Re: cloud9 majordomo server broken

2009-04-26 Thread Wietse Venema
Wietse Venema: One of the Cloud9 majordomo servers (english-breakfast) is broken and drops postings on the floor. It will hopefully be fixed today. It should be fixed now. Wietse

Re: how to detect spam attacks

2009-04-26 Thread Wietse Venema
deconya: Hi list Im with the next problem: I have and old server and Im in process to migrate to a better machine, but actually Im having spam attacks in the server than saturate it. For the age of the server and because in two weeks is replaced I can't install any program like spamity or

SMFIP_RCPT_REJ Milter support (was: pre-queue mode libmilter status and performances)

2009-04-26 Thread Wietse Venema
The Postfix 2.6 Milter interface now implements SMFIP_RCPT_REJ, meaning that postfix can report rejected recipients to Milter applications. Postfix will report the following macro values, as decribed in Sendmail 8.14.0 documentation: {rcpt_mailer} = error, {rcpt_host} = enhanced status

Re: Address verification issues

2009-04-27 Thread Wietse Venema
xul...@onlineok.com: append_at_myorigin = no As documented, this is NOT SUPPORTED.

Re: Wishing I could change the level of smtpd DNS messages

2009-04-27 Thread Wietse Venema
Jacob Anawalt: Hello, When I look at my mail.warn file (log level warn or greater), or grep mail.log for warning messages, I am presented with a flood of 'Name or service not known', 'address not listed for hostname', and 'numeric hostname' messages. I run a small site yet mail.warn log has

Re: Minor bug in web site documentation

2009-04-27 Thread Wietse Venema
Brian Mathis: On the page http://www.postfix.org/SMTPD_ACCESS_README.html this statement is made beneath the examples: ...the last example above allows mail from local networks but otherwise... It should say: ...the first example above allows mail from local networks but

Re: Re: Filter incoming emails by source IP but depending on destination domains

2009-04-28 Thread Wietse Venema
Denis BUCHER: Hello, I forgot to add an important point : * Users that use their login and password (authentified SMTP) are of course allowed to send from anywhere to anywhere... Is this compatible with the proposed config ? Use or write a policy server that responds with

Re: shellscript as policy-service -- zombie/load

2009-04-28 Thread Wietse Venema
Andre H?bner: [ Charset ISO-8859-1 unsupported, converting... ] Hello, Andre H?bner: Hello, for testing purposes i wrote a policy-service for postfix as a shellscript. My Script is working very well, iam happy with its functionality ;) But unfortunately there is one problem

Re: eMail redirection

2009-04-28 Thread Wietse Venema
morphium: So you don't have any idea how to make postfix accept the emails? If in doubt, RTFM. man 5 virtual @domain address, address, ... Redirect mail for other users in domain to address. This form has the lowest precedence. Wietse

Re: SNMP + MTA-MIB + Postfix

2009-04-28 Thread Wietse Venema
Ralf Hildebrandt: * no7find - no7f...@gmail.com: Hi list ! I want to know if there is any implementation of MTA-MIB (defined @ RFC 2789) for the Postfix. The answer is: type SNMP into the search window at http://www.postfix.org. Sounds like something qmgr would keep track of

Re: postfix database

2009-04-28 Thread Wietse Venema
tom lee: Hello, I use Postfix Maildir for saving storing the incoming emails. I also use procmail to deliver the emails to a different directory every day. I were told my co-worker that I cannot remove the emails and directory without stopping postfix first. Otherwise, it will cause corrupted

Re: Cleanup timeout?

2009-04-28 Thread Wietse Venema
David DeFranco: I have a problem with an unreasonable virtual_alias_maps map nesting that I need to figure out with my directory team. In the meantime I noticed that there is 60s between these error message. Apr 28 21:51:09 server postfix/cleanup[22885]: warning: 4D020F8131: unreasonable

Re: delivery temporarily suspended !

2009-04-29 Thread Wietse Venema
Nasser Heidari: (delivery temporarily suspended: lost connection with mail.xyz.ab[1.2.3.4] while receiving the initial server greeting) What does lost connection with ... while receiving the initial server greeting) means? Look at tcpdump output. A common cause for this is the presence of a

Postfix 2.6.0-RC3 and 2.7-20090428 available

2009-04-29 Thread Wietse Venema
Postfix 2.6 stable release candidate 3 is available. If this has no problems, then Postfix 2.6.0 will happen soon. The same code is also available as Postfix 2.7 experimental release 20090428. Wietse TLS changes since release candidate 2: == The

Re: delivery temporarily suspended !

