Hi
I don't think that address "sysadmin@..." is given by exim. It is part of
your configuration.
So post your configuration (private parts removed) if you need help.
Regards,
Steffen
-Ursprüngliche Nachricht-
Von: exim-users-bounces+lists=steffen-heil...@exim.org
[ma
Hi
>2011-09-22 10:06:16 1R6eI9-0006ap-A7 ** [1]hannek...@upcmail.nl
>R=dnslookup T=remote_smtp: SMTP error from remote mail server after
>MAIL FROM:<[2]"nicole...@kerknet.org"@romeinen.ichthusict.org>
>SIZE=39045: host mx0.upcmail.net [213.46.255.200]: 550 5.1.0
><[3]"nicole...
Hi
> Because you wrote ${expand:...} around the extraction.
ARG, of course.
Reading all those docs and man pages and those expansion strings over and
over again, I got completely blind for that...
> > BTW: So it seems the only 2 characters I need to escape in my files are
"
> > and \. I can si
Hi
> 1) address_data = ${lookup{$local_part@$domain}lsearch*@{FILE
> }{$value}fail}
> 2) server_secret =
${extract{pass}{${lookup{$1}lsearch{FILE}{$value}fail}}}
> 3) server_condition = "${if
> eq{$2}{${extract{pass}{${lookup{$1}lsearch{FILE}{$value}fail{1}{0}}"
> 4) driver = redirect data =
Hi
First, thank you very much for the fast answer.
> $ echo '*@b.de: field="value" pass="abcd" key="foo" pass_key="bar me"' >
> TEST
> $ exim -be
> > ${lookup{a...@b.de}lsearch*@{TEST}{$value}fail}
> field="value" pass="abcd" key="foo" pass_key="bar me"
> > ${extract{pass_key}{${lookup{a...@b.d
Hi
I have a text-file that I use for lookups like this:
set acl_m1 = ${lookup{a...@b.de}lsearch*@{filename}{$value}fail}
then I extract some information from this:
${extract{key}{$acl_m1}}
Also, I need to extract a password from this:
${extract{pass_key}{${lookup{$1}lsearch{filename}{$value}
Hi
> Normally this would be rejected early on, but their mail client managed to
> sneak the offending character in by wrapping it in double quotes ...
> (":info"@domain)
Uncommon, but correct.
> This then caused a paniclog entry, because I was using $local_part in a DB
> lookup : "... and use
Hi
While I don't really care about version numbers but only about
functionality, the following is just an worthless opinion, but still my 2
ct.
> * Don't break lexical comparison, not going 4.9901
> * So will go from 4.99 to 5.00
Not breaking lexical comparision and therefor rega
Also note, that a lot of big ISPs don't accept mails for their domains from
their domains from foreign servers...
Example:
You customer has us...@virtualdomain.com forwarding to us...@aol.com.
Now us...@aol.com want to send a mail to us...@virtualdomain.com .
That gets forwarded to us...@aol.com.
Hi
I think you should take a serious look at SRS, such that bounces get back to
your system instead of the original sending server.
And yes, exim can do RCPT-TO-verification, look out for "callout"s in the
manual.
Regards,
Steffen
> -Ursprüngliche Nachricht-
> Von: exim-users-boun...@
Hi
Today I was waked up by one of my mailservers complaining about exims panic
log.
I found these entries:
2011-05-08 13:04:42 unknown named local part list "+giorgio.marchese"
2011-05-08 13:11:39 unknown named local part list "+giorgio.marchese"
2011-05-08 13:31:22 unknown named local part list
Hi
> > > On Mon, 7 Mar 2011 18:08:45 +0100 in message number
> > > <00af01cbdcea$5175be40$f4613ac0$@steffen-heil.de>, received here on
> > > 08/03/2011 10:56:38, "Steffen Heil" said:
> > >
> > >> Most recipients will drop mai
Hi
> So I figured out how to do a return-path rewrite with a static entry, but
now
> I'm looking for a way to take the from: header and insert the same value
in
> return-path? Can some one help me how to read from: in exim?
> So that I could do something like...return_path = $from_header or
> some
Hi
> To: Mike Clarke
> Cc: Members
As others have already commented, this is broken. Don't rely on these
headers - they may even not exist. Or they may contain another address (as
in forwarding) or they may contain a list address only, or
While using pop3 in front of a MTA is generally b
Hi
I know this is not a list for ubuntu related questions, but this is the list
with the most exim administrators and probably not that few are using
debian/ubuntu.
