Re: [exim] tls compression
Hi !! does exim use compression on tls connections ? It does not steer it. If you build OpenSSL 0.9.8 with the zlib-configure option and link Exim with it, you have got compression. GnuTLS has no compile time option. I wrote a patch to enable it by configuration options as well as log to exim_mainlog whether compression is used or not, and I am afraid I once promised to contribute it. it would be nice if you have some time to contribute it ;) I guess compression is *very* helpful for e.g. mobile / modem users (however, no popular MUA does support it - neither Opera nor Thunderbird or any other I looked at.) it could be also interesting between mta's as this could save some bandwith -- Best regards ... David Saez Padroshttp://www.ols.es On-Line Services 2000 S.L. e-mail [EMAIL PROTECTED] Pintor Vayreda 1 telf+34 902 50 29 75 08184 Palau-Solita i Plegamans movil +34 670 35 27 53 -- ## List details at http://www.exim.org/mailman/listinfo/exim-users ## Exim details at http://www.exim.org/ ## Please use the Wiki with this list - http://www.exim.org/eximwiki/
Re: [exim] 30 second wait for protocol timeout exceeded
On Thu, Feb 16, 2006 at 09:38:40AM +, Philip Hazel wrote: I do not like the idea of completely disabling by default, because this would be much more incompatible than just reducing the timeout. It's probably an Exim 5 thing. (I hope to have retired before Exim 5, BTW.) Me neither. If nothing else, what it does provide is an accurate log timestamp (I use the pidentd crypted tokens) from the issuing system, and so while NTP and true time should be something that's universally used, I'd prefer to correlate time that has been issued by machines in my control against time that I'm looking up in the logs of these same machines. If people want to drop packets at their border, rather than resetting the TCP connection, they can afford to wait for the timeout. Just for the record, though, I am in favour of dropping the default to 5 or 10 seconds. Cheers MBM -- Matthew Byng-Maddick [EMAIL PROTECTED] http://colondot.net/ (Please use this address to reply) -- ## List details at http://www.exim.org/mailman/listinfo/exim-users ## Exim details at http://www.exim.org/ ## Please use the Wiki with this list - http://www.exim.org/eximwiki/
[exim] Forwarding mail onto Junk for no reason
I've been using exim for over a year now with no problems but overnight
exim has started to forward all my mail to my Junk folder.
example from log:
2006-02-17 08:28:59 1FA0z5-0006Ds-0e = /home/cbolton/mail/Junk
[EMAIL PROTECTED] R=userforward T=address_file
The messages hasn't been marked as spam:
X-Spam-Status: No, score=0.4 required=7.5 tests=AWL,BAYES_00,FORGED_RCVD_HELO,
HTML_90_100,HTML_MESSAGE,HTML_SHORT_COMMENT,HTML_TITLE_EMPTY,
MISSING_SUBJECT autolearn=no version=3.1.0
and the only thing in my .forward file that refers to the Junk folder is:
if $h_X-Spam-Status: contains Yes
or
${if def:h_X-Spam-Flag {def}{undef}} is def
then
save $home/mail/Junk
finish
endif
I decided to use this opportunity to update to version 4.60 (4.54
previous) and its still doing it. Is there something I've missed?
Cheers.
Chris
--
## List details at http://www.exim.org/mailman/listinfo/exim-users
## Exim details at http://www.exim.org/
## Please use the Wiki with this list - http://www.exim.org/eximwiki/
[exim] 501-error
Hello, today I received an error message saying: reason: 501-'[EMAIL PROTECTED]': malformed address: ' may not follow '[EMAIL PROTECTED]) I asume the error is due to the ' within the . Is this correct? Does anybody know why an Outlook-Client would write eMail- addresses this way? thanks and regards Christoph TI.KOM Tirol Kommunikation GmbH Eduard-Wallnöfer-Platz 2 A-6010 Innsbruck Neuer Markt 1/2 A-1010 Wien Ing. Christoph Galuschka Lead Consultant Tel.: +43 512 902 2832 Fax: +43 512 902 2850 Mobil: +43 676 666 2832 eMail: [EMAIL PROTECTED] http://www.tikom.at --- This email is confidential and may also be legally privileged. If you have received this email in error, you are in notice of its status. Please notify the sender immediately by reply e-mail and then delete this message from your system. Please do not copy or use it for any purposes, or disclose its contents to any other person: to do so could be a breach of confidence. Thank you for your co-operation. Any views expressed in this message are those of the individual sender and may not necessarily reflect the views of TI.KOM Tirol Kommunikation GmbH. Please contact our Office on +43 512 902 2801 or +43 1 902 2841 or e-mail [EMAIL PROTECTED] if you require further assistance. -- ## List details at http://www.exim.org/mailman/listinfo/exim-users ## Exim details at http://www.exim.org/ ## Please use the Wiki with this list - http://www.exim.org/eximwiki/
[exim] Security: GnuTLS remote compromise
A heads-up for those who use GnuTLS in their Exim: make sure that you upgrade GnuTLS to deal with this security problem: URL:http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-0645 http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-0645 Description: Tiny ASN.1 Library (libtasn1) before 0.2.18, as used by (1) GnuTLS 1.2.x before 1.2.10 and 1.3.x before 1.3.4, and (2) GNU Shishi, allows attackers to crash the DER decoder and possibly execute arbitrary code via out-of-bounds access caused by invalid input, as demonstrated by the ProtoVer SSL test suite. What this means: if you run Exim with STARTTLS support in the server side, then any host which can issue STARTTLS to you can compromise Exim and run arbitrary code on your system as the user which Exim runs as. Update libtasn1/GnuTLS and the problem disappears. You probably don't need to recompile Exim. If you use pre-built packages, then see the URL above for the vendor URLs to deal with this issue. -Phil -- ## List details at http://www.exim.org/mailman/listinfo/exim-users ## Exim details at http://www.exim.org/ ## Please use the Wiki with this list - http://www.exim.org/eximwiki/
[exim] hostlist check failing
Can you offer any help as to why my hostlist check is failing? relay_hosts is a hostlist defined as: hostlist relay_hosts = lsearch;/etc/relayhosts : \ lsearch;/etc/relayhosts.omniquad : \ localhost The two files /etc/relayhosts.omniquad and /etc/relayhosts contain lists of IP addresses, one per line (including 217.158.66.28). The acl_smtp_rcpt ACL is set in /etc/exim.conf.TESTING as just: accept hosts = +relay_hosts Running exim -bh 217.158.66.28 -C /etc/exim.conf.TESTING (followed by HELO, MAIL FROM:[EMAIL PROTECTED], RCPT TO:[EMAIL PROTECTED]) outputs the following: using ACL check_recipient processing accept check hosts = +relay_hosts sender host name required, to match against lsearch;/etc/relayhosts looking up host name for 217.158.66.28 IP address lookup yielded g1.mailwallremote.com gethostbyname looked up these IP addresses: name=g1.mailwallremote.com address=217.158.66.28 checking addresses for g1.mailwallremote.com 217.158.66.28 OK gethostbyname looked up these IP addresses: name=localhost address=127.0.0.1 host in lsearch;/etc/relayhosts : lsearch;/etc/relayhosts.omniquad : localhost? no (end of list) host in +relay_hosts? no (end of list) accept: condition test failed end of ACL check_recipient: implicit DENY The ACL is clearly checking the hostlist but is failing the address, despite it being listed in one of the defined files. Any ideas why? Thanks for any help you can offer. Edward -- ## List details at http://www.exim.org/mailman/listinfo/exim-users ## Exim details at http://www.exim.org/ ## Please use the Wiki with this list - http://www.exim.org/eximwiki/
Re: [exim] Forwarding mail onto Junk for no reason
On Fri, 2006-02-17 at 09:29 +, Chris Bolton wrote: X-Spam-Status: No, score=0.4 required=7.5 tests=AWL,BAYES_00,FORGED_RCVD_HELO, ---^^^--- HTML_90_100,HTML_MESSAGE,HTML_SHORT_COMMENT,HTML_TITLE_EMPTY, MISSING_SUBJECT autolearn=no version=3.1.0 and the only thing in my .forward file that refers to the Junk folder is: if $h_X-Spam-Status: contains Yes maybe thats a little too broad... Nigel. -- [ Nigel Metheringham [EMAIL PROTECTED] ] [ - Comments in this message are my own and not ITO opinion/policy - ] -- ## List details at http://www.exim.org/mailman/listinfo/exim-users ## Exim details at http://www.exim.org/ ## Please use the Wiki with this list - http://www.exim.org/eximwiki/
Re: [exim] Forwarding mail onto Junk for no reason
On 17/02/06, Nigel Metheringham [EMAIL PROTECTED] wrote: On Fri, 2006-02-17 at 09:29 +, Chris Bolton wrote: X-Spam-Status: No, score=0.4 required=7.5 tests=AWL,BAYES_00,FORGED_RCVD_HELO, ---^^^--- HTML_90_100,HTML_MESSAGE,HTML_SHORT_COMMENT,HTML_TITLE_EMPTY, MISSING_SUBJECT autolearn=no version=3.1.0 and the only thing in my .forward file that refers to the Junk folder is: if $h_X-Spam-Status: contains Yes maybe thats a little too broad... Nice catch :-) ... and it all started happening suddenly when the OP's SA had a large enough corpus for the BAYES_XX tests to kick in Peter -- Peter Bowyer Email: [EMAIL PROTECTED] Tel: +44 1296 768003 VoIP: sip:[EMAIL PROTECTED] VoIP: [EMAIL PROTECTED] FWD: **275*5048707000 VoipTalk: **473*5048707000 -- ## List details at http://www.exim.org/mailman/listinfo/exim-users ## Exim details at http://www.exim.org/ ## Please use the Wiki with this list - http://www.exim.org/eximwiki/
Re: [exim] Forwarding mail onto Junk for no reason
Chris Bolton wrote:
I've been using exim for over a year now with no problems but overnight
exim has started to forward all my mail to my Junk folder.
example from log:
2006-02-17 08:28:59 1FA0z5-0006Ds-0e = /home/cbolton/mail/Junk
[EMAIL PROTECTED] R=userforward T=address_file
The messages hasn't been marked as spam:
X-Spam-Status: No, score=0.4 required=7.5
tests=AWL,BAYES_00,FORGED_RCVD_HELO,
HTML_90_100,HTML_MESSAGE,HTML_SHORT_COMMENT,HTML_TITLE_EMPTY,
MISSING_SUBJECT autolearn=no version=3.1.0
and the only thing in my .forward file that refers to the Junk folder is:
if $h_X-Spam-Status: contains Yes
or
${if def:h_X-Spam-Flag {def}{undef}} is def
then
save $home/mail/Junk
finish
endif
I decided to use this opportunity to update to version 4.60 (4.54
previous) and its still doing it. Is there something I've missed?
I expect it is picking up on the YES contained in BAYES_00. I don't
use .forward for filtering in this way, but if you can modify your
rule to check if X-Spam-Status: begins with Yes instead of contains
Yes, that might solve your problem.
I can't imagine why it wouldn't happen before or why it's not case
sensative...of course I could be completely wrong. :-)
--
Good day, eh.
Chris
--
## List details at http://www.exim.org/mailman/listinfo/exim-users
## Exim details at http://www.exim.org/
## Please use the Wiki with this list - http://www.exim.org/eximwiki/
Re: [exim] Forwarding mail onto Junk for no reason
On Fri, 2006-02-17 at 18:49 +0800, Chris Purves wrote: I can't imagine why it wouldn't happen before or why it's not case sensative...of course I could be completely wrong. :-) Peter speculated as to why it has kicked now. Case sensitivity:- http://www.exim.org/exim-html-4.60/doc/html/filter.html#id2504200 If a string-testing condition name is written in lower case, the testing of letters is done without regard to case; if it is written in upper case (for example, “CONTAINS”), the case of letters is taken into account. Nigel. -- [ Nigel Metheringham [EMAIL PROTECTED] ] [ - Comments in this message are my own and not ITO opinion/policy - ] -- ## List details at http://www.exim.org/mailman/listinfo/exim-users ## Exim details at http://www.exim.org/ ## Please use the Wiki with this list - http://www.exim.org/eximwiki/
Re: [exim] 501-error
Hello, acl_check_rcpt looks like this: denymessage = Restricted characters in address local_parts = ^[.] : [EMAIL PROTECTED]/|] Besides I do not get the message Restricted ... I run exim in testing mode using -bhc with the following results: snip rcpt to: '[EMAIL PROTECTED]' 501 '[EMAIL PROTECTED]': malformed address: ' may not follow '[EMAIL PROTECTED] snap snip rcpt to: [EMAIL PROTECTED] using ACL acl_check_rcpt ... processing deny check local_parts = ^[.] : [EMAIL PROTECTED]/|] christoph.galuschka in ^[.] : [EMAIL PROTECTED]/|]? no (end of list) deny: condition test failed ... snap This looks like something build in to exim. regards Christoph Am 17 Feb 2006 um 10:41, schrieb Gasperi Michael: Hi, naja schau Dir einfach einmal die acl_check_rcpt an Galuschka Christoph wrote: Hello, today I received an error message saying: reason: 501-'[EMAIL PROTECTED]': malformed address: ' may not follow '[EMAIL PROTECTED]) I asume the error is due to the ' within the . Is this correct? Does anybody know why an Outlook-Client would write eMail- addresses this way? thanks and regards Christoph TI.KOM Tirol Kommunikation GmbH Eduard-Wallnöfer-Platz 2 A-6010 Innsbruck Neuer Markt 1/2 A-1010 Wien Ing. Christoph Galuschka Lead Consultant Tel.: +43 512 902 2832 Fax: +43 512 902 2850 Mobil: +43 676 666 2832 eMail: [EMAIL PROTECTED] http://www.tikom.at --- This email is confidential and may also be legally privileged. If you have received this email in error, you are in notice of its status. Please notify the sender immediately by reply e-mail and then delete this message from your system. Please do not copy or use it for any purposes, or disclose its contents to any other person: to do so could be a breach of confidence. Thank you for your co-operation. Any views expressed in this message are those of the individual sender and may not necessarily reflect the views of TI.KOM Tirol Kommunikation GmbH. Please contact our Office on +43 512 902 2801 or +43 1 902 2841 or e-mail [EMAIL PROTECTED] if you require further assistance. TI.KOM Tirol Kommunikation GmbH Eduard-Wallnöfer-Platz 2 A-6010 Innsbruck Neuer Markt 1/2 A-1010 Wien Ing. Christoph Galuschka Lead Consultant Tel.: +43 512 902 2832 Fax: +43 512 902 2850 Mobil: +43 676 666 2832 eMail: [EMAIL PROTECTED] http://www.tikom.at --- This email is confidential and may also be legally privileged. If you have received this email in error, you are in notice of its status. Please notify the sender immediately by reply e-mail and then delete this message from your system. Please do not copy or use it for any purposes, or disclose its contents to any other person: to do so could be a breach of confidence. Thank you for your co-operation. Any views expressed in this message are those of the individual sender and may not necessarily reflect the views of TI.KOM Tirol Kommunikation GmbH. Please contact our Office on +43 512 902 2801 or +43 1 902 2841 or e-mail [EMAIL PROTECTED] if you require further assistance. -- ## List details at http://www.exim.org/mailman/listinfo/exim-users ## Exim details at http://www.exim.org/ ## Please use the Wiki with this list - http://www.exim.org/eximwiki/
Re: [exim] Forwarding mail onto Junk for no reason
Chris Purves wrote:
Chris Bolton wrote:
I've been using exim for over a year now with no problems but
overnight exim has started to forward all my mail to my Junk folder.
example from log:
2006-02-17 08:28:59 1FA0z5-0006Ds-0e = /home/cbolton/mail/Junk
[EMAIL PROTECTED] R=userforward T=address_file
The messages hasn't been marked as spam:
X-Spam-Status: No, score=0.4 required=7.5
tests=AWL,BAYES_00,FORGED_RCVD_HELO,
HTML_90_100,HTML_MESSAGE,HTML_SHORT_COMMENT,HTML_TITLE_EMPTY,
MISSING_SUBJECT autolearn=no version=3.1.0
and the only thing in my .forward file that refers to the Junk folder
is:
if $h_X-Spam-Status: contains Yes
or
${if def:h_X-Spam-Flag {def}{undef}} is def
then
save $home/mail/Junk
finish
endif
I decided to use this opportunity to update to version 4.60 (4.54
previous) and its still doing it. Is there something I've missed?
