Barney, Thanks for your quick response.
On 05/07/09 19:45, Barney Desmond wrote: > 2009/7/5 paul sorenson <new...@metrak.com>: >> Logs and more background can be found at: >> http://metrak.com/tmp/postfix-local.txt > > It's generally advisable to include this information in your email - > for the sake of the archives, but it removes the external dependency. > The level of detail on your linked page is good, excepting the > "verbose" logging (generally unwanted except on request). I tried to paste the text but my email client wrapped everything into a godawful mess. > My LDAP and NSS-fu is weak, but I have a couple of ideas. > >> My Fedora 11 postfix installation won't recognise local recipients. It >> appears only to deliver to users found in /etc/passwd, those in the ldap >> directory are treated as "unknown users". On Fedora 10, same hardware, >> same postfix configuration, I did not have this problem. > > Did you upgrade the configuration between installations? (I've no idea > what the version difference is between F10 and F11, and whether you've > copied in the files verbatim). > http://www.postfix.org/postfix.1.html I used a graphical merge program to check my old config against the new (there were no changes - maybe some comment lines). I have since hacked the config slightly so they are no longer identical. >> Initially, smptd rejected the mail, then with some help of folk on >> #postfix, I added ldap to local_recipient_maps but now the local process >> bounces these as "unknown users". >> >> Any suggestions on: >> >> a) How I could configure postfix to get around this >> >> b) Simple tests to establish this as a fedora issue (rule out postfix) > > "config #1 default local_recipient_maps": > LDAP isn't included, so you get "unknown user in local recipient table". That's fair enough except that it used to work and I thought the /etc/pam.d/smtp would take care of it. > "# config #2 modified "local_recipient_maps ="": (I assume you meant > double quotes there, ie. empty value > By my reading, that disables local recipient verification entirely - > http://www.postfix.org/LOCAL_RECIPIENT_README.html > Mail is accepted for a local domain, then bounces because delivery fails. correct > "config #3 modified local_recipient_maps modified to use ldap: > local_recipient_maps = unix:passwd.byname > ldap:/etc/postfix/ldap-aliases.cf": > I believe that's correct. As it's still bouncing, it sounds like a > problem in the "local" agent, which you've provided logging for. I'm > personally stuck here, but I expect someone else has seen this problem > before. > >> "The command "getent passwd <user>" returns the expected values for both >> users. However >> "postmap -q <user> unix:passwd.byname" returns a result only for user pms. > > This is expected - postmap doesn't exactly emulate how Postfix does > the lookups. Specifically, postfix will lookup all the necessary > tables, but manually invoking postmap queries only tests exactly what > you ask. You should get a result if you run `postmap -q bells > ldap:/etc/postfix/ldap-aliases.cf`. I expect that you do, given that > you're not getting the "unknown user in local recipient table" error. [r...@homer pam.d]# postmap -q bells ldap:/etc/postfix/ldap-aliases.cf bells > Does removing procmail as the mailbox_command help? Does the "bells" > user's mailspool already exist? (for systems with locally-maintained > users, it's usually created at useradd time) procmail removed - no change /var/mail/bells exists and writable by user and group mail.
