On 25/04/2023 09:59, mouse via Exim-users wrote:
My question is - is there any way to just pass e-mail through modifing script *without
re-injecting* email via "command = ..."?
Do your changes in ACL code, using Exim facilities rather than
an external script.
--
Cheers,
Jeremy
--
## List
On 21/04/2023 13:13, Slavko via Exim-users wrote:
it can
be related to per_addr option
per_addr can only be used in the rcpt acl.
You'd possibly be able to just use count=1,
if this was and event raised once per thing
you want counted.
--
Cheers,
Jeremy
--
## List details at https://lists.e
On 21/04/2023 06:55, Slavko via Exim-users wrote:
Did i something wrong?
Would need the actual error message to guess.
--
Cheers,
Jeremy
--
## List details at https://lists.exim.org/mailman/listinfo/exim-users
## Exim details at http://www.exim.org/
## Please use the Wiki with this list - h
On 20/04/2023 16:21, Ian Z via Exim-users wrote:
I was not sure I was interpreting the expression "current ACL" correctly.
Things like warn and deny are what, ACL rules?
Verbs. See
https://exim.org/exim-html-current/doc/html/spec_html/ch-access_control_lists.html
section 18.
For hunting abou
On 20/04/2023 15:47, Lance Lovette via Exim-users wrote:
Does Exim have a mechanism to invoke a script with rejected messages
We already told you no.
--
Cheers,
Jeremy
--
## List details at https://lists.exim.org/mailman/listinfo/exim-users
## Exim details at http://www.exim.org/
## Please
On 19/04/2023 16:24, Ian Z via Exim-users wrote:
First, does this mean that here nothing will be logged:
acl_check_rcpt:
warn log_reject_target =
deny condition = true
I've not tried that, but at first sight yes.
Why are you asking?
Second, what about nested ACLs? Both with th
As a side-note,
On 18/04/2023 20:08, Lance Lovette via Exim-users wrote:
smtp_mailgun:
[...]]
hosts_require_auth = <; $host_address
hosts_require_tls = <; $host_address
Just using * for those two would have the same effect,
and save work.
--
Cheers,
Jeremy
--
## List d
On 20/04/2023 06:18, Jasen Betts via Exim-users wrote:
On 2023-04-18, Lance Lovette via Exim-users wrote:
This is a name mismatch: mailgun.org != mailgun.com.
Perhaps it's time for a larger font size :) I will put on my dunce cap and
go sit in the corner. But shame on Mailgun for responding t
On 18/04/2023 22:39, Evgeniy Berdnikov via Exim-users wrote:
mailgun.org != mailgun.com.
Good eyes!
--
Cheers,
Jeremy
--
## List details at https://lists.exim.org/mailman/listinfo/exim-users
## Exim details at http://www.exim.org/
## Please use the Wiki with this list - http://wiki.exim.o
On 18/04/2023 22:03, Lance Lovette via Exim-users wrote:
Exim version 4.95
X509v3 Subject Alternative Name:
DNS:*.mailgun.org, DNS:mailgun.org
[34.160.13.42] SSL verify error: certificate name mismatch:
DN="/C=US/ST=Texas/L=San Antonio/O=MAILGUN TECHNOLOGIES, I
On 18/04/2023 20:08, Lance Lovette via Exim-users wrote:
SSL verify error: certificate name mismatch: DN="/C=US/ST=Texas/L=San
Antonio/O=MAILGUN TECHNOLOGIES, INC/CN=*.mailgun.org" H="smtp.mailgun.com"
Check to see if that cert had any SANs.
The current source has the name-check only using
On 17/04/2023 14:08, Bill Cole via Exim-users wrote:
There's a rational basis for an exception for 5xx before MAIL FROM, when the
target only has the connection parameters and HELO name to use as a basis for
rejection. Re-routing via a fallback path isn't entirely unjustifiable in that
case, a
The documentation does answer these questions. Was some of it unclear?
