It appears that the effectiveness of filtering out known-bad HELO/EHLO
has dropped somewhat in the past few months:
http://people.spodhuis.org/phil.pennock/img/exim-reject.2007-09-19.png
http://people.spodhuis.org/phil.pennock/img/exim-reject.2007-09-19.ylog.png
Of course, this is in absolute n
On 2007-09-21 at 00:01 +0200, Peter Thomassen wrote:
> I have set up an additional router that determines the target mailbox by
> looking up an alias file using lsearch*.
> Unfortunately, the recipients that are being routed to a particular user
> (root!) are finally also routed to peter, obviousl
On 2007-09-21 at 09:56 +0200, Peter Thomassen wrote:
> The output of `exim -bt postmaster` shows that Exim recursively tries to
> lookup for an alias (have a look at the "comments" I put in) and finally
> finds *:peter, regardless of the fact that root is a Linux user account and
> not an alias:
E
Hi,
Who will be PGP signing future Exim releases please? With which PGP
key?
(And is there a signature by Philip Hazel's key on the new key?)
Thanks,
-Phil
--
## List details at http://lists.exim.org/mailman/listinfo/exim-users
## Exim details at http://www.exim.org/
## Please use the Wiki w
On 2007-10-15 at 17:15 +0200, Marcin Krol wrote:
> Every RBL had to have those 3 conditions tested again right after
> previous RBL verb tested them, so I decided to consolidate condition
> lines into a single user variable and this is what I ended up with:
Spec, 40.22 ACL conditions. Condition "
On 2007-10-31 at 15:26 -0700, Yan Seiner wrote:
> My policies are as follows:
>
> 1. Clients connecting on 25 unauthenticated can send email only to the
> local domains.
>
> 2. Clients requesting relaying must connect encrypted and authenticate.
>
> 3. Clients requesting relaying unencrypted
On 2007-11-02 at 13:57 -0400, Maykel Moya wrote:
> I would like to know if my lookup are cached troughout the session if I
> use the same query.
>
> Now I'm doing some ${extract {attrName} {${lookup ldap ... so the lookup
> could be exactly the same whenever I need something from LDAP, but if
> th
On 2007-11-08 at 00:52 +0900, Mark Fletcher wrote:
> I'm having problems getting exim 4.63 to talk to Gmail. What I have done
> is set up Exim4 on my Debian GNU/Linux laptop to use smtp.gmail.com as a
> smarthost for sending email. This is to avoid narking off my ISP by
> trying to send out mail di
On 2007-11-11 at 00:58 +0900, Mark Fletcher wrote:
> >
> > hosts_require_tls = *.google.com
>
> Yeah, the log file said something about that -- unfortunately I couldn't
> find in the readme where that hosts_require_tls should be set and a
> Fletcher classic find / grep combination of the exim-r
On 2007-11-13 at 12:44 -0800, Jeroen van Aart wrote:
> Which reminds me. There is probably no easy way to avoid a block on
> incoming port 25 by an ISP. Except to have an MTA outside the block
> which receives your email and sends it to your MTA configured to listen
> on a different port?
If yo
On 2007-11-12 at 22:06 +0900, Mark Fletcher wrote:
> AND THAT NAILED IT! You were right in the very beginning. The issue was
> the port -- I was getting a similarly unhelpful failure in the debug
> output on ssl_connect() when I used port 25, but when I switched to port
> 587, bingo -- my mobile ph
On 2007-11-14 at 17:09 -0800, Jeroen van Aart wrote:
> I used xs4all back in NL, they're good imo. Though I never tried if they
> blocked port 25 I would assume they don't, they gave a free static IP.
*cough* I used to work for Demon NL until KPN bought it and told the
NOC staff that there were
On 2007-11-16 at 16:32 +0100, Patrick von der Hagen wrote:
> Am Freitag, den 16.11.2007, 16:15 +0100 schrieb Patrick von der Hagen:
> > Hi all,
> >
> > I realised that lately messages arrive which cause unnessessary bounces
> > because they are accepted by exim and rejected by cyrus.
> I should ha
On 2007-11-22 at 15:25 +0300, Grigoriy S. Gusew wrote:
> I`m having problem with exim-4.68 installed on FreeBSD system
I have Exim 4.68 running on FreeBSD 6.2 on one of my systems.
