Where did this BOGUS file come from.
This is possibly a stupid question, but I don't know where to look for an answer. If you feel you must flame me, please spare the list and email me directly. Running qmail 1.03 on SunOS 5.6 Had a user complaining that an important email never arrived. Poking around in their home directory I found this file ... -rw--- 1 root users 12618 Oct 24 08:34 BOGUS.LtFK looking at its contents... there are 3 emails in it. 2 addressed to the user implicitly and another to a list he subscribed to. Questions: Why weren't these messages piped to the users .mail file ? Is the BOGUS.* file a normal qmail operation ? and if so, what might help to prevent this problem in the future. Any insights greatly apreciated. TIA Duane L - [EMAIL PROTECTED] -
RE: CST17030532ID - OK so I eat spam (fwd) (fwd)
HOORAH! I just love getting "confirmed kills", it's almost a good to see someone elses. :) Thanks, [EMAIL PROTECTED] On Sun, 8 Oct 2000, Martin Randall wrote: > *** Begin of forwarded message *** > > Date: 08-Oct-00 12:05:58 > From: [EMAIL PROTECTED] <[EMAIL PROTECTED]> > Subject: RE: CST17030532ID - OK so I eat spam (fwd) > > --- Forwarded message follows --- > > > Hello marrandy, > > Thank you for writing to MSN Hotmail. > We have closed the account in question because of a violation of our Terms > Of Service (TOS). > You can read our TOS at: > http://www.hotmail.msn.com/cgi-bin/dasp/hminfo_shell.asp?content=tos > Hotmail has comprehensive online help available to you. For more information > on Hotmail features, functions, and issues, click the "Help" button on the > horizontal navigation bar. > > We hope that this e-mail has provided you with the assistance you needed. > > Sincerely, > > Neovanni > MSN Hotmail Customer Support > > > Hello. this person is spamming the qmail mailing list. > > They are also, apparently, harvesting list addresses > > Date: 08-Oct-00 06:48:22 > From: Wheres Mybrudda <[EMAIL PROTECTED]> > Subject: OK so I eat spam > > --- Forwarded message follows --- > > > OK I will admit it > > > > *** End of forwarded message *** > > Regards...Martin > -- > > --- > > The only thing that stops God from sending another flood is that > the first one was useless. > -- Chamfort > > Duane L - [EMAIL PROTECTED] -
Re: Some users not getting mail with Outlook
We see this all the time. Typically there is a message in their spool (.mail or whatever) that has non-standard or forged headers. Using pine to view their mail, and deleting the spam should allow them to retrieve the remaining messages with Outlook. HTH ciao! Duane On Tue, 26 Sep 2000, Andy Abshagen wrote: > We have a few users who are not getting any mail through Outlook. When you > look in their MailDir however there is new mail there. Has anyone seen this > type of problem? If so is there a fix for it? > > Thanks > Andy Abshagen > System Administrator > Data-Vision, Inc. > 219-243-8625, 888-925-8625 > [EMAIL PROTECTED] > > > Duane L - [EMAIL PROTECTED] -
Re: can't send to addresses w/ & in them.
Well apparently the problem is with Outlook Express (surprise surprise) Using Elm or Pine delivers the message just fine. My apoligies for not trying a different mail client before posting my question. Thanks though, Duane On Thu, 21 Sep 2000 [EMAIL PROTECTED] wrote: > On Thu, Sep 21, 2000 at 09:43:57AM -0700, Duane L. wrote: > > > > One of our customers is upset because he can't email his brother at > > his bigfoot address. The address has an ampersand in the username portion > > eg; DNB&[EMAIL PROTECTED] > > > > which qmail (1.03) apparently translates to "dnb^[EMAIL PROTECTED]" and > > I see no evidence of that. Can you show us the log entries? > > Try: > > qmail-inject 'DNB&[EMAIL PROTECTED]' > > and show us your logs as a consequence. > > > Regards. > > > the message is returned as undeliverable. Of course this customer has to > > point out that the sister with the MSN account can send to it, with no > > problems. DOH! > > > > I'm not necessarily trying to correct or work around the problem, but I > > wish I had an RFC I could quote that explains why this isn't working, and > > why MSN shouldn't deliver it either, except it is their nature to > > ignore/bend/break established protocols and procedures. > > > > > > Any insight would be greatly apreciated. > > > > TIA > > Duane L - [EMAIL PROTECTED] - > > > > > > > Duane L - [EMAIL PROTECTED] -
can't send to addresses w/ & in them.