--
Cheers,
Jeremy
--
## List details at https://lists.exim.org/mailman/listinfo/exim-users
## Exim details at http://www.exim.org/
## Please use the Wiki with this list - http://wiki.exim.org/
On 17/04/2023 02:01, Lance Lovette via Exim-users wrote:
How might I configure my routers to ignore an initial 5xx response from the
first router and attempt another (and maybe future) deliveries through an
alternate router?
You can't. A permenent error response for a message is definitive.
--
On 16/04/2023 19:17, Sebastian Arcus via Exim-users wrote:
relay_to_compan1:
driver = manualroute
domains = company1.com
route_list = company1.com 192.168.100.10
transport = remote_relay_company1
host_find_failed = defer
relay_to_compan2:
driver = manualroute
domains = comp
On 16/04/2023 19:35, Lance Lovette via Exim-users wrote:
That would be helpful. Can you point me to a reference?
https://exim.org/exim-html-current/doc/html/spec_html/ch-main_configuration.html#SECTalomo
--
Cheers,
Jeremy
--
## List details at https://lists.exim.org/mailman/listinfo/exim-use
On 16/04/2023 17:52, Lance Lovette wrote:
My goal is to have a single configuration file that can run across
different environments (dev/stage/live.)
I'm not seeing why the default of the "uname" result, used
if you don't set this option, is not sufficient in that case.
FWIW, the readfile ass
On 15/04/2023 23:31, Sebastian Arcus via Exim-users wrote:
you might be able to use cutthrough delivery from the front-end to the
real server, which might allow you to reject rather than bounce some of the
time; it might even help with your SPF dilemma ?
That was my intention - so that the ba
On 15/04/2023 18:01, Sebastian Arcus via Exim-users wrote:
I think I would have to run Spamassassin on the "proxy" Exim, as otherwise the
IP address of the proxy will be added to the headers during the delivery/relay process,
and will probably break the SPF checks in Spamassassin on the final E
On 15/04/2023 19:36, Lance Lovette via Exim-users wrote:
But I need primary_hostname to be dynamic, say read from a file.
primary_hostname = ${readfile{/etc/mailname}{}}
You can't do that; the primary_hostname option does not
expand it's argument.
Could you explain your need further? Wh
On 15/04/2023 13:53, Jeremy Harris via Exim-users wrote:
Exim does talk the inbound-proxy protocol tha HAProxy apparently uses (or can
use):
https://exim.org/exim-html-current/doc/html/spec_html/ch-proxies.html#SECTproxyInbound
Thinking further, this (HAProxy with Proxy-protocol as a
On 15/04/2023 12:53, Sebastian Arcus via Exim-users wrote:
I have a number of Exim servers behind a NAT gateway (actually connected with
vpn's to a cloud vps - but I'm hoping this is not relevant to this post). I
would like the gateway to send incoming port 25 traffic to the correct Exim
serve
On 14/04/2023 04:03, Peter via Exim-users wrote:
The result from
exim -d+all+noutf8 -odf petereasth...@gmail.com &1 | tee ~/NY/ex1
| less
is in
http://easthope.ca/ex1 .
17:31:09 8486 easthope.ca in "imager.hitronhub.home"? no (end of list)
That is to determine whether the destination is local
On 13/04/2023 23:24, Martin D Kealey via Exim-users wrote:
On Thu, 13 Apr 2023 at 19:36, Slavko wrote in
exim-users@exim.org:
Dňa 12. apríla 2023 16:50:29 UTC používateľ MRob via Exim-users <
exim-users@exim.org> napísal:
Hi, I have a variable to extract the email address in from header set
On 13/04/2023 09:54, Victor Ustugov via Exim-users wrote:
I'm not talking about what should be encoded, but about what can be
received in a real email from a spammer, some kind of script or
something like that.
A mail sender could send you *anything*.
--
Cheers,
Jeremy
--
## List details at
On 12/04/2023 18:51, Peter via Exim-users wrote:
It has these lines.
