From deon at dege.au Mon Mar 4 08:06:28 2024 From: deon at dege.au (Deon George) Date: Mon, 4 Mar 2024 19:06:28 +1100 Subject: A docker implementation? Message-ID: <24154AF7-163B-436F-B50B-8EA84A00AE70@dege.au> Howdy, I?ve been using the EFA Project appliance (era-project.org) and while it has been working well, I?m wanting to move from a dedicated VM to a docker container implementation. Have you thought about providing mailscanner as a docker image? (My search shows some implementations that seem quite old.) I would think that it might provide an easier route for folks to consume mailscanner - as the install (with all the perl dependancies) would be done by the docker image build process and folks would just need to use it via a ?docker run? with a directory with the configuration. In my case I want to deploy (what EFA does) on an existing cloud host - and by doing so with docker containers will enable me to do that (don?t really want to buy another VM). If there is no interest in docker - no big deal, I?ll have a go at it anyway, but if there was an implementation or an interest happy to leverage it and/or share back what I do so that others could use it too. BTW: I want to build the docker image based on alpine - its a lot smaller - any issues with alpine that I should look out for? ?deon From mat.krawczyk at gmail.com Thu Mar 21 08:38:30 2024 From: mat.krawczyk at gmail.com (Mateusz Krawczyk) Date: Thu, 21 Mar 2024 09:38:30 +0100 Subject: File bayes_journal user / group Message-ID: Hello, I use mailscanner with mailwatch and I have a seemingly simple problem with the ownership of the bayes_journal file. Every time a file is created or re-created it is emerge with user/group postfix:postfix. How to make his group apache ? I tried to find information about this, but I couldn't. Best regards, Mateusz -------------- next part -------------- An HTML attachment was scrubbed... URL: From aragonx at dcsnow.com Sun Mar 24 18:17:02 2024 From: aragonx at dcsnow.com (Will) Date: Sun, 24 Mar 2024 14:17:02 -0400 Subject: New Installation Help Message-ID: <5f7ed8cf-f9d6-4dd8-9ad7-74ad6a2b3718@dcsnow.com> Hi, I just upgraded my home server from CentOS 7 to AlmaLinux release 9.3.? I also switched to Postfix, where I was using Sendmail.? So, everything seems to be working except SendMail.? Well, I have some issues with Dovecot but that's not important.? I'm not sure what I did wrong, but I get a bunch of these error messages in /var/log/maillog: Unable to open QMQP socket at 127.0.0.1 on port 628 Unable to kick message /var/spool/MailScanner/milterout/5CEF610A0C47.A52CF, will retry soon... And if enabled, MailScanner will reject every message.? But if I comment out the milter line in Postfix's conf file, I can get email.? Just not filtered... # smtpd_milters = inet:127.0.0.1:33333 I do also have: qmqpd_authorized_clients = 127.0.0.1 milter_default_action = accept set in the Postfix main.cf.? Not sure if those are related. Please help, I'm not at all sure what is going on here. From mark at msapiro.net Mon Mar 25 01:29:54 2024 From: mark at msapiro.net (Mark Sapiro) Date: Sun, 24 Mar 2024 18:29:54 -0700 Subject: New Installation Help In-Reply-To: <5f7ed8cf-f9d6-4dd8-9ad7-74ad6a2b3718@dcsnow.com> References: <5f7ed8cf-f9d6-4dd8-9ad7-74ad6a2b3718@dcsnow.com> Message-ID: On 3/24/24 11:17, Will wrote: > > I just upgraded my home server from CentOS 7 to AlmaLinux release 9.3. I > also switched to Postfix, where I was using Sendmail.? So, everything > seems to be working except SendMail.? Well, I have some issues with > Dovecot but that's not important.? I'm not sure what I did wrong, but I > get a bunch of these error messages in /var/log/maillog: > > Unable to open QMQP socket at 127.0.0.1 on port 628 > Unable to kick message > /var/spool/MailScanner/milterout/5CEF610A0C47.A52CF, will retry soon... The documentation is at https://www.mailscanner.info/postfix/ and it looks like you've got things properly configured. Do you have a firewall blocking access to port 628. does `sudo netstat -lntp` show the postfix master process listening on port 628? -- Mark Sapiro The highway is for gamblers, San Francisco Bay Area, California better use your sense - B. Dylan From yuwang at cs.fsu.edu Mon Mar 25 02:36:40 2024 From: yuwang at cs.fsu.edu (James Wang) Date: Sun, 24 Mar 2024 22:36:40 -0400 Subject: New Installation Help In-Reply-To: References: <5f7ed8cf-f9d6-4dd8-9ad7-74ad6a2b3718@dcsnow.com> Message-ID: <5600a3c26a245f5c035a4a62f92c15ad@cs.fsu.edu> Also check selinux. --- James