Latest Entries »
‘new3.com’
‘new4.com’
Some useful postfix commands
postqueue -p = mailq //postqueue -p is the same as mailq
service postfix reload //reload config
service postfix restart //restart postfix server
postconf mail_version //View the postfix version
postconf -d //Show default postfix values
postconf -n //Show non default postfix values
mailq //list mail queue and MAIL_ID’s, list mail queue
postqueue -p //list mail queue and MAIL_ID’s, list mail queue
postfix flush // flush mail queue
postqueue -f //process the queue now
postcat -q MAIL_ID //read email from mail queue
postsuper -d MAIL_ID //To remove MAIL_ID mail from the queue
postsuper -d ALL //To remove all mail from the queue
postsuper -d ALL deferred //To remove all mails in the deferred queue
postqueue -p | awk ‘/^[0-9,A-F]/ {print $7}’ | sort | uniq -c | sort -n //sort and count emails by “from address”
postqueue -p | grep ‘^[A-Z0-9]’|grep user@adminlogs.info|cut -f1 -d’ ‘ |tr -d \*|postsuper -d – //removing all emails sent by: user@adminlogs.info
postqueue -p | awk ‘/^[0-9,A-F].*user@adminlogs.info / {print $1}’ | cut -d ‘!’ -f 1 | postsuper -d – //remove all email sent from user@adminlogs.info
To delete all messages from the queue by a certain user:
for i in `postqueue -p | grep user@domain.com | awk ‘{print $1}’ | grep -v host | grep -v \*`; do postsuper -d $i; done
postqueue -p | grep ‘^[A-Z0-9]’|grep @adminlogs.info|cut -f1 -d’ ‘ |tr -d \*|postsuper -d – //remove all email sent by domain adminlogs.info
postqueue -p | tail -n 1 //Mail queue stats short
postqueue -p | grep -c “^[A-Z0-9]” //number of emails in Mail queue
tail -f /var/log/maillog //watch logs live
############################
https://ashraflinux.wordpress.com/useful-postfix-commands-to-troubleshooting-postfix-issue/
Usefull postfix comands…..
This commands we use to troble shoot postfix issue.
To Check Postfix Queue
#mailq
The last line in the output of above commands shows No. of mails in queue
You can use
mailq |tail -1
To Check Sasl Auth
SASL (Simple Authentication and Security Layer) is used by posfix for SMTP authentication which inturn uses reverse IMAP
tail -f /var/log/messages|grep sasl
To Check Posfix Logs
tail -f /var/log/maillog|grep postfix
To Check For Forward-Loops
Example logs:
grep EF8BF618034 /var/log/maillog.7 Jun 30 11:56:37 inbound-us1 postfix/smtpd[27378]: EF8BF618034: client=smtp06.bis.na.blackberry.com[216.9.248.53] Jun 30 11:56:38 inbound-us1 postfix/cleanup[24076]: warning: EF8BF618034: unreasonable virtual_alias_maps map *nesting* for terry@5starmedical.net Jun 30 11:56:38 inbound-us1 postfix/cleanup[24076]: warning: EF8BF618034: unreasonable virtual_alias_maps map expansion size for terry@5starmedical.net
Note: the “map expansion size” warning shows up if the “virtual_alias_expansion_limit = 1000″ limit is exceeded. In the nested looping case, the expansion crosses this limit.
root@xyz]# qshape-maia deferred T 5 10 20 40 80 160 320 640 1280 1280+ TOTAL 7545 47 75 56 65 292 665 1807 2486 1197 855 yahoo.com 3581 20 51 30 37 227 406 1004 1431 327 48 yahoo.co.in 1932 10 1 7 10 40 173 582 756 203 150 yahoo.in 74 0 0 1 1 1 16 45 10 0 0 linked5.com 46 5 11 0 0 2 0 28 0 0 0 bsgroup.com 34 0 0 0 0 0 0 0 0 0 34 magicnet.mn 34 0 0 0 0 0 0 0 0 34 0 vsnl.com 22 0 0 0 0 0 0 2 5 0 15 airtelbroadband.in 22 0 0 0 0 0 8 3 6 0 5 vsnl.net 21 0 0 0 0 0 1 0 4 0 16 ymail.com 18 1 1 0 0 2 4 9 1 0 0 nirma.co.in 15 0 0 0 0 0 0 7 8 0 0 gmail.co 13 0 0 0 0 0 0 2 1 0 10 lared.com.ar 13 0 0 0 0 0 0 0 0 13 0 redifmail.com 12 0 0 0 0 0 0 3 4 2 3 backupeast.bizmaticsinc.com 11 0 0 0 0 0 0 2 4 0 5 shgl.com.my 10 0 0 0 0 0 0 0 3 0 7 swarajenterprise.com 10 0 0 0 0 0 0 0 1 0 9 digitalsolutions.co.in 10 0 0 0 0 0 0 1 4 0 5 eppl.in 9 0 0 0 0 0 0 0 8 0 1
List of domains that are being deferred
[root@xyz]# qshape-maia -s deferred T 5 10 20 40 80 160 320 640 1280 1280+ TOTAL 5598 20 41 34 67 243 488 1253 1683 1044 725 venderporinternet.com.ar 524 0 0 0 0 0 0 0 0 524 0 bizmaticsinc.com 220 2 0 1 1 40 164 2 4 1 5 itdevenezuela.com 201 0 0 0 0 0 0 13 140 48 0 contactxindia.com 194 0 0 1 0 1 7 72 107 6 0 jvfinancial.co.in 193 0 0 0 0 0 0 189 0 0 4 indiratrade.com 156 0 0 0 0 0 0 1 4 151 0 balavikasa.org 135 3 2 3 4 10 20 27 39 20 7 aquaplusltd.com 103 0 0 0 0 0 0 1 102 0 0 gsecin.com 92 0 0 0 0 0 10 58 0 23 1 linked5.com 75 0 7 1 0 6 0 15 25 18 3 eyeglobal.com 59 0 0 0 0 0 3 28 26 1 1 dhlh3.com 58 1 7 1 22 19 0 2 6 0 0 dpaulstravel.com 56 0 0 0 0 1 16 26 10 0 3 bsgroup.in 55 0 1 0 1 1 2 3 11 0 36 sherrymo.com 54 0 0 0 0 0 6 22 23 3 0 face.mn 52 0 0 0 2 0 7 0 10 30 3 mywebmaker.in 51 0 0 0 0 0 0 0 45 3 3 lawofficewilliamsterns.com 51 0 0 0 0 0 0 0 0 0 51 mansishares.in 50 0 0 0 0 0 45 5 0 0 0
Checking Specific Mail From Queue
- If you want to check specific mail from queue
Check Message ID from mailq command-Queue ID- --Size-- ----Arrival Time---- -Sender/Recipient------- D5EB71AEA45* 54559 Wed Feb 13 06:56:01 delhi@sandalwoodresidential.net roxy@bol.net.in rshankerchy@yahoo.co.in
In the Above Example the first alphanumberical part in caps D5EB71AEA45 is the messages id.
To view the full mailspostcat -q D5EB71AEA45
If you an error postcat: fatal: open queue file D5EB71AEA45: No such file or directory
Then it means mail has been delivered or removed using postsuper
Removing Specific Mail From Queue
- If you want to remove specific mail from queue
postsuper -d D5EB71AEA45
Sorting Queued Mails By From Address:
# mailq | awk '/^[0-9,A-F]/ {print $7}' | sort | uniq -c | sort -n
- If there are lots of mails of a particular sender that are queued and you are sure that they are spam/scam, you can suspend all deliveries by putting the queue on hold using the command:
# postsuper -h ALL
This should give you some output like:
postsuper: Placed on hold: 1625 messages
You can then remove mails selectively using the commands outlined below:
Removing Mails Based On Sender Address
- if you want to remove all mails sent by peggysj@msn.com from the queue
# mailq| grep '^[A-Z0-9]'|grep peggysj@msn.com|cut -f1 -d' ' |tr -d \*|postsuper -d -
- or, if you have put the queue on hold, use
# mailq | awk '/^[0-9,A-F].*capitalone@mailade.com/ {print $1}' | cut -d '!' -f 1 | postsuper -d -
to remove all mails being sent using the From address “capitalone@mailade.com”.
Removing Mails Based On Domain
- if you want to remove all mails sent by the domain msn.com from the queue
mailq| grep '^[A-Z0-9]'|grep @msn.com|cut -f1 -d' ' |tr -d \*|postsuper -d -
If you have placed the queue on hold, make sure you release it after you’ve finished deleting mails:
# postsuper -H ALL postsuper: Released from hold: 238 messages
SMTP Connections Monitoring
- tail -f /var/log/maillog|grep postfix
Check if the mails are being delivered in the local and remote queue.
- netstat -ant | grep 25
To check if SMTP connections are established on port 25.
- To check no of SMTP connections established on port 25.
netstat -ant 2> /dev/null | awk '{print $4" "$6}' | egrep '[0-9]+.[0-9]+.[0-9]+.[0-9]+:25' | grep ESTABLISHED | wc -l
- To stop SMTP service.
Coment this line in /etc/postfix/master.cfsmtp inet n - n - 300 smtpd
Relaod Posfix
postfix reload
- To start SMTP service.
Uncoment this line in /etc/postfix/master.cfsmtp inet n - n - 300 smtpd
Relaod Posfix
postfix reload
Checking Policyd Logs
Policyd is an anti-spam plugin for Postfix current installed Rclub_LB.mailbox.inbound.us.5 as Centralized plugin
tail -f /var/log/maillog|grep policyd
Replace the domain if you wanna remove the mails deffered for a particular domain
/usr/sbin/postqueue -p | grep '^[A-Z0-9]' | grep *flairpens.com* | cut -f1 -d' ' |tr -d \*|postsuper -d -
To remove all defered mails
/usr/sbin/postqueue -p | grep '^[A-Z0-9]' | cut -f1 -d' ' |tr -d \*|postsuper -d -
If you have any doubts feel free to contact me:
ashraf.mohammed83@gmail.com
Procedure to change OpenSSH pre login banner
1) By default sshd server turns off this feature.
2) Login as the root user; create your login banner file:
# vi /etc/ssh/sshd-banner
Append text:
Welcome to XYZ Remote Login!
3) Open sshd configuration file /etc/sshd/sshd_config using a text editor:
# vi /etc/sshd/sshd_config
4) Add/edit the following line:
Banner /etc/ssh/sshd-banner
5) Save file and restart the sshd server:
# /etc/init.d/sshd restart
6) Test your new banner (from Linux or UNIX workstation or use any other ssh client)
############################################################
Post login message display:
Edit the file /etc/motd.
Command to create db, db user and assigning privileges and map them to cpanel.
mysql> CREATE DATABASE dummy_man1;
mysql> CREATE USER dummy_man1;
root@cpanel [~]# /usr/local/cpanel/bin/dbmaptool dummy –type mysql –dbs ‘dummy_man1’;
root@cpanel [~]# /usr/local/cpanel/bin/dbmaptool dummy –type mysql –dbusers ‘dummy_man1’
mysql> grant all privileges on dummy_man1.* to dummy_man1@localhost identified by ‘test123$’;
mysql> flush privileges;
mysql> \q
——————————————
Command to delete a db, db user :
mysql> DROP DATABASE DatabaseName;
mysql> DROP USER DatabaseUserName;
mysql> \q
To change user password in hosting controller panel :
goto hosting controller panel >> User Manager >> Click Username
=======================
/usr/local/nagios/etc/hosts
servername.cfg
/usr/local/nagios/etc/objects
hostgroups.cfg
=========================
http://www.unixmen.com/linux-tutorials/285-add-linux-host-to-nagios-server
Note : cpanel versions 11.X differs from their predecessors’ behaviour.
Tried once : vi /var/cpanel/cpanel.config and change entry “maxemailsperhour=200” as you wish.
you can change the default maximum emails per hour by updating the file via SSH accessing the server.
[root@server ~]#vi /var/cpanel/maxemailsperhour
or
/var/cpanel/maxemailsperdomain
=====
You can change from path /var/cpanel/users/username for particular user.
or
From whm tweak settings(for all)
or
from whm, “configserver mail manage” plugin.