[xmail] Re: Relaying
Describe what you are seeing that makes you think it is relaying. Bill -- From: Jeffrey L. Conley[SMTP:[EMAIL PROTECTED] Sent: Wednesday, July 14, 2004 1:28 PM To:[EMAIL PROTECTED] Subject: [xmail] Relaying I am running 1.18 on both my primary and my secondary. I have the same exact smtprelay.tab file on both servers. My primary does not relay but no matter what I do my secondary relays everything. - To unsubscribe from this list: send the line unsubscribe xmail in the body of a message to [EMAIL PROTECTED] For general help: send the line help in the body of a message to [EMAIL PROTECTED] - To unsubscribe from this list: send the line unsubscribe xmail in the body of a message to [EMAIL PROTECTED] For general help: send the line help in the body of a message to [EMAIL PROTECTED]
[xmail] Re: Relaying
Yesterday I was able to relay email off of it from across the internet. = I was not using a valid email address and no authintication. =20 -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] = On Behalf Of Bill Healy Sent: Thursday, July 15, 2004 1:15 PM To: '[EMAIL PROTECTED]' Subject: [xmail] Re: Relaying Describe what you are seeing that makes you think it is relaying. Bill -- From: Jeffrey L. Conley[SMTP:[EMAIL PROTECTED] Sent: Wednesday, July 14, 2004 1:28 PM To:[EMAIL PROTECTED] Subject: [xmail] Relaying I am running 1.18 on both my primary and my secondary. I have the same exact smtprelay.tab file on both servers. My primary does not relay = but no matter what I do my secondary relays everything. - To unsubscribe from this list: send the line unsubscribe xmail in the body of a message to [EMAIL PROTECTED] For general help: send the line help in the body of a message to [EMAIL PROTECTED] - To unsubscribe from this list: send the line unsubscribe xmail in the body of a message to [EMAIL PROTECTED] For general help: send the line help in the body of a message to [EMAIL PROTECTED] - To unsubscribe from this list: send the line unsubscribe xmail in the body of a message to [EMAIL PROTECTED] For general help: send the line help in the body of a message to [EMAIL PROTECTED]
[xmail] Re: Relaying
What's in your smtprelay.tab file on the secondary MX server? Was the domain of the To: address defined on the secondary MX server? How have you defined the domains you want it to be secondary for? Bill -- From: Jeffrey L. Conley[SMTP:[EMAIL PROTECTED] Sent: Thursday, July 15, 2004 10:30 AM To:[EMAIL PROTECTED] Subject: [xmail] Re: Relaying Yesterday I was able to relay email off of it from across the internet. = I was not using a valid email address and no authintication. =20 -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] = On Behalf Of Bill Healy Sent: Thursday, July 15, 2004 1:15 PM To: '[EMAIL PROTECTED]' Subject: [xmail] Re: Relaying Describe what you are seeing that makes you think it is relaying. Bill -- From: Jeffrey L. Conley[SMTP:[EMAIL PROTECTED] Sent: Wednesday, July 14, 2004 1:28 PM To: [EMAIL PROTECTED] Subject: [xmail] Relaying I am running 1.18 on both my primary and my secondary. I have the same exact smtprelay.tab file on both servers. My primary does not relay = but no matter what I do my secondary relays everything. - To unsubscribe from this list: send the line unsubscribe xmail in the body of a message to [EMAIL PROTECTED] For general help: send the line help in the body of a message to [EMAIL PROTECTED] - To unsubscribe from this list: send the line unsubscribe xmail in the body of a message to [EMAIL PROTECTED] For general help: send the line help in the body of a message to [EMAIL PROTECTED] - To unsubscribe from this list: send the line unsubscribe xmail in the body of a message to [EMAIL PROTECTED] For general help: send the line help in the body of a message to [EMAIL PROTECTED] - To unsubscribe from this list: send the line unsubscribe xmail in the body of a message to [EMAIL PROTECTED] For general help: send the line help in the body of a message to [EMAIL PROTECTED]
[xmail] Re: Relaying
I found the cause, no carriage return after the last entry in the smtprelay.tab file. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Bill Healy Sent: Thursday, July 15, 2004 1:41 PM To: '[EMAIL PROTECTED]' Subject: [xmail] Re: Relaying What's in your smtprelay.tab file on the secondary MX server? Was the domain of the To: address defined on the secondary MX server? How have you defined the domains you want it to be secondary for? Bill -- From: Jeffrey L. Conley[SMTP:[EMAIL PROTECTED] Sent: Thursday, July 15, 2004 10:30 AM To:[EMAIL PROTECTED] Subject: [xmail] Re: Relaying Yesterday I was able to relay email off of it from across the internet. = I was not using a valid email address and no authintication. =20 -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] = On Behalf Of Bill Healy Sent: Thursday, July 15, 2004 1:15 PM To: '[EMAIL PROTECTED]' Subject: [xmail] Re: Relaying Describe what you are seeing that makes you think it is relaying. Bill -- From: Jeffrey L. Conley[SMTP:[EMAIL PROTECTED] Sent: Wednesday, July 14, 2004 1:28 PM To: [EMAIL PROTECTED] Subject: [xmail] Relaying I am running 1.18 on both my primary and my secondary. I have the same exact smtprelay.tab file on both servers. My primary does not relay = but no matter what I do my secondary relays everything. - To unsubscribe from this list: send the line unsubscribe xmail in the body of a message to [EMAIL PROTECTED] For general help: send the line help in the body of a message to [EMAIL PROTECTED] - To unsubscribe from this list: send the line unsubscribe xmail in the body of a message to [EMAIL PROTECTED] For general help: send the line help in the body of a message to [EMAIL PROTECTED] - To unsubscribe from this list: send the line unsubscribe xmail in the body of a message to [EMAIL PROTECTED] For general help: send the line help in the body of a message to [EMAIL PROTECTED] - To unsubscribe from this list: send the line unsubscribe xmail in the body of a message to [EMAIL PROTECTED] For general help: send the line help in the body of a message to [EMAIL PROTECTED] - To unsubscribe from this list: send the line unsubscribe xmail in the body of a message to [EMAIL PROTECTED] For general help: send the line help in the body of a message to [EMAIL PROTECTED]
