percenthack
Hi, for a specifi application, I would need percenthack to work with qmail-ldap. I've first send my question to that list but got no answer, maybe somebody here can point me in the right direction. I have in my percenthack file (and in control/locals): testdomain.be Now when I sent a mail to: [EMAIL PROTECTED] I see in the qmail-smtp logs it arrives ok (using LOGLEVEL of 3, which is an qmail-ldap feature) but in the qmail logfiles, I see the mail is trying to be delivered to: [EMAIL PROTECTED] (mark the underscore). Now, can anybody tell me where that underscore comes from? Franky
link for qmail users at abuse.net (was: help!! percenthack??)
Quoting Alex Pennace ([EMAIL PROTECTED]): > On Thu, Dec 21, 2000 at 03:03:33PM +, Thomas Ackermann wrote: > > > so whats up here, thought the percenthack is turned off by defualt if > > > the file's not here ?? > > > help fast!!! > > I give up. Why didn't you bother reading the blinking bold text > underneath that statement? Since I went and suggested asking John Levine to add a link for qmail users when relay test 6 is failed, I decided I might as well ask him myself. I whipped up a quick web page at http://meehan.org/qmail.html that I've asked John to check out. Feedback from all of you would be great, too. Aaron
AW: help!! percenthack??
Better you read the abuse net's FAQ for the test. Qmail is discarding it later, so relay checkers like the one from ORBS that check wether the mail gets really delivered won't put you on the Open Relay List. Abuse.net's checker doesn't do this. Mit freundlichen Grüssen Thomas Arnold Chief Management Application Services # Ihre Xmedia Agentur:# # http://www.alea-active.com # alea active GmbH| fon: 06201 - 90 20 4-0 Hauptstr. 97-99 | fax: 06201 - 90 20 4-17 69 469 Weinheim |Leonardo: 06201 - 90 20 4-27 mail: [EMAIL PROTECTED] | Fritz-Data: 06201 - 90 20 4-26 = -Ursprüngliche Nachricht- Von: Cyril Bitterich [mailto:[EMAIL PROTECTED]] Gesendet: Donnerstag, 21. Dezember 2000 15:12 An: Thomas Ackermann Cc: [EMAIL PROTECTED] Betreff: Re: help!! percenthack?? Hi Thomas Ackermann wrote: > > > Relay test result > > > > > >Hmmn, at first glance, host appeared to accept a message for relay. ^^ Would you please be so kind to reread the above line. And you might want to give a second thought to the meaning of the words "at first glance" and "appeared". (Maybe you'd also like to look them up in a dictionary.) Cyril
Re: help!! percenthack??
Thomas Ackermann <[EMAIL PROTECTED]> writes on 21 December 2000 at 15:03:55 + > > >>>> RSET > > ><<< 250 flushed > > >>>> MAIL FROM:<[EMAIL PROTECTED]> > > ><<< 250 ok > > >>>> RCPT TO:<[EMAIL PROTECTED]> > > ><<< 250 ok > > > > > > Relay test result > > > > > >Hmmn, at first glance, host appeared to accept a message for relay. > > > > > > > > > so whats up here, thought the percenthack is turned off by defualt if > > the file's not here ?? > > help fast!!! To answer in a bit more detail -- percenthack is indeed turned off if the file isn't there. If percenthack is turned off, the message is accepted for delivery to user "relaytest%abuse.net". It's likely that you have no such user on your system; if so, the message will be bounced. If you do have such a user, it will be delivered to that user. In no case, however, will it be relayed to [EMAIL PROTECTED] (if percenthack is off). What's the very next line of results say? In the versions I've seen, the very next line is even more explanation that it won't know if relaying is going on until the relayed message arrives. -- David Dyer-Bennet / Welcome to the future! / [EMAIL PROTECTED] SF: http://www.dd-b.net/dd-b/ Minicon: http://www.mnstf.org/minicon/ Photos: http://dd-b.lighthunters.net/
Re: help!! percenthack??
Hi Thomas Ackermann wrote: > > > Relay test result > > > > > >Hmmn, at first glance, host appeared to accept a message for relay. ^^ Would you please be so kind to reread the above line. And you might want to give a second thought to the meaning of the words "at first glance" and "appeared". (Maybe you'd also like to look them up in a dictionary.) Cyril
Re: help!! percenthack??
On Thu, Dec 21, 2000 at 03:03:33PM +, Thomas Ackermann wrote: > > >>>> RSET > > ><<< 250 flushed > > >>>> MAIL FROM:<[EMAIL PROTECTED]> > > ><<< 250 ok > > >>>> RCPT TO:<[EMAIL PROTECTED]> > > ><<< 250 ok > > > > > > Relay test result > > > > > >Hmmn, at first glance, host appeared to accept a message for relay. > > > > so whats up here, thought the percenthack is turned off by defualt if > > the file's not here ?? > > help fast!!! I give up. Why didn't you bother reading the blinking bold text underneath that statement?
help!! percenthack??
> >>>> RSET > ><<< 250 flushed > >>>> MAIL FROM:<[EMAIL PROTECTED]> > ><<< 250 ok > >>>> RCPT TO:<[EMAIL PROTECTED]> > ><<< 250 ok > > > > Relay test result > > > >Hmmn, at first glance, host appeared to accept a message for relay. > > > > > so whats up here, thought the percenthack is turned off by defualt if > the file's not here ?? > help fast!!! > thx > Thomas
Elaborative: percenthack
On Tue, Oct 19, 1999 at 03:55:21PM -0700, Ted Lin wrote:
>
> If you wouldn't mind, I've read the man page, but I'm afraid I still don't
> fully understand the purpose of the percenthack control file. Can you shed
> any light on this?
(Here is a more elaborate answer.
This is also to be found at http://x42.com/qmail/doc/percenthack.txt
about the percenthack
=
This is a historic reminiscence from the days routed mail through serial
lines and uucp-connections more often than on leased lines.
It's use is to force routing of mail through one or several hosts, and to be
able to put this chain of routing hosts into the mailaddress itself.
You should know that this form of routed addressing is not recommended,
but it is unfortunately sometimes required when the local host is acting
as a gateway between two networks.
The function is this:
If the percenthack for a domain is enabled, then the mailhost is able to
expand mailaddresses that contains %-signs. A percent hacked mail address
is an address that consists of one username and one or more fully qualified
domain name (FQDN) of hosts that the mail shall be routed through.
Example 1:
example.com shall route mail for the domain uucp.example.com according to the
percent hack scheme. The only qmail configuration needed is to put
uucp.example1.com
in the file "controls/percenthack".
Now a mail sent to [EMAIL PROTECTED] will be rewritten to
"[EMAIL PROTECTED]" before any local delivery is done.
Conclusion: The mail is relayed (or forced to be routed) through
example.com. This relaying thing is not good if you sit on an open line, and
therefore percenthack should only be enabled within closed and controlled
networks.
The percenthack is not limited to one percent-sign. Only the last percent is
rewritten, and thus the address can include a whole chain of hosts that the
mail should be routed through.
Example 2:
We set up this example routing environment
host1.example.com host2.example.com
+--++-+
| || | /
|"uucp.example.com"++"int.example.com"++ internet
| || | \
+--++-+
to show how a two-step percenthack routing is done.
host1.example.com has the domain "uucp.example.com" in the
control/percenthack-file and in rcpthosts.
host2.example.com has the domain "int.example.com" in the
control/percenthack-file and in rcpthosts.
Now when a mail is sent to
[EMAIL PROTECTED]
(and the DNS for the sending party says that the MX for uucp.example.com is
host1.example.com) then the host1.example.com removes the @uucp.example.com
part and changes the last percent to a @, thus making the address now to
read
[EMAIL PROTECTED]
which forces it to be routed to host2.example.com which handles the
int.example.com mail.
So, in step 2, the host2.example.com rewrites the address by removing
@int.example.com and delivers the mail to
[EMAIL PROTECTED]
No part of this percenthack rewriting is written into the message headers;
it merely looks like this:
>From [EMAIL PROTECTED] Wed Oct 20 03:30:46 1999
Return-Path: <[EMAIL PROTECTED]>
Delivered-To: [EMAIL PROTECTED]
Received: (qmail 16667 invoked from network); 20 Oct 1999 03:30:46 -
Received: from host2.example.com (10.0.1.12)
by mail.example.com with SMTP; 20 Oct 1999 03:30:46 -
Received: (qmail 10513 invoked from network); 20 Oct 1999 03:30:37 -
Received: from host1.example.com (10.0.1.11)
by host2.example.com with SMTP; 20 Oct 1999 03:30:37 -
--
Note that the percenthack rewriting is done before local delivery is
handled. This is important if the righthand part of the newly expanded
address is a domain that is handled by the current host.