> The problem is that exim creates a child process handling incoming
> connection, I can input only following SMTP c
On 2007-11-26 at 15:27 +, andylockran wrote:
> I'm setting up a cluster of servers for the PCI DSS and I've only got one
> vulnerability left - which is that SSL/TLS supports weak authentication in
> exim. (I managed to set SSLv2 to disabled on exim with the following line:)
>
> tls_require
On 2007-12-05 at 15:28 -0800, Marc Perkel wrote:
> Getting error "Too many arguments in command .. in ${run} expansion"
>
> Just wondering what the limitations are and how to fix it. Would
> eliminating spaces reduce the number of arguments or is it the length of
> the strings?
60 parameter
On 2007-12-05 at 16:41 -0800, Marc Perkel wrote:
> I guess one thing I don't understand is why Exim is counting the
> parameters and not just passing the string as is.
Because that's how security holes happen. What if one of those strings
contained `cmd` substitution? etc etc.
Exim breaks up t
On 2007-12-06 at 01:42 +1100, Ted Cooper wrote:
> If I just use the exim -be command line and type in pretty much anything
> over multiple lines it works ok so it's going to boil down to an issue
> with shell escaping.
No, the shell leaves those backslashes in.
The problem is that the \\\n elimin
On 2007-12-07 at 10:35 +0200, Chris Knipe wrote:
> cathlasphere:/etc/exim # cat exim.conf |grep log_file_path; exim -bV
> log_file_path = /var/log/exim/%s.log
> I cannot get Exim to stop logging to syslog? From what I understood in the
> documentation, log_file_path specifies only files that exim
On 2007-12-09 at 12:40 +, Phil White wrote:
> I'm trying to store the DECIMAL IP address of a connecting host in
> $acl_c*. Do do this, I'm using the following:
>
> set acl_c5= ${eval10: \
> (${extract {1}{.}{$sender_host_address}}<<24) \
> + (
On 2007-12-09 at 13:56 +, Phil White wrote:
> warn
> message = X-Info: Return = \
> ${lookup mysql { SELECT value FROM system WHERE \
> ip_addr=$acl_c5 } \ {$value}{0} \
> }
>
> Database that I am trying to access
On 2007-12-10 at 16:44 -0600, Craig Jackson wrote:
> Often a ehlo is of the the form server23.mx23.domain.com. I would like
> to record only domain.com from the ehlo into a database. This is what I
> have,
And then you need to deal with UK (example.co.uk, etc, so an extra
level) or US (example.gov
On 2007-12-10 at 20:33 -0600, Craig Jackson wrote:
> I have written a Mysql stored procedure to whitelist $recipients, by
> parsing that variable. It did not occur to me to use a stored procedure
> for this -- looks a lot harder to do.
I'm not a MySQL user; PostgreSQL is my poison of choice when I
On 2007-12-12 at 03:14 -0500, Daniel Aquino wrote:
> I'm looking for a simple way to do recipient checking against my own
> external daemon.
>
> I have come up with a few possible way to do this:
>
> 1) Get queryprogram to simply query a unix socket instead?
>
> Problem) I doubt it suppor
On 2007-12-12 at 19:23 -0500, Daniel Aquino wrote:
> On Dec 12, 2007 3:48 AM, Phil Pennock <[EMAIL PROTECTED]> wrote:
>
> > You can use an "accept" Router with "verify_only" on it, with
> > ${readsocket}. Untested:
> > verify_against_my_fun
On 2007-12-12 at 21:03 -0500, Daniel Aquino wrote:
> Thats cool that it works in real time I would think string expansion
> would be a single event that hard wires a value into the config...
That's macros.
Take a look at "spec.txt" or one of the other format variants of The
Exim Specification (HT
On 2007-12-13 at 07:31 +0100, zbigniew szalbot wrote:
> zbigniew szalbot pisze:
> > Thank you Peter - thinking about it, I must admit that at that time
> > the line must have been pretty choked (time to send some 2K emails
> > each about 70KB in size). This could have made it difficult to
> > pr
On 2007-12-13 at 22:20 -0600, Craig Jackson wrote:
> > But I still have a big problem. Even though this works fine
> > from the command line as root user, it doesn't do anything at
> > all when called from Exim. No record is updated. No errors.
> > Nothing. The Mysql user Exim uses does have Exe
On 2007-12-14 at 11:30 -0600, Craig Jackson wrote:
> It wasn't permissions. It was a leading spaces issue that I couldn't see
> in the log, but which closer scrutiny of binlog revealed. For some
> reason Exim was passing data with leading spaces. Mysql trim() fuunction
> fixed it. Whew.
