mailserver generating
this message.
If you don't see that sender on your postfix gateway, then I guess
it's your internal exchange server.
--
Ralf Hildebrandt
Geschäftsbereich IT | Abteilung Netzwerk
Charité - Universitätsmedizin Berlin
Campus Benjamin Franklin
Hindenburgdamm 30 | D-12203
Today I found this double-bounce:
- Forwarded message from Mail Delivery System mailer-dae...@charite.de
-
bounce-25280...@customer110.goolara.net: host
customer110.goolara.net[209.209.90.110] said: 552 Invalid size declaration.
(in reply to MAIL FROM command)
Reporting-MTA:
* Ralf Hildebrandt ralf.hildebra...@charite.de:
Jun 10 13:00:04 mail-ausfall postfix/smtp[7597]:
customer110.goolara.net[209.209.90.110]:25: MAIL FROM:hil...@charite.de
SIZE=19091 BODY=8BITMIME
Jun 10 13:00:04 mail-ausfall postfix/smtp[7597]:
customer110.goolara.net[209.209.90.110]:25
I heard that there are firewalls/security appliances that supposedly
can distinguish somebody using telnet from a machine speaking SMTP.
I must admit, it sounds feasible (timing between keystrokes etc.), but
little useful.
Anyway. Is there such a thing? Does anybody use such a thing?
--
Ralf
issues
with your server will use telnet 25 from time to time. There is no
need to block this, it is by far the least likely source of any
significant spam volume...
Indeed. There are faster methods.
--
Ralf Hildebrandt
Geschäftsbereich IT | Abteilung Netzwerk
Charité - Universitätsmedizin
my point.
--
Ralf Hildebrandt
Geschäftsbereich IT | Abteilung Netzwerk
Charité - Universitätsmedizin Berlin
Campus Benjamin Franklin
Hindenburgdamm 30 | D-12203 Berlin
Tel. +49 30 450 570 155 | Fax: +49 30 450 570 962
ralf.hildebra...@charite.de | http://www.charite.de
* Stefano Villa st...@pobox.com:
I've the task to implement a disclaimer for all mail.
What product can I use?
Altermime
--
Ralf Hildebrandt
Geschäftsbereich IT | Abteilung Netzwerk
Charité - Universitätsmedizin Berlin
Campus Benjamin Franklin
Hindenburgdamm 30 | D-12203 Berlin
Tel
* Ralf Hildebrandt ralf.hildebra...@charite.de:
Jun 15 18:30:20 mail postfix/dnsblog[15154]: addr 79.15.172.144 blocked by
domain mykey.zen.dq.spamhaus.net as 127.0.0.4
Jun 15 18:30:24 mail postfix/postscreen[14995]: DNSBL rank 1 for 79.15.172.144
again, blacklisted, 15 minutes later
* Ralf Hildebrandt ralf.hildebra...@charite.de:
I think it was due to me using:
postscreen_blacklist_action = drop
and no postscreen_dnsbl_action at all.
Once I set
postscreen_dnsbl_action = drop
it seems to work as intended.
--
Ralf Hildebrandt
Geschäftsbereich IT | Abteilung Netzwerk
the
french system only contained hostnames which would not resolve :(
May I recommend that Postfix at least emits the IP in it's rejection message,
e.g. like:
521 5.7.1 123.123.123.123 Blocked by DNSBL
--
Ralf Hildebrandt
Geschäftsbereich IT | Abteilung Netzwerk
Charité - Universitätsmedizin
* Wietse Venema wie...@porcupine.org:
Ralf Hildebrandt:
Today I got this bounce from somebody whose mail had been rejected:
catalog-...@python.org: Protocol error: host
mail.python.org[82.94.164.166] refused to talk to me:
220-mail.python.org ESMTP Postfix 521 5.7.1 Blocked by DNSBL
!
--
Ralf Hildebrandt
Geschäftsbereich IT | Abteilung Netzwerk
Charité - Universitätsmedizin Berlin
Campus Benjamin Franklin
Hindenburgdamm 30 | D-12203 Berlin
Tel. +49 30 450 570 155 | Fax: +49 30 450 570 962
ralf.hildebra...@charite.de | http://www.charite.de
* then convert into real Database
It would actually help the user to use the path that has been
recommended by Victor et.al.
--
Ralf Hildebrandt
Geschäftsbereich IT | Abteilung Netzwerk
Charité - Universitätsmedizin Berlin
Campus Benjamin Franklin
Hindenburgdamm 30 | D-12203 Berlin
Tel. +49
is
online?
