Re: Upgrade postfix 2.11 to 3.1

The upgrade to 3.1 was uneventful. I noticed you don't need to select an option for Dovecot.  Nice work.  As an FYI, I ran the online DROWN test without blocking SSLv2 but using the updated openssl. No DROWN issue detected. Apologies for the top post due to use of a smartphone.    Original

Re: SOLVED: Re: mail sent via sendmail is queued and delayed for approx. 300 seconds

On Thu, Mar 03, 2016 at 11:31:50AM +0100, Dietrich Streifert wrote: > And here is the solution: > > I had to explicitely tell the smtp proxy to NOT use tls by specifying > > -o smtpd_use_tls=no > -o smtp_use_tls=no > -o smtpd_tls_security_level=none > -o

Re: main.cf and postfix reload

Makes sense.. Thanks a lot Noel, i owe you a beer! :-) David. On Thu, 3/3/16, Noel Jones wrote: Subject: Re: main.cf and postfix reload To: postfix-users@postfix.org Date: Thursday, March 3, 2016, 7:38 PM On 3/3/2016

Re: main.cf and postfix reload

On 3/3/2016 12:06 PM, Pedro David Marco wrote: > Thanks a lot Noel!! > > what you say makes sense but then i should have seen some "reload" or > "restart" messages in the log, right?? but there was not any indication! :-( > > Thanks! The replacing of old processes with new processes during

Re: Mitigating DROWN

On Thu, Mar 03, 2016 at 05:14:30PM +0100, Marc Patermann wrote: > Am 01.03.2016 um 18:16 Uhr schrieb Viktor Dukhovni: > > >Some of the servers that expose TLS to cross-protocol DROWN attacks > >via SSLv2 are MTAs running Postfix. If you're using an older > >Postfix release (released prior to

Re: Mitigating DROWN

On Thu, Mar 03, 2016 at 09:03:55AM -0600, Blake Hudson wrote: > Viktor Dukhovni wrote on 3/1/2016 11:16 AM: > ># Suggested, not strictly needed: > ># > >smtpd_tls_exclude_ciphers = > > EXPORT, LOW, MD5, SEED, IDEA, RC2 > >smtp_tls_exclude_ciphers = > > EXPORT, LOW,

Re: main.cf and postfix reload

Thanks a lot Noel!! what you say makes sense but then i should have seen some "reload" or "restart" messages in the log, right?? but there was not any indication! :-( Thanks! David. On Thu, 3/3/16, Noel Jones wrote:

Re: Upgrade postfix 2.11 to 3.1

Matthias Fechner: > Does this mean, I do not have to modify anything in the config? > Regarding the page http://www.postfix.org/COMPATIBILITY_README.html > postfix would log explicit lines if I have to touch anything. Wietse: > If you don't want those lines to be logged, set the parameter >

Re: main.cf and postfix reload

On 3/3/2016 11:07 AM, Pedro David Marco wrote: > Hello everybody... > > i have added a line like this: > > > recipient_bcc_maps = hash:/etc/postfix/recipient_bcc > > > to my main,.cf file and postfix has suddenly started trying to use it!! > > i did NOT execute a "postfix" reload" !!! is

main.cf and postfix reload

Hello everybody... i have added a line like this: recipient_bcc_maps = hash:/etc/postfix/recipient_bcc to my main,.cf file and postfix has suddenly started trying to use it!! i did NOT execute a "postfix" reload" !!! is this normal?? Thanks! David.

Re: Upgrade postfix 2.11 to 3.1

I hate to bug you gurus, but can you guys mention which config file parameters go in, that is main or master. I simply don't know postfix that well, and RTFMing requires knowing which document to read. I've been hesitant to upgrade to postfix 3 given that everything is working on 2.11, but the

Re: Mitigating DROWN

Viktor, Am 01.03.2016 um 18:16 Uhr schrieb Viktor Dukhovni: Some of the servers that expose TLS to cross-protocol DROWN attacks via SSLv2 are MTAs running Postfix. If you're using an older Postfix release (released prior to July 20 2015), or you've explicitly configured TLS settings that may

Re: Mitigating DROWN

Is the following reasonable and/or acceptable, and a better question - will it work? smtp_dns_support_level = dnssec smtp_tls_security_level = dane smtp_tls_ciphers = medium smtp_tls_exclude_ciphers = EXPORT, LOW, IDEA, 3DES, MD5, SRP, PSK, aDSS, kECDHe, kECDhr, kDHd, kDHr, SEED, IDEA, RC2,

Re: Mitigating DROWN

Viktor Dukhovni wrote on 3/1/2016 11:16 AM: # Suggested, not strictly needed: # smtpd_tls_exclude_ciphers = EXPORT, LOW, MD5, SEED, IDEA, RC2 smtp_tls_exclude_ciphers = EXPORT, LOW, MD5, aDSS, kECDHe, kECDHr, kDHd, kDHr, SEED, IDEA, RC2 I noticed your exclude

Re: how to configure smtp process to use all the destination (s) in one go

Andrea Borghi: > On Thursday 03 March 2016 13:22:51 Wietse Venema wrote: > > > I need to configure Postfix (version , latest on debian jessie/stable) > > > and in turn its smtp client in a manner that *for specific sources* it > > > send all the message in one go, expliciting *all* the

