Switch to DuckDuckGo Search
   February 20, 2012  
< | 1 | 2 | 3 | 4 | 5 | 6 | 7 | 8 | 9 | 10 | 11 | 12 | 13 | 14 | 15 | 16 | 17 | 18 | 19 | 20 | 21 | 22 | 23 | 24 | 25 | 26 | 27 | 28 | 29 | >

Toggle Join/Part | bottom
[00:03:28] *** theblackbox has joined #postfix
[00:04:54] *** nosleep77 has quit IRC
[00:08:23] *** theblackbox has quit IRC
[00:11:11] *** theblackbox has joined #postfix
[00:11:26] *** theblackbox has joined #postfix
[00:15:51] *** theblackbox has quit IRC
[00:22:20] <SimonJai> when I restart postfix, it doesn't seem to create a pid
[00:23:46] <SimonJai> sorry i mean it doesn't remove the pid when i stop postfix
[00:25:52] <jimpop> pid?
[00:26:06] <SimonJai> pid file?
[00:26:31] <jimpop> a pid is a process identifier (kernel stuff)
[00:26:36] <jimpop> not disk related
[00:26:51] <SimonJai> but doesn't postfix delete the pid file if it's not running?
[00:26:55] <jimpop> if you mean pid file... then that is not something postfix creates
[00:27:07] <SimonJai> yes pid file, sorry
[00:27:08] *** s0ber has quit IRC
[00:27:10] <SimonJai> hmmmm ok
[00:27:12] <jimpop> the kernel manages pids of running processes
[00:27:31] <SimonJai> well what i want to do is ensure that postfix is running using monit
[00:27:34] *** s0ber has joined #postfix
[00:27:41] <SimonJai> I guess I'll monitor port 25 instead
[00:27:43] <jimpop> which distro?
[00:27:45] <pj> SimonJai: pid files are usually created and removed by init.d scripts which is provided by the package maintainer for your distro, not by postfix.
[00:27:47] <SimonJai> CentOS
[00:28:53] <thumbs> SimonJai: contratulations!
[00:29:01] <SimonJai> ?
[00:29:16] <thumbs> SimonJai: you made a dump statement, after all.
[00:29:21] <thumbs> s/dump/dumb/
[00:30:55] <jimpop> SimonJai: http://lmgtfy.com/?q=monit+postfix
[00:31:06] <SimonJai> thanks jim
[00:34:07] <pj> actually I take it back
[00:34:16] <pj> master creates its own pid file
[00:35:46] *** jarr0dsz has quit IRC
[00:35:48] *** pascal has joined #postfix
[00:52:14] *** biggi_mat has quit IRC
[01:18:09] *** phantasm66 has joined #postfix
[01:19:42] *** snearch has quit IRC
[01:20:34] *** Chi-Town has joined #postfix
[01:20:34] *** Chi-Town has joined #postfix
[01:23:04] *** NorrinRadd has quit IRC
[01:23:18] *** master_of_master has quit IRC
[01:24:50] *** master_of_master has joined #postfix
[01:28:02] *** RadoQ has quit IRC
[01:31:32] *** RadoQ has joined #postfix
[01:39:31] *** theblackbox has joined #postfix
[01:46:02] <theblackbox> hello all, looking for a bit of experience to shed light on a problem with my mail server, I keep getting an error saying that a "Temporary lookup failure" has occured while connecting to smtpd to send a mail outside of my server footprint (so I can send to any of my other virtual domains)
[01:46:18] <theblackbox> any ideas would be appreciated, I'm at a bit of a loss
[01:46:36] <theblackbox> logs and postconf: http://pastebin.com/Df1qbLn7
[01:52:54] <lunaphyte> fix your broken mysql lookup
[01:53:03] <lunaphyte> oh, and don't use catchalls
[01:54:46] <theblackbox> lunaphyte which catchalls? and I can't find for the life of me where that mysql lookup is coming from... been trying to track that down
[01:58:35] *** inf_l00p has quit IRC
[02:00:23] <lunaphyte> theblackbox: test each one
[02:01:06] *** inf_l00p has joined #postfix
[02:01:11] <lunaphyte> based on the name, it would appear that mysql_virtual_alias_domain_catchall_maps.cf serves as some sort of catchall
[02:04:58] <theblackbox> ah, I thought you meant *'s ;)
[02:05:30] *** krzee has quit IRC
[02:08:20] *** Zweisteine has joined #postfix
[02:12:02] <theblackbox> balls... I didn't think it would be the lookup =/ got the case on one of my passwords wrong
[02:12:10] <theblackbox> sorry for the bother lunaphyte
[02:12:20] <theblackbox> cheers for the help
[02:17:50] <Zweisteine> Hello, I'm running Postfix and relaying mail conditionally (sender_dependent_relayhost) to Amazon SES, using a local stunnel running on port 1125. Here is my postconf -n: http://pastebin.com/K9JrR1tr . Amavis DKIM-signs mails properly when the sender_dependent_relayhost rule doesn't match. But when the emails get relayed through there, no content filtering takes place. What should I check?
[02:18:45] *** BuenGenio has joined #postfix
[02:35:22] *** seekwill has quit IRC
[02:35:53] <Patrickdk> that is a whole lot of mydomain.com
[02:36:35] <Patrickdk> I just don't think you own that domain
[02:37:23] *** tjk has joined #postfix
[02:37:25] <tjk> hello
[02:37:27] <Corey> !ell tjk tutorial
[02:37:27] <knoba> Corey: Error: "ell" is not a valid command.
