[qmailtoaster] SOLVED - Re: [qmailtoaster] How to de-activate tls for an ip?
Hello Everyone, I was desperate and did not know what was going on. You all really helped me out a lot. I thank you all. Now I can receive emails from mail.hosting.com.sg. Yahooo!!! The problem was an option setting in the run script for smtp. Changed /usr/bin/tcpserver -v -r to /usr/bin/tcpserver -v -R. Just changed -r to -R. Really do not know why emails from mail.hosting.com.sg does not come through when the setting is -r and comes through when the setting is -R. If anyone has an idea, please share. The original script is as follows, - start --- exec /usr/bin/softlimit -m 1200 \ /usr/bin/tcpserver -v -r -h -P -l $HOSTNAME -x $TCP_CDB -c $MAXSMTPD \ -u $QMAILDUID -g $NOFILESGID 0 smtp \ $GREYLIST $RBLSMTPD $BLACKLIST $SMTPD $VCHKPW /bin/true 21 - end The changed script is as follows, - start --- exec /usr/bin/softlimit -m 1200 \ /usr/bin/tcpserver -v -R -h -P -l $HOSTNAME -x $TCP_CDB -c $MAXSMTPD \ -u $QMAILDUID -g $NOFILESGID 0 smtp \ $GREYLIST $RBLSMTPD $BLACKLIST $SMTPD $VCHKPW /bin/true 21 - end P.V.Anthony - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [qmailtoaster] SOLVED - Re: [qmailtoaster] How to de-activate tls for an ip?
I wonder how you ended up with -r -h options for tcpserver. I have -R -H, which I believe are the 'stock' toaster values. P.V.Anthony wrote: Hello Everyone, I was desperate and did not know what was going on. You all really helped me out a lot. I thank you all. Now I can receive emails from mail.hosting.com.sg. Yahooo!!! The problem was an option setting in the run script for smtp. Changed /usr/bin/tcpserver -v -r to /usr/bin/tcpserver -v -R. Just changed -r to -R. Really do not know why emails from mail.hosting.com.sg does not come through when the setting is -r and comes through when the setting is -R. If anyone has an idea, please share. The original script is as follows, - start --- exec /usr/bin/softlimit -m 1200 \ /usr/bin/tcpserver -v -r -h -P -l $HOSTNAME -x $TCP_CDB -c $MAXSMTPD \ -u $QMAILDUID -g $NOFILESGID 0 smtp \ $GREYLIST $RBLSMTPD $BLACKLIST $SMTPD $VCHKPW /bin/true 21 - end The changed script is as follows, - start --- exec /usr/bin/softlimit -m 1200 \ /usr/bin/tcpserver -v -R -h -P -l $HOSTNAME -x $TCP_CDB -c $MAXSMTPD \ -u $QMAILDUID -g $NOFILESGID 0 smtp \ $GREYLIST $RBLSMTPD $BLACKLIST $SMTPD $VCHKPW /bin/true 21 - end P.V.Anthony - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] -- -Eric 'shubes' - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [qmailtoaster] SOLVED - Re: [qmailtoaster] How to de-activate tls for an ip?
Eric Shubert wrote: I wonder how you ended up with -r -h options for tcpserver. I have -R -H, which I believe are the 'stock' toaster values. Completely my mistake. I must have changed the stock values. Sorry for the noise. By the way how does the -R and -H work in relation to incoming emails. P.V.Anthony - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [qmailtoaster] SOLVED - Re: [qmailtoaster] How to de-activate tls for an ip?
P.V.Anthony wrote: Eric Shubert wrote: I wonder how you ended up with -r -h options for tcpserver. I have -R -H, which I believe are the 'stock' toaster values. Completely my mistake. I must have changed the stock values. Sorry for the noise. By the way how does the -R and -H work in relation to incoming emails. P.V.Anthony Works fine for me. I'm not really certain of the purpose of having these options enabled (lower case). I could guess, but don't want to start any rumors. ;) -- -Eric 'shubes' - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [qmailtoaster] How to de-activate tls for an ip?
