Re: [spamdyke-users] Strage happend (time to time)
Sorry! I was making a test! Sorry - Original Message - From: "Sam Clippinger" <[EMAIL PROTECTED]> To: "spamdyke users" Sent: Monday, July 14, 2008 4:10 PM Subject: Re: [spamdyke-users] Strage happend (time to time) > My apologies; I assumed that your test session with "RCPT TO: > [EMAIL PROTECTED]" was edited. > > I have your configuration file and your "supervise" script but I'm still > not having any luck trying to reproduce this on my own, so there's > something about your configuration that I don't understand. Without > seeing your other files (access file, local domains file, whitelist > files, etc) and without seeing the data you've edited, I don't know what > else I can do to help you. If I can't find a way to reproduce this > behavior myself, I can't fix it. > > By the way, could you please check the date on your PC and your server? > For some reason, your last few messages have arrived with month-old > dates (June, not July). > > -- Sam Clippinger > > Pablo Murillo wrote: >> Sorry, but I'm not replacing any data >> ONLY the IP address of my MX record >> The rest of the "manual simulation" I sent is the real data I'm using >> >> >> ----- Original Message - >> From: "Sam Clippinger" <[EMAIL PROTECTED]> >> To: "spamdyke users" >> Sent: Monday, July 14, 2008 11:21 AM >> Subject: Re: [spamdyke-users] Strage happend (time to time) >> >> >> >>> I understand why you're replacing sensitive data with "xxx". >>> However, I can't fix this problem if I can't find a way to reproduce it >>> myself. That's why I'm asking you to send the real unaltered data to me >>> directly at [EMAIL PROTECTED] I won't share it with anyone and it might >>> help me figure out what's happening. >>> >>> -- Sam Clippinger >>> >>> Pablo Murillo wrote: >>> >>>> I only using x to replace the IP of my MX record >>>> The rest of X are what I'm really using to make the test >>>> >>>> my rcpthost has more than 1100 domains >>>> I do a test with only 3 domains, and the trouble persist >>>> >>>> I did one more test, I changed the name of the rcpthost for one that >>>> not >>>> exist, ant spamdyke report the error, so, it is using rcpthost, but not >>>> returnig the error when the domain in the rcpt command isn't found in >>>> rcpthost >>>> >>>> My be I'm not expresing very well >>>> Sorry! >>>> >>>> >>>> - Original Message - >>>> From: "Sam Clippinger" <[EMAIL PROTECTED]> >>>> To: "spamdyke users" >>>> Sent: Sunday, July 13, 2008 7:10 PM >>>> Subject: Re: [spamdyke-users] Strage happend (time to time) >>>> >>>> >>>> >>>> >>>>> When spamdyke's configuration includes both the "local-domains-file" >>>>> and >>>>> "access-file" options, it attempts to control relaying itself and it >>>>> tells qmail to allow relaying. When you remove the "access-file" >>>>> option, spamdyke can't control relaying and it allows qmail to do the >>>>> work instead. That's why you're seeing the rejections from qmail when >>>>> "access-file" is not present. >>>>> >>>>> It's possible that spamdyke is incorrectly finding the recipient's >>>>> domain in your list of local domains. I understand that you don't >>>>> want >>>>> to post private information on the mailing list, so could you send me >>>>> your real rcpthosts file and the name of the domain you're using in >>>>> your >>>>> tests directly to me? When you replace all of the real information >>>>> with >>>>> "xxx", I can't do very much testing here. >>>>> >>>>> -- Sam Clippinger >>>>> >>>>> Pablo Murillo wrote: >>>>> >>>>> >>>>>> my tcp.smtp has only one line >>>>>> :allow >>>>>> >>>>>> This servers (4 now) are only MX, it can receive mail from anywhere, >>>>>> but >>>>>> only allow mail form local
Re: [spamdyke-users] Strage happend (time to time)
I think that what I didn't know how to explain is that these are not the servers used by customers to SEND mail, these are the MX servers receiving mail to my customer Don't worry, I will try version 4 :D - Original Message - From: "Sam Clippinger" <[EMAIL PROTECTED]> To: "spamdyke users" Sent: Monday, July 14, 2008 4:10 PM Subject: Re: [spamdyke-users] Strage happend (time to time) > My apologies; I assumed that your test session with "RCPT TO: > [EMAIL PROTECTED]" was edited. > > I have your configuration file and your "supervise" script but I'm still > not having any luck trying to reproduce this on my own, so there's > something about your configuration that I don't understand. Without > seeing your other files (access file, local domains file, whitelist > files, etc) and without seeing the data you've edited, I don't know what > else I can do to help you. If I can't find a way to reproduce this > behavior myself, I can't fix it. > > By the way, could you please check the date on your PC and your server? > For some reason, your last few messages have arrived with month-old > dates (June, not July). > > -- Sam Clippinger > > Pablo Murillo wrote: >> Sorry, but I'm not replacing any data >> ONLY the IP address of my MX record >> The rest of the "manual simulation" I sent is the real data I'm using >> >> >> - Original Message - >> From: "Sam Clippinger" <[EMAIL PROTECTED]> >> To: "spamdyke users" >> Sent: Monday, July 14, 2008 11:21 AM >> Subject: Re: [spamdyke-users] Strage happend (time to time) >> >> >> >>> I understand why you're replacing sensitive data with "xxx". >>> However, I can't fix this problem if I can't find a way to reproduce it >>> myself. That's why I'm asking you to send the real unaltered data to me >>> directly at [EMAIL PROTECTED] I won't share it with anyone and it might >>> help me figure out what's happening. >>> >>> -- Sam Clippinger >>> >>> Pablo Murillo wrote: >>> >>>> I only using x to replace the IP of my MX record >>>> The rest of X are what I'm really using to make the test >>>> >>>> my rcpthost has more than 1100 domains >>>> I do a test with only 3 domains, and the trouble persist >>>> >>>> I did one more test, I changed the name of the rcpthost for one that >>>> not >>>> exist, ant spamdyke report the error, so, it is using rcpthost, but not >>>> returnig the error when the domain in the rcpt command isn't found in >>>> rcpthost >>>> >>>> My be I'm not expresing very well >>>> Sorry! >>>> >>>> >>>> - Original Message - >>>> From: "Sam Clippinger" <[EMAIL PROTECTED]> >>>> To: "spamdyke users" >>>> Sent: Sunday, July 13, 2008 7:10 PM >>>> Subject: Re: [spamdyke-users] Strage happend (time to time) >>>> >>>> >>>> >>>> >>>>> When spamdyke's configuration includes both the "local-domains-file" >>>>> and >>>>> "access-file" options, it attempts to control relaying itself and it >>>>> tells qmail to allow relaying. When you remove the "access-file" >>>>> option, spamdyke can't control relaying and it allows qmail to do the >>>>> work instead. That's why you're seeing the rejections from qmail when >>>>> "access-file" is not present. >>>>> >>>>> It's possible that spamdyke is incorrectly finding the recipient's >>>>> domain in your list of local domains. I understand that you don't >>>>> want >>>>> to post private information on the mailing list, so could you send me >>>>> your real rcpthosts file and the name of the domain you're using in >>>>> your >>>>> tests directly to me? When you replace all of the real information >>>>> with >>>>> "xxx", I can't do very much testing here. >>>>> >>>>> -- Sam Clippinger >>>>> >>>>> Pablo Murillo wrote: >>>>> >>>>> >>>>>> my tcp.smtp has only one line >>>>>> :allow >>&
Re: [spamdyke-users] Strage happend (time to time)
Hace todo salvo controlar que los mails q llegan al servidor esten dentro del archivo rcpthost - Original Message - From: "nightduke" <[EMAIL PROTECTED]> To: "spamdyke users" Sent: Monday, July 14, 2008 3:40 PM Subject: Re: [spamdyke-users] Strage happend (time to time) y que es lo que quieres que haga el spamdyke. 2008/6/14 Pablo Murillo <[EMAIL PROTECTED]>: > Estos servidores son MX, o sea, son los que reciben mail del 'exterior' > para > los dominios que tengo alojados en mis servidores (mas de 1100) > El smth auth es para el saliende de mis dominios, esto es para el entrante > Creo que se da una confusion clasica, el SMTP es tanto entrante como > saliente, todo depende del lado que se lo mire > Si yo mando desde mi pc, hago uso de MI smtp (tengo POP before smtp), pero > cuando yo te mando por ejemplo este mail a vos, mi servidor (qmail-send) > conversa con TU smtp, y ahi es donde esta el problema > Me explique mejor ? > Es un tema que da a mucha confusion > > - Original Message - > From: "nightduke" <[EMAIL PROTECTED]> > To: "spamdyke users" > Sent: Monday, July 14, 2008 3:03 PM > Subject: Re: [spamdyke-users] Strage happend (time to time) > > > Pablo > ¿Porque no usas smtpauth?Tendrias mas seguridad y menos > problemas,spamdyke lo soporta > > > > 2008/6/14 Pablo Murillo <[EMAIL PROTECTED]>: >> Sorry, but I'm not replacing any data >> ONLY the IP address of my MX record >> The rest of the "manual simulation" I sent is the real data I'm using >> >> >> - Original Message - >> From: "Sam Clippinger" <[EMAIL PROTECTED]> >> To: "spamdyke users" >> Sent: Monday, July 14, 2008 11:21 AM >> Subject: Re: [spamdyke-users] Strage happend (time to time) >> >> >>>I understand why you're replacing sensitive data with "xxx". >>> However, I can't fix this problem if I can't find a way to reproduce it >>> myself. That's why I'm asking you to send the real unaltered data to me >>> directly at [EMAIL PROTECTED] I won't share it with anyone and it might >>> help me figure out what's happening. >>> >>> -- Sam Clippinger >>> >>> Pablo Murillo wrote: >>>> I only using x to replace the IP of my MX record >>>> The rest of X are what I'm really using to make the test >>>> >>>> my rcpthost has more than 1100 domains >>>> I do a test with only 3 domains, and the trouble persist >>>> >>>> I did one more test, I changed the name of the rcpthost for one that >>>> not >>>> exist, ant spamdyke report the error, so, it is using rcpthost, but not >>>> returnig the error when the domain in the rcpt command isn't found in >>>> rcpthost >>>> >>>> My be I'm not expresing very well >>>> Sorry! >>>> >>>> >>>> - Original Message - >>>> From: "Sam Clippinger" <[EMAIL PROTECTED]> >>>> To: "spamdyke users" >>>> Sent: Sunday, July 13, 2008 7:10 PM >>>> Subject: Re: [spamdyke-users] Strage happend (time to time) >>>> >>>> >>>> >>>>> When spamdyke's configuration includes both the "local-domains-file" >>>>> and >>>>> "access-file" options, it attempts to control relaying itself and it >>>>> tells qmail to allow relaying. When you remove the "access-file" >>>>> option, spamdyke can't control relaying and it allows qmail to do the >>>>> work instead. That's why you're seeing the rejections from qmail when >>>>> "access-file" is not present. >>>>> >>>>> It's possible that spamdyke is incorrectly finding the recipient's >>>>> domain in your list of local domains. I understand that you don't >>>>> want >>>>> to post private information on the mailing list, so could you send me >>>>> your real rcpthosts file and the name of the domain you're using in >>>>> your >>>>> tests directly to me? When you replace all of the real information >>>>> with >>>>> "xxx", I can't do very much testing here. >>>>> >>>>> -- Sam Clippinger >>>>> >>>>> Pablo Murillo wrote: >>>>> >&
Re: [spamdyke-users] Strage happend (time to time)
Hola Pablo! Yo tenia un server con Uds cuando trabajaba en la AOA. Tengo muy buen recuerdo de Uds que siempre daban una mano con las config y demas. Saludos! Sergio Minini :: NetKey Solutions :: ( 4742.1101 :: http://www.netkey.com.ar P: ¿Realmente necesitás imprimir este correo electrónico? Ahorremos papel. > -Original Message- > From: [EMAIL PROTECTED] > [mailto:[EMAIL PROTECTED] On Behalf Of > Pablo Murillo > Sent: Saturday, June 14, 2008 3:34 PM > To: spamdyke users > Subject: Re: [spamdyke-users] Strage happend (time to time) > > > Estos servidores son MX, o sea, son los que reciben mail del > 'exterior' para > los dominios que tengo alojados en mis servidores (mas de > 1100) El smth auth es para el saliende de mis dominios, esto > es para el entrante Creo que se da una confusion clasica, el > SMTP es tanto entrante como > saliente, todo depende del lado que se lo mire > Si yo mando desde mi pc, hago uso de MI smtp (tengo POP > before smtp), pero > cuando yo te mando por ejemplo este mail a vos, mi servidor > (qmail-send) > conversa con TU smtp, y ahi es donde esta el problema > Me explique mejor ? > Es un tema que da a mucha confusion > ___ spamdyke-users mailing list spamdyke-users@spamdyke.org http://www.spamdyke.org/mailman/listinfo/spamdyke-users
Re: [spamdyke-users] Strage happend (time to time)
