September 8, 2010 
< | 1 | 2 | 3 | 4 | 5 | 6 | 7 | 8 | 9 | 10 | 11 | 12 | 13 | 14 | 15 | 16 | 17 | 18 | 19 | 20 | 21 | 22 | 23 | 24 | 25 | 26 | 27 | 28 | 29 | 30 | >
September 8, 2010 [00:09:08] *** TomHome has joined #postfix[00:12:38] *** hever has quit IRC[00:12:54] *** jim_SFU has quit IRC[00:14:05] *** Section1 has quit IRC[00:14:59] *** TomHome has quit IRC[00:19:27] *** Dosshell has quit IRC[00:20:01] *** bulbous has joined #postfix[00:21:25] <bulbous> Hi -- I'm thinking of trying to use postfix to dynamically redirect email addresses in the following sort of fashion, and wondering if it is possible with postfix -- maybe if I write a plugin or something?[00:21:41] <bulbous> 1) I set up my mail server example.com using postfix[00:21:41] <bulbous> 2) someone emails john at example dot com using a reply-to of george at gmail dot com[00:21:42] <bulbous> 3) I forward the mail sent to john at example dot com to an email address (say john at gmail dot com) they have previously registered with me, and change the reply-to address to be something like george-gmail at example dot com[00:21:42] <bulbous> 4) If john at gmail dot com replies to the email, when my mail server sees the inbound email to george-gmail at example dot com, it then forwards that mail to george at gmail dot com, changing the reply-to address to john at example dot com[00:21:42] <bulbous> 5) the email address mappings I would like to store in a mysql database, and look them up dynamically, but if I needed to write any changes to a configuration file, this would be ok too[00:21:43] <bulbous> hopefully that made sense -- what I'm wondering is if this sort of thing is doable with postfix -- it seems like it should be, but I'll have to learn it pretty well. before I spend the time to figure out how to do this, I'm sort of hoping someone will be able to tell me if it's even possible with postfix[00:27:49] *** mroe has joined #postfix[00:34:47] <Aprogas> Why?[00:35:27] <Aprogas> What's wrong with the Reply-To just going to the intended person directly?[00:38:15] *** ph0xide has joined #postfix[00:38:39] <ph0xide> i have a question i have more mails defferd and i need their contect display is there any way i can do that?[00:39:01] <mroe> you want to read the email in the defer queue?[00:39:43] <tharkun> ph0xide: man postcat[00:40:01] <ph0xide> mroe yes[00:40:04] <ph0xide> tharkun reading now[00:40:44] <ph0xide> is there anyway i can do for all coz ther are many folder and i have to do it manualy for all\[00:40:45] <Aprogas> Also don't play with your queues, usually that only makes things worse.[00:41:03] <Aprogas> Why do you have to read all those mails?[00:41:38] <ph0xide> i sent some important mails and don't have the contect anymore[00:41:47] <ph0xide> and didn't received destination[00:41:57] <ph0xide> so need to grab the contect and sent again from somweher else[00:42:06] <Aprogas> bulbous: You might want to look into SRS or VERP. They offer ideas of how to encode an emailaddress into another emailaddress.[00:42:27] <bulbous> Aprogras: I'm trying to make it so people can have an email address @example.com -- and hide their actual person email address[00:42:34] <bulbous> but without having to have a separate mailbox they have to check[00:43:05] <Aprogas> ph0xide: If they are still in your queue, find out why they get deferred, fix the issue, and Postfix will deliver them.[00:43:30] <bulbous> Aprogas: thanks I'll check out SRS & VERP[00:43:39] <mroe> bulbous, and configuring the mua like that isn't good enough?[00:44:08] <Aprogas> bulbous: I recommend using a content_filter or something like that, rather than Postfix internal mechanisms.[00:45:07] <bulbous> mroe: not sure how to do that, but one thing I need to be able to do is track emails sent to example.com, to provide some statistics to people using the service[00:46:26] <bulbous> Aprogas: I'll take a look at content_filters as well[00:46:52] <mroe> user at example dot com is an alias to user at real dot com. if user at real dot com configures his/her mail client with the 'email address' field of user at example dot com, for all but the really saavy it will look like user at example dot com is a real address[00:47:18] <Aprogas> bulbous: recipient_delimiter might also be of use to you. you could use a content_filter that mungs private details from the customer and rewrite the return addresses to e.g. anon-somehash where somehash gets stored in the database matching the original sender[00:47:24] <bulbous> is anyone here familiar with procmail? it sounds powerful / not sure if it'd do what I'm looking for[00:47:26] <mroe> and as far as tracking email to user at example dot com pflogsumm should do the trick nicely[00:48:13] <Aprogas> bulbous: make that anon+somehash for the default recipient_delimiter; on the return-side you can have mail to "anon" go through some script which looks up the somehash part in the db and rewrites the email again, and feeds back into Postfix[00:48:16] <bulbous> mroe: problem is that the people I'm trying to deliver this to are for the most part extremely unsavvy -- configuring their email client is well beyond most of their capabilities.[00:48:28] <Aprogas> Something like that I guess; I still think the entire concept is rather strange though.[00:48:32] <mroe> so how are they going to send email?[00:48:53] <Aprogas> Procmail is mostly for sorting email into different places.[00:49:05] <mroe> and IMO antiquated[00:49:26] <Aprogas> mroe: I concur. I am mostly still on it, because I am on it, and can't be bother to convert/migrate.[00:49:50] <mroe> yes, lock-in for any of the MDA languages is high[00:50:00] <mroe> procmail, maildrop, sieve[00:50:12] <Aprogas> Things Procmail lacks: OR-ing rules, numerical comparison (e.g. Spam-Level > 7.3)[00:50:19] <ph0xide> can anybody tell me how can i flush queue[00:50:20] <ph0xide> ?[00:50:21] <bulbous> mroe: they'll send email using their personal account (gmail or whatever) -- any mail directed to example.com would get redirected to someone elses personal email address[00:50:30] <Aprogas> ph0xide: Have you fixed the issue?[00:50:36] <ph0xide> Aprogas: yes[00:50:38] <Aprogas> ph0xide: Please share some logs with us, before you make matters worse.[00:50:45] <ph0xide> i need know to flush the queue[00:50:45] <Aprogas> ph0xide: What was the issue that was delaying your mail?[00:51:01] <bulbous> Aprogas, mroe: good to know about procmail[00:51:12] <ph0xide> (host alt1.gmail-smtp-in.l.google.com[74.125.53.27] said: 421-4.7.0 [213.169.52.252 4] Our system has detected an unusual rate of 421-4.7.0 unsolicited mail originating from your IP address. To protect our 421-4.7.0 users from spam, mail sent from your IP address has been temporarily 421-4.7.0 blocked. Please visit http://www.google.com/mail/help/bulk_mail.html 421 4.7.0 to review our Bulk...[00:51:14] <ph0xide> ...Email Senders Guidelines. o11si16731545wal.30 (in reply to end of DATA command))[00:51:24] <Aprogas> Definitely do not flush.[00:51:25] <mroe> bulbous, so you don't want the recipient of email sent to the example.com domain to know who it came from?[00:51:49] <bulbous> Aprogas: I'll digest what you're saying about recipient_delimiter and content_filter -- I was planning on doing some kind of hashing thing, just wasn't sure how to plug into postfix to reroute the emails properly[00:52:07] <Aprogas> Google is identifying your server as being "spammy", flushing causes an ocean of emails to be retried all at once, will confirm their suspicion.[00:53:24] <Aprogas> ph0xide: How old are the emails in your deferred queue? Near 5 days?[00:53:39] <ph0xide> 2 or smt[00:53:45] <bulbous> mroe: correct, I don't want to inadvertantly share their personal email address.[00:53:48] <ph0xide> 2 days ago till now[00:54:13] <Aprogas> ph0xide: I recommend you follow all guidelines and best practices outlined by large servers like GMail, Yahoo and Hotmail, regarding bulk delivery.[00:54:47] <mroe> bulbous, sounds very shady[00:55:30] <ph0xide> okay[00:55:35] <ph0xide> thank you very much for your support[00:55:38] <Aprogas> bulbous: Please be aware that MUAs or intermediate may add all sorts of silly headers leaking information. From/Sender/Return-Path are rather common, but more uncommon forms might exist as well.[00:55:40] <ph0xide> have a nice evening or afternoon[00:55:45] <ph0xide> gotta go now[00:55:48] *** ph0xide has quit IRC[00:55:50] <bulbous> mroe: heh no, I'm just trying to present a corporate email address without having a new mailbox they have to check[00:56:44] <Aprogas> bulbous: You are aware that e.g. Thunderbird and Outlook can manage multiple identities, so the user can easily switch between as which emailaddress to send? And that (virtual) aliases of the respective domains can easily lead mail back to their real mailboxes?[00:57:02] <mroe> it sounds like you want to scrub the sender of email whose recipient is @example.com[00:57:04] <bulbous> Aprogas: thanks -- I'm really not too worried about someone who is savvy looking at the headers / etc... and finding out the personal email address -- it's more of a convenience / simplicity thing than a really hard privacy requirement.[00:57:07] <mroe> which is not what yo uare saying[00:57:40] <Aprogas> In my opinion the concept of having an emailaddress kept "secret" or "hidden" might have been a good anti-spam measure some years ago, but no longer applies today.[00:58:14] <Aprogas> bulbous: If it's not about truly anonymising, I'd just take the MUA-approach.[00:58:39] <bulbous> Aprogas: the problem with MUA is that it'd be a support nightmare to try to teach a bunch of people how to do this[00:58:40] <Aprogas> I think even Hotmail let's people set a different From (but I think it still sets @hotmail.com Sender)[00:59:03] <Aprogas> bulbous: Education of users is a good thing. :)[00:59:10] <mroe> perhaps a better example would help. Lets say one of your users uses gmail. He wants to send an email to me at mydomain dot com but he wants to make it look like he sent it from his gmail.com... Using his gmail interface where do you envision him sending email?