That's the default :)
I have enclosed my main.cf, master.cf, and transport configs (at least the
non-default ones).
postconf -n is very much preferred.
The config looks OK so far
--
Ralf Hildebrandt
Geschäftsbereich IT | Abteilung Netzwerk
Charité - Universitätsmedizin
* Phil Howard ttip...@gmail.com:
Been trying to figure that out. I'm wanting to use CDB. But it
wasn'tfile.out taking it. I guess what I need to do is give each domain a
dummy value.
awk '{printf(%s OK\n,$1)}' file file.out
postmap file.out
--
Ralf Hildebrandt
Geschäftsbereich
this problem with much mail
domains) isn't in blacklist and this domain is certainly 'clean'.
My doubt is for what reason these mail are blocked ?
On my mail server I have SA-3.2.5 with postfix/amavisd-new/clamav.
Check the logs amavis is generating
Grep for 23600-10
--
Ralf Hildebrandt
* sasashop s...@shoponweb.it:
Ralf Hildebrandt wroted:
Check the logs amavis is generating
Grep for 23600-10
I have only log file '/var/log/mailllog' and in this log file I have,
about 23600-10 only this:
[r...@mail ~]# grep 2360010 /var/log/maillog
Jun 24 13:10:26 mail postfix/smtp
* David Hill dh...@mindcry.org:
soft_bounce = yes
turn it off
--
Ralf Hildebrandt
Geschäftsbereich IT | Abteilung Netzwerk
Charité - Universitätsmedizin Berlin
Campus Benjamin Franklin
Hindenburgdamm 30 | D-12203 Berlin
Tel. +49 30 450 570 155 | Fax: +49 30 450 570 962
in your organization?
--
Ralf Hildebrandt
Geschäftsbereich IT | Abteilung Netzwerk
Charité - Universitätsmedizin Berlin
Campus Benjamin Franklin
Hindenburgdamm 30 | D-12203 Berlin
Tel. +49 30 450 570 155 | Fax: +49 30 450 570 962
ralf.hildebra...@charite.de | http://www.charite.de
* Matt Hayes domin...@slackadelic.com:
ASA:
config t
no inspect smtp
Amen to that!
--
Ralf Hildebrandt
Geschäftsbereich IT | Abteilung Netzwerk
Charité - Universitätsmedizin Berlin
Campus Benjamin Franklin
Hindenburgdamm 30 | D-12203 Berlin
Tel. +49 30 450 570 155 | Fax: +49 30
in that case, and no other
restriction fires.
Maybe you have more restrictions?
--
Ralf Hildebrandt
Geschäftsbereich IT | Abteilung Netzwerk
Charité - Universitätsmedizin Berlin
Campus Benjamin Franklin
Hindenburgdamm 30 | D-12203 Berlin
Tel. +49 30 450 570 155 | Fax: +49 30 450 570 962
a tcpdump to understand why I got this error and I found that one of
the RCPT TO: command is cut in two packets.
First packet finished by RC and second packet began by PT TO:. And the
server doesn't understand this command.
Is there a firewall between the two?
--
Ralf Hildebrandt
* poindessous...@foncia.fr poindessous...@foncia.fr:
Yes, I think this is a cisco asa 5550, with a special filter which protects
smtp server.
Do you think I should ask to disable it ?
Yes. It causes nothing but grief :)
--
Ralf Hildebrandt
Geschäftsbereich IT | Abteilung Netzwerk
* Joe Wong joewon...@gmail.com:
Hello,
I am looking for a way to configure a 2nd postfix instance for
handle mail bounce only. Is it possible?
2nd instance on the same machine?
--
Ralf Hildebrandt
Geschäftsbereich IT | Abteilung Netzwerk
Charité - Universitätsmedizin Berlin
Campus
this 'bounce' postfix instance. Any thought?
Simply set the envelope sender to a domain/hostname which ends up on
the other host.
That's it.
--
Ralf Hildebrandt
Geschäftsbereich IT | Abteilung Netzwerk
Charité - Universitätsmedizin Berlin
Campus Benjamin Franklin
Hindenburgdamm 30 | D-12203
deferred!
--
Ralf Hildebrandt
Geschäftsbereich IT | Abteilung Netzwerk
Charité - Universitätsmedizin Berlin
Campus Benjamin Franklin
Hindenburgdamm 30 | D-12203 Berlin
Tel. +49 30 450 570 155 | Fax: +49 30 450 570 962
ralf.hildebra...@charite.de | http://www.charite.de
=joerg.hal...@flaig-hommel.de
to=m.b...@otec.de proto=ESMTP helo=mail.gbc.net
client host rejected would require for the host to be in a
check_client_access table, right?