My apologies; I assumed that your test session with "RCPT TO: [EMAIL PROTECTED]" was edited. I have your configuration file and your "supervise" script but I'm still not having any luck trying to reproduce this on my own, so there's something about your configuration that I don't understand. Without seeing your other files (access file, local domains file, whitelist files, etc) and without seeing the data you've edited, I don't know what else I can do to help you. If I can't find a way to reproduce this behavior myself, I can't fix it. By the way, could you please check the date on your PC and your server? For some reason, your last few messages have arrived with month-old dates (June, not July). -- Sam Clippinger Pablo Murillo wrote: > Sorry, but I'm not replacing any data > ONLY the IP address of my MX record > The rest of the "manual simulation" I sent is the real data I'm using > > > - Original Message - > From: "Sam Clippinger" <[EMAIL PROTECTED]> > To: "spamdyke users" > Sent: Monday, July 14, 2008 11:21 AM > Subject: Re: [spamdyke-users] Strage happend (time to time) > > > >> I understand why you're replacing sensitive data with "xxx". >> However, I can't fix this problem if I can't find a way to reproduce it >> myself. That's why I'm asking you to send the real unaltered data to me >> directly at [EMAIL PROTECTED] I won't share it with anyone and it might >> help me figure out what's happening. >> >> -- Sam Clippinger >> >> Pablo Murillo wrote: >> >>> I only using x to replace the IP of my MX record >>> The rest of X are what I'm really using to make the test >>> >>> my rcpthost has more than 1100 domains >>> I do a test with only 3 domains, and the trouble persist >>> >>> I did one more test, I changed the name of the rcpthost for one that not >>> exist, ant spamdyke report the error, so, it is using rcpthost, but not >>> returnig the error when the domain in the rcpt command isn't found in >>> rcpthost >>> >>> My be I'm not expresing very well >>> Sorry! >>> >>> >>> - Original Message - >>> From: "Sam Clippinger" <[EMAIL PROTECTED]> >>> To: "spamdyke users" >>> Sent: Sunday, July 13, 2008 7:10 PM >>> Subject: Re: [spamdyke-users] Strage happend (time to time) >>> >>> >>> >>> >>>> When spamdyke's configuration includes both the "local-domains-file" and >>>> "access-file" options, it attempts to control relaying itself and it >>>> tells qmail to allow relaying. When you remove the "access-file" >>>> option, spamdyke can't control relaying and it allows qmail to do the >>>> work instead. That's why you're seeing the rejections from qmail when >>>> "access-file" is not present. >>>> >>>> It's possible that spamdyke is incorrectly finding the recipient's >>>> domain in your list of local domains. I understand that you don't want >>>> to post private information on the mailing list, so could you send me >>>> your real rcpthosts file and the name of the domain you're using in your >>>> tests directly to me? When you replace all of the real information with >>>> "xxx", I can't do very much testing here. >>>> >>>> -- Sam Clippinger >>>> >>>> Pablo Murillo wrote: >>>> >>>> >>>>> my tcp.smtp has only one line >>>>> :allow >>>>> >>>>> This servers (4 now) are only MX, it can receive mail from anywhere, >>>>> but >>>>> only allow mail form localdomins (rcpthost) >>>>> >>>>> I will make one more today and I will run the test, and then I will >>>>> send >>>>> the >>>>> results >>>>> >>>>> What look strange to me was that qmail rejects the mail for not being >>>>> in >>>>> rcpthost, not spamdyke >>>>> >>>>> Manual conversion form one server to another >>>>> - >>>>> Connected to xxx.xxx.xxx.xxx >>>>> Escape character is '^]'. >>>>&g
Re: [spamdyke-users] Strage happend (time to time)
y que es lo que quieres que haga el spamdyke. 2008/6/14 Pablo Murillo <[EMAIL PROTECTED]>: > Estos servidores son MX, o sea, son los que reciben mail del 'exterior' para > los dominios que tengo alojados en mis servidores (mas de 1100) > El smth auth es para el saliende de mis dominios, esto es para el entrante > Creo que se da una confusion clasica, el SMTP es tanto entrante como > saliente, todo depende del lado que se lo mire > Si yo mando desde mi pc, hago uso de MI smtp (tengo POP before smtp), pero > cuando yo te mando por ejemplo este mail a vos, mi servidor (qmail-send) > conversa con TU smtp, y ahi es donde esta el problema > Me explique mejor ? > Es un tema que da a mucha confusion > > - Original Message - > From: "nightduke" <[EMAIL PROTECTED]> > To: "spamdyke users" > Sent: Monday, July 14, 2008 3:03 PM > Subject: Re: [spamdyke-users] Strage happend (time to time) > > > Pablo > ¿Porque no usas smtpauth?Tendrias mas seguridad y menos > problemas,spamdyke lo soporta > > > > 2008/6/14 Pablo Murillo <[EMAIL PROTECTED]>: >> Sorry, but I'm not replacing any data >> ONLY the IP address of my MX record >> The rest of the "manual simulation" I sent is the real data I'm using >> >> >> - Original Message - >> From: "Sam Clippinger" <[EMAIL PROTECTED]> >> To: "spamdyke users" >> Sent: Monday, July 14, 2008 11:21 AM >> Subject: Re: [spamdyke-users] Strage happend (time to time) >> >> >>>I understand why you're replacing sensitive data with "xxx". >>> However, I can't fix this problem if I can't find a way to reproduce it >>> myself. That's why I'm asking you to send the real unaltered data to me >>> directly at [EMAIL PROTECTED] I won't share it with anyone and it might >>> help me figure out what's happening. >>> >>> -- Sam Clippinger >>> >>> Pablo Murillo wrote: >>>> I only using x to replace the IP of my MX record >>>> The rest of X are what I'm really using to make the test >>>> >>>> my rcpthost has more than 1100 domains >>>> I do a test with only 3 domains, and the trouble persist >>>> >>>> I did one more test, I changed the name of the rcpthost for one that not >>>> exist, ant spamdyke report the error, so, it is using rcpthost, but not >>>> returnig the error when the domain in the rcpt command isn't found in >>>> rcpthost >>>> >>>> My be I'm not expresing very well >>>> Sorry! >>>> >>>> >>>> - Original Message - >>>> From: "Sam Clippinger" <[EMAIL PROTECTED]> >>>> To: "spamdyke users" >>>> Sent: Sunday, July 13, 2008 7:10 PM >>>> Subject: Re: [spamdyke-users] Strage happend (time to time) >>>> >>>> >>>> >>>>> When spamdyke's configuration includes both the "local-domains-file" >>>>> and >>>>> "access-file" options, it attempts to control relaying itself and it >>>>> tells qmail to allow relaying. When you remove the "access-file" >>>>> option, spamdyke can't control relaying and it allows qmail to do the >>>>> work instead. That's why you're seeing the rejections from qmail when >>>>> "access-file" is not present. >>>>> >>>>> It's possible that spamdyke is incorrectly finding the recipient's >>>>> domain in your list of local domains. I understand that you don't want >>>>> to post private information on the mailing list, so could you send me >>>>> your real rcpthosts file and the name of the domain you're using in >>>>> your >>>>> tests directly to me? When you replace all of the real information >>>>> with >>>>> "xxx", I can't do very much testing here. >>>>> >>>>> -- Sam Clippinger >>>>> >>>>> Pablo Murillo wrote: >>>>> >>>>>> my tcp.smtp has only one line >>>>>> :allow >>>>>> >>>>>> This servers (4 now) are only MX, it can receive mail from anywhere, >>>>>> but >>>>>> only allow mail form localdomins (rcpthost) >>>>>> >>>>>> I wil
Re: [spamdyke-users] Strage happend (time to time)
Estos servidores son MX, o sea, son los que reciben mail del 'exterior' para los dominios que tengo alojados en mis servidores (mas de 1100) El smth auth es para el saliende de mis dominios, esto es para el entrante Creo que se da una confusion clasica, el SMTP es tanto entrante como saliente, todo depende del lado que se lo mire Si yo mando desde mi pc, hago uso de MI smtp (tengo POP before smtp), pero cuando yo te mando por ejemplo este mail a vos, mi servidor (qmail-send) conversa con TU smtp, y ahi es donde esta el problema Me explique mejor ? Es un tema que da a mucha confusion - Original Message - From: "nightduke" <[EMAIL PROTECTED]> To: "spamdyke users" Sent: Monday, July 14, 2008 3:03 PM Subject: Re: [spamdyke-users] Strage happend (time to time) Pablo ¿Porque no usas smtpauth?Tendrias mas seguridad y menos problemas,spamdyke lo soporta 2008/6/14 Pablo Murillo <[EMAIL PROTECTED]>: > Sorry, but I'm not replacing any data > ONLY the IP address of my MX record > The rest of the "manual simulation" I sent is the real data I'm using > > > - Original Message - > From: "Sam Clippinger" <[EMAIL PROTECTED]> > To: "spamdyke users" > Sent: Monday, July 14, 2008 11:21 AM > Subject: Re: [spamdyke-users] Strage happend (time to time) > > >>I understand why you're replacing sensitive data with "xxx". >> However, I can't fix this problem if I can't find a way to reproduce it >> myself. That's why I'm asking you to send the real unaltered data to me >> directly at [EMAIL PROTECTED] I won't share it with anyone and it might >> help me figure out what's happening. >> >> -- Sam Clippinger >> >> Pablo Murillo wrote: >>> I only using x to replace the IP of my MX record >>> The rest of X are what I'm really using to make the test >>> >>> my rcpthost has more than 1100 domains >>> I do a test with only 3 domains, and the trouble persist >>> >>> I did one more test, I changed the name of the rcpthost for one that not >>> exist, ant spamdyke report the error, so, it is using rcpthost, but not >>> returnig the error when the domain in the rcpt command isn't found in >>> rcpthost >>> >>> My be I'm not expresing very well >>> Sorry! >>> >>> >>> - Original Message - >>> From: "Sam Clippinger" <[EMAIL PROTECTED]> >>> To: "spamdyke users" >>> Sent: Sunday, July 13, 2008 7:10 PM >>> Subject: Re: [spamdyke-users] Strage happend (time to time) >>> >>> >>> >>>> When spamdyke's configuration includes both the "local-domains-file" >>>> and >>>> "access-file" options, it attempts to control relaying itself and it >>>> tells qmail to allow relaying. When you remove the "access-file" >>>> option, spamdyke can't control relaying and it allows qmail to do the >>>> work instead. That's why you're seeing the rejections from qmail when >>>> "access-file" is not present. >>>> >>>> It's possible that spamdyke is incorrectly finding the recipient's >>>> domain in your list of local domains. I understand that you don't want >>>> to post private information on the mailing list, so could you send me >>>> your real rcpthosts file and the name of the domain you're using in >>>> your >>>> tests directly to me? When you replace all of the real information >>>> with >>>> "xxx", I can't do very much testing here. >>>> >>>> -- Sam Clippinger >>>> >>>> Pablo Murillo wrote: >>>> >>>>> my tcp.smtp has only one line >>>>> :allow >>>>> >>>>> This servers (4 now) are only MX, it can receive mail from anywhere, >>>>> but >>>>> only allow mail form localdomins (rcpthost) >>>>> >>>>> I will make one more today and I will run the test, and then I will >>>>> send >>>>> the >>>>> results >>>>> >>>>> What look strange to me was that qmail rejects the mail for not being >>>>> in >>>>> rcpthost, not spamdyke >>>>> >>>>> Manual conversion form one server to another >>>>> - >>>>> Connect
Re: [spamdyke-users] Strage happend (time to time)