[xmail] Re: Relaying Issue
On Tue, 18 May 2004, Jeffrey Laramie wrote: Morning All, The last 2 days it appears my mail server has incorrectly forwarded (or at least attempted to forward) a message to the wrong IP. This is on a system that had been running for months without change. Some additional info: SuSE 8.2 fully updated XMail 1.17 Contents of custdomain tab file ubaight.com.tab: smtprelay smtp.ubaight.com Entry in smtp log file: Trans-Star.net81.215.123.23 2004-05-17 20:38:06 dsl81-215-31511.adsl.ttnet.net.tr ubaight.com [EMAIL PROTECTED] [EMAIL PROTECTED] SC214 RCPT=OK 0 dsl81-215-31511.adsl.ttnet.net.tr Trans-Star.net81.215.123.23 2004-05-17 20:38:07 dsl81-215-31511.adsl.ttnet.net.tr ubaight.com [EMAIL PROTECTED] [EMAIL PROTECTED] SC214 RECV=OK 1839 dsl81-215-31511.adsl.ttnet.net.tr First 3 entries in firewall log of receiving server: May 17 20:38:10 LServer1 kernel: Lan-Host: IN=eth0 OUT= MAC=00:c0:f0:57:af:cc:00:0c:76:3a:30:94:08:00 SRC=192.168.0.2 DST=192.168.0.1 LEN=60 TOS=0x00 PREC=0x00 TTL=64 ID=4638 DF PROTO=TCP SPT=32861 DPT=25 WINDOW=5840 RES=0x00 SYN URGP=0 May 17 20:46:12 LServer1 kernel: Lan-Host: IN=eth0 OUT= MAC=00:c0:f0:57:af:cc:00:0c:76:3a:30:94:08:00 SRC=192.168.0.2 DST=192.168.0.1 LEN=60 TOS=0x00 PREC=0x00 TTL=64 ID=4909 DF PROTO=TCP SPT=32862 DPT=25 WINDOW=5840 RES=0x00 SYN URGP=0 May 17 20:54:47 LServer1 kernel: Lan-Host: IN=eth0 OUT= MAC=00:c0:f0:57:af:cc:00:0c:76:3a:30:94:08:00 SRC=192.168.0.2 DST=192.168.0.1 LEN=60 TOS=0x00 PREC=0x00 TTL=64 ID=5154 DF PROTO=TCP SPT=32863 DPT=25 WINDOW=5840 RES=0x00 SYN URGP=0 This hasn't happened before and I probably wouldn't have even noticed except that it tried to send to one of my internal firewalled servers and the packets were logged and dropped. There shouldn't be a problem with DNS since the box XMail is on is also the authoritative name server for ubaight.com. The rest of the mail for this domain is forwarded without problems and has been for months. Any ideas why this is happening or any other info I can provide? Well, the only thing XMail does with such smtprelay handling is to use a gethostbyname() (read *system* DNS lookup) of smtp.ubaight.com and relay the message to it. If you see it sending to places it shouldn't, it means the DNS or the routing infrastructure did something funny. - Davide - To unsubscribe from this list: send the line unsubscribe xmail in the body of a message to [EMAIL PROTECTED] For general help: send the line help in the body of a message to [EMAIL PROTECTED]
[xmail] Re: Relaying Issue
Does a dns lookup for smtp.ubaight.com on the xmail machine give the = good ip ? If ok, see your xmail smail log to see where xmail connected to send = the mails ... If bad IP, try this (clear xmail dns cache) : stop xmail empty xmail 'dnscache/mx' empty xmail 'dnscache/ns' restart xmail if good IP : Did you change anything on the receiving machine ? or in a firewall or nat device ? Francis -Message d'origine- De : Jeffrey Laramie [mailto:[EMAIL PROTECTED] Envoy=E9 : mardi 18 mai 2004 15:43 =C0 : [EMAIL PROTECTED] Objet : [xmail] Relaying Issue =20 =20 Morning All, =20 The last 2 days it appears my mail server has incorrectly=20 forwarded (or at=20 least attempted to forward) a message to the wrong IP. This=20 is on a system=20 that had been running for months without change. Some additional = info: =20 SuSE 8.2 fully updated XMail 1.17 =20 Contents of custdomain tab file ubaight.com.tab: smtprelay smtp.ubaight.com =20 Entry in smtp log file: Trans-Star.net81.215.123.23 2004-05-17 20:38:06=09 dsl81-215-31511.adsl.ttnet.net.tr ubaight.com=09 [EMAIL PROTECTED]=09 [EMAIL PROTECTED] SC214 RCPT=3DOK 0=09 dsl81-215-31511.adsl.ttnet.net.tr Trans-Star.net81.215.123.23 2004-05-17 20:38:07=09 dsl81-215-31511.adsl.ttnet.net.tr ubaight.com=09 [EMAIL PROTECTED]=09 [EMAIL PROTECTED] SC214 RECV=3DOK 1839=09 dsl81-215-31511.adsl.ttnet.net.tr =20 First 3 entries in firewall log of receiving server: May 17 20:38:10 LServer1 kernel: Lan-Host: IN=3Deth0 OUT=3D=20 MAC=3D00:c0:f0:57:af:cc:00:0c:76:3a:30:94:08:00 SRC=3D192.168.0.2=20 DST=3D192.168.0.1=20 LEN=3D60 TOS=3D0x00 PREC=3D0x00 TTL=3D64 ID=3D4638 DF PROTO=3DTCP=20 SPT=3D32861 DPT=3D25=20 WINDOW=3D5840 RES=3D0x00 SYN URGP=3D0 May 17 20:46:12 LServer1 kernel: Lan-Host: IN=3Deth0 OUT=3D=20 MAC=3D00:c0:f0:57:af:cc:00:0c:76:3a:30:94:08:00 SRC=3D192.168.0.2=20 DST=3D192.168.0.1=20 LEN=3D60 TOS=3D0x00 PREC=3D0x00 TTL=3D64 ID=3D4909 DF PROTO=3DTCP=20 SPT=3D32862 DPT=3D25=20 WINDOW=3D5840 RES=3D0x00 SYN URGP=3D0 May 17 20:54:47 LServer1 kernel: Lan-Host: IN=3Deth0 OUT=3D=20 MAC=3D00:c0:f0:57:af:cc:00:0c:76:3a:30:94:08:00 SRC=3D192.168.0.2=20 DST=3D192.168.0.1=20 LEN=3D60 TOS=3D0x00 PREC=3D0x00 TTL=3D64 ID=3D5154 DF PROTO=3DTCP=20 SPT=3D32863 DPT=3D25=20 WINDOW=3D5840 RES=3D0x00 SYN URGP=3D0 =20 This hasn't happened before and I probably wouldn't have even=20 noticed except=20 that it tried to send to one of my internal firewalled=20 servers and the=20 packets were logged and dropped. There shouldn't be a problem=20 with DNS since=20 the box XMail is on is also the authoritative name server for=20 ubaight.com.=20 The rest of the mail for this domain is forwarded without=20 problems and has=20 been for months. Any ideas why this is happening or any other=20 info I can=20 provide? =20 Jeff - To unsubscribe from this list: send the line unsubscribe xmail in the body of a message to [EMAIL PROTECTED] For general help: send the line help in the body of a message to [EMAIL PROTECTED] =20 - To unsubscribe from this list: send the line unsubscribe xmail in the body of a message to [EMAIL PROTECTED] For general help: send the line help in the body of a message to [EMAIL PROTECTED]