Hostname or IP or net or domain, yes.
--
Ralf Hildebrandt
Geschäftsbereich IT | Abteilung Netzwerk
Charité
in and postfix does run, it does send mail in the clear.
However, we need it to send via TLS. I am wondering if there is a line
in main.cf that tells postfix to advertis/offer TLS authentication that
is not set. Is there a command to ask postfix if TLS is running?
postconf -n
--
Ralf Hildebrandt
* Adrian P. van Bloois adr...@accu.uu.nl:
Hi,
Can I automagically attach a different disclaimer for each domain?
if so, how? Are there different options?
Which program is appending the single disclaimer now?
--
Ralf Hildebrandt
Geschäftsbereich IT | Abteilung Netzwerk
Charité
A appended.
local_header_rewrite_clients =
--
Ralf Hildebrandt
Geschäftsbereich IT | Abteilung Netzwerk
Charité - Universitätsmedizin Berlin
Campus Benjamin Franklin
Hindenburgdamm 30 | D-12203 Berlin
Tel. +49 30 450 570 155 | Fax: +49 30 450 570 962
ralf.hildebra...@charite.de
this been answered? It also affects me, so I'd like to know :)
--
Ralf Hildebrandt
Geschäftsbereich IT | Abteilung Netzwerk
Charité - Universitätsmedizin Berlin
Campus Benjamin Franklin
Hindenburgdamm 30 | D-12203 Berlin
Tel. +49 30 450 570 155 | Fax: +49 30 450 570 962
ralf.hildebra
is the default, BTW.
--
Ralf Hildebrandt
Geschäftsbereich IT | Abteilung Netzwerk
Charité - Universitätsmedizin Berlin
Campus Benjamin Franklin
Hindenburgdamm 30 | D-12203 Berlin
Tel. +49 30 450 570 155 | Fax: +49 30 450 570 962
ralf.hildebra...@charite.de | http://www.charite.de
* Aravind Divakaran aravind.divaka...@yukthi.com:
$SENDMAIL $@ in.$$
That must be
$SENDMAIL -i $@ in.$$
--
Ralf Hildebrandt
Geschäftsbereich IT | Abteilung Netzwerk
Charité - Universitätsmedizin Berlin
Campus Benjamin Franklin
Hindenburgdamm 30 | D-12203 Berlin
Tel. +49 30 450 570
outgoing will be blocked by most ISPs, but let's assume that's
not done by all IPS. It would work with the submission port!
--
Ralf Hildebrandt
Geschäftsbereich IT | Abteilung Netzwerk
Charité - Universitätsmedizin Berlin
Campus Benjamin Franklin
Hindenburgdamm 30 | D-12203 Berlin
Tel. +49
* Rod Dorman r...@polylogics.com:
Have we gone far enough off the topic of Postfix yet for this thread to
be declared dead?
Yes, especially since this was about SSL attacks.
--
Ralf Hildebrandt
Geschäftsbereich IT | Abteilung Netzwerk
Charité - Universitätsmedizin Berlin
Campus
in the HOLD queue keeps
the same (device, inode) numbers.
That's ok.
--
Ralf Hildebrandt
Geschäftsbereich IT | Abteilung Netzwerk
Charité - Universitätsmedizin Berlin
Campus Benjamin Franklin
Hindenburgdamm 30 | D-12203 Berlin
Tel. +49 30 450 570 155 | Fax: +49 30 450 570 962
. This is unacceptable. chose your camp...
I know we're getting off-topic, but this has bothered me in the past.
What is the alternative here? As far as I know, there are no
correct reserved domains. Is one bad choice worse than another?
.invalid
--
Ralf Hildebrandt
Geschäftsbereich IT | Abteilung Netzwerk
/etc/postfix/postfix-dnswl-permit
server# grep -C 5 '74.125.82.180' /usr/local/etc/postfix/postfix-permit
/usr/local/etc/postfix/postfix-permit
--
Ralf Hildebrandt
Geschäftsbereich IT | Abteilung Netzwerk
Charité - Universitätsmedizin Berlin
Campus Benjamin Franklin
Hindenburgdamm 30
systems.
--
Ralf Hildebrandt
Geschäftsbereich IT | Abteilung Netzwerk
Charité - Universitätsmedizin Berlin
Campus Benjamin Franklin
Hindenburgdamm 30 | D-12203 Berlin
Tel. +49 30 450 570 155 | Fax: +49 30 450 570 962
ralf.hildebra...@charite.de | http://www.charite.de
containing in.
