Re: [exim] is the log caused by this helo name?

2022-01-21 Thread Jeremy Harris via Exim-users
On 21/01/2022 09:43, Cyborg via Exim-users wrote: It shows the "hostname" used as "[0.0.0.0]" It's the HELO name. Documented in the logging chapter of the docs. The thing in the (parentheses) is the HELO supplied by the remote client. -- Cheers, Jeremy -- ## List details at https://lists.e

Re: [exim] Inappropriate File Type or Format

2022-01-21 Thread Jeremy Harris via Exim-users
On 21/01/2022 09:35, Cyborg via Exim-users wrote: if exim "changed" to a new db format, shouldn't exim detect an handle this  internally? Exim did not. We don't account for what the system might have done to the shared library being used. However, I only mentioned it as one possibility. The

Re: [exim] Inappropriate File Type or Format

2022-01-20 Thread Jeremy Harris via Exim-users
On 20/01/2022 18:45, Pete Long via Exim-users wrote: failed to open DB file /var/spool/exim/db/wait-remote_smtp: Inappropriate file type or format You have a corrupt DB file, or one not matching the version of DBM linbrary you are (now?) running with. Stop the daemon and wait for all exim pro

Re: [exim] Route each outgoing mail through script for spam detection

2022-01-20 Thread Jeremy Harris via Exim-users
On 19/01/2022 09:05, Brian Wiborg via Exim-users wrote:  * Exim disregards the headers and pipes the mail back to our script Run your daemon with -d+expand and feed one in. Grab the stderr to file; there will be lots (especially given the need to kill the loop!). Find the rtouer conditions

Re: [exim] sendind email to an intermittently connected host

2022-01-18 Thread Jeremy Harris via Exim-users
On 18/01/2022 15:24, Odhiambo Washington via Exim-users wrote: he OP would rather mess up with the retry times To be fair, that's the quickest way to ensure that Exim doesn't freeze or bounce a message waiting in spool, which is needed whatever the eventual delivery method is. -- Cheers, Jer

Re: [exim] sendind email to an intermittently connected host

2022-01-17 Thread Jeremy Harris via Exim-users
On 17/01/2022 22:56, Leonardo Boselli via Exim-users wrote: What i want to do is that when sending a message to p.example.com whatever thing happens (no route to host/ dns error / no response / closed port / 4xx or 5xx error), anything different than an accepted message, the message remains in 

Re: [exim] Re-routing mail to the secondary MX server

2022-01-12 Thread Jeremy Harris via Exim-users
On 12/01/2022 15:02, Dmitriy Matrosov via Exim-users wrote: Is it possible to re-route certain mails on the primary server (with lowest MX priority) to the secondary (the one with highest priority)? My use case is if the recipient is not found on the primary server, try to deliver a message to

Re: [exim] Exim 4.95: growth kern.openfiles

2022-01-11 Thread Jeremy Harris via Exim-users
On 11/01/2022 13:23, Mikhail Golub via Exim-users wrote: Seems to have helped. Thanks for testing; I'll commit that change. -- Cheers, Jeremy -- ## List details at https://lists.exim.org/mailman/listinfo/exim-users ## Exim details at http://www.exim.org/ ## Please use the Wiki with this list

Re: [exim] Exim 4.95: growth kern.openfiles

2022-01-11 Thread Jeremy Harris via Exim-users
On 11/01/2022 09:08, Mikhail Golub via Exim-users wrote: Exim version 4.95 #1 (FreeBSD 12.3) built 11-Jan-2022 08:36:14 Do you build from source? If so, please try the attached patch. -- Cheers, Jeremydiff --git a/src/src/tls.c b/src/src/tls.c index d5d11bcea..e6b1bf7a7 100644 --- a/src/src/

Re: [exim] Exim 4.95: growth kern.openfiles

2022-01-11 Thread Jeremy Harris via Exim-users
On 11/01/2022 10:27, Evgeniy Berdnikov via Exim-users wrote: Mikhail wrote about 2754 leaked handles for root (/) since Exim build time (11-Jan-2022 08:36:14) until report. Assuming that build and report timezones are identical, it gives approximately 1 handle in 3 seconds. Hmmm. With the

Re: [exim] Exim 4.95: growth kern.openfiles

2022-01-11 Thread Jeremy Harris via Exim-users
On 11/01/2022 09:08, Mikhail Golub via Exim-users wrote: Exim 4.95 running on FreeBSD 12.3 Growing gradually kern.openfiles # exim -bV Exim version 4.95 #1 (FreeBSD 12.3) built 11-Jan-2022 08:36:14 8418 - pid of exim main process. # ps ax | grep exim  8418  -  Ss 2:49,48 /usr/local/sbin/

Re: [exim] DKIM problem

2022-01-09 Thread Jeremy Harris via Exim-users
On 09/01/2022 23:25, Slawomir Dworaczek via Exim-users wrote: not this way,  -BEGIN RSA PRIVATE KEY- there was never a space my typing error In that case, you're probably not using the file you think you are. -- Cheers, Jeremy -- ## List details at https://lists.exim.org/mailman/li

