June 1, 2011 
< | 1 | 2 | 3 | 4 | 5 | 6 | 7 | 8 | 9 | 10 | 11 | 12 | 13 | 14 | 15 | 16 | 17 | 18 | 19 | 20 | 21 | 22 | 23 | 24 | 25 | 26 | 27 | 28 | 29 | 30 | >
June 1, 2011 [00:00:05] <tharkun> Although if i could find a sponsor for a 3G ipad 2 i wouldn't complain[00:00:09] *** Xiol has joined #postfix[00:00:09] <seekwill> From my understanding, CDMA is what powers 3G[00:00:10] * tharkun stares at seekwill[00:00:18] <seekwill> A sponsor?[00:00:28] <tharkun> YEEEEEESSSSSSSSSSSSSSSSSS[00:00:35] <seekwill> What do you mean?[00:00:39] <seekwill> Service provider?[00:01:02] <tharkun> You get to put a sticker on my ipad if you pay a small part of it, like 90 % of it :D[00:01:17] <jimpop> in verizon's world, their CDMA network is what they call 3G[00:01:18] <seekwill> lol[00:01:33] <jimpop> in att's world, their GSM network is what they call 3G[00:01:49] <rob0> #G $G %G[00:01:58] <jimpop> Apple has a 3G phone (in order to further confuse the market)[00:02:45] <seekwill> ah, VZW calls it EVDO[00:03:06] <seekwill> AT&T EDGE[00:03:08] <tharkun> At the bottom line they all call them ROE[00:03:17] <jimpop> ;-)[00:03:31] <seekwill> http://en.wikipedia.org/wiki/3G :)[00:03:49] <jimpop> it's nothing but a mess[00:03:52] <seekwill> I have a friend in the telcom industry who helped me decipher this[00:03:54] <seekwill> yeah[00:04:02] *** yashy has quit IRC[00:05:01] <tharkun> The next thing around should be voice Encryption. There has been far too many ilegal line tamperings[00:05:47] <rob0> Who needs encryption? Just speak in Igpay Atlinlay.[00:05:47] <seekwill> heh[00:10:07] *** Section1 has quit IRC[00:10:59] *** Zeit|awy has quit IRC[00:11:05] *** Zeit|awy has joined #postfix[00:14:40] *** Timzzzz is now known as Timmooo[00:15:30] *** Zeit|awy has quit IRC[00:15:49] *** Xiol has quit IRC[00:19:19] <seekwill> So yeah... about that spam...[00:23:43] <athemiya> Could I talk a postfix scenario to someone please?[00:24:37] <seekwill> I think you could[00:24:45] <athemiya> Seekwill: thanks....[00:26:42] <athemiya> OK. Say my Postfix server lives on a domain named: ussu.sussex.ac.uk and it receives incoming emails from the same domain (ussu.sussex.ac.uk) and also from another domain sussex.ac.uk (both domains are in the same area, i.e. IP: 139.184) and that these emails are sent from other mailservers to it, what do I need to do ensure that Postfix both accepts incoming emails and then is able to send[00:26:42] <athemiya> emails out to both @ussu and @sussex without errors such as "unknown user" appearing in the mail.logs?[00:27:40] <athemiya> Just like what is happening here: Pastebin: http://pastebin.com/Hubj71GZ[00:31:42] *** kreign has joined #postfix[00:32:46] <kreign> hi, I'm trying to figure out how to deny mail sent through my servers with username at domain dot com where username is forged and domain.com is my domain.[00:33:20] <athemiya> Seekwill: Just got to pop off for 25, so I'll check back shortly.....[00:33:23] <kreign> none of the 'From:" addresses are correct.[00:33:43] <kreign> I'm wondering if postfix itself has a way to do this or if an independent tool is necessary.[00:33:44] *** e-anima has quit IRC[00:41:51] <seekwill> kreign: have your users authenticate[00:42:41] *** war9407 has joined #postfix[00:43:07] <seekwill> athemiya: I'm confused... :/[00:47:07] <kreign> seekwill, hmm and then what?[00:47:14] <kreign> seekwill, because I'm already requiring authentication.[00:51:28] <Lenhix> Hello. How can I send copies to various mailboxes (or tell the MDA to do so) if the sender matches a specific address? i.e. mail coming from sth at example dot com should be delivered to box1 at domain dot com, ..., boxN at domain dot com. And is it possible to do so matching a specific subject inside the message[00:59:42] <kreign> Lenhix, might be a destination filter setting, eg. sieve, not postfix.[00:59:52] <kreign> postfix doesn't care about storage per se[01:00:03] *** ChameleonSys has quit IRC[01:00:03] *** cerise has quit IRC[01:00:22] *** _ruben_ has joined #postfix[01:00:24] *** ChameleonSys has joined #postfix[01:00:36] *** P1ersson has quit IRC[01:00:37] *** devurandom has joined #postfix[01:00:39] *** RecQuery has quit IRC[01:00:39] *** _ruben has quit IRC[01:00:39] *** decoder has quit IRC[01:00:41] *** P1ersson has joined #postfix[01:00:50] *** Tormin has quit IRC[01:00:54] <seekwill> kreign: There's a setting that ties in auth to those addresses. I can;'t remember what it is sorry[01:00:54] *** decoder has joined #postfix[01:01:02] *** Xjs|moonshine has quit IRC[01:01:04] *** seekwill has quit IRC[01:01:07] *** milligan has quit IRC[01:01:08] *** micols_ has quit IRC[01:01:08] *** _dev_urandom has quit IRC[01:01:09] *** tris has quit IRC[01:01:09] *** RecQuery has joined #postfix[01:01:09] *** RecQuery has joined #postfix[01:01:19] *** Tormin has joined #postfix[01:02:02] *** milligan has joined #postfix[01:04:35] *** tris has joined #postfix[01:06:26] *** Cerise has joined #postfix[01:07:21] *** micols has joined #postfix[01:08:55] <Lenhix> thx kreign.[01:09:17] <Lenhix> I'd have to find a good example, tho. But sure there's one on the internet.[01:10:32] <kreign> Lenhix, yeah, you'll probably end up using sieve.[01:11:03] <kreign> Lenhix, dovecot and cyrus do sieve, and I believe courier may as well.[01:11:13] <kreign> it's kinda ugly.[01:11:20] <kreign> (poor docs[01:12:06] <Lenhix> ugly sieve or ugly courier?[01:12:10] <athemiya> seekwill: Can I try to explain myself better? Whats confusing you?[01:14:08] <athemiya> Is anyone free to offer some help on outgoing emails in Postfix please?[01:14:50] <athemiya> mail.log here pastebin: http://pastebin.com/Hubj71GZ[01:19:35] *** Timmooo is now known as Timzzzz[01:21:23] *** negev has quit IRC[01:28:03] *** Lenhix has quit IRC[01:28:20] <Tabmow> !tell athemiya welcome[01:28:21] <knoba> athemiya: "welcome" : welcome to #postfix! if you're joining for the first time, or are new to irc, the first thing you'll want to do is read the channel topic (/topic). it includes crucial instructions on how to effectively ask for help here, and what data you should include with your questions. the degree of success you'll have is directly related to how effectively you're able to follow those guidelines.[01:30:54] <athemiya> Knoba and Tabmow: Thanks to you both, its actually the second or third time here :)[01:34:05] <tharkun> Lenhix: if the recipient is allways the same you can use an alias to deliver the various copies. Mail sent to 1 at example dot com gets delivered by 2 at example dot com and by 3 at example dot com[01:34:17] <athemiya> postconf -n and mail.log outputs here: http://pastebin.com/FVKTyHvv[01:36:48] <jdoe> what might cause postdrop/sendmail to block/zombify *after* outbound mail has been queued/send/delivered?[01:36:52] <Tabmow> athemiya: and what specific error are you talking about?[01:37:27] *** Xjs|moonshine has joined #postfix[01:38:03] <athemiya> Tabmow: when postfix tries to send emails to two different domains, it keeps stating that the user is "unknown" and it almost seems that its looking local to send the emails out. Very confusing![01:38:15] <athemiya> i.e. unknown user...[01:39:04] <Tabmow> athemiya: it is looking locally, you have it in mydestination[01:39:45] *** pmsz has quit IRC[01:40:18] *** BuenGenio has quit IRC[01:40:35] <athemiya> Yes, but id I dont have it under mydestination I end up receiving relay access denied errors when sending emails into postfix[01:40:47] <athemiya> sorry "if I dont"[01:41:29] <Tabmow> athemiya: What exactly are you trying to accomplish with this setup?[01:42:35] <athemiya> for postfix to receive emails from the local domain and sussex.ac.uk and route them into my RT queue (which I have working) and then be able to send emails out to both domains without errors.[01:43:02] <athemiya> ITs necessary for things such as auto-responders and replies to tickets etc[01:47:48] <Tabmow> So you have some sort of RT transport setup?