[02:37:32] <Corey> !tell tjk tutorial
[02:37:33] <knoba> tjk: "tutorial" : A very common problem is that some people prefer to follow a step-by-step tutorial that shows them how to setup their server w/out reading the documentation or understanding what they are doing. If something goes wrong, they have no clue whatsoever about where to find hints, and they sometimes decide to start from scratch using a different tutorial. This is not The Proper Way.
[02:37:35] <Corey> There we go.
[02:37:46] <thumbs> !tell Corey Corey
[02:37:47] <knoba> thumbs: Error: No factoid matches that key.
[02:37:51] <Corey> Take that.
[02:37:53] <Corey> !thumbs
[02:37:53] <knoba> Corey: "thumbs" : (#1) Those opposable things which keep those apes dominant over cats, or (#2) The other bot in the channel
[02:38:09] <tjk> Thanks Corey
[02:38:35] *** BuenGenio has quit IRC
[02:46:24] *** BuenGenio has joined #postfix
[02:51:22] *** nutron|w has joined #postfix
[02:52:09] <Zweisteine> Patrickdk, is it frowned upon in this channel to edit out the domain name?
[02:54:34] *** theblackbox has quit IRC
[03:01:40] *** FainaUkraina has joined #postfix
[03:02:55] *** BuenGenio has quit IRC
[03:03:43] <Corey> !fcrdns
[03:03:43] <knoba> Corey: "fcrdns" : http://en.wikipedia.org/wiki/Forward_Confirmed_reverse_DNS : your IP address should resolve to $myhostname, which in turn should resolve back to your IP. This is very important if you want big sites to accept your mail. If you can't have it from your ISP, see !relayhost
[03:03:47] <Corey> tjk: ^
[03:04:31] <tjk> :>
[03:17:31] *** FainaUkraina has quit IRC
[03:24:42] <lunaphyte> Zweisteine: it is frowned upon to mung data when asking for help, and even more frowned upon to use other people's domain names in your examples.
[03:27:56] *** wdp has quit IRC
[03:36:27] <Zweisteine> lunaphyte, understood. Sorry about that, it wasn't my intention to claim ownership of mydomain.com. Here is the unmodified postconf. http://pastebin.com/FmuR5eTg .
[03:43:31] <lunaphyte> no worries, thank you.
[03:44:06] <lunaphyte> so - why are you showing us the output of postconf?
[03:49:10] *** danblack has quit IRC
[03:50:22] <jimpop> !jimpop
[03:50:23] <knoba> jimpop: "jimpop" : I guess jimpop cant help me out cause he is too busy trying to hack my server!
[03:50:52] *** seekwill has joined #postfix
[03:50:52] *** seekwill has joined #postfix
[04:04:35] *** danblack has joined #postfix
[04:05:05] *** Danielc1234 has quit IRC
[04:27:15] *** p3rror has quit IRC
[04:28:24] <tjk> anyone reason why I would not have postconf on a fresh postfix install on openbsd?
[04:29:48] <Dominian> postconf is built in
[04:29:58] <Dominian> so unless openbsd removed it...
[04:30:21] <tjk> ive googled but have not seen anything mentioning a removal
[04:30:34] <Dominian> what version of postfix?
[04:31:55] <tjk> 2.9.2
[04:33:44] <Dominian> Yeah it should be in that version.
[04:36:12] <tjk> maybe the version i installed didnt have it included
[04:36:21] <tjk> i installed the base version available
[04:36:27] <Dominian> Well it should be included
[04:36:33] <Dominian> as it is a needed troubleshooting tool
[04:47:34] <Zweisteine> lunaphyte, my original question was: I'm relaying mail conditionally (sender_dependent_relayhost) to Amazon SES, using a local stunnel running on port 1125. Amavis DKIM-signs mails properly when the sender_dependent_relayhost rule doesn't match. But when the emails get relayed through there, no content filtering takes place. I pasted postconf output as suggested by the topic. I'm wondering
[04:47:35] <Zweisteine> if it is normal behaviour for mails to not get passed through the content filter if they are relayed to a relayhost.
[04:53:43] *** carmel has joined #postfix
[04:57:22] <carmel> !welcome
[04:57:23] <knoba> carmel: "welcome" : welcome to #postfix! if you're joining for the first time, or are new to irc, the first thing you'll want to do is read the channel topic (/topic). it includes crucial instructions on how to effectively ask for help here, and what data you should include with your questions. the degree of success you'll have is directly related to how effectively you're able to follow those guidelines.
[05:04:04] <Corey> Hey rob0!
[05:05:41] *** tty234 has quit IRC
[05:06:00] <Corey> I suppose thumbs will have to do in a pinch.
[05:06:12] <thumbs> Corey: hi.
[05:06:33] <Corey> Even with myorigin set, mutt is still using the box's hostname as the "from" address with tjk's system. I vaguely recall sorting this out with a rewrite rule once, but isn't there a "more better" way?
[05:08:46] *** MAAAAAD has joined #postfix
[05:10:07] <thowe> If I am getting 554 errors from a server that doesn't want my mail, why is Postfix requeueing that message?
[05:10:54] *** phantasm66 has quit IRC
[05:12:22] <Corey> thumbs: If I were a betting man?
[05:12:25] <Corey> Er, thowe even.
[05:12:31] <Corey> I'd guess you have softbounce enabled. :-)
[05:12:50] <Corey> postconf -n |grep -i softbounce
[05:12:53] *** MAAAAD has quit IRC
[05:13:05] <Corey> Er.
[05:13:07] <thowe> heh, no.
[05:13:09] <Corey> grep for soft_bounce instead.