[00:59:11] <bulbous> Aprogas: I'm trying to enable clients of my company to have a 'corporate' looking email address coming from our domain.[00:59:57] <bulbous> mroe: do you mean he wants to make it look like he sent it from an example.com email address?[01:00:07] <mroe> yes... Isn't that your goal?[01:00:40] <bulbous> mroe: yes -- just making sure I understood your question -- you said he wanted to make it look like it came from his gmail.com address.[01:00:56] <mroe> ah, you're right, my typo[01:01:14] <mroe> so where would that user send email to if he wanted me to get it?[01:01:33] <bulbous> mroe: my user would need to either reply to an email he'd already received, or add that user as a contact (so I could add a dynamic address for them).[01:01:57] <mroe> so he would compose email in gmail addressed to me at mydomain dot com?[01:02:12] <bulbous> no -- it'd be something like[01:02:30] <bulbous> mroe: me+somehash at example dot com[01:02:47] <bulbous> which would then get routed through the example.com server to me at mydomain dot com[01:03:11] <mroe> haha, and you think *that* is easier than having them configure their MUA to do what you want?[01:03:52] *** tharkun has quit IRC[01:04:11] <bulbous> mroe: lol -- well generally they will be replying to an email they received, not initiating outbound emails[01:04:17] <mroe> so you would expect a user that can't configure an MUA properly to be able to address an email to a hash correctly?[01:04:57] <bulbous> mroe: you have a good point, I hadn't thought too much about initiating outbound email to people they don't already have as a contact in our system[01:05:13] <mroe> I think you have lost the forest for the trees[01:05:27] <mroe> if you can excuse the idiom[01:06:06] <mroe> I know Tbird supports the importing of an xml configuration file, so you can really make it stupidly easy for users to configure the client[01:06:37] <bulbous> mroe: only my users may have many different email clients[01:06:51] <thumbs> force them to use tbird.[01:06:54] <bulbous> mroe: I can't really suggest to them to use a particular one[01:07:10] <mroe> I recognize that, but most clients support what you want, and I *know* tbird makes it really easy[01:07:31] <bulbous> thumbs: not an option -- the users are customers of my company, forcing them would just stop some from being customers[01:07:44] <mroe> writing up 3-5 explicit directions is probably a better application of your time[01:08:10] *** brancaleone has quit IRC[01:08:26] <mroe> even the gmail webclient supports multiple identities[01:08:28] <bulbous> mroe: so you're suggesting I have a separate mailbox, but just have their client configured to check both[01:08:33] <mroe> no[01:08:37] <mroe> one mailbox[01:08:38] <bulbous> mroe: and to be able to send via whichever?[01:08:49] <bulbous> mroe: ahh right -- just configure the reply-to:[01:09:07] <mroe> more than the reply-to. it also supports configuring the sender address[01:09:34] <bulbous> mroe: nm -- I don't quite follow -- what happens when someone sends email to george at example dot com -- how do I get that at my george at gmai dot com address?[01:10:02] <mroe> george at example dot com is just an alias for george at gmail dot com[01:10:21] <bulbous> ahh ok -- I just set up an alias in postfix config[01:10:25] <mroe> yea[01:10:27] <mroe> that is the easy part[01:11:14] <mroe> then when georgie wants to send an email from george at example dot com he just selects that email address in the drop down box in the 'compose email' window and it will be as if he sent it from his corporate address[01:11:45] <mroe> it will go right from gmail's servers to the destination server but it will look like it came from the example.com domain[01:11:49] <bulbous> mroe: right -- pflogsumm would then allow me to run statistics on anything sent to george at example dot com -- but not stuff he sends out to people[01:11:57] <mroe> right[01:12:11] <mroe> because outgoing email would not hit your server at all[01:12:15] <bulbous> right[01:12:33] <bulbous> that might be good enough, will have to think about how to sell it to my boss heh[01:14:02] <mroe> for all of you folks listening this is a perfect example of why SPF breaks SMTP[01:15:30] <bulbous> ahh would SPF prevent this sort of thing?[01:17:11] *** Dosshell has joined #postfix[01:20:48] <mroe> SPF's premise is that you list in your dns record all mail servers authorized to send email from your domain[01:21:21] <mroe> which is why it is generally relegated as a small part of spam detection[01:21:23] <bulbous> ahh, so configuring the MUA to send wouldn't work with spf[01:21:58] <mroe> not unless your spf rule was absurdly loose.[01:22:04] <bulbous> right[01:22:27] <mroe> but SPF is not something to go out of the way to use[01:23:30] <bulbous> makes sense. Thanks much for all your help -- going to go afk for a bit now :)[01:23:41] *** magyar has quit IRC[01:32:42] *** Emoteleco has joined #postfix[01:34:31] *** magyar has joined #postfix[01:36:51] *** ^octodick^ has quit IRC[01:37:04] *** magyar has quit IRC[01:41:50] <Tom-B> Currently I have my SMTP server set to only accept SSL connections over 465, users must authenticate using their user/pass in order to send email and the password is sent in plain text[01:42:01] *** dragonheart has joined #postfix[01:42:08] <Tom-B> Is this secure enough for generic use? I trust my users[01:42:39] *** forsberg is now known as fOrsberg[01:45:08] *** loddafnir has quit IRC[01:49:56] *** sphenxes has quit IRC[02:16:56] *** leroux has joined #postfix[02:19:07] *** megaTherion has joined #postfix[02:19:13] <megaTherion> Is it possible to manually delete stuff in the queue?[02:20:42] <thumbs> megaTherion: why?[02:21:06] <thumbs> megaTherion: look at the postqueue man page.[02:21:13] <megaTherion> thumbs: annoying shit which wont get delivered anyways[02:21:23] <rob0> !mantras[02:21:23] <knoba> rob0: "mantras" : 1. do not accept mail that you do not intend to deliver. 2. do not drop mail. 3. do not use wildcards or catchalls.[02:21:33] <megaTherion> rob0: so funny[02:21:43] <rob0> funny? How so?[02:22:04] <megaTherion> I didnt accept mail, I think its rather one of the mail the user gets delivered if mail couldnt be aquirate delivered by the mta[02:22:18] <rob0> !postcat[02:22:19] <knoba> rob0: "postcat" : a command for printing the contents of a mail in the queue. See "man postcat".[02:23:21] <megaTherion> rob0: so whats the right way dealing with such a mail?[02:23:35] <rob0> Your description sounds like backscatter spam, which means a violation of mantra #1, and no, spam is not funny.[02:24:34] <megaTherion> yeah you're right, sorry I was lacking the right word[02:24:48] <megaTherion> so what is my way to prevent backscatter stuff?[02:25:23] <megaTherion> this MTA is already picky configured with what kind of clients it accepts - but something get always thru even if its 0.00001%[02:26:34] <rob0> !backscatter[02:26:35] <knoba> rob0: "backscatter" : see http://www.postfix.org/BACKSCATTER_README.html - Basically backscatter are bounces sent to innocent systems. A spammer sent email in behalf of the victim's system. Undeliverable emails get bounced to the victim.[02:27:50] <megaTherion> rob0: ok Im gonna look into this, what about that mail in the queue - will it remain always there now? o.o[02:28:20] <rob0> 03[02:28:56] <rob0> When spammer connects with mail for baduser at your dot domain, you reject that. A backscatter accepts it and sends out a bounce to forged at sender dot address[02:29:20] <rob0> !postsuper[02:29:20] <knoba> rob0: "postsuper" : the queue supervision tool for postfix. Use it with the option "-d" to remove mails from the queue. See 'man postsuper' for more information.[02:30:58] <megaTherion> rob0: ok thanks, that did the trick - now Im going to improve my configuration[02:34:47] *** swarog has quit IRC[02:35:12] *** swarog has joined #postfix[02:41:54] *** _artist_m_ has joined #postfix[02:42:17] *** passthru has quit IRC[02:44:35] <megaTherion> rob0: I've read that example but I think what really should be done is validating the From value in the mail...[02:45:36] *** Dosshell has quit IRC[02:49:11] *** magyar has joined #postfix[02:53:39] *** bluethundr has quit IRC[02:56:07] *** Southron has joined #postfix[03:01:23] *** dragonheart has quit IRC[03:04:41] *** Southron has quit IRC[03:05:03] *** Southron has joined #postfix[03:19:06] *** Motoko-chan has joined #postfix[03:19:39] *** Motoko-chan has quit IRC[03:22:43] *** shoonya has quit IRC[03:24:27] *** higuita has quit IRC[03:26:09] *** rooky_ has joined #postfix[03:26:24] *** earcaraxe has joined #postfix[03:27:01] *** higuita has joined #postfix[03:27:57] *** rooky has quit IRC[03:28:11] *** rooky_ is now known as rooky[03:28:38] <earcaraxe> !welcome[03:28:38] <knoba> earcaraxe: "welcome" : welcome to #postfix! if you're joining for the first time, or are new to irc, the first thing you'll want to do is read the channel topic (/topic). it includes crucial instructions on how to effectively ask for help here, and what data you should include with your questions. the degree of success you'll have is directly related to how effectively you're able to follow those guidelines.