On Thu, Apr 20, 2023 at 09:26:38AM +0100, Jeremy Harris via Exim-users wrote:
> On 20/04/2023 06:18, Jasen Betts via Exim-users wrote:
> > Their .com is a cname pointing to the .org, so the same host is both
> > .com and .org, but their host isn't using SNI.
>
> This raises the question: should
On Tue, Apr 18, 2023 at 05:03:47PM -0400, Lance Lovette via Exim-users wrote:
> It appears the cert does have a SAN entry. (34.160.13.42 is an IP for
> smtp.mailgun.org.)
>
> $ openssl s_client -starttls smtp -connect 34.160.13.42:587 2>/dev/null
> | openssl x509 -noout -text
>
>
On Sat, Apr 15, 2023 at 08:44:08PM +0100, Sebastian Arcus via Exim-users wrote:
> These are all separate servers belonging to different organisations. They
> each host their own mail domain and users. This can't be changed. I am not
> looking to do load balancing. I am looking to share the public
On Sat, Apr 15, 2023 at 06:03:29PM +0100, Sebastian Arcus wrote:
> On 15/04/2023 16:46, Evgeniy Berdnikov via Exim-users wrote:
> > My question is: why do you want to use so complicated scheme, while it's
> > very simple task to set up a farm of Exim servers, each operating fo
On Sat, Apr 15, 2023 at 12:53:54PM +0100, Sebastian Arcus via Exim-users wrote:
> I have a number of Exim servers behind a NAT gateway (actually connected
> with vpn's to a cloud vps - but I'm hoping this is not relevant to this
> post). I would like the gateway to send incoming port 25 traffic to
On Tue, Apr 11, 2023 at 06:56:10PM +0100, Jeremy Harris via Exim-users wrote:
>20:33:41 1656 failed to expand "<; ${if
> exists{/etc/exim4/passwd.client}
> {${lookup{$host}nwildlsearch{/etc/exim4/passwd.client}{$host_address}}}{} }"
> while checking a list: failed to open
On Tue, Apr 11, 2023 at 10:04:49AM +0200, Slavko via Exim-users wrote:
> Dňa Tue, 11 Apr 2023 08:39:30 +0100 Jeremy Harris via Exim-users
> napísal:
>
> > On 11/04/2023 07:44, Slavko via Exim-users wrote:
> > > The only downside with exim is, that this split (as implemented
> > > in debian) is
On Fri, Mar 31, 2023 at 04:19:05PM +0300, Dzmitry Shykuts via Exim-users wrote:
> I found where the problem was!
>
> It turns out that the Thunderbird mail client uses two types of
> authentication with an unencrypted password at the same time: PLAIN and
> LOGIN. First it tries PLAIN (and my
On Fri, Mar 31, 2023 at 04:22:43PM +0100, Jeremy Harris via Exim-users wrote:
> On 31/03/2023 16:15, Evgeniy Berdnikov via Exim-users wrote:
> > .ifdef REMOTE_SMTP_SMARTHOST_PROTOCOL
> > protocol = REMOTE_SMTP_SMARTHOST_PROTOCOL
> > .endif
>
> Doesn't that impl
On Fri, Mar 31, 2023 at 04:09:10PM +0200, Heiko Schlittermann via Exim-users
wrote:
> Peter via Exim-users (Fr 31 Mär 2023 15:40:35 CEST):
> > From: Jeremy Harris via Exim-users
> > Subject: Re: [exim] Configuring for non-encrypted MUA to localhost.
> > TLS-on-connect, exim to smarthost.
>
On Wed, Mar 29, 2023 at 06:59:42PM +, Slavko via Exim-users wrote:
> Why in hell the certificate signed by same (anonymous for me)
> group (understand CA) is considered as secure, but certificate
> signed by my own CA is not ? Only because someone (anonymous
> for me again) decided that these
On Wed, Mar 29, 2023 at 09:40:16AM +0200, Kirill Miazine via Exim-users wrote:
> I understand it might help a little bit to require TLS, but without
> verficiation that a certificate is valid, TLS requirement is not such
> a big win, is it?
Depends on your aims. Pure encryption is one level of
On Thu, Mar 09, 2023 at 04:47:32PM +0100, Olaf Hopp (SCC) via Exim-users wrote:
> Dear list,
> we want to ratelimit incomming mail bursts (e.g. due
> to phishing attacks).
