Switch to DuckDuckGo Search
   February 27, 2012  
< | 1 | 2 | 3 | 4 | 5 | 6 | 7 | 8 | 9 | 10 | 11 | 12 | 13 | 14 | 15 | 16 | 17 | 18 | 19 | 20 | 21 | 22 | 23 | 24 | 25 | 26 | 27 | 28 | 29 | >

Toggle Join/Part | bottom
[00:06:27] *** sfrancis has quit IRC
[00:15:12] *** wdp has quit IRC
[00:20:49] *** jkfod has quit IRC
[00:28:58] *** biggi_mat has quit IRC
[00:53:39] *** dragonheart has joined #postfix
[00:54:35] *** nveid has quit IRC
[00:55:31] *** danblack has quit IRC
[00:56:23] *** nveid has joined #postfix
[01:03:52] *** biggi_mat has joined #postfix
[01:05:04] *** on1ald has quit IRC
[01:10:55] *** dragonheart is now known as danblack
[01:16:09] *** penrod has quit IRC
[01:17:30] *** penrod has joined #postfix
[01:39:13] *** patdk-lap has joined #postfix
[01:42:30] *** MaximusColourum has joined #postfix
[01:55:03] *** MaximusColourum has quit IRC
[01:56:00] *** Yulth has quit IRC
[02:07:09] *** gongoputch has quit IRC
[02:25:45] *** crazygir has joined #postfix
[02:26:29] <crazygir> hello! taking a look at my mail.info log I see a bunch of (connect to 127.0.0.1[127.0.0.1]:10024: Connection refused) for the last few hours. how would I get additional info into who is refusing what?
[02:27:38] <danblack> the application listening (or not listening) on port 10024 is causing the lack of connection
[02:27:38] <lunaphyte> by looking at your config.
[02:27:40] <abbe> crazygir: maybe check master.cf to see what's listening on that port, or what's being sent to that port. probably dkimproxy or something.
[02:28:19] <lunaphyte> master.cf will not indicate what is listening on 10024.
[02:28:30] <danblack> and look at netstat -plant to see whats listening.
[02:28:41] * crazygir nods
[02:29:07] <crazygir> ah: tcp 0 0 127.0.0.1:10024 0.0.0.0:* LISTEN 14519/amavisd (mast
[02:29:20] <crazygir> so I restarted amavisd a few minutes ago
[02:29:34] <crazygir> should I expect postfix to retry/reprocess these messages?
[02:29:41] <lunaphyte> man postsuper
[02:30:52] <danblack> and you can expect whatever you want :-)
[02:31:03] <crazygir> ?
[02:31:40] <crazygir> lunaphyte: should I have postsuper run a -r ALL ?
[02:31:46] <danblack> it may not be true, but you can try to expect it.
[02:32:12] <lunaphyte> messages in a queue will receive further processing. messages related to log entries may or may not be in a queue somewhere.
[02:32:20] <lunaphyte> !tell crazygir tias
[02:32:21] <knoba> crazygir: "tias" : Try It And See
[02:32:41] <rob0> also "man postfix", see "flush"
[02:32:49] <crazygir> I generally like to consult with folks who know more about the topic
[02:33:00] <lunaphyte> isn't that what you're doing?
[02:33:12] <rob0> no, asking US
[02:33:32] <crazygir> try it and see isn't the best way to confirm if this is what I should do in this scenario
[02:33:42] <lunaphyte> what if i said yes, and someone else said no? then what?
[02:33:52] <lunaphyte> yes, tias is the best way.
[02:33:52] <crazygir> then we discuss why
[02:33:55] <crazygir> hah
[02:34:08] <crazygir> why would you say so?
[02:34:19] <lunaphyte> empirical evidence is always better than an anecdotal debate.
[02:35:00] <rob0> # postsuper -r ALL
[02:35:11] <crazygir> would running the requeue request jeopardize future attempts should something go wrong?
[02:35:14] <rob0> Reformatting queue partition, please wait ...
[02:35:15] <lunaphyte> anyway, the documentation for the product should naturally give you much more confidence than some stranger in an irc channel.
[02:35:22] <rob0> Damn!!
[02:36:00] <lunaphyte> future attempts at what?
[02:36:22] <crazygir> reprocessing the queue
[02:36:25] <rob0> what am I going to tell my users?
[02:36:36] <crazygir> sorry, I don't usually just blindly trust software to do the right thing
[02:36:48] <crazygir> 6 messages requeued :)
[02:37:32] <lunaphyte> blindly would be if you'd just ran arbitrary commands offered up by some stranger in an irc channel. reading the man page and expecting the software to behave as documented is quite sighted.
[02:38:29] <crazygir> what's wrong with combining (at least in consideration) data output from both
[02:38:45] <crazygir> or one confirming / validating others in a way
[02:39:15] <crazygir> I found the command by reading the suggested manpage. confirming how it works or checking on potential gotchas seems reasonable to me..
[02:39:19] <lunaphyte> sure, i'd concede there's potential value there.
[02:39:25] <crazygir> :)
[02:40:04] <crazygir> thanks for the assistance
[02:40:11] <rob0> heh, and after all that, there was no need to requeue, merely to flush
[02:40:43] *** Jakey has quit IRC
[02:41:34] <crazygir> what options exist for giving users the ability to add new domains / users / alaises / etc to a postfix installation?
[02:41:47] <lunaphyte> right, good point. nothing in the config had changed, so no need to requeue.