[03:29:39] <earcaraxe> does anyone know where i can find a log for failed emails (not just emails in the deferred queue, but emails that fail and mailer daemon sends out an email)[03:42:27] *** JonnyV has quit IRC[03:55:12] *** JonnyV has joined #postfix[03:56:55] *** rajijoom has joined #postfix[03:57:36] *** higuita has quit IRC[03:59:55] *** higuita has joined #postfix[04:02:44] *** Motoko-chan has joined #postfix[04:03:18] *** kad_ has joined #postfix[04:05:25] <kad_> heys!! need to ask!! i did an "Integration to my AD", so i configure "Postfix" and Dovecot LDAP , my question is that: it "deny me " from adding: $mydomain at "mydestination " it give me choise either" mydestination or "virtual_mailbpx_domains", is that normal ? coz LDAP users can;t open their mailboxes except if "$mydomain" is at: virtual_mailbox_domains!! thx[04:08:07] *** robotarmy has quit IRC[04:10:36] *** higuita has quit IRC[04:13:00] *** fignew` has joined #postfix[04:13:08] *** _artist_m_ has quit IRC[04:13:10] *** mroe has quit IRC[04:13:24] *** higuita has joined #postfix[04:13:36] *** fignew has quit IRC[04:16:54] *** lepine_ has joined #postfix[04:18:22] *** lepine has quit IRC[04:19:05] <lunaphyte> what on earth are you talking about?[04:19:14] <lunaphyte> please, read the channel /topic.[04:23:08] *** higuita has quit IRC[04:25:39] *** higuita has joined #postfix[04:35:16] *** higuita has quit IRC[04:37:35] *** higuita has joined #postfix[04:44:41] <kad_> lunaphyte, sorry my problem is that: refer to my configuration at " http://pastebin.com/ka978Kn1 ", i did an Postfix /Dovecot LDAP, and i have a "Local Accounts", i can't receive mail for local accounts , but i can only receive mail for "LDAP Users ...if i add the "$mydomain at the mydestination" and remove it from "virtual domain" i can receive only mail for "Local Users", how to fix it so both can receive mail[04:52:06] *** friskd has quit IRC[04:56:22] *** fignew` is now known as fignew[04:59:52] *** MAAAAAD has joined #postfix[05:00:40] *** rajijoom has quit IRC[05:04:06] *** MAAAAD has quit IRC[05:08:13] *** ming_zym has joined #postfix[05:11:45] *** kad_ has quit IRC[05:15:16] *** neekfenwick__ has joined #postfix[05:25:07] *** pinoyskull has joined #postfix[05:32:59] *** pinoyskull has quit IRC[05:33:41] *** pinoyskull has joined #postfix[05:37:20] *** leroux has quit IRC[05:41:31] *** pinoyskull has quit IRC[05:45:04] *** ipv5 has joined #postfix[05:45:07] <ipv5> howdy[05:45:50] <ipv5> any opinions on dovecot vs. courier for a postfix/mysql virtual users/domains setup?[05:49:23] <standon> ipv5: i use dovecot with postfix+mysql and virtual users/domains; works well. haven't had experience with courier, so can't comment on that.[05:49:24] *** higuita has quit IRC[05:52:02] *** higuita has joined #postfix[05:54:51] *** pinoyskull has joined #postfix[05:56:23] *** robotarmy has joined #postfix[05:58:13] *** lifeofguenter has quit IRC[06:01:09] *** robotarmy has quit IRC[06:26:04] *** ghobad_ has joined #postfix[06:34:51] *** JonnyV has quit IRC[06:35:17] *** rajijoom has joined #postfix[06:35:20] *** rajijoom1 has joined #postfix[06:41:31] <jdoe> joschi: what a needlessly confusing example for a secondary mx. :P (exceptionally delayed response)[06:43:10] *** leroux has joined #postfix[06:45:30] *** lifeofguenter has joined #postfix[06:53:23] *** ipv5 has quit IRC[07:03:40] *** GOrshkOFF has quit IRC[07:09:54] *** bulbous has quit IRC[07:11:33] <ghobad_> Hi all, I use courier-imap and login. I don't understand courier-imap command to read inbox messages. can you tell me, where find courier-imap command to read message?[07:13:26] *** klem has quit IRC[07:16:54] *** leroux has quit IRC[07:17:35] *** leroux has joined #postfix[07:25:53] *** navaki has joined #postfix[07:26:41] *** klem has joined #postfix[07:28:37] <AstralStorm> ghobad_: courier-imap is a server[07:29:00] <AstralStorm> you have to start it, then connect to it with a mail client, like thunderbird, evolution, claws-mail or kmail[07:29:25] <AstralStorm> (or if you're more minimalistic, mutt or pine)[07:29:41] <navaki> Hi all,i want to know that what is email attachment mechanisms in postfix or everything else ?anyone can help me?thanks.[07:30:00] <AstralStorm> navaki: it's the MIME standard.[07:30:19] <AstralStorm> http://en.wikipedia.org/wiki/MIME[07:30:59] <navaki> I read this page , can you more explain?[07:31:24] <AstralStorm> uh? what's else to explain? what do you want to know?[07:31:35] <AstralStorm> usually the messages with attachments are multipart ones[07:32:02] <ghobad_> I start it, and i use "telnet localhost 143" and "login 'username' 'pass'" commands, but i don't know how read inbox[07:32:27] *** leroux has quit IRC[07:32:32] <AstralStorm> ghobad_: IMAP4 protocol is a bit complex, yes[07:32:43] <navaki> for one message with attachment what happen in postfix?[07:33:19] <AstralStorm> navaki: postfix doesn't do anything special to messages[07:33:34] <AstralStorm> it doesn't touch the message body at all, only headers.[07:34:53] <AstralStorm> so it is handled much like any message[07:35:01] <AstralStorm> the Received header is added[07:35:48] <navaki> what is a better attachment mechanism ?[07:36:08] <AstralStorm> the what/[07:36:17] <AstralStorm> what do you mean by better or mechanism[07:36:24] <AstralStorm> ghobad_: http://tools.ietf.org/html/rfc3501[07:37:28] <AstralStorm> ghobad_: you probably want SELECT or EXAMINE[07:38:26] <navaki> this mechanism(attachment) in postfix is a good mechanism?[07:39:22] <AstralStorm> hmm? it's the standard one. all mail servers and clients should use it[07:40:05] *** rajijoom1 has quit IRC[07:40:05] *** rajijoom has quit IRC[07:40:31] <ghobad_> do you know,what courier-imap command, show inbox?[07:41:04] <joschi> ghobad_: read RFC 3501, which AstralStorm posted.[07:41:10] <AstralStorm> probably select inbox unseen[07:41:18] <AstralStorm> you need to prefix that with the sequence id[07:41:35] <joschi> ghobad_: Courier IMAP speaks IMAP4r1 (duh!), so you have to talk IMAP4r1 with it.[07:41:40] <AstralStorm> e.g. a123 SELECT Inbox \Unseen[07:42:28] <AstralStorm> oh, and I've messed up[07:42:38] <AstralStorm> it should've been a123 SELECT Inbox (\Unseen)[07:43:03] <AstralStorm> that sequence number increases by 1 after every command[07:43:35] <AstralStorm> you can then FETCH the message[07:43:46] <AstralStorm> or messages[07:44:17] <AstralStorm> instead of SELECT+FETCH you can use EXAMINE to just take a peek (it won't change the Seen status)[07:44:53] <AstralStorm> there are many examples in that rfc, go read it[07:45:36] <ghobad_> AstralStorm: thanks a lot[07:46:24] <navaki> what are the another standards?[07:46:37] <AstralStorm> navaki: none other really.[07:47:00] <AstralStorm> the other non-standards were Microsoft[07:47:14] <AstralStorm> nobody uses them now, hopefully[07:48:43] <navaki> then only MIME exist for storing email attachment or is popular.right?[07:49:12] <joschi> navaki: right.[07:50:24] <navaki> joschi , AstralStrom ,thank you so much.[07:53:20] *** loddafnir1 has joined #postfix[07:56:53] *** ming_zym has quit IRC[08:03:04] *** ming_zym has joined #postfix[08:18:38] *** ming_zym has quit IRC[08:18:59] *** dragonheart has joined #postfix[08:22:54] *** ming_zym has joined #postfix[08:26:15] *** karlgus has joined #postfix[08:28:36] *** ming_zym has quit IRC[08:29:59] *** klem has quit IRC[08:39:42] <navaki> which of is better about MIME message? attachments store in body of message or in disjoint files.[08:42:09] <AstralStorm> MIME doesn't keep any disjoint files[08:42:21] <AstralStorm> MIME is the standard for keeping the attachments *in the message*[08:42:32] *** klem has joined #postfix[08:42:33] <AstralStorm> and that's the way all mail clients do that[08:42:47] <AstralStorm> you technically could decode MIME and put the attachments elsewhere[08:43:06] <AstralStorm> but I see no point, as the user's mail client will want to fetch them anyway[08:43:19] <AstralStorm> unless we're talking about something non-standard like webmail[08:43:29] <AstralStorm> and accessing a database for example[08:44:09] <AstralStorm> it could make searching message body a bit easier as well[08:46:22] <AstralStorm> the point is, all of that is not standard. attachments are normally treated as a part of message[08:48:07] <sejo> hey all how do I send an automatic reply to all mails coming to domain old.example.org?[08:48:30] <sejo> i wish to send a mail that informs the users that that domain is discontinued[08:48:42] <joschi> !tell sejo relocated[08:48:42] <knoba> sejo: "relocated" : The optional relocated(5) table provides the information that is used in user has moved to new_location bounce messages.[08:49:41] <AstralStorm> but he's accepting the mails, not bouncing them I think[08:49:48] <sejo> indeed[08:50:05] <sejo> and needs to be completely configurable (own mail text)[08:50:07] <sejo> brb[08:50:56] <AstralStorm> maybe he could bounce yet not bounce :)[08:51:24] *** fOrsberg is now known as forsberg[08:52:40] <AstralStorm> you could use mailbox_command_maps for the delivery agent[08:52:48] <AstralStorm> or a separate transport and transport_maps[08:52:55] <AstralStorm> the transport would have to send the mail message then[08:54:01] <AstralStorm> I think the transport would be easier[08:55:02] <AstralStorm> I think some mailing list software could be abused to send such an email[08:55:21] <AstralStorm> (if you don't want to write your own script, that is)[08:58:56] <AstralStorm> I'd read on mailbox_transport_maps option[09:01:30] *** klem_ has joined #postfix[09:02:23] <sejo> ok thanks mate![09:04:26] *** klem has quit IRC[09:05:18] *** cga has joined #postfix[09:07:01] *** Motoko-chan has quit IRC[09:08:05] *** e-jones has joined #postfix[09:08:48] *** higuita has quit IRC[09:09:21] *** navaki has quit IRC[09:12:48] *** higuita has joined #postfix[09:14:31] *** pinoyskull has quit IRC[09:25:10] *** Wilkins has joined #postfix[09:25:16] *** higuita has quit IRC[09:28:31] *** higuita has joined #postfix[09:51:03] *** henriknj has joined #postfix[09:54:56] *** klem has joined #postfix[09:55:29] *** klem_ has quit IRC[09:58:28] *** navaki has joined #postfix[10:04:23] *** JoKoT3 has joined #postfix[10:05:06] *** xabbuh has joined #postfix[10:05:09] <navaki> How can i store attechments elsewhere?