So I'm very new to postfix, however I have a feeling that the Regex stuff can
be done via some scripts. I guess that how the Python SPF checkers work...
But as I said, I'm new to postfix so I could be way off target
-Original Message-
From: owner-postfix-us...@postfix.org on behalf of Da
On 2010-02-14 David Koski wrote:
> On Tuesday 19 January 2010, Ansgar Wiechers wrote:
>> On 2010-01-18 David Koski wrote:
>>> My mail server has been getting a fair amount of spam hits that have
>>> been rejected but the sender address is spoofed with the recipient's
>>> address. This generates an
* Stan Hoeppner :
> Wietse Venema put forth on 2/14/2010 12:52 PM:
>
> > regexp:/etc/postfix/recipients.pcre
>
> ^^
>
> Wietse is this a typo or am I about to learn something new about regexp/pcre
> interchangeability/compatibility in Postfix? I'm assu
Hi,
In an older episode (Monday, 15. February 2010), David Koski wrote:
> grep "^From:.*" "$test" \
> && grep "Return-Path:.*" "$test" \
the "Return-Path" of an NDR is *not* .*MAILER-DAEMON.* - it is "<>".
"mailer-daemon" would be in the From-Header of the NDR
Regards,
wolfgang
On 02/12/10 18:25, Stan Hoeppner wrote:
Frank Bonnet put forth on 2/12/2010 10:05 AM:
Hello all ( Postfix and Dovecot )
Trying to use deliver as mailbox_command with Postfix I get this
error each time an email is arriving
deliver(): Error: file_dotlock_create(/var/mail/)
failed
Frank Bonnet put forth on 2/15/2010 3:10 AM:
> On 02/12/10 18:25, Stan Hoeppner wrote:
>> Frank Bonnet put forth on 2/12/2010 10:05 AM:
>>> Hello all ( Postfix and Dovecot )
>>>
>>> Trying to use deliver as mailbox_command with Postfix I get this
>>> error each time an email is arriving
>>>
>>> del
Hi Victor.
Thanks for your reply.
My problem is that I want to put all the emails in HOLD, apart the local one.
As I said before, my installation is not exatly a standard one...
I recognize local emails with:
transport_maps = proxy:mysql:/etc/postfix/mysql-virtual_transports.cf
where a database sa
On 15 February 2010 18:41, Stan Hoeppner wrote:
> I can't get to it without entering a CC and starting a 30 day trial. The
> "bottom" of the page is white space. I see no options anywhere on the page to
> get at the info without signing up. This is kinda by design isn't it? No
> pay,
> no pla
Hi to everybody.
I'm queuing all the emails to be sent.
So the option that is doing it is: default_transport = smtp
I would like to have the option to send directly emails, without queue.
So I was thinking to write something like:
default_transport = mysql:/etc/postfix/default_transport.cf
where t
On 15 February 2010 21:25, Michele Carandente wrote:
> Hi to everybody.
> I'm queuing all the emails to be sent.
> So the option that is doing it is: default_transport = smtp
>
> I would like to have the option to send directly emails, without queue.
> So I was thinking to write something like:
>
Hi,
I noticed with a couple of mail servers that the smtp greeting
contains 220 followed by a lot of asterisks.
When I do a check using mxtoolbox I get "Warning - Reverse DNS does
not match SMTP Banner"
How do I assure that the normal text is displayed instead of the asterisks?
Thanks in advance
* Serge Fonville :
> Hi,
>
> I noticed with a couple of mail servers that the smtp greeting
> contains 220 followed by a lot of asterisks.
CISCO PIX.
> When I do a check using mxtoolbox I get "Warning - Reverse DNS does
> not match SMTP Banner"
>
> How do I assure that the normal text is displa
On Mon, Feb 15, 2010 at 11:43:57AM +0100, Serge Fonville wrote:
>
> How do I assure that the normal text is displayed instead of the asterisks?
>
Turn off the SMTP protocol fixup in the Pix.
