Hello world, does anyone have experience with very large (about 2k entries) hash tables? I'll have to implement a check_recipient_access rule within ...
291259
deconya
deconya@...
Feb 10, 2013 12:47 pm
Hi Recovering this thread Im configuring the CA certificates to validate the smarthost used to filter spam. At now the connection works but appears the message...
291260
Noel Jones
njones@...
Feb 10, 2013 1:00 pm
... Hash tables scale very well to hundreds of thousands of entries; 2k entries on an Atom processor with 1G ram won't be an issue. -- Noel Jones...
291261
Viktor Dukhovni
postfix-users@...
Feb 10, 2013 5:59 pm
... Configuring CApath is a lot more complicated than setting up a CAfile. When you have exactly one root CA to verify (the one used by the ISP's relay) there...
291262
weber@...
Feb 10, 2013 8:22 pm
hello, when i set in main.cf: smtp_tls_policy_maps = hash:/etc/postfix/tls_policy and do in /etc/postfix/tls_policy = ...
291263
Curtis Maurand
curtis@...
Feb 10, 2013 8:33 pm
I had a server running on gentoo and it was running OK, but the latest updates in the gentoo tree killed it. So I spent yesterday afternoon setting up new...
291264
Curtis Maurand
curtis@...
Feb 10, 2013 8:34 pm
I had a server running on gentoo and it was running OK, but the latest updates in the gentoo tree killed it. So I spent yesterday afternoon setting up new...
291265
Reindl Harald
h.reindl@...
Feb 10, 2013 8:46 pm
... what are you using for IMAP? if dovecot throw away the whole SASL crap! dovecot.conf: # configure backend for postfix sasl-auth service auth { ...
291266
Patrick Ben Koetter
p@...
Feb 10, 2013 8:59 pm
... Did you follow the SASL documentation in Ubuntus Postfix documentation? On Debian/Ubuntu etc. you have to add the postfix user to the sasl group. ... Nope....
291267
Curtis Maurand
curtis@...
Feb 10, 2013 10:59 pm
... My currwnt setup has the imap connecting to a remote server on a private network. The imap server is dbmail 2.2.17. Postfix is a member of the sasl group....
291268
Viktor Dukhovni
postfix-users@...
Feb 10, 2013 11:05 pm
... Yes, but without validation of the peer certificate. Thus you get protection from passive eavesdropping, but not active man-in-the-middle attacks (on TLS)....
291269
Reindl Harald
h.reindl@...
Feb 10, 2013 11:09 pm
... i am using dovecot as proxy in front of dbmail since 2009 and for sasl auth because this way you have ecryption, CRAM-MD5 and so on for IMAP as also the...
291270
Simon Walter
simon.walter@...
Feb 11, 2013 3:53 am
... Don't you mean "...the whole *Cyrus* SASL crap"? Isn't "smtpd_sasl_type = dovecot" using the dovecot implementation of SASL? Simon -- htholidays.com...
291271
Angel L. Mateo
amateo@...
Feb 11, 2013 7:08 am
... Yes, I did it yet, but it could happen with other domains. I would like a solution, not a workround. ... I'm sorry, I have attached it now, My timeouts are...
291272
Reindl Harald
h.reindl@...
Feb 11, 2013 9:09 am
... ok, i word it "the whole manually configured SASL crap" usually you need authentication for SMTP/POP3/IMAP and so preferred is a single instance and the...
291273
Brice Figureau
postfixml@...
Feb 11, 2013 9:51 am
Hi, Due to our traffic increasing, I'd like to split our corporate e-mail traffic from our transactional traffic (mostly account creations confimation and...
291274
Fabio Sangiovanni
sangiovanni@...
Feb 11, 2013 10:00 am
... Hi, thanks for your answer. Yes, that would be useful, except for malware that steals your credentials, and that would be otherwise (hopefully) blocked...
291275
Noel Jones
njones@...
Feb 11, 2013 12:17 pm
... Your method of manually whitelisting any IP that happens to be spamhaus listed doesn't scale very well. Every time some authorized user travels somewhere,...
291276
Jerry
postfix-user@...
Feb 11, 2013 12:21 pm
Just a heads up for any FreeBSD users who were bitten by the resent openssl bug. The FreeBSD ports version has been updated to openssl-1.0.1_7...
291277
Fabio Sangiovanni
sangiovanni@...
Feb 11, 2013 1:29 pm
... Hi, thanks again for your advice. My use case is slightly different from the one you describe (ip change is not that frequent), so my restrictions should...
291278
Fabio Sangiovanni
sangiovanni@...
Feb 11, 2013 3:20 pm
... Sorry Viktor, I have another question: what happens if a client is whitelisted AND it fails SASL authentication? I suppose that the following directives...
291279
Nikolaos Milas
nmilas@...
Feb 11, 2013 4:14 pm
Hello, I am using Postfix 2.9.4 on CentOS 6.3 as a gateway server with the following postscreen settings: postscreen_dnsbl_threshold = 2 postscreen_dnsbl_sites...
291280
Reindl Harald
h.reindl@...
Feb 11, 2013 4:21 pm
... explain them that https://www.barracudanetworks.com/products/spamandvirusfirewall is using it fore sure and there are enough big companies using appliances...
291281
Rod K
postfix@...
Feb 11, 2013 4:25 pm
... Barracuda and Spamhaus are the only RBLs that I use that can block by themselves. All others require at least one corroborating RBL. I've not run into any...
291282
Noel Jones
njones@...
Feb 11, 2013 4:50 pm
... There is no one-size-fits-all, so do what fits at your site. What some folks do is weigh barracuda*1 and a few other dnsbl's such as bl.spamcop.net,...
291283
Viktor Dukhovni
postfix-users@...
Feb 11, 2013 5:26 pm
... The whitelist only applies to authenticated users. Unauthenticated users are treated like everyone else. ... You're working too hard, the suggested...
291284
Miha Valencic
miha.valencic@...
Feb 11, 2013 6:56 pm
Hi! Just want to double check if I am planning this correctly. We're migrating users from one system to another, and want to HOLD incoming messages for certain...
291285
Reindl Harald
h.reindl@...
Feb 11, 2013 7:08 pm
... i would not do this and simply shutdown mail-services at night due migration, the sender will try later and you do not lost messages if the migration is...
291286
Rolf E. Sonneveld
R.E.Sonneveld@...
Feb 11, 2013 10:26 pm
Hi, running: Postfix 2.9.5 Output of uname -a: SunOS hostname 5.10 Generic_147440-27 sun4v sparc sun4v Running multiple instances in a multi-instance setup:...
291287
Fabii Sangiovanni
sangiovanni@...
Feb 11, 2013 10:30 pm
... Would you be so kind to point me to some readings on the matter? The only relevant piece of documentation seems to be RESTRICTION_CLASS_README, but, even ...