What does spamdyke's full-log-dir option show you? P.V.Anthony wrote: Jake Vickers wrote: What does the smtp log show? Not sure if I replied to this thread or not, but I'm wondering if SENDER_NOCHECK=1 isn't needed. Just set SENDER_NOCHECK=1 and still the email does not want to come through. Here is the log-dir from spamdyke. Looks like the email server just do not like the remote server. P.V.Anthony -- start - 09/16/2008 12:59:59 STARTED: VERSION = 4.0.4+TLS+CONFIGTEST+DEBUG+EXCESSIVE, PID = 26849 09/16/2008 12:59:59 LOG OUTPUT EXCESSIVE(process_config_file()@configuration.c:3594): set configuration option tls-level from file /etc/spamdyke/spamdyke.conf, line 314: none^M EXCESSIVE(do_spamdyke()@spamdyke.c:2212): found remote IP address in environment variable TCPREMOTEIP: 203.123.11.18^M 09/16/2008 12:59:59 - Remote IP = 203.123.11.18 09/16/2008 12:59:59 CURRENT ENVIRONMENT PATH=/var/qmail/bin:/usr/local/bin:/usr/bin:/bin^M PWD=/home/qmail/supervise/smtp^M SHLVL=0^M PROTO=TCP^M TCPLOCALIP=210.193.7.130^M TCPLOCALPORT=25^M TCPLOCALHOST=mail.mindmedia.com.sg^M TCPREMOTEIP=203.123.11.18^M TCPREMOTEPORT=2850^M TCPREMOTEHOST=mail.hosting.com.sg^M SENDER_NOCHECK=1^M CHKUSER_RCPTLIMIT=100^M CHKUSER_WRONGRCPTLIMIT=5^M JGREYLIST=^M RBLSMTPD=^M QMAILQUEUE=/var/qmail/bin/simscan^M NOP0FCHECK=1^M 09/16/2008 12:59:59 CURRENT CONFIG config-file=/etc/spamdyke/spamdyke.conf^M filter-level=allow-all^M full-log-dir=/tmp/spamdyke^M log-level=excessive^M tls-level=none^M 09/16/2008 12:59:59 LOG OUTPUT EXCESSIVE(load_resolver_file()@search_fs.c:653): found nameserver at /etc/resolv.conf(1): 127.0.0.1^M EXCESSIVE(load_resolver_file()@search_fs.c:653): found nameserver at /etc/resolv.conf(2): 210.193.2.33^M EXCESSIVE(load_resolver_file()@search_fs.c:653): found nameserver at /etc/resolv.conf(3): 210.193.2.35^M 09/16/2008 12:59:59 CURRENT CONFIG config-file=/etc/spamdyke/spamdyke.conf^M dns-server-ip=210.193.2.33^M dns-server-ip=210.193.2.35^M dns-server-ip-primary=127.0.0.1^M filter-level=allow-all^M full-log-dir=/tmp/spamdyke^M log-level=excessive^M tls-level=none^M 09/16/2008 12:59:59 LOG OUTPUT EXCESSIVE(nihdns_parse_servers()@dns.c:333): found nameserver: 127.0.0.1:53^M EXCESSIVE(nihdns_parse_servers()@dns.c:379): found nameserver: 210.193.2.33:53^M EXCESSIVE(nihdns_parse_servers()@dns.c:379): found nameserver: 210.193.2.35:53^M EXCESSIVE(nihdns_query()@dns.c:752): sending 44 byte query (ID 109/129) for 18.11.123.203.in-addr.arpa(PTR) to DNS server 127.0.0.1:53 (attempt 1)^M EXCESSIVE(nihdns_query()@dns.c:752): sending 44 byte query (ID 110/129) for 18.11.123.203.in-addr.arpa(CNAME) to DNS server 127.0.0.1:53 (attempt 1)^M EXCESSIVE(nihdns_query()@dns.c:815): received DNS packet: 77 bytes, ID 109/129^M EXCESSIVE(nihdns_query()@dns.c:852): received DNS response: PTR^M EXCESSIVE(nihdns_ptr_lookup()@dns.c:1171): found PTR record for 18.11.123.203.in-addr.arpa (19 bytes): mail.hosting.com.sg^M 09/16/2008 12:59:59 - Remote rDNS = mail.hosting.com.sg 09/16/2008 12:59:59 LOG OUTPUT FILTER_ALLOW_ALL^M EXCESSIVE(do_spamdyke()@spamdyke.c:2292): environment variable found for local port: TCPLOCALPORT=25^M EXCESSIVE(do_spamdyke()@spamdyke.c:2373): preparing to start child process: /var/qmail/bin/qmail-smtpd^M 09/16/2008 12:59:59 FROM CHILD TO REMOTE: 79 bytes 220 mail.mindmedia.com.sg Welcome to Qmail Toaster Ver. 1.2 smtp Server ESMTP^M 09/16/2008 12:59:59 LOG OUTPUT EXCESSIVE(middleman()@spamdyke.c:1758): network input file descriptor 0 indicates EOF^M EXCESSIVE(middleman()@spamdyke.c:1914): child output file descriptor 7 closed^M EXCESSIVE(middleman()@spamdyke.c:1340): child input file descriptor 8 indicates EOF^M EXCESSIVE(middleman()@spamdyke.c:1341): child input file descriptor 8 closed^M EXCESSIVE(middleman()@spamdyke.c:1940): child process exited normally with return value 1^M 09/16/2008 12:59:59 CLOSED -- end --- -- -Eric 'shubes' - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [qmailtoaster] How to de-activate tls for an ip?
