Re: Invalid warning list domain in BOTH mydestination and virtual_mailbox_domains
On Aug 2, 2010, at 3:59 am, Phill Macey wrote: On 2 August 2010 10:10, Lefteris Tsintjelis le...@asda.gr wrote: This warning does not make any sense at all since there is no such thing listed in mydestination. Any ideas? postfix/trivial-rewrite[7525]: warning: do not list domain mx.asda.gr in BOTH mydestination and virtual_mailbox_domains # postconf | grep mydest mydestination = localhost.asda.gr, localhost What about 'postconf | grep virtual_mailbox_domains'. I will not be able to answer your question but it might be useful for other people to know. # postconf | grep virtual_mailbox_domains virtual_mailbox_domains = proxy:mysql:$config_directory/maps/virtual_mailbox_domains.mysql # postmap -q mx.asda.gr mysql:/etc/postfix/maps/virtual_mailbox_domains.mysql mx.asda.gr It is listed as should. The weird thing is that the warning shows up rarely in the logs, maybe something like once a day.
sqlite driver and centos
(Looks like my previous letters has been failed to deliver. so I resend it) Due version of sqlite in CentOS5 last snapshots 20100618 and alter does not compile with next error: dict_sqlite.c:71:2: error: #error Your SQLite version is too old dict_sqlite.c: In function 'dict_sqlite_lookup': dict_sqlite.c:203: warning: implicit declaration of function 'sqlite3_prepare_v2' make: *** [dict_sqlite.o] Error 1 make: *** [update] Error 1 error: Bad exit status from /var/tmp/rpm-tmp.38770 (%build) RPM build errors: Bad exit status from /var/tmp/rpm-tmp.38770 (%build) I use postfix with sqlite patch about 2 years with small fix to function name. I suggest to make something like this for postfix 2.8. Or maybe check sqlite version at compile time and use ifdef's. Original Message Subject: [SPAM] Re: [Fwd: postfix sqlite patch.] Date: Wed, 12 Mar 2008 10:09:22 +0100 From: Axel Steiner a...@treibsand.com To: xxx Hi, Yeah, looks like where is no such function in CentOS 5.1 version of sqlite. strings /usr/lib/libsqlite3.so | grep prepare sqlite3_prepare sqlite3_prepare16 # grep prepare /usr/include/sqlite3.h | grep int int sqlite3_prepare( int sqlite3_prepare16( ... I'm very far away C/Cxx programming. Can you, please, say, can function be safely replaced with sqlite3_prepare or sqlite3_prepare16 ? From the whishes to your very good idea of patch - include some documentaion with requirements (INSTALL, README). yes. It should work, use sqlite3_prepare(). The function arguments are the same. This patch has no SQLite version check, because I don't wanted to support deprecated functions. This is the only function which is not present in SQLite versions prior 3.3.9. Manpages and documentation are on my todo list :-) That's the only stuff which is missing. Axel
Re: starttls testing
imap2:~ root# telnet localhost 25 Trying ::1... telnet: connect to address ::1: Connection refused Trying 127.0.0.1... Connected to localhost. Escape character is '^]'. 220 imap2.beth.k12.pa.us ESMTP Postfix EHLO imap2.beth.k12.pa.us 250-imap2.beth.k12.pa.us 250-PIPELINING 250-SIZE 20971520 250-VRFY 250-ETRN 250-STARTTLS 250 8BITMIME Okay, no AUTH line in the EHLO response so authentication is not supported. Perphaps you can try the postfix version in darwinports: http://postfix.darwinports.com/ It has support for postfix (2.6.x) with the following variants: add pcre support add tls support via openssl add sasl support via cyrus-sasl2 add ldap support via openldap add mysql support via mysql5 add postgresql support via postgresql83 add Dovecot SASL support Regards
Postfix order of operations
Hi, I can't find info (or I don't know the right query), but I would like to know some order of operations. Fore example, when mail arrives, postfix will do: 1. Take a look at local alias maps (if there is a match it will ...) 2. Take a look at virtual_alias_maps (if there is a match it will ...) 3. . and so on. Is there any doc of this kind? :)
Re: sqlite driver and centos
