Re: DNS IP <-> domain <-> IP2 unblocking

On Fri, 3 Jun 2016, Noel Jones wrote: On 6/3/2016 6:39 PM, Homer Wilson Smith wrote: The following main.cf, thanks to Noel, blocks mail whose DNS is misconfigured as follows. 1.) IP -> nothing 2.) IP -> domain -> nothing 3.) IP -> domain -> IP2 It accepts only

Re: AW: Possible Bug ? postfix 3.1.0-3 fails on mysql table lookup

John Fawcett: > here is my proposed submission to add mysql stored procedure support to > Postfix. As per Wietse's comments in the following thread Thanks much. I'll examine it in the crumbs of available time. Wietse

Re: AW: Possible Bug ? postfix 3.1.0-3 fails on mysql table lookup

On 07/04/2016 09:58 PM, j...@conductive.de wrote: > > Quoting John Fawcett : >> I can propose a code submission to add stored procedure support (based >> on the proof of concept code from 2008), but the biggest part will be >> doing the testing and non regression testing not

Re: Time based config options

* Alex Bryant : > Was looking for the best strategy for implementing time based config file > options. > > > For instance, implement the following from 8-9:00 am and 4-5:00 pm only: > > virtual_alias_maps = pcre:/etc/postfix/virtual_alias_maps_regex_1 Create a cronjob.

Time based config options

Hi, Was looking for the best strategy for implementing time based config file options. For instance, implement the following from 8-9:00 am and 4-5:00 pm only: virtual_alias_maps = pcre:/etc/postfix/virtual_alias_maps_regex_1 Thank you, -A

Re: Somehow hacked?

On Wed, Jul 06, 2016 at 01:10:28PM -0500, SH Development wrote: > What I’m finding difficult is the lack of information in my logs > about this. I did a search on the message ID of one of the > messages. It shows multiple attempts of trying to deliver the > message (and nobody’s accepting),

Re: Somehow hacked?

On 6 Jul 2016, at 14:25, SH Development wrote: Ah…and maybe the light bulb just clicked on. Turns out the IP in question that is able to get through starts with 192 which is why it is the only one able to do this, maybe? Yeah, sure, maybe. Probably. Maybe there's something else involved.

Re: Somehow hacked?

On Wed, 6 Jul 2016 12:21:52 -0500 SH Development wrote: > Here’s a strange one. In my normal routine of glancing at the > maillog file, and subsequently the queue, I noticed several hundred > emails queued up, all with some bogus email variation on one of my >

Re: Address rewriting

Robert Fitzpatrick: > Jul 6 13:44:39 mx1 postfix/smtpd[74447]: NOQUEUE: reject: RCPT from > mail-dm3nam03on0135.outbound.protection.outlook.com[104.47.41.135]: 450 > 4.1.8 : Sender address rejected: Domain not > found; from= to=

Re: Somehow hacked?

On 2016-07-06 20:25, SH Development wrote: Ah…and maybe the light bulb just clicked on. Turns out the IP in question that is able to get through starts with 192 which is why it is the only one able to do this, maybe? why ask more ? postconf -d | grep mynetworks postconf -n | grep mynetworks

Re: Address rewriting

On Wed, Jul 06, 2016 at 02:10:29PM -0400, Robert Fitzpatrick wrote: > local_header_rewrite_clients = static:all > But from the logs > > Jul 6 13:44:39 mx1 postfix/smtpd[74447]: NOQUEUE: reject: RCPT from > mail-dm3nam03on0135.outbound.protection.outlook.com[104.47.41.135]: 450 > 4.1.8

Re: Somehow hacked?

On Wed, Jul 06, 2016 at 08:19:33PM +0200, Benny Pedersen wrote: > On 2016-07-06 20:11, SH Development wrote: > > >MX Toolbox shows we are NOT an open relay. > > >mynetworks = 192.0.0.0/8 > > openrelay ! Specifically, the correct RFC1918 address block is: 192.168.0.0/16 The OP has posted

Re: Somehow hacked?

Ah…and maybe the light bulb just clicked on. Turns out the IP in question that is able to get through starts with 192 which is why it is the only one able to do this, maybe? Jeff > On Jul 6, 2016, at 1:19 PM, Benny Pedersen wrote: > > On 2016-07-06 20:11, SH Development wrote:

Re: Somehow hacked?

On 2016-07-06 20:11, SH Development wrote: MX Toolbox shows we are NOT an open relay. mynetworks = 192.0.0.0/8 openrelay ! suggest fix is to NOT have mynetworks in main.cf eq let it be default, or setup properly

Re: Somehow hacked?

Emails were not from authenticated account, near as I can tell. In fact, I cannot find anywhere in the logs where that IP logged in. RBL shows the IP as blocked on multiple sites. MX Toolbox shows we are NOT an open relay. Is this what you’re asking for? mynetworks = 192.0.0.0/8

Re: Somehow hacked?

Wouldn’t restarting dovecot/postfix clear the connection and force the account to re-authenticate? Because I did that… Jeff > On Jul 6, 2016, at 12:35 PM, Ben Greenfield wrote: > > >> On Jul 6, 2016, at 1:21 PM, SH Development >> wrote: >> >>

Re: Somehow hacked?