Regarding the current vulnerability I am searching for an backport of exim
4.70 (or better) for ubuntu 8.04.
(http://lists.exim.org
Hi
> Okay, I managed to nail down the issue. Thanks for confirming that exim in
> it's standard configuration should not be the cause of our problems.
> Doing a normal 'traceroute' I could follow the route from my home computer
> to the mailserver, doing a 'tcptraceroute' on ports 25 and 587 revea
Hi
> Thank you so much for pointing this out!
> The original exim configuration/installation was done by a third party
vendor
> so again I made the mistake of assuming they knew what they were doing.
> For some reason they did set the return-path to <> but not the "From"
> address. I've changed th
Hi
> Question: I would like to setup exim4 to only permit relaying if resulting
email
> address in defined ether in /etc/aliases or by a users .forward file,
otherwise
> I would like to keep my relay domains blank.
> Does anyone have an example of this configuration ? The key is I would
like
> to
Hi
I have a problem with a "protocol synchronization error":
We use an exchange server internally and an external exim server as relay
and spam and virus filter. Usually this works fine. We have pipelining
generally disabled and enforce protocol synchronization to fight spam. This
would not be n
Hi
I am having problems using a .net client and exim as smtp server trying to
do ntlm authentication.
The NTLM-SMTP Extension requires servers to accept two different protocol
runs:
< AUTH NTLM
> 334 ntlm supported
< [initial-response]
And additionally:
< AUTH NTLM [initial-response]
Exim 4.69
Hi
> capture_all:
> driver = redirect
> data = [EMAIL PROTECTED]
Right.
> condition = ${if [EMAIL PROTECTED]@example.org}}
You may anso just skip that condition.
It's not nessessary.
Regards,
Steffen
smime.p7s
Description: S/MIME cryptographic signature
--
## List details at http:/
Hi
I need to do callout verification.
My front-end server is an exim 4.63 (debian etch), the back-end is an
exchange 2003 server.
That server is reachable on a no-standard-port with tls only.
I have the following router and transport:
relay_x:
driver = manualroute
domains = domain1 : domain2
Hi
I need to do callout verification.
My front-end server is an exim 4.63 (debian etch), the back-end is an
exchange 2003 server.
That server is reachable on a no-standard-port with tls only.
I have the following router and transport:
relay_x:
driver = manualroute
domains = domain1 : domain2
Hi
I have the following:
Several DIFFERENT systems are listening on port 25 on 127.0.1.1, 127.0.2.1,
127.0.3.1.
I have a router that does basically the following:
myrouter:
driver = accept
transport = server
address_data = ${...some lookup yielding 1, 2 or 3...}
server:
driver = smtp
Hi
> We're running a basic DNS server, with many domains using us
> as the nameserver specified in their WHOIS record. Now, by
> the letter of DNS law, every domain must have a working MX
> record pointing to a working mail server, with a postmaster
> account attached to this...
IMHO that's i
Hi
As noone seems to know how to fix my message sharing scheme, I think I need
to find another way.
So my question put simple:
How can I send one mail to many servers (changing as few as possible) ?
My last resort would be to send that mail as attachment so some new mails to
special addresses
Hi
I want to send every mail for a very special domain to a set of mail
servers. It needs to be unchanged as far as possible (best case: no
modifications to the mail at all.).
I tried:
robot_1:
driver = accept
domains = robot.mydomain
transport = server
address_data = 1
unseen = true
r
.
Where is this option for you ?
Regards,
Steffen
> -Original Message-
> From: [EMAIL PROTECTED]
> [mailto:[EMAIL PROTECTED] On Behalf Of Renaud Allard
> Sent: Friday, April 27, 2007 11:29 PM
> To: Steffen Heil
> Cc: exim-users@exim.org
> Subject: Re
Hello.
I want to do the following: I want to set authentication depending on the
MAIL FROM command.
For example:
MAIL FROM: a,b,c
should do the same as:
USER a
PASS b
MAIL FROM: c
The idea is to use authentication with clients that cannot do smtp auth (a
motorola v3xx cell phone in my ca
Hi
> I think you're allowed up to a 5 minute delay per
> "RCPT TO" in the RFCs however, but they're obviously not
> going to wait for 5 minutes to load the page!