[01:48:48] *** master_of_master has quit IRC[01:49:00] <athemiya> Tabmow. Yes, I use rt-mailgate to work out what email comes in and this then routes it into RT. Problem is when RT tries to send an autoresponse out back[01:49:04] *** Aprogas has quit IRC[01:50:40] *** bezourox has quit IRC[01:51:10] *** MAAAAAD has quit IRC[01:51:36] *** Zelest has quit IRC[01:51:42] *** P1ersson has quit IRC[01:52:05] *** Zelest has joined #postfix[01:52:06] *** Zelest has joined #postfix[01:52:10] *** on1ald has quit IRC[01:52:29] *** master_of_master has joined #postfix[01:52:32] <Tabmow> It is early in the morning, but I still don't really get it. Emails to RT work fine, but when RT tries to send a response back to the original sender, it doesn't go through?[01:53:11] <athemiya> Yes, basically when postfix tries to email anyone in @ussu and @sussex its syaing unknown user[01:53:34] <athemiya> receives is fine, just sending :([01:53:38] <Tabmow> And where are these mailboxes hosted?[01:54:01] *** MAAAAAD has joined #postfix[01:54:02] *** _bugz_ has quit IRC[01:54:07] <athemiya> I'm not hosting them, they are in the @sussex domain whereas my server is on the @ussu domain[01:54:17] *** VaNNi has quit IRC[01:54:29] *** bezourox has joined #postfix[01:54:31] *** on1ald has joined #postfix[01:54:38] <athemiya> (ussu being a subdomain of sussex)[01:54:42] <Tabmow> So, none of the boxes are hosted on your server? If not take those domains out of mydestination[01:55:04] <athemiya> I agree, but then I get problems with relay access denied[01:55:13] *** _bugz_ has joined #postfix[01:55:51] <Tabmow> !tell athemiya mydestination[01:55:52] <knoba> athemiya: "mydestination" : a configuration parameter in the main.cf: The list of domains that Postfix delivers via the $local_transport mail delivery transport. By default, mail is given to the Postfix local(8) delivery agent that looks up all recipients in /etc/passwd and /etc/aliases, or their equivalents. See http://www.postfix.org/postconf.5.html#mydestination for more information.[01:57:58] <Tabmow> !tell athemiya relay[01:57:58] <knoba> Tabmow: Error: No factoid matches that key.[01:58:03] <Tabmow> !tell athemiya relay_access[01:58:03] <knoba> athemiya: "relay_access" : see !relay_denied[01:58:10] <Tabmow> !tell athemiya relay_denied[01:58:10] <knoba> athemiya: "relay_denied" : NOQUEUE: reject: RCPT from CLIENT_HOST[CLIENT_IP]: 554 5.7.1 <RECIPIENT@RCPT_DOMAIN>: Relay access denied; from=<SENDER@SENDER_DOMAIN> to=<RECIPIENT@RCPT_DOMAIN> proto=ESMTP helo=<HELO>: This typically means that CLIENT_IP is not in mynetworks (and did not AUTH), and that RCPT_DOMAIN was not recognized as one of this Postfix's domains (not listed in mydestination, relay_domains or virtual_*_domai[02:00:43] <athemiya> TabmowL: by taking out the mydestination fields the relay access denied error returns. So with the knowledge base you have given me, if I ensure that the CLIENT_IP is listed in mynetworks (the IP's that these emails are coming from, i.e. the mailserver IP's) should that resolve it? I tried usign relay_domains before and again that didnt help[02:01:12] *** wdp has quit IRC[02:03:19] <Tabmow> athemiya: correct, if you trust this server, I.E it is your internal server...[02:03:26] *** iamchrisf has quit IRC[02:04:11] *** iamchrisf has joined #postfix[02:04:14] <athemiya> Totally :). May I kindly ask which file I need to add these IP's?[02:04:43] <Tabmow> !tell athemiya mynetworks[02:04:43] <knoba> athemiya: "mynetworks" : a configuration parameter in the main.cf: The list of "trusted" SMTP clients that can relay email.[02:05:11] <athemiya> sorry :)[02:05:29] *** ncode has quit IRC[02:05:55] <Tabmow> It's ok, you have to start somewhere...[02:06:22] <Tabmow> athemiya: http://www.postfix.org/BASIC_CONFIGURATION_README.html <-- that is a good start[02:07:28] <athemiya> Tabmow: Excellent thanks so much, I think I understtand alot better now :)[02:09:09] <Tabmow> athemiya: sure.[02:10:44] *** Aprogas has joined #postfix[02:16:21] *** P1ersson has joined #postfix[02:16:38] *** BuenGenio has joined #postfix[02:16:39] *** VaNNi has joined #postfix[02:20:22] *** xpeed has quit IRC[02:26:59] *** gongoputch1 has quit IRC[02:34:52] *** sphenxes01 has quit IRC[02:35:14] *** vishwa has quit IRC[02:45:02] *** ncode has joined #postfix[02:45:03] *** ncode has joined #postfix[02:47:05] *** sphenxes01 has joined #postfix[02:52:47] *** BuenGenio has quit IRC[03:09:19] *** master_of_master has quit IRC[03:10:49] *** master_of_master has joined #postfix[03:12:53] *** codeshah has quit IRC[03:13:13] *** codeshah has joined #postfix[03:49:37] *** Timzzzz is now known as Timmooo[04:00:49] *** jfried has quit IRC[04:24:43] *** Silowyi has joined #postfix[04:25:38] <Silowyi> is there an alternative to amavisd-new that doesn't use 300 MB (the current usage on my system with 4 children, and that's with clamd and spamd! )[04:26:56] <Silowyi> right now my spam/AV set up (3 spamd, 1 clamd, 4 amavisd-new) tops out at nearly 550 MB on startup![04:28:46] <jimpop> Silowyi: dump amavisd and just use spamass-milter and clamav-milter[04:32:29] *** kuhkatz has quit IRC[04:32:47] *** magyar has quit IRC[04:33:29] *** uqlev has joined #postfix[04:44:00] <lunaphyte> tbh, 300mb doesn't really seem terribly exorbitant to me for a piece of software that's tasked with passing judgment of every aspect of a piece of mail using a myriad of criteria.[04:44:12] *** krzie has joined #postfix[04:44:13] *** krzie has joined #postfix[04:44:22] *** krzie has quit IRC[04:46:59] <jimpop> well, amavis doesn't really pass judgement, it leaves the judgement up to the juries (sa and clamav)[04:48:02] <lunaphyte> no, thats not true.[04:48:19] <jimpop> ok[04:48:23] *** tty234 has quit IRC[04:48:23] <lunaphyte> amavis can [and by default does] a number of its own test.[04:48:28] <lunaphyte> *tests[04:48:53] <jimpop> but nothing more than the others can do w/o amavis[04:49:47] <jimpop> to be fair, amavis can hide the sa and clamav tags[04:49:59] <lunaphyte> it would be an interesting comparison to see the delta between those two models.[04:50:54] <jimpop> i removed amavis 2 years ago and went with the milters. no diff from my point of view... other than one less piece of sw to maintain/configure/etc[04:51:34] <jimpop> in fact sa worked better because it got the right headers/interface[04:51:49] <jimpop> under amavis, sa was seeing localhost[04:52:09] <jimpop> so a lot of sa rules were being bypassed[04:53:44] <jimpop> iirc, there was a work around for the received headers issues, but I was trying to avoid work arounds and the milter worked cleanly.[04:54:12] <jimpop> other distros might work differently, and might not have the issues i had.[04:59:27] <Silowyi> The main issue is the box is on a slice that my boss is too cheap to authorize an upgrade for, and I'm tired of rebooting it every 2 weeks before it runs out of memory :P[05:00:28] <lunaphyte> uh, that seems to me like a whole other problem.[05:01:00] <Silowyi> Well there is likely a memory leak somewhere[05:01:11] <Silowyi> so the other half of the equation is trimming the fat from the stack[05:01:22] <Silowyi> and watching memory usages[05:05:03] *** krzie has joined #postfix[05:06:32] *** Timmooo is now known as Timzzzz[05:08:06] <Silowyi> Hmm[05:08:36] <Silowyi> it might be a good idea to limit dovecot's imap_login processes so that it can't spawn 128 * 64 MB processes *sigh*[05:09:41] <Silowyi> I mean I could be wrong, but I don't think our VM will run well with potentially 6.4 GB of ram tied up in IMAP login if someone decides to try and script our server.