Mär-17-16 15:48:27 [Worker_1] Info: LDAP added @lindner-group.com to
LDAPlist
...........
Info: LDAP added @lindner-group.com to LDAPlist (suppressed 2
concurrent
equal 'Info' loglines from all Workers)
(1)
It looks like you've configured to verify local domains using LDAP.
And for what ever reason, your LDAP server knows 'lindner-group.com'
as a
local domain.
OR
(2)
Any other email address for 'xxx...@lindner-group.com' is valid for your
LDAP-server (LDAP-query). If this is the case, and a previous mail was
sent by this user (email-address) - assp adds the domain '
@lindner-group.com' to the LDAP-list, because if the email-address is
local, the domain in the email-address must be local!
The second case happens, if your LDAP-server is for example MS-AD based
and you use global addressbooks and your LDAP-query-string is too weak.
For example- this one (yours):
(|(cn=xyz)(cn=x...@lindner-group.com)(mail=x...@lindner-group.com)(uid=x...@lindner-group.com)(uid=xyz))
is very much too weak. All entries are logical OR processed.
Assume you have a local user account 'administrator' and the user
'administra...@lindner-group.com' sends an email to assp - this
LDAP-query
returns 1 (valid) for cn=administrator and assp will add '
@lindner-group.com' to the LDAP-list, which makes it valid as a local
domain.
another example
local user account: a.merkel
send mail by : a.mer...@bundesregierung.de
@bundesregierung.de will be processed as localDomain - because
a.merkel is
a valid user account (cn= or uid=)
Something like this may work. You have to make sure, that the LDAP
server
returns 1 only for valid local accounts!
(&(|(|(|(|(&(objectclass=user)(objectcategory=person))(objectcategory=group))(objectclass=publicfolder))(!(objectclass=contact)))(objectclass=msExchDynamicDistributionList))(proxyaddresses=smtp:EMAILADDRESS))
(&(|(|(|(|(&(objectclass=user)(objectcategory=person))(objectcategory=group))(objectclass=publicfolder))(!(objectclass=contact)))(objectclass=msExchDynamicDistributionList))(mail=EMAILADDRESS))
In any case, remove the wrong entry from the ldaplist!
Thomas
Von: Nicole Hähnel <m...@nicole-haehnel.de>
An: "assp-user@lists.sourceforge.net" ">>" Questions and Answers for
users of ASSP Anti-Spam SMTP Proxy
<assp-user@lists.sourceforge.net>
Datum: 21.03.2016 08:42
Betreff: [Assp-user] Problem with Unknown Sender in Local Domain
Hi,
since we changed to ASSP version 2.4.7(16036) we have constantly mails
which are rejected with "Unknown Sender in Local Domain".
But the sending domain is definitley not in the list of local domains.
I have to put the domains in the noprocessing list so that they pass
assp.
Where is the fault?
Any experiences with this problem?
Mär-17-16 15:48:27 [Worker_1] Info: LDAP added @lindner-group.com to
LDAPlist
Mär-17-16 15:48:27 [Worker_1] x...@lindner-group.com matches
@lindner-group.com in whiteListedDomains
Info: LDAP added @lindner-group.com to LDAPlist (suppressed 2 concurrent
equal 'Info' loglines from all Workers)
Mär-17-16 15:48:27 [Worker_1] Info: LDAP - x...@lindner-group.com not
found in LDAP-cache (ldaplistdb)
Info: LDAP - x...@lindner-group.com not found in LDAP-cache (ldaplistdb)
(suppressed 2 concurrent equal 'Info' loglines from all Workers)
Mär-17-16 15:48:27 [Worker_1] Info: LDAP Results
(|(cn=xyz)(cn=x...@lindner-group.com)(mail=x...@lindner-group.com)(uid=x...@lindner-group.com)(uid=xyz)):
0 :
Mär-17-16 15:48:27 [Worker_1] Info: caching result for
x...@lindner-group.com in LDAPNotFound
Mär-17-16 15:48:27 m1-26107-13134 [Worker_1] 80.154.221.141
<x...@lindner-group.com> Message-Score: added 20 (flValencePB) for
InvalidLocalSender, total score for this message is now 20
Mär-17-16 15:48:27 m1-26107-13134 [Worker_1] 80.154.221.141
<x...@lindner-group.com> PB-IP-Score for '80.154.221.141' is 20, added 20
for InvalidLocalSender
Mär-17-16 15:48:27 m1-26107-13134 [Worker_1] [InvalidLocalSender]
80.154.221.141 <x...@lindner-group.com> [spam found] Unknown Sender in
Local Domain
Mär-17-16 15:48:27 m1-26107-13134 [Worker_1] 80.154.221.141
<x...@lindner-group.com> [SMTP Error] 554 5.7.1 Unknown Sender in Local
Domain .
Mär-17-16 15:48:27 m1-26107-13134 [Worker_1] 80.154.221.141
<x...@lindner-group.com> info: PB-IP-Score for '80.154.221.0' is 20,
added 20 in this session
Thanks!
Kind regards,
Nicole
------------------------------------------------------------------------------
Transform Data into Opportunity.
Accelerate data analysis in your applications with
Intel Data Analytics Acceleration Library.
Click to learn more.
http://pubads.g.doubleclick.net/gampad/clk?id=278785351&iu=/4140
_______________________________________________
Assp-user mailing list
Assp-user@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/assp-user
DISCLAIMER:
*******************************************************
This email and any files transmitted with it may be confidential,
legally
privileged and protected in law and are intended solely for the use
of the
individual to whom it is addressed.
This email was multiple times scanned for viruses. There should be no
known virus in this email!
*******************************************************
------------------------------------------------------------------------------
Transform Data into Opportunity.
Accelerate data analysis in your applications with
Intel Data Analytics Acceleration Library.
Click to learn more.
http://pubads.g.doubleclick.net/gampad/clk?id=278785351&iu=/4140
_______________________________________________
Assp-user mailing list
Assp-user@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/assp-user