Following
On 2007-12-12 at 17:39 +0100, a a wrote:
> condition = ${if or {{ > {$acl_c1} {70} {${lookup {$sender_address} lsearch
> {FILE} {0} {1 { > {$spam_score_int} {70} {${lookup
> {$sender_address_domain} lsearch {FILE} {0} {1}}
It's a conceptual problem; the braces balance but that doesn't matt
On 2007-12-14 at 10:08 -0800, Marc Perkel wrote:
> Which test produced log entries "no IP address found for host ... during
> SMTP connection from
$ fgrep -ir 'no IP address found for host' exim-4.68/
Look over the results.
-Phil, Fishing Instructor
--
## List details at http://lists.exim.org
On 2007-12-18 at 13:41 -0500, Matthew Soccio wrote:
> I am testing a new server, which has the same user and auth data as the
> production server. I need a way to make sure that mail for my beta
> testers stays on the beta server, while everything else goes over to the
> production server. Sin
[ changed Subject: since this is no longer helping the OP ]
On 2007-12-20 at 09:51 +, Ian Eiloart wrote:
> Lots of the considerations below (privacy, for example) also apply in the
> UK. You'd expect that, as we're both in the EU. However, none of the
> considerations below prevent us from r
On 2007-12-19 at 22:46 +0100, Leonardo Boselli wrote:
> I have two servers and two more secondary MX.
> I want: avoid that the secondary mx accept email that in turn is sent to
> the primary and then bounced.
> So i would like to set a list of possible address that are accepted.
> such list howeve
On 2007-12-20 at 14:23 +0100, Wouter Verhelst wrote:
> Look for 'smtp_reserve_hosts'. With this, you can allow the backup MX to
> connect to the master even when the master is already 4xx'ing other
> hosts because of things like smtp_load_reserve.
Look up Single Point Of Failure.
The point of sec
On 2007-12-20 at 13:20 +0100, Marcin Krol wrote:
> Is there any way to increase verbosity of debugging router condition? It's
> not
> enough in one complicated case I have - I need (incoming mail) router to skip
> one (outgoing) address and can't get it to work:
> Ye, this expression doesn't se
On 2007-12-20 at 16:23 -0600, Matt wrote:
> # Slow down fast senders; note the need to truncate $sender_rate
> # at the decimal point.
> warn ratelimit = 100 / 1h / per_rcpt / strict
> delay = ${eval: ${sg{$sender_rate}{[.].*}{}} - $sender_rate_limit
> }s
>
> Is there a way I can get
On 2007-12-20 at 17:37 +, Terry Burton wrote:
> Otherwise, is there a recommended way to obtain such values from a
> shell script without having to hardcode the value or grep the Exim
> config?
With well-defined data syntaxes and exiting after first match (anchored
to the start of the line) gr
On 2007-12-20 at 13:49 -0800, Robert Van Horn wrote:
> The parser just opens the mail and an output file for the report
> then runs bounce_parser on it - closes the files - quits.
> My tests so far have been in the form of ./bpt.pl testmail.doc.
> With the existing file in the same dir there is no
On 2007-12-20 at 16:44 -0600, Matt wrote:
> I imagine something like this would work?
So would I, but I've not gotten around to actually playing with rate
limiting (since these days I just have a personal server running Exim,
so it's not such an issue).
> # Slow down fast senders; note the need t
On 2007-12-21 at 14:13 -0600, Bill Milford wrote:
> Nigel Metheringham wrote:
> > You will find it on ftp.exim.org, and it has my gpg signatures on the
> > tar
> > balls (address is [EMAIL PROTECTED], key id is DDC03262 - I use a different
> > key for this than I do for my work stuff, although th
On 2007-12-22 at 02:46 +0100, Leonardo Boselli wrote:
> i also added _before_ this one the routers that use a "local_part_prefix"
> This way such prefixes are handled directly. however this led me to
> have 7 routers all similar.
> is possible to usa a file not only for local parts but also for
On 2007-12-21 at 23:47 +0100, Leonardo Boselli wrote:
> Try later ... after 24 hours
No, but from the same IP is appreciated.