Devdas Bhagat
2010/2/15 Serge Fonville :
> Hi,
>
> I noticed with a couple of mail servers that the smtp greeting
> contains 220 followed by a lot of asterisks.
> When I do a check using mxtoolbox I get "Warning - Reverse DNS does
> not match SMTP Banner"
>
> How do I assure that the normal text is displayed ins
I want to deny incoming mail from domain blu0.hotmail.com.
I have put in /etc/postfix/sender_access the following line:
blu0.hotmail.com554 Spam is not welcome
and then I run
postmap /etc/postfix/sender_access
and
postfix reload
Is that enough?
Thanks for the replies
>> How do I assure that the normal text is displayed instead of the asterisks?
>>
> Well, ask the administrator of network to disable cisco smtp fixup?
> Turn off the SMTP protocol fixup in the Pix.
I also found that as a solution.
Unfortunately there is no pix in between.
$quoted_author = "Stan Hoeppner" ;
>
> >> DJ Lucas put forth on 2/15/2010 1:22 AM:
> >>
> >>> http://www.experts-exchange.com/Security/Software_Firewalls/Enterprise_Firewalls/Cisco_PIX_Firewall/Q_24438893.html
>
> I can't get to it without entering a CC and starting a 30 day trial. The
> "bot
I use Dovecot for SASL authentication from Postfix. In Postfix main.cf I
have:
smtpd_sasl_type = dovecot
It works good, but now I need to allow users to connect by IMAP only from
given IP adresses. I've added extra field allow_nets to passdb in Dovecot,
and IMAP authentication works fine. But now
2010/2/15 Serge Fonville :
> Thanks for the replies
>
>>> How do I assure that the normal text is displayed instead of the asterisks?
>>>
>> Well, ask the administrator of network to disable cisco smtp fixup?
>> Turn off the SMTP protocol fixup in the Pix.
>
> I also found that as a solution.
> Unf
Thanks for the reply
How do I assure that the normal text is displayed instead of the asterisks?
>>> Well, ask the administrator of network to disable cisco smtp fixup?
>>> Turn off the SMTP protocol fixup in the Pix.
>>
>> I also found that as a solution.
>> Unfortunately there is no pi
Ahh, someone here today with a Postfix question, not a Cisco one! ;)
On Mon, Feb 15, 2010 at 12:57:40PM +0200, Aggelos wrote:
> I want to deny incoming mail from domain blu0.hotmail.com.
"From domain" means what? Sender addr...@blu0.hotmail.com ?
> I have put in /etc/postfix/sender_access the fo
Hello List
Is there a module or configuration element to postfix that will allow
for increasingly aggressive throttling of mails as they try to pass more
mail through a server on an individual ip basis? I have looked at
policyd which seems great but includes only a static throttling to x
mail
On Mon, 2010-02-15 at 11:45 +0100, Ralf Hildebrandt wrote:
> * Serge Fonville :
> > Hi,
> >
> > I noticed with a couple of mail servers that the smtp greeting
> > contains 220 followed by a lot of asterisks.
>
> CISCO PIX.
>
> > When I do a check using mxtoolbox I get "Warning - Reverse DNS doe
Hi to everyone.
I need to extract from the email in HOLD queue the subject.
So the emails are stored in /var/spool/postfix/hold
I can see that before the Subject there is a special character, that
is changing apparently random.
Then, after the subject, there is apparently always N%Date
Do some of
> Can someone share a good reference that says that smtp-protocol-fixup
> can be safely disabled without compromising the security.
>
> Apparently the Cisco guys themselves dont own up to their bug and they
> say disabling anything is at "ones own risk".
>
> That is enough to get the boot from the
Michele Carandente:
> Hi to everyone.
> I need to extract from the email in HOLD queue the subject.
Use the "postcat" command.
