December 10, 2018 
< | 1 | 2 | 3 | 4 | 5 | 6 | 7 | 8 | 9 | 10 | 11 | 12 | 13 | 14 | 15 | 16 | 17 | 18 | 19 | 20 | 21 | 22 | 23 | 24 | 25 | 26 | 27 | 28 | 29 | 30 | 31 | >
December 10, 2018 [00:08:39] <lunaphyte> !tell Buliarous getting_help[00:08:39] <knoba> Buliarous: "getting_help" : before asking your question, read the !relevant_logs and !showconfig factoids, and prepare a single pastebin containing all of that data. if you don't understand what this means, or if you need help doing this, please let us know. also see !pastebin[00:12:00] *** hgnoel1980 <hgnoel1980!~hgnoel198@host81-143-199-121.in-addr.btopenworld.com> has quit IRC (Remote host closed the connection)[00:12:25] *** hgnoel1980 <hgnoel1980!~hgnoel198@host81-143-199-121.in-addr.btopenworld.com> has joined #postfix[00:13:01] <ironm> !relevant_logs[00:13:01] <knoba> ironm: "relevant_logs" : mail.* syslog Postfix log messages (NOT verbose, see !no_verbose) which show ONLY the entire handling of a single mail which illustrates the issue with which you want help. Random selections from your mail log are not adequate. IMAP/POP3 daemons and external delivery agents often log to the same syslog facility and should not be shown. Also see http://rob0.nodns4.us/postfix-logging[00:13:27] <ironm> !showconfig factoids[00:13:27] <knoba> ironm: Error: "showconfig" is not a valid command.[00:13:33] <ironm> !showconfig[00:13:33] <knoba> ironm: "showconfig" : when asked to provide your config, please provide a SINGLE pastebin (see !pastebin) with postconf -nf and postconf -Mf. if your version is too old for those commands to work (< 2.9), you should upgrade, but see !showconfig_old[00:15:30] *** hgnoel1980 <hgnoel1980!~hgnoel198@host81-143-199-121.in-addr.btopenworld.com> has quit IRC (Remote host closed the connection)[00:15:57] *** hgnoel1980 <hgnoel1980!~hgnoel198@host81-143-199-121.in-addr.btopenworld.com> has joined #postfix[00:21:03] *** phunyguy <phunyguy!~vault@ubuntu/member/phunyguy> has joined #postfix[00:28:08] <ironm> Good evening. One short question: Why it is the "better" choice to use dovecot instead of postfix cyrus default? (SASL)[00:29:48] <thumbs> ironm: simplicity, mostly.[00:30:10] <ironm> thumbs, thank you, What about security ?[00:31:11] <thumbs> authentication over TLS is the same on both sides. That being said, cyrus does offer some capabilities unmatched by dovecot.[00:33:29] <ironm> It sounds interesting (the additional capabilities - I have to check what kind of), thank you.[00:39:00] <ironm> But to keep it simple I will first continue with dovecot and try to use the advantage of DNSSEC records for encrypted smtp communication with remote mail servers[00:42:33] *** chkbsd <chkbsd!~ucio@unaffiliated/ucio> has quit IRC (Ping timeout: 268 seconds)[00:44:22] *** chkbsd <chkbsd!~ucio@2a03:4000:6:374::5> has joined #postfix[00:44:22] *** chkbsd <chkbsd!~ucio@2a03:4000:6:374::5> has quit IRC (Changing host)[00:44:23] *** chkbsd <chkbsd!~ucio@unaffiliated/ucio> has joined #postfix[00:46:00] *** Olipro <Olipro!~Olipro@uncyclopedia/pdpc.21for7.olipro> has quit IRC (Ping timeout: 252 seconds)[00:49:25] *** hgnoel1980 <hgnoel1980!~hgnoel198@host81-143-199-121.in-addr.btopenworld.com> has quit IRC (Remote host closed the connection)[00:49:53] *** hgnoel1980 <hgnoel1980!~hgnoel198@host81-143-199-121.in-addr.btopenworld.com> has joined #postfix[00:52:40] *** reiffert <reiffert!~foobar@p4FF698CD.dip0.t-ipconnect.de> has quit IRC (Disconnected by services)[00:52:55] *** reiffert <reiffert!~foobar@p5DD7589F.dip0.t-ipconnect.de> has joined #postfix[00:53:28] <nate> wait when did dovecot start doing SASL stuff natively? My one postfix+dovecot model is still using postfix for the SASL handling lol, may have been a while since I've checked their feature changelogs[00:55:24] <thumbs> !tell nate sasl[00:55:24] <knoba> nate: "sasl" : SASL is 'Simple Authentication and Security Layer', necessary for SMTP AUTH, and provided to Postfix by addin software. Cyrus SASL and/or Dovecot IMAP/POP3 can provide SASL. See http://www.postfix.org/SASL_README.html for details.[00:56:00] *** hgnoel1980 <hgnoel1980!~hgnoel198@host81-143-199-121.in-addr.btopenworld.com> has quit IRC (Remote host closed the connection)[00:56:28] *** hgnoel1980 <hgnoel1980!~hgnoel198@host81-143-199-121.in-addr.btopenworld.com> has joined #postfix[01:01:55] <nate> That doesn't really say when though :P. I'll have to check into it next time I rebuild that particular box[01:02:22] <lunaphyte> quite some time ago[01:04:15] <lunaphyte> postfix has supported dovecot sasl since 2005[01:04:41] <lunaphyte> i'm not sure what "My one postfix+dovecot model is still using postfix for the SASL handling" means though[01:05:27] <lunaphyte> postfix doesn't do sasl. it uses an external component for it, either dovecot or cyrus [for server sasl], or cyrus [for client sasl][01:06:59] <nate> lunaphyte: postfix is tied into cyrus, but as far as I thought I recalled my dovecot was handing off SASL stuff to postfix, or maybe I'm just being tired brain'd and confusing it the other way around[01:07:02] * nate checks[01:08:14] <nate> Ah yeah guess I was, weird; smtpd_sasl_type = dovecot[01:12:08] *** Guest89639 <Guest89639!