Of course it's utterly suboptimal and probably even incorrectly
implemented.
ritten to the message, what use does this have? Strip any
non-internal headers for privacy, perhaps?
Yes. Lousy job.
--
Ralf Hildebrandt
Geschäftsbereich IT | Abteilung Netzwerk
Charité
, and so forth.
Yes, set smtpd_delay_reject = no
--
Ralf Hildebrandt
Geschäftsbereich IT | Abteilung Netzwerk
Charité - Universitätsmedizin Berlin
Campus Benjamin Franklin
Hindenburgdamm 30 | D-12203 Berlin
Tel. +49 30 450 570 155 | Fax: +49 30 450 570 962
ralf.hildebra...@charite.de
caused the rejection at
an earlier stage.
--
Ralf Hildebrandt
Geschäftsbereich IT | Abteilung Netzwerk
Charité - Universitätsmedizin Berlin
Campus Benjamin Franklin
Hindenburgdamm 30 | D-12203 Berlin
Tel. +49 30 450 570 155 | Fax: +49 30 450 570 962
ralf.hildebra...@charite.de | http
], a public DNS server.
Which connection?
I do not use OpenDNS in my /etc/resolv.conf file (I have 2 other
nameservers listed)
Local nameservers or remote nameservers?
--
Ralf Hildebrandt
Geschäftsbereich IT | Abteilung Netzwerk
Charité - Universitätsmedizin Berlin
Campus Benjamin Franklin
;
report-type=disposition-notification
But how to specify this in postfix ? And if it is not necessary, is
there a way to say if this header is present then check the body ?
via header_checks
--
Ralf Hildebrandt
Geschäftsbereich IT | Abteilung Netzwerk
Charité - Universitätsmedizin
= that's a lot
50.000/50min = 10.000/min = 186/s = that's even more
--
Ralf Hildebrandt
Geschäftsbereich IT | Abteilung Netzwerk
Charité - Universitätsmedizin Berlin
Campus Benjamin Franklin
Hindenburgdamm 30 | D-12203 Berlin
Tel. +49 30 450 570 155 | Fax: +49 30 450 570 962
,
No
or it is smart and will use previous lookup result to compare with next
address?
Indeed. And that's actually documented
--
Ralf Hildebrandt
Geschäftsbereich IT | Abteilung Netzwerk
Charité - Universitätsmedizin Berlin
Campus Benjamin Franklin
Hindenburgdamm 30 | D-12203 Berlin
Tel. +49 30 450
* Ralf Hildebrandt ralf.hildebra...@charite.de:
Indeed. And that's actually documented
http://www.postfix.org/STRESS_README.html
Although the above example shows three RBL lookups (lines 4-6),
Postfix will only do a single DNS query, so it does not affect the
performance.
--
Ralf
is not at all an issue , because postfix gives it to further
relay boxes which are under our control again.
Why not inject to the further relay boxes?
Do I need to increase the hardware
It could be :)
--
Ralf Hildebrandt
Geschäftsbereich IT | Abteilung Netzwerk
Charité - Universitätsmedizin
-app046 postfix/master[4555]: warning:
/usr/lib/postfix/smtp: bad command startup -- throttling
And Prior to that?
--
Ralf Hildebrandt
Geschäftsbereich IT | Abteilung Netzwerk
Charité - Universitätsmedizin Berlin
Campus Benjamin Franklin
Hindenburgdamm 30 | D-12203 Berlin
Tel. +49 30 450
/etc/postfix/virtual
Fix that. Maybe there was a change in BerkeleyDB versions...
--
Ralf Hildebrandt
Geschäftsbereich IT | Abteilung Netzwerk
Charité - Universitätsmedizin Berlin
Campus Benjamin Franklin
Hindenburgdamm 30 | D-12203 Berlin
Tel. +49 30 450 570 155 | Fax: +49 30 450 570
* J4 ju...@klunky.co.uk:
On 08/13/2010 04:24 PM, Ralf Hildebrandt wrote:
* J4 ju...@klunky.co.uk:
Aug 13 16:20:07 pp24-app046 postfix/cleanup[6184]: warning: database
/etc/postfix/virtual.db is older than source file /etc/postfix/virtual
Aug 13 16:20:07 pp24-app046 postfix/trivial
?
I'd like to know that as well. There used to be the day old bread BL.
