On 6/12/2023 4:59 PM, Viktor Dukhovni via Postfix-users wrote:
On Mon, Jun 12, 2023 at 04:43:42PM -0700, Asai via Postfix-users wrote:
We have a situation where we want certain company groups to only be able
to email others in their group.
Isn't each user a member of "their group?
I've
allow users to email
themselves without breaking the restrictions.
I've been trying (and failing) to work around this, but I've not
succeeded yet.
Can anyone offer some advice on the best way to make this work?
Thanks,
Asai
___
Postfix-users mailing
that all legitimate email services, like
Outlook.com for example, are going to be using a submission service and
not sending directly over port 25, and that blocking port 25 on outgoing
connections will not interfere with normal email delivery?
--
Asai
is
connecting to the server.
Can someone advise as to what area of debugging we can turn on? There's
a lot of info in debugging, and we can't turn it all on at once, so we
could use some specifics.
Thanks for your insights here.
--
Asai
to allow clients you should enable ports submission (587) and submissions
(465) in master.cf.
Thanks for your reply. We are already doing that. The main question is
just what will break if we allow TLS only. Do you have any experience
with this?
Thank you,
Asai
operability?
Or, does anyone have any better general guidelines for hardening Postfix?
Thank you,
Asai
Thank you, Gerald, Ralph, and Paolo, I will try this.
Greetings,
Is it possible to determine the Mail User Agents in use via logging in
Postfix and / or Dovecot?
Thanks,
Asai
se options affect SMTP authentication over port 587?
HAproxy does not interfere with SMTP AUTH, it just passes bits.
You want to disable nginx SMTP AUTH support so that Postfix will
do it. nginx can do SMTP AUTH but that is only good for logging.
Excellent, thank you.
--
Asai
With Nginx XClient, would it also work to install this on a VM and have
it handling incoming SMTP email traffic from the WAN while not affecting
LAN SMTP traffic?
Do either of these options affect SMTP authentication over port 587?
Thank you,
Asai
this
limitation? Is reverse DNS lookup essential? Or is there another way?
Thanks,
--
Asai
lists.
Please email me directly with replies.
--
Asai
Use a HASH table before implementing this in SQL.
/etc/postfix/main.cf:
transport_maps =
hash:/etc/postfix/transport ..whatever you already have...
/etc/postfix/transport:
u...@test.comsmtp:[the old machine]
# postmap hash:/etc/postfix/transport
# postfix reload
# postmap
The following uses two transport maps and no changes in
relay_recipient_maps:
Assuming that both machines will accept mail for every
user@the-domain-in-question:
- One transport map on the new machine, that sends mail for
non-migrated user@the-domain-in-question to the old machine.
- One
email from the old to the new
Postfix server on a per user basis, if so, what are some good options?
Thank you,
Asai
3.36.0-1.el6base
72 k
Asai
Greetings,
We have many iOS clients, andomain.net some report that they’re having problems
with iOS mail copying messages to their Sent folder. This happens 2 - 3 times
per day, and the phone just says Sending and the client never knows if it
sends. Client says apparently email DOES go out,
> On Jan 30, 2018, at 9:21 AM, Matus UHLAR - fantomas <uh...@fantomas.sk> wrote:
>
> On 30.01.18 08:55, Asai wrote:
>> I'm running into an issue with a mailbox that also has aliases assigned to
>> it.
>
> please avoid HTML mail.
>> e.g. u...@d
al_mailbox_maps = mysql:/etc/postfix/mysql_virtual_mailbox_maps.cf
virtual_minimum_uid = 1001
virtual_transport = dovecot
virtual_uid_maps = static:1001
--
--
Asai
Network and Systems Administrator
GLOBAL CHANGE MEDIA
http://globalchange.media <http://globalchange.media/>
Tucson, AZ
has been very difficult to figure out, but before I dive head
first into debugging, I’m wondering if there have been any known issues with
iOS that have been addressed in later versions of Postfix?
Asai
.[18;19;20]*-2
list.dnswl.org=127.0.[0..255].0*-2
list.dnswl.org=127.0.[0..255].1*-3
list.dnswl.org=127.0.[0..255].2*-4
list.dnswl.org=127.0.[0..255].3*-5
Am 25.12.2014 um 23:24 schrieb Asai:
We have a real spam problem for some users, and this seems to be really
tough spam to block. I have
cbl.abuseat.org,
reject_rhsbl_sender dbl.spamhaus.org,
reject_rhsbl_sender rhsbl.sorbs.net,
permit
I would be grateful for any advice here and if anyone could share their
experience.