~rob@5ED0E3DB.cm-7-1d.dynamic.ziggo.nl> has quit IRC (Ping timeout: 245 seconds)[01:20:08] <lunaphyte> postfix isn't tied into cyrus, no[01:20:39] <lunaphyte> cyrus provides sasl, as does dovecot. postfix can use either[01:26:31] <ironm> "RSA, DSA and ECDSA (Postfix ≥ 2.6) certificates are supported." - is ED25519 supported by postfix, too?[01:28:04] <lunaphyte> is it not working?[01:30:52] *** jonsmith <jonsmith!jonsmith@94.23.168.25> has joined #postfix[01:34:43] <jonsmith> hello[01:35:47] <jonsmith> would you mind helping me out a bit? i need to block all emails going to a certain domain - is this something doable without lots of effort? like a blacklist of domains or something[01:36:44] <ironm> lunaphyte, I didn't check until now (postfix ED25519 related stuff)[01:37:44] *** rob <rob!~rob@5ED0E3DB.cm-7-1d.dynamic.ziggo.nl> has joined #postfix[01:38:08] *** rob is now known as Guest27620[01:39:14] <ironm> Another question: would it be possible with the current version of postfix to used ED25519 based public keys for TLS communication instead of certificates?[01:39:35] <ironm> s/to used/to use/[01:40:44] <lunaphyte> did you try?[01:41:58] <blackflow> ironm: between this chan and dovecot, why are you so hell bent on ed25519? asking for a friend.[01:42:50] <lunaphyte> hell bent?[01:43:27] <blackflow> this must be third day the user is asking the same question, about ed25519 in postfix and dovecot[01:43:35] <lunaphyte> saying it that way makes it seem like you think wanting to use ed25519 isn't a good thing[01:43:53] <lunaphyte> regardless, asking questions like "will this work" is silly.[01:43:56] <lunaphyte> try it.[01:44:00] <blackflow> no, just curious why[01:44:03] <lunaphyte> if it doesn't, then ask for help[01:45:39] <ironm> lunaphyte, to try it I need first to understand how the stuff is working and how to configure it[01:46:02] *** n_1-c_k <n_1-c_k!~nick@2a02:8010:63a6::70> has quit IRC (Read error: Connection reset by peer)[01:46:03] <ironm> blackflow, sorry for the confusion[01:46:18] *** n_1-c_k <n_1-c_k!~nick@2a02:8010:63a6::70> has joined #postfix[01:46:39] <blackflow> ironm: it's not a confusion, just curious why you're so focused on that scheme[01:47:02] <ironm> blackflow, for security reasons[01:47:25] <lunaphyte> configure whawt?[01:47:27] <lunaphyte> *what[01:47:28] <ironm> the other thing is the simplicity[01:47:32] <lunaphyte> read tls_readme[01:48:21] <blackflow> ironm: I wouldn't waste time focusing on that aspect when so many other things are rendering everything way less secure.[01:48:53] <ironm> blackflow, using of certificates requires some "third" parties and makes it much more complex for testing and usage[01:49:30] <blackflow> but, it's a mail server. what kind of connection security are you looking for, when that thing will happily receive and send mail over plaintext :)[01:49:44] <ironm> lunaphyte, I am doing it already for last few days (and getting a bit mad now)[01:50:20] <lunaphyte> !tell ironm getting_help[01:50:20] <knoba> ironm: "getting_help" : before asking your question, read the !relevant_logs and !showconfig factoids, and prepare a single pastebin containing all of that data. if you don't understand what this means, or if you need help doing this, please let us know. also see !pastebin[01:50:46] <ironm> blackflow, the option I want to use is just a server to server communication using public keys based TLS communication[01:51:18] <ironm> lunaphyte, thank you for you kind hint[01:52:32] <ironm> blackflow, I didn't get enough time now to go over the source code of postfix and some further related software[01:52:49] <blackflow> ironm: not sure what you're talking about. client certs?[01:54:00] <ironm> blackflow, two points: 1. TLS for the server - client (using public keys); 2. TLS for server - server[01:54:22] <ironm> based on DNSSEC (DANE)[01:54:35] <blackflow> "based on"?[01:54:39] <ironm> at least for server - server TLS[01:54:55] <ironm> DNSSEC records for involved domains[01:55:40] <blackflow> ok so certificates. wasn't sure if you meant anything different by "public keys"[01:59:54] *** graphene <graphene!~graphene@2a03:b0c0:3:d0::3095:3001> has quit IRC (Remote host closed the connection)[02:01:01] *** graphene <graphene!~graphene@46.101.134.251> has joined #postfix[02:06:43] *** epony <epony!~epony@unaffiliated/epony> has joined #postfix[02:17:04] <lunaphyte> !dane[02:17:04] <knoba> lunaphyte: "dane" : DNS-based Authentication of Named Entities (DANE) is a protocol described in RFC 6698 (August 2012.) Postfix has support for DANE as of version 2.11.[02:23:20] <lunaphyte> you don't need to go over the source code to configure postfix to use encryption[02:27:02] <ironm> lunaphyte, Thank you very much. I need some time to figure out, how my test configuration should look like[02:28:25] <ironm> ps. components: DNSSEC with ED25519 signed records, postfix and dovecot[02:29:14] <ironm> so I continue RTFM and run some tests[02:38:42] *** ]SiB[ <]SiB[!