Hi ,
Can u tell me how can block particular machine or email ID
to send mail to any outer domain except local domain. Mean one user of
ur domain can only send mail locally,
Thx in advance
Waiting for reply
On Tue, 03 Mar 2009, Baghwant wrote:
Can u tell me how can block particular machine or email ID
to send mail to any outer domain except local domain. Mean one user of
ur domain can only send mail locally,
http://www.postfix.org/RESTRICTION_CLASS_README.html
--
Sahil Tandon
Erik Morton:
Hello,
I've been following the Content Filter tutorial
(http://www.postfix.org/FILTER_README.html ) with little success.
Postfix logs ALL delivery attempts, successful or otherwise,
in the maillog file.
http://www.postfix.org/DEBUG_README.html#logging
Indeed it does. I've found /var/log/maillog very helpful. However I
don't see any logging at all from the pipe process. I am assuming that
I should have a pipe process running. Is that not the case?
On Mar 3, 2009, at 9:13 AM, Wietse Venema wrote:
Erik Morton:
Hello,
I've been following
On Tue, Mar 03, 2009 at 09:17:55AM -0500, Erik Morton wrote:
I am assuming that I should
have a pipe process running. Is that not the case?
Only during a delivery and shortly thereafter, unless pipe(8) exits
with a fatal error. On a low-volume server pipe(8) may not be running
at any given
Thanks. I am running with -D (strace) and -v enabled and I'm not
seeing anything fatal or related to a pipe process.
i've defined my filter in master.cf like so:
filterunix - n n - 10 pipe -v
flags=Rq user=my_user argv=/usr/bin/receiver -f ${sender} -- $
Erik Morton:
Thanks. I am running with -D (strace) and -v enabled and I'm not
seeing anything fatal or related to a pipe process.
So what does Postfix log when delivering mail?
http://www.postfix.org/DEBUG_README.html#mail
Wietse
On Tue, Mar 03, 2009 at 10:19:50AM -0500, Erik Morton wrote:
Thanks. I am running with -D (strace) and -v enabled and I'm not seeing
anything fatal or related to a pipe process.
i've defined my filter in master.cf like so:
filterunix - n n - 10 pipe -v
The postfix docs say:
virtual_mailbox_limit (default: 5120)
The maximal size in bytes of an individual mailbox or maildir file,
or zero (no limit)
but since a maildir is a directory, does this limit apply to an
individual email (a file in the maildir) or to the directory size of
I guess I only expected logging output because I can't see to figure
out why the following:
filterunix - n n - 10 pipe -v
flags=Rq user=my_user argv=/usr/bin/receiver -f ${sender} -- $
{recipient}
Doesn't seem to work. When I run the script via the
On Tue, Mar 03, 2009 at 11:07:50AM -0500, Erik Morton wrote:
I guess I only expected logging output because I can't see to figure out
why the following:
filterunix - n n - 10 pipe -v flags=Rq
user=my_user argv=/usr/bin/receiver -f ${sender} -- ${recipient}
Ondrej Holecek:
hello,
is there a possibility to limit connection count for whole subnet?
when I have:
smtpd_client_connection_count_limit = 2
it limits each IP to max 2 connections, but when attacker has /24
subnet, he can easily create 508
connections
If the attacker has a botnet,
LuKreme wrote:
The postfix docs say:
virtual_mailbox_limit (default: 5120)
The maximal size in bytes of an individual mailbox or maildir file, or
zero (no limit)
but since a maildir is a directory, does this limit apply to an
individual email (a file in the maildir) or to the
I've been happily using denyhosts for ssh brute force attacks,
1. What are best practices for the same functionality for Postfix
2. Are there gotcha's for trying to use denyhosts/fail2ban for this
3. Should I use something else?
I'd like to stop attacks at the iptable/tcpwrapper level before it
Dave Johnson wrote:
Hi all
Is there anyway of stopping the from j...@foo.com
mailto:from...@foo.com to j...@foo.com spam attacks?
Regards
If you're not using zen.spamhaus.org already, you should
start. If your site is too large to qualify for their free
use, the paid feed is well worth
Cameron Camp wrote:
I've been happily using denyhosts for ssh brute force attacks,
1. What are best practices for the same functionality for Postfix
2. Are there gotcha's for trying to use denyhosts/fail2ban for this
3. Should I use something else?
I'd like to stop attacks at the
W dniu 2009-03-03 17:46, Noel Jones pisze:
Some people reject their own domain from outside, unauthenticated
clients, but this will certainly reject some amount of legit mail.
Could you write a little bit how is it possible to reject legit mail by
rejecting unauthenticated clients when all
LuKreme wrote:
On Mar 3, 2009, at 9:38, Noel Jones njo...@megan.vbhcs.org wrote:
LuKreme wrote:
The postfix docs say:
virtual_mailbox_limit (default: 5120)
The maximal size in bytes of an individual mailbox or maildir file,
or zero (no limit)
but since a maildir is a directory, does
Dave Johnson wrote:
Hi all
Is there anyway of stopping the from j...@foo.com to j...@foo.com spam
attacks?
