Adam Cantwell wrote:
I have been dealing with what I finally determined were SPF violations
for the past couple days and it has brought up the issue of SPF
logging - or rather the lack there of.
I have spfbehavior set to the default of 3. A particular client was
attempting to send an email through a MX not listed in the SPF record
for their domain. When the message came in to the Toaster server, I
just see a successful connect and then disconnect in the smtp log,
like this:
@400000004575d3a50d221d2c tcpserver: status: 1/100
@400000004575d3a50d2516e4 tcpserver: pid 21638 from 204.239.136.10
@400000004575d3a50d26b4f4 tcpserver: ok 21638 srv1:68.142.145.58:25
:204.239.136.10::28178
@400000004575d3a9012a1e5c CHKUSER accepted sender: from
<[EMAIL PROTECTED]::> remote
<shield3.vancity.com:unknown:204.239.136.10> rcpt <> : sender accepted
@400000004575d3aa1d4e53b4 CHKUSER accepted sender: from
<[EMAIL PROTECTED]::> remote
<shield3.vancity.com:unknown:204.239.136.10> rcpt <> : sender accepted
@400000004575d3ab22adcccc tcpserver: end 21638 status 0
@400000004575d3ab22add49c tcpserver: status: 0/100
I could not figure out what was going on for awhile, and didn't think
even look at SPF. What I finally ended up doing is have the client
send a message through to another toaster that I manage, except it
runs an install closer to QmailRocks. It also uses SPF, and has
spfbehavior set to 3, but look at what I get in the smtp log:
@4000000045770cbd2cfa7144 tcpserver: status: 1/30
@4000000045770cbd2cfa9854 tcpserver: pid 25637 from 204.239.136.10
@4000000045770cbe023817a4 tcpserver: ok 25637
mail.leezer.net:10.9.2.65:25 www.vancity.bc.ca:204.239.136.10::45145
@4000000045770cc1347d3f8c Received-SPF: fail (mail.leezer.net: SPF
record at citizensbank.ca does not designate 204.239.136.10 as
permitted sender)
@4000000045770cc2225ed20c tcpserver: end 25637 status 0
@4000000045770cc2225ef14c tcpserver: status: 0/30
In this log, I could plainly see the SPF violation. I manage 5
QmailToaster servers and they all behave this same way, but my
QmailRocks server logs SPF.
So, my question is if there is a way to enable SPF logging in the
QmailToaster? If not, would you consider using a different SPF patch
in the future that does do logging?
Jake Vickers wrote:
A patch for this and DK logging are in the works now. I think they're
just in the testing phase.
Now I need to go over to QMR and see what patches they're using.....
Thanks!
All of the patches that QMR uses are written and/or put together by John
Simpson. You can find his combined patch set at
http://qmail.jms1.net/patches/combined.shtml
Adam
---------------------------------------------------------------------
QmailToaster hosted by: VR Hosted <http://www.vr.org>
---------------------------------------------------------------------
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