Pablo ¿Porque no usas smtpauth?Tendrias mas seguridad y menos problemas,spamdyke lo soporta 2008/6/14 Pablo Murillo <[EMAIL PROTECTED]>: > Sorry, but I'm not replacing any data > ONLY the IP address of my MX record > The rest of the "manual simulation" I sent is the real data I'm using > > > - Original Message - > From: "Sam Clippinger" <[EMAIL PROTECTED]> > To: "spamdyke users" > Sent: Monday, July 14, 2008 11:21 AM > Subject: Re: [spamdyke-users] Strage happend (time to time) > > >>I understand why you're replacing sensitive data with "xxx". >> However, I can't fix this problem if I can't find a way to reproduce it >> myself. That's why I'm asking you to send the real unaltered data to me >> directly at [EMAIL PROTECTED] I won't share it with anyone and it might >> help me figure out what's happening. >> >> -- Sam Clippinger >> >> Pablo Murillo wrote: >>> I only using x to replace the IP of my MX record >>> The rest of X are what I'm really using to make the test >>> >>> my rcpthost has more than 1100 domains >>> I do a test with only 3 domains, and the trouble persist >>> >>> I did one more test, I changed the name of the rcpthost for one that not >>> exist, ant spamdyke report the error, so, it is using rcpthost, but not >>> returnig the error when the domain in the rcpt command isn't found in >>> rcpthost >>> >>> My be I'm not expresing very well >>> Sorry! >>> >>> >>> - Original Message - >>> From: "Sam Clippinger" <[EMAIL PROTECTED]> >>> To: "spamdyke users" >>> Sent: Sunday, July 13, 2008 7:10 PM >>> Subject: Re: [spamdyke-users] Strage happend (time to time) >>> >>> >>> >>>> When spamdyke's configuration includes both the "local-domains-file" and >>>> "access-file" options, it attempts to control relaying itself and it >>>> tells qmail to allow relaying. When you remove the "access-file" >>>> option, spamdyke can't control relaying and it allows qmail to do the >>>> work instead. That's why you're seeing the rejections from qmail when >>>> "access-file" is not present. >>>> >>>> It's possible that spamdyke is incorrectly finding the recipient's >>>> domain in your list of local domains. I understand that you don't want >>>> to post private information on the mailing list, so could you send me >>>> your real rcpthosts file and the name of the domain you're using in your >>>> tests directly to me? When you replace all of the real information with >>>> "xxx", I can't do very much testing here. >>>> >>>> -- Sam Clippinger >>>> >>>> Pablo Murillo wrote: >>>> >>>>> my tcp.smtp has only one line >>>>> :allow >>>>> >>>>> This servers (4 now) are only MX, it can receive mail from anywhere, >>>>> but >>>>> only allow mail form localdomins (rcpthost) >>>>> >>>>> I will make one more today and I will run the test, and then I will >>>>> send >>>>> the >>>>> results >>>>> >>>>> What look strange to me was that qmail rejects the mail for not being >>>>> in >>>>> rcpthost, not spamdyke >>>>> >>>>> Manual conversion form one server to another >>>>> - >>>>> Connected to xxx.xxx.xxx.xxx >>>>> Escape character is '^]'. >>>>> 220 [my mx domian] ESMTP >>>>> helo >>>>> 250 [my mx domian] >>>>> MAIL FROM: [EMAIL PROTECTED] >>>>> 250 ok >>>>> RCPT TO: [EMAIL PROTECTED] >>>>> 553 sorry, that domain isn't in my list of allowed rcpthosts (#5.7.1) >>>>> quit >>>>> 221 [my mx domian] >>>>> Connection closed by foreign host. >>>>> -- >>>>> >>>>> >>>>> - Original Message - >>>>> From: "Sam Clippinger" <[EMAIL PROTECTED]> >>>>> To: "spamdyke users" >>>>> Sent: Saturday, July 12, 2008 4:52 PM
Re: [spamdyke-users] Strage happend (time to time)
Sorry, but I'm not replacing any data ONLY the IP address of my MX record The rest of the "manual simulation" I sent is the real data I'm using - Original Message - From: "Sam Clippinger" <[EMAIL PROTECTED]> To: "spamdyke users" Sent: Monday, July 14, 2008 11:21 AM Subject: Re: [spamdyke-users] Strage happend (time to time) >I understand why you're replacing sensitive data with "xxx". > However, I can't fix this problem if I can't find a way to reproduce it > myself. That's why I'm asking you to send the real unaltered data to me > directly at [EMAIL PROTECTED] I won't share it with anyone and it might > help me figure out what's happening. > > -- Sam Clippinger > > Pablo Murillo wrote: >> I only using x to replace the IP of my MX record >> The rest of X are what I'm really using to make the test >> >> my rcpthost has more than 1100 domains >> I do a test with only 3 domains, and the trouble persist >> >> I did one more test, I changed the name of the rcpthost for one that not >> exist, ant spamdyke report the error, so, it is using rcpthost, but not >> returnig the error when the domain in the rcpt command isn't found in >> rcpthost >> >> My be I'm not expresing very well >> Sorry! >> >> >> - Original Message - >> From: "Sam Clippinger" <[EMAIL PROTECTED]> >> To: "spamdyke users" >> Sent: Sunday, July 13, 2008 7:10 PM >> Subject: Re: [spamdyke-users] Strage happend (time to time) >> >> >> >>> When spamdyke's configuration includes both the "local-domains-file" and >>> "access-file" options, it attempts to control relaying itself and it >>> tells qmail to allow relaying. When you remove the "access-file" >>> option, spamdyke can't control relaying and it allows qmail to do the >>> work instead. That's why you're seeing the rejections from qmail when >>> "access-file" is not present. >>> >>> It's possible that spamdyke is incorrectly finding the recipient's >>> domain in your list of local domains. I understand that you don't want >>> to post private information on the mailing list, so could you send me >>> your real rcpthosts file and the name of the domain you're using in your >>> tests directly to me? When you replace all of the real information with >>> "xxx", I can't do very much testing here. >>> >>> -- Sam Clippinger >>> >>> Pablo Murillo wrote: >>> >>>> my tcp.smtp has only one line >>>> :allow >>>> >>>> This servers (4 now) are only MX, it can receive mail from anywhere, >>>> but >>>> only allow mail form localdomins (rcpthost) >>>> >>>> I will make one more today and I will run the test, and then I will >>>> send >>>> the >>>> results >>>> >>>> What look strange to me was that qmail rejects the mail for not being >>>> in >>>> rcpthost, not spamdyke >>>> >>>> Manual conversion form one server to another >>>> - >>>> Connected to xxx.xxx.xxx.xxx >>>> Escape character is '^]'. >>>> 220 [my mx domian] ESMTP >>>> helo >>>> 250 [my mx domian] >>>> MAIL FROM: [EMAIL PROTECTED] >>>> 250 ok >>>> RCPT TO: [EMAIL PROTECTED] >>>> 553 sorry, that domain isn't in my list of allowed rcpthosts (#5.7.1) >>>> quit >>>> 221 [my mx domian] >>>> Connection closed by foreign host. >>>> -- >>>> >>>> >>>> - Original Message - >>>> From: "Sam Clippinger" <[EMAIL PROTECTED]> >>>> To: "spamdyke users" >>>> Sent: Saturday, July 12, 2008 4:52 PM >>>> Subject: Re: [spamdyke-users] Strage happend (time to time) >>>> >>>> >>>> >>>> >>>>> I've been trying, but I can't reproduce this behavior on my test >>>>> machines without whitelisting the incoming IP address. >>>>> >>>>> Could you send me your real /etc/tcp.smtp file and all of the log >>>>> messages from spamdyke when you test it with the "access-file" option >>>
Re: [spamdyke-users] Strage happend (time to time)
I understand why you're replacing sensitive data with "xxx". However, I can't fix this problem if I can't find a way to reproduce it myself. That's why I'm asking you to send the real unaltered data to me directly at [EMAIL PROTECTED] I won't share it with anyone and it might help me figure out what's happening. -- Sam Clippinger Pablo Murillo wrote: > I only using x to replace the IP of my MX record > The rest of X are what I'm really using to make the test > > my rcpthost has more than 1100 domains > I do a test with only 3 domains, and the trouble persist > > I did one more test, I changed the name of the rcpthost for one that not > exist, ant spamdyke report the error, so, it is using rcpthost, but not > returnig the error when the domain in the rcpt command isn't found in > rcpthost > > My be I'm not expresing very well > Sorry! > > > - Original Message - > From: "Sam Clippinger" <[EMAIL PROTECTED]> > To: "spamdyke users" > Sent: Sunday, July 13, 2008 7:10 PM > Subject: Re: [spamdyke-users] Strage happend (time to time) > > > >> When spamdyke's configuration includes both the "local-domains-file" and >> "access-file" options, it attempts to control relaying itself and it >> tells qmail to allow relaying. When you remove the "access-file" >> option, spamdyke can't control relaying and it allows qmail to do the >> work instead. That's why you're seeing the rejections from qmail when >> "access-file" is not present. >> >> It's possible that spamdyke is incorrectly finding the recipient's >> domain in your list of local domains. I understand that you don't want >> to post private information on the mailing list, so could you send me >> your real rcpthosts file and the name of the domain you're using in your >> tests directly to me? When you replace all of the real information with >> "xxx", I can't do very much testing here. >> >> -- Sam Clippinger >> >> Pablo Murillo wrote: >> >>> my tcp.smtp has only one line >>> :allow >>> >>> This servers (4 now) are only MX, it can receive mail from anywhere, but >>> only allow mail form localdomins (rcpthost) >>> >>> I will make one more today and I will run the test, and then I will send >>> the >>> results >>> >>> What look strange to me was that qmail rejects the mail for not being in >>> rcpthost, not spamdyke >>> >>> Manual conversion form one server to another >>> - >>> Connected to xxx.xxx.xxx.xxx >>> Escape character is '^]'. >>> 220 [my mx domian] ESMTP >>> helo >>> 250 [my mx domian] >>> MAIL FROM: [EMAIL PROTECTED] >>> 250 ok >>> RCPT TO: [EMAIL PROTECTED] >>> 553 sorry, that domain isn't in my list of allowed rcpthosts (#5.7.1) >>> quit >>> 221 [my mx domian] >>> Connection closed by foreign host. >>> -- >>> >>> >>> - Original Message - >>> From: "Sam Clippinger" <[EMAIL PROTECTED]> >>> To: "spamdyke users" >>> Sent: Saturday, July 12, 2008 4:52 PM >>> Subject: Re: [spamdyke-users] Strage happend (time to time) >>> >>> >>> >>> >>>> I've been trying, but I can't reproduce this behavior on my test >>>> machines without whitelisting the incoming IP address. >>>> >>>> Could you send me your real /etc/tcp.smtp file and all of the log >>>> messages from spamdyke when you test it with the "access-file" option >>>> (so the mail is accepted)? Also, have you tried running the >>>> "config-test" feature to see if there are any problems with any of the >>>> configuration files? >>>> >>>> -- Sam Clippinger >>>> >>>> Pablo Murillo wrote: >>>> >>>> >>>>> Version: 3.1.8 >>>>> >>>>> Attached .conf & qmail/control >>>>> >>>>> >>>>> - Original Message - From: "Sam Clippinger" <[EMAIL PROTECTED]> >>>>> To: "spamdyke users" >>>>> Sent: Thursday, July 10, 2008 1:38 PM >>>>> Subject: Re: [spamdyke-users] Strage happend (time to t
Re: [spamdyke-users] Strage happend (time to time)
I don't use smthauth This are only MX servers - Original Message - From: "nightduke" <[EMAIL PROTECTED]> To: "spamdyke users" Sent: Monday, July 14, 2008 7:22 AM Subject: Re: [spamdyke-users] Strage happend (time to time) > check smtpauth > > 2008/7/14 Pablo Murillo <[EMAIL PROTECTED]>: >> I only using x to replace the IP of my MX record >> The rest of X are what I'm really using to make the test >> >> my rcpthost has more than 1100 domains >> I do a test with only 3 domains, and the trouble persist >> >> I did one more test, I changed the name of the rcpthost for one that not >> exist, ant spamdyke report the error, so, it is using rcpthost, but not >> returnig the error when the domain in the rcpt command isn't found in >> rcpthost >> >> My be I'm not expresing very well >> Sorry! >> >> >> - Original Message - >> From: "Sam Clippinger" <[EMAIL PROTECTED]> >> To: "spamdyke users" >> Sent: Sunday, July 13, 2008 7:10 PM >> Subject: Re: [spamdyke-users] Strage happend (time to time) >> >> >>> When spamdyke's configuration includes both the "local-domains-file" and >>> "access-file" options, it attempts to control relaying itself and it >>> tells qmail to allow relaying. When you remove the "access-file" >>> option, spamdyke can't control relaying and it allows qmail to do the >>> work instead. That's why you're seeing the rejections from qmail when >>> "access-file" is not present. >>> >>> It's possible that spamdyke is incorrectly finding the recipient's >>> domain in your list of local domains. I understand that you don't want >>> to post private information on the mailing list, so could you send me >>> your real rcpthosts file and the name of the domain you're using in your >>> tests directly to me? When you replace all of the real information with >>> "xxx", I can't do very much testing here. >>> >>> -- Sam Clippinger >>> >>> Pablo Murillo wrote: >>>> my tcp.smtp has only one line >>>> :allow >>>> >>>> This servers (4 now) are only MX, it can receive mail from anywhere, >>>> but >>>> only allow mail form localdomins (rcpthost) >>>> >>>> I will make one more today and I will run the test, and then I will >>>> send >>>> the >>>> results >>>> >>>> What look strange to me was that qmail rejects the mail for not being >>>> in >>>> rcpthost, not spamdyke >>>> >>>> Manual conversion form one server to another >>>> - >>>> Connected to xxx.xxx.xxx.xxx >>>> Escape character is '^]'. >>>> 220 [my mx domian] ESMTP >>>> helo >>>> 250 [my mx domian] >>>> MAIL FROM: [EMAIL PROTECTED] >>>> 250 ok >>>> RCPT TO: [EMAIL PROTECTED] >>>> 553 sorry, that domain isn't in my list of allowed rcpthosts (#5.7.1) >>>> quit >>>> 221 [my mx domian] >>>> Connection closed by foreign host. >>>> -- >>>> >>>> >>>> - Original Message - >>>> From: "Sam Clippinger" <[EMAIL PROTECTED]> >>>> To: "spamdyke users" >>>> Sent: Saturday, July 12, 2008 4:52 PM >>>> Subject: Re: [spamdyke-users] Strage happend (time to time) >>>> >>>> >>>> >>>>> I've been trying, but I can't reproduce this behavior on my test >>>>> machines without whitelisting the incoming IP address. >>>>> >>>>> Could you send me your real /etc/tcp.smtp file and all of the log >>>>> messages from spamdyke when you test it with the "access-file" option >>>>> (so the mail is accepted)? Also, have you tried running the >>>>> "config-test" feature to see if there are any problems with any of the >>>>> configuration files? >>>>> >>>>> -- Sam Clippinger >>>>> >>>>> Pablo Murillo wrote: >>>>> >>>>>> Version: 3.1.8 >>>>>> >>>>>> Attached .conf & qmail/control >>>>>> >>>>&
