Re: [exim] mail stuck in /var/spool/exim4/input
On 2020-06-04 Jeremy Harris via Exim-users wrote: > On 04/06/2020 16:38, Andreas Metzler via Exim-users wrote: > > You are running 4.94-1 configuration with 4.92.3-1 binaries. > I'm starting to wonder if these sorts of checks need support > from Exim predefined macros. [...] Hello, I do not think that is necessary. At least it would not have helped here. The problem was that I had forgotten to enforce the lockstep upgrade, actually doing it by tightening the dependencies was easy. https://salsa.debian.org/exim-team/exim4/-/commit/0e9d5eb337fb3978f76558e12f1afe87e18421cc cu Andreas -- `What a good friend you are to him, Dr. Maturin. His other friends are so grateful to you.' `I sew his ears on from time to time, sure' -- ## List details at https://lists.exim.org/mailman/listinfo/exim-users ## Exim details at http://www.exim.org/ ## Please use the Wiki with this list - http://wiki.exim.org/
Re: [exim] mail stuck in /var/spool/exim4/input
On 04/06/2020 16:38, Andreas Metzler via Exim-users wrote: > You are running 4.94-1 configuration with 4.92.3-1 binaries. I'm starting to wonder if these sorts of checks need support from Exim predefined macros. We could define one fairly easily where the _name_ of the macro includes the Exim release number (although, what to do for distros that have their own numbering?)... but what's really needed is a preprocessor-level .if that can operate on macro _content_. We don't have that. .ifdef can only recognise names. For this specific case you could .ifdef _OPT_MAIN_DKIM_VERIFY_MIN_KEYSIZES since the option only appeared in 4.94 (but using that obscures the intent unpleasantly) -- Cheers, Jeremy -- ## List details at https://lists.exim.org/mailman/listinfo/exim-users ## Exim details at http://www.exim.org/ ## Please use the Wiki with this list - http://wiki.exim.org/
Re: [exim] mail stuck in /var/spool/exim4/input
On 2020-06-02 m s via Exim-users wrote: > I'm running Debian sid and after upgrading packages today, exim stopped > working. It's keeping all my local mail in /var/spool/exim4/input and > not delivering it, and even when I type "runq" it won't deliver the > mail. > # exim4 -qff -v [...] > T: appendfile for marie@localhost > LOG: MAIN > == marie@localhost R=local_user T=mail_spool defer (-6): mailbox > /var/mail/ has wrong uid (0 != 1000) [...] > # dpkg -l |grep exim [...] > ii exim4-config 4.94-1 > all configuration for the Exim MTA (v4) > ii exim4-daemon-light4.92.3-1 > amd64lightweight Exim MTA (v4) daemon [...] Hello, You are running 4.94-1 configuration with 4.92.3-1 binaries. One significant change of 4.94-1 configuration is mail_spool: driver = appendfile - file = /var/mail/$local_part + file = /var/mail/$local_part_data Which is needed for 4.94 (avoid tainting) but will only work with 4.94 because the check_local_user router option only sets $local_part_data on 4.94. Do a proper upgrade (dist), including the daemon binaries and you should be fine. I will try to update the Debian packaging to prevent instalation of this non-working combination. cu Andreas -- `What a good friend you are to him, Dr. Maturin. His other friends are so grateful to you.' `I sew his ears on from time to time, sure' -- ## List details at https://lists.exim.org/mailman/listinfo/exim-users ## Exim details at http://www.exim.org/ ## Please use the Wiki with this list - http://wiki.exim.org/
Re: [exim] exim samba4 active directory
Hi Marco, thanks for your answer. So third block is router. And first and second ? Where can i put here ? First on main exim config ? Second on transport exim config ? Sorry for my stupid question ! Why there is not template on https://www.exim.org/ ? Nobody use exim as mta on ldap/AD ? Benoît Le 07/05/2020 à 22:55, Marco Gaiarin via Exim-users a écrit : LOCAL_AD_SERVERS = vdcsv1.ad.fvg.lnf.it::3268 LOCAL_AD_BASE_DN = ${quote_ldap:OU=FVG,DC=ad,DC=fvg,DC=lnf,DC=it} # You have to create a user to access the LDAP/AD server LOCAL_AD_BIND_DN = ${quote_ldap:CN=mta,OU=Restricted,DC=ad,DC=fvg,DC=lnf,DC=it} LOCAL_AD_PASS = "nontelado" Then: .ifdef LOCAL_AD_SERVERS ldap_default_servers = LOCAL_AD_SERVERS ldap_start_tls = true ldap_require_cert = never .endif so, a query: .ifdef LOCAL_AD_SERVERS user_ad_aliases: debug_print = "R: user_ad_aliases for $local_part@$domain" driver = redirect domains = +local_domains data = ${lookup ldap {user=LOCAL_AD_BIND_DN pass=LOCAL_AD_PASSldap:///LOCAL_AD_BASE_DN?uid?sub?(&(objectClass=user)(!(objectClass=computer))(mail=${quote_ldap:${local_part}}@${quote_ldap:${domain}}))}} .endif <>-- ## List details at https://lists.exim.org/mailman/listinfo/exim-users ## Exim details at http://www.exim.org/ ## Please use the Wiki with this list - http://wiki.exim.org/
[exim] [ADMIN] Couple of points
Hi all Hope you're all well. 1. Please ensure that you post messages to the list from your subscribed address. Recently there's been a number of occasions where messages have been held for moderation un-necessarily because the sender address is not the list member's subscribed address - if your mails have been taking a while to appear, that's probably why. 2. It's been brought to the moderation team's attention that some less-than-polite messages have recently been sent off list in response to emails on the list. I'm going to say this once and once only: stop it. We will moderate people who do this, or unsubscribe them without warning. Tata for now, be nice to each other! Graeme (obo mods) -- ## List details at https://lists.exim.org/mailman/listinfo/exim-users ## Exim details at http://www.exim.org/ ## Please use the Wiki with this list - http://wiki.exim.org/
Re: [exim] Taint mismatch in spam checking
On 03/06/2020 18:03, Jeremy Harris via Exim-users wrote: It's a "spam=" ACL condition, and you're feeding it a tainted string on the right of the =. It is however it is authenticated before use so surely can't be rouge else "authenticated = *" is not true. I can untaint it by doing: ${lookup pgsql{SELECT domain FROM domains WHERE domain = '${lc:$sender_address_domain}'}} Thank you. -- ## List details at https://lists.exim.org/mailman/listinfo/exim-users ## Exim details at http://www.exim.org/ ## Please use the Wiki with this list - http://wiki.exim.org/
Re: [exim] Taint mismatch, string_nextinlist: acl_check_condition 3675
On 04/06/2020 04:38, list2--- via Exim-users wrote: > set acl_m0 = $local_part@$domain > > > warn spam = $acl_m0:true > add_header = X-Spam-Report: $spam_report Either: a) pick up commit 12b7f811de from git and rebuild your exim or b) use checked, untainted variables to build $acl_m0 rather than $local_part and $domain. (Look for "de-tainting" in the Concept Index of the docs) -- Cheers, Jeremy -- ## List details at https://lists.exim.org/mailman/listinfo/exim-users ## Exim details at http://www.exim.org/ ## Please use the Wiki with this list - http://wiki.exim.org/