daemonstools compile problem on mdk8
I could compile daemontools-0.70 on several platforms, but had no luck on Linux Mandrake 8.0: ./compile tai64n.c ./load tai64n time.a unix.a byte.a ./compile tai64nlocal.c tai64nlocal.c: In function `main': tai64nlocal.c:54: warning: assignment makes pointer from integer without a cast tai64nlocal.c:55: dereferencing pointer to incomplete type tai64nlocal.c:56: dereferencing pointer to incomplete type tai64nlocal.c:57: dereferencing pointer to incomplete type tai64nlocal.c:58: dereferencing pointer to incomplete type tai64nlocal.c:59: dereferencing pointer to incomplete type tai64nlocal.c:60: dereferencing pointer to incomplete type make: *** [tai64nlocal.o] Error 1 gcc -v says: Reading specs from /usr/lib/gcc-lib/i586-mandrake-linux/2.96/specs gcc version 2.96 2731 (Linux-Mandrake 8.0 2.96-0.48mdk) tai64nlocal, line 54-60 say: out(num,fmt_ulong(num,1900 + t-tm_year)); out(-,1); out(num,fmt_uint0(num,1 + t-tm_mon,2)); out(-,1); out(num,fmt_uint0(num,t-tm_mday,2)); out( ,1); out(num,fmt_uint0(num,t-tm_hour,2)); out(:,1); out(num,fmt_uint0(num,t-tm_min,2)); out(:,1); out(num,fmt_uint0(num,t-tm_sec,2)); out(.,1); out(num,fmt_uint0(num,nanosecs,9)); How to fix? -- Med venlig hilsen / Regards Netdriftgruppen / Network Management Group UNI-C Tlf./Phone +45 35 87 89 41 | UNI-C Fax. +45 35 87 89 90 | Bygning 304 | DK-2800 Lyngby
rblsmtpd seems to violate RFC1123, 5.2.7
rblsmtpd with qmail does not accept mail from a blacklisted IP to postmaster@my-qmail-host, does it? That seems to me like as a violation of rfc1123, 5.2.7 which says: 5.2.7 RCPT Command: RFC-821 Section 4.1.1 A host that supports a receiver-SMTP MUST support the reserved mailbox Postmaster. Well, my postmaster mailbox is supported, but I believe the intention is that it should be able to receive mail. One more desirable candidate for unrbl'ing is abuse@my-qmail-host. -- Med venlig hilsen / Regards Netdriftgruppen / Network Management Group UNI-C Tlf./Phone +45 35 87 89 41Mail: UNI-C Fax. +45 35 87 89 90 Bygning 304 E-mail: [EMAIL PROTECTED] DK-2800 Lyngby
Re: Begging for a control/spamlovers patch
On Wed, Jul 11, 2001 at 01:18:53PM +0200, Henning Brauer wrote: On Wed, Jul 11, 2001 at 07:43:16AM +0200, torben fjerdingstad wrote: - Please don't suggest post-filtering- Happy coding. You are refusing the obvious, elegant and working solution. If you don't want our advice, don't ask. I did not ask for advise. I asked for a qmail-smtpd patch. Me: I want to do A. You: Don't that, do B instead. And don't whine here if your hacked qmail-smtpd doesn't work proper. At least allow me to get my patch reviewed for sanity, if I have to hack it myself. Programming is not what I do. Damn! This patch is all I need to get sendmail killed for good on the last two mail relays. Sendmail has that spamlovers feature, and a few people rely on it. (sendmail read a file called spamfriend, which contains a list of yes-I-want-my-mail-even-if-it-comes-from-a-blacklisted-IP reciepients -- Med venlig hilsen / Regards Netdriftgruppen / Network Management Group UNI-C Tlf./Phone +45 35 87 89 41Mail: UNI-C Fax. +45 35 87 89 90 Bygning 304 E-mail: [EMAIL PROTECTED] DK-2800 Lyngby
Begging for a control/spamlovers patch
I want to convert one more sendmail MX to qmail with rblsmtpd. But there is a show stopper: A handful of users demand to receive all email, even when it comes from blacklisted IPs. Well, qmail-smtpd read control/badmailfrom, so I suppose it will be easy to modify it so it to also read a new file, control/spamlovers, which contains a list of reciepient adresses that want the mail, even when it comes from a blacklisted IP. As I am not a programmer, don't want to screw up qmail-smtpd, and don't fully understand qmail-smtpd.c, I ask for help. That patch would also make a nice addition to chapter VII in Chris Hardies qmail Anti-spam HOWTO. Please don't suggest post-filtering instead. I want control at the SMTP level. Otherwise I may have a hard time trying to return an error message, and maybe the sender is unreachable or an innocent fake. I would never silently drop an email, at least not without having looked at it first, and I don't have time for that. -- Med venlig hilsen / Regards Netdriftgruppen / Network Management Group UNI-C Tlf./Phone +45 35 87 89 41Mail: UNI-C Fax. +45 35 87 89 90 Bygning 304 E-mail: [EMAIL PROTECTED] DK-2800 Lyngby