[xmail] Re: Relaying Issue
On Tuesday 18 May 2004 12:31, CLEMENT Francis wrote: Does a dns lookup for smtp.ubaight.com on the xmail machine give the = good ip ? Yes If ok, see your xmail smail log to see where xmail connected to send = the mails ... If bad IP, try this (clear xmail dns cache) : stop xmail empty xmail 'dnscache/mx' empty xmail 'dnscache/ns' restart xmail if good IP : Did you change anything on the receiving machine ? or in a firewall or nat device ? There is no entry in the smail logs that correspond to this message. Maybe a cached lookup got corrupted somehow. I'll clear the cached records and see if that fixes it. Jeff - To unsubscribe from this list: send the line unsubscribe xmail in the body of a message to [EMAIL PROTECTED] For general help: send the line help in the body of a message to [EMAIL PROTECTED]
[xmail] Re: relaying issue
At 10:38 1/13/2004, Jeffrey Laramie wrote: That's kinda interesting. You have multiple A records pointing to 66.219.172.36. We're getting a little OT here but why do you use A records instead of CNAMEs? I know there was some debate about this years ago and at that time the conventional wisdom was that CNAMEs were better. I don't know what the 'preferred ' configuration is these days. Because RFC2822 specifies that A records for mail servers should not be CNAMEs...:) - To unsubscribe from this list: send the line unsubscribe xmail in the body of a message to [EMAIL PROTECTED] For general help: send the line help in the body of a message to [EMAIL PROTECTED]
[xmail] Re: relaying issue
At 10:38 1/13/2004, Jeffrey Laramie wrote: Right, but getting back to Dale's original concern, his virtual domains won't fail the remote server's RDNS check if the DNS for his SMTP server is configured correctly. And he shouldn't be afraid to use RDNS to check the validity of a remote server. Even a couple of years ago spoofing was relatively rare and a mail server that failed RDNS was not a big deal. Today about half of the spam I see is rejected by RDNS before my users see it. IMHO any SMTP server that fails RDNS is broken and should be fixed. True. However, most RDNS checks today are to determine that a mail server (ie. a connecting IP address) *has* a PTR record, not to match the PTR record with the HELO or MAIL FROM domain. However, with that said, I do match the PTR record against a number of known spam source DNS names, and reject if I find it in that list... - To unsubscribe from this list: send the line unsubscribe xmail in the body of a message to [EMAIL PROTECTED] For general help: send the line help in the body of a message to [EMAIL PROTECTED]
[xmail] Re: relaying issue
Tracy wrote: At 10:38 1/13/2004, Jeffrey Laramie wrote: That's kinda interesting. You have multiple A records pointing to 66.219.172.36. We're getting a little OT here but why do you use A records instead of CNAMEs? I know there was some debate about this years ago and at that time the conventional wisdom was that CNAMEs were better. I don't know what the 'preferred ' configuration is these days. Because RFC2822 specifies that A records for mail servers should not be CNAMEs...:) Good reason! - To unsubscribe from this list: send the line unsubscribe xmail in the body of a message to [EMAIL PROTECTED] For general help: send the line help in the body of a message to [EMAIL PROTECTED]
[xmail] Re: relaying issue
Tracy [EMAIL PROTECTED] wrote: Because RFC2822 specifies that A records for mail servers should not be CNAMEs...:) You mean, rcf 2821. Here is an extract: Once an SMTP client lexically identifies a domain to which mail will be delivered for processing (as described in sections 3.6 and 3.7), a DNS lookup MUST be performed to resolve the domain name [22]. [.] The lookup first attempts to locate an MX record associated with the name. If a CNAME record is found instead, the resulting name is processed as if it were the initial name. If no MX records are found, but an A RR is found, the A RR is treated as if it was associated with an implicit MX RR, with a preference of 0, pointing to that host. If one or more MX RRs are found for a given name, SMTP systems MUST NOT utilize any A RRs associated with that name unless they are located using the MX RRs; the implicit MX rule above applies only if there are no MX records present. If MX records are present, but none of them are usable, this situation MUST be reported as an error. regards, chabral - To unsubscribe from this list: send the line unsubscribe xmail in the body of a message to [EMAIL PROTECTED] For general help: send the line help in the body of a message to [EMAIL PROTECTED]
[xmail] Re: relaying issue
chabral wrote: Jeffrey Laramie [EMAIL PROTECTED] wrote: Would you by any chance have a link to this document? This is something I really need to keep up on. Here you can find all rfcs: http://www.rfc-index.com/ Great, thanks. You've provided a valuable resource *and* cured my insomnia with a single link ;-) Jeff - To unsubscribe from this list: send the line unsubscribe xmail in the body of a message to [EMAIL PROTECTED] For general help: send the line help in the body of a message to [EMAIL PROTECTED]
