Re: [vchkpw] Re: chkuser - rejects legit mail, when followed by bad e-mail
On 10/11/2010 4:46 PM, U. George wrote: It was not clear to me if chkuser should allow a legit e-mail addr, followed by some bad e-mail addr to be passed along smtpd. Following is a recordio session of one smtp session where there are 3 rcpt to. 2 are bogus, 1 is real. Message is spam. I'm not sure that it's chkuser that is getting in the way; I tested the old version (chkusr 1.0) and it works correctly. The error you pasted: 451 See http://pobox.com/~djb/docs/smtplf.html implies that it's not the fault of chkuser at all; that the message is simply badly formatted and would have been rejected to a single good recipient as well. To accept these types of badly formatted messages, use fixcrio (which you'll have to check if your TLS patch patched). -- Jeremy Kister http://jeremy.kister.net./ !DSPAM:4cb37db632711767595573!
Re: [vchkpw] Re: chkuser - rejects legit mail, when followed by bad e-mail
On 10/11/2010 05:11 PM, Jeremy Kister wrote: To accept these types of badly formatted messages, use fixcrio (which you'll have to check if your TLS patch patched). Well, it appears that the errors, 2 (5xx) perm, and 1 (4xx) try again err, are ignored by the spammer. And ignored by qmail. I dont think i'll be fixing, or accepting any badly formed mail session. Its enough to know that each RCPT TO is processed, and diagnosticly err'd back to the sending MTA. Seems like i need to have the process inform me that although user account is avail, message was rejected for other reasons, and not silently ignored. !DSPAM:4cb381df32712002382765!
Re: [vchkpw] Re: chkuser - rejects legit mail, when followed by bad e-mail
It is not clear to me if the same message is sent to multiple users, or multiple messages to multiple users using the same smtp session. BUT, I think, if the *last* email rcpt is legit, then the message is passed along to that legit account irrespective of any any failures that happened before. I will have to review the mail log to see if thats true. I will have to log the smtpd session to see what the actual conditions are. On 10/08/2010 09:45 AM, Eric Shubert wrote: If I understand this correctly, I think this is the nature of the beast. If you send an email to multiple addresses at the same server/domain, some of which are good, and others which are not, the smtp protocol only allows for rejection or acceptance of the entire message, somewhat unfortunately. Qmail remedies the situation by sending messages individually, but this doesn't solve the problem of other servers sending a mix of valid and invalid addresses in the same message. Also, addresses are processed by chkuser in whatever order the sending server provides them. Sequence is of no significance. U. George wrote: the first e-mail rcpt is legit. It appears that if more rcpts follow, and those accounts dont exist, then the first legit e-mail is not processed, as is rejected with all the other bogus attempts to send e-mail the domain. The chkuser test process appears to try a fake e-mail, and then a legit e-mail. BUt does not try a legit e-mail, and then a fake e-mail. Oct 8 07:35:29 LaptopServer qmail: 07:35:29.452 sslserver: pid 21983 from 212.139.245.241 Oct 8 07:35:29 LaptopServer qmail: 07:35:29.565 sslserver: ok 21983 mail.gatworks.com:96.232.60.244:25 212-139-245-241.dynamic.dsl.as9105.com:212.139.245.241::2202 Oct 8 07:35:31 LaptopServer qmail: 07:35:31.384 CHKUSER accepted sender: from o.samath...@fujitsugeneral.com:: remote nmcdprhc:212-139-245-241.dynamic.dsl.as9105.com:212.139.245.241 rcpt : sender accepted Oct 8 07:35:31 LaptopServer qmail: 07:35:31.385 CHKUSER accepted rcpt: from o.samath...@fujitsugeneral.com:: remote nmcdprhc:212-139-245-241.dynamic.dsl.as9105.com:212.139.245.241 rcpt netbe...@gatworks.com : found existing recipient Oct 8 07:35:31 LaptopServer qmail: 07:35:31.385 CHKUSER rejected rcpt: from o.samath...@fujitsugeneral.com:: remote nmcdprhc:212-139-245-241.dynamic.dsl.as9105.com:212.139.245.241 rcpt nobgatworks...@gatworks.com : not existing recipient Oct 8 07:35:32 LaptopServer qmail: 07:35:32.395 CHKUSER rejected rcpt: from o.samath...@fujitsugeneral.com:: remote nmcdprhc:212-139-245-241.dynamic.dsl.as9105.com:212.139.245.241 rcpt starrea...@gatworks.com : not existing recipient Oct 8 07:35:34 LaptopServer qmail: 07:35:34.375 sslserver: warning: dropping connection, unable to read/create SSL instance Oct 8 07:35:34 LaptopServer qmail: 07:35:34.375 sslserver: end 21982 status 111;N !DSPAM:4caf26cb32719064613040!