[02:41:58] <crazygir> I'm currently using iRedmail, and not really sure about it
[02:42:08] *** Jakey has joined #postfix
[02:42:12] <lunaphyte> nothing as far as postfix is concerned.
[02:42:16] <rob0> I am not able to help with iRedmail
[02:42:25] <crazygir> I'm not asking you to
[02:42:44] <crazygir> lunaphyte: right, postfix doesn't care directly.. eg if you are using mysql/ldap/etc
[02:42:51] <rob0> but you are asking how does this iRedmail thing add users?
[02:42:55] <crazygir> but I guess the question is more generic than that
[02:43:13] <crazygir> rob0: nope
[02:43:22] <rob0> The Postfix answer is generally that Postfix does not add users. Something else does.
[02:43:32] <crazygir> right
[02:43:42] <lunaphyte> there are plenty of software packages out there that offer various mail management systems, but if that's what you are after, you wouldn't worry about what internal components are used. you'd just pick the management software that provided the interface you desired.
[02:44:08] <crazygir> right, what are some of those management systems? what would you suggest over another?
[02:44:13] <lunaphyte> a piece of software might use postfix to accomplish what it provides, or it might not, but it wouldn't be relevant.
[02:44:23] <lunaphyte> oh, i wouldn't endorse any.
[02:44:35] <lunaphyte> i wouldn't offer any others beyond what a google search will reveal.
[02:44:37] <rob0> I don't use management systems, I *am* the management system.
[02:45:07] <crazygir> rob0: what would you suggest when giving up that management to others who aren't ssh-capable?
[02:45:07] <lunaphyte> although - in the spirit of the question, all things being equal, i very strongly endorse ldap.
[02:45:55] <jimpop> crazygir: i suggest the rob0 management system. It's good.
[02:46:03] <crazygir> :P
[02:46:03] <rob0> heh :)
[02:46:05] <crazygir> that's my current
[02:47:23] <rob0> User management can indeed be delegated to non-technical people in 13.4 gazillion ways. You would want to choose something relevant to your data backend.
[02:47:59] <rob0> For instance, I could suggest phpmysql, but that would fail if your data backend was LDAP.
[02:48:38] *** jmosco has quit IRC
[02:49:25] <crazygir> rob0: sure, that is totally true
[02:49:31] <lunaphyte> do not give people who are not competent the ability to do things that only competent people should do. no amount of technical wizardry can address this.
[02:49:53] <rob0> IMO it is reasonable to delegate user management, however.
[02:50:13] <crazygir> for whatever reason, I find the php*admin tools too wide open
[02:50:21] <crazygir> yea, I don't want more than domain/user management
[02:50:27] <crazygir> even just user management
[02:50:32] <rob0> (What you do is restrict access to those tools.)
[02:50:44] *** jmosco has joined #postfix
[02:50:46] <crazygir> sure
[02:50:56] <lunaphyte> or - put another way - mechanisms such as you described should not be introduced in an effort to allow people to avoid having to understand how things work. rather, they should be introduced to improve the workflow of people who *do* know how things work.
[02:50:58] <crazygir> but the problem continues to get more complicated :P
[02:51:20] <rob0> Once I was asked to prepare a frontend to a domain blacklisting tool. I populated the original list with known blackhat/spyware domains.
[02:51:28] <crazygir> lunaphyte: I agree, but as rob0 noted, creating and managing users & passwords is pretty straightforward..
[02:51:50] <rob0> The tool was handed over to non-technical people, who promptly blacklisted AOL.com!
[02:51:55] <crazygir> hahaha
[02:52:00] <crazygir> <3
[02:52:03] <rob0> I yelled at my boss about that.
[02:52:29] <rob0> with more than a few "I told you sos"
[02:52:46] <crazygir> indeed
[02:54:18] <rob0> at least it did cost the company some money. They had customers using AOL addresses. Blacklisting meant aol.com was undeliverable.
[02:54:44] <rob0> and rejected inbound, too
[02:55:07] <crazygir> hah
[03:02:44] *** on1ald has joined #postfix
[03:17:19] *** biggi_mat has quit IRC
[03:30:02] *** krzee has joined #postfix
[03:38:51] *** Driver has joined #postfix
[03:53:03] *** penrod has quit IRC
[03:54:38] *** gongoputch has joined #postfix
[03:54:57] *** penrod has joined #postfix
[03:57:40] *** krzee has quit IRC
[04:04:19] *** penrod has quit IRC
[04:04:50] *** penrod has joined #postfix
[04:06:02] *** seekwill has quit IRC
[04:22:47] *** Emotelecom has joined #postfix
[04:25:55] *** fawkingijit has quit IRC
[04:36:33] *** saftsack___ has quit IRC
[04:50:22] *** saftsack___ has joined #postfix
[05:11:16] *** Bry8Star has joined #postfix
[05:43:59] *** MAAAAD has joined #postfix
[05:46:28] *** MAAAAAD has quit IRC
[05:49:58] *** n0sq has quit IRC
[05:51:49] *** penrod has quit IRC