I expect it is picking up on the YES contained in BAYES_00. I
don't use .forward for filtering in this way, but if you can modify
your rule to check if X-Spam-Status: begins with Yes instead of
contains Yes, that might solve your problem.
I can't imagine why it wouldn't happen before or why it's not case
sensative...of course I could be completely wrong. :-)
ahh yes now I see.. it all makes sense now.
Cheers.
--
## List details at http://www.exim.org/mailman/listinfo/exim-users
## Exim details at http://www.exim.org/
## Please use the Wiki with this list - http://www.exim.org/eximwiki/
Re: [exim] Forwarding mail onto Junk for no reason
Peter Bowyer wrote: On 17/02/06, Nigel Metheringham [EMAIL PROTECTED] wrote: On Fri, 2006-02-17 at 09:29 +, Chris Bolton wrote: X-Spam-Status: No, score=0.4 required=7.5 tests=AWL,BAYES_00,FORGED_RCVD_HELO,---^^^--- HTML_90_100,HTML_MESSAGE,HTML_SHORT_COMMENT,HTML_TITLE_EMPTY, MISSING_SUBJECT autolearn=no version=3.1.0 and the only thing in my .forward file that refers to the Junk folder is: if $h_X-Spam-Status: contains Yes maybe thats a little too broad... Nice catch :-) ... and it all started happening suddenly when the OP's SA had a large enough corpus for the BAYES_XX tests to kick in Peter -- Peter Bowyer Email: [EMAIL PROTECTED] Tel: +44 1296 768003 VoIP: sip:[EMAIL PROTECTED] VoIP: [EMAIL PROTECTED] FWD: **275*5048707000 VoipTalk: **473*5048707000 I shall have to change it as Chris suggests and do some further reading on this test. Thanks, Chris. -- ## List details at http://www.exim.org/mailman/listinfo/exim-users ## Exim details at http://www.exim.org/ ## Please use the Wiki with this list - http://www.exim.org/eximwiki/
Re: [exim] hostlist check failing
On 2006-02-17 at 10:28 -, Edward Kay wrote: relay_hosts is a hostlist defined as: hostlist relay_hosts = lsearch;/etc/relayhosts : \ lsearch;/etc/relayhosts.omniquad : \ localhost The two files /etc/relayhosts.omniquad and /etc/relayhosts contain lists of IP addresses, one per line (including 217.158.66.28). The acl_smtp_rcpt ACL is set in /etc/exim.conf.TESTING as just: accept hosts = +relay_hosts That's matching hostnames for the lookup, not IP addresses. See section 10.12 of the Spec. Witness: check hosts = +relay_hosts sender host name required, to match against lsearch;/etc/relayhosts looking up host name for 217.158.66.28 IP address lookup yielded g1.mailwallremote.com gethostbyname looked up these IP addresses: name=g1.mailwallremote.com address=217.158.66.28 checking addresses for g1.mailwallremote.com 217.158.66.28 OK So it's found the hostname and confirmed that there's matching forward DNS as a security measure. Making another improvement too, so that you can use netblocks in CIDR notation (a.b.c.d/len) in the files and optimising to check localhost first before doing file I/O, and also dealing with connections which appear to come from other IP addresses of the local machine, try: hostlist relay_hosts = @[] : \ net-iplsearch;/etc/relayhosts : \ net-iplsearch;/etc/relayhosts.omniquad -- I am keeping international relations on a peaceable footing. You are biding your time before acting. He is coddling tyrants. -- Roger BW on topic of verb conjugation -- ## List details at http://www.exim.org/mailman/listinfo/exim-users ## Exim details at http://www.exim.org/ ## Please use the Wiki with this list - http://www.exim.org/eximwiki/
Re: [exim] Forwarding mail onto Junk for no reason
Chris Bolton wrote: Peter Bowyer wrote: On 17/02/06, Nigel Metheringham [EMAIL PROTECTED] wrote: On Fri, 2006-02-17 at 09:29 +, Chris Bolton wrote: X-Spam-Status: No, score=0.4 required=7.5 tests=AWL,BAYES_00,FORGED_RCVD_HELO,---^^^--- HTML_90_100,HTML_MESSAGE,HTML_SHORT_COMMENT,HTML_TITLE_EMPTY, MISSING_SUBJECT autolearn=no version=3.1.0 *trim* I shall have to change it as Chris suggests and do some further reading on this test. Thanks, Chris. So long as you have 'autolearn=no' you might even want to drop the BAYES completely. Or at least it's presence in the announcement string. If all else is fairly 'tight' it won't add much utility. Seems more useful and better 'personalized' in the end-user's MUA. IF they even still need it with Exim well-tuned. YMMV, Bill -- ## List details at http://www.exim.org/mailman/listinfo/exim-users ## Exim details at http://www.exim.org/ ## Please use the Wiki with this list - http://www.exim.org/eximwiki/
Re: [exim] 501-error
On Fri, 17 Feb 2006, Galuschka Christoph wrote: reason: 501-'[EMAIL PROTECTED]': malformed address: ' may not follow '[EMAIL PROTECTED]) I asume the error is due to the ' within the . Is this correct? Yes and no. Quotes are perfectly legal in local parts. You can have, for example, o'[EMAIL PROTECTED] without any problem. However, quote is not a legal character in a domain. -- Philip HazelUniversity of Cambridge Computing Service Get the Exim 4 book:http://www.uit.co.uk/exim-book -- ## List details at http://www.exim.org/mailman/listinfo/exim-users ## Exim details at http://www.exim.org/ ## Please use the Wiki with this list - http://www.exim.org/eximwiki/
Re: [exim] Forwarding mail onto Junk for no reason
On 17/02/06, W B Hacker [EMAIL PROTECTED] wrote: Chris Bolton wrote: Peter Bowyer wrote: On 17/02/06, Nigel Metheringham [EMAIL PROTECTED] wrote: On Fri, 2006-02-17 at 09:29 +, Chris Bolton wrote: X-Spam-Status: No, score=0.4 required=7.5 tests=AWL,BAYES_00,FORGED_RCVD_HELO,---^^^--- HTML_90_100,HTML_MESSAGE,HTML_SHORT_COMMENT,HTML_TITLE_EMPTY, MISSING_SUBJECT autolearn=no version=3.1.0 So long as you have 'autolearn=no' you might even want to drop the BAYES completely. Or at least it's presence in the announcement string. autolearn=no means that this message wasn't either hammy enough or spammy enough to be worth learning from (thresholds adjustable in the SA config). autolearn=disabled would mean it's turned off. Peter -- Peter Bowyer Email: [EMAIL PROTECTED] Tel: +44 1296 768003 VoIP: sip:[EMAIL PROTECTED] VoIP: [EMAIL PROTECTED] FWD: **275*5048707000 VoipTalk: **473*5048707000 -- ## List details at http://www.exim.org/mailman/listinfo/exim-users ## Exim details at http://www.exim.org/ ## Please use the Wiki with this list - http://www.exim.org/eximwiki/
Re: [exim] want to skip dspam router
On 2006-02-16 at 13:08 +0200, Brent Clark wrote:
dspam_router:
no_verify
check_local_user
condition = ${if and { \
{!def:h_X-Spam-Flag:} \
{!def:h_X-FILTER-DSPAM:} \
{!eq {$received_protocol}{local}} \
{ = {$message_size}{512k}} \
}\
{1}{0}}
headers_add = X-FILTER-DSPAM: by $primary_hostname on $tod_full
driver = accept
transport= dspam_spamcheck
local_part_suffix != -bookings
local_part != sales admin accounts
If anyone would be so kind as to over look this and perhaps share with me
as too how I can enhance on this, I would be most grateful.