[xmail] Re: relaying issue
So it has nothing to do with my server setup? Is there anything I can do to force Xmail to send the message? Thanks in advance, and great software. This beats the heck outta = eXtremail. Glad I made the jump. [EMAIL PROTECTED] 01/12/04 04:29PM On Mon, 12 Jan 2004, Dale Qualls wrote: I'm receiving this reply for a few messages that we send (not all, only = a =3D couple). =20 With the exception of our domain name being changed to mydomain.org = and =3D Xing out the subject and organization, this snip is exactly what = XMail =3D returned to the senders. =20 Could this be because the linuxmail.localdomain doesn't actually say = =3D linuxmail.mydomain.org ?? Where can I change the localdomain info?. =20 Could this be a reverse pointer problem? I'm not sure if the DNS record = =3D has a reverse pointer for the domain name. =20 Any help would be most appreciated. It's an error in their setup. The MX record for ci.aurora.il.us is=20 really mail002.chicago.lightfirst.com, but they do not handle mail = for=20 the ci.aurora.il.us domain. - Davide - To unsubscribe from this list: send the line unsubscribe xmail in the body of a message to [EMAIL PROTECTED] For general help: send the line help in the body of a message to [EMAIL PROTECTED] - To unsubscribe from this list: send the line unsubscribe xmail in the body of a message to [EMAIL PROTECTED] For general help: send the line help in the body of a message to [EMAIL PROTECTED]
[xmail] Re: relaying issue
On Mon, 12 Jan 2004, Dale Qualls wrote: So it has nothing to do with my server setup? Is there anything I can do to force Xmail to send the message? You can try to use the ESMTP extension: MAIL FROM:... I-REALLY-BEG-YOU=1 but I don't think is gonna work :-) Seriously, you can't. - Davide - To unsubscribe from this list: send the line unsubscribe xmail in the body of a message to [EMAIL PROTECTED] For general help: send the line help in the body of a message to [EMAIL PROTECTED]
[xmail] Re: relaying issue
Great, thank you. I was wondering about the reverse DNS lookup that some mailservers do. If my xmailserver has a default domain of mydomain.org and a reverse DNS = lookup pointing to mydomain.org all is well. But, if myseconddomain.org = users send a message to a place that does reverse DNS lookups and it = resolves back to mydomain.org, is it common for the receiving server to = reject the message for relaying? Just wondering...it strays from the intention of my original post and from = the list. [EMAIL PROTECTED] 01/12/04 05:03PM On Mon, 12 Jan 2004, Dale Qualls wrote: Hmmm, ok. =20 I'm not even gonna try if you don't think it'll work :) =20 I'm having the reverse DNS setup for the mydomain.org through the ISP = =3D issuing the IPs. =20 Will this affect my other domains on the server not being able to send = =3D messages to hosts that do a reverse DNS lookup? Such as myseconddomain.o= rg=3D and mythirddomain.org? No, it is not your fault (at least if you are not handling ci.aurora.il.us)= .. - Davide - To unsubscribe from this list: send the line unsubscribe xmail in the body of a message to [EMAIL PROTECTED] For general help: send the line help in the body of a message to [EMAIL PROTECTED] - To unsubscribe from this list: send the line unsubscribe xmail in the body of a message to [EMAIL PROTECTED] For general help: send the line help in the body of a message to [EMAIL PROTECTED]
[xmail] Re: relaying issue
Dale Qualls wrote: Great, thank you. I was wondering about the reverse DNS lookup that some mailservers do. If my xmailserver has a default domain of mydomain.org and a reverse DNS = lookup pointing to mydomain.org all is well. But, if myseconddomain.org = users send a message to a place that does reverse DNS lookups and it = resolves back to mydomain.org, is it common for the receiving server to = reject the message for relaying? In a standard DNS configuration you would have a domain 'zone' file for each domain name and a 'reverse lookup' zone file for each block of IPs. The zone file typically has records that resolve a name to an IP address: myhost A 12.34.56.78 The reverse lookup zone file has the opposite record: 78 PTR myhost.mydomain.org The reverse lookup zone file knows what domain each IP is in. If a remote mail server does a reverse lookup and gets mydomain instead of myseconddomain, then it's configured wrong and you need to contact the ISP or whomever handles DNS for these domains. It would be good policy for the remote mail server to reject any address that fails RDNS lookup since it's most likely either spoofed or broken. Jeff - To unsubscribe from this list: send the line unsubscribe xmail in the body of a message to [EMAIL PROTECTED] For general help: send the line help in the body of a message to [EMAIL PROTECTED]
[xmail] Re: relaying issue
