robg...@nospammail.net wrote:
I have a milter set up to REJECT on some body content.It works like it should and REJECTS with the message Jul 25 14:41:13 mariner postfix/handoff/smtpd[56542]: proxy-reject: END-OF-MESSAGE: 554 5.7.1 id=12969-07 - Rejected by next-hop MTA on relaying, from MTA(smtp:[127.0.0.1]:16002): 554 5.7.1 BANNED CONTENT; from=<bou...@send.example1.com> to=<m...@mydomain.com> proto=ESMTP helo=<mail123.EXAMPLE1.com> I've tested it by sending 'bad' email to myself from gmail. Seems to work as advertised. The mailers on EXAMPLE2.com are for an otherwise fairly repsectable domain. Most of what comes from there to me is OK. But they keep retrying to resend the email that's getting REJECTed. Every 15mins for the past 9+ hours since the 1st message was sent and got rejected. Depending on where I read about it that "554 5.7.1" error code means "failed transaction". I thought that a REJECT is supposed to do that -- just send an 'undeliverable' notice back to the sender containing the error code. But it acts like it means "and retry later" too. Is there some other Error code that says "failed. permanently. stop trying to resend the darn thing." ?
Any 5xx code is supposed to say that. Whether the recipient of the remote site's resulting bounce message is paying attention is another matter.
You're now down to something like Kevin McGrail's suggestion downthread, or contacting the postmaster at the remote site to get them to check in to this from their end.
If that fails (ie, no action; or worse, postmaster@ and/or abuse@ bounces), you may need to resort to a firewall entry, and live without the legitimate traffic for that site. (I've done this once in a while - all it really did was clean up my logs a little, because when I removed the block months later the problem traffic came right back.) That assumes there's not much of that; if you get a lot of legitimate mail from that site, plus this trickle of mishandled rejections, you're out of local options.
This could also be a sender that just keeps trying to send the same thing over and over again, an automated process doing the same, or even virus-generated mail not being caught by whatever outbound filtering the remote site has.
-kgd