~Thunderbi@unaffiliated/sib/x-9459575> has quit IRC (Ping timeout: 272 seconds)[02:40:56] <ironm> !smtpd_tls_ciphers[02:40:56] <knoba> ironm: Error: "smtpd_tls_ciphers" is not a valid command.[02:57:09] <lunaphyte> that setting should be left alone[02:57:55] <lunaphyte> unless for submisssion[s] service[03:00:58] <ironm> thank you :-)[03:12:58] *** andylavarre <andylavarre!~andy@mobile-166-172-60-137.mycingular.net> has quit IRC (Remote host closed the connection)[03:24:42] *** epony <epony!~epony@unaffiliated/epony> has quit IRC (Ping timeout: 246 seconds)[03:35:07] *** Blubberbop <Blubberbop!~quassel@mx1.capmegamail.com> has quit IRC (Ping timeout: 240 seconds)[03:37:59] *** nomeeed <nomeeed!~nomeed@p54A24B0F.dip0.t-ipconnect.de> has quit IRC (Ping timeout: 246 seconds)[03:39:39] *** nomeed <nomeed!~nomeed@p5B2E2F46.dip0.t-ipconnect.de> has joined #postfix[03:44:03] *** epony <epony!~epony@unaffiliated/epony> has joined #postfix[04:04:16] *** Buliarous <Buliarous!~gypsydang@unaffiliated/buliarous> has left #postfix[04:13:00] *** TheFatherMind <TheFatherMind!~TheFather@104.34.204.52> has joined #postfix[04:42:32] *** JPT <JPT!~jpt@classified.name> has quit IRC (Remote host closed the connection)[04:51:18] *** JPT <JPT!~jpt@classified.name> has joined #postfix[05:38:48] *** ih8wndz <ih8wndz!jwpierce3@001.srv.trnkmstr.com> has quit IRC (Quit: WeeChat 2.3)[05:40:53] *** NelsonHB <NelsonHB!~Instantbi@115.164.73.161> has joined #postfix[05:41:13] *** Olipro <Olipro!~Olipro@6.123.2.81.in-addr.arpa> has joined #postfix[05:41:13] *** Olipro <Olipro!~Olipro@6.123.2.81.in-addr.arpa> has quit IRC (Changing host)[05:41:13] *** Olipro <Olipro!~Olipro@uncyclopedia/pdpc.21for7.olipro> has joined #postfix[05:47:07] *** ih8wndz <ih8wndz!jwpierce3@001.srv.trnkmstr.com> has joined #postfix[05:56:01] *** eelstrebor <eelstrebor!~eelstrebo@216-75-116-100.allophone.biz> has quit IRC (Quit: Ex-Chat)[06:12:54] *** graphene <graphene!~graphene@46.101.134.251> has quit IRC (Remote host closed the connection)[06:14:02] *** graphene <graphene!~graphene@46.101.134.251> has joined #postfix[06:49:33] *** Penguin_ <Penguin_!~xwQ5kwYl6@our.systems.are.full.of.penguins.at.penguinsystems.net> has quit IRC (Ping timeout: 252 seconds)[06:51:06] *** Penguin_ <Penguin_!~xwQ5kwYl6@our.systems.are.full.of.penguins.at.penguinsystems.net> has joined #postfix[07:08:41] *** olegfusion <olegfusion!~olegfusio@mail.mobileforsale.ru> has joined #postfix[07:15:53] *** Aro2220 <Aro2220!~Aro2220@unaffiliated/aro2220> has joined #postfix[07:18:17] <Aro2220> If I wanted to host my own email server on a VPS running Linux, what software would I need to use?[07:40:54] *** graphene <graphene!~graphene@46.101.134.251> has quit IRC (Remote host closed the connection)[07:41:22] *** NelsonHB <NelsonHB!~Instantbi@115.164.73.161> has quit IRC (Ping timeout: 246 seconds)[07:42:03] *** graphene <graphene!~graphene@46.101.134.251> has joined #postfix[07:42:36] *** kermit <kermit!~zip55413@pdpc/supporter/bronze/kermit> has joined #postfix[07:59:08] <rjsalts> Aro2220: you'll want an MTA at the very least, possibly an imap server (unless you intend to read the mail from the spool directly with something like mutt) and/or webmail interface[07:59:29] *** olegfusion <olegfusion!~olegfusio@mail.mobileforsale.ru> has quit IRC (Read error: Connection reset by peer)[07:59:42] <rjsalts> Aro2220: you might also need a dns server, unless your dns host lets you set custom MX records for your domain[08:11:18] *** led_dark_1 <led_dark_1!~Thunderbi@hotspot10.rywasoft.net> has quit IRC (Quit: led_dark_1)[08:13:21] *** led_dark_1 <led_dark_1!~Thunderbi@hotspot10.rywasoft.net> has joined #postfix[08:17:25] <Aro2220> rjsalts: what is the difference between an MTA and an imap server?[08:17:49] <Aro2220> rjsalts: my domain lets me set custom mx records for my domain. so I can skip the DNS host for now?[08:18:27] <Aro2220> but if i couldn't set custom mx records, i could get around that for mail routing by running my own dns host? really?[08:18:29] <Aro2220> but how would that work?[08:18:44] <Aro2220> when someone tries to send me mail they're going to look up the mx records of my domain and those will be wrong[08:19:09] <Aro2220> if i have my own dns host i guess i can find where i'm trying to send my mail to...so i guess outgoing could work? but not incoming.[08:19:36] <Aro2220> I'm not sure I understand the implementation of a mail server[08:26:01] *** Darkfoe <Darkfoe!~chuck@drunk.serverfail.party> has quit IRC (Ping timeout: 260 seconds)[08:40:45] *** honigkuchen <honigkuchen!~honigkuch@ip5f5b2fd0.dynamic.kabel-deutschland.de> has joined #postfix[08:41:16] <honigkuchen> is there a way to send smtp emails using the postfix mta server smtp settings with a postfix command?