Switch to DuckDuckGo Search
   February 9, 2012  
< | 1 | 2 | 3 | 4 | 5 | 6 | 7 | 8 | 9 | 10 | 11 | 12 | 13 | 14 | 15 | 16 | 17 | 18 | 19 | 20 | 21 | 22 | 23 | 24 | 25 | 26 | 27 | 28 | 29 | >

Toggle Join/Part | bottom
[00:01:39] *** dragonheart is now known as danblack
[00:04:00] *** mtnbkr has joined #postfix
[00:05:06] *** TomHome has quit IRC
[00:06:51] *** mambaw has quit IRC
[00:11:44] *** lunaphyte_ has quit IRC
[00:13:19] *** jmosco has joined #postfix
[00:14:15] <jmosco> im having trouble actually seeing authentication attempts with postfix/dovecot
[00:14:18] <jmosco> http://pastebin.com/Be4Q4CFq
[00:14:25] <jmosco> any help would be awesome
[00:14:31] <jmosco> I have been trying for days
[00:15:11] *** lunaphyte_ has joined #postfix
[00:15:55] <mroe> jmosco, logs?
[00:16:57] <jmosco> pastebin as well?
[00:17:05] <jmosco> im looking constantly at /var/log/maillog
[00:17:12] <jmosco> trying to get authenticated
[00:17:30] <jmosco> I can recieve, but clients can not connect
[00:17:30] <mroe> yes, pastebin the logs
[00:17:40] <jmosco> ok
[00:18:53] <jmosco> http://pastebin.com/Y8RR4iDz
[00:19:00] <jmosco> thanks for looking
[00:19:27] <mroe> your problem is with dovecot
[00:19:33] <mroe> and nothing to do with postfix
[00:19:41] <jmosco> ugh
[00:19:46] <jmosco> dovecot is a pain
[00:19:47] <jmosco> lol
[00:19:49] <jmosco> ok
[00:19:51] <mroe> dovecot is simple
[00:19:55] <mroe> show me the logs of dovecot starting
[00:19:59] <jmosco> ok
[00:20:25] <mroe> line 31 is probably where your error is
[00:20:37] <mroe> well, one of your errors
[00:20:49] <mroe> port 3?
[00:21:00] <jmosco> port 3?
[00:21:09] <mroe> read line 31 of the pastebin
[00:22:52] <jmosco> of dovecot.conf?
[00:23:11] <mroe> Nom-_, that one is from postfix
[00:23:13] <mroe> no*
[00:23:17] <jmosco> ok
[00:23:48] <jmosco> queue_directory = /var/spool/postfix
[00:24:38] <mroe> what is that supposed to mean?
[00:24:57] <jmosco> oh, pastebin
[00:24:57] <jmosco> sorry
[00:25:01] <jmosco> brain fried today
[00:25:14] <jimpop> /set_channel_name #postfix+dovecot+linux+syslog+roundcube
[00:25:20] <jmosco> it was cut off, line 389
[00:25:25] *** Aprogas has quit IRC
[00:25:26] <jmosco> ldap
[00:25:36] <mroe> jmosco, pastebin the dovecot logs of it starting up
[00:26:38] <jmosco> ok
[00:26:39] <jmosco> looking
[00:26:49] <jmosco> they are mostly in /var/log/maillog, but not much info
[00:27:03] <mroe> pastebin it
[00:27:10] *** mi has quit IRC
[00:28:35] <jmosco> http://pastebin.com/9nw1jgm6
[00:28:37] <jmosco> lol
[00:29:01] <mroe> ok, now try to connect to the imap server
[00:29:43] <mroe> are you getting all of those SSL errors still?
[00:30:15] <jmosco> http://pastebin.com/GxTCfEJx
[00:30:18] <jmosco> yes
[00:30:42] <mroe> fix line 3
[00:31:21] <mroe> what version of dovecot
[00:31:57] <jmosco> 2.0.9
[00:32:44] <mroe> pastebin your dovecot-ldap.conf
[00:32:55] <mroe> (blank out passwords as needed)
[00:33:32] <jmosco> ok
[00:34:40] <jmosco> http://pastebin.com/M4DTbnxN
[00:35:11] <mroe> where did you get that 'authbind' statement from?
[00:35:31] <jmosco> from a tutorial
[00:35:55] <mroe> what tutorial
[00:36:05] <mroe> don't rely on tutorials
[00:36:07] <jmosco> I dont remember, its bookmarked at work
[00:36:09] <mroe> read the tea docs
[00:36:13] <mroe> real*
[00:36:19] <jmosco> alright
[00:36:20] <mroe> http://wiki2.dovecot.org/AuthDatabase/LDAP/Userdb
[00:37:42] *** erik76 has quit IRC
[00:39:20] <jmosco> hmm
[00:39:52] <mroe> incase you aren't convinced about the quality of tutorials
[00:39:55] <mroe> !tutorial
[00:39:55] <knoba> mroe: "tutorial" : A very common problem is that some people prefer to follow a step-by-step tutorial that shows them how to setup their server w/out reading the documentation or understanding what they are doing. If something goes wrong, they have no clue whatsoever about where to find hints, and they sometimes decide to start from scratch using a different tutorial. This is not The Proper Way.
[00:40:18] <jmosco> lol
[00:40:45] <jmosco> wow, I feel great!
[00:40:45] <jmosco> hahaah
[00:42:31] <jmosco> well, thank you
[00:42:39] <jmosco> im reading now
[00:42:41] <mroe> ok
[00:42:48] <jmosco> I was just getting frustrated
[00:42:50] <mroe> dovecot's wiki is pretty good
[00:43:48] *** theblackbox has joined #postfix
[00:48:53] *** seekwill has quit IRC
[00:50:19] *** mroe has quit IRC
[00:56:18] *** Aprogas has joined #postfix
[01:00:47] *** mroe has joined #postfix
[01:06:25] *** blomqvist has quit IRC
[01:11:15] *** abbe has joined #postfix
[01:11:29] *** MaximusColourum has quit IRC
[01:14:40] <jmosco> the auth_bind statement was from this site
[01:15:14] <mroe> which one?
[01:15:48] <jmosco> http://wiki2.dovecot.org/AuthDatabase/LDAP/PasswordLookups
[01:16:15] <mroe> jmosco, how does authbind = auth_bind?
[01:16:32] <jmosco> typo on my part
[01:17:04] <mroe> once you fix the typo do the dovecot errors clear up?
[01:17:40] <mroe> if not, pastebin the logs of dovecot restarting and attempting to connect via IMAP
[01:17:45] <jmosco> ok
[01:18:12] <jmosco> http://pastebin.com/3ULg2Rui
[01:18:15] <jmosco> thats what I get now
[01:18:39] *** p3rror has joined #postfix
[01:19:01] <mroe> fix line 22
[01:19:54] <jmosco> ok
[01:21:04] *** master_o1_master has quit IRC
[01:22:20] <jmosco> http://pastebin.com/DApPdgfZ
[01:23:15] *** master_of_master has joined #postfix
[01:25:16] <mroe> jmosco, are you setting ssl_verify_client_cert or auth_ssl_require_client_cert?
[01:26:39] <jmosco> http://pastebin.com/WCxsR6Ur
[01:26:40] <mroe> jmosco, it looks like you have configured dovecot to expect the client to auth using a certificate not a username/password
[01:26:55] <jmosco> oh
[01:27:25] <mroe> first, do the files that lines 20 and 21 point to exist?
