Re: body_checks with postscreen. Test works at blocking, but 'real mail' slips through?

Am 18.01.2016 um 23:21 schrieb bi...@sent.at: > So now when I send email with the test string in it it gets rejected, I get > this in the reject message > > : host mx.example.com[###.###.###.###] > said: 550 5.7.1 id=04518-01 - Rejected by next-hop MTA on

Re: body_checks with postscreen. Test works at blocking, but 'real mail' slips through?

Hi Wilfried > As i understand, amavis is putting the "from MTA(smtp > [127.0.0.1]:50100)" into the reject message. I assume, postfix can't > filter this message out, because it's all happening during the smtp > dialog, while getting the mail from sending outside server. You will > have to rewrite

Re: body_checks with postscreen. Test works at blocking, but 'real mail' slips through?

Save the message to a file. And test like this: % postmap -q - pcre:/etc/postfix/body_checks.pcre So does this. cat << EOF > /tmp/testfile TEST BAD CONTENT EOF postmap -q - pcre:/etc/postfix/body_checks.pcre You could use the message file from your imap server or look at the raw message

Re: body_checks with postscreen. Test works at blocking, but 'real mail' slips through?

On 1/18/2016 3:28 PM, bi...@sent.at wrote: > Hi Wietse > > On Mon, Jan 18, 2016, at 01:20 PM, Wietse Venema wrote: >> bi...@sent.at: >>> postconf -n | grep body_checks >>> body_checks = /etc/postfix/body_checks.pcre >> >> That's your problem. You have SPACE before body_checks. > > No sorry .

Re: body_checks with postscreen. Test works at blocking, but 'real mail' slips through?

* bi...@sent.at : > Hi Patrick > > Thanks for the reply. > > > To clarify: postscreen never sees a message body. It probes the client IP > > and > > fakes a few SMTP commands, but that's it. > > Ok, took me a couple of rereads, but it's not postscreen doing the check. > It's

Re: body_checks with postscreen. Test works at blocking, but 'real mail' slips through?

Hi Patrick Thanks for the reply. > To clarify: postscreen never sees a message body. It probes the client IP and > fakes a few SMTP commands, but that's it. Ok, took me a couple of rereads, but it's not postscreen doing the check. It's that postscreen is "part 1" of several checks. > The

Re: body_checks with postscreen. Test works at blocking, but 'real mail' slips through?

Hi Noel > Or just a really bad job of cut/paste? Damn. Here I am trying to keep things all tidy-like and f'ing it all up with cp-n-paste. Sorry. Typo. Without any monkeying by me, postconf -n body_checks body_checks = pcre:/etc/postfix/body_checks.pcre postconf -n | grep body_checks

body_checks with postscreen. Test works at blocking, but 'real mail' slips through?

Hi I'm building my 1st Postfix server and working on getting Postscreen setup. I RTFM here http://www.postfix.org/POSTSCREEN_README.html Where it says The third layer performs light-weight content inspection with the Postfix built-in header_checks and body_checks. This can block

Re: body_checks with postscreen. Test works at blocking, but 'real mail' slips through?

Re-looking at my config, I set up Postfix to 1) receive via postfix 2) hand off what passes postscreen and the body_checks to amavis So I have master.cf [mx.example.com]:25 inet n - n - 1 postscreen -o smtpd_service_name=ps-int ps-int pass - - n - - smtpd -o

Re: body_checks with postscreen. Test works at blocking, but 'real mail' slips through?

* bi...@sent.at : > Hi > > I'm building my 1st Postfix server and working on getting Postscreen setup. > > I RTFM here > > http://www.postfix.org/POSTSCREEN_README.html > > Where it says > > The third layer performs light-weight content inspection with the Postfix >

Re: body_checks with postscreen. Test works at blocking, but 'real mail' slips through?

bi...@sent.at: > postconf -n | grep body_checks > body_checks = /etc/postfix/body_checks.pcre That's your problem. You have SPACE before body_checks. Wietse

Re: body_checks with postscreen. Test works at blocking, but 'real mail' slips through?