The format of Postfix queue files is not public. Software that
reads Postfix queue files is not supported and will break when I
change Postfix,
Software that uses the
There are good explanations here:
http://groups.google.com/group/comp.dcom.sys.cisco/browse_frm/thread/ee1c9bc0180cacad/8e679e9c420395dc?tvc=1&q=smtp%20fixup%20cisco%20sendmail
--
Vladimir Vassiliev
* ram :
> Can someone share a good reference that says that smtp-protocol-fixup
> can be safely disabled without compromising the security.
>
> Apparently the Cisco guys themselves dont own up to their bug and they
> say disabling anything is at "ones own risk".
Of course ALL changes are "one
On 13.2.2010, at 0.41, Victor Duchovni wrote:
> No, this is largely irrelevant. What matters is the IMAP performance
> they expect, that IMAP servers are reasonably CPU and memory intensive.
From what I've seen is that IMAP servers normally take less than 1% CPU load
(mainly Dovecot, but I'd thi
On Mon, 15 Feb 2010, Неворотин Вадим wrote:
> Problem is clear: smtpd don't send client IP to dovecot authentication
> socket. But I need to limit the ability of connection to users only from
> specific IP. Both for SMTP and IMAP. How can I do that?
This has been discussed before:
http://marc.in
> Problem is clear: smtpd don't send client IP to dovecot authentication
> socket.
Upgrade to Postfix 2.7.
Wietse
20090418
Cleanup: use [an extensible API] to pass SMTP client address
information to the dovecot SASL plugin, and prepare for
passing server address
On 2010-02-15 5:23 AM, Barney Desmond wrote:
> Apologies for pushing the OT thread.
>
> Experts Exchange is viewable (at least) from google searches. I'm
> pretty sure it's a referer-check, used to get plenty of good
> google-juice for their content. As a convenient side-effect, you can
> always s
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Am 10.02.2010 23:17, schrieb Jan Kohnert:
> Hi,
>
> Jannis Achstetter schrieb:
>> An email (FROM is not in $mydestination) from an unauthenticated user to
>> an address in $mydestination is accecpted. This is also fine.
>> An email from an unauthentic
On Monday 15 February 2010, wolfgang wrote:
> Hi,
>
> In an older episode (Monday, 15. February 2010), David Koski wrote:
> > grep "^From:.*" "$test" \
> > && grep "Return-Path:.*" "$test" \
>
> the "Return-Path" of an NDR is *not* .*MAILER-DAEMON.* - it is "<>".
>
> "mailer-daemon" would be in the
Hello,
I have Postfix 2.1.5 running on Mac Server 10.4.11. I would like to upgrade
Postfix. Which version would you recommend?
Thanks in advance for advise.
--
Jeff
2010/2/15 Jeff Bernier :
> Hello,
>
> I have Postfix 2.1.5 running on Mac Server 10.4.11. I would like to upgrade
> Postfix. Which version would you recommend?
>
> Thanks in advance for advise.
How about latest stable version (2.7) ?
--
Eero
On 2/14/2010 8:29 PM, Stan Hoeppner wrote:
Wietse Venema put forth on 2/14/2010 12:52 PM:
regexp:/etc/postfix/recipients.pcre
^^
Wietse is this a typo or am I about to learn something new about regexp/pcre
interchangeability/compatibility in Postf
* Eero Volotinen :
> > I have Postfix 2.1.5 running on Mac Server 10.4.11. I would like to upgrade
> > Postfix. Which version would you recommend?
> >
> > Thanks in advance for advise.
>
> How about latest stable version (2.7) ?
Since Apple made a significant number of changes: Stick with the Ap
On Mon, Feb 15, 2010 at 10:55 AM, Michele Carandente
wrote:
> Hi to everyone.
> I need to extract from the email in HOLD queue the subject.
> So the emails are stored in /var/spool/postfix/hold
> I can see that before the Subject there is a special character, that
> is changing apparently random.
On Feb 15, 2010, at 12:42 PM, Ralf Hildebrandt wrote:
* Eero Volotinen :
I have Postfix 2.1.5 running on Mac Server 10.4.11. I would like
to upgrade Postfix. Which version would you recommend?