--
Ralf Hildebrandt
Geschäftsbereich IT | Abteilung Netzwerk
Charité - Universitätsmedizin Berlin
Campus Benjamin Franklin
Hindenburgdamm 30 | D-12203 Berlin
Tel. +49 30 450 570 155 | Fax: +49 30 450 570 962
?
http://www.mail-archive.com/us...@spamassassin.apache.org/msg57008.html
Dunno if Marc is still active
--
Ralf Hildebrandt
Geschäftsbereich IT | Abteilung Netzwerk
Charité - Universitätsmedizin Berlin
Campus Benjamin Franklin
Hindenburgdamm 30 | D-12203 Berlin
Tel. +49 30 450 570 155
=127.0.0.6
should work for that particular purpose.
--
Ralf Hildebrandt
Geschäftsbereich IT | Abteilung Netzwerk
Charité - Universitätsmedizin Berlin
Campus Benjamin Franklin
Hindenburgdamm 30 | D-12203 Berlin
Tel. +49 30 450 570 155 | Fax: +49 30 450 570 962
ralf.hildebra...@charite.de | http
?
Probably, with positiv and negative weights?
--
Ralf Hildebrandt
Geschäftsbereich IT | Abteilung Netzwerk
Charité - Universitätsmedizin Berlin
Campus Benjamin Franklin
Hindenburgdamm 30 | D-12203 Berlin
Tel. +49 30 450 570 155 | Fax: +49 30 450 570 962
ralf.hildebra...@charite.de | http
(in reply to RCPT TO command)
$ host -t mx redmijncomputer.nl
redmijncomputer.nl mail is handled by 10 95.97.73.154.
It should be mail.redmijncomputer.nl instead of 95.97.73.154
--
Ralf Hildebrandt
Geschäftsbereich IT | Abteilung Netzwerk
Charité - Universitätsmedizin Berlin
Campus Benjamin
* Aniruddha mailingdotl...@gmail.com:
On Thu, Sep 2, 2010 at 9:58 AM, Ralf Hildebrandt
ralf.hildebra...@charite.de wrote:
$ host -t mx redmijncomputer.nl
redmijncomputer.nl mail is handled by 10 95.97.73.154.
It should be mail.redmijncomputer.nl instead of 95.97.73.154
--
Thank you
for donbass.com with a large stick.
--
Ralf Hildebrandt
Geschäftsbereich IT | Abteilung Netzwerk
Charité - Universitätsmedizin Berlin
Campus Benjamin Franklin
Hindenburgdamm 30 | D-12203 Berlin
Tel. +49 30 450 570 155 | Fax: +49 30 450 570 962
ralf.hildebra...@charite.de | http
/ps_cache.db: No such file or directory
--
Ralf Hildebrandt
Geschäftsbereich IT | Abteilung Netzwerk
Charité - Universitätsmedizin Berlin
Campus Benjamin Franklin
Hindenburgdamm 30 | D-12203 Berlin
Tel. +49 30 450 570 155 | Fax: +49 30 450 570 962
ralf.hildebra...@charite.de | http
:50:02 mail postfix/postscreen[25263]: close database
/var/lib/postfix/ps_cache.db: No such file or directory
Sep 4 14:50:21 mail postfix/postscreen[27086]: close database
/var/lib/postfix/ps_cache.db: No such file or directory
--
Ralf Hildebrandt
Geschäftsbereich IT | Abteilung Netzwerk
that a bug in BerkeleyDB then - and should be reported?
--
Ralf Hildebrandt
Geschäftsbereich IT | Abteilung Netzwerk
Charité - Universitätsmedizin Berlin
Campus Benjamin Franklin
Hindenburgdamm 30 | D-12203 Berlin
Tel. +49 30 450 570 155 | Fax: +49 30 450 570 962
ralf.hildebra...@charite.de
reading Sacred games and they talk about Lakhs of Rupees all
the time. It's 100k. Ah!
--
Ralf Hildebrandt
Geschäftsbereich IT | Abteilung Netzwerk
Charité - Universitätsmedizin Berlin
Campus Benjamin Franklin
Hindenburgdamm 30 | D-12203 Berlin
Tel. +49 30 450 570 155 | Fax: +49 30 450
* Claudio Prono claudio.pr...@atpss.net:
Ok, this is right, but is also an information leak... with rcpt to i can
enumerate the local users of the system, and for me this is not too
good... No way to fix this?
Turn off SMTP :)
--
Ralf Hildebrandt
Geschäftsbereich IT | Abteilung Netzwerk
)
solution ideas would be appreciated as well.