I dislike greylisting but use it, with the daemon from Debian, munged
about a bit to work on FreeBSD. The retry time is 10 minutes: retrying
just 10 minutes after th
On 2007-12-22 at 10:37 +0100, Leonardo Boselli wrote:
> Ok but what if my MTA has 4 address on 4 subnets from 3 different
> providers an use each one in turn ? (none of provider warrant a 100% up
> time, but just a nominal 98.5).
Each (IP, sender, recipient) triple is recorded, together with first
On 2007-12-23 at 09:54 -0500, Haines Brown wrote:
> I'm running debian etch, with exim4, which has monolithic
> configuration. My aim is to get exim to filter incoming mail with
> spamassassin.
All your problems are about how to use Debian's heavily customised
packaging and configuration manageme
On 2007-12-23 at 20:06 +0530, Jaganathan A wrote:
> I am receiving too many spams to lists so that i need to allow only
> mydomain users should send mail to lists.
>
> How can i restrict.
Look at the "senders" pre-condition on whichever Router handles your
list mails.
Regards,
-Phi
On 2007-12-24 at 12:22 -0500, Daniel Aquino wrote:
> I'm using the following router to do some initial testing.
>
> checkuser:
> driver = accept
> condition = ${readsocket{/usr/local/mail/sock/[EMAIL PROTECTED]
> transport = local_delivery
> cannot_route_message = Unknown user
>
> My daem
On 2007-12-24 at 10:30 -0600, Matt wrote:
> # Slow down fast senders; note the need to truncate $sender_rate
> # at the decimal point.
> warn ratelimit = 200 / 1h / per_rcpt / strict
> delay = ${eval: ${sg{$sender_rate}{[.].*}{}} - $sender_rate_limit }s
> log_message = Sender rate $
On 2007-12-27 at 12:56 -0500, Daniel Aquino wrote:
> Is there any command line switches or some method I can use to test my
> configured authentication ?
This is as a server, right?
So, try to connect as a client and authenticate.
Perhaps using "exim -d+auth -oX 26 -bd" to listen on another port
On 2007-12-27 at 20:52 -0800, Marc Perkel wrote:
> In addition to all the standard ACLs I'd like to suggest a headers acl
> that would run at the blank line between the headers and the message.
> That way I can take action without having to wait for all the data to be
> transfered.
What action?
On 2007-12-27 at 08:33 -0800, Angelo Chen wrote:
> My need is very simple, I setup a exim4 server to relay messages with
> smarthost, i can send mail if I'm in the exim4 server, but if I use Outlook
> express and the exim4 server as smtp server, i got 'relay not permited'
> error, what is the corre
On 2007-12-28 at 15:32 +0100, Wouter Verhelst wrote:
> This will still work with receiver callout verification, for the very
> simple reason that callout verification is actually cached. It will be
> problematic to receive spam to non-existing email addresses which hadn't
> been seen before during
On 2007-12-29 at 22:29 +0100, Joerg Lange wrote:
> I have set up exim4-daemon-heavy on Debian together with spamassassin.
> I wanted to use the ACL variant to call spamassassion. I uncommented
> the section in the data acl, enabled spamassassin in it's
> configuration file, tested spamassassin (by
On 2007-12-29 at 11:05 -0800, snowcrash+exim-users wrote:
> that said, i see the following, apparently NIS-related, weirdness ...
>
> as usual, i do,
>
> cd /usr/ports/mail/exim
> make distclean rmconfig extract
> cp -f /usr/local/etc/exim/My_Local_Makefile \
> /
On 2007-12-31 at 13:58 +0100, Florian Weimer wrote:
> I've just discovered that $message_exim_id is not set when RCPT TO:s
> are checked. However, I need some kind of unique ID at this stage.
> It needs not be related to the future value of $message_exim_id, it's
> sufficient if it's (very likely)
On 2007-12-31 at 06:02 -0800, Phil Pennock wrote:
> The timestamp in $message_exim_id is that of the time taken after DATA
> is received and responded to and Exim is about to start receiving the
> message. Exim doesn't have any variables for things like "current
> time&
On 2007-12-31 at 14:19 -0600, Matt wrote:
> # Spam Assassin
> spamcheck_director:
> driver = accept
> condition = "${if and { \
> {!def:h_X-Spam-Flag:} \
> {!eq {$received_protocol}{spam-scanned}} \
> {!eq {$received_protoc
On 2008-01-01 at 12:26 -0600, Matt wrote:
> > Add extra
> > {condition} \
> > lines to the and{...} contents.