[05:13:21] <Corey> thowe: Okay, postconf -n to a pastebin plz.
[05:13:56] <thowe> I think the message I am getting back says 554 in it, but that a 554 isn't the actual error being given me by them.
[05:14:17] <thowe> I am getting 500 level errors from other places that aren't being deferred.
[05:14:51] <thowe> Current;y have a "poor" reputation in Senderbase
[05:15:23] <Corey> Okay, what do the logs say? :-)
[05:16:05] <thowe> host mailstore1.secureserver.net[216.69.186.201] refused to talk to me: 554-m1pismtp01-018.prod.mesa1.secureserver.net 554 Your access to this mail system has been rejected due to the sending MTA's poor reputation. If you believe that this failure is in error, please contact the intended recipient via alternate means.
[05:16:56] <thowe> All other failures are permanent, but this secureserver stuff is being deferred.
[05:18:29] <thowe> eh, first part of that is relay=none, delay=181000, delays=180998/1.3/0/0, dsn=4.0.0, status=deferred
[05:20:49] <thowe> suppose that dsn is the real error...
[05:22:29] <thowe> Ah, delivery status notification... duh
[05:30:02] <thumbs> Corey: so I don't know what you wanted, but I'm beat, and I can't think
[05:48:12] *** pascal has quit IRC
[05:48:21] *** jarr0dsz has joined #postfix
[05:50:08] *** jarr0dsz has quit IRC
[05:50:22] *** jarr0dsz has joined #postfix
[05:51:46] *** jarr0dsz has quit IRC
[05:51:57] *** jarr0dsz has joined #postfix
[06:01:30] *** phantasm66 has joined #postfix
[06:03:35] *** Motoko has joined #postfix
[06:24:39] *** n0sq has quit IRC
[06:26:41] *** phantasm66 has quit IRC
[06:30:57] *** Chi-Town has quit IRC
[06:35:17] *** tjk has left #postfix
[06:37:30] *** cmatheson has joined #postfix
[06:43:38] *** masterhumper is now known as sejo
[06:49:55] *** biggi_mat has joined #postfix
[06:53:23] *** chadmaynard has joined #postfix
[06:56:15] *** m1nish has joined #postfix
[06:59:06] *** cmatheson has quit IRC
[07:11:09] *** bhagat has joined #postfix
[07:19:37] *** BuenGenio has joined #postfix
[07:20:07] *** m1nish has quit IRC
[07:35:32] *** thowe has quit IRC
[07:37:30] *** jwing has quit IRC
[07:45:55] *** Bry8Star has joined #postfix
[07:54:36] *** emgee has joined #postfix
[07:55:17] *** emgee has left #postfix
[08:08:24] *** milligan has quit IRC
[08:27:45] *** gerhard7 has joined #postfix
[08:47:30] *** shal3r has quit IRC
[09:03:42] *** AL13N_work has left #postfix
[09:04:20] *** shal3r has joined #postfix
[09:09:11] *** PhantomPhreak53 is now known as PhantomPh|AFK
[09:14:34] *** breaker313 has joined #postfix
[09:16:50] *** sep has quit IRC
[09:18:18] *** sep has joined #postfix
[09:20:34] *** BuenGenio has quit IRC
[09:25:38] *** BuenGenio has joined #postfix
[09:26:56] *** tjikkun_work has joined #postfix
[09:30:33] *** krzee has joined #postfix
[09:31:56] *** FainaUkraina has joined #postfix
[09:34:38] *** BuenGenio has quit IRC
[09:36:30] *** e-anima has joined #postfix
[09:39:50] *** Gene_ has joined #postfix
[09:40:57] *** Motoko has quit IRC
[09:42:55] *** FainaUkraina has quit IRC
[09:45:15] *** Steve_The_Pirate has joined #postfix
[09:45:58] *** Gene_ has quit IRC
[10:07:15] *** gencha has quit IRC
[10:10:55] *** JoKoT3 has quit IRC
[10:19:13] *** scarleo has joined #postfix
[10:26:59] *** scarleo has quit IRC
[10:31:00] *** carmel has left #postfix
[10:31:27] *** scarleo has joined #postfix
[10:45:55] *** mBull has joined #postfix
[10:51:00] *** UQlev has joined #postfix
[10:53:19] *** scarleo has quit IRC
[10:56:54] *** scarleo has joined #postfix
[10:56:57] *** bhagat has quit IRC
[11:00:44] *** inf_l00p has quit IRC
[11:02:36] *** scarleo has quit IRC
[11:04:25] *** Steve_The_Pirate has quit IRC
[11:04:25] *** gerhard7 has quit IRC
[11:04:25] *** SimonJai has quit IRC
[11:04:25] *** on1ald has quit IRC
[11:04:26] *** Emotelecom has quit IRC
[11:04:26] *** jfried has quit IRC
[11:04:26] *** doomas has quit IRC
[11:04:26] *** fury__ has quit IRC
[11:04:26] *** sp00kz has quit IRC
[11:04:33] *** fury__ has joined #postfix
[11:05:00] *** jfried has joined #postfix
[11:05:16] *** scarleo has joined #postfix
[11:07:15] *** doomas_work has joined #postfix
[11:09:15] *** doomas_work is now known as doomas
[11:10:04] *** sp00kz has joined #postfix
[11:11:33] *** LostyJai has joined #postfix
[11:12:27] *** anonymous has joined #postfix
[11:13:01] *** anonymous is now known as Guest56112
[11:13:46] *** on1ald has joined #postfix
[11:13:54] *** gerhard7 has joined #postfix
[11:14:48] *** scarleo has quit IRC
[11:17:45] *** Steve_The_Pirate has joined #postfix
[11:19:44] *** wdp has joined #postfix
[11:19:44] *** wdp has joined #postfix
[11:24:43] *** UQlev has quit IRC
[11:25:51] *** xxzz has joined #postfix
