[exim] address rewritting when "yielded unparseable address: empty address in address" happens

2016-07-13 Thread Arkadiusz Miśkiewicz
Scenario: ^test@$primary_hostname "$h_from:"Ffs ^test@$primary_hostname "" Ffs First rule in some cases will return "yielded unparseable address: empty address in address" which is fine and expected. But exim will stop rewritting in such case. It won't go to next

Re: [exim] Exim server maillog are flood by spam attemps?

2016-07-13 Thread Gót András
Hi, Check the mysql_smtp_login part. That account might have been compromised, change the password asap imho. You may also notify your users to periodically change their password and keep their emailing devices up-to-date. Andras 2016-07-13 06:07 időpontban Flan AlFlani ezt írta: My log

Re: [exim] Exim server maillog are flood by spam attemps?

2016-07-13 Thread Chris Siebenmann
> My log is flooded with those spam attemps and I wonder if there is a > ACL can stop those attemps. If these are compromised accounts that are leading to you being used to send/relay spam to other people, you should look at submission ratelimits. A typical acl_smtp_rcpt ACL stanza might be:

Re: [exim] Exim server maillog are flood by spam attemps?

2016-07-13 Thread Renaud Allard
Hello, I don't see anything really surprising. If mails sent by faisal.alaz...@aldimna.com are spam, then his account may have been compromised or he might have some malware on his computer. If you are talking about mails sent to yhk...@tm.net.my, you will need to check from where they are sent

Re: [exim] Exim server maillog are flood by spam attemps?

2016-07-13 Thread kuncho pencho
Hi, Could you post your acl's? Best Regards. > Оригинално писмо >От: Flan AlFlani solo9...@hotmail.com >Относно: Re: [exim] Exim server maillog are flood by spam attemps? >До: kuncho pencho >Изпратено на: 13.07.2016 15:52 .abv-omExternalClass P {

Re: [exim] Exim server maillog are flood by spam attemps?

2016-07-13 Thread kuncho pencho
Hi, Do you use any blacklist? If not, make it. Something like that: https://www.tekovic.com/exim-acl-for-blocking-certain-senders Best Regards. > Оригинално писмо >От: Flan AlFlani solo9...@hotmail.com >Относно: [exim] Exim server maillog are flood by spam

[exim] Exim server maillog are flood by spam attemps?

2016-07-13 Thread Flan AlFlani
My log is flooded with those spam attemps and I wonder if there is a ACL can stop those attemps. maillog (this is just a sample, my log will be over a 1000 line in an hour) 2016-07-09 22:00:32 [2252] 1bM4ys-aK-QP H=192-159-50-175.oolw.qwirelessbb.net (avovj.com) [192.159.50.175]:41053