> >
> > {!match_ip {$sender_host_address}{/etc/virtual/pophosts}} \
>
> That part worked perfect.
>
> > {!eq {$authenticated_id}{}} \
>
> This seems to think every message has been au
On 2008-01-02 at 01:34 +0100, Tobias Marx wrote:
> Exim4 keeps on blocking port 80.
>
> So I have done a cron job that execute a:
>
> killall -9 exim4
> /etc/init.d/exim4 start
>
> every 5 minutes.
>
> I am looking for a cleaner solution though ;-)
What do you mean by "keeps on blocking port 8
On 2008-01-02 at 23:00 +, Jonathan Briggs wrote:
> If it is a problem with inheriting file descriptors, it'd be easy to fix
> in Exim by closing all descriptors from 0 to NR_OPEN during program
> start.
>
> This could be what other mail programs are doing and why you do not see
> problems from
On 2008-01-03 at 16:02 -0500, Joel Alexander wrote:
> Can someone please help me? I have several messages that get thrown to
> my fallback_hosts for no known reason. Is there a way I can fix this?
> 2. Immediately the message in the log shows:
> LOG:
> 2008-01-03 11:20:29 1JASo1-00042K-9p == [EM
On 2008-01-06 at 07:38 -0600, John Schmerold wrote:
> I work with a church that sends 60,000 emails per year. This isn't a
> huge number, however it's big enough that from time to time they send
> a large number of emails to a few of the ISPs in town. This gets the
> church put on the suspect list.
On 2008-01-07 at 09:20 -0800, sal983 wrote:
> We had implemented a gateway mail server ( Running Exim 4.68 Ver ) to
> reduce the spam mails to our traditional "Groupwise" mail server, and was
> working fine till last week. ie mail to our domain ( let me call "test.com"
> ) is hitting the exim mail
On 2008-01-08 at 15:11 +0200, Brent Clark wrote:
> Im trying to get my exim to act as a relay, but it almost appears as if the
> command is being ignore in the transport.
Logfiles to explain what you mean there would help; mail handling
policies are managed with Routers, the Transports are definit
On 2008-01-08 at 15:51 +0400, Muhammed afsal wrote:
> The gateway server should relay mails from any domain, any hosts to test.com(
> test.com only ).
> ie No one can ( Except the users at the domain test.com ) send mails ( with
> an ID [EMAIL PROTECTED]) to other domains ( example: [EMAIL PROTECT
On 2008-01-08 at 23:23 -0800, Gianluca Varenni wrote:
> First of all, let me start saying that I'm a total nb as far as mail server
> administration is concerned (it's not my primary job).
>
> I have a linux machine (pallino.cace.local) on the internal network, behind
> a NAT.
You also have a D
On 2008-01-09 at 10:55 +0200, Gregory Machin wrote:
> I have a need to bcc / cc outward bound email from a particular address
> to another address .. Does anyone have a howto or an example of this. Im
> running exim with mysql backend .
http://wiki.exim.org/FAQ
Second question.
Modify it to lo
On 2008-01-09 at 14:54 +0200, Gregory Machin wrote:
> Hi in my reading though the faq i came across Q0304 with is about using
> an alternative server as a gateway for out going mail..
> I have 2 adsl line so I thought I'd redirect the out going mail to the
> second line through my firewall ...
>
On 2008-01-10 at 18:07 -0500, Ross Boylan wrote:
> I have been trying to authenticate using the same account database as my
> Cyrus imap server. I can't even seem to get very useful debugging
> output. I would appreciate any help.
>
> Following suggestions earlier on this list, I run (as root)
>
On 2008-01-10 at 21:01 -0500, Ross Boylan wrote:
> The other thing that seems odd is that I see no exchange of the user
> name (on either the client or server side). Are the password and
> username all wrapped into one in the challenge-response? If not, then
> that's the immediate cause of the pr
On 2008-01-10 at 22:19 -0500, Ross Boylan wrote:
> I thought server_realm was required. I tried taking it out and
> providing various @ parts for the user name (before I had just the
> name). None of this worked.
>
> I'm also not sure if specifying server_hostname would help.
