Config

Hi all,

I'm trying to configure a maia host with some specific
things, maybe
someone can help me?

Is there a way to completely discard all mails that are sent
to the
standard-domain (for example xxx.de)? Every user has his own
account, so
the mails going to the standard-domain are only spam-mails.
Yes, I know,
typos can lead to wrong recipients, but the customer wants
it that way 

The spam-amount going to the standard-domain (so to NOT
defined email
addresses) is about 10.000-15.000 mails per day. And the
admin can check
maia only 1-2 times a week.

Another problem is, the mailhost is only a relay for an
exchange server,
so we have no defined mail addresses in postfix, only in
maia.

I found no way to configure the xxx.de-domain to discard all
mails.

Hope you understood my problem and someone can help me 

Bye, Stephan
_______________________________________________
Maia-users mailing list
Maia-usersrenaissoft.com
http://www.renaissoft.com/mailman/listinfo/maia-users

Stephan Wentz wrote:
> Hi all,
> 
> I'm trying to configure a maia host with some specific
things, maybe
> someone can help me?
> 
> Is there a way to completely discard all mails that are
sent to the
> standard-domain (for example xxx.de)? Every user has
his own account, so
> the mails going to the standard-domain are only
spam-mails. Yes, I know,
> typos can lead to wrong recipients, but the customer
wants it that way 
> 
> The spam-amount going to the standard-domain (so to NOT
defined email
> addresses) is about 10.000-15.000 mails per day. And
the admin can check
> maia only 1-2 times a week.
> 
> Another problem is, the mailhost is only a relay for an
exchange server,
> so we have no defined mail addresses in postfix, only
in maia.
> 
> I found no way to configure the xxx.de-domain to
discard all mails.

This is actually a postfix configuration issue.  Why even
bother 
scanning the messages if you can have postfix drop
non-existent emails 
before even receiving the message?

Unfortunately, I'm short on time right now but you should be
able to 
find something by using google (or perhaps someone else in
here can 
assist.  It's really a Postfix config issue though.

Darrick
-- 
Darrick Hartman
DJH Solutions, LLC
http://www.djhsolutions.c
om
_______________________________________________
Maia-users mailing list
Maia-usersrenaissoft.com
http://www.renaissoft.com/mailman/listinfo/maia-users

Darrick Hartman (lists) schrieb:
> Stephan Wentz wrote:
>> Hi all,
>>
>> I'm trying to configure a maia host with some
specific things, maybe
>> someone can help me?
>>
>> Is there a way to completely discard all mails that
are sent to the
>> standard-domain (for example xxx.de)? Every user
has his own account, so
>> the mails going to the standard-domain are only
spam-mails. Yes, I know,
>> typos can lead to wrong recipients, but the
customer wants it that way
>> 
>>
>> The spam-amount going to the standard-domain (so to
NOT defined email
>> addresses) is about 10.000-15.000 mails per day.
And the admin can check
>> maia only 1-2 times a week.
>>
>> Another problem is, the mailhost is only a relay
for an exchange server,
>> so we have no defined mail addresses in postfix,
only in maia.
>>
>> I found no way to configure the xxx.de-domain to
discard all mails.
> 
> This is actually a postfix configuration issue.  Why
even bother
> scanning the messages if you can have postfix drop
non-existent emails
> before even receiving the message?
> 
> Unfortunately, I'm short on time right now but you
should be able to
> find something by using google (or perhaps someone else
in here can
> assist.  It's really a Postfix config issue though.
> 
> Darrick

Hmm ok, would be great if someone could help me on this 

So even if it's only a relaying host I have to create all
valid
addresses in postfix and tell it to discard everything
else?