Thanks!
--
--asai
/mysql_restricted_recipients.cf
Can someone point me in the right direction?
Thanks.
--
--Asai
to
smtpd_relay_restrictions, and it seems to work. Does anyone see a
problem with this?
--Asai
On 6/25/14 8:51 AM, Asai wrote:
Greetings,
I've worked out how to restrict intra-office sending from a user to a
user, but I'm a bit stumped on how to restrict intra-office receiving;
restricting from who
On 6/8/13 9:09 AM, DTNX Postmaster wrote:
On Jun 8, 2013, at 17:16, Asai a...@globalchangemusic.org wrote:
On 6/7/2013 4:26 PM, DTNX Postmaster wrote:
The Mail.app applications on iOS (iPhones or iPads) or OS X will
attempt to autodetect the port to connect to; 25, 465, and 587. It
works just
On 6/17/13 1:13 PM, Wietse Venema wrote:
Asai:
After investigating this issue further, it looks like there might be
something I'm missing regarding postscreen. My reasoning for this is
yesterday a client said she couldn't send email. I looked at her phone
and the postfix logs and could see
On 6/17/13 1:13 PM, Wietse Venema wrote:
Asai:
After investigating this issue further, it looks like there might be
something I'm missing regarding postscreen. My reasoning for this is
yesterday a client said she couldn't send email. I looked at her phone
and the postfix logs and could see
Asai:
After investigating this issue further, it looks like there might be
something I'm missing regarding postscreen. My reasoning for this is
yesterday a client said she couldn't send email. I looked at her phone
and the postfix logs and could see that her IP address was being
rejected
On 06/18/2013 12:15 AM, Asai wrote:
Would it follow then that I should remove the
smtp_sasl_mechanism_filter from main.cf? Would that be causing
clients to try to connect via port 25 even though they're set to
connect to 587?
...what makes you think these things are related in any way
Asai:
After investigating this issue further, it looks like there might be
something I'm missing regarding postscreen. My reasoning for this is
yesterday a client said she couldn't send email. I looked at her phone
and the postfix logs and could see that her IP address was being
rejected
So, it's the iPhone which is self-assertively trying to connect to port 25
regardless of what it's explicitly set to?
Works fine for me. I very much doubt your iPhone in question is actually set to
use 587 only. IIRC, that is not the default.
-- Larry Stone
Sent from my iPhone
OK, so
On 6/7/2013 4:26 PM, DTNX Postmaster wrote:
On Jun 8, 2013, at 00:47, Noel Jones njo...@megan.vbhcs.org wrote:
On 6/7/2013 3:28 PM, Asai wrote:
Greetings,
We're starting to incorporate iPhone users into our email system.
Sometimes we seem to be having trouble with mail being delayed
virtual_minimum_uid = 1001
virtual_transport = dovecot
virtual_uid_maps = static:1001
--
--Asai
Asai:
Greetings,
Trying to send email from an iPad which fails consistently. I'm trying
to send via port 587, TLS (self-signed cert, which is installed on
iPad). iPad tells me that Password authentication isn't supported.
smtpd_sasl_auth_enable = yes
smtpd_sasl_exceptions_networks
:08 triata postfix/smtpd[32648]: disconnect from
unknown[192.168.50.2]
--
Asai
= mysql:/etc/postfix/mysql_virtual_mailbox_maps.cf
virtual_minimum_uid = 1001
virtual_transport = dovecot
virtual_uid_maps = static:1001
--
Asai
* Asai a...@globalchangemusic.org:
Greetings,
I am having some issues which I don't understand fully, and I'm
hoping you can point out to me what I'm doing wrong here.
I have a client who's using Windows 7 phone, and she's unable to send
mail due to Spamhaus blocking her 'direct-to-mx' IP
On 8/20/2012 1:49 PM, Reindl Harald wrote:
Am 20.08.2012 22:41, schrieb Asai:
Thanks, I thought that may be that case, and unfortunately there doesn't seem
to be any way in the Windows 7 phone
configuration to manually set the port it's connecting to. Although I do have
it set to use SSL
time entries are showing up normally, except for this kind of entry.
