   February 23, 2012  
[00:23:01] <tmberg> Tabmow: Checked my lastlog i saw: 02:47 < Tabmow> tmberg: amavis can do that if you are already using it. Maybe it was intended for someone else?
[01:05:55] <Canadian1296> I am setting up postfix, and ran into a problem with the guide I'm following (https://help.ubuntu.com/community/Postfix). I need to edit /etc/postfix/sasl/smtpd.conf but it does not exist. The /etc/postfix/sasl directory is there, but it is empty.
[01:06:34] <Canadian1296> !welcome
[01:06:34] <knoba> Canadian1296: "welcome" : welcome to #postfix! if you're joining for the first time, or are new to irc, the first thing you'll want to do is read the channel topic (/topic). it includes crucial instructions on how to effectively ask for help here, and what data you should include with your questions. the degree of success you'll have is directly related to how effectively you're able to follow those guidelines.
[01:08:37] <Canadian1296> Anyone?
[01:10:13] <lunaphyte_> why are you using cyrus instead of dovecot, for sasl?
[01:11:12] <Canadian1296> lunaphyte_: Is that to me?
[01:16:47] <Canadian1296> lunaphyte_: am currently configuring postfix, I dont have cyrus or dovecot or anything else set up yet.
[01:17:07] <lunaphyte_> and which aspect are you currently configuring?
[01:18:35] <Canadian1296> I installed postfix, reconfigured it (dpkg-reconfigure), set a bunch of sasl related options with "postconf -e '…'", and then it told me to edit /etc/postfix/sasl/smtpd.conf and add two lines to the end, but it does not exist.
[01:19:52] <lunaphyte_> are you sure you really want to run a mail server? it sort of sounds like it may not be a great idea.
[01:20:17] <Canadian1296> I'm setting it up in virtualbox to learn how, it will never actually go live.
[01:20:37] <mfridh> postconf(5) says that append_at_myorigin (default: yes) must not be turned off, but I need it because I want mails to 'root' and 'troglodyte' to not have $myorigin appended to them... so they will be looked up in /etc/aliases ...
[01:20:46] <lunaphyte_> Canadian1296: ah, i see.
[01:20:47] <lunaphyte_> if you're inexperienced with mail servers, you'll want to use the software's documentation, not a how to. howtos and tutorials aren't for beginners.
[01:21:24] <lunaphyte_> also, howtos written by random people aren't supported here. the documentation is though.
[01:21:54] <Canadian1296> lunaphyte_: Well the howto is the official one on the ubuntu wiki, but I'll use the postfix documentation instead.
[01:22:02] <lunaphyte_> official?
[01:22:11] <seekwill> Pretty sure it was a community doc
[01:22:21] <lunaphyte_> not sure how that could be. ubuntu isn't the author of postfix.
[01:28:24] <lunaphyte_> indeed
[04:23:33] <Dmole> anyone know how to find out how (check_client_access hash:/etc/postfix/whitelist) would allow the next rule (reject_rbl_client dnsbl.sorbs.net) to reject a message in (smtpd_recipient_restrictions)?
[04:28:59] <Dmole> sifting through debug_peer_list output ...
[04:40:38] <Dmole> must be getting late, that should be in smtpd_client_restrictions~
[05:01:35] <Jakey> hi i setup postfix+dovecot
[05:01:49] <Jakey> but i can send mail locally but not to outside like yahoo.com
[05:01:50] <Jakey> why?
[05:03:12] <danblack> !port_25_block
[05:03:13] <knoba> danblack: "port_25_block" : Many consumer-grade ISPs (and some which claim to be for business, such as Godaddy) block outbound port 25/tcp traffic to prevent abuse from their network. If your ISP does this, you should see the !basic and !relayhost factoids. Or, upgrade to business-class service (or change ISP if you already had it.)
[05:04:06] <Jakey> danblack: how should i make sure that?
[05:04:17] <Jakey> cause they setup a mx record for my domain
[05:04:40] <Jakey> danblack: how do i check if they are blocking
[05:05:42] <danblack> what does your log say?
[05:06:11] <Jakey> danblack: what log?
