subject:"\[MDaemon\-L\] Mohon analisa log"

[MDaemon-L] Mohon analisa log

2015-09-29 Terurut Topik handoyo

Dear Pak Syafril,





Mohon analisa log  




apakah yg menyebabkan error "550 relay not permitted!"




Tue 2015-09-29 18:58:49.911: --> MAIL From: 
SIZE=22675
Tue 2015-09-29 18:58:50.857: <-- 250 OK
Tue 2015-09-29 18:58:50.857: --> RCPT To:
Tue 2015-09-29 18:58:51.158: <-- 550 relay not permitted!




Apakah pengaruh ke Smart host? Sudah saya ganti ke smtp.mybati.co.id.


Setelah saya ganti smart host ke  smtp.mybati.co.id berarti auth user sudah 
tidak di perlukan lagi kan pak? 





Terima kasih





HandoyoTue 2015-09-29 18:58:42.687: --
Tue 2015-09-29 18:58:45.533: Session 134137; child 0001
Tue 2015-09-29 18:58:45.533: Parsing message 

Tue 2015-09-29 18:58:45.534: *  From: book...@hotel-manhattan.com
Tue 2015-09-29 18:58:45.535: *  To: cahyani.ut...@danone.com
Tue 2015-09-29 18:58:45.535: *  Subject: Re: Room reservation:  Danone group
Tue 2015-09-29 18:58:45.535: *  Size (bytes): 22675
Tue 2015-09-29 18:58:45.535: *  Message-ID: 