[11:40:07] *** abramart has quit IRC
[11:40:14] *** abramart has joined #postfix
[11:47:55] *** KippiX has joined #postfix
[11:52:01] *** shal3r has quit IRC
[12:03:41] *** milligan has joined #postfix
[12:04:57] *** phantasm66 has joined #postfix
[12:05:46] *** abramart has quit IRC
[12:20:24] *** m1nish has joined #postfix
[12:22:17] *** JoKoT3 has joined #postfix
[12:31:55] *** xabbuh has joined #postfix
[12:46:38] *** danblack has quit IRC
[12:51:16] *** shal3r has joined #postfix
[12:51:22] *** happymeerkat has joined #postfix
[12:57:37] *** mBull has quit IRC
[12:57:52] *** mBull has joined #postfix
[13:02:34] *** mBull has quit IRC
[13:03:00] *** zamba has joined #postfix
[13:05:12] *** mBull has joined #postfix
[13:13:35] *** phantasm66 has quit IRC
[13:15:45] *** nowthatsamatt has left #postfix
[13:19:15] *** xxzz has quit IRC
[13:21:02] *** abramart has joined #postfix
[13:27:55] *** happymeerkat has quit IRC
[13:35:17] *** happymeerkat has joined #postfix
[13:41:10] *** [diablo] has joined #postfix
[13:41:11] *** [diablo] has joined #postfix
[13:50:14] *** Kako has joined #postfix
[13:55:22] *** ssureshot has quit IRC
[13:57:03] *** mBull has quit IRC
[14:14:31] *** azzid has quit IRC
[14:24:19] <tuxick> getting complaints about helo checks, so far in all cases it's sexchange
[14:25:26] *** __marix has quit IRC
[14:31:00] *** Patplu has quit IRC
[14:32:17] <patdk-wk> tuxick, we care?
[14:33:01] <tuxick> sorry, was going to ask how to whitelist, but already got it
[14:34:14] <patdk-wk> dunno why bother
[14:34:20] <patdk-wk> I just tell them to fix their server
[14:36:47] <sysmonk> patdk-wk: fix your server by installing postfix ?
[14:36:47] <sysmonk> ;)
[14:36:49] <tuxick> in this case sender does our salary administration
[14:37:06] <tuxick> so i make 1 exception
[14:37:10] <sysmonk> :))
[14:37:18] <patdk-wk> ya, exceptions start out small
[14:37:23] <patdk-wk> then everyone wants one :)
[14:37:27] <sysmonk> yeah
[14:37:28] <tuxick> fsck them
[14:37:38] <sysmonk> fsck -y them
[14:37:46] * tuxick dons bofh hat
[14:38:05] <rob0> it's no fun being a bofh without pay, though
[14:38:14] * rob0 knows firsthand!
[14:50:46] *** Zweisteine has quit IRC
[14:52:50] *** Zweisteine has joined #postfix
[14:53:09] *** jarr0dsz has quit IRC
[14:54:41] *** jarr0dsz has joined #postfix
[14:56:55] <patdk-wk> rob0, isn't being a bofh it's own pay?
[14:57:06] <patdk-wk> the pure pleasure of causing pain to hopeless users
[14:57:36] <rob0> well, only to some extent. There also comes a time to want to buy more coffee
[14:57:54] <sysmonk> wait, you buy coffee?
[14:58:00] <sysmonk> isn't that what users should do ?
[14:59:13] *** mBull has joined #postfix
[15:04:52] *** jwing has joined #postfix
[15:07:55] <tuxick> weren't helo checks default in the past?
[15:09:37] <rob0> default? The only default restrictions are 'permit_mynetworks, reject_unauth_destination' ... since Postfix 2.0
[15:09:41] *** wsmsg has quit IRC
[15:10:00] <rob0> helo is not even required by default
[15:10:04] <tuxick> ok
[15:10:44] <tuxick> it'd be a shame to have to disable it again
[15:10:55] <tuxick> turned out so effective i thought milter-regex was broken
[15:13:01] *** azzid has joined #postfix
[15:17:18] *** azzid has quit IRC
[15:20:32] <tuxick> but i'm afraid it's not gonna work out
[15:20:40] *** azzid has joined #postfix
[15:23:16] *** wsmsg has joined #postfix
[15:33:46] *** Bry8Star has quit IRC
[15:35:00] <patdk-wk> what kind of helo checks are you doing?
[15:35:34] <patdk-wk> on all my systems, helo checks must be valid dns names, and on some, they must resolve and match their ip
[15:36:01] <patdk-wk> the ones that fail the valid dns names test, is few
[15:43:06] *** phantasm66 has joined #postfix
[15:45:07] <tuxick> i already had to disable reject_unknown_helo_hostname
[15:45:24] *** happymeerkat has quit IRC
[15:46:38] <tuxick> a short grep showed me it was blocking mails from a major bank, for example
[15:46:45] <tuxick> )*$#%$ sexchange clickers
[15:53:17] <tuxick> and no, that was no bank phishing :)
[15:55:11] <rob0> reject_unknown_helo_hostname is not safe
[15:55:49] <tuxick> i noticed :)
[15:56:02] *** ssureshot has joined #postfix
[16:02:06] *** jkfod has joined #postfix
[16:09:09] *** Kako has quit IRC
[16:10:16] *** Alagar has joined #postfix
[16:17:39] *** [diablo] has quit IRC
[16:18:33] *** jarr0dsz has quit IRC
[16:18:46] *** jarr0dsz has joined #postfix
[16:18:48] *** jarr0dsz has quit IRC
[16:21:44] <patdk-wk> I run reject_unknown_helo_hostname on my personal email server, but not on *client* email servers
[16:27:07] <rob0> I use it in a restriction class called "nuts", but I only use "nuts" for domain names that are never really used for mail.