[05:06:12] <Jakey> maillog?
[05:06:21] <danblack> yes
[05:07:17] <Jakey> danblack: http://pastebin.com/RUzCKj8c
[05:07:37] <Jakey> maillog shows nothing
[05:09:11] <danblack> !no_logs
[05:09:12] <knoba> danblack: "no_logs" : Nothing in your mail logs commonly means one of two things: either your syslogd is broken (try restarting it), or the connections are not coming to your server. Check your firewall/networking and the DNS for the domain in question. also see !logs.
[05:10:39] <danblack> openssl s_client -connect aspmx.l.google.com:25 -starttls smtp
[05:11:28] <Jakey> danblack: i meant the logs only shows localhost sendmail etcv..
[05:15:46] <rob0> "sendmail" logs?
[05:18:27] <Jakey> danblack: ??
[05:18:34] <Jakey> sorry i lost connection the buffers clear
[05:18:39] <Jakey> where were we??
[05:19:08] <danblack> if you get no output from the following you have a port 25 block: openssl s_client -connect aspmx.l.google.com:25 -starttls smtp
[05:22:53] <danblack> got other stuff todo - like help paying clients
[05:23:04] <Jakey> lol danblack
[05:23:07] <Jakey> just a minute
[05:23:10] <Jakey> :P
[05:24:14] <Jakey> i can connect
[05:24:20] <Jakey> danblack: i can connect
[06:18:40] *** kli0rf has joined #postfix
[08:03:07] <sgronblo> I'm trying to make sense of using encoded-string for recipients
[08:03:48] <sgronblo> It seems the string gets decoded when the mail goes out already?
[08:16:42] <Jakey> danblack:
[08:16:47] <Jakey> ??
[08:16:59] <Jakey> i setup a postfix+dovecot mailserver
[08:17:12] <Jakey> locally
[08:17:29] <Jakey> i can send emails locally fine. but what i need to check to make it able to send out
[08:17:43] <Jakey> to other domains like yahoo.com,hotmail.com etc..
[08:19:22] <danblack> i remember - i just don't care. you couldn't keep track of the few requests for information I asked for so I can't help you. got far too much other stuff todo
[08:19:42] <Jakey> danblack: i did tell youy
[08:20:21] <Jakey> i can connect to googles mail server
[08:20:51] <danblack> great. your logs when you find them will tell you why not elsewhere.
[08:21:19] <danblack> !hotmail
[08:21:20] <knoba> danblack: "hotmail" : http://www.circleid.com/posts/hotmail_running_own_smtp/ : See the !SenderID channel factoid too.
[08:21:30] <Jakey> danblack: the maillogs only tell about local connection there isn't anything that tells me why it fails
[08:22:23] *** danblack has left #postfix
[08:22:46] <Jakey> danblack: i don't to setup anyting else right? like i just setup posfix and can send emails but not recieve emails if i don't set up a mx record right?
[08:29:04] *** wdp has joined #postfix
[08:29:04] *** wdp has joined #postfix
[09:49:00] *** MAAAAAD has joined #postfix
[10:07:18] <Jakey> hi i cannnot send mails to outside world
[10:07:19] <Jakey> help
[10:12:28] <Jakey> can a local mail serverws sent out emails?
[10:12:37] <Jakey> like it access the internet using a gateway
[11:46:46] <schlitzer|freihe> hey all
[11:47:43] <schlitzer|freihe> i have a handfull of mailrelay systems for internel, trusted servers, so the ip range of these servers ilisted in $mynetworks
[11:49:02] <schlitzer|freihe> how could i achieve this?
[11:50:20] <wdp> schlitzer|freihe, like a global blacklist?
[11:50:25] <schlitzer|freihe> yes
[11:50:33] <wdp> take a look at memcache lookups
[11:50:38] <wdp> that might be handy for that
[11:51:08] <wdp> http://www.postfix.org/MEMCACHE_README.html
[11:52:22] <schlitzer|freihe> but this is just the table, right? so where will i use this table? my suggestion was somewhere within smtpd_recipient_restrictions
[11:53:07] <schlitzer|freihe> like "smtpd_recipient_restrictions reject_blacklist, permit_mynetworks, reject_unauth_destination"
[11:53:40] <wdp> right, thats just the table. you can do that with mysql of course, too. check_recipient_access mysql:/...