>From the qmail-send(8) man page:
percenthack
List of domain names where the percent hack is applied.
If domain is listed in percenthack, any address of the
form user%fqdn@domain is rewritten as user@fqdn. user
may contain %, so the percent hack may be applied
repeatedly. qmail-send handles percenthack before
locals.
Re: HELP - I can't shut off percenthack
Craig Shrimpton wrote: > In desperation I re-patched and re-compiled the server. Now all of a sudden > it's working like it's supposed to. I've seen that kind of weirdness with > DOS C programs but never with a "Unixoid" application. I have, many times. I usually attribute it to things like having applied the instructions slightly incorrectly, or applied my own changes inconsistently. This is why instead of manually installing things, I create a script that does the entire install, starting from untarring the tarball fresh each time it runs. That way I know I have a consistent compile/install each time. If I make changes, I won't "forget" something I did the last time. I installed qmail this way. -- Phil Howard | [EMAIL PROTECTED] [EMAIL PROTECTED] [EMAIL PROTECTED] phil | [EMAIL PROTECTED] [EMAIL PROTECTED] [EMAIL PROTECTED] at| [EMAIL PROTECTED] [EMAIL PROTECTED] [EMAIL PROTECTED] ipal | [EMAIL PROTECTED] [EMAIL PROTECTED] [EMAIL PROTECTED] dot| [EMAIL PROTECTED] [EMAIL PROTECTED] [EMAIL PROTECTED] net | [EMAIL PROTECTED] [EMAIL PROTECTED] [EMAIL PROTECTED]
Re: HELP - I can't shut off percenthack
In desperation I re-patched and re-compiled the server. Now all of a sudden it's working like it's supposed to. I've seen that kind of weirdness with DOS C programs but never with a "Unixoid" application. Strange... Thanks, Craig - Original Message - From: Russell Nelson <[EMAIL PROTECTED]> To: <[EMAIL PROTECTED]> Sent: Tuesday, October 12, 1999 10:12 AM Subject: Re: HELP - I can't shut off percenthack > Are you sure you don't have a sendmail host somewhere in your email > chain? If the percenthack isn't turned on, qmail doesn't treat > the percent character specially.
Re: HELP - I can't shut off percenthack
Craig Shrimpton writes: > I can't shut off the percenthack feature. Qmail 1.01 ignores an absent or > an empty percenthack file. It will relay mail for any ip alias on the > server except for the fqdn of the host. How do I shut it down? Are you sure you don't have a sendmail host somewhere in your email chain? If the percenthack isn't turned on, qmail doesn't treat the percent character specially. -- -russ nelson <[EMAIL PROTECTED]> http://russnelson.com Crynwr sells support for free software | PGPok | Government schools are so 521 Pleasant Valley Rd. | +1 315 268 1925 voice | bad that any rank amateur Potsdam, NY 13676-3213 | +1 315 268 9201 FAX | can outdo them. Homeschool!
HELP - I can't shut off percenthack
I can't shut off the percenthack feature. Qmail 1.01 ignores an absent or an empty percenthack file. It will relay mail for any ip alias on the server except for the fqdn of the host. How do I shut it down? If it ignores the control/percenthack, can I make a code change somewhere and recompile? Thanks, -Craig
Qmail 1.01 ignores percenthack settings
Folks, I have Qmail 1.01 with several patches (Qmail antispam and a fix for \n termination) According to qmail-showctl, the percenthack is disabled. However, it works for any IP on the server except for the actual fqdn of the mail host. When I send a message to [EMAIL PROTECTED] (the official name) I get a bounce saying no such user. When I send a message to [EMAIL PROTECTED] (a virtual web host on same machine) it sends the message. I've tried with an empty percenthack file and no percenthack file. I can't seem to disable percenthacks and now I'm on the ORBS list. Is this a known issue with 1.01 or am I missing something? I want to turn it off globally. Thanks, Craig