[05:10:05] <Silowyi> thanks guys, I think tying down dovecot will remove the need to ditch amavisd[05:13:22] *** MAAAAD has joined #postfix[05:15:16] *** sagi_ has left #postfix[05:15:53] *** MAAAAAD has quit IRC[05:26:46] *** byronb has quit IRC[05:35:21] *** beginer has joined #postfix[05:43:32] *** byronb has joined #postfix[05:57:13] *** FybaOptik has joined #postfix[06:00:40] *** uqlev has quit IRC[06:58:12] *** tuxick has quit IRC[07:02:17] *** byronb has quit IRC[07:03:52] *** weedar has joined #postfix[07:10:31] *** Motoko has joined #postfix[07:17:22] *** hever has joined #postfix[07:26:05] *** weedar has quit IRC[07:29:08] *** weedar has joined #postfix[07:45:35] *** Silowyi has left #postfix[08:00:24] <sysmonk> athemiya: yes i am[08:02:06] *** loddafnir has joined #postfix[08:12:45] *** gerhard7 has joined #postfix[08:19:50] *** Zeit|awy has joined #postfix[08:34:07] *** beginer has quit IRC[08:42:50] *** jeet2k124 has joined #postfix[08:44:15] *** zorg1 has joined #postfix[08:49:25] *** beginer has joined #postfix[08:51:18] *** beginer has quit IRC[08:51:18] *** beginer has joined #postfix[08:56:05] *** beginer has quit IRC[09:10:55] *** beginer has joined #postfix[09:11:21] *** jujugre has joined #postfix[09:12:03] *** Motoko has quit IRC[09:12:24] *** Lujeni has joined #postfix[09:16:34] *** cilly has joined #postfix[09:17:00] *** jfried has joined #postfix[09:19:49] *** Cain` has joined #postfix[09:21:25] *** Cain has quit IRC[09:21:25] *** Cain` is now known as Cain[09:40:18] *** cilly has quit IRC[09:42:13] *** e-anima has joined #postfix[09:50:47] <Shuro> hi there, is there anywhere a postfix 1 documentation in the whole net?[09:51:11] <Aprogas> Just upgrade.[09:51:37] <adaptr> nonono, he should mail wietse for support[09:51:37] <robtone> Shuro, you might try archive.org[09:51:45] <adaptr> then we can all popcorn[09:52:03] <Aprogas> You can download an old source tarball, perhaps the documentation is included.[09:52:23] <adaptr> s/perhaps//[09:53:43] <Aprogas> s/ / /[09:53:53] <Aprogas> Grammar is important too.[09:54:12] <adaptr> spacing is not part of grammar, this is UNIX :P[09:54:19] <adaptr> WS be WS[09:54:51] <Aprogas> There is a python crawling around my leg, so I was paying attention to whitespace too, just in case.[09:55:04] <adaptr> meh, it's just bluffing[09:55:10] <Shuro> thank, i already upgrade....an old SLOX-server (postfix v1) to a new one, but i have problems with the ldap-querys[09:55:19] <adaptr> !tell Shuro ldap[09:55:19] <knoba> Shuro: "ldap" : a lookup method that can be used by Postfix. An introduction can be found in the LDAP_README also found at http://www.postfix.org/LDAP_README.html. A worthy project dealing with LDAP and Postfix can be found at: http://jamm.sourceforge.net/howto/html/[09:55:25] <adaptr> documentation[09:56:17] <Aprogas> !tell Shuro dnr[09:56:18] <knoba> Shuro: "dnr" : Do No Resuscitate. You have inherited a configuration from a previous admin who made a mess of it. Don't try to fix up the old configuration, write a new one from scratch.[09:56:26] <Shuro> from ldap to mysql, exporting the data from the old ldap structure to the mysql table, i didnt need the new ldap docu, thangs[09:56:34] <Shuro> knoba: ^^ i do, i do...[09:56:39] <Aprogas> Ok.[09:57:01] <Shuro> but for that i need to understand the ldap structure....what a mess..[10:20:50] *** wdp has joined #postfix[10:20:50] *** wdp has joined #postfix[10:24:42] <pj> heh, fun[10:25:48] *** _ruben_ is now known as _ruben[10:45:18] *** ionte_ has joined #postfix[10:47:46] *** ionte has quit IRC[10:57:39] *** UQlev has joined #postfix[10:59:51] *** Gatto has joined #postfix[11:11:31] *** cpm has joined #postfix[11:11:32] *** cpm has joined #postfix[11:14:50] *** weedar has quit IRC[11:16:39] *** krion has joined #postfix[11:18:00] *** Gatto has quit IRC[11:18:37] *** brancaleone has joined #postfix[11:22:54] *** p3rror has joined #postfix[11:27:30] *** brancaleone has quit IRC[11:37:33] *** n0sq has quit IRC[11:50:29] *** n0sq has joined #postfix[12:46:26] *** p3rror has quit IRC[12:55:01] *** UQlev has quit IRC[13:02:44] *** p3rror has joined #postfix[13:05:32] *** Zethrok has quit IRC[13:07:16] *** Zethrok has joined #postfix[13:10:16] *** p3rror has quit IRC[13:11:32] *** breaker313 has joined #postfix[13:13:14] *** Niemi has joined #postfix[13:22:18] *** p3rror has joined #postfix[13:30:19] *** gerhard7 has quit IRC[13:31:07] *** Rado has quit IRC[13:38:43] *** navaki has joined #postfix[13:41:16] *** Pinchiukas has joined #postfix[13:41:23] *** ncode has quit IRC[13:41:26] <navaki> Hi all,How can we get a notification when we receive a new mail in a mailbox?[13:42:23] <Aprogas> Use biff[13:43:43] *** mambaw has quit IRC[13:44:02] <Pinchiukas> Anyone can tell me how to find out what happens when an DSN is received to (mail was sent from) an unexisting mailbox? For some reason it seems that it's delivered to another mailbox.[13:45:03] <navaki> Aprogas, is it work with postfix?[13:46:07] <Aprogas> Postfix can work with biff, but whether biff is installed depends on your system.[13:48:27] <navaki> Actually,I need to know that for deleting a key from memcache.My mean is whenever a email received i should expire the object on memcache.[13:49:02] <navaki> do you think biff is good in this situation?[13:50:37] <Aprogas> I'm not sure I understand your setup.[13:50:58] <Aprogas> Email is probably not the best way to send real-time updates between systems.[13:55:53] *** Captain has quit IRC[13:57:52] *** famicom has quit IRC[13:57:57] *** Captain has joined #postfix[14:03:05] <navaki> Aprogas, I'm looking for a mechanism that whenever a mail received in a user mailbox,I get notify for updating the memcache,instead of loading whole mailbox again.[14:03:40] *** loddafnir has quit IRC[14:03:42] <navaki> which mechanism you think is more efficient?[14:04:06] <sysmonk> navaki: what do you use for imap/pop3?[14:04:17] <navaki> cyrus[14:04:33] <sysmonk> navaki: cyrus has notify[14:04:56] <navaki> what about dovecote?[14:05:08] <sysmonk> don't use it so don't know[14:05:21] <sysmonk> that's why i used what you use :)[14:06:01] <sysmonk> Notifyd is a daemon started from master(8) that handles notification[14:06:02] <sysmonk> requests on behalf of lmtpd(8).[14:06:17] <sysmonk> when an email is delivered through lmtpd to the mailbox, it triggers notifyd[14:06:25] <sysmonk> which then can trigger some custom command or whatever[14:06:52] <sysmonk> log it to syslog, email the notification, run external program - you chose it.[14:08:59] <navaki> sysmonk, Do you think that this solution is efficient for updating memcache?[14:20:42] *** gerhard7 has joined #postfix[14:24:20] *** cilly has joined #postfix[14:27:26] *** beginer has quit IRC[14:31:36] <Pinchiukas> Anyone can tell me how to find out what happens when an DSN is received to (mail was sent from) an unexisting mailbox? For some reason it seems that it's delivered to another mailbox.[14:31:53] *** kuhkatz has joined #postfix[14:32:00] *** kuhkatz has quit IRC[14:32:00] *** kuhkatz has joined #postfix[14:32:22] <Aprogas> Postfix will send a double-bounce.[14:33:19] <sysmonk> well, if it's received to an unexisting mailbox, postfix won't accept it at all[14:33:20] <Aprogas> In my opinion this shouldn't ever happen, if it does, you have been sending out mail with incorrect sender.[14:33:22] <sysmonk> it will reject it[14:33:41] <sysmonk> your postfix must be configured badly if it receives emails to unexisting mailboxes[14:33:48] <Aprogas> Yes, my mind was floating.[14:33:52] <sysmonk> navaki: i would go for this situation[14:34:03] <Aprogas> I was thinking about what Postfix does when it tries to deliver a bounce and is rejected by the remote MTA.[14:34:18] <sysmonk> navaki: or else you'd have to use custom tools like parsing the logs and etc, which would have a bigger overhead[14:34:33] <Pinchiukas> Aprogas: yes, mail was send with an invalid from address.[14:35:02] <Pinchiukas> I'm the remota MTA. :)[14:39:46] <navaki> sysmonk, thanks.[14:41:49] <Pinchiukas> Afaik, bounces for bounce messages aren't/shouldn't be sent.[14:42:40] <sysmonk> Pinchiukas: there's double-bounce for that[14:44:53] *** navaki has quit IRC[14:44:56] <sysmonk> navaki: notifyd is the only _real_ way of knowing if the email was delivered[14:45:15] <sysmonk> ha, i'm 3 seconds late :P[14:46:07] <thumbs> slow monk[14:47:21] *** loddafnir1 has joined #postfix[14:47:41] <Pinchiukas> sysmonk: I think I may have read that in RFC.