Hi Wietse On Mon, Jan 18, 2016, at 01:20 PM, Wietse Venema wrote: > bi...@sent.at: > > postconf -n | grep body_checks > > body_checks = /etc/postfix/body_checks.pcre > > That's your problem. You have SPACE before body_checks. No sorry . That's just me. I indented output 'vs' input like I

Re: body_checks with postscreen. Test works at blocking, but 'real mail' slips through?

Hi, seems you are using amavis in before-queue mode?. As i remember, a proxy-smtpd, doesn't do any header- and body-checks The more interresting master.cf lines are the ones who get the mail from amavis. Do you have somthing like -o receive_override_options=no_header_body_checks or

Re: body_checks with postscreen. Test works at blocking, but 'real mail' slips through?

Hi Wilfried > seems you are using amavis in before-queue mode? Yep, at this first step it's before-queue > As i remember, a proxy-smtpd, doesn't do any header- and body-checks Ok, so I must have missed that :-/ I don't yet grok all the details of before-VS-after queuing. WOrkinf on that -

Re: postscreen test

Zitat von Victor Duchovni victor.ducho...@morganstanley.com: On Thu, Jul 16, 2009 at 05:21:13PM -0400, Rob Foehl wrote: Possible substitutes include concierge or valet, or perhaps any of the less specific guard, sentry, sentinel, ... I think sentry is short, and simple, and can even be

Re: postscreen test

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 On 07/16/09 16:19, Terry Carmen wrote: prefix? It fixes things before they become a problem... Great name! I like it! +1 - -- Victoriano Giralt Systems Manager Central ICT Services University of Malaga SPAIN -BEGIN PGP SIGNATURE- Version:

Re: postscreen test

Victor Duchovni: On Thu, Jul 16, 2009 at 05:21:13PM -0400, Rob Foehl wrote: Possible substitutes include concierge or valet, or perhaps any of the less specific guard, sentry, sentinel, ... I think sentry is short, and simple, and can even be thought of as a contraction of smtp and

Re: postscreen test

Reko Turja: Another figure from Greek mythology that has lent his hame to even a special drinks cabinet: Tantalus The mail server is there, you can even see it, but when you try to reach it it becomes unaccessible. That is almost too good; it could a name for a complete product.

Re: postscreen test

Wietse Venema schrieb: Victor Duchovni: On Thu, Jul 16, 2009 at 05:21:13PM -0400, Rob Foehl wrote: Possible substitutes include concierge or valet, or perhaps any of the less specific guard, sentry, sentinel, ... I think sentry is short, and simple, and can even be thought of as a

Re: postscreen test

Reko Turja schrieb: Another figure from Greek mythology that has lent his hame to even a special drinks cabinet: Tantalus The mail server is there, you can even see it, but when you try to reach it it becomes unaccessible. -Reko why not orcus *g http://en.wikipedia.org/wiki/Orcus --

Re: postscreen test

* Wietse Venema postfix-users@postfix.org: Victor Duchovni: On Thu, Jul 16, 2009 at 05:21:13PM -0400, Rob Foehl wrote: Possible substitutes include concierge or valet, or perhaps any of the less specific guard, sentry, sentinel, ... I think sentry is short, and simple, and

Re: postscreen test

Winnow from winnowing.

Re: postscreen test

Patrick Ben Koetter wrote: * Wietse Venema postfix-users@postfix.org: Victor Duchovni: On Thu, Jul 16, 2009 at 05:21:13PM -0400, Rob Foehl wrote: Possible substitutes include concierge or valet, or perhaps any of the less specific guard, sentry, sentinel, ...

Re: postscreen test

Ralf Hildebrandt wrote: * Noel Jones njo...@megan.vbhcs.org: corona Corona, St.George, what's it with the beer names? Corona - outer atmosphere of a star I can't help it if someone named a beer that too. Makes more sense for our purpose, I'll give them a call. I like sentry too. --

Re: postscreen test

On 17 Jul 2009, at 13:50, Noel Jones wrote: I like sentry too. Along that theme: doorman? bouncer? examiner? customs? patrol? G. -- Expounding the theory of infinite Abelian Badgers http://playr.co.uk/