[05:54:08] *** penrod has joined #postfix
[06:37:39] *** nveid_ has joined #postfix
[06:39:01] *** nveid has quit IRC
[06:39:01] *** nveid_ is now known as nveid
[07:03:25] *** penrod has quit IRC
[07:04:07] *** penrod has joined #postfix
[07:29:36] *** sacredchao has joined #postfix
[07:58:49] *** gerhard7 has joined #postfix
[08:08:53] *** Mazon has quit IRC
[08:10:42] *** Mazon has joined #postfix
[08:24:58] *** krzee has joined #postfix
[08:24:58] *** krzee has joined #postfix
[08:42:18] *** breaker313 has joined #postfix
[08:43:53] *** azzidoos has joined #postfix
[08:45:29] *** azzid has quit IRC
[08:45:29] *** azzidoos is now known as azzid
[09:02:15] *** danblack has quit IRC
[09:05:58] *** dym has quit IRC
[09:13:30] *** zorg1 has joined #postfix
[09:17:19] *** tjikkun_work has joined #postfix
[09:27:39] *** sphenxes has joined #postfix
[09:30:32] *** KippiX has joined #postfix
[09:34:14] *** e-anima has joined #postfix
[09:38:19] *** xxzz has joined #postfix
[09:39:04] *** nveid has quit IRC
[09:40:36] *** nveid has joined #postfix
[09:44:01] *** bezourox has joined #postfix
[10:02:38] *** jeev has quit IRC
[10:05:17] *** Steve_The_Pirate has joined #postfix
[10:06:04] *** jeev has joined #postfix
[10:11:17] *** happymeerkat has joined #postfix
[10:36:44] *** jkfod has joined #postfix
[10:39:48] *** nveid has quit IRC
[11:25:27] *** soosfarm has quit IRC
[11:25:52] *** mBull has joined #postfix
[11:28:04] *** xabbuh has joined #postfix
[11:28:05] *** soosfarm has joined #postfix
[11:30:13] *** martianixor has joined #postfix
[11:42:52] *** pyco has quit IRC
[11:57:03] *** hever has joined #postfix
[12:14:20] *** patdk-lap has quit IRC
[12:19:19] *** hever has quit IRC
[12:20:00] *** MatBoy has quit IRC
[12:20:44] *** jkfod has quit IRC
[12:24:38] *** MatBoy has joined #postfix
[12:25:18] *** davlefou has quit IRC
[12:26:00] *** patdk-lap has joined #postfix
[12:31:13] *** mBull has quit IRC
[12:34:15] *** Tykling has quit IRC
[12:42:46] *** ciklid has joined #postfix
[12:44:49] *** davlefou has joined #postfix
[12:49:46] *** mBull has joined #postfix
[12:49:51] *** Tykling has joined #postfix
[12:52:36] *** xxzz has quit IRC
[12:59:32] *** mBull has quit IRC
[13:27:04] *** ciklid has quit IRC
[13:34:36] *** vishwa has joined #postfix
[13:41:10] *** snearch has joined #postfix
[13:42:32] *** lysander has quit IRC
[13:48:08] *** koshie has joined #postfix
[13:48:10] <koshie> Hello
[13:48:36] <koshie> I've an answer about SMTP configuration but it comes from the dovecot documentation, I can ask my question here right ?
[13:53:04] *** martianixor has quit IRC
[13:59:37] *** lysander has joined #postfix
[14:05:57] *** jkfod has joined #postfix
[14:07:45] *** wdp has joined #postfix
[14:08:17] *** gerhard7 has quit IRC
[14:24:40] <Dominian> koshie: just ask
[14:26:45] <koshie> After some problems to configure dovecot + postfix I've decided to restart my configuration. I'm on this page : http://wiki2.dovecot.org/HowTo/SimpleVirtualInstall and I've a question about the part "SMTP server configuration", I need to do something to use Internal Deliverer or by default it's ok ? Dominian
[14:29:34] <Dominian> !goal
[14:29:34] <knoba> Dominian: "goal" : describe your goal, not what you think the solution is
[14:29:43] <Dominian> anyway.. what is your end goal for this?
[14:29:55] <Dominian> Oh I see
[14:29:59] <koshie> Dominian: I want to setup a mail server with dovecot and postfix, using virtual user
[14:30:03] <Dominian> Postfix is fine as is
[14:30:06] <koshie> Ok
[14:30:12] <koshie> So nothing to do for it :)
[14:30:14] <Dominian> You don't need to use dovecot's deliver if you don't want to
[14:30:19] <koshie> Yes I know
[14:30:30] <koshie> but by default postfix is configured to right ?
[14:30:39] <Dominian> yes
[14:30:43] <koshie> Okay, thanks dude.
[14:30:51] <Dominian> woudl't be much of an MTA if it didn't
[14:34:29] *** MaximusColourum has joined #postfix
[14:35:26] *** jkfod has quit IRC
[15:04:25] *** snearch has quit IRC
[15:20:28] *** happymeerkat has quit IRC
[15:26:11] *** daguz1 has joined #postfix
[15:29:38] *** koshie has quit IRC
[15:32:37] *** azzid has quit IRC
[15:44:45] *** kilombou has joined #postfix
[15:48:11] *** jkfod has joined #postfix
[15:50:56] *** phantasm66 has joined #postfix
[16:06:00] *** gerhard7 has joined #postfix
[16:06:10] *** thowe has quit IRC
[16:07:21] *** jkfod has quit IRC
[16:10:43] *** bgy has joined #postfix
[16:10:44] <bgy> hi
[16:13:07] *** wdp_ has joined #postfix
[16:13:50] *** kilombou has quit IRC
[16:17:20] *** xabbuh has quit IRC
[16:18:20] *** Steve_The_Pirate has quit IRC
[16:20:38] <e-anima> i have some problems with PRT, because some mail server refuse my mails. do i need to setup a dns server on my server to add a PTR?
