On 07/11/02 at 10:16, Warren Michelsen wrote:
> My mail queue is filling up with email for a domain that is gone.
> They were formerly my clients but due to non-payment of long-overdue
> bills and failure to respond to my calls and email, I shut them down.
Probably a silly question as you've probably already checked this, but are
you sure that the actual messages are queued to be relayed, or could the
queued messages be bounce messages.
> I deleted all reference to their domains from my router, deleted
> their email accounts and removed their zones from my DNS.
> Unfortunately, a guy who does off-site (out of state, actually)
> secondary DNS for me has not yet deleted the zones for these domains
> from his name server. So, senders are still able to get a valid MX
> for their domains and mail still arrives for them. Since there are no
> appropriate accounts on my SIMS server for the arriving email, they
> sit in my queue.
If the off-site name server is serving the zone as a secondary/slave
server, it should eventually expire the data after it can no longer get
zone transfers from your master server. How long that takes depends on the
'refresh' and 'expires' values in the zone's SOA.
> I had thought that SIMS would reject email to domains for which there
> are no router entries, with either a No-Such-Account or a
> We-Don't-Relay error.
If there are no router entries that tell SIMS to treat the domain as local,
and no entries to forward addresses in the domain(s) elsewhere, then SIMS
should reject messages with a no-relay error (assuming you have 'relay for
clients only' enabled and the messages are coming from non-client hosts).
Others have already suggested ways to deal with this in your router, so
I'll leave it be.
> I've triple-checked my router and there's nothing that I can see
> which would allow such mail to be accepted. I have used the new
> address tester in the router of the latest versions of SIMS and an
> address like. [EMAIL PROTECTED] resolves to "name at
> SMTP(domain-that-is-gone.com)" which tells me there is no local
> delivery.
Yes, but the 'name at SMTP(domain-that-is-gone)' indicates, I believe, that
SIMS thinks it should try to deliver the message via SMTP to
domain-that-is-gone.
> In accepting such email, isn't SIMS open to a denial-of-service
> attack? Someone could just send lots of junk and fill the volume so
> that various processes failed.
>
> Curious.
--
Christopher Bort | [EMAIL PROTECTED]
Webmaster, Global Homes | [EMAIL PROTECTED]
<http://www.globalhomes.com/>
#############################################################
This message is sent to you because you are subscribed to
the mailing list <[EMAIL PROTECTED]>.
To unsubscribe, E-mail to: <[EMAIL PROTECTED]>
To switch to the DIGEST mode, E-mail to <[EMAIL PROTECTED]>
To switch to the INDEX mode, E-mail to <[EMAIL PROTECTED]>
Send administrative queries to <[EMAIL PROTECTED]>
