[exim] Avoiding bounces

2018-05-26 Thread Luca Bertoncello via Exim-users
Hi list! My problem: I have an "info@"-address that forwards the E-Mails to other addresses, some on them outside my servers. Well, unfortunately this address catches many Spam/junk E-Mails and, of course, my Exim (4.88) tries to forward them. Virus are blocked and will __NOT__ be forwarded, but

Re: [exim] Avoiding bounces

2018-05-26 Thread Luca Bertoncello via Exim-users
Jeremy Harris via Exim-users schrieb: > But you're better-off never accepting the message. Consider doing > cutthrough-routing for these; this means that if the site you are > forwarding to (Google) refuses the message even as late as after-data > (which, given they need to

Re: [exim] Avoiding bounces

2018-05-27 Thread Luca Bertoncello via Exim-users
Always Learning via Exim-users schrieb: Hi, > If you reject emails from MTAs having no rDNS or no resolving HELO (or > EHLO) names or having a HELO name that is different from the sending > MTA's host name, most of your spam will not reach your users. Of course I do that!

[exim] Antivirus for Linux and Exim

2018-02-26 Thread Luca Bertoncello via Exim-users
Hi, currently we use Kaspersky to scan incoming and outgoing E-Mail with Exim 4.89. My boss would like to integrate some other antivirus on the system and he suggest BitDefender and Sophos. I searched on the internet page of both companies, but I just found marketing-shit. A chat with

Re: [exim] Antivirus for Linux and Exim

2018-02-26 Thread Luca Bertoncello via Exim-users
Zitat von Mueller via Exim-users : Hello, just the use of clamav will run without issues: av_scanner = clamd:127.0.0.1 3310 Sophos: av_scanner = sophie:/var/run/sophie Could you say me the NAME if the product by Sophos? Then, I searched about this "sophie" and it seems

Re: [exim] Antivirus for Linux and Exim

2018-02-26 Thread Luca Bertoncello via Exim-users
Zitat von Andrew Colin Kissa via Exim-users : Hello Andrew Sophie is a protocol, it is implemented in Sophos products by the SAV Dynamic Interface Linux 64 bit package You can use that in conjunction with the free Sophos "Antivirus for Linux" So, do I need the

[exim] Integrating ESET Antivirus in Exim

2018-03-08 Thread Luca Bertoncello via Exim-users
Hi list! We use Exim 4.89 as MTA at office. Currently we use Kaspersky to scan incoming and outgoing E-Mails and we'd like to integrate a second virus scanner. We got an offer for ESET and a test license, so I'd like to try the integration with Exim. We __NEED__ to be able to refuse the

Re: [exim] Integrating ESET Antivirus in Exim

2018-03-08 Thread Luca Bertoncello via Exim-users
Zitat von Heiko Schlittermann via Exim-users : Hello Heiko, If not supported yet, you can easily sponsor the integration, Lucabert. I really don't have time to do that... sorry... But, nevertheless, if there is no "binary" interface supported yet, you can use the

[exim] Router testing with "source port"

2018-03-12 Thread Luca Bertoncello via Exim-users
Hi list! I have in my exim configuration many routers depending from the port used to send the E-Mail. Now I need to test them and I really don't know how... :( To test a router I usually use exim -bt b...@blah.de, but so exim use ignore the source port. Is there any option for "exim -bt"

Re: [exim] Router testing with "source port"

2018-03-12 Thread Luca Bertoncello via Exim-users
Zitat von Mike Brudenell via Exim-users : Hi Mike! Take a look at the *The Exim command line* section in the *Exim Specification*. In there you'll find many options beginning with "-oM" that can be used to set all sorts of things. For example, you might find the -oMa

Re: [exim] Why "blackhole"?

2018-03-12 Thread Luca Bertoncello via Exim-users
Mike Brudenell via Exim-users schrieb: Hi Mike > The sample configuration you posted is just a set of ACLs entries. The This was NOT a sample configuration, but the real configuration we use to scan the E-Mail with Kaspersky... > *Specification* seems to be saying that

[exim] Why "blackhole"?