08:33:42 4098 /considering:
${lookup{$host}nwildlsearch{/etc/exim4/passwd.client}{$host_address}}}{} }
we're doing a string expansion, which will request a lookup...
08:33:42 4098/considering:
$host}nwildlsearch{/
On 12/04/2023 17:50, MRob via Exim-users wrote:
Hi, I have a variable to extract the email address in from header set like this:
${lc:${address:$h_From:}}
But it comes out blank(empty) given a "from" header like this one:
From: =?utf-8?Q?My=20Bizness=2C=20Inc.?=
I think thats a valid header?
On 11/04/2023 23:50, Peter via Exim-users wrote:
From: Graeme Fowler via Exim-users
Date: Tue, 11 Apr 2023 18:44:22 +0100
From
https://www.exim.org/exim-html-current/doc/html/spec_html/ch-encrypted_smtp_connections_using_tlsssl.html
(sec 10):
"... setting hosts_avoid_tls (an option of t
On 11/04/2023 17:43, Peter via Exim-users wrote:
Hello again,
In absence of progress to have exim apply TLS-on-connect to server port
465 I'm trying non-TLS to port 587 as a simpler first objective. =8~/
Configuration specifications of the server are here.
https://islandhosting.com/knowledgeba
On 11/04/2023 07:44, Slavko via Exim-users wrote:
The only downside with exim is, that this split (as implemented
in debian) is not directly supported by exim, and one have to
reload exim even to test it, but on other side, at least i do not
forget to reload it after changes ;-)
Possible wishli
On 09/04/2023 17:58, David Siebörger via Exim-users wrote:
The default settings for CC and USE_DB for FreeBSD seem to be out-of-date.
I'd like to hear from the FreeBSD package maintainer their preferences,
even though you're talking about the upstream git.
Folding back any patches FreeBSD is c
On 08/04/2023 23:35, Peter via Exim-users wrote:
(1) The man page shows option -f without explanation. How is it used?
It has no effect, though it is parsed and is not an error.
Despite the author's note on that manpage (at least in the Ubunto
online one I found) the source must have been gla
On 08/04/2023 19:16, Peter via Exim-users wrote:
Appears the log I have now is complete; the last line has "terminating
with rc=0". Rather than clutter the mailing list with mostly
insignificant data I put it here. http://easthope.ca/eximdebug.txt
Somewhere along the way the UTF-8 in that got
On 06/04/2023 19:53, Jeremy Harris via Exim-users wrote:
On 05/04/2023 17:49, Peter via Exim-users wrote:
19:40:02 9597 TFO mode sendto, no data: EINPROGRESS
19:40:02 9597 connected
19:40:02 9597 ╭considering: $primary_hostname
19:40:02 9597 ├──expanding: $primary_hostname
19:40:02
On 05/04/2023 17:49, Peter via Exim-users wrote:
19:40:02 9597 TFO mode sendto, no data: EINPROGRESS
19:40:02 9597 connected
19:40:02 9597 ╭considering: $primary_hostname
19:40:02 9597 ├──expanding: $primary_hostname
19:40:02 9597 ╰─result: dalton.invalid
Something tells me you di
On 06/04/2023 18:30, Peter via Exim-users wrote:
I should refrain from attempting to send messages as root. Should
submit as ordinary user. Correct?
Nope.
The "don't run as root" thing doesn't affect deliveries done
via smtp, only deliveries to file. Deliveries to file have
to be done as the
On 06/04/2023 17:28, Peter via Exim-users wrote:
What is the reality?
"Delivery" meaning the specific phase of a message going outward from
exim, as opposed to being accepted by exim.
--
Cheers,
Jeremy
--
## List details at https://lists.exim.org/mailman/listinfo/exim-users
## Exim details
On 01/04/2023 16:22, Peter via Exim-users wrote:
Nevertheless, the connection fails. Any tip about diagnosis may help.
Exim has a debug mode. Most commonly triggered from a commandline option.