Re: [spamdyke-users] Strage happend (time to time)
check smtpauth 2008/7/14 Pablo Murillo <[EMAIL PROTECTED]>: > I only using x to replace the IP of my MX record > The rest of X are what I'm really using to make the test > > my rcpthost has more than 1100 domains > I do a test with only 3 domains, and the trouble persist > > I did one more test, I changed the name of the rcpthost for one that not > exist, ant spamdyke report the error, so, it is using rcpthost, but not > returnig the error when the domain in the rcpt command isn't found in > rcpthost > > My be I'm not expresing very well > Sorry! > > > - Original Message - > From: "Sam Clippinger" <[EMAIL PROTECTED]> > To: "spamdyke users" > Sent: Sunday, July 13, 2008 7:10 PM > Subject: Re: [spamdyke-users] Strage happend (time to time) > > >> When spamdyke's configuration includes both the "local-domains-file" and >> "access-file" options, it attempts to control relaying itself and it >> tells qmail to allow relaying. When you remove the "access-file" >> option, spamdyke can't control relaying and it allows qmail to do the >> work instead. That's why you're seeing the rejections from qmail when >> "access-file" is not present. >> >> It's possible that spamdyke is incorrectly finding the recipient's >> domain in your list of local domains. I understand that you don't want >> to post private information on the mailing list, so could you send me >> your real rcpthosts file and the name of the domain you're using in your >> tests directly to me? When you replace all of the real information with >> "xxx", I can't do very much testing here. >> >> -- Sam Clippinger >> >> Pablo Murillo wrote: >>> my tcp.smtp has only one line >>> :allow >>> >>> This servers (4 now) are only MX, it can receive mail from anywhere, but >>> only allow mail form localdomins (rcpthost) >>> >>> I will make one more today and I will run the test, and then I will send >>> the >>> results >>> >>> What look strange to me was that qmail rejects the mail for not being in >>> rcpthost, not spamdyke >>> >>> Manual conversion form one server to another >>> - >>> Connected to xxx.xxx.xxx.xxx >>> Escape character is '^]'. >>> 220 [my mx domian] ESMTP >>> helo xxxx >>> 250 [my mx domian] >>> MAIL FROM: [EMAIL PROTECTED] >>> 250 ok >>> RCPT TO: [EMAIL PROTECTED] >>> 553 sorry, that domain isn't in my list of allowed rcpthosts (#5.7.1) >>> quit >>> 221 [my mx domian] >>> Connection closed by foreign host. >>> -- >>> >>> >>> - Original Message - >>> From: "Sam Clippinger" <[EMAIL PROTECTED]> >>> To: "spamdyke users" >>> Sent: Saturday, July 12, 2008 4:52 PM >>> Subject: Re: [spamdyke-users] Strage happend (time to time) >>> >>> >>> >>>> I've been trying, but I can't reproduce this behavior on my test >>>> machines without whitelisting the incoming IP address. >>>> >>>> Could you send me your real /etc/tcp.smtp file and all of the log >>>> messages from spamdyke when you test it with the "access-file" option >>>> (so the mail is accepted)? Also, have you tried running the >>>> "config-test" feature to see if there are any problems with any of the >>>> configuration files? >>>> >>>> -- Sam Clippinger >>>> >>>> Pablo Murillo wrote: >>>> >>>>> Version: 3.1.8 >>>>> >>>>> Attached .conf & qmail/control >>>>> >>>>> >>>>> - Original Message - From: "Sam Clippinger" <[EMAIL PROTECTED]> >>>>> To: "spamdyke users" >>>>> Sent: Thursday, July 10, 2008 1:38 PM >>>>> Subject: Re: [spamdyke-users] Strage happend (time to time) >>>>> >>>>> >>>>> >>>>>> What version of spamdyke are you using? Could you post your access >>>>>> file >>>>>> and your spamdyke configuration (or email them to me if you don't want >>>>>> them posted publicly?) >>>>>> >>>>>> -- Sam Clippinger >>>&g
Re: [spamdyke-users] Strage happend (time to time)
I only using x to replace the IP of my MX record The rest of X are what I'm really using to make the test my rcpthost has more than 1100 domains I do a test with only 3 domains, and the trouble persist I did one more test, I changed the name of the rcpthost for one that not exist, ant spamdyke report the error, so, it is using rcpthost, but not returnig the error when the domain in the rcpt command isn't found in rcpthost My be I'm not expresing very well Sorry! - Original Message - From: "Sam Clippinger" <[EMAIL PROTECTED]> To: "spamdyke users" Sent: Sunday, July 13, 2008 7:10 PM Subject: Re: [spamdyke-users] Strage happend (time to time) > When spamdyke's configuration includes both the "local-domains-file" and > "access-file" options, it attempts to control relaying itself and it > tells qmail to allow relaying. When you remove the "access-file" > option, spamdyke can't control relaying and it allows qmail to do the > work instead. That's why you're seeing the rejections from qmail when > "access-file" is not present. > > It's possible that spamdyke is incorrectly finding the recipient's > domain in your list of local domains. I understand that you don't want > to post private information on the mailing list, so could you send me > your real rcpthosts file and the name of the domain you're using in your > tests directly to me? When you replace all of the real information with > "xxx", I can't do very much testing here. > > -- Sam Clippinger > > Pablo Murillo wrote: >> my tcp.smtp has only one line >> :allow >> >> This servers (4 now) are only MX, it can receive mail from anywhere, but >> only allow mail form localdomins (rcpthost) >> >> I will make one more today and I will run the test, and then I will send >> the >> results >> >> What look strange to me was that qmail rejects the mail for not being in >> rcpthost, not spamdyke >> >> Manual conversion form one server to another >> - >> Connected to xxx.xxx.xxx.xxx >> Escape character is '^]'. >> 220 [my mx domian] ESMTP >> helo >> 250 [my mx domian] >> MAIL FROM: [EMAIL PROTECTED] >> 250 ok >> RCPT TO: [EMAIL PROTECTED] >> 553 sorry, that domain isn't in my list of allowed rcpthosts (#5.7.1) >> quit >> 221 [my mx domian] >> Connection closed by foreign host. >> -- >> >> >> - Original Message - >> From: "Sam Clippinger" <[EMAIL PROTECTED]> >> To: "spamdyke users" >> Sent: Saturday, July 12, 2008 4:52 PM >> Subject: Re: [spamdyke-users] Strage happend (time to time) >> >> >> >>> I've been trying, but I can't reproduce this behavior on my test >>> machines without whitelisting the incoming IP address. >>> >>> Could you send me your real /etc/tcp.smtp file and all of the log >>> messages from spamdyke when you test it with the "access-file" option >>> (so the mail is accepted)? Also, have you tried running the >>> "config-test" feature to see if there are any problems with any of the >>> configuration files? >>> >>> -- Sam Clippinger >>> >>> Pablo Murillo wrote: >>> >>>> Version: 3.1.8 >>>> >>>> Attached .conf & qmail/control >>>> >>>> >>>> - Original Message - From: "Sam Clippinger" <[EMAIL PROTECTED]> >>>> To: "spamdyke users" >>>> Sent: Thursday, July 10, 2008 1:38 PM >>>> Subject: Re: [spamdyke-users] Strage happend (time to time) >>>> >>>> >>>> >>>>> What version of spamdyke are you using? Could you post your access >>>>> file >>>>> and your spamdyke configuration (or email them to me if you don't want >>>>> them posted publicly?) >>>>> >>>>> -- Sam Clippinger >>>>> >>>>> Pablo Murillo wrote: >>>>> >>>>>> All the mails with valid rdns, dns, noot blackisted ip or domains or >>>>>> recipients, etc, etc, etc, go throw the server without any trouble >>>>>> I did a "manual" smtp conversation sending a mail to a NON local >>>>>> domain >>>>>> (local-domains-file=[path]rcpthosts) with access-file enable, and >>>>>>
Re: [spamdyke-users] Strage happend (time to time)
When spamdyke's configuration includes both the "local-domains-file" and "access-file" options, it attempts to control relaying itself and it tells qmail to allow relaying. When you remove the "access-file" option, spamdyke can't control relaying and it allows qmail to do the work instead. That's why you're seeing the rejections from qmail when "access-file" is not present. It's possible that spamdyke is incorrectly finding the recipient's domain in your list of local domains. I understand that you don't want to post private information on the mailing list, so could you send me your real rcpthosts file and the name of the domain you're using in your tests directly to me? When you replace all of the real information with "xxx", I can't do very much testing here. -- Sam Clippinger Pablo Murillo wrote: > my tcp.smtp has only one line > :allow > > This servers (4 now) are only MX, it can receive mail from anywhere, but > only allow mail form localdomins (rcpthost) > > I will make one more today and I will run the test, and then I will send the > results > > What look strange to me was that qmail rejects the mail for not being in > rcpthost, not spamdyke > > Manual conversion form one server to another > - > Connected to xxx.xxx.xxx.xxx > Escape character is '^]'. > 220 [my mx domian] ESMTP > helo > 250 [my mx domian] > MAIL FROM: [EMAIL PROTECTED] > 250 ok > RCPT TO: [EMAIL PROTECTED] > 553 sorry, that domain isn't in my list of allowed rcpthosts (#5.7.1) > quit > 221 [my mx domian] > Connection closed by foreign host. > -------------- > > > - Original Message - > From: "Sam Clippinger" <[EMAIL PROTECTED]> > To: "spamdyke users" > Sent: Saturday, July 12, 2008 4:52 PM > Subject: Re: [spamdyke-users] Strage happend (time to time) > > > >> I've been trying, but I can't reproduce this behavior on my test >> machines without whitelisting the incoming IP address. >> >> Could you send me your real /etc/tcp.smtp file and all of the log >> messages from spamdyke when you test it with the "access-file" option >> (so the mail is accepted)? Also, have you tried running the >> "config-test" feature to see if there are any problems with any of the >> configuration files? >> >> -- Sam Clippinger >> >> Pablo Murillo wrote: >> >>> Version: 3.1.8 >>> >>> Attached .conf & qmail/control >>> >>> >>> - Original Message - From: "Sam Clippinger" <[EMAIL PROTECTED]> >>> To: "spamdyke users" >>> Sent: Thursday, July 10, 2008 1:38 PM >>> Subject: Re: [spamdyke-users] Strage happend (time to time) >>> >>> >>> >>>> What version of spamdyke are you using? Could you post your access file >>>> and your spamdyke configuration (or email them to me if you don't want >>>> them posted publicly?) >>>> >>>> -- Sam Clippinger >>>> >>>> Pablo Murillo wrote: >>>> >>>>> All the mails with valid rdns, dns, noot blackisted ip or domains or >>>>> recipients, etc, etc, etc, go throw the server without any trouble >>>>> I did a "manual" smtp conversation sending a mail to a NON local domain >>>>> (local-domains-file=[path]rcpthosts) with access-file enable, and >>>>> the mail >>>>> was accepted >>>>> Then, I put a "rem" on access-file, made the conversation again, and >>>>> the >>>>> mail was rejected by qmail >>>>> I thing that spamdyke is doing something wrong with tcp.smtp >>>>> >>>>> Try with access-file on >>>>> >>>>> telenet [your_ip] 25 >>>>> helo >>>>> MAIL FROM: [EMAIL PROTECTED] >>>>> RCPT TO: [EMAIL PROTECTED] >>>>> >>>>> Mails go OK >>>>> >>>>> Try without access-file on >>>>> >>>>> telenet [your_ip] 25 >>>>> helo >>>>> MAIL FROM: [EMAIL PROTECTED] >>>>> RCPT TO: [EMAIL PROTECTED] >>>>> >>>>> Mail is REJECTED >>>>> >>>>> - Original Message - From: "Sam Clippinger" <[EMAIL PROTECTED]> >>>>> To: "spamdyke users&qu
Re: [spamdyke-users] Strage happend (time to time)