[14:47:58] <Pinchiukas> So postfix doesn't comply to that RFC?[14:48:13] <Dominian> What RFC?[14:48:22] <thumbs> Dominian: the RFC![14:48:23] <Pinchiukas> I think it was the RFC for SMTP.[14:48:30] <_ruben> i read in the KFC![14:48:32] <patdk-wk> there are like atleast 10 of them :)[14:48:33] <Dominian> Pinchiukas: In what way doesn't it comply?[14:48:37] <Aprogas> No RFC specifies that bounces should endless loop between 2 MTAs.[14:48:56] <sysmonk> :))[14:49:00] <Pinchiukas> It specifies that it shouldn't bounce a bounce.[14:49:12] <Aprogas> It doesn't.[14:49:16] <Dominian> it doesn't[14:49:51] <Dominian> Are you doing sender verification or something?[14:50:22] <Pinchiukas> I'm trying to figure out why mail to non-existent mailboxes arrives at one mailbox.[14:50:49] <Pinchiukas> s/mail/DSNs/[14:50:51] <Dominian> catchall perhaps?[14:51:08] <Dominian> !catchall[14:51:08] <knoba> Dominian: "catchall" : Sending all emails for non-existing users in domain to a special account. See man 5 virtual for the @domain syntax, which applies in virtual_*_maps and relay_recipient_maps. For local(8) delivery, unset local_recipient_maps and see luser_relay. WARNING: catchalls are rarely a good idea. Spammers will abuse them.[14:51:09] <Aprogas> You should provide more detail about your setup as per the topic.[14:51:23] *** ncode has joined #postfix[14:51:24] *** ncode has joined #postfix[14:51:58] <sysmonk> yeah, and loooogs[14:52:18] <sysmonk> thumbs: if i'll ever want to change my nick i'll try the slowmonk[14:52:19] <sysmonk> ;)[14:52:53] <thumbs> sysmonk: just give me the credit for the name, then![14:52:54] <thumbs> hehe[14:53:25] <sysmonk> no way[14:53:36] <thumbs> then I'll steal it.[14:53:39] <sysmonk> i don't want to write slowmonk (c) thumbs everywhere![14:53:57] * thumbs goes to group 'slowmonk'[15:02:19] *** Pcdoktor1 has joined #postfix[15:04:22] <Pcdoktor1> does anybody know this error: http://pastebin.com/CvDe5Z5e (child 11508 (imap) killed with signal 6)[15:04:33] *** Section1 has joined #postfix[15:04:33] *** Pcdoktor1 is now known as |xnay[15:05:00] <|xnay> no matter what I google, and what I try I cant find a solution to it. It suddenly happened without any prior change that I can think of[15:05:41] <Aprogas> Try in #dovecot[15:06:32] <sysmonk> Pinchiukas: line 3/4 shows why[15:08:28] *** loddafnir1 has quit IRC[15:09:19] <Pinchiukas> ?[15:10:01] <Aprogas> sysmonk meant that for Pcdoktor1 now known as |xnay[15:11:30] *** UQlev has joined #postfix[15:18:16] <sysmonk> sorry it should have been pc:)[15:18:23] <sysmonk> and xnay :)[15:20:13] *** cilly has quit IRC[15:24:54] *** cilly has joined #postfix[15:25:21] *** baqs has joined #postfix[15:25:29] <baqs> hi all[15:26:03] <baqs> I'm actually working on a postfix "reporter", and I'll need to be able to catch "reply" from external server, when relaying[15:26:14] <baqs> do you know if there is any way to "plug" such tool into postfix without patching ?[15:26:19] <baqs> thx a lot in advance![15:27:35] *** pj has quit IRC[15:29:14] *** wdp has quit IRC[15:33:18] *** cilly has quit IRC[15:35:37] *** geek_cl has joined #postfix[15:36:05] <f3ew> baqs "reporter"?[15:38:16] <baqs> I meant: some tool to record infos: I add a specific header in each email[15:38:29] <baqs> I wanna say: this email, with this header, was refused by this server, at this time[15:38:59] <|xnay> so basically a logger?[15:42:32] <baqs> kind of, with database at the end :)[15:42:39] *** FybaOptik has quit IRC[15:42:54] <baqs> BUT, I need to map the email with this specific header, so (I think), I cannot directly feed my tool from dovecot logs[15:42:59] <baqs> sorry s/dovecot/postfix[15:45:12] *** sancio has joined #postfix[15:45:29] <f3ew> baqs, like the message-id, which is already logged?[15:45:39] <f3ew> and there's a status oer recipient[15:45:41] <f3ew> per*[15:45:53] <sancio> hi[15:45:55] <baqs> yep like message-id, but this id comes from other tool ... other server ...[15:46:06] * f3ew suggests baqs do some log correlation: Any queueid is unique at a given time[15:46:21] *** cilly has joined #postfix[15:46:27] <f3ew> header_checks = pcre:/etc/postfix/headers.pcre[15:46:34] <f3ew> headers.pcre contains[15:47:00] <f3ew> /X-logging: (.*)/ WARN $1[15:47:16] <f3ew> Then you can correlate your X-logging header with the queue id[15:47:52] *** ssureshot has joined #postfix[15:48:28] <baqs> hmm[15:49:15] <baqs> thx for the idea f3ew , I'll try this and make you aware if it works or not[15:49:17] <baqs> but seems ok for me :)[15:51:55] *** robtone has quit IRC[15:54:14] *** cilly has quit IRC[15:54:18] *** cillybabe has joined #postfix[15:54:19] <baqs> f3ew: can I add this special header if not existing , using the same tool ?[15:55:01] <f3ew> See man 5 access, specifically, PREPEND[15:55:05] <baqs> thx![15:56:23] *** KaiForce has joined #postfix[15:56:29] <baqs> great exactly what I was looking for[16:00:49] *** kenyon has quit IRC[16:01:16] <baqs> can this prepend value set dynamically ?[16:01:41] <baqs> I mean: I wanna generate : X-Super-Id : <big number > -> possible ? cause I think in man it's fixed value[16:01:49] <f3ew> !policyd[16:01:49] <knoba> f3ew: "policyd" : (#1) http://www.policyd.org/ : an anti-spam Postfix policy daemon, or (#2) . It also can manage throttling of email and a variety of other things not handled by postfix directly[16:02:04] <f3ew> See SMTPD_POLICY_README[16:02:08] <patdk-wk> as dynamic as the database you use can make it :)[16:02:31] <f3ew> baqs, FWIW, the Message-ID does exactly what you want, it's logged already[16:02:38] <f3ew> Don't reinvent the wheel[16:02:40] *** jro has joined #postfix[16:04:36] <|xnay> sysmonk: so is there any particular way I should proceed with line 3 and 4? I dont really know what to do about it.[16:04:37] <jro> Hello, I'm getting alot of deferred messages due to connection time outs, and looking at the logs im seeing things like delay=307019, delays=306409/0.02/0.46/610[16:04:44] <|xnay> manuals/forums/guides[16:04:52] <jro> where would that large delay be coming from?[16:04:59] <|xnay> anything is better than the extremely vague stuff I get from google[16:05:53] <baqs> f3ew: I don't want to reinvent the wheel, it's just I've got other kind of "ids", and I wanna know if I can integrate postfix into this[16:06:24] <f3ew> baqs yes[16:06:43] <f3ew> jro, the message was injected that long ago[16:07:13] <jro> so that wouldnt be related to the actual connection time out, just when it was queued?[16:08:46] <jro> here is a snip of the logs showing the defferals: May 31 02:29:30 zim postfix/smtp[19853]: 1388B570074D: to=<audio at myleadertraining dot com>, relay=none, delay=50938, delays=50895/0.01/42/0, dsn=4.4.1, status=deferred (connect to mail.myleadertraining.com[216.2.85.136]:25: Connection timed out)[16:08:46] <jro> May 31 02:34:20 zim postfix/smtp[18415]: EB41357007D5: to=<update at navalprofessional dot net>, relay=none, delay=395080, delays=394449/0.01/632/0, dsn=4.4.1, status=deferred (connect to mx2.navalprofessional.net[67.93.13.26]:25: Connection timed out)[16:08:46] <jro> May 31 02:38:58 zim postfix/smtp[19855]: 91AF45700788: to=<address at go dot vistage.com>, relay=mail.en25.com[209.167.231.14]:25, delay=398109, delays=397499/0.01/0.09/610, dsn=4.4.2, status=deferred (conversation with mail.en25.com[209.167.231.14] timed out while sending end of data -- message may be sent more than once)[16:08:46] <jro> May 31 02:39:09 zim postfix/smtp[22472]: 903535700975: to=<SEMA-CR-1-XTGEEO at ptcmarketing dot com>, relay=none, delay=92809, delays=92788/0.01/21/0, dsn=4.4.1, status=deferred (connect to irp6.ptc.com[12.11.148.96]:25: Connection timed out)[16:08:46] <jro> May 31 02:39:21 zim postfix/smtp[12948]: 6DE2357007C3: to=<sap at mailsap dot com>, relay=smtpdem02.sap-ag.de[155.56.68.150]:25, delay=397719, delays=396485/0/622/611, dsn=4.4.2, status=deferred (conversation with smtpdem02.sap-ag.de[155.56.68.150] timed out