| |
| |
| |
|
Comments:
<0> When setting up Postfix to use SPF checking, the online documentation tells me to place the SPF checking into the smtpd_recipient_restrictions area, but why? Shouldn't the SPF be checked during the smtpd_saender_restrictions checks???
<0> Also, I've noticed that when I use SPF with the -all and not the ~all, the SPF checker is reporting that there's no SPF on the sending domain, when it's clearly defined - if I use the ~all, then all I get is a soft-fail when bogus mail is sent, which means that SPF is only adding more useless headers, but not actually blocking bad mail
<0> For those wondering, I'm using libspf2-0 on the latest debian sarge, and the postfix-policyd-spf perl script from openspf.org, version 1.07..
<0> Well well, isn't this place just jumpin! ZZZzzz...
<1> Hi. Is it possible to make postfix execute a program in .forward without p***ing the incomming mail as argument? I only need to execute "command" whenever some new mail arrives. Is there any other way except from using .forward?
<2> how many backup mx do most people have?
<1> I have 1
<3> We have 2 MXs total at the moment. We've had up to 4
<3> if you use greylisting just make sure you greylist on every MX of the backup gets very busy :)
<3> s/of the/or the/
<3> Pegger: A lot of people say only one MX is needed. The main argument being that MXs are mostly in data centers with high availability. I disagree with this and always try to maintain at least two. My main response to the HA argument is that outages will happen sooner or later.
<3> The DC with our primary MX had a full powerout recently when a test of the backup power system failed to kick over to diesel
<2> Solver, gotta love those people that have all thier mx in one data center
<3> exactly - silly
<2> Solver, awsome test
<2> Solver, hopefully they learned their lesson not to test, ha ha
<3> yeah, it was kind of annoying but at least mail queued on the backup MX (which is in Australia)
<3> our MX 10 & MX 20 are 15000km apart :) Seperated network wise too
<3> Pegger: I run my own company - www.opentrend.net
<3> Hmm..the irc network seems to think I'm unregistered
<2> Solver, so you are a consulting company
<3> yeah. we do OSS/Linux consulting.
<3> lots of fun :)
<3> Right now I'm trying to figure out why a perfectly ok sound card and drive is making no noise under a 2.6 kernel :)
<3> s/drive/driver/
<3> Pegger: Sorry I'm blocked from sending messages, some registration issue. Working for yourself has lots of advantages but the amount of work involved is _significant_
<2> Solver, well I have a full time job as a systems admin currently and just graduated college, so I am already getting sick of the stupid **** that they have me do l
<3> The main reason I went to work for myself is because I got sick of people doing things "the hard way"
<3> at least as a consultant people hire you if they like your idea of how to complete the project
<4> hi xororand ;)
<5> hi
<6> hello
<6> I've just enabled tls, and my logs are full of "warning: master_wakeup_timer_event: service private/tlsmgr: No such device or address"
<6> I suppose this is related to
<6> tls_random_source = dev:/dev/urandom
<6> in my main.cf
<6> which does exist
<6> cr--r--r-- 1 root root 1, 9 Jan 13 09:56 /dev/urandom
<6> what am I doing wrong?
<7> Diagnosing, at a guess. :)
<7> What makes you think it has to do with the random source?
<7> If you do think it is because of the randomness source, make sure that tlsmgr is not chrooted, or if it is, that there's a /dev/urandom inside the chroot.
<6> well, it does talk about a device :)
<6> I think it is chrooted indeed
<6> aha!
<6> there we go. Hurrah!
<6> thank you mendel :D
<8> I'm getting "host or domain name not found" errors in my syslog. I can resolve the MX record manually but postfix always fails. How come?
<9> chroot
<8> f3ew, I was wondering whether it was that (sorry, newbie). How do I allow postfix to resolve names in its chroot?
<10> jeff_: Debian?
<8> ChrisH, yes (Ubuntu)
<10> jeff_: /etc/init.d/postfix restart
<10> jeff_: That copies /etc/hosts and /etc/resolv.conf into the jail
<8> ChrisH, ah brilliant.
<8> ChrisH, it was because I changed the DNS from relaying through my router to a direct DNS. I should've thought about that more, thanks!
