[norman.mau...@googlemail.com] On Behalf Of
Norman Maurer [nor...@apache.org]
Sent: Wednesday, 23 February 2011 7:14 PM
To: James Users List
Subject: Re: Test Mail Server 3.0-M2 Open Relay delivering locally
Hi there,
I guess only need to set "verifyIdenty" to false in smtpserver.xml
es Users List
Subject: Re: Test Mail Server 3.0-M2 Open Relay delivering locally
Hi there,
I guess only need to set "verifyIdenty" to false in smtpserver.xml to
fix your problem. Anyway how do load your costum
"CoreCmdHandlerLoader" ?
Bye,
Norman
2011/2/23 Russell Mullens
Hi there,
I guess only need to set "verifyIdenty" to false in smtpserver.xml to
fix your problem. Anyway how do load your costum
"CoreCmdHandlerLoader" ?
Bye,
Norman
2011/2/23 Russell Mullens :
> Hey guys,
>
> I have been using 2.3.2 to accept email from anyone and deliver it to a
> single Jam
Hey guys,
I have been using 2.3.2 to accept email from anyone and deliver it to a single
James users inbox for testing purposes. But I've recently needed IMAP support.
So I downloaded the latest (3.0-M2) and I've been able to configure it to
deliver all messages to the one persons inbox via
> recipients has abc.com domain will be allowed , in other word ,
> x...@abc.com will be accepted by my mail server , but x...@otheres.com
> will be not relay . what can I do it to prevent my mail server from
> being considered as an open relay by yahoo and other mail servers?
>
>
>
> Thanks
>
>
>
> Yours
>
> Will
>
>
mail server , but x...@otheres.com
will be not relay . what can I do it to prevent my mail server from
being considered as an open relay by yahoo and other mail servers?
Thanks
Yours
Will
Usually a good idea is to post your config.xml file to the list
(removing any passwords) and ask people to take a look at it.
I think that one way to stop James from acting as an open relay it is to
set James to require authorization to send emails. I think you can find
that in config.xml at
Hi,
We use James to send mails to users from our application.
I am received the following message from my security people:
The remote SMTP server is insufficiently protected against relaying.
This means that it allows spammers to use your mail server to send
their mails to the world,
thus wastin
Hi Tor,
I had a few rounds again today with spam relaying and thought I'd be
kind enough to relay to you (haha) what happened. The spammer did
indeed authenticate and probably managed to find the password of one
of my user accounts (with a very common account name) using a
dictionary attack.
Tor-Einar Jarnbjo schrieb:
I'll leave it with that for the moment and "hope" that I'll experience
a similar attack soon and get some more information out of the SMTP log.
I had a few rounds again today with spam relaying and thought I'd be
kind enough to relay to you (haha) what happened. The
Stefano Bagnara schrieb:
Maybe I found an answer to this looking at source code.
AuthCmdHandler logs at INFO level the "AUTH method PLAIN succeded" but
only at DEBUG level an "AUTH method LOGIN succeded".
So maybe your client is using the LOGIN style to auth.
You probably want to increase your l
Tor-Einar Jarnbjo ha scritto:
>> As I said earlier I can't see anything wrong. In general, from 3.2
>> onwards if you have turned SMTP authentication on you can be sure that
>> any attempt to send a message to a non-local address will require SMTP
>> Authentication.
> Obviously, it doesn't. If I s
Tor,
* Your smtpserver has 'authorizedAddresses' set to '127.*' which is
fine. However, this will allow any process running on your server to
send remote email without requiring SMTP authorization. Is it
possible you have a web app running on your server which is being
used by the spammer t
I guess the only way to be sure of what is going on is to capture the
complete network conversation that goes on when this address connects...
but I don't know what tools you could use for that. Switching all the
logging to debug would create a lot of unusable output.
I presume you have a fi
Stefano Bagnara schrieb:
Did you get thousands of unathorized "relay" like in June?
It was similar. The spammer managed to deliver about 100.000 mails, of
which 60.000 were forwarded and 40.000 left in the spool because of the
recipients mail server not accepting the mail for some reason.
Tor-Einar Jarnbjo ha scritto:
> Stefano Bagnara schrieb:
>> Have you tried to reproduce the same FROM/TO in an SMTP conversation
>> originated remotely to see if JAMES replies you what you expect?
