I only configured "Do LDAP lookup for valid local addresses".
"Do LDAP lookup for local domains " is off.
We have IBM Domino as LDAP server, but LDAP Result is 0!
Mär-17-16 15:48:27 [Worker_1] Info: LDAP Results
(|(cn=xyz)([email protected])([email protected])([email protected])(uid=xyz)):
0 :
Mär-17-16 15:48:27 [Worker_1] Info: caching result for
[email protected] in LDAPNotFound
If I look in the log, it's not clear why this should be a local domain.
The whole config is the same since years and worked without any
problems. I only changed the ASSP version from 2.4.5 to 2.4.7.
Thanks!
Nicole
Am 21.03.2016 um 09:58 schrieb Thomas Eckardt:
Mär-17-16 15:48:27 [Worker_1] Info: LDAP added @lindner-group.com to
LDAPlist
...........
Info: LDAP added @lindner-group.com to LDAPlist (suppressed 2 concurrent
equal 'Info' loglines from all Workers)
(1)
It looks like you've configured to verify local domains using LDAP.
And for what ever reason, your LDAP server knows 'lindner-group.com' as a
local domain.
OR
(2)
Any other email address for '[email protected]' is valid for your
LDAP-server (LDAP-query). If this is the case, and a previous mail was
sent by this user (email-address) - assp adds the domain '
@lindner-group.com' to the LDAP-list, because if the email-address is
local, the domain in the email-address must be local!
The second case happens, if your LDAP-server is for example MS-AD based
and you use global addressbooks and your LDAP-query-string is too weak.
For example- this one (yours):
(|(cn=xyz)([email protected])([email protected])([email protected])(uid=xyz))
is very much too weak. All entries are logical OR processed.
Assume you have a local user account 'administrator' and the user
'[email protected]' sends an email to assp - this LDAP-query
returns 1 (valid) for cn=administrator and assp will add '
@lindner-group.com' to the LDAP-list, which makes it valid as a local
domain.
another example
local user account: a.merkel
send mail by : [email protected]
@bundesregierung.de will be processed as localDomain - because a.merkel is
a valid user account (cn= or uid=)
Something like this may work. You have to make sure, that the LDAP server
returns 1 only for valid local accounts!
(&(|(|(|(|(&(objectclass=user)(objectcategory=person))(objectcategory=group))(objectclass=publicfolder))(!(objectclass=contact)))(objectclass=msExchDynamicDistributionList))(proxyaddresses=smtp:EMAILADDRESS))
(&(|(|(|(|(&(objectclass=user)(objectcategory=person))(objectcategory=group))(objectclass=publicfolder))(!(objectclass=contact)))(objectclass=msExchDynamicDistributionList))(mail=EMAILADDRESS))
In any case, remove the wrong entry from the ldaplist!
Thomas
Von: Nicole Hähnel <[email protected]>
An: "[email protected]" ">>" Questions and Answers for
users of ASSP Anti-Spam SMTP Proxy
<[email protected]>
Datum: 21.03.2016 08:42
Betreff: [Assp-user] Problem with Unknown Sender in Local Domain
Hi,
since we changed to ASSP version 2.4.7(16036) we have constantly mails
which are rejected with "Unknown Sender in Local Domain".
But the sending domain is definitley not in the list of local domains.
I have to put the domains in the noprocessing list so that they pass assp.
Where is the fault?
Any experiences with this problem?
Mär-17-16 15:48:27 [Worker_1] Info: LDAP added @lindner-group.com to
LDAPlist
Mär-17-16 15:48:27 [Worker_1] [email protected] matches
@lindner-group.com in whiteListedDomains
Info: LDAP added @lindner-group.com to LDAPlist (suppressed 2 concurrent
equal 'Info' loglines from all Workers)
Mär-17-16 15:48:27 [Worker_1] Info: LDAP - [email protected] not
found in LDAP-cache (ldaplistdb)
Info: LDAP - [email protected] not found in LDAP-cache (ldaplistdb)
(suppressed 2 concurrent equal 'Info' loglines from all Workers)
Mär-17-16 15:48:27 [Worker_1] Info: LDAP Results
(|(cn=xyz)([email protected])([email protected])([email protected])(uid=xyz)):
0 :
Mär-17-16 15:48:27 [Worker_1] Info: caching result for
[email protected] in LDAPNotFound
Mär-17-16 15:48:27 m1-26107-13134 [Worker_1] 80.154.221.141
<[email protected]> Message-Score: added 20 (flValencePB) for
InvalidLocalSender, total score for this message is now 20
Mär-17-16 15:48:27 m1-26107-13134 [Worker_1] 80.154.221.141
<[email protected]> PB-IP-Score for '80.154.221.141' is 20, added 20
for InvalidLocalSender
Mär-17-16 15:48:27 m1-26107-13134 [Worker_1] [InvalidLocalSender]
80.154.221.141 <[email protected]> [spam found] Unknown Sender in
Local Domain
Mär-17-16 15:48:27 m1-26107-13134 [Worker_1] 80.154.221.141
<[email protected]> [SMTP Error] 554 5.7.1 Unknown Sender in Local
Domain .
Mär-17-16 15:48:27 m1-26107-13134 [Worker_1] 80.154.221.141
<[email protected]> info: PB-IP-Score for '80.154.221.0' is 20,
added 20 in this session
Thanks!
Kind regards,
Nicole
------------------------------------------------------------------------------
Transform Data into Opportunity.
Accelerate data analysis in your applications with
Intel Data Analytics Acceleration Library.
Click to learn more.
http://pubads.g.doubleclick.net/gampad/clk?id=278785351&iu=/4140
_______________________________________________
Assp-user mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/assp-user
DISCLAIMER:
*******************************************************
This email and any files transmitted with it may be confidential, legally
privileged and protected in law and are intended solely for the use of the
individual to whom it is addressed.
This email was multiple times scanned for viruses. There should be no
known virus in this email!
*******************************************************
------------------------------------------------------------------------------
Transform Data into Opportunity.
Accelerate data analysis in your applications with
Intel Data Analytics Acceleration Library.
Click to learn more.
http://pubads.g.doubleclick.net/gampad/clk?id=278785351&iu=/4140
_______________________________________________
Assp-user mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/assp-user
------------------------------------------------------------------------------
Transform Data into Opportunity.
Accelerate data analysis in your applications with
Intel Data Analytics Acceleration Library.
Click to learn more.
http://pubads.g.doubleclick.net/gampad/clk?id=278785351&iu=/4140
_______________________________________________
Assp-user mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/assp-user