On 8/2/2010 5:18 AM, subscri...@viliar.net.ru wrote: I use postfix with sqlite patch about 2 years with small fix to function name. I suggest to make something like this for postfix 2.8. Or maybe check sqlite version at compile time and use ifdef's. You might like this from the archives... http://archives.neohapsis.com/archives/postfix/2010-06/0539.html
Re: sqlite driver and centos
On Mon, 02 Aug 2010 09:02:41 -0400, Brian Evans - Postfix List grkni...@scent-team.com wrote: On 8/2/2010 5:18 AM, subscri...@viliar.net.ru wrote: I use postfix with sqlite patch about 2 years with small fix to function name. I suggest to make something like this for postfix 2.8. Or maybe check sqlite version at compile time and use ifdef's. You might like this from the archives... http://archives.neohapsis.com/archives/postfix/2010-06/0539.html Thank you. Do you think I should re-post it in that thread? I didn't find there any relevant posts to this problem.
Re: reject unknown hosts
On 8/1/2010 10:49 PM, Edward avanti wrote: On Mon, Aug 2, 2010 at 9:45 AM, Edward avanti edward.ava...@gmail.com mailto:edward.ava...@gmail.com wrote: SNIP In 4.x.x above me, the sender are known to us, his hostname presented exist, but no PTR RR (he is get fixed but take time), it is we prefer to 5xx, so he and others like him not wait 5 days to find mail never went, I was think unknown_client_reject_code = 550 would be this solve, but not? Anyway to have this so? It appear from more investigation this cause is SERVFAIL always send 4xx, can postifx override to 5xx with setting for SERVFAIL ? Why in the world would you want to 5xx reject on temporary errors? Postfix would be insane to offer such an option. You will lose legit mail anytime there is a DNS hiccup. If you don't care about losing legit mail, you can use a check_client_access table and reject clients named unknown, or use an external policy service. http://www.postfix.org/SMTPD_POLICY_README.html -- Noel Jones
control error behavior, into deferred queue instead of rejected
Hi there, I implemented my own mail processor (Java program processing mails), and defined my transport for that. The problem is if my Java program throws an exception, the mail is rejected and back to the sender. What I want is for it to go to the deferred queue. How can I do that? Either direct the mail to the deferred queue in Java program or instruct Postfix to do that, so that it can be retried later? Thanks, Yan Confidentiality Notice: The information contained in this electronic transmission is confidential and may be legally privileged. It is intended only for the addressee(s) named above. If you are not an intended recipient, be aware that any disclosure, copying, distribution or use of the information contained in this transmission is prohibited and may be unlawful. If you have received this transmission in error, please notify us by telephone (513) 229-5500 or by email (postmas...@medplus.com). After replying, please erase it from your computer system.
Re: Postfix order of operations
On 8/2/2010 5:29 AM, Pavel Dimow wrote: Hi, I can't find info (or I don't know the right query), but I would like to know some order of operations. Fore example, when mail arrives, postfix will do: 1. Take a look at local alias maps (if there is a match it will ...) 2. Take a look at virtual_alias_maps (if there is a match it will ...) 3. . and so on. Is there any doc of this kind? :) http://www.postfix.org/OVERVIEW.html
RE: control error behavior, into deferred queue instead of rejected
Solved my problem by having my transport returning appropriate error code. Confidentiality Notice: The information contained in this electronic transmission is confidential and may be legally privileged. It is intended only for the addressee(s) named above. If you are not an intended recipient, be aware that any disclosure, copying, distribution or use of the information contained in this transmission is prohibited and may be unlawful. If you have received this transmission in error, please notify us by telephone (513) 229-5500 or by email (postmas...@medplus.com). After replying, please erase it from your computer system.