--
Ralf Hildebrandt
Geschäftsbereich IT | Abteilung Netzwerk
Charité - Universitätsmedizin Berlin
Campus Benjamin Franklin
Hindenburgdamm 30 | D-12203 Berlin
Tel. +49 30 450 570 155 | Fax: +49 30 450 570 962
ralf.hildebra...@charite.de
* dky hax dky...@gmail.com:
Hello guys,
I have to configure postfix as mail server locally. After setting up I tried
to send mail via telnet only that are not received.
The log please?
--
Ralf Hildebrandt
Geschäftsbereich IT | Abteilung Netzwerk
Charité - Universitätsmedizin Berlin
postfix/smtpd[16253]: rewrite stream disconnect
mail postfix/smtpd[16253]: proxymap stream disconnect
mail postfix/smtpd[16253]: idle timeout -- exiting
--
Ralf Hildebrandt
Geschäftsbereich IT | Abteilung Netzwerk
Charité - Universitätsmedizin Berlin
Campus Benjamin Franklin
Hindenburgdamm
* dky hax dky...@gmail.com:
Ok, but the mail isn't arrived.
t...@mail:~$ mail
No mail for test
mail doesn't read maildirs
--
Ralf Hildebrandt
Geschäftsbereich IT | Abteilung Netzwerk
Charité - Universitätsmedizin Berlin
Campus Benjamin Franklin
Hindenburgdamm 30 | D-12203 Berlin
,
Garbage!
unknown_local_recipient_reject_code = 450
550, not 450
--
Ralf Hildebrandt
Geschäftsbereich IT | Abteilung Netzwerk
Charité - Universitätsmedizin Berlin
Campus Benjamin Franklin
Hindenburgdamm 30 | D-12203 Berlin
Tel. +49 30 450 570 155 | Fax: +49
it.
--
Ralf Hildebrandt
Geschäftsbereich IT | Abteilung Netzwerk
Charité - Universitätsmedizin Berlin
Campus Benjamin Franklin
Hindenburgdamm 30 | D-12203 Berlin
Tel. +49 30 450 570 155 | Fax: +49 30 450 570 962
ralf.hildebra...@charite.de | http://www.charite.de
* CT gro...@obsd.us:
General postfix question regarding MX lookups..
Does Postfix do an MX lookup on inbound mail as part of
spam prevention or some other check.. ?
How would that help? What exactly are you trying to achieve?
--
Ralf Hildebrandt
Geschäftsbereich IT | Abteilung Netzwerk
:
reject_unknown_reverse_client_hostname
oder (more harsh)
reject_unknown_client_hostname
so the question regarding inbound MX lookups came up so I figured I
would ask..
A MX lookup is performed to check if the sender domain exists; it can
be activated using:
reject_unknown_sender_domain
--
Ralf Hildebrandt
to
non-existant recipients!
--
Ralf Hildebrandt
Geschäftsbereich IT | Abteilung Netzwerk
Charité - Universitätsmedizin Berlin
Campus Benjamin Franklin
Hindenburgdamm 30 | D-12203 Berlin
Tel. +49 30 450 570 155 | Fax: +49 30 450 570 962
ralf.hildebra...@charite.de | http://www.charite.de
it.
And that's the problem. Why?
You're apparently relaying to a content filter before doing recipient
address verification.
As you can see from his postconf -n, he IS doing recipient address
verification
--
Ralf Hildebrandt
Geschäftsbereich IT | Abteilung Netzwerk
Charité - Universitätsmedizin Berlin
ldap:/etc/postfix/ldap/virtual_domains.cf
virtualDomains
Aha. According to this it's in virtual_mailbox_domains!
That's the error
For your setup I'd say:
* make roessner-net.com a relay_domain
* use transport_maps to transport it to localhost via LMTP
* use relay_recipient_maps
--
Ralf
...@gmail.com to=listadipr...@sms.unimo.it proto=SMTP
helo=localhost
Well, the address is not valid :)
User unknown in virtual mailbox table
Create the addressr listadipr...@sms.unimo.it
virtual_mailbox_maps = hash:/etc/postfix/sql/virtual_mailbox_maps
in this map
--
Ralf Hildebrandt
to fsync the mbox/Maildir file and/or directory
before it acknowledges successful receipt of an email?
THAT is not possible, since the process which is ACCEPTING the mail
(smtpd) is NOT the same process that is writing to a local mailbox
(local), due due Postfix's non-monolithical design.
--
Ralf
to the newer version. Is there a way that I
can easily locate these changes to the variables?