Sorry I forget the maillog line: Jul 12 17:40:26 mx4 spamdyke[46006]: DENIED_OTHER from: [EMAIL PROTECTED] to: [EMAIL PROTECTED] origin_ip: xxx.xxx.xxx.xxx origin_rdns: xxx.xxx.xxx.xxx auth: (unknown) - Original Message - From: "Sam Clippinger" <[EMAIL PROTECTED]> To: "spamdyke users" Sent: Saturday, July 12, 2008 4:52 PM Subject: Re: [spamdyke-users] Strage happend (time to time) > I've been trying, but I can't reproduce this behavior on my test > machines without whitelisting the incoming IP address. > > Could you send me your real /etc/tcp.smtp file and all of the log > messages from spamdyke when you test it with the "access-file" option > (so the mail is accepted)? Also, have you tried running the > "config-test" feature to see if there are any problems with any of the > configuration files? > > -- Sam Clippinger > > Pablo Murillo wrote: >> Version: 3.1.8 >> >> Attached .conf & qmail/control >> >> >> - Original Message - From: "Sam Clippinger" <[EMAIL PROTECTED]> >> To: "spamdyke users" >> Sent: Thursday, July 10, 2008 1:38 PM >> Subject: Re: [spamdyke-users] Strage happend (time to time) >> >> >>> What version of spamdyke are you using? Could you post your access file >>> and your spamdyke configuration (or email them to me if you don't want >>> them posted publicly?) >>> >>> -- Sam Clippinger >>> >>> Pablo Murillo wrote: >>>> All the mails with valid rdns, dns, noot blackisted ip or domains or >>>> recipients, etc, etc, etc, go throw the server without any trouble >>>> I did a "manual" smtp conversation sending a mail to a NON local domain >>>> (local-domains-file=[path]rcpthosts) with access-file enable, and >>>> the mail >>>> was accepted >>>> Then, I put a "rem" on access-file, made the conversation again, and >>>> the >>>> mail was rejected by qmail >>>> I thing that spamdyke is doing something wrong with tcp.smtp >>>> >>>> Try with access-file on >>>> >>>> telenet [your_ip] 25 >>>> helo xxxx >>>> MAIL FROM: [EMAIL PROTECTED] >>>> RCPT TO: [EMAIL PROTECTED] >>>> >>>> Mails go OK >>>> >>>> Try without access-file on >>>> >>>> telenet [your_ip] 25 >>>> helo >>>> MAIL FROM: [EMAIL PROTECTED] >>>> RCPT TO: [EMAIL PROTECTED] >>>> >>>> Mail is REJECTED >>>> >>>> - Original Message - From: "Sam Clippinger" <[EMAIL PROTECTED]> >>>> To: "spamdyke users" >>>> Sent: Thursday, July 10, 2008 12:44 PM >>>> Subject: Re: [spamdyke-users] Strage happend (time to time) >>>> >>>> >>>> >>>>> An access file with just ":allow" is fine; it shouldn't cause any >>>>> problems. >>>>> >>>>> Could you provide more details about the issues you were having? >>>>> >>>>> -- Sam Clippinger >>>>> >>>>> Pablo Murillo wrote: >>>>> >>>>>> Hello >>>>>> >>>>>> My first time here >>>>>> Sorry my english >>>>>> >>>>>> I solved that problem on my MX servers >>>>>> Was a configuration problem >>>>>> >>>>>> I had in my access-file the following line: >>>>>> >>>>>> :allow >>>>>> >>>>>> Now, I don't use access-file and the rest of the filters work ok >>>>>> I don't know how can I use that option, so I don't use it any more >>>>>> >>>>>> >>>>>> - Original Message - From: "N.Novozhilov" <[EMAIL PROTECTED]> >>>>>> To: >>>>>> Sent: Thursday, July 10, 2008 8:17 AM >>>>>> Subject: [spamdyke-users] Strage happend (time to time) >>>>>> >>>>>> >>>>>> >>>>>> >>>>>>> Hi Sam! >>>>>>> >>>>>>> My users receive more and more spam last time. And I see (rarely) in >>>>>>> headers and in >>>>>>> logs the next picture: >>>>>>> >>>>>>> s
Re: [spamdyke-users] Strage happend (time to time)
my tcp.smtp has only one line :allow This servers (4 now) are only MX, it can receive mail from anywhere, but only allow mail form localdomins (rcpthost) I will make one more today and I will run the test, and then I will send the results What look strange to me was that qmail rejects the mail for not being in rcpthost, not spamdyke Manual conversion form one server to another - Connected to xxx.xxx.xxx.xxx Escape character is '^]'. 220 [my mx domian] ESMTP helo 250 [my mx domian] MAIL FROM: [EMAIL PROTECTED] 250 ok RCPT TO: [EMAIL PROTECTED] 553 sorry, that domain isn't in my list of allowed rcpthosts (#5.7.1) quit 221 [my mx domian] Connection closed by foreign host. -- - Original Message - From: "Sam Clippinger" <[EMAIL PROTECTED]> To: "spamdyke users" Sent: Saturday, July 12, 2008 4:52 PM Subject: Re: [spamdyke-users] Strage happend (time to time) > I've been trying, but I can't reproduce this behavior on my test > machines without whitelisting the incoming IP address. > > Could you send me your real /etc/tcp.smtp file and all of the log > messages from spamdyke when you test it with the "access-file" option > (so the mail is accepted)? Also, have you tried running the > "config-test" feature to see if there are any problems with any of the > configuration files? > > -- Sam Clippinger > > Pablo Murillo wrote: >> Version: 3.1.8 >> >> Attached .conf & qmail/control >> >> >> ----- Original Message - From: "Sam Clippinger" <[EMAIL PROTECTED]> >> To: "spamdyke users" >> Sent: Thursday, July 10, 2008 1:38 PM >> Subject: Re: [spamdyke-users] Strage happend (time to time) >> >> >>> What version of spamdyke are you using? Could you post your access file >>> and your spamdyke configuration (or email them to me if you don't want >>> them posted publicly?) >>> >>> -- Sam Clippinger >>> >>> Pablo Murillo wrote: >>>> All the mails with valid rdns, dns, noot blackisted ip or domains or >>>> recipients, etc, etc, etc, go throw the server without any trouble >>>> I did a "manual" smtp conversation sending a mail to a NON local domain >>>> (local-domains-file=[path]rcpthosts) with access-file enable, and >>>> the mail >>>> was accepted >>>> Then, I put a "rem" on access-file, made the conversation again, and >>>> the >>>> mail was rejected by qmail >>>> I thing that spamdyke is doing something wrong with tcp.smtp >>>> >>>> Try with access-file on >>>> >>>> telenet [your_ip] 25 >>>> helo xxxx >>>> MAIL FROM: [EMAIL PROTECTED] >>>> RCPT TO: [EMAIL PROTECTED] >>>> >>>> Mails go OK >>>> >>>> Try without access-file on >>>> >>>> telenet [your_ip] 25 >>>> helo >>>> MAIL FROM: [EMAIL PROTECTED] >>>> RCPT TO: [EMAIL PROTECTED] >>>> >>>> Mail is REJECTED >>>> >>>> - Original Message - From: "Sam Clippinger" <[EMAIL PROTECTED]> >>>> To: "spamdyke users" >>>> Sent: Thursday, July 10, 2008 12:44 PM >>>> Subject: Re: [spamdyke-users] Strage happend (time to time) >>>> >>>> >>>> >>>>> An access file with just ":allow" is fine; it shouldn't cause any >>>>> problems. >>>>> >>>>> Could you provide more details about the issues you were having? >>>>> >>>>> -- Sam Clippinger >>>>> >>>>> Pablo Murillo wrote: >>>>> >>>>>> Hello >>>>>> >>>>>> My first time here >>>>>> Sorry my english >>>>>> >>>>>> I solved that problem on my MX servers >>>>>> Was a configuration problem >>>>>> >>>>>> I had in my access-file the following line: >>>>>> >>>>>> :allow >>>>>> >>>>>> Now, I don't use access-file and the rest of the filters work ok >>>>>> I don't know how can I use that option, so I don't use it any more >>>>>> >>>>>> >>>>>> - Original Message - From: "N.Novozhilov" <[EMAIL PROTECTED]> >>>>>> To: &
Re: [spamdyke-users] Strage happend (time to time)
I've been trying, but I can't reproduce this behavior on my test machines without whitelisting the incoming IP address. Could you send me your real /etc/tcp.smtp file and all of the log messages from spamdyke when you test it with the "access-file" option (so the mail is accepted)? Also, have you tried running the "config-test" feature to see if there are any problems with any of the configuration files? -- Sam Clippinger Pablo Murillo wrote: > Version: 3.1.8 > > Attached .conf & qmail/control > > > - Original Message - From: "Sam Clippinger" <[EMAIL PROTECTED]> > To: "spamdyke users" > Sent: Thursday, July 10, 2008 1:38 PM > Subject: Re: [spamdyke-users] Strage happend (time to time) > > >> What version of spamdyke are you using? Could you post your access file >> and your spamdyke configuration (or email them to me if you don't want >> them posted publicly?) >> >> -- Sam Clippinger >> >> Pablo Murillo wrote: >>> All the mails with valid rdns, dns, noot blackisted ip or domains or >>> recipients, etc, etc, etc, go throw the server without any trouble >>> I did a "manual" smtp conversation sending a mail to a NON local domain >>> (local-domains-file=[path]rcpthosts) with access-file enable, and >>> the mail >>> was accepted >>> Then, I put a "rem" on access-file, made the conversation again, and >>> the >>> mail was rejected by qmail >>> I thing that spamdyke is doing something wrong with tcp.smtp >>> >>> Try with access-file on >>> >>> telenet [your_ip] 25 >>> helo >>> MAIL FROM: [EMAIL PROTECTED] >>> RCPT TO: [EMAIL PROTECTED] >>> >>> Mails go OK >>> >>> Try without access-file on >>> >>> telenet [your_ip] 25 >>> helo >>> MAIL FROM: [EMAIL PROTECTED] >>> RCPT TO: [EMAIL PROTECTED] >>> >>> Mail is REJECTED >>> >>> - Original Message - From: "Sam Clippinger" <[EMAIL PROTECTED]> >>> To: "spamdyke users" >>> Sent: Thursday, July 10, 2008 12:44 PM >>> Subject: Re: [spamdyke-users] Strage happend (time to time) >>> >>> >>> >>>> An access file with just ":allow" is fine; it shouldn't cause any >>>> problems. >>>> >>>> Could you provide more details about the issues you were having? >>>> >>>> -- Sam Clippinger >>>> >>>> Pablo Murillo wrote: >>>> >>>>> Hello >>>>> >>>>> My first time here >>>>> Sorry my english >>>>> >>>>> I solved that problem on my MX servers >>>>> Was a configuration problem >>>>> >>>>> I had in my access-file the following line: >>>>> >>>>> :allow >>>>> >>>>> Now, I don't use access-file and the rest of the filters work ok >>>>> I don't know how can I use that option, so I don't use it any more >>>>> >>>>> >>>>> - Original Message - From: "N.Novozhilov" <[EMAIL PROTECTED]> >>>>> To: >>>>> Sent: Thursday, July 10, 2008 8:17 AM >>>>> Subject: [spamdyke-users] Strage happend (time to time) >>>>> >>>>> >>>>> >>>>> >>>>>> Hi Sam! >>>>>> >>>>>> My users receive more and more spam last time. And I see (rarely) in >>>>>> headers and in >>>>>> logs the next picture: >>>>>> >>>>>> spamdyke[2918]: ALLOWED from: [EMAIL PROTECTED] to: >>>>>> [EMAIL PROTECTED] >>>>>> origin_ip: 190.232.71.105 origin_rdns: (unknown) auth: (unknown) >>>>>> >>>>>> Sender IP isn't in whitelist (whitelist_ip), target name absent in >>>>>> whitelist >>>>>> (whitelist_recipients), this user can't log by smtp and this IP >>>>>> isn't in >>>>>> tcp.rules. >>>>>> >>>>>> Why mails like this are allowed time to time? >>>>>> >>>>>> ~~ >>>>>> Regards >>>>>> Nicholas A. Novozhilov, NAN6-RIPE >>>>>> >>>>>>
Re: [spamdyke-users] Strage happend (time to time)
We're using spamdyke V 3.1.8 Here is fragment of the log: Jul 11 09:32:16 localhost spamdyke[24982]: ALLOWED from: [EMAIL PROTECTED] to: [EMAIL PROTECTED] origin_ip: 221. 228.210.128 origin_rdns: (unknown) auth: (unknown) Jul 11 09:32:17 localhost spamdyke[24994]: INFO: querying 41.39.164.59.in-addr.arpa with DNS server 192.168.1.78:53 ( attempt 1) Jul 11 09:32:17 localhost spamdyke[24994]: INFO: received DNS packet: 168 bytes Jul 11 09:32:17 localhost spamdyke[24994]: INFO: received DNS response: PTR Jul 11 09:32:17 localhost spamdyke[24994]: INFO: found PTR record for 41.39.164.59.in-addr.arpa: 59.164.39.41.man-sta tic.vsnl.net.in here is fragment of header of this mail: Received: from unknown (HELO user-250901aa92) (221.228.210.128) by *myserver*.ru with SMTP; 11 Jul 2008 05:32:16 - Received: from [221.228.210.128] by mailin1.pacific.net.au; Fri, 11 Jul 2008 There isn't strings with packet number 24982 in a log later. But BEFORE this I found the next: Jul 11 09:32:14 localhost spamdyke[24982]: INFO: querying 128.210.228.221.in-addr.arpa with DNS server 192.168.1.78:5 3 (attempt 1) Jul 11 09:32:14 localhost spamdyke[24982]: INFO: received DNS packet: 107 bytes Jul 11 09:32:14 localhost spamdyke[24982]: INFO: received DNS packet: 107 bytes Jul 11 09:32:14 localhost spamdyke[24982]: INFO: found no records for 128.210.228.221.in-addr.arpa You can see this log (fragment) in attachment. 13:32:16 +0800 On Thu, 10 Jul 2008 10:42:32 -0500 Sam Clippinger <[EMAIL PROTECTED]> wrote: > What version of spamdyke are you using? Can you increase your log level > to 4 and send me the log output from one of these deliveries? I would > like to see the details of the DNS queries. > > -- Sam Clippinger > > N.Novozhilov wrote: > > Here is a quote from my spamdyke.conf: > > > > reject-empty-rdns > > reject-unresolvable-rdns > > reject-ip-in-cc-rdns > > > > BTW - spamdyke works with file "blacklist_keywords" not so good as we > > need... > > > > On Thu, 10 Jul 2008 13:50:24 +0200 > > David Stiller <[EMAIL PROTECTED]> wrote: > > > > > >> You could block "origin_rdns: (unknown)" with a config-option: reject- > >> empty-rdns > >> > >> > >> > >> > >> Am 10.07.2008 um 13:17 schrieb N.Novozhilov: > >> > >> > >>> Hi Sam! > >>> > >>> My users receive more and more spam last time. And I see (rarely) > >>> in headers and in > >>> logs the next picture: > >>> > >>> spamdyke[2918]: ALLOWED from: [EMAIL PROTECTED] to: > >>> [EMAIL PROTECTED] > >>> origin_ip: 190.232.71.105 origin_rdns: (unknown) auth: (unknown) > >>> > >>> Sender IP isn't in whitelist (whitelist_ip), target name absent in > >>> whitelist > >>> (whitelist_recipients), this user can't log by smtp and this IP > >>> isn't in tcp.rules. > >>> > >>> Why mails like this are allowed time to time? > >>> > >>> ~~ > >>> Regards > >>> Nicholas A. Novozhilov, NAN6-RIPE > >>> > >>> NTR Lab > >>> System administrator > >>> ___ > >>> spamdyke-users mailing list > >>> spamdyke-users@spamdyke.org > >>> http://www.spamdyke.org/mailman/listinfo/spamdyke-users > >>> > >> David Stiller > >> Technischer Support > >> > >> Blackbit Neue Medien GmbH > >> Ernst-Ruhstrat-Straße 6 - D-37079 Göttingen > >> > >> tel.: +49 [551] 50675-60 - fax.: +49 [551] 50675-20 > >> email: [EMAIL PROTECTED] - hotline: [EMAIL PROTECTED] > >> > >> Klassische Werbung und Online-Marketing: http://www.blackbit.de > >> Software für Online-Marketing: http://www.go-community.de > >> > >> Amtsgericht Göttingen: HRB 3222 > >> USt-IdNr.: DE 813114917 > >> Geschäftsführer: Herr Stefano Viani > >> > >> > >> > >> Vertraulichkeit > >> Diese Nachricht ist vertraulich. Falls Sie nicht der in dieser > >> Nachricht bezeichnete Empfänger sind, informieren Sie uns bitte > >> sobald wie möglich und bewahren Sie Stillschweigen über den Inhalt. > >> Danke für Ihr Verständnis. Bitte beachten Sie, daß jede an uns > >> gesandte E-Mail über das Sekretariat an den gewünschten Empfänger > >> weitergeleitet wird. Vorsorglich weisen wir darauf hin, dass der > >> Empfang von E-Mails aus technischen oder betrieblichen Gründen > >> gestört sein kann. Dies gilt selbst dann, wenn Sie diese automatisch > >> erzeugte E-Mail störungsfrei lesen können. Wegen des nicht > >> kontrollierbaren Transportweges einer E-Mail ist auch nicht > >> sichergestellt, dass ihr Inhalt nur berechtigten Personen bekannt > >> wird. Bitte senden Sie Briefe, Mitteilungen oder sonstige > >> Erklärungen, deren Inhalt vertraulich ist oder die rechtliche Wirkung > >> entfalten sollen, nicht per E-Mail, sondern auf herkömmlichem Wege. > >> Wir behalten uns vor, falls nicht im Einzelfall ausdrücklich etwas > >> anderes vereinbart ist, E-Mail keine rechtliche Wirkung beizumessen, > >> sofern diese nicht gegen unberechtigte (Ver-)Fälschung g
