hi all-
we've been having a rather bizzare problem recently: certain emails sent
from hotmail arrive every 5 minutes or so. some unfortunate users are
receiving up to 200 copies of certain pieces of mail. originally, i
thought this to be a problem with our primary mailserver (or our internet
connection), as some of the dups would come directly to our primary
mailserver, and some would arrive form the backup (lower preference MX).
there was a problem with the primary: tcpserver was consigured to refuse
certain remote connections, so it makes perfect sense that lots of mail
would bounce to the backup. but that problem was resolved serveral days
ago, and now we're still getting flooded from certain hotmail accounts.
checklist:
1. these aren't attacks of any sort: every originating address is valis
and recognized by the users here.
2. the dns records appear to be correct.
3. output of qmail-showctl(shown below)
If there's no obvious reason why this is happening, is there at least an
easy way to prevent it on an individual basis?
TIA-
Dan
[dkelley@mx1]$ /var/qmail/bin/qmail-showctl
qmail home directory: /var/qmail.
user-ext delimiter: -.
paternalism (in decimal): 2.
silent concurrency limit: 120.
subdirectory split: 23.
user ids: 500, 501, 502, 0, 503, 504, 505, 506.
group ids: 500, 501.
badmailfrom: (Default.) Any MAIL FROM is allowed.
bouncefrom: (Default.) Bounce user name is MAILER-DAEMON.
bouncehost: (Default.) Bounce host name is mx1.ny.otec.com.
concurrencylocal: Local concurrency is 30.
concurrencyremote: Remote concurrency is 120.
databytes: (Default.) SMTP DATA limit is 0 bytes.
defaultdomain: Default domain name is ny.otec.com.
defaulthost: (Default.) Default host name is mx1.ny.otec.com.
doublebouncehost: (Default.) 2B recipient host: mx1.ny.otec.com.
doublebounceto: (Default.) 2B recipient user: postmaster.
envnoathost: (Default.) Presumed domain name is mx1.ny.otec.com.
helohost: (Default.) SMTP client HELO host name is mx1.ny.otec.com.
idhost: (Default.) Message-ID host name is mx1.ny.otec.com.
localiphost: (Default.) Local IP address becomes mx1.ny.otec.com.
locals:
Messages for mx1.ny.otec.com are delivered locally.
Messages for localhost are delivered locally.
Messages for mailhost are delivered locally.
Messages for mailhost.otec.com are delivered locally.
Messages for mailhost.ny.otec.com are delivered locally.
Messages for otec.com are delivered locally.
Messages for rbl.com are delivered locally.
Messages for mailhost.rbl.com are delivered locally.
Messages for ca.otec.com are delivered locally.
Messages for ny.otec.com are delivered locally.
Messages for cio.genx.net are delivered locally.
Messages for analogue.net are delivered locally.
Messages for orb.analogue.net are delivered locally.
Messages for www.analogue.net are delivered locally.
Messages for microgravity.analogue.net are delivered locally.
me: My name is mx1.ny.otec.com.
percenthack: (Default.) The percent hack is not allowed.
plusdomain: Plus domain name is otec.com.
qmqpservers: (Default.) No QMQP servers.
queuelifetime: (Default.) Message lifetime in the queue is 604800 seconds.
rcpthosts:
SMTP clients may send messages to recipients at gc.ny.otec.com.
SMTP clients may send messages to recipients at gc.ny.otec.net.
SMTP clients may send messages to recipients at bos.otec.net.
SMTP clients may send messages to recipients at bos.otec.com.
SMTP clients may send messages to recipients at mx1.bos.otec.net.
SMTP clients may send messages to recipients at mx1.bos.otec.com.
SMTP clients may send messages to recipients at mailhost.bos.otec.net.
SMTP clients may send messages to recipients at mailhost.bos.otec.com.
SMTP clients may send messages to recipients at otec.com.
SMTP clients may send messages to recipients at mailhost.otec.com.
SMTP clients may send messages to recipients at mx1.ny.otec.com.
SMTP clients may send messages to recipients at db1.gc.ny.otec.com.
SMTP clients may send messages to recipients at mx2.ny.genx.net.
SMTP clients may send messages to recipients at localhost.
SMTP clients may send messages to recipients at mailhost.ca.otec.com.
SMTP clients may send messages to recipients at mailhost.ny.otec.com.
SMTP clients may send messages to recipients at mailhost.rbl.com.
SMTP clients may send messages to recipients at mailhost2.ca.otec.com.
SMTP clients may send messages to recipients at mailhost2.ny.otec.com.
SMTP clients may send messages to recipients at mailhost2.otec.com.
SMTP clients may send messages to recipients at mailhost2.rbl.com.
SMTP clients may send messages to recipients at ny.otec.com.
SMTP clients may send messages to recipients at otec.com.
SMTP clients may send messages to recipients at rbl.com.
morercpthosts: (Default.) No effect.
morercpthosts.cdb: (Default.) No effect.
smtpgreeting: (Default.) SMTP greeting: 220 mx1.ny.otec.com.
smtproutes: (Default.) No artificial SMTP routes.
timeoutconnect: (Default.) SMTP client connection timeout is 60 seconds.
timeoutremote: (Default.) SMTP client data timeout is 1200 seconds.
timeoutsmtpd: (Default.) SMTP server data timeout is 1200 seconds.
virtualdomains:
Virtual domain: otec.com:alias
Virtual domain: mailhost.otec.com:alias
Virtual domain: mx2.ny.genx.net:alias
TIA
________________
Dan Kelley
www.otec.com
212-840-8600
________________