<11> Do I have to configure amavis with spam***asin in order to filer spam, and is this possible?
<10> d_l0rd: amavis has spam******in support built-in. Just take care of the @byp***... option
<12> hello folks
<12> i've got a question, a little OT tho: does anybody know a imap server thats able to replicate with several masters?
<10> sts: OT: can't you use a common NFS share?
<12> ChrisH: i need it to have the same mailbox contents on several sites.
<10> sts: touch... no idea... replicating is always tricky... especially when merging concurrent changes
<12> ChrisH: so e.g. i want a replication of a mailbox on two sites. if the user's accessing the mailbox from home, he should use a server in the noc, if he's in the office he should use the local server to access his data.
<10> sts: Haven't tried such things yet. Perhaps a file system that allows replication might help. I'd take a look at AFS.
<10> sts: But that's just theory.
<12> ChrisH: can't find anything online either.
<12> ChrisH: things like these seem not to be used very often, altough that'd be a common use case.
<10> sts: If I were an ISP I'd use some kind of SAN for the mailboxes. But replicating across NOCs might just be for paranoid ISPs. :)
<13> I have smtpd_recipient_restrictions = check_recipient_access hash:/etc/postfix/access, permit_mynetworks, reject_unauth_destination, permit_sasl_authenticated, and /etc/postfix/access blocking an e-mail address
<14> i was wondering ... how does postfix handle the + in a email address hosted locally?
<13> but I'm still receiving mail from that address.. huh?
<9> WildPikachu properly
<9> ChrisH even we don't replicate across NOCs
<14> hehehe :)
<9> See recipient_delimiter
<9> sts have you looked at DRBD?
<10> f3ew: would probably be a bit overkill to replicate SANs
<15> sts: afaik (don't hang me on it) check cyrus-imapd for replication of the mailspool...
<9> murder
<9> you mean, printouts
<10> "Okay, we are shutting down the SAN in 10 minutes to fax the diffs through. Close your files, please."
<16> hey ... have anyone ever had some problems with receiving emails from a hotmail-account? running postfix-2.2.5 on a gentoo machine..
<9> schrank not me
<16> f3ew: ok .. ive had this problem with emails containing attached files ... hotmail connects to my server but times out... and i never get the mail..
<16> but i have no problems receiving mails from other hosts...
<9> are you blocking ICMP?
<16> i don't know if i am... how can i check for ICMP?
<16> f3ew: ?
<9> ping inwards?
<16> sorry .. im a noob ... explain :S
<17> Hello. Using postfix, how do I pipe mail for a virtual user to an external program?
<17> The equivalent in sendmail to "| /some/program"
<18> use the same syntax in the defn
<18> and enable it in mail_to_command
<17> defn?
<18> err, thats not correct
<18> definition
<18> allow_mail_to_command
<18> http://www.postfix.org/postconf.5.html
<17> thanks
<17> rcsu, It appear that mail to a command is enabled in alias files by default, is the "| program" syntax the same in the alias file as with sendmail?
<18> yep
<17> rcsu, thanks, it works :)
<18> np
<19> But, aliases(5) only applies to local(8) users.
<17> rob0, you mean in relation to the piping mail question?
<19> Well that, yes, but in general. There are virtual(5) aliases, but I don't think those can go to commands.
<18> pie: yes
<18> rob0: isnt the virtual transport able to pipe to commands ? (never checked that)
<17> I added a made-up user to the virtual file and forwarded all mail for a particular domain there, then aliased that user in /etc/aliases
<9> rcsu no
<17> the user doesn't exists, but the mail is piped.
<9> It is pretty much a FAQ
<9> pie that is the standard way
<19> ah, so it IS a local(8) user then.
<9> rob0 nope
<9> virtual user -> local alias
<9> user@virtual luser@localhost
<17> f3ew, but luser@localhost does not have to be a system user.
<9> pie no
<9> as long as the right hand side of the @ is in mydestination
<19> Okay, I get it.
Return to
#postfix
or
Go to some related
logs:
#fluxbox
__cxa_get_exception_ptr +gentoo +kdelibs
1684370019
install nvidia t23 ubuntu
#perl
#php
undefined reference to `inotify_add_watch
css 2.2
#centos
kino FUTEX_WAIT
|
|