Dear Eric Shubert, The full-log-dir option shows me that once my server says mail.mindmedia.com.sg, the remote server does not respond. The full-log-dir is as below, from the --- start - to --- end Really not sure what I am doing wrong. P.V.Anthony Eric Shubert wrote: What does spamdyke's full-log-dir option show you? P.V.Anthony wrote: Jake Vickers wrote: What does the smtp log show? Not sure if I replied to this thread or not, but I'm wondering if SENDER_NOCHECK=1 isn't needed. Just set SENDER_NOCHECK=1 and still the email does not want to come through. Here is the log-dir from spamdyke. Looks like the email server just do not like the remote server. P.V.Anthony -- start - 09/16/2008 12:59:59 STARTED: VERSION = 4.0.4+TLS+CONFIGTEST+DEBUG+EXCESSIVE, PID = 26849 09/16/2008 12:59:59 LOG OUTPUT EXCESSIVE(process_config_file()@configuration.c:3594): set configuration option tls-level from file /etc/spamdyke/spamdyke.conf, line 314: none^M EXCESSIVE(do_spamdyke()@spamdyke.c:2212): found remote IP address in environment variable TCPREMOTEIP: 203.123.11.18^M 09/16/2008 12:59:59 - Remote IP = 203.123.11.18 09/16/2008 12:59:59 CURRENT ENVIRONMENT PATH=/var/qmail/bin:/usr/local/bin:/usr/bin:/bin^M PWD=/home/qmail/supervise/smtp^M SHLVL=0^M PROTO=TCP^M TCPLOCALIP=210.193.7.130^M TCPLOCALPORT=25^M TCPLOCALHOST=mail.mindmedia.com.sg^M TCPREMOTEIP=203.123.11.18^M TCPREMOTEPORT=2850^M TCPREMOTEHOST=mail.hosting.com.sg^M SENDER_NOCHECK=1^M CHKUSER_RCPTLIMIT=100^M CHKUSER_WRONGRCPTLIMIT=5^M JGREYLIST=^M RBLSMTPD=^M QMAILQUEUE=/var/qmail/bin/simscan^M NOP0FCHECK=1^M 09/16/2008 12:59:59 CURRENT CONFIG config-file=/etc/spamdyke/spamdyke.conf^M filter-level=allow-all^M full-log-dir=/tmp/spamdyke^M log-level=excessive^M tls-level=none^M 09/16/2008 12:59:59 LOG OUTPUT EXCESSIVE(load_resolver_file()@search_fs.c:653): found nameserver at /etc/resolv.conf(1): 127.0.0.1^M EXCESSIVE(load_resolver_file()@search_fs.c:653): found nameserver at /etc/resolv.conf(2): 210.193.2.33^M EXCESSIVE(load_resolver_file()@search_fs.c:653): found nameserver at /etc/resolv.conf(3): 210.193.2.35^M 09/16/2008 12:59:59 CURRENT CONFIG config-file=/etc/spamdyke/spamdyke.conf^M dns-server-ip=210.193.2.33^M dns-server-ip=210.193.2.35^M dns-server-ip-primary=127.0.0.1^M filter-level=allow-all^M full-log-dir=/tmp/spamdyke^M log-level=excessive^M tls-level=none^M 09/16/2008 12:59:59 LOG OUTPUT EXCESSIVE(nihdns_parse_servers()@dns.c:333): found nameserver: 127.0.0.1:53^M EXCESSIVE(nihdns_parse_servers()@dns.c:379): found nameserver: 210.193.2.33:53^M EXCESSIVE(nihdns_parse_servers()@dns.c:379): found nameserver: 210.193.2.35:53^M EXCESSIVE(nihdns_query()@dns.c:752): sending 44 byte query (ID 109/129) for 18.11.123.203.in-addr.arpa(PTR) to DNS server 127.0.0.1:53 (attempt 1)^M EXCESSIVE(nihdns_query()@dns.c:752): sending 44 byte query (ID 110/129) for 18.11.123.203.in-addr.arpa(CNAME) to DNS server 127.0.0.1:53 (attempt 1)^M EXCESSIVE(nihdns_query()@dns.c:815): received DNS packet: 77 bytes, ID 109/129^M EXCESSIVE(nihdns_query()@dns.c:852): received DNS response: PTR^M EXCESSIVE(nihdns_ptr_lookup()@dns.c:1171): found PTR record for 18.11.123.203.in-addr.arpa (19 bytes): mail.hosting.com.sg^M 09/16/2008 12:59:59 - Remote rDNS = mail.hosting.com.sg 09/16/2008 12:59:59 LOG OUTPUT FILTER_ALLOW_ALL^M EXCESSIVE(do_spamdyke()@spamdyke.c:2292): environment variable found for local port: TCPLOCALPORT=25^M EXCESSIVE(do_spamdyke()@spamdyke.c:2373): preparing to start child process: /var/qmail/bin/qmail-smtpd^M 09/16/2008 12:59:59 FROM CHILD TO REMOTE: 79 bytes 220 mail.mindmedia.com.sg Welcome to Qmail Toaster Ver. 1.2 smtp Server ESMTP^M 09/16/2008 12:59:59 LOG OUTPUT EXCESSIVE(middleman()@spamdyke.c:1758): network input file descriptor 0 indicates EOF^M EXCESSIVE(middleman()@spamdyke.c:1914): child output file descriptor 7 closed^M EXCESSIVE(middleman()@spamdyke.c:1340): child input file descriptor 8 indicates EOF^M EXCESSIVE(middleman()@spamdyke.c:1341): child input file descriptor 8 closed^M EXCESSIVE(middleman()@spamdyke.c:1940): child process exited normally with return value 1^M 09/16/2008 12:59:59 CLOSED -- end --- - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [qmailtoaster] How to de-activate tls for an ip?