>
> If the delay is an artificial one, you might want to try
> turning it off and seeing if the problems stop. If the delay
> is do
Hi
> No, I don't want to use
> verify = recipient
Basically you shouldn't get any help, not to use this.
Effectively you make our live (as mail administrators fighting spam)
unneccessarily harder.
LDAP-Lookups are afaik cached in exim already, so there is no *extra*
lookup...
Anyway, even then, j
Hi
> > In some placed I have
> > condition = ${if somecondition {1}{0}} Why can't I gust write
> > condition = somecondition
> > ??
>
> How would you tell it was a condition and not a string?
Not at all. That's just the point.
Strings are the only value type in exim and as such there should
Hi
In some placed I have
condition = ${if somecondition {1}{0}}
Why can't I gust write
condition = somecondition
??
As far as I understand string expansion, this should be easy to implement
(just remove condition checks and would also make things a lot easier, as we
could then also use:
cond
Hi
> http://people.debian.org/~sgran/getclamsigs.tar.gz
>
> It makes a number of silly assumptions about where you want
> to put config files and logs and so forth, but it's simple
> enough you should be able to correct paths to whatever you
> use. Patches for portability welcome. The non-sy
Hi
> It should be noted that that's in the 'old news' section of
> the page, but you're right. It's only helpful for some
> messages. I also use
> http://download.mirror.msrbl.com/MSRBL-SPAM.ndb
> http://download.mirror.msrbl.com/MSRBL-Images.hdb
Sorry, another question to those:
Do you get f
Hi
> It should be noted that that's in the 'old news' section of
> the page, but you're right. It's only helpful for some
> messages. I also use
> http://download.mirror.msrbl.com/MSRBL-SPAM.ndb
> http://download.mirror.msrbl.com/MSRBL-Images.hdb
>
> for some other types - the images one is
Hi
> For some months now we have used a HELO ACL to delay by
> 35 seconds all connections with suspicious looking HELOs.
Looks a little long for me.
> This is very effective at reducing the amount of spam that
> our servers receive, while not preventing "real"
> email getting through, because
Hi
Is there a way to check, how many dnslists matched?
If I say
dnslists = a : b : c : d
I would like to know, if only one matched or multiple ones ($dnslist_count)
?
Yes, I know, I could do a query for every single one and count using acl
variables, but then the delay would be the sum of th
Hi
> The intent is to determine experimentally, the 'real', not
> theoretical, response of a submitting client [1], if/as/when
> the server with which it has estabished a connection were to
> issue a 'RSET'. More accurately, an unexpected RSET.
A server cannot send and RSET command, as comman
Hi
Is there a valid reason for a mail server to connect to my mailserver from
the same ip with different hostnames (as told in helo/ehlo)?
I am thinking about blacklisting ips that tell me more then 3 hostnames from
the same ip within less than 24 hours for about a week.
Every legal mailserver I
Hi
> I can't get exim to only allow authorised clients to send
> mail without putting in the acl
>
> > require message = "Authentication required"
> > authenticated = *
>
> at which point i get the required authorised for clients but
> the incoming mail gets rejected instead.
Pl
Hi
> > I have just set the allow_utf8_domains to true. Now exim accepts my
> > mail to [EMAIL PROTECTED] But it doesn't seem to understand the
> domain name.
>
> see the spec -- you also need to change
> dns_check_names_pattern, or set it to the empty string.
Argh.
Yes, you could use allow_ut
Hi
> However, the customer wants to maintain the whitelist
> themselves, using samba and editing the file on a windoze
> machine. So my question is:
> will the CRLF line-ends produced by windows boxes be a
> problem for exim4?
I don't think so, as CRLF is the default for transmitting lines ove
Sorry. Wrong list obviously...
Regards,
Steffen
smime.p7s
Description: S/MIME cryptographic signature
--
## List details at http://www.exim.org/mailman/listinfo/exim-users
## Exim details at http://www.exim.org/
## Please use the Wiki with this list - http://www.exim.org/eximwiki/
Hi
> My poblem is, that I need to have to modfiy the virtual guests (i.e.
> copy the correct kernel modules into their filesystems).
So you updated the domUs kernels when updating the dom0 kernel?
That's the problem.