It is documented in the Exim docs, and possibly (I've not checked
a Debian system) the manpage for e
On 31/03/2023 20:28, Evgeniy Berdnikov via Exim-users wrote:
while $auth1 should always be null string for PLAIN.
Wups, not for the dovecot driver.
You're thinking of the plaintext driver.
--
Cheers,
Jeremy
--
## List details at https://lists.exim.org/mailman/listinfo/exim-users
## Exim det
On 31/03/2023 16:36, Peter via Exim-users wrote:
submissions 465/tcp ssmtp smtps urd # Submission over TLS [RFC8314]
Should a line beginning smtps be added? Eg.
smtps 465/tcp ...
Not needed. The "smtps" values for the exim smtp transport driver
is a keyword, not a reference look
On 31/03/2023 16:15, Evgeniy Berdnikov via Exim-users wrote:
.ifdef REMOTE_SMTP_SMARTHOST_PROTOCOL
protocol = REMOTE_SMTP_SMARTHOST_PROTOCOL
.endif
Doesn't that imply the wizard has a question that sets that?
--
Cheers,
Jeremy
--
## List details at https://lists.exim.org/mailman/listinfo
On 30/03/2023 13:58, Dzmitry Shykuts via Exim-users wrote:
I'm trying to deny users successful authentication if they connect not from the
internal network but from the Internet. At the same time, I have a file with
exception users.
server_condition is used to deny authentication. At the same
On 30/03/2023 20:00, Peter via Exim-users wrote:
Debian 11 here with exim4 4.94.2-7.
Debian has a configuration wizard. In what respect is
not offering what you need?
--
Cheers,
Jeremy
--
## List details at https://lists.exim.org/mailman/listinfo/exim-users
## Exim details at http://www.ex
On 30/03/2023 13:58, Dzmitry Shykuts via Exim-users wrote:
I have a file with exception users
But the server_advertise_condition wants an emtpty/nonempty string,
and you appear to be handing it a filename.
--
Cheers,
Jeremy
--
## List details at https://lists.exim.org/mailman/listinfo/exim-
On 31/03/2023 07:51, Niels Kobschätzki via Exim-users wrote:
What am I doing wrong? I thought that nwildlsearch can use wildcards and
* and .* are wildcards to me.
https://exim.org/exim-html-current/doc/html/spec_html/ch-file_and_database_lookups.html#SECTsinglekeylookups
--
Cheers,
Jeremy
On 29/03/2023 17:59, Viktor Dukhovni via Exim-users wrote:
It is (at least in Postfix) also possible
Please note that this mailing list is not focussed on Postfix.
--
Cheers,
Jeremy
--
## List details at https://lists.exim.org/mailman/listinfo/exim-users
## Exim details at http://www.exim.o
On 29/03/2023 10:40, Slavko via Exim-users wrote:
Dňa 29. 3. o 10:56 Olaf Hopp (SCC) via Exim-users napísal(a):
decided still to live with 2 pairs of routers and transports
and keep in mind, when I change one of them, I have to change the other one as
well.
And what about include common tran
On 24/03/2023 14:45, Olaf Hopp (SCC) via Exim-users wrote:
Am I missing something ?
The behaviour defined in the docs does not cover your use.
The actual implementation, and behaviour, could change underneath you.
--
Cheers,
Jeremy
--
## List details at https://lists.exim.org/mailman/listin
On 24/03/2023 12:28, Olaf Hopp (SCC) via Exim-users wrote:
Do you think "multi_domain = false" is not worth for trying ?
Corrrect.
