You are not logged in.

#1 2021-04-14 20:19:23

VenomRolls
Member
Registered: 2021-04-05
Posts: 2

Issues with postfix

I've been trying (in vain) to get postfix working on a remote server.
checking logs, i get this

Apr 14 20:08:49 mail postfix/smtpd[416]: warning: no entropy for TLS key generation: disabling TLS support
Apr 14 20:08:49 mail postfix/smtpd[416]: connect from unknown[193.56.29.28]
Apr 14 20:08:49 mail postfix/smtpd[416]: warning: connect to private/anvil: Connection refused
Apr 14 20:08:49 mail postfix/smtpd[416]: warning: problem talking to server private/anvil: Connection refused
Apr 14 20:08:50 mail postfix/master[320]: warning: process /usr/lib/postfix/bin/smtpd pid 415 exit status 1
Apr 14 20:08:50 mail postfix/smtpd[416]: warning: connect to private/anvil: Connection refused
Apr 14 20:08:50 mail postfix/smtpd[416]: warning: problem talking to server private/anvil: Connection refused
Apr 14 20:08:50 mail postfix/smtpd[416]: fatal: host/service localhost/12301 not found: No address associated with hostname
Apr 14 20:08:51 mail postfix/master[320]: warning: process /usr/lib/postfix/bin/smtpd pid 416 exit status 1

Thinking it was just a port not being open, i double checked ss -tln:

State              Recv-Q             Send-Q                          Local Address:Port                           Peer Address:Port             Process             
LISTEN             0                  4096                            127.0.0.53%lo:53                                  0.0.0.0:*                                    
LISTEN             0                  100                                   0.0.0.0:25                                  0.0.0.0:*                                    
LISTEN             0                  511                                   0.0.0.0:443                                 0.0.0.0:*                                    
LISTEN             0                  100                                   0.0.0.0:993                                 0.0.0.0:*                                    
LISTEN             0                  100                                   0.0.0.0:995                                 0.0.0.0:*                                    
LISTEN             0                  128                                   0.0.0.0:420                                 0.0.0.0:*                                    
LISTEN             0                  100                                   0.0.0.0:587                                 0.0.0.0:*                                    
LISTEN             0                  4096                                  0.0.0.0:5355                                0.0.0.0:*                                    
LISTEN             0                  100                                   0.0.0.0:110                                 0.0.0.0:*                                    
LISTEN             0                  100                                   0.0.0.0:143                                 0.0.0.0:*                                    
LISTEN             0                  4096                                127.0.0.1:783                                 0.0.0.0:*                                    
LISTEN             0                  511                                   0.0.0.0:80                                  0.0.0.0:*                                    

I cant seem to find the issue with it.

Here's postconf -M

spamassassin unix -      n       n       -       -       pipe user=spamd argv=/usr/bin/spamc -f -e /usr/bin/sendmail -oi -f ${sender} ${recipient}
smtp       unix  -       -       n       -       -       smtp
smtp       inet  n       -       y       -       -       smtpd -o content_filter=spamassassin
submission inet  n       -       y       -       -       smtpd -o syslog_name=postfix/submission -o smtpd_tls_security_level=encrypt -o smtpd_sasl_auth_enable=yes -o smtpd_tls_auth_only=yes
smtps      inet  n       -       y       -       -       smtpd -o syslog_name=postfix/smtps -o smtpd_tls_wrappermode=yes -o smtpd_sasl_auth_enable=yes
proxymap   unix  -       -       n       -       -       proxymap

and postconf -n:

alias_database = $alias_maps
alias_maps = hash:/etc/postfix/aliases
command_directory = /usr/bin
compatibility_level = 2
daemon_directory = /usr/lib/postfix/bin
data_directory = /var/lib/postfix
debug_peer_level = 2
debugger_command = PATH=/bin:/usr/bin:/usr/local/bin:/usr/X11R6/bin ddd $daemon_directory/$process_name $process_id & sleep 5
home_mailbox = Mail/Inbox/
html_directory = no
inet_interfaces = all
inet_protocols = ipv4
mail_owner = postfix
mailbox_command = /usr/lib/dovecot/deliver
mailq_path = /usr/bin/mailq
manpage_directory = /usr/share/man
meta_directory = /etc/postfix
milter_default_action = accept
milter_protocol = 6
myhostname = $host
newaliases_path = /usr/bin/newaliases
non_smtpd_milters = inet:localhost:12301
queue_directory = /var/spool/postfix
readme_directory = /usr/share/doc/postfix
sample_directory = /etc/postfix
sendmail_path = /usr/bin/sendmail
setgid_group = postdrop
shlib_directory = /usr/lib/postfix
smtp_tls_CAfile = /etc/letsencrypt/live/$host/cert.pem
smtp_tls_loglevel = 1
smtp_tls_mandatory_protocols = !SSLv2, !SSLv3, !TLSv1, !TLSv1.1
smtp_tls_protocols = !SSLv2, !SSLv3, !TLSv1, !TLSv1.1
smtp_tls_security_level = may
smtpd_milters = inet:localhost:12301
smtpd_recipient_restrictions = permit_sasl_authenticated, permit_mynetworks, reject_unauth_destination
smtpd_sasl_auth_enable = yes
smtpd_sasl_path = private/auth
smtpd_sasl_security_options = noanonymous, noplaintext
smtpd_sasl_tls_security_options = noanonymous
smtpd_sasl_type = dovecot
smtpd_tls_auth_only = yes
smtpd_tls_cert_file = /etc/letsencrypt/live/$host/fullchain.pem
smtpd_tls_exclude_ciphers = aNULL, LOW, EXP, MEDIUM, ADH, AECDH, MD5, DSS, ECDSA, CAMELLIA128, 3DES, CAMELLIA256, RSA+AES, eNULL
smtpd_tls_key_file = /etc/letsencrypt/live/$host/privkey.pem
smtpd_tls_mandatory_protocols = !SSLv2, !SSLv3, !TLSv1, !TLSv1.1
smtpd_tls_protocols = !SSLv2, !SSLv3, !TLSv1, !TLSv1.1
smtpd_tls_security_level = may
tls_preempt_cipherlist = yes
unknown_local_recipient_reject_code = 550

Can someone maybe point me in the right direction to look next?

Edit: After running postconf upgrade-configuration, i am now able to connect over STARTTLS, but am unable to send emails

Running mailq on the machine shows that there is mail in the waiting line, but it says the mail system is down. I'll keep poking around.

Last edited by VenomRolls (2021-04-14 22:49:24)

Offline

Board footer

Powered by FluxBB