[10:05:53] <Aprogas> Like remove them from the email and replace by a link to a webserver with the file?[10:06:59] *** klem has quit IRC[10:07:43] *** UQlev has joined #postfix[10:09:41] *** hrhrhr has joined #postfix[10:11:11] <hrhrhr> is there a list of 'must have' rbls anywhere? :)[10:12:30] <Aprogas> http://en.wikipedia.org/wiki/Comparison_of_DNS_blacklists and the external links at the bottom of the page for more information[10:13:21] <Aprogas> Personally I am leaning towards hostkarma.junkemailfilter.com , whitelist, yellowlist and blacklist all in the same DNS lookup.[10:13:56] <Aprogas> zen.spamhaus.org is good too. Beware of zealous lists, those should only be used in a weighted system.[10:14:38] <hrhrhr> cheers! i'm using zen and bl.spamcop atm but still seeing some russian/chinese rubbish[10:16:33] <Aprogas> Some basic Postfix restrictions like refusing non_fqdn helo/sender/recipient can do wonders too.[10:18:41] <hrhrhr> http://pastebin.com/wLSvHhJ2 - this is what i've got so far. can you see any glaring omissions?[10:19:33] *** TomHome has joined #postfix[10:20:04] *** klem has joined #postfix[10:20:21] <Aprogas> bl.spamcop.net "only" has 37892 entries. hostkarma.junkemailfilter.com=127.0.0.2 has 126059.[10:20:43] <hrhrhr> i will add that too[10:21:08] <Aprogas> Might just replace bl.spamcop.net; it is probably fully overlapped by ZEN and JMF-black[10:21:29] <hrhrhr> ok, will do[10:21:54] *** sphenxes has joined #postfix[10:21:58] <hrhrhr> how can you see how many entries hostkarma has?[10:22:09] <Aprogas> I already gave you links.[10:22:55] *** brancaleone has joined #postfix[10:23:22] *** neekfenwick_ has joined #postfix[10:25:39] <Aprogas> Which policy service are you using?[10:25:54] <hrhrhr> hwo do i tell?[10:26:01] <hrhrhr> i didn't set this box up, still figuring it out[10:26:06] <Aprogas> lsof -Pi | grep 60000[10:26:26] <Aprogas> I think that's postfwd, that probably already does blacklist checking (and with internal caching too).[10:26:54] *** neekfenwick__ has quit IRC[10:28:13] <hrhrhr> http://pastebin.com/hkjXSiWD[10:28:24] <Aprogas> Before using any blacklist, make sure to read their listing policy, and whether they return different codes for different blacklist-reasons.[10:28:36] <Aprogas> Oh, postgrey, right.[10:37:01] <hrhrhr> do you see a much spam allegedly originating from webmail (aol)?[10:39:11] *** karlgus has quit IRC[10:51:20] *** henriknj has quit IRC[10:52:08] <Aprogas> I believe in the yellowlist concept, i.e. servers like AOL, GMail, Yahoo, Hotmail send a mix of ham and spam, and IP-address is no indication of spamminess, so using further blacklists does not give accurate results.[10:53:43] <f3ew> the mixed stuff is rare[10:54:39] <f3ew> the problem is that for the hosts with mixed outflows, the volume is *high*[10:58:02] *** ghobad_ has quit IRC[10:58:36] *** weedar has joined #postfix[11:02:34] <Aprogas> Generally you don't want to block any of the big freemails. And they do sometimes end up at automated blacklists because they do send high volumes of spam to traps.[11:04:51] <hrhrhr> cheers for your help :)[11:09:45] *** e-jones has quit IRC[11:11:07] *** megaTherion has quit IRC[11:15:05] *** megaTherion has joined #postfix[11:18:50] *** henriknj has joined #postfix[11:19:06] *** e-jones has joined #postfix[11:25:53] *** master_of_master has quit IRC[11:27:36] *** master_of_master has joined #postfix[11:29:35] *** UQlev has quit IRC[11:30:23] *** Twinkletoes has joined #postfix[11:41:31] *** rcsheets` has joined #postfix[11:46:57] *** henrikn__ has joined #postfix[11:47:10] *** henriknj has quit IRC[11:55:34] *** henrikn__ has quit IRC[11:57:13] *** henriknj has joined #postfix[11:57:26] *** rcsheets has quit IRC[11:59:05] *** UQlev has joined #postfix[12:08:15] *** numen has quit IRC[12:10:33] *** numen has joined #postfix[12:24:22] *** makomi has joined #postfix[12:24:41] *** henriknj has quit IRC[12:26:55] *** nokia3510 has quit IRC[12:30:56] *** Dosshell has joined #postfix[12:35:42] *** cpm has joined #postfix[12:42:21] <navaki> Hi all,I install postfix and when i run "service postfix start" command in shell , it return "postfix:unrecognized service".[12:42:30] <navaki> anyone can help me?[12:45:00] <UQlev> navaki: what OS? RH?[12:45:17] <navaki> fedora 12.[12:46:06] <UQlev> then probably installation was not complete[12:46:06] <navaki> what do you mean by RH?[12:46:18] <UQlev> I meaned Red Hat[12:46:38] <navaki> no.it complete with no error.[12:49:35] *** higuita has quit IRC[12:52:37] *** higuita has joined #postfix[12:53:21] <_Tassadar> navaki: nevertheless, installation was not succesful[12:53:39] <_Tassadar> you can use "rpm -q postfix" to check if it is installed[12:54:03] <_Tassadar> you should be able to see the initscript with "ls -al /etc/init.d/postfix"[12:54:21] <_Tassadar> if that initscript is not there and/or postfix is not installed, use "yum install postfix" to install it[12:54:47] <_Tassadar> if it is installed but the initscript is not there, then uninstall it and reinstall: "rpm -e postfix; yum install postfix"[12:55:20] <_Tassadar> if the initscript is there after all, but "service" doesn't recognize it, then something else is wrong[12:56:07] <navaki> i installed from binary files not rpm.[12:56:12] <_Tassadar> why[12:56:20] <_Tassadar> you shouldn't do that[12:56:38] <_Tassadar> you cant expect fedora to use an initscript to start postfix if you install postfix without initscripts[12:57:21] *** henriknj has joined #postfix[12:57:23] <_Tassadar> if you use red hat / fedora, or any other rpm-based OS, then never ever ever install anything without an rpm[12:57:33] <_Tassadar> ever[12:57:59] <_Tassadar> did i say "never ever"? i meant "really really never ever ever"[12:58:19] <_Tassadar> that is the 100% guaranteed way to screw up your OS[12:58:58] <_Tassadar> the best way to fix this is reinstall fedora from scratch[12:59:04] <navaki> ok. i understood.[12:59:05] <_Tassadar> and then use "yum install postfix" to install postfix[12:59:25] <_Tassadar> and while you are at it, go for fedora 13 instead of 12[13:00:05] <_Tassadar> really, don't underestimate this[13:00:18] <_Tassadar> fedora uses all kinds of special stuff like SELinux and so forth[13:00:35] <_Tassadar> you need every file to go exactly in the right place with the right flags in order for it to work[13:00:46] <sysmonk> *cough* or when installing something from sources - use --prefix=/opt/local/whatever[13:01:01] <_Tassadar> yeah or in your own homedir[13:01:08] <sysmonk> and it will install it to your custom location where it doesn't fight with os based stuff[13:01:12] <_Tassadar> but anyway, fedora packages like... everything you could ever want[13:01:19] <sysmonk> or use an rpmbuild to install something yourself with your own params[13:01:24] <_Tassadar> so use RPM always[13:01:43] <sysmonk> _Tassadar: yeah, right... everything... right ...[13:01:46] <_Tassadar> sysmonk: that's what I do but i wouldn't recommend this to ppl that just screwed up their os[13:02:06] <_Tassadar> and no, not -everything-, i have quite a collections of my own specs[13:02:15] <_Tassadar> but again, i adjust to the audience[13:02:29] <_Tassadar> for the average user my claim was very true indeed ;)[13:02:33] <sysmonk> well, my suggestion would be not to use fedora/centos/whatever :P[13:02:35] * sysmonk hides[13:02:44] <_Tassadar> if your purpose is to use postfix[13:02:55] <_Tassadar> it is fine to use any os you please, fedora will do just fine[13:03:13] <_Tassadar> just make sure to do it the fedora-way then[13:03:15] <Aprogas> Debian is a bit behind on packages, old postfix, old postfwd, etc.[13:03:49] <rob0> But with *any* OS, you should first understand how the OS works before you try to run a mail server.[13:03:58] <_Tassadar> exactly my point[13:04:00] *** lifeofguenter has quit IRC[13:04:15] <_Tassadar> which, in the case of fedora, is not too difficult[13:06:22] *** UQlev has quit IRC[13:09:22] *** robotarmy has joined #postfix[13:13:33] <navaki> a installed postfix with "yum postfix insall" but when i run "service postfix start" , it Failed.[13:13:35] *** robotarmy has quit IRC[13:14:06] <navaki> can you help me?[13:20:58] <rob0> service(8) is a Fedora thing. You seem to have broken your Fedora, and this is not the place to find help with that.[13:21:28] *** navaki has quit IRC[13:26:18] *** famicom has quit IRC[13:26:48] *** famicom has joined #postfix[13:30:20] *** bernd has joined #postfix[13:39:09] *** Section1 has joined #postfix[13:46:45] *** JoKoT3 has quit IRC[13:49:02] *** saurabhb has joined #postfix[13:51:06] *** makomi has quit IRC[13:52:45] *** loddafnir1 has quit IRC[14:01:27] *** JoKoT3 has joined #postfix[14:02:40] *** lifeofguenter has joined #postfix[14:07:46] <_Tassadar> 13:20 < navaki> a installed postfix with "yum postfix insall" but when i run "service postfix start" , it Failed.[14:07:57] <_Tassadar> ^ i don't think he actually reinstalled fedora in those 10 mins[14:08:28] <_Tassadar> i don't want to know how crappy his two-postfixes-installed-over-eachother setup has become :D[14:11:44] <rob0> I think "reinstall the OS" is a rather draconian measure, but indeed I would have no interest in trying to figure out what all was broken by the "< navaki> i installed from binary files not rpm." (whatever "binary files" means, who knows/cares?)