Tue 2015-09-29 18:58:45.535: *  Route slip host: mail.hotel-manhattan.com
Tue 2015-09-29 18:58:45.535: *  Route slip port: 25
Tue 2015-09-29 18:58:45.538: Resolving MX record for mail.hotel-manhattan.com 
(DNS Server: 116.254.101.2)...
Tue 2015-09-29 18:58:45.541: *  P=010 S=002 D=hotel-manhattan.com TTL=(12) 
MX=[mx.spamexperts.com]
Tue 2015-09-29 18:58:45.541: *  P=020 S=000 D=hotel-manhattan.com TTL=(12) 
MX=[fallbackmx.spamexperts.eu]
Tue 2015-09-29 18:58:45.541: *  P=030 S=001 D=hotel-manhattan.com TTL=(12) 
MX=[lastmx.spamexperts.net]
Tue 2015-09-29 18:58:45.541: Attempting SMTP connection to mx.spamexperts.com
Tue 2015-09-29 18:58:45.541: Resolving A record for mx.spamexperts.com (DNS 
Server: 116.254.101.2)...
Tue 2015-09-29 18:58:45.543: *  D=mx.spamexperts.com TTL=(0) A=[95.211.233.206]
Tue 2015-09-29 18:58:45.543: *  D=mx.spamexperts.com TTL=(0) A=[199.115.117.7]
Tue 2015-09-29 18:58:45.543: *  D=mx.spamexperts.com TTL=(0) A=[46.165.223.3]
Tue 2015-09-29 18:58:45.543: *  D=mx.spamexperts.com TTL=(0) A=[46.165.223.16]
Tue 2015-09-29 18:58:45.543: *  D=mx.spamexperts.com TTL=(0) A=[85.25.176.214]
Tue 2015-09-29 18:58:45.543: *  D=mx.spamexperts.com TTL=(0) A=[85.25.217.201]
Tue 2015-09-29 18:58:45.543: Randomly picked 199.115.117.7 from list of 
possible hosts
Tue 2015-09-29 18:58:45.543: Attempting SMTP connection to 199.115.117.7:25
Tue 2015-09-29 18:58:45.544: Waiting for socket connection...
Tue 2015-09-29 18:58:45.800: *  Connection established 116.254.103.34:49227 --> 
199.115.117.7:25
Tue 2015-09-29 18:58:45.800: Waiting for protocol to start...
Tue 2015-09-29 18:58:46.355: <-- 220 mx22.antispamcloud.com ESMTP Exim 
4.85-90943 Tue, 29 Sep 2015 13:58:49 +0200
Tue 2015-09-29 18:58:46.356: --> EHLO mail2.hotel-manhattan.com
Tue 2015-09-29 18:58:46.654: <-- 250-mx22.antispamcloud.com Hello 
mail2.hotel-manhattan.com [116.254.103.34]
Tue 2015-09-29 18:58:46.654: <-- 250-SIZE
Tue 2015-09-29 18:58:46.654: <-- 250-8BITMIME
Tue 2015-09-29 18:58:46.654: <-- 250-STARTTLS
Tue 2015-09-29 18:58:46.654: <-- 250 HELP
Tue 2015-09-29 18:58:46.654: --> MAIL From: 
SIZE=22675
Tue 2015-09-29 18:58:46.912: <-- 250 OK
Tue 2015-09-29 18:58:46.912: --> RCPT To:
Tue 2015-09-29 18:58:47.191: <-- 550 relay not permitted!
Tue 2015-09-29 18:58:47.191: --> RCPT To:
Tue 2015-09-29 18:58:47.192: Socket connection closed by the other side (how 
rude!)
Tue 2015-09-29 18:58:47.192: Attempting SMTP connection to 
fallbackmx.spamexperts.eu
Tue 2015-09-29 18:58:47.192: Resolving A record for fallbackmx.spamexperts.eu 
(DNS Server: 116.254.101.2)...
Tue 2015-09-29 18:58:47.195: *  D=fallbackmx.spamexperts.eu TTL=(812) 
A=[188.138.26.158]
Tue 2015-09-29 18:58:47.195: *  D=fallbackmx.spamexperts.eu TTL=(812) 
A=[188.138.26.163]
Tue 2015-09-29 18:58:47.195: *  D=fallbackmx.spamexperts.eu TTL=(812) 
A=[192.96.201.230]
Tue 2015-09-29 18:58:47.195: *  D=fallbackmx.spamexperts.eu TTL=(812) 
A=[207.244.64.160]
Tue 2015-09-29 18:58:47.195: *  D=fallbackmx.spamexperts.eu TTL=(812) 
A=[207.244.64.186]
Tue 2015-09-29 18:58:47.195: *  D=fallbackmx.spamexperts.eu TTL=(812) 
A=[207.244.64.187]
Tue 2015-09-29 18:58:47.195: *  D=fallbackmx.spamexperts.eu TTL=(812) 
A=[207.244.83.250]
Tue 2015-09-29 18:58:47.195: *  D=fallbackmx.spamexperts.eu TTL=(812) 
A=[37.58.52.144]
Tue 2015-09-29 18:58:47.195: *  D=fallbackmx.spamexperts.eu TTL=(812) 
A=[37.58.58.55]
Tue 2015-09-29 18:58:47.195: *  D=fallbackmx.spamexperts.eu TTL=(812) 
A=[46.165.224.89]
Tue 2015-09-29 18:58:47.195: *  D=fallbackmx.spamexperts.eu TTL=(812) 
A=[46.165.233.176]
Tue 2015-09-29 18:58:47.195: *  D=fallbackmx.spamexperts.eu TTL=(812) 
A=[46.165.247.198]
Tue 2015-09-29 18:58:47.195: *  D=fallbackmx.spamexperts.eu TTL=(812) 
A=[82.192.90.155]
Tue 2015-09-29 18:58:47.195: *  D=fallbackmx.spamexperts.eu

[MDaemon-L] Mohon analisa log

2015-09-29 Terurut Topik Syafril Hermansyah

On 2015-09-29 19:20, handoyo wrote:
> apakah yg menyebabkan error "550 relay not permitted!"
>  

> Apakah pengaruh ke Smart host? 

Ya.


> Sudah saya ganti ke smtp.mybati.co.id.
> Setelah saya ganti smart host ke  smtp.mybati.co.id berarti auth user
> sudah tidak di perlukan lagi kan pak?

Tidak harus, kalau IP public MDaemon fixed dan sudah dimasukkan dalam
daftar "allow relay without authentication".

