Find the answer to your Linux question:
Results 1 to 3 of 3
hi I'm using postfix version 2.3.8 installed on debian etch stable, but if I try: Code: # telnet localhost 25 ehlo localhost 250-ext.undostres.ch 250-PIPELINING 250-SIZE 10240000 250-ETRN 250-STARTTLS 250-AUTH LOGIN ...
  1. 05-10-2007 #1
    cc
    cc is offline
    Linux Newbie
    Join Date
    Jun 2004
    Posts
    120

    postfix missing 250-VRFY

    hi

    I'm using postfix version 2.3.8 installed on debian etch stable, but if I try:
    Code:
    # telnet localhost 25

ehlo localhost

250-ext.undostres.ch
250-PIPELINING
250-SIZE 10240000
250-ETRN
250-STARTTLS
250-AUTH LOGIN PLAIN
250-AUTH=LOGIN PLAIN
250-ENHANCEDSTATUSCODES
250-8BITMIME
250 DSN
    250-VRFY is missing in my case !


    my postfix cinfiguration:
    Code:
    # cat /etc/postfix/main.cf

program_directory = /usr/lib/postfix
command_directory = /usr/sbin
daemon_directory = /usr/lib/postfix
soft_bounce = yes

#header_checks = regexp:/etc/postfix/header_checks

#smtpd_banner = $myhostname ESMTP $mail_name (Debian/GNU)
biff = no

# appending .domain is the MUA's job.
append_dot_mydomain = no

# Uncomment the next line to generate "delayed mail" warnings
#delay_warning_time = 4h

smtpd_helo_required = yes
disable_vrfy_command = yes
strict_rfc821_envelopes = yes

myhostname = ext.mydomain.net
mydomain = mydomain.net
alias_maps = hash:/etc/aliases
alias_database = hash:/etc/aliases
myorigin = /etc/mailname
mydestination = localhost, $myhostname, $mydomain, localhost.$mydomain, localhost.$myhostname
virtual_maps = hash:/etc/postfix/virtusertable

smtpd_banner = $myhostname ESMTP Mailserver

smtpd_helo_restrictions = reject_invalid_hostname
smtpd_recipient_restrictions = permit_mynetworks, permit_sasl_authenticated, reject_unauth_destination
smtpd_sender_restrictions = reject_unknown_address
smtpd_client_restrictions = reject_invalid_hostname, reject_rbl_client relays.ordb.org

home_mailbox = Maildir/
#local_recipient_maps = proxy:unix:passwd.byname $alias_maps
#local_transport = local

# TLS
smtpd_tls_cert_file = /etc/postfix/smtpd.cert
smtpd_tls_key_file = /etc/postfix/smtpd.key
smtpd_use_tls = yes
smtpd_enforce_tls = no
smtpd_tls_auth_only = no

# SASL (Simple Authentication and Security Layer)
smtpd_sasl_auth_enable = yes
smtpd_sasl2_auth_enable = yes
smtpd_sasl_security_options = noanonymous
smtpd_sasl_local_domain = $myhostname
broken_sasl_auth_clients = yes

mailbox_command =
recipient_delimiter = +

mynetworks = 127.0.0.0/8 202.X.X.0/28 192.168.115.0/24

# virtual email accounts
virtual_alias_domains =
virtual_alias_maps = mysql:/etc/postfix/mysql-virtual_forwardings.cf, mysql:/etc/postfix/mysql-virtual_email2email.cf
virtual_mailbox_domains = mysql:/etc/postfix/mysql-virtual_domains.cf
virtual_mailbox_maps = mysql:/etc/postfix/mysql-virtual_mailboxes.cf
virtual_mailbox_base = /var/vmail
virtual_uid_maps = static:5000
virtual_gid_maps = static:5000
transport_maps = mysql:/etc/postfix/mysql-virtual_transports.cf
virtual_create_maildirsize = yes
virtual_mailbox_extended = yes
virtual_mailbox_limit_maps = mysql:/etc/postfix/mysql-virtual_mailbox_limit_maps.cf
virtual_mailbox_limit_override = yes
virtual_maildir_limit_message = "The user you are trying to reach is over quota."
virtual_overquota_bounce = yes
proxy_read_maps = $local_recipient_maps $mydestination $virtual_alias_maps $virtual_alias_domains $virtual_mailbox_maps $virtual_mailbox_domains $relay_recipient_maps $relay_domains $canonical_maps $sender_canonical_maps $recipient_canonical_maps $relocated_maps $transport_maps $mynetworks $virtual_mailbox_limit_maps

relayhost =
#mailbox_size_limit = 51200000
mailbox_size_limit = 20240000
message_size_limit = 10240000
strict_rfc821_envelopes = yes
inet_interfaces = all

content_filter = amavis:[127.0.0.1]:10024
receive_override_options = no_address_mappings
    knows someone howto switch it on ?
    Reply With Quote Reply With Quote
  2. 05-10-2007 #2
    captain7616
    captain7616 is offline
    Just Joined!
    Join Date
    Sep 2006
    Posts
    8

    postfix

    Hi ,

    Here is a site worth looking at for your solution, I have many mail servers with similar to these walkthru's, however I do additional spam and virus scanning on the firewall, before the mail gets passed on to the mail server (bear in mind that amavis and mailscanner is rather ram hungry, hence the reason for moving the scanning to the firewall


    Hope it helps,
    http://workaround.org/articles/ispmail-sarge/

    Regards

    Captain
    Reply With Quote Reply With Quote
  3. 05-12-2007 #3
    cc
    cc is offline
    Linux Newbie
    Join Date
    Jun 2004
    Posts
    120
    this problem is solved now.

    change from :
    Code:
    disable_vrfy_command = yes
    to:
    Code:
    disable_vrfy_command = no
    one of the main problems of VRFY in these days is that spammers can
    and will use it to iterate through all possible short usernames
    (certainly at least up to 6 characters, maybe even longer) to find recipients for junk email.

    this is why VRFY should be usually disabled in modern email system installations
    and I'll leave disabled.


    I have other question:
    is it my configuration correct or there are some other options I can disable or enable ?
    Reply With Quote Reply With Quote
« Previous Thread | Next Thread »

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •  

Forum Rules