[16:27:30] * jelly wonders what's in rob0's nuts
[16:28:33] <jimpop> O_o
[16:29:40] <zamba> hi there.. i want to do some advanced mail content filtering.. more precisely i want to modify all links in messages to be manipulated.. can this be done with postfix directly or do i need some additional tools? and if so, which tools?
[16:29:54] <zamba> or maybe some tools already can do this? like amavis?
[16:30:39] <wdp> lot's of jelly 's everywhere.
[16:30:46] <rob0> Amavisd can invoke any number of content filters, but I don't know of any existing filter which does what you are asking.
[16:31:03] <zamba> rob0: but amavis is probably the way to go?
[16:31:41] <rob0> it would save you from some trouble, especially if you are already using it
[16:31:51] *** xabbuh has quit IRC
[16:32:08] <zamba> well.. i'm not.. at our company we're using symantec messaging gateway.. and then email is delivered to the internal exchange server..
[16:33:00] <zamba> unfortunately the only thing SMG is able to do is discover the links in the message body and from there my idea was to reroute the email to my postfix server that scans the email and modifies it and then delivers it to exchange..
[16:34:10] <zamba> bad idea?
[16:36:34] <rob0> If your MSexchange-based junk does what you need, have fun with it. If it doesn't, you wasted your money on it.
[16:36:53] <lunaphyte_> what is the actual point of all of this?
[16:37:16] <rob0> good question
[16:37:33] <zamba> lunaphyte_: try to prevent phishing attacks
[16:37:40] <zamba> "prevent" is maybe the wrong word
[16:37:51] <lunaphyte_> oh.
[16:38:08] <rob0> so links in mail are not clickable in the MUA?
[16:38:23] <Dominian> Train your users rather than work around their ignorance.
[16:38:55] <zamba> but my idea was to land the user at a page we've created ourselves that will do some automatic scans of the target web site.. whois lookups, dns owner lookup.. and general information gathering.. and maybe even a preview of the page, if that's technically possible.. and then present the user with the choice of opening the page or not..
[16:39:00] <lunaphyte_> so then just use a postfix server as the mx, properly configured. that will dispense with the large majority. for the remainder, use amavis+spamassassin, and quarantine phishing attempts, only to be released by a responsible admin. lastly, educate your users.
[16:39:32] <zamba> Dominian: of course.. we do that as well.. but we want to give our users the tool to make that decision better.. because we have international customers all over the world and we occasionally receive legit emails with links in..
[16:39:37] <rob0> another better solution: force all outgoing http through a squid proxy
[16:39:37] <Dominian> Or better yet, instead of doin gall that.. use a proxy server, force your users to use the proxy server for web surfing, use the proxy to make sure the URLs are safe.
[16:39:50] <rob0> gmta
[16:39:54] <Dominian> fu
[16:39:57] <Dominian> hehe
[16:40:01] <Dominian> yes they do
[16:40:14] <Dominian> zamba: You're making thi s much more difficult than it has to be
[16:40:26] <zamba> well.. what tools are available in squid to do these checks?
[16:40:26] <Dominian> and manipulating the data in the email can be disastrous
[16:40:56] <rob0> I don't know squid well enough to answer that. Maybe the squid people do.
[16:41:03] <Dominian> nor I.
[16:41:11] <Dominian> I've used squid that was included with some appliances
[16:41:17] <rob0> sounds like a sci-fi movie
[16:41:29] <rob0> "attack of the squid people"
[16:41:36] <Dominian> Hell Endian Firewall can act just as a proxy server if need be
[16:43:09] <rob0> I do know that things like dansguardian can be used for filtering on squid. DG is a morality guard, not a malware guard, but there is probably a fliter to do what you want.
[16:44:01] <Dominian> yeah, just have to ask the squid folks
[16:44:37] *** nowthatsamatt has joined #postfix
[16:44:41] *** nowthatsamatt has left #postfix
[16:45:27] *** PhantomPh|AFK is now known as PhantomPhreak53
[16:45:34] <patdk-wk> heh, some people outrite block you, when you use squid, like netflix
[16:46:10] <rob0> based on User-Agent?
[16:46:16] <patdk-wk> no
[16:46:23] <patdk-wk> cause my squid was transparent
[16:46:30] <patdk-wk> not sure how they detected it
[16:46:45] <patdk-wk> I had squid not inject any headers or anything
[16:47:04] <lunaphyte_> i use squid and can access netflix
[16:47:22] <patdk-wk> hmm
[16:47:24] <rob0> so they just block patdk-wk personally!
[16:47:27] <patdk-wk> what squid version?
[16:47:29] <lunaphyte_> :)
[16:47:38] <patdk-wk> rob0, no, I looked it up on the forum, lots of people having the issue
[16:47:46] *** mBull has quit IRC
[16:47:57] <lunaphyte_> 2.99
[16:48:19] <patdk-wk> I was using 3.1.something
[16:48:24] <lunaphyte_> oh, hmm
[16:48:32] <patdk-wk> http://bugs.contribs.org/show_bug.cgi?id=5528
[16:48:47] *** mBull has joined #postfix
[16:49:13] <lunaphyte_> oh, just for watching movies?
