From mboxrd@z Thu Jan 1 00:00:00 1970 Received: from pigeon.gentoo.org ([208.92.234.80] helo=lists.gentoo.org) by finch.gentoo.org with esmtp (Exim 4.60) (envelope-from ) id 1Ph7D5-0000kH-S3 for garchives@archives.gentoo.org; Sun, 23 Jan 2011 21:10:56 +0000 Received: from pigeon.gentoo.org (localhost [127.0.0.1]) by pigeon.gentoo.org (Postfix) with SMTP id 0786FE0AB3 for ; Sun, 23 Jan 2011 21:10:54 +0000 (UTC) Received: from mail-ww0-f53.google.com (mail-ww0-f53.google.com [74.125.82.53]) by pigeon.gentoo.org (Postfix) with ESMTP id 995F2E0931 for ; Sun, 23 Jan 2011 20:20:11 +0000 (UTC) Received: by wwi18 with SMTP id 18so3398782wwi.10 for ; Sun, 23 Jan 2011 12:20:10 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:from:to:subject:date:user-agent:references :in-reply-to:mime-version:content-type:content-transfer-encoding :message-id; bh=WC7tQ/SFQgqX1K7b302shxcgVvJ9aYvuHpLMd91jGpI=; b=Khfp52tN9kLByAJHgCwmfI7jSmsEo4eJKvlnQsxJ7Ip0GOD6lCDNFVvJvV1YBbs/VR BiL/cZQV1s1gktSvcW60bvMUQf5q8lnIIapCaD8SWO5uIBHN0pxF+pjv8xsCTHJ0a6Dl cT1ZPmTUTLEoOdZafryMN5r9TqcycBlVPWTcc= DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=from:to:subject:date:user-agent:references:in-reply-to:mime-version :content-type:content-transfer-encoding:message-id; b=M7TTBUr7AsRefzVkDkna1DhlqNQ0E5DpGdj91DHcHu0FAizpSu8I2mksSL47YlnaP4 f3LyFsD/6JPflnvhnIlKsahM0gfSIgtOLuuOnXT4NhR99x6PVsjWo9zOdaodGGnXaDGr 3JW8ng8KW85OICLmU/igMEjP0mIA5QZ2OkjJs= Received: by 10.227.138.15 with SMTP id y15mr3380678wbt.186.1295814010792; Sun, 23 Jan 2011 12:20:10 -0800 (PST) Received: from nazgul.localnet (196-215-42-107.dynamic.isadsl.co.za [196.215.42.107]) by mx.google.com with ESMTPS id b19sm1961287wbd.19.2011.01.23.12.20.08 (version=TLSv1/SSLv3 cipher=RC4-MD5); Sun, 23 Jan 2011 12:20:09 -0800 (PST) From: Alan McKinnon To: gentoo-user@lists.gentoo.org Subject: Re: [gentoo-user] Setting up SMTP relay Date: Sun, 23 Jan 2011 22:20:43 +0200 User-Agent: KMail/1.13.5 (Linux/2.6.37-ck; KDE/4.5.5; x86_64; ; ) References: <4D3B4D53.7000209@wonkology.org> <4D3C8041.2070105@wonkology.org> <4D3C87D1.7040307@badapple.net> In-Reply-To: <4D3C87D1.7040307@badapple.net> Precedence: bulk List-Post: List-Help: List-Unsubscribe: List-Subscribe: List-Id: Gentoo Linux mail X-BeenThere: gentoo-user@lists.gentoo.org Reply-to: gentoo-user@lists.gentoo.org MIME-Version: 1.0 Content-Type: Text/Plain; charset="iso-8859-15" Content-Transfer-Encoding: 7bit Message-Id: <201101232220.43766.alan.mckinnon@gmail.com> X-Archives-Salt: X-Archives-Hash: 7ab73091fb8b0663b6eda93eb1cb9480 Apparently, though unproven, at 21:56 on Sunday 23 January 2011, kashani did opine thusly: > On 1/23/2011 11:23 AM, Alex Schuster wrote: > > Relaying does not work yet, I get a "Relay access denied (in reply to > > RCPT TO command)" error. But my initial goal is reached, I can send mail > > to {root,wonko}@wonkology.org. That's all I wanted. > > > > Many many thanks kashani! Your howto is much more than I expected, it is > > much appreciated. I realize that postfix is not too complicated, so I > > will play more with it when I have some spare time. > > Postifx is definitely worth the investment and people always seem > surprised to find that 5-15 lines of config is all they need. You're > welcome for the config. I spent most of last week learning the ins and > out of authentication and relay hosts that hard way when I changed the > domain of our servers and needed to update everything. > > I'm using a lot of EC2 machines and didn't want to maintain IP lists so > I auth all servers trying to relay against my two Postfix servers. This > config reflects that and might need some changes for your environment. > > kashani Side note: Agreed on Postfix. I always think of the Postfix devs as people who take Unix philosophy seriously. The code does one thing and does it very very well: It sends and receives mail. It receives it in a way that is hard to hurt the sender and hard to crash Postfix, and sends it in a way that does not hurt itself and does not hurt the recipient. Oh, and it natively does a few sanity checks on the sender, mostly because it's convenient to do it there. And the config is simplicity itself - define a hostname, domain and a few other things and the odds are excellent it will work well out of the box as one of the few setups that 98% of people with mail servers want. It manages it's own queues beautifully. But, and this makes me sad, it doesn't really want *me* to manage it's queues. Border controls are hard, and finding the 1,000 mails some idiot with a Windows bot just sent, and deleting them, is really hard. I'm redesigning our mail setup at work,a nd I'm going to do it with exim *and* Postfix. Exim is the front end I can see, work with, and manage. Exim sends on to Postfix as fast as it can, and Postfix transparently relays to recipient. I get best of both worlds :-) Now let's contrast Postfix with sendmail. No, wait, let's rather not.... -- alan dot mckinnon at gmail dot com