[08:41:25] *** Darkfoe <Darkfoe!chuck@drunk.serverfail.party> has joined #postfix[08:43:02] <honigkuchen> as if I would use the sendmail command[08:49:05] *** stenrose <stenrose!~martin@2a01:2b0:301d:100:bcd9:cc96:2434:3678> has quit IRC (Remote host closed the connection)[08:49:26] *** stenrose <stenrose!~martin@2a01:2b0:301d:100:5536:d132:c7b5:6e89> has joined #postfix[08:51:14] *** anubani_ is now known as anubani[08:52:22] <honigkuchen> is it done via sendmail -G ... ?[08:52:54] *** ]SiB[ <]SiB[!~Thunderbi@unaffiliated/sib/x-9459575> has joined #postfix[09:10:53] *** trident <trident!~trident@paranoia.trisec.se> has quit IRC (Ping timeout: 245 seconds)[09:13:06] *** trident <trident!~trident@paranoia.trisec.se> has joined #postfix[09:17:22] <honigkuchen> when I use the sendmail command it can not be delivered to googlemail, but it works with thunderbird, that uses postfix stmp[09:17:32] <honigkuchen> smtp[09:30:54] *** graphene <graphene!~graphene@46.101.134.251> has quit IRC (Remote host closed the connection)[09:32:04] *** graphene <graphene!~graphene@46.101.134.251> has joined #postfix[09:37:13] *** free_beer <free_beer!~free@gatekeeper01.ports.se> has joined #postfix[09:41:00] *** jmazaredo <jmazaredo!~IceChat78@103.225.39.222> has joined #postfix[09:42:50] <jmazaredo> i got /adult pic/ and /adult txt/ in body check postmap: warning: /etc/postfix/maps/body_checks.db: duplicate entry: "/adult"[09:50:35] *** epony <epony!~epony@unaffiliated/epony> has quit IRC (Ping timeout: 244 seconds)[09:53:21] *** free_beer <free_beer!~free@gatekeeper01.ports.se> has quit IRC (Remote host closed the connection)[10:00:43] *** free_beer <free_beer!~free@gatekeeper01.ports.se> has joined #postfix[10:01:35] *** led_dark_1 <led_dark_1!~Thunderbi@hotspot10.rywasoft.net> has quit IRC (Ping timeout: 246 seconds)[10:03:55] *** n_1-c_k <n_1-c_k!~nick@2a02:8010:63a6::70> has quit IRC (Read error: Connection reset by peer)[10:04:53] *** n_1-c_k <n_1-c_k!~nick@2a02:8010:63a6::70> has joined #postfix[10:05:59] *** epony <epony!~epony@unaffiliated/epony> has joined #postfix[10:09:54] <double-p> jmazaredo: wrong maptype[10:10:24] *** led_dark_1 <led_dark_1!~Thunderbi@hotspot10.rywasoft.net> has joined #postfix[10:13:31] *** zapata <zapata!~zapata@2a02:b18:581:10:b085:b7b8:db4:36f4> has quit IRC (Read error: Connection reset by peer)[10:14:11] *** zapata <zapata!~zapata@2a02:b18:581:10:b085:b7b8:db4:36f4> has joined #postfix[10:16:15] *** zapata <zapata!~zapata@2a02:b18:581:10:b085:b7b8:db4:36f4> has quit IRC (Read error: Connection reset by peer)[10:16:55] *** zapata <zapata!~zapata@2a02:b18:581:10:b085:b7b8:db4:36f4> has joined #postfix[10:32:10] *** DTZUZO <DTZUZO!~DTZUZO@S0106bcd16584b0aa.vs.shawcable.net> has joined #postfix[10:38:20] *** zapata <zapata!~zapata@2a02:b18:581:10:b085:b7b8:db4:36f4> has quit IRC (Read error: Connection reset by peer)[10:39:00] *** zapata <zapata!~zapata@2a02:b18:581:10:b085:b7b8:db4:36f4> has joined #postfix[11:12:25] *** Guest27620 <Guest27620!~rob@5ED0E3DB.cm-7-1d.dynamic.ziggo.nl> has quit IRC (Quit: Lost terminal)[11:19:19] *** Noti <Noti!~steffan@ip4da40774.direct-adsl.nl> has joined #postfix[11:43:12] *** rob_ <rob_!~rob@5ED0E3DB.cm-7-1d.dynamic.ziggo.nl> has joined #postfix[11:48:18] *** rob__ <rob__!~rob@5ED0E3DB.cm-7-1d.dynamic.ziggo.nl> has joined #postfix[11:48:38] *** rob_ <rob_!~rob@5ED0E3DB.cm-7-1d.dynamic.ziggo.nl> has quit IRC (Ping timeout: 268 seconds)[11:51:02] *** ss942 <ss942!~zn@2a02:a31c:823d:c180:4b99:c944:d287:d4b8> has joined #postfix[12:04:13] *** DTZUZO <DTZUZO!~DTZUZO@S0106bcd16584b0aa.vs.shawcable.net> has quit IRC (Ping timeout: 245 seconds)[12:16:01] *** Gazoo <Gazoo!~Gazoo@205.250.172.247> has joined #postfix[12:21:22] *** rob__ <rob__!~rob@5ED0E3DB.cm-7-1d.dynamic.ziggo.nl> has quit IRC (Ping timeout: 272 seconds)[12:34:19] *** honigkuchen <honigkuchen!~honigkuch@ip5f5b2fd0.dynamic.kabel-deutschland.de> has quit IRC (Ping timeout: 246 seconds)[12:44:38] *** ss942 <ss942!~zn@2a02:a31c:823d:c180:4b99:c944:d287:d4b8> has left #postfix[12:55:02] *** section1 <section1!~section1@152.170.121.37> has joined #postfix[13:18:45] *** edux <edux!~edux@190.247.36.76> has joined #postfix[13:21:00] *** honigkuchen <honigkuchen!~honigkuch@95.91.47.208> has joined #postfix[13:50:11] *** andylavarre <andylavarre!~andy@mobile-166-172-60-137.mycingular.net> has joined #postfix[13:52:26] *** jmazaredo <jmazaredo!~IceChat78@103.225.39.222> has quit IRC (Read error: Connection reset by peer)[13:52:59] *** jmazaredo <jmazaredo!~IceChat78@103.225.39.222> has joined #postfix[13:53:00] *** bhuddah <bhuddah!~michael@unaffiliated/bhuddah> has quit IRC (Quit: WeeChat 2.3)[13:54:09] *** survietamine <survietamine!~vnvu@mxfr2-m1.mcra.iliadgroupe.fr> has quit IRC (Ping timeout: 252 seconds)[13:54:20] *** survietamine <survietamine!~vnvu@mxfr2-m1.mcra.fr> has joined #postfix[13:56:07] *** bhuddah <bhuddah!~michael@unaffiliated/bhuddah> has joined #postfix[14:08:27] *** pyco <pyco!~p@pdpc/supporter/active/pyco> has quit IRC (Ping timeout: 240 seconds)[14:13:00] *** n_1-c_k <n_1-c_k!