[16:21:45] <patdk-lap> that is unlikely to work
[16:21:58] <patdk-lap> I would recommend to learn exactly what a ptr is, and who handles ptr for your ip space
[16:28:57] <e-anima> i have my domain control at a hoster/provider
[16:29:12] <e-anima> problem is i can not find ptr there
[16:29:20] <patdk-lap> call them?
[16:29:35] <e-anima> no i want to know if i am seraching in the right direction
[16:29:37] <e-anima> nothing more
[16:29:48] <patdk-lap> how should we know? you supplied no infomation
[16:29:52] *** jkfod has joined #postfix
[16:29:55] <patdk-lap> you only supplied what you THOUGH you need to do
[16:30:25] <e-anima> ok the question is is config needed on the server or at the domain settings, mx records a records etc
[16:30:31] <e-anima> thats my quesion
[16:30:43] <e-anima> lets say the servers hostname and mail... is ok
[16:31:01] <e-anima> ah
[16:31:08] <patdk-lap> actually, lets just not assume anything
[16:31:14] <e-anima> now i have an idea
[16:32:03] <e-anima> it has to be done at the hoster where the server is. in that case hetzer
[16:33:05] <bgy> hi
[16:33:13] <bgy> How could I see the current processing queue?
[16:34:40] *** happymeerkat has joined #postfix
[16:39:16] *** koshie has joined #postfix
[16:39:34] *** koshie has left #postfix
[16:48:11] *** empity has joined #postfix
[16:53:31] *** bgy has quit IRC
[17:09:22] *** happymeerkat has quit IRC
[17:09:51] <e-anima> patdk-lap and i know that the ptr is for reverse dns lookup
[17:10:17] <e-anima> so now i added a reverse lookup domain and now wait intil it updates and then it should work
[17:12:30] *** Bry8Star has quit IRC
[17:14:17] *** Bry8Star has joined #postfix
[17:21:33] *** breaker313 has quit IRC
[17:26:27] *** inf_l00p has quit IRC
[17:27:41] *** nveid has joined #postfix
[17:28:01] *** nveid has quit IRC
[17:36:10] *** bezourox has quit IRC
[17:43:41] *** hever has joined #postfix
[17:50:36] *** tjikkun_work has quit IRC
[17:50:51] *** empity has quit IRC
[17:56:58] *** empity has joined #postfix
[18:04:38] *** MaximusColourum has quit IRC
[18:10:59] *** hever has quit IRC
[18:13:38] *** master_of_master has quit IRC
[18:13:41] *** zok has joined #postfix
[18:13:51] *** Jakey has quit IRC
[18:14:03] *** jY has joined #postfix
[18:14:36] <zok> When I send a mail from the local machine (main mail server) I get this in my logs: http://pastebin.com/k1xe43BK and delivers the mail to my remote email address (a gmail)
[18:14:51] <zok> But when I send a mail from another machine that's set up to use the first machine as a smarthost, it gives me this error: http://pastebin.com/UpgCxWd1
[18:15:35] *** master_of_master has joined #postfix
[18:16:12] *** Jakey has joined #postfix
[18:16:37] <lunaphyte> 192.168.227.102 did not authenticate
[18:16:45] <lunaphyte> !tell zok smtp auth
[18:16:45] <knoba> lunaphyte: Error: No factoid matches that key.
[18:16:51] <lunaphyte> !tell zok smtp_auth
[18:16:52] <knoba> lunaphyte: Error: No factoid matches that key.
[18:16:56] <lunaphyte> meh
[18:16:58] <lunaphyte> !tell zok smtpauth
[18:16:59] <knoba> zok: "smtpauth" : a feature that authenticates trusted users for submitting email to postfix. See !sasl.
[18:18:52] <zok> !sasl
[18:18:53] <knoba> zok: "sasl" : SASL is 'Simple Authentication and Security Layer', necessary for SMTP AUTH, and provided to Postfix by addin software. Cyrus SASL and/or Dovecot IMAP/POP3 can provide SASL. See http://www.postfix.org/SASL_README.html for details.
[18:20:32] <zok> So I need to set up the relaying machine to accept sasl authentication?
[18:20:43] <zok> And then the source machine to send that authentication along with?
[18:21:29] <lunaphyte> you'll need to configure postfix to offer smtp auth, and you'll need to configure the client to perform smtp auth.
[18:22:02] *** MaximusColourum has joined #postfix
[18:22:12] <lunaphyte> also, you'll need to configure postfix to offer submission.
[18:22:39] <lunaphyte> clients aren't to connect to port 25.
[18:24:02] <zok> ok, let's start at the beginning then. In order to offer smtp auth I'll need to add some stuff to my postfix main.cf file
[18:24:24] <zok> I've got smtpd_sasl_type = dovecot
[18:24:29] <lunaphyte> first, you'll need to set up proper submission. then you'll add smtp auth to the submission service.
[18:24:42] <zok> ok
[18:24:55] <zok> How do I get started setting up proper submission?
[18:25:01] *** krzee has quit IRC
[18:25:01] <lunaphyte> !submission
[18:25:02] <knoba> lunaphyte: "submission" : Port 587 is submission, for user submission of mail, NOT suitable for mail exchange. See the commented example in master.cf. also see !msa, and rfc 6409. Also read http://www.maawg.org/sites/maawg/files/news/MAAWG_Port25rec0511.pdf
[18:25:27] <lunaphyte> in the most basic sense, you just uncomment the existing entry in master.cf
[18:25:57] *** biggi_mat has joined #postfix
[18:25:58] <zok> I've got submission inet n - n - - smtpd uncommented
[18:26:25] <lunaphyte> ah, good. then you just need to add the various sasl items to that in master.cf
[18:27:02] *** wdp_ has quit IRC
[18:27:07] <zok> Alright, what sorts of goodies to I need to add?