2009-04-29 Thread Wietse Venema
Nasser Heidari: (delivery temporarily suspended: lost connection with mail.xyz.ab[1.2.3.4] while receiving the initial server greeting) What does lost connection with ... while receiving the initial server greeting) means? Wietse: Look at tcpdump output. A common cause for this is the

Re: Transport Maps Ignored After Upgrade

2009-04-29 Thread Wietse Venema
Eric Cunningham: I just upgraded to postfix 2.5.5 from 2.3. Now, it seems my previously working transport maps are ignored as are hosts that are MX'ed to the machine running postfix. In both cases, email are rejected with Relay access denied. Why don't you simply restore the old working

Re: Postfix will not use authentication

2009-04-30 Thread Wietse Venema
Gregorics Tamas: [ Charset UTF-8 unsupported, converting... ] Hi, I want to set up a relayhost for my local mail server, but for some reason my postfix will not try to authenticate with the relay server. I have these packages installed: libsasl2 libsasl2-2 libsasl2-modules main.cf

Re: Postfix will not use authentication

2009-04-30 Thread Wietse Venema
Gregorics Tam??s: Does this command: $ postmap -q mail.t-online.hu hash:/etc/postfix/sasl_password Produce the expected output? There is no need to post your username or password to the mailing list. Yes, I get the username and password. Now you can turn on verbose logging:

Re: Transport Maps Ignored After Upgrade

2009-04-30 Thread Wietse Venema
Eric Cunningham: [ Charset ISO-8859-1 unsupported, converting... ] Why don't you simply restore the old working main.cf and master.cf files, and then execute as root: # postfix upgrade-configuration This is easier that trying to figure out how to rebuild the old configuration

Re: Transport Maps Ignored After Upgrade

2009-04-30 Thread Wietse Venema
Eric Cunningham: transport_maps simply routes accepted messages by overriding DNS. That's what I want to continue to do, as had occurred happily before the postfix upgrade. To accept mail, the envelope recipient *must* be in mydestination, relay_domains, virtual_alias_domains or

Re: Virtual delivery + procmail

2009-04-30 Thread Wietse Venema
Jordan Tardif: Perhaps you are using the wrong mail system? .-. |agent |executes commands|requires UNIX system acounts| |-| |virtual(8)|no | no

Re: Case sensitive oddity when mail delivered.

2009-04-30 Thread Wietse Venema
post...@corwyn.net: case (or not as the case may be) somewhere I can't find. I've gotten suggestions on how to change dovecot's deliver to lc everything but I want to know what's wrong with my config before I try to fix it You forgot to include your configuration. Wietse

Re: Implication of policy_time_limit

2009-05-05 Thread Wietse Venema
Brian Mathis: What is the effect of the policy_time_limit parameter on an smtpd policy process? In the readme I see the mentions that the default 100 According to the spawn(8) manpage: RESOURCE AND RATE CONTROL transport_time_limit ($command_time_limit) The amount of

Re: Escaping '^From ' in the body

2009-05-07 Thread Wietse Venema
LuKreme: I changed all my delivery mailboxes over to Maildir with procmail as the LDA, but I am still seeing lines that begin with 'From ' being rewritten to 'From ' You need to verify that the is added by Postfix, not by some upstream system. Wietse

Re: Postfix 2.6.0-RC3 and 2.7-20090428 available

2009-05-07 Thread Wietse Venema
Quanah Gibson-Mount: --On Thursday, May 07, 2009 12:52 AM -0700 Bill Landry b...@inetmsg.com wrote: Although the download link is correct, the text is wrong: Postfix 2.6.0 stable release candidate 2 I have fixed the text this morning (the hyperlinks already said RC3). Wietse

Re: Escaping '^From ' in the body

2009-05-07 Thread Wietse Venema
LuKreme: On 7-May-2009, at 08:29, Wietse Venema wrote: LuKreme: I changed all my delivery mailboxes over to Maildir with procmail as the LDA, but I am still seeing lines that begin with 'From ' being rewritten to 'From ' You need to verify that the is added by Postfix, not by some

Re: Question re: blocking unwanted senders

2009-05-07 Thread Wietse Venema
Rik: That's the problem Charles. When you abuse people on lists *thinking* you are some kind of expert, and then get caught with your pants down on the basics you have to see the funny side. I'll tell you what you need to fix if you apologise to me and call me Sir. Enough. This thread is