[16:49:16] <patdk-wk> ya
[16:49:19] <patdk-wk> streaming movies, only
[16:49:22] <lunaphyte_> i see.
[16:49:32] <lunaphyte_> i don't think i've ever tried that. it's probably broken.
[16:49:43] <patdk-wk> just one day, my bluray and wifes ipad stopped working
[16:49:52] <patdk-wk> saw that info, disabled squid, all better
[16:52:15] *** shal3r has quit IRC
[16:52:24] <Dominian> Sounds like one of the rules in squid is overzealous
[16:53:02] *** shal3r has joined #postfix
[16:54:50] *** mBull has quit IRC
[16:55:36] *** chadmaynard has quit IRC
[16:55:56] <patdk-wk> dunno
[16:56:11] <patdk-wk> I can't remember if I attempted to have netflix passthough or not
[16:56:25] <patdk-wk> but I had some other issues with squid, so just dropped it
[16:56:35] <patdk-wk> was only giving me about a 10% or so, improvement
[17:07:29] *** Steve_The_Pirate has quit IRC
[17:17:39] *** abbe has quit IRC
[17:19:33] *** abbe has joined #postfix
[17:19:52] *** ohcibi has quit IRC
[17:19:56] *** ohcibi has joined #postfix
[17:25:55] *** Ramattack has joined #postfix
[17:33:40] *** Ramattack has left #postfix
[17:40:18] *** tjikkun_work has quit IRC
[17:40:30] *** ojtimsen has quit IRC
[17:41:57] *** inf_l00p has joined #postfix
[17:57:37] *** breaker313 has quit IRC
[17:58:17] *** internat has quit IRC
[17:59:50] *** internat has joined #postfix
[18:14:44] *** MaximusColourum has joined #postfix
[18:24:35] *** Guest98132 has joined #postfix
[18:25:35] *** seekwill has quit IRC
[18:30:25] *** todd_dsm has joined #postfix
[18:33:35] *** m1nish has quit IRC
[18:38:32] *** drcode has joined #postfix
[18:38:36] <drcode> hi all
[18:39:01] <drcode> I am trying to use relayhost from postfix to exim
[18:40:10] <drcode> after I do RCPT TO: it say 550 you must enable smtp authentication to send mail I got the same from postfix, I use smtp_sals auth, any idea please?
[18:40:42] <lunaphyte_> !tell drcode welcome
[18:40:43] <knoba> drcode: "welcome" : welcome to #postfix! if you're joining for the first time, or are new to irc, the first thing you'll want to do is read the channel topic (/topic). it includes crucial instructions on how to effectively ask for help here, and what data you should include with your questions. the degree of success you'll have is directly related to how effectively you're able to follow those guidelines.
[18:47:35] <rob0> Postfix as client and exim as relayhost? If so:
[18:47:39] <rob0> !saslclient
[18:47:39] <knoba> rob0: "saslclient" : See http://www.postfix.org/SASL_README.html#client_sasl when you need client-side SASL authentication to deliver mail to another server
[18:49:21] *** Gatto has joined #postfix
[18:51:48] <drcode> I did step by step
[18:54:21] <drcode> it dosn't auth
[18:54:22] <drcode> in sals_pass user/password need to be base64?
[18:54:23] <rob0> but you did not answer my question
[18:55:04] *** jarr0dsz has joined #postfix
[18:55:29] <drcode> I use postfix has client with rela host
[18:55:33] <drcode> relayhost
[18:57:43] <drcode> I want to relay the mail but use auth login to the smtp that I forward
[18:58:41] <rob0> you'd have to configure your Cyrus SASL to use LOGIN mechanism. I've never had to set up a Postfix SASL client before, so I can only give general guidance.
[19:00:14] <drcode> ok
[19:00:19] <drcode> thanx rob0
[19:00:48] <rob0> (why won't your Exim allow AUTH PLAIN?)
[19:03:24] <drcode> where?
[19:04:29] *** internat has quit IRC
[19:04:39] <drcode> I did use telnet
[19:06:05] *** internat has joined #postfix
[19:06:21] *** n0sq has joined #postfix
[19:06:39] <drcode> and it work
[19:14:35] *** seekwill has joined #postfix
[19:14:35] *** seekwill has joined #postfix
[19:16:04] *** drcode has quit IRC
[19:17:24] *** drcode has joined #postfix
[19:32:26] *** pdtpatrick has quit IRC
[19:40:35] *** rosco has joined #postfix
[19:44:26] <rosco> I will have a downtime of 2 hours on an NFS server where my mailboxes are stored. Can I enable "soft_bounce" for 2 hours ? Is there a better solution in this kind of situation ? (except stopping the service and redirecting the emails ?)
[19:45:36] <adaptr> how would you "redirect" email ?
[19:45:45] <Dominian> !soft_bounce
[19:45:46] <knoba> Dominian: "soft_bounce" : a configuration parameter in the main.cf: Safety net to keep mail queued that would otherwise be returned to the sender. This parameter disables locally-generated bounces, and prevents the Postfix SMTP server from rejecting mail permanently, by changing 5xx reply codes into 4xx. However, soft_bounce is no cure for address rewriting mistakes or mail routing mistakes.
[19:46:06] <seekwill> Can you just tell Postfix to hold it in queue?