Bye, Stephan
_______________________________________________
Maia-users mailing list
Maia-usersrenaissoft.com
http://www.renaissoft.com/mailman/listinfo/maia-users

Stephan Wentz wrote:
> Darrick Hartman (lists) schrieb:
>   
>> Stephan Wentz wrote:
>>     
>>> Hi all,
>>>
>>> I'm trying to configure a maia host with some
specific things, maybe
>>> someone can help me?
>>>
>>> Is there a way to completely discard all mails
that are sent to the
>>> standard-domain (for example xxx.de)? Every
user has his own account, so
>>> the mails going to the standard-domain are only
spam-mails. Yes, I know,
>>> typos can lead to wrong recipients, but the
customer wants it that way
>>> 
>>>
>>> The spam-amount going to the standard-domain
(so to NOT defined email
>>> addresses) is about 10.000-15.000 mails per
day. And the admin can check
>>> maia only 1-2 times a week.
>>>
>>> Another problem is, the mailhost is only a
relay for an exchange server,
>>> so we have no defined mail addresses in
postfix, only in maia.
>>>
>>> I found no way to configure the xxx.de-domain
to discard all mails.
>>>       
>> This is actually a postfix configuration issue. 
Why even bother
>> scanning the messages if you can have postfix drop
non-existent emails
>> before even receiving the message?
>>
>> Unfortunately, I'm short on time right now but you
should be able to
>> find something by using google (or perhaps someone
else in here can
>> assist.  It's really a Postfix config issue
though.
>>
>> Darrick
>>     
>
> Hmm ok, would be great if someone could help me on this

>
> So even if it's only a relaying host I have to create
all valid
> addresses in postfix and tell it to discard everything
else?
You should not accept mail to non-existing users
What you could do is make a ldap-query against the
exchange/ad-server 
from postfix.

You might find some additional useful information here:
http://postfix.state-of-mind.de/patrick.koetter/mailre
lay/
http://www-personal.umich.edu/~malth/gaptuning/postfix/

-- 
Erik Weber
_______________________________________________
Maia-users mailing list
Maia-usersrenaissoft.com
http://www.renaissoft.com/mailman/listinfo/maia-users

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1


On Sep 24, 2007, at 7:04 AM, Erik Weber wrote:

> Stephan Wentz wrote:
>> So even if it's only a relaying host I have to
create all valid
>> addresses in postfix and tell it to discard
everything else?

Absolutely!   search the lists, you should see plenty of
rants from  
me about it... 

> You should not accept mail to non-existing users
> What you could do is make a ldap-query against the
exchange/ad-server
> from postfix.
>
> You might find some additional useful information
here:
> http://postfix.state-of-mind.de/patrick.koetter/mailre
lay/
> http://www-personal.umich.edu/~malth/gaptuning/postfix/
>


Also, you could use postfix's "recipient
verification"
http://www.postfix.org/ADDRESS_VERIFICATION_REA
DME.html#recipient




David Morton
Maia Mailguard http://www.maiamailguard
.com
mortondadgrmm.net



-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.5 (Darwin)

iD8DBQFG9601Uy30ODPkzl0RAh4lAKCyWbm86ui8CNx0k2q2j/cS4NEwrQCc
CydW
SNzSdRtqp2aBeUyEmYqie40=
=bR7M
-----END PGP SIGNATURE-----
_______________________________________________
Maia-users mailing list
Maia-usersrenaissoft.com
http://www.renaissoft.com/mailman/listinfo/maia-users

David Morton wrote:
> Also, you could use postfix's "recipient
verification"
> http://www.postfix.org/ADDRESS_VERIFICATION_REA
DME.html#recipient
>   

The problem with that is that Exchange (at least last time I
tried) 
accepts mail to non-existing users and generate a bounce
instead of 
rejecting it during SMTP.

-- 
Erik Weber
_______________________________________________
Maia-users mailing list
Maia-usersrenaissoft.com
http://www.renaissoft.com/mailman/listinfo/maia-users