At 19:47 1/12/2004, Jeffrey Laramie wrote: In a standard DNS configuration you would have a domain 'zone' file for each domain name and a 'reverse lookup' zone file for each block of IPs. The zone file typically has records that resolve a name to an IP address: myhost A 12.34.56.78 The reverse lookup zone file has the opposite record: 78 PTR myhost.mydomain.org The reverse lookup zone file knows what domain each IP is in. If a remote mail server does a reverse lookup and gets mydomain instead of myseconddomain, then it's configured wrong and you need to contact the ISP or whomever handles DNS for these domains. It would be good policy for the remote mail server to reject any address that fails RDNS lookup since it's most likely either spoofed or broken. There are cases where there is overlap between multiple domains and the same IP space (web hosting comes most prominently to mind, but there are other situations). For instance, if you look up the following DNS names: mail.vbot.org mail.arisiasoft.com You will find they both resolve as 66.219.172.36 - if you look up 66.219.172.36, it should resolve as: karen.arisiasoft.com You'll note that neither of the mail names match the PTR record (one matches at the primary domain level, but not a complete match). Both of the mail. DNS names point to the same machine - mail for both domains is hosted there (on the same copy of Xmail). If a remote mail server does a reverse lookup and gets mydomain instead of myseconddomain, then it's configured wrong and you need to contact the ISP or whomever handles DNS for these domains. If I understand your logic here, you are saying that because mail.vbot.org -- 66.219.172.36 -- karen.arisiasoft.com, you would recommend rejecting all mail from mail.vbot.org? Even though it has a valid RDNS (even if it doesn't match the original DNS name), and a valid MX record for the domain pointing to the same IP address? I think if you followed through on that, you would end up rejecting a lot of mail from a lot of places... - To unsubscribe from this list: send the line unsubscribe xmail in the body of a message to [EMAIL PROTECTED] For general help: send the line help in the body of a message to [EMAIL PROTECTED]
[xmail] Re: relaying issue
That's exactly my question. How does an ISP handle this? I have one name = for my xmail server that if you telnet to it you get mydomain.org and a = RDNS will match mydomain.org, but if I'm sending mail from mythirddomain= ..org and a RDNS is looked at it will see mydomain.organd therefore get = rejected (assuming that they require RDNS for e-mail acceptance). I just don't want to have a problem with 2 of my 3 domains being rejected = by places like the college I listed in my original post which appears to = requires RDNS lookups. [EMAIL PROTECTED] 01/12/04 08:01PM At 19:47 1/12/2004, Jeffrey Laramie wrote: In a standard DNS configuration you would have a domain 'zone' file for each domain name and a 'reverse lookup' zone file for each block of IPs. The zone file typically has records that resolve a name to an IP address: myhost A 12.34.56.78 The reverse lookup zone file has the opposite record: 78 PTR myhost.mydomain.org The reverse lookup zone file knows what domain each IP is in. If a remote mail server does a reverse lookup and gets mydomain instead of myseconddomain, then it's configured wrong and you need to contact the ISP or whomever handles DNS for these domains. It would be good policy for the remote mail server to reject any address that fails RDNS lookup since it's most likely either spoofed or broken. There are cases where there is overlap between multiple domains and the=20 same IP space (web hosting comes most prominently to mind, but there = are=20 other situations). For instance, if you look up the following DNS names: mail.vbot.org mail.arisiasoft.com You will find they both resolve as 66.219.172.36 - if you look up=20 66.219.172.36, it should resolve as: karen.arisiasoft.com You'll note that neither of the mail names match the PTR record (one=20 matches at the primary domain level, but not a complete match). Both of = the=20 mail. DNS names point to the same machine - mail for both domains is = hosted=20 there (on the same copy of Xmail). If a remote mail server does a reverse lookup and gets mydomain instead of myseconddomain, then it's configured wrong and you need to contact the ISP or whomever handles DNS for these domains. If I understand your logic here, you are saying that because mail.vbot.org= =20 -- 66.219.172.36 -- karen.arisiasoft.com, you would recommend = rejecting=20 all mail from mail.vbot.org? Even though it has a valid RDNS (even if = it=20 doesn't match the original DNS name), and a valid MX record for the = domain=20 pointing to the same IP address? I think if you followed through on that, you would end up rejecting a = lot=20 of mail from a lot of places... - To unsubscribe from this list: send the line unsubscribe xmail in the body of a message to [EMAIL PROTECTED] For general help: send the line help in the body of a message to [EMAIL PROTECTED] - To unsubscribe from this list: send the line unsubscribe xmail in the body of a message to [EMAIL PROTECTED] For general help: send the line help in the body of a message to [EMAIL PROTECTED]
[xmail] Re: relaying domains
Hello Davide, in smtprelay.tab i can insert ip-addresses. What i wan't is to tell xmail that only mails for domain1.com, domain2.com and domain3.com should be relayed. All incoming mails for other domains should be skipped. I need a chance to insert Domain-names, not ip-adresses. Dirk Davide Libenzi wrote on 11.12.02 10:04 -0800: -- : : On Wed, 11 Dec 2002, Dirk Steinbrenner wrote: : : : Hello, : : i'm using xmail as outgoing relay. : Where can i define for which domains xmail accepts mail for relaying? : : If you want to control relaying you'll want to use smtprelay.tab or SMTP : authentication. : : : : - Davide -- +++ GMX - Mail, Messaging more http://www.gmx.net +++ NEU: Mit GMX ins Internet. Rund um die Uhr für 1 ct/ Min. surfen! - To unsubscribe from this list: send the line unsubscribe xmail in the body of a message to [EMAIL PROTECTED] For general help: send the line help in the body of a message to [EMAIL PROTECTED]
[xmail] Re: relaying domains