Sorry, PVA. I thought that was a different log. Sam ? P.V.Anthony wrote: Dear Eric Shubert, The full-log-dir option shows me that once my server says mail.mindmedia.com.sg, the remote server does not respond. The full-log-dir is as below, from the --- start - to --- end Really not sure what I am doing wrong. P.V.Anthony Eric Shubert wrote: What does spamdyke's full-log-dir option show you? P.V.Anthony wrote: Jake Vickers wrote: What does the smtp log show? Not sure if I replied to this thread or not, but I'm wondering if SENDER_NOCHECK=1 isn't needed. Just set SENDER_NOCHECK=1 and still the email does not want to come through. Here is the log-dir from spamdyke. Looks like the email server just do not like the remote server. P.V.Anthony -- start - 09/16/2008 12:59:59 STARTED: VERSION = 4.0.4+TLS+CONFIGTEST+DEBUG+EXCESSIVE, PID = 26849 09/16/2008 12:59:59 LOG OUTPUT EXCESSIVE(process_config_file()@configuration.c:3594): set configuration option tls-level from file /etc/spamdyke/spamdyke.conf, line 314: none^M EXCESSIVE(do_spamdyke()@spamdyke.c:2212): found remote IP address in environment variable TCPREMOTEIP: 203.123.11.18^M 09/16/2008 12:59:59 - Remote IP = 203.123.11.18 09/16/2008 12:59:59 CURRENT ENVIRONMENT PATH=/var/qmail/bin:/usr/local/bin:/usr/bin:/bin^M PWD=/home/qmail/supervise/smtp^M SHLVL=0^M PROTO=TCP^M TCPLOCALIP=210.193.7.130^M TCPLOCALPORT=25^M TCPLOCALHOST=mail.mindmedia.com.sg^M TCPREMOTEIP=203.123.11.18^M TCPREMOTEPORT=2850^M TCPREMOTEHOST=mail.hosting.com.sg^M SENDER_NOCHECK=1^M CHKUSER_RCPTLIMIT=100^M CHKUSER_WRONGRCPTLIMIT=5^M JGREYLIST=^M RBLSMTPD=^M QMAILQUEUE=/var/qmail/bin/simscan^M NOP0FCHECK=1^M 09/16/2008 12:59:59 CURRENT CONFIG config-file=/etc/spamdyke/spamdyke.conf^M filter-level=allow-all^M full-log-dir=/tmp/spamdyke^M log-level=excessive^M tls-level=none^M 09/16/2008 12:59:59 LOG OUTPUT EXCESSIVE(load_resolver_file()@search_fs.c:653): found nameserver at /etc/resolv.conf(1): 127.0.0.1^M EXCESSIVE(load_resolver_file()@search_fs.c:653): found nameserver at /etc/resolv.conf(2): 210.193.2.33^M EXCESSIVE(load_resolver_file()@search_fs.c:653): found nameserver at /etc/resolv.conf(3): 210.193.2.35^M 09/16/2008 12:59:59 CURRENT CONFIG config-file=/etc/spamdyke/spamdyke.conf^M dns-server-ip=210.193.2.33^M dns-server-ip=210.193.2.35^M dns-server-ip-primary=127.0.0.1^M filter-level=allow-all^M full-log-dir=/tmp/spamdyke^M log-level=excessive^M tls-level=none^M 09/16/2008 12:59:59 LOG OUTPUT EXCESSIVE(nihdns_parse_servers()@dns.c:333): found nameserver: 127.0.0.1:53^M EXCESSIVE(nihdns_parse_servers()@dns.c:379): found nameserver: 210.193.2.33:53^M EXCESSIVE(nihdns_parse_servers()@dns.c:379): found nameserver: 210.193.2.35:53^M EXCESSIVE(nihdns_query()@dns.c:752): sending 44 byte query (ID 109/129) for 18.11.123.203.in-addr.arpa(PTR) to DNS server 127.0.0.1:53 (attempt 1)^M EXCESSIVE(nihdns_query()@dns.c:752): sending 44 byte query (ID 110/129) for 18.11.123.203.in-addr.arpa(CNAME) to DNS server 127.0.0.1:53 (attempt 1)^M EXCESSIVE(nihdns_query()@dns.c:815): received DNS packet: 77 bytes, ID 109/129^M EXCESSIVE(nihdns_query()@dns.c:852): received DNS response: PTR^M EXCESSIVE(nihdns_ptr_lookup()@dns.c:1171): found PTR record for 18.11.123.203.in-addr.arpa (19 bytes): mail.hosting.com.sg^M 09/16/2008 12:59:59 - Remote rDNS = mail.hosting.com.sg 09/16/2008 12:59:59 LOG OUTPUT FILTER_ALLOW_ALL^M EXCESSIVE(do_spamdyke()@spamdyke.c:2292): environment variable found for local port: TCPLOCALPORT=25^M EXCESSIVE(do_spamdyke()@spamdyke.c:2373): preparing to start child process: /var/qmail/bin/qmail-smtpd^M 09/16/2008 12:59:59 FROM CHILD TO REMOTE: 79 bytes 220 mail.mindmedia.com.sg Welcome to Qmail Toaster Ver. 1.2 smtp Server ESMTP^M 09/16/2008 12:59:59 LOG OUTPUT EXCESSIVE(middleman()@spamdyke.c:1758): network input file descriptor 0 indicates EOF^M EXCESSIVE(middleman()@spamdyke.c:1914): child output file descriptor 7 closed^M EXCESSIVE(middleman()@spamdyke.c:1340): child input file descriptor 8 indicates EOF^M EXCESSIVE(middleman()@spamdyke.c:1341): child input file descriptor 8 closed^M EXCESSIVE(middleman()@spamdyke.c:1940): child process exited normally with return value 1^M 09/16/2008 12:59:59 CLOSED -- end --- -- -Eric 'shubes' - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [qmailtoaster] How to de-activate tls for an ip?