[18:27:16] <zok> (I can c/p my current master.cf if needed)
[18:27:24] <lunaphyte> that's all covered in the docs
[18:27:56] <lunaphyte> in terms of that, we'll only go so far as to strongly recommend dovecot over cyrus.
[18:28:15] <zok> Already using dovecot
[18:28:17] <zok> :)
[18:28:26] <lunaphyte> ah, good.
[18:28:41] <zok> sasl_type is set to dovecot
[18:28:54] <zok> in master.cf
[18:29:07] <lunaphyte> that would belong in main.cf, typically.
[18:29:31] <zok> Here's master.cf: http://pastebin.com/7aKfZfJN
[18:30:18] <lunaphyte> looks to me like much of the work has already been done.
[18:30:32] <zok> I'm not complaining about that :)
[18:31:12] <lunaphyte> :)
[18:31:34] <zok> And it looks like main.cf has most of the sasl configuration done also
[18:31:56] <zok> http://pastebin.com/KnA0Zwxi
[18:32:02] <zok> That's the tail end of main.cf
[18:32:12] <lunaphyte> oh. that doesn't belong there.
[18:32:17] <zok> oh?
[18:32:39] <lunaphyte> putting that stuff in main.cf will cause smtp auth to be offered on port 25. it should not be.
[18:32:45] *** happymeerkat has joined #postfix
[18:32:53] <zok> (can I do both?)
[18:32:58] <zok> I know port 25 is a bad idea
[18:33:04] *** happymeerkat has quit IRC
[18:33:06] <lunaphyte> smtp auth is for allowing clients to authenticate. clients are to use port 587, not port 25.
[18:33:06] <zok> But I've got a few folks using it for their mail clients at the moment
[18:33:17] <zok> I'm trying to migrate them off
[18:33:37] <lunaphyte> if you have clients you are moving to 587, and need to continue to offer it temporarily on port 25, that is tolerable.
[18:33:49] <zok> ok good
[18:33:54] <zok> I relaly don't like using 25
[18:34:06] <lunaphyte> [but only if it is not used as an excuse to not get the clients properly configured] ;)
[18:34:07] <zok> My ISP doesn't even let me use it... I've got to VPN onto the network to send emails, lol
[18:34:19] <zok> No, I'd really like to get off 25
[18:34:25] <zok> You have my word :)
[18:34:33] <lunaphyte> sounds like a good plan :)
[18:34:54] <zok> So it looks like submission is configured correctly
[18:35:00] <lunaphyte> so at this point, in theory, smtp auth is configured. now all that's left is to actually test it.
[18:35:15] <zok> Now now do I do that?
[18:35:23] <zok> Just set up my email client to use 587 instead?
[18:35:24] <lunaphyte> any number of ways.
[18:35:53] <lunaphyte> but in simplest terms, just attempt to perform auth, via whatever mechanism you prefer.
[18:36:01] <lunaphyte> sure, an email client would be one choice.
[18:36:20] <lunaphyte> telnet would be another, as is covered in the documentation.
[18:37:04] *** jmosco has quit IRC
[18:37:16] *** aindilis2 has quit IRC
[18:37:36] <zok> Testing my email client now
[18:38:58] <zok> Didn't seem to like it
[18:39:03] <zok> Let me pull up the error logs
[18:39:11] <zok> If I can get back onto my vpn...
[18:41:49] *** empity has quit IRC
[18:43:40] *** tjikkun has joined #postfix
[18:43:40] *** tjikkun has joined #postfix
[18:44:33] <zok> Oh, it worked - nevermind
[18:44:37] <zok> I can't send emails anymore
[18:44:41] <zok> But I can receive it looks like
[18:45:54] <zok> oh, well that would make sense
[18:46:04] <zok> outgoing = 587 (not working)
[18:46:08] <zok> incoming is still pop3
[18:46:36] *** Nik05 has joined #postfix
[18:48:28] <zok> lunaphyte: mail server acts like it never even got my outgoing mail
[18:49:08] <zok> Maybe because the server's firewallw as blocking 587...
[18:49:20] * zok tries again
[18:50:36] <zok> Still nothing!
[18:50:57] *** jarr0dsz has joined #postfix
[18:55:24] <zok> lunaphyte: any ideas?
[19:00:08] <rob0> !nologs
[19:00:09] <knoba> rob0: "nologs" : Nothing in your mail logs commonly means one of two things: either your syslogd is broken (try restarting it), or the connections are not coming to your server. Check your firewall/networking and the DNS for the domain in question. also see !logs.
[19:00:27] <rob0> Only the idea you already had (it is not getting there).
[19:01:00] <zok> I just did an nmap on it and it says 587 is open...