Re: Begging for a control/spamlovers patch
On Tue, Jul 10, 2001 at 05:47:00PM -0600, Chris Bolt wrote: Perhaps you could use http://www.qmail.org/qqrbl Then users who don't want spam can filter based on the X-RBL: header. In my first letter I wrote: - Please don't suggest post-filtering- I also explained why. I want to convert one more sendmail MX to qmail with rblsmtpd. But there is a show stopper: A handful of users demand to receive all email, even when it comes from blacklisted IPs. -- Med venlig hilsen / Regards Netdriftgruppen / Network Management Group UNI-C Tlf./Phone +45 35 87 89 41Mail: UNI-C Fax. +45 35 87 89 90 Bygning 304 E-mail: [EMAIL PROTECTED] DK-2800 Lyngby
Re: bounces and mime encapsulation
On Fri, Nov 17, 2000 at 05:30:17PM -0500, Russell Nelson wrote: torben fjerdingstad writes: When I as postmaster receive bounces from mailer-daemon on my qmail system, the spam is concatenated in-line to the bottom of the error mail. How do I get it as a mime attach instead? Is this what you're looking for? liFred Lindberg has a patch which causes qmail-send to preserving the MIME-ness whena href="http://www.ezmlm.org/pub/patches/qmail-mime.tgz"bouncing MIME messages/a. It requires and includes a patch to ezmlm, since it breaks a href="http://cr.yp.to/proto/qsbmf.txt"QSBMF/a. Exactly. Thanks! ;) -- -russ nelson [EMAIL PROTECTED] http://russnelson.com Crynwr sells support for free software | PGPok | The best way to help the poor 521 Pleasant Valley Rd. | +1 315 268 1925 voice | is to help the rich build Potsdam, NY 13676-3213 | +1 315 268 9201 FAX | up their capital. -- Med venlig hilsen / Regards Netdriftgruppen / Network Management Group UNI-C Tlf./Phone +45 35 87 89 41Mail: UNI-C Fax. +45 35 87 89 90 Bygning 304 E-mail: [EMAIL PROTECTED] DK-2800 Lyngby
bounces and mime encapsulation
When I as postmaster receive bounces from mailer-daemon on my qmail system, the spam is concatenated in-line to the bottom of the error mail. How do I get it as a mime attach instead? That way, I can easily isolate the original letter from the errror messages with my MUA (mutt), and I will see the subject of the spam instead of the famous subject "failure notice". When I get bounces from a sendmail host hear, it has mime encapsulated the different parts. That's what I like. In mutt, it looks like this when I go to the view attachment menu. Here, I can easily submit attach #6 for a spam complaint, RSS, whatever. 1 no description [text/plain, 7bit, 0.4K] 2 no description [message/delivery-s, 7bit, 0.3K] 3 Returned mail: User has moved; please tr [message/rfc822, 7bit, 2.8K] 4 no description [text/plain, 7bit, 0.4K] 5 no description [message/delivery-s, 7bit, 0.2K] 6 Money you never have to repay![message/rfc822, 7bit, 1.4K] 7 no description[text/plain, 7bit, 0.7K] -- Med venlig hilsen / Regards Netdriftgruppen / Network Management Group UNI-C Tlf./Phone +45 35 87 89 41Mail: UNI-C Fax. +45 35 87 89 90 Bygning 304 E-mail: [EMAIL PROTECTED] DK-2800 Lyngby
Blocking unqualified remote senders ?
How do I block unqualified remote senders? I know an empty return-path ()should be allowed. :-( I use qmail-1.03 with rblsmtpd + qmail-1.03-mfcheck.3.patch. I get bounces like this in my postmaster maildir: Return-Path: WealthNet2000 Received: (qmail 58006 invoked from network); 10 Mar 2000 14:42:36 - Received: from cr944640-a.brntfd1.on.wave.home.com (HELO mailer1.wealthnet2000.com) (24.112.103.150) by mail.net.uni-c.dk with SMTP; 10 Mar 2000 14:42:36 - From: WealthNet2000 To: [EMAIL PROTECTED] Date: Fri, 10 Mar 2000 05:22:18 Message-Id: [EMAIL PROTECTED] Subject: EARN $100,000 PER YEAR SENDING E-MAIL My host, mail.net.uni-c.dk is a low precedence MX for free.net which has a smarter mail host: [EMAIL PROTECTED]: Connected to 193.233.0.65 but sender was rejected. Remote host said: 551 Unauthorised attempt to send mail as ' WealthNet2000 ' from host ' mail.net.uni-c.dk ' -- Med venlig hilsen / Regards Netdriftgruppen / Network Management Group UNI-C Tlf./Phone +45 35 87 89 41Mail: UNI-C Fax. +45 35 87 89 90 Bygning 304 E-mail: [EMAIL PROTECTED] DK-2800 Lyngby
dnscache reports zero ttl - is that a problem?
