[Postfixbuch-users] Probleme mit policyd_weight, greylisted und mail delivery

Dirk Hardt dhardt at itss-hardt.de
Fr Mai 23 11:21:38 CEST 2008 

Hallo Herr Felber, hallo Liste.

 

Erst einmal ein Dankeschön.

 

Nun, ich habe mal angefangen aufzurauemen:

 

alias_maps = hash:/etc/aliases

append_dot_mydomain = no

biff = no

body_checks = pcre:/etc/postfix/body_checks

broken_sasl_auth_clients = yes

config_directory = /etc/postfix

content_filter = smtp-amavis:[localhost]:10024

header_checks = pcre:/etc/postfix/header_checks

inet_interfaces = all

mailbox_size_limit = 0

mydestination = smtp01.itss-hardt.local, localhost.itss-hardt.local, localhost

mydomain = itss-hardt.local

myhostname = smtp01.itss-hardt.local

mynetworks = 127.0.0.0/8, 10.100.200.0/24

myorigin = /etc/mailname

recipient_delimiter = +

relayhost = [mein.provider.de]:587

sender_canonical_maps = hash:/etc/postfix/sender_canonical

smtp_always_send_ehlo = yes

smtp_sasl_auth_enable = yes

smtp_sasl_password_maps = hash:/etc/postfix/sasl/sasl_passwd

smtp_sasl_security_options = noanonymous

smtp_tls_session_cache_database = btree:${queue_directory}/smtp_scache

smtpd_banner = $myhostname ESMTP $mail_name (Debian/GNU)

smtpd_discard_ehlo_keyword_address_maps = cidr:/etc/postfix/esmtp_access

smtpd_recipient_restrictions = permit_sasl_authenticated,       permit_mynetworks,      check_relay_domains,    reject_unauth_destination,    check_policy_service unix:private/policy        check_policy_service inet:127.0.0.1:10031       check_policy_service inet:127.0.0.1:60000     check_policy_service inet:127.0.0.1:12525       check_client_access hash:/etc/postfix/use_whitelists  check_policyd_weight

smtpd_sasl_auth_enable = yes

smtpd_sasl_path = smtpd

smtpd_sasl_security_options = noanonymous

smtpd_sasl_type = cyrus

smtpd_sender_restrictions = reject_rbl_client    dnsbl.sorbs.net,        reject_rbl_client    combined.njabl.org,        reject_rbl_client    list.dsbl.org,        reject_rbl_client    cbl.abuseat.org,     reject_rbl_client    relays.ordb.org,        reject_rbl_client    sbl.spamhaus.org,        reject_rbl_client    bl.spamcop.net,        reject_rbl_client    opm.blitzed.org,        reject_rbl_client    dnsbl.net.au,        reject_rbl_client    dul.dnsbl.sorbs.net

smtpd_tls_auth_only = no

smtpd_tls_cert_file = /etc/ssl/certs/ssl-cert-snakeoil.pem

smtpd_tls_key_file = /etc/ssl/private/ssl-cert-snakeoil.key

smtpd_tls_received_header = yes

smtpd_tls_session_cache_database = btree:${queue_directory}/smtpd_scache

smtpd_use_tls = yes

transport_maps = hash:/etc/postfix/transport

virtual_alias_maps = hash:/etc/postfix/virtual

 

Die Reihenfolge von 

 

smtpd_recipient_restrictions = permit_sasl_authenticated,       permit_mynetworks,      check_relay_domains,    reject_unauth_destination,    check_policy_service unix:private/policy        check_policy_service inet:127.0.0.1:10031       check_policy_service inet:127.0.0.1:60000     check_policy_service inet:127.0.0.1:12525

 

habe ich auch geändert.

 

Es sieht so aus, also würde nun was anfangen zu arbeiten, aber in der log steht:

 

May 23 10:32:02 SMTP01 postfix/tlsmgr[3231]: warning: request to update table btree:/var/spool/postfix/smtpd_scache in non-po

May 23 10:32:02 SMTP01 postfix/tlsmgr[3231]: warning: redirecting the request to postfix-owned data_directory /var/lib/postfi

May 23 10:32:02 SMTP01 postfix/tlsmgr[3231]: warning: request to update table btree:/var/spool/postfix/smtp_scache in non-pos

May 23 10:32:02 SMTP01 postfix/tlsmgr[3231]: warning: redirecting the request to postfix-owned data_directory /var/lib/postfi

May 23 10:32:02 SMTP01 postfix/smtpd[3229]: connect from SMTP01.itss-hardt.local[10.100.200.181]

May 23 10:32:05 SMTP01 postfix/smtpd[3229]: NOQUEUE: reject: RCPT from SMTP01.itss-hardt.local[10.100.200.181]: 554 5.7.1 Ser

May 23 10:32:05 SMTP01 postfix/smtpd[3233]: connect from localhost[127.0.0.1]

May 23 10:32:05 SMTP01 postfix/smtpd[3233]: NOQUEUE: reject: RCPT from localhost[127.0.0.1]: 554 5.7.1 Service unavailable; C

May 23 10:32:05 SMTP01 postfix/smtpd[3233]: disconnect from localhost[127.0.0.1]

May 23 10:32:05 SMTP01 postfix/smtpd[3229]: NOQUEUE: reject: RCPT from SMTP01.itss-hardt.local[10.100.200.181]: 554 5.7.1 Ser

May 23 10:32:05 SMTP01 postfix/smtpd[3229]: disconnect from SMTP01.itss-hardt.local[10.100.200.181]

 

May 23 10:42:03 SMTP01 postfix/policyd-weight[3264]: policyd-weight 0.1.14 beta-17 started and daemonized. conf:/etc/policyd-

May 23 10:42:04 SMTP01 postfix/policyd-weight[3264]: warning: cache_query: $csock couln't be created: connect: Datei oder Ver

May 23 10:42:04 SMTP01 postfix/policyd-weight[3265]: cache spawned

May 23 10:42:04 SMTP01 postfix/policyd-weight[3265]: cache: PTIME: 10800, TEMP_PTIME: 86400

 

Laut google und einem anderen User aus der Liste, der ein ähnliches Problem hatte, kann das mehrere Ursachen haben.

 

Ich habe die Berechtigungen überprüft.

In /tmp/.policyd_weight

srwxrwx--- 1 polw polw 0 23. Mai 10:52 /tmp/.policyd-weight/polw.sock

 

Und in /var/run

 

drwx------  3 polw        root        4096  6. Mai 21:06 policyd-weight

-rw-r--r--  1 root        root           4 23. Mai 10:52 policyd-weight.pid

 

Ist das so korrekt?

 

Die User Id überschneidet sich nicht mit anderen:

 

spampd:x:114:115::/nonexistent:/bin/false

ntp:x:115:116::/home/ntp:/bin/false

polw:x:116:117:policy-weight user,,,:/var/lib/polw:/bin/false

dcc:x:117:118:DCC System User:/var/lib/dcc:/bin/false

postfix-gld:x:118:119::/:/bin/false

 

 

Vielen Dank für eure Hilfe im Voraus.

 

Grüße

 

Dirk

-------------- nächster Teil --------------
Ein Dateianhang mit HTML-Daten wurde abgetrennt...
URL: <https://listi.jpberlin.de/pipermail/postfixbuch-users/attachments/20080523/80ff2c1a/attachment.html>

Mehr Informationen über die Mailingliste Postfixbuch-users