> To get an idea of reasonable values I have
>
> warn
> ratelimit = 100 / 60s / strict / $sender_address
>
On Mon, Feb 27, 2023 at 04:01:19PM +, Nick via Exim-users wrote:
> The point is, what is it in the config files that makes it rewrite
> the From: address; or alternatively, what should be in the config
> files to make it preserve the From: address?
Almost all possible manipulations with this
Hello.
On Thu, Jan 26, 2023 at 11:31:24AM +0100, Niels Kobschätzki via Exim-users
wrote:
> deny message = delivery error with obfuscating details
> condition = ${if >{$spam_score_int}{120}{1}{0}}
>
> Usually this is no problem. But now I have a user who got a mail that was
> denied with a
On Sat, Dec 17, 2022 at 04:59:59PM +0100, Moritz Orbach via Exim-users wrote:
> I configured connection tracking for the FTP protocol in nftables. Does
> it work now in passive mode?
Yes, now it works in both modes.
--
Eugene Berdnikov
--
## List details at
On Thu, Dec 08, 2022 at 12:22:13PM -0700, The Doctor via Exim-users wrote:
> On Thu, Dec 08, 2022 at 09:24:19PM +0300, Odhiambo Washington via Exim-users
> wrote:
[...]
> > >>> host in "5.34.207.0/24"? yes (matched "5.34.207.0/24")
> > >>> host in host_reject_connection? yes (matched
On Thu, Dec 08, 2022 at 10:56:57AM +0100, Walter Aresca via Exim-users wrote:
> I use the following configuration:
>
> catchall:
[...]
> The result is that when mail is sent to the domain, ALL mails are forwarded
> to the catchall address. I was expecting that ONLY addresses not listed in
>
On Thu, Dec 08, 2022 at 10:30:05AM -0700, The Doctor via Exim-users wrote:
> Tried
>
> host_reject_connection = 5.34.207.*
>
> Still not doing the rejection job.
Use CIDR instead of pattern.
--
Eugene Berdnikov
--
## List details at https://lists.exim.org/mailman/listinfo/exim-users
##
On Mon, Nov 21, 2022 at 08:14:41AM +, Laura Williamson via Exim-users wrote:
> interface = ${lookup sqlite {SQLITE_Q_USERINTERFACE select ip from interface
> where active='Y' order by random() limit 1}{$value}}
> helo_data = ${lookup
> dnsdb{ptr=$sending_ip_address}{$value}{$primary_hostname}}
On Sat, Oct 22, 2022 at 02:35:28PM +0100, Jeremy Harris via Exim-users wrote:
> On 17/10/2022 22:58, Heiko Schlittermann via Exim-users wrote:
> > how do you deal whith incoming messages having a Thread-Index header (an
> > other header indicates that the originating MUA was MS Outlook 16.0)
> >
On Thu, Sep 29, 2022 at 10:36:55AM +0200, Cyborg via Exim-users wrote:
> Am 28.09.22 um 17:51 schrieb Viktor Dukhovni via Exim-users:
> > I strongly disagree. There's no need to be a crypto
> > exhibitionist/maximalist. The vast majority of issuing CA RSA keys are
> > 2048-bits. The use of
On Mon, Sep 12, 2022 at 06:27:08PM +0200, Ján Lalinský via Exim-users wrote:
> I've tried several times, including deleting contents of
> /var/spool/exim/db before starting the service. This did not help.
Try "exim -M -d+all" after clearing db and study its output
to locate source of delay.
Hello.
On Mon, Aug 15, 2022 at 07:19:51PM +0300, Evgeniy Berdnikov wrote:
> On Mon, Aug 15, 2022 at 03:20:57PM +, Slavko via Exim-users wrote:
> >
> > The 5.18 kernel is available in debian stable backports repo [1], IMO
> > best will be to try it first, if it has this fix and if it fixes
On Mon, Aug 15, 2022 at 03:20:57PM +, Slavko via Exim-users wrote:
> Dňa 15. augusta 2022 13:49:37 UTC používateľ Jeremy Harris via Exim-users
> napísal:
>
> >Marc, the best route will be for you to open a Debian bug including the
> >above. According to
On Fri, Jul 15, 2022 at 01:54:56PM +0100, Julian Bradfield via Exim-users wrote:
> I should like exim to drop the connection on a client AUTH failure.