[01:27:34] <jmosco> yes
[01:27:37] <mroe> secondly, I think you mis-understood the tutorial
[01:28:02] <jmosco> that is possible, lol
[01:28:36] <jmosco> I will go through again
[01:28:40] <jmosco> thanks again
[01:29:04] <mroe> I don't believe the '<' is valid char in that case
[01:29:12] *** shal3r has quit IRC
[01:29:23] <mroe> hrm, I guess it is
[01:29:25] <mroe> that is stupid
[01:29:37] <mroe> but read this: http://wiki2.dovecot.org/SSL
[01:30:10] <jmosco> reading now
[01:30:13] <jmosco> brb
[01:30:21] <jmosco> thank you again, if I dont get a chance in a bit to say so
[01:32:34] *** seekwill has joined #postfix
[01:32:38] *** seekwill has joined #postfix
[01:34:08] *** tty234_ has joined #postfix
[01:34:46] <mroe> nix the ssl = yes and the ssl_cert/key lines
[01:35:02] <mroe> and change the 'disable_plaintext_auth = yes
[01:38:15] <mroe> restart dovecot and repost logs of the same things (starting and imap connection)
[01:38:44] *** tty234_ has quit IRC
[02:01:38] *** BuenGenio has quit IRC
[02:08:33] *** andres has quit IRC
[02:09:33] *** Southron has joined #postfix
[02:10:29] *** lunaphyte_ has joined #postfix
[02:14:18] *** nowthatsamatt has joined #postfix
[02:14:38] *** nowthatsamatt has left #postfix
[02:15:28] *** lunaphyte_ has quit IRC
[02:16:50] *** lunaphyte_ has joined #postfix
[02:23:25] *** n0sq has joined #postfix
[02:23:41] *** andres has joined #postfix
[02:27:09] *** BuenGenio has joined #postfix
[02:27:27] *** BuenGenio has quit IRC
[02:29:26] *** krzee has joined #postfix
[02:30:55] *** BuenGenio has joined #postfix
[02:34:30] *** krzee has quit IRC
[02:44:55] *** mroe has quit IRC
[02:48:06] *** tty234 has quit IRC
[02:51:13] *** seekwill has quit IRC
[03:02:12] *** biggi_mat has quit IRC
[03:02:47] *** seekwill has joined #postfix
[03:02:47] *** seekwill has joined #postfix
[03:35:37] *** shal3r has joined #postfix
[03:38:42] *** shal3r has quit IRC
[03:39:34] *** shal3r has joined #postfix
[03:41:20] *** shal3r has quit IRC
[03:43:08] *** theblackbox has quit IRC
[03:43:19] *** krzee has joined #postfix
[03:45:31] *** shal3r has joined #postfix
[03:54:36] *** shal3r has quit IRC
[03:54:59] *** m1nish has joined #postfix
[04:02:50] *** shal3r has joined #postfix
[04:08:10] *** shal3r has quit IRC
[04:12:16] *** shal3r has joined #postfix
[04:14:41] *** shal3r has quit IRC
[04:18:46] *** shal3r has joined #postfix
[04:23:04] *** Nom-_ is now known as Nom-
[04:31:34] *** BuenGenio has quit IRC
[04:33:53] *** shal3r has quit IRC
[04:36:22] *** xxzz has joined #postfix
[04:37:36] *** BuenGenio has joined #postfix
[04:50:27] *** Southron has left #postfix
[04:54:21] *** D-Boy has quit IRC
[04:54:21] *** D-Boy`` has joined #postfix
[04:55:22] *** Guest8383 has joined #postfix
[04:56:56] *** Cain has quit IRC
[04:56:57] *** Guest8383 is now known as Cain
[04:59:52] *** shal3r has joined #postfix
[05:02:10] *** monkeydiver has joined #postfix
[05:02:39] *** MaximusColourum has joined #postfix
[05:02:48] *** MaximusColourum has quit IRC
[05:03:06] *** MaximusColourum has joined #postfix
[05:03:39] *** Linex_ has quit IRC
[05:04:04] *** Linex_ has joined #postfix
[05:08:33] *** monkeydiver has quit IRC
[05:11:31] *** Linex_ has quit IRC
[05:11:52] *** shal3r has quit IRC
[05:11:59] *** Linex_ has joined #postfix
[05:12:19] *** n0sq has quit IRC
[05:15:33] *** shal3r has joined #postfix
[05:20:31] *** seekwill has quit IRC
[05:21:40] *** MAAAAAD has joined #postfix
[05:24:52] *** shal3r has quit IRC
[05:25:39] *** MAAAAD has quit IRC
[05:34:18] *** shal3r has joined #postfix
[05:39:19] *** shal3r has quit IRC
[05:49:48] *** shal3r has joined #postfix
[06:13:03] *** arkaniad has joined #postfix
[06:15:30] <arkaniad> Hey guys, I'm having issues with postfix & saslauthd on Ubuntu 11.10. Relevant logs / files => http://pastie.org/private/wxmkz9yekiaryw5lpzzqqw
[06:16:52] *** shal3r has quit IRC
[06:18:15] <danblack> arkaniad: its probably ubutu smtpd processes are running inside a chroot /var/spool/postfix. The sasl socket needs to be inside here and referenced relative to its chroot for it to find it.
[06:19:10] <danblack> recomend dovecot a sasl if its a new installation.
[06:20:53] <pj> second the recommendation for dovecot, that includes dovecot IMAP and dovecot POP3 servers.
[06:21:25] <arkaniad> Can dovecot do MySQL though? I'm by no means a postfix master, and I followed the nearly-ubuquitous but aging Flurdy tutorial.
[06:21:33] <rob0> ewww.
[06:22:06] <danblack> it can. rob0 news to be more eww specific.
[06:22:19] <danblack> !tutorial
[06:22:19] <knoba> danblack: "tutorial" : A very common problem is that some people prefer to follow a step-by-step tutorial that shows them how to setup their server w/out reading the documentation or understanding what they are doing. If something goes wrong, they have no clue whatsoever about where to find hints, and they sometimes decide to start from scratch using a different tutorial. This is not The Proper Way.
[06:22:26] <danblack> to save rob the typing.
[06:22:33] <rob0> tutorials in general, and that one in specific. It's bad.
[06:23:06] <rob0> I think that is one of the ones with mysql transport_maps
[06:23:16] <rob0> (for no real reason)
[06:23:52] <arkaniad> *sigh* so, in a nutshell, start over?
[06:24:02] <thumbs> when in doubt ...
[06:24:44] <arkaniad> Alright then. But Dovecot > Courier?
[06:26:47] <arkaniad> Or could I just fit dovecot in with the current configuration?
[06:28:08] *** shal3r has joined #postfix
[06:28:22] <rob0> I would not bother migrating an old install from Courier to Dovecot. But for a new install, I'd definitely choose Dovecot.
[06:30:25] <arkaniad> Well I just set it up yesterday, does that count as a new install? :P
[06:30:41] <danblack> as it seems now i think you could fix dovecot into the config.
[06:31:19] <danblack> is it a fairly big install? lots of domains?
[06:31:59] <danblack> i'd drop the postgrey bit too.
[06:32:18] <danblack> its database should have indexes on the fields use in the where clause.
[06:33:06] <arkaniad> One domain, not a huge deal.
[06:33:21] <danblack> i'd prefer roundcube.
[06:33:59] <arkaniad> Roundcube is nice, Horde is my personal preference.
[06:34:07] <danblack> definately the db bits are overkill for one domain.