2018-03-12 Thread Luca Bertoncello via Exim-users
Hi list, I recently discovered this very curiously message in the mainlog: 2018-02-28 00:56:11 1eqp6G-0004wp-IR DKIM: d=email.microsoftemail.com s=102420140131 c=relaxed/relaxed a=rsa-sha1 b=1024 [verification succeeded] 2018-02-28 00:56:12 1eqp6G-0004wp-IR LMS check accept: 250 OK

Re: [exim] Why "blackhole"?

2018-03-12 Thread Luca Bertoncello via Exim-users
Zitat von Mike Brudenell via Exim-users : Hi Mike Have you added a local_scan function to your configuration? Yes! Kaspersky. And I must say, that I already had some suspect on that...

[exim] Avast and invalid response from scanner

2018-03-14 Thread Luca Bertoncello via Exim-users
Hi list! I see very often this message in exim paniclog: malware acl condition: avast /var/run/avast/scan.sock : invalid response from scanner: 'SCAN /var/spool/exim4/scan/1ew39J-0002Qa-4m/1ew39J-0002Qa-4m-4|>somefile [E]1.0 Error 42110 The\ file\ is\ a\ decompression\ bomb' It

Re: [exim] Avast and invalid response from scanner

2018-03-14 Thread Luca Bertoncello via Exim-users
Zitat von Heiko Schlittermann via Exim-users : Hello Heiko This should result in a defer. I added /defer_ok to solve this problem, but of course the paniclog will always receive these errors... It seems that I cannot disable this warning in Avast and I didn't found

Re: [exim] Avast and invalid response from scanner

2018-03-14 Thread Luca Bertoncello via Exim-users
Heiko Schlittermann via Exim-users schrieb: > I'm not sure, if defer_ok is the right way, except you agree with > getting messages with zip bombs (in your case) Since we have 2 other Antivirus, I think, this is OK... ;) Regards Luca Bertoncello (lucab...@lucabert.de)

Re: [exim] Antivirus for Linux and Exim

2018-03-09 Thread Luca Bertoncello via Exim-users
Zitat von Mueller via Exim-users : Hi Daniel Avast: av_scanner = avast:/var/run/avast/scan.sock:FLAGS -fullfiles:SENSITIVITY -pup av_scanner = avast:your.ip.nr 5036 I try now Avast, but I always get the error: malware acl condition: avast /var/run/avast/scan.sock :

Re: [exim] Antivirus for Linux and Exim

2018-03-09 Thread Luca Bertoncello via Exim-users
Zitat von Heiko Schlittermann via Exim-users <exim-users@exim.org>: Hello Heiko Luca Bertoncello via Exim-users <exim-users@exim.org> (Fr 09 Mär 2018 09:32:32 CET): Zitat von Mueller via Exim-users <exim-users@exim.org>: Hi Daniel > Avast: > av_scanne

[exim] Logging used port

2018-04-20 Thread Luca Bertoncello via Exim-users
Hi list! Is it possible to log the used port for the incoming E-Mail in the mainlog? Currently I have something like: 2018-04-20 11:57:02 1f9Sms-wer857-24 <= b...@blah.de H=(mail.blah.de) [1.2.3.4] P=esmtps X=TLS1.2:ECDHE_RSA_AES_256_GCM_SHA384:256 S=4980

Re: [exim] Router: check for domain in list

2018-02-26 Thread Luca Bertoncello via Exim-users
Zitat von Jeremy Harris via Exim-users : Hello Jeremy A single-element domain list, with the filename. A match_domain expansion condition comparing $sender_address_domain with that list. A condition= generic condition on your router. OK, thank you! Now I understand what

[exim] Router: check for domain in list

2018-02-26 Thread Luca Bertoncello via Exim-users
Hi list! I need to check, in a Exim-Router, if the sender domain is in a list of domain. I tried so: condition = ${if eq{${lookup {$sender_address_domain}wildlsearch {/etc/exim4/virtualdomains.txt}}}{}{yes}{no}} but it does not really works... The file /etc/exim4/virtualdomains.txt is

Re: [exim] Router: check for domain in list

2018-02-26 Thread Luca Bertoncello via Exim-users
Zitat von Jeremy Harris via Exim-users <exim-users@exim.org>: On 26/02/18 13:20, Luca Bertoncello via Exim-users wrote: I really don't know which other lookup I can try to just check IF a string in a file exists. Can someone suggest me somewhat? http://exim.org/exim-html-current/do