> (Because as soon it's seen in the log, fail2ban will DROP the client IP,
> and so the exim process will hang around until the SMTP session times
On Mon, Jul 04, 2022 at 03:43:20PM +0200, Olaf Hopp (SCC) via Exim-users wrote:
> On 7/4/22 11:12, Evgeniy Berdnikov via Exim-users wrote:
> >
> > Place a script wrapper instead of symlink on /usr/sbin/sendmail, which
> > could add some flags, like that:
> >
>
On Mon, Jul 04, 2022 at 10:42:50AM +0200, Olaf Hopp (SCC) via Exim-users wrote:
> When the mails comes out of the sympa list manager it
> calls directly /usr/sbin/sendmail which is a symlink to the exim binary
> and I have only the usual logging, no -d+all
> Can you give me a hint how to enable
On Fri, Jun 10, 2022 at 03:19:30PM -0600, Elliot Finley via Exim-users wrote:
> I've been trying to get exim4 up and running on Ubuntu 20.04.
[...]
> But the problem is, it doesn't appear that CONFDIR is being honored. Later
> in the config file there is:
>
> .ifndef MAIN_TLS_CERTIFICATE
>
On Tue, Jun 14, 2022 at 04:14:06PM -0400, Ian Kelling via Exim-users wrote:
> If calling exim is the last thing the service does, systemd will kill
> off exim's background delivery process and the message will be in the
> queue waiting until the next queue run. This has bit me when migrating a
>
On Thu, Jun 02, 2022 at 12:08:38PM +0200, Kamil Jońca via Exim-users wrote:
> >> hd ~/Maildir/new/1654092174.M969837P1180197.alfa.kjonca
> >> 0180 45 6e 63 6f 64 69 6e 67 3a 20 38 62 69 74 0a 4d |Encoding:
> >> 8bit.M|
> >> 0190 65 73 73 61 67 65 2d 49 64 3a 20 3c 45 31 6e 77
Hello.
On Wed, Jun 01, 2022 at 06:13:53PM +0200, Kamil Jońca via Exim-users wrote:
> Evgeniy Berdnikov via Exim-users writes:
> > Post here output of "hd /tmp/exim-... | tail", pls. And similar hexdump
> > for relevant file from Dovecot spool after delivery.
>
On Wed, Jun 01, 2022 at 04:55:18PM +0100, Jeremy Harris via Exim-users wrote:
> On 01/06/2022 16:46, Evgeniy Berdnikov via Exim-users wrote:
> > Strace of Debian bsd-mailx (my version is 8.1.2-0.20180807cvs-2)
> > shows that it does not append newline writing to MT
On Wed, Jun 01, 2022 at 04:15:18PM +0200, Kamil Jońca via Exim-users wrote:
> %dpkg -S /usr/bin/bsd-mailx
> bsd-mailx: /usr/bin/bsd-mailx
Strace of Debian bsd-mailx (my version is 8.1.2-0.20180807cvs-2)
shows that it does not append newline writing to MTA child process,
it only converts "\n"
On Wed, May 25, 2022 at 05:45:51PM +0200, Cyborg via Exim-users wrote:
> but, a valid user would use SMTP-Auth which the spammer won't use.
Many sites (millions, I think) do not use SMTP auth for their users,
because local user can be identified by ip-address of mail client.
> so the test: (
On Wed, May 25, 2022 at 08:38:32AM -0600, Chad Leigh Shire.Net LLC via
Exim-users wrote:
> What is the best strategy to combat and right out reject mail that
> has the from: and the recipient address the same? Or alternately to
> force things like SPF checking against the from: in addition to
ir gateway
> > starts to send the message on to their mail server (cut-through delivery)
> > or not.
> >
> > Does the Symantec Messaging Gateway advertise PIPELINING and do you use it
> ?
