I'm using the newest 20060201 patch.
/Mikkel
Just to verify that I have processed the tcprules, as you can see it works for non existing users.
--
2006-04-26 13:07:00.738381500 tcpserver: pid 31358 from 130.226.47.171
2006-04-26 13:07:00.738383500 tcpserver: ok 31358 0:192.38.9.203:25 :130.226.47.171::42908
2006-04-26 13:07:00.740976500 qmail-smtpd 31358: connection from 130.226.47.171 (unknown) to 0
2006-04-26 13:07:00.740981500 qmail-smtpd 31358: enabled options: sanitycheck returnmxcheck spfbehavior-fail(3) rblcheck rcptcheck smtp-auth rejectexecutables
2006-04-26 13:07:00.743433500 qmail-smtpd 31358: remote ehlo: mail.cbs.dk
2006-04-26 13:07:00.745881500 qmail-smtpd 31358: mail from: [EMAIL PROTECTED]
2006-04-26 13:07:00.753028500 qmail-smtpd 31358: SPF checking comleted
2006-04-26 13:07:00.914284500 qmail-smtpd 31358: RBL check with 'sbl.spamhaus.org': no match found, continue.
2006-04-26 13:07:00.967662500 qmail-smtpd 31358: RBL check with 'relays.ordb.org': no match found, continue.
2006-04-26 13:07:01.014700500 qmail-smtpd 31358: RBL check with 'list.dsbl.org': no match found, continue.
2006-04-26 13:07:01.062368500 qmail-smtpd 31358: RBL check with 'bl.spamcop.net': no match found, continue.
2006-04-26 13:07:01.066974500 qmail-smtpd 31358: RBL check with 'relays.ordb.org': no match found, continue.
2006-04-26 13:07:01.197600500 qmail-smtpd 31358: RBL check with 'spamguard.leadmon.net': no match found, continue.
2006-04-26 13:07:01.197633500 qmail-smtpd 31358: RBL checking completed
2006-04-26 13:07:01.258659500 qmail-smtpd 31358: rcpt to: [EMAIL PROTECTED]
2006-04-26 13:07:01.258708500 qmail-smtpd 31358: recipient verify, recipient not in goodmailaddr
2006-04-26 13:07:01.258735500 qmail-smtpd 31358: recipient verify, recipient is local
2006-04-26 13:07:01.288559500 qmail-smtpd 31358: bad recipient: [EMAIL PROTECTED]
2006-04-26 13:07:01.288609500 qmail-smtpd 31358: message denied: Sorry, no mailbox here by that name. (#5.1.1)
2006-04-26 13:07:01.289293500 qmail-smtpd 31358: 'rcpt to' first
2006-04-26 13:07:01.462654500 qmail-smtpd 31358: quit, closing connection
2006-04-26 13:07:01.463029500 tcpserver: end 31358 status 0
--
2006-04-26 13:08:29.624461500 tcpserver: pid 31366 from 130.226.47.171
2006-04-26 13:08:29.624463500 tcpserver: ok 31366 0:192.38.9.203:25 :130.226.47.171::42924
2006-04-26 13:08:29.624466500 qmail-smtpd 31366: connection from 130.226.47.171 (unknown) to 0
2006-04-26 13:08:29.624469500 qmail-smtpd 31366: enabled options: sanitycheck returnmxcheck spfbehavior-fail(3) rblcheck rcptcheck smtp-auth rejectexecutables
2006-04-26 13:08:29.625531500 qmail-smtpd 31366: remote ehlo: mail.cbs.dk
2006-04-26 13:08:29.628063500 qmail-smtpd 31366: mail from: [EMAIL PROTECTED]
2006-04-26 13:08:29.635120500 qmail-smtpd 31366: SPF checking comleted
2006-04-26 13:08:29.640110500 qmail-smtpd 31366: RBL check with 'sbl.spamhaus.org': no match found, continue.
2006-04-26 13:08:29.693464500 qmail-smtpd 31366: RBL check with 'relays.ordb.org': no match found, continue.
2006-04-26 13:08:29.740485500 qmail-smtpd 31366: RBL check with 'list.dsbl.org': no match found, continue.
2006-04-26 13:08:29.775458500 qmail-smtpd 31366: RBL check with 'bl.spamcop.net': no match found, continue.
2006-04-26 13:08:29.780042500 qmail-smtpd 31366: RBL check with 'relays.ordb.org': no match found, continue.
2006-04-26 13:08:29.784725500 qmail-smtpd 31366: RBL check with 'spamguard.leadmon.net': no match found, continue.
2006-04-26 13:08:29.784756500 qmail-smtpd 31366: RBL checking completed
2006-04-26 13:08:29.811783500 qmail-smtpd 31366: rcpt to: [EMAIL PROTECTED]
2006-04-26 13:08:29.811823500 qmail-smtpd 31366: recipient verify, recipient not in goodmailaddr
2006-04-26 13:08:29.811850500 qmail-smtpd 31366: recipient verify, recipient is local
2006-04-26 13:08:29.850975500 qmail-smtpd 31366: bad recipient: [EMAIL PROTECTED]
2006-04-26 13:08:29.851027500 qmail-smtpd 31366: message denied: Sorry, no mailbox here by that name. (#5.1.1)
2006-04-26 13:08:29.851717500 qmail-smtpd 31366: 'rcpt to' first
2006-04-26 13:08:30.037195500 qmail-smtpd 31366: quit, closing connection
2006-04-26 13:08:30.037567500 tcpserver: end 31366 status 0
2006-04-26 13:08:30.037569500 tcpserver: status: 0/40
--
On Wed, 2006-04-26 at 12:24 +0200, Claudio Jeker wrote:
On Wed, Apr 26, 2006 at 08:59:11AM +0200, Claudio Jeker wrote: > On Wed, Apr 26, 2006 at 08:49:27AM +0200, Mikkel Kruse Johnsen wrote: > > Hi > > > > I have a problem, have just been pointed out that my qmail ldap is an > > reverse open relay, meaning that sending a mail to a non existing user > > on my domain will result i a bounce to the "mail from:" address and that > > can be faked. > > > > So adding "RCPTCHECK" to the environment should do it. > > > > :allow,SMTPAUTH="",RETURNMXCHECK="",SANITYCHECK="",RCPTCHECK="",REJECTEXEC="",QHPSI="/usr/bin/clamdscan",QHPSIARG1="--no-summary",LOGLEVEL="4" > > > > That will make the SMTP connection disconnect if the user is not in the > > LDAP. > > > > But sending a mail to a valid user with "-something" after like > > "[EMAIL PROTECTED]" will get accepted. I have compiled without > > DASH_EXT. > > > > What could be the problem ? > > > > Hmpf. Smells like a bug. I'll have a look at it. > I can not reproduce it. 250 ok rcpt to: <[EMAIL PROTECTED]> qmail-smtpd 20924: rcpt to: [EMAIL PROTECTED] qmail-smtpd 20924: recipient verify, recipient not in goodmailaddr qmail-smtpd 20924: recipient verify, recipient is local qmail-smtpd 20924: bad recipient: [EMAIL PROTECTED] qmail-smtpd 20924: message denied: Sorry, no mailbox here by that name. (#5.1.1) 554 Sorry, no mailbox here by that name. (#5.1.1) What version of qmail-ldap are you using?
|
Mikkel Kruse Johnsen Linet Ørholmgade 6 st tv 2200 København N Tlf: +45 2128 7793 email: [EMAIL PROTECTED] www: http://www.linet.dk |