Wang On 2024-03-24 21:29, Mark Sapiro wrote: > On 3/24/24 11:17, Will wrote: >> >> I just upgraded my home server from CentOS 7 to AlmaLinux release 9.3. >> I also switched to Postfix, where I was using Sendmail.? So, >> everything seems to be working except SendMail.? Well, I have some >> issues with Dovecot but that's not important.? I'm not sure what I did >> wrong, but I get a bunch of these error messages in /var/log/maillog: >> >> Unable to open QMQP socket at 127.0.0.1 on port 628 >> Unable to kick message >> /var/spool/MailScanner/milterout/5CEF610A0C47.A52CF, will retry >> soon... > > The documentation is at https://www.mailscanner.info/postfix/ and it > looks like you've got things properly configured. Do you have a > firewall blocking access to port 628. does `sudo netstat -lntp` show > the postfix master process listening on port 628? > > > -- > Mark Sapiro The highway is for gamblers, > San Francisco Bay Area, California better use your sense - B. Dylan From aragonx at dcsnow.com Mon Mar 25 04:31:03 2024 From: aragonx at dcsnow.com (Will) Date: Mon, 25 Mar 2024 00:31:03 -0400 Subject: New Installation Help In-Reply-To: References: <5f7ed8cf-f9d6-4dd8-9ad7-74ad6a2b3718@dcsnow.com> Message-ID: <87882439-be48-41ce-8b3d-87f287643b33@dcsnow.com> On 3/24/2024 9:29 PM, Mark Sapiro wrote: > On 3/24/24 11:17, Will wrote: >> >> I just upgraded my home server from CentOS 7 to AlmaLinux release >> 9.3. I also switched to Postfix, where I was using Sendmail.? So, >> everything seems to be working except SendMail. Well, I have some >> issues with Dovecot but that's not important. I'm not sure what I did >> wrong, but I get a bunch of these error messages in /var/log/maillog: >> >> Unable to open QMQP socket at 127.0.0.1 on port 628 >> Unable to kick message >> /var/spool/MailScanner/milterout/5CEF610A0C47.A52CF, will retry soon... > > The documentation is at https://www.mailscanner.info/postfix/ and it > looks like you've got things properly configured. Do you have a > firewall blocking access to port 628. does `sudo netstat -lntp` show > the postfix master process listening on port 628? > Hi, Here is some more info: # firewall-cmd --list-all public (active) ? target: default ? icmp-block-inversion: no ? interfaces: ens33 ? sources: ? services: cockpit dhcp dhcpv6-client dns http https imap imaps mdns ntp pop3 pop3s rpc-bind samba smtp smtp-submission smtps ssh tftp ? ports: 587/tcp 82/tcp 628/tcp ? protocols: ? forward: yes ? masquerade: no ? forward-ports: ? source-ports: ? icmp-blocks: ? rich rules: ??????? rule family="ipv4" source address="10.1.0.0/16" port port="993" protocol="tcp" accept ??????? rule family="ipv4" source address="10.1.0.0/16" port port="53" protocol="udp" accept So I think it should be open.? Although I had to open it by port instead of by service name.? I guess I could create a config file for it.? Although, I'm not sure that would matter much.? Doing a netstat and greping for 628 doesn't show anything: # netstat -lntp Active Internet connections (only servers) Proto Recv-Q Send-Q Local Address?????????? Foreign Address???????? State?????? PID/Program name tcp??????? 0????? 0 0.0.0.0:587 0.0.0.0:*?????????????? LISTEN????? 1504/master tcp??????? 0????? 0 127.0.0.1:44321 0.0.0.0:*?????????????? LISTEN????? 1849/pmcd tcp??????? 0????? 0 0.0.0.0:993 0.0.0.0:*?????????????? LISTEN????? 20898/dovecot tcp??????? 0????? 0 0.0.0.0:995 0.0.0.0:*?????????????? LISTEN????? 20898/dovecot tcp??????? 0????? 0 0.0.0.0:25 0.0.0.0:*?????????????? LISTEN????? 1504/master tcp??????? 0????? 0 0.0.0.0:110 0.0.0.0:*?????????????? LISTEN????? 20898/dovecot tcp??????? 0????? 0 0.0.0.0:111 0.0.0.0:*?????????????? LISTEN????? 1/systemd tcp??????? 0????? 0 0.0.0.0:82 0.0.0.0:*?????????????? LISTEN????? 1178/sshd: /usr/sbi tcp??????? 0????? 0 0.0.0.0:139 0.0.0.0:*?????????????? LISTEN????? 8607/smbd tcp??????? 0????? 0 0.0.0.0:143 0.0.0.0:*?????????????? LISTEN????? 20898/dovecot tcp??????? 0????? 0 0.0.0.0:445 0.0.0.0:*?????????????? LISTEN????? 8607/smbd tcp??????? 0????? 0 10.1.1.7:53 0.0.0.0:*?????????????? LISTEN????? 1304/named tcp??????? 0????? 0 127.0.0.1:53 0.0.0.0:*?????????????? LISTEN????? 1304/named tcp??????? 0????? 0 127.0.0.1:33333 0.0.0.0:*?????????????? LISTEN????? 3216/MSMilter Daemo tcp??????? 0????? 0 127.0.0.1:953 0.0.0.0:*?????????????? LISTEN????? 1304/named tcp??????? 0????? 0 127.0.0.1:783 0.0.0.0:*?????????????? LISTEN????? 1177/perl tcp??????? 0????? 0 127.0.0.1:4330 0.0.0.0:*?????????????? LISTEN????? 2783/pmlogger tcp6?????? 0????? 