Ok, thank you Sanford and Terry for the information.
How can I test relaying trough my servers using the %piggyback address?
[EMAIL PROTECTED] should be the correct format.
This will not work.
What can Scott mean by writing IMail does normally check for this, but
there is a report of it not
There is a ISP from Austria using the Exim Internet Mailer.
(www.exim.org)
In the last months there was a lot of messages send from our system to
this provider where Exim returned an error message like:
=
This message was created
Markus,
Monday, January 27, 2003 you wrote:
MG How can I test relaying trough my servers using the %piggyback address?
MG [EMAIL PROTECTED] should be the correct format.
MG This will not work.
You have 2 mail servers, example.com, which is an IMAIL server,
and example.net. Example.net
Because since we use SPAMCHK there was also some bounced messages from
Exim indicating the casue of the error
forced faulure: SPAMCHK ...
I'm sure Exim bounce our messages because there are the X-RBL-Warning:
lines in the header.
Talk about a poor man's spam filter -- relying on the
Wow. What an explanation.
Thank you!
If I understand right a problem can ocur if one of our clients
mailservers (most of them exchange servers) become a open relay because
the admin has changed something. If this server has set our Imail-Server
as smarthost and uses SMTP-Auth to deliver the
Thanks Terry,
I opted to use the cn-kr.blackholes.us. Thanks for the info!
FWIW, I had to change the line:
CN-KR ip4r cn-kr.blackholes.us 127.0.0.2 13 0
to read
CN-KR ip4r cn-kr.blackholes.us * 13 0
to get it to work. Apparently the zone returns 127.0.0.2 and 127.0.0.3
depending on the
Below is a header of an email processed by Declude today - it sees the RDNS
as:
202.112.78.63.in-addr.arpa [63.78.112.202]
However, your own http://www.dnsstuff.com/tools/ptr.ch?ip=63.78.112.202
correctly reports:
smtp.hhbrown.com.
Seems as if Declude doesn't follow the classless
In this case, since they don't seem to care *which* spam
tests fail (the
fact that you use an X-RBL-Warning: header rather than
blocking the E-mail
typically indicates that the test doesn't justify blocking
the E-mail), I
would recommend using a trick to allow you to keep the
Scott,
I have a new feature request:
This would be for the ROUTETO action, to have the emails moved to individual
folders for each users email address. This way when we use the ROUTETO
command instead of having all the emails in the main mailbox and not knowing
who they were addressed to without
I can't follow:
The default- and per Domain configuration is used to process incoming
mail for this specific domain.
But the Exim Mail server bounce our messages with the outgoing
X-RBL-Warnings from declude.
As I know only the pro version handle the outgoing actions set in the
global.cfg
So
Sounds very interesting as an option.
John Tolmachoff MCSE, CSSA
IT Manager, Network Engineer
RelianceSoft, Inc.
Fullerton, CA 92835
www.reliancesoft.com
-Original Message-
From: [EMAIL PROTECTED] [mailto:Declude.JunkMail-
[EMAIL PROTECTED]] On Behalf Of Adam Hobach
Sent: Monday,
From the message you attached:
forced failure: SPAMCHK: Message failed SPAMCHK:
-65.
And the offending line in the headers:
X-RBL-Warning: SPAMCHK: Message failed SPAMCHK: -65.
Is it possible that Exim is seeing SPAMCHK: as a separate part of the
header because of the colon?
We need to do a Windows API call to WINSOCK.DLL
- GetHostByAddr and
- GetHostByName
Need to do it in an ASP page and in a server side .exe (VB6).
It's for a project where we're running a name server with spam-vertised
domain names, IP Numbers and phone numbers. We have an .exe to pick them
I just block them all. In your config file:
CN-KR ip4r cn-kr.blackholes.us 127.0.0.2 13 0
assigns weight 13 for instance to China and Korea - add test in
$junkmail see www.blackhoes.us for others
HAHA!
I think I'm blocking that site!
;)
Dan Horne
---
[This E-mail was
Is anybody using the COPYTO action for an Outgoing test (requires Declude Pro)? I
can't seem to get it to work. It always copies the email to a blank recipient. I've
got this line in the global.cfg file...
SOMETEST COPYTO [EMAIL PROTECTED]
...but the sender of the email where this
They actually used an RDNS blocker (as a hard test) last week, with predictable
results:
http://zdnet.com.com/2100-1105-982118.html
The irony, of course, is how much spam comes FROM WorldNet IPs.