Make a copy (or hardlink) of each used kernel for each guest and let the
guests
Hi
> > (Oh, and we use postgres of course, not ToySQL :)
>
> With all the work the people have put in, the next thing you
> are likely to do is start calling some MTAs "Toys". It's
> prejudicial. Please respect the work done by others and the
> time they invest. PgSQL is not everything.
Up to
Hi
Which is better in term of performance, if clamav, exim and alls files are
local?
Regards,
Steffen
> -Original Message-
> From: [EMAIL PROTECTED]
> [mailto:[EMAIL PROTECTED] On Behalf Of Victor Ustugov
> Sent: Wednesday, August 09, 2006 10:17 AM
> To: David Saez Padros
> Subject:
myrouter:
driver = redirect
domains = ! +local_domains
data = [EMAIL PROTECTED]
> -Original Message-
> From: [EMAIL PROTECTED]
> [mailto:[EMAIL PROTECTED] On Behalf Of steve.wray
> Sent: Monday, August 07, 2006 10:14 PM
> To: exim-users@exim.org
> Subject: [exim] all outgoing mail
Hi
> > AFAIK, no line may be longer then 1000 chars in SMTP
>
> But headers may have whitespace folding...
I know, but the message was "500 5.6.1 Line too long", not "500 5.6.1
Subject too long" or "500 5.6.1 Header too long".
Regards,
Steffen
smime.p7s
Description: S/MIME cryptographic
Hi
> >> Typical settings include:
> >>
> >> daemon_smtp_ports = 25 : 465 : 587
> >
> > Typical clients use START_TLS on port 25, but tls-on-connect on 465
> > (what about 587?). So with the above setting I'd strongly recommend
> >
> > tls_on_connect_ports = 465
>
> Please ignore everything Bi
Hi
> sounds interesting, but according to the spec, the default is
> already 100, and 100 email-addressed don't produce 16500 characters.
>
> maybe the limit for header lines difffers, and for the
> subject it is ca.
> 16000 chars, while for the t-online RCPT header it is
> something like 3000
Hi
> Why the numbers instead of normal VERP syntax?
The mailing list server already exists and works the other way (right now
sending every mail distinctly).
The router below only has 4 lines and helps me to keep everything else
unchanged.
> The way you want to transfer data from the recipient a
Hi
> I guess that's poorly worded. I will try to improve it. It
> doesn't matter how many recipients are in the message you
> send. If you set max_rcpt to 1 on the smtp transport, the
> *outgoing* messages will be sent with only one recipient. In
> other words, it will split up the message for
Hi
> http://www.exim.org/exim-html-4.62/doc/html/spec_html/ch46.html#SECTverp
>
> > Now, for every mail to have a distinct envelope sender, I
> need to pass
> > every mail distinctly to the mail server.
>
> Nope.
But it says:
> For this to work, you must also arrange for outgoing messages tha
Hello
I want to use exim4 as MTA for my own mailing list manager. However, every
sent mail should have a distinct envelope sender for easy bounce parsing.
Now, for every mail to have a distinct envelope sender, I need to pass every
mail distinctly to the mail server. That's one the one side a pro
Hi
> What I use in this situation is the SASL EXTERNAL mechanism.
> This is designed for lifting some lower-level authentication
> (such as IPSEC or
> TLS) to the SASL level, but there's no reason that you can't
> consider TCP connections from a known client to be good
> enough authentication
Hi
I would ask you about you opinion about a new feature request:
I would like to do the following:
warn host = a.b.c.d
set authenticed = test
So that remote hosts can be authenticated directly.
I know, I can do all this using $ack_cX, but I have a lot of rules, all of
them using authen
Hi
> > I'm having an issue with one person (of course it's the CEO) - he's
> > using Outlook 2000 as his MUA, and somtimes he has mail that looks
> > like it delivers, but in our mainlog there's no entry, the
> reject log has:
> >
> > 2006-03-23 15:47:12 SMTP call from (copper)
> [172.16.128.
Hi
> Well, as someone said, "With that filter, he won't even have
> seen a copy of his own post, let alone your reply. ;^)" -
> because they contain the taboo words that are in the filter!
> I've munged the quote to get it through. Read the filter
> carefully, before throwing it away.
>
> I'
Hi
> ! Indeed, we NAT through a Cisco Firewall.
Then splitting the IP will not be of any use.
Other Mail Servers will only see the IP of the NAT Firewall and will once
again block everything.