[06:34:30] <arkaniad> Would it be easier to ditch MySQL domains?
[06:34:46] <arkaniad> Ditch MySQL altogether?
[06:36:01] <arkaniad> I have an LDAP server also, if that would be easier to configure an MTA with.
[06:40:14] <danblack> if you've got it may was well use it.
[07:01:29] <rob0> one domain, why mysql? Yes, ditch it
[07:01:32] <rob0> !basic
[07:01:32] <knoba> rob0: "basic" : http://www.postfix.org/BASIC_CONFIGURATION_README.html : a good starting place for Postfix beginners, many common questions are answered here.
[07:01:42] <rob0> or ldap
[07:01:45] <rob0> !ldap
[07:01:45] <knoba> rob0: "ldap" : a lookup method that can be used by Postfix. An introduction can be found in the LDAP_README also found at http://www.postfix.org/LDAP_README.html. A worthy project dealing with LDAP and Postfix can be found at: http://jamm.sourceforge.net/howto/html/
[07:02:14] <thumbs> !dapl
[07:02:14] <knoba> thumbs: Error: "dapl" is not a valid command.
[07:02:43] <rob0> !learn jamm as A project dealing with LDAP and Postfix can be found at: http://jamm.sourceforge.net/howto/html/
[07:03:05] <rob0> !forget ldap
[07:04:08] <rob0> !learn ldap as Postfix can use LDAP for various lookups; see http://www.postfix.org/LDAP_README.html for details. See also !jamm
[07:04:14] *** gerhard7 has joined #postfix
[07:04:19] *** shal3r has quit IRC
[07:04:19] <rob0> !forget ldap
[07:04:38] <thumbs> !rob0
[07:04:38] <knoba> thumbs: "rob0" : a pathetic bot that reacts to newly joined users with reciting the !basic and !standard factoids
[07:04:40] <rob0> !learn ldap as Postfix can use LDAP for various lookups; see http://www.postfix.org/LDAP_README.html and http://www.postfix.org/ldap_table.5.html for details. See also !jamm
[07:04:58] <thumbs> rob0: I was about to type !forget rob0, but thought otherwise.
[07:05:20] <thumbs> thought better not to, rather
[07:05:21] <rob0> Error: rob0 is unforgettable
[07:05:36] <thumbs> I don't know if I can delete factoids, even.
[07:05:52] <rob0> sure you can
[07:11:23] *** shal3r has joined #postfix
[07:18:04] *** haidz has quit IRC
[07:25:56] *** krzee has quit IRC
[07:26:32] *** morphje has joined #postfix
[07:30:59] <morphje> currently setting up sasl, got that working. However when i use master.cf to override the client_restrictions as given per example in my config, i get relay access denied. When i add permit_sasl_authenticated to sender_restrictions and receiver_restrictions it will let me. I don't want sasl on port 25 and i don't want anyone contacting me on the submission port (adhering to rfc's :)) Could it be that the client_restrictions doesn't take precedece in
[07:31:00] <morphje> master.cf? or should i be better of specifying client and sender restrictions in my master.cf instead of client restrictions?
[07:47:23] *** kli0rf has quit IRC
[07:47:23] *** rhett has quit IRC
[07:47:23] *** tibyke has quit IRC
[07:47:23] *** todd_dsm has quit IRC
[07:47:23] *** googlah has quit IRC
[07:47:23] *** internat has quit IRC
[07:47:24] *** _NiC has quit IRC
[07:47:24] *** kth5 has quit IRC
[07:47:24] *** azzid has quit IRC
[07:47:25] *** chrisq has quit IRC
[07:47:25] *** Zelest has quit IRC
[07:47:25] *** thumbs has quit IRC
[07:47:25] *** sysmonk has quit IRC
[07:49:46] *** wdp has joined #postfix
[07:51:49] *** kli0rf has joined #postfix
[07:51:49] *** rhett has joined #postfix
[07:51:49] *** tibyke has joined #postfix
[07:51:49] *** todd_dsm has joined #postfix
[07:51:49] *** googlah has joined #postfix
[07:51:49] *** internat has joined #postfix
[07:51:49] *** _NiC has joined #postfix
[07:51:49] *** kth5 has joined #postfix
[07:51:49] *** azzid has joined #postfix
[07:51:49] *** chrisq has joined #postfix
[07:51:49] *** Zelest has joined #postfix
[07:51:49] *** thumbs has joined #postfix
[07:51:49] *** sysmonk has joined #postfix
[07:53:15] <rob0> smtpd_recipient_restrictions is what controls relaying. I think the master.cf example is not ideal for this reason. I even had this argument with Wietse once.
[07:53:52] <rob0> I just use -o smtpd_recipient_restrictions=permit_sasl_authenticated,reject
[07:54:25] * rob0 goes afk, past bedtime
[07:54:42] <morphje> ah okay
[07:54:43] <morphje> thanks
[07:54:49] <morphje> sleep tight ;)
[07:59:30] *** MaximusColourum has quit IRC
[08:00:07] *** MaximusColourum has joined #postfix
[08:09:01] *** ceraphin has joined #postfix
[08:29:40] *** krzee has joined #postfix
[08:29:40] *** krzee has joined #postfix
[08:31:21] *** samba35 has joined #postfix
[08:32:05] <samba35> i want to use use smtp auth for that do i requir dovecot and cyrus-sasl both or just any one of them ?
[08:32:43] *** m1nish has quit IRC
[08:42:26] *** m1nish has joined #postfix
[08:44:46] <Zerberus> samba35: just 1 - please see the SASL_README
[08:49:10] <wdp> Say, if i need to write some sort of policy service for postfix, what would be a good language for that?
[08:49:29] <wdp> I was trying it with bash a few years ago, but that seemed to cause some trouble.