It seems that DJB's dnscache makes all ttl's look like zero. Is that an expected behaviour? Is it a problem? Example: $ dig darenet.dk mx [cut] ;; ANSWER SECTION: darenet.dk. 0S IN MX10 mail.net.uni-c.dk. Asking the master, I get the truth: $ dig darenet.dk @ns-soa.darenet.dk mx [cut] ;; ANSWER SECTION: darenet.dk. 1D IN MX10 mail.net.uni-c.dk. Is everything OK? The dnscache is behind a firewall, so you won't be able to try it. I apologize if you think I should have asked somewhere else. (where would that be?). -- Med venlig hilsen / Regards Netdriftgruppen / Network Management Group UNI-C Tlf./Phone +45 35 87 89 41Mail: UNI-C Fax. +45 35 87 89 90 Bygning 304 E-mail: [EMAIL PROTECTED] DK-2800 Lyngby
Making an smtproute to nowhere
Will the following line in smtproutes silently throw away all outgoing mail to portal.mdr.net? portal.mdr.net: If not, how do I do it? The problem is that I have thousands of error messages queued for that host/domain. And it does does not exist. I want to delete those messages from the queue, without further retransmission attempts. -- Med venlig hilsen / Regards Netdriftgruppen / Network Management Group UNI-C Tlf./Phone +45 35 87 89 41Mail: UNI-C Fax. +45 35 87 89 90 Bygning 304 E-mail: [EMAIL PROTECTED] DK-2800 Lyngby
Re: Making an smtproute to nowhere
On Wed, Mar 01, 2000 at 09:29:03AM -0500, Chris Johnson wrote: On Wed, Mar 01, 2000 at 03:12:42PM +0100, torben fjerdingstad wrote: Will the following line in smtproutes silently throw away all outgoing mail to portal.mdr.net? portal.mdr.net: If not, how do I do it? The problem is that I have thousands of error messages queued for that host/domain. And it does does not exist. I want to delete those messages from the queue, without further retransmission attempts. Try this: # echo '#' ~alias/.qmail-baddomain-default # echo portal.mdr.net:alias-baddomain /var/qmail/control/virtualdomains # echo portal.mdr.net:127.0.0.1 /var/qmail/control/smtproutes Then run /var/qmail/bin/qmail-tcpok, and send qmail-send a HUP and an ALRM. All your queued mail for portal.mdr.net will get delivered by SMTP to 127.0.0.1 and will be handled by ~alias/.qmail-baddomain-default. The single # in that file will cause all the mail to be discarded. It works (except for 127.0.0.1 was not in my rcpthosts). Honestly, at first I screewed it up, and generated a lot of bounces. Thank you very much -- Med venlig hilsen / Regards Netdriftgruppen / Network Management Group UNI-C Tlf./Phone +45 35 87 89 41Mail: UNI-C Fax. +45 35 87 89 90 Bygning 304 E-mail: [EMAIL PROTECTED] DK-2800 Lyngby
451 DNS temporary failure (#4.3.0)
A customer at sbi.dk has no luck delivering mail to mail.k.tera-house.ac.jp through our mail relay, mail.net.uni-c.dk. Currently there are 875 letters queued for a user @mail.k.tera-house.ac.jp. It has no MX, but an A record. mail.net.uni-c.dk has no trouble resolving it. I just tried to generate a bounce by writing to [EMAIL PROTECTED], but after three hours it has not appeared here. I cannot figure out where the problem is. Here is a bounce our customer received. Return-Path: [EMAIL PROTECTED] Delivered-To: [EMAIL PROTECTED] Received: (qmail 22484 invoked by alias); 2 Feb 2000 10:48:14 - Delivered-To: [EMAIL PROTECTED] Received: (qmail 22481 invoked from network); 2 Feb 2000 10:48:14 - Received: from mail.net.uni-c.dk (130.226.1.3) by vahlfisk.uni-c.dk with SMTP; 2 Feb 2000 10:48:14 - Received: (qmail 25536 invoked by alias); 2 Feb 2000 10:48:15 - Delivered-To: [EMAIL PROTECTED] Received: (qmail 103068 invoked from network); 2 Feb 2000 10:48:14 - Received: from sbi4back.sbi.dk (130.226.99.36) by mail.net.uni-c.dk with SMTP; 2 Feb 2000 10:48:14 - Received: from SBI_4/SpoolDir by sbi4back.sbi.dk (Mercury 1.44); 2 Feb 00 11:48:15 +0100 Received: from SpoolDir by SBI_4 (Mercury 1.44); 2 Feb 00 11:48:08 +0100 Resent-from: "Lars Struwing" [EMAIL PROTECTED] Resent-to: [EMAIL PROTECTED] Resent-date: Wed, 2 Feb 2000 11:48:07 +0100 Received: from SpoolDir by SBI_4 (Mercury 1.44); 2 Feb 00 11:46:39 +0100 Received: from mail.net.uni-c.dk (130.226.1.3) by sbi4back.sbi.dk (Mercury +1.44); 2 Feb 00 11:46:35 +0100 Received: (qmail 92250 invoked for bounce); 2 Feb 2000 10:46:34 - Date: 2 Feb 2000 10:46:34 - From: [EMAIL PROTECTED] To: [EMAIL PROTECTED] Subject: failure notice Message-ID: [EMAIL PROTECTED] Hi. This is the qmail-send program at mail.net.uni-c.dk. I'm afraid I wasn't able to deliver your message to the following addresses. This is a permanent error; I've given up. Sorry it didn't work out. [EMAIL PROTECTED]: Sorry, I couldn't find any host by that name. (#4.1.2) I'm not going to try again; this message has been in the queue too long. --- Below this line is a copy of the message. Return-Path: [EMAIL PROTECTED] Received: (qmail 94262 invoked from network); 26 Jan 2000 09:45:11 - Received: from sbi4back.sbi.dk (130.226.99.36) by mail.net.uni-c.dk with SMTP; 26 Jan 2000 09:45:11 - Received: from SBI_4/SpoolDir by sbi4back.sbi.dk (Mercury 1.44); 26 Jan 00 10:45:03 +0100 Received: from SpoolDir by SBI_4 (Mercury 1.44); 26 Jan 00 10:43:17 +0100 From: Mail Delivery System [EMAIL PROTECTED] To: [EMAIL PROTECTED] Date: Wed, 26 Jan 2000 10:43:08 +0100 Subject: Delivery failure notification MIME-Version: 1.0 Content-Type: Multipart/Mixed; boundary=Part_Boundary-133F9DD Message-ID: [EMAIL PROTECTED] --Part_Boundary-133F9DD Content-type: Text/plain; charset=US-ASCII Content-description: Mail delivery failure report Content-disposition: Inline With reference to your message with the subject: "=?utf-8?B?44GL44Gq44KE44GY44KF44KT44GT?=" The local mail transport system has reported the following problems it encountered while trying to deliver your message: --- 451 DNS temporary failure (#4.3.0) --- Your mail message is being returned to you in the next part of this message. Should you need assistance, please mail [EMAIL PROTECTED] --Part_Boundary-133F9DD Content-type:
Re: MAIL FROM: somedamnuser@notvalid.dom
Re: MAIL FROM: somedamnuser@notvalid.dom
On Thu, Oct 14, 1999 at 03:39:56PM +0200, Balazs Nagy wrote: On Wed, 13 Oct 1999, Russell Nelson wrote: Einar Bordewich writes: Has anyone made som MX/A/PTR checking on MAIL FROM: in qmail-smtpd? Yes, there's a patch for it on www.qmail.org. Well, actually it doesn't work. Please use qmail-1.03-mfcheck.3.patch instead (URL: http://lsc.kva.hu/dl/qmail-1.03-mfcheck.3.patch ). Oh, by the way, Russ, could you update this patch's URL and local copy at www.qmail.org please? I use rblsmtpd. So patching qmail-smtpd won't work? What can I do? /usr/local/bin/supervise /usr/local/qmail/supervise/tcpserver env - \ PATH="/usr/local/bin:$PATH" TZ=MET-1METDST,M3.5.0,M10.5.0 \ tcpserver -x /usr/local/etc/tcp.smtp.cdb \ -v -p -t 5 -c 400 -b 40 -u 203 -g 200 0 \ smtp /usr/local/bin/smtplog \ /usr/local/bin/rblsmtpd -rrelays.mail-abuse.org \ /usr/local/bin/rblsmtpd -rrelays.orbs.org \ /usr/local/bin/rblsmtpd -rrbl.maps.vix.com \ /usr/local/bin/rblsmtpd -rdul.maps.vix.com \ /usr/local/qmail/bin/qmail-smtpd 21 \ | /usr/local/bin/accustamp \ | /usr/local/bin/cyclog -s14000 -n2 /var/adm/smtpd smtpd 3 -- Med venlig hilsen / Regards Netdriftgruppen / Network Management Group UNI-C Tlf./Phone +45 35 87 89 41Mail: UNI-C Fax. +45 35 87 89 90 Bygning 304 E-mail: [EMAIL PROTECTED] DK-2800 Lyngby
limiting the file size of bounces ?
How do I limit the filesize in bounces? Too often, a customer sent a huge mail mail through our mail relay which could not be delivered to the destination because of the size. It could not be returned to the sender either, because it is too large. And the whole message ends up in my postmaster mailbox as a double bounce :-( Then, I lowered databytes to 1Mb, because it had to be lower than on our customers mail servers to solve the problem above. A customer suggests that I instead just bounce the mail headers and the error messages back to the sender. (and discard the content of the original letter). How is that done? -- Med venlig hilsen / Regards Netdriftgruppen / Network Management Group UNI-C Tlf./Phone +45 35 87 89 41Mail: UNI-C Fax. +45 35 87 89 90 Bygning 304 E-mail: [EMAIL PROTECTED] DK-2800 Lyngby
tcpserver not (sys)logging on redhat-5.2
Using redhat-5.2/linux and qmail-1.03-2, I have added some rblsmtpd's to the startup script /etc/rc.d/init.d/qmail which now says: echo -n "Starting qmail: " /var/qmail/start-qmail /usr/sbin/tcpserver -u 72 -g 201 0 smtp \ /usr/local/bin/rblsmtpd -rrelays.radparker.com \ /usr/local/bin/rblsmtpd -rrelays.orbs.org \ /usr/local/bin/rblsmtpd -rrbl.maps.vix.com \ /usr/local/bin/rblsmtpd -rdul.maps.vix.com \ /var/qmail/bin/qmail-smtpd 21 I added the rblsmtpd lines and the traling "21" How do I make messages from rblsmtpd go to syslog? The rblsmtpd messages go to the root user tty, which is rather disturbing. :rblsmtpd: pid 8153: 451 Open relay - see :http://www.orbs.org/verify.cgi?address=x.x.x.x -- Med venlig hilsen / Regards Netdriftgruppen / Network Management Group UNI-C Tlf./Phone +45 35 87 89 41Mail: UNI-C Fax. +45 35 87 89 90 Bygning 304 E-mail: [EMAIL PROTECTED] DK-2800 Lyngby
Can I do this with qmail?