Re: keep recipient_bcc_maps from picking up aliases in virtual_alias_maps

2009-05-07 Thread Wietse Venema
J.P. Trosclair: Is it possible to avoid recipient_bcc_maps picking up aliases in the virtual_alias_maps table? No. Wietse

Re: private/hash

2009-05-08 Thread Wietse Venema
Rocco Scappatura: Hello, I get: warning: connect #3 to subsystem private/hash: No such file or directory You have configured a hash: LOOKUP TABLE where Postfix expects a SERVICE NAME (such as a content filter or policy service). Use ls -lt to find out what Postfix config files you have

Re: cannot connect to mysql. Too many conections.

2009-05-08 Thread Wietse Venema
Ray: Hello, System is FreeBSD 7.0, postfix 2.6.2, mysql storage of user info, amvisd-new, and dovecot for authentication and pop/imap. postconf -n at end of post. Just Yesterday I started receiving a lot of warning: connect to mysql server localhost: Too many connections (Sample log

Re: Multiple relay destinations

2009-05-08 Thread Wietse Venema
Patrick Saweikis: We are now trying to incorporate a way to create redundancy on the relay end, so currently we may just have the transport map set to smtp:[10.1.1.7] and are trying to find a way to tell it that if it cannot relay to the transport_maps location, try this other. I

Re: Multiple relay destinations

2009-05-08 Thread Wietse Venema
Victor Duchovni: On Fri, May 08, 2009 at 01:45:25PM -0400, Wietse Venema wrote: Patrick Saweikis: We are now trying to incorporate a way to create redundancy on the relay end, so currently we may just have the transport map set to smtp:[10.1.1.7] and are trying to find

Re: Is it possible to not bounce after smtp?

2009-05-08 Thread Wietse Venema
Curtis: I'm building a spam filtering appliance using Postfix. We will be making every effort to reject invalid recipient addresses at SMTP time, but since we will not always be made aware when an email box on a final destination server is no longer valid, we'd like to disable all bouncing

Re: Is it possible to not bounce after smtp?

2009-05-08 Thread Wietse Venema
Curtis: What I'd prefer to do here is have the bounces held for customer review so that they can realize that they've got an email address that isn't delivering and fix the problem on their end. Sorry, that does not work. Even my two-user domain sometimes gets thousands of email messages a

Re: cannot connect to mysql. Too many conections.

2009-05-09 Thread Wietse Venema
LuKreme: On 8-May-2009, at 10:31, Wietse Venema wrote: Short reply: s/mysql/proxy:mysql/ Is there any reason to *NOT* do this? I mean, should you use proxy: every time you use a mysql lookup? It adds latency. This is not a problem for high-concurrency services such as smtpd. It is bad

Re: Is it possible to not bounce after smtp?

2009-05-09 Thread Wietse Venema
Curtis: Companies that provide out-sourced email filtering service often don't have up-to-date recipient lists. Instead they verify addresses in real-time. ?The Postfix implementation of this is described in http://www.postfix.org/ADDRESS_VERIFICATION_README.html. ?It supports routing

Re: Is it possible to not bounce after smtp?

2009-05-10 Thread Wietse Venema
Curtis: [ Charset ISO-8859-1 unsupported, converting... ] On Sat, May 9, 2009 at 7:38 PM, Wietse Venema wie...@porcupine.org wrote: Curtis: Companies that provide out-sourced email filtering service often don't have up-to-date recipient lists. Instead they verify addresses in real-time

Re: Multiple SMTP relay servers with 1:1 inbound/outbound IP mapping

2009-05-11 Thread Wietse Venema
Justin Peters: Greetings, I have several Postfix implementations successfully handling outbound mail relay directly to the Internet. These servers handle mail individually; one physical server relays for all outbound mail for domainA.com, another for domainB.com, etc. All servers have

Re: Transport Maps Ignored After Upgrade

2009-05-11 Thread Wietse Venema
Eric Cunningham: that to continue working, I'm now hearing that I must specifically list sanguine.whoi.edu somewhere in my postfix configs. That's not unreasonable, but let's now extend this example to another 250 hosts that are in a similar situation. I must now specifically find, list

Re: how to debug a restriction class not matching?

