I'm also experiencing this problem...
It happened at one point in time yesterday, mail that internal users sent, was either duplicated, or redirected (I've had reports of both) to "other" external addresses. The "other" addresses were not known to the individual users, but did correspond with someone within my organization.
For example:
User A (internal) sent an email to user B (external) User X (external) corresponds regularly with user C (internal) User X receives the email from user A, user B receives nothing.
Our primary email server has recently been upgraded from 20030501 to 20030801. The various servers in our qmail-ldap cluster are either 20030501, or 20011001a.
Could this have anything to do with the fact that we have qmail-ldap servers of varying versions within our cluster?
Is anybody aware of any bugs / configuration issues which I might have slipped up on?
Many thanks, David Young
Rafael Angarita wrote:
David Benfell wrote:
On Tue, 26 Aug 2003 13:24:54 -0400, Rafael Angarita wrote:I'm not sure about this...
I'm having an strange problem with my qmail servers, some times our users get messages returned from remote servers that they haven't sent to (there is no virus in their systems, some of them are unix hosts).
The headers indicate that the message is sent directly from the mail server but the destination address is not copied in the email, for example I got this returned mail but the original sender didn't sent message to [EMAIL PROTECTED] (neither he knows this guy) and there is no forward or virus in his PC (it's a unix machine)
First, this is not a qmail problem.
Second, this is a forged e-mail address problem. Often these bounceNop, there is no forged email address in this case, the headers are the same that the original email and the whole header is consistent. Qmail deliveries the message and a copy is delivered/forwarded to an additional email address, you receive the remote returned email if the remote email does not exist., and there is no fwd configured in the local account.
messages include the full headers of the message which bounced and
I'll just bet if you compare the IP addresses contained in the
Received From headers to your own, you'll find no match.
------- This e-mail and attachments are confidential/legally privileged and any unauthorised use, distribution or disclosure thereof, in whatever form, by anyone other than the addressee is prohibited. If you have received this e-mail in error, please destroy it. The views and opinions in this e-mail and attachments may not necessarily be those of the Directors and Management of the Lithotech Group of Companies. The aforementioned does not accept any liability for any damage, loss or expense arising from this e-mail and/or from accessing any attachments.