Re: [exim] DKIM problem

2022-01-09 Thread Jeremy Harris via Exim-users
On 09/01/2022 23:04, Slawomir Dworaczek via Exim-users wrote: signing_init: privkey PEM-block import: error:0909006C:PEM routines:get_name:no start line DKIM: signing failed: PRIVKEY Start privkey key line is -BEGIN RSA PRIVATE KEY - My sample file has -BEGIN RSA PRIVATE KEY

Re: [exim] notifier_socket and Linux namespace issues

2022-01-09 Thread Jeremy Harris via Exim-users
On 09/01/2022 17:46, Richard Kettlewell via Exim-users wrote: Can anyone explain why Exim uses an abstract socket address on Linux for notifier_socket? Because we don't have to take care to delete it. It has some rather strange effects, because abstract sockets belong to the network namespa

Re: [exim] converting from debian package to source

2022-01-09 Thread Jeremy Harris via Exim-users
On 08/01/2022 18:30, Edwin Balani via Exim-users wrote: Can't you rely on OPENDMARC_LIB_VERSION?  It's defined in dmarc.h: Quite possibly. Now, is the changed API documented? Or are we supposed to inspect the libdmarc code and watch for API-breaking changes, evermore? And *guess* from the var

Re: [exim] converting from debian package to source

2022-01-08 Thread Jeremy Harris via Exim-users
On 08/01/2022 16:31, Slavko (tblt) via Exim-users wrote: new version of DMARC lib, which fails to build with exim The dmarc library project appears to have changed their API in a incompatible fashion. It's difficult to tell, because there is no visible documentation and no obvious way to disc

Re: [exim] converting from debian package to source

2022-01-08 Thread Jeremy Harris via Exim-users
On 08/01/2022 15:27, Julian Bradfield via Exim-users wrote: (Tainting is the main thing I'm aware of as a risk.) It's also a major benefit, because it shows up places in your config where you have coded in a manner vulnerable to attack. -- Cheers, Jeremy -- ## List details at https://lists.

Re: [exim] converting from debian package to source

2022-01-08 Thread Jeremy Harris via Exim-users
On 08/01/2022 15:27, Julian Bradfield via Exim-users wrote: I like things in the exim4 manual to work in my installation! The manuals for old releases are available on the Exim website. -- Cheers, Jeremy -- ## List details at https://lists.exim.org/mailman/listinfo/exim-users ## Exim details

Re: [exim] converting from debian package to source

2022-01-08 Thread Jeremy Harris via Exim-users
On 08/01/2022 14:07, Julian Bradfield via Exim-users wrote: I wonder if anybody on this list has done such a conversion recently, and would have time to share the chief gotchas they encountered. Not directly, but: ALWAYS read the ChangeNotes file when changing versions. It's there for good re

Re: [exim] Unix user / and group(s) of the process doing the SMTP delivery to a remot MTA?

2022-01-07 Thread Jeremy Harris via Exim-users
On 07/01/2022 16:23, Michael Naef via Exim-users wrote: However exim is unable to read the private key unless I make it world readable ... or you make it readable by the group exim runs as. Or the user exim runs as. -- Cheers, Jeremy -- ## List details at https://lists.exim.org/mailman/li

Re: [exim] acl_smtp_dkim called twice

2022-01-06 Thread Jeremy Harris via Exim-users
On 06/01/2022 15:38, Anton via Exim-users wrote: can identity check fail when domain check succeeded and vice versa? Since the signature is the same, selector is the same, etc. If the values are different in the header, the result can be different. -- Cheers, Jeremy -- ## List details at ht

Re: [exim] acl_smtp_dkim called twice

2022-01-06 Thread Jeremy Harris via Exim-users
On 05/01/2022 14:49, Anton via Exim-users wrote: is it an intended behavior and why? Does the dkim header have both d= and i= ? Assuming yes, it's up for argument whether de "domains" and "identities" should be deduplicated together or as separate classes. I does seem pointless for someone to

Re: [exim] problem with mails in queue while config changes routers

2021-12-29 Thread Jeremy Harris via Exim-users
On 29/12/2021 11:42, Cyborg via Exim-users wrote: Am 29.12.21 um 12:10 schrieb Jeremy Harris via Exim-users: Each delivery attempt (re)runs the routing (hence, changes in things like DNS will get picked up) and starts with a clean slate as far as cached lookup results goes. the "ro

Re: [exim] problem with mails in queue while config changes routers

2021-12-29 Thread Jeremy Harris via Exim-users
On 29/12/2021 10:46, Andrew C Aitchison via Exim-users wrote: (When) are lookups cached between delivery attempts ? They are not, absent deliberate placing of lookup results into variables (coded in the ACL config). Each delivery attempt (re)runs the routing (hence, changes in things like DNS

Re: [exim] problem with mails in queue while config changes routers

2021-12-29 Thread Jeremy Harris via Exim-users
On 29/12/2021 09:45, Cyborg via Exim-users wrote: It was about changing environments while in queue. There's two parts to this. 1) (The bit Evgeny spoke to): Once a message is frozen, that frozen state is on the message in the spool. The configuration is not relevant. 2) The Exim confi

Re: [exim] 15s delay after SMTP authentication

2021-12-23 Thread Jeremy Harris via Exim-users
On 23/12/2021 10:38, Leon Fellows via Exim-users wrote: Should I just post them here? Or should I better upload them to somewhere? Here is ok if you can edit it down to only the info for this message handling. Or, use a pastebin. But you'll be publishing valuable info to the world; you might pr

Re: [exim] 15s delay after SMTP authentication

2021-12-23 Thread Jeremy Harris via Exim-users
On 23/12/2021 08:16, Leon Fellows via Exim-users wrote: What could I do to better debug this? Add +pid to your log specifier. We want to know if the process running the delivery ("=>" line) is obviously closely associated with the one doing the acceptance ("<="). If it is, then we will need t

Re: [exim] Taint checker confusing error (blaming file but caused by later ldap lookup)

2021-12-22 Thread Jeremy Harris via Exim-users
On 22/12/2021 17:57, Michael Haardt via Exim-users wrote: Would it be possible to expand all strings when reading the configuration without causing side effects to check any attempt of using tainted data at start up? No. Variables are used for data which varies on a finer grain than "exim star

Re: [exim] Taint checker confusing error (blaming file but caused by later ldap lookup)

2021-12-22 Thread Jeremy Harris via Exim-users
On 22/12/2021 16:59, Michael Haardt via Exim-users wrote: Would it be feasible to replace the tainted bool with a bitfield, and have e.g. a file lookup only clear the bit for file operations and quote_ldap only clear the bit for ldap? It wouldn't mesh well with the current implementation, nor w

Re: [exim] Taint checker confusing error (blaming file but caused by later ldap lookup)

2021-12-22 Thread Jeremy Harris via Exim-users
On 22/12/2021 15:41, Michael Haardt via Exim-users wrote: Yes, for the ldap lookup here, quoting should be done. I agree. The question is how to proceed on this. domainlist d2 = ldap;ldap::///ou=mail,dc=do,dc=main?mailDomain?sub?mailDomain=$domain becomes domainlist d2 = ldap;ldap::///ou=

Re: [exim] Taint checker confusing error (blaming file but caused by later ldap lookup)

2021-12-22 Thread Jeremy Harris via Exim-users
On 22/12/2021 13:48, Michael Haardt via Exim-users wrote: LOCALDOM = /etc/exim4/localdomains domainlist d1 = @:localhost:LOCALDOM domainlist d2 = ldap;ldap::///ou=mail,dc=do,dc=main?mailDomain?sub?mailDomain=$domain domainlist local_domains = +d1 : +d2 Why would that not be tainted? The $doma

Re: [exim] Taint checker confusing error (blaming file but caused by later ldap lookup)

2021-12-22 Thread Jeremy Harris via Exim-users
On 22/12/2021 13:11, Michael Haardt via Exim-users wrote: Perhaps quote_ldap should return an untainted string? No, it does no real checking so would just be an easy thing to abuse. How would you do that? After all, originally it was introduced to prevent just that, so people need to know. O

Re: [exim] Taint checker confusing error (blaming file but caused by later ldap lookup)

2021-12-22 Thread Jeremy Harris via Exim-users
On 22/12/2021 12:52, Michael Haardt via Exim-users wrote: Perhaps quote_ldap should return an untainted string? No, it does no real checking so would just be an easy thing to abuse. -- Cheers, Jeremy -- ## List details at https://lists.exim.org/mailman/listinfo/exim-users ## Exim details at

Re: [exim] Taint checker confusing error (blaming file but caused by later ldap lookup)

2021-12-22 Thread Jeremy Harris via Exim-users
On 22/12/2021 12:31, Jeremy Harris via Exim-users wrote: On 22/12/2021 07:33, Christian Balzer via Exim-users wrote: LOCALDOM = /etc/exim4/localdomains domainlist local_domains = @:localhost:LOCALDOM:ldap;ldap::///ou=mail,dc=do,dc=main?mailDomain?sub?mailDomain=$domain I'm not sure wha

Re: [exim] Taint checker confusing error (blaming file but caused by later ldap lookup)

2021-12-22 Thread Jeremy Harris via Exim-users
On 22/12/2021 07:33, Christian Balzer via Exim-users wrote: LOCALDOM = /etc/exim4/localdomains domainlist local_domains = @:localhost:LOCALDOM:ldap;ldap::///ou=mail,dc=do,dc=main?mailDomain?sub?mailDomain=$domain Doh. Ignore my previous question; I'd misread. This issue here is that the use

Re: [exim] Taint checker confusing error (blaming file but caused by later ldap lookup)

2021-12-22 Thread Jeremy Harris via Exim-users
On 22/12/2021 07:33, Christian Balzer via Exim-users wrote: LOCALDOM = /etc/exim4/localdomains domainlist local_domains = @:localhost:LOCALDOM:ldap;ldap::///ou=mail,dc=do,dc=main?mailDomain?sub?mailDomain=$domain Could you use the ldap_default_servers option to specify the LDAP source, rather

Re: [exim] $local_part_data is empty

2021-12-20 Thread Jeremy Harris via Exim-users
On 20/12/2021 18:35, Leon Fellows via Exim-users wrote:   local_parts = lsearch;/etc/mail/domains/$domain_data But the $local_part_data is empty. If your file just has the word in it once, that is the key for a lookup returning the rest of the line... which is empty. Look at the definition

Re: [exim] Two nested 'dsearch' to avoid tainted data ?

