Scenario:
^test@$primary_hostname "$h_from:"Ffs
^test@$primary_hostname "" Ffs
First rule in some cases will return "yielded unparseable address:
empty address in address" which is fine and expected.
But exim will stop rewritting in such case. It won't go to next
Hi,
Check the mysql_smtp_login part. That account might have been
compromised, change the password asap imho. You may also notify your
users to periodically change their password and keep their emailing
devices up-to-date.
Andras
2016-07-13 06:07 időpontban Flan AlFlani ezt írta:
My log
> My log is flooded with those spam attemps and I wonder if there is a
> ACL can stop those attemps.
If these are compromised accounts that are leading to you being used
to send/relay spam to other people, you should look at submission
ratelimits. A typical acl_smtp_rcpt ACL stanza might be:
Hello,
I don't see anything really surprising. If mails sent by
faisal.alaz...@aldimna.com are spam, then his account may have been
compromised or he might have some malware on his computer.
If you are talking about mails sent to yhk...@tm.net.my, you will need
to check from where they are sent
Hi,
Could you post your acl's?
Best Regards.
> Оригинално писмо
>От: Flan AlFlani solo9...@hotmail.com
>Относно: Re: [exim] Exim server maillog are flood by spam attemps?
>До: kuncho pencho
>Изпратено на: 13.07.2016 15:52
.abv-omExternalClass P {
Hi,
Do you use any blacklist? If not, make it. Something like that:
https://www.tekovic.com/exim-acl-for-blocking-certain-senders
Best Regards.
> Оригинално писмо
>От: Flan AlFlani solo9...@hotmail.com
>Относно: [exim] Exim server maillog are flood by spam
My log is flooded with those spam attemps and I wonder if there is a ACL can
stop those attemps.
maillog (this is just a sample, my log will be over a 1000 line in an hour)
2016-07-09 22:00:32 [2252] 1bM4ys-aK-QP
H=192-159-50-175.oolw.qwirelessbb.net (avovj.com) [192.159.50.175]:41053