That's hard :)
--
Ralf Hildebrandt
Geschäftsbereich IT | Abteilung Netzwerk
Charité - Universitätsmedizin Berlin
Campus Benjamin Franklin
Hindenburgdamm 30 | D-12203 Berlin
Tel. +49 30 450 570 155
parameter.
Please show the exact error messages from your log!
--
Ralf Hildebrandt
Geschäftsbereich IT | Abteilung Netzwerk
Charité - Universitätsmedizin Berlin
Campus Benjamin Franklin
Hindenburgdamm 30 | D-12203 Berlin
Tel. +49 30 450 570 155 | Fax: +49 30 450 570 962
ralf.hildebra
What's running on 127.0.0.1? A virus scanner?
--
Ralf Hildebrandt
Geschäftsbereich IT | Abteilung Netzwerk
Charité - Universitätsmedizin Berlin
Campus Benjamin Franklin
Hindenburgdamm 30 | D-12203 Berlin
Tel. +49 30 450 570 155 | Fax: +49 30 450 570 962
ralf.hildebra...@charite.de
of this behaviour. Is this your server sending
out mail someplace else or your server receiving?
--
Ralf Hildebrandt
Geschäftsbereich IT | Abteilung Netzwerk
Charité - Universitätsmedizin Berlin
Campus Benjamin Franklin
Hindenburgdamm 30 | D-12203 Berlin
Tel. +49 30 450 570 155 | Fax: +49 30
the postmaster (me) get notified, if
new mail is on hold?
Use a script to parse your log. E.g. logcheck
--
Ralf Hildebrandt
Geschäftsbereich IT | Abteilung Netzwerk
Charité - Universitätsmedizin Berlin
Campus Benjamin Franklin
Hindenburgdamm 30 | D-12203 Berlin
Tel. +49 30 450 570
the log excerpt mean? Which protocol error exactly is postscreen
complaining about?
--
Ralf Hildebrandt
Geschäftsbereich IT | Abteilung Netzwerk
Charité - Universitätsmedizin Berlin
Campus Benjamin Franklin
Hindenburgdamm 30 | D-12203 Berlin
Tel. +49 30 450 570 155 | Fax: +49 30 450 570 962
[192.109.31.12]
Sep 30 15:53:56 mail postfix/smtpd[10563]: NOQUEUE:
client=mail.EMBL-Hamburg.DE[192.109.31.12]
Sep 30 15:53:56 mail postfix/smtpd[10563]: disconnect from
mail.EMBL-Hamburg.DE[192.109.31.12]
which seems to back our both assumptions.
--
Ralf Hildebrandt
Geschäftsbereich IT | Abteilung
* Len Conrad lcon...@go2france.com:
I've used pregreet on some very high volume MX for months, and had one FP.
I had these two (within one year), both with sendmails with (presumably!)
the same (?) milter.
--
Ralf Hildebrandt
Geschäftsbereich IT | Abteilung Netzwerk
Charité
* Ralf Hildebrandt ralf.hildebra...@charite.de:
192.109.31.12 is running:
220 mail.EMBL-Hamburg.DE ESMTP Sendmail 8.13.8/8.13.8/Debian-2; Thu, 30 Sep
2010 16:06:22 +0200; (No UCE/UBE) logging access from:
mail.charite.de(OK)-mail.charite.de [141.42.202.200]
I found another one:
220 klx11
* jason hirsh hir...@att.net:
I am doing an installation on a new FreeBSD 8.1 box and it fail with
postfix: warning: valid_hostname: invalid character 32(decimal):
my.domain-server.com
remove the trailing or leading space
from my.domain-server.com or my.domain-server.com
--
Ralf
* Tom Kinghorn thomas.kingh...@gmail.com:
Thats 1 slap for me for missing the //'s
Well, at least you got the rest of the syntax right.
:)
--
Ralf Hildebrandt
Geschäftsbereich IT | Abteilung Netzwerk
Charité - Universitätsmedizin Berlin
Campus Benjamin Franklin
Hindenburgdamm 30 | D
or
/^westcoast[0-9]...@gmail\.com$/ REJECT
You're lacking the //
--
Ralf Hildebrandt
Geschäftsbereich IT | Abteilung Netzwerk
Charité - Universitätsmedizin Berlin
Campus Benjamin Franklin
Hindenburgdamm 30 | D-12203 Berlin
Tel. +49 30 450 570 155 | Fax: +49 30 450 570 962
ralf.hildebra
; not from within my networks, but yes. I've
seen them!
