From f28f07cc427e515441d79c3c57abf3d732e381b8 Mon Sep 17 00:00:00 2001 From: Zhang Huangbin Date: Mon, 2 Feb 2015 11:27:26 +0800 Subject: [PATCH] New: howto/use.openldap.as.address.book.in.outlook.md. Add one new error message in faq/errors.md. --- faq/errors.md | 32 +++++++++++++++ ...use.openldap.as.address.book.in.outlook.md | 18 +++++++++ html/errors.html | 30 ++++++++++++++ html/index.html | 1 + ...e.openldap.as.address.book.in.outlook.html | 40 +++++++++++++++++++ 5 files changed, 121 insertions(+) create mode 100644 howto/use.openldap.as.address.book.in.outlook.md create mode 100644 html/use.openldap.as.address.book.in.outlook.html diff --git a/faq/errors.md b/faq/errors.md index 1540a1bc..c48bf22e 100644 --- a/faq/errors.md +++ b/faq/errors.md @@ -2,6 +2,38 @@ [TOC] +## Postfix +### Sender address rejected: not owned by user user@domain.ltd + +This error is caused by restriction rule `reject_sender_login_mismatch` in +Postfix parameter `smtpd_recipient_restrictions`, in file `/etc/postfix/main.cf`: + +``` +smtpd_recipient_restrictions = + ... + reject_sender_login_mismatch, + ... +``` + +It will reject the request when $smtpd_sender_login_maps specifies an owner +for the MAIL FROM address, but the client is not (SASL) logged in as that MAIL +FROM address owner; or when the client is (SASL) logged in, but the client +login name doesn't own the MAIL FROM address according to $smtpd_sender_login_maps. +Check [manual page of Postfix configuration file](http://www.postfix.org/postconf.5.html#reject_sender_login_mismatch) for more details. + +Removing `reject_sender_login_mismatch` and restarting Postfix service fixes +this issue. + +> If you want to allow some users to send as other users, or allow all users +> to send as their alias addresses, or allow member of mail list/alias to send +> as mail list/alias, you should try iRedAPD plugin `reject_sender_login_mismatch` +> instead (requires iRedAPD-1.4.4 or later releases). +> +> Read comments in file `/opt/iredapd/plugins/reject_sender_login_mismatch.py`, +> then enable it in iRedAPD config file `/opt/iredapd/settings.py` (`plugins = `), +> restart iRedAPD service. That's all. + + ## Amavisd ### connect to 127.0.0.1[127.0.0.1]:10024: Connection refused diff --git a/howto/use.openldap.as.address.book.in.outlook.md b/howto/use.openldap.as.address.book.in.outlook.md new file mode 100644 index 00000000..515491f2 --- /dev/null +++ b/howto/use.openldap.as.address.book.in.outlook.md @@ -0,0 +1,18 @@ +# Use OpenLDAP as address book in Microsoft Outlook + +Tested with Outlook 2007: + +* on account settings choose address book tabs +* click new +* choose Internet directory service(LDAP) +* insert the servername (for me, i set it to IP of the server) +* checked this " this server requires me to logon" +* Fill the username with --> mail=www@testserver.com,ou=Users,domainName=testserver.com,o=domains,dc=testserver,dc=com, dont forget to insert user passwd +* Click "More Settings" +* Leave by default, +* Click "Search" +* Choose "custom" and insert with --> ou=Users,domainName=testserver.com,o=domains,dc=testserver,dc=com +* Finish + +you need make sure network port 389 (OpenLDAP service) is open on your iRedMail +server, otherwise, you need config the iptables. diff --git a/html/errors.html b/html/errors.html index 17aa6dcf..5187658b 100644 --- a/html/errors.html +++ b/html/errors.html @@ -14,6 +14,10 @@
+

Postfix

+

Sender address rejected: not owned by user user@domain.ltd

+

This error is caused by restriction rule reject_sender_login_mismatch in +Postfix parameter smtpd_recipient_restrictions, in file /etc/postfix/main.cf:

+
smtpd_recipient_restrictions =
+    ...
+    reject_sender_login_mismatch,
+    ...
+
+ +

It will reject the request when $smtpd_sender_login_maps specifies an owner +for the MAIL FROM address, but the client is not (SASL) logged in as that MAIL +FROM address owner; or when the client is (SASL) logged in, but the client +login name doesn't own the MAIL FROM address according to $smtpd_sender_login_maps. +Check manual page of Postfix configuration file for more details.

+

Removing reject_sender_login_mismatch and restarting Postfix service fixes +this issue.

+
+

If you want to allow some users to send as other users, or allow all users +to send as their alias addresses, or allow member of mail list/alias to send +as mail list/alias, you should try iRedAPD plugin reject_sender_login_mismatch +instead (requires iRedAPD-1.4.4 or later releases).

+

Read comments in file /opt/iredapd/plugins/reject_sender_login_mismatch.py, +then enable it in iRedAPD config file /opt/iredapd/settings.py (plugins =), +restart iRedAPD service. That's all.

+

Amavisd

connect to 127.0.0.1[127.0.0.1]:10024: Connection refused

This error means Amavisd service is not running, please try to start it first.

diff --git a/html/index.html b/html/index.html index 192f969f..1e3fc4a0 100644 --- a/html/index.html +++ b/html/index.html @@ -72,6 +72,7 @@
  • SQL: Per-user inbound and outbound restrictions
  • Store SpamAssassin bayes in SQL
  • Use a bought SSL certificate
    • +
  • Use OpenLDAP as address book in Microsoft Outlook

    • Documents contributed by iRedMail users: