[CentOS] Postgrey not working

Wed Jun 19 14:38:25 UTC 2019
Mike Burger <mburger at bubbanfriends.org>

On 2019-06-19 04:01, Nicolas Kovacs wrote:
> Hi,
> 
> I have a working installation of Postfix and Dovecot that works nicely.
> I've added SpamAssassin, which does a good job of flagging spam. Now I
> wanted to add greylisting to my server.
> 
> Here's what I did.
> 
> $ sudo yum install postgrey
> 
> Increase the greylisting delay.
> 
> # /etc/sysconfig/postgrey
> POSTGREY_OPTS="--delay=300"
> 
> Edit /etc/postfix/main.cf accordingly.
> 
> smtpd_recipient_restrictions =
>   permit_mynetworks,
>   permit_auth_destination,
>   permit_sasl_authenticated,
>   check_policy_service unix:/var/spool/postfix/postgrey/socket,
>   reject
> 
> Start/restart services.
> 
> $ sudo systemctl enable postgrey
> $ sudo systemctl start postgrey
> $ sudo systemctl restart postfix
> 
> Now Postgrey seems to be running OK.
> 
> $ systemctl status postgrey
> ● postgrey.service - Postfix Greylisting Service
>    Loaded: loaded (/usr/lib/systemd/system/postgrey.service; enabled;
> vendor preset: disabled)
>    Active: active (running) since mer. 2019-06-19 09:39:04 CEST; 19min 
> ago
>      Docs: man:postgrey(8)
>   Process: 5228 ExecStart=/usr/sbin/postgrey
> --unix=/var/spool/postfix/postgrey/socket
> --pidfile=/var/run/postgrey.pid --group=postgrey --user=postgrey
> --greylist-text=Greylisted for %%s seconds --daemonize $POSTGREY_OPTS
> (code=exited, status=0/SUCCESS)
>   Process: 5225 ExecStartPre=/bin/rm -f /var/run/postgrey.pid
> (code=exited, status=0/SUCCESS)
>  Main PID: 5229 (/usr/sbin/postg)
>    CGroup: /system.slice/postgrey.service
>            └─5229 /usr/sbin/postgrey
> --unix=/var/spool/postfix/postgrey/socket --pidfile=/var/run/p...
> 
> juin 19 09:39:03 sd-100246 systemd[1]: Starting Postfix Greylisting
> Service...
> juin 19 09:39:04 sd-100246 postgrey[5229]: Process Backgrounded
> juin 19 09:39:04 sd-100246 postgrey[5229]: 2019/06/19-09:39:04 postgrey
> (type Net::Server::Multi...29)
> juin 19 09:39:04 sd-100246 postgrey[5229]: Binding to UNIX socket file
> "/var/spool/postfix/postg...et"
> juin 19 09:39:04 sd-100246 postgrey[5229]: Setting gid to "238 238"
> juin 19 09:39:04 sd-100246 systemd[1]: Started Postfix Greylisting 
> Service.
> juin 19 09:39:04 sd-100246 postgrey[5229]: Setting uid to "994"
> 
> The only problem is that there's no greylisting. I tried to send mails
> from various mail servers to this machine. Everything gets delivered
> immediately, and there's no greylisting action in /var/log/maillog.

Did you include this line:

postgrey  unix  -       n       n       -       -       
/var/spool/postfix/postgrey/socket

in your /etc/postix/master.cf file?
-- 
Mike Burger
http://www.bubbanfriends.org

"It's always suicide-mission this, save-the-planet that. No one ever 
just stops by to say 'hi' anymore." --Colonel Jack O'Neill, SG1