One of our customers is upset because he can't email his brother at his bigfoot address. The address has an ampersand in the username portion eg; DNB&[EMAIL PROTECTED] which qmail (1.03) apparently translates to "dnb^[EMAIL PROTECTED]" and the message is returned as undeliverable. Of course this customer has to point out that the sister with the MSN account can send to it, with no problems. DOH! I'm not necessarily trying to correct or work around the problem, but I wish I had an RFC I could quote that explains why this isn't working, and why MSN shouldn't deliver it either, except it is their nature to ignore/bend/break established protocols and procedures. Any insight would be greatly apreciated. TIA Duane L - [EMAIL PROTECTED] -
Re: RBL... Hmmm...
Believe me, I've been very tempted to blackhole .jp, .kr and don't forget .co.uk or .it but then I realized, for the most port the spam originates from the U.S. and uses an open relay in these countries to spam. I think the long term goal is to educate the admins of these foreign domains. A good way to do that is get them listed in RBL, RSS and DUL. If sending to your domain is important to them, then they'll be prompted to secure their relaying systems. If they do not secure them, then all RBL/DUL/RSS users benefit. Meanwhile, ISPs who catch their customers spamming could apply surcharges, fines and labor costs to the spammers credit card. Sure, they'll never collect, but the spammer won't have credit or a valid credit card to open a new account elsewhere, and spam again. In other words, hit em where it hurts. ... and remeber what the first W stands for in "www" ciao Duane On Mon, 18 Sep 2000, Ben Beuchler wrote: > /me digs through the rblsmtpd entries in his log after enabling RSS and > DUL... > > Hmmm... It seems I could have saved a ton of trouble by just blackholing > all of .jp and .kr! Heh heh... Anyone tried that? > > Ben > > -- > Ben Beuchler [EMAIL PROTECTED] > MAILER-DAEMON (612) 321-9290 x101 > Bitstream Underground www.bitstream.net > Duane L - [EMAIL PROTECTED] -
telltale sign of RBL & DUL
I've been placed in charge of our mail servers, although its not my area.. I'm apparently the best candidate. (heaven help us) Question: I need to determine what, if any anti spam methods are set up eg; MAPS RBL - MAPS Realtime Blackhole List. MAPS TSI - MAPS Transport Security Initiative. MAPS DUL - MAPS Dial-up User List. MAPS RSS - MAPS Relay Spam Stopper I think I can safely assume that RBL is setup, since the response to test email sent to [EMAIL PROTECTED] reflects that IPs listed in MAPS RBL are rejected. How about the other ones ? Any insights greatly apreciated. Regards, Duane L - [EMAIL PROTECTED] -
Re: Strange Problems with tcprules.
Did anyone else get 3 copies of this message ? On Tue, 29 Aug 2000, TD wrote: > I am running qmail and vpopmail. > > Hi. My qmail server has been humming along quite nicely. > Its a small server with a small amount of users. I noticed logging > in via POP had become very slow so I decided to talk a closer look. > I notice that the tcprules process and the vchkpw process is sometimes > using up to 90% of CPU consitently. I also noticed a lot of large files in > the > /etc/tcprules.d directory with the following type of names: > > qmail-smtpd.tmp.24168 > qmail-smtpd.tmp.24105 > etc > > I tried restarting the pop server and qmail but it seems to just continue > on taking up so much CPU, same with rebooting. > > I only have 100 users on this server so I dont think I should have any > problems. > > How do I go about debugging this ? > > It has been working fine for about 5 months until this. > > thanks ! > Tony > Duane L - [EMAIL PROTECTED] -
How is this damn spam getting through.
I am about ready have a conniption. Perhaps I'm mistaken in what portion of the mail header qmail actually looks at. 8< - - - - - >From: [EMAIL PROTECTED] >To: [EMAIL PROTECTED] >Subject: Get a $1000 FREE Satellite TV System .. > FREE SATELLITE T.V. SYSTEM 8< - - - - - I have '*@indiatimes.com' in badmailfrom I have 'satsystems*' in badrcptpatterns So what am I missing? (exsposing cranium to sharp blows from a clue stick) Duane L - [EMAIL PROTECTED] -
determing local path
Someone enlightened me of a very helpful qmail command that took a local email address as an argument, and then it spat out the path to where it would delivery the message... except I can't recall the command and I've lost that email, and (of course) can't remember who sent it. I'm having some difficulties trouble shooting a mail delivery problem for one of our users, and I'm sure the output of this command (whatever it is) would be most helpful. If you happen to have a guess, please let me know. Duane L - [EMAIL PROTECTED] -