> >
> >> --
> >> Marc
> >>
> >>
On Wed, Mar 30, 2022 at 02:53:45PM +0200, tt-admin via Exim-users wrote:
> Continuation of the strace;
>
> 6649 select(8, [7], NULL, NULL, {tv_sec=60, tv_usec=0}
> 6671 <... recvfrom resumed> 0x56352d0bd71b, 324, 0, NULL, NULL) = -1
> ECONNRESET (Connection reset by peer)
> 6671 alarm(0)
On Tue, Mar 22, 2022 at 10:18:11PM -0500, Larry Rosenman via Exim-users wrote:
> this failed with:
> <21>1 2022-03-22T22:10:43.422806-05:00 thebighonker.lerctr.org exim 72957 -
> - H=mail-oa1-f43.google.com [209.85.160.43]:33104 I=[192.147.25.65]:25
> sender v
> erify defer for : failed to
>
On Tue, Mar 22, 2022 at 08:55:05PM +0100, Kurt Jaeger via Exim-users wrote:
> - Problem: exim outbound, mails hang
> - those two processes
> 47118 - IXs 0:00.02 /usr/local/sbin/exim -Mc 1nWfgZ-000CFx-95
> 47122 - IX 0:00.01 /usr/local/sbin/exim -Mc 1nWfgZ-000CFx-95
> - starting
On Mon, Mar 14, 2022 at 06:59:44AM +, Mike Tubby via Exim-users wrote:
> On 13/03/2022 22:30, Evgeniy Berdnikov via Exim-users wrote:
> > On Sun, Mar 13, 2022 at 08:06:45PM +, Mike Tubby via Exim-users wrote:
> > > 2022-03-13 19:47:53 1nTTGO-0001Jw-Tr H=alt2.gmail-sm
On Sun, Mar 13, 2022 at 08:06:45PM +, Mike Tubby via Exim-users wrote:
> 2022-03-13 19:47:53 1nTTGO-0001Jw-Tr H=alt2.gmail-smtp-in.l.google.com
> [2a00:1450:4025:c03::1a]: SMTP timeout after sending data block (476909
> bytes written): Connection timed out
Looks like broken Path MTU
On Thu, Feb 17, 2022 at 07:36:38PM -0800, Michael Tratz via Exim-users wrote:
> > On Feb 16, 2022, at 4:17 PM, Jeremy Harris via Exim-users
> > wrote:
> >
> > You don't even get a single line from truss as it attaches?
> > I wonder if the process is spinning in userland?
> > Does "top" or
On Thu, Feb 17, 2022 at 11:25:15AM +0300, Evgeniy Berdnikov via Exim-users
wrote:
> > The:
> > ---
> > -A INPUT -p icmpv6 -j ACCEPT
> > -A INPUT -i bond+ -m state --state ESTABLISHED,RELATED -j ACCEPT
> > ---
BTW, "state" conntrack module is deprecated
On Thu, Feb 17, 2022 at 02:01:49PM +0900, Christian Balzer via Exim-users wrote
> If found it excruciatingly hard to correlate tcpdump and nf_conntrack
> flows,
These data can be related via timestamps, they may be enabled for
conntrack output:
conntrack -o timestamp,ktimestamp -E ...
On Wed, Feb 16, 2022 at 10:12:07PM +0100, Sławomir Dworaczek via Exim-users
wrote:
> How to deliver message before bogofilter check it.
What's the sense to check message which is already delivered, i.e.
went out of MTA control? :) Probably you have asked a wrong question.
If you want to skip
On Sun, Feb 13, 2022 at 06:31:23PM +, Jeremy Harris via Exim-users wrote:
> Try it with a newline, whitespace (i.e. tab or space) sequence, to get a
> multiline
> header.
This way works, yes. And may be programmed with ${sg..}, I think.
Nevertheless, I'd like to have it as default
On Fri, Feb 11, 2022 at 08:48:33PM +0200, Victor Ustugov via Exim-users wrote:
> Evgeniy Berdnikov via Exim-users wrote on 19.11.2021 09:16:
...