[19:01:05] <zok> Let me try telnet auth
[19:08:52] *** vishwa has quit IRC
[19:11:56] <zok> Ok, I got logs now
[19:13:02] *** MaximusColourum has quit IRC
[19:13:26] <zok> It says Lost connection after EHLO
[19:15:12] *** MaximusColourum has joined #postfix
[19:18:17] <zok> I test it with telnet and it says I have to issue STARTTLS first - which I then tried
[19:18:34] <zok> Then it says "Connection lost after STARTTLS"
[19:18:58] <zok> After I ran STARTTLS, I did a: MAIL FROM: <zok at zoklet dot net>
[19:19:02] <zok> And it immediately quit on me
[19:19:05] <zok> Disconnected me
[19:19:52] <lunaphyte> to use starttls when testing like that, you'll have to use a program like s_client
[19:20:40] <zok> ah
[19:21:10] *** Zeit|awy has quit IRC
[19:21:12] <zok> Well, when I use my mail client
[19:21:22] <zok> It doesn't even get to STARTTLS
[19:21:50] <zok> Let me paste the log that my email client produces when it tries to log in
[19:21:52] <lunaphyte> pastebin logs of the transaction
[19:22:27] <zok> http://pastebin.com/G15GRibx
[19:23:15] *** Steve_The_Pirate has joined #postfix
[19:24:00] <lunaphyte> i'd test with s_client
[19:24:34] <zok> Hrm, there is no mac version
[19:25:59] <zok> oh, nevermind
[19:26:05] <zok> openssl s_client is the syntax :p
[19:27:29] <zok> lunaphyte: I ran openssl s_client mail.zoklet.net:587 and it gave me a weird lookin err
[19:27:30] <zok> or
[19:27:51] <zok> 2883:error:140770FC:SSL routines:SSL23_GET_SERVER_HELLO:unknown protocol:/SourceCache/OpenSSL098/OpenSSL098-35.1/src/ssl/s23_clnt.c:607:
[19:28:29] *** Steve_The_Pirate has quit IRC
[19:30:16] *** Steve_The_Pirate has joined #postfix
[19:32:28] *** krzee has joined #postfix
[19:32:40] *** krzee has joined #postfix
[19:33:14] *** Zeit|awy has joined #postfix
[19:34:07] *** Steve_The_Pirate has quit IRC
[19:46:45] *** jra has joined #postfix
[19:52:05] *** soosfarm has quit IRC
[19:52:59] *** soosfarm has joined #postfix
[19:58:14] *** d3c has joined #postfix
[19:59:29] *** ciklid has joined #postfix
[19:59:48] <lunaphyte> zok: probably because you did not tell it to perform starttls
[20:20:09] *** krzee has quit IRC
[20:21:59] <adaptr> noes! orly ?
[20:25:53] *** jMCg has quit IRC
[20:29:07] *** matt1982 has joined #postfix
[20:30:04] *** feisar has joined #postfix
[20:31:09] <jY> i know i can do this via sending domain.. but is there a way to tell postfix if a email has this header.. use a certain IP to send from?
[20:32:02] *** jMCg has joined #postfix
[20:33:00] <adaptr> !tell jY idfma
[20:33:00] <knoba> jY: "idfma" : Insufficient Data For Meaningful Answer (perhaps look at the /topic)
[20:33:09] <lunaphyte> !goal
[20:33:10] <knoba> lunaphyte: "goal" : describe your goal, not what you think the solution is
[20:33:15] <adaptr> also, using headers for any kind of decision is bad in general
[20:33:51] *** Bry8Star has quit IRC
[20:33:56] <jY> we have live/test customers using our system.. and both generate emails.. we are looking to have test customers email go out on one address and live customers out on the other one
[20:34:10] <jY> devs can easily add a header to the email for test users
[20:36:13] *** matt1982 has quit IRC
[20:36:23] <waldi> completely split the ways mails uses for production/testing
[20:36:27] <adaptr> developers should not ever have free access to mail servers
[20:36:33] <adaptr> e-ver
[20:38:42] <jra> text goes in, mails goes out - magic.
[20:38:45] <jY> it's not testing in the sense of devs testing.. its potential clients testing to see if they like us
[20:39:05] <waldi> it is not production
[20:39:39] <jY> it is really
[20:39:49] <adaptr> jY: let developers submit mail on a different listener. simple.
[20:39:53] <jY> it's run on the same servers
[20:40:01] <adaptr> jY: let developers submit mail on a different listener. simple.
[20:40:20] <jY> right now the default is just submit to localhost and that relays
[20:40:26] *** biggi_mat has quit IRC
[20:40:42] <adaptr> yes, so IN ORDER TO SOLVE WHATEVER YOU CAME HERE FOR
[20:40:45] <adaptr> let developers submit mail on a different listener. simple.
[20:41:52] <lunaphyte> letting cars drive the wrong way on the freeway and then trying to come up with some mechanism to avoid complete chaos is silly. instead, don't let cars drive the wrong way on the freeway.
[20:42:13] <adaptr> tell that to those dam Britons
[20:42:19] <adaptr> and Aussies
[20:42:23] <lunaphyte> where i live, this is done mostly by way of
[20:42:26] <lunaphyte> bah
[20:42:38] <jimpop> echo 0 > /proc/google/self_navigation/freeway_access
[20:42:46] <lunaphyte> by way of signs telling people to not be stupid. unfortunately, it doesn't always work.
[20:42:58] <lunaphyte> luckily, computers are different.
[20:46:50] *** Bry8Star{EB has quit IRC
[20:49:32] *** Bry8Star{EB has joined #postfix
[20:49:53] <jY> ok i have no issues with doing another listener.. but say i do 525 for test emails.. how can I tell postfix to then relay it to my main relay on another listen port and for my main relay to send using a certain ip?
[20:50:03] <lunaphyte> 525?
[20:51:17] <adaptr> send using a certian IP ?
[20:51:41] <jY> right now the logic is app -> local postfix -> relay -> outside
[20:51:52] <lunaphyte> local postfix?
[20:51:58] <jY> yes
[20:52:06] <lunaphyte> i thought your relay [e.g. your msa] was running postfix
[20:52:10] <lunaphyte> what is local postfix?