Yes? Oh, right... It looks like the remote server is simply disconnecting after it sees the greeting banner. However, an earlier post mentioned seeing the bare LF error from qmail, which means that the connections must have (previously) been reaching the point of sending message data. It's possible that the remote server is running some mail server software that just doesn't like spamdyke/qmail but that seems pretty unlikely. In this case, the connection /was/ failing after receiving at least some message data. After installing spamdyke, it's failing before it can even start sending data. Is that because spamdyke is consuming more memory or because it's generating more network/disk traffic to check the connection's reverse DNS and log the traffic? My first thought is to check the amount of memory being provided by the softlimit program. Try pushing that number to something very high to see if the symptoms change (start with something like 2 and be sure to restart qmail after making the change). After that, I'd try to think outside the box -- literally. In the past, I've seen strange problems like this caused by bad network cabling, flaky routers/switches and dodgy hardware firewalls. It's possible other connections are failing but going unnoticed because they're from non-critical sources. Also consider that you may have some bad RAM or a bad ethernet adapter in the server. Just my $0.02. -- Sam Clippinger Eric Shubert wrote: Sorry, PVA. I thought that was a different log. Sam ? P.V.Anthony wrote: Dear Eric Shubert, The full-log-dir option shows me that once my server says mail.mindmedia.com.sg, the remote server does not respond. The full-log-dir is as below, from the --- start - to --- end Really not sure what I am doing wrong. P.V.Anthony Eric Shubert wrote: What does spamdyke's full-log-dir option show you? P.V.Anthony wrote: Jake Vickers wrote: What does the smtp log show? Not sure if I replied to this thread or not, but I'm wondering if SENDER_NOCHECK=1 isn't needed. Just set SENDER_NOCHECK=1 and still the email does not want to come through. Here is the log-dir from spamdyke. Looks like the email server just do not like the remote server. P.V.Anthony -- start - 09/16/2008 12:59:59 STARTED: VERSION = 4.0.4+TLS+CONFIGTEST+DEBUG+EXCESSIVE, PID = 26849 09/16/2008 12:59:59 LOG OUTPUT EXCESSIVE(process_config_file()@configuration.c:3594): set configuration option tls-level from file /etc/spamdyke/spamdyke.conf, line 314: none^M EXCESSIVE(do_spamdyke()@spamdyke.c:2212): found remote IP address in environment variable TCPREMOTEIP: 203.123.11.18^M 09/16/2008 12:59:59 - Remote IP = 203.123.11.18 09/16/2008 12:59:59 CURRENT ENVIRONMENT PATH=/var/qmail/bin:/usr/local/bin:/usr/bin:/bin^M PWD=/home/qmail/supervise/smtp^M SHLVL=0^M PROTO=TCP^M TCPLOCALIP=210.193.7.130^M TCPLOCALPORT=25^M TCPLOCALHOST=mail.mindmedia.com.sg^M TCPREMOTEIP=203.123.11.18^M TCPREMOTEPORT=2850^M TCPREMOTEHOST=mail.hosting.com.sg^M SENDER_NOCHECK=1^M CHKUSER_RCPTLIMIT=100^M CHKUSER_WRONGRCPTLIMIT=5^M JGREYLIST=^M RBLSMTPD=^M QMAILQUEUE=/var/qmail/bin/simscan^M NOP0FCHECK=1^M 09/16/2008 12:59:59 CURRENT CONFIG config-file=/etc/spamdyke/spamdyke.conf^M filter-level=allow-all^M full-log-dir=/tmp/spamdyke^M log-level=excessive^M tls-level=none^M 09/16/2008 12:59:59 LOG OUTPUT EXCESSIVE(load_resolver_file()@search_fs.c:653): found nameserver at /etc/resolv.conf(1): 127.0.0.1^M EXCESSIVE(load_resolver_file()@search_fs.c:653): found nameserver at /etc/resolv.conf(2): 210.193.2.33^M EXCESSIVE(load_resolver_file()@search_fs.c:653): found nameserver at /etc/resolv.conf(3): 210.193.2.35^M 09/16/2008 12:59:59 CURRENT CONFIG config-file=/etc/spamdyke/spamdyke.conf^M dns-server-ip=210.193.2.33^M dns-server-ip=210.193.2.35^M dns-server-ip-primary=127.0.0.1^M filter-level=allow-all^M full-log-dir=/tmp/spamdyke^M log-level=excessive^M tls-level=none^M 09/16/2008 12:59:59 LOG OUTPUT EXCESSIVE(nihdns_parse_servers()@dns.c:333): found nameserver: 127.0.0.1:53^M EXCESSIVE(nihdns_parse_servers()@dns.c:379): found nameserver: 210.193.2.33:53^M EXCESSIVE(nihdns_parse_servers()@dns.c:379): found nameserver: 210.193.2.35:53^M EXCESSIVE(nihdns_query()@dns.c:752): sending 44 byte query (ID 109/129) for 18.11.123.203.in-addr.arpa(PTR) to DNS server 127.0.0.1:53 (attempt 1)^M EXCESSIVE(nihdns_query()@dns.c:752): sending 44 byte query (ID 110/129) for 18.11.123.203.in-addr.arpa(CNAME) to DNS server 127.0.0.1:53 (attempt 1)^M EXCESSIVE(nihdns_query()@dns.c:815): received DNS packet: 77 bytes, ID 109/129^M EXCESSIVE(nihdns_query()@dns.c:852): received DNS response: PTR^M EXCESSIVE(nihdns_ptr_lookup()@dns.c:1171): found PTR record for 18.11.123.203.in-addr.arpa (19 bytes): mail.hosting.com.sg^M 09/16/2008 12:59:59 - Remote rDNS = mail.hosting.com.sg 09/16/2008 12:59:59 LOG OUTPUT FILTER_ALLOW_ALL^M
Re: [qmailtoaster] How to de-activate tls for an ip?
