From mboxrd@z Thu Jan 1 00:00:00 1970 Received: from pigeon.gentoo.org ([208.92.234.80] helo=lists.gentoo.org) by finch.gentoo.org with esmtp (Exim 4.60) (envelope-from ) id 1RY64c-0003YY-90 for garchives@archives.gentoo.org; Wed, 07 Dec 2011 01:13:26 +0000 Received: from pigeon.gentoo.org (localhost [127.0.0.1]) by pigeon.gentoo.org (Postfix) with SMTP id E7F7921C0EB; Wed, 7 Dec 2011 01:13:16 +0000 (UTC) Received: from svr-us4.tirtonadi.com (svr-us4.tirtonadi.com [69.65.43.212]) by pigeon.gentoo.org (Postfix) with ESMTP id 4496C21C034 for ; Wed, 7 Dec 2011 01:11:41 +0000 (UTC) Received: from mail-bw0-f53.google.com ([209.85.214.53]) by svr-us4.tirtonadi.com with esmtpsa (TLSv1:RC4-SHA:128) (Exim 4.69) (envelope-from ) id 1RY62u-003DUM-VE for gentoo-user@lists.gentoo.org; Wed, 07 Dec 2011 08:11:41 +0700 Received: by bkbzu5 with SMTP id zu5so14635bkb.40 for ; Tue, 06 Dec 2011 17:11:36 -0800 (PST) Precedence: bulk List-Post: List-Help: List-Unsubscribe: List-Subscribe: List-Id: Gentoo Linux mail X-BeenThere: gentoo-user@lists.gentoo.org Reply-to: gentoo-user@lists.gentoo.org MIME-Version: 1.0 Received: by 10.180.85.162 with SMTP id i2mr20507246wiz.22.1323220296876; Tue, 06 Dec 2011 17:11:36 -0800 (PST) Received: by 10.223.103.70 with HTTP; Tue, 6 Dec 2011 17:11:36 -0800 (PST) Received: by 10.223.103.70 with HTTP; Tue, 6 Dec 2011 17:11:36 -0800 (PST) In-Reply-To: References: <4EDAA89F.3090308@orlitzky.com> <4EDAD845.4010402@orlitzky.com> <4EDD6749.8030301@orlitzky.com> <4EDD9D88.7080407@orlitzky.com> <4EDE4CC1.1000808@orlitzky.com> Date: Wed, 7 Dec 2011 08:11:36 +0700 Message-ID: Subject: Re: [gentoo-user] clamav and spamassassin From: Pandu Poluan To: gentoo-user@lists.gentoo.org Content-Type: multipart/alternative; boundary=f46d0444e9cbc140e004b3763b64 X-AntiAbuse: This header was added to track abuse, please include it with any abuse report X-AntiAbuse: Primary Hostname - svr-us4.tirtonadi.com X-AntiAbuse: Original Domain - lists.gentoo.org X-AntiAbuse: Originator/Caller UID/GID - [47 12] / [47 12] X-AntiAbuse: Sender Address Domain - poluan.info X-Archives-Salt: c9588a80-1356-4776-80c0-5c9edaabca24 X-Archives-Hash: 609f9d36fe117969363fa657c36f93b8 --f46d0444e9cbc140e004b3763b64 Content-Type: text/plain; charset=UTF-8 On Dec 7, 2011 8:01 AM, "Grant" wrote: > > > That will disable postgrey, but isn't enough to enable postscreen. There > > are a couple of daemons you have to enable in master.cf (steps 2 through 6): > > > > http://www.postfix.org/POSTSCREEN_README.html#enable > > > > That README refers to lines that are commented-out in master.cf; of > > course, if you've upgraded from an earlier of postfix, you won't have them. > > Don't you let etc-update add them for you? > > > What I did was to untar the latest postfix release under my home > > directory, and find the master.cf that ships with it. Then, I > > copy/pasted the lines mentioned in the README over to my real master.cf. > > > > After a restart, you should see lines like this in your mail log: > > > > Dec 6 03:13:46 mx1 postfix/postscreen[2810]: CONNECT from ... > > > > that let you know its' working. > > Working now, thanks a lot. I should only need the tlsproxy line if my > users connect to port 25 to send mail, correct? > I've perused the relevant documentation, and to my knowledge you need to enable tlsproxy if you want to use TLS, be it through port 25 or 587. Don't forget to test it using openssl s_client. Rgds, --f46d0444e9cbc140e004b3763b64 Content-Type: text/html; charset=UTF-8 Content-Transfer-Encoding: quoted-printable


On Dec 7, 2011 8:01 AM, "Grant" <emailgrant@gmail.com> wrote:
>
> > That will disable postgrey, but isn't enough to enable postsc= reen. There
> > are a couple of daemons you have to enable in master.cf (steps 2 through 6):
> >
> > =C2=A0http://www.postfix.org/POSTSCREEN_README.html#enable
> >
> > That README refers to lines that are commented-out in master.cf; of
> > course, if you've upgraded from an earlier of postfix, you wo= n't have them.
>
> Don't you let etc-update add them for you?
>
> > What I did was to untar the latest postfix release under my home<= br> > > directory, and find the master.cf that ships with it. Then, I
> > copy/pasted the lines mentioned in the README over to my real master.cf.
> >
> > After a restart, you should see lines like this in your mail log:=
> >
> > =C2=A0Dec =C2=A06 03:13:46 mx1 postfix/postscreen[2810]: CONNECT = from ...
> >
> > that let you know its' working.
>
> Working now, thanks a lot. =C2=A0I should only need the tlsproxy line = if my
> users connect to port 25 to send mail, correct?
>

I've perused the relevant documentation, and to my knowledge you nee= d to enable tlsproxy if you want to use TLS, be it through port 25 or 587.<= /p>

Don't forget to test it using openssl s_client.

Rgds,

--f46d0444e9cbc140e004b3763b64--