[20:52:11] <jY> it is
[20:52:23] <adaptr> !tell jY nullclient
[20:52:23] <knoba> jY: "nullclient" : a null client is a computer that can only send mail. it receives no mail from the network, and it does not deliver any mail locally. while postfix can be configured to fill this role, it is often unnecessary overkill, and a much simpler software package is more appropriate. see !nullclient_software for more details.
[20:52:24] <jY> app sends to 127.0.0.1
[20:52:48] <jY> from there it relays to the main postfix install
[20:53:09] <lunaphyte> why are you running postfix on all of these different computers?
[20:53:15] <adaptr> "main postfix install"
[20:53:26] <lunaphyte> postfix is mail server software. it should only be running on computers that are mail servers.
[20:53:31] *** ced117 has joined #postfix
[20:53:37] <adaptr> perhaps our responses convey the sense of wtf are you doing you should be feeling right now
[20:54:26] <lunaphyte> if some software has the ability to submit mail via submission, then it should just submit the mail to the msa, like any other email software would
[20:54:53] <jra> see, you don't want to become a mail server admin... look what it does to people.
[20:55:15] <adaptr> you really don't
[20:55:24] <lunaphyte> hah
[20:55:38] <Dominian> +1
[21:06:33] *** Creamz_ has joined #postfix
[21:09:13] *** Creamz has quit IRC
[21:11:35] <thumbs> !submission
[21:11:36] <knoba> thumbs: "submission" : Port 587 is submission, for user submission of mail, NOT suitable for mail exchange. See the commented example in master.cf. also see !msa, and rfc 6409. Also read http://www.maawg.org/sites/maawg/files/news/MAAWG_Port25rec0511.pdf
[21:12:36] *** Gatto has joined #postfix
[21:12:50] *** triode3 has joined #postfix
[21:13:14] *** anigma has quit IRC
[21:19:17] *** anigma has joined #postfix
[21:19:17] *** anigma has joined #postfix
[21:19:24] *** lprelle has joined #postfix
[21:19:28] *** Gatto has quit IRC
[21:21:40] *** pyco has joined #postfix
[21:21:52] *** seekwill has joined #postfix
[21:21:52] *** seekwill has joined #postfix
[21:24:08] *** jra has quit IRC
[21:24:47] <lprelle> evening, someone aroung who could tell me how I can use saslauth with encrypted passwords in a mysql table?
[21:24:51] *** RedShift has quit IRC
[21:27:24] <lunaphyte> !tell lprelle welcome
[21:27:26] <knoba> lprelle: "welcome" : welcome to #postfix! if you're joining for the first time, or are new to irc, the first thing you'll want to do is read the channel topic (/topic). it includes crucial instructions on how to effectively ask for help here, and what data you should include with your questions. the degree of success you'll have is directly related to how effectively you're able to follow those guidelines.
[21:29:41] <viezerd> hello, whats the difference between having postscreen_dnsbl_sites and/or reject_rbl_client (in smtpd_recipient_restrictions) ?
[21:30:21] <Dominian> one utilizes postscreen the other doesn't
[21:30:35] <Dominian> !postscreen
[21:30:35] <knoba> Dominian: "postscreen" : SMTP triage server available in Postfix 2.8, see http://www.postfix.org/POSTSCREEN_README.html and http://www.postfix.org/postscreen.8.html
[21:31:05] <viezerd> is there a reason to choose for the one or the other ?
[21:32:03] <lprelle> knoba: thank you. so my question is not precise enough?
[21:32:11] <triode3> !debug
[21:32:11] <knoba> triode3: "debug" : http://www.postfix.org/DEBUG_README.html : a good starting point for how to deal with problems and to report information to those who might help. Post your information in a pastebin such as http://pastebin.ca/ or http://dpaste.com/
[21:34:34] <Dominian> viezerd: postscreen handles all of the smtp triage before handing off to a real postfix smtp insance.. I'd suggest reading the POSTSCREEN_README.html as laid out in that factoid
[21:34:51] <Dominian> if you use reject_rbl_client you're telling the postfix server to handle all of that triage
[21:36:04] <viezerd> Dominian: thanks for the answer. I've read the document, several times.
[21:36:23] <viezerd> I just fail to see why to choose for the one or the other
[21:36:26] <triode3> hello all, I have a pretty straightforward postfix + amavisd + spamassassin setup as a mail filter forwarding to exchange. I would like to perform another function, however, and I am wondering if it is possible to add two local users that would receive outside mail through postfix. Note, the system works now, I just want to add two local users somehow. http://pastebin.com/ECKvweQy
[21:37:11] <triode3> note also, I have replaced my domains with "example.com" in the pastebin.
[21:38:04] <Dominian> viezerd: well, imho, the first two sentences tell you the exact benefits of it.
[21:39:05] *** sweb has joined #postfix
[21:39:11] <lprelle> I wan't to use Postfix with saslauthd and with a encrypted password, but I get this error http://pastebin.com/HR5UHuqq when trying to send a mail via SMTP. I noticed that the problem disappers if I change to an unencrypted password in the db. Is there a known way to use saslauthd with an encrpyted password?
[21:40:52] <viezerd> Dominian: so that would be that the postscreen process is much more 'lightwieght' and therefore can handle the zombies better?
[21:41:08] <waldi> lprelle: all digest password mechanisms needs plain passwords by definition
[21:41:37] <Dominian> viezerd: It keeps the zombies away from the real processses so that legitimate users, whitelisted smtp MTAs and SASL Authenticated clients get priority.