--
Cheers,
Jeremy
--
## List details at https://lists.exim.org/mailman/listinfo/exim-users
## Exim details at http://www.exim.org/
## Please use the Wiki with th
On 23/03/2023 16:01, Jeremy Harris via Exim-users wrote:
allsmtp:
driver = smtp
hosts_require_tls = ${if match_domain{$domain}{+domainlist-with-TLS-Domains}
{*}{}}
multi_domain = false
Actually, better have
max_rcpt = 1
rather than the multi_domain; I'm not certain that th
On 23/03/2023 15:30, Olaf Hopp (SCC) via Exim-users wrote:
router_A:
domains: +domainlist-with-TLS-Domains
transport: tlssmtp
router_B:
domains: *
transport: smtp
tlssmtp:
hosts_require_tls = *
driver = smtp
smtp:
driver smtp
in reality two routers and transp
On 20/03/2023 15:14, Odhiambo Washington via Exim-users wrote:
What mod do I need to make on it?
Quote it. Like you already are for $sender_helo_name.
--
Cheers,
Jeremy
--
## List details at https://lists.exim.org/mailman/listinfo/exim-users
## Exim details at http://www.exim.org/
## Pleas
On 19/03/2023 17:42, Ian Z via Exim-users wrote:
X-Original-Foo: the-ur-foo
Foo: the-no-longer-ur-foo
I am not thinking of a header with addresses here, so Exim's rewrite
mechanism doesn't apply. Is there a "best" or "accepted" way to do
this? In particular, can I do this in an ACL:
ad
On 19/03/2023 17:22, Ian Z via Exim-users wrote:
Chapter 24 documents the transport_filter option. An example is given
where the argv vector for the command comes from an expansion:
transport_filter = '/bin/cmd${if eq{$host}{a.b.c}{1}{2}}'
This runs the command /bin/cmd1 if the host name
On 19/03/2023 10:58, Odhiambo Washington via Exim-users wrote:
warn condition= ${if eq {$acl_m_greyexpiry}{} {1}}
set acl_m_dontcare = ${lookup sqlite {INSERT INTO greylist \
VALUES ( '$acl_m_greyident', \
'${eval10:$tod_ep
On 16/03/2023 14:53, Jim Lamers via Exim-users wrote:
headers_remove = Authentication-Results
headers_add = "Authentication-Results: TEST"
You might prefer to only do the (remove, add-stripped) sequence
when there is an offending AR header present.
--
Cheers,
Jeremy
--
## List details at ht
On 16/03/2023 14:53, Jim Lamers via Exim-users wrote:
was wondering if there are better ways to remove incoming A-R headers
that claim to be from our own admd?
Nope. I raised a wishlist item for it.
--
Cheers,
Jeremy
--
## List details at https://lists.exim.org/mailman/listinfo/exim-users
On 15/03/2023 20:00, Andrew C Aitchison via Exim-users wrote:
> When exim acting as a mail client wishes to send a message,
a Meddler-in-the-Middle (MitM) may respond to the STARTTLS command
by also sending a response to the *next* command, which exim will
erroneously treat as a trusted response
On 14/03/2023 13:17, Victor Ustugov via Exim-users wrote:
Office365 OAutn2 access token response size is over 4K)
You are seriously stretching the original intent of Exim's
string-handling with this.
[ Have you considered writing an Exim authenticator module? ]
Entering this expression inter
On 14/03/2023 22:02, Yves Goergen via Exim-users wrote:
Is there some explanation about this? Does it work? What does it do? Should I
create the mentioned file if I don't have it yet?
It's a macro definition, in Exim terms. What having it defined means
depends on the rest of the configuration
On 13/03/2023 15:59, Jim Lamers via Exim-users wrote:
This solution does not seem to work in all situations,
Can you characterize the nonworking ones?
headers_add Authentication-Results TEST
Did you miss a colon there?
--
Cheers,
Jeremy
--
## List details at https://lists.exim.org/mail
On 14/03/2023 11:46, Victor Ustugov via Exim-users wrote:
When I tried to run exim with a long value of -be option, I got an error:
exim: length limit exceeded (386 > 256) for: recipient
Yes, I've run into that (just this week!)
I assume the "-be " was a retrofit after the use
of a trailing a
On 13/03/2023 23:43, Gedalya via Exim-users wrote:
4. On ports 587, authentication should not be advertised before STARTTLS is
issued.