2021-12-14 Thread Jeremy Harris via Exim-users
On 14/12/2021 12:58, Olaf Hopp (SCC) via Exim-users wrote: is there a more elegant solution ? If the router calling that transport, or some previous router in the chain preceding, happened to have done successful domain= and/or local_parts= tests, then the corresponding _data variables will be

Re: [exim] MS 365 "X-Matching-Connectors" header bounce error

2021-12-13 Thread Jeremy Harris via Exim-users
On 10/12/2021 08:46, Martin Fischer via Exim-users wrote: 2021-12-09 14:07:25 1mvK4y-007pOT-RQ **postmas...@.xxx R=dkim_lookuphost T=dkim_remote_smtp H=xx01b.mail.protection.outlook.com [104.47.17.138] X=TLS1.2:ECDHE-RSA-AES256-GCM-SHA384:256 CV=yes: SMTP error from remote mail ser ver

Re: [exim] How to see matched string?

2021-12-10 Thread Jeremy Harris via Exim-users
On 10/12/2021 20:45, MRob via Exim-users wrote: warn condition = ${if match{$h_Subject:}{\N(foo(bar))\N}} How can see the matched subgroups? warnset acl_m_mymatchedstring = ${if match{$h_Subject:}{\N(foo(bar))\N} {$1}} condition = ${if def:acl_m_mymatchedstring} logwrite =

Re: [exim] Config problem after upgrading to 4.94.2

2021-12-10 Thread Jeremy Harris via Exim-users
sql_user: driver = accept domains = +local_domains : +virtual_domains local_parts = lsearch; /etc/exim4/locale <--- hint01 ---> On 09/12/2021 19:16, Alexander Nagel via Exim-users wrote: There is only one line with my name.

Re: [exim] Forward router

2021-12-09 Thread Jeremy Harris via Exim-users
On 08/12/2021 15:05, Mauricio López via Exim-users wrote: I used to have an Exim forward configuration that allowed me to forward all messages with a 'reserved' username at any domain hosted in the server to a predefined account, (ie postmaster@[anydomain] to postmaster@serverdoma

Re: [exim] Question related to Exim4 documentation

2021-12-09 Thread Jeremy Harris via Exim-users
On 05/12/2021 18:21, Mcgiwer via Exim-users wrote: The question is related to the commands starting from the dot (like for example: .ifdef .. .endif, .include, etc.): 1. where could I find the documentation of it on the Exim4 documentation website? Start at http://exim.org/exim-html-curre

Re: [exim] Config problem after upgrading to 4.94.2

2021-12-09 Thread Jeremy Harris via Exim-users
On 09/12/2021 11:20, Alexander Nagel via Exim-users wrote: If you need more info, I'm happy to provide it. What is in the file, for the key you are looking up? -- Cheers, Jeremy -- ## List details at https://lists.exim.org/mailman/listinfo/exim-users ## Exim details at http://www.exim.org/ #

Re: [exim] Fail to connect and fail to arrive

2021-12-01 Thread Jeremy Harris via Exim-users
On 30/11/2021 22:02, Johnnie W Adams via Exim-users wrote: denymessage = Encrypted connection required - contact IT Services for assistance !encrypted= * condition = ${if ={$interface_port}{587}} In what ACL? I'm trying to configure scan-to-e

Re: [exim] base64 messages

2021-11-25 Thread Jeremy Harris via Exim-users
On 25/11/2021 15:47, Jim Pazarena via Exim-users wrote: when the entire content of a spam email message is in base64 , is there a variable available that has that content in decoded text so that a filter can view it ? Messages can be big. Exim does not directly give access to the body *in fu

Re: [exim] Outbound SMTP interface selection vs SMTP connection re-use

2021-11-21 Thread Jeremy Harris via Exim-users
On 19/11/2021 18:28, Paul Warren via Exim-users wrote: We have an SMTP transport which selects the outbound interface based on a  number of factors. We have noticed that if a mail is not delivered immediately, it is sometimes delivered as an additional message on an existing connection which ma

Re: [exim] Outbound SMTP interface selection vs SMTP connection re-use

2021-11-19 Thread Jeremy Harris via Exim-users
On 19/11/2021 18:28, Paul Warren via Exim-users wrote: We have noticed that if a mail is not delivered immediately, it is sometimes delivered as an additional message on an existing connection which may not be using the same interface. What version of Exim? What choices did the router make?

Re: [exim] message has lines too long for transport

2021-11-19 Thread Jeremy Harris via Exim-users
On 19/11/2021 05:58, Odhiambo Washington via Exim-users wrote: It would be great if such messages were rejected by default. The template config file includes ACL to do that, since 4.88 -- Cheers, Jeremy -- ## List details at https://lists.exim.org/mailman/listinfo/exim-users ## Exim details

Re: [exim] message has lines too long for transport

2021-11-19 Thread Jeremy Harris via Exim-users
On 19/11/2021 13:13, Odhiambo Washington via Exim-users wrote: Does the length check look at bytes or the number of characters? if ${length_1000:$h_References:} ?? The documentation does say. And why not use ${strlen } ? -- Cheers, Jeremy -- ## List details at https://lists.exim.org

Re: [exim] smtp_accept_max_per_host and sender_host_name

2021-11-19 Thread Jeremy Harris via Exim-users
On 19/11/2021 01:27, Wakko Warner via Exim-users wrote: When I try to use $sender_host_name, the first lookup works. All subsequent lookups return the the same as the first one. I'm guessing the name isn't cleared in the main process. Would this be a correct assumption? Yup. This looks like