[11:54:10] <wdp> http://www.postfix.org/RESTRICTION_CLASS_README.html
[11:54:42] <schlitzer|freihe> ahh cool
[11:55:01] <wdp> Take a look at postfix documentation section on the page.
[11:55:08] <wdp> There's a lot of useful and well-documentated stuff.
[11:55:21] <wdp> yw.
[11:55:42] <schlitzer|freihe> jeah, it good documentated, somehow to much, i was a little lost in all these docs :)
[11:56:13] <wdp> I'm just missing some more in-depth examples for the before-queue-filter-documentation page
[11:56:26] <wdp> reading perl-sourcecode of smtpproxy sucks.
[11:56:32] <wdp> smtpprox
[11:56:33] <wdp> *
[11:56:46] <schlitzer|freihe> :)
[11:56:57] <schlitzer|freihe> hopefully i will never have to do this
[13:12:49] <mfridh> guys. I wanted to be able to have postfix behave in a somewhat 'sendmailish' behaviour on a few server. ie. 1: use /etc/aliases to pass mail for root => someaddress at somedomain dot com. and also make sure the server adds @somedomain.com to unqualified sender addresses. but all I can do is get it to add @somedomain.com to unqualified sender AND recipient addresses. Thus /etc/aliases is never even taken into account...
[13:13:10] <mfridh> Am I forced to do the aliasing in the other postfix canonicals instead?
[13:13:47] <mfridh> Basicall, if I set $myorigin="mydomain.com" it is appended on recipient as well as sender addresses.
[13:16:23] <Patrickdk> it should be
[13:16:35] <Patrickdk> cause it's not valid to not have a @domain on an email address
[14:49:08] <rascasoft> hi all, after putting an entry in /etc/hosts and restarting postfix I'm still not able to send a mail to the defined domain (since the ip is wrong, the error is "Connection timed out"), I've checked also the chroot jail (/var/spool/postfix/etc/) and everything seems fine. What else should I check?
[14:50:52] <rascasoft> note that dig is answering right, so the system resolving method is ok
[14:50:58] <rascasoft> is there a cache somewhere?
[14:51:00] <sep> rascasoft, postfix probably check's mx record first. and i dont think you can define mx records in hosts file.
[14:51:12] <sep> rascasoft, use a transport map with a fixed ip for the domain ?
[14:51:17] <rascasoft> sep: yep, you're right
[14:51:29] <rascasoft> sep: but my nameserver in resolv.conf is right
[14:51:37] <rascasoft> and dig gives me the correct MX
[14:52:10] <sep> then why the hosts entry ?
[14:52:23] <rascasoft> sep: just a non sense trying
[14:52:40] <sep> rascasoft, what exactly is the problem ?`
[14:53:08] <rascasoft> sep: dig gives an MX which is not the same I see in postfix's logs
[14:53:16] *** MaximusColourum has joined #postfix
[14:54:32] <sep> rascasoft, post both (a long line, and your dig output) on a paster so we can test
[14:54:37] <sep> log line
[14:55:53] <Dominian> postconf -n as well
[14:58:07] <rascasoft> this is a kind of line in the log:
[14:58:09] <rascasoft> Feb 23 14:39:32 mailserver postfix/error[15017]: A042A8523E: to=<mail at example dot com>, relay=none, delay=4207, delays=4186/21/0/0, dsn=4.4.1, status=deferred (delivery temporarily suspended: connect to smtp.example.com[<WRONG IP>]:25: Connection timed out)
[15:01:45] <Dominian> is the wrong IP that its reporting the old IP ?
[15:01:53] <Dominian> basically, did the IP address for the MX recently change
[15:02:31] <rascasoft> yes
[15:02:39] <rascasoft> no sorry
[15:03:41] <rascasoft> there were no changes on that destination IP
[15:04:20] <rascasoft> the fact is that using an internal DNS the resolution was wrong
[15:04:22] <rascasoft> so
[15:04:31] <rascasoft> I changed the DNS
[15:04:49] <rascasoft> but even if with the new DNS the resolution is like what I want
[15:05:21] <rascasoft> Postfix still resolve it with the wrong IP
[15:15:37] <rob0> Not anything we can say. One WAG is that maybe a wrong value in DNS was cached with a long TTL, but there too, you have checked with dig.