A slight suggested relaxation of that rule: Only authentication methods
which are self-encrypted should be used on a cleartext channel.
That mean the same as
On 12/03/2023 21:51, Victor Ustugov via Exim-users wrote:
Rather, the lack of SNI support does not prevent me from getting
response to access token refresh request. But Exim puts certificate
verification error message into the logs.
Having found a way of doing basic functionality testing
of it,
On 12/03/2023 17:31, Victor Ustugov via Exim-users wrote:
Jeremy Harris via Exim-users wrote on 12.03.2023 19:09:
On 12/03/2023 16:25, Victor Ustugov via Exim-users wrote:
Is it possible to use SNI with ${readsocket?
No.
Do you plan to implement this functionality?
It's not current
On 12/03/2023 16:25, Victor Ustugov via Exim-users wrote:
Is it possible to use SNI with ${readsocket?
No.
--
Cheers,
Jeremy
--
## List details at https://lists.exim.org/mailman/listinfo/exim-users
## Exim details at http://www.exim.org/
## Please use the Wiki with this list - http://wiki.ex
On 10/03/2023 10:26, John McMurray via Exim-users wrote:
I'd also like to be able to increase the $spam_score_int variable so that mail
clients can decide how they want to handle higher spam scores.
That variable is set by a call to SpamAssasin. Your code snippet doesn't
mention it; it's uncl
On 09/03/2023 19:30, Slavko via Exim-users wrote:
Dňa 9. marca 2023 16:08:08 UTC používateľ Jeremy Harris via Exim-users
napísal:
On 09/03/2023 15:47, Olaf Hopp (SCC) via Exim-users wrote:
"x recipients per distinct sender per time period y > z" ?
If yoe used $s
On 09/03/2023 15:47, Olaf Hopp (SCC) via Exim-users wrote:
"x recipients per distinct sender per time period y > z" ?
If yoe used $sender_address@$recipient as the key, would
it do what you want?
--
Cheers,
Jeremy
--
## List details at https://lists.exim.org/mailman/listinfo/exim-use
On 05/03/2023 15:59, ael via Exim-users wrote:
While testing, I have encountered two apparently benign error messages:
1) H=outlook.xx.office365.com [xx.xx.xxx.xxx] TLS error on connection (recv):
Error in the pull function.
Yes, the GnuTLS library produces this somewhat obscure message when
a
On 03/03/2023 14:47, Patrick Cernko via Exim-users wrote:
obviously I have to use that domain in the inbound_srs* routers then
Plus any other places where your config has a notino as to what
it does with what domain names. You're moving further away from a
basic set; you'll need to reason abou
On 02/03/2023 18:43, Jämes Ménétrey via Exim-users wrote:
official packages for these platforms.
Here is the wrong place to be asking, being the upstream project
and not Debian
--
Cheers,
Jeremy
--
## List details at https://lists.exim.org/mailman/listinfo/exim-users
## Exim details at http
On 03/03/2023 13:22, Patrick Cernko via Exim-users wrote:
Why is it required to set max_rcpt=1 in the remote_forwarded_smtp transport?
For $original_domain to be valid. If the transport was handling multiple
recipients then the domains could potentially be disparate.
--
Cheers,
Jeremy
--
#
On 28/02/2023 08:54, Cyborg via Exim-users wrote:
Am 28.02.23 um 00:27 schrieb Tony via Exim-users:
Now, the auto reply email subject start with "*Autoreply*:" , I want to change
it. How?
Sounds like a custom rule:
grep -r -i "Autoreply" /etc/exim/*
The autoreply transport has a "subject
On 27/02/2023 11:15, Gary Stainburn via Exim-users wrote:
I did suspect this, but the private key is in the correct format.
Try running Exim with debug; does it give any further hint?
Check the file ownership & permissions, also.