> On Jul 6, 2016, at 12:50 PM, Michael D. Sofka wrote: > > On 07/06/2016 01:35 PM, Ben Greenfield wrote: >> >>> On Jul 6, 2016, at 1:21 PM, SH Development >>> wrote: >>> >>> Here’s a strange one. In my normal routine of glancing at the maillog

Re: Address rewriting

Wietse Venema wrote: Robert Fitzpatrick: local_header_rewrite_clients = static:all I'm looking for a way to rewrite by name from any client. My canonical maps work great for mynetworks, would like to apply the same type rewrite to any message... The above setting should enable canonical

Re: Somehow hacked?

On 07/06/2016 01:35 PM, Ben Greenfield wrote: On Jul 6, 2016, at 1:21 PM, SH Development wrote: Here’s a strange one. In my normal routine of glancing at the maillog file, and subsequently the queue, I noticed several hundred emails queued up, all with some

Re: Somehow hacked?

> On Jul 6, 2016, at 1:21 PM, SH Development > wrote: > > Here’s a strange one. In my normal routine of glancing at the maillog file, > and subsequently the queue, I noticed several hundred emails queued up, all > with some bogus email variation on one of my

Somehow hacked?

Here’s a strange one. In my normal routine of glancing at the maillog file, and subsequently the queue, I noticed several hundred emails queued up, all with some bogus email variation on one of my domains. So for instance: abj...@mydomain.com lwoei...@mydomain.com And so forth. I traced it

Re: Address rewriting

Robert Fitzpatrick: > local_header_rewrite_clients = static:all > > I'm looking for a way to rewrite by name from any client. My canonical > maps work great for mynetworks, would like to apply the same type > rewrite to any message... The above setting should enable canonical mapping for all

Re: majordomo + postifx + virtual domains + mysql... close

On 7/6/2016 11:10 AM, postmas...@quantum-radio.net wrote: @Norton Allen Thanks for that info. I thought it would do it. And, I was happy to hear that someone else has actually got it working :-) I have this now in main.cf alias_maps= hash:/etc/aliases alias_database= hash:/etc/aliases

Re: majordomo + postifx + virtual domains + mysql... close

postmas...@quantum-radio.net: mail for zeus.quantum-radio.net loops back to myself You need to add zeus.quantum-radio.net to the mydestination setting. http://www.postfix.org/BASIC_CONFIGURATION_README.html#mydestination Wietse

Re: Address rewriting

Wietse Venema wrote: Robert Fitzpatrick: I have been using canonical_maps for some time to map local addresses, but that doesn't seem to work for incoming mail. The message is coming from another Postfix server with the sender specified with the hostname of the machine See

Re: Address rewriting

Wietse Venema wrote: Robert Fitzpatrick: I have been using canonical_maps for some time to map local addresses, but that doesn't seem to work for incoming mail. The message is coming from another Postfix server with the sender specified with the hostname of the machine See

Re: check_recipient_access with ldap

On Wed, Jul 6, 2016 at 10:43 AM, Viktor Dukhovni wrote: > On Wed, Jul 06, 2016 at 09:44:19AM -0400, Il Neofita wrote: > > > I would like to transform this line > > check_recipient_access hash:/etc/postfix/hash_protectedDestinations > > > >

Re: majordomo + postifx + virtual domains + mysql... close

@Norton Allen Thanks for that info. I thought it would do it. And, I was happy to hear that someone else has actually got it working :-) I have this now in main.cf alias_maps= hash:/etc/aliases alias_database= hash:/etc/aliases All I have in the aliases file now is the majordomo aliases and

Re: check_recipient_access with ldap

On Wed, Jul 06, 2016 at 09:44:19AM -0400, Il Neofita wrote: > I would like to transform this line > check_recipient_access hash:/etc/postfix/hash_protectedDestinations > > /etc/postfix/ldap_protectedDestinationsHash: > testlistldap@ilneofita auth_testlistldap_only reject_list_only > > with

check_recipient_access with ldap

Hi I would like to transform this line check_recipient_access hash:/etc/postfix/hash_protectedDestinations /etc/postfix/ldap_protectedDestinationsHash testlistldap@ilneofita auth_testlistldap_only reject_list_only with this line check_recipient_access ldap:/etc/postfix/ldap_protectedDestinations

Re: Address rewriting

Robert Fitzpatrick: > I have been using canonical_maps for some time to map local addresses, > but that doesn't seem to work for incoming mail. The message is coming > from another Postfix server with the sender specified with the hostname > of the machine See

Address rewriting

I have been using canonical_maps for some time to map local addresses, but that doesn't seem to work for incoming mail. The message is coming from another Postfix server with the sender specified with the hostname of the machine Jul 6 08:35:34 mx1 postfix/smtpd[54573]: NOQUEUE: reject:

Re: majordomo + postifx + virtual domains + mysql... close

Well, I got that bit working easily enough, but I’ve given up on the whole thing. I can find no way of getting it all to work together. Unless I use the standard /etc/aliases file, which I can’t do, I can’t get it to work. It has to be able to run /usr/local/majordomo-1.94.5/wrapper