:34] <Aprogas> !tell [adaptr] welcome[20:53:35] <knoba> "adaptr" : The smiting hand (or actually, small shell script) of #postfix. Not to be trusted.: "welcome" : welcome to #postfix! if you're joining for the first time, or are new to irc, the first thing you'll want to do is read the channel topic (/topic). it includes crucial instructions on how to effectively ask for help here, and what data you should include with your questions. the degree of success you'll have is direc[20:53:56] <Aprogas> [welcome][20:54:09] *** firojj has joined #postfix[20:55:19] <Aprogas> !resolve_numeric_domain[20:55:20] <knoba> Aprogas: "resolve_numeric_domain" : a configuration parameter in the main.cf: Resolve 'user@ipaddress' as 'user@[ipaddress]', instead of rejecting the address as invalid.[20:55:28] <Aprogas> I guess that is good enough.[21:03:14] *** karlgus has joined #postfix[21:07:50] *** schnoobby has quit IRC[21:12:47] *** firojj has quit IRC[21:15:12] *** cpm has quit IRC[21:15:14] *** deadpigeon has joined #postfix[21:20:08] *** h_sympa has joined #postfix[21:20:45] *** firojj has joined #postfix[21:21:09] *** h_sympa has quit IRC[21:23:08] *** cga has quit IRC[21:23:56] *** `nstuff has quit IRC[21:24:04] *** `nstuff has joined #postfix[21:28:42] *** _ruben has quit IRC[21:38:08] *** firojj has quit IRC[21:42:55] *** bluethundr has quit IRC[21:46:02] *** firojj has joined #postfix[21:47:14] *** mandragor has quit IRC[21:47:15] *** firojj has quit IRC[21:47:17] *** DogWater has quit IRC[21:47:37] *** higuita has quit IRC[21:50:07] *** higuita has joined #postfix[21:56:03] *** DogWater has joined #postfix[21:56:58] *** lepine has quit IRC[21:57:26] *** lepine has joined #postfix[21:58:51] *** sbathe_ has quit IRC[22:00:34] *** brancaleone has joined #postfix[22:04:31] *** Zeit|awy_ has quit IRC[22:05:37] *** Zeit|awy_ has joined #postfix[22:17:49] *** makomi has quit IRC[22:20:07] *** bluethundr has joined #postfix[22:20:49] *** hever has joined #postfix[22:22:18] *** UNIXgod has quit IRC[22:23:13] *** hever has quit IRC[22:24:10] *** tibyke_ is now known as tibyke[22:24:16] *** tibyke has joined #postfix[22:24:31] *** hever has joined #postfix[22:27:46] *** uqlev has quit IRC[22:58:49] *** hever has quit IRC[23:00:21] *** hever has joined #postfix[23:03:32] *** higuita has quit IRC[23:05:51] *** higuita has joined #postfix[23:12:08] *** uqlev has joined #postfix[23:12:48] *** karlgus has quit IRC[23:21:19] *** Dosshell has joined #postfix[23:22:36] <Dosshell> I appended /etc/aliases (ubuntu) with "checking: myadress at gmail dot com" but the forwarding does not work.. i guess i should add something in the main.cf file... but what?[23:23:47] <Dosshell> I have read http://www.postfix.org/aliases.5.html but i do not understand what to do[23:23:52] <Aprogas> !tell Dosshell address_classes[23:23:53] <knoba> Dosshell: "address_classes" : http://www.postfix.org/ADDRESS_CLASS_README.html describes how Postfix deals with different classes of addresses: local, relay, virtual alias, virtual mailbox, and Internet.[23:25:17] <Dosshell> oh! more headache... thanks :)[23:29:20] *** s0ber has quit IRC[23:34:57] *** henriknj has quit IRC[23:35:17] *** s0ber has joined #postfix[23:35:34] *** f3xy has quit IRC[23:36:16] <adaptr> yeah.....[23:36:20] <adaptr> !why[23:36:20] <knoba> adaptr: "why" : are you sure that installing, configuring and maintaining a mailserver is really what you want to do here? it's not something that's for the faint of heart, and definitely not something for folks that are still just learning the basics of linux or unix. also see !nullclient[23:36:21] *** uqlev has quit IRC[23:47:20] *** _ruben has joined #postfix[23:52:46] *** smica has quit IRC