--
Cheers,
Jeremy
--
## List details at https://lists.exim.o
On 27/02/2023 10:21, Gary Stainburn via Exim-users wrote:
TLS error on connection from mail14.atl281.mcsv.net [198.2.143.14]
(SSL_CTX_use_PrivateKey_file file=/etc/pki/tls/certs/ringways.co.uk.key):
error:0906D06C:PEM routines:PEM_read_bio:no start line
I seem to remember in the past that I h
On 25/02/2023 23:21, Nick via Exim-users wrote:
Why is it doing this
Possibility 1: the macro is not in fact set.
Check by running "exim -bP macros | grep MAIN_FORCE_SENDER"
--
Cheers,
Jeremy
--
## List details at https://lists.exim.org/mailman/listinfo/exim-users
## Exim details at http:
On 25/02/2023 23:21, Nick via Exim-users wrote:
Why is it doing this and how can I stop it?
Possibility 2: "mailx" does not actually run exim with the arguments
you think it does.
--
Cheers,
Jeremy
--
## List details at https://lists.exim.org/mailman/listinfo/exim-users
## Exim details at
On 25/02/2023 14:45, Andreas Metzler via Exim-users wrote:
So it looks like something else was broken
at some point in time and is fixed again.
Good to hear. Thanks for the follow-up.
--
Cheers,
Jeremy
--
## List details at https://lists.exim.org/mailman/listinfo/exim-users
## Exim details
On 21/02/2023 11:59, Sebastian Tennant via Exim-users wrote:
hosts_require_auth = $host
Why not hosts_require_auth = * ?
--
Cheers,
Jeremy
--
## List details at https://lists.exim.org/mailman/listinfo/exim-users
## Exim details at http://www.exim.org/
## Please use the Wiki with this
On 20/02/2023 14:53, Sebastian Tennant via Exim-users wrote:
** […] R=all_via_fast_smtp_server T=fast_smtp_server […]: SMTP error
from remote mail server after pipelined MAIL FROM:<[…]> SIZE=1537:
530 5.7.1 Authentication required DT=1m
You got an SMTP response. You were already talking
On 21/02/2023 03:14, Matt Bryant via Exim-users wrote:
Is there anyway in exim to force a disconnect but with a temporary 4xx failure
rather than a hard deny and 5xx error ???. I can see 'drop' does the latter
case but there seem no equivalent action/verb or command to issue a tempfail
and the
On 17/02/2023 04:18, Ian Zimmerman via Exim-users wrote:
what is a "variable of type certificate" in exim's proudly unityped
macro language?
$tls_{in,out}_(our,peer)cert are all certificate-type variables.
They are not useable as text, but can be used by a "certextract"
expansion.
The do
On 16/02/2023 21:09, Viktor Dukhovni via Exim-users wrote:
Some applications (want to) only accept client certificates issued by a
dedicated non-public CA, which amounts to an authorisation server
In exim usage that's a test on a certextract of the issuer of
$tls_in_peercert, either just in ACL
On 14/02/2023 00:40, Ian Zimmerman via Exim-users wrote:
Is it at all possible with OpenSSL to stop the "system" location from
being checked?
No.
If not, that seems to make the use of TLS for client
authentication impossible because any certificate presented by
e.g. Google will pass verificat
On 07/02/2023 15:19, The Doctor via Exim-users wrote:
For Email Admins
No connection could be made because the target computer actively refused it.
That bit there is the important info. Unfortunately, they didn't say
what IP they tried to connect from, and unless you can infer anything
else ab
On 05/02/2023 23:12, Mike Tubby via Exim-users wrote:
The thing is that I have pcre3-dev and the rest of the PCRE2 libraries
installed (mine you someone will will have to explain why version numbers are
going backwards) ... ;-)
I'm not aware of a PCRE3 (and neither ia https://www.pcre.org/ AF
On 01/02/2023 22:53, MRob via Exim-users wrote:
Sorry, maybe I wrote it wrong: question is more to inquire if Exim checking any internal
flags or status that make it different from use "telnet [host] 25" on command
line. I dont understand why I could telnet-by-hand with immediate successful
co
On 01/02/2023 22:02, MRob via Exim-users wrote:
How to find why exim thinks it is timing out?