2009-05-12 Thread Wietse Venema
Len Conrad: I've got a restriction class client_filter.class, which has several PCREs. The problem is that some PTRs that should be shunted into that class are not. When I test/paste actual maverick PTRs, eg this access net PTR: postmap -q 79-70-88-236.as9105.com[

Postfix version 2.6.0 available

2009-05-12 Thread Wietse Venema
Postfix stable release 2.6.0 is available. After Postfix was declared complete with version 2.3, the focus has moved towards improving the code/documentation, and updating it for changing environments. - Multi-instance support introduces a new postmulti(1) command to create/add/remove/etc.

always_add_missing_headers (was: Postfix version 2.6.0 available)

2009-05-12 Thread Wietse Venema
Reinaldo de Carvalho: On Tue, May 12, 2009 at 10:17 AM, Wietse Venema wie...@porcupine.org wrote: - Postfix no longer adds (Resent-) From:, Date:, Message-ID: or To: ?headers to email messages with remote origins (these are origins ?that don't match $local_header_rewrite_clients). Adding

Postfix legacy releases 2.5.7, 2.4.11 and 2.3.17

2009-05-12 Thread Wietse Venema
Postfix legacy releases 2.5.7, 2.4.11 and 2.3.17 contain fixes that were already included with Postfix versions 2.6 and 2.7. Postfix 2.5.7: - (low) The installation/upgrade procedure did not automatically create the data_directory. - (medium) In the new queue manager, the

Re: Controlling bounces by domain

2009-05-12 Thread Wietse Venema
Gary Smith: Hello, (this may come twice send I sent it once prior to confirming subscription to group -- sorry) We encountered a couple problems with our blackberry and other users when people on our exchange server setup forwards. Typically we forward a lot of email to technicians in

Re: Unable to compile Postfix 2.6 on Ubuntu 2.10 or CentOS 5.2

2009-05-13 Thread Wietse Venema
David Touzeau: Dear I'm trying to compile Postfix 2.6 on Ubuntu 2.10 or CentOS 5.2 with the following arguments: make tidy /usr/bin/make makefiles CCARGS= -DMAX_DYNAMIC_MAPS -DHAS_PCRE -DMYORIGIN_FROM_FILE -D_LARGEFILE_SOURCE -D_FILE_OFFSET_BITS=64 -DHAS_LDAP -DHAS_SSL

Re: Unable to compile Postfix 2.6 on Ubuntu 2.10 or CentOS 5.2

2009-05-13 Thread Wietse Venema
Wietse Venema: David Touzeau: /usr/bin/make makefiles CCARGS= -DMAX_DYNAMIC_MAPS -DHAS_PCRE -DMYORIGIN_FROM_FILE -D_LARGEFILE_SOURCE -D_FILE_OFFSET_BITS=64 -DHAS_LDAP -DHAS_SSL -I/usr/include/openssl -DUSE_SASL_AUTH -I/usr/include/sasl -DUSE_CYRUS_SASL -DUSE_TLS DEBUG= AUXLIBS=-lssl

Re: postfix as a content filter for certain domain

2009-05-13 Thread Wietse Venema
David Zejda: -- Start of PGP signed section. Hello, there is a Postfix running for several local and virtual domains now, some messages are stored locally in maildirs, some are being aliased somwehere else, according to alias map. Postfix is configured to filter mails through Spammassassin

Re: Proxying a policy service

2009-05-13 Thread Wietse Venema
J Sloan: Adrian Overbury wrote: Has anyone ever written a proxy server for policy services? I have a policy server (grossd, one of the best greylisting engines I've ever used) that, if it goes down, causes my Postfix servers to temp fail everything with 'Server configuration problem'.

Re: Postfix-2.6.0 RPM

2009-05-13 Thread Wietse Venema
Victor Duchovni: On Wed, May 13, 2009 at 04:07:39PM -0600, Just E. Mail wrote: I noticed that Postfix V#2.6.0 is now out. Does anybody know where to get RPM files? GOOGLE did not help. If the purpose of using RPM files is to facilitate binary updates from distribution servers, wait

Re: problem with smtpd_milter and header_checks

2009-05-14 Thread Wietse Venema
Please include postconf -n command output in problem reports, as requested in the mailing list welcome message.