[14:11:45] *** bezourox has quit IRC[14:12:45] *** bezourox has joined #postfix[14:28:59] <_Tassadar> rob0: exactly ;)[14:30:27] *** uqlev has joined #postfix[14:41:04] *** wdp has quit IRC[14:43:00] *** brancaleone has quit IRC[14:45:32] *** xabbu has joined #postfix[14:53:24] *** wdp has joined #postfix[15:02:41] *** TomHome has quit IRC[15:11:08] *** uqlev has quit IRC[15:13:51] *** Vivek has joined #postfix[15:14:04] *** Vivek has quit IRC[15:14:04] *** Vivek has joined #postfix[15:16:11] *** nokia3510 has joined #postfix[15:18:56] *** rmayorga has quit IRC[15:19:14] *** rmayorga has joined #postfix[15:25:55] *** tjikkun has quit IRC[15:26:16] *** henriknj has quit IRC[15:27:29] *** tjikkun has joined #postfix[15:29:42] *** krambiorix has joined #postfix[15:29:46] <krambiorix> hi guys[15:32:11] *** rcsheets has joined #postfix[15:34:54] *** UQlev has joined #postfix[15:37:00] *** jim_SFU has joined #postfix[15:39:00] *** juergen_dose has joined #postfix[15:39:18] *** juergen_dose is now known as car[15:41:09] *** xabbuh has quit IRC[15:43:27] *** steelnwool has joined #postfix[15:43:30] <steelnwool> g'day.[15:47:08] *** zooz has joined #postfix[15:47:26] <zooz> can I define To: and From: addresses in header_checks same rule?[15:50:06] <steelnwool> funny, my quetsion is about headerchecks too.[15:50:18] <steelnwool> zooz: you can do if endif blocks, which can contain multiple rules.[15:50:23] *** weedar has quit IRC[15:51:09] <rob0> no.[15:52:02] <zooz> steelnwool: is it just with pcre or with regexp as well?[15:52:24] <steelnwool> i don't know.[15:52:32] <steelnwool> i just finished reading the man page and noticed it.[15:52:53] <rob0> It is "no". An if/endif block only applies to a single header, and header_checks(5) are probably not what you need at all.[15:52:56] <rob0> !goal[15:52:57] <knoba> rob0: "goal" : describe your goal, not what you think the solution is[15:53:13] <steelnwool> folks: i have this header_check !/^From: root/ REDIRECT jeff at bignose dot ca , meaning i want all non root email redirected to my address. but it seems to be catching everything.[15:54:35] <_Tassadar> why the ! ?[15:54:57] <rob0> Yikes, that sounds strange, but there too, header_checks are not what you need, try check_sender_access.[15:55:19] <rob0> OTOH that wouldn't work for sendmail(1) submission ...[15:55:29] <zooz> my goal is to redirect all emails "From: some_address at example dot com and To: another_address at example dot com"[15:55:52] <steelnwool> rob0: sendmail submission is exactly what i'm testing with :)[15:55:56] <steelnwool> so that explains that.[15:56:17] <rob0> !tell zooz restriction_classes[15:56:17] <knoba> zooz: "restriction_classes" : see !restriction_class[15:56:21] <rob0> !tell zooz restriction_class[15:56:22] <knoba> zooz: "restriction_class" : postfix per-client/user/etc. access control http://www.postfix.org/RESTRICTION_CLASS_README.html[15:56:41] <steelnwool> _Tassadar: the ! = all mails NOT from root.[15:57:18] <zooz> rob0: no, that's not what I need[15:57:25] <_Tassadar> i don't think it works that way[15:57:30] <zooz> I don't see how restriction classes can help me[15:57:36] <zooz> I do not want to restrict any emails[15:57:43] <steelnwool> _Tassadar: I must be mis reading teh manpage.[15:57:48] <Dominian> zooz: Did you even read the links?[15:57:50] <rob0> steelnwool, you could use a wrapper around sendmail that changes the recipient for non-root.[15:57:53] <zooz> I just need to redirect some emails based on their To: and From:[15:58:10] <_Tassadar> no i mean that is not how a regexp would work[15:58:27] <steelnwool> rob0: nah, sendmail is the lead of my concerns. this isn't a high volume server at all, its just a dev server where we rewrite the headers of all mail to keep mails within our testing env, and not accidently mail clients.[15:58:38] <_Tassadar> anything can "not match" /^From: root/[15:58:42] <steelnwool> but my qa people are getting flooded with cron messages etc so i'm trying to trim them out.[15:59:07] <steelnwool> _Tassadar: ah HA. i see what you are saying.[15:59:22] <steelnwool> Subject: Foo, will most certainly not match "From root"[15:59:29] <steelnwool> makes sense. thanks.[15:59:32] <_Tassadar> there you go[15:59:36] <_Tassadar> np[15:59:37] <rob0> try a if /^From: root/[16:00:01] <steelnwool> the syntax of an if, isn't exactly clear to me, and i cant find good examples.[16:00:15] <rob0> or a if /^From: /[16:00:39] <steelnwool> can you pastebin the full example, sorry for being obtuse on something so sipmle.[16:00:54] <rob0> !/^From: root / REDIRECT ...[16:01:07] *** henriknj_ has joined #postfix[16:01:21] <steelnwool> so the endif goes on the same line?[16:01:38] <rob0> I'm not looking in the man page, you are[16:02:09] <Dominian> !rob0[16:02:10] <knoba> Dominian: "rob0" : a pathetic bot that reacts to newly joined users with reciting the !basic and !standard factoids[16:02:11] <_Tassadar> or change the regexp, to match From: and then not-match root[16:02:11] <steelnwool> i know. it doesn't provide concrete examples.[16:02:26] <_Tassadar> you are now not-matching the entire From: root thing[16:02:35] <_Tassadar> you want to match From: first and then not-match root[16:02:57] <_Tassadar> that's just regexp basics[16:03:19] <_Tassadar> i don't see that you would need difficult if-then constructions, just the right regexp[16:04:00] <steelnwool> well cause either way will work. its just 2 approaches to the same issue.[16:04:05] <rob0> of course whatever expression you use must match the ACTUAL HEADER submitted.[16:04:10] <steelnwool> and i was taking his advice at the time :)[16:04:40] <rob0> and a non-root user could easily submit mail with a header saying ^From: root ...[16:05:33] <_Tassadar> yeah, my hint was strictly only meant for the environment described (the box being a dev-box, with fully trusted users and stuff)[16:06:06] <_Tassadar> of course matching a From: header is a security risk waiting to happen in a real world situation ;)[16:06:33] <Dominian> Just fix cron so it doesn't spew out junk for everytime it runs and only when it errors out or produces a warning[16:06:51] <_Tassadar> you can also configure cron to send to your email address anyway[16:06:57] <Dominian> yep[16:07:02] <_Tassadar> and/or use another smart host even[16:07:15] <_Tassadar> so you can still filter all other locally generated mail[16:07:27] <Dominian> I've never understood why you would want to make your mail server filter out cronjob junk when you can easily do it yourself with a few cron configuations[16:08:03] <_Tassadar> apparently most ppl don't know cron can even be configured at all[16:08:08] <_Tassadar> (it can, you know) ;)[16:08:10] <Dominian> heh[16:08:22] <steelnwool> because its UNIX, people do what they can, until they are told or find out other ways to do it. Don't act l ike this is suprising :)[16:08:43] <steelnwool> I fucking hate that reaction on internet forms "Why would you ever do it THAT WAY, waht an IDIOT".[16:08:47] <steelnwool> er forums.[16:08:59] <_Tassadar> lol[16:09:29] <_Tassadar> well it is true that some ppl are more keen to find The Right Way to do something than others[16:09:30] <steelnwool> not even in unix but in any field. i was reading a wilderness survival forum where some guy ripped into another guy for the fabric he chose for his tarp.[16:10:06] <steelnwool> right, but they should share, not condiscend. but i digress. the internet in general is a rude environment. everyone wants to out smart the other poor dude at the other end of the wire.[16:10:07] <_Tassadar> some ppl just use whatever small subset of features they know and try to hack everything with that, without ever wondering why everything is so difficult[16:10:24] <rob0> I likewise find fragile feelings distasteful. No one called you an idiot, and when you start out asking the wrong questions, you should be able to deal with being told you were wrong.[16:10:39] <steelnwool> rob0: oh i can deal with it. I'm just ranting now.[16:10:42] <_Tassadar> lol[16:10:43] *** lxsameer has joined #postfix[16:11:08] <rob0> Rant elsewhere, or be ignored. I ignore whiners.[16:11:12] <steelnwool> its not a matter of feelings, its a matter of being helpful by default.[16:11:13] <_Tassadar> anyway, in this specific case, you were told multiple possible ways to fix your problem without in a more or less friendly way, right?[16:11:33] <_Tassadar> so what a nice exception to usual internet-behaviour this channel is :)[16:11:38] <rob0> I'm quite helpful to people who don't whine.[16:11:38] <steelnwool> _Tassadar: i was indeed. it was a side rant.[16:11:38] *** henriknj_ has quit IRC[16:11:47] <lxsameer> maybe its not related , but what happen when i send a mail with mail client that has its smtp server to mydomain.com?[16:12:08] <Dominian> lxsameer: eh?[16:12:15] <Dominian> What do you mean "what happens" ?[16:12:20] <Dominian> What do you think happens?[16:12:29] <rob0> I would expect that client to make a connection to "mydomain.com" maybe.[16:12:31] <steelnwool> okay so cron question then: how do i redirect cron messages that come from things like cron.daily, and not crontab it self [i know how to do that][16:12:50] <lxsameer> Dominian: i mixed up with some smtp concepts , i'll tell you , can you please correct me ?[16:12:51] <_Tassadar> lxsameer: i don't think that would work[16:12:58] <_Tassadar> mydomain.com doesn't listen on tcp/25[16:13:25] <steelnwool> ah, /etc/crontab bingo. easy enough.[16:13:26] <rob0> There are different cron daemons. I don't think the Dillon cron in Slackware can redirect easily, not sure about Vixie cron and others.[16:13:31] <lxsameer> _Tassadar:: mydomain.com is an example[16:13:32] <steelnwool> thanks folks.[16:13:51] <_Tassadar> ah, in that case, what else would you expect than the obvious?[16:14:02] *** tjikkun has quit IRC[16:14:10] <rob0> steelnwool: yw, good luck.[16:14:12] <_Tassadar> (the obvious being your email client connects to the smtp server you configured)[16:14:27] <steelnwool> arg. all the circular talking and i completly lost sight of my goal. i DO want cron to go to root. just like it does not. i want all OTHER mail to go to a different address. so anything not to root, go to somewhere else. which is the best way to do taht?