Regards
Well. If you are delivering via procmail, you can have a procmail rule
like this one (untested, and posibly larger than a experienced procmail
user will do, but should
Paweł Leśniak wrote:
W dniu 2009-03-03 17:46, Noel Jones pisze:
Some people reject their own domain from outside, unauthenticated
clients, but this will certainly reject some amount of legit mail.
Could you write a little bit how is it possible to reject legit mail by
rejecting
Paweł Leśniak wrote:
W dniu 2009-03-03 17:46, Noel Jones pisze:
Some people reject their own domain from outside, unauthenticated
clients, but this will certainly reject some amount of legit mail.
Could you write a little bit how is it possible to reject legit mail by
rejecting
Hiya,
We have had this setting on a mail server for a long time.
smtpd_recipient_restrictions =
permit_sasl_authenticated
reject_non_fqdn_recipient
reject_non_fqdn_sender
reject_unknown_sender_domain
reject_unknown_recipient_domain
permit_mynetworks
reject_unauth_destination
On Mar 3, 2009, at 1:14 PM, Kevin Bailey kbai...@freewayprojects.com
wrote:
Hiya,
We have had this setting on a mail server for a long time.
smtpd_recipient_restrictions =
permit_sasl_authenticated
reject_non_fqdn_recipient
reject_non_fqdn_sender
reject_unknown_sender_domain
Kevin Bailey:
Today, about 80% of emails started getting bounced back with:
So we commented out the spamcop line... then we got
So we commented out the spamhaus line... then we got
Then we commented out the rfc-ignorant.org line and the mail is getting
through. So the restrictions line
On Tue March 3 2009 12:48:59 Wietse Venema wrote:
Kevin Bailey:
Today, about 80% of emails started getting bounced back with:
So we commented out the spamcop line... then we got
So we commented out the spamhaus line... then we got
Then we commented out the rfc-ignorant.org line and the
Cameron Camp wrote:
I've been happily using denyhosts for ssh brute force attacks,
1. What are best practices for the same functionality for Postfix
2. Are there gotcha's for trying to use denyhosts/fail2ban for this
3. Should I use something else?
I'd like to stop attacks at the
On 3-Mar-2009, at 11:48, Wietse Venema wrote:
host -t a 27a28250f4b7c74acc01d042687e2273.com
Perhaps they are using OpenDNS?
--
Hamburgers. The cornerstone of any nutritious breakfast.
Hi guys,
Thanks for all the suggestions. It turns out rolling back to MySQL
5.0.x solves the problem. I guess I'm affected by something in 5.1 -
just don't know what.
--kj
kj wrote:
Hi guys,
Thanks for all the suggestions. It turns out rolling back to MySQL
5.0.x solves the problem. I guess I'm affected by something in 5.1 -
just don't know what.
--kj
Perhaps something Monty has discussed:
Does Postfix support variables (I suppose defined in main.cf) to be used
for internet addresses in master.cf? Example:
main.cf:
inbound_interface = 192.168.0.10
outbound_interface = 192.168.0.11
master.cf:
inbound_interface:25 inet n - - - - smtpd
outbound_interface:submission
2009/3/4 LuKreme krem...@kreme.com:
virtual_mailbox_limit (default: 5120)
OK. Then this setting is largely useless if the number is = to the maximum
message size, right?
Indeed. I was playing with this recently, and Postfix complains if
it's set below message_size_limit (ie. there's the
I have monitoring applications on boxes on the same subnet as a box I
want to use for mailing list notification using Postfix/mailman to
notify several users. An example is some box throwing an snmp trap,
where a notification would try to send to notification_l...@example.com
so several people
Cameron Camp wrote:
I have monitoring applications on boxes on the same subnet as a box I
want to use for mailing list notification using Postfix/mailman to
notify several users. An example is some box throwing an snmp trap,
where a notification would try to send to notification_l...@example.com
On 3/3/2009 2:17 PM, LuKreme wrote:
host -t a 27a28250f4b7c74acc01d042687e2273.com
Perhaps they are using OpenDNS?
opendns works very well, as long as you disable the helper crap, so, no,
has nothing to do with opendns.
Daniel L. Miller:
Does Postfix support variables (I suppose defined in main.cf) to be used
for internet addresses in master.cf? Example:
main.cf:
inbound_interface = 192.168.0.10
outbound_interface = 192.168.0.11
master.cf:
inbound_interface:25 inet n - - - - smtpd
-Original Message-
From: owner-postfix-us...@postfix.org
[mailto:owner-postfix-us...@postfix.org] On Behalf Of Pawel Lesniak
Sent: Wednesday, 4 March 2009 4:19 AM
To: postfix users list
Subject: Re: Spam attacks
W dniu 2009-03-03 17:46, Noel Jones pisze:
Some people reject
--- Original Message ---
From: Charles Marcus cmar...@media-brokers.com
To: LuKreme krem...@kreme.com
Sent: 03-Mar-09, 16:21:07
Subject: Re: smtpd_recipient_restrictions suddenly stopping mail
On 3/3/2009 2:17 PM, LuKreme wrote:
host -t a 27a28250f4b7c74acc01d042687e2273.com
On Mar 3, 2009, at 15:21, Charles Marcus cmar...@media-brokers.com
wrote:
On 3/3/2009 2:17 PM, LuKreme wrote:
host -t a 27a28250f4b7c74acc01d042687e2273.com
Perhaps they are using OpenDNS?
opendns works very well, as long as you disable the helper crap, so,
no,
has nothing to do with
Evelio Vila:
so I would like to modify the return_attribute to pass postfix only the user
part of the mail field.