Re: [vchkpw] Re: chkuser - rejects legit mail, when followed by bad e-mail
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 On 10/08/2010 11:05 AM, Eric Shubert wrote: U. George wrote: It is not clear to me if the same message is sent to multiple users, or multiple messages to multiple users using the same smtp session. I don't recall ever seeing multiple messages using the same smtp session. I presume it can be done simply by following the . (ending one message) with another MAIL FROM command and proceeding with another message. I just haven't ever (in 4 years of using QMT) seen it in a log. BUT, I think, if the *last* email rcpt is legit, then the message is passed along to that legit account irrespective of any any failures that happened before. I will have to review the mail log to see if thats true. That shouldn't be happening. If any one of the recipients is invalid, the message should be rejected (depending on the bounce/catchall setting of course). Someone please correct me if I'm wrong on this. I will have to log the smtpd session to see what the actual conditions are. Please let us know what you determine. Inquiring minds want to know. ;) A receiving SMTP server that is doing recipient validation for a single message has no reason to reject an entire message simply because a single RCPT command failed. If there are three RCPT commands, two fail, one succeeds, and the sending server continues sending, the single recipient that was accepted will receive the message. The sending server may choose to handle the RCPT failure however it wants, but a receiving server should not reject a DATA command unless there are no recipients to deliver to (or other protocol errors). - -- /* Matt Brookings m...@inter7.com GnuPG Key FAE0672C Software developer Systems technician Inter7 Internet Technologies, Inc. (815)776-9465 */ -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.10 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/ iEYEARECAAYFAkyvQykACgkQIwet2/rgZyz/lACbBO52pCQsXTDPaA+p1Mh6xuVL TxoAnjS0P43p79Rx1lfaAiLrzg6eaS/j =BPvE -END PGP SIGNATURE-
Re: [vchkpw] Re: chkuser - rejects legit mail, when followed by bad e-mail
Quoting Matt Brookings m...@inter7.com: -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 On 10/08/2010 11:05 AM, Eric Shubert wrote: U. George wrote: It is not clear to me if the same message is sent to multiple users, or multiple messages to multiple users using the same smtp session. I don't recall ever seeing multiple messages using the same smtp session. I presume it can be done simply by following the . (ending one message) with another MAIL FROM command and proceeding with another message. I just haven't ever (in 4 years of using QMT) seen it in a log. BUT, I think, if the *last* email rcpt is legit, then the message is passed along to that legit account irrespective of any any failures that happened before. I will have to review the mail log to see if thats true. That shouldn't be happening. If any one of the recipients is invalid, the message should be rejected (depending on the bounce/catchall setting of course). Someone please correct me if I'm wrong on this. I will have to log the smtpd session to see what the actual conditions are. Please let us know what you determine. Inquiring minds want to know. ;) A receiving SMTP server that is doing recipient validation for a single message has no reason to reject an entire message simply because a single RCPT command failed. If there are three RCPT commands, two fail, one succeeds, and the sending server continues sending, the single recipient that was accepted will receive the message. The sending server may choose to handle the RCPT failure however it wants, but a receiving server should not reject a DATA command unless there are no recipients to deliver to (or other protocol errors). There was actually a 'bug' in an older chkuser that did the exact same thing with Hotmail. If you received an email from Hotmail, with two recipients and one was invalid, the error code chkuser spat out was interpreted literally by Hotmail as a full failure and not a user failure and Hotmail would bounce the entire message to the sender. http://mail.tnpi.net/toaster/?0::11467 I debugged the whole thing only to have Tonix wake up in Italy and say 'yeah, upgrade to the latest version' :) What version of chkuser are you running? Rick !DSPAM:4caf458032711916174843!
Re: [vchkpw] Re: chkuser - rejects legit mail, when followed by bad e-mail
chkuser-2.0.9-release.patch On 10/08/2010 12:23 PM, Rick Romero wrote: What version of chkuser are you running? !DSPAM:4caf6d0332711107294771!
