Mailing List Archive: SPF debian package configuration problem

Dear people,

I've have a mail server composed by DebianEtch + Postfix 2.3.8-2 + Courier 4.1. I've installed SPF as a Debian package in order to check incoming mail, I do this:

# apt-get install libmail-spf-query-perl

# wget http://www.openspf.org/source/software/postfix-policyd-spf-perl/tags/2.005.tar.gz <http://www.openspf.org/postfix-policyd.txt>

After that I untar and take the postfix-policyd-spf-perl and I do:

# mv postfix-policyd-spf-perl /usr/local/sbin/smtpd-policy.pl

# chmod 755 /usr/local/sbin/smtpd-policy.pl

In /etc/postfix/main.cf I add:

smtpd_recipient_restrictions =
...
reject_unknown_sender_domain
reject_unauth_destination
check_policy_service unix:private/policy
...

I /etc/postfix/master.cf I add:

policy unix - n n - - spawn
user=nobody argv=/usr/bin/perl /usr/local/sbin/smtpd-policy.pl

Finally:

# postfix reload

But after that when I send a message from Hotmail to my local mail account, the message doesn't come to me and I get this errors in my /var/log/mail.log file:

Jan 4 12:38:24 mail postfix/smtpd[12439]: NOQUEUE: reject: RCPT from blu139-omc3-s6.blu139.hotmail.com[65.55.175.206] 451 4.3.5 Server
configuration problem; from=<jl1967@hotmail.com> to=<acabrera@company.com.ar> proto=ESMTP helo=<blu139-omc3-s6.blu139.hotmail.com>
Jan 4 12:38:24 mail postfix/smtpd[12439]: disconnect from blu139-omc3-s6.blu139.hotmail.com[65.55.175.206]
Jan 4 12:39:05 mail postfix/spawn[12350]: warning: command /usr/bin/perl exit status 2
Jan 4 12:39:05 mail postfix/smtpd[12348]: warning: premature end-of-input on private/policy while reading input attribute name
Jan 4 12:39:06 mail postfix/smtpd[12348]: warning: problem talking to server private/policy: Connection reset by peer

What can be the problem with SPF ??? How can I check if it works OK ???

Special thanks

Alejandro

-------------------------------------------
Sender Policy Framework: http://www.openspf.org
Archives: http://v2.listbox.com/member/archive/1007/=now
RSS Feed: http://v2.listbox.com/member/archive/rss/1007/
Modify Your Subscription: http://v2.listbox.com/member/?member_id=1311533&id_secret=81838263-014e95
Powered by Listbox: http://www.listbox.com

On Friday 04 January 2008 11:46, Alejandro Cabrera Obed wrote:
> Dear people,
>
> I've have a mail server composed by DebianEtch + Postfix 2.3.8-2 + Courier
> 4.1. I've installed SPF as a Debian package in order to check incoming
> mail, I do this:
>
> # apt-get install libmail-spf-query-perl
>
> # wget
> http://www.openspf.org/source/software/postfix-policyd-spf-perl/tags/2.005.
>tar.gz <http://www.openspf.org/postfix-policyd.txt>
>
> After that I untar and take the postfix-policyd-spf-perl and I do:
>
> # mv postfix-policyd-spf-perl /usr/local/sbin/smtpd-policy.pl
>
> # chmod 755 /usr/local/sbin/smtpd-policy.pl
>
> In /etc/postfix/main.cf I add:
>
> smtpd_recipient_restrictions =
> ...
> reject_unknown_sender_domain
> reject_unauth_destination
> check_policy_service unix:private/policy
> ...
>
> I /etc/postfix/master.cf I add:
>
> policy unix - n n - - spawn
> user=nobody argv=/usr/bin/perl /usr/local/sbin/smtpd-policy.pl
>
> Finally:
>
> # postfix reload
>
> But after that when I send a message from Hotmail to my local mail account,
> the message doesn't come to me and I get this errors in my
> /var/log/mail.log file:
>
>
> Jan 4 12:38:24 mail postfix/smtpd[12439]: NOQUEUE: reject: RCPT from
> blu139-omc3-s6.blu139.hotmail.com[65.55.175.206] 451 4.3.5 Server
> configuration problem; from=<jl1967@hotmail.com>
> to=<acabrera@company.com.ar> proto=ESMTP
> helo=<blu139-omc3-s6.blu139.hotmail.com> Jan 4 12:38:24 mail
> postfix/smtpd[12439]: disconnect from
> blu139-omc3-s6.blu139.hotmail.com[65.55.175.206] Jan 4 12:39:05 mail
> postfix/spawn[12350]: warning: command /usr/bin/perl exit status 2 Jan 4
> 12:39:05 mail postfix/smtpd[12348]: warning: premature end-of-input on
> private/policy while reading input attribute name Jan 4 12:39:06 mail
> postfix/smtpd[12348]: warning: problem talking to server private/policy:
> Connection reset by peer
>
> What can be the problem with SPF ??? How can I check if it works OK ???
>
The current perl policy server uses a newer SPF library that the one shipped
with etch. You should either use pull version 1.0.8 of the Perl policy
server out of the SVN repo (it was the last one that used that library) or
(better) shift to a modern SPF library.

The Debian package for the perl policy server is here:
http://ftp.debian.org/debian/pool/main/p/postfix-policyd-spf-perl/

The Debian package for the correct SPF library for the policy server you have
is here:
http://ftp.debian.org/debian/pool/main/m/mail-spf-perl/mail-spf-perl_2.005-1.dsc

Scott K

-------------------------------------------
Sender Policy Framework: http://www.openspf.org
Archives: http://v2.listbox.com/member/archive/1007/=now
RSS Feed: http://v2.listbox.com/member/archive/rss/1007/
Modify Your Subscription: http://v2.listbox.com/member/?member_id=1311533&id_secret=81849154-34c221
Powered by Listbox: http://www.listbox.com