Cory Coager schrieb:
> Stephan Wentz wrote:
>> Darrick Hartman (lists) schrieb:
>>   
>>> Stephan Wentz wrote:
>>>     
>>>> Hi all,
>>>>
>>>> I'm trying to configure a maia host with
some specific things, maybe
>>>> someone can help me?
>>>>
>>>> Is there a way to completely discard all
mails that are sent to the
>>>> standard-domain (for example xxx.de)? Every
user has his own account, so
>>>> the mails going to the standard-domain are
only spam-mails. Yes, I know,
>>>> typos can lead to wrong recipients, but the
customer wants it that way
>>>> 
>>>>
>>>> The spam-amount going to the
standard-domain (so to NOT defined email
>>>> addresses) is about 10.000-15.000 mails per
day. And the admin can check
>>>> maia only 1-2 times a week.
>>>>
>>>> Another problem is, the mailhost is only a
relay for an exchange server,
>>>> so we have no defined mail addresses in
postfix, only in maia.
>>>>
>>>> I found no way to configure the
xxx.de-domain to discard all mails.
>>>>       
>>> This is actually a postfix configuration issue.
 Why even bother
>>> scanning the messages if you can have postfix
drop non-existent emails
>>> before even receiving the message?
>>>
>>> Unfortunately, I'm short on time right now but
you should be able to
>>> find something by using google (or perhaps
someone else in here can
>>> assist.  It's really a Postfix config issue
though.
>>>
>>> Darrick
>>>     
>>
>> Hmm ok, would be great if someone could help me on
this 
>>
>> So even if it's only a relaying host I have to
create all valid
>> addresses in postfix and tell it to discard
everything else?
>>
>> Bye, Stephan
>> _______________________________________________
>> Maia-users mailing list
>> Maia-usersrenaissoft.com
>> http://www.renaissoft.com/mailman/listinfo/maia-users
>>   
> 
> My postfix rejects invalid users with response:
> "Recipient address rejected: User unknown in
virtual mailbox table. 
> Please check the message recipients and try
again."
> 
> The variable I'm using is:
> smtpd_recipient_restrictions = permit_mynetworks,
> permit_sasl_authenticated, check_relay_domains,
reject_unauth_destination
> 
> I am using LDAP to query a list of virtual users from
Active Directory. 
> From my experience I can tell you that this will work.

Yea, I got it working like that (but without LDAP, only over
a defined
list of addresses). Now the only thing I need is to turn of
the
bounce-mails...

Stephan
_______________________________________________
Maia-users mailing list
Maia-usersrenaissoft.com
http://www.renaissoft.com/mailman/listinfo/maia-users

Hi Cory,

Could you write up some small text on how to do this? i.e.,
the postfix
config to query Windows AD via LDAP? This would be useful.
Current
Exchange implementations can also be configured to reject
mail to
non-existant addresses, but I think an LDAP query might be
more elegant
and would not involve someone having to know how to
correctly set up
Exchange....

Dave
************************************************************
************
On Mon, 24 Sep 2007, Cory Coager wrote:

> Stephan Wentz wrote:
> > Darrick Hartman (lists) schrieb:
> >
> >> Stephan Wentz wrote:
> >>
> >>> Hi all,
> >>>
> >>> I'm trying to configure a maia host with
some specific things, maybe
> >>> someone can help me?
> >>>
> >>> Is there a way to completely discard all
mails that are sent to the
> >>> standard-domain (for example xxx.de)?
Every user has his own account, so
> >>> the mails going to the standard-domain are
only spam-mails. Yes, I know,
> >>> typos can lead to wrong recipients, but
the customer wants it that way
> >>> 
> >>>
> >>> The spam-amount going to the
standard-domain (so to NOT defined email
> >>> addresses) is about 10.000-15.000 mails
per day. And the admin can check
> >>> maia only 1-2 times a week.
> >>>
> >>> Another problem is, the mailhost is only a
relay for an exchange server,
> >>> so we have no defined mail addresses in
postfix, only in maia.
> >>>
> >>> I found no way to configure the
xxx.de-domain to discard all mails.
> >>>
> >> This is actually a postfix configuration
issue.  Why even bother
> >> scanning the messages if you can have postfix
drop non-existent emails
> >> before even receiving the message?
> >>
> >> Unfortunately, I'm short on time right now but
you should be able to
> >> find something by using google (or perhaps
someone else in here can
> >> assist.  It's really a Postfix config issue
though.
> >>
> >> Darrick
> >>
> >
> > Hmm ok, would be great if someone could help me on
this 
> >
> > So even if it's only a relaying host I have to
create all valid
> > addresses in postfix and tell it to discard
everything else?
> >
> > Bye, Stephan
> > _______________________________________________
> > Maia-users mailing list
> > Maia-usersrenaissoft.com
> > http://www.renaissoft.com/mailman/listinfo/maia-users
> >
>
> My postfix rejects invalid users with response:
> "Recipient address rejected: User unknown in
virtual mailbox table.
> Please check the message recipients and try
again."
>
> The variable I'm using is:
> smtpd_recipient_restrictions = permit_mynetworks,
> permit_sasl_authenticated, check_relay_domains,
reject_unauth_destination
>
> I am using LDAP to query a list of virtual users from
Active Directory.
> >From my experience I can tell you that this will
work.
>
>
_______________________________________________
Maia-users mailing list
Maia-usersrenaissoft.com
http://www.renaissoft.com/mailman/listinfo/maia-users