~nick@2a02:8010:63a6::70> has quit IRC (Read error: Connection reset by peer)[14:13:22] *** n_1-c_k <n_1-c_k!~nick@2a02:8010:63a6::70> has joined #postfix[14:33:03] *** tenaglia_ is now known as tenaglia[15:02:03] *** eelstrebor <eelstrebor!~eelstrebo@216-75-116-100.allophone.biz> has joined #postfix[15:03:25] *** Diemuzi <Diemuzi!~IceChat9@unaffiliated/diemuzi> has joined #postfix[15:06:04] *** p3rror <p3rror!~Justice4A@41.248.147.213> has joined #postfix[15:06:24] <p3rror> Hello I installed postfix from a while[15:06:36] <p3rror> And I have a issue to send mail to google mail[15:06:42] <p3rror> here is the logs : https://paste.debian.net/1055139/[15:08:26] *** epony <epony!~epony@unaffiliated/epony> has quit IRC (Ping timeout: 268 seconds)[15:09:17] <jaybe> what is the issue[15:10:22] *** DTZUZO <DTZUZO!~DTZUZO@70.70.100.95> has joined #postfix[15:10:29] <blackflow> p3rror: seems like a networking problem with so many different IPs failing[15:13:36] <p3rror> blackflow, networking on ipv6 may I disabled it[15:13:46] <p3rror> here is the postfix conf http://paste.debian.net/1055142/[15:17:59] <blackflow> p3rror: you have both ipv6 and ipv4 failing according to that first post. I doubt it has anything to do with your postfix config, and probably has something with a firewall dropping packets[15:19:16] <p3rror> blackflow, the firewall is allow ingoing packets on port 25[15:19:25] <p3rror> I use ufw[15:19:25] <blackflow> but you need outgoing[15:19:39] <p3rror> Yes i see[15:20:11] <lunaphyte> p3rror: can you connect to any of the listed ip addresses on port 25, using netcat?[15:20:33] <double-p> bitsy dl_open() hate[15:21:29] *** eelstrebor <eelstrebor!~eelstrebo@216-75-116-100.allophone.biz> has quit IRC (Quit: Ex-Chat)[15:22:13] <p3rror> lunaphyte, I see now where come the problem[15:22:21] <p3rror> I use default config of ufw[15:22:31] <p3rror> and I think I must permit outgoing packets[15:23:06] <lunaphyte> i doubt the default config block outgoing packets[15:23:49] *** gormux <gormux!~gormux@rei.gormotte.info> has joined #postfix[15:23:52] <gormux> hi all[15:23:56] <p3rror> I see that[15:24:00] <p3rror> Default: deny (incoming), allow (outgoing), disabled (routed)[15:24:23] <lunaphyte> p3rror: pastebin iptables -vnL[15:24:23] <gormux> I'm trying to send an mail via : /usr/sbin/sendmail -t < mail.txt[15:24:59] <p3rror> lunaphyte, http://paste.debian.net/1055143/[15:25:10] <gormux> mail.txt contains a From: line, but in the logs I get from=user@hostname[15:25:29] <gormux> so non-delivery notifications are sent to user@hostname[15:25:44] <lunaphyte> gormux: why are you doing this?[15:26:02] <lunaphyte> p3rror: yes, so you have some other issue[15:26:08] <gormux> it seems the client cannot change his code to add a -f to sendmail command[15:26:22] <lunaphyte> p3rror: your provider may be blocking outgoing port 25[15:31:10] *** ALowther_ <ALowther_!~quassel@108.190.224.222> has joined #postfix[15:37:10] <blackflow> p3rror: Chain OUTPUT (policy ACCEPT 0 packets, 0 bytes) doesn't look right, no outgoing packets at all?[15:38:22] *** honigkuchen <honigkuchen!~honigkuch@95.91.47.208> has left #postfix ("Leaving")[15:38:37] <lunaphyte> hmm?[15:38:49] <lunaphyte> what would be outgoing packets?[15:39:10] *** pti-jean_ <pti-jean_!~quassel@197.17.124.78.rev.sfr.net> has joined #postfix[15:39:23] <blackflow> well for starters the SYNs caused by connections in the first paste[15:41:03] <lunaphyte> oh there were ipv4 attempts[15:42:10] <lunaphyte> anyway, i think you're confused about iptables[15:42:37] <p3rror> I toughout that I my vps is backdoored[15:42:44] <lunaphyte> why?[15:43:03] <p3rror> I don't know, no outgoing packet and the terminal is very light[15:43:18] <lunaphyte> what do you mean no outgoing packet?[15:43:23] <lunaphyte> and what is "very light"?[15:43:33] <tuxick> 3 grams[15:43:38] *** bertschneider11 <bertschneider11!~bertschne@i121-115-168-23.s42.a013.ap.plala.or.jp> has joined #postfix[15:44:02] *** bertschneider11 <bertschneider11!~bertschne@i121-115-168-23.s42.a013.ap.plala.or.jp> has quit IRC (Remote host closed the connection)[15:44:06] <blackflow> p3rror: can you ping anything outside of your server? eg. ping -c4 google.com ?[15:44:59] <p3rror> it works[15:45:16] <p3rror> the outgoing packet are on ipv6 first[15:46:08] <blackflow> and with the -4 option?[15:46:54] <lunaphyte> what -4 option?[15:47:00] <blackflow> ping -4[15:47:12] <lunaphyte> huh?[15:47:16] <lunaphyte> what is ping -4 ?[15:47:20] <blackflow> force ipv4?[15:47:31] <lunaphyte> what are you talking about?[15:47:40] <blackflow> lunaphyte: man ping and you'll see[15:48:05] <lunaphyte> i think you're confused[15:48:10] *** jalalsfs_ <jalalsfs_!~jalalsfs@unaffiliated/jalalsfs> has joined #postfix[15:48:15] <blackflow> about which part?[15:49:00] <p3rror> lunaphyte, blackflow : pingable[15:49:27] <blackflow> p3rror: great, now try this: echo "QUIT" | nc gmail-smtp-in.l.google.com 25[15:49:34] <blackflow> assuming you have netcat installed[15:49:34] <lunaphyte> blackflow: this "-4" option for ping[15:49:45] <blackflow> lunaphyte: I'm not.