Isian "Send the message to this host"  di menu "unknown mail" sudah
diubah juga?

http://mdaemon.dutaint.co.id/mdaemon/15.5/index.html?unknown_mail.htm


-- 
syafril
---
Syafril Hermansyah
Running MDaemon 15.5.1-64 Beta B, SP 4.5.1-64

Hope is like a road in a country; there was never a road before, but
when many people walk on it, the road comes into existence.
-- Lin Yutang

-- 
--[MDaemon-L]
Milis ini untuk Diskusi antar pengguna MDaemon Mail Server.

Netiket: https://wiki.openstack.org/wiki/MailingListEtiquette
Arsip: http://mdaemon-l.dutaint.com
Dokumentasi : http://mdaemon.dutaint.co.id
Henti Langgan: Kirim mail ke MDaemon-L-unsubscribe [at] dutaint.com
Berlangganan: kirim mail ke MDaemon-L-subscribe [at] dutaint.com
Versi terakhir MD 15.5.0, SP 4.5.1, BES 2.0.2, OC 3.5, SG 3.0.2

[MDaemon-L] Mohon analisa log

2008-07-16 Terurut Topik Syafril Hermansyah


On 07/16/2008 07:38 AM +07:00 Mardi S sihaloho wrote:
Selamat pagi semua. Saya mendapatkan email dari pihak cbn, yang 
menyatakan 
ada komputer dari tempat saya yang melakukan spam. Mohon analisanya 
untuk 
log dibawah ini, apakah dari log tersebut komputer ONNE yang 
melakukannya?. 


Ya.

BTW. Bahasa Indonesia yg benar itu analisis bukan analisa.

--
syafril
---
Syafril Hermansyah
MDaemon-L Moderators, running MDaemon 10.0 Beta GM2
Harap tidak cc: atau kirim ke private mail untuk masalah MDaemon.


--
--[MDaemon-L]
Milis ini untuk Diskusi antar pengguna MDaemon Mail Server.
Mohon tidak posting dengan format HTML atau Rich Text, 
pastikan selalu menggunakan Format Plain-text.


Arsip  : http://mdaemon-l.dutaint.com
Henti Langgan  : Kirim mail ke MDaemon-L-unsubscribe [at] dutaint.com
Berlangganan   : kirim mail ke MDaemon-L-subscribe [at] dutaint.com
Versi Terakhir : MD 9.6.6, SP 3.0.6, OC 2.2.0, SG 1.0.2, PP 1.0

[MDaemon-L] Mohon analisa log

2008-07-15 Terurut Topik Mardi S sihaloho

Selamat pagi semua. Saya mendapatkan email dari pihak cbn, yang menyatakan 
ada komputer dari tempat saya yang melakukan spam. Mohon analisanya untuk 
log dibawah ini, apakah dari log tersebut komputer ONNE yang 
melakukannya?. 

---log 

 - Original Message [CBN-HelpDesk] - 
  From: [EMAIL PROTECTED] 
  To: [EMAIL PROTECTED] 
  Sent: Monday, July 14, 2008 01:05:01 +0700 
  Subject: Possible Spam Abuse Report - cbn.net.id - 202.158.88.248 
  
  This is an automated email abuse report from the folks at 
junkemailfilter.com for an email message received from IP address 
[202.158.88.248] on Sun, 13 Jul 2008 20:58:57 -0700. 
  
  We hope this information will help you in determining the source of the 
problem and shut it down. The original message is attached in MIME format 
with complete headers. For more information about this standardized abuse 
report format [ARF] please visit http://www.mipassoc.org/arf/ If you would 
prefer abuse reports in text format let us know. 
  