I have happily been running qmail for over a year on our main mail relay for over a year with zero problem. Now I also got responsibility for an aix-4.3/sendmail host, which I would like to convert to qmail. As far I can see I can't, because of missing qmail features. The features are (prioritiezed). 1) spam_friends support That means that selected users, including postmaster, can receive mail from blacklisted mail hosts. (Some bosses want it). And mail from .dk also must pass the blacklist checks. 2) reverse user aliases Local users automatically have their from header rewritten to their "official" email name, which is first.last. (Yeah, I know ...). Boss demand. 3) sender domain check in rblsmtpd. There is an unofficialt patch for qmail-smtpd, but none for rblsmtpd. imap and pop3 are also used, and many users use pine. (I don't want to patch or support pine in any way). I would like to use maildirs. Should i do double delivery, maildir for qmail-pop3d and mailbox for the rest, or are there better options? Which imap-maildir-patch is supported on this mailing list (none I suppose). -- Med venlig hilsen / Regards Netdriftgruppen / Network Management Group UNI-C Tlf./Phone +45 35 87 89 41Mail: UNI-C Fax. +45 35 87 89 90 Bygning 304 E-mail: [EMAIL PROTECTED] DK-2800 Lyngby
Re: relaying redundancy
I wish smtproutes could take a prioritized list of destinations. Our workstations has jam.net.uni-c.dk defined as "smarthost", using smtproutes, which contains :jam.net.uni-c.dk If that host is down, my outgoing mail is deferred, and I am not notified. It would be nice if having :jam.net.uni-c.dk :nn.net.uni-c.dk in smtproutes would try jam first, then nn. What are my options? I cannot send mail out directly because of a firewall. -- Med venlig hilsen / Regards Netdriftgruppen / Network Management Group UNI-C Tlf./Phone +45 35 87 89 41Mail: UNI-C Fax. +45 35 87 89 90 Bygning 304 E-mail: [EMAIL PROTECTED] DK-2800 Lyngby
rejecting non resolvable domains
I get too many bounces originating from non existing domains, so I tried Nagy's qmail-1.03-mfcheck.2.patch. But it does not work. Any non-existent domain sender is accepted. I suppose it's because I use rblsmtpd? What can I do then? I am not a programmer. I got the patch from Russel's qmail home page. DNS_HARD, DNS_SOFT and DNS_MEM was undeclared, so I had to manually include "dns.h" in qmail-smtpd.c. I use rblsmtpd like this: /usr/local/bin/supervise /usr/local/qmail/supervise/tcpserver env - \ PATH="/usr/local/bin:$PATH" TZ=MET-1METDST,M3.5.0,M10.5.0 \ tcpserver -x /usr/local/etc/tcp.smtp.cdb \ -v -p -t 5 -c 400 -b 40 -u 203 -g 200 0 \ smtp /usr/local/bin/smtplog \ /usr/local/bin/rblsmtpd -rrelays.orbs.org \ /usr/local/bin/rblsmtpd -rrbl.maps.vix.com \ /usr/local/bin/rblsmtpd -rdul.maps.vix.com \ /usr/local/qmail/bin/qmail-smtpd 21 \ | /usr/local/bin/accustamp \ | /usr/local/bin/cyclog -s14000 -n2 /var/adm/smtpd smtpd 3 P.S. I wonder why I have not seen my previous letter on this qmail list show up yet. The MX host for list.cr.yp.to seems to be unreachable today. -- Med venlig hilsen / Regards Netdriftgruppen / Network Management Group UNI-C Tlf./Phone +45 35 87 89 41Mail: UNI-C Fax. +45 35 87 89 90 Bygning 304 E-mail: [EMAIL PROTECTED] DK-2800 Lyngby
ORBS check, except for specific users.
A long time ago some bosses decided that every user has an email address of the form: [EMAIL PROTECTED] :-( The MX host for ourdomin.dk does ORBS check. Now, a few bosses are angry because they can't receive mail from open relays, while others definitely don't want mail from open relays. How can they all be satisfied? Their official email address must not be changed. -- Med venlig hilsen / Regards Netdriftgruppen / Network Management Group UNI-C Tlf./Phone +45 35 87 89 41Mail: UNI-C Fax. +45 35 87 89 90 Bygning 304 E-mail: [EMAIL PROTECTED] DK-2800 Lyngby
bombed by autoresponders
Every time I post to one of our mailing lists, I get bombed be responses from autoresponders. Off course they come from "Internet Mail Service (5.5.x.x) and off course the postmaster email address does not work so I can send a complaint. Sample attached. Is there any way I can protect myself, except by dumping all mail from "Internet Mail Service"?? Should I just buy a parachute? -- Med venlig hilsen / Regards Netdriftgruppen / Network Management Group UNI-C Tlf./Phone +45 35 87 89 41Mail: UNI-C Fax. +45 35 87 89 90 Bygning 304 E-mail: [EMAIL PROTECTED] DK-2800 Lyngby Dette er en automatisk genereret besked: Jeg er på ferie i ugerne 25, 26, 27 og 28. Henvendelser af hastende karakter henvises til en af Edb-sektionens øvrige medarbejdere. Mvh. Benny W. Jørgensen Edb-sektionen, DMU
wildcards in badmailfrom ?