[15:49:53] <lunaphyte> you are :)[15:49:56] *** andylavarre <andylavarre!~andy@mobile-166-172-60-137.mycingular.net> has quit IRC (Read error: Connection reset by peer)[15:50:12] <lunaphyte> show me a man page which has such an option[15:50:40] <blackflow> lunaphyte: ping from iputils on gentoo has that[15:51:00] *** jalalsfs <jalalsfs!~jalalsfs@unaffiliated/jalalsfs> has quit IRC (Ping timeout: 272 seconds)[15:51:01] *** Noti <Noti!~steffan@ip4da40774.direct-adsl.nl> has quit IRC (Quit: Konversation terminated!)[15:51:06] *** andylavarre <andylavarre!~andy@mobile-166-171-185-17.mycingular.net> has joined #postfix[15:51:07] <blackflow> since I'm actually running this, and have it in front of me, the only confused person here is you.[15:51:18] <blackflow> also p3rror obviously has the same functionality.[15:51:49] <blackflow> oh look, debian too. and ubuntu. wow.[15:52:26] <p3rror> netcat is not working[15:52:37] <p3rror> I can not connect to google mail on port 25[15:52:40] <p3rror> at all[15:52:51] <lunaphyte> neither debian nor ubuntu have such an option, no[15:53:06] <blackflow> lunaphyte: I'm actually looking at it. Debian Stretch and Ubuntu Bionic.[15:54:17] <blackflow> iputils-ping 3:20161105-1 on Stretch, and 3:20161105-1ubuntu2 on bionic[15:54:22] <lunaphyte> then there are two different implementations of ping[15:54:31] <lunaphyte> that's retarded. but you're right[15:54:34] <blackflow> I don't know if there are, these options have been here for ages[15:54:45] <lunaphyte> the iputils ping supports both ipv4 and ipv6[15:55:00] <blackflow> yah. on FreeBSD for example you hve to use separately ping and ping6[15:55:56] *** p3rror is now known as mezgani[15:56:04] <blackflow> p3rror: seems like something is bloking that traffic, if not your iptables, then something external to the VPS. that's vultr, right?[15:56:07] <blackflow> mezgani: 3^[15:56:44] <mezgani> blackflow, yes it is[15:57:04] <lunaphyte> i wonder which package is the default. i have systems with both, it seems[15:57:07] <lunaphyte> anyway, that's off topic[15:57:47] <blackflow> mtr can do a SYN test. which linux distro are you on? use mtr (or mtr-tiny for without GUI) to run a trace and see where it's holding.[15:58:17] <jaybe> vultr requires an initial inquiry for port 25 destinations i think[15:58:24] <jaybe> (for bew accounts anyway)[15:58:28] <jaybe> s/new[15:59:24] <blackflow> that would explain this.[16:00:19] <blackflow> lunaphyte: inetutils-ping in your case?[16:00:28] <lunaphyte> in those cases, yes[16:00:51] <blackflow> I see.[16:06:53] <rob0> icy[16:06:55] *** graphene <graphene!~graphene@46.101.134.251> has quit IRC (Remote host closed the connection)[16:08:01] *** graphene <graphene!~graphene@46.101.134.251> has joined #postfix[16:10:10] *** Sketch <Sketch!sketch@new.rednsx.org> has quit IRC (Ping timeout: 250 seconds)[16:11:58] <blackflow> Soon(tm)[16:19:19] *** Sketch <Sketch!sketch@new.rednsx.org> has joined #postfix[16:24:25] *** graphene <graphene!~graphene@46.101.134.251> has quit IRC (Remote host closed the connection)[16:24:49] *** pj <pj!~pj@centos/ops/pj> has quit IRC (Ping timeout: 268 seconds)[16:25:37] *** graphene <graphene!~graphene@46.101.134.251> has joined #postfix[16:25:44] *** jalalsfs_ is now known as jalalsfs[16:27:59] *** dreadkopp <dreadkopp!1fd159b6@gateway/web/cgi-irc/kiwiirc.com/ip.31.209.89.182> has joined #postfix[16:33:29] *** indy <indy!~indy@dsl-static-104.213-160-167.telecom.sk> has quit IRC (Read error: Connection reset by peer)[16:36:58] *** pj <pj!~pj@centos/ops/pj> has joined #postfix[16:37:18] *** indy <indy!~indy@dsl-static-104.213-160-167.telecom.sk> has joined #postfix[16:41:22] *** robinho86 <robinho86!~robsonjf@191.36.239.241> has joined #postfix[17:18:53] <ujjain> Does anybody know boto 3? My code gives this error: AttributeError: 'dict' object has no attribute 'filter'[17:19:23] <ujjain> for stack in qa.cfn.list_stacks().filter(Prefix='lab-logging'):[17:19:23] <ujjain> print('{0}:{1}'.format(stack.name, stack.key))[17:19:27] <tuxick> somehow i have a feeling this has nothing to do with postfix[17:19:36] <ujjain> is this not #python?[17:19:44] * ujjain moves channel[17:19:51] <tuxick> not really :)[17:20:05] <ujjain> cheers :)[17:20:09] <double-p> =][17:22:14] *** breitenj <breitenj!~breitenj@bnc.plusnull.net> has quit IRC (Read error: Connection reset by peer)[17:22:39] *** breitenj <breitenj!~breitenj@bnc.plusnull.net> has joined #postfix[17:23:04] *** woboats <woboats!~woboats@pc-150-40-156-186.cm.vtr.net> has joined #postfix[17:23:06] *** woboats <woboats!~woboats@pc-150-40-156-186.cm.vtr.net> has quit IRC (Read error: Connection reset by peer)[17:25:57] *** Poster|n <Poster|n!~poster@24-181-51-120.dhcp.gnvl.sc.charter.com> has quit IRC (Ping timeout: 268 seconds)[17:31:27] *** Poster|n <Poster|n!~poster@24-181-51-120.dhcp.gnvl.sc.charter.com> has joined #postfix[17:34:52] *** twanny796 <twanny796!