0 :::587 :::*??????????????????? LISTEN????? 1504/master tcp6?????? 0????? 0 :::993 :::*??????????????????? LISTEN????? 20898/dovecot tcp6?????? 0????? 0 :::995 :::*??????????????????? LISTEN????? 20898/dovecot tcp6?????? 0????? 0 :::25 :::*??????????????????? LISTEN????? 1504/master tcp6?????? 0????? 0 :::110 :::*??????????????????? LISTEN????? 20898/dovecot tcp6?????? 0????? 0 :::111 :::*??????????????????? LISTEN????? 1/systemd tcp6?????? 0????? 0 :::82 :::*??????????????????? LISTEN????? 1178/sshd: /usr/sbi tcp6?????? 0????? 0 :::139 :::*??????????????????? LISTEN????? 8607/smbd tcp6?????? 0????? 0 :::143 :::*??????????????????? LISTEN????? 20898/dovecot tcp6?????? 0????? 0 :::445 :::*??????????????????? LISTEN????? 8607/smbd tcp6?????? 0????? 0 ::1:4330 :::*??????????????????? LISTEN????? 2783/pmlogger tcp6?????? 0????? 0 ::1:44321 :::*??????????????????? LISTEN????? 1849/pmcd tcp6?????? 0????? 0 ::1:953 :::*??????????????????? LISTEN????? 1304/named tcp6?????? 0????? 0 ::1:783 :::*??????????????????? LISTEN????? 1177/perl tcp6?????? 0????? 0 ::1:53 :::*??????????????????? LISTEN????? 1304/named tcp6?????? 0????? 0 fe80::20c:29ff:fece::53 :::*??????????????????? LISTEN????? 1304/named From aragonx at dcsnow.com Mon Mar 25 04:33:36 2024 From: aragonx at dcsnow.com (Will) Date: Mon, 25 Mar 2024 00:33:36 -0400 Subject: New Installation Help In-Reply-To: <5600a3c26a245f5c035a4a62f92c15ad@cs.fsu.edu> References: <5f7ed8cf-f9d6-4dd8-9ad7-74ad6a2b3718@dcsnow.com> <5600a3c26a245f5c035a4a62f92c15ad@cs.fsu.edu> Message-ID: Hi, That thing always messes me up.? I am going to try to get selinux working once I'm done with everything else. # getenforce Disabled On 3/24/2024 10:36 PM, James Wang wrote: > Also check selinux. > > --- > James Wang > > > On 2024-03-24 21:29, Mark Sapiro wrote: >> On 3/24/24 11:17, Will wrote: >>> >>> I just upgraded my home server from CentOS 7 to AlmaLinux release >>> 9.3. I also switched to Postfix, where I was using Sendmail.? So, >>> everything seems to be working except SendMail.? Well, I have some >>> issues with Dovecot but that's not important.? I'm not sure what I >>> did wrong, but I get a bunch of these error messages in >>> /var/log/maillog: >>> >>> Unable to open QMQP socket at 127.0.0.1 on port 628 >>> Unable to kick message >>> /var/spool/MailScanner/milterout/5CEF610A0C47.A52CF, will retry soon... >> >> The documentation is at https://www.mailscanner.info/postfix/ and it >> looks like you've got things properly configured. Do you have a >> firewall blocking access to port 628. does `sudo netstat -lntp` show >> the postfix master process listening on port 628? >> >> >> -- >> Mark Sapiro ??????? The highway is for gamblers, >> San Francisco Bay Area, California??? better use your sense - B. Dylan > > From info at topnetworks.nl Mon Mar 25 15:08:18 2024 From: info at topnetworks.nl (Fred Gerrits (Topnetworks)) Date: Mon, 25 Mar 2024 16:08:18 +0100 Subject: New Installation Help Message-ID: <1982317463-14542@webmail.top-music.org> An HTML attachment was scrubbed... URL: -------------- next part -------------- Im always using ubuntu or debian with postfix, works always.You can try Rspam instead of mailscanner, its a lightweight spam solition and easy to setup.Verzonden vanaf mijn Galaxy
-------- Oorspronkelijk bericht --------
Van: Will
Datum: 25-03-2024 05:35 (GMT+01:00)
Aan: mailscanner at lists.mailscanner.info
Onderwerp: Re: New Installation Help
Hi, That thing always messes me up.? I am going to try to get selinux working once I'm done with everything else. # getenforce Disabled On 3/24/2024 10:36 PM, James Wang wrote: > Also check selinux. > > --- > James Wang > > > On 2024-03-24 21:29, Mark Sapiro wrote: >> On 3/24/24 11:17, Will wrote: >>> >>> I just upgraded my home server from CentOS 7 to AlmaLinux release >>> 9.3. I also switched to Postfix, where I was using Sendmail.? So, >>> everything seems to be working except SendMail.? Well, I have some >>> issues with Dovecot but that's not important.? I'm not sure what I >>> did wrong, but I get a bunch of these error messages in >>> /var/log/maillog: >>> >>> Unable to open QMQP socket at 127.0.0.1 on port 628 >>> Unable to kick message >>> /var/spool/MailScanner/milterout/5CEF610A0C47.A52CF, will retry soon... >> >> The documentation is at https://www.mailscanner.info/postfix/ and it >> looks like you've got things properly configured. Do you have a >> firewall blocking access to port 628. does `sudo netstat -lntp` show >> the postfix master process listening on port 