restrict relay server to the Internet
hi all! I've a postfix server with a network table of around 100 IP addresses (net/host), is there a way to explicitly permit the relaying to the Internet from some of these IPs and others not? thanks in advance. Cuidar la naturaleza es vivir mejor... hag?moslo juntos. Imprime s?lo lo necesario. La informaci?n transmitida en este mensaje est? destinada ?nicamente a la persona o entidad a la cual el mismo est? dirigido, y puede contener material confidencial, reservado o sujeto al secreto profesional. Cualquier revisi?n, retransmisi?n, divulgaci?n u otro uso de la misma, o la realizaci?n de cualquier acci?n basada en ella por personas o entidades distintas de la indicada, no est? permitida. Si usted ha recibido este mensaje por error, tenga la amabilidad de destruirlo, sin copiarlo ni divulgar su contenido. Muchas gracias. The information contained in this message is directed exclusively to the person or entity to whom the message is addressed, and it might contain information that is confidential, privileged or otherwise legally exempt from disclosure. Any action based on it, performed by an individual or entity different from the one it was intended, is not allowed and its contents should not be read, forwarded, disclosed, or used in any other way. If you have received it by mistake please delete it from your system, you should also not copy the message nor disclose its contents to anyone. Thank you.
Re: control error behavior, into deferred queue instead of rejected
On 8/2/2010 10:04 AM, Zhou, Yan wrote: Hi there, I implemented my own mail processor (Java program processing mails), and defined my transport for that. The problem is if my Java program throws an exception, the mail is rejected and back to the sender. What I want is for it to go to the deferred queue. How can I do that? Either direct the mail to the deferred queue in Java program or instruct Postfix to do that, so that it can be retried later? Thanks, Yan Either arrange for your java program to exit with a temporary error or you can add -o soft_bounce=yes to that transport entry in master.cf. -- Noel Jones
Re: sqlite driver and centos
subscri...@viliar.net.ru: On Mon, 02 Aug 2010 09:02:41 -0400, Brian Evans - Postfix List grkni...@scent-team.com wrote: On 8/2/2010 5:18 AM, subscri...@viliar.net.ru wrote: I use postfix with sqlite patch about 2 years with small fix to function name. I suggest to make something like this for postfix 2.8. Or maybe check sqlite version at compile time and use ifdef's. You might like this from the archives... http://archives.neohapsis.com/archives/postfix/2010-06/0539.html Thank you. Do you think I should re-post it in that thread? I didn't find there any relevant posts to this problem. Especially if you can also post concrete code for solving this. Otherwise, the Postfix xqlite driver is unlikely to change. Wietse
Re: restrict relay server to the Internet
Hi! On Mon, Aug 2, 2010 at 10:57 AM, Jorge Andrea G Carminati jcarmin...@pluspetrol.net wrote: hi all! I've a postfix server with a network table of around 100 IP addresses (net/host), is there a way to explicitly permit the relaying to the Internet from some of these IPs and others not? thanks in advance. Yes, there is, but I would suggest that you use user authentication, as it would be more secure. As for exactly how to do it, take a good read at the docs (no time for a complete answer right now). Maybe someone else will give it, maybe myself when I get a little more of free time. Ildefonso. Cuidar la naturaleza es vivir mejor... hagámoslo juntos. Imprime sólo lo necesario. La información transmitida en este mensaje está destinada únicamente a la persona o entidad a la cual el mismo está dirigido, y puede contener material confidencial, reservado o sujeto al secreto profesional. Cualquier revisión, retransmisión, divulgación u otro uso de la misma, o la realización de cualquier acción basada en ella por personas o entidades distintas de la indicada, no está permitida. Si usted ha recibido este mensaje por error, tenga la amabilidad de destruirlo, sin copiarlo ni divulgar su contenido. Muchas gracias. The information contained in this message is directed exclusively to the person or entity to whom the message is addressed, and it might contain information that is confidential, privileged or otherwise legally exempt from disclosure. Any action based on it, performed by an individual or entity different from the one it was intended, is not allowed and its contents should not be read, forwarded, disclosed, or used in any other way. If you have received it by mistake please delete it from your system, you should also not copy the message nor disclose its contents to anyone. Thank you.