Your usercode wasn
On 2008-01-11 at 09:02 +0100, Arkadiusz Miskiewicz wrote:
> Hello,
>
> I have few rewriting rules that apply to the same address:
>
> [EMAIL PROTECTED] "$h_from:"Ffs
> [EMAIL PROTECTED] "[EMAIL PROTECTED]" Ffs
>
> Now first rule fails because of:
Don't you want "${ad
On 2008-01-11 at 09:47 -0600, Craig Jackson wrote:
> I'd like to loop through all of the IP addresses in the received headers
> and check each one to see if that address is in a list of address
> blocks, like 12.23.0.0/16 : 34.56.67.0/24 : 1.6.0.0/8
Exim 4.67 or more recent, to get the map, filter
On 2008-01-11 at 22:38 -0600, John Schmerold wrote:
> We use our exim install as a spam filter, it does a great job, however
> some spammers have learned they can send their junk to mail.gmail.com
> and it gets past the filter.
Whose filter? Yours? If so, why not fix it?
> In exim.conf, we have
On 2008-01-12 at 09:49 -0600, John Schmerold wrote:
> It seems, I'm not being clear, what I'm looking for is functionality
> similar to that provided by Postfix's transport file as documented
> here:
>http://www.postfix.org/transport.5.html
>
> The example I am looking to duplicate is:
>
On 2008-01-13 at 15:28 +, Jeremy Harris wrote:
> How should one deal with multi-valued attributes in ldap,
> where an attribute could contain a comma?
Depends what you do with it.
> The spec says
> "If the attribute has multiple values, they are separated by commas."
> Actually I see "comma
On 2008-01-14 at 01:07 -0500, Daniel Aquino wrote:
> But why wouldn't localhost connections be aloud to get away without
> tls connects ?
Because you configured it that way.
server_advertise_condition needs to evaluate to true before the
authentication type is offered. The right-hand-side is a s
On 2008-01-13 at 15:40 -0800, chuckee wrote:
> I want to have Exim open on port 80 on my server (say, myserver.com),
> however I also have a website that needs to be visible (on port 80), at
> least on www.myserver.com and also myserver.com if possible.
>
> I need Exim open on port 80 because many
On 2008-01-14 at 10:06 -0800, aeternaleto wrote:
> Im trying to increase the amount of smtp connections to my mail server. I
> know exim defaults to 20. Where do I place the smtp_accept_max? I am
> little confused with the exim4 layout.
Is this Debian/Ubuntu/other-debianised, or a stock Exim i
On 2008-01-14 at 23:46 +0100, Karl Fischer wrote:
> I have a problem with exim not executing the callout verification at all.
> I'm secondary (fallback) MX for somedomain.de and would like to use callout
> verification to reject mail for non-exisiting users (at least as long as
> the primary mailse
On 2008-01-15 at 03:22 +, W B Hacker wrote:
> Though I agree (from actual testing) that use of port 80 is a bad idea,
> for smtp - the above does not apply in practice.
It does when you want to provide _both_ SMTP and HTTP on the same IP on
the same port, concurrently.
There are other sets o
On 2008-01-14 at 20:23 -0500, Daniel Aquino wrote:
> How come when I turn off the advertising, does authentication always pass.
It doesn't.
> Even though the AUTH command doesn't work cause its not advertised???
>
> Here is my output of smtptest without advertising:
smtptest is a program which
On 2008-01-15 at 01:47 +0100, Karl Fischer wrote:
> Any other ideas why exim doesn't even try to connect to the other server???
I didn't see any evidence that it didn't try to connect.
Perhaps it took longer than the 10 second limit you placed. Perhaps the
remote server was down.
If you're not
On 2008-01-15 at 04:49 +, W B Hacker wrote:
> To one extent it *seems* as simple as adding to the list of advertised
> services (and handling the choice correctly). But re-inventing all
> common browsers is certainly not on even if MUA's would play correctly
> with it.
I'm thinking of case
On 2008-01-14 at 15:18 -0800, chuckee wrote:
> Because port 587 is for authenticated SMTP, I do not think I can or should
> use it for this.
To clear up a misconception: port 587 is for mail submission. It isn't
strictly true to say that 587 is authenticated and 25 isn't. It happens
that some pr
On 2008-01-15 at 14:01 -0800, Jeroen van Aart wrote:
> What is wisdom in this mess? Insist on everyone using port 587? ignore
> 587 and support a host of legacy clients with port 465 and allow port 25
> for submissions? Open all 3 ports and allow whatever people want on any
> port? Users have be
On 2008-01-16 at 20:34 +0900, Randy Bush wrote:
> i just turned up v6 and am rejecting v6 senders
I am not aware of any RBLs which support IPv6 addresses. I do use Exim
with IPv6 and receive a very large percentage of my legitimate email
over IPv6, including that from this mailing-list. So I'm B
On 2008-01-17 at 10:15 +0900, Randy Bush wrote:
> thanks!