[08:50:04] *** breaker313 has joined #postfix
[08:50:09] *** zeshoem has quit IRC
[08:51:57] *** LiquidFusi0n has joined #postfix
[08:54:51] *** arkaniad has quit IRC
[08:56:18] *** Motoko has quit IRC
[08:57:44] <samba35> sorry had a phone call
[08:58:40] *** jarr0dsz has joined #postfix
[08:59:28] *** MaximusColourum has quit IRC
[09:01:42] *** samba35 has quit IRC
[09:01:52] *** zeshoem has joined #postfix
[09:03:21] <morphje> samba: you could also try to follow some of the howto's
[09:04:38] <morphje> but i'm being nice this morning, you only need one. It doesn't make sense to install 2 packages that do the same
[09:04:40] *** Aprogas has quit IRC
[09:04:45] *** Aprogas has joined #postfix
[09:06:24] <morphje> anyway: off to the ministry of infrastructure and environment
[09:08:48] *** ceraphin has quit IRC
[09:09:13] *** tjikkun_work has joined #postfix
[09:10:43] *** morphje has quit IRC
[09:14:21] *** zorg1 has joined #postfix
[09:19:49] *** aindilis` has quit IRC
[09:23:32] *** snearch has joined #postfix
[09:26:55] *** e-anima has joined #postfix
[09:32:45] *** Linex_ has quit IRC
[09:38:59] *** biggi_mat has joined #postfix
[09:40:35] *** krzee has quit IRC
[09:56:08] *** ceraphin has joined #postfix
[10:14:53] *** snearch has quit IRC
[10:32:44] *** bezourox`away is now known as bezourox
[10:33:11] *** rezon8 has joined #postfix
[10:34:05] *** thumbs has quit IRC
[10:34:09] *** thumbs has joined #postfix
[10:34:09] *** thumbs has joined #postfix
[10:34:38] *** viezerd has quit IRC
[10:34:44] *** r3zon8 has quit IRC
[10:35:27] *** kjs_ has quit IRC
[10:35:29] *** gencha has quit IRC
[10:35:32] *** kjs has joined #postfix
[10:35:38] *** Toerkeium has quit IRC
[10:35:42] *** skopii has quit IRC
[10:35:47] *** viezerd has joined #postfix
[10:35:54] *** skopii has joined #postfix
[10:35:58] *** m1nish has quit IRC
[10:36:21] *** m1nish has joined #postfix
[10:45:28] *** ceraphin is now known as ceraphin_
[10:51:25] *** Steve_The_Pirate has joined #postfix
[11:00:11] *** svenvan has joined #postfix
[11:01:30] <svenvan> hi. is possible to rewrite all destination address striping part of the domain? example: foo@everydomain@stripthis to foo@everydomain
[11:04:51] *** sphenxes has quit IRC
[11:11:22] *** azzid has quit IRC
[11:11:27] *** azzid has joined #postfix
[11:11:31] *** ipnoz has quit IRC
[11:13:36] *** ipnoz has joined #postfix
[11:16:14] *** sphenxes has joined #postfix
[11:20:54] *** UQlev has joined #postfix
[11:30:23] *** m1nish has quit IRC
[11:35:32] *** gencha has joined #postfix
[11:37:55] *** MaximusColourum has joined #postfix
[11:39:48] *** gencha has quit IRC
[11:45:33] *** gencha has joined #postfix
[11:57:24] *** LiquidFusi0n has quit IRC
[12:02:32] *** spiekey has joined #postfix
[12:02:43] <spiekey> hello!
[12:03:03] <spiekey> what does "max connection rate 1/60s for xxxx" in the mail log mean?
[12:03:04] *** happymeerkat has joined #postfix
[12:03:14] <spiekey> the limitation of 1 mail per 60 secs?
[12:07:04] *** lorimar has quit IRC
[12:07:30] *** lorimar has joined #postfix
[12:12:34] <Aprogas> I think it's just anvil reporting it has counted 1 connections over 60s.
[12:12:56] *** ceraphin_ has quit IRC
[12:13:20] *** LiquidFusi0n has joined #postfix
[12:13:25] <Aprogas> anvil just counts, it doesn't take any actions; there are some crude settings in e.g. smtpd to rate-limit based on what anvil counts
[12:17:01] <spiekey> Aprogas, thanks
[12:19:03] *** famicom has quit IRC
[12:19:22] *** leonardjo has joined #postfix
[12:20:00] <leonardjo> Hello I'm seeing occassional warning: TLS library problem: 9335:error:140BA0C3:SSL routines:SSL_new:null ssl ctx:ssl_lib.c:231:
[12:21:45] <leonardjo> Could this cause local delivery failures and why do I see this warning when I have smtpd_use_tls=yes commented out?
[12:22:28] *** kli0rf has quit IRC
[12:23:32] *** famicom has joined #postfix
[12:23:48] <leonardjo> tlsmgr is commented out in master.cf too. Btw, CentOS-4 with postfix-2.2.10-1.5.el4.
[12:24:00] *** kli0rf has joined #postfix
[12:24:17] *** MaximusColourum has quit IRC
[12:24:36] *** famicom has left #postfix
[12:26:24] <leonardjo> The only thing I see relating to tls that smtps uses -o smtpd_tls_wrappermode=yes. Could that cause problems even if smtpd_use_tls=no?
[12:28:11] *** Section1 has joined #postfix
[12:29:41] <waldi> leonardjo: supported versions are 2.6 and higher
[12:34:33] <leonardjo> waldi, well CentOS-4 is nearly EOL, but I still need to maintain that server.
[12:34:57] <leonardjo> So I'm just wondering if that error could cause local delivery failures or is harmless.
[13:09:22] *** LiquidFusi0n has quit IRC
[13:10:04] *** LiquidFusi0n has joined #postfix
[13:24:19] *** tat has joined #postfix
[13:27:29] <tat> i have a problem with postfix+sasl+sqlite, when i try to login with plain auth sasl accepts \0user at example dot com\0pass but when i login with \0user\0user at example dot com\0pass i get bad protocoll as anther, is this suposed to happen ?
[13:28:37] *** m1nish has joined #postfix
[13:29:54] *** danblack has quit IRC
[13:31:50] <waldi> tat: yes. the later is broken
[13:33:47] *** UQlev has quit IRC
[13:47:37] *** xxzz has quit IRC
[13:49:44] *** Aprogas has quit IRC
[14:08:51] *** jkfod has joined #postfix
[14:29:36] *** cristian has joined #postfix
[14:35:14] <cristian> !welcome
[14:35:15] <knoba> cristian: "welcome" : welcome to #postfix! if you're joining for the first time, or are new to irc, the first thing you'll want to do is read the channel topic (/topic). it includes crucial instructions on how to effectively ask for help here, and what data you should include with your questions. the degree of success you'll have is directly related to how effectively you're able to follow those guidelines.
[14:35:32] <cristian> !debug
[14:35:32] <knoba> cristian: "debug" : http://www.postfix.org/DEBUG_README.html : a good starting point for how to deal with problems and to report information to those who might help. Post your information in a pastebin such as http://pastebin.ca/ or http://dpaste.com/
[14:39:01] *** Aprogas has joined #postfix
[14:45:33] *** haidz has joined #postfix
[14:48:05] *** Syco54645_work has joined #postfix
[14:48:28] *** alterbass has joined #postfix
[14:50:43] <alterbass> hey guys just one lilte question, i don't succeed to override smtpd_recipient_restrictions = reject_unauth_destination with the one in main.cf with -o smtpd_recipient_restrictions=permit in master.cf for the submission
[14:51:07] <alterbass> anyone knows why?
[14:51:10] <alterbass> please :)
[14:53:57] <Dominian> alterbass: um
[14:54:14] <Dominian> smtpd_recipient_restrictions in submission shojld probably read "permit_sasl_authenticated"
[14:55:01] <Dominian> and that's it
[14:58:31] <alterbass> yes it works , thx
[15:15:40] *** tat has quit IRC
[15:20:36] <Dominian> welcome
[15:29:19] *** Zelest_ has joined #postfix
[15:30:08] *** internat has quit IRC
[15:30:08] *** Zelest has quit IRC
[15:30:08] *** kth5 has quit IRC
[15:30:08] *** chrisq has quit IRC
[15:30:09] *** tibyke has quit IRC
[15:30:09] *** _NiC has quit IRC
[15:30:12] *** kth5_ has joined #postfix
[15:30:28] *** internat has joined #postfix
[15:30:37] *** chrisq has joined #postfix
[15:30:55] *** _NiC has joined #postfix
[15:31:39] *** Maff has joined #postfix
[15:31:43] *** tibyke has joined #postfix
[15:32:41] <Maff> Maybe I'm missing something about virtual_alias_maps, but it doesn't seem to be working
[15:33:05] <Maff> I've got virtual_alias_maps = hash:/etc/postfix/virtual in my config, then in virtual I've got
[15:33:13] <Maff> "user at mydomain dot com user
[15:33:21] <Maff> otherusername at mydomain dot com user"
[15:33:50] <Maff> but whenever email's sent to otherusername at mydomain dot com, it isn't forwarded to user, postfix bounces it back saying the user doesn't exist
[15:35:35] <Maff> Am I using the right format for the file, or is it possible I'm just doing it completely wrong? >.>
[15:37:02] <rob0> It's possible. A few issues:
[15:37:03] *** Syco54645_work has left #postfix
[15:37:08] <rob0> !example
[15:37:08] <knoba> rob0: "example" : Example.TLD has been reserved for examples in generic top-level domains (com,net,org) and many other TLDs. Please do not use real Internet names as examples.