Rewrite header - Postfix and mailman
Hi, I'm trying to set Mailman 2.1.9 to handle multiple domains. 9? I have apply the patch from http://nxsy.org/139.html and this way I have a list called mydomain.com-list. The issue is that if I'm posting to mydomain.com-l...@mydomain.com everything seems to work fine. However, when posting to l...@mydomain.com the mail is set to quarantine. I have tried to rewrite the address on postfix (using alias) to match mydomain.com-list, but it still doesn't work. I have also tried with canonical and smtp_generic_maps setting them as: l...@mydomain.com mydomain.com-l...@mydomain.com However mailman is still complaining with Message has implicit destination and the mail arrives at mailman with the l...@mydomain.com. I want to make any mail with this address arriving at mailman as mydomain.com-l...@mydomain.com? Any idea how can I make it working? I'm using postfix with virtual domains, mysql and mailman with postfix-to-mailman.py Any help is more than appreciated!! TA Jorge P.S.: If you require further info, just tell me. I'm really desperate.
Re: Postfix order of operations
ok, I will jump from skyscraper later Thank you. :) On Mon, Aug 2, 2010 at 5:10 PM, Noel Jones njo...@megan.vbhcs.org wrote: On 8/2/2010 5:29 AM, Pavel Dimow wrote: Hi, I can't find info (or I don't know the right query), but I would like to know some order of operations. Fore example, when mail arrives, postfix will do: 1. Take a look at local alias maps (if there is a match it will ...) 2. Take a look at virtual_alias_maps (if there is a match it will ...) 3. . and so on. Is there any doc of this kind? :) http://www.postfix.org/OVERVIEW.html
Re: Invalid warning list domain in BOTH mydestination and virtual_mailbox_domains
On Aug 2, 2010, at 10:47 am, Lefteris Tsintjelis wrote: On Aug 2, 2010, at 3:59 am, Phill Macey wrote: On 2 August 2010 10:10, Lefteris Tsintjelis le...@asda.gr wrote: This warning does not make any sense at all since there is no such thing listed in mydestination. Any ideas? postfix/trivial-rewrite[7525]: warning: do not list domain mx.asda.gr in BOTH mydestination and virtual_mailbox_domains # postconf | grep mydest mydestination = localhost.asda.gr, localhost What about 'postconf | grep virtual_mailbox_domains'. I will not be able to answer your question but it might be useful for other people to know. # postconf | grep virtual_mailbox_domains virtual_mailbox_domains = proxy:mysql:$config_directory/maps/virtual_mailbox_domains.mysql # postmap -q mx.asda.gr mysql:/etc/postfix/maps/virtual_mailbox_domains.mysql mx.asda.gr It is listed as should. The weird thing is that the warning shows up rarely in the logs, maybe something like once a day. I believe I found a way to always reproduce the same invalid warning by sending an email to myself from an unauthorized server: Logs: Aug 3 01:43:50 mx postfix/smtpd[28245]: connect from rosebud.otenet.gr[83.235.67.42] Aug 3 01:43:50 mx postfix/smtpd[28245]: NOQUEUE: filter: RCPT from rosebud.otenet.gr[83.235.67.42]: rosebud.otenet.gr[83.235.67.42]: Client host triggers FILTER dspam:dspam; from=le...@asda.gr to=le...@asda.gr proto=ESMTP helo=rosebud.otenet.gr Aug 3 01:43:51 mx postfix/smtpd[28245]: 047F426A093: client=rosebud.otenet.gr[83.235.67.42] Aug 3 01:43:51 mx postfix/cleanup[28390]: 047F426A093: message-id=201008022243.o72mgw9f027...