[15:16:52] <rob0> If you had told us the actual domain, we could have looked it up.
[15:17:18] <rascasoft> ok
[15:17:24] <rascasoft> I resolved with transport map
[15:17:30] <rob0> okay
[16:06:45] *** m1nish has joined #postfix
[16:15:06] <ddelrio1986> Anyone have any good references on how to setup aliases?
[16:16:36] <lunaphyte_> sure, that's all covered in the documentation
[16:18:05] <ddelrio1986> lunaphyte, well I've been looking over some of that and am a bit stuck with a problem I'm having.
[16:18:14] <ddelrio1986> lunaphyte, here is a much better explanation of the problem: http://pastebin.com/jWz3aUSX
[16:18:44] <Dominian> Well, the error says it all.
[16:18:52] <Dominian> Its rejecting it because the domain pinehill.localdomain doesn't exist
[16:18:59] <ddelrio1986> Basically some servers are complaining that the sender domain from us is invalid. We wanted to fix that in our postfix configuration but we're not sure how.
[16:19:28] <Dominian> postconf -n please
[16:19:29] <ddelrio1986> Right, the postfix installation is on a box that hosts a couple different domains so we weren't sure how to fix postfix so it sends the correct domain.
[16:19:29] <lunaphyte_> oh, just don't use incomplete addresses
[16:19:31] <Dominian> to a pastebin
[16:24:21] <ddelrio1986> Dominian, http://pastebin.com/pdiJwBvX
[16:26:38] <rob0> "myorigin = $myhostname" and myhostname is not set.
[16:26:49] <Dominian> grrr
[16:27:04] <rob0> I can't understand why people don't set myhostname.
[16:27:33] <patdk-wk> cause they perfer to use yourhostname instead
[16:27:40] <ddelrio1986> rob0, since the box hosts a couple different domains we weren't sure what it should be set to.
[16:28:00] <rob0> The default MIGHT be fine, but things get ugly if not, and things can change outside of Postfix to cause madness.
[16:28:09] <rob0> !tell ddelrio1986 basic
[16:28:10] <knoba> ddelrio1986: "basic" : http://www.postfix.org/BASIC_CONFIGURATION_README.html : a good starting place for Postfix beginners, many common questions are answered here.
[16:37:45] <ddelrio1986> Looks like setting mydomain = aelearncloud.com caused the sender domain to be pinehill.aelearncloud.com which is a real address so I'll see if that fixes it.
[16:37:49] <ddelrio1986> Thanks guys.
[16:38:17] <ddelrio1986> !debug
[16:38:19] <knoba> ddelrio1986: "debug" : http://www.postfix.org/DEBUG_README.html : a good starting point for how to deal with problems and to report information to those who might help. Post your information in a pastebin such as http://pastebin.ca/ or http://dpaste.com/
[16:53:02] <ddelrio1986> rob0, to be honest its because I don't know what it should be.
[16:53:25] <rob0> !fcrdns
[16:53:25] <knoba> rob0: "fcrdns" : http://en.wikipedia.org/wiki/Forward_Confirmed_reverse_DNS : your IP address should resolve to $myhostname, which in turn should resolve back to your IP. This is very important if you want big sites to accept your mail. If you can't have it from your ISP, see !relayhost
[16:53:27] <ddelrio1986> I'm guessing it should just be pinehill.aelearncloud.com but I'm not sure.
[16:54:15] <rob0> If you don't have !fcrdns it still should be a name that resolves to your IP address.
[16:55:49] <ddelrio1986> rob0, so let me see if this is correct then. pinehill.aelearncloud.com does resolve to the IP of my box so I should set myhostname to that then?
[16:58:15] <rob0> domain name pointer 108-166-68-219.static.cloud-ips.com.