> > There are several variants to try:
> >
> > 1. Use header add/remove directives in ACLs and/or routers to "rein
On Thu, Feb 10, 2022 at 07:56:57PM +0530, Sherin A via Exim-users wrote:
> 1) :fail: doesn't work
>
> # exim -bt f...@example.com
> LOG: MAIN
> => Piping mail from f...@example.com => :fail: No such person
> LOG: MAIN
> => Processing forward from f...@example.com => :fail: No such person
On Thu, Feb 10, 2022 at 06:11:13PM +0530, Sherin A via Exim-users wrote:
> f...@example.com => f...@example.com -> This option works fine
> a...@example.com => :blackhoe: -> This also works fine
blackho*l*e
> b...@example.com => :fail: -> This doesn't work
> c...@example.com =>
On Thu, Jan 27, 2022 at 01:16:52PM -0500, Michael Steigman via Exim-users wrote:
> Is there a way to enable more debugging info (exim is started with -bdf)?
Yes, option "-d", but it's not effective for access problems.
> I tried strace but I don’t see anything obvious in that dump.
On the
On Tue, Jan 11, 2022 at 09:43:25AM +, Jeremy Harris via Exim-users wrote:
> On 11/01/2022 09:08, Mikhail Golub via Exim-users wrote:
...
> > # exim -bV
> > Exim version 4.95 #1 (FreeBSD 12.3) built 11-Jan-2022 08:36:14
...
> If you have any info on the rate of growth, this would also help.
>
Hello.
On Sat, Jan 08, 2022 at 03:27:45PM +, Julian Bradfield via Exim-users wrote:
> Specifically, I don't like the idea of installing an external tool
> spfquery and using the slightly clunky config snippet to use it,
> rather than using the built-in spf - I like things in the exim4
On Tue, Dec 28, 2021 at 01:26:54PM +0100, Cyborg via Exim-users wrote:
> No idea how exim interally handles this, but exim does not seem to be
> flexibel enough to react on dynamic changes in the environment.This is bad
> luck, because freezing the mail in the queue is exactly there to wait for
>
On Thu, Dec 23, 2021 at 11:38:58AM +0100, Leon Fellows via Exim-users wrote:
> I have started the daemon from commandline like this:
> exim -bd -q15m -d
>
> Now I get A LOT of debug messages. But I can still not really find an error.
> Should I just post them here?
No, you should look for
On Thu, Dec 23, 2021 at 09:16:02AM +0100, Leon Fellows via Exim-users wrote:
> 2021-12-23 08:57:27.464 [196843] SMTP connection from [5.45.110.153]:39612
> I=[5.45.110.153]:587 (TCP/IP connection count = 1)
> 2021-12-23 08:57:42.731 [196847] 1n0Iyd-000pCx-J3 <= fell...@fairtragen.de
>
On Wed, Dec 22, 2021 at 10:15:54PM +0100, Michael Haardt via Exim-users wrote:
> Evgeniy Berdnikov via Exim-users wrote:
> > Think a bit. Lot of examples may be found in one minute.
> > For example, you have to check user's quota, which is stored in some
> > database
On Wed, Dec 22, 2021 at 08:16:57PM +0100, Michael Haardt via Exim-users wrote:
> > Also, though rarely used, it's not impossible for the
> > source of a string getting expanded to come from a
> > runtime-variable place. Exim is that flexible.
>
> Is there a real use case for that? It sounds
Hello.
On Mon, Dec 13, 2021 at 04:49:01PM +, Graeme Fowler via Exim-users wrote:
> On 13 Dec 2021, at 15:13, Evgeniy Berdnikov via Exim-users
> wrote:
> > Finally outlook.com reports 32799 bytes in a single header, while
> > the original mail has size 1216. So your
Hello.
On Fri, Dec 10, 2021 at 09:46:37AM +0100, Martin Fischer via Exim-users wrote:
> I would need your help. Messages from Exim to some MS 365 accounts hosted in
> Europe are bouncing when sent from MS Outlook or an Android client. Sending
> same message from Webmail (Roundcube)
On Tue, Dec 07, 2021 at 10:22:37PM +, Andrew Hearn via Exim-users wrote:
> We have a direct interconnect to Google, so there is only a fibre
> between our router and Google's router, that part of path is stable and
> identical - though there are a number of hops withing Google's AS that
>
Hello.
On Fri, Dec 03, 2021 at 12:00:33PM +, Andrew C Aitchison via Exim-users
wrote:
> > We currently have about 1,000 emails queued for google accounts and
> > these are failing with a timeout, eg from exim:
> >
> > 2021-12-02 11:48:05 1msize-005feQ-DI H=gmail-smtp-in.l.google.com
> >
On Wed, Nov 24, 2021 at 07:58:29AM -0700, Ben Franklin via Exim-users wrote:
> Quoth Eugene Berdnikov: 'message "host lookup did not
> complete" means Exim did not get answers from DNS for "gmail.com". So
> it could not proceed with sender verification.'