Re: postfix sasl (dovecot) works no more

2009-05-14 Thread Wietse Venema
wiseadmin: Hello everybody, I am running FreeBSD with postfix (2.6.0-RC2) and dovecot (1.1.11). There are virtual domains and users and postfix authenticates users using sasl and dovecot. Today I've performed a server upgrade (portupgrade -arRv) and sasl authentication works no more. It

Re: problem with smtpd_milter and header_checks

2009-05-14 Thread Wietse Venema
Jiri Veselsky: [ Charset ISO-8859-2 unsupported, converting... ] Hallo all. (first sorry for my english) I have a small (big) problem with configure Postfix to drop messages with header_checks. In main.cf I have: smtpd_milters = local:/./clamav-milter.sock

Re: postfix sasl (dovecot) works no more

2009-05-14 Thread Wietse Venema
wiseadmin: May 14 14:35:11 softexp postfix/smtpd[8378]: warning: SASL: Connect to smtpd failed: No such file or directory You need to update your main.cf:smtpd_sasl_path setting and specify the location of the socket that the Dovecot server listens on. For example, when dovecot.conf says:

Re: kill ip from bootnets and zombi (shell script)

2009-05-15 Thread Wietse Venema
LuKreme: On 14-May-2009, at 17:29, mouss wrote: LuKreme a _crit : I think I have it all sussed out, except there doesn_t seem to be an init script installed under FreeBSD. because fail2ban works on freebsd? I meant a script to start fail2ban, like in rc.d (init.d in Linux). Am I

Re: ETRN

2009-05-15 Thread Wietse Venema
Victor Duchovni: On Fri, May 15, 2009 at 12:29:00PM +0200, Teun Vink wrote: Hi, I'm trying to find a nice solution for the following problem: we offer backup MX facilities for many customer domains. For this, we have a number of mailservers (currently 5). An F5 loadbalancer

Re: Question about postfix log system

2009-05-18 Thread Wietse Venema
Giovanni Mancuso: Hi to all, i have a question about postfix logging system. The normal logging system, print in a log file the message-id of email: May 18 04:02:14 fe postfix/cleanup[28007]: 4507B1E8621: message-id=20090518020214.4507b1e8...@fe.example.org Can I configure my postfix

Re: milter-greylist: smfi_getsymval failed for {i} In postfix 2.6

2009-05-18 Thread Wietse Venema
David Touzeau: Dear I have installed Postfix 2.6 in order to run milters addons In postfix 2.5, milter-greylist claim : milter-greylist: smfi_getsymval failed for {if_addr}

Re: SRS or RPR in Postfix

2009-05-18 Thread Wietse Venema
Yves Kreis: Dear, Is it (technically) possible to implement SRS or RPR in Postfix using either a milter plugin or a policy? Does anyone know of such an implementation? Postfix 2.6.0 (stable release) and later support sender address replacement by milter plugins. You're welcome to give

Re: empty subject, empty body, from: Postfix After-Queue Content Filter...

2009-05-18 Thread Wietse Venema
Robert Lopez: A new email gateway I am building is sending email with empty subject, empty body, and the internal from starts with Postfix After-Queue Content Filter:. You need to undo your changes one by one until you find the one that causes the problem. Wietse

Re: RFC 1918 -v- Postfix

2009-05-19 Thread Wietse Venema
Steve: I've recently noticed that my Postfix is being a naughty bunny. It is attempting to query my ISP nameserver to reverse resolve LAN addresses defined in my_networks. There are many errors in that statement. 1) Postfix does not send DNS queries to your ISP, or to anyone else. 2) The

Re: RFC 1918 -v- Postfix

2009-05-19 Thread Wietse Venema
Steve: DNS for local queries. It's wierd that it only happens with reverse lookups from Postfix. I can't see why nothing else does this, just postfix and PTR. You have turned on the chroot feature for smtpd in master.cf, but you have not provided the proper name service files in the

Re: getting around warning: Illegal address syntax

2009-05-19 Thread Wietse Venema
Security Admin (NetSec): I have a network device that I am trying to have logs sent to my mail server via my postfix mail gateway. When trying to send a test e-mail I get the following error in my maillog file: postfix/smtpd[17063]: warning: Illegal address syntax from

Re: Fwd: empty subject, empty body, from: Postfix After-Queue Content Filter...