628? >> >> >> -- >> Mark Sapiro ??????? The highway is for gamblers, >> San Francisco Bay Area, California??? better use your sense - B. Dylan > > -- MailScanner mailing list mailscanner at lists.mailscanner.info http://lists.mailscanner.info/mailman/listinfo/mailscanner -- This message has been scanned by MailScanner. Messages are scanned by Mcafee AV - Spamcheck by Spamassasin. Eigen domain nodig ? Bezoek http://www.topnetworks.nl -- This message has been scanned by MailScanner. From mark at msapiro.net Mon Mar 25 17:38:21 2024 From: mark at msapiro.net (Mark Sapiro) Date: Mon, 25 Mar 2024 10:38:21 -0700 Subject: New Installation Help In-Reply-To: <87882439-be48-41ce-8b3d-87f287643b33@dcsnow.com> References: <5f7ed8cf-f9d6-4dd8-9ad7-74ad6a2b3718@dcsnow.com> <87882439-be48-41ce-8b3d-87f287643b33@dcsnow.com> Message-ID: On 3/24/24 21:31, Will wrote: > > So I think it should be open.? Although I had to open it by port instead > of by service name.? I guess I could create a config file for it. > Although, I'm not sure that would matter much.? Doing a netstat and > greping for 628 doesn't show anything: > > # netstat -lntp > Active Internet connections (only servers) > Proto Recv-Q Send-Q Local Address?????????? Foreign Address State > PID/Program name > tcp??????? 0????? 0 0.0.0.0:587 0.0.0.0:*?????????????? LISTEN 1504/master All of the entries with LISTEN 1504/master are Postfix's master process. There should be one like tcp 0 0 127.0.0.1:628 0.0.0.0:* LISTEN 1504/master The fact that there isn't is the issue. You do have qmqpd_authorized_clients = 127.0.0.1 in main.cf so that isn't why. Do you have 628 inet n - y - - qmqpd in master.cf? -- Mark Sapiro The highway is for gamblers, San Francisco Bay Area, California better use your sense - B. Dylan From aragonx at dcsnow.com Mon Mar 25 17:52:37 2024 From: aragonx at dcsnow.com (Will) Date: Mon, 25 Mar 2024 13:52:37 -0400 Subject: New Installation Help In-Reply-To: References: <5f7ed8cf-f9d6-4dd8-9ad7-74ad6a2b3718@dcsnow.com> <87882439-be48-41ce-8b3d-87f287643b33@dcsnow.com> Message-ID: <50a166d6-1948-4f4b-93fb-0fc502f8880c@dcsnow.com> Hi, Brilliant!? That solved my first issue.? Thank you so very much! Can we get that included on (https://www.mailscanner.info/postfix/)?? That is what I was using to configure my system.? Now my 2nd issue is that the milter wants to reject my test emails.? Is there a way for me to tell why? Mar 25 13:42:44 dcsnow postfix/smtpd[51681]: connect from mail-il1-f176.google.com[209.85.166.176] Mar 25 13:42:44 dcsnow postfix/smtpd[51681]: B128610A0C41: client=mail-il1-f176.google.com[209.85.166.176] Mar 25 13:42:44 dcsnow postfix/cleanup[51687]: B128610A0C41: message-id= Mar 25 13:42:45 dcsnow postfix/cleanup[51687]: B128610A0C41: milter-discard: END-OF-MESSAGE from mail-il1-f176.google.com[209.85.166.176]: milter triggers DISCARD action; from= to= proto=ESMTP helo= On 3/25/2024 1:38 PM, Mark Sapiro wrote: > On 3/24/24 21:31, Will wrote: >> >> So I think it should be open.? Although I had to open it by port >> instead of by service name.? I guess I could create a config file for >> it. Although, I'm not sure that would matter much. Doing a netstat >> and greping for 628 doesn't show anything: >> >> # netstat -lntp >> Active Internet connections (only servers) >> Proto Recv-Q Send-Q Local Address?????????? Foreign Address >> State?????? PID/Program name >> tcp??????? 0????? 0 0.0.0.0:587 0.0.0.0:*?????????????? LISTEN >> 1504/master > > > All of the entries with LISTEN 1504/master are Postfix's master > process. There should be one like > > tcp??????? 0????? 0 127.0.0.1:628 0.0.0.0:*?????????????? LISTEN > 1504/master > > The fact that there isn't is the issue. You do have > > qmqpd_authorized_clients = 127.0.0.1 > > in main.cf so that isn't why. Do you have > > 628?????? inet? n?????? -?????? y?????? -?????? -?????? qmqpd > > in master.cf? > From mark at msapiro.net Mon Mar 25 18:41:34 2024 From: mark at msapiro.net (Mark Sapiro) Date: Mon, 25 Mar 2024 11:41:34 -0700 Subject: New Installation Help In-Reply-To: <50a166d6-1948-4f4b-93fb-0fc502f8880c@dcsnow.com> References: <5f7ed8cf-f9d6-4dd8-9ad7-74ad6a2b3718@dcsnow.com> <87882439-be48-41ce-8b3d-87f287643b33@dcsnow.com> <50a166d6-1948-4f4b-93fb-0fc502f8880c@dcsnow.com> Message-ID: On 3/25/24 10:52, Will wrote: > Hi, > > Brilliant!? That solved my first issue.? Thank you so very much! Can we > get that included on (https://www.mailscanner.info/postfix/)?? That is > what I was using to configure my system. Was that entry there but