[16:58:37] <rob0> Why won't your provider set custom rDNS for you?
[16:58:54] <ddelrio1986> We can set a custom rDNS for the 108.
[16:59:24] <rob0> then choose a name, and do so.
[17:04:52] <ddelrio1986> rob0, I'm seeing this in the headers of a test email now: Received: from pinehill.aelearncloud.com (unknown [])
[17:05:02] <ddelrio1986> Looks like that internal IP address may be a problem, is it?
[17:05:33] <ddelrio1986> The pinehill.aelearncloud.com now resolves its IP and the IP now resolves to pinehill.aelearncloud.com
[17:37:38] <jarr0dsz> hey everyone
[17:37:45] <jarr0dsz> i had some issues with mail past week - sending mail
[17:37:57] <jarr0dsz> not it seems its osx apple mail related, in another client thunderbird it works fine
[17:38:12] <jarr0dsz> so i wonder if there is known issue that i should configure my postfix in a certain way to apple mail will work?
[17:38:37] <jarr0dsz> i reinstalled apple mail wiped all the preferences and settings and configured exactly the way i did thunerbird to no avail apple mail is still unable to send while thunderbird works fine
[17:39:44] <lunaphyte_> pastebin postfix logs of an apple mail transaction
[19:18:41] *** seekwill has joined #postfix
[19:18:41] *** seekwill has joined #postfix
[19:47:56] *** samba35 has joined #postfix
[19:50:35] <samba35> i am trying to setup a simple mail server at home while testing my server status with one of the mail diagnose web site i am getting Expected a '220' welcome code. Got '550 Access denied (not in relay or upstream list)'
[19:51:01] <adaptr> !tell samba35 why
[19:51:02] <knoba> samba35: "why" : are you sure that installing, configuring and maintaining a mailserver is really what you want to do here? it's not something that's for the faint of heart, and definitely not something for folks that are still just learning the basics of linux or unix. also see !nullclient
[19:51:10] <samba35> but when locally when i run telnet on my server it give me 220
[19:52:51] <thumbs> adaptr: FWIW, this is the same user who has been harrassing DrB for years, and us in #httpd for the last year.
[19:53:03] <rob0> '550 Access denied (not in relay or upstream list)' is not a Postfix message.
[19:53:17] <samba35> for years ?
[19:53:20] <adaptr> thumbs: which one ? alex- ?
[19:53:39] <samba35> you can ask rich about that
[19:53:46] <thumbs> adaptr: samba35
[19:53:57] <samba35> what you think i am mad to wait /work at 1 am ?
[19:54:00] <adaptr> ah, okay!
[19:54:04] <adaptr> good luck with that
[19:54:11] <samba35> thanks
[19:55:05] <samba35> as i told you do i need to warry about this messge as i am getting 220 at telnet
[19:55:23] <adaptr> no, not at all. don't worry about it.
[19:55:32] <adaptr> you're good to go on the internet
[19:55:42] <samba35> thanks
[19:55:43] <samba35> bye
[19:56:04] <adaptr> you're still here
[19:56:13] <adaptr> you need to type /quit
[19:56:37] <samba35> is irc is your property ?
[19:56:56] <adaptr> I'm sorry ? I thought you wanted to leave
[19:58:11] <samba35> i know other guy also who just ask question dont answer it and for same question humb???help me
[19:58:48] <samba35> please if can't help pleasesssssssssssss
[19:58:51] <samba35> thanks
[19:58:52] <samba35> bye
[19:58:58] *** samba35 has quit IRC
[19:59:09] <adaptr> ...okay
[20:00:51] <thumbs> and that's how it usually ends with samba35.
[20:01:48] <rob0> wow
[20:04:51] <adaptr> by all mean fan the bucker
[20:06:39] <patdk-wk> that would be hostile
[20:07:04] <adaptr> ...it would be pleasant
[20:18:41] <wimpog> Is there a way to do CRAM-MD5 authentication in command-line? How do I generate it?
[20:19:25] <patdk-wk> you don't
[20:19:52] <rob0> I don't know, but I bet the folks who wrote Thunderbird knew how to do it.