Thanks in advance for advise.
How about latest stable version (2.7) ?
Since Apple made a signi
I want to deny incoming mail from domain blu0.hotmail.com.
I have put in /etc/postfix/sender_access the following line:
blu0.hotmail.com554 Spam is not welcome
and then I run
postmap /etc/postfix/sender_access
and
postfix reload
Is that enough?
on 02/15/2010 10:47 PM Aggelos wrote the following:
> I want to deny incoming mail from domain blu0.hotmail.com.
>
> I have put in /etc/postfix/sender_access the following line:
> blu0.hotmail.com554 Spam is not welcome
>
> and then I run
> postmap /etc/postfix/sender_access
>
> and
> po
Quoting Aggelos :
I want to deny incoming mail from domain blu0.hotmail.com.
I have put in /etc/postfix/sender_access the following line:
blu0.hotmail.com554 Spam is not welcome
and then I run
postmap /etc/postfix/sender_access
and
postfix reload
Is that enough?
Not unless "postcon
Aggelos a écrit :
> I want to deny incoming mail from domain blu0.hotmail.com.
>
what do you mean by "from"?
- the domain of the client machine? (reverse dns)
- the domain of the envelope sender address?
- the domain of the from/reply-to header addresses?
...
> I have put in /etc/postfix/sender_
on 02/15/2010 02:44 PM /dev/rob0 wrote the following:
> Ahh, someone here today with a Postfix question, not a Cisco one! ;)
>
> On Mon, Feb 15, 2010 at 12:57:40PM +0200, Aggelos wrote:
>> I want to deny incoming mail from domain blu0.hotmail.com.
>
> "From domain" means what? Sender addr...@blu0
on 02/15/2010 10:54 PM te...@cnysupport.com wrote the following:
> postconf -n |grep sender_access
# postconf -n |grep sender_access
smtpd_recipient_restrictions = permit_mynetworks,
reject_unauth_destination, reject_unknown_recipient_domain,
check_sender_access hash:/etc/postfix/sender_acces
I get fake sender (blizzard.com) mails like so:
>From - Mon Feb 15 12:36:41 2010
X-Account-Key: account19
X-UIDL: af3fd81a824190cb
X-Mozilla-Status: 0001
X-Mozilla-Status2:
X-Mozilla-Keys:
Return-Path:
X-Original-To:
Delivered-To:
Received: from blu0-omc1-s16.blu0.hotmail.com
(blu0-om
On 15-Feb-2010, at 14:41, Aggelos wrote:
>
> Return-Path:
> X-Original-To:
> Delivered-To:
> Received: from blu0-omc1-s16.blu0.hotmail.com
> (blu0-omc1-s16.blu0.hotmail.com [65.55.116.27])
> by (Postfix) with ESMTP id 33C04FB9D
> for ; Mon, 15 Feb 2010 12:14:49 +0200 (EET)
> Receiv
On 15-Feb-2010, at 14:56, LuKreme wrote:
>
> uri URI_BLIZZARD /\bblizzard\.com\b/i
Sorry, wrong list. Thought I was reading the spamassassin group.
--
Are you a lucky little lady in the city of light
Or just another lost angel?
On Mon, Feb 15, 2010 at 7:25 AM, Michele Carandente
wrote:
> Hi to everybody.
> I'm queuing all the emails to be sent.
> So the option that is doing it is: default_transport = smtp
>
> I would like to have the option to send directly emails, without queue.
You can't, at least if you not to write
So here's an update:
1. I have turned off fixup smtp and checked that inspect esmtp or inspect
smtp is not running.
2. I have also enabled ICMP for both ends from our DMZ mail server and
internal mail server. It is still happening.
Plot thickens huh.