[21:43:46] <sweb> is any regular method to use postfix with mysql and manage mails, users and etc. without using shell scripts for create any emails, users and etc
[21:44:26] <lprelle> waldi: okay. do you know another way to use auth-smtp with a encrypted db-stored password?
[21:44:47] <waldi> yes, don't use the non-plaintext mechs
[21:46:39] *** krzee has joined #postfix
[21:48:38] *** inf_l00p has joined #postfix
[21:49:01] *** p3rror has quit IRC
[21:50:26] <lprelle> editing mechs to just login and plain throwing a similar failure http://pastebin.com/paNJXmVj
[21:53:16] *** mambaw has joined #postfix
[21:58:29] *** inf_l00p has quit IRC
[21:59:43] *** triode3 has quit IRC
[21:59:53] *** snearch has joined #postfix
[22:00:33] *** p3rror has joined #postfix
[22:16:26] *** Gatto has joined #postfix
[22:28:36] *** inf_l00p has joined #postfix
[22:39:26] *** gerhard7 has quit IRC
[22:41:10] *** e-anima has quit IRC
[22:46:44] *** feisar has quit IRC
[22:47:22] *** ciklid has quit IRC
[22:51:26] *** Gatto has quit IRC
[22:51:48] *** cpm has joined #postfix
[22:51:48] *** cpm has joined #postfix
[22:54:35] <lprelle> I've to go, thank you waldi
[22:54:52] *** lprelle has left #postfix
[22:59:52] *** ced117 has quit IRC
[23:00:50] *** wdp_ has joined #postfix
[23:02:27] *** Diranged has joined #postfix
[23:03:20] <Diranged> Right now we process bouncebacks from our mail servers by having postfix use its default behavior … send an email back to the 'From' address (which ends up at google for us), and then we go and parse through a large mailbox with some automated scripts. Is there a config option in Postfix where I can actually have any 'failed' message run through a shell script or some other local parser?
[23:03:31] <Diranged> i'd like to cut Google out, and just handle all the failures entirely locally
[23:04:45] *** Emotelecom has quit IRC
[23:07:53] *** d3c has quit IRC
[23:08:43] <higuita> Diranged: you can use the FILTER transport:destination
[23:09:02] <higuita> just create a transport that runs the script you want
[23:09:39] <higuita> or redirect/deliver to a mailbox and do a .procmail on that mailbox that do what you want
[23:10:18] <Diranged> (reading docs on that..)
[23:12:55] <higuita> better yet... the bounce_service_name is the setting for the transport that bounces the email... forget the FILTER, setup a new transport that do what you want in the master.cf and set that setting to that transport
[23:14:06] <Diranged> hmm ok looking into that
[23:16:36] *** Emotelecom has joined #postfix
[23:18:01] <Diranged> thanks that might do what we want.. gonna have to go and reasearch it a bit more
[23:18:02] *** Diranged has left #postfix
[23:19:54] *** cpm has quit IRC
[23:26:52] *** phantasm66 has quit IRC
[23:27:18] *** sweb has quit IRC
[23:40:26] *** Diranged has joined #postfix
[23:41:26] <Diranged> We're using opendkim and dk-filter (yes, slightly redundant) and we're seeing some slowness accepting incoming messages. Initially we saw slowness because we didnt have a local caching DNS resolver. We added that, but it still feels slower. It seems that postfix doesnt return a queued message ID to the sender until after its gone through the milters. Can I configure it to do the milting later, in the background?
[23:42:42] <seekwill> How long of a pause are we talking about?
[23:42:50] <Diranged> 1 second? maybe less
[23:42:59] <seekwill> That's not that bad
[23:43:25] *** p3rror has quit IRC
[23:43:33] <Diranged> we have a very serialized (ugh) mail process though right now.. we're converting it to a celery system where each mail message is a queue item.. so it will be alot more parallel at that point.. but right now, we're fighting this a little bit
[23:43:44] <seekwill> oh
[23:44:00] <Diranged> we send ~50-70k messages during our 'digest' period.. and if its doing 1/sec… thats bad..
[23:44:21] <Diranged> now we dont creally care how long the messages take to get out, but we dont want the digets process to run that long. so thats why id be happy having postfix queue the mesaage and then sign it in the background
[23:46:53] *** mambaw has quit IRC
[23:50:43] *** wdp_ has quit IRC
[23:50:49] *** hobodave has joined #postfix
[23:55:25] *** danblack has joined #postfix
[23:57:07] *** cvelde has joined #postfix
[23:58:04] *** wdp has quit IRC
[23:58:17] <Diranged> im wonering if i can setup postfix to do after-filtering of the message, rather htan before-filter.. that is, acept the message immediately on port 25, then redirect it to another smtp on say port 26 which actually has the milter running.. then send ito ut..
[23:58:34] <higuita> Diranged: simple, deliver the emails to a simple postfix, without any checks nor delays... then deliver those emails to your normal mail server, that does the sign
[23:59:08] *** p3rror has joined #postfix
[23:59:42] <Diranged> higuita: yeah, wondering whether i can do that locally on the mailers themselves.. or not
[23:59:55] <higuita> yes
top

   February 27, 2012  
< | 1 | 2 | 3 | 4 | 5 | 6 | 7 | 8 | 9 | 10 | 11 | 12 | 13 | 14 | 15 | 16 | 17 | 18 | 19 | 20 | 21 | 22 | 23 | 24 | 25 | 26 | 27 | 28 | 29 | >