~Twanny@195.158.111.16> has joined #postfix[17:52:41] *** Columbo0815 <Columbo0815!~foobar@HSI-KBW-109-192-087-081.hsi6.kabel-badenwuerttemberg.de> has joined #postfix[18:06:59] *** edux <edux!~edux@190.247.36.76> has quit IRC (Remote host closed the connection)[18:07:16] *** edux <edux!~edux@190.247.36.76> has joined #postfix[18:07:44] *** edux <edux!~edux@190.247.36.76> has quit IRC (Remote host closed the connection)[18:11:40] *** edux <edux!~edux@190.247.36.76> has joined #postfix[18:15:36] *** rsx <rsx!~rsx@ppp-46-244-251-113.dynamic.mnet-online.de> has joined #postfix[18:16:31] *** edux <edux!~edux@190.247.36.76> has quit IRC (Ping timeout: 268 seconds)[18:19:21] *** gu1lle_ <gu1lle_!~Thunderbi@201.216.253.75> has joined #postfix[18:21:25] *** n_1-c_k <n_1-c_k!~nick@2a02:8010:63a6::70> has quit IRC (Read error: Connection reset by peer)[18:21:51] *** n_1-c_k <n_1-c_k!~nick@2a02:8010:63a6::70> has joined #postfix[18:29:23] *** twanny796 <twanny796!~Twanny@195.158.111.16> has quit IRC (Read error: Connection reset by peer)[18:29:49] *** twanny796 <twanny796!~Twanny@195.158.111.16> has joined #postfix[18:36:10] *** gislaved <gislaved!b9e814e9@gateway/web/cgi-irc/kiwiirc.com/ip.185.232.20.233> has quit IRC (Remote host closed the connection)[18:43:02] *** VibesYuth <VibesYuth!~lfesdaill@static-108-41-107-210.nycmny.fios.verizon.net> has joined #postfix[18:44:54] *** gislaved <gislaved!b9e814f6@gateway/web/cgi-irc/kiwiirc.com/ip.185.232.20.246> has joined #postfix[18:45:21] *** colinjmatt <colinjmatt!~colinjmat@matthews-co.uk> has quit IRC (Quit: Bye for now.)[18:52:50] *** colinjmatt <colinjmatt!~colinjmat@matthews-co.uk> has joined #postfix[18:54:20] *** MACscr <MACscr!~MACscr@c-98-215-100-46.hsd1.il.comcast.net> has joined #postfix[18:57:43] *** _kristia1 is now known as _kristial[18:57:55] *** _kristial <_kristial!~k_ristian@unaffiliated/kristian/x-8395002> has quit IRC (Quit: Lost terminal)[19:01:42] *** eelstrebor <eelstrebor!~eelstrebo@216-75-116-100.allophone.biz> has joined #postfix[19:06:54] *** VibesYuth <VibesYuth!~lfesdaill@static-108-41-107-210.nycmny.fios.verizon.net> has quit IRC (Quit: Leaving)[19:09:23] *** twanny796 <twanny796!~Twanny@195.158.111.16> has quit IRC (Remote host closed the connection)[19:09:40] *** twanny796 <twanny796!~Twanny@195.158.111.16> has joined #postfix[19:19:16] *** FireFly40 <FireFly40!~FireFly40@d8D87066D.access.telenet.be> has joined #postfix[19:19:51] <FireFly40> !relevant_logs[19:19:51] <knoba> FireFly40: "relevant_logs" : mail.* syslog Postfix log messages (NOT verbose, see !no_verbose) which show ONLY the entire handling of a single mail which illustrates the issue with which you want help. Random selections from your mail log are not adequate. IMAP/POP3 daemons and external delivery agents often log to the same syslog facility and should not be shown. Also see http://rob0.nodns4.us/postfix-logging[19:19:53] *** dreadkopp <dreadkopp!1fd159b6@gateway/web/cgi-irc/kiwiirc.com/ip.31.209.89.182> has quit IRC (Remote host closed the connection)[19:32:14] *** rsx <rsx!~rsx@ppp-46-244-251-113.dynamic.mnet-online.de> has quit IRC (Quit: rsx)[19:32:21] *** eelstrebor <eelstrebor!~eelstrebo@216-75-116-100.allophone.biz> has quit IRC (Quit: Ex-Chat)[19:34:17] *** xernus <xernus!~xernus@25533.s.t4vps.eu> has quit IRC (Ping timeout: 250 seconds)[19:43:24] <FireFly40> !showconfig[19:43:24] <knoba> FireFly40: "showconfig" : when asked to provide your config, please provide a SINGLE pastebin (see !pastebin) with postconf -nf and postconf -Mf. if your version is too old for those commands to work (< 2.9), you should upgrade, but see !showconfig_old[19:51:50] *** eelstrebor <eelstrebor!~eelstrebo@216-75-116-100.allophone.biz> has joined #postfix[19:57:50] *** hgnoel1980 <hgnoel1980!~hgnoel198@host81-143-199-121.in-addr.btopenworld.com> has quit IRC (Read error: Connection reset by peer)[19:58:37] *** hgnoel1980 <hgnoel1980!~hgnoel198@host81-143-199-121.in-addr.btopenworld.com> has joined #postfix[19:59:52] *** twanny796 <twanny796!~Twanny@195.158.111.16> has quit IRC (Quit: Leaving)[20:09:09] *** epony <epony!~epony@unaffiliated/epony> has joined #postfix[20:24:21] *** FireFly40 <FireFly40!~FireFly40@d8D87066D.access.telenet.be> has quit IRC (Quit: KVIrc 4.2.0 Equilibrium http://www.kvirc.net/)[20:41:01] *** Columbo0815 <Columbo0815!~foobar@HSI-KBW-109-192-087-081.hsi6.kabel-badenwuerttemberg.de> has quit IRC (Quit: Verlassend)[20:42:07] *** mezgani <mezgani!~Justice4A@41.248.147.213> has quit IRC (Ping timeout: 240 seconds)[20:45:07] *** MACscr <MACscr!~MACscr@c-98-215-100-46.hsd1.il.comcast.net> has quit IRC (Remote host closed the connection)[20:45:52] *** MACscr <MACscr!~MACscr@c-98-215-100-46.hsd1.il.comcast.net> has joined #postfix[20:52:03] *** Blubberbop <Blubberbop!~quassel@mail.capmega.com> has joined #postfix[21:06:26] *** jelly <jelly!jelly@pdpc/supporter/active/jelly> has quit IRC (Read error: Connection reset by peer)[21:06:33] *** JanC <JanC!~janc@lugwv/member/JanC> has quit IRC (Remote host closed the connection)[21:06:53] *** JanC <JanC!~janc@lugwv/member/JanC> has joined #postfix[21:08:43] *** section1 <section1!~section1@152.170.121.37> has quit IRC (Remote host closed the connection)[21:10:28] *** ALowther_ <ALowther_!~quassel@108.190.224.222> has quit IRC (Read error: Connection reset by peer)[21:17:11] *** jelly-home <jelly-home!jelly@pdpc/supporter/active/jelly> has joined #postfix[21:24:10] *** jelly-home <jelly-home!jelly@pdpc/supporter/active/jelly> has quit IRC (Read error: Connection reset by peer)[21:25:09] *** ntd <ntd!~ntd@gateway/tor-sasl/ntd> has joined #postfix[21:29:51] *** chowbok <chowbok!~chowbok@207.181.255.76> has quit IRC (Quit: chowbok)[21:32:22] *** jelly-home <jelly-home!jelly@pdpc/supporter/active/jelly> has joined #postfix[21:33:57] *** chowbok <chowbok!~chowbok@207.181.255.76> has joined #postfix[21:34:15] *** ntd <ntd!~ntd@gateway/tor-sasl/ntd> has quit IRC (Quit: ntd)[21:49:02] *** Dalkor <Dalkor!~gtenney@209.210.202.44> has joined #postfix[21:58:51] <Dalkor> Sending an internal domain to an internal SMTP server with no credentials over port 25 and then forwarding that to a cloud smtp server with credentials(over tls or ssl). One thought was to direct all emails to a special email address and then setup an SMTP forwarding rule for that email address. Is there a better/another way?[21:59:48] <Dalkor> *Sending from the internal domain to...[22:00:57] <jaybe> try conpletely rewriting your problem statement and try again[22:01:27] <Dalkor> yeah, doing that already.[22:04:06] *** TheFatherMind <TheFatherMind!~TheFather@104.34.204.52> has quit IRC ()[22:08:57] *** robinho86 <robinho86!~robsonjf@191.36.239.241> has quit IRC (Quit: Leaving.)[22:11:00] <Dalkor> I have a service that sends emails w/o credentials over port 25. Port 25 is blocked by the upstream provider so sending to external SMTP server is not possible without some sort of modification. I need to distrubute email outside the LAN, so I'm trying to come up with a solution. Would directing the internal service to a specific mailbox on the LAN and then setting up a SMTP forwarding rule to external recipients be one idea? Is there a more straight[22:11:00] <Dalkor> forward solution?[22:11:22] <rob0> what service is this?[22:12:30] <Dalkor> Internal Network monitoring service, email alerts using a minimal mail client called minimail[22:14:51] *** hadifarnoud <hadifarnoud!~textual@138.128.218.122.16clouds.com> has joined #postfix[22:16:20] <rob0> sad, probably written by someone who doesn't know much about email[22:18:47] <Dalkor> Actually reviewing the available options, it does actually look like changing the port is an option but still no credential injection.[22:19:22] <Dalkor> https://imgur.com/a/qzEDhXy[22:21:02] <lunaphyte> Dalkor: is this on a windows server?[22:21:49] <Dalkor> Postfix is installed on a Debian VM on the LAN, but this specific application is running on a windows server.[22:22:11] <lunaphyte> configure iis smtp service as a null client.[22:22:29] <rob0> Not knowing AUTH is a very bad thing, but ^^ there are workaround.[22:22:59] <lunaphyte> point that program to localhost:587, and then configure iis smtp to relay properly to the actual server, using submission[s], encryption, credentials, as it should be[22:24:51] <Dalkor> I'll look into that, thank you lunaphyte.[22:29:34] *** n_1-c_k <n_1-c_k!~nick@2a02:8010:63a6::70> has quit IRC (Read error: Connection reset by peer)[22:30:21] *** n_1-c_k <n_1-c_k!~nick@2a02:8010:63a6::70> has joined #postfix[22:38:42] *** ntd <ntd!~ntd@gateway/tor-sasl/ntd> has joined #postfix[22:40:56] *** jelly-home is now known as jelly[22:41:54] *** graphene <graphene!~graphene@46.101.134.251> has quit IRC (Remote host closed the connection)[22:43:08] *** graphene <graphene!~graphene@46.101.134.251> has joined #postfix[22:51:40] *** hadifarnoud <hadifarnoud!~textual@138.128.218.122.16clouds.com> has quit IRC (Quit: Textual IRC Client: www.textualapp.com)[23:11:37] *** ntd <ntd!~ntd@gateway/tor-sasl/ntd> has quit IRC (Quit: ntd)[23:11:54] *** edux <edux!~edux@190.247.36.76> has joined #postfix[23:16:39] *** Gazoo <Gazoo!~Gazoo@205.250.172.247> has quit IRC (Remote host closed the connection)[23:16:42] *** pti-jean_ <pti-jean_!~quassel@197.17.124.78.rev.sfr.net> has quit IRC (Read error: Connection reset by peer)[23:22:00] *** murii <murii!~murii@90.95.168.249> has joined #postfix[23:22:05] <murii> https://hastebin.com/aduteponoq.nginx[23:22:06] <murii> hi[23:22:15] <murii> been struggling with postfix for 6h[23:22:30] <murii> I'm trying to send an email form gmail to my local email server[23:22:41] <murii> but I cannot see the email and the logs ^ look fine to me[23:22:44] <murii> suggestions?[23:47:27] *** Blubberbop <Blubberbop!~quassel@mail.capmega.com> has quit IRC (Ping timeout: 240 seconds)[23:53:18] *** Diemuzi <Diemuzi!~IceChat9@unaffiliated/diemuzi> has quit IRC (Quit: See you on the flip side!)