[15:37:23] <rob0> !append_at_myorigin
[15:37:23] <knoba> rob0: "append_at_myorigin" : Append the string"@$myorigin" to mail addresses without domain information. WARNING: do not change this without understanding what it means, see http://www.postfix.org/postconf.5.html#append_at_myorigin
[15:38:42] <Maff> No I mean
[15:38:54] <rob0> You might be making an assumption about what that "user" target means. My WAG would be that your assumption is wrong.
[15:38:55] <Maff> When mail is received by postfix, if it's addressed to user@mydomain then it's delivered to user
[15:39:20] <Maff> but otherusername@mydomain doesn't seem to be treated as an alias for user
[15:39:54] <Maff> postfix disregards the maps and bounces it back saying the user "otherusername" doesn't exist
[15:40:04] *** nowthatsamatt has joined #postfix
[15:40:09] *** nowthatsamatt has left #postfix
[15:41:22] *** danblack has joined #postfix
[15:43:46] <Maff> I might've just misunderstood, /etc/postfix/virtual (and virtual_alias_maps) is for mapping mail addresses to users, yeah?
[15:44:13] *** spiekey has quit IRC
[15:47:29] *** todd_dsm has quit IRC
[15:50:39] <rob0> I've already answered your question about the problem as much as possible without information. But I can answer that too:
[15:50:43] <rob0> !virtual_alias_maps
[15:50:43] <knoba> rob0: "virtual_alias_maps" : A configuration parameter in the main.cf: Optional lookup tables that alias specific mail addresses or domains to other local or remote addresses. The table format and lookups are documented in virtual(5).
[15:51:11] <Dominian> you did postmap the /etc/postfix/virtual file?
[15:51:26] <rob0> There is nothing magical about /etc/postfix/virtual unless you set it to mean something in your config.
[15:52:12] <Maff> Yeah, I ran postmap on it
[15:53:25] <Maff> I just want to take incoming mail destined for one of my alias email addresses and forward it to my local account. What I have in my /etc/postfix/virtual seems to be correct, looking at documentation and everything I found on google :/
[15:53:54] <rob0> reread my WAG and !append_at_myorigin
[15:54:03] <Maff> WAG?
[15:54:28] <rob0> Scroll up.
[15:55:07] <Maff> append_at_myorigin just seems to be for appending the domain name to addresses
[15:56:41] <Maff> Which isn't the problem, because the domain's already in the address
[15:57:24] <rob0> there is no domain in the "address", "user".
[15:57:31] <Maff> bluh
[15:57:54] <Maff> Email is being sent to matthew at maff dot me.uk
[15:57:57] <Maff> postfix receives that
[15:58:01] <Maff> looks for the user "matthew"
[15:58:08] <Maff> then bounces it back because no such user exists
[15:58:25] <Maff> My /etc/postfix/virtual says it should deliver mail for "matthew" to "maff", but that isn't happening.
[15:58:33] <rob0> 14:38 < rob0> You might be making an assumption about what that "user" target means. My WAG would be that your assumption is wrong.
[15:58:57] <Maff> I don't know what WAG stands for :v
[15:59:08] <rob0> That is really as far as we can go without a pastebin of logs and postconf -n
[15:59:11] <rob0> !wag
[15:59:11] <knoba> rob0: "wag" : WAG: Wild-assed guess ... rarely, if ever, of much use in debugging problems. See !welcome and /topic and !debug.
[15:59:15] <Maff> right.
[15:59:20] <Maff> I'll pastebin full logs and the config
[16:01:50] *** todd_dsm has joined #postfix
[16:02:09] *** breaker313 has quit IRC
[16:02:36] *** LiquidFusi0n has quit IRC
[16:02:48] <jmosco> still having trouble with authentication: http://pastebin.com/WHuqHxUJ
[16:04:05] <Maff> http://pub.maff.me.uk/postconf.txt http://pub.maff.me.uk/maillog.txt
[16:05:21] <Maff> I changed virtual_alias_maps to local_recipient_maps because the documentation suggested that might've been more appropriate, but it doesn't seem to have changed anything
[16:10:21] *** tty234 has joined #postfix
[16:11:16] <rob0> !basic
[16:11:16] <knoba> rob0: "basic" : http://www.postfix.org/BASIC_CONFIGURATION_README.html : a good starting place for Postfix beginners, many common questions are answered here.
[16:11:38] *** MaximusColourum has joined #postfix
[16:11:45] <rob0> leave local_recipient_maps alone (do not set that)
[16:11:56] <Maff> Changed it back to virtual_alias_maps
[16:12:14] *** jkfod has quit IRC
[16:12:32] <rob0> You didn't set myorigin, bad idea, the default is used. See !basic
[16:16:44] <Maff> Right
[16:17:09] <Dominian> .11
[16:17:55] <Maff> All that's in my /etc/postfix/virtual is "matthew at maff dot me.uk maff", is that actually correct?
[16:18:31] <rob0> use fully-qualified addresses as targets.
[16:18:42] <rob0> < rob0> You didn't set myorigin, bad idea, the default is used. See !basic
[16:19:14] <Maff> I've set myorigin
[16:19:44] <rob0> then "maff" delivers to maff at that dot name
[16:20:33] <cristian> !basic
[16:20:33] <knoba> cristian: "basic" : http://www.postfix.org/BASIC_CONFIGURATION_README.html : a good starting place for Postfix beginners, many common questions are answered here.
[16:20:53] <Maff> I've got myorigin = $mydomain, so it should be handling that properly
[16:22:02] <rob0> jmosco, SASL: Connect to /var/run/dovecot/auth-client failed: Permission denied
[16:22:26] <rob0> !tell jmosco sasl
[16:22:26] <knoba> jmosco: "sasl" : SASL is 'Simple Authentication and Security Layer', necessary for SMTP AUTH, and provided to Postfix by addin software. Cyrus SASL and/or Dovecot IMAP/POP3 can provide SASL. See http://www.postfix.org/SASL_README.html for details.
[16:22:38] <rob0> permissions are covered in there ^^
[16:23:05] <jmosco> ok
[16:23:32] <rob0> check also selinux/apparmor breakage
[16:25:55] *** p3rror has quit IRC
[16:25:59] * jelly wonders if anyone uses grsecurity's rsbac breakage
[16:27:41] *** alterbass has quit IRC
[16:28:11] *** mambaw has joined #postfix
[16:30:57] <Maff> I managed to fix it
[16:31:03] <Maff> Thanks for the help
[16:31:12] *** Maff has left #postfix
[16:36:21] <jmosco> ok, awesome
[16:36:25] *** CityLights has joined #postfix
[16:36:28] <CityLights> hi all
[16:36:31] <jmosco> working, just ldap search is not finding the account
[16:36:38] <jmosco> thank you for the document locations
[16:36:46] <CityLights> I got an ubuntu server that is able to send out emails via google mail
[16:36:54] <CityLights> it is using a relay host
[16:37:18] <CityLights> I am unable to find the config file telling the server to relay the email to that server
[16:37:43] <CityLights> I ran: grep -r <server IP> /etc and got nothing
[16:41:14] *** p3rror has joined #postfix
[16:41:52] <CityLights> in /etc/postfix/main.cf I see :relayhost =
[16:45:13] *** rsc has joined #postfix
[16:47:35] *** ciklid has joined #postfix
[16:47:38] <lunaphyte_> CityLights: where is the data you've been directed to provide by the /topic?