Re: [exim] Exim always expands sender_rcvhost to unverified IP

2021-11-18 Thread Jeremy Harris via Exim-users
On 18/11/2021 23:05, Bill Cole via Exim-users wrote: Checks of the peer IP against a hostlist item which is a name will cause one, as will matching the host_lookup option or an explicit verify=reverse_host_lookup ACL condition. So, if none of that happens, what will the Received header look lik

Re: [exim] Exim always expands sender_rcvhost to unverified IP

2021-11-18 Thread Jeremy Harris via Exim-users
On 18/11/2021 19:10, Bill Cole via Exim-users wrote: Also welcome, short of a patch, would be clues about how to detect in an Exim-written Received header when a SMTP client IP has no rDNS or the rDNS name doesn't resolve to the client IP. It would be more reliable to interpret an Authenticat

Re: [exim] message has lines too long for transport

2021-11-18 Thread Jeremy Harris via Exim-users
On 18/11/2021 20:36, Odhiambo Washington via Exim-users wrote: Better solution is to fold this header (split over multiple lines). How do I achieve that with exim-4.95? Config option?? There's no builtin support in Exim. In fact, not all possible lines *can* be folded - you're only allow

Re: [exim] Argument Size Limit with "-be"

2021-11-18 Thread Jeremy Harris via Exim-users
On 18/11/2021 08:07, Nico Rittner via Exim-users wrote: how to use expansion strings with >256 characters with "-be" ? You cannot. -- Cheers, Jeremy -- ## List details at https://lists.exim.org/mailman/listinfo/exim-users ## Exim details at http://www.exim.org/ ## Please use the Wiki with th

Re: [exim] [Transport error]: message has lines too long for transport

2021-11-18 Thread Jeremy Harris via Exim-users
On 18/11/2021 10:35, Andrea Biscuola via Exim-users wrote: One week ago, we upgraded to exim 4.95 and suddenly, some customers (using microsoft outlook, nonetheless), started to experience the following error for *some* of their e-mails: message has lines too long for transport

Re: [exim] Exim always expands sender_rcvhost to unverified IP

2021-11-18 Thread Jeremy Harris via Exim-users
On 18/11/2021 14:53, Matt Corallo via Exim-users wrote: Received: from o13.mailer.shopify.com ([149.72.221.62]) by mail.as397444.net with esmtps TLS1.3 id 1mmjFb-0034Ki-02 (envelope-from ) for vmstfp...@mattcorallo.com; Mon, 15 Nov 2021 21:10:54 + Specifically, it seems Spam

Re: [exim] Return Matched Condition

2021-11-17 Thread Jeremy Harris via Exim-users
On 17/11/2021 17:13, Patrick Porteous via Exim-users wrote: If I'm running a filter file that looks for a string in the headers, is there a variable that stores the condition when it's matched? Not directly. If you write that "contains" as a regex for "matches" then the $ variable are set wit

Re: [exim] dovecot Authentication

2021-11-16 Thread Jeremy Harris via Exim-users
On 11/11/2021 18:14, Marc Bakos via Exim-users wrote: The error in the log I get is: "Taint mismatch, string_vformat: auth_dovecot_server 282". As Odihambo says, that's a shouldn't-happen error - indicating an internal Exim bug and not something you've done wrong in your config. What version o

Re: [exim] Exim4 delay at boot

2021-11-13 Thread Jeremy Harris via Exim-users
On 13/11/2021 21:18, JHM via Exim-users wrote: On 13 Nov 2021 at 16:35, Jeremy Harris via Exim-users wrote: On 13/11/2021 15:50, JHM via Exim-users wrote: IPv6 socket creation failed: Address family not supported by protocol Inferring that the system as a whole has no ipv6 support would be

Re: [exim] Exim4 delay at boot

2021-11-13 Thread Jeremy Harris via Exim-users
On 13/11/2021 15:50, JHM via Exim-users wrote: IPv6 socket creation failed: Address family not supported by protocol The trouble is that this error only tell us that this specific socket create failed. Inferring that the system as a whole has no ipv6 support would be a bit of a step. We could

Re: [exim] Sender verify and Null MX (localhost.)

2021-11-02 Thread Jeremy Harris via Exim-users
On 02/11/2021 20:29, Niels Kobschätzki via Exim-users wrote: ::1 in "0.0.0.0 : 127.0.0.0/8 : 192.168.0.0/16 : 10.0.0.0/8 : 172.16.0.0/12 : [::1/128]"? no (malformed IPv4 address or address mask) That test took an error. [::1/128] is not a valid address-list element. You either need 1 (i

Re: [exim] Exim-users Digest, Vol 209, Issue 29

2021-10-30 Thread Jeremy Harris via Exim-users
On 30/10/2021 16:02, John Stegenga via Exim-users wrote: what logs would you like to see? All of the logged information for one such problem message. Sorry I'm relatively inexperienced here, so thanks very much. When replying, please edit your Subject line so it is more specific than "Re:

Re: [exim] Certificate validation failed

2021-10-30 Thread Jeremy Harris via Exim-users
On 30/10/2021 11:56, Dominik Vogt via Exim-users wrote: No idea to what values of the upper case variables are in the first place. Are they defined at compile time; is there a way to look them up, other than from the Debian src package? They are macros, not variables. They will be defined som

Re: [exim] Certificate validation failed

2021-10-30 Thread Jeremy Harris via Exim-users
On 30/10/2021 00:01, Dominik Vogt via Exim-users wrote: Since the Devuan 3 to 4 upgrade, my Exim 4.94.2 installation has a problem with TLS certificates. The local exit is set up to relay outgoing mail that is sent by user X to server B and all other outgoing mail to server A. Both servers requ

Re: [exim] Hi Exim users - problem with hybrid exchange domain sending to exim.