Exim thinks the connection timed out because it sets an
alarm before calling the syscall "connect" - and that
timer went off.
--
Cheers,
Jeremy
--
## List details at https://lists.exim.org/mailman/
On 01/02/2023 13:26, Heiko Schlittermann via Exim-users wrote:
Sure about $auth1? Isn'tit $auth2 in case of the PLAIN driver?
Not for the dovecot driver (only for the plaintext driver).
$auth1 is correct, here,
--
Cheers,
Jeremy
--
## List details at https://lists.exim.org/mailman/listinfo/
On 31/01/2023 14:38, Odhiambo Washington via Exim-users wrote:
What changes do I need to make in Local/Makefile to achieve this?
For TDB:
USE_TDB = y
DBMLIB = -ltdb
For gdbm:
USE_GDBM = yes
DBMLIB = -lgdbm
--
Cheers,
Jeremy
--
## List details at https://lists.exim.org/mailman/listin
On 31/01/2023 13:33, Odhiambo Washington via Exim-users wrote:
Will it ever be possible to have Exim officially build against BDB18 ?
Ever? That depends on
- the library owner making information about it freely available
(something that stopped after BDB version 5, Oracle having bought up
On 31/01/2023 13:28, Odhiambo Washington via Exim-users wrote:
I have deinstalled BDB5 and instead installed BDB18 for the obvious reason.
Now Exim will not build at all and I am wondering whether it's possible to
build Exim against BDB18.
No. Use gdbm or tdb.
--
Cheers,
Jeremy
--
## List
On 25/01/2023 16:25, Sander Smeenk via Exim-users wrote:
Is Exim's dovecot driver for LOGIN auth broken or am i doing something
wrong?
It's working fine for me in test, though I don't see you doing
anything wrong. The debug shows the "OK" response from dovecot;
it's not clear where the tempora
On 26/01/2023 10:31, Niels Kobschätzki via Exim-users wrote:
with a score of -12.6
How was that part verified?
--
Cheers,
Jeremy
--
## List details at https://lists.exim.org/mailman/listinfo/exim-users
## Exim details at http://www.exim.org/
## Please use the Wiki with this list - http://wi
On 23/01/2023 19:38, Johnnie W Adams via Exim-users wrote:
A light has come on in my brain. Is this as simple as going into my ingress
node and adding "require verify = recipient/callout" somewhere sensible,
like right after "require verify = sender"?
If the ingres exim routers and transports k
On 23/01/2023 18:36, Johnnie W Adams wrote:
On Fri, Jan 20, 2023 at 3:12 PM Jeremy Harris via Exim-users <
exim-users@exim.org> wrote:
On 20/01/2023 19:50, Johnnie W Adams via Exim-users wrote:
An R-verify checks routability, and (with callout) acceptability
by the destination. If your
On 20/01/2023 19:50, Johnnie W Adams via Exim-users wrote:
Calling the ACL on all mail prevents bounces, correct?
An R-verify checks routability, and (with callout) acceptability
by the destination. If your intent is to discover nonexistent
recipients *during SMTP reception* of a message, so t
On 20/01/2023 18:18, Johnnie W Adams via Exim-users wrote:
I've been doing some research on recipient verification to eliminate
bounces, and am wondering if it's as simple something like this at the end
of my ACL list:
acl_check_vrfy:
deny
senders = ''
!verify = rec
On 19/01/2023 17:32, The Doctor via Exim-users wrote:
I assumed that you were blocking the pair
(src ip 46.148.40.108, target port 25)
and was checking that you are also blocking
(src ip 46.148.40.108, target port 465)
Could this cause a 601 error?
Possibly a typo? SMTP does
1 - 100 of 1001 matches
Mail list logo