Does anyone have any insight here?
--
--asai
On 3/2/2011 3:14 PM, mouss wrote:
Le 02/03/2011 21:51, Asai a écrit :
Greetings,
Every so often in the maillogs I see something like this:
Mar 2 20:43:12 triata postfix/smtpd[14482]: disconnect from
unknown[127.0.0.1]
This was taken from about 10 minutes ago. The odd thing here is the
time
On 3/2/2011 2:24 PM, /dev/rob0 wrote:
On Wed, Mar 02, 2011 at 01:51:25PM -0700, Asai wrote:
Every so often in the maillogs I see something like this:
Mar 2 20:43:12 triata postfix/smtpd[14482]: disconnect from
unknown[127.0.0.1]
This was taken from about 10 minutes ago. The odd thing here
On 3/2/2011 3:43 PM, Victor Duchovni wrote:
On Wed, Mar 02, 2011 at 03:37:44PM -0700, Asai wrote:
smtpinet n - n - - smtpd
587 inet n - n - - smtpd
127.0.0.1:10025 inet n - y
Thanks to everyone for the priceless advice.
Greetings,
In the logs I have been seeing many attempts made to send messages to
gmail which seem like there's spam being sent from my server. In the
logs I see this:
Dec 24 00:05:11 triata amavis[29729]: (29729-06) Passed CLEAN,
apa...@triata.globalchangemultimedia.net -
Jeroen Geilman wrote:
On 07/03/2010 09:14 PM, Charles Marcus wrote:
On 2010-07-02 7:20 PM, Asai wrote:
OK. Has anyone successfully been able to work around this issue?
The only way is to have the admin for the CISCO PIX disable the stupid
smtp fixup garbage on the CISCO box.
As far
Jeroen Geilman wrote:
On 07/03/2010 11:20 PM, Asai wrote:
Jeroen Geilman wrote:
On 07/03/2010 09:14 PM, Charles Marcus wrote:
On 2010-07-02 7:20 PM, Asai wrote:
OK. Has anyone successfully been able to work around this issue?
The only way is to have the admin for the CISCO PIX disable
/postfix/mysql_virtual_domains_maps.cf
virtual_mailbox_limit = 0
virtual_mailbox_maps = mysql:/etc/postfix/mysql_virtual_mailbox_maps.cf
virtual_minimum_uid = 1001
virtual_transport = dovecot
virtual_uid_maps = static:1001
--
asai
Eero Volotinen wrote:
2010/7/2 Asai a...@globalchangemusic.org:
Greetings,
For some reason, which I don't know how to figure out, our emails to this
one specific email domain are being refused. Can anyone point me in the
right direction? Here's an example of the log:
Jul 2 09:33:10
Sahil Tandon wrote:
On Fri, 2010-07-02 at 13:41:06 -0700, Asai wrote:
For some reason, which I don't know how to figure out, our emails to
this one specific email domain are being refused. Can anyone point
me in the right direction? Here's an example of the log:
Jul 2 09:33:40 triata
Gary Chambers wrote:
Asai,
Eero, can you please elaborate on this? I don't follow you.
Nice servers with cisco pix smtp fixout enabled.
Eero is asserting that the mail server to which you are trying to
connect is behind a Cisco PIX/ASA firewall. Those devices have a
known bug
Greetings,
I'm using Postfix with MySQL, and am trying to restrict certain users to
send and receive from my network only. I have had marginal success with
this using a MySQL query.
In the MySQL table, these users have 'local_only' in the smtp_access
column, all other users have 'Y' in
Hi,
Trying to set up SPF on Postfix, using 2.3. However, I'm not finding
libexec/postfix/smtpd-policy.pl
anywhere on my server. Can someone point me to where I might be able to
find this?
--
--asai
with the passwords
that dovecot uses
Ah, OK, I think this clarifies it for me. Thank you!
--
--asai
online which clearly outlines this, and the documentation
is often over my head. Can anyone here answer this? Thank you.
--asai
Magnus Bäck wrote:
On Thursday, March 26, 2009 at 21:48 CET,
Asai a...@globalchangemusic.org wrote:
From /var/log/maillog, one example of the problem:
Mar 26 11:58:18 triata postfix/smtpd[25357]: NOQUEUE: reject: RCPT from
unknown[63.229.177.226]: 554 5.7.1 recipi...@domain.com
Although I dislike Eudora for various reasons, my users want it. So now
I'm trying to figure out why one user can send to our local domains, but
cannot relay to Gmail. This is not a problem on a client like
Thunderbird. Any insights? Thanks.