I may have been out of it a while, but I've just checked the docs with
Exim 4.60 and I'm not seeing anything which allows != as a matcher for a
condition on a router. It's present in ACL checks, but that's it.
I just checked on a 4.54 box and that's the case there.
If != has been added and this passes config checks with exim -bV for
you, then please accept my apologies and point me to the docs which I've
missed. However, since local_parts is missing the trailing 's' I'm
going to risk posting.
You probably want to move those local_part values out to a localpartlist
and then negate a match on that, vis:
localpartlist skip_spam_scanning = sales admin accounts
[...]
dspam_router:
[...]
local_parts = ! +skip_spam_scanning
Aside from anything else, to the extent practical it's good to keep
user-specific stuff abstracted out to the start of your config. If you
have special handling for a particular magic user, that's arguably a
different matter.
Also, what are you trying to do with the local_part_suffix check? If
you want to state must not end -bookings then you probably want
something like:
condition = ${if match{$local_part}{\N-request$\N} {no}{yes}}
Regards,
--
I am keeping international relations on a peaceable footing.
You are biding your time before acting.
He is coddling tyrants.
-- Roger BW on topic of verb conjugation
--
## List details at http://www.exim.org/mailman/listinfo/exim-users
## Exim details at http://www.exim.org/
## Please use the Wiki with this list - http://www.exim.org/eximwiki/
[exim] exim, mysql build
trying to build exim 4.60 on soalris 8 with mysql lookups enabled
i have enabled the following in the Makefile
LOOKUP_MYSQL=yes
# lookup styles (e.g. LDAP, MYSQL or PGSQL). LOOKUP_LIBS is included only on
LOOKUP_INCLUDE=-I/home/local/mysql/include
#/usr/local/ldap/include -I /usr/local/mysql/include -I
/usr/local/pgsql/include
LOOKUP_LIBS=-L/home/local/mysql/lib/mysql/ -lmysqlclient
#usr/local/lib -lldap -llber -lmysqlclient -lpq -lgds
the following error appears in the make
[snip]
awk '{ print ($1+1) }' cnumber.h cnumber.temp
rm -f cnumber.h; mv cnumber.temp cnumber.h
gcc version.c
rm -f exim
gcc -o exim
Undefined first referenced
symbol in file
mysql_quote drtables.o
mysql_open drtables.o
mysql_tidy drtables.o
mysql_find drtables.o
ld: fatal: Symbol referencing errors. No output written to exim
collect2: ld returned 1 exit status
make[1]: *** [exim] Error 1
make[1]: Leaving directory `/home/ronan/exim-4.60/build-SunOS5-5.8-sparc'
make: *** [go] Error 2
how can i resolve this?
--
Ronan McGlue
Analyst / Programmer
CMC Systems Group
Queens University Belfast
--
## List details at http://www.exim.org/mailman/listinfo/exim-users
## Exim details at http://www.exim.org/
## Please use the Wiki with this list - http://www.exim.org/eximwiki/
Re: [exim] 501-error
On Fri, 17 Feb 2006, Galuschka Christoph wrote:
Does anybody know why an Outlook-Client would write eMail-
addresses this way?
Microsoft email software (in particular Outlook and Exchange) is not based
on Internet Standards, but rather has had support for Internet Standards
added on afterwards. It has a habit of translating messages from standard
syntax (comma to separate addresses, angle brackets to wrap them, and
double inverted commas for quoting) into a non-standard syntax
(semicolons, square brackets, and apostrophes).
Tony.
--
[EMAIL PROTECTED] [EMAIL PROTECTED] http://dotat.at/ ${sg{\N${sg{\
N\}{([^N]*)(.)(.)(.*)}{\$1\$3\$2\$1\$3\n\$2\$3\$4\$3\n\$3\$2\$4}}\
\N}{([^N]*)(.)(.)(.*)}{\$1\$3\$2\$1\$3\n\$2\$3\$4\$3\n\$3\$2\$4}}
--
## List details at http://www.exim.org/mailman/listinfo/exim-users
## Exim details at http://www.exim.org/
## Please use the Wiki with this list - http://www.exim.org/eximwiki/
Re: [exim] exim php shell_exec question
On 2006-02-16 at 14:33 -0800, John W. Baxter wrote: I'm rather surprised that in all of Exim's years, no one has written and contributed a set of SNMP agents (if that's the right SNMP jargon) to provide this sort of information. Someone posted details of their set-up a while back; I think around 2002 or so. I don't now remember who, sorry. Google(exim SNMP) suggests a number of promising options, including: URL:http://www.roads.lut.ac.uk/txt/exim-mrtg.html -- I am keeping international relations on a peaceable footing. You are biding your time before acting. He is coddling tyrants. -- Roger BW on topic of verb conjugation -- ## List details at http://www.exim.org/mailman/listinfo/exim-users ## Exim details at http://www.exim.org/ ## Please use the Wiki with this list - http://www.exim.org/eximwiki/
Re: [exim] Restricting SMTP access
On 2006-02-15 at 11:49 -, Edward Kay wrote: I want to stop any hosts that I don't explicitly allow from accessing my SMTP server. Move the problem out of the Exim configuration logic to keep things simple. If there is no legitimate reason for any server to directly contact your host (and you've put in MX records for your _host_ which point to the real servers, too, to ensure this) then simply don't accept a connection from unauthorised hosts. Either (1) Rebuild Exim against libwrap from the TCP Wrappers project. Search for USE_TCP_WRAPPERS in the default src/EDITME / Local/Makefile config. Or (2) Use packet-filtering rules, which you're likely to have a config panel for already (I don't know CPanel, sorry). Or use both. I recommend using the packet filter to make the port appear closed. That way potentially malicious packets won't even reach the server code. -- I am keeping international relations on a peaceable footing. You are biding your time before acting. He is coddling tyrants. -- Roger BW on topic of verb conjugation -- ## List details at http://www.exim.org/mailman/listinfo/exim-users ## Exim details at http://www.exim.org/ ## Please use the Wiki with this list - http://www.exim.org/eximwiki/
Re: [exim] exim, mysql build
On 2/17/06, Ronan [EMAIL PROTECTED] wrote:
trying to build exim 4.60 on soalris 8 with mysql lookups enabled
i have enabled the following in the Makefile
LOOKUP_MYSQL=yes
# lookup styles (e.g. LDAP, MYSQL or PGSQL). LOOKUP_LIBS is included only on
LOOKUP_INCLUDE=-I/home/local/mysql/include
#/usr/local/ldap/include -I /usr/local/mysql/include -I
/usr/local/pgsql/include
LOOKUP_LIBS=-L/home/local/mysql/lib/mysql/ -lmysqlclient
#usr/local/lib -lldap -llber -lmysqlclient -lpq -lgds
the following error appears in the make
[snip]
awk '{ print ($1+1) }' cnumber.h cnumber.temp
rm -f cnumber.h; mv cnumber.temp cnumber.h
gcc version.c
rm -f exim
gcc -o exim
Undefined first referenced
symbol in file
mysql_quote drtables.o
mysql_open drtables.o
mysql_tidy drtables.o
mysql_find drtables.o
ld: fatal: Symbol referencing errors. No output written to exim
collect2: ld returned 1 exit status
make[1]: *** [exim] Error 1
make[1]: Leaving directory `/home/ronan/exim-4.60/build-SunOS5-5.8-sparc'
make: *** [go] Error 2
how can i resolve this?
Are you sure, these paths are correct?
LOOKUP_INCLUDE=-I/home/local/mysql/include
LOOKUP_LIBS=-L/home/local/mysql/lib/mysql/ -lmysqlclient
In my case I have:
LOOKUP_INCLUDE=-I/usr/include/mysql/
LOOKUP_LIBS=-L/usr/lib -L/usr/lib/mysql3/mysql -lmysqlclient
How do I know that paths are correct?
Becuase my system installed mysql headers here /usr/include/mysql/
and share libs were installed /usr/lib/mysql3/mysql
Regards
--
## List details at http://www.exim.org/mailman/listinfo/exim-users
## Exim details at http://www.exim.org/
## Please use the Wiki with this list - http://www.exim.org/eximwiki/
[exim] prvs Always Day 100?
I've got my Exim only calling prvs on local_domains now. Thanks David!
But I've run into a different problem. All signed addresses seem to be
for day 100. The hash matches, but then I'm informed that the signature
has expired.
exim -d+expand -be '${prvs [EMAIL PROTECTED]'
expanding: [EMAIL PROTECTED]
result: [EMAIL PROTECTED]
expanding: batv_key
result: batv_key
prvs: hash source is '[EMAIL PROTECTED]'
expanding: ${prvs [EMAIL PROTECTED]
result: prvs=foo/[EMAIL PROTECTED]
prvs=foo/[EMAIL PROTECTED]
exim -d+expand -be '${prvscheck {prvs=foo/[EMAIL PROTECTED]'
expanding: prvs=foo/[EMAIL PROTECTED]
result: prvs=foo/[EMAIL PROTECTED]
prvscheck localpart: foo
prvscheck key number: 0
prvscheck daystamp: 100
prvscheck hash: b7cdbf
prvscheck domain: bar.com
expanding: batv_key
result: batv_key
prvs: hash source is '[EMAIL PROTECTED]'
prvscheck: received hash is b7cdbf
prvscheck: own hash is b7cdbf
prvscheck: signature expired, $pvrs_result unset
expanding: ${prvscheck {prvs=foo/[EMAIL PROTECTED]
result: [EMAIL PROTECTED]
[EMAIL PROTECTED]
--
## List details at http://www.exim.org/mailman/listinfo/exim-users
## Exim details at http://www.exim.org/
## Please use the Wiki with this list - http://www.exim.org/eximwiki/
Re: [exim] exim, mysql build
Rodrigo Castro wrote:
On 2/17/06, Ronan [EMAIL PROTECTED] wrote:
trying to build exim 4.60 on soalris 8 with mysql lookups enabled
i have enabled the following in the Makefile
LOOKUP_MYSQL=yes
# lookup styles (e.g. LDAP, MYSQL or PGSQL). LOOKUP_LIBS is included only on
LOOKUP_INCLUDE=-I/home/local/mysql/include
#/usr/local/ldap/include -I /usr/local/mysql/include -I
/usr/local/pgsql/include
LOOKUP_LIBS=-L/home/local/mysql/lib/mysql/ -lmysqlclient
#usr/local/lib -lldap -llber -lmysqlclient -lpq -lgds
the following error appears in the make
[snip]
awk '{ print ($1+1) }' cnumber.h cnumber.temp
rm -f cnumber.h; mv cnumber.temp cnumber.h
gcc version.c
rm -f exim
gcc -o exim
Undefined first referenced
symbol in file
mysql_quote drtables.o
mysql_open drtables.o
mysql_tidy drtables.o
mysql_find drtables.o
ld: fatal: Symbol referencing errors. No output written to exim
collect2: ld returned 1 exit status
make[1]: *** [exim] Error 1
make[1]: Leaving directory `/home/ronan/exim-4.60/build-SunOS5-5.8-sparc'
make: *** [go] Error 2
how can i resolve this?
Are you sure, these paths are correct?
no they were wrong
LOOKUP_INCLUDE=-I/home/local/mysql/include
should have been
LOOKUP_INCLUDE=-I/home/local/mysql/include/mysql
LOOKUP_LIBS=-L/home/local/mysql/lib/mysql/ -lmysqlclient
In my case I have:
LOOKUP_INCLUDE=-I/usr/include/mysql/
LOOKUP_LIBS=-L/usr/lib -L/usr/lib/mysql3/mysql -lmysqlclient
How do I know that paths are correct?
Becuase my system installed mysql headers here /usr/include/mysql/
and share libs were installed /usr/lib/mysql3/mysql
Regards
--
Ronan McGlue
Analyst / Programmer
CMC Systems Group
Queens University Belfast
--
## List details at http://www.exim.org/mailman/listinfo/exim-users
## Exim details at http://www.exim.org/
## Please use the Wiki with this list - http://www.exim.org/eximwiki/
[exim] Monitoring sent emails of a user
Hi, My boss today asked me to mirror a newcomers all sent emails to his mailbox. How do I do this in exim 4.52? Awaiting your answers. -- ## List details at http://www.exim.org/mailman/listinfo/exim-users ## Exim details at http://www.exim.org/ ## Please use the Wiki with this list - http://www.exim.org/eximwiki/
Re: [exim] Monitoring sent emails of a user
El 17/02/2006, a las 17:07, Sub Zero escribió: Hi, My boss today asked me to mirror a newcomers all sent emails to his mailbox. How do I do this in exim 4.52? Hi :) Try with this: $ cat /etc/.filter unseen deliver [EMAIL PROTECTED] bye! -- Santi Saez -- ## List details at http://www.exim.org/mailman/listinfo/exim-users ## Exim details at http://www.exim.org/ ## Please use the Wiki with this list - http://www.exim.org/eximwiki/
Re: [exim] Monitoring sent emails of a user
Sub Zero wrote: Hi, My boss today asked me to mirror a newcomers all sent emails to his mailbox. How do I do this in exim 4.52? Awaiting your answers. Hi all, I've been looking at this for the past two weeks as I also need to add an archive solution to my existing exim infrastructure. I've searched the list archives, read the FAQ, re-read the book and googled it any now have pages and pages of excerpts from peoples configs, I am now completely confused. I've spoke to a few exim experts about this (off list) to try and get an idea of how they would go about this and still get conflicting information. Most people seem to be using either a: - System filter - Custom router and transport - Shadow transports I have seen system filters that check for first_delivery to make sure that the message is only processed once even though system filters only run once for each message. I have seen many examples that use the unseen option added to duplicate copies of existing routers to makes things over-complicated by running each process again for the benefit of archiving. A few examples advocate that the shadow options should be used, others advise against them saying that the shadow options are only experimental (may have been true in version 3, they look ok to me in version 4) Handling errors on messages that were intended to be unseen also seems to be causing some people grief. I decided to get to the bottom of this and write a exim-archive howto once I figured it out. My probably flawed opinion on how this should be done amounts to: To archive all e-mail in and out - Use a system filter To archive all outbound - Use an unseen router To archive all inbound - Use an unseen router To do this by domain, host or e-mail address - use a filter or specify a condition to match on top of one of the options above If any of you can share your opinions or configs on this with me I will summarise them back to the list for approval first, then write up a howto to PDF or post on the wiki once we have a broad consensus. Thanks Jason Meers -- ## List details at http://www.exim.org/mailman/listinfo/exim-users ## Exim details at http://www.exim.org/ ## Please use the Wiki with this list - http://www.exim.org/eximwiki/
[exim] lsearch
Hi, I'm running the current stable version of Debian and the packaged version of Exim 4. I'm switching from 3 and I have this problem with lsearch that I just can't figure out. It's a very simple scenario. I want to block hosts that are listed in a file. The file is in /etc/spam_hosts and has the following kinds of entries: IP1: IP2: ... In the ACL for receiving messages, one of the first rules I added was: denymessage = Message rejected hosts = lsearch;/etc/spam_hosts That doesn't work for some reason. However, if I use a literal IP instead of the lsearch line, the rule works. What am I missing? Sorry if this is an FAQ -- I did check the archives and the docs, but didn't find what I looking for... Thanks for any ideas! Sergei -- ## List details at http://www.exim.org/mailman/listinfo/exim-users ## Exim details at http://www.exim.org/ ## Please use the Wiki with this list - http://www.exim.org/eximwiki/
Re: [exim] bug (4.60): negative values in maildirsize file?
