Yes, now I see, I did not have SMTP logging set to a level low enough to see the complete error. I have two problems, one being that I am on the MAPS DUL, which is probably an insurmountable one,
Given what I can snoop out, it probably is. As long as you are using IP addresses that look like dialups (i.e different people use them at different times) you belong on the various dynamic-address lists. AOL oes not use MAPS as far as they have admitted, but for some time they have been compiling and using their own 'DUL' and using it on their mail servers.
and the second being that my server is failing an open relay test because it is allowing mail to be sent when the sender pretends to be from the resolved WAN IP of my router.
I think that's not quite accurate... It looks like SIMS is accepting based on a bad recipient, nit a bogus sender.
[...]Following is the transcript of the test; note that I have set the client host checking and verify return paths to on, and my client host range is 192.168.1.1-192.168.1.254:
Relay test 3<<< 250 SMTP state resetRSET<<< 250 <[EMAIL PROTECTED]> sender acceptedMAIL FROM: <[EMAIL PROTECTED]>RCPT TO: <[EMAIL PROTECTED]><<< 571 <[EMAIL PROTECTED]> we do not relay. relay NOT accepted!!
Relay test 4<<< 250 SMTP state resetRSETMAIL FROM: <[EMAIL PROTECTED]><<< 572 <[EMAIL PROTECTED]> IP-address names are not accepted relay NOT accepted!!
Relay test 5<<< 250 SMTP state resetRSET<<< 250 <[EMAIL PROTECTED]> sender acceptedMAIL FROM: <[EMAIL PROTECTED]>RCPT TO: <[EMAIL PROTECTED]><<< 471 <[EMAIL PROTECTED]> cannot be ac cepted now: path is unknown. relay NOT accepted!!
Relay test 6<<< 250 SMTP state resetRSET<<< 250 <[EMAIL PROTECTED]> sender acceptedMAIL FROM: <[EMAIL PROTECTED]>RCPT TO: <[EMAIL PROTECTED]><<< 571 <[EMAIL PROTECTED]> we do not relay. relay NOT accepted!!
Note the senders in those 4 tests. All identical to the next 2, but the above all resulted in rejected mail.
Relay test 7<<< 250 SMTP state resetRSET<<< 250 <[EMAIL PROTECTED]> sender acceptedMAIL FROM: <[EMAIL PROTECTED]>RCPT TO: <"[EMAIL PROTECTED]"><<< 250 <"[EMAIL PROTECTED]"> recipient accepted relay accepted!!
Accepted does not mean delivered. Technically, the address that was aimed at is being interpreted as local because it is in double-quotes.
Usually, SIMS would reject that because it is a bogus local address. If you have the Unknown account function on (generally a bad idea) or otherwise have mapped all local accounts to someplace then that would explain the acceptance of the mail. Check your logs and note that this SHOULD NOT result in SIMS actually trying to pass the mail off to [EMAIL PROTECTED] at any point.
Relay test 8<<< 250 SMTP state resetRSET<<< 250 <[EMAIL PROTECTED]> sender acceptedMAIL FROM: <[EMAIL PROTECTED]>RCPT TO: <"relaytest%rbl.jp"><<< 250 <"relaytest%rbl.jp"> recipient accepted relay accepted!!
The same holds here. Mail addresses can include elements that are called 'quoted strings' by the spec, and MTA's are not supposed to try to do anything to the parts of an address that are in quoted strings other than pass them to delivery agents. Relay testers (and very rarely, spammers) try this trick because there have been some MTA's (notably sendmail, but also SIMS in an older version ) that dequote the quoted strings and then pass the results to a delivery agent that tries the full address resolution process of the MTA, only this time on the dequoted string. Systems with that bug will deliver such relay tests to the test address.
My guess is that you have some router setup for the Unknown account or something that does the equivalent of making all local addresses deliverable to someplace. With that in place, there is no way to pass the acceptance phase of relay tests, meaning that you will end up listed in open relay blacklists like the Osirusoft one, which lists on test message acceptance and delists only after 48 hours of no delivery of the test.
--
Bill Cole
[EMAIL PROTECTED]
############################################################# This message is sent to you because you are subscribed to the mailing list <[EMAIL PROTECTED]>. To unsubscribe, E-mail to: <[EMAIL PROTECTED]> To switch to the DIGEST mode, E-mail to <[EMAIL PROTECTED]> To switch to the INDEX mode, E-mail to <[EMAIL PROTECTED]> Send administrative queries to <[EMAIL PROTECTED]>