--
asai
virtual_mailbox_base = /vmail
virtual_mailbox_domains = mysql:/etc/postfix/mysql_virtual_domains_maps.cf
virtual_mailbox_limit = 0
virtual_mailbox_maps = mysql:/etc/postfix/mysql_virtual_mailbox_maps.cf
virtual_minimum_uid = 1001
virtual_uid_maps = static:1001
Wietse Venema wrote:
Asai:
Although
LuKreme wrote:
On 26-Mar-2009, at 13:57, Asai wrote:
My apologies, I hope this is of assistance.
LOGS of the eudora user tring to send to gmail.
And don't top-post.
From /var/log/maillog, one example of the problem:
Mar 26 11:58:18 triata postfix/smtpd[25357]: NOQUEUE: reject: RCPT from
Greetings,
Recently this error was reported from a user:
Your reverse DNS entry does not resolve. (in reply to RCPT TO command))
She was sending from Thunderbird through our SMTP server using an email
alias.
Can anyone explain why this would happen?
--
asai
Greetings,
I had a SSL Certificate which expired on Dec. 3. I made a new cert and
pointed main.cf to the new cert, and restarted, but for whatever reason,
my Thunderbird keeps wanting to pick up the old cert. Any insights?
--
asai
Found it. It was a Dovecot problem.
Asai wrote:
Greetings,
I had a SSL Certificate which expired on Dec. 3. I made a new cert
and pointed main.cf to the new cert, and restarted, but for whatever
reason, my Thunderbird keeps wanting to pick up the old cert. Any
insights?
--
asai
[80.247.227.180] refused to talk to me: 554 mx4.fr.wmint.net ESMTP
not accepting messages
I don't know if the two are related. Does anyone have any insight
they'd be willing to share?
--
asai
Duane Hill wrote:
On Fri, 31 Oct 2008, Asai wrote:
Greetings. I've got this log entry over the past few days at the
same time I've been getting this
really strange spam from worldswidedomainnames.com. This entry is
appearing 50 or 60 times per day
in the logs:
1 Oct 30 18:59:19 triata
Charles Marcus wrote:
On 10/31/2008 12:37 PM, Charles Marcus wrote:
On 10/31/2008, Asai ([EMAIL PROTECTED]) wrote:
smtpd_sender_restrictions = permit_sasl_authenticated, permit_mynetworks,
reject_non_fqdn_sender, reject_unknown_sender_domain, permit
I do believe
Brian Evans - Postfix List wrote:
Charles Marcus wrote:
On 10/31/2008, Asai ([EMAIL PROTECTED]) wrote:
smtpd_sender_restrictions = permit_sasl_authenticated, permit_mynetworks,
reject_non_fqdn_sender, reject_unknown_sender_domain, permit
I do believe this makes you
John Peach wrote:
On Fri, 31 Oct 2008 18:09:37 + (UTC)
Duane Hill [EMAIL PROTECTED] wrote:
Responding to the original message...
On Fri, 31 Oct 2008, Asai wrote:
[snip]
They may be having issues or you may be on their private blacklist.
worldswidedomainnames.com isn't
Asai [EMAIL PROTECTED] wrote:
John Peach wrote:
On Fri, 31 Oct 2008 18:09:37 + (UTC)
Duane Hill [EMAIL PROTECTED] wrote:
Responding to the original message...
On Fri, 31 Oct 2008, Asai wrote:
[snip]
They may be having issues or you may
with the reverse DNS there. I checked the IP
address and it's in China, so it's definitely not one of our users. Can
anyone tell me how to interpret this, and to plug any holes which might
be allowing this?
--
asai
] -
[EMAIL PROTECTED], Message-ID:
[EMAIL PROTECTED], mail_id: SULYJRvIb9wQ,
Hits: -0.479, size: 25777, queued_as: 3299FFD8047, 9828 ms
Noel Jones wrote:
Asai wrote:
Greetings,
In the server log files I got back this morning, I see in the records
this entry:
1Unknown
1
69 matches
Mail list logo