2021-10-29 Thread Jeremy Harris via Exim-users
On 29/10/2021 20:14, John Stegenga via Exim-users wrote: Your advice and expertise is quite welcome! Your relevant log entries? His relevant log entries? You've given no useful information. -- Cheers, Jeremy -- ## List details at https://lists.exim.org/mailman/listinfo/exim-users ## Exim de

Re: [exim] How to determine 'acl_check_rcpt' failure point?

2021-10-26 Thread Jeremy Harris via Exim-users
On 26/10/2021 17:17, Marco Gaiarin via Exim-users wrote: require: condition test succeeded in ACL "acl_check_rcpt" processing "require" message: ${if >{$rcpt_fail_count}{0} {unrouteable address}{unknown user}} [...] require: condition test failed in ACL "acl_check_rcpt" SMTP>> 550 u

Re: [exim] Connection limiting in general and per host

2021-10-23 Thread Jeremy Harris via Exim-users
On 23/10/2021 02:58, AC via Exim-users wrote: I currently have smtp_accept_max_per_connection configured to reduce the number of connections bots can make to the server. The docs say "the number of MAIL commands that Exim is prepared to accept over a single SMTP connection" which is not what

Re: [exim] Difficulty compiling 4.95 on Debian 11

2021-10-22 Thread Jeremy Harris via Exim-users
On 22/10/2021 15:09, Joseph Kezar via Exim-users wrote: /usr/bin/ld: hash.c:(.text+0xb9): undefined reference to `EVP_sha3_256' That looks like an OpenSSL routine name. Check you have a consistent set of TLS-related definitions in your Local/Makefile, and do a "make distclean". -- Cheers, Je

Re: [exim] Exim system_filter question

2021-10-19 Thread Jeremy Harris via Exim-users
On 17/10/2021 18:15, Sherin A via Exim-users wrote:  Is it possible to add multiple system_filter files in exim like system_filter = /etc/my.filter : /etc/your.filter I mean it is possible to include multiple system filters for exim as global files. Any help will be appreciated. No. -- Chee

Re: [exim] dnslists - netmask or wildcard

2021-10-18 Thread Jeremy Harris via Exim-users
On 18/10/2021 09:46, Nick Rickard via Exim-users wrote: I'd like to have the equivalent of '127.0.0.0/24' or '127.0.0.*' as accepted  matches. Does dnslists =abcdef.sbl.dq.spamhaus.net condition = ${if match_ip ($dnslist_value) {127.0.0.0/24}} do what you need? -- Cheers, Jeremy -

Re: [exim] PIPE_CONNECT

2021-10-16 Thread Jeremy Harris via Exim-users
On 16/10/2021 10:08, Simon Josefsson via Exim-users wrote: Dovecot SMTP submission agent complains about Exim's PIPE_CONNECT: Oct 16 10:32:32 pippi dovecot: submission(simon)<111236><8poyJ3TOeNEgAQmxQaz/ANGknOU4qRZw>: Warning: smtp-client: conn pippi.sjd.se:25 (127.0.1.1:25) [1]: Received inva

Re: [exim] exim.org still incorrectly configured

2021-10-16 Thread Jeremy Harris via Exim-users
On 16/10/2021 17:56, Slavko via Exim-users wrote: And BTW, i see significant delay between i send message to ML and get it back (>1 hour). That's not just you. We're running a fair-size backlog at present. -- Cheers, Jeremy -- ## List details at https://lists.exim.org/mailman/listinfo/exim-

Re: [exim] How to use DKIM with Ed25519 - Dual DKIM signing

2021-10-14 Thread Jeremy Harris via Exim-users
On 14/10/2021 12:12, Odhiambo Washington via Exim-users wrote: In the section where it discusses the "Transition period considerations" Strangely enough, the Exim docs says pretty much the same. -- Cheers, Jeremy -- ## List details at https://lists.exim.org/mailman/listinfo/exim-users ## Ex

Re: [exim] 4.95-RC0 - SIGSEGV (maybe attempt to write to immutable memory) & other oddities

2021-10-10 Thread Jeremy Harris via Exim-users
On 09/10/2021 23:25, Oliver Heesakkers via Exim-users wrote: I've done some more testing and have been reliably able to reproduce the problem. The problem always occurs (in my test setup) when I have av_scanner set up to a clamd TCP socket, regardless whether it's local (127.0.01), remote,  IPv

Re: [exim] Segfaults with 4.95 (Re: Exim 4.95-RC2 released)