On Friday 10 February 2006 16:13, Philip Hazel wrote: I have now got round to looking at this. On my Linux box, where Exim is compiled with -D_FILE_OFFSET_BITS=64 -D_LARGEFILE_SOURCE, the quota is NOT limited to 2G. I have just run a test with quota=3G, and I end up with a maildirsize that contains 3221225472S,0C 0 0 298 1 So, the question is, what system were you using and how was Exim compiled? What I think I'll do is insert a test of the size of off_t into the code of Exim, and have it generate an error if you try to set a quota 2G on a 32-bit system. It's 32bit Linux system with 2.6 kernel. Now I see where the problem could live - we are overwritting CFLAGS at the compilation time (make CFLAGS=...) which makes largefile defines stuff disappears. Philip -- Arkadiusz MiśkiewiczPLD/Linux Team http://www.t17.ds.pwr.wroc.pl/~misiek/ http://ftp.pld-linux.org/ -- ## List details at http://www.exim.org/mailman/listinfo/exim-users ## Exim details at http://www.exim.org/ ## Please use the Wiki with this list - http://www.exim.org/eximwiki/
Re: [exim] prvs Always Day 100?
On Fri, 2006-02-17 at 10:25 -0500, Chris Meadors wrote: I've got my Exim only calling prvs on local_domains now. Thanks David! But I've run into a different problem. All signed addresses seem to be for day 100. The hash matches, but then I'm informed that the signature has expired. Replying to myself here. I've been trying to rip out the prvs_daystamp function to make it stand alone. Wow, Exim has a lot of inter-dependencies. :) I finally got it working with only having to use mytypes.h along with the string_format function and the string_vformat function it calls. I removed the case 'D' and the log_write line from sting_vformat to avoid having to pull in more code. I'm compiling Exim on an x86_64 machine. So that TIME_T_FMT is defined as %lld. Changing that definition to %ld in my test makes the prvs_daystamp return 196 today when passed a day_offset of 0 today. As the code shipped with the %lld definition it always returns 100. I'm not sure if the bug is in string_vformat, or the math of the prvs_daystamp, or how to fix it. But I am pretty sure this is a bug. If someone has a patch I'd be happy to test it. Thanks again, Chris -- ## List details at http://www.exim.org/mailman/listinfo/exim-users ## Exim details at http://www.exim.org/ ## Please use the Wiki with this list - http://www.exim.org/eximwiki/
[exim] Redirect router condition - local smtp
If I wanted to add a condition to an ACL statement that would limit application of the satement to local SMTP processes I would say: hosts = : What I'm trying to figure out is how I could do that same sort of thing in a redirect router so that the router would decline if the message was not submitted by a local SMTP process. It sounds like it should be easy; but, the solution eludes me. If anyone has a suggestion, I'd love to hear it. Thanks. ... doug __ Do You Yahoo!? Tired of spam? Yahoo! Mail has the best spam protection around http://mail.yahoo.com -- ## List details at http://www.exim.org/mailman/listinfo/exim-users ## Exim details at http://www.exim.org/ ## Please use the Wiki with this list - http://www.exim.org/eximwiki/
Re: [exim] Monitoring sent emails of a user
Jason Meers wrote: Sub Zero wrote: Hi, My boss today asked me to mirror a newcomers all sent emails to his mailbox. How do I do this in exim 4.52? Awaiting your answers. Hi all, I've been looking at this for the past two weeks as I also need to add an archive solution to my existing exim infrastructure. I've searched the list archives, read the FAQ, re-read the book and googled it any now have pages and pages of excerpts from peoples configs, I am now completely confused. *trimmed* howto to PDF or post on the wiki once we have a broad consensus. Thanks Jason Meers Doubt a 'consensus' can be reached, as the needs differ. If mail is never being re-injected, complete 'facist logging' of traffic is very easily done in router/transport sets with 'unseen'. Sub-selection, and delivery to storage are as flexible as you care to code them. The other methods also work. None of those can easily *also* grab webmail via an outside provider, whether sent from the workplace or an internet cafe across the street, so.. 'imperfect' at best. Among the drivers of choices: - The law of the land - Corporate Policy - Morality and common sense - Available server resources and storage space - Desired method for access/review, compressed archiving. FWIW, an 'announced' corporate policy of archiving *all* traffic is less likely to lead to confrontation than monitoring only selected staff surreptitiously. These are not really Exim technical issues, but do contribute to the need for more than one method. HTH reduce the 'confusion'.. Bill Hacker -- ## List details at http://www.exim.org/mailman/listinfo/exim-users ## Exim details at http://www.exim.org/ ## Please use the Wiki with this list - http://www.exim.org/eximwiki/
[exim] Re: no reply to STARTTLS
Sven Hartge wrote: Exim advertises STARTTLS in the EHLO response but upon sending the STARTTLS command, nothing happens, it looks some client input is expected. Not if connected via client nor by hand (telnet). You should see a 220 TLS go ahead if you use telnet to debug. My guess: Your server is out of entropy (check /proc/sys/kernel/random/entropy_avail, it should be 2000) and exim is still calculating its dh_params and session key. Yesterday before posting I already read a hint on the web regarding entropy_avail. When I checked this, it was 5 - but I thought it's ok since it's not null. Yesterday, long after I mailed my post, I finally noticed errors on the TLS connections showing up in the logs (about 3 hours after telnetting and killing telnet after waiting a few minutes for response). Today I just tested STARTTLS again and instantly got the expected 220. And indeed, today entropy_vail was 1184 when started. But this value is quite inconsistent and mostly is around 5. Now I'm quite puzzled, but after some searches it looks like a common problem. ldd says exim4 is linked against libgnutls.so.11 as well as libssl.so.0.9.7. Does this mean I can choose at runtime which lib to use? Thanks, Jürgen P.S. This is the second try since my first answer didn't show up on the list for three hours. So please ignore any dupes if they finally show up. -- ## List details at http://www.exim.org/mailman/listinfo/exim-users ## Exim details at http://www.exim.org/ ## Please use the Wiki with this list - http://www.exim.org/eximwiki/
Re: [exim] Re: no reply to STARTTLS
Jürgen Herz wrote: Sven Hartge wrote: Exim advertises STARTTLS in the EHLO response but upon sending the STARTTLS command, nothing happens, it looks some client input is expected. Not if connected via client nor by hand (telnet). You should see a 220 TLS go ahead if you use telnet to debug. My guess: Your server is out of entropy (check /proc/sys/kernel/random/entropy_avail, it should be 2000) and exim is still calculating its dh_params and session key. Yesterday before posting I already read a hint on the web regarding entropy_avail. When I checked this, it was 5 - but I thought it's ok since it's not null. Yesterday, long after I mailed my post, I finally noticed errors on the TLS connections showing up in the logs (about 3 hours after telnetting and killing telnet after waiting a few minutes for response). Today I just tested STARTTLS again and instantly got the expected 220. And indeed, today entropy_vail was 1184 when started. But this value is quite inconsistent and mostly is around 5. Now I'm quite puzzled, but after some searches it looks like a common problem. ldd says exim4 is linked against libgnutls.so.11 as well as libssl.so.0.9.7. Does this mean I can choose at runtime which lib to use? Thanks, Jürgen P.S. This is the second try since my first answer didn't show up on the list for three hours. So please ignore any dupes if they finally show up. With fewer than ten servers running Exim, I cannot say for *sure*, but with OpenSSL on FreeBSD this has never been an issue for us with Exim, Qmail, Courier-MTA, DBMail, several IMAP/POP daemons, or anything else that uses SSL/TLS/or SSH. AFAIK, one has a choice on either *BSD or Linux as to OpenSSL or GNUTLS - and each no doubt has other advantages/disdvantages. But it may be more important to look to the selection either one uses to 'get entropy', i.e. /dev/random, dev/urandom, or whatever - and if that can be / should be updated/altered on a given system. YMMV, Bill -- ## List details at http://www.exim.org/mailman/listinfo/exim-users ## Exim details at http://www.exim.org/ ## Please use the Wiki with this list - http://www.exim.org/eximwiki/