Sam Clippinger wrote: It looks like the remote server is simply disconnecting after it sees the greeting banner. However, an earlier post mentioned seeing the bare LF error from qmail, which means that the connections must have (previously) been reaching the point of sending message data. It's possible that the remote server is running some mail server software that just doesn't like spamdyke/qmail but that seems pretty unlikely. That was my mistake. I just jumped to bare LF conclusion. Sorry. Now it cannot be bare LF because spamdyke will clear that sliently. Yes, no more communications after the greeting. In this case, the connection /was/ failing after receiving at least some message data. After installing spamdyke, it's failing before it can even start sending data. Is that because spamdyke is consuming more memory or because it's generating more network/disk traffic to check the connection's reverse DNS and log the traffic? My first thought is to check the amount of memory being provided by the softlimit program. Try pushing that number to something very high to see if the symptoms change (start with something like 2 and be sure to restart qmail after making the change). I will try increasing the memory. The strange thing is all other emails are coming through with the current memory setting. Anyway I will just increase the memory. After that, I'd try to think outside the box -- literally. In the past, I've seen strange problems like this caused by bad network cabling, flaky routers/switches and dodgy hardware firewalls. It's possible other connections are failing but going unnoticed because they're from non-critical sources. Also consider that you may have some bad RAM or a bad ethernet adapter in the server. I really do not think that is the cause because it only happens with emails from mail.hosting.com.sg. Having said that I will still check it out. You never know. P.V.Anthony - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [qmailtoaster] How to de-activate tls for an ip?
Johannes Weberhofer, Weberhofer GmbH wrote: I had a similar problem once, when the sender's DNS server was badly configured and didn't answer SPF records queries; qmail got timeouts and the messages couldn't be sent. You could test that using dig txt DOMAINNAME. Did the dig and the domain does not have any txt entries. The domain is mail.hosting.com.sg. Installed spamdyke. I must say spamdyke is easy to install and a wonderful software. Thanks to everyone for suggesting it. The problem is still not solved. The server, hosting.com.sg, can send to others but not to us. I have bypassed the following, rblsmtp, clamav, no greetdelay, no greylist, no reverse dns, spamdyke is set with nothing and no tls. How I turned clamav of is by the following rule in tcprules. 203.123.11.18:allow,CHKUSER_RCPTLIMIT=100,CHKUSER_WRONGRCPTLIMIT=5,RBLSMTPD=,QMAILQUEUE=/var/qmail/bin/qmail-queue,NOP0FCHECK=1 Here is the log from spamdyke with log excess turned on. @400048cef8e503bf8e7c EXCESSIVE(process_config_file()@configuration.c:3594): set configuration option log-target from file /etc/spamdyke/spamdyke.conf, line 64: stderr @400048cef8e503c504ec spamdyke[31432]: EXCESSIVE(process_config_file()@configuration.c:3594): set configuration option tls-level from file /etc/spamdyke/spamdyke.conf, line 314: none @400048cef8e503c9eebc spamdyke[31432]: EXCESSIVE(do_spamdyke()@spamdyke.c:2212): found remote IP address in environment variable TCPREMOTEIP: 203.123.11.18 @400048cef8e503cb32f4 spamdyke[31432]: EXCESSIVE(load_resolver_file()@search_fs.c:653): found nameserver at /etc/resolv.conf(1): 127.0.0.1 @400048cef8e503cba054 spamdyke[31432]: EXCESSIVE(load_resolver_file()@search_fs.c:653): found nameserver at /etc/resolv.conf(2): 210.193.2.33 @400048cef8e503cbee74 spamdyke[31432]: EXCESSIVE(load_resolver_file()@search_fs.c:653): found nameserver at /etc/resolv.conf(3): 210.193.2.35 @400048cef8e503cc8ab4 spamdyke[31432]: EXCESSIVE(nihdns_parse_servers()@dns.c:333): found nameserver: 127.0.0.1:53 @400048cef8e503ccf044 spamdyke[31432]: EXCESSIVE(nihdns_parse_servers()@dns.c:379): found nameserver: 210.193.2.33:53 @400048cef8e503cd4634 spamdyke[31432]: EXCESSIVE(nihdns_parse_servers()@dns.c:379): found nameserver: 210.193.2.35:53 @400048cef8e503d1ddfc spamdyke[31432]: EXCESSIVE(nihdns_query()@dns.c:752): sending 44 byte query (ID 115/127) for 18.11.123.203.in-addr.arpa(PTR) to DNS server 127.0.0.1:53 (attempt 1) @400048cef8e503d2dbe4 spamdyke[31432]: EXCESSIVE(nihdns_query()@dns.c:752): sending 44 byte query (ID 116/127) for 18.11.123.203.in-addr.arpa(CNAME) to DNS server 127.0.0.1:53 (attempt 1) @400048cef8e503d5cdcc spamdyke[31432]: EXCESSIVE(nihdns_query()@dns.c:815): received DNS packet: 77 bytes, ID 115/127 @400048cef8e503d6894c spamdyke[31432]: EXCESSIVE(nihdns_query()@dns.c:852): received DNS response: PTR @400048cef8e503d6d76c spamdyke[31432]: EXCESSIVE(nihdns_ptr_lookup()@dns.c:1171): found PTR record for 18.11.123.203.in-addr.arpa (19 bytes): mail.hosting.com.sg @400048cef8e503d75854 spamdyke[31432]: EXCESSIVE(do_spamdyke()@spamdyke.c:2292): environment variable found for local port: TCPLOCALPORT=25 @400048cef8e503d8081c spamdyke[31432]: EXCESSIVE(do_spamdyke()@spamdyke.c:2373): preparing to start child process: /var/qmail/bin/qmail-smtpd @400048cef8e503f59e54 spamdyke[31432]: EXCESSIVE(middleman()@spamdyke.c:1758): network input file descriptor 0 indicates EOF @400048cef8e503f5c564 spamdyke[31432]: EXCESSIVE(middleman()@spamdyke.c:1914): child output file descriptor 5 closed @400048cef8e503f7d4bc spamdyke[31432]: EXCESSIVE(middleman()@spamdyke.c:1340): child input file descriptor 6 indicates EOF @400048cef8e503f855a4 spamdyke[31432]: EXCESSIVE(middleman()@spamdyke.c:1341): child input file descriptor 6 closed @400048cef8e503f8bb34 spamdyke[31432]: EXCESSIVE(middleman()@spamdyke.c:1940): child process exited normally with return value 1 @400048cef8e503fce984 tcpserver: end 31432 status 0 @400048cef8e503fd2fd4 tcpserver: status: 13/100 What could be the problem? P.V.Anthony - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [qmailtoaster] How to de-activate tls for an ip?