@rosebud.otenet.gr Aug 3 01:43:51 mx dkim-filter[12507]: 047F426A093 external host rosebud.otenet.gr attempted to send as asda.gr Aug 3 01:43:51 mx dkim-filter[12507]: 047F426A093 rejected per sender domain policy Aug 3 01:43:51 mx postfix/cleanup[28390]: 047F426A093: milter-reject: END-OF-MESSAGE from rosebud.otenet.gr[83.235.67.42]: 5.7.1 rejected due to DKIM ADSP evaluation; from=le...@asda.gr to=le...@asda.gr proto=ESMTP helo=rosebud.otenet.gr Aug 3 01:43:51 mx postfix/trivial-rewrite[28372]: warning: do not list domain mx.asda.gr in BOTH mydestination and virtual_mailbox_domains Aug 3 01:43:51 mx postfix/smtpd[28245]: NOQUEUE: filter: RCPT from rosebud.otenet.gr[83.235.67.42]: rosebud.otenet.gr[83.235.67.42]: Client host triggers FILTER dspam:dspam; from= to=le...@asda.gr proto=ESMTP helo=rosebud.otenet.gr Aug 3 01:43:51 mx postfix/smtpd[28245]: 1144D26A093: client=rosebud.otenet.gr[83.235.67.42] Aug 3 01:43:51 mx postfix/smtpd[28245]: 1144D26A093: reject: END-OF-MESSAGE from rosebud.otenet.gr[83.235.67.42]: 550 5.5.3 END-OF-MESSAGE: End-of-data rejected: Multi-recipient bounce; from= to=le...@asda.gr proto=ESMTP helo=rosebud.otenet.gr Aug 3 01:43:51 mx postfix/cleanup[28390]: 1144D26A093: message-id=201008022243.o72mhp9f027...@rosebud.otenet.gr Aug 3 01:43:51 mx postfix/smtpd[28245]: disconnect from rosebud.otenet.gr[83.235.67.42] # dig txt _adsp._domainkey.asda.gr ; DiG 9.7.0-P1 txt _adsp._domainkey.asda.gr ;; global options: +cmd ;; Got answer: ;; -HEADER- opcode: QUERY, status: NOERROR, id: 51964 ;; flags: qr aa rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 3, ADDITIONAL: 3 ;; QUESTION SECTION: ;_adsp._domainkey.asda.gr. IN TXT ;; ANSWER SECTION: _adsp._domainkey.asda.gr. 172800 IN TXT dkim=discardable
Re: reject unknown hosts
Halo Noel, On Tue, Aug 3, 2010 at 12:37 AM, Noel Jones njo...@megan.vbhcs.org wrote: It appear from more investigation this cause is SERVFAIL always send 4xx, can postifx override to 5xx with setting for SERVFAIL ? Why in the world would you want to 5xx reject on temporary errors? Postfix would be insane to offer such an option. You will lose legit mail anytime there is a DNS hiccup. Because in some case it is better to tell sender there is problem now, not them think mail delivered and 5 day later find out it not. We know the risk, have done this with all our sendmail farm for many many year with only one ever problem We trust our multiple DNS, but accept cant trust senders. If you don't care about losing legit mail, you can use a check_client_access table and reject clients named unknown, sorry for english but I think you mean ; unknown571 We cannot accept your mails for no known DNS I not see unknown as special keyword but for lack of knowledge are try now. or use an external policy service. http://www.postfix.org/SMTPD_POLICY_README.html We thought use milter-regex, but this mean full duplicate all whitelist since postfix not work like sendmail and honor access list in class, we try check_client_access now to see if work well under recipient check, since we want to whitelist some no PTR in earlier check we think not to put in client or sender restrictions group. Thaks for advice.