while sending end of data -- message may be sent more than once)[16:08:46] <jro> May 31 02:44:04 zim postfix/smtp[21080]: BD42E57008CB: to=<tommynoles at hornequipment dot com>, relay=mail.hornequipment.com[66.210.196.170]:25, delay=321487, delays=320870/0.01/0.31/616, dsn=4.4.2, status=deferred (conversation with mail.hornequipment.com[66.210.196.170] timed out while sending end of data -- message may be sent more than once)[16:08:46] <jro> May 31 02:44:09 zim postfix/smtp[23690]: 73AD25700966: to=<bounce at sm dot foxsports.com>, relay=none, delay=294388, delays=294367/0.02/21/0, dsn=4.4.1, status=deferred (connect to sm.foxsports.com[204.154.143.226]:25: Connection timed out)[16:08:47] <jro> May 31 02:59:09 zim postfix/smtp[27721]: 4C4495700783: to=<Whitepapers at topmanagementwhitepapers dot com>, relay=none, delay=403592, delays=403571/0.01/21/0, dsn=4.4.1, status=deferred (connect to mail.topmanagementwhitepapers.com[207.8.119.82]:25: Connection timed out)[16:08:47] <jro> May 31 03:09:09 zim postfix/smtp[30361]: 092C75700774: to=<212.1de384 at vmail20 dot mynewsletterbuilder.com>, relay=none, delay=389107, delays=389086/0.01/21/0, dsn=4.4.1, status=deferred (connect to relay.mynewsletterbuilder.com[208.83.141.174]:25: Connection timed out)[16:08:48] <jro> May 31 03:14:09 zim postfix/smtp[31550]: DA4E35700629: to=<audio at exec4hiretoday dot net>, relay=none, delay=46671, delays=46650/0.01/21/0, dsn=4.4.1, status=deferred (connect to mail.exec4hiretoday.net[216.2.85.98]:25: Connection timed out)[16:08:48] <jro> May 31 03:14:09 zim postfix/smtp[26306]: 583CE5700959: to=<bounce-30731146-79985228 at relay dot netatlantic.com>, relay=mailin-02.netatlantic.com[69.25.192.45]:25, delay=230245, delays=229025/0.01/610/610, dsn=4.4.2, status=deferred (conversation with mailin-02.netatlantic.com[69.25.192.45] timed out while sending end of data -- message may be sent more than once)[16:08:49] <jro> May 31 03:19:09 zim postfix/smtp[512]: A033257008FC: to=<bounce at lvsend dot com>, relay=none, delay=306996, delays=306975/0.01/21/0, dsn=4.4.1, status=deferred (connect to mail.lvsend.com[216.185.79.173]:25: Connection timed out)[16:08:49] <jro> May 31 03:19:09 zim postfix/smtp[511]: A5F375700825: to=<mail001 at talenttech dot mktdns.com>, relay=none, delay=386891, delays=386870/0.01/21/0, dsn=4.4.1, status=deferred (connect to talenttech.mktdns.com[199.15.212.151]:25: Connection timed out)[16:08:50] <jro> May 31 03:19:09 zim postfix/smtp[515]: 9AE1B5700807: to=<mail001 at talenttech dot mktdns.com>, relay=none, delay=386891, delays=386870/0.01/21/0, dsn=4.4.1, status=deferred (connect to talenttech.mktdns.com[199.15.212.151]:25: Connection timed out)[16:08:54] <patdk-wk> I love spam :)[16:09:03] *** jro has left #postfix[16:09:06] *** jro has joined #postfix[16:09:09] <jro> sorry[16:09:13] <jro> http://pastebin.com/wsXR12EG[16:11:55] *** jujugre has quit IRC[16:12:29] *** sjrussel has joined #postfix[16:13:50] <UQlev> jro: I have not checked all destinations but at least a few from beginning are dead[16:14:16] *** famicom has joined #postfix[16:14:29] <jro> UQlev: yea I'm sure there are a few legit dead ones, but there are several I know are good and working[16:14:39] <jro> ty for checking though[16:16:00] <jro> most people have just been sending the same message twice[16:16:03] <jro> 1 will go through 1 will time out[16:18:21] <jro> just wondering if maybe tweaking the postfix timeout setting somewhere might help[16:24:28] *** nb has quit IRC[16:24:49] <UQlev> jro: do you know how did you get them in postfix's queue?[16:25:41] *** Patrickdk has quit IRC[16:25:54] <rob0> jro, broken firewall or port 25 out is blocked. Not a Postfix problem.[16:26:21] <jro> rob0: this only happens on about 1% of outbound mail :/[16:26:46] <jro> unless the asa is faulty and closing connections prematurely[16:26:54] <rob0> but it seems consistent for a few sites.[16:27:02] <rob0> !cisco_pix[16:27:02] <knoba> rob0: "cisco_pix" : The Cisco PIX and ASA firewall has a SMTP proxy feature called SMTP Fixup which breaks ESMTP. If your Postfix server is behind such a firewall you should disable this feature.[16:27:15] *** kenyon has joined #postfix[16:27:30] <jro> hmm let me check[16:28:30] *** jujugre has joined #postfix[16:33:04] *** nb has joined #postfix[16:34:13] <jro> looks like it got reenabled after the 8.3 changes, I'll watch and see if that cleans it up :)[16:34:20] <jro> thanks rob0[16:34:30] *** jro has quit IRC[16:36:58] *** jujugre has quit IRC[16:38:03] *** bubu has joined #postfix[16:42:57] *** nb has quit IRC[16:44:34] *** nb has joined #postfix[16:45:53] *** cillybabe has quit IRC[16:54:32] *** |xnay has quit IRC[16:55:03] *** breaker313 has quit IRC[16:58:53] *** Lenhix has joined #postfix[17:07:26] *** cilly has joined #postfix[17:08:36] *** jtoy has left #postfix[17:14:03] *** kaos has quit IRC[17:17:33] *** geek_cl has quit IRC[17:25:14] *** kaos has joined #postfix[17:26:45] *** cilly has quit IRC[17:28:18] <jelly> I'** f** YOUR **** proxy[17:29:01] <thumbs> jelly: umm?[17:30:14] <jelly> thumbs: that's what PIX does to a smtpd banner and some responses, replaces stuff with *[17:31:17] <thumbs> oh[17:40:23] *** zerobravo76 has quit IRC[17:43:10] *** theemstra has joined #postfix[17:43:15] <theemstra> goodday[17:43:20] <theemstra> I have got a problem with piping mail in postfix, it doesn't deliver it right, with a prepaired mail (cat fakemail.txt | pipe.php) does work, tried to check the config of postfix but it didn't fix it[17:43:29] *** bezourox has quit IRC[17:44:44] <theemstra> in my master.cf: supportsystem unix - n n - - pipe flags=ORu user=www-data:www-data argv=/usr/bin/php /home/thom/www/xsbyte/httpdocs/support/pipe.php ${recipient}[17:44:55] <theemstra> transporting map is set[17:45:01] *** zerobravo has joined #postfix[17:46:25] *** cilly has joined #postfix[18:06:17] *** cilly has quit IRC[18:13:40] *** mac- has quit IRC[18:15:32] *** UQlev has quit IRC[18:16:41] *** ced117 has joined #postfix[18:18:09] *** basho__ has joined #postfix[18:28:09] *** krion has quit IRC[18:28:18] *** jeet2k124 has quit IRC[18:29:22] *** gerhard7 has quit IRC[18:33:08] *** roe has joined #postfix[18:33:08] *** roe has joined #postfix[18:42:11] *** zorg1 has quit IRC[18:43:42] *** googlah has quit IRC[18:44:18] *** seekwill has joined #postfix[18:45:06] *** googlah has joined #postfix[18:49:42] *** _|christian|_ has joined #postfix[18:53:53] <f3ew> theemstra, you probably want to add whitespace in from og user[19:02:51] *** ced117 has quit IRC[19:09:02] *** krzie has quit IRC[19:10:33] *** Twinkletoes has quit IRC[19:15:29] *** seekwill has quit IRC[19:15:52] <theemstra> f3ew: you mean user=www-data www-data[19:15:53] <theemstra> ?[19:20:15] *** hever has quit IRC[19:29:48] *** Lenhix has quit IRC[19:30:02] *** will has joined #postfix[19:31:56] *** Silowyi has joined #postfix[19:32:31] <Silowyi> one of my clients is sending out a 3 MB pdf every week to a mailing list hosted by Mailman via Postfix[19:32:51] <Silowyi> the end result of which is that memory usage spikes, oom killer gets called, and everything goes to heck[19:33:09] <patdk-wk> memory spikes?[19:33:11] <will> ouch[19:33:13] *** brancaleone has joined #postfix[19:33:13] <Silowyi> Is there a way in Mailman or postfix that I can throttle this so that the server doesn't die?[19:33:23] *** SaintAardvark has joined #postfix[19:33:30] <patdk-wk> how much memory do you have?[19:33:40] <Aprogas> Is he sending it directly to Mailman?[19:33:51] *** KaiForce has quit IRC[19:34:02] <Silowyi> 2 GB on the server[19:34:15] <Aprogas> Does the Mailman-list use personalization?[19:34:29] <Silowyi> Aprogas good question, let me check[19:35:25] <Aprogas> Postfix will happily accept e.g. 1000 recipients from Mailman if you configure it such, if personalization is off (i.e. all messages to all recipients are identical) you can make Mailman deliver to Postfix with just one message, with a lot of RCPT TO.