> ! I have also set the following line in the exim.conf file :-
>
> local_interfaces = 10.0.0.112.25 an
Hi
> The primary IP Address of the server is 10.0.0.112
> Alias IP Addresses bound to the same NIC is 10.0.0.113 and 10.0.0.114
>
> The reason for this setup is that previously we had clients
> relay through a server and would get black listed at some
> sites, i.e. SpamCop etc. for sending unso
Hi
> $mailqueue = shell_exec("exim -bpc");
> exim: permission denied
> Any ideas how I could get round this?
A way around this would be:
install sudo, write the command above to a script, set root execution rights
for the script to everyone, call "sudo script" from php.
But I am not really sure,
Hi
> Error messages resulting from failure to route an address are
> best generated in the routers rather than in the ACLs. We
> have a catch-all router like this:
>
> unknown_user:
> driver = redirect
> data= :fail: \
> "[EMAIL PROTECTED]" is not
Hi
I want to reject mail, if the local recipient is invalid and I have the
following in my acl_rcpt:
denymessage= unknown user
domains= mydomain.de
!verify= recipient
However, exim printe "Unrouteable address" instread of "unknown user". Why?
Is
Hi
> Incoming SMTP => sends to =>
> => Exim1 (clean email then relay, no local users) => send to
> => => Exch1 (user not here send to Exch2) => send to => =>
> Exch2 (user not here either send to final exim) => send to =>
> => FinalExim (exim accepts mail but no local users for shared
> smtp d
Hi
> Is there a bad consequence to setting timeout_frozen_after
> right down to say 1h?
I don't think so.
It's just what I have...
Regards,
Steffen
smime.p7s
Description: S/MIME cryptographic signature
--
## List details at http://www.exim.org/mailman/listinfo/exim-users
## Exim details a
Hi
> * if the primary MX IS available but says "550 User unknown",
> I'd like to bounce the message immediately (so induce a
> permanent failure).
>
> I've been reading the manual about retry rules for specific
> errors and the closest I can find is the example...
>
> "the.host.name rcpt_45
Hi
I just read my logs and found something strange:
2005-07-31 09:34:19 ignoring [EMAIL PROTECTED] from
H=www1.spektrum.de [194.175.173.101] (client not authenticated)
greping over my logs, I found more such entries. about 500, 250 of which
were from spektrum.de alone.
So, what does this mean?
Hi
I am using a Greylisting system, partially taken from other solutions on the
web and partially constructed myself.
As the system is running, I see more and more different mailing systems
using different VERP addresses. Those are not really a problem for the
Greylisting system, but need some fin
Hi
> I need a filter which triggers when a message is sent from a
> certain user to a non-local user. (That's the easy part), and
> I would like to replace every occurance of
>
> But, I am not sure what the best way to do this is?
>
> The mails are generated from Microsoft Sharepoint Portal
>
Hi
> I have a small prototype daemon listening on a unix domain
> socket which uses Berkeley DB to maintain a greylist of
> (sender, recipient(s), message-id) and a white list of IP
> addresses...
Would you mind to share that?
I got some experience with bdb recently, but I have non with unix d
Hi
> VERP-addresses _usually_ contain the variable part in a
> suffix. As a workaround one might only look at the part of
> the local part that comes before the suffix. In your case you
> could feed [EMAIL PROTECTED] to the greylister.
That would be easy, if I knew, that are verp addresses.
Bu
Hi
Is there a general way to detect VERP's?
For example on:
[EMAIL PROTECTED]
I assume this will give problem with my greylisting...
[I am using the sender's address to greylisting and there are a lot of
domains involved on my side.]
Regards,
Steffen
smime.p7s
Description: S/MIME cryptog
Hi
> The above two, and Message-ID.
I don't want to take this into account, since I do greylisting at RCPT time.
> http://david.woodhou.se/eximconf/include/acl-greylist
Looks nice, but what about performance.
How many mails does this system handle?
lsearch is not the fastest...
Regards,
S
Hi
I am planing some greylisting experiments on my servers.
So I thought to ask, how other do it (successfully).
What do you take into account?
- Recipient Address ?? - yes, propably
- Sender Address ??
- Sending Host ??
- Sending Host's subnet ??
- Sending Host's HELO name ??
How long do you ac
75 matches
Mail list logo