Dan
---
[This E-mail was scanned for viruses by Declude Virus (http://www.declude.com)]
---
Here it is, and I actually sent a bunch of debug information on this problem to
[EMAIL PROTECTED] on Sunday morning...
Diagnostics ON (Declude v1.66i11).
Declude JunkMail: Config file found (d:\imail\Declude\global.CFG).
Declude Virus: Config file found (d:\imail\Declude\Virus.CFG).
They actually used an RDNS blocker (as a hard test) last week, with
predictable results:
http://zdnet.com.com/2100-1105-982118.html
The irony, of course, is how much spam comes FROM WorldNet IPs.
Even more interesting is the inaccuracies of the article:
Every IP address maps to a domain
Monday, January 27, 2003 you wrote:
MG If I understand right a problem can ocur if one of our clients
MG mailservers (most of them exchange servers) become a open relay because
MG the admin has changed something. If this server has set our Imail-Server
MG as smarthost and uses SMTP-Auth to
Markus, the crux of the issue for you is whether or not you allow relaying
for your client servers. If you do, then the percent hack is a legitimate
method for their server to request the relay from your server.
The IMail security regarding the percent hack is not to *prevent* the
percent hack,
Here it is, and I actually sent a bunch of debug information on this
problem to [EMAIL PROTECTED] on Sunday morning...
Could you re-send that information? We don't have a record of it here, and
it could be very useful in solving the problem.
-Scott
---
[This
Sure thing. I just resent it, but this time to [EMAIL PROTECTED]
-Original Message-
From: R. Scott Perry
Sent: Mon, 27 Jan 2003 13:41:42 -0500
Subject: Re: [Declude.JunkMail] COPYTO action on an Outgoing test
Here it is, and I actually sent a bunch of debug information on this
Hey Scott, let me know if you have received that email now or not, because I noticed
the email was getting held by declude because the debug file contained lots for words
that set off our filters. But I added a whitlist rule, so it should have gotten to
you now. But let me know if not.
Hey Scott, let me know if you have received that email now or not, because
I noticed the email was getting held by declude because the debug file
contained lots for words that set off our filters. But I added a whitlist
rule, so it should have gotten to you now. But let me know if not.
It
Scott,
I run Junkmail at a log setting of HIGH. After switching to 166i11 I have
noticed that the last log entry for every e-mail reads Final Action =
IGNORE.
This is the case even though various tests may show Actions of WARN, COPYTO,
or ROUTETO. What's the story?
Thanks,
George Kulman
Hey Scott, let me know if you have received that email now or not, because
I noticed the email was getting held by declude because the debug file
contained lots for words that set off our filters. But I added a whitlist
rule, so it should have gotten to you now. But let me know if not.
I run Junkmail at a log setting of HIGH. After switching to 166i11 I have
noticed that the last log entry for every e-mail reads Final Action =
IGNORE.
This is the case even though various tests may show Actions of WARN, COPYTO,
or ROUTETO. What's the story?
That's because the final action
To keep me out of the spam review loop, I'm using the mailbox function to
move spam to a mailbox called Junk for each user. If the users feel the
need to review/retrieve messages, they can access them via the web
interface.
My question, is there a clean-up utility along the lines of immsgexp.exe
My question, is there a clean-up utility along the lines of
immsgexp.exe that can be directed to only work on selected
mailboxes?
Search archives first...just posted last week.
-Sandy
---
[This E-mail was scanned for viruses by Declude Virus (http://www.declude.com)]
---
My bad - I found it from two weeks ago.
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED]]On Behalf Of Sanford Whiteman
Sent: Monday, January 27, 2003 4:06 PM
To: Bill Naber
Subject: Re: [Declude.JunkMail] Selective clean up of mail folders
My question, is there
I'm not sure I understand what you want to do.
The ASP code is just done through the Request.ServerVariables
Collection.
I'm not sure I understand the requirement for the .exe
Have you ever used API's before?
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED]] On
It's for a project where we're running a name server with
spam-vertised domain names, IP Numbers and phone numbers. We have an
.exe to pick them out of emails, now we need to look them up on the
name server.
The ultimate goal would be to get the IP address of a spam-vertised
GetHostByName() usage is pretty straightforward--there must be
hundreds of howtos for VB (though you'll probably need to build/buy
COM object for ASP).
Again, what's the project exactly?
You are going to need a DLL to do this, ASP with VB does not provide
any of these functions
33 matches
Mail list logo