OSEC

Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com
 
From: John Peach (postfix_at_johnpeach.com)
Date: Mon Sep 02 2002 - 14:10:15 CDT

  • Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

    > John Peach:
    > >
    > > > > I have looked fairly closely at some of my logs and it looks like there may
    > > > > well be some kind of configuration which will not talk to a postfix server - I
    > > > > can see a fair number of IPs which do nothing more than connect, then
    > > > > disconnect.
    > > >
    > > > Not to sound hostile, but isn't it a bit premature to announce on
    > > > a public list that Postfix cannot talk to some software?
    > >
    > > Nope - I'm not blaming postfix. Something, whether the firewall or the mickysoft software on the other end will be breaking the protocol......
    > > I just wondered whether anyone else had seem similar, in the same way that PIX s/w is broken at some revisions.
    > > For sure, *something* that this guy is running won't talk to postfix and will talk to sendmail.
    >
    > Not for sure. Unless you run Postfix and Sendmail on the same box.
    >
    > In addition differences between operating system versions and
    > configurations, Postfix can be configured to reject all kinds
    > of crap that most MTAs will accept by default.
    >
    > So, before claiming that some software can't talk with Postfix,
    > please do a bit of home work.
    >
    I *did*. He has problems with a number of sites. Now, I can't claim that they
    all run postfix.... :-)
    What I do know is that it connects and immediately disconnects from postfix
    servers running under Solaris 8 and under Linux 2.4.18 in completely separate
    environments. *Most* people can send quite happily to both these sites. The
    only other complaints I have had have been from "opt-in" spammers wondering if
    I'm blocking them.
    What led me to suspect the firewall/IDS is the fact that a telnet to port 25
    on the postfix boxen results in the banner being displayed and then the
    connection dropped. As this was late on Thursday, we didn't pursue it at the
    time - he was going to check for updates to his firewall and never got back to
    me on Friday.
    I know I don't have all the information to solve this. I need to know exactly
    what hardware/software this guy is running. From the lack of other responses
    it looks like no-one else has seen this before, unless, of course, it's
    actually a TCP stack issue.....

    -
    To unsubscribe, send mail to majordomopostfix.org with content
    (not subject): unsubscribe postfix-users