Hello Andrew, the domains are on another server (in a DMZ) which is the server with the User-Accounts and so on. Xmail is the smtp-relay which have access to the internet (on the ip's where our Domains are registered) and delivers the mails to the 'DMZ-Server'. But i will only forward mails for our Domains, all try's to use Xmail to spam (send mails not to one of our Domains) should be skipped in 'silent mode' (without delivering a error message to the spammer). Dirk Andrew Joakimsen wrote on 11.12.02 16:26 -0500: -- : : Are these domains on the local server or on another server? : : -Original Message- : From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] : On Behalf Of Dirk Steinbrenner : Sent: Wednesday, December 11, 2002 2:48 PM : To: [EMAIL PROTECTED] : Subject: [xmail] Re: relaying domains : : : Hello Davide, : : in smtprelay.tab i can insert ip-addresses. : : What i wan't is to tell xmail that only mails for domain1.com, : domain2.com : and domain3.com should be relayed. All incoming mails for other domains : should : be skipped. : : I need a chance to insert Domain-names, not ip-adresses. : : Dirk -- +++ GMX - Mail, Messaging more http://www.gmx.net +++ NEU: Mit GMX ins Internet. Rund um die Uhr für 1 ct/ Min. surfen! - To unsubscribe from this list: send the line unsubscribe xmail in the body of a message to [EMAIL PROTECTED] For general help: send the line help in the body of a message to [EMAIL PROTECTED]
[xmail] Re: relaying domains
Use custom domains and the relay command.=20 Bill -- From: Dirk Steinbrenner[SMTP:[EMAIL PROTECTED]] Sent: Wednesday, December 11, 2002 2:04 PM To:[EMAIL PROTECTED] Subject: [xmail] Re: relaying domains Hello Andrew, the domains are on another server (in a DMZ) which is the server with = the User-Accounts and so on. Xmail is the smtp-relay which have access to = the internet (on the ip's where our Domains are registered) and delivers = the mails to the 'DMZ-Server'. But i will only forward mails for our Domains, all = try's to use Xmail to spam (send mails not to one of our Domains) should be = skipped in 'silent mode' (without delivering a error message to the spammer). Dirk Andrew Joakimsen wrote on 11.12.02 16:26 -0500:=20 --=20 :=20 : Are these domains on the local server or on another server? :=20 : -Original Message- : From: [EMAIL PROTECTED] = [mailto:[EMAIL PROTECTED]] : On Behalf Of Dirk Steinbrenner : Sent: Wednesday, December 11, 2002 2:48 PM : To: [EMAIL PROTECTED] : Subject: [xmail] Re: relaying domains :=20 :=20 : Hello Davide, :=20 : in smtprelay.tab i can insert ip-addresses. :=20 : What i wan't is to tell xmail that only mails for domain1.com, : domain2.com : and domain3.com should be relayed. All incoming mails for other = domains : should : be skipped. :=20 : I need a chance to insert Domain-names, not ip-adresses. :=20 : Dirk --=20 +++ GMX - Mail, Messaging more http://www.gmx.net +++ NEU: Mit GMX ins Internet. Rund um die Uhr f=FCr 1 ct/ Min. surfen! - To unsubscribe from this list: send the line unsubscribe xmail in the body of a message to [EMAIL PROTECTED] For general help: send the line help in the body of a message to [EMAIL PROTECTED] - To unsubscribe from this list: send the line unsubscribe xmail in the body of a message to [EMAIL PROTECTED] For general help: send the line help in the body of a message to [EMAIL PROTECTED]
[xmail] Re: relaying problem
Hello,=20 I found the solution : ezmts was not uninstalled :)) . Thank you for all Fr=E9d=E9ric -Original Message- From: [EMAIL PROTECTED] [mailto:xmail-bounce;xmailserver.org] On Behalf Of Frederic Malo Sent: jeudi 31 octobre 2002 13:54 To: [EMAIL PROTECTED] Subject: [xmail] relaying problem Hello,=3D20 Thank you for Xmail which has very powerfull features that I could not find with Ezmts (ezmts.org). Thank you again ! I've got a problem with relaying (I suppose) and redirections. First of all, when I check MX server with http://www.nic.fr/zonecheck/english.html , it says that Xmail is configured with no relaying option. If I delete my IP mask in smtprelay.tab, it has no effects with anti-relaying. That's the first problem I have.=3D20 The second is about email redirection : I can redirect mail to a mailbox that is managed with xmail, but not for a mailbox that is not managed by Xmail ([EMAIL PROTECTED] for example). I tried a lot of configurations, but without success.=3D20 Does anyone know how to do this ?=3D20 Thank you Fr=3DE9d=3DE9ric Malo http://frederic.malo.com http://mysic.com - To unsubscribe from this list: send the line unsubscribe xmail in the body of a message to [EMAIL PROTECTED] For general help: send the line help in the body of a message to [EMAIL PROTECTED] - To unsubscribe from this list: send the line unsubscribe xmail in the body of a message to [EMAIL PROTECTED] For general help: send the line help in the body of a message to [EMAIL PROTECTED]
[xmail] Re: Relaying question
At 10:35 6/21/2002 +0800, Adrian Hicks wrote: * Restart Xmail * do: telnet localhost 6017 (the admin program gives the timestamp etc. waits for input - all seems ok at this point) * do: username password and hit enter And I get a bad controller login When you are in the telnet session, don't put quotes. Like this: telnet localhost 6017 usernamepassword - To unsubscribe from this list: send the line unsubscribe xmail in the body of a message to [EMAIL PROTECTED] For general help: send the line help in the body of a message to [EMAIL PROTECTED]
[xmail] Re: relaying
So... I stopped 0.74... migrated the stuff I had to migrate... CHANGED MY smptrelay.tab to the above... and whalla! I can still use my outside machine to sendmail through it my yahoo account. Are you sure that one of your clients (from the same ip that u used to test) hadn't logged in tino your server before, so that POP before SMTP (default ON) lets you send the mail? Check this please from another ip that doesn't have anything to do with your mail server (like getting mail over pop). - To unsubscribe from this list: send the line unsubscribe xmail in the body of a message to [EMAIL PROTECTED] For general help: send the line help in the body of a message to [EMAIL PROTECTED]