> How can Exim not resolve DNS
On Tue, Nov 23, 2021 at 06:39:04AM -0700, Ben Franklin via Exim-users wrote:
> 2021-11-23 04:41:56.239 [23354] H=mail-oi1-f171.google.com
> [209.85.167.171]:47047 I=[123.456.789.012]:25 sender verify defer for
> : host lookup did not complete
...
> What does this mean? Does it mean
On Thu, Nov 18, 2021 at 11:36:53PM +0300, Odhiambo Washington via Exim-users
wrote:
> On Thu, Nov 18, 2021 at 12:32 PM Evgeniy Berdnikov via Exim-users <
> exim-users@exim.org> wrote:
> > Yes, "References:" has 1018 octets while RFC limit is 998.
> > Thi
Hi.
On Thu, Nov 18, 2021 at 11:19:59AM +0300, Odhiambo Washington via Exim-users
wrote:
> A particular e-mail is generating that error and I am thinking perhaps it's
> from a certain long header - "References:" in the thread.
> See https://pastebin.ubuntu.com/p/fK5wDzzxCW/
Yes,
On Tue, Nov 16, 2021 at 03:11:50PM -0500, Matt Corallo via Exim-users wrote:
> The way I was (apparently incorrectly?) interpreting a similar expansion
> here is that the host was not verified via FcRDNS due to the presence of the
> square brackets in the parenthetical. Apparently that is the way
Hello.
On Tue, Nov 16, 2021 at 11:47:22AM -0500, Matt Corallo via Exim-users wrote:
> Like the title says, for some reason exim 4.94.2-7 (Debian stable) is
> refusing to ever expand sender_rcvhost to a verified hostname.
Your mail passed my relay with Exim 4.94.2-7 (frozen good old version)
On Sat, Nov 13, 2021 at 08:07:36PM -0300, JHM via Exim-users wrote:
> On 13 Nov 2021 at 22:09, Jeremy Harris via Exim-users wrote:
>
> > > So, there's no IPv6 in the system or anywhere near it because I disabled
> > > it.
> > Wrong.
>
> I must insist on this:
> IPv6 is explicitly disabled on
Hi.
On Sat, Nov 13, 2021 at 10:14:34AM -0300, JHM via Exim-users wrote:
> In my opinion as desktop end user, if the box where Exim is being
> installed does *not* have IPv6 enabled (and is explicitly disabled), then
> it should *not* be configured by default with IPv6 enabled.
Note that we
On Mon, Nov 08, 2021 at 10:20:44AM -0300, JHM via Exim-users wrote:
> The problem is that my DNS (unbound) runs on the Devuan ascii virtual machine
> which I set
> up to start up automatically at boot but it is not yet up and running when
> Exim4 does the
> reverse DNS check.
You can change
Hi.
On Tue, Nov 02, 2021 at 08:12:49PM +0100, Niels Kobschätzki via Exim-users
wrote:
> What setting do I have to make in the dnslookup-router that a “MX 0
> localhost.” fails and not defers?
Try ignore_target_hosts option.
--
Eugene Berdnikov
--
## List details at
On Sat, Oct 30, 2021 at 02:56:40AM -0400, Viktor Dukhovni via Exim-users wrote:
> On Sat, Oct 30, 2021 at 08:07:02AM +0200, Andreas Metzler via Exim-users
> wrote:
>
> > > Is it really true that for lack of valid certificate there's a way to
> > > get Exim to fall back to cleartext instead???
>
Hello.
