broken upgrade of postfix_2.3.7-3 -> 2.3.8-2 (etch)
Today's postfix update has broken my smtp configuration, and I would
enjoy any help troubleshooting - I have downgraded to 2.3.7-3 for the
moment. The changelog looks fairly trivial, but I have not been able to
put my finger on the real problem - is this possibly an libssl/openssl
issue?
I am using tls, sasl authentication, and postgrey. Local delivery for a
logcheck email worked, and postfix bound to the tcp ports, but a telnet
to port 25 showed no banner and accepted no interaction - same behavior
after a restart.
I enabled verbose logging and there is too much to post here - at the
end of the log is the verbose output of 2.3.7-3 starting up, a telnet to
localhost 25, then a non-verbose restart:
http://ftp.pbandjelly.org/pub/postfix_2.3.8-2/mail.log
Thanks for any ideas!
Kind Regards,
Michael
basic mail.log after postfix_2.3.8-2 upgrade (no fatal|error logs):
Mar 20 18:59:54 aesop postfix/master[7364]: terminating on signal 15
Mar 20 18:59:54 aesop postfix/master[7460]: daemon started -- version
2.3.8, configuration /etc/postfix
Mar 20 18:59:57 aesop postfix/master[7460]: warning: process
/usr/lib/postfix/smtpd pid 7467 exit status 127
Mar 20 18:59:57 aesop postfix/master[7460]: warning:
/usr/lib/postfix/smtpd: bad command startup -- throttling
Mar 20 19:00:35 aesop postfix/master[7460]: terminating on signal 15
Mar 20 19:01:24 aesop postfix/master[2010]: daemon started -- version
2.3.8, configuration /etc/postfix
Mar 20 19:01:37 aesop postfix/pickup[2016]: CAD5039C501: uid=108
from=<logcheck>
Mar 20 19:01:37 aesop postfix/cleanup[3115]: CAD5039C501:
message-id=<20070321000137.CAD5039C501@aesop.pbandjelly.org>
Mar 20 19:01:37 aesop postfix/qmgr[2017]: CAD5039C501:
from=<logcheck@aesop.pbandjelly.org>, size=16428, nrcpt=1 (queue active)
Mar 20 19:01:38 aesop postfix/local[3119]: CAD5039C501:
to=<mshuler@aesop.pbandjelly.org>, orig_to=<root>, relay=local,
delay=0.32, delays=0.1
8/0.07/0/0.07, dsn=2.0.0, status=sent (delivered to maildir)
Mar 20 19:01:38 aesop postfix/qmgr[2017]: CAD5039C501: removed
Mar 20 19:02:20 aesop postfix/master[2010]: warning: process
/usr/lib/postfix/smtpd pid 3957 exit status 127
Mar 20 19:02:20 aesop postfix/master[2010]: warning:
/usr/lib/postfix/smtpd: bad command startup -- throttling
Mar 20 19:03:20 aesop postfix/master[2010]: warning: process
/usr/lib/postfix/smtpd pid 3983 exit status 127
Mar 20 19:03:20 aesop postfix/master[2010]: warning:
/usr/lib/postfix/smtpd: bad command startup -- throttling
...
configs:
$ cat main.cf|egrep -v '^#|^$'
smtpd_banner = $myhostname ESMTP
biff = no
append_dot_mydomain = no
smtpd_use_tls=yes
smtpd_tls_cert_file=/etc/ssl/certs/mail.pbandjelly.org.cert
smtpd_tls_key_file=/etc/ssl/private/mail.pbandjelly.org.key
smtpd_tls_session_cache_database = btree:${queue_directory}/smtpd_scache
smtp_tls_session_cache_database = btree:${queue_directory}/smtp_scache
myhostname = aesop.pbandjelly.org
myorigin = /etc/mailname
alias_maps = hash:/etc/aliases
alias_database = hash:/etc/aliases
relayhost =
mynetworks = 127.0.0.0/8
mailbox_command =
mailbox_size_limit = 0
recipient_delimiter = +
inet_interfaces = all
inet_protocols = all
mydestination = $myhostname, /etc/postfix/virtual/domains
virtual_maps = hash:/etc/postfix/virtual/addresses
home_mailbox = Maildir/
strict_rfc821_envelopes = yes
smtpd_sasl_auth_enable = yes
smtpd_sasl_security_options = noanonymous
broken_sasl_auth_clients = yes
smtpd_sender_restrictions =
reject_non_fqdn_sender,
reject_unknown_sender_domain
smtpd_recipient_restrictions =
permit_sasl_authenticated,
permit_mynetworks,
reject_unauth_destination,
reject_rbl_client sbl-xbl.spamhaus.org,
check_policy_service inet:127.0.0.1:60000,
reject_unauth_pipelining
$ cat master.cf|egrep -v '^#|^$'
smtp inet n - - - - smtpd
submission inet n - - - - smtpd
pickup fifo n - - 60 1 pickup
cleanup unix n - - - 0 cleanup
qmgr fifo n - n 300 1 qmgr
tlsmgr unix - - - 1000? 1 tlsmgr
rewrite unix - - - - - trivial-rewrite
bounce unix - - - - 0 bounce
defer unix - - - - 0 bounce
trace unix - - - - 0 bounce
verify unix - - - - 1 verify
flush unix n - - 1000? 0 flush
proxymap unix - - n - - proxymap
smtp unix - - - - - smtp
relay unix - - - - - smtp
-o fallback_relay=
showq unix n - - - - showq
error unix - - - - - error
discard unix - - - - - discard
local unix - n n - - local
virtual unix - n n - - virtual
lmtp unix - - - - - lmtp
anvil unix - - - - 1 anvil
scache unix - - - - 1 scache
maildrop unix - n n - - pipe
flags=DRhu user=vmail argv=/usr/bin/maildrop -d ${recipient}
uucp unix - n n - - pipe
flags=Fqhu user=uucp argv=uux -r -n -z -a$sender - $nexthop!rmail
($recipient)
ifmail unix - n n - - pipe
flags=F user=ftn argv=/usr/lib/ifmail/ifmail -r $nexthop ($recipient)
bsmtp unix - n n - - pipe
flags=Fq. user=bsmtp argv=/usr/lib/bsmtp/bsmtp -t$nexthop -f$sender
$recipient
scalemail-backend unix - n n - 2 pipe
flags=R user=scalemail argv=/usr/lib/scalemail/bin/scalemail-store
${nexthop} ${user} ${extension}
mailman unix - n n - - pipe
flags=FR user=list argv=/usr/lib/mailman/bin/postfix-to-mailman.py
${nexthop} ${user}
Confidentiality Notice: This e-mail message (including any attached or
embedded documents) is intended for the exclusive and confidential use of the
individual or entity to which this message is addressed, and unless otherwise
expressly indicated, is confidential and privileged information of Rackspace
Managed Hosting. Any dissemination, distribution or copying of the enclosed
material is prohibited. If you receive this transmission in error, please
notify us immediately by e-mail at abuse@rackspace.com, and delete the
original message. Your cooperation is appreciated.
Reply to: