Skip to content
GitLab
  • Menu
Projects Groups Snippets
  • Help
    • Help
    • Support
    • Community forum
    • Submit feedback
    • Contribute to GitLab
  • Sign in
  • TPA team TPA team
  • Project information
    • Project information
    • Activity
    • Labels
    • Members
  • Issues 175
    • Issues 175
    • List
    • Boards
    • Service Desk
    • Milestones
  • Monitor
    • Monitor
    • Incidents
  • Analytics
    • Analytics
    • Value stream
  • Wiki
    • Wiki
  • Activity
  • Create a new issue
  • Issue Boards
Collapse sidebar
  • The Tor Project
  • TPA
  • TPA teamTPA team
  • Issues
  • #40267
Closed
Open
Created May 27, 2021 by anarcat@anarcatOwner

bridgedb server having mail delivery problems

Nagios is unhappy about polyanthum:

WARNING: postfix mailq is 161 (threshold w = 100)

When I look at the mailq, i see things like:

7397B100F84    59548 Sun May 23 13:00:47  info@REDACTED.example.com
                                                           (temporary failure)
                                         bridgedb@polyanthum.torproject.org

in the logs, those look like:

May 27 00:04:56 polyanthum/polyanthum postfix/local[15139]: 7397B100F84: to=<bridgedb@polyanthum.torproject.org>, orig_to=<bridges@bridges.torproject.org>, relay=local, delay=299049, delays=299048/0.38/0/0.14, dsn=4.3.0, status=deferred (temporary failure)

a correctly sent mail, instead, looks like this:

May 27 00:06:07 polyanthum/polyanthum postfix/local[15155]: 4005E10109E: to=<bridgedb@polyanthum.torproject.org>, orig_to=<bridges@bridges.torproject.org>, relay=local, delay=0.74, delays=0.02/0/0/0.72, dsn=2.0.0, status=sent (delivered to command: procmail -a "$EXTENSION")

which brings me to procmail (which we should really abandon, IMHO).. its logs (in ~bridgedb/.procmail.log) are not very helpful either:

0 (null)
bridges@bridgedb: 250 Recipient address accepted

procmail: Program failure (70) of "esmtp"

the .procmailrc hasn't changed since 2019, so i don't think this is a regressionin the procmail config itself... following the trace there, however, i see it pipes its message through esmtp (which, unfortunately, is kind of abandoned too) after doing some DKIM checks.

(this is out of scope for fixing the immediate problem, but, really, this kind of stuff should just be done by Postfix itself, which can be hooked into opendkim to check incoming DKIM signatures, and, obviously, deliver to another SMTP server...)

anyways. following the trail leaves me into the bridgedb daemon, and looking at its logfiles, the only trace i can find is...

00:20:48 DEBUG    L376:server.validateTo()      Validating SMTP 'RCPT TO:' email address...

so yeah, i'm not sure exactly what i'm supposed to do with this, but i guess i would flag it for someone...

/cc @cohosh maybe you know what to do with this? should i just ignore it?

To upload designs, you'll need to enable LFS and have an admin enable hashed storage. More information
Assignee
Assign to
Time tracking