2009-05-19 Thread Wietse Venema
Robert Lopez: This is one of a few problem areas in main.cf I have found. They all seem to involve at lease the syntax of parameter assignment. The following is from working email gateways running postfix 2.2.10. The value of the assignment consists of tokens separated by commas and by

Re: time stamp changes in the queue'

2009-05-19 Thread Wietse Venema
tom lee: Hello, I want to find out if there is a mail in the queue for two days using find command. However, creation time for the mails under /var/spool/postfix/deferred/ is always about 40 minutes ahead of my local time, I also noticed that the time stamp for the mails in the queue

Re: time stamp changes in the queue'

2009-05-19 Thread Wietse Venema
tom lee: Is there a better way or command to find out queued mails more than 2 days old instead of using find to search /var/spool/postfix/deferred/ Can you describe the problem, instead of the solution (locate file older than N days)? I need to write a script to scan the queue to

Postfix 2.6.1 available (file corruption)

2009-05-19 Thread Wietse Venema
Postfix stable release 2.6.1 fixes one defect in Milter support. This does not affect Postfix versions 2.5 and earlier. - Queue file corruption under very specific conditions: (smtpd_milters or non_smtpd_milters) enabled, AND delay_warning_time enabled, AND mail delivery delays, AND short

Re: Disable content_filter

2009-05-20 Thread Wietse Venema
Simon Schelkshorn: Hi, I'm having a postfix installation that uses spamassassin for content filtering. Therefore I have in my master.cf smtp inet n - n - 75 smtpd -o content_filter=postfixfilter and postfixfilter unix -n n -

Re: time stamp changes in the queue'

2009-05-20 Thread Wietse Venema
tom lee: Postfix WILL send the delayed mail notification to the email SENDER. If I set delay_warning_time for 2 day, can I see the to-be-sent mail in the queue /var/spool/postfix/deferred? Another issue is that my sever blocked out-going port 25, it only allows incoming port 25 in my

Re: verify recepients and smtp cache.

2009-05-21 Thread Wietse Venema
There is no mails in queue, which fail to delivered. Messages to already known/verified addreses delivered normal to backend servers. But verify often fails with error Recipient address rejected: unverified address: lost connection with mail.xxx[x.x.x.x] while receiving the initial server

Re: delivery notification

2009-05-21 Thread Wietse Venema
Dr.Pesko: Nope, I need option which can enable auto DSN report about sent messages and will send it to another mailbox. Is it possible in postfix? Thanks. This is not an MTA feature. It is sometimes found in MUAs, as save a copy of my sent emails. Wietse

Re: delivery notification

2009-05-21 Thread Wietse Venema
Steve: On Thu, 2009-05-21 at 12:17 -0400, Wietse Venema wrote: Dr.Pesko: Nope, I need option which can enable auto DSN report about sent messages and will send it to another mailbox. Is it possible in postfix? Thanks. This is not an MTA feature. It is sometimes found in MUAs

Re: OT: Multiple Queues

2009-05-21 Thread Wietse Venema
Steve: The real question I guess I am asking - is it possible to have three instances of Postfix running on the same box, listening on different ports, with separate queue directories? Actually, it would be more accurate to ask HOW someone would implement this and what benefits it could give

Re: modifying sender address of forwarded mails

2009-05-21 Thread Wietse Venema
Radim Roska: Hi, I have an imap server where users can set to forward their mails to personal mails..but our main smtp server does not allow to send mails with not allowed sender address. Forwarded emails have sender address that is mostly not allowed (because its address of any sender from

Re: time stamp changes in the queue'

2009-05-21 Thread Wietse Venema
tom lee: [ Charset ISO-8859-1 unsupported, converting... ] On Wed, May 20, 2009 at 5:36 PM, Wietse Venema wie...@porcupine.org wrote: tom lee: postqueue -p and mailq doesn't display the queued mails sorted based on the arrival time. Why can't you let the mail system work FOR you

Re: Consistent Entry Stuck in Queue

2009-05-22 Thread Wietse Venema
Carlos Williams: 206.212.244.102 does not accept SMTP connections. Either the host is firewalled, or the host is down, or it is not reachable for other reasons. % telnet 206.212.244.102 smtp Trying 206.212.244.102... telnet: connect to address 206.212.244.102: Operation timed out

Re: time stamp changes in the queue'

2009-05-22 Thread Wietse Venema
tom lee: One more thing, I have MAILDIR set to an external storage server which Postfix has no MAILDIR setting. sorry, I am talking about home_mailbox, it looks that if home_mailbox not available, the mail will go to the default mail_spool_directory. Please show actual evidence that

Re: time stamp changes in the queue'

2009-05-22 Thread Wietse Venema
tom lee: procmail: Error while writing to /Users/username/Maildir/ The error message says PROCMAIL. This is the POSTFIX mailing list. Wietse

Re: How to safely re-inject an archived queue file?