RE: RELAYING DELAY
In Outlook Express 5.0 go to the mail account properties and then to the Server tab and turn on My server requires authentication. By default it will use the same username and password for pop so you don't need to change anything else in Outlook express Eudora, Netscape and other clients I believe have a setting for authentication like Outlook Express. If you disable the authentication required by the server you will open it up for spammers to use. When using Pop before send authentication to avoid having to click Send/Receive twice in Outlook Express go to Tools/Options and on the Send tab and turn off send immediately. Then when you click Send/Receive it will pop first and then send anything waiting to go. Bill -- From: Juan Hector Medina[SMTP:[EMAIL PROTECTED]] Hi again. Im using Outlook 5.0 in pc and in mac some users are using eudora, netscape 4.7 there are any other way to change this setting on the server side? .. because some of my users don't want to change their pop clients. What you are seeing by clicking the Send and Receive button twice is the POP before send authentication feature. Yes I think that, however there is any configuration to make the delay time longer? - Original Message - From: Bill Healy [EMAIL PROTECTED] To: [EMAIL PROTECTED] Sent: Thursday, August 16, 2001 2:59 AM Subject: RE: [xmail] defaultfilter under NT/2K, how? In your e-mail program turn on the feature for authentication for the smtp server. Most programs have it. What program are you using? What you are seeing by clicking the Send and Receive button twice is the POP before send authentication feature. Bill -- From: Juan Hector Medina[SMTP:[EMAIL PROTECTED]] Sent: Thursday, August 16, 2001 4:48 AM To: [EMAIL PROTECTED] Subject: Re: [xmail] defaultfilter under NT/2K, how? Hi All... Im running XMAIL under linux and I saw that when i need to send a email outside the domains of the server i have de 505 relaying denied error.. I must make click twice one the Send and Recive button, i thinks is because the server need auth my account , then it open the relay... can i change this behavior? making open to send any messages without auth, and not making the server open to spam?? .. most of my users are on different networks .so i cant know their ip. thank you - Original Message - From: Taras Shuper [EMAIL PROTECTED] To: [EMAIL PROTECTED] Sent: Wednesday, August 08, 2001 7:55 AM Subject: [xmail] defaultfilter under NT/2K, how? Hi All, I running XMail under NT/2K and I Need to implement the default filter, but the default filter file has been renamed from 'defaultfilter.tab' to '.tab' which isn't supported under NT/2K. I'm using it to stop spammers from relaying messages with the SMTP service. The filter would check to see if @@FROM was an internal domain, it it was, then send the message along, otherwise '99' it. Any suggestions or comments would greatly be appreciated. Regards, Taras _ Get your FREE download of MSN Explorer at http://explorer.msn.com/intl.asp
Relay based on mail domains [was: RE: relaying...]
| -Original Message- | From: [EMAIL PROTECTED] | [mailto:[EMAIL PROTECTED]]On Behalf Of Davide Libenzi | Sent: Friday, May 11, 2001 7:35 PM | To: John Kielkopf | Cc: XMail Mailing list | Subject: Re: relaying... ... | By doing what You're talking about will make You to fall inside | ORBS with tons | of email that You'll receive by Your users that won't be able to | send mail to domain protected by ORBS. Sorry, but you're wrong. ORBS (and every other testing service known to me) is using another testing algorithm, described here: http://www.orbs.org/envelopes.html If tested mail server allows delivery from/to local domains, it will NOT fail in the relay test. I am runnig few mail servers for years and everything is OK. Please also don't forget, so there are lots of devices, who can't use SMTP-Auth. If it's PC software, I may recommend to use another one. But there are another mail capable devices. Like my Nokia 9110 Communicator - this device simply don't support SMTP authentication and there is no way to change it. Similar situation is when we deal with various palm sized computers and organizers. In the ideal world, there would be widely accepted secure mail transport protocol. But this world is not ideal, so we have only old and not so good secured SMTP with few not widely supported additional security features. Currently I am testing and setting up XMail to provide mail services for my customers (about 500 mailboxes). If I imagine so I must all these people notify, how to setup SMTP authentication on 10 operating systems and lots of mail clients which I newer ever heard, I'm thinking about the sucide. So I will probably set up second mail server (with NT's SMTP service) as SMTP. Second way (thanks to Petr Hruzek for suggesting this to me) is to write simple script and setup server to accept everything and then discard bad messages by script. But it's very wrong way, because adds lot of load to the server. Please, add this relay mode to XMail. I am web developer and don't know C++, so I can't do this alone. -- Michal 'Altair' Valasek Altair Software Production [I don't make the rules; I just break them.]--- Webdesign, webhosting, programming - They use the Internet, we live there! E-mail: [EMAIL PROTECTED] * ICQ: 6160893 * Phone: +420-603-828493 Corp. WWW: http://www.altair2000.net * Personal: http://home.altair2000.net _...powered by Internet
RE: Relay based on mail domains [was: RE: relaying...]