[16:14:40] <steelnwool> er "just like it does now"[16:15:01] <lxsameer> Dominian: i think when i send an email using something like gmail to a email address like X at Y dot com , gmail connect to the mail server that define by MX record in the Y.com dns[16:15:13] <Dominian> uhh yeah[16:15:14] <Dominian> that's normal[16:15:21] <Dominian> !mx[16:15:22] <knoba> Dominian: "mx" : Mail eXchanger : See the !mxrecord channel factoid if you're looking for definition of MX record[16:15:25] <lxsameer> Dominian: and connect to port 25 of that server[16:15:32] <Dominian> yes.. that's per RFC[16:15:33] <lxsameer> Dominian: am i right till now ?[16:15:43] <rob0> steelnwool, another Postfix suggestion is to use .forward files for your non-root cron users, redirecting everything where you want it.[16:15:51] <_Tassadar> yeah, it'll try the A-record too if MX doesn't exist[16:15:59] <_Tassadar> but okay, right till now[16:16:01] <Dominian> rob0: that's one thing I should work on.. swapping out Slackware's crap cron with something.. .better :P[16:16:17] <steelnwool> r0b .forward is for local unix users tho right?[16:16:23] <rob0> MUAs should not do MX lookups, and really, should not default to port 25.[16:16:34] <Dominian> rob0: talking about inter mail server exchange[16:16:44] <steelnwool> here is a concrete example: one of our webapps in jboss sends out mail. I want to rewrite all of that to go just to our in house distribution list and not to real users.[16:16:44] <rob0> Who but a local Unix user can possibly have a cron job?[16:17:09] <steelnwool> i'm not concerned about those cases right now. there are no local users cept root and jboss.[16:17:11] <lxsameer> Dominian: _Tassadar , so how is it work if i use a mail client like thunderbird to sending a mail? i use smtp.gmail.com as my mail server? how does gmail send mail now[16:17:20] *** bernd has quit IRC[16:17:25] <_Tassadar> lxsameer: you don't[16:17:37] <_Tassadar> lxsameer: you configure your networks own SMTP-server[16:17:48] <_Tassadar> lxsameer: if you don't know which server that is, ask your sysadmin[16:17:59] <_Tassadar> you can't just use any SMTP server[16:18:04] <lxsameer> _Tassadar: i see , its hard to say[16:18:18] <_Tassadar> most SMTP servers only accept mail from local users and/or authenticated users[16:18:32] <lxsameer> _Tassadar: i mean that how does an smtp server send mail to a foreign domain[16:18:33] <_Tassadar> otherwise they'd be open proxys which is a Bad Thing[16:18:37] <_Tassadar> (open relays)[16:18:39] <steelnwool> rob0: in short, i'd like ALL emails that are not TO ROOT, to go to a different address. for me, checking headers and redirecting them if not root, sounds reasonable. no?[16:19:25] <_Tassadar> lxsameer: your email client (thunderbird) submits the mail to your local SMTP server, which is either on your LAN or the SMTP server from your internet access provider[16:19:48] <_Tassadar> that SMTP server will do the required MX-lookups and connect to the right mailservers to actually deliver the mail to the right mailbox[16:20:25] *** Heldwin has joined #postfix[16:20:44] <_Tassadar> lxsameer: this is really really basic stuff, and none of this is postfix-specific[16:20:45] <lxsameer> _Tassadar: aha so the smtp server that i define in thunderbird will connect to the Y.com smtp server and deliver the mail, am i right ?[16:20:52] <_Tassadar> yes[16:21:02] <lxsameer> _Tassadar: ah thanks man[16:21:13] <_Tassadar> but you should configure an SMTP server first that actually accepts your mail ofcourse[16:21:43] <_Tassadar> so don't just use any SMTP server that you happen to know about, but configure your local SMTP server / the SMTP server from your internet access provider[16:22:00] <lxsameer> _Tassadar: thanks a lot man[16:22:04] <_Tassadar> np[16:22:38] <Heldwin> hello. I am trying to configure postfix with ssl/tls, using multiple transport and multiple relay. it is working for 2 smtp actually, but I am looking to use also multiple certificates. Is it in /etc/postfix/relay_ccerts ?[16:23:12] *** lxsameer has left #postfix[16:24:36] <Heldwin> (i cannot find the samples-tls.cf the file is refering to on my system)[16:29:33] <krambiorix> hi guys, i'm running postfix on my vps but port 25 isn't open. How can i make postfix listen on port 25?[16:30:04] <steelnwool> it does by default. perhaps ip tables or something is protecting port 25. try this "telnet localhost 25" and see if it connects.[16:30:41] <krambiorix> steelnwool, telnet: Unable to connect to remote host: Connection refused[16:30:43] <steelnwool> if you are testing port 25 from home, your isp may be clocking outgoing 25. they do that often.[16:30:54] <krambiorix> steelnwool, i test on the server[16:30:57] <steelnwool> which distro are you running?[16:31:01] <Dominian> krambiorix: are you sure postfix is running?[16:31:03] <krambiorix> steelnwool, debian[16:31:16] <steelnwool> ^ what dominian said.[16:31:24] <Dominian> check your logs[16:31:36] <steelnwool> ps aux|grep postfix[16:31:49] <krambiorix> Dominian, ps aux|grep postfix[16:31:49] <krambiorix> root 11374 0.0 0.3 5480 1788 ? Ss 15:27 0:00 /usr/lib/postfix/master[16:31:49] <krambiorix> postfix 11380 0.0 0.3 5668 2076 ? S 15:27 0:00 qmgr -l -t fifo -u[16:31:49] <krambiorix> postfix 11381 0.0 0.3 5492 1788 ? S 15:27 0:00 pickup -l -t fifo -u -c -o content_filter smtp:127.0.0.1:10027[16:31:49] <krambiorix> postfix 11385 0.0 0.5 6124 2792 ? S 15:27 0:00 tlsmgr -l -t unix -u -c[16:31:50] <krambiorix> root 32688 0.0 0.1 3448 636 pts/0 S+ 16:37 0:00 grep postfix[16:31:59] <Dominian> use a pastebin please[16:32:05] <krambiorix> aw sry[16:32:06] <steelnwool> are you running a local firewall?[16:32:12] <krambiorix> steelnwool, no[16:32:18] <Dominian> iptables -L and make sure[16:32:38] <Dominian> postconf -n output to pastebin would be helpful[16:32:43] <krambiorix> Dominian, steelnwool http://pastebin.com/VGqbyisB[16:45:29] *** cga has quit IRC[16:54:27] *** steelnwool has left #postfix[17:00:46] *** _artist_m_ has joined #postfix[17:02:12] *** _artist_m_ has left #postfix[17:12:25] *** dragonheart has quit IRC[17:14:28] *** higuita has quit IRC[17:15:07] *** krambiorix has quit IRC[17:16:24] *** tjikkun has joined #postfix[17:17:18] *** higuita has joined #postfix[17:23:30] *** brancaleone has joined #postfix[17:29:19] *** kad_ has joined #postfix[17:31:49] *** JonnyV has joined #postfix[17:33:35] *** e-jones has quit IRC[17:44:47] *** robotarmy has joined #postfix[17:46:08] *** smica has joined #postfix[17:49:27] *** henriknj_ has joined #postfix[17:50:59] *** xabbu has quit IRC[17:52:25] *** higuita has quit IRC[17:53:48] <kad_> heys!! i've configured "Postfix LDAP" , but i have problem with "Sasl", if i authenticate via SASL for "Local Accounts under Linux, it works!", if i Authenticate "LDAP Users" visa Sasl, it fail give me: authentication fail.... my configuration there at : http://pastebin.com/Yhndr9Rw[17:54:28] <lunaphyte_> i don't see any logs there.[17:54:54] <kad_> ah sorry[17:55:29] <kad_> http://pastebin.com/E5KysNB6[17:55:48] <kad_> This log for when LDAP users authenticate via sasl[17:55:58] <lunaphyte_> you'll need to look at the logs for whatever sasl software you're using.[17:58:03] <kad_> lunaphyte, i'm using "saslauthd" under Ubuntu, and in the "configuration of: /etc/default/saslauthd" there's no "logs configuration" to add there[17:58:32] <lunaphyte_> why are you using cyrus instead of dovecot?[17:59:01] *** higuita has joined #postfix[17:59:03] * cpm uses the lunaphyte_ sasld[17:59:50] <kad_> i'm using "dovecot" as an IMAP/POP3 , but "cryus" installed with "sasl" from the "apt-get" utility[18:00:17] <lunaphyte_> that's silly.[18:00:41] <lunaphyte_> also, i don't know what you mean by cyrus installed with sasl.[18:01:43] <kad_> lunaphyte, you mean "cyrus" for IMAP/POP3 Server ?[18:01:49] <lunaphyte_> huh?[18:03:48] *** neorise-rider has joined #postfix[18:04:08] *** loddafnir has joined #postfix[18:08:29] *** |neorise-rider| has joined #postfix[18:08:30] *** neorise-rider has quit IRC[18:09:40] <rob0> !tell kad_ sasl[18:09:41] <knoba> kad_: "sasl" : SASL is 'Simple Authentication and Security Layer', necessary for SMTP AUTH, and provided to Postfix by addin software. Cyrus SASL and/or Dovecot IMAP/POP3 can provide SASL. See http://www.postfix.org/SASL_README.html for details.[18:12:19] *** JonnyV has quit IRC[18:13:17] *** jimpop has joined #postfix[18:16:08] *** Vivek has quit IRC[18:16:20] *** Wilkins has quit IRC[18:16:43] *** higuita has quit IRC[18:19:01] *** higuita has joined #postfix[18:25:40] <kad_> thx =) i didn't know that "dovecot" provide sasl[18:25:46] <kad_> now i configure it and it works =)[18:25:57] <Dominian> it will provide server-side sasl yes[18:26:04] <Dominian> it doesn't provide a client lib for sasl yet..[18:26:07] <Dominian> unlike cyrus[18:28:04] *** Vivek has joined #postfix[18:32:41] *** bluethundr has joined #postfix[18:40:21] *** Matic`Makovec has joined #postfix[18:46:52] <kad_> last question. i have one domain for my "local Accounts and LDAP users", and i configure the "home_mailbox = Maildir/ , but if i receive any mail to LDAP users, they are delivered to "mailbox" not Maildir why? this is my postconf -n http://pastebin.com/MgVAqbT5[18:47:07] *** ackthet has joined #postfix[18:47:10] *** ackthet has left #postfix[18:52:45] *** makomi has joined #postfix[18:53:32] *** karlgus has joined #postfix[19:09:22] *** lifeofguenter has quit IRC[19:09:48] *** weedar has joined #postfix[19:31:15] *** RoAcH has joined #postfix[19:34:44] *** karlgus has quit IRC[19:38:23] *** makomi has quit IRC[19:39:37] *** makomi has joined #postfix[19:41:00] <adaptr> why are you "quoting everything you say" ?