[19:36:14] <Aprogas> I think Postfix will then split this 1 message into multiple messages going to their destinations, depending on concurrency and recipient limits.[19:36:48] <Aprogas> Hmm.. I'm overcomplicating things. Set up WebDAV, let him upload the PDF, and let him put a link in the mass-mailing. :)[19:36:55] <patdk-wk> otherwise you need to limit maxproc for smtpd so you don't run over ram limits[19:36:55] <Silowyi> ah[19:36:58] <Silowyi> I think I see the issue[19:37:12] <Silowyi> it looks like mailman is submitting to postfix in batch[19:37:15] <Silowyi> but[19:37:28] <Silowyi> then it's passing through amavisd (why postfix, why?)[19:37:46] <patdk-wk> cause that is how you configured it? :)[19:37:47] <Silowyi> but hmm[19:37:49] <rob0> content_filter is global[19:37:53] <Silowyi> then postfix is splitting it up after the fact[19:37:56] <rob0> !filter[19:37:56] <Aprogas> !tell Silowyi smtpd_recipient_limit[19:37:56] <knoba> rob0: "filter" : see !filter_readme[19:37:57] <knoba> Silowyi: "smtpd_recipient_limit" : a configuration parameter in the main.cf: The maximal number of recipients that the Postfix SMTP server accepts per message delivery request.[19:38:04] <Aprogas> Oh yes, Amavis will eat your memory.[19:38:09] <Silowyi> But even so[19:38:15] <Silowyi> amavis is only scanning the message once[19:38:16] <Aprogas> If you know your own mail is spam-free, submit it through port 587 and don't run a content_filter there.[19:38:28] <Silowyi> Aprogas already doing that for most messages[19:38:29] <will> You should always run content filtering :([19:38:38] <Silowyi> Aprogas: not sure why we aren't for mailman[19:38:52] <Silowyi> Even so[19:38:57] <will> I'd even put a more strict rules on port 587[19:39:03] <Aprogas> will: If only trusted people can submit mail, it might not be needed.[19:39:17] <Silowyi> I have to think that the issue is likely postfix overrunning the memory when it splits it up[19:39:29] <will> Aprogas: Doesn't mean they do it on purpose[19:39:50] <Aprogas> Not sure if qmgr will do that. Most parts of Postfix are rather smart when it comes to system load and limited resources.[19:40:02] <Aprogas> qmgr might just be smart enough to slow down if memory is running low, I'm not sure though.[19:40:26] <Silowyi> actually I take it back[19:40:32] <will> Aprogas: Lots of instances where user accounts gets hacked, either bruteforce, sniffed off network, or compromised computer[19:40:41] <Silowyi> looking at the log again mailman is pre-splitting it[19:40:43] <rob0> I bet this is a CentOS or RHEL with Postfix 2.3, right?[19:40:47] <Silowyi> seems to be splitting by domain[19:40:52] <Silowyi> nope Ubuntu 10.10[19:41:22] <rob0> what Postfix version would that be?[19:41:22] <Silowyi> for example it injects a message that has 13 users all from yahoo.com[19:41:25] <Silowyi> then a separate[19:41:35] <Silowyi> rob0: checking...[19:42:23] * cpm uses the official rob0 version[19:42:47] <Silowyi> Version: 2.7.1-1ubuntu0.2[19:46:45] *** VSA23 has joined #postfix[19:47:07] <VSA23> Hey guys, i'm getting alot of bounces sent to my inbox. How can i tell if my host is being used as a relay?[19:47:28] <will> heh[19:51:00] *** thrown has joined #postfix[19:52:07] <thrown> hi. im getting an error "501 5.1.3 Bad recipient address syntax" when sending mails to addresses starting with "-". why?[19:52:20] <will> VSA23: You need to check the bounce messages. Check the headers as well. Figure out what it is. Backscatter?[19:53:34] <rob0> !allow_min_user[19:53:35] <knoba> rob0: "allow_min_user" : a configuration parameter in the main.cf: Allow a recipient address to have `-' as the first character. By default, this is not allowed, to avoid accidents with software that passes email addresses via the command line.[19:54:29] <VSA23> will: Subject: Buy Viagra Professional[19:54:29] <VSA23> X-PHP-Script: www.__.com/wp-content/plugins/all-in-one-seo-pack/chase/suite.php for 109.224.64.233, 109.224.64.233[19:54:38] <VSA23> looks like a script in wp is being used?[19:54:41] <thrown> mh, ok, thx. so it should be safe to enable it when only sending via smtp!?[19:55:14] <will> lol[19:57:28] *** Ryushin has joined #postfix[19:57:36] <will> VSA23: Would need to know more details to help you[19:57:47] <will> VSA23: I.e., what you're seeing[19:58:07] <VSA23> what would you like to see? i have maillogs up as well as looking at the headers[20:00:05] <will> Everything[20:00:27] <will> Does it really say __.com or did you munge that?[20:00:38] <VSA23> no, i edited that[20:00:44] <will> So is that your server?[20:00:47] <VSA23> yes[20:01:00] <will> Well, I'd probably fix that then[20:01:21] <VSA23> the wp script?[20:01:30] <will> yeah[20:01:31] <VSA23> its my mothers friggen site. ugh[20:01:49] <will> Maybe she has a side biz you don't know about?[20:02:48] <VSA23> May 31 09:38:44 pulsar postfix/smtp[14643]: BDDE93F638E: to=<creid at actionlighting dot com>, relay=smtp.secureserver.net[216.69.186.201]:25, delay=1.4, delays=0.11/0.01/0.95/0.36, dsn=2.0.0, status=sent (250 ok: Message 1140701202 accepted)[20:02:53] <VSA23> why does it say relay in there?[20:03:13] *** thrown has quit IRC[20:03:31] <will> Why shouldn't it?[20:03:47] <will> Log docs would be helpful for you :)[20:04:10] <VSA23> ohj. its being sent to actionlighting.com and being relayed by secureserver[20:04:18] <VSA23> because hes on that host im assuming[20:04:51] *** Motoko has joined #postfix[20:04:53] *** _|christian|_ has quit IRC[20:08:07] *** sjrussel has quit IRC[20:10:39] *** wdp has joined #postfix[20:10:39] *** wdp has joined #postfix[20:15:56] *** krzie has joined #postfix[20:15:56] *** krzie has joined #postfix[20:17:21] <jimpop> the word "relay", in the logs, is the next hop that your server connected to in order to deliver email to "To:"[20:18:05] *** bubu has quit IRC[20:21:12] *** SaintAardvark has quit IRC[20:23:11] <will> It said it was delayed too![20:27:38] *** Matic`Makovec has joined #postfix[20:30:56] <Silowyi> To those who helped me earlier, thanks. I figured out what was happening finally. The message from mailman was getting piped through postfix, then amavis, back to postfix, then through TMDA as individual messages (which is where the server crashed), mailman now bypasses Amavis/TMDA on outbound messages (inbound is still content filtered by the server).[20:33:21] *** Matic`Makovec has quit IRC[20:34:51] *** axisys has joined #postfix[20:48:58] <kreign> hi, I'm wondering what the configuration option(s) are for using RBLs with postfix[20:49:04] <kreign> my googles are not turning up anything conclusive[20:49:36] <will> "enable postfix rbl" ?[20:49:56] <will> What kind of options are you looking for?[20:50:01] <kreign> utilize RBLs from within postfix.[20:50:06] <will> Postscreen?[20:50:07] <rob0> !cheatsheet[20:50:07] <knoba> rob0: "cheatsheet" : http://jimsun.linxnet.com/misc/postfix-anti-UCE.txt : A HOWTO for pre-DATA spam control.[20:50:13] <rob0> !postscreen[20:50:14] <knoba> rob0: "postscreen" : SMTP triage server available in Postfix 2.8, see http://www.postfix.org/POSTSCREEN_README.html and http://www.postfix.org/postscreen.8.html[20:50:18] <kreign> knoba, yes[20:50:19] <kreign> that[20:51:26] <jimpop> and if not using 2.8....[20:51:29] <jimpop> !reject_rbl_client[20:51:29] <knoba> jimpop: Error: "reject_rbl_client" is not a valid command.[20:51:32] <jimpop> doh![20:51:44] <jimpop> kreign: see reject_rbl_client[20:52:26] <kreign> thanks.[20:54:08] *** cpm has quit IRC[20:55:10] *** digitolx has joined #postfix[20:58:08] *** ssureshot has quit IRC[21:06:13] *** feisar has joined #postfix[21:09:14] *** tarpdocks has quit IRC[21:24:53] *** Motoko has quit IRC[21:25:43] *** pj has joined #postfix[21:34:00] *** Gigs- has joined #postfix[21:35:37] <Gigs-> I know this is offtopic, but not sure there is a channel... is anyone else getting very high false positive rates with safe.sorbs in the last few days?[21:37:45] *** digitolx has quit IRC[21:38:07] *** ssureshot has joined #postfix[21:43:20] <rob0> heh, "safe" and "SORBS" don't go together in my vocabulary. I use SORBS only as a 1-point postscreen_dnsbl_sites with 3 points required.