Re: postscreen test

* Noel Jones njo...@megan.vbhcs.org: Ralf Hildebrandt wrote: * Noel Jones njo...@megan.vbhcs.org: corona Corona, St.George, what's it with the beer names? Corona - outer atmosphere of a star Latin for Crown -- Ralf Hildebrandt Geschäftsbereich IT | Abteilung Netzwerk Charité -

RE: postscreen test

I like turpis http://en.wiktionary.org/wiki/turpis Latin [edit] Adjective turpis m. and f., turpe n.; third declension 1. ugly, unsightly; foul, filthy 2. (of sound) cacophonous, disagreeable 3. (figuratively) base, infamous, scandalous, dishonorable, shameful, disgraceful Or

Re: postscreen test

Ralf Hildebrandt: * Noel Jones njo...@megan.vbhcs.org: Ralf Hildebrandt wrote: * Noel Jones njo...@megan.vbhcs.org: corona Corona, St.George, what's it with the beer names? Corona - outer atmosphere of a star Latin for Crown Good names I have seen sofar that suggest what the

Re: postscreen test

Wietse Venema wrote: Ralf Hildebrandt: * Noel Jones njo...@megan.vbhcs.org: Ralf Hildebrandt wrote: * Noel Jones njo...@megan.vbhcs.org: corona Corona, St.George, what's it with the beer names? Corona - outer atmosphere of a star Latin for Crown Good names I have seen sofar that

Re: postscreen test

On 17 Jul 2009, at 15:02, Wietse Venema wrote: Good names I have seen sofar that suggest what the program does: sentry (the guard at the gate) and triage (the action of deciding which patients to service). St Peter? -- Being drunk is feeling sophisticated without being able to say it.

Re: postscreen test

On Fri, Jul 17, 2009 at 8:02 AM, Wietse Venemawie...@porcupine.org wrote: Ralf Hildebrandt: * Noel Jones njo...@megan.vbhcs.org: Ralf Hildebrandt wrote: * Noel Jones njo...@megan.vbhcs.org: corona Corona, St.George, what's it with the beer names? Corona - outer atmosphere of a

Re: postscreen test

On Thu, July 16, 2009 7:23 pm, Mike Cappella wrote: On 7/13/09 5:20 PM, Wietse Venema wrote: I'm still open for program name suggestions. If someone has a better name than swatter or halligan let me know. Once the name changes, all the configuration parameters will change, too.

Re: postscreen test

On 17 Jul 2009, at 16:29, Michel Lavondes wrote: On Thu, July 16, 2009 7:23 pm, Mike Cappella wrote: On 7/13/09 5:20 PM, Wietse Venema wrote: I'm still open for program name suggestions. If someone has a better name than swatter or halligan let me know. Once the name changes, all the

Re: postscreen test

On 17-Jul-2009, at 09:29, Michel Lavondes wrote: On Thu, July 16, 2009 7:23 pm, Mike Cappella wrote: On 7/13/09 5:20 PM, Wietse Venema wrote: I'm still open for program name suggestions. If someone has a better name than swatter or halligan let me know. Once the name changes, all the

Re: postscreen test

On 7/16/2009, Wietse Venema (wie...@porcupine.org) wrote: Charon is not too bad. Certainly better than zzapper or zkiller and other ugly names that I did not mention. How about praetorian... -- Best regards, Charles

Re: postscreen test

On 07/17/2009 05:30 AM, José Luis Tallón wrote: Patrick Ben Koetter wrote: * Wietse Venema postfix-users@postfix.org: Victor Duchovni: On Thu, Jul 16, 2009 at 05:21:13PM -0400, Rob Foehl wrote: Possible substitutes include concierge or valet, or perhaps any of the less

Re: postscreen test

* Wietse Venema wie...@porcupine.org: I'm still open for program name suggestions. If someone has a better name than swatter or halligan let me know. Once the name changes, all the configuration parameters will change, too. prefix? It fixes things before they become a problem... p...@rick

Re: postscreen test

Patrick Ben Koetter: * Wietse Venema wie...@porcupine.org: I'm still open for program name suggestions. If someone has a better name than swatter or halligan let me know. Once the name changes, all the configuration parameters will change, too. prefix? It fixes things before they become