[19:46:33] <adaptr> that would be preferable, yes
[19:46:54] <adaptr> (master_service_disbale=smtp ;)
[19:47:05] <adaptr> just stop anything from leaving
[19:47:50] *** Gatto has quit IRC
[19:56:27] <waldi> rosco: stop postfix
[19:57:24] <adaptr> waldi: also valid, but accepting then queueing means you can flush the queue as soon as the mailboxes are back, sintead of depending on the remote side to re-send
[19:58:03] *** v|nc3 has joined #postfix
[19:58:40] <v|nc3> Hi i have all my mail services working except for smtp, after i did a yum update it no longer starts
[19:59:03] <v|nc3> i did netstat -tap but i do not see smtp in the list
[19:59:04] <adaptr> !tell v|nc3 welcome
[19:59:04] <knoba> v|nc3: "welcome" : welcome to #postfix! if you're joining for the first time, or are new to irc, the first thing you'll want to do is read the channel topic (/topic). it includes crucial instructions on how to effectively ask for help here, and what data you should include with your questions. the degree of success you'll have is directly related to how effectively you're able to follow those guidelines.
[19:59:33] <v|nc3> i checked my maillog file but nothing in there
[19:59:36] <rob0> disbale?
[19:59:43] <rosco> vince: maybe a milter problem ? mimedefang ?
[20:00:11] <adaptr> rosco: my special postfix version has typos in the config
[20:00:13] <adaptr> bah
[20:00:17] <v|nc3> what is that
[20:00:19] <adaptr> now I misnick rob0
[20:00:27] <drcode> I read that there is problem to use releayayhost with eim smtp
[20:00:28] <adaptr> rosco: way ove rhis head :)
[20:00:33] <adaptr> start at !welcome
[20:00:35] <rob0> adaptr, how do you even know that the mailboxes are delivered via smtp?
[20:00:40] <drcode> exim smtp
[20:00:43] <drcode> somthing about auth
[20:00:53] <adaptr> rob0: I am assuming that postfix *receives mail* over smtp
[20:01:07] <v|nc3> yes
[20:01:24] <rob0> but master_service_disbale=smtp disbales smtp, not smtpD :)
[20:01:25] <adaptr> hence, it is queued. okay, if you want you may stop all outgoing services. chances are, it's smtp though
[20:01:31] <v|nc3> when i try to telnet localhost 25 i get connection refused
[20:01:44] <adaptr> rob0: certainly. it forces all mail to stay in the queue
[20:02:08] <adaptr> it's a matter of control vs convenience
[20:02:18] <rob0> unless it is delivered by local(8) or virtual(8) or pipe(8)
[20:02:41] <adaptr> oh, I did assume there was a separate mailstore, that's true
[20:02:52] <adaptr> otherwise, bit of a newb question
[20:04:16] <rob0> soft_bounce ought to do it in most cases
[20:04:43] <adaptr> meh, I'm probably overthinking it
[20:06:03] <v|nc3> ok i figured it out, seems that openvpn is causing problems
[20:13:34] *** RovAsleep has quit IRC
[20:17:16] *** mi has joined #postfix
[20:29:06] *** RovAsleep has joined #postfix
[20:35:18] <rosco> I think I'll go with the soft bounce. I've made a quick check and it seems to behave correctly.
[20:35:54] <rosco> I hope I don't get a bad surprise after 2 hours (hard bounce or something)
[20:36:01] <adaptr> remember to disable it after you're done, and before you flush the queue!
[20:38:00] *** matt1982 has joined #postfix
[20:45:51] <drcode> ok
[20:46:02] <drcode> I made some progress
[20:46:04] <drcode> 1 more thing
[20:46:20] <adaptr> easy on that enter key, drcode
[20:46:22] <drcode> can I say in smtp_sals from address? or it need to be in sendmail?
[20:46:49] <drcode> I open verbose, and now its more clear
[20:47:15] <adaptr> excellent!
[20:47:23] *** gencha has joined #postfix
[20:47:46] <drcode> can I tell smtp_sals from address or I can do it in sendmail?
[20:48:13] <adaptr> I have no idea what that means
[20:48:18] <adaptr> provide some context
[20:48:31] <Dominian> what is smtp_sals?
[20:49:20] <drcode> smtp_sasl_auth_enable=yes
[20:49:28] <drcode> I am using realyhost
[20:49:44] <drcode> it say need to add from address
[20:49:52] <adaptr> what is "it"
[20:49:56] <adaptr> says who
[20:50:04] <drcode> smtp verbose
[20:50:19] <adaptr> !tell drcode verbose
[20:50:20] <knoba> drcode: "verbose" : You probably do not need verbose logging, but in rare cases the extra detail can assist in debugging. To set verbose logging add a -v after the command name (such as smtpd) in master.cf, then 'postfix reload' after that.
[20:50:25] <adaptr> turn it off
[20:54:25] *** Creamz has quit IRC
[20:54:37] <drcode> thanx
[20:54:39] *** drcode has quit IRC
[21:00:01] *** jkfod has quit IRC
[21:02:40] *** Niemi has quit IRC
[21:02:59] *** Niemi has joined #postfix
[21:07:23] *** jkfod has joined #postfix
[21:10:16] *** RovAsleep is now known as Rovanion
[21:24:40] *** jra has joined #postfix
[21:28:33] *** MAAAAD has joined #postfix
[21:31:28] *** MAAAAAD has quit IRC
[21:33:29] *** localhost has quit IRC
[21:33:54] *** Nik05 has joined #postfix
[21:34:44] *** localhost has joined #postfix
[21:38:36] *** mi has quit IRC
[21:38:36] *** v|nc3 has quit IRC
[21:40:00] *** micah has joined #postfix
[21:40:13] <micah> is there a way to deny at the aliases expansion level?