[21:48:15] <Gigs-> This customer gets a lot of spam and seems to have a low tolerance for it. I guess I'll just wait and see what they want to do.[21:48:57] *** Lenhix has joined #postfix[21:55:46] *** jMCg has joined #postfix[21:55:54] <jMCg> Hey folks o/~[21:56:09] <jMCg> I'm looking for a.. oh, well, actually two things:[21:56:27] <jimpop> !tell jMCg two_things[21:56:27] <knoba> jimpop: Error: No factoid matches that key.[21:56:40] <jimpop> ok, have to work them one at a time then[21:56:56] *** zorzar has joined #postfix[21:57:01] *** Matic`Makovec has joined #postfix[21:57:44] <jMCg> right now I have a mail server under extremely high load because some retard specified a filter for each mail on a domain to be forwarded to one address. He managed to misspell that address, so kicking off one message resulted in a loop, and then another loop after the quota was reached for the account in question.[21:58:05] <jimpop> nice[21:58:09] <jimpop> retartds rock[21:58:29] <jMCg> We deleted the mail account from which the mail was sent, but I'm not sure that was the best of ideas. So now I'm looking for a way to get rid of all the mails in the queues (to that address)[21:58:53] <jimpop> use postqueue and postsuper[21:59:06] <zorzar> hi, i'm trying to get sender_dependent_relayhost_maps working... in my main.cf i first have a relayhost config line for my default relayhost and then a sender_dependent_relayhost_maps line with "hash:/etc/postfix/sender_dependent_relayhost_maps" in /etc/postfix/sender_dependent/relayhost_maps i have "example.com imap.example.com:1234" is there something wrong with this?[21:59:10] <jMCg> http://www.postfix.org/postsuper.1.html I found and ran this thing there -- but it's running for.. I dunno.. 15~ minutes now?[21:59:16] <jimpop> jMCg: or "postsuer -d ALL" if you want to delete ALL of your email[21:59:21] <jMCg> And I'll have to run it a number of times.[21:59:28] <jMCg> jimpop: I don't want to delete ALL mail.[22:00:07] <jimpop> jMCg: ok, then you will need to used postqueue to get the queueIds, and then pass those to postsuper[22:00:07] <jMCg> I have multiple domains hosted, I only want to delete the mail to the one account but the described method takes an aweful long time.[22:00:32] <jimpop> jMCg: indeed, if there are an aweful lot of emails[22:00:43] <jimpop> it all depends on cpu + disk i/o[22:00:58] <jMCg> Load on the server is currently 39 (two cpus) and it's mostly IO bound.[22:01:07] <jimpop> yep[22:01:16] <jimpop> each queue item is file[22:01:24] <jimpop> (as you probably know)[22:01:40] <jMCg> I'm considering to take amavis out of the equation, to speed things up (...)[22:02:00] <jMCg> wh000t![22:02:04] <jMCg> It's removing![22:03:27] *** brancaleone has quit IRC[22:04:22] *** brancaleone has joined #postfix[22:05:54] *** hobodave has joined #postfix[22:06:31] <hobodave> hey guys, is it possible to configure either canonical or virtual domains using a wildcard such as *.example.com ?[22:08:27] *** p3rror has quit IRC[22:10:50] <lunaphyte_> !mantras[22:10:51] <knoba> lunaphyte_: "mantras" : 1. do not accept mail that you do not intend to deliver. 2. do not drop mail. 3. do not use wildcards or catchalls.[22:11:01] *** Zeit|awy has quit IRC[22:12:18] <hobodave> that sounds like sound advice, but I choose to ignore it[22:12:28] <hobodave> well acknowledge it, and choose otherwise[22:15:32] <Lenhix> Hello guys. I have a mail server running with Postfix an OpenLDAP. So far everything is ok, except for one of the aliases in the LDAP directory that redirects to another domain. The remote server answers with "host lalala said: 550 5.7.1 Duplicate recipient (in reply to RCPT TO command)" and I immediately get a DSN in the sender's mailbox with the error.[22:15:33] <Lenhix> How can I configure postfix to show me the transcript of the session so I can know what is the other server answering with that message to? (Pertinent?) Logs at http://pastie.org/2005189[22:17:20] <adaptr> !notify_classes[22:17:20] <knoba> adaptr: "notify_classes" : a configuration parameter in the main.cf: The list of error classes that are reported to the postmaster. The default is to report only the most serious problems. The paranoid may wish to turn on the policy (UCE and mail relaying) and protocol error (broken mail software) reports.[22:17:50] <adaptr> or perhaps you mean[22:17:57] <adaptr> !bounce_notice_recipient[22:17:57] <knoba> adaptr: "bounce_notice_recipient" : a configuration parameter in the main.cf: The recipient of the message headers of mail that Postfix did not deliver and of SMTP conversation transcripts of mail that Postfix did not receive. This feature is enabled with the notify_classes parameter.[22:18:02] <adaptr> i's unclear[22:20:37] <Lenhix> thx adaptr, will try both :)[22:20:37] *** p3rror has joined #postfix[22:20:50] <Lenhix> But I guess I need bounce_notice_recipient[22:21:15] <Lenhix> and, in order for it to be effective, notify_classes[22:27:34] <hobodave> I'm struggling a bit with this guys. I'm trying to configure postfix to receive mail for *.example.com, accepting email for api at * dot example.com and piping it to a script. I'm not quite seeing how to do that by reading http://www.postfix.org/VIRTUAL_README.html[22:29:40] <hobodave> do I want to add a virtual_alias_domains of .example.com ?[22:30:18] *** roe has quit IRC[22:30:25] <hobodave> or virtual_mailbox_domains ?[22:32:37] <hobodave> Do I need to improve the clarity of my question?[22:32:59] *** Mad_Dud has joined #postfix[22:33:46] <Mad_Dud> hi guys. can you recommend free way to have my postfix email cert chain signed?[22:35:06] <will> There is no free way[22:35:34] <will> Well, except a self-signed one[22:35:47] <Mad_Dud> i see.[22:35:54] <Mad_Dud> thanks for clarification.[22:35:55] <twobithacker> I use cacert.org[22:36:27] <Mad_Dud> i will check it out. Thanks.[22:36:56] *** cilly has joined #postfix[22:37:00] *** cilly has quit IRC[22:37:00] *** cilly has joined #postfix[22:37:27] *** cilly has quit IRC[22:37:28] <jumperboy> Mad_Dud: startssl offers free certs. only problem i've had so far is on older android phones[22:37:37] *** cilly has joined #postfix[22:38:50] <lunaphyte_> um, that is all just wrong.[22:39:11] <jumperboy> lunaphyte_: why?[22:39:14] <lunaphyte_> for starters, do not use self signed certs.[22:39:19] *** theemstra has quit IRC[22:39:21] <Mad_Dud> thanks jumperboy.[22:39:25] <lunaphyte_> jumperboy: no, not you.[22:39:29] <jumperboy> lunaphyte_: k[22:39:40] <Mad_Dud> lunaphyte_: what do you recommend then?[22:40:00] <lunaphyte_> there is zero need for a commercial certificate simply to encrypt mail between servers.[22:40:18] <lunaphyte_> i've yet to see an mta that gives even the slightest crap about non repudiation.[22:40:54] <lunaphyte_> i recommend generating a csr for your mta, and signing it with your organization's private root certificate.[22:41:02] <kreign> hi, I've got a problem of spam with postfix and I'm trying to figure out if I can verify whether or not my postfix RBL entries are working. How might I go abotu doing this?[22:41:17] <hobodave> I'm struggling a bit with this guys. I'm trying to configure postfix to receive mail for *.example.com, accepting email for api at * dot example.com and piping it to a script. I'm not quite seeing how to do that by reading http://www.postfix.org/VIRTUAL_README.html[22:41:17] <Mad_Dud> what if i get "certificate verification failed" from receiver server? is the email being still delivered?[22:41:24] <jumperboy> Mad_Dud: yes[22:41:36] <Mad_Dud> oh. okey.[22:41:36] <lunaphyte_> Mad_Dud: whatever the log say is happening is what is happening.[22:41:39] <lunaphyte_> *says[22:42:06] <lunaphyte_> certificate verification failed doesn't mean mail is or isn't being delivered. it just means that certificate verification failed.