David Sims wrote:
> Hi Cory,
>
> Could you write up some small text on how to do this?
i.e., the postfix
> config to query Windows AD via LDAP? This would be
useful. Current
> Exchange implementations can also be configured to
reject mail to
> non-existant addresses, but I think an LDAP query might
be more elegant
> and would not involve someone having to know how to
correctly set up
> Exchange....
>
> Dave
>
************************************************************
************
> On Mon, 24 Sep 2007, Cory Coager wrote:
>   
>
FYI, I am not using Exchange.  However, that is irrelevant
to the question.

Accounts looks for the mail attribute for their main email
address.  
Alternate looks for the proxyAddresses attribute if the user
has 
additional and/or multiple email addresses.  I think
Exchange has the 
proxyAddresses formated in a specific way so you may need to
use the 
result_format variable.  Distribution is used for
distribution lists 
with groups.  If your distribution list contains a group the
query does 
a recursive lookup for everyone in that group.

You can do a lot troubleshooting with postmap also. 
Example:
postmap -v -q userexample.com ldap:accounts
Should return the users email address with a lot of verbose
information.

Hope that helps!

## Accounts with main address
accounts_server_host = ldaps://dc.example.com
accounts_search_base = ou=Departments,dc=example,dc=com
accounts_query_filter = (mail=%s)
accounts_result_attribute = sAMAccountName
accounts_result_format  =  %s/.maildir/
accounts_scope = sub
accounts_cache = yes
accounts_bind = yes
accounts_bind_dn =
cn=binduser,ou=somewhere,ou=Departments,dc=example,dc=com
accounts_bind_pw = secret
accounts_version = 3

## Accounts with alternate address(es)
alternate_server_host = ldaps://dc.example.com
alternate_search_base = dc=example,dc=com
alternate_query_filter = (proxyAddresses=%s)
alternate_result_attribute = sAMAccountName
alternate_result_format  =  %s/.maildir/
alternate_scope = sub
alternate_cache = yes
alternate_bind = yes
alternate_bind_dn = 
cn=binduser,ou=somewhere,ou=Departments,dc=example,dc=com
alternate_bind_pw = secret
alternate_version = 3

## Distribution Lists
distribution_server_host = ldaps://dc.example.com
distribution_search_base = dc=example,dc=com
distribution_query_filter = (mail=%s)
distribution_result_attribute = mail
distribution_special_result_attribute = member
distribution_scope = sub
distribution_cache = yes
distribution_bind = yes
distribution_bind_dn = 
cn=binduser,ou=somewhere,ou=Departments,dc=example,dc=com
distribution_bind_pw = secret
distribution_version = 3

virtual_transport = virtual
virtual_uid_maps = static:5000
virtual_gid_maps = static:5000
virtual_mailbox_base = /path/to/domain/
virtual_mailbox_maps = ldap:accounts, ldap:alternate
virtual_mailbox_domains = example.com
virtual_alias_maps = ldap:distribution,
hash:/etc/mail/example


~Cory Coager
_______________________________________________
Maia-users mailing list
Maia-usersrenaissoft.com
http://www.renaissoft.com/mailman/listinfo/maia-users