  If you have any questions or feedback about this abuse report or are 
interested in learning about our spam filtering technology feel free to 
contact us. If this is not spam please accept our apologies and let us know 
so we can fix the problem. Pay close attention to the REASON listed. 
  Marc Perkel - Fearless Leader 
  Junk Email Filter dot com 
  http://www.junkemailfilter.com 
  
  * Date:Sun, 13 Jul 2008 20:58:57 -0700 
  * From:Elinor Posey [EMAIL PROTECTED] 
  * Subject: Dear [EMAIL PROTECTED] July 85% 0FF 
  * Host:ip88-248.cbn.net.id [202.158.88.248] 
  * Reason:  Bad Address from a virus infected or hacked computer - 
FAKE-MX I=[65.49.42.54] X=venus H=ip88-248.cbn.net.id [202.158.88.248] 
HELO=[ONNE] [EMAIL PROTECTED] [EMAIL PROTECTED] S=[Dear 
[EMAIL PROTECTED] July 85% 0FF] 
  
  For more information about these abuse reports: 
http://wiki.junkemailfilter.com/index.php/Spam_abuse 
  To test or be removed from our blacklist: 
http://ipadmin.junkemailfilter.com/remove.php?ip=202.158.88.248 
  
   Original Headers  
  
  Delivery-date: Sun, 13 Jul 2008 20:58:57 -0700 
  Received: from ip88-248.cbn.net.id ([202.158.88.248] helo=ONNE) 
  by venus.junkemailfilter.com with smtp (Exim 4.68) 
  id 1KIFDE-000429-0u on interface=65.49.42.54 
  for [EMAIL PROTECTED]; Sun, 13 Jul 2008 20:58:57 -0700 
  Content-Return: allowed 
  X-Mailer: CME-V6.5.4.3; MSN 
  Message-Id: [EMAIL PROTECTED] 
  To: [EMAIL PROTECTED] 
  Subject: Dear [EMAIL PROTECTED] July 85% 0FF 
  From: Elinor Posey [EMAIL PROTECTED] 
  MIME-Version: 1.0 
  Content-Type: text/html; charset=UTF-8 
  Content-Transfer-Encoding: 7bit 
  X-Sender-Domain: cbn.net.id 
  X-Spamfilter-host: venus.junkemailfilter.com - 
http://www.junkemailfilter.com 
  X-Mail-from: [EMAIL PROTECTED] 
  X-Spam-Class: SPAM-HIGH-VERY - Bad Address from a virus infected or 
hacked computer - FAKE-MX I=[65.49.42.54] X=venus H=ip88-248.cbn.net.id 
[202.158.88.248] HELO=[ONNE] [EMAIL PROTECTED] 
[EMAIL PROTECTED] S=[Dear [EMAIL PROTECTED] July 85% 
0FF] 
  X-Honeypot: Yes - Bad Address from a virus infected or hacked computer - 
FAKE-MX I=[65.49.42.54] X=venus H=ip88-248.cbn.net.id [202.158.88.248] 
HELO=[ONNE] [EMAIL PROTECTED] [EMAIL PROTECTED] S=[Dear 
[EMAIL PROTECTED] July 85% 0FF] 
  X-Sender-Host-Address: 202.158.88.248 
  X-Sender-Host-Name: ip88-248.cbn.net.id 
  X-Original-helo: ONNE 




-- 
Salam, 




Mardi S Sihaloho 
-- 
http://tetapsegar.blogspot.com 
-- 
--[MDaemon-L]
Milis ini untuk Diskusi antar pengguna MDaemon Mail Server.
Mohon tidak posting dengan format HTML atau Rich Text, 
pastikan selalu menggunakan Format Plain-text.

Arsip  : http://mdaemon-l.dutaint.com
Henti Langgan  : Kirim mail ke MDaemon-L-unsubscribe [at] dutaint.com
Berlangganan   : kirim mail ke MDaemon-L-subscribe [at] dutaint.com
Versi Terakhir : MD 9.6.6, SP 3.0.6, OC 2.2.0, SG 1.0.2, PP 1.0

[ attachment or non Plain-Text portion has been remove by MDaemon ]

[MDaemon-L] Mohon analisa log

[MDaemon-L] Mohon analisa log

[MDaemon-L] Mohon analisa log

[MDaemon-L] Mohon analisa log

4 matches

Site Navigation

Mail list logo

Footer information