[16:47:45] <rsc> I would like to setup a "protected internal domain", where only two specific mailserver can send e-mails to, while all other domains on the same Postfix instance are not "protected". I read the restriction class readme, but I don't get how this could work for my case.
[16:51:00] <CityLights> lunaphyte_: right, min
[16:52:30] *** higuita has quit IRC
[16:53:14] *** GieltjE has joined #postfix
[16:55:10] *** JPT has quit IRC
[16:56:53] <CityLights> lunaphyte_: postconf -n is
[16:57:02] <CityLights> so relayhost is empty
[16:57:03] <rob0> rsc, it does. You do a check_recipient_access lookup of the "protected internal domain" which invokes a check_client_access lookup of the "two specific mailservers".
[16:57:16] <CityLights> is postfix the program sending out the email?
[16:57:23] *** JPT has joined #postfix
[16:57:31] <rob0> Postfix is a MTA
[16:57:51] <CityLights> I can: echo"test"|mail -s test my at domain dot com and I get the email from that server
[16:58:16] *** Zelest_ is now known as Zelest
[16:58:20] <CityLights> so I need to look for another program config file to find how email is sent out
[16:58:24] *** Zelest has quit IRC
[16:58:24] *** Zelest has joined #postfix
[16:58:32] <CityLights> which can it be?
[17:02:47] <svenvan> is there a way to strip domain part for all destination recipients?
[17:03:08] <svenvan> example: user@domain1@domain2 -> user@domain1
[17:03:38] *** danblack has quit IRC
[17:24:25] *** GieltjE has quit IRC
[17:31:29] *** CityLights has quit IRC
[17:33:26] *** happymeerkat has quit IRC
[17:33:42] <jmosco> is there a document that describes dovecot auth with ldap+kerberos?
[17:33:45] <jmosco> cant find anything
[17:40:22] *** tjikkun_work has quit IRC
[17:46:04] *** UQlev has joined #postfix
[17:46:38] <jmosco> here is my dovecot-ldap.conf: http://pastebin.com/HefbueMB
[17:46:50] <jmosco> when I try and connect, it will not find the user
[18:00:18] *** LiquidFusi0n has joined #postfix
[18:04:24] *** Steve_The_Pirate has quit IRC
[18:14:12] *** biggi_mat has quit IRC
[18:17:00] <jeev> EXIM FOR LIFE
[18:24:29] *** ceraphin1 has joined #postfix
[18:27:24] <jelly> word
[18:28:47] *** ceraphin1 has quit IRC
[18:29:27] <tuxick> that's the lames troll i've seen in ages
[18:32:18] <JPT> at least he tried ;)
[18:33:25] *** snearch has joined #postfix
[18:34:09] *** svenvan has quit IRC
[18:36:39] <tuxick> that's not even trying
[18:37:23] *** biggi_mat has joined #postfix
[18:47:45] *** krzee has joined #postfix
[18:47:56] *** seekwill has joined #postfix
[18:47:56] *** seekwill has joined #postfix
[18:51:21] *** Steve_The_Pirate has joined #postfix
[18:52:43] *** Steve_The_Pirate has quit IRC
[18:53:58] *** hever has joined #postfix
[18:58:15] *** gwdp_ has joined #postfix
[19:01:39] *** gwdp_ has quit IRC
[19:04:29] *** Steve_The_Pirate has joined #postfix
[19:11:21] *** UQlev has quit IRC
[19:17:45] *** hever_ has joined #postfix
[19:17:56] *** ciklid has quit IRC
[19:18:49] *** hever has quit IRC
[19:21:52] *** fling has quit IRC
[19:35:46] *** Toerkeium has joined #postfix
[19:47:12] *** LiquidFusi0n has quit IRC
[19:47:57] *** LiquidFusi0n has joined #postfix
[20:00:42] *** Section1 has quit IRC
[20:03:33] *** matt1982 has joined #postfix
[20:12:46] *** p3rror has quit IRC
[20:16:18] *** wdp_ has joined #postfix
[20:24:16] *** p3rror has joined #postfix
[20:31:06] *** hobodave has joined #postfix
[20:44:45] *** ichdasich has quit IRC
[20:44:50] *** ichdasich has joined #postfix
[21:06:53] *** uqlev has joined #postfix
[21:08:23] *** uqlev has quit IRC
[21:13:16] *** axiomatic has joined #postfix
[21:13:29] *** mroe has joined #postfix
[21:16:34] *** axiomatic has left #postfix
[21:25:20] *** wimpog has joined #postfix
[21:25:49] <wimpog> I use postfix on MacOSX10.6 server. WIth the GUI I can only enable TLS support, however, I also need SSL support.
[21:26:44] *** LiquidFusi0n has quit IRC
[21:31:57] *** wdp_ has quit IRC
[21:32:33] *** LiquidFusi0n has joined #postfix
[21:33:05] <rob0> gui? We don't support any GUI here. SSL is the deprecated predecessor of TLS, documented for Postfix here:
[21:33:09] <rob0> !tls
[21:33:10] <knoba> rob0: "tls" : Transport Layer Security (RFC2246). Previously known as SSL, TLS adds a layer of encryption to protocols such as SMTP, submission, IMAP or POP3 to improve security during transmission over the Internet. TLS is implemented using the STARTTLS method, while the non-standard wrapper style of implementation is deprecated at this point. See http://www.postfix.org/TLS_README.html for more info.
[21:33:37] * lunaphyte_ wonders why someone would think they need ssl support
[21:33:54] * lunaphyte_ also wonders what "ssl support" really means.
[21:35:36] <wimpog> rob0: I have an application that doesn't support TLS, and I need to configure postfix w/SSL. It doesn't have to be guy, command line is fine
[21:36:00] * lunaphyte_ wonders what that actually means
[21:36:18] <wimpog> rob0: s/guy/GUI/
[21:38:20] <rob0> indeed, define what you mean, because we do not know.
[21:38:28] <wimpog> rob0: any ideas? I do need to support SSL
[21:39:05] <rob0> plenty of ideas, if I knew what you meant.
[21:39:06] <wimpog> rob0: what's not clear? I have TLS support right now in postfix, but I need to support the older version - SSL, because some of one app doesn't work with TLS
[21:39:46] <rob0> well, nothing is clear, but I'll go ahead and guess:
[21:39:50] <rob0> !smtps
[21:39:50] <knoba> rob0: "smtps" : Port 465 is smtps, SMTP over SSL, a deprecated means of submission. This means that smtps should *not* be used, and that this factoid exists for historical purposes only and should not be implemented. See !submission for smtps' successor. That being said, Postfix can implement smtps with a separate smtpd(8) listener with \"-o smtpd_tls_wrappermode=yes\". See the commented example in master.cf.
[21:40:31] <rob0> ^^ also requires basic TLS setup as covered in TLS_README
[21:40:49] <wimpog> rob0: I already have TLS setup. trying this suggestion
[21:45:02] *** krzee has quit IRC
[21:47:36] <wimpog> rob0: thank you! This is exactly what I needed. It works. See you understood what I meant
[21:48:04] <lunaphyte_> please understand that the terms "tis" and "ssl" are wrong here, and confusing to people.