RE: postscreen test

I'm still open for program name suggestions. If someone has a better name than swatter or halligan let me know. Once the name changes, all the configuration parameters will change, too. prefix? It fixes things before they become a problem... p...@rick So simple yet so good! I like it

Re: postscreen test

* Patrick Ben Koetter p...@state-of-mind.de: * Wietse Venema wie...@porcupine.org: I'm still open for program name suggestions. If someone has a better name than swatter or halligan let me know. Once the name changes, all the configuration parameters will change, too. prefix? It fixes

Re: postscreen test

Wietse Venema wrote: I'm still open for program name suggestions. If someone has a better name than swatter or halligan let me know. Once the name changes, all the configuration parameters will change, too. What about an name like trooper? This is in reference to: a) A police officer with

Re: postscreen test

On Thu, Jul 16, 2009 at 02:43:35PM +0200, Patrick Ben Koetter wrote: * Wietse Venema wie...@porcupine.org: I'm still open for program name suggestions. If someone has a better name than swatter or halligan let me know. Once the name changes, all the configuration parameters will change,

Re: postscreen test

Victor Duchovni: On Thu, Jul 16, 2009 at 02:43:35PM +0200, Patrick Ben Koetter wrote: * Wietse Venema wie...@porcupine.org: I'm still open for program name suggestions. If someone has a better name than swatter or halligan let me know. Once the name changes, all the configuration

Re: postscreen test

On Thu, Jul 16, 2009 at 12:19:05PM -0400, Wietse Venema wrote: Victor Duchovni: On Thu, Jul 16, 2009 at 02:43:35PM +0200, Patrick Ben Koetter wrote: * Wietse Venema wie...@porcupine.org: I'm still open for program name suggestions. If someone has a better name than swatter or

Re: postscreen test

On 7/16/2009 11:56 AM, Victor Duchovni wrote: I'm still open for program name suggestions. If someone has a better name than swatter or halligan let me know. Once the name changes, all the configuration parameters will change, too. prefix? It fixes things before they become a problem...

Re: postscreen test

On 7/13/09 5:20 PM, Wietse Venema wrote: I'm still open for program name suggestions. If someone has a better name than swatter or halligan let me know. Once the name changes, all the configuration parameters will change, too. posttriage or if you have issues w/the French: postcull

Re: postscreen test

On Thu, Jul 16, 2009 at 12:23:39PM -0700, Mike Cappella wrote: On 7/13/09 5:20 PM, Wietse Venema wrote: I'm still open for program name suggestions. If someone has a better name than swatter or halligan let me know. Once the name changes, all the configuration parameters will change,

Re: postscreen test

Victor Duchovni: On Thu, Jul 16, 2009 at 12:23:39PM -0700, Mike Cappella wrote: On 7/13/09 5:20 PM, Wietse Venema wrote: I'm still open for program name suggestions. If someone has a better name than swatter or halligan let me know. Once the name changes, all the configuration

Re: postscreen test

On Thursday, July 16, 2009, 16:01:57, Victor Duchovni wrote: On Thu, Jul 16, 2009 at 12:23:39PM -0700, Mike Cappella wrote: On 7/13/09 5:20 PM, Wietse Venema wrote: I'm still open for program name suggestions. If someone has a better name than swatter or halligan let me know. Once the

Re: postscreen test

Victor Duchovni wrote: On Thu, Jul 16, 2009 at 02:14:06PM -0700, Mike Cappella wrote: On 7/16/09 1:01 PM, Victor Duchovni wrote: The service is an SMTP bouncer, keeping unwanted clients from entering the premises. We already have a bounce unix service, will having: smtp inet n

Re: postscreen test

On Thu, Jul 16, 2009 at 02:14:06PM -0700, Mike Cappella wrote: On 7/16/09 1:01 PM, Victor Duchovni wrote: The service is an SMTP bouncer, keeping unwanted clients from entering the premises. We already have a bounce unix service, will having: smtp inet n - n -

Re: postscreen test

On Thu, 16 Jul 2009, Wietse Venema wrote: Victor Duchovni: The service is an SMTP bouncer, keeping unwanted clients from entering the premises. We already have a bounce unix service, will having: smtp inet n - n - 1 bouncer ... bounceunix -