[exim] Not frozing on unexistent user
Host A relays mail to host B. A receives mail from outside the network. When A accepts a mail for some unexistent recipient in B, the mail is frozen on A. Given that the condition of unexistent will remain on B, how can I say A that generate a bounce when B reject the message, instead of frozing it. Regards, maykel -- ## List details at http://www.exim.org/mailman/listinfo/exim-users ## Exim details at http://www.exim.org/ ## Please use the Wiki with this list - http://www.exim.org/eximwiki/
Re: [exim] Not frozing on unexistent user
On 17/02/06, Maykel Moya [EMAIL PROTECTED] wrote: Host A relays mail to host B. A receives mail from outside the network. When A accepts a mail for some unexistent recipient in B, the mail is frozen on A. Given that the condition of unexistent will remain on B, how can I say A that generate a bounce when B reject the message, instead of frozing it. Implement recipient verification with callouts on host A. Check the docs for verify = recipient/callout in the recipient ACL. Peter -- Peter Bowyer Email: [EMAIL PROTECTED] Tel: +44 1296 768003 VoIP: sip:[EMAIL PROTECTED] VoIP: [EMAIL PROTECTED] FWD: **275*5048707000 VoipTalk: **473*5048707000 -- ## List details at http://www.exim.org/mailman/listinfo/exim-users ## Exim details at http://www.exim.org/ ## Please use the Wiki with this list - http://www.exim.org/eximwiki/
Re: [exim] Not frozing on unexistent user
El vie, 17-02-2006 a las 20:58 +, Peter Bowyer escribió: On 17/02/06, Maykel Moya [EMAIL PROTECTED] wrote: Host A relays mail to host B. A receives mail from outside the network. When A accepts a mail for some unexistent recipient in B, the mail is frozen on A. Given that the condition of unexistent will remain on B, how can I say A that generate a bounce when B reject the message, instead of frozing it. Implement recipient verification with callouts on host A. Check the docs for verify = recipient/callout in the recipient ACL. That is what I was doing, host B is overloaded, and callouts put a heavy load on it. I had to resign of using callouts against B. Regards, maykel -- ## List details at http://www.exim.org/mailman/listinfo/exim-users ## Exim details at http://www.exim.org/ ## Please use the Wiki with this list - http://www.exim.org/eximwiki/
[exim] lsearch
This is a follow-up to my previous message about lsearch. Running exim with -d+all, I came across this piece: ... 16:42:18 3171 check hosts = lsearch;/etc/spam_hosts 16:42:18 3171 ---0 Get 0x80f994040 string.c 349 16:42:18 3171 sender host name required, to match against lsearch;/etc/spam_hosts ... For what it's worth... = Hi, I'm running the current stable version of Debian and the packaged version of Exim 4. I'm switching from 3 and I have this problem with lsearch that I just can't figure out. It's a very simple scenario. I want to block hosts that are listed in a file. The file is in /etc/spam_hosts and has the following kinds of entries: IP1: IP2: ... In the ACL for receiving messages, one of the first rules I added was: denymessage = Message rejected hosts = lsearch;/etc/spam_hosts That doesn't work for some reason. However, if I use a literal IP instead of the lsearch line, the rule works. What am I missing? Sorry if this is an FAQ -- I did check the archives and the docs, but didn't find what I looking for... Thanks for any ideas! Sergei -- ## List details at http://www.exim.org/mailman/listinfo/exim-users ## Exim details at http://www.exim.org/ ## Please use the Wiki with this list - http://www.exim.org/eximwiki/
Re: [exim] tls compression
On 16.02.2006 21:09 (+0100), David Saez Padros wrote: does exim use compression on tls connections ? Isn't compression an elementary part of encryption, to avoid data redundancy and make cracking the encryption unnecessarily easy? And doesn't an ideally encrypted string have a maximal (or was it minimal?...) enthropy so that it cannot be compressed any further? Or have I missed something between theory and reality... -- Yves Goergen LonelyPixel [EMAIL PROTECTED] Does the movement of the trees make the wind blow? http://newsboard.unclassified.de - Unclassified NewsBoard Forum -- ## List details at http://www.exim.org/mailman/listinfo/exim-users ## Exim details at http://www.exim.org/ ## Please use the Wiki with this list - http://www.exim.org/eximwiki/
Re: [exim] Re: no reply to STARTTLS
Um 21:33 Uhr am 17.02.06 schrieb Jürgen Herz: Sven Hartge wrote: Exim advertises STARTTLS in the EHLO response but upon sending the STARTTLS command, nothing happens, it looks some client input is expected. Not if connected via client nor by hand (telnet). You should see a 220 TLS go ahead if you use telnet to debug. My guess: Your server is out of entropy (check /proc/sys/kernel/random/entropy_avail, it should be 2000) and exim is still calculating its dh_params and session key. Yesterday before posting I already read a hint on the web regarding entropy_avail. When I checked this, it was 5 - but I thought it's ok since it's not null. This means 5 bits of entropy left. gnutls uses vast amounts of entropy (compared to openssl), so it drains the entropy pool very quick. Yesterday, long after I mailed my post, I finally noticed errors on the TLS connections showing up in the logs (about 3 hours after telnetting and killing telnet after waiting a few minutes for response). Today I just tested STARTTLS again and instantly got the expected 220. And indeed, today entropy_vail was 1184 when started. But this value is quite inconsistent and mostly is around 5. exim-4.50 has a little bug in its gnutls-code, which causes it to use the blocking /dev/random on SSL connections. Florian Weimer made a patch, which resolves this issue for 4.50. If you can, upgrade to at least 4.54, better yet 4.60. If you use Debian, use the packages from backports.org. Now I'm quite puzzled, but after some searches it looks like a common problem. ldd says exim4 is linked against libgnutls.so.11 as well as libssl.so.0.9.7. Does this mean I can choose at runtime which lib to use? This is weird. Please post your ldd output. S° -- Sven Hartge -- professioneller Unix-Geek Meine Gedanken im Netz: http://www.svenhartge.de/ Achtung, neue Mail-Adresse: [EMAIL PROTECTED] -- ## List details at http://www.exim.org/mailman/listinfo/exim-users ## Exim details at http://www.exim.org/ ## Please use the Wiki with this list - http://www.exim.org/eximwiki/
Re: [exim] Re: no reply to STARTTLS
Um 04:43 Uhr am 18.02.06 schrieb W B Hacker: With fewer than ten servers running Exim, I cannot say for *sure*, but with OpenSSL on FreeBSD this has never been an issue for us with Exim, Qmail, Courier-MTA, DBMail, several IMAP/POP daemons, or anything else that uses SSL/TLS/or SSH. *BSD behaves different than Linux 2.6.11 so you are comparing apples and lemons. Also gnutls uses far more entropy than openssl. S° -- Sven Hartge -- professioneller Unix-Geek Meine Gedanken im Netz: http://www.svenhartge.de/ Achtung, neue Mail-Adresse: [EMAIL PROTECTED] -- ## List details at http://www.exim.org/mailman/listinfo/exim-users ## Exim details at http://www.exim.org/ ## Please use the Wiki with this list - http://www.exim.org/eximwiki/
Re: [exim] tls compression
Yves Goergen wrote: On 16.02.2006 21:09 (+0100), David Saez Padros wrote: does exim use compression on tls connections ? Isn't compression an elementary part of encryption, to avoid data redundancy and make cracking the encryption unnecessarily easy? As used in SSL/TLS and many other kernel and userland things, yes. And doesn't an ideally encrypted string have a maximal (or was it minimal?...) enthropy so that it cannot be compressed any further? Either. Both. Whichever. Yes. Or have I missed something between theory and reality... Not in the last many years, no. http://en.wikipedia.org/wiki/Zlib Bill -- ## List details at http://www.exim.org/mailman/listinfo/exim-users ## Exim details at http://www.exim.org/ ## Please use the Wiki with this list - http://www.exim.org/eximwiki/
Re: [exim] Re: no reply to STARTTLS