commented? I think Postfix may ship that way. We should not that in https://www.mailscanner.info/postfix/ > Now my 2nd issue is that the > milter wants to reject my test emails.? Is there a way for me to tell why? > > Mar 25 13:42:44 dcsnow postfix/smtpd[51681]: connect from > mail-il1-f176.google.com[209.85.166.176] > Mar 25 13:42:44 dcsnow postfix/smtpd[51681]: B128610A0C41: > client=mail-il1-f176.google.com[209.85.166.176] > Mar 25 13:42:44 dcsnow postfix/cleanup[51687]: B128610A0C41: > message-id= > Mar 25 13:42:45 dcsnow postfix/cleanup[51687]: B128610A0C41: > milter-discard: END-OF-MESSAGE from > mail-il1-f176.google.com[209.85.166.176]: milter triggers DISCARD > action; from= to= proto=ESMTP > helo= This is normal and expected. Postfix receives the message and processes it, calling the milter at various steps. The milter ultimately tells postfix to discard the original message, but it has queued the message for MailScanner in /var/spool/MailScanner/milterin. MailScanner picks it up from there and if it is to be delivered, delivers it back to Postfix via QMQP. -- Mark Sapiro The highway is for gamblers, San Francisco Bay Area, California better use your sense - B. Dylan From aragonx at dcsnow.com Mon Mar 25 18:52:02 2024 From: aragonx at dcsnow.com (Will) Date: Mon, 25 Mar 2024 14:52:02 -0400 Subject: New Installation Help In-Reply-To: References: <5f7ed8cf-f9d6-4dd8-9ad7-74ad6a2b3718@dcsnow.com> <87882439-be48-41ce-8b3d-87f287643b33@dcsnow.com> <50a166d6-1948-4f4b-93fb-0fc502f8880c@dcsnow.com> Message-ID: <9f84e7a2-edb9-46d8-ae24-43c5324a5c2f@dcsnow.com> On 3/25/2024 2:41 PM, Mark Sapiro wrote: > On 3/25/24 10:52, Will wrote: >> Hi, >> >> Brilliant!? That solved my first issue.? Thank you so very much! Can >> we get that included on (https://www.mailscanner.info/postfix/)?? >> That is what I was using to configure my system. > > Was that entry there but commented? I think Postfix may ship that way. > We should not that in https://www.mailscanner.info/postfix/ > Yes, it was there but commented out. >> Now my 2nd issue is that the milter wants to reject my test emails.? >> Is there a way for me to tell why? >> >> Mar 25 13:42:44 dcsnow postfix/smtpd[51681]: connect from >> mail-il1-f176.google.com[209.85.166.176] >> Mar 25 13:42:44 dcsnow postfix/smtpd[51681]: B128610A0C41: >> client=mail-il1-f176.google.com[209.85.166.176] >> Mar 25 13:42:44 dcsnow postfix/cleanup[51687]: B128610A0C41: >> message-id= >> Mar 25 13:42:45 dcsnow postfix/cleanup[51687]: B128610A0C41: >> milter-discard: END-OF-MESSAGE from >> mail-il1-f176.google.com[209.85.166.176]: milter triggers DISCARD >> action; from= to= proto=ESMTP >> helo= > > This is normal and expected. Postfix receives the message and > processes it, calling the milter at various steps. The milter > ultimately tells postfix to discard the original message, but it has > queued the message for MailScanner in /var/spool/MailScanner/milterin. > MailScanner picks it up from there and if it is to be delivered, > delivers it back to Postfix via QMQP. > Okay but it is actually rejecting the mail and sending reject messages to the senders!? Did I not include the correct bits in the log? From mark at msapiro.net Mon Mar 25 19:05:43 2024 From: mark at msapiro.net (Mark Sapiro) Date: Mon, 25 Mar 2024 12:05:43 -0700 Subject: New Installation Help In-Reply-To: <9f84e7a2-edb9-46d8-ae24-43c5324a5c2f@dcsnow.com> References: <5f7ed8cf-f9d6-4dd8-9ad7-74ad6a2b3718@dcsnow.com> <87882439-be48-41ce-8b3d-87f287643b33@dcsnow.com> <50a166d6-1948-4f4b-93fb-0fc502f8880c@dcsnow.com> <9f84e7a2-edb9-46d8-ae24-43c5324a5c2f@dcsnow.com> Message-ID: <3d43ab6b-2a63-469b-861d-67a899b68fc3@msapiro.net> On 3/25/24 11:52, Will wrote: > > On 3/25/2024 2:41 PM, Mark Sapiro wrote: >> On 3/25/24 10:52, Will wrote: >>> Now my 2nd issue is that the milter wants to reject my test emails. >>> Is there a way for me to tell why? >>> >>> Mar 25 13:42:44 dcsnow postfix/smtpd[51681]: connect from >>> mail-il1-f176.google.com[209.85.166.176] >>> Mar 25 13:42:44 dcsnow postfix/smtpd[51681]: B128610A0C41: >>> client=mail-il1-f176.google.com[209.85.166.176] >>> Mar 25 13:42:44 dcsnow postfix/cleanup[51687]: B128610A0C41: >>> message-id= >>> Mar 25 13:42:45 dcsnow postfix/cleanup[51687]: B128610A0C41: >>> milter-discard: END-OF-MESSAGE from >>> mail-il1-f176.google.com[209.85.166.176]: milter triggers DISCARD >>> action; from= to= proto=ESMTP >>> helo= ... > Okay but it is actually rejecting the mail and sending reject messages > to the senders!? Did I not include the correct