On 12-May-2001 Altair wrote: | -Original Message- | From: [EMAIL PROTECTED] | [mailto:[EMAIL PROTECTED]]On Behalf Of Davide Libenzi | Sent: Friday, May 11, 2001 7:35 PM | To: John Kielkopf | Cc: XMail Mailing list | Subject: Re: relaying... ... | By doing what You're talking about will make You to fall inside | ORBS with tons | of email that You'll receive by Your users that won't be able to | send mail to domain protected by ORBS. Sorry, but you're wrong. ORBS (and every other testing service known to me) is using another testing algorithm, described here: http://www.orbs.org/envelopes.html If tested mail server allows delivery from/to local domains, it will NOT fail in the relay test. I am runnig few mail servers for years and everything is OK. Have You seen the message ? You lucky man :) - Davide
RE: relaying...
John, ask your users to use authentication with smtp sessions, and then relay starts (if their client software allow smtp authtication) Suggestion to Davide : Since not all users have a mail client software with smtp authentication, is it possible to add a new method of authentication based on previous access to the pop3 account ? Example : A user first access its pop3 account in normal way. At end of of pop3 session the server remind the couple (user IP user email address) for a given time out, say, of 5 minutes (tunable) Then : 1 - if the user (same IPemail from MAIL FROM :) connects via smtp before the timeout from the same ip, the server grants the user the same rights as if he was authenticated by normal auth, the user can perform normal smtp session, and at end of the smtp session the server expires the couple ip/email. 2 - if the user don't connect via smtp before the timeout expires, the server simply expires the client ip/email couple. Since most of the client mailers available, by default, read pop3 before doing smtp, it can help !! users have just to tune the way they use they soft (eg : with Oexpress, disable 'send immediatly' but allows simply click the receive/send button) (sorry for my bad english !!) Note that some others packages (a few) offer this method. Francis -Message d'origine- De : Davide Libenzi [mailto:[EMAIL PROTECTED]] Envoyé : vendredi 11 mai 2001 18:23 À : John Kielkopf Cc : XMail Mailing list Objet : RE: relaying... On 11-May-2001 John Kielkopf wrote: Having trouble setting up relay blocking in XMail. I can get it block relaying, by IP address, but I can get it to block by domain. say that the handled domain list on the server is: abc.com def.com With relay blocking, a user can send a message to [EMAIL PROTECTED], but [EMAIL PROTECTED] cannot send a message to anyone outside the handled domain list, unless their IP address/subnet is listed in smtprelay.tab. Shouldn't XMail verify if the sender of the message is in the handled domain/user list before rejecting the operation? This would be the spammer paradise :) They would forge the sender to bypass Your antirelay defense. - Davide
Re: relaying...
On 11-May-2001 John Kielkopf wrote: Yes, but it's an unfortunate necessity. In order to allow my users to use my SMTP service, I either need to open up all relaying, or setup smtpauth, since most of them are mobile. smtpauth just wont cut the mustard in this situation, since I'm not about to take support calls from 200+ users, telling them to change their email setup after I enable it... especially when some of these users have to change their smtp server in their email setup every time they hop out of their office, and start using their earthlink dial-up. (earthlink does not allow a port 25 connection outside their of their own network)... it just complicates things far too much for my users. This is actually an extremely important feature for hosting providers. It may open up some spamming, but, it will not get your server auto banned when abuse checking services realize your open for relaying, because you wont be, and you wont be nearly as open to abuse as you are with relaying completely open. Many other mail servers used in hosting situations have this feature (MailMax is one that comes to mind). If you cant control the subnet your users will be on, it's the next best thing to full relay blocking, while maintaining ease of use. An option for this would be extremely useful to me, and many others I'm sure. As it is now, I have to leave relaying completely open to get the functionality I need, and it's becoming a huge problem. Please seriously consider adding this. I was a bit stunned to find I couldn't do it. John, You're wrong. The current tendency is to use SMTP authentication and You can solve the problem of users setup with a couple of screenshots in Your site. By doing what You're talking about will make You to fall inside ORBS with tons of email that You'll receive by Your users that won't be able to send mail to domain protected by ORBS. - Davide
RE: relaying...
On 11-May-2001 CLEMENT Francis wrote: John, ask your users to use authentication with smtp sessions, and then relay starts (if their client software allow smtp authtication) Suggestion to Davide : Since not all users have a mail client software with smtp authentication, is it possible to add a new method of authentication based on previous access to the pop3 account ? Example : A user first access its pop3 account in normal way. At end of of pop3 session the server remind the couple (user IP user email address) for a given time out, say, of 5 minutes (tunable) Then : 1 - if the user (same IPemail from MAIL FROM :) connects via smtp before the timeout from the same ip, the server grants the user the same rights as if he was authenticated by normal auth, the user can perform normal smtp session, and at end of the smtp session the server expires the couple ip/email. 2 - if the user don't connect via smtp before the timeout expires, the server simply expires the client ip/email couple. Since most of the client mailers available, by default, read pop3 before doing smtp, it can help !! users have just to tune the way they use they soft (eg : with Oexpress, disable 'send immediatly' but allows simply click the receive/send button) I know the method. Let me think about it, maybe good news will come in 0.71 :) - Davide