2009-05-22 Thread Wietse Venema
Curtis: We're not manually creating them, these are archived queue files that were pulled from the hold queue, and then later released by being dropped into the maildrop queue (using the technique discussed earlier in this thread). This is safe only when the maildrop queue is stopped, that is,

Re: how to bypass milters, whitelist hosts

2009-05-23 Thread Wietse Venema
martin f krafft: also sprach Sahil Tandon sa...@tandon.net [2009.05.23.0037 +0200]: Why are *_checks and *_milters not end-of-data restrictions, or better yet, policy services? One example: 1.2.3.4 is rejected in an access(5) table referenced in smtpd_client_restrictions. Why wait

Re: Impossible to send mail using SSL for SMTP connection.

2009-05-23 Thread Wietse Venema
Sthu Pous: [14:59:19] ESMTP EHLO localhost [14:59:20] ESMTP 250-myhost.org [14:59:20] ESMTP 250-PIPELINING [14:59:20] ESMTP 250-SIZE 3072 [14:59:20] ESMTP 250-VRFY [14:59:20] ESMTP 250-ETRN [14:59:20] ESMTP 250-AUTH PLAIN LOGIN [14:59:20] ESMTP 250-AUTH=PLAIN LOGIN [14:59:20] ESMTP

Re: Impossible to send mail using SSL for SMTP connection.

2009-05-23 Thread Wietse Venema
Wietse Venema: Sthu Pous: [14:59:19] ESMTP EHLO localhost [14:59:20] ESMTP 250-myhost.org [14:59:20] ESMTP 250-PIPELINING [14:59:20] ESMTP 250-SIZE 3072 [14:59:20] ESMTP 250-VRFY [14:59:20] ESMTP 250-ETRN [14:59:20] ESMTP 250-AUTH PLAIN LOGIN [14:59:20] ESMTP 250-AUTH=PLAIN

Re: Version 2.5.5

2009-05-23 Thread Wietse Venema
Scott Haneda: I have a test server about ready to become a live server, version 2.5.5. Is it correct that prior to the 2.6 release, that 2.5.7 would be the latest I want to run? Unlike other products, you are not expected to stop using Postfix version X when Postfix version X+1 is

Re: Version 2.5.5

2009-05-23 Thread Wietse Venema
Scott Haneda: On May 23, 2009, at 5:10 PM, Wietse Venema wrote: Scott Haneda: I have a test server about ready to become a live server, version 2.5.5. Is it correct that prior to the 2.6 release, that 2.5.7 would be the latest I want to run? Unlike other products, you

Re: How to resend a message?

2009-05-24 Thread Wietse Venema
lists.postfix-us...@duinheks.nl: Hello, I typed the address in a message wrong. Pine copied ot to the sendmail folder anyway. But postfix saw the message that the address was wrong and put it in the mailq. (Fair enough). Question is: can I resnd the message with the correct address and if

Re: header/body_checks as end-of-data checks (was: how to bypass milters, whitelist hosts)

2009-05-25 Thread Wietse Venema
martin f krafft: also sprach Wietse Venema wie...@porcupine.org [2009.05.23.1442 +0200]: Before making architectural recommendations, it would help to step back into the reality of how policy servers and milters work. For one thing, policy servers don't handle message content

Re: message_size_limit,

2009-05-25 Thread Wietse Venema
Trigve: May 23 00:00:52 mailwork postfix/sendmail[73012]: fatal: [MAIL OMITTED](5003): message file too big No MTA, including Postfix, sends bounce messages for mail that it does not accept. Wietse

Re: Temporary return code on address lookup error

2009-05-25 Thread Wietse Venema
Per olof Ljungmark: Our MX's use a LDAP directory to lookup valid addresses. Now, if this directory for some reason becomes temporarily unavailable, postfix will return a 5xx error for ALL incoming messages. Sorry, that is a well-known bug in YOUR SYSTEM LIBRARY. Postfix uses the SYSTEM

Re: Temporary return code on address lookup error

2009-05-25 Thread Wietse Venema
Per olof Ljungmark: [ Charset ISO-8859-1 unsupported, converting... ] Wietse Venema wrote: Per olof Ljungmark: Our MX's use a LDAP directory to lookup valid addresses. Now, if this directory for some reason becomes temporarily unavailable, postfix will return a 5xx error for ALL