Re: postscreen test

On Thu, Jul 16, 2009 at 05:21:13PM -0400, Rob Foehl wrote: Possible substitutes include concierge or valet, or perhaps any of the less specific guard, sentry, sentinel, ... I think sentry is short, and simple, and can even be thought of as a contraction of smtp and entry. A bit less corny

Re: postscreen test

On Thu, 16 Jul 2009, Victor Duchovni wrote: On Thu, Jul 16, 2009 at 05:21:13PM -0400, Rob Foehl wrote: Possible substitutes include concierge or valet, or perhaps any of the less specific guard, sentry, sentinel, ... I think sentry is short, and simple, and can even be thought of as a

Re: postscreen test

Wietse Venema wrote: Jose Luis Tallon: Wietse Venema wrote: [snip] It's no worse than smtp versus smtpd. If there exists a different name for the agent at the door, then that might work. Alas, cerberus is already in use (by the kerberos authentication system). And so are Heimdall (KTH's

Re: postscreen test

* Victor Duchovni victor.ducho...@morganstanley.com: The service is an SMTP bouncer, keeping unwanted clients from entering the premises. We already have a bounce unix service, will having: smtp inet n - n - 1 bouncer ... bounceunix -

Re: postscreen test

* Wietse Venema wie...@porcupine.org: It's no worse than smtp versus smtpd. If there exists a different name for the agent at the door, then that might work. Alas, cerberus is already in use (by the kerberos authentication system). And your cerberus is multi-threaded, not multi-headed. --

Re: postscreen test

* Victor Duchovni victor.ducho...@morganstanley.com: I think sentry is short, and simple, and can even be thought of as a contraction of smtp and entry. Not too bad. -- Ralf Hildebrandt Geschäftsbereich IT | Abteilung Netzwerk Charité - Universitätsmedizin Berlin Campus Benjamin

Re: postscreen test

* Noel Jones njo...@megan.vbhcs.org: corona Corona, St.George, what's it with the beer names? -- Ralf Hildebrandt Geschäftsbereich IT | Abteilung Netzwerk Charité - Universitätsmedizin Berlin Campus Benjamin Franklin Hindenburgdamm 30 | D-12203 Berlin Tel. +49 30 450 570 155 | Fax:

Re: postscreen test

* Michael Orlitzky mich...@orlitzky.com: From http://en.wikipedia.org/wiki/Oedipus, Continuing his journey to Thebes, Oedipus encounters the Sphinx who would stop all those who traveled to Thebes and ask them a riddle. If the travelers were unable to answer correctly, they were eaten

Re: postscreen test

Helga Mayer: Hi, I'm testing postscreen on our secondary smtp server. First results: https://rz-static.uni-hohenheim.de/hmayer/tmp/Screenshot-68.png There are hardly anymore rejects. I did not yet adjust mailgraph for the drops. That is an interesting picture. It looks like dropping

postscreen test

Hi, I'm testing postscreen on our secondary smtp server. First results: https://rz-static.uni-hohenheim.de/hmayer/tmp/Screenshot-68.png There are hardly anymore rejects. I did not yet adjust mailgraph for the drops. Statistics: UNIQ/TOTAL EVENT 536/586PASS NEW 97/119HANGUP

Re: postscreen test

On Mon, Jul 06, 2009 at 10:37:01AM +0200, Helga Mayer wrote: But I'd prefer not to use DNSBL's by postcreen. It is for the logging. More detailed logging is on the roadmap... Users occasionally ask for details if mail did not arrive. If I try, I get: Jul 6 10:17:00 smtp2

Re: postscreen test

Quoting Victor Duchovni victor.ducho...@morganstanley.com: On Mon, Jul 06, 2009 at 10:37:01AM +0200, Helga Mayer wrote: But I'd prefer not to use DNSBL's by postcreen. It is for the logging. More detailed logging is on the roadmap... Users occasionally ask for details if mail did not

Re: postscreen test

Helga Mayer: Hi, I'm testing postscreen on our secondary smtp server. This is non-production, unsupported, software, that is available only in postfix-2.7-xx-nonprod releases. Wietse First results: https://rz-static.uni-hohenheim.de/hmayer/tmp/Screenshot-68.png There are