Re: [spamdyke-users] Strage happend (time to time)
Version: 3.1.8 Attached .conf & qmail/control - Original Message - From: "Sam Clippinger" <[EMAIL PROTECTED]> To: "spamdyke users" Sent: Thursday, July 10, 2008 1:38 PM Subject: Re: [spamdyke-users] Strage happend (time to time) What version of spamdyke are you using? Could you post your access file and your spamdyke configuration (or email them to me if you don't want them posted publicly?) -- Sam Clippinger Pablo Murillo wrote: All the mails with valid rdns, dns, noot blackisted ip or domains or recipients, etc, etc, etc, go throw the server without any trouble I did a "manual" smtp conversation sending a mail to a NON local domain (local-domains-file=[path]rcpthosts) with access-file enable, and the mail was accepted Then, I put a "rem" on access-file, made the conversation again, and the mail was rejected by qmail I thing that spamdyke is doing something wrong with tcp.smtp Try with access-file on telenet [your_ip] 25 helo MAIL FROM: [EMAIL PROTECTED] RCPT TO: [EMAIL PROTECTED] Mails go OK Try without access-file on telenet [your_ip] 25 helo MAIL FROM: [EMAIL PROTECTED] RCPT TO: [EMAIL PROTECTED] Mail is REJECTED - Original Message - From: "Sam Clippinger" <[EMAIL PROTECTED]> To: "spamdyke users" Sent: Thursday, July 10, 2008 12:44 PM Subject: Re: [spamdyke-users] Strage happend (time to time) An access file with just ":allow" is fine; it shouldn't cause any problems. Could you provide more details about the issues you were having? -- Sam Clippinger Pablo Murillo wrote: Hello My first time here Sorry my english I solved that problem on my MX servers Was a configuration problem I had in my access-file the following line: :allow Now, I don't use access-file and the rest of the filters work ok I don't know how can I use that option, so I don't use it any more - Original Message - From: "N.Novozhilov" <[EMAIL PROTECTED]> To: Sent: Thursday, July 10, 2008 8:17 AM Subject: [spamdyke-users] Strage happend (time to time) Hi Sam! My users receive more and more spam last time. And I see (rarely) in headers and in logs the next picture: spamdyke[2918]: ALLOWED from: [EMAIL PROTECTED] to: [EMAIL PROTECTED] origin_ip: 190.232.71.105 origin_rdns: (unknown) auth: (unknown) Sender IP isn't in whitelist (whitelist_ip), target name absent in whitelist (whitelist_recipients), this user can't log by smtp and this IP isn't in tcp.rules. Why mails like this are allowed time to time? ~~ Regards Nicholas A. Novozhilov, NAN6-RIPE NTR Lab System administrator ___ spamdyke-users mailing list spamdyke-users@spamdyke.org http://www.spamdyke.org/mailman/listinfo/spamdyke-users ___ spamdyke-users mailing list spamdyke-users@spamdyke.org http://www.spamdyke.org/mailman/listinfo/spamdyke-users ___ spamdyke-users mailing list spamdyke-users@spamdyke.org http://www.spamdyke.org/mailman/listinfo/spamdyke-users ___ spamdyke-users mailing list spamdyke-users@spamdyke.org http://www.spamdyke.org/mailman/listinfo/spamdyke-users ___ spamdyke-users mailing list spamdyke-users@spamdyke.org http://www.spamdyke.org/mailman/listinfo/spamdyke-users silent concurrency limit: 120. badmailfrom: bouncefrom: (Default.) Bounce user name is MAILER-DAEMON. bouncehost: Bounce host name is [my server] concurrencylocal: Local concurrency is 128. concurrencyremote: Remote concurrency is 128. databytes: SMTP DATA limit is 15728640 bytes. defaultdomain: Default domain name is [my server]. defaulthost: (Default.) Default host name is [my server] doublebouncehost: (Default.) 2B recipient host: [my server] doublebounceto: (Default.) 2B recipient user: postmaster. envnoathost: (Default.) Presumed domain name is [my server] helohost: SMTP client HELO host name is [my server] idhost: Message-ID host name is [my server] localiphost: (Default.) Local IP address becomes [my server] locals: Messages for mx4.serversur.net are delivered locally. me: My name is [my server] percenthack: (Default.) The percent hack is not allowed. plusdomain: Plus domain name is [my server]. qmqpservers: (Default.) No QMQP servers. queuelifetime: Message lifetime in the queue is 14400 seconds. rcpthosts: SMTP clients may send messages to recipients at * [all may locals domains, around 1100 domains] morercpthosts: (Default.) No effect. morercpthosts.cdb: (Default.) No effect. smtpgreeting: SMTP greeting: 220 [server_name] smtproutes: SMTP route: [domainio local]:[ip local] timeoutconnect: (Default.) SMTP client connection timeout is 60 seconds.
Re: [spamdyke-users] Strage happend (time to time)
What version of spamdyke are you using? Could you post your access file and your spamdyke configuration (or email them to me if you don't want them posted publicly?) -- Sam Clippinger Pablo Murillo wrote: > All the mails with valid rdns, dns, noot blackisted ip or domains or > recipients, etc, etc, etc, go throw the server without any trouble > I did a "manual" smtp conversation sending a mail to a NON local domain > (local-domains-file=[path]rcpthosts) with access-file enable, and the mail > was accepted > Then, I put a "rem" on access-file, made the conversation again, and the > mail was rejected by qmail > I thing that spamdyke is doing something wrong with tcp.smtp > > Try with access-file on > > telenet [your_ip] 25 > helo > MAIL FROM: [EMAIL PROTECTED] > RCPT TO: [EMAIL PROTECTED] > > Mails go OK > > Try without access-file on > > telenet [your_ip] 25 > helo > MAIL FROM: [EMAIL PROTECTED] > RCPT TO: [EMAIL PROTECTED] > > Mail is REJECTED > > - Original Message - > From: "Sam Clippinger" <[EMAIL PROTECTED]> > To: "spamdyke users" > Sent: Thursday, July 10, 2008 12:44 PM > Subject: Re: [spamdyke-users] Strage happend (time to time) > > > >> An access file with just ":allow" is fine; it shouldn't cause any >> problems. >> >> Could you provide more details about the issues you were having? >> >> -- Sam Clippinger >> >> Pablo Murillo wrote: >> >>> Hello >>> >>> My first time here >>> Sorry my english >>> >>> I solved that problem on my MX servers >>> Was a configuration problem >>> >>> I had in my access-file the following line: >>> >>> :allow >>> >>> Now, I don't use access-file and the rest of the filters work ok >>> I don't know how can I use that option, so I don't use it any more >>> >>> >>> - Original Message - >>> From: "N.Novozhilov" <[EMAIL PROTECTED]> >>> To: >>> Sent: Thursday, July 10, 2008 8:17 AM >>> Subject: [spamdyke-users] Strage happend (time to time) >>> >>> >>> >>> >>>> Hi Sam! >>>> >>>> My users receive more and more spam last time. And I see (rarely) in >>>> headers and in >>>> logs the next picture: >>>> >>>> spamdyke[2918]: ALLOWED from: [EMAIL PROTECTED] to: >>>> [EMAIL PROTECTED] >>>> origin_ip: 190.232.71.105 origin_rdns: (unknown) auth: (unknown) >>>> >>>> Sender IP isn't in whitelist (whitelist_ip), target name absent in >>>> whitelist >>>> (whitelist_recipients), this user can't log by smtp and this IP isn't in >>>> tcp.rules. >>>> >>>> Why mails like this are allowed time to time? >>>> >>>> ~~ >>>> Regards >>>> Nicholas A. Novozhilov, NAN6-RIPE >>>> >>>> NTR Lab >>>> System administrator >>>> ___ >>>> spamdyke-users mailing list >>>> spamdyke-users@spamdyke.org >>>> http://www.spamdyke.org/mailman/listinfo/spamdyke-users >>>> >>>> >>>> >>> ___ >>> spamdyke-users mailing list >>> spamdyke-users@spamdyke.org >>> http://www.spamdyke.org/mailman/listinfo/spamdyke-users >>> >>> >> ___ >> spamdyke-users mailing list >> spamdyke-users@spamdyke.org >> http://www.spamdyke.org/mailman/listinfo/spamdyke-users >> >> > > ___ > spamdyke-users mailing list > spamdyke-users@spamdyke.org > http://www.spamdyke.org/mailman/listinfo/spamdyke-users > ___ spamdyke-users mailing list spamdyke-users@spamdyke.org http://www.spamdyke.org/mailman/listinfo/spamdyke-users
Re: [spamdyke-users] Strage happend (time to time)
All the mails with valid rdns, dns, noot blackisted ip or domains or recipients, etc, etc, etc, go throw the server without any trouble I did a "manual" smtp conversation sending a mail to a NON local domain (local-domains-file=[path]rcpthosts) with access-file enable, and the mail was accepted Then, I put a "rem" on access-file, made the conversation again, and the mail was rejected by qmail I thing that spamdyke is doing something wrong with tcp.smtp Try with access-file on telenet [your_ip] 25 helo MAIL FROM: [EMAIL PROTECTED] RCPT TO: [EMAIL PROTECTED] Mails go OK Try without access-file on telenet [your_ip] 25 helo MAIL FROM: [EMAIL PROTECTED] RCPT TO: [EMAIL PROTECTED] Mail is REJECTED - Original Message - From: "Sam Clippinger" <[EMAIL PROTECTED]> To: "spamdyke users" Sent: Thursday, July 10, 2008 12:44 PM Subject: Re: [spamdyke-users] Strage happend (time to time) > An access file with just ":allow" is fine; it shouldn't cause any > problems. > > Could you provide more details about the issues you were having? > > -- Sam Clippinger > > Pablo Murillo wrote: >> Hello >> >> My first time here >> Sorry my english >> >> I solved that problem on my MX servers >> Was a configuration problem >> >> I had in my access-file the following line: >> >> :allow >> >> Now, I don't use access-file and the rest of the filters work ok >> I don't know how can I use that option, so I don't use it any more >> >> >> - Original Message - >> From: "N.Novozhilov" <[EMAIL PROTECTED]> >> To: >> Sent: Thursday, July 10, 2008 8:17 AM >> Subject: [spamdyke-users] Strage happend (time to time) >> >> >> >>> Hi Sam! >>> >>> My users receive more and more spam last time. And I see (rarely) in >>> headers and in >>> logs the next picture: >>> >>> spamdyke[2918]: ALLOWED from: [EMAIL PROTECTED] to: >>> [EMAIL PROTECTED] >>> origin_ip: 190.232.71.105 origin_rdns: (unknown) auth: (unknown) >>> >>> Sender IP isn't in whitelist (whitelist_ip), target name absent in >>> whitelist >>> (whitelist_recipients), this user can't log by smtp and this IP isn't in >>> tcp.rules. >>> >>> Why mails like this are allowed time to time? >>> >>> ~~ >>> Regards >>> Nicholas A. Novozhilov, NAN6-RIPE >>> >>> NTR Lab >>> System administrator >>> ___ >>> spamdyke-users mailing list >>> spamdyke-users@spamdyke.org >>> http://www.spamdyke.org/mailman/listinfo/spamdyke-users >>> >>> >> >> ___ >> spamdyke-users mailing list >> spamdyke-users@spamdyke.org >> http://www.spamdyke.org/mailman/listinfo/spamdyke-users >> > ___ > spamdyke-users mailing list > spamdyke-users@spamdyke.org > http://www.spamdyke.org/mailman/listinfo/spamdyke-users > ___ spamdyke-users mailing list spamdyke-users@spamdyke.org http://www.spamdyke.org/mailman/listinfo/spamdyke-users
Re: [spamdyke-users] Strage happend (time to time)
An access file with just ":allow" is fine; it shouldn't cause any problems. Could you provide more details about the issues you were having? -- Sam Clippinger Pablo Murillo wrote: > Hello > > My first time here > Sorry my english > > I solved that problem on my MX servers > Was a configuration problem > > I had in my access-file the following line: > > :allow > > Now, I don't use access-file and the rest of the filters work ok > I don't know how can I use that option, so I don't use it any more > > > - Original Message - > From: "N.Novozhilov" <[EMAIL PROTECTED]> > To: > Sent: Thursday, July 10, 2008 8:17 AM > Subject: [spamdyke-users] Strage happend (time to time) > > > >> Hi Sam! >> >> My users receive more and more spam last time. And I see (rarely) in >> headers and in >> logs the next picture: >> >> spamdyke[2918]: ALLOWED from: [EMAIL PROTECTED] to: >> [EMAIL PROTECTED] >> origin_ip: 190.232.71.105 origin_rdns: (unknown) auth: (unknown) >> >> Sender IP isn't in whitelist (whitelist_ip), target name absent in >> whitelist >> (whitelist_recipients), this user can't log by smtp and this IP isn't in >> tcp.rules. >> >> Why mails like this are allowed time to time? >> >> ~~ >> Regards >> Nicholas A. Novozhilov, NAN6-RIPE >> >> NTR Lab >> System administrator >> ___ >> spamdyke-users mailing list >> spamdyke-users@spamdyke.org >> http://www.spamdyke.org/mailman/listinfo/spamdyke-users >> >> > > ___ > spamdyke-users mailing list > spamdyke-users@spamdyke.org > http://www.spamdyke.org/mailman/listinfo/spamdyke-users > ___ spamdyke-users mailing list spamdyke-users@spamdyke.org http://www.spamdyke.org/mailman/listinfo/spamdyke-users