[19:41:53] <forsberg> :)[19:42:14] *** neekfenwick_ has quit IRC[19:43:00] *** shinao1 has joined #postfix[19:43:10] <cpm> "me doesn't know"[19:43:44] <kad_> :P[19:51:03] *** Ryushin has joined #postfix[19:53:08] *** skeeved has quit IRC[20:00:36] *** Twinkletoes has quit IRC[20:00:43] *** rajijoom has joined #postfix[20:04:31] *** cga has joined #postfix[20:19:04] *** higuita has quit IRC[20:21:46] *** higuita has joined #postfix[20:25:49] *** rajijoom has quit IRC[20:27:33] *** JonnyV has joined #postfix[20:31:13] *** Section1 has quit IRC[20:35:02] *** bsund has joined #postfix[20:42:37] *** makomi has quit IRC[20:47:01] *** higuita has quit IRC[20:49:35] *** higuita has joined #postfix[20:54:36] *** fken has joined #postfix[20:57:49] <fken> hello[20:58:30] <fken> some server returned me a spam blocking message when i try to send a message[20:58:51] <fken> for example : gmail send my emails to spam box[20:59:28] <fken> and another one returned an error. I think I have made a config mistake or something like that but I dont know where I should investigate[20:59:34] <fken> Have you any advice ?[21:01:45] *** schnoobby has joined #postfix[21:01:58] *** car has left #postfix[21:03:00] <Zerberus> !tell fken welcome[21:03:00] <knoba> fken: "welcome" : welcome to #postfix! if you're joining for the first time, or are new to irc, the first thing you'll want to do is read the channel topic (/topic). it includes crucial instructions on how to effectively ask for help here, and what data you should include with your questions. the degree of success you'll have is directly related to how effectively you're able to follow those guidelines.[21:04:55] *** deathstroke has joined #postfix[21:05:35] *** deathstroke has left #postfix[21:05:59] *** henriknj_ has quit IRC[21:13:58] <fken> Zerberus: sorry : http://pastebin.de/9811 (postconf -n) & http://pastebin.de/9812 (mail.info)[21:14:21] *** MAAAAAD has quit IRC[21:18:53] *** cpm has quit IRC[21:19:11] <kad_> why postfix deliver all mails to mailbox not maildir although i've did: home_mailbox = Maildir/ => my configuration: http://pastebin.com/V8yHFM63[21:20:51] <Zerberus> fken: your forward and reverse DNS does not match[21:21:05] <Zerberus> fken: I do not see the IP being listed at spamhaus[21:23:23] <Zerberus> fken: ah, I see you listed: http://www.spamhaus.org/query/bl?ip=78.226.153.190[21:25:20] <fken> what does that mean ? that someone declared I am a spammer ? or that a security hole is in my configuration, that someone used it and that I need to fix something ?[21:26:06] <Zerberus> fken: would you mind to read the spamhaus comment?[21:26:43] <fken> Ok I'll read it sorry[21:26:51] *** karlgus has joined #postfix[21:27:21] <Zerberus> fken: and get the rDNS corrected[21:28:22] <fken> I just wondered whether you find my postconf -n correct (except rDNS issue) or if there is something dangerous in it. The problem is that I dont want to cause trouble to anyone because of my lack of experience[21:30:25] <fken> meal is ready so I'll check that later. By the way, thank you, I think your advices will help me a lot ![21:31:06] <Zerberus> fken: nothing dangerous in there. I would just not use a snakeoil ssl cert[21:31:27] <Zerberus> fken: with subject=/CN=Posseidon.example.org[21:34:33] <fken> why Posseidon ? It was the previous hostname of the server...[21:35:18] <Zerberus> fken: certainly created automatically during system installation[21:36:21] <fken> ok[21:36:31] <fken> see you later and thanks again[21:37:18] * adaptr loves snakeoil[21:38:03] <Zerberus> adaptr: you use it in the morning and before sleep?[21:38:33] <adaptr> no, it's just become so rare because nobody buys it, that's it's actually rather valuable now[21:40:45] *** UQlev has quit IRC[21:40:47] *** cga_ has joined #postfix[21:42:43] *** cga has quit IRC[21:44:27] *** cga_ is now known as cga[21:47:13] *** Ryushin has quit IRC[21:48:36] *** henriknj_ has joined #postfix[21:49:17] *** Vivek has quit IRC[21:49:17] *** Vivek has joined #postfix[21:54:33] *** shinao1 has quit IRC[22:02:19] *** makomi has joined #postfix[22:03:17] <rcsheets> i have just enabled a dual-stack v4/v6 MX and an older (2.1.5) postfix install on one of my (v4-only) servers is getting the IPv6 address for some reason and of course failing to connect[22:05:20] <rcsheets> is there a way to have it only try IPv4 connections?[22:05:48] *** saurabhb has quit IRC[22:06:33] <adaptr> rcsheets: if postfix is bound to ipv4-only interfaces, it won't ask for ipv6 records. that would be silly.[22:07:50] <rcsheets> according to netstat, the only thing listening on tcp6 is sshd[22:07:58] <rcsheets> (why, i'm not sure)[22:08:06] <adaptr> defaults[22:08:16] <adaptr> 0.0.0.0 measn both 4 and 6[22:08:18] <adaptr> *means[22:08:40] *** saftsack has joined #postfix[22:09:00] <rcsheets> postfix is not listening on 0.0.0.0[22:09:11] <saftsack> hey, is there a better method for mail users than /etc/passwd with shadow?[22:09:11] <rcsheets> it listens on 206.71.169.196 and 127.0.0.1[22:09:18] <adaptr> rcsheets: I didn't say it was[22:09:27] <rcsheets> no, you didn't. i'm providing more information.[22:09:32] <adaptr> saftsack: a "better" method to do what ?[22:09:44] <Dominian> !virtual[22:09:44] <knoba> Dominian: "virtual" : a way to configure additional domains and user accounts (that do not need to exist in your /etc/passwd). See: http://www.postfix.org/VIRTUAL_README.html[22:09:48] <saftsack> adaptr, to create, manage, ... mail users.[22:09:55] <Dominian> saftsack: you m ean something like that factoid above?[22:09:56] <adaptr> it depends[22:10:23] <saftsack> Dominian, yes. but if /etc/passwd is the common way, i will do this. i thought that there are some better, maybe[22:10:34] <Dominian> er[22:10:39] <Dominian> There's no 'common' or 'better' way[22:10:44] <Dominian> its whatever suits your needs[22:10:59] <adaptr> if you need to ask the question, I think the best way is "postfix stop"[22:11:06] <Dominian> some use /etc/passwd, some use virtual setup with mysql, some use ldap.. just depends[22:11:34] <adaptr> generally, people who want somethig have a fairly good idea WHAT they want. you either have local users, or you want mass hosting and/or no localusers[22:11:49] <rcsheets> the smtp client seems to get the A record sometimes and the AAAA other times. but you say it should not be getting the AAAA if smtpd isn't listening on an IPv6 address?[22:12:05] <adaptr> and postfix doesn't restrict you anywhere. you're free to use databases for local users, or /etc/passwd for virtual[22:12:16] <Dominian> if postfix isn't configured to listen on AAAA, then it won't, but whatever you get from DNS isn't controlled by your mail server etc.[22:12:23] <adaptr> rcsheets: if *smtp* is not bound to ipv6. the two are distinct[22:12:42] <adaptr> however, as Dominian says, you can't necessarily control what a nameserver returns[22:12:49] <rcsheets> what configuration parameter do i need to look at to see what smtp is bound to?[22:12:56] <adaptr> !smtp_bind_address[22:12:57] <knoba> adaptr: "smtp_bind_address" : a configuration parameter in the main.cf: An optional numerical network address that the SMTP client should bind to when making a connection.[22:13:02] <rcsheets> thanks[22:13:20] <adaptr> if that's not set, then it uses whatever IP/interface provides the route to the destination[22:13:28] <rcsheets> it's the same v4 address that smtpd is listening on.[22:13:39] <Dominian> I guess I missed the first problem[22:14:01] <adaptr> !inet_protocols[22:14:01] <knoba> adaptr: "inet_protocols" : The Internet protocols Postfix will attempt to use when making or accepting connections. Specify one or more of ipv4 or ipv6 , separated by whitespace or commas. The form all is equivalent to ipv4, ipv6 or ipv4 , depending on whether the operating system implements IPv6.[22:14:06] <Dominian> adaptr: beat me to it[22:14:30] <rcsheets> yeah that doesn't exist in 2.1.5 though[22:14:31] <Dominian> iirc.. postfix tries ipv6 first then ipv4.. IF its listening on both protocols[22:15:02] <rcsheets> i suppose it's just slowing down delivery a bit, so it's not really the end of the world[22:15:35] <Aprogas> There is a setting for which protocol is preferred[22:16:12] <adaptr> !smtp_address_preference[22:16:12] <knoba> adaptr: Error: "smtp_address_preference" is not a valid command.[22:16:24] <rcsheets> aha[22:16:26] <adaptr> that means it's post-2.3 :)[22:16:32] <adaptr> knoba is a bit stale[22:16:34] <rcsheets> oh[22:16:42] <rcsheets> "This feature is available in Postfix 2.8 and later."[22:16:50] <Aprogas> This feature is available in Postfix 2.8 and later.[22:16:53] <adaptr> obviously, if you don't have inet_proto, you won't have anything that looks like that either[22:16:54] <Aprogas> oops[22:17:16] <adaptr> I suggest you hack the box and blacklist the ipv6 module - I do[22:17:54] <adaptr> but really, aren't there rules about what a nameserver should return if the request comes in over ipv4 ?[22:18:01] <rcsheets> you'd think[22:18:26] <Aprogas> Most nameservers were IPv4-only when IPv6 started to get introduced, so that would have even further slowed that down.[22:18:28] *** MAAAAD has joined #postfix[22:18:30] <rcsheets> i wonder what it would do if i put the address in /etc/hosts with just the v4 address[22:18:59] <adaptr> depends on the behaviour of gethostinfo() on your system[22:19:05] <adaptr> gethostaddress(), sorry[22:19:34] <Dominian> Yeah if its not availabe in a stable release, knoba shouldn't know about it yet.[22:19:49] <adaptr> in general, postfix is not impressed by non-dns data, as mail relies far to much on functional DNS[22:20:03] * rcsheets sends some more mails to see what it does[22:20:12] <adaptr> Dominian: there's plenty of options between 2.3 and 2.7 it doesn't have[22:20:14] *** schnoobby has quit IRC[22:20:38] <adaptr> isn't there some monkey who keeps the records here ?[22:20:56] <kad_> this is my "postconf -n" => http://pastebin.com/2fNxFs5h , why when i receive mail from LDAP users, they are created as :mailbox not Maildir under the : /home/vmail/ ? thx[22:21:35] <adaptr> "receive mail from LDAP users" makes zero sense to me[22:21:41] <Dominian> adaptr: Just making a point the option mentioned above was 2.8[22:21:48] <Dominian> adaptr: I know there are other options missing.