I want to bounce mail from a level 2 domain name and all it's hostnames and subdomains. How can I do that? I have no access to the incoming MX host so I can block the domain there. I see no other way to do it than using badmailfrom on my local machine. -- Med venlig hilsen / Regards Netdriftgruppen / Network Management Group UNI-C Tlf./Phone +45 35 87 89 41Mail: UNI-C Fax. +45 35 87 89 90 Bygning 304 E-mail: [EMAIL PROTECTED] DK-2800 Lyngby
Relaying problem (new approach)
Sorry about asking my question again. This time I try really hard to explain the case. I thought my question was trivial, and the answer too. (It must be). I run a mail relay for an ISP. A customer says: "Can we use your mail relay as a secondary MX?" I say: "Okay, just give me at list of the domain names we should accept mail for". I put this list into control/rcpthosts on mail.isp.dk (name not real) and get mail.isp.dk added as a lower precedence MX in my customer's zone files. That should be enough, right? Nothing more necessary. The problem. I have, too many times, seen mail.isp.dk reject mail to my customers domains with the following error: "Sorry. Although I'm listed as a best-preference MX or A for that host," "it isn't in my control/locals file, so I don't treat it as local. (#5.4.6)" The error message above contains two statements: My customers domain names are not in control/locals. That is true. Our mail relay is listed as the best-preference MX. That is wrong. I cannot imagine that DNS can claim our mail server to be the best MX for our costomer's domain, which it is not, and never has been. DNS says (made up names): customer.dk. --- customer's zone IN MX 10 mail.customer.dk. -- customer's server IN MX 20 mail.isp.dk. --- Our server To "fix" the reject problem I always make entries for my customers domains into control/smtproutes, pointing to their best preference MX host. It works, but I can't believe that hardcoding the best MX is the way to do it. Testing is difficult because I can only send mail from our networks, so rcpthosts is never consulted. Testing from outside is possible using telnet, but I don't have a shell account on the outside. -- Med venlig hilsen / Regards Netdriftgruppen / Network Management Group UNI-C Tlf./Phone +45 35 87 89 41Mail: UNI-C Fax. +45 35 87 89 90 Bygning 304 E-mail: [EMAIL PROTECTED] DK-2800 Lyngby
Re: Relaying problem (new approach)
On Thu, Mar 18, 1999 at 01:27:09PM +0100, Harald Hanche-Olsen wrote: - torben fjerdingstad [EMAIL PROTECTED]: | The problem. | I have, too many times, seen mail.isp.dk reject mail to | my customers domains with the following error: | | "Sorry. Although I'm listed as a best-preference MX or A for that host," | "it isn't in my control/locals file, so I don't treat it as local. (#5.4.6)" | | The error message above contains two statements: | My customers domain names are not in control/locals. That is true. | Our mail relay is listed as the best-preference MX. That is wrong. Have you tried running dnsmxip (in the qmail source directory) against the customer's domain? No. I had not noticed that utility. I used nslookup -q=mx domain which appears to be equivalent. | I cannot imagine that DNS can claim our mail server to be the best | MX for our costomer's domain, which it is not, and never has been. Do you control the authoritative DNS server for the customer's domain yourself? Could it be that someone occasionally screws up the name server, actually rendering your server the best MX? Apart from that, and the possibility that you have a buggy name server around, I see no reason why you should get the behaviour you describe. No. In the cases I remember DNS was delegated to the customer's name server. I run the ISP's nameserver so I am used to check DNS. I could not find any error in DNS for the customer's domains. | DNS says (made up names): | | customer.dk. --- customer's zone | IN MX 10 mail.customer.dk. -- customer's server | IN MX 20 mail.isp.dk. --- Our server As it should be. | Testing is difficult because I can only send mail from our networks, | so rcpthosts is never consulted. Testing from outside is possible | using telnet, but I don't have a shell account on the outside. Like I indicated, there is always dnsmxip. And you can telnet directly to your server's SMTP port and try a few mail from: and rcpt to: commands. Hmmm.. you are right. Right now it seems to work as it should without a rule in smtproutes. I think I will try to remove some more of those smtproutes and wait to see what happens. Strange. I have seen my problem for at least 3 quite differens receipient domains, where DNS looked fine. There might have been a transient DNS error, but that should not give a hard error, I think. Thanks. -- Med venlig hilsen / Regards Netdriftgruppen / Network Management Group UNI-C Tlf./Phone +45 35 87 89 41Mail: UNI-C Fax. +45 35 87 89 90 Bygning 304 E-mail: [EMAIL PROTECTED] DK-2800 Lyngby