Re: [spamdyke-users] Strage happend (time to time)
What version of spamdyke are you using? Can you increase your log level to 4 and send me the log output from one of these deliveries? I would like to see the details of the DNS queries. -- Sam Clippinger N.Novozhilov wrote: > Here is a quote from my spamdyke.conf: > > reject-empty-rdns > reject-unresolvable-rdns > reject-ip-in-cc-rdns > > BTW - spamdyke works with file "blacklist_keywords" not so good as we need... > > On Thu, 10 Jul 2008 13:50:24 +0200 > David Stiller <[EMAIL PROTECTED]> wrote: > > >> You could block "origin_rdns: (unknown)" with a config-option: reject- >> empty-rdns >> >> >> >> >> Am 10.07.2008 um 13:17 schrieb N.Novozhilov: >> >> >>> Hi Sam! >>> >>> My users receive more and more spam last time. And I see (rarely) >>> in headers and in >>> logs the next picture: >>> >>> spamdyke[2918]: ALLOWED from: [EMAIL PROTECTED] to: >>> [EMAIL PROTECTED] >>> origin_ip: 190.232.71.105 origin_rdns: (unknown) auth: (unknown) >>> >>> Sender IP isn't in whitelist (whitelist_ip), target name absent in >>> whitelist >>> (whitelist_recipients), this user can't log by smtp and this IP >>> isn't in tcp.rules. >>> >>> Why mails like this are allowed time to time? >>> >>> ~~ >>> Regards >>> Nicholas A. Novozhilov, NAN6-RIPE >>> >>> NTR Lab >>> System administrator >>> ___ >>> spamdyke-users mailing list >>> spamdyke-users@spamdyke.org >>> http://www.spamdyke.org/mailman/listinfo/spamdyke-users >>> >> David Stiller >> Technischer Support >> >> Blackbit Neue Medien GmbH >> Ernst-Ruhstrat-Straße 6 - D-37079 Göttingen >> >> tel.: +49 [551] 50675-60 - fax.: +49 [551] 50675-20 >> email: [EMAIL PROTECTED] - hotline: [EMAIL PROTECTED] >> >> Klassische Werbung und Online-Marketing: http://www.blackbit.de >> Software für Online-Marketing: http://www.go-community.de >> >> Amtsgericht Göttingen: HRB 3222 >> USt-IdNr.: DE 813114917 >> Geschäftsführer: Herr Stefano Viani >> >> >> >> Vertraulichkeit >> Diese Nachricht ist vertraulich. Falls Sie nicht der in dieser >> Nachricht bezeichnete Empfänger sind, informieren Sie uns bitte >> sobald wie möglich und bewahren Sie Stillschweigen über den Inhalt. >> Danke für Ihr Verständnis. Bitte beachten Sie, daß jede an uns >> gesandte E-Mail über das Sekretariat an den gewünschten Empfänger >> weitergeleitet wird. Vorsorglich weisen wir darauf hin, dass der >> Empfang von E-Mails aus technischen oder betrieblichen Gründen >> gestört sein kann. Dies gilt selbst dann, wenn Sie diese automatisch >> erzeugte E-Mail störungsfrei lesen können. Wegen des nicht >> kontrollierbaren Transportweges einer E-Mail ist auch nicht >> sichergestellt, dass ihr Inhalt nur berechtigten Personen bekannt >> wird. Bitte senden Sie Briefe, Mitteilungen oder sonstige >> Erklärungen, deren Inhalt vertraulich ist oder die rechtliche Wirkung >> entfalten sollen, nicht per E-Mail, sondern auf herkömmlichem Wege. >> Wir behalten uns vor, falls nicht im Einzelfall ausdrücklich etwas >> anderes vereinbart ist, E-Mail keine rechtliche Wirkung beizumessen, >> sofern diese nicht gegen unberechtigte (Ver-)Fälschung gesichert sind. >> >> Confidentiality >> This communication is confidential. If you are not the person or >> entity to whom it is addressed please notify the sender immediately; >> do not disclose the information or make any use of it. Thank you for >> your kind assistance. Please note that e-mails sent to us do not >> reach the addressee directly but are received and distributed by our >> secretariat. As a matter of precaution we would like to point out >> that problems may arise with the reception of e-mails as a result of >> technical or operational factors. This remains the case even if you >> are able to read this automatically generated e-mail correctly. >> Furthermore, as it is not possible to monitor the transmission route >> of an e-mail message, it cannot be guaranteed that its content will >> become known only to authorised persons. We therefore request you to >> send any communications, notifications or other correspondence with >> confidential content, or which are intended to give rise to a legally >> binding effect, not by e-mail, but by traditional means. We reserve >> the right, except as expressly otherwise agreed in any particular >> instance, not to recognise the legal effectiveness of any e-mail that >> is not protected against unauthorised alteration or falsification. >> >> ___ >> spamdyke-users mailing list >> spamdyke-users@spamdyke.org >> http://www.spamdyke.org/mailman/listinfo/spamdyke-users >> > > > ~~ > Regards > Nicholas A. Novozhilov, NAN6-RIPE > > NTR Lab > System administrator > ___ > spamdyke-users mailing list > spamdyke-users@spa
Re: [spamdyke-users] Strage happend (time to time)
Hello My first time here Sorry my english I solved that problem on my MX servers Was a configuration problem I had in my access-file the following line: :allow Now, I don't use access-file and the rest of the filters work ok I don't know how can I use that option, so I don't use it any more - Original Message - From: "N.Novozhilov" <[EMAIL PROTECTED]> To: Sent: Thursday, July 10, 2008 8:17 AM Subject: [spamdyke-users] Strage happend (time to time) > Hi Sam! > > My users receive more and more spam last time. And I see (rarely) in > headers and in > logs the next picture: > > spamdyke[2918]: ALLOWED from: [EMAIL PROTECTED] to: > [EMAIL PROTECTED] > origin_ip: 190.232.71.105 origin_rdns: (unknown) auth: (unknown) > > Sender IP isn't in whitelist (whitelist_ip), target name absent in > whitelist > (whitelist_recipients), this user can't log by smtp and this IP isn't in > tcp.rules. > > Why mails like this are allowed time to time? > > ~~ > Regards > Nicholas A. Novozhilov, NAN6-RIPE > > NTR Lab > System administrator > ___ > spamdyke-users mailing list > spamdyke-users@spamdyke.org > http://www.spamdyke.org/mailman/listinfo/spamdyke-users > ___ spamdyke-users mailing list spamdyke-users@spamdyke.org http://www.spamdyke.org/mailman/listinfo/spamdyke-users
Re: [spamdyke-users] Strage happend (time to time)
Ok sorry I missunterstood the problem...so far i do not have this problem... Maus Computer C. Jesse Dorfstr. 17 16356 Ahrensfelde Tel. : 030 666 480 30 Fax : 030 666 480 33 Mail : [EMAIL PROTECTED] -Ursprüngliche Nachricht- Von: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Im Auftrag von David Stiller Gesendet: Donnerstag, 10. Juli 2008 15:04 An: spamdyke users Betreff: Re: [spamdyke-users] Strage happend (time to time) Hi Carlo, yes probably that's a case, too. But what i expected was that the line: >>> spamdyke[2918]: ALLOWED from: [EMAIL PROTECTED] to: >>> [EMAIL PROTECTED] >>> origin_ip: 190.232.71.105 origin_rdns: (unknown) auth: (unknown) should have matched rdns_missing, like this from my server: Jul 10 14:36:00 plesk-mail spamdyke[13625]: DENIED_RDNS_MISSING from: [EMAIL PROTECTED] to: [EMAIL PROTECTED] origin_ip: 202.136.147.191 origin_rdns: (unknown) auth: (unknown) Am 10.07.2008 um 14:45 schrieb Carlo Blohm: > Hi, > > I had the same configuration and i getting more and more spams in the > last weeks, so i guess anybody has found new spam method or bots that > are not listed in rbl's and have a good configured ip... > > I hope someone gets an idea to fight against this. > > Regards, > > carlo > > > > Maus Computer > C. Jesse > Dorfstr. 17 > 16356 Ahrensfelde > Tel. : 030 666 480 30 > Fax : 030 666 480 33 > Mail : [EMAIL PROTECTED] > > -Ursprüngliche Nachricht- > Von: [EMAIL PROTECTED] [mailto:spamdyke-users- > [EMAIL PROTECTED] Im Auftrag von N.Novozhilov > Gesendet: Donnerstag, 10. Juli 2008 14:07 > An: spamdyke-users@spamdyke.org > Betreff: Re: [spamdyke-users] Strage happend (time to time) > > Here is a quote from my spamdyke.conf: > > reject-empty-rdns > reject-unresolvable-rdns > reject-ip-in-cc-rdns > > BTW - spamdyke works with file "blacklist_keywords" not so good as we > need... > > On Thu, 10 Jul 2008 13:50:24 +0200 > David Stiller <[EMAIL PROTECTED]> wrote: > >> You could block "origin_rdns: (unknown)" with a config-option: >> reject- >> empty-rdns >> >> >> >> >> Am 10.07.2008 um 13:17 schrieb N.Novozhilov: >> >>> Hi Sam! >>> >>> My users receive more and more spam last time. And I see (rarely) in >>> headers and in logs the next picture: >>> >>> spamdyke[2918]: ALLOWED from: [EMAIL PROTECTED] to: >>> [EMAIL PROTECTED] >>> origin_ip: 190.232.71.105 origin_rdns: (unknown) auth: (unknown) >>> >>> Sender IP isn't in whitelist (whitelist_ip), target name absent in >>> whitelist (whitelist_recipients), this user can't log by smtp and >>> this IP isn't in tcp.rules. >>> >>> Why mails like this are allowed time to time? >>> >>> ~~ >>> Regards >>> Nicholas A. Novozhilov, NAN6-RIPE >>> >>> NTR Lab >>> System administrator >>> ___ >>> spamdyke-users mailing list >>> spamdyke-users@spamdyke.org >>> ___ spamdyke-users mailing list spamdyke-users@spamdyke.org http://www.spamdyke.org/mailman/listinfo/spamdyke-users ___ spamdyke-users mailing list spamdyke-users@spamdyke.org http://www.spamdyke.org/mailman/listinfo/spamdyke-users
Re: [spamdyke-users] Strage happend (time to time)
Hi Carlo, yes probably that's a case, too. But what i expected was that the line: >>> spamdyke[2918]: ALLOWED from: [EMAIL PROTECTED] to: >>> [EMAIL PROTECTED] >>> origin_ip: 190.232.71.105 origin_rdns: (unknown) auth: (unknown) should have matched rdns_missing, like this from my server: Jul 10 14:36:00 plesk-mail spamdyke[13625]: DENIED_RDNS_MISSING from: [EMAIL PROTECTED] to: [EMAIL PROTECTED] origin_ip: 202.136.147.191 origin_rdns: (unknown) auth: (unknown) Am 10.07.2008 um 14:45 schrieb Carlo Blohm: > Hi, > > I had the same configuration and i getting more and more spams in > the last weeks, so i guess anybody has found new spam method or > bots that are not listed in rbl's and have a good configured ip... > > I hope someone gets an idea to fight against this. > > Regards, > > carlo > > > > Maus Computer > C. Jesse > Dorfstr. 17 > 16356 Ahrensfelde > Tel. : 030 666 480 30 > Fax : 030 666 480 33 > Mail : [EMAIL PROTECTED] > > -Ursprüngliche Nachricht- > Von: [EMAIL PROTECTED] [mailto:spamdyke-users- > [EMAIL PROTECTED] Im Auftrag von N.Novozhilov > Gesendet: Donnerstag, 10. Juli 2008 14:07 > An: spamdyke-users@spamdyke.org > Betreff: Re: [spamdyke-users] Strage happend (time to time) > > Here is a quote from my spamdyke.conf: > > reject-empty-rdns > reject-unresolvable-rdns > reject-ip-in-cc-rdns > > BTW - spamdyke works with file "blacklist_keywords" not so good as > we need... > > On Thu, 10 Jul 2008 13:50:24 +0200 > David Stiller <[EMAIL PROTECTED]> wrote: > >> You could block "origin_rdns: (unknown)" with a config-option: >> reject- >> empty-rdns >> >> >> >> >> Am 10.07.2008 um 13:17 schrieb N.Novozhilov: >> >>> Hi Sam! >>> >>> My users receive more and more spam last time. And I see (rarely) in >>> headers and in logs the next picture: >>> >>> spamdyke[2918]: ALLOWED from: [EMAIL PROTECTED] to: >>> [EMAIL PROTECTED] >>> origin_ip: 190.232.71.105 origin_rdns: (unknown) auth: (unknown) >>> >>> Sender IP isn't in whitelist (whitelist_ip), target name absent in >>> whitelist (whitelist_recipients), this user can't log by smtp and >>> this IP isn't in tcp.rules. >>> >>> Why mails like this are allowed time to time? >>> >>> ~~ >>> Regards >>> Nicholas A. Novozhilov, NAN6-RIPE >>> >>> NTR Lab >>> System administrator >>> ___ >>> spamdyke-users mailing list >>> spamdyke-users@spamdyke.org >>> ___ spamdyke-users mailing list spamdyke-users@spamdyke.org http://www.spamdyke.org/mailman/listinfo/spamdyke-users
Re: [spamdyke-users] Strage happend (time to time)