See: man ldap_table | less +/result_format
Also, could several queries can be combined to form the desired result?
You can't make multiple queries per result.
Wietse
Victor Duchovni:
With OpenLDAP 2.4 it is possible to set the TLS properties for
a particular LDAP connection (not just global properties), and to
associate a new OpenLDAP managed TLS context for the connection via the
new LDAP_OPT_X_TLS_NEWCTX option.
Try this completely untested patch (it
This will probably sound weird - but...
Is there a _maps parameter, or other method, I can use to force an
address found in my virtual_mailbox_maps to be considered non-local/virtual?
You're scratching your head asking why...well, it's simple. I'm a
moron. I'm trying to setup a new mail
--- Original Message ---
From: LuKreme krem...@kreme.com
To: postfix-users@postfix.org postfix-users@postfix.org
Sent: 03-Mar-09, 18:18:15
Subject: Re: smtpd_recipient_restrictions suddenly stopping mail
On Mar 3, 2009, at 15:21, Charles Marcus cmar...@media-brokers.com
wrote:
--- Original Message ---
From: Daniel L. Miller dmil...@amfes.com
Would I do this using the transport_maps? Something like:
myu...@otherdomain.com smtp:[192.168.0.72]:25
--
Daniel
yes, exactly.
Sounds like a firewall problem.
-- Noel Jones
Noel Jones wrote:
--- Original Message ---
From: Daniel L. Miller dmil...@amfes.com
Would I do this using the transport_maps? Something like:
myu...@otherdomain.com smtp:[192.168.0.72]:25
--
Daniel
yes, exactly.
Sounds like a firewall problem.
-- Noel Jones
Ok
On Tue, Mar 03, 2009 at 07:30:39PM -0500, Wietse Venema wrote:
Victor Duchovni:
With OpenLDAP 2.4 it is possible to set the TLS properties for
a particular LDAP connection (not just global properties), and to
associate a new OpenLDAP managed TLS context for the connection via the
new
Daniel L. Miller wrote:
Noel Jones wrote:
--- Original Message ---
From: Daniel L. Miller dmil...@amfes.com
Would I do this using the transport_maps? Something like:
myu...@otherdomain.com smtp:[192.168.0.72]:25
--
Daniel
yes, exactly.
Sounds like a firewall problem.
Dear users, I realized today that the local SMTP server is not working
as expected.
I found these lines in the log files:
Mar 2 22:42:48 smtp postfix/smtpd[30427]: 1A66913105B:
client=r190-134-zz-xx.dialup.adsl.anteldata.net.uy[190.134.zz.xx], sa
sl_method=PLAIN, sasl_username=usuario1
Mar 2
On our old server that doesn't do any Virtual Domains, we have lines in our
/etc/alias which look like the following:
usera: |/export/home/users/usera/blah/script.pl
I just recently set up Postfix with Virtual Domains using a MySQL backend.
All aliases which forward to another mail account work
Miguel Da Silva - Centro de Matemática wrote:
Dear users, I realized today that the local SMTP server is not working
as expected.
I found these lines in the log files:
Mar 2 22:42:48 smtp postfix/smtpd[30427]: 1A66913105B:
client=r190-134-zz-xx.dialup.adsl.anteldata.net.uy[190.134.zz.xx], sa
Miguel Da Silva - Centro de Matemática wrote:
Dear users, I realized today that the local SMTP server is not working
as expected.
I found these lines in the log files:
Mar 2 22:42:48 smtp postfix/smtpd[30427]: 1A66913105B:
client=r190-134-zz-xx.dialup.adsl.anteldata.net.uy[190.134.zz.xx], sa
Big Pizzle wrote:
On our old server that doesn't do any Virtual Domains, we have lines in
our /etc/alias which look like the following:
usera: |/export/home/users/usera/blah/script.pl
I just recently set up Postfix with Virtual Domains using a MySQL
backend. All aliases which forward to
On Wed, Mar 04, 2009 at 12:29:29AM -0200, Miguel Da Silva - Centro de
Matem?tica wrote:
Mar 2 18:42:02 smtp postfix/smtpd[15652]: NOQUEUE: reject: RCPT from
r190-134-zz-xx.dialup.adsl.anteldata.net.uy[190.134.zz.
xx]: 450 4.7.1 dest...@cmat.edu.uy: Recipient address rejected:
Greylisting in
not in anything i hv read so far
- Original Message
From: Daniel L. Miller dmil...@amfes.com
To: Postfix Users List postfix-users@postfix.org
Sent: Wednesday, March 4, 2009 5:38:40 AM
Subject: Variables for addresses in master.cf
Does Postfix support variables (I suppose
53 matches
Mail list logo