Re: Relaying problem (new approach)
On Thu, Mar 18, 1999 at 09:13:56AM -0600, Chris Garrigues wrote: From: torben fjerdingstad [EMAIL PROTECTED] Date: Thu, 18 Mar 1999 15:47:50 +0100 No. In the cases I remember DNS was delegated to the customer's name server. I run the ISP's nameserver so I am used to check DNS. I could not find any error in DNS for the customer's domains. Is it possible that these were domains in which they had just added the MX and the old zone data was still cached in various places in the DNS, so your qmail didn't have access to the latest zone yet? You might need to flush the bind cache on your DNS server before things will work properly. No. In the cases I remember, the MX had been set up for weeks before the problem popped up. I guess the primary MX host has not responded, so the mail got routed to our mail server which has a lower precedence, and therefore not normally gets mail for the customer. I think you can understand I get scared when our mail server rejects mail for our customers with a fatal error message. DNS errors may be the explanation, but DNS was fine at the times I checked it. It has been helpful to me to get confirmed that the customer's domain names belong in control/rcpthosts only, in my setup. -- Med venlig hilsen / Regards Netdriftgruppen / Network Management Group UNI-C Tlf./Phone +45 35 87 89 41Mail: UNI-C Fax. +45 35 87 89 90 Bygning 304 E-mail: [EMAIL PROTECTED] DK-2800 Lyngby
Relaying problem (kind of)
Things do not work quite as I expect. Say I am MX for domain inside.dk (this is not a real name). So, I put two lines into rcpthosts and HUP qmail-smtpd: .inside.dk inside.dk Right? Now mail to @inside.dk bounces: [EMAIL PROTECTED]: Sorry. Although I'm listed as a best-preference MX or A for that host, it isn't in my control/locals file, so I don't treat it as local. (#5.4.6) Then I put an entry into smtproutes, like: inside.dk:mailhost.inside.dk, and now it works. I don't understand why I need to do that too. -- Med venlig hilsen / Regards Netdriftgruppen / Network Management Group UNI-C Tlf./Phone +45 35 87 89 41Mail: UNI-C Fax. +45 35 87 89 90 Bygning 304 E-mail: [EMAIL PROTECTED] DK-2800 Lyngby
Re: Relaying problem (kind of)
On Wed, Mar 17, 1999 at 05:14:20PM +0300, Anand Buddhdev wrote: On Wed, Mar 17, 1999 at 02:06:27PM +0100, torben fjerdingstad wrote: Things do not work quite as I expect. Say I am MX for domain inside.dk (this is not a real name). So, I put two lines into rcpthosts and HUP qmail-smtpd: Now mail to @inside.dk bounces: [EMAIL PROTECTED]: Sorry. Although I'm listed as a best-preference MX or A for that host, it isn't in my control/locals file, so I don't treat it as local. (#5.4.6) That's the problem. You are are the best preference MX for inside.dk, and so you must arrange for local delivery of the mail on this machine. Add inside.dk to the control/locals file, and you should be OK. Remember to HUP qmail-send after changing the locals file. But, if I did that, I would expect "user" to be treated as a local user on my mail relay which he is not. I cannot make that out of the FAQ. I thought control/locals was for aliases for the local host. I am sure you are right. Thanks very much. -- Med venlig hilsen / Regards Netdriftgruppen / Network Management Group UNI-C Tlf./Phone +45 35 87 89 41Mail: UNI-C Fax. +45 35 87 89 90 Bygning 304 E-mail: [EMAIL PROTECTED] DK-2800 Lyngby
Re: rblsmtp - I need to change the bounce report.
On Sun, Mar 14, 1999 at 02:48:09PM +0100, torben fjerdingstad wrote: On Fri, Mar 12, 1999 at 11:19:30PM +0100, Harald Hanche-Olsen wrote: - torben fjerdingstad [EMAIL PROTECTED]: | At the same time I think it should be modified to be able to take | multiple -r flags. Would be useful. I'll leave that as an exercise for the reader. 8-) Not done yet. I don't code much. One more question. Do the rblsmtpd dns lookups happen concurrently in this case? (I hope so): tcpserver -x /usr/local/etc/tcp.smtp.cdb \ -v -p -t 5 -c 400 -b 40 -u 203 -g 200 0 \ smtp /usr/local/bin/smtplog \ /usr/local/bin/rblsmtpd -rrelays.orbs.org \ /usr/local/bin/rblsmtpd -rrbl.maps.vix.com \ /usr/local/bin/rblsmtpd -rdul.maps.vix.com \ /usr/local/qmail/bin/qmail-smtpd 21 \ | /usr/local/bin/accustamp \ | /usr/local/bin/cyclog -s14000 -n2 /var/adm/smtpd smtpd 3 P.S. last saturday the out-of-the-country connection was down. So was rblsmtp because there are no nameservers for maps.vix.org in my here. Every smtp connection was severely crawling, waiting for dns replies. -- Med venlig hilsen / Regards Netdriftgruppen / Network Management Group UNI-C Tlf./Phone +45 35 87 89 41Mail: UNI-C Fax. +45 35 87 89 90 Bygning 304 E-mail: [EMAIL PROTECTED] DK-2800 Lyngby
rblsmtp - I need to change the bounce report.