Hi, I had the same configuration and i getting more and more spams in the last weeks, so i guess anybody has found new spam method or bots that are not listed in rbl's and have a good configured ip... I hope someone gets an idea to fight against this. Regards, carlo Maus Computer C. Jesse Dorfstr. 17 16356 Ahrensfelde Tel. : 030 666 480 30 Fax : 030 666 480 33 Mail : [EMAIL PROTECTED] -Ursprüngliche Nachricht- Von: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Im Auftrag von N.Novozhilov Gesendet: Donnerstag, 10. Juli 2008 14:07 An: spamdyke-users@spamdyke.org Betreff: Re: [spamdyke-users] Strage happend (time to time) Here is a quote from my spamdyke.conf: reject-empty-rdns reject-unresolvable-rdns reject-ip-in-cc-rdns BTW - spamdyke works with file "blacklist_keywords" not so good as we need... On Thu, 10 Jul 2008 13:50:24 +0200 David Stiller <[EMAIL PROTECTED]> wrote: > You could block "origin_rdns: (unknown)" with a config-option: reject- > empty-rdns > > > > > Am 10.07.2008 um 13:17 schrieb N.Novozhilov: > > > Hi Sam! > > > > My users receive more and more spam last time. And I see (rarely) in > > headers and in logs the next picture: > > > > spamdyke[2918]: ALLOWED from: [EMAIL PROTECTED] to: > > [EMAIL PROTECTED] > > origin_ip: 190.232.71.105 origin_rdns: (unknown) auth: (unknown) > > > > Sender IP isn't in whitelist (whitelist_ip), target name absent in > > whitelist (whitelist_recipients), this user can't log by smtp and > > this IP isn't in tcp.rules. > > > > Why mails like this are allowed time to time? > > > > ~~ > > Regards > > Nicholas A. Novozhilov, NAN6-RIPE > > > > NTR Lab > > System administrator > > ___ > > spamdyke-users mailing list > > spamdyke-users@spamdyke.org > > http://www.spamdyke.org/mailman/listinfo/spamdyke-users > > David Stiller > Technischer Support > > Blackbit Neue Medien GmbH > Ernst-Ruhstrat-Straße 6 - D-37079 Göttingen > > tel.: +49 [551] 50675-60 - fax.: +49 [551] 50675-20 > email: [EMAIL PROTECTED] - hotline: [EMAIL PROTECTED] > > Klassische Werbung und Online-Marketing: http://www.blackbit.de > Software für Online-Marketing: http://www.go-community.de > > Amtsgericht Göttingen: HRB 3222 > USt-IdNr.: DE 813114917 > Geschäftsführer: Herr Stefano Viani > > > > Vertraulichkeit > Diese Nachricht ist vertraulich. Falls Sie nicht der in dieser > Nachricht bezeichnete Empfänger sind, informieren Sie uns bitte sobald > wie möglich und bewahren Sie Stillschweigen über den Inhalt. > Danke für Ihr Verständnis. Bitte beachten Sie, daß jede an uns > gesandte E-Mail über das Sekretariat an den gewünschten Empfänger > weitergeleitet wird. Vorsorglich weisen wir darauf hin, dass der > Empfang von E-Mails aus technischen oder betrieblichen Gründen gestört > sein kann. Dies gilt selbst dann, wenn Sie diese automatisch erzeugte > E-Mail störungsfrei lesen können. Wegen des nicht kontrollierbaren > Transportweges einer E-Mail ist auch nicht sichergestellt, dass ihr > Inhalt nur berechtigten Personen bekannt wird. Bitte senden Sie > Briefe, Mitteilungen oder sonstige Erklärungen, deren Inhalt > vertraulich ist oder die rechtliche Wirkung entfalten sollen, nicht > per E-Mail, sondern auf herkömmlichem Wege. > Wir behalten uns vor, falls nicht im Einzelfall ausdrücklich etwas > anderes vereinbart ist, E-Mail keine rechtliche Wirkung beizumessen, > sofern diese nicht gegen unberechtigte (Ver-)Fälschung gesichert sind. > > Confidentiality > This communication is confidential. If you are not the person or > entity to whom it is addressed please notify the sender immediately; > do not disclose the information or make any use of it. Thank you for > your kind assistance. Please note that e-mails sent to us do not > reach the addressee directly but are received and distributed by our > secretariat. As a matter of precaution we would like to point out > that problems may arise with the reception of e-mails as a result of > technical or operational factors. This remains the case even if you > are able to read this automatically generated e-mail correctly. > Furthermore, as it is not possible to monitor the transmission route > of an e-mail message, it cannot be guaranteed that its content will > become known only to authorised persons. We therefore request you to > send any communications, notifications or other correspondence with > confidential content, or which are intended to give rise to a legally > binding effect, not
Re: [spamdyke-users] Strage happend (time to time)
Here is a quote from my spamdyke.conf: reject-empty-rdns reject-unresolvable-rdns reject-ip-in-cc-rdns BTW - spamdyke works with file "blacklist_keywords" not so good as we need... On Thu, 10 Jul 2008 13:50:24 +0200 David Stiller <[EMAIL PROTECTED]> wrote: > You could block "origin_rdns: (unknown)" with a config-option: reject- > empty-rdns > > > > > Am 10.07.2008 um 13:17 schrieb N.Novozhilov: > > > Hi Sam! > > > > My users receive more and more spam last time. And I see (rarely) > > in headers and in > > logs the next picture: > > > > spamdyke[2918]: ALLOWED from: [EMAIL PROTECTED] to: > > [EMAIL PROTECTED] > > origin_ip: 190.232.71.105 origin_rdns: (unknown) auth: (unknown) > > > > Sender IP isn't in whitelist (whitelist_ip), target name absent in > > whitelist > > (whitelist_recipients), this user can't log by smtp and this IP > > isn't in tcp.rules. > > > > Why mails like this are allowed time to time? > > > > ~~ > > Regards > > Nicholas A. Novozhilov, NAN6-RIPE > > > > NTR Lab > > System administrator > > ___ > > spamdyke-users mailing list > > spamdyke-users@spamdyke.org > > http://www.spamdyke.org/mailman/listinfo/spamdyke-users > > David Stiller > Technischer Support > > Blackbit Neue Medien GmbH > Ernst-Ruhstrat-Straße 6 - D-37079 Göttingen > > tel.: +49 [551] 50675-60 - fax.: +49 [551] 50675-20 > email: [EMAIL PROTECTED] - hotline: [EMAIL PROTECTED] > > Klassische Werbung und Online-Marketing: http://www.blackbit.de > Software für Online-Marketing: http://www.go-community.de > > Amtsgericht Göttingen: HRB 3222 > USt-IdNr.: DE 813114917 > Geschäftsführer: Herr Stefano Viani > > > > Vertraulichkeit > Diese Nachricht ist vertraulich. Falls Sie nicht der in dieser > Nachricht bezeichnete Empfänger sind, informieren Sie uns bitte > sobald wie möglich und bewahren Sie Stillschweigen über den Inhalt. > Danke für Ihr Verständnis. Bitte beachten Sie, daß jede an uns > gesandte E-Mail über das Sekretariat an den gewünschten Empfänger > weitergeleitet wird. Vorsorglich weisen wir darauf hin, dass der > Empfang von E-Mails aus technischen oder betrieblichen Gründen > gestört sein kann. Dies gilt selbst dann, wenn Sie diese automatisch > erzeugte E-Mail störungsfrei lesen können. Wegen des nicht > kontrollierbaren Transportweges einer E-Mail ist auch nicht > sichergestellt, dass ihr Inhalt nur berechtigten Personen bekannt > wird. Bitte senden Sie Briefe, Mitteilungen oder sonstige > Erklärungen, deren Inhalt vertraulich ist oder die rechtliche Wirkung > entfalten sollen, nicht per E-Mail, sondern auf herkömmlichem Wege. > Wir behalten uns vor, falls nicht im Einzelfall ausdrücklich etwas > anderes vereinbart ist, E-Mail keine rechtliche Wirkung beizumessen, > sofern diese nicht gegen unberechtigte (Ver-)Fälschung gesichert sind. > > Confidentiality > This communication is confidential. If you are not the person or > entity to whom it is addressed please notify the sender immediately; > do not disclose the information or make any use of it. Thank you for > your kind assistance. Please note that e-mails sent to us do not > reach the addressee directly but are received and distributed by our > secretariat. As a matter of precaution we would like to point out > that problems may arise with the reception of e-mails as a result of > technical or operational factors. This remains the case even if you > are able to read this automatically generated e-mail correctly. > Furthermore, as it is not possible to monitor the transmission route > of an e-mail message, it cannot be guaranteed that its content will > become known only to authorised persons. We therefore request you to > send any communications, notifications or other correspondence with > confidential content, or which are intended to give rise to a legally > binding effect, not by e-mail, but by traditional means. We reserve > the right, except as expressly otherwise agreed in any particular > instance, not to recognise the legal effectiveness of any e-mail that > is not protected against unauthorised alteration or falsification. > > ___ > spamdyke-users mailing list > spamdyke-users@spamdyke.org > http://www.spamdyke.org/mailman/listinfo/spamdyke-users ~~ Regards Nicholas A. Novozhilov, NAN6-RIPE NTR Lab System administrator ___ spamdyke-users mailing list spamdyke-users@spamdyke.org http://www.spamdyke.org/mailman/listinfo/spamdyke-users
Re: [spamdyke-users] Strage happend (time to time)
You could block "origin_rdns: (unknown)" with a config-option: reject- empty-rdns Am 10.07.2008 um 13:17 schrieb N.Novozhilov: > Hi Sam! > > My users receive more and more spam last time. And I see (rarely) > in headers and in > logs the next picture: > > spamdyke[2918]: ALLOWED from: [EMAIL PROTECTED] to: > [EMAIL PROTECTED] > origin_ip: 190.232.71.105 origin_rdns: (unknown) auth: (unknown) > > Sender IP isn't in whitelist (whitelist_ip), target name absent in > whitelist > (whitelist_recipients), this user can't log by smtp and this IP > isn't in tcp.rules. > > Why mails like this are allowed time to time? > > ~~ > Regards > Nicholas A. Novozhilov, NAN6-RIPE > > NTR Lab > System administrator > ___ > spamdyke-users mailing list > spamdyke-users@spamdyke.org > http://www.spamdyke.org/mailman/listinfo/spamdyke-users David Stiller Technischer Support Blackbit Neue Medien GmbH Ernst-Ruhstrat-Straße 6 - D-37079 Göttingen tel.: +49 [551] 50675-60 - fax.: +49 [551] 50675-20 email: [EMAIL PROTECTED] - hotline: [EMAIL PROTECTED] Klassische Werbung und Online-Marketing: http://www.blackbit.de Software für Online-Marketing: http://www.go-community.de Amtsgericht Göttingen: HRB 3222 USt-IdNr.: DE 813114917 Geschäftsführer: Herr Stefano Viani Vertraulichkeit Diese Nachricht ist vertraulich. Falls Sie nicht der in dieser Nachricht bezeichnete Empfänger sind, informieren Sie uns bitte sobald wie möglich und bewahren Sie Stillschweigen über den Inhalt. Danke für Ihr Verständnis. Bitte beachten Sie, daß jede an uns gesandte E-Mail über das Sekretariat an den gewünschten Empfänger weitergeleitet wird. Vorsorglich weisen wir darauf hin, dass der Empfang von E-Mails aus technischen oder betrieblichen Gründen gestört sein kann. Dies gilt selbst dann, wenn Sie diese automatisch erzeugte E-Mail störungsfrei lesen können. Wegen des nicht kontrollierbaren Transportweges einer E-Mail ist auch nicht sichergestellt, dass ihr Inhalt nur berechtigten Personen bekannt wird. Bitte senden Sie Briefe, Mitteilungen oder sonstige Erklärungen, deren Inhalt vertraulich ist oder die rechtliche Wirkung entfalten sollen, nicht per E-Mail, sondern auf herkömmlichem Wege. Wir behalten uns vor, falls nicht im Einzelfall ausdrücklich etwas anderes vereinbart ist, E-Mail keine rechtliche Wirkung beizumessen, sofern diese nicht gegen unberechtigte (Ver-)Fälschung gesichert sind. Confidentiality This communication is confidential. If you are not the person or entity to whom it is addressed please notify the sender immediately; do not disclose the information or make any use of it. Thank you for your kind assistance. Please note that e-mails sent to us do not reach the addressee directly but are received and distributed by our secretariat. As a matter of precaution we would like to point out that problems may arise with the reception of e-mails as a result of technical or operational factors. This remains the case even if you are able to read this automatically generated e-mail correctly. Furthermore, as it is not possible to monitor the transmission route of an e-mail message, it cannot be guaranteed that its content will become known only to authorised persons. We therefore request you to send any communications, notifications or other correspondence with confidential content, or which are intended to give rise to a legally binding effect, not by e-mail, but by traditional means. We reserve the right, except as expressly otherwise agreed in any particular instance, not to recognise the legal effectiveness of any e-mail that is not protected against unauthorised alteration or falsification. ___ spamdyke-users mailing list spamdyke-users@spamdyke.org http://www.spamdyke.org/mailman/listinfo/spamdyke-users
Re: [spamdyke-users] Strage happend (time to time)
> My users receive more and more spam last time. Same with me, i receive (for about 2 weeks now) more and more viagra spam again. About 10-20 a day - which is still for from what i had before (around 1000 spam a day - on my account only). But somehow it is getting more again. I haven't looked at logfiles to see if spamdyke is causing this, or spammers are changing their style again (maybe the started to use full RFC compliant mail servers? ^_^). Just wanted to tell "yeah noticed that too" --Stefan __ Information from ESET NOD32 Antivirus, version of virus signature database 3257 (20080710) __ The message was checked by ESET NOD32 Antivirus. http://www.eset.com ___ spamdyke-users mailing list spamdyke-users@spamdyke.org http://www.spamdyke.org/mailman/listinfo/spamdyke-users