[22:21:52] <adaptr> you receive mail from sender addresses[22:21:52] <Dominian> adaptr: Which we should remedy :P[22:22:37] <kad_> adaptr, if external users send mail to LDAP users or LDAP users send mail to Local users , mails kept as : mailbox format not Maildir[22:22:56] <adaptr> kad_: there is no such thing as an "LDAP user"[22:23:19] <adaptr> if it concerns local system users, check home_mailbox and local_transport[22:23:23] <Dominian> You can authenticate or what not to LDAP but you don't store email in LDAP[22:23:32] <adaptr> if they're virtual, check virtual_mailbox_maps[22:24:38] <kad_> adaptr, mean my configuration virtual_mailbox_maps = hash:/etc/aliases hash:/etc/postfix/vmailbox ldap:/etc/postfix/ldap-aliases.cf is wrong right ?[22:24:48] <rcsheets> the /etc/hosts thing seems to have worked.[22:25:37] <adaptr> kad_: I'd say that's terminal, yes.[22:25:59] <adaptr> virtual_mailbox_maps REQUIRES addresses to point to actual mailbox locations.[22:26:18] <adaptr> /etc/aliases, by definition, does not point to mailbox locations[22:28:19] <Dominian> well /etc/aliases is just that... aliases[22:29:24] <adaptr> sure, you can point them to files, which may be interpreted as mailboxes - but root MUST have an alias, so /etc/aliases will fail[22:30:10] <adaptr> the concept is fail. use any other friggin file already ! what, you ran out of filenames?[22:30:32] *** bgerber has joined #postfix[22:33:15] <bgerber> I had a break-in and I need to get postfix to process the 275,952 messages after I do a new installation.[22:34:04] <bgerber> I would like to have any bounced message put to a file instead of a bounce back to who sent mail[22:35:09] <bgerber> I am going to pull the internet connection on the machine, stop things and do a back up.[22:35:43] <rcsheets> postfix stop?[22:35:46] <bgerber> Then once I have don a fresh linux installation rsync back all the postfix email[22:36:03] <bgerber> I have stopped postfix[22:36:06] <rcsheets> they'll be in queue files, won't they?[22:36:17] <bgerber> yes[22:36:31] <rcsheets> then ... you're done. good job.[22:36:36] <bgerber> and in defer and deferred as well[22:37:44] <bgerber> I just do not want to lost any email already on the system. The last time it bounced about 200,000 emails[22:37:49] *** karlgus has quit IRC[22:38:18] <bgerber> I want to this time have them go to a file where I can sort them out.[22:38:21] <rcsheets> freeze everything before you start postfix again[22:38:32] <bgerber> how?[22:38:51] <rcsheets> i thought there was a way. i may be mistaken.[22:38:54] <bgerber> I have stopped all services on the computer[22:39:11] <adaptr> bgerber: where do these emails come from[22:39:22] <bgerber> so I will be able to get a clean backup[22:39:58] <bgerber> I usually get 2000+ emails per day that are sorted from email lists.[22:40:07] <rcsheets> postsuper -h ALL ... though that might require the mail system to be running :\[22:40:33] <kad_> adaptr, i did it like this: http://pastebin.com/LptxpKrU but have problem that only Maildir of "kad" give error : aildir access problem for UID/GID=1001/1001: create maildir file /home/vmail//kad/tmp/1283978669.P23165.mail: Permission denied (user kad is a local user) while user support is authenticate from LDAP and don't give any error[22:40:37] <bgerber> I am going to unplug the ethernet cable[22:40:42] <Dominian> !permissions[22:40:42] <knoba> Dominian: Error: "permissions" is not a valid command.[22:40:44] <Dominian> !permission[22:40:45] <knoba> Dominian: Error: "permission" is not a valid command.[22:40:49] <Dominian> !permission_denied[22:40:50] <knoba> Dominian: Error: "permission_denied" is not a valid command.[22:40:50] <adaptr> bgerber: where do these emails come from[22:40:51] <Dominian> damn it[22:41:14] <bgerber> most email lists and friends and for my businesses.[22:41:22] <Dominian> kad_: basically it appears you have permissions issues in /home/vmail[22:41:58] <kad_> but /home/vmail have full permission for users, group and other[22:42:15] <adaptr> bgerber: I don't understand what "I had a breakin" means[22:42:17] <Dominian> !virtual[22:42:17] <knoba> Dominian: "virtual" : a way to configure additional domains and user accounts (that do not need to exist in your /etc/passwd). See: http://www.postfix.org/VIRTUAL_README.html[22:42:23] <Dominian> kad_: you need to read that[22:42:30] <rcsheets> adaptr: i think his box was rooted.[22:42:48] <bgerber> so what I want to do is just have postfix dump any email it would bounce to a file instead of really bouncing messages.[22:42:49] <Aprogas> adaptr: Thiefs cam in his house at night and left 275,952 messages.[22:43:18] <adaptr> bgerber: where do these emails come from[22:43:22] <thumbs> Aprogas: he was an open relay for a brief amount of time[22:43:25] <thumbs> err[22:43:32] <thumbs> adaptr: he was an open relay for a brief amount of time[22:43:42] <bgerber> Some cracked into the system. I did not have only passphrase access enabled like I thought[22:43:59] <adaptr> pity. if they were local-submitted you could weed them out easily[22:44:14] <bgerber> so I have mix of emails[22:44:53] <bgerber> spam and possible spam bounces and bouncing of my good emails[22:45:30] <adaptr> good emails would not be bouncing[22:45:42] <bgerber> about 2000+ per day. I usually have about 300 left unsorted.[22:46:12] <bgerber> They are and I get reports back from the email lists telling me what emails I have bounced.[22:46:52] <bgerber> about 1000 per day and little to nothing in my unsorted inbox.[22:47:38] *** cga_ has joined #postfix[22:47:41] <bgerber> my dual quad core processor just can't handle the current load[22:48:37] <adaptr> what load ?[22:48:47] <bgerber> So I want to save what I can in a state of not internet connection and let them process.[22:49:42] *** cga has quit IRC[22:50:50] <bgerber> 20-30 Plus users is what uptime is showing right now. No email is really being delivered. It started about 2 weeks ago when someone got into the system.[22:51:37] <bgerber> That I why I want to do a fresh install and recreate all users with random passpwords[22:51:50] <adaptr> postfix will be bound by your I/O looong before you exhaust even a single-core CPU[22:53:30] *** lkthomas has quit IRC[22:53:30] *** Rado has quit IRC[22:53:37] <bgerber> I have looked at some of the emails in the bouncing before they have left the system and they have been ones I want.[22:53:38] <bgerber> ok[22:53:51] <bgerber> but is there a way to have all these bounces I am seeing sent to a file instead of back to the sender.[22:54:46] *** Vivek has quit IRC[22:54:46] *** felipe` has quit IRC[22:55:00] *** vho has quit IRC[22:55:00] *** Nombrandue has quit IRC[22:55:00] *** lisa has quit IRC[22:55:34] *** Nombrandue has joined #postfix[22:55:58] *** intelinsider_ has joined #postfix[22:58:17] *** Zerberus has quit IRC[22:58:17] *** intelinsider has quit IRC[22:58:17] *** noneo has quit IRC[22:58:17] *** makomi has quit IRC[22:58:18] <bgerber> So when I rsync back the /var/spool/postfix I will get what it bounces or wants to bounce in a mbox file on my system.[22:58:18] <bgerber> After the fresh installation.[22:58:18] <bgerber> I have tried to google for a solution, but have not found one.[22:58:18] <bgerber> Right now if I trun postfix back on i starts to bounce almost all the messages.[22:58:18] *** saftsack has quit IRC[22:58:18] *** lkthomas has joined #postfix[22:58:18] *** vho\ has joined #postfix[22:58:19] *** lisa has joined #postfix[22:58:19] *** magyar has quit IRC[22:58:19] *** Haraken has quit IRC[22:58:20] *** _Zerberus has joined #postfix[22:58:20] *** _Zerberus is now known as Zerberus[22:58:20] <bgerber> I have looked at them and about 1/3 are ones I need and want to keep instead of bouncing[22:58:20] *** magyar has joined #postfix[22:58:20] *** noneo has joined #postfix[22:58:20] <bgerber> brb[22:58:20] *** Vivek has joined #postfix[22:58:20] *** evilRado has joined #postfix[22:58:20] *** intelinsider_ is now known as intelinsider[22:58:25] *** intelinsider has quit IRC[22:58:25] *** intelinsider has joined #postfix[22:58:38] *** jim_SFU has left #postfix[22:58:40] <bgerber> business phone call. But it appears no messages are getting out that I send and the onces sent to me that I need are being bounced[22:58:58] *** Haraken has joined #postfix[22:59:14] <bgerber> but I have to take this business call and I do no know how long I will be on it.[22:59:50] <bgerber> I will be back after the call to see if anyone responds, thanks in advance.[23:00:17] *** stwange has joined #postfix[23:01:03] *** nightwalk has joined #postfix[23:07:12] <stwange> with virtual_maps = hash:/etc/postfix/virtual_addresses I can split up incoming email by domain, and have a catchall for anything else sent to that domain (so eg. @example.com me at somewhere\njohn@example dot com john@somewhere_else) - to have a catch all for all domains on my server so I have to list them all in there?[23:08:29] <Aprogas> I'm not sure I correctly parse your sentence, but I think the answer is: yes.[23:09:40] <stwange> the "so I" should have been "do I", any other errors are down to your parser =), and thanks.[23:10:11] *** cts has joined #postfix[23:10:37] <stwange> am I right in that the catch alls need to go above the specific addresses?[23:14:30] *** cts has left #postfix[23:17:26] <adaptr> order isn't important[23:18:48] <stwange> thanks, seems to have worked[23:22:37] *** stwange has quit IRC[23:24:08] *** tharkun has joined #postfix[23:31:31] *** Matic`Makovec has quit IRC[23:32:08] *** evilRado is now known as Rado[23:43:27] *** Vivek has quit IRC[23:45:26] *** lifeofguenter has joined #postfix[23:51:03] *** uqlev has joined #postfix[23:55:00] *** CountDown has joined #postfix[23:56:39] *** Vivek has joined #postfix[23:59:20] *** henriknj_ has quit IRC