I registered a mail server at orbs and got the following note from Alan Brown: Would you mind editing things so that it gives the IP number of the host it's rejecting? 451 The server sending this mail is in the ORBS database as an insecure email relay. See http://www.orbs.org/ for more information. Isn't very informative for an enduser. How do I edit the message as requested? My smtp startup script says: /usr/local/bin/supervise /usr/local/qmail/supervise/tcpserver env - \ PATH="/usr/local/bin:$PATH" TZ=MET-1METDST,M3.5.0,M10.5.0 \ tcpserver -x /usr/local/etc/tcp.smtp.cdb \ -v -p -t 5 -c 400 -b 40 -u 203 -g 200 0 \ smtp /usr/local/bin/smtplog \ /usr/local/bin/rblsmtpd -rrelays.orbs.org \ /usr/local/bin/rblsmtpd -rrbl.maps.vix.com \ /usr/local/qmail/bin/qmail-smtpd 21 \ | /usr/local/bin/accustamp \ | /usr/local/bin/cyclog -s14000 -n2 /var/adm/smtpd smtpd 3 -- Med venlig hilsen / Regards Netdriftgruppen / Network Management Group UNI-C Tlf./Phone +45 35 87 89 41Mail: UNI-C Fax. +45 35 87 89 90 Bygning 304 E-mail: [EMAIL PROTECTED] DK-2800 Lyngby
Re: rblsmtp - I need to change the bounce report.
On Fri, Mar 12, 1999 at 10:56:46AM -0500, Timothy L. Mayo wrote: You don't without a lot of work. The error message is the TXT record from the ORBS database. If Alan Brown wants the IP address in the message, he should modify his scripts to place it in the TXT record in his ORBS DNS database. What kind of work? Changing rblsmtpd? At the same time I think it should be modified to be able to take multiple -r flags. Alan Brown also wrote me this note about TXT records: *-I don't have individual TXT records for ORBS as the zonefile is *-already 2.5Mb. With TXT records in there, that grows to 7Mb. :-( On Fri, 12 Mar 1999, torben fjerdingstad wrote: I registered a mail server at orbs and got the following note from Alan Brown: Would you mind editing things so that it gives the IP number of the host it's rejecting? 451 The server sending this mail is in the ORBS database as an insecure email relay. See http://www.orbs.org/ for more information. Isn't very informative for an enduser. How do I edit the message as requested? My smtp startup script says: /usr/local/bin/supervise /usr/local/qmail/supervise/tcpserver env - \ PATH="/usr/local/bin:$PATH" TZ=MET-1METDST,M3.5.0,M10.5.0 \ tcpserver -x /usr/local/etc/tcp.smtp.cdb \ -v -p -t 5 -c 400 -b 40 -u 203 -g 200 0 \ smtp /usr/local/bin/smtplog \ /usr/local/bin/rblsmtpd -rrelays.orbs.org \ /usr/local/bin/rblsmtpd -rrbl.maps.vix.com \ /usr/local/qmail/bin/qmail-smtpd 21 \ | /usr/local/bin/accustamp \ | /usr/local/bin/cyclog -s14000 -n2 /var/adm/smtpd smtpd 3 -- Med venlig hilsen / Regards Netdriftgruppen / Network Management Group UNI-C Tlf./Phone +45 35 87 89 41Mail: UNI-C Fax. +45 35 87 89 90 Bygning 304 E-mail: [EMAIL PROTECTED] DK-2800 Lyngby
Re: rblsmtpd not blocking
On Wed, Mar 10, 1999 at 11:00:04AM -0500, Timothy L. Mayo wrote: You cannot specify two separate -r parameters to 1 instance of rblsmtpd. You must run two separate rblsmtpd instances. The first one runs the second. Clumsy. But it works now, with two instances of rblsmtpd. Thanks to all. On Wed, 10 Mar 1999, torben fjerdingstad wrote: I have verified that orbs's host are not blocked with my setup. I dont see what's wrong. What exactly should I do? Also: Can I get denials logged? Here is my complete startup script (AIX-4.2.1): [ cut ] /usr/local/bin/rblsmtpd -rrelays.orbs.org -rrbl.maps.vix.com \ This should be 2 rblsmtpd calls: /usr/local/bin/rblsmtpd -r relays.orbs.org \ /usr/local/bin/rblsmtpd \ (The -r rbl.maps.vix.com is not needed.) /usr/local/qmail/bin/qmail-smtpd 21 \ | /usr/local/bin/accustamp \ | /usr/local/bin/cyclog -s14000 -n2 /var/adm/smtpd smtpd 3 - Timothy L. Mayo mailto:[EMAIL PROTECTED] Senior Systems Administrator localconnect(sm) http://www.localconnect.net/ -- Med venlig hilsen / Regards Netdriftgruppen / Network Management Group UNI-C Tlf./Phone +45 35 87 89 41Mail: UNI-C Fax. +45 35 87 89 90 Bygning 304 E-mail: [EMAIL PROTECTED] DK-2800 Lyngby