[21:48:06] <lunaphyte_> *tls
[21:48:52] <lunaphyte_> there is starttls, and there is smtps [deprecated and not to be used]. both starttls and smtps can use tls or ssl.
[21:50:55] <wimpog> lunaphyte: why does my mail settings have both TLS and SSL options? I did not make them up
[21:52:29] <lunaphyte_> because people write software that involves concepts and terms they do not understand.
[21:57:06] <wimpog> lunaphyte: well, I'm not that proficient either, and tell you what I see
[21:57:09] <rob0> To be precise, I did guess. Maybe you wanted to connect to an SMTPS server somewhere else, and that would have a different answer.
[21:58:20] <wimpog> rob0: I have the server, I just needed to enable that legacy support (or how is that called in proper terms). I got it working, thank you! I apologize if I don't have the terminology right, because I don't deal with mail servers often, and don't know a lot about them, that's why I came here to seek help.
[21:59:44] <wimpog> rob0: when crisis strikes (like today) I have no time to learn all about it, I have people breathing down my neck to get it up and running asap.
[22:00:18] <lunaphyte_> just be wary of that stuff.
[22:00:46] <lunaphyte_> things that don't support contemporary mechanisms should be targeted with prejudice.
[22:01:24] <wimpog> lunaphyte: I do want to learn about that stuff, but I can't predict what to learn first before issues occur
[22:01:56] *** xabbuh has joined #postfix
[22:02:09] <lunaphyte_> carpe diem :)
[22:02:17] <thumbs> lunaphyte_: heh.
[22:06:21] *** dfr has joined #postfix
[22:07:23] <dfr> Hi i have postfix+dovecot+squirrelmail running all mails seems to come from @example.com what could i have missed? :S
[22:07:47] <lunaphyte_> !tell dfr welcome
[22:07:48] <knoba> dfr: "welcome" : welcome to #postfix! if you're joining for the first time, or are new to irc, the first thing you'll want to do is read the channel topic (/topic). it includes crucial instructions on how to effectively ask for help here, and what data you should include with your questions. the degree of success you'll have is directly related to how effectively you're able to follow those guidelines.
[22:09:01] <mroe> It amazes me that people still use squirrelmail
[22:13:10] <dfr> yeah sry heres some logs : http://paste.pocoo.org/show/548568/
[22:14:00] <dfr> I really cant find whats wrong. Couldnt find that example.com from logs and everything needed should be set
[22:14:30] <mroe> dfr, are you half-assedly replacing your domain name with example.com?
[22:15:10] <mroe> and next time only paste postfix logs, imap logins are just noise
[22:16:48] <dfr> grep example /etc/postfix/* etc.. finds nothing relevant
[22:17:58] <mroe> where are you sending mail from?
[22:19:01] <dfr> squirrelmail :P
[22:20:14] <jmosco> mroe: so much closer today
[22:20:43] <jmosco> fixed a bunch of kerberos/ldap problems, so im seeing the auth attempts, just not finding the user account now
[22:20:47] *** lunaphyte_ has quit IRC
[22:20:55] <dfr> Im really curious where this example.com comes from :D --> postfix/qmgr[17190]: C92522CDBE: from=<defer at example dot com>, size=701, nrcpt=1 (queue active)
[22:21:26] <jmosco> dfr: I know with a lot of pre-packaged services, you get that as the default domain
[22:21:30] <jmosco> cfengine as an example
[22:22:06] *** rsc has left #postfix
[22:24:21] <jmosco> http://pastebin.com/AKW3xKPK
[22:24:25] <dfr> hehe it was from squirrelmail conf :D solved thankyouu!
[22:26:43] *** lunaphyte_ has joined #postfix
[22:27:09] *** lunaphyte_ is now known as Guest81939
[22:29:37] <mroe> jmosco, you'r using postfix+kerberos?
[22:29:58] <jmosco> no
[22:30:19] <jmosco> ldap+kerberos, then dovecot for imap
[22:30:42] <jmosco> dovecot imap for ldap auth
[22:31:05] <mroe> jmosco, pastebin your dovecot.conf again
[22:31:08] <jmosco> ok
[22:33:12] <jmosco> http://pastebin.com/q2r48WXk
[22:33:49] <mroe> get rid of the ssl_cert and ssl_key lines
[22:34:10] <jmosco> ok
[22:34:17] *** Guest81939 has quit IRC
[22:35:57] <mroe> and you know the drill
[22:36:33] <jmosco> yes
[22:37:16] <jmosco> nope
[22:37:21] <jmosco> now it wont even use ssl
[22:37:32] <jmosco> I had postfix using dovecot for ssl
[22:38:58] <mroe> this concept is one of the more confusing concepts
[22:39:05] <mroe> 'SSL' is an ambiguous thing
[22:39:19] <mroe> in the mail world, it can refer to a handful of things
[22:40:09] <mroe> those options that you had set were configuring dovecot to use certificates as *authentication*
[22:40:23] <jmosco> oh, ok
[22:40:24] <jmosco> wow
[22:40:26] <jmosco> didnt know that
[22:41:13] *** Patrickdk has quit IRC
[22:41:34] <mroe> ssl_cert_file and ssl_key_file are for using TLS as an encryption method
[22:42:03] *** Patrickdk has joined #postfix
[22:43:22] *** glen has joined #postfix
[22:43:56] <jmosco> /etc/dovecot/dovecot.conf line 22: Unknown setting: ssl_cert_file
[22:44:19] *** Steve_The_Pirate has quit IRC
[22:44:25] <glen> hey, i fucked up my virtual db, now i fixed, and i want to resend queue, but it doesn't because it seems have already processed virtual db (User unknown in virtual alias table). how to make the mails reprocessed so they reach destination?
[22:45:16] *** gerhard7 has quit IRC
[22:45:16] <mroe> jmosco, show me the file
[22:46:24] <mroe> what version of dovecot are you running again?
[22:46:39] <jmosco> http://pastebin.com/TJ4JKsud
[22:46:56] <jmosco> dovecot-2.0.9-2.el6_1.1.x86_64
[22:47:23] <mroe> no '<'
[22:50:32] <jmosco> no luck
[22:50:51] <jmosco> it looks like a problem with the ldap lookup
[22:51:04] <jmosco> not 100% sure though
[22:51:50] <mroe> are the stupid SSL errors gone in the log file now?
[22:52:16] <jmosco> lol, no
[22:52:35] <mroe> show me from dovecot restarting
[22:54:52] <jmosco> http://pastebin.com/6Y8h7xvG
[22:55:16] <jmosco> the < has to be there
[22:55:31] <wimpog> rob0: in mail logs I see postfix/smtpd connect from <external IP> the lost connection after EHLO from <external IP> and then disconnect from <external IP>. Is this my postfix trying to connect somewhere, or is something outside connecting to it?
[22:55:43] <mroe> jmosco, no, that is actually a problem with your MUA
[22:55:47] <mroe> what are you using?
[22:56:46] <jmosco> http://pastebin.com/kuWQaATq
[22:56:51] <jmosco> thunderbird
[22:57:20] <wimpog> lunaphyte: do you know?
[22:57:53] *** ribasushi has joined #postfix
[22:57:56] <ribasushi> hi
[22:58:11] <mroe> jmosco, what do you have set for 'Connection Security' and 'Authentication Method'?