On Mon, Feb 15, 2010 at 6:22 PM, DJ Lucas wro
Hi,
I have TLS turned on on my server but since that server also accepts
incoming mail from the internet, I can¹t require it¹s use and so it is
certainly possible that some of our users using AUTH-SMTP are still
connecting unencrypted. Currently the only authentication mechanism we are
using is P
2010/2/16 Jafaruddin Lie :
> So here's an update:
> 1. I have turned off fixup smtp and checked that inspect esmtp or inspect
> smtp is not running.
> 2. I have also enabled ICMP for both ends from our DMZ mail server and
> internal mail server. It is still happening.
well, try to disable tcp-wind
On 2/15/2010 4:30 PM, Rob Tanner wrote:
Hi,
I have TLS turned on on my server but since that server also accepts
incoming mail from the internet, I can’t require it’s use and so it is
certainly possible that some of our users using AUTH-SMTP are still
connecting unencrypted. Currently the only a
Hi,
I have one mail server running postfix and own a domain
(foo.com), i've noticed that when i try to send an email to the
"outside" (other domains different than mine) i have to
authenticate myself against the server in order to be able to send the
email otherwise it will give me a relay acces
Rob Tanner:
> I have TLS turned on on my server but since that server also accepts
> incoming mail from the internet, I can?t require it?s use and so it is
> certainly possible that some of our users using AUTH-SMTP are still
> connecting unencrypted. Currently the only authentication mechanism we
>
>From: Jafaruddin Lie
>To: Daniel V. Reinhardt
>Sent: Mon, February 15, 2010 10:50:07 PM
>Subject: Re: Postfix - Timeout While Sending End of Data
>
>
>Currently we have mails going to our internal mail server being queued up.
>
>So, to answer your question, it's ethernet 100Mbps connection.
The size of the email is not big, and I don't think the size of the emails
matter.
No, no attachments, it's mostly just acknowledgement mails.
I have seen emails being blocked at around 3KB, whilst emails around 5KB got
sent whilst a 160KB mail got blocked.
OK, I have disabled tcp_windows_scaling o
I'm seeing the following message in my log files, had a search on google and
could not come up with anything.
postfix/postsuper[4932]: warning: bogus file name: hold/razor-agent.log
Can anyone shine some light on the subject?
Thanks,
Jon
Dear postfix people,
I just sent a message I should not have sent, using my local postfix
setup, which forwards to a smarthost for further processing.
After sending the message, I almost immediately pulled the plug, and
looking at mailq, I felt good about that:
-Queue ID- --Size-- Arrival
Thank you for all your responses.
We nailed it down to the dodgy server / Postfix setup.
I copied some of the deferred mail queues to another newly setup Postfix
server (in the same DMZ) and those mails got sent immediately. So, all
mailis are now going out through the new server. Looking good so f
On Mon, Feb 15, 2010 at 15:36, Jon L Miller wrote:
> I’m seeing the following message in my log files, had a search on google and
> could not come up with anything.
>
> postfix/postsuper[4932]: warning: bogus file name: hold/razor-agent.log
>
> Can anyone shine some light on the subject?
razor-ag
I would like to setup a SMTP proxy/filter box which simply sits in between
the real server and the internet. All incoming mail passes through the
filter, and all outgoing mail also passes through the filter.
Basically the box will do a single job, it will have all the domains handled
by the organi
Thanks, it's exactly what I need))) I'll try to compile a new version...
2010/2/15 Wietse Venema
> > Problem is clear: smtpd don't send client IP to dovecot authentication
> > socket.
>
> Upgrade to Postfix 2.7.
>
>Wietse
>
> 20090418
>
>Cleanup: use [an extensible API] to pass S
Wietse Venema wrote:
- Support for reputation management based on the local SMTP client
IP address. This is typically implemented with "FILTER transportname:"
actions in access maps or header/body checks, and mail delivery
transports in master.cf with unique smtp_bind_address values.
I'm
Hi,
> Does anyone here know how often Simon Mudd releases his RPMs?
It looks like this might help for now:
http://www.kutukupret.com/2010/02/08/compiling-postfix-2-7-0-as-rpm-package/
Regards,
Alex
66 matches
Mail list logo