[20:20:27] <wimpog> patdk-wk: why not? The algorithm is public, but I wondered if there is an online generator of some sort
[20:20:53] <patdk-wk> it's a challange response thing
[20:20:58] <patdk-wk> you can't just generate it
[20:21:01] <patdk-wk> it needs input
[20:32:41] *** RedShift_ is now known as RedShift
[20:35:06] <wimpog> patdk-wk: that's what I'm looking at. It is possible to generate it based on the challenge received from the server
[20:50:30] *** acidrain has joined #postfix
[20:50:46] <acidrain> can anyone tell me why postfix will not send emails to outside of machine?
[20:51:02] <acidrain> actually i have tampered with it so much, that it wont recieve either lol
[20:51:18] <acidrain> but if i use sasl auth i can send to outside through terminal using telnet
[20:51:18] <patdk-wk> not really
[20:51:35] <acidrain> evolution wont work, nor squirrelmail
[21:01:09] *** acidrain has quit IRC
[21:02:16] *** acidrain has joined #postfix
[22:15:23] *** Gatto has joined #postfix
[22:19:51] *** wimpog has quit IRC
[22:19:54] *** wimpog_ has joined #postfix
[23:28:03] *** mutax has joined #postfix
[23:28:23] *** wimpog_ has quit IRC
[23:28:25] <mutax> Hi everybody
[23:28:45] <mutax> I have a problem with a postfix behaving as if he ignores local_recipient_maps
[23:29:44] <mutax> The postfix should forward all local mail to a remote system, if the user is not listes in a lookup table. Instead mai lis still beeing delivered locally to a mailbox
[23:30:07] <mutax> system users come in via pam_ldap, postfix has no ldap support
[23:30:10] <rob0> If you provide a pastebin URL of relevant logs and "postconf -n" output, such things are usually very easy to figure out.
[23:30:17] <mutax> anybody has an idea?
[23:31:42] <mutax> http://nopaste.someserver.de/index.php?id=a7ef3fc1c2
[23:31:57] <mutax> her local_recipient_maps is empty so all users should be unknown
[23:32:07] <mutax> but still mail is delivered to the mailbox
[23:32:58] <mutax> mail to just the username without domainpart behaves the same
[23:33:20] <mutax> mail to xyz@localhost is beeing rewritten as per luser directive
[23:33:22] <rob0> "local_recipient_maps is empty so all users should be unknown" wrong assumption
[23:33:35] <mutax> rob0: thats what the documentation sais
[23:33:55] <mutax> if you want all mail beeing forwarded off the system they suggest having it empty
[23:34:40] <mutax> Problem: you use the luser_relay feature of the Postfix local delivery agent. Solution: you must disable the local_recipient_maps feature completely, so that Postfix accepts mail for all local addresses:
[23:34:45] <mutax> from http://www.postfix.org/LOCAL_RECIPIENT_README.html
[23:34:46] <rob0> all that does is prevent recipient validation, never a good idea
[23:35:03] <rob0> luser_relay is a bad idea too
[23:35:09] <rob0> !catchall
[23:35:09] <knoba> rob0: "catchall" : Sending all emails for non-existing users in domain to a special account. See man 5 virtual for the @domain syntax, which applies in virtual_*_maps and relay_recipient_maps. For local(8) delivery, unset local_recipient_maps and see luser_relay. WARNING: catchalls are rarely a good idea. Spammers will abuse them.
[23:35:55] <rob0> localhost is in mydestination, so anything@localhost is accepted and delivered by local(8) if possible, bounced if not.
[23:36:07] <mutax> hmm. okay. what I want is this: all mail to a local user shall be forwarded to $login@mydomain.
[23:36:46] <mutax> and still be able for special users to have a local mailbox, if needed
[23:36:56] <mutax> :/
[23:41:41] *** Dmole has quit IRC
[23:43:35] <rhett> this is not related to postfix, but these little red exclamations that people put into outlook emails... is that a standard part of email?
[23:43:41] <rhett> or just something microsoft put in?
[23:46:22] <seekwill> lol
[23:46:34] <seekwill> I think it's a common header
[23:46:38] <seekwill> X-Priority or something