On Sat, Oct 16, 2021 at 06:44:28PM +0200, Heiko Schlittermann via Exim-users
wrote:
> Adam D. Barratt via Exim-users (Sa 16 Okt 2021 17:43:57
> CEST):
> > >
> > > This hh.schlittermann.de runs the latest Exim, and probaby sends you
> > > an SNI your server for some reason doesn't
On Thu, Oct 14, 2021 at 05:50:23PM +0300, Odhiambo Washington via Exim-users
wrote:
> On Thu, Oct 14, 2021 at 4:25 PM Evgeniy Berdnikov via Exim-users <
> exim-users@exim.org> wrote:
> > | dkim_selectorUse: smtp Type: string list† Default:
> > unse
On Thu, Oct 14, 2021 at 03:24:56PM +0300, Odhiambo Washington via Exim-users
wrote:
> 1. I have 2 private keys - dkim.priv.key and dkim_ed25519.priv.key
> 2. I have published a DNS record for key1._domainkey.example.com for the
> RSA, and key2._domainkey.example.com for the ED25519 keys
was from Jeremy:
On Wed, Sep 08, 2021 at 09:50:54AM +0100, Jeremy Harris via Exim-users wrote:
> On 08/09/2021 07:58, Evgeniy Berdnikov via Exim-users wrote:
[...]
> > Fault happens on sender verify callout, in rcpt or pre-data ACLs.
> > Here is the recent example, callout from
On Mon, Sep 13, 2021 at 02:19:25PM -0300, Patrick Boutilier via Exim-users
wrote:
> Accept routers log to mainlog with R= , such as:
>
> 2021-09-13 14:05:02 1mPpOA-0007aw-AX => test
> R=mysql_autorespond_staff T=address_mysql
>
> Is there a way to get redirect routers to do the same thing?
On Wed, Sep 08, 2021 at 09:50:54AM +0100, Jeremy Harris via Exim-users wrote:
> One item which would be useful to know: what "trust list" might have been
> involved during this callout. The transport tls_verify_certificates option
> controls this.
My config is based on Debian default
On Tue, Sep 07, 2021 at 03:32:02PM +0100, Jeremy Harris via Exim-users wrote:
> 44a62f5861 looks relevant:
>
> JH/59 DKIM: Fix small-message verification under TLS with chunking. If a
> pipelined SMTP command followed the BDAT LAST then it would be
> incorrectly treated as part of the
On Tue, Sep 07, 2021 at 03:32:02PM +0100, Jeremy Harris via Exim-users wrote:
> Another test you could try is a build with
> #define MISSING_POSIX_MEMALIGN
> in OS/os.h-Linux.
> If that still coredumps in the same place, it's not a "write
> to readonly data" trap; so more likely a null pointer.
On Tue, Sep 07, 2021 at 06:33:06PM +0200, Andreas Metzler via Exim-users wrote:
> On 2021-09-06 Evgeniy Berdnikov via Exim-users wrote:
> [...]
> > #1 0xf71d5be6 in gnutls_x509_trust_list_get_issuer ()
> >from /usr/lib/i386-linux-gnu/libgnutls.so.30
> > No symbol tabl
Hello.
Returning to topic discussed a month ago...
On Wed, Jul 07, 2021 at 01:21:37AM +0300, Evgeniy Berdnikov wrote:
> On Tue, Jul 06, 2021 at 08:32:36PM +0100, Jeremy Harris via Exim-users wrote:
> > While there have been several changes in the DKIM code that probably
> > are not in the
More info on segfaults. Now I have 4 coredumps for incoming mails
and 1 for outgoing mail with symbol info.
All have common references on the top:
at tls-gnu.c:2518
at tls-gnu.c:3591
suppress_tls=) at smtp.c:2673
--
Eugene Berdnikov
--
## List details at
On Sun, Sep 05, 2021 at 11:13:45PM +0300, Evgeniy Berdnikov via Exim-users
wrote:
> I built unstripped binary, let's wait for segfaults.
Several happened last night, 1st coredump is below.
2021-09-06 06:13:18.702 [116601] SIGSEGV (maybe attempt to write to immutable
memory)
# echo bt f
On Sun, Sep 05, 2021 at 07:02:10PM +0100, Jeremy Harris via Exim-users wrote:
> On 05/09/2021 18:44, Evgeniy Berdnikov via Exim-users wrote:
> > After last night upgrade from 4.94.2 to 4.95~RC2 (on Debian/testing 32bit)
> > several segfaults were recorded.
>
> Does Debia
Hello.