[22:42:27] <lunaphyte_> whether or not mail is or isn't delivered is indicated by the log messages which say mail either was or wasn't delivered.[22:42:40] <Mad_Dud> i thought that this is one of anti-spam methods[22:42:47] <jumperboy> Mad_Dud: a commercial cert may be desirable if you're using the same hostname for your MTA, auth, webmail, etc.[22:42:48] <lunaphyte_> what?[22:43:18] <jumperboy> Mad_Dud: it could be if verification was universally enforced, but it's not[22:43:18] <Mad_Dud> signed certs decrease chance that the email is spam.[22:43:24] *** cilly has quit IRC[22:43:25] <lunaphyte_> of course, using the same hostname for all of those things is unlikely to be desirable.[22:43:30] <lunaphyte_> Mad_Dud: no, not really.[22:43:40] <will> Mad_Dud: I've never seen that[22:43:51] <lunaphyte_> it's little more than simply a sort of nice thing to do, just because.[22:44:05] <Mad_Dud> oh, thanks for clarification.[22:45:20] <lunaphyte_> sure thing.[22:45:37] *** Matic`Makovec has quit IRC[22:45:43] <lunaphyte_> regardless of what you choose, self signed certificates are an abomination that belong in the garbage.[22:46:25] <Mad_Dud> yeah. i understand.[22:47:42] <lunaphyte_> too often, people seem to foolishly think that to avoid a commercial certificate, it must for some reason be a self signed certificate. this, of course, is silly.[22:50:28] <hobodave> I'm struggling a bit with this guys. I'm trying to configure postfix to receive mail for *.example.com, accepting email for api at * dot example.com and piping it to a script. I'm not quite seeing how to do that by reading http://www.postfix.org/VIRTUAL_README.html[22:50:33] <Mad_Dud> my server is not for commercial stuff. but i still understand that self signed certs are misunderstanding of securing mail service.[22:51:53] <lunaphyte_> oh, it goes way way beyond email. self signed certs are a complete misunderstanding of general pki concepts.[22:52:39] <hobodave> is there any way I could be clearer in my question?[22:53:21] <lunaphyte_> hobodave: let's start with the wildcard. we don't like helping people do foolish things, and using wildcards and catchalls is foolish.[22:53:37] <lunaphyte_> but no, you're question isn't really terribly unclear, atm.[22:53:40] <lunaphyte_> *your[22:53:46] <Mad_Dud> thanks for help and comments! thanks for postfix, which is great software. bye![22:53:46] *** Mad_Dud has left #postfix[22:54:34] <lunaphyte_> but - if you reveal the actual goal, we can probably help you solve whatever the actual problem is in a non foolish manner.[22:54:38] *** p3rror has quit IRC[22:56:43] <hobodave> I'll try to explain that clearer. I have an application that parses incoming emails sent to api at foo dot example.com where "foo" is variable. The application handles the determination of whether or not the subdomain is valid[22:57:26] <hobodave> I'm trying to add support for this in postfix, but I'm a little confused. Right now I have a virtual_mailbox_domain set to .example.com[22:57:58] <hobodave> I've added an "api" entry to main.cf that uses pipe(8) to pipe it to my application, I copied roughly the examples already in there for maildrop[22:58:05] <lunaphyte_> how does the program determine if the hostname is valid or not? you'll want to provide postfix with the same ability.[22:59:08] <hobodave> I want to configure postfix once, not have to update it every time a new subdomain is valid[22:59:18] <lunaphyte_> naturally.[22:59:20] <hobodave> that's why the application has that responsibility[22:59:28] <lunaphyte_> and how does it make this determination?[22:59:49] <hobodave> it has an INI-like configuration file[23:00:16] <lunaphyte_> but what is the mechanism by which it determines if a hostname [destination] is valid or not?[23:00:31] <hobodave> the configuration file tells it[23:00:49] <lunaphyte_> oh, so a person manually manages some list in a file?[23:01:14] <hobodave> correct a person updates that file[23:01:17] <lunaphyte_> i see.[23:01:27] <lunaphyte_> and this program is being authored by you?[23:01:40] <hobodave> a contractor, but basically yes, I'm a developer as well[23:01:44] <lunaphyte_> ok[23:02:35] <lunaphyte_> so what you'll want to do then is employ a basic abstraction mechanism, such that both programs [your program and postfix] can use the same list.[23:03:35] <lunaphyte_> in fact, really, it would be quite easy to simply the the format that is native to postfix, and have your program parse the same file.[23:03:55] <hobodave> lunaphyte_: I appreciate that you are trying to steer me in a direction that you consider to not be "foolish". But I simply do not want to have postfix determine that, foolish or not. If that is a requirement of your help, then I must thank you for your time and stop wasting more of it.[23:03:56] <lunaphyte_> then you manage one list, and you don't have to needlessly accept undeliverable messages.[23:05:13] *** feisar has quit IRC[23:07:59] *** p3rror has joined #postfix[23:13:30] *** Gatto has joined #postfix[23:23:15] *** wdp has quit IRC[23:25:35] *** Patrickdk has joined #postfix[23:27:20] *** empity has quit IRC[23:28:31] *** p3rror has quit IRC[23:29:22] *** kuyote has joined #postfix[23:34:48] <kuyote> !welcome[23:34:48] <knoba> kuyote: "welcome" : welcome to #postfix! if you're joining for the first time, or are new to irc, the first thing you'll want to do is read the channel topic (/topic). it includes crucial instructions on how to effectively ask for help here, and what data you should include with your questions. the degree of success you'll have is directly related to how effectively you're able to follow those guidelines.[23:41:19] *** p3rror has joined #postfix[23:45:46] <kuyote> can someone tell me why postscreen should not be used to receive from MUA's?[23:46:05] <Patrickdk> because that would be evil :)[23:46:32] <Patrickdk> but if you like pissing off you users/customers/..., then use it[23:47:23] *** dall has joined #postfix[23:47:27] <rob0> Yes. Lots of reasons. One, you can't open it to AUTH from the world if you're using improper DNSBLs like Zen/PBL/XBL.[23:47:28] <dall> hello[23:48:04] <rob0> Your roving users who try to AUTH will find themselves rejected by your DNSBLs.[23:48:29] <kuyote> what about users that don't auth?[23:48:40] *** brancaleone has quit IRC[23:48:44] <dall> hey guys, i'm using SPF and DKIM......is there something else to install to improve my outgoind emails?[23:48:45] <Patrickdk> you should never have users that don't auth[23:49:06] <Patrickdk> or atleast, that is my guide :)[23:49:12] <rob0> Another thing, it checks for non-MTA-like behaviors, and their MUAs might not pass.[23:49:13] <kuyote> I'm at an ISP, so we have to provide unauthenticated[23:49:47] <rob0> Use a different IP if you're not going to DTRT and tell the users to move off of port 25.[23:50:17] <rob0> for your use case, postscreen_access_list should work, too.[23:50:56] <Patrickdk> ya, I would defently setup specific ip's[23:50:58] <dall> advice?[23:51:11] <Patrickdk> run old config on one ip, and new better config on new ip[23:51:20] <Patrickdk> and hopefully get everyone to converyt[23:51:32] <Patrickdk> can just track by how many people connect to what one[23:51:45] <Patrickdk> that is how I moved my userbase[23:52:52] *** Section1 has quit IRC[23:53:31] <kuyote> hmm ok I'll have to think a little more on it. Thanks Patrick, and rob0[23:53:44] <rob0> POSTSCREEN_README.html#quick[23:54:22] *** Gatto has quit IRC[23:55:36] <rob0> but for roving users outside your network, the separate IP for MSA is the only clean solution. Or, since port 25 is so widely blocked from many ISPs, just use 587/submission.[23:58:39] <dall> guys i have my mail mx server.....example mail.main.com then i have many domain example1.com example2.com i would like to create mail.example1.com mail.example2.com etc etc can I point these MXs to the mail.main.com? I change configured them on postfix because i have one dedicated ip and i would like to use this IP for mail.main.com and not for the other...[23:58:40] <dall> possible?