bits in the log? What you included above is all normal for every message. Following those you should see ... MailScanner[]: New Batch: Scanning 1 messages, ... followed by more `MailScanner[]:` messages. What are these? There are reasons why the milter itself will reject a message. but then you will see `milter triggers REJECT` and not `milter triggers DISCARD`. -- Mark Sapiro The highway is for gamblers, San Francisco Bay Area, California better use your sense - B. Dylan From aragonx at dcsnow.com Mon Mar 25 20:21:55 2024 From: aragonx at dcsnow.com (Will) Date: Mon, 25 Mar 2024 16:21:55 -0400 Subject: New Installation Help In-Reply-To: <3d43ab6b-2a63-469b-861d-67a899b68fc3@msapiro.net> References: <5f7ed8cf-f9d6-4dd8-9ad7-74ad6a2b3718@dcsnow.com> <87882439-be48-41ce-8b3d-87f287643b33@dcsnow.com> <50a166d6-1948-4f4b-93fb-0fc502f8880c@dcsnow.com> <9f84e7a2-edb9-46d8-ae24-43c5324a5c2f@dcsnow.com> <3d43ab6b-2a63-469b-861d-67a899b68fc3@msapiro.net> Message-ID: <69625ed0-1f9c-4fe9-8a92-432e5bbdeb52@dcsnow.com> On 3/25/2024 3:05 PM, Mark Sapiro wrote: > On 3/25/24 11:52, Will wrote: >> >> On 3/25/2024 2:41 PM, Mark Sapiro wrote: >>> On 3/25/24 10:52, Will wrote: >>>> Now my 2nd issue is that the milter wants to reject my test emails. >>>> Is there a way for me to tell why? >>>> >>>> Mar 25 13:42:44 dcsnow postfix/smtpd[51681]: connect from >>>> mail-il1-f176.google.com[209.85.166.176] >>>> Mar 25 13:42:44 dcsnow postfix/smtpd[51681]: B128610A0C41: >>>> client=mail-il1-f176.google.com[209.85.166.176] >>>> Mar 25 13:42:44 dcsnow postfix/cleanup[51687]: B128610A0C41: >>>> message-id= >>>> >>>> Mar 25 13:42:45 dcsnow postfix/cleanup[51687]: B128610A0C41: >>>> milter-discard: END-OF-MESSAGE from >>>> mail-il1-f176.google.com[209.85.166.176]: milter triggers DISCARD >>>> action; from= to= >>>> proto=ESMTP helo= > ... >> Okay but it is actually rejecting the mail and sending reject >> messages to the senders!? Did I not include the correct bits in the log? > > What you included above is all normal for every message. Following > those you should see > > ... MailScanner[]: New Batch: Scanning 1 messages, ... > > followed by more `MailScanner[]:` messages. What are these? > > There are reasons why the milter itself will reject a message. but > then you will see `milter triggers REJECT` and not `milter triggers > DISCARD`. > Double sorry because my first reply wasn't to the list.? Sorry again, I thought that was the important part.? Here is another attempt where I think I captured everything.? The only thing I see is that postfix is setting the sender to <>.? But isn't that just a warning?? I don't see the same warning if the milter is disabled though. Mar 26 10:52:54 dcsnow postfix/smtpd[9946]: connect from mail-io1-f45.google.com[209.85.166.45] Mar 26 10:52:54 dcsnow postfix/smtpd[9946]: D78F410A0C41: client=mail-io1-f45.google.com[209.85.166.45] Mar 26 10:52:54 dcsnow postfix/cleanup[9952]: D78F410A0C41: message-id= Mar 26 10:52:55 dcsnow postfix/cleanup[9952]: D78F410A0C41: milter-discard: END-OF-MESSAGE from mail-io1-f45.google.com[209.85.166.45]: milter triggers DISCARD action; from= to= proto=ESMTP helo= Mar 26 10:52:55 dcsnow postfix/smtpd[9946]: disconnect from mail-io1-f45.google.com[209.85.166.45] ehlo=2 starttls=1 mail=1 rcpt=1 bdat=1 quit=1 commands=7 Mar 26 10:52:55 dcsnow MailScanner[8667]: New Batch: Scanning 1 messages, 2941 bytes Mar 26 10:52:55 dcsnow MailScanner[8667]: Reject message D78F410A0C41.ACA73 from wyonker at gmail.com with report /usr/share/MailScanner/reports/en/rejection.report.txt Mar 26 10:52:55 dcsnow sendmail[9953]: 42QEqtJl009953: Authentication-Warning: dcsnow.com: postfix set sender to <> using -f Mar 26 10:52:55 dcsnow sendmail[9953]: 42QEqtJl009953: from=<>, size=555, class=0, nrcpts=1, msgid=<202403261452.42QEqtJl009953 at dcsnow.com>, relay=postfix at localhost Mar 26 10:52:55 dcsnow postfix/smtpd[9946]: connect from localhost[127.0.0.1] Mar 26 10:52:56 dcsnow sendmail[9953]: STARTTLS=client, relay=[127.0.0.1], version=TLSv1.3, verify=FAIL, cipher=TLS_AES_256_GCM_SHA384, bits=256/256 Mar 26 10:52:56 dcsnow postfix/smtpd[9946]: 28B4010A0C41: client=localhost[127.0.0.1] Mar 26 10:52:56 dcsnow postfix/cleanup[9952]: 28B4010A0C41: message-id=<202403261452.42QEqtJl009953 at dcsnow.com> Mar 26 10:52:56 dcsnow postfix/cleanup[9952]: 28B4010A0C41: milter-discard: END-OF-MESSAGE from localhost[127.0.0.1]: milter triggers DISCARD action; from=<> to= proto=ESMTP helo= Mar 26 10:52:56 dcsnow sendmail[9953]: 42QEqtJl009953: to=wyonker at