On Tue, Aug 24, 2021 at 05:12:12PM +0200, Heiko Schlittermann via Exim-users
wrote:
> The Exim 4.95-RC2 is available
>
> - as tarball:https://ftp.exim.org/pub/exim/exim4/test
> - directly from Git: https://git.exim.org
> tag exim-4.95-RC2
After last night
On Sat, Sep 04, 2021 at 05:14:22PM -0400, Viktor Dukhovni via Exim-users wrote:
> As mentioned above, it should be rather rare for a legitimate MTA as a
> client to see such responses. Users of postscreen(8) should be cautious
> to not make it too aggressive in its policies. The intent is to
On Sat, Sep 04, 2021 at 11:23:02AM -0400, Viktor Dukhovni via Exim-users wrote:
> FWIW, Postfix has always taken the SMTP status code from the last line
> of a multi-line server response, but as you noted there is no RFC
> requirement to do so, and the code is expected to not vary from line to
>
Hello.
On Thu, Sep 02, 2021 at 09:25:20PM +0200, krzf83--- via Exim-users wrote:
> Then exim should return message to sender immeadetly but it does not.
> Instead exim remembers that that remote mx is "failing for long time" and
> does not even try to deliver new mails! If exim for some
On Thu, Aug 26, 2021 at 02:26:27PM +0200, Cyborg via Exim-users wrote:
> This scenary is a reallife problem in multi-domain hosting. If you only
> have a handfull of domain, most of them your property or under your admin
> control, you won't have it and will never have thought about it. With
>
On Thu, Aug 26, 2021 at 10:57:49AM +0200, Cyborg via Exim-users wrote:
> My actual problem is to build the content of local_domains from DNS IN MX
> Records. The server shall only handle the domain as local,
> if the mx is pointing to an address on the host.
If so, then anybody making pointer to
On Sun, Aug 22, 2021 at 11:23:35AM -0300, SysAdmin EM via Exim-users wrote:
> /opt/exim/bin/exim -d+lookup -be '${lookup
> mysql{servers=127.0.0.1::6033/c233/sqlmonitor/password;
> SELECT domain FROM eximdomains WHERE active=1 AND domain='
> feudaleyasociados.com.ar'}}'
>
>
On Thu, Aug 12, 2021 at 10:55:37AM +0200, Simon Josefsson via Exim-users wrote:
> Hi! I think I have ran into this problem:
>
> https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=939808
>
> My outgoing e-mails (like this one) is DKIM signed by Exim, and the
> signature covers (on sending, the
On Wed, Aug 11, 2021 at 09:45:24AM -0400, Mo C via Exim-users wrote:
> I have set up an exim mail server for my organization but we are having
> issues sending any email from it. When I use the Seamonkey email client I
> am able to connect with encrypted password but sending email fail and in
>
On Fri, Jul 23, 2021 at 08:48:28PM +0100, Matthew Frost via Exim-users wrote:
> sysctl kern.sugid_coredump=1
...
> I've asked the Jail Host, very nicely, if they'll set (temporarily)
> the sysctls for me there. They might say "no", but there was no harm
> in asking!
The setuid bit is meaningful
On Wed, Jul 21, 2021 at 09:22:00AM +0200, Luca Bertoncello via Exim-users wrote:
> Am 21.07.2021 09:01, schrieb Evgeniy Berdnikov via Exim-users:
> > Compare output ot "lsof -n -a -U -u clamav +E" before and after hangup.
> > For all clamd child processes after hangup in
On Mon, Jul 19, 2021 at 08:20:21AM +0200, Luca Bertoncello via Exim-users wrote:
> So, I upgraded ClamAV on the Server (now is 0.103.2 from Debian 10
> repository).
> It worked quite good some days, but now I have again the same problem...
> The time ist _not_ related with the freshclam update...
Hello.
On Mon, Jul 19, 2021 at 11:39:24AM +0100, Sabahattin Gucukoglu via Exim-users
wrote:
> I want to turn on DSN success notices for mail after it’s received based on
> criteria like sender or the inclusion of a header. It would mean I could use
> DSN even when my client doesn’t have
On Wed, Jul 14, 2021 at 02:35:54AM +, MRob via Exim-users wrote:
> Hi, I was trying and find like $rcpt_count or $recipients_count for full
> count of addresses in TO/CC for incoming message.
What do you want to do with it?
> I am wonder how we can look at TO:/CC: header which has many
1 - 100 of 244 matches
Mail list logo