P.V.Anthony wrote: Johannes Weberhofer, Weberhofer GmbH wrote: I had a similar problem once, when the sender's DNS server was badly configured and didn't answer SPF records queries; qmail got timeouts and the messages couldn't be sent. You could test that using dig txt DOMAINNAME. Did the dig and the domain does not have any txt entries. The domain is mail.hosting.com.sg. Installed spamdyke. I must say spamdyke is easy to install and a wonderful software. Thanks to everyone for suggesting it. The problem is still not solved. The server, hosting.com.sg, can send to others but not to us. I have bypassed the following, rblsmtp, clamav, no greetdelay, no greylist, no reverse dns, spamdyke is set with nothing and no tls. How I turned clamav of is by the following rule in tcprules. 203.123.11.18:allow,CHKUSER_RCPTLIMIT=100,CHKUSER_WRONGRCPTLIMIT=5,RBLSMTPD=,QMAILQUEUE=/var/qmail/bin/qmail-queue,NOP0FCHECK=1 What does the smtp log show? Not sure if I replied to this thread or not, but I'm wondering if SENDER_NOCHECK=1 isn't needed.
Re: [qmailtoaster] How to de-activate tls for an ip?
I had a similar problem once, when the sender's DNS server was badly configured and didn't answer SPF records queries; qmail got timeouts and the messages couldn't be sent. You could test that using dig txt DOMAINNAME. Johannes P.V.Anthony schrieb: Hi, Currently we are having a problem receiving emails for a company's email server. When we send emails to them, they get them. When they send to us, we do not get them. We have bypassed rbl and greylist. Tried increasing the softlimit to 32,000,00 and that did not work. In the smtp logs, we get a status 256. I have an email account with my isp, if they send to that, I get the email. Wondering what is wrong with my server. Could it be TLS? How do I bypass TLS just for one incoming server? Using simscan with clamav. Can I bypass simscan and clamav by removing the QMAILQUEUE=/var/qmail/bin/simscan. Tried using recordio for the qmail-smtpd logs but nothing there too. Is there anything else I can bypass or do? Need to narrow this down. P.V.Anthony - QmailToaster hosted by: VR Hostedhttp://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] -- |- | weberhofer GmbH | Johannes Weberhofer | information technologies | Austria, 1080 Wien, Blindengasse 52/3 | | Firmenbuch: 225566s, Handelsgericht Wien | UID: ATU55277701 | | phone : +43 (0)1 5454421 0| email: [EMAIL PROTECTED] | fax : +43 (0)1 5454421 19 | web : http://weberhofer.at | mobile: +43 (0)699 11998315 |--- - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
[qmailtoaster] How to de-activate tls for an ip?
Hi, Currently we are having a problem receiving emails for a company's email server. When we send emails to them, they get them. When they send to us, we do not get them. We have bypassed rbl and greylist. Tried increasing the softlimit to 32,000,00 and that did not work. In the smtp logs, we get a status 256. I have an email account with my isp, if they send to that, I get the email. Wondering what is wrong with my server. Could it be TLS? How do I bypass TLS just for one incoming server? Using simscan with clamav. Can I bypass simscan and clamav by removing the QMAILQUEUE=/var/qmail/bin/simscan. Tried using recordio for the qmail-smtpd logs but nothing there too. Is there anything else I can bypass or do? Need to narrow this down. P.V.Anthony - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [qmailtoaster] How to de-activate tls for an ip?
What about a packet capture to see what is going on? You can follow the smtp session and see why is getting status 256. Natalio. On Thu, Sep 11, 2008 at 1:11 PM, P.V.Anthony [EMAIL PROTECTED]wrote: Hi, Currently we are having a problem receiving emails for a company's email server. When we send emails to them, they get them. When they send to us, we do not get them. We have bypassed rbl and greylist. Tried increasing the softlimit to 32,000,00 and that did not work. In the smtp logs, we get a status 256. I have an email account with my isp, if they send to that, I get the email. Wondering what is wrong with my server. Could it be TLS? How do I bypass TLS just for one incoming server? Using simscan with clamav. Can I bypass simscan and clamav by removing the QMAILQUEUE=/var/qmail/bin/simscan. Tried using recordio for the qmail-smtpd logs but nothing there too. Is there anything else I can bypass or do? Need to narrow this down. P.V.Anthony - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [qmailtoaster] How to de-activate tls for an ip?
