RE: subject logging with header_checks

• Previous message: Erwan David: "Re: Policy Server"
• Maybe in reply to: Jeff Thurston: "subject logging with header_checks"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

At 02:07 PM 8/14/2007, Jeff Thurston wrote:
> > -----Original Message-----
> > From: [mailto:owner-postfix-
> > ] On Behalf Of Noel Jones
> > Sent: Tuesday, August 14, 2007 12:14 PM
> > To:
> > Subject: Re: subject logging with header_checks
> >
> > At 01:07 PM 8/14/2007, Jeff Thurston wrote:
> > >I'm probably completely overlooking something here...
> > >
> > >We want to log the subject lines of all emails both from within the
> > domain
> > >and from the rest of the world.
> > >
> > >After adding "header_checks" with "/^Subject:/ WARN", it is partially
> > >working... emails from outside of our domain, the subject is logged.
> > >Emails that enter the server through smtps are not logged.
> > >
> > >This server is also running amavis-new with a policy bank to bypass spam
> > >filtering on SASL authenticated sessions. Figuring this could be the
> > cause
> > >of my problem I disabled "bypass_header_checks_maps" in the amavis policy
> > >bank for smtps, reloaded all services, no change.
> > >
> > >What do I need to do to make this happen?
> > >
> > >Thanks,
> > >Jeff.
> >
> >
> > Maybe you set -o receive_override_options=no_header_body_checks on
> > the smtps service in master.cf.
> >
> > If that doesn't seem to be it, show us output from the "postfinger"
> > tool (google for it) or output of
> > # postconf -n ; grep -v '^# ' /etc/postfix/master.cf
> >
> > --
> > Noel Jones
>
>
>It is looking more and more that my issue might be related to Amavis-new and
>not a Postfix issue directly.
>
>Is there a better way to do the logging than with "header_checks" ?
>
>Just hoping someone else has come across this already.
>
>As requested, postconf output:
>
>#
>#
>#smtp inet n - n - - smtpd
>smtp inet n - n - - smtpd
> -o cleanup_service_name=pre-cleanup
> -o smtpd_sasl_auth_enable=yes
> -o smtpd_server_restrictions=permit_sasl_authenticated
> -o reject
>
>#submission inet n - - - - smtpd
> #-o smtpd_etrn_restrictions=reject
> #-o smtpd_client_restrictions=permit_mynetworks,reject
># -o smtpd_client_restrictions=permit_sasl_authenticated,reject
>smtps inet n - n - - smtpd
> -o smtpd_tls_wrappermode=yes
> -o smtpd_sasl_auth_enable=yes
> -o smtpd_server_restrictions=permit_sasl_authenticated
> -o content_filter=amavis:[127.0.0.1]:10026
> -o reject
>
>2525 inet n - n - - smtpd
># -o smtpd_tls_wrappermode=yes
> -o smtpd_sasl_auth_enable=yes
> -o smtpd_server_restrictions=permit_sasl_authenticated
> -o content_filter=amavis:[127.0.0.1]:10026
> -o reject
>
>#vacation unix - n n - - pipe
># flags=DRhu user=vacation argv=/var/spool/vacation/vacation.pl -f
>${sender} -- ${recipient}
>
>#vacation unix - n n - - pipe
># flags=DRhu user=vacation argv=/var/spool/vacation/vacation.pl
>#submission inet n - - - - smtpd
>#628 inet n - - - - qmqpd
>pickup fifo n - - 60 1 pickup
>#cleanup unix n - - - 0 cleanup
>cleanup unix n - - - 0 cleanup
> -o mime_header_checks=
> -o nested_header_checks=
> -o body_checks=
> -o header_checks=

There's the problem. The default cleanup service has header_checks
disabled. Remove the "-o header_checks=" line.

This is rather convoluted. Maybe a good time to review the
amavisd-new installation and master(5) docs.

-- 
Noel Jones 

• Previous message: Erwan David: "Re: Policy Server"
• Maybe in reply to: Jeff Thurston: "subject logging with header_checks"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]