Sven Hartge wrote: Um 04:43 Uhr am 18.02.06 schrieb W B Hacker: With fewer than ten servers running Exim, I cannot say for *sure*, but with OpenSSL on FreeBSD this has never been an issue for us with Exim, Qmail, Courier-MTA, DBMail, several IMAP/POP daemons, or anything else that uses SSL/TLS/or SSH. *BSD behaves different than Linux 2.6.11 For which I am eternally grateful! Just lazy, I guess. ;-) so you are comparing apples and lemons. No. Volume of juice. AFAIK, *BSD and Linux *can* use either one. Or both. Not that they are equal in all respects. Open or parts therof are a 'natural' for BSD, but I have from time to time had GNUTLS alongside for apps that wanted it. I'm agnostic. Also gnutls uses far more entropy than openssl. Sounds advantageous, security-wise, on the face of it. - Providing it doesn't break in some other way... ...as the OP seems to have found... Bill -- ## List details at http://www.exim.org/mailman/listinfo/exim-users ## Exim details at http://www.exim.org/ ## Please use the Wiki with this list - http://www.exim.org/eximwiki/
Re: [exim] Re: no reply to STARTTLS
Um 07:26 Uhr am 18.02.06 schrieb W B Hacker: Sven Hartge wrote: With fewer than ten servers running Exim, I cannot say for *sure*, but with OpenSSL on FreeBSD this has never been an issue for us with Exim, Qmail, Courier-MTA, DBMail, several IMAP/POP daemons, or anything else that uses SSL/TLS/or SSH. *BSD behaves different than Linux 2.6.11 For which I am eternally grateful! Just lazy, I guess. ;-) so you are comparing apples and lemons. No. Volume of juice. I meant different in the way they manage their entropy pools. Thie wise Linux developers decided to change the entropy-gathering-thingy inside to kernel in such ways, a normals headless server generates only about 1 bit/second of entropy, which is _way_ to low. Right now I am patching the kernel code to readd as much entropy sources, even the onces considered unsafe (such as the irqs of network interface cards) to keep my servers alive. (and also recompiling exim with openssl instead of gnutls). But this is becoming Off-Topic. Also gnutls uses far more entropy than openssl. Sounds advantageous, security-wise, on the face of it. - Providing it doesn't break in some other way... ...as the OP seems to have found... The problematic combination is Linux 2.6.11, exim4.50 and GnuTLS. S° -- Sven Hartge -- professioneller Unix-Geek Meine Gedanken im Netz: http://www.svenhartge.de/ Achtung, neue Mail-Adresse: [EMAIL PROTECTED] -- ## List details at http://www.exim.org/mailman/listinfo/exim-users ## Exim details at http://www.exim.org/ ## Please use the Wiki with this list - http://www.exim.org/eximwiki/
RE: [exim] Monitoring sent emails of a user
Hi Santi My boss today asked me to mirror a newcomers all sent emails to his mailbox. How do I do this in exim 4.52? Hi :) Try with this: $ cat /etc/.filter unseen deliver [EMAIL PROTECTED] I have created a system filter like this: if ($sender_address MATCHES [EMAIL PROTECTED]) then unseen deliver [EMAIL PROTECTED] endif and it is working okay. But I want to remove the header line Return-Receipt-To: ... only in this unseen delivery filter (if you call this a filter). Is this possible? -- ## List details at http://www.exim.org/mailman/listinfo/exim-users ## Exim details at http://www.exim.org/ ## Please use the Wiki with this list - http://www.exim.org/eximwiki/
Re: [exim] Monitoring sent emails of a user
Sub Zero wrote: and it is working okay. But I want to remove the header line Return-Receipt-To: ... only in this unseen delivery filter (if you call Section 42.6 of the Exim spec tells you how to do that. -- ## List details at http://www.exim.org/mailman/listinfo/exim-users ## Exim details at http://www.exim.org/ ## Please use the Wiki with this list - http://www.exim.org/eximwiki/
[exim] log smtp auth
Is there any way to log the smtp authentications attempts and results, and better, into a sql table? In order to implement the n days of inactivity blocks your account or stuff like that? Thank you -- ## List details at http://www.exim.org/mailman/listinfo/exim-users ## Exim details at http://www.exim.org/ ## Please use the Wiki with this list - http://www.exim.org/eximwiki/
Re: [exim] Not frozing on unexistent user
Maykel Moya wrote: Given that the condition of unexistent will remain on B, how can I say A that generate a bounce when B reject the message, instead of frozing it. That is the default operation, so the config must have been changed in some strange way. Maybe there's no dnslookup router, so A does not know how to handle the bounce. But it would be better to replicate B's user list to A, so A will not accept such mail any more. Otherwise you'll create colleral spam. -- ## List details at http://www.exim.org/mailman/listinfo/exim-users ## Exim details at http://www.exim.org/ ## Please use the Wiki with this list - http://www.exim.org/eximwiki/
Re: [exim] lsearch
This is yet another follow-up. I felt adventurous enough to go into the
Exim source code. And what I found was this:
/* Not a query-style lookup; must ensure the host name is present, and
then we do a check on the name and all its aliases. */
if (sender_host_name == NULL)
{
HDEBUG(D_host_lookup)
debug_printf(sender host name required, to match against %s\n,
ss);
if (host_lookup_failed || host_name_lookup() != OK)
{
*error = string_sprintf(failed to find host name for %s,
sender_host_address);;
return ERROR;
}
host_build_sender_fullhost();
}
That is the answer. I kept trying exim_checkaccess -bh 127.0.0.1
some_email_address (having put 127.0.0.1 in spam_hosts). Exim would do
a reverse lookup on that address and try to lookup the word localhost
instead of 127.0.0.1!
I tried other addresses too but they failed for another reason -- none
of them had a reverse lookup. Once a reverse lookup was unsuccessful, no
lookup took place at all!
Now, I must say, I didn't come across a description of that behavior in
the many parts of the documentation I read through, including Chapter 9,
which deals with lookups.
What makes it at least slightly confusing is that if the IP address (not
the host name) is mentioned in the hosts option directly, it will work
just fine, but when you put the same address in a file...
And as you know reverse lookups on a lot of hosts will not work because
the DNS will not be properly set up. All I want to do is block some
annoying hosts by the IP address using a file. Is there a reliable
solution for this? I guess a string expansion on the host IP could be
done using the file and then condition could be used on the result of
the expansion.
Thoughts?
Thanks!
=
On Fri, 2006-02-17 at 16:51 -0500, Sergei Gerasenko wrote:
This is a follow-up to my previous message about lsearch. Running exim
with -d+all, I came across this piece:
...
16:42:18 3171 check hosts = lsearch;/etc/spam_hosts
16:42:18 3171 ---0 Get 0x80f994040 string.c 349
16:42:18 3171 sender host name required, to match against
lsearch;/etc/spam_hosts
...
For what it's worth...
=
Hi,
I'm running the current stable version of Debian and the packaged
version of Exim 4. I'm switching from 3 and I have this problem with
lsearch that I just can't figure out.
It's a very simple scenario. I want to block hosts that are
listed in a file. The file is in /etc/spam_hosts and has the following
kinds of entries:
IP1:
IP2:
...
In the ACL for receiving messages, one of the first rules I added was:
denymessage = Message rejected
hosts = lsearch;/etc/spam_hosts
That doesn't work for some reason. However, if I use a literal IP
instead of the lsearch line, the rule works.
What am I missing?
Sorry if this is an FAQ -- I did check the archives and the docs, but didn't
find
what I looking for...
Thanks for any ideas!
Sergei
--
## List details at http://www.exim.org/mailman/listinfo/exim-users
## Exim details at http://www.exim.org/
## Please use the Wiki with this list - http://www.exim.org/eximwiki/
[exim] Re: no reply to STARTTLS
Jürgen Herz [EMAIL PROTECTED] wrote: [...] Now I'm quite puzzled, but after some searches it looks like a common problem. ldd says exim4 is linked against libgnutls.so.11 as well as libssl.so.0.9.7. [...] That's because ldd lists indirect linking. e.g. for exim this can be caused by: exim linked against gnutls exim linked against libpq.so.3 (Postgresql) libpq.so.3 linked against libssl Use objdump -p /usr/sbin/exim4 | grep NEEDED to only list direct dependencies. cu andreas -- The 'Galactic Cleaning' policy undertaken by Emperor Zhark is a personal vision of the emperor's, and its inclusion in this work does not constitute tacit approval by the author or the publisher for any such projects, howsoever undertaken.(c) Jasper Ffforde -- ## List details at http://www.exim.org/mailman/listinfo/exim-users ## Exim details at http://www.exim.org/ ## Please use the Wiki with this list - http://www.exim.org/eximwiki/