I'm guessing you have spamdyke installed, given that you mentioned greylist. Use spamdyke's full-log-dir option to capture the whole smtp session (much easier/nicer than recordio). That will likely shed some light on the problem. Natalio Gatti wrote: What about a packet capture to see what is going on? You can follow the smtp session and see why is getting status 256. Natalio. On Thu, Sep 11, 2008 at 1:11 PM, P.V.Anthony [EMAIL PROTECTED] mailto:[EMAIL PROTECTED] wrote: Hi, Currently we are having a problem receiving emails for a company's email server. When we send emails to them, they get them. When they send to us, we do not get them. We have bypassed rbl and greylist. Tried increasing the softlimit to 32,000,00 and that did not work. In the smtp logs, we get a status 256. I have an email account with my isp, if they send to that, I get the email. Wondering what is wrong with my server. Could it be TLS? How do I bypass TLS just for one incoming server? Using simscan with clamav. Can I bypass simscan and clamav by removing the QMAILQUEUE=/var/qmail/bin/simscan. Tried using recordio for the qmail-smtpd logs but nothing there too. Is there anything else I can bypass or do? Need to narrow this down. P.V.Anthony -- -Eric 'shubes' - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [qmailtoaster] How to de-activate tls for an ip?
Natalio Gatti wrote: What about a packet capture to see what is going on? You can follow the smtp session and see why is getting status 256. Please share the name of the application that can do that. P.V.Anthony - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [qmailtoaster] How to de-activate tls for an ip?
Eric Shubert wrote: I'm guessing you have spamdyke installed, given that you mentioned greylist. Use spamdyke's full-log-dir option to capture the whole smtp session (much easier/nicer than recordio). That will likely shed some light on the problem. Thank you for replying. Not using spamdyke. Is there a way to disable TLS for an incoming ip address? P.V.Anthony - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [qmailtoaster] How to de-activate tls for an ip?
P.V.Anthony wrote: Eric Shubert wrote: I'm guessing you have spamdyke installed, given that you mentioned greylist. Use spamdyke's full-log-dir option to capture the whole smtp session (much easier/nicer than recordio). That will likely shed some light on the problem. Thank you for replying. Not using spamdyke. You should be. ;) Highly recommended. Is there a way to disable TLS for an incoming ip address? I can't think of one off hand. TTBOMK, if qmail sees TLS capability it tries to use it. What did recordio show you? P.V.Anthony -- -Eric 'shubes' - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [qmailtoaster] How to de-activate tls for an ip?
P.V.Anthony wrote: Eric Shubert wrote: I'm guessing you have spamdyke installed, given that you mentioned greylist. Use spamdyke's full-log-dir option to capture the whole smtp session (much easier/nicer than recordio). That will likely shed some light on the problem. Thank you for replying. Not using spamdyke. Is there a way to disable TLS for an incoming ip address? Have you checked to make sure that the sending server is not sending an illegal character that is being blocked by chkuser? Otherwise, no, you cannot disable TLS per IP. It's either on for all, or off for all (I believe if you remove the pem files it will stop advertising the capability - I've never actually tested it)
Re: [qmailtoaster] How to de-activate tls for an ip?
Eric Shubert wrote: Not using spamdyke. You should be. ;) Highly recommended. Will look into it later. Is there a way to disable TLS for an incoming ip address? I can't think of one off hand. TTBOMK, if qmail sees TLS capability it tries to use it. What did recordio show you? That is what got me too. Recordio did not show anything. It just said status 256 How to just disable TLS completely? Is it by renaming the servercert.pem? P.V.Anthony - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [qmailtoaster] How to de-activate tls for an ip?
Hello Everyone, I think I found the problem. I turned off TLS and used recordio. This time I could see more stuff. It seems the problem was this thing about Bare LFs in SMTP. Here is the link, http://cr.yp.to/docs/smtplf.html Will have to check the wiki how to solve this. P.V.Anthony - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [qmailtoaster] How to de-activate tls for an ip?
FYI, spamdyke will fix the bare LFs in SMTP problem. Even if no filters are enabled, it quietly inserts carriage returns whenever it sees bare line feeds. Also, if spamdyke handles the TLS encryption (just give it access to your server certificate so it can decrypt the traffic), it can log all SMTP traffic, even the transmissions that are encrypted with TLS. That might simplify your troubleshooting efforts in the future. -- Sam Clippinger P.V.Anthony wrote: Hello Everyone, I think I found the problem. I turned off TLS and used recordio. This time I could see more stuff. It seems the problem was this thing about Bare LFs in SMTP. Here is the link, http://cr.yp.to/docs/smtplf.html Will have to check the wiki how to solve this. P.V.Anthony - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [qmailtoaster] How to de-activate tls for an ip?
Sam Clippinger wrote: FYI, spamdyke will fix the bare LFs in SMTP problem. Even if no filters are enabled, it quietly inserts carriage returns whenever it sees bare line feeds. Also, if spamdyke handles the TLS encryption (just give it access to your server certificate so it can decrypt the traffic), it can log all SMTP traffic, even the transmissions that are encrypted with TLS. That might simplify your troubleshooting efforts in the future. Thank you. I will install spamdyke right away. P.V.Anthony - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]