[21:41:03] <adaptr> ...don't have an alias that is allowed
[21:41:36] <micah> but if an alias doesn't lookup, doesn't it pass it on to the transport/maps?
[21:41:39] <adaptr> !tell micah goal
[21:41:39] <knoba> micah: "goal" : describe your goal, not what you think the solution is
[21:45:44] <patdk-wk> what you attempt to do in sports
[21:45:55] *** v|nc3 has joined #postfix
[21:46:37] <micah> i can't sport
[21:47:26] *** hydh_ has quit IRC
[21:47:41] <micah> i'm made completely of glass
[21:56:23] *** jra has quit IRC
[21:59:25] <adaptr> heh, I see what you did there
[21:59:27] <adaptr> clever
[21:59:52] <adaptr> although quartz would be closer
[22:01:26] *** hydh has joined #postfix
[22:02:37] *** Guest98132 has quit IRC
[22:08:12] *** Rovanion has quit IRC
[22:10:17] *** danblack has joined #postfix
[22:21:37] *** Rovanion has joined #postfix
[22:24:43] *** Alagar has quit IRC
[22:46:20] *** krzee has quit IRC
[22:46:49] *** inf_l00p has quit IRC
[22:52:49] *** inf_l00p has joined #postfix
[22:58:28] *** Nik05 has quit IRC
[23:00:06] <rob0> micah, expansion of aliases happens later. smtpd(8) only cares if an address is valid or not.
[23:00:42] <rob0> Also, you can always assume that if a feature is not documented, that feature is not implemented.
[23:01:35] *** Niemi has quit IRC
[23:03:07] *** Niemi has joined #postfix
[23:03:34] *** gerhard7 has quit IRC
[23:12:46] *** krzee has joined #postfix
[23:27:52] <adaptr> [21:41] <adaptr> ...don't have an alias that is allowed
[23:28:17] <adaptr> it's what I said (although I said it in the most obscure way possible)
[23:35:12] <micah> rob0: i'm trying to figure out what the earliest address verification step is
[23:35:55] *** Guest56112 has quit IRC
[23:36:34] <adaptr> micah: the ONLY address *validity* step is checking all valid addresses, by smtpd(8). it involves all possible maps denoting valid addresses. all of them.
[23:36:42] <adaptr> at once
[23:37:00] <micah> ah ok! i thought maybe one was done first
[23:37:02] <adaptr> if you really need more detail than that, I recommend readin smtpd.c
[23:37:19] <adaptr> it's big, and no fun to read, but it is the ultimate authority
[23:38:15] <adaptr> micah: okay, if you must, yes, in all cases where virtual_ALIAS_maps is used alongside any other maps, virtual_ALIAS_maps is checked first.
[23:38:25] <adaptr> because it is the global override
[23:38:37] <adaptr> it can rewrite any recipient
[23:39:33] <adaptr> but apart from that, there is no specific "order" - basically because address classes etc ensure that only one map is used per specific recipient
[23:40:16] <adaptr> if you like, you can write out every possible use case. it's a good excercise.
[23:41:48] *** e-anima has quit IRC
[23:42:47] <micah> heheh
[23:43:12] <micah> yeah I'm just trying to understand how this works in general (I dont have any particular goal besides that)
[23:43:21] <adaptr> !overview
[23:43:21] <knoba> adaptr: "overview" : Postfix Architecture Overview : http://www.postfix.org/OVERVIEW.html
[23:43:25] <adaptr> read it religiously
[23:43:35] <adaptr> it is muy importante
[23:43:50] <adaptr> in the fullness of time, it explains oh so much
[23:44:18] <adaptr> also do click each of the major links in those diagrams, oin order
[23:44:49] <adaptr> tyhat's the way Wietse designed the docs to be understood, I think it is the best way to gradually get used to how postfix does things
[23:44:56] *** sphenxes has quit IRC
[23:52:26] *** biggi_mat has quit IRC
[23:54:27] *** matt1982 has quit IRC
[23:57:17] * rob0 checks on adaptr's typo supply ... looks good!
[23:57:33] <jimpop> lol
[23:57:55] <adaptr> ow shuddyup you
[23:58:21] <thumbs> I should lend my thumbs to adaptr to improve his spelling.
[23:58:28] <jimpop> which American (US) school did you learn spelling at adaptr ?
[23:58:34] <rob0> micah, you can also try a few receptions with smtpd -v (or the peer listed in
[23:58:41] <rob0> !debug_peer_list
[23:58:41] <knoba> rob0: "debug_peer_list" : a configuration parameter in the main.cf: Optional list of SMTP client or server patterns that cause the verbose logging level to increase by the amount specified in $debug_peer_level.
[23:58:58] <rob0> ) to see what happens, when.
[23:59:02] <adaptr> jimpop: you've never heard of it
[23:59:14] <jimpop> :-)
[23:59:21] <rob0> Just don't ask us to look at your verbose logs. We turn surly. :)
[23:59:25] <adaptr> hence how much moar awesomr I am at it than you ist
[23:59:31] <jimpop> lol
[23:59:38] <adaptr> becuz I iz not e'en a Merkian, ey!
[23:59:58] <jimpop> 'Merica
top

   February 20, 2012  
< | 1 | 2 | 3 | 4 | 5 | 6 | 7 | 8 | 9 | 10 | 11 | 12 | 13 | 14 | 15 | 16 | 17 | 18 | 19 | 20 | 21 | 22 | 23 | 24 | 25 | 26 | 27 | 28 | 29 | >