2021-10-08 Thread Jeremy Harris via Exim-users
On 08/10/2021 23:40, Evgeniy Berdnikov via Exim-users wrote: # for s in "validity" "algorithm" "notBefore" "serialNumber" "rdnSequence" "tbsCertificate" "utcTime" ; do echo -n "$s: " ; strings core.1400692 | grep -c "^$s\$" ; done validity: 634 algorithm: 3661 notBefore: 633 serialNumber: 524 rd

Re: [exim] 4.95-RC0 - SIGSEGV (maybe attempt to write to immutable memory) & other oddities

2021-10-08 Thread Jeremy Harris via Exim-users
On 08/10/2021 15:42, Andrew Colin Kissa via Exim-users wrote: I am seeing this intermittently on a Linux system not FreeBSD. That is very useful info; thanks. I am willing to test this, any pointers on getting the info you want to determine the cause ? Enable coredumps for suid processes, p

Re: [exim] 4.95-RC0 - SIGSEGV (maybe attempt to write to immutable memory) & other oddities

2021-10-07 Thread Jeremy Harris via Exim-users
On 07/10/2021 08:49, Odhiambo Washington wrote: That developer seems to have missed that, apparently, Exim catches the signal SIGSEGV, which means that signal will never cause a coredump. Wrong, right, and wrong (in that order). If "that developer" is supposed to mean me, I'd point out that th

Re: [exim] TLS problems with 4.95 under arch linux

2021-10-06 Thread Jeremy Harris via Exim-users
On 05/10/2021 13:03, Torsten Luettgert via Exim-users wrote: the exim process prints "free(): invalid pointer". That implies it will try to coredump, I think. Can you do whatever magic Arch needs for coredumps from suid programs, compile a version with "-O0 -g" (or -ggdb), get a coredump, a

Re: [exim] bad memory allocation requested (2147483632 bytes) at string_catn 1163

2021-10-05 Thread Jeremy Harris via Exim-users
On 05/10/2021 17:35, Cyborg via Exim-users wrote: Am 05.10.21 um 15:17 schrieb Laura Williamson via Exim-users: Hi Getting this error with 4.95, does not happen with 4.94.2, any idea? Best That's 2 GB of Memory or  in 32 Bit 0x7FFF aka a signed int. I make it 2^31 - 16 - certainly a r

Re: [exim] Exim.conf and tainted data

2021-10-05 Thread Jeremy Harris via Exim-users
On 01/10/2021 18:34, Matthew Daubenspeck via Exim-users wrote: local_aliases: driver = redirect allow_defer allow_fail domains = lsearch;/etc/exim/config/local.domains data = ${lookup{$local_part}lsearch{/etc/exim/config/$domain/local.aliases}} $domain contains tainted data

Re: [exim] DKIM: error message improvement

2021-10-04 Thread Jeremy Harris via Exim-users
On 04/10/2021 16:35, Cyborg via Exim-users wrote: Fedora 33 4.92.2-1 Assuming that's based on the project exim-4.92.2 release, it's 2 years old. There are some 30 commits mentioning DKIM between 4.92 and 4.95. However, I don't find either "rejected DKIM" or "with invalid" in the current sourc

Re: [exim] DKIM: error message improvement

2021-10-04 Thread Jeremy Harris via Exim-users
On 04/10/2021 15:10, Cyborg via Exim-users wrote: while investigating a DKIM problem, this messages was found: Distro? Version? -- Cheers, Jeremy -- ## List details at https://lists.exim.org/mailman/listinfo/exim-users ## Exim details at http://www.exim.org/ ## Please use the Wiki with thi

Re: [exim] 4.95-RC0 - SIGSEGV (maybe attempt to write to immutable memory) & other oddities

2021-10-03 Thread Jeremy Harris via Exim-users
On 03/10/2021 11:44, Oliver Heesakkers via Exim-users wrote: Before I go crazy with all the debug-options, were you (or anyone else in this thread) ever able to determine the cause of these SIGSEGVs? Nothing that was said here on the ML, at least. I repeat my previous request: if there's a

Re: [exim] Exim 4.95 released

2021-10-01 Thread Jeremy Harris via Exim-users
On 28/09/2021 23:41, Viktor Dukhovni via Exim-users wrote: - fast-ramp queue run - native SRS - TLS resumption I'd like to ask, if I may, how TLS resumption interacts with DANE or other authenticated TLS policy, assuming potential earlier unauthenticated TLS connections to the same IP:

Re: [exim] Error message received when attempting exim4 restart w/spamd_address variant

2021-10-01 Thread Jeremy Harris via Exim-users
On 01/10/2021 06:00, s.xx.david--- via Exim-users wrote: I assume this means the debian packages_were_ compiled with WITH_CONTENT_SCAN on!? exim -bV | grep Content_Scanning will tell you that. If I merely change it to add the 11333 variant=rspamd, exim4 fails to restart Try manually runni

Re: [exim] Exim 4.95 released

2021-09-30 Thread Jeremy Harris via Exim-users
On 30/09/2021 15:43, Sabahattin Gucukoglu via Exim-users wrote: On 28 Sep 2021, at 22:19, Heiko Schlittermann via Exim-users wrote: - Removed: - support for MacOS This makes me sad. Was there any particular reason? Nobody was maintaining the sole resgression-testing system, and despite