Re: Mysql Lookup table

What do the two tables look like? Can you use a SQL 'JOIN' or 'LEFT JOIN'? What is the 'WHERE' criteria? Bill On 3/3/2016 8:34 AM, Peter Sørensen wrote: Hi, Would it be possible to make a query from 2 tables in the mysql lookup Specifying this in additional_conditions ? Regards Peter

Re: Postfix - accept all mail

On 2 Mar 2016, at 12:29, Peter wrote: I am getting "Recipient address rejected: User unknown in local recipient table" all the time, even though I have "local_recipient_maps =" (empty) in my main.cf. Despite having these facts in one sentence, you don't see the direct relationship?

Re: Mysql Lookup table

it all depends on the 'mysql lookup file' you're using. This one with 'select_field' and 'additional_conditions' is somehow very little flexible. But there's other format which can also be used and, you'll see, is MUCH more flexible, allowing you to really specify your query and, inside

Mysql Lookup table

Hi, Would it be possible to make a query from 2 tables in the mysql lookup Specifying this in additional_conditions ? Regards Peter Sørensen/University of Southern Denmark email: mas...@sdu.dk

Re: SOLVED: Re: mail sent via sendmail is queued and delayed for approx. 300 seconds

Thank you Christian for clarifying this. It seems that the obsoleted parameters survived somehow several migrations since ancient times Regards Dietrich Am 03.03.2016 um 12:01 schrieb Christian Kivalo: On 2016-03-03 11:31, Dietrich Streifert wrote: And here is the solution: I had to

Re: how to configure smtp process to use all the destination (s) in one go

On Thursday 03 March 2016 13:22:51 Wietse Venema wrote: > > I need to configure Postfix (version , latest on debian jessie/stable) > > and in turn its smtp client in a manner that *for specific sources* it > > send all the message in one go, expliciting *all* the recpipients also > > in the smtp

Re: Upgrade postfix 2.11 to 3.1

Matthias Fechner: > Does this mean, I do not have to modify anything in the config? > Regarding the page http://www.postfix.org/COMPATIBILITY_README.html > postfix would log explicit lines if I have to touch anything. If you don't want those lines to be logged, set the parameter (relayhost, or

Re: how to configure smtp process to use all the destination (s) in one go

Andrea Borghi: > Hello! > > I need to configure Postfix (version , latest on debian jessie/stable) and > in > turn its smtp client in a manner that *for specific sources* it send all the > message in one go, expliciting *all* the recpipients also in the smtp dialog > with the remote server.

Re: question concerning : 250 mail queued ...

Peter S?rensen: > Hi, > > I have a mysql table where an email aliase maps to a list of email adresses. > The table is updated with address info just before an email is sent to the > list alias name. > > Can I be sure that when the ?250 mail queue for delivery ?? is received from > The postfix

Re: how to configure smtp process to use all the destination (s) in one go

On Thursday 03 March 2016 13:09:42 Andrea Borghi wrote: excue me, i forgot. Using Postfix 2.11.3-1 as distributed with debian jessie (stable) Andrea

how to configure smtp process to use all the destination (s) in one go

Hello! I need to configure Postfix (version , latest on debian jessie/stable) and in turn its smtp client in a manner that *for specific sources* it send all the message in one go, expliciting *all* the recpipients also in the smtp dialog with the remote server. On other words, if i have a

question concerning : 250 mail queued ...

Hi, I have a mysql table where an email aliase maps to a list of email adresses. The table is updated with address info just before an email is sent to the list alias name. Can I be sure that when the “250 mail queue for delivery …” is received from The postfix MTA then all address information

Upgrade postfix 2.11 to 3.1

Dear all, with postfix 3.1 some settings have changed and I'm not sure if I have to touch my config. I only see the following messages: Mar 3 11:51:54 server postfix[75578]: Postfix is running with backwards-compatible default settings Mar 3 11:51:54 server postfix[75578]: See

Re: SOLVED: Re: mail sent via sendmail is queued and delayed for approx. 300 seconds

On 2016-03-03 11:31, Dietrich Streifert wrote: And here is the solution: I had to explicitely tell the smtp proxy to NOT use tls by specifying -o smtpd_use_tls=no -o smtp_use_tls=no -o smtpd_tls_security_level=none -o smtp_tls_security_level=none where it seems

SOLVED: Re: mail sent via sendmail is queued and delayed for approx. 300 seconds

And here is the solution: I had to explicitely tell the smtp proxy to NOT use tls by specifying -o smtpd_use_tls=no -o smtp_use_tls=no -o smtpd_tls_security_level=none -o smtp_tls_security_level=none where it seems that simply setting smtpd_use_tls and

Re: mail sent via sendmail is queued and delayed for approx. 300 seconds

Hi Viktor, thank you for the script I will run it asap on the server. Meanwhile I think the problem is the following: I'm running a smtp_proxy_filter on localhost:10024 as described in http://postfix.cs.utah.edu/SMTPD_PROXY_README.html smtp inet n - n - -