Re: Temporary return code on address lookup error

2009-05-26 Thread Wietse Venema
Per olof Ljungmark: Wietse Venema wrote: Per olof Ljungmark: In our view Postfix should not respond with 5xx when it cannot contact the LDAP servers. This is not a fault with Postfix at all, it is us that What evidence exists that POSTFIX contacts the LDAP server? May 26 12:53:59

Re: sender_dependent_relayhost_maps

2009-05-26 Thread Wietse Venema
Jose kojima: it i have 200 virtual ips, i need do 200 postmulti instaces ? Why do you need different SOURCE ip addresses. Wietse

Re: NetBSD 5

2009-05-27 Thread Wietse Venema
J.D. Bronson: I noticed that postfix doesn't recognize NetBSD 5: This is as far as makedefs goes.. makedefs: NetBSD.4*) SYSTYPE=NETBSD4 as a test, I did this: makedefs: NetBSD.5*) SYSTYPE=NETBSD4 and it compiled just fine. Postfix will recognize NetBSD 5 after it has been

Re: smtp_sasl_mechanism_filter doesn't wok

2009-05-27 Thread Wietse Venema
Zero Zeibov: I try to limit auth mech in postfix 2.6.1 on FreeBSD 6.4. For this I've added to main.conf: smtp_sasl_mechanism_filter = plain, login Read carefully. AS DOCUMENTED, this applies to the Postfix SMTP CLIENT. Wietse But simple test by telnet shows following:

Re: How to safely re-inject an archived queue file?

2009-05-27 Thread Wietse Venema
Curtis: Wietse: Curtis: This is safe only when the maildrop queue is stopped, that is, 1) No submissions with the Postfix sendmail command while these files are in the maildrop directory, otherwise mail will be lost. I'm still trying to understand why mail would

Re: How to safely re-inject an archived queue file?

2009-05-27 Thread Wietse Venema
Victor Duchovni: the same time. If postsuper (which runs durin reload) is to be allowed to race against your code, your mode 0700 file names have to match the usual Postfix hex file names: usec-5-hex-digitsinode-hex-digits this is an undocumented interface, so you have to be willing

Re: How to safely re-inject an archived queue file?

2009-05-27 Thread Wietse Venema
Victor Duchovni: On Wed, May 27, 2009 at 02:25:24PM -0400, Wietse Venema wrote: Victor Duchovni: the same time. If postsuper (which runs durin reload) is to be allowed to race against your code, your mode 0700 file names have to match the usual Postfix hex file names: usec-5

Re: How to safely re-inject an archived queue file?

2009-05-27 Thread Wietse Venema
Wietse Venema: The Postfix queue is designed to be a short-term message store where files can be located quickly based on their name alone. I don't think it is a good idea to re-purpose this design for routine long-term storage of messages waiting for approval, or to break the design

Re: How to safely re-inject an archived queue file?

2009-05-27 Thread Wietse Venema
The Postfix queue is designed to be a short-term message store where files can be located quickly based on their name alone. I don't think it is a good idea to re-purpose this design for routine long-term storage of messages waiting for approval, or to break the design by making file locations

Re: myhostname is different between postconf and main.cf

2009-05-27 Thread Wietse Venema
Tim Legg: According to 'postconf -d', myhostname is set to genex.localdomain where g -enex is an arbitrary name I chose for a hostname when I installed Debian Len -ny. As documented, postconf -d does not show what is in main.cf. When I look in /etc/postfix/main.cf, myhostname =

Re: How to safely re-inject an archived queue file?

2009-05-27 Thread Wietse Venema
Curtis: In the mean time, it seems like using doing postsuper -r to re-activate old queue files would be a good alternative. Hopefully that resolves the expiration cycle issue that is caused when you inject a queue file directly into the maildrop queue? If that's postsuper -r from hold queue

Re: Sender address rewrite

2009-05-27 Thread Wietse Venema
Ausmus, Matt: Hello all, This is my first post. I'm using postfix 2.3.3 on some Centos 5.x boxes strictly to send mail for alerting purposes. I've got relaying setup to go to our main smtp server which is running FreeBSD 6.x and postfix. What I'm trying to do is for the outgoing messages

<    1   2   3   4   5   6   7   8   9   10   >