Re: [exim] help with if-then conditional logic

2021-09-29 Thread Jeremy Harris via Exim-users
On 29/09/2021 16:07, Jeremy Harris via Exim-users wrote: condition = ${if def:varA} condition = ${if def:varB} condition = ${if != {$varA}{$varB}} Wups. Use !eq rather than != if the values are strings rather than numbers. -- Cheers, Jeremy -- ## List details at https://lists.exim.org

Re: [exim] help with if-then conditional logic

2021-09-29 Thread Jeremy Harris via Exim-users
On 28/09/2021 17:01, v via Exim-users wrote: I'm trying to add a condition to an ACL that would say: if $varA is-not-blank and $varB is-not-blank and $varA not equal $varB condition = ${if def:varA} condition = ${if def:varB} condition = ${if != {$varA}{$varB}} That's it. There's an implic

Re: [exim] Assistance with Rate Limiting

2021-09-23 Thread Jeremy Harris via Exim-users
On 23/09/2021 04:26, Eric Schoeller via Exim-users wrote: So 'connection_max_messages' , 'max_rcpt' and 'max_parallel' can all be placed under the 'remote_smtp_smarthost' and 'remote_smtp' transport sections, correct? They are transport options. See the definitions in the manual as to where t

Re: [exim] changing envelope from within an user filter

2021-09-20 Thread Jeremy Harris via Exim-users
On 20/09/2021 17:05, Andreas Barth via Exim-users wrote: I'd like to take the decision in an filter script, and not within the main configuration file. Is there a way to achive that? Nothing that comes to mind is particularly convenient. I'd suggest that you can probably do anything you want

Re: [exim] changing envelope from within an user filter

2021-09-20 Thread Jeremy Harris via Exim-users
On 18/09/2021 11:17, Andreas Barth via Exim-users wrote: What would be the most appropriate way to set the envelope from address in this situation Does the return_path transport option do what you need? -- Cheers, Jeremy -- ## List details at https://lists.exim.org/mailman/listinfo/exim-use

Re: [exim] Question regarding TLS SNI Certificates

2021-09-16 Thread Jeremy Harris via Exim-users
On 16/09/2021 13:54, Sherin A via Exim-users wrote:     Lets encrypt ssl certificate = /etc/letsencrypt/live/foo.com/fullchain.pem     Lets encrypt ssl key  = /etc/letsencrypt/live/foo.com/privkey.pem     Commercial ssl certificate = /var/panel/userdata/foouser/ssl/foo.com-combined.pem     C

Re: [exim] Assistance with Rate Limiting

2021-09-16 Thread Jeremy Harris via Exim-users
On 13/09/2021 05:20, Eric Schoeller via Exim-users wrote: 10 messages per connection connection_max_messages transport option 100 recipients per message max_rcpt transport option 10 concurrent connections per IP max_parallel transport option 3600 recipients per hour per host 3600 reci

Re: [exim] Regarding handling suspened email accounts

2021-09-16 Thread Jeremy Harris via Exim-users
On 16/09/2021 12:18, Cyborg via Exim-users wrote: Do a debug run and check, if it's really used: exim -d externaldomaint...@mydomain.com < /tmp/mail.fail use the suspended address, fake a mail to that address and watch the routers list to be processed. You can see, if the condition you created

Re: [exim] Dumb question (was: Encrypted SSL connection to remote PostgreSQL cluster)

2021-09-16 Thread Jeremy Harris via Exim-users
On 14/09/2021 18:50, Patrick via Exim-users wrote: should I start a new thread with my findings? This. -- Cheers, Jeremy -- ## List details at https://lists.exim.org/mailman/listinfo/exim-users ## Exim details at http://www.exim.org/ ## Please use the Wiki with this list - http://wiki.exim.o

Re: [exim] Logging of redirect router in mainlog

2021-09-13 Thread Jeremy Harris via Exim-users
On 13/09/2021 18:19, Patrick Boutilier via Exim-users wrote: Accept routers log to mainlog with R= , such as: 2021-09-13 14:05:02 1mPpOA-0007aw-AX => test R=mysql_autorespond_staff T=address_mysql This is the delivery that is being logged, and the R= there is the (last) router; the one that

Re: [exim] Encrypted SSL connection to remote PostgreSQL cluster

2021-09-10 Thread Jeremy Harris via Exim-users
On 10/09/2021 09:13, Jeremy Harris via Exim-users wrote: On 10/09/2021 01:31, Patrick via Exim-users wrote: Before I spend too much time trying to figure this out, is it possible to configure my PostgreSQL connection to use passwordless certificate based authentication? Nope.  We're

Re: [exim] Encrypted SSL connection to remote PostgreSQL cluster

2021-09-10 Thread Jeremy Harris via Exim-users
On 10/09/2021 01:31, Patrick via Exim-users wrote: Before I spend too much time trying to figure this out, is it possible to configure my PostgreSQL connection to use passwordless certificate based authentication? Nope. We're using what seems to be an older API for the client-connection whic

Re: [exim] [exim-announce] Exim 4.95-RC2 released

2021-09-08 Thread Jeremy Harris via Exim-users
On 08/09/2021 10:14, David Restall via Exim-users wrote: Granted (I did allude to this in the email) but what actually is the problem that it is masking ? The problem arises from a program of constification of the Exim source. That is, using the 'C' const qualifer to mark up variables that we t

<    1   2   3   4   5   6   7   8   9   10   >