Poor Peter, he replied twice but you probably didn't see it since you
would have been rejecting exim-users coming in over IPv6.
> if this gets out, it worked!
It got out.
Is the configuration exactly as described? Which version of Exim
On 2008-01-17 at 11:06 +0900, Randy Bush wrote:
> > Poor Peter, he replied twice but you probably didn't see it since you
> > would have been rejecting exim-users coming in over IPv6.
>
> no. the minute i saw the bug i removed the from my zone file.
And if the Exim mail-server had tried to
On 2008-01-16 at 20:07 -0600, Don Porter wrote:
> Could someone tell me what these error codes mean (or where I might
> look them up)? I am assuming it isn't the generic errno 13
> (Permission Denied), as it seems to be reading the contents of
> /etc/exim4/passwd.client correctly.
exim-4./src/mac
On 2008-01-17 at 15:29 +0200, Bernd Jendrissek wrote:
> How about port 443 - is that closed too? Could you run sslwrap on port
> 443, decrypting and then forwarding connections to localhost:25? Yes,
> you'd have to get your mail clients to connect with SSL
> unconditionally. I *think* that's
On 2008-01-17 at 17:06 +0100, Jakob Hirsch wrote:
> Huh? Which list? The only list involved here is dnslists, and there's no
> ipv6 address given.
(1) I already pointed out that this was wrong; you might want to read
existing replies to a post before replying yourself. Yes, I make
mistak
On 2008-01-17 at 13:29 -0800, WJCarpenter wrote:
> >
> > Gmail supports smtps (SSL-on-connect) and submission (STARTTLS).
> >
> > http://mail.google.com/support/bin/answer.py?answer=78799&topic=12814
> >
>
> It looks like they are willing to do both on the same port. Has anyone
> tried that t
On 2008-01-17 at 23:38 +0100, Jakob Hirsch wrote:
> Phil Pennock wrote:
>
> >> Huh? Which list? The only list involved here is dnslists, and there's no
> >> ipv6 address given.
> > (2) There clearly is an IPv6 address given, since the default lookup
> >
On 2008-01-17 at 17:30 -0800, WJCarpenter wrote:
> Yes, I get all that. However, I think it would be possible in principal
> (admittedly heuristically) to look at the low-level bytes arriving at
> the socket and see if the caller were trying to negotiate SSL with you.
> If they didn't, after a
On 2008-01-17 at 16:41 -0800, Daevid Vincent wrote:
> Last night between 11am and 2am (sorry, I forget the time now), Comcast
> had a service issue, and my IP went wacky for an hour or so. Before I
> went to bed, I had received my same IP address back again and everything
> seemed fine (yet I hadn'
On 2008-01-18 at 13:44 -0800, Jeroen van Aart wrote:
> Adding "self = send" in the "smarthost:" section causes this:
>
> 2008-01-18 13:34:45 1JFyrN-0002Zp-Fy == [EMAIL PROTECTED] R=smarthost
> T=remote_smtp_smarthost defer (-53): retry time not reached for any host
So the retry hints are bad beca
On 2008-01-18 at 21:24 -, Phil (Medway Hosting) wrote:
> Please excuse my posting of this here, but I felt it was justified. I
> hope I don't offend anyone. Please find below a couple of posts from
> today's mail on the Spam-L forum. Please at least visit the first link
> and inwardly digest th
On 2008-01-18 at 15:26 -0800, Jeroen van Aart wrote:
> Since I have this working correctly now I would like to try to add
> something more. Basically I would like it to work on one machine:
>
> MUA --> host-x MTA (exim4) --> host-x ASSP --> host-x MTA (exim4) -->
> internet
If ASSP lets the ma
On 2008-01-18 at 10:52 -0800, Jeroen van Aart wrote:
> I am trying to route outgoing email through assp (a spamfilter proxy)
> like this:
>
> MUA --> MTA (EXIM) --> ASSP --> MTA (EXIM) --> internet
What port is ASSP listening on? 25?
> 2008-01-17 14:15:04 1JFd0q-0004Ij-N1 remote host address
1 - 100 of 1608 matches
Mail list logo