--
Ralf Hildebrandt
Geschäftsbereich IT | Abteilung Netzwerk
Charité - Universitätsmedizin Berlin
Campus Benjamin Franklin
Hindenburgdamm 30 | D-12203 Berlin
Tel. +49 30 450 570 155 | Fax: +49 30 450 570 962
ralf.hildebra
by using alway_bcc_maps to a simple mailbox and
examine the mails in detail.
--
Ralf Hildebrandt
Geschäftsbereich IT | Abteilung Netzwerk
Charité - Universitätsmedizin Berlin
Campus Benjamin Franklin
Hindenburgdamm 30 | D-12203 Berlin
Tel. +49 30 450 570 155 | Fax: +49 30 450 570 962
, reject_unauth_destination,
check_policy_service inet:127.0.0.1:10031
Show postconf -n output and your master.cf!
--
Ralf Hildebrandt
Geschäftsbereich IT | Abteilung Netzwerk
Charité - Universitätsmedizin Berlin
Campus Benjamin Franklin
Hindenburgdamm 30 | D-12203 Berlin
Tel. +49 30 450 570 155 | Fax: +49
/12, 127.0.0.0/8 to ever reach
check_policy_service inet:127.0.0.1:10031,
--
Ralf Hildebrandt
Geschäftsbereich IT | Abteilung Netzwerk
Charité - Universitätsmedizin Berlin
Campus Benjamin Franklin
Hindenburgdamm 30 | D-12203 Berlin
Tel. +49 30 450 570 155 | Fax: +49 30 450 570 962
/postfix/postscreen pid 9903 killed by signal 11
--
Ralf Hildebrandt
Geschäftsbereich IT | Abteilung Netzwerk
Charité - Universitätsmedizin Berlin
Campus Benjamin Franklin
Hindenburgdamm 30 | D-12203 Berlin
Tel. +49 30 450 570 155 | Fax: +49 30 450 570 962
ralf.hildebra...@charite.de
* Vernon A. Fort vf...@provident-solutions.com:
Thanks Wietse - installed and running.
Same here.
--
Ralf Hildebrandt
Geschäftsbereich IT | Abteilung Netzwerk
Charité - Universitätsmedizin Berlin
Campus Benjamin Franklin
Hindenburgdamm 30 | D-12203 Berlin
Tel. +49 30 450 570 155 | Fax
exit 1
fi
find cur new tmp -type f | xargs --replace /usr/local/scripts/send_mail $1 {}
/usr/local/scripts/send_mail
#!/bin/sh
/usr/local/sbin/mini_sendmail -syour.mail.host -p25 -fnob...@charite.de $1 $2
rm -f $2
--
Ralf Hildebrandt
Geschäftsbereich IT | Abteilung Netzwerk
that, use the default
smtpd_recipient_restrictions = permit_sasl_authenticated,
permit_mynetworks, reject_unauth_destination
OK
--
Ralf Hildebrandt
Geschäftsbereich IT | Abteilung Netzwerk
Charité - Universitätsmedizin Berlin
Campus Benjamin Franklin
Hindenburgdamm 30 | D-12203 Berlin
Tel
solution :)
--
Ralf Hildebrandt
Geschäftsbereich IT | Abteilung Netzwerk
Charité - Universitätsmedizin Berlin
Campus Benjamin Franklin
Hindenburgdamm 30 | D-12203 Berlin
Tel. +49 30 450 570 155 | Fax: +49 30 450 570 962
ralf.hildebra...@charite.de | http://www.charite.de
will only be used to 'suck-up' the bounces of
forwarded messages.
Interesting idea!
--
Ralf Hildebrandt
Geschäftsbereich IT | Abteilung Netzwerk
Charité - Universitätsmedizin Berlin
Campus Benjamin Franklin
Hindenburgdamm 30 | D-12203 Berlin
Tel. +49 30 450 570 155 | Fax: +49 30 450 570
the email originated from
in my Thunderbird mail client. From that IP it was transfered via SMTP
[25] to 64.38.48.101 and that IP is 'vss155.webhosting-email.com.
I hope that was a bit more clear than my 1st ramble...
Ah, maybe they're looking at all the headers, which is really stupid!
--
Ralf
I ask what the normal procedure is for mail? If the latter IP is
listed on a PBL but the last received IP is not, does it then allow?
Does Postfix only look at the the most recent received client IP for
RBL checks and thats all?
Of course. Everything else cannot be trusted anyway.
--
Ralf
501 - 600 of 1366 matches
Mail list logo