gmail.com, delay=00:00:01, xdelay=00:00:01, mailer=relay, pri=30555, relay=[127.0.0.1] [127.0.0.1], dsn=2.0.0, stat=Sent (Ok: queued as 28B4010A0C41) Mar 26 10:52:56 dcsnow postfix/smtpd[9946]: disconnect from localhost[127.0.0.1] ehlo=2 starttls=1 mail=1 rcpt=1 data=1 quit=1 commands=7 Mar 26 10:52:56 dcsnow MailScanner[8667]: Deleted 1 messages from processing-database Mar 26 10:52:56 dcsnow MailScanner[8667]: New Batch: Scanning 1 messages, 1160 bytes Mar 26 10:52:56 dcsnow MailScanner[8667]: Virus and Content Scanning: Starting Mar 26 10:52:58 dcsnow MailScanner[8667]: Requeue: 28B4010A0C41.A804C to 28B4010A0C41.A804C Mar 26 10:52:58 dcsnow postfix/qmqpd[9965]: connect from localhost[127.0.0.1] Mar 26 10:52:58 dcsnow postfix/qmqpd[9965]: 473EF10A0C41: client=localhost[127.0.0.1] Mar 26 10:52:58 dcsnow postfix/cleanup[9952]: 473EF10A0C41: message-id=<202403261452.42QEqtJl009953 at dcsnow.com> Mar 26 10:52:58 dcsnow postfix/qmqpd[9965]: disconnect from localhost[127.0.0.1] Mar 26 10:52:58 dcsnow postfix/qmgr[9943]: 473EF10A0C41: from=<>, size=1545, nrcpt=1 (queue active) Mar 26 10:52:58 dcsnow MailScanner[8667]: Uninfected: Delivered 1 messages Mar 26 10:52:58 dcsnow MailScanner[8667]: Deleted 1 messages from processing-database Mar 26 10:53:00 dcsnow postfix/smtp[9966]: 473EF10A0C41: to=, relay=outbound.mailhop.org[54.200.129.228]:587, delay=2.7, delays=0/0.05/1.2/1.4, dsn=2.0.0, status=sent (250 2.0.0 Ok: queued as 9b55e80d-eae3-11ee-8e5a-2b2b5a144ce7) Mar 26 10:53:00 dcsnow postfix/qmgr[9943]: 473EF10A0C41: removed From mark at msapiro.net Mon Mar 25 23:51:37 2024 From: mark at msapiro.net (Mark Sapiro) Date: Mon, 25 Mar 2024 16:51:37 -0700 Subject: New Installation Help In-Reply-To: <69625ed0-1f9c-4fe9-8a92-432e5bbdeb52@dcsnow.com> References: <5f7ed8cf-f9d6-4dd8-9ad7-74ad6a2b3718@dcsnow.com> <87882439-be48-41ce-8b3d-87f287643b33@dcsnow.com> <50a166d6-1948-4f4b-93fb-0fc502f8880c@dcsnow.com> <9f84e7a2-edb9-46d8-ae24-43c5324a5c2f@dcsnow.com> <3d43ab6b-2a63-469b-861d-67a899b68fc3@msapiro.net> <69625ed0-1f9c-4fe9-8a92-432e5bbdeb52@dcsnow.com> Message-ID: <682016cb-67f9-46ac-ab18-e6870a052f37@msapiro.net> On 3/25/24 13:21, Will wrote: > Double sorry because my first reply wasn't to the list.? Sorry again, I > thought that was the important part.? Here is another attempt where I > think I captured everything.? The only thing I see is that postfix is > setting the sender to <>.? But isn't that just a warning?? I don't see > the same warning if the milter is disabled though. That's because DSNs are always sent from <> to avoid further bounce DSNs. > Mar 26 10:52:54 dcsnow postfix/smtpd[9946]: connect from > mail-io1-f45.google.com[209.85.166.45] > Mar 26 10:52:54 dcsnow postfix/smtpd[9946]: D78F410A0C41: > client=mail-io1-f45.google.com[209.85.166.45] > Mar 26 10:52:54 dcsnow postfix/cleanup[9952]: D78F410A0C41: > message-id= > Mar 26 10:52:55 dcsnow postfix/cleanup[9952]: D78F410A0C41: > milter-discard: END-OF-MESSAGE from > mail-io1-f45.google.com[209.85.166.45]: milter triggers DISCARD action; > from= to= proto=ESMTP > helo= > Mar 26 10:52:55 dcsnow postfix/smtpd[9946]: disconnect from > mail-io1-f45.google.com[209.85.166.45] ehlo=2 starttls=1 mail=1 rcpt=1 > bdat=1 quit=1 commands=7 > Mar 26 10:52:55 dcsnow MailScanner[8667]: New Batch: Scanning 1 > messages, 2941 bytes > Mar 26 10:52:55 dcsnow MailScanner[8667]: Reject message > D78F410A0C41.ACA73 from wyonker at gmail.com with report > /usr/share/MailScanner/reports/en/rejection.report.txt MailScanner itself rejected the message. > Mar 26 10:52:55 dcsnow sendmail[9953]: 42QEqtJl009953: > Authentication-Warning: dcsnow.com: postfix set sender to <> using -f > Mar 26 10:52:55 dcsnow sendmail[9953]: 42QEqtJl009953: from=<>, > size=555, class=0, nrcpts=1, > msgid=<202403261452.42QEqtJl009953 at dcsnow.com>, relay=postfix at localhost And is apparently sending the rejection via the Postfix compatibility `sendmail` command. ... The message is being delivered to MailScanner and rejected by MailScanner presumably because it scores as spam and Spam Actions include bounce. -- Mark Sapiro The highway is for gamblers, San Francisco Bay Area, California better use your sense - B. Dylan From aragonx at dcsnow.com Tue Mar 26 12:40:14 2024 From: aragonx at dcsnow.com (Will) Date: Tue, 26 Mar 2024 08:40:14 -0400 Subject: New Installation Help In-Reply-To: <682016cb-67f9-46ac-ab18-e6870a052f37@msapiro.net> References: <5f7ed8cf-f9d6-4dd8-9ad7-74ad6a2b3718@dcsnow.com> <87882439-be48-41ce-8b3d-87f287643b33@dcsnow.com> <50a166d6-1948-4f4b-93fb-0fc502f8880c@dcsnow.com> <9f84e7a2-edb9-46d8-ae24-43c5324a5c2f@dcsnow.com> <3d43ab6b-2a63-469b-861d-67a899b68fc3@msapiro.net> <69625ed0-1f9c-4fe9-8a92-432e5bbdeb52@dcsnow.com> <682016cb-67f9-46ac-ab18-e6870a052f37@msapiro.net> Message-ID: On 3/25/2024 7:51 PM, Mark Sapiro wrote: > Mar 26 10:52:55 dcsnow sendmail[9953]: 42QEqtJl009953: > Authentication-Warning: dcsnow.com: postfix set sender to <> using -f >> Mar 26 10:52:55 dcsnow sendmail[9953]: 42QEqtJl009953: from=<>, >> size=555, class=0, nrcpts=1, >> msgid=<202403261452.42QEqtJl009953 at dcsnow.com>, relay=postfix at localhost > > And is apparently sending the rejection via the Postfix compatibility > `sendmail` command. That would be exactly what I want.? Except, I would like to see why it decided to reject those emails.? I don't see anywhere it tells me why or gives me something I can tune.? If I look at the header of the reject message it sends to my Gmail account, I see: X-Authentication-Warning: dcsnow.com: postfix set sender to <> using -f X-MailScanner-Rejected: yes From: aragonx at dcsnow.com To: wyonker at gmail.com Subject: Unrequested mail rejected X-dcsnow-MailScanner: generated, Found to be clean X-dcsnow-MailScanner-Information: Please contact the ISP for more information X-dcsnow-MailScanner-ID: DBF0210A0C41.A9EC2 X-dcsnow-MailScanner-SpamScore: s X-dcsnow-MailScanner-From: X-Spam-Status: No I remember in the past, if the spam score was 4 or more, it would reject it.? But that doesn't seem to be the case here.? It also doesn't give me a clue as to why it rejected it.? Or, I just don't understand what it is telling me. From mark at msapiro.net Tue Mar 26 16:55:32 2024 From: mark at msapiro.net (Mark Sapiro) Date: Tue, 26 Mar 2024 09:55:32 -0700 Subject: New Installation Help In-Reply-To: References: <5f7ed8cf-f9d6-4dd8-9ad7-74ad6a2b3718@dcsnow.com> <87882439-be48-41ce-8b3d-87f287643b33@dcsnow.com> <50a166d6-1948-4f4b-93fb-0fc502f8880c@dcsnow.com> <9f84e7a2-edb9-46d8-ae24-43c5324a5c2f@dcsnow.com> <3d43ab6b-2a63-469b-861d-67a899b68fc3@msapiro.net> <69625ed0-1f9c-4fe9-8a92-432e5bbdeb52@dcsnow.com> <682016cb-67f9-46ac-ab18-e6870a052f37@msapiro.net> Message-ID: On 3/26/24 05:40, Will wrote: > > On 3/25/2024 7:51 PM, Mark Sapiro wrote: >> Mar 26 10:52:55 dcsnow sendmail[9953]: 42QEqtJl009953: >> Authentication-Warning: dcsnow.com: postfix set sender to <> using -f >>> Mar 26 10:52:55 dcsnow sendmail[9953]: 42QEqtJl009953: from=<>, >>> size=555, class=0, nrcpts=1, >>> msgid=<202403261452.42QEqtJl009953 at dcsnow.com>, relay=postfix at localhost >> >> And is apparently sending the rejection via the Postfix compatibility >> `sendmail` command. > > That would be exactly what I want.? Except, I would like to see why it > decided to reject those emails. Actually, rejecting spam after SMTP has accepted it as is the case here is a bad idea. Much spam is from spoofed senders and rejections are thus sent to innocent third parties. Rejecting at SMTP time is fine, but that would require the milter to invoke the entire spam and virus filtering mechanism during the incoming SMTP session which isn't the way MailScanner currently works. > I don't see anywhere it tells me why or > gives me something I can tune.? If I look at the header of the reject > message it sends to my Gmail account, I see: > > X-Authentication-Warning: dcsnow.com: postfix set sender to <> using -f > X-MailScanner-Rejected: yes > From: aragonx at dcsnow.com > To: wyonker at gmail.com > Subject: Unrequested mail rejected > X-dcsnow-MailScanner: generated, Found to be clean > X-dcsnow-MailScanner-Information: Please contact the ISP for more > information > X-dcsnow-MailScanner-ID: DBF0210A0C41.A9EC2 > X-dcsnow-MailScanner-SpamScore: s > X-dcsnow-MailScanner-From: > X-Spam-Status: No > > I remember in the past, if the spam score was 4 or more, it would reject > it.? But that doesn't seem to be the case here.? It also doesn't give me > a clue as to why it rejected it.? Or, I just don't understand what it is > telling me. I would expect to see additional information in logs beyond what you report. E.g., things like > Mar 24 00:21:44 mail MailScanner[193901]: Virus and Content Scanning: Starting > Mar 24 00:21:46 mail MailScanner[193901]: Spam Checks: Found 1 spam messages > Mar 24 00:21:46 mail MailScanner[193901]: Deleted 1 messages from processing-database I don't know why you aren't getting more information. -- Mark Sapiro The highway is for gamblers, San Francisco Bay Area, California better use your sense - B. Dylan