[22:58:36] <mroe> wimpog, smtpd doesn't connect to anywhere
[22:58:47] <ribasushi> is there a way to reject a message based on a combination of sending client address *and* envelope to ?
[22:58:52] <mroe> postfix/smtp on the other hand does
[22:58:57] <jmosco> same thing happens with apple mail
[22:59:09] <wimpog> jmosco: that's what I'm trying to figure out
[22:59:13] <jmosco> ok
[22:59:19] <mroe> jmosco, what are those options configured for?
[22:59:24] <jmosco> one sec
[22:59:36] <mroe> ribasushi, postscreen can probably do it
[22:59:44] <mroe> ohcibi, hrm, no it can't
[22:59:48] <mroe> oh*
[22:59:59] <ribasushi> mroe: but need an external daemon, can't do it with config only?
[23:00:00] <jmosco> starttls,normal password
[23:00:33] <mroe> jmosco, hrm
[23:00:39] <wimpog> mroe: do you know whether it is my postfix that's connecting, or something outside connecting to it? I can't really tell
[23:00:46] *** m1chael has joined #postfix
[23:01:05] <m1chael> i have 2 main.cf files on my system. how do i know which one my service postfix will read?
[23:01:36] <Patrickdk> the one it's configured to read
[23:02:05] <jmosco> I changed it to gssapi, and thunderbird now says that the imap server does not support that auth method
[23:02:32] <Patrickdk> when did this become dovecot help?
[23:02:42] <m1chael> how do i know which one is configured?
[23:03:03] <Patrickdk> m1chael, no idea, ask your distro people that made the service postfix scripts?
[23:08:16] <glen> how to force sending out emails from queue if postqueue -f does not do?
[23:08:24] <mroe> jmosco, ok, are you using kerberos because you have to or think you have to?
[23:08:37] <jmosco> no
[23:08:38] <wimpog> postfix/smtpd connect from <external IP> - does that mean the host at the <external IP> is trying to connect to my server, or my server is connecting to the external host?
[23:08:51] <jmosco> its for ldap authentication
[23:08:54] <mroe> wimpog, I answered that already
[23:09:06] <Patrickdk> wimpog, what does, connect from, mean?
[23:09:12] <Patrickdk> !smtp!=smtpd
[23:09:13] <knoba> Patrickdk: "smtp!=smtpd" : Postfix smtp_* and smtpd_* configuration parameters have different meanings. smtp_ = client and smtpd_ = server, the client-side sends mail whilst the server-side receives mail. (smtp = client = sends mail) (smtpd = server = receives mail)
[23:09:15] *** ribasushi has left #postfix
[23:09:17] <wimpog> mroe: where?
[23:09:19] <mroe> postfix/smtpd never initiates a connection
[23:09:31] <mroe> <mroe> wimpog, smtpd doesn't connect to anywhere
[23:09:40] <m1chael> what OS's do you guys run?
[23:09:58] <mroe> jmosco, I didn't really ask a yes/no questin
[23:10:10] <mroe> there are plenty of ways to auth to LDAP without using kerberos
[23:10:28] <mroe> m1chael, Plan9
[23:10:49] <jmosco> well, I am using kerberos
[23:11:02] <mroe> kerberos is a bear
[23:11:08] <wimpog> mroe: you also said "postfix/smtp on the other hand does"
[23:11:09] <mroe> I can't help you with that
[23:11:12] <mroe> wimpog, correct
[23:11:16] <jmosco> I dont mind it
[23:11:32] <mroe> wimpog, so which process produced the log line
[23:11:35] *** wdp has quit IRC
[23:12:01] <wimpog> mroe: postfix/smtpd
[23:12:26] <mroe> wimpog, so now with your wonderful powers of deduction, what is the answer to your question?
[23:12:27] *** cpm_ has joined #postfix
[23:12:34] <wimpog> mroe: why would it be hitting my server all of a sudden? connect - list connection - disconnect
[23:12:39] *** cpm_ has quit IRC
[23:12:40] *** cpm_ has joined #postfix
[23:12:45] <Patrickdk> mroe, ask again?
[23:12:46] <mroe> wimpog, ask them
[23:13:05] <wimpog> mroe: yeah, trying to figure out who this is
[23:13:08] <mroe> Patrickdk, huh?
[23:13:21] <wimpog> mroe: thanks anyway, sorry if I didn't' get it, I'm kind of in panic right now
[23:13:31] *** Motoko has joined #postfix
[23:13:35] <Patrickdk> why panic? it's just a connection
[23:13:37] <mroe> because a random server is exploring your server?
[23:13:56] <mroe> want me to show you my ssh log in attempts?
[23:14:18] <wimpog> mroe: I don't want it to explore it
[23:14:27] <Patrickdk> then blacklist it
[23:14:33] <Patrickdk> use a firewall
[23:14:36] <wimpog> Patrickdk: that's what I just did
[23:14:36] <mroe> wimpog, then unplug the ethernet cord
[23:14:44] <wimpog> Patrickdk: but I just want to know why
[23:14:55] <wimpog> mroe: I did not do anything bad to it
[23:15:06] <Patrickdk> I want to know why god made this horrible place
[23:15:09] <Patrickdk> but he wont answer me
[23:15:20] <mroe> there are millions of scripts that just search for open ports on all machines and pokes at them
[23:15:29] <wimpog> mroe: they're evil!
[23:15:47] <mroe> Nom-, actually they provide a useful service
[23:15:50] <mroe> no*
[23:16:05] *** Motoko has quit IRC
[23:16:07] <wimpog> mroe: to you by any chance?
[23:16:16] <mroe> to all of use
[23:16:20] <mroe> us
[23:16:39] <mroe> if your system is ill-configured they will find out
[23:16:47] *** Motoko has joined #postfix
[23:26:44] *** lunaphyte_ has joined #postfix
[23:27:10] *** lunaphyte_ is now known as Guest14401
[23:28:40] <glen> hey, why postqueue -i can't deliver this (new emails to same address deliver fine):
[23:28:43] <glen> Feb 10 00:28:13 manni postfix/error[2648]: F269722C7D: to=<glen at delfi dot ee>, relay=none, delay=8698, delays=8698/0/0/0.02, dsn=4.0.0, status=SOFTBOUNCE (User unknown in virtual alias table)
[23:29:10] *** wimpog has quit IRC
[23:29:27] *** ruger3339 has joined #postfix
[23:30:40] <Zerberus> glen: postsuper -r F269722C7D
[23:31:11] <glen> can i do it without an id, ie. all items in queue?
[23:32:20] <Zerberus> glen: man postsuper, yes
[23:32:33] <glen> thx
[23:33:39] <glen> hmm. still in queue
[23:34:34] <glen> ok, seems it's not that immediate as postqueue -f
[23:35:04] *** cristian has quit IRC
[23:37:57] <glen> so working. thx again
[23:39:31] *** e-anima has quit IRC
[23:41:46] *** kth5_ is now known as kth5
[23:41:55] *** kth5 has quit IRC
[23:41:55] *** kth5 has joined #postfix
[23:42:43] *** hever_ has quit IRC
[23:52:08] *** snearch has quit IRC
[23:55:01] *** hever_ has joined #postfix
top

   February 9, 2012  
< | 1 | 2 | 3 | 4 | 5 | 6 | 7 | 8 | 9 | 10 | 11 | 12 | 13 | 14 | 15 | 16 | 17 | 18 | 19 | 20 | 21 | 22 | 23 | 24 | 25 | 26 | 27 | 28 | 29 | >