>>
>
> Hi Stefano,
> yes I have. It answers with:
>
> 530 5.7.1 Authentication Required
>
> Rega
Stefano Bagnara schrieb:
Have you tried to reproduce the same FROM/TO in an SMTP conversation
originated remotely to see if JAMES replies you what you expect?
Hi Stefano,
yes I have. It answers with:
530 5.7.1 Authentication Required
Regards,
Tor
Tor-Einar Jarnbjo ha scritto:
> The connections causing the spam hickup this week were _not_
> authenticated, or at least James did not log any authentication attempt:
>
> 27/10/08 13:14:17 INFO smtpserver: Connection from
> wvps212-241-x-y.vps.webfusion.co.uk (212.241.x.y)
> 27/10/08 13:14:18 IN
David Legg schrieb:
I've had a chance to look over your file and didn't find any glaring
errors. Here are some suggestions you may like to look into: -
* The nntpserver is enabled. Unless you need it, I would disable it.
I noticed it myself, but it shouldn't be relevant to my current issue.
Hi Tor,
I've sent you the config file in a private mail with the passwords
deleted (I hope :-).
I've had a chance to look over your file and didn't find any glaring
errors. Here are some suggestions you may like to look into: -
* The nntpserver is enabled. Unless you need it, I would disa
David Legg schrieb:
I'd be happy to give your config.xml file a once-over if you send it
to me (sanitized or otherwise).
Hi David,
I'd appreciate that a lot. I've sent you the config file in a private
mail with the passwords deleted (I hope :-).
Regards,
Tor
-
I'd be happy to give your config.xml file a once-over if you send it to
me (sanitized or otherwise).
Regards,
David Legg
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
Hi David,
From the partial smtpserver log you showed I wonder if the spammer is
simply trying to send a message containing lots of RCPT commands. If
that's the case then turning on tarpitting [1] may help to regulate
how quickly the spammer can stuff your machine.
That would probably reduce th
Hi Tor,
I'm more or less 100% convinced that my James installation is
configured properly, but the last few days, a "spam wave" managed to
fill up my spool table again with SMTP connects from a UK IP address.
Is there anything I can do to more easily find the reason why James
thinks it's ok
Tor-Einar Jarnbjo schrieb:
I didn't notice until I realized that outgoing mails seemed to "hang"
somewhere, but obviously someone has been able to use my James server
as an open relay a few days ago and my outgoing spool repository was
filled up with undeliverable mails. Aft
er to make sure it isn't an open-relay.
> The reason it is tricky for me is that I have a VirtualUsersTable that
> has target_addresses outside of our network that I would like
> forwarded.
>
> Several of the relay checkers report it is not an open relay.
>
> Some are re
All,
I am working on my mail sever to make sure it isn't an open-relay.
The reason it is tricky for me is that I have a VirtualUsersTable that
has target_addresses outside of our network that I would like
forwarded.
Several of the relay checkers report it is not an open relay.
Som
ECTED]> OK
>>> RCPT TO: <"test%spam.com">
<<< 250 2.1.5 Recipient <"test%spam.com"@localhost> OK
Host is an open relay !
Why? JAMES is not delivering the mail to [EMAIL PROTECTED], it instead
will deliver it to the local user "test%
needs a little more tightening for these
>> edge cases.
>>
>> Test 18/28
>>
>> >>> RSET
>> <<< 250 2.0.0 OK
>> >>> MAIL FROM: <[EMAIL PROTECTED]>
>> <<< 250 2.1.0 Sender <[EMAIL PROTECTED]> OK
>&
CTED]>
<<< 250 2.1.0 Sender <[EMAIL PROTECTED]> OK
>>> RCPT TO: <"test%spam.com">
<<< 250 2.1.5 Recipient <"test%spam.com"@localhost> OK
Host is an open relay !
Why? JAMES is not delivering the mail to [EMAIL PROTECTED],
OK
>>> RCPT TO: <"[EMAIL PROTECTED]">
<<< 553 5.1.3 Syntax error in recipient address
Test 18/28
>>> RSET
<<< 250 2.0.0 OK
>>> MAIL FROM: <[EMAIL PROTECTED]>
<<< 250 2.1.0 Sender <[EMAIL PROTECTED]> OK
>>> RCPT TO: <"test%spam.com">
<<< 250 2.1.5 Recipient <"test%spam.com"@localhost> OK
Host is an open relay !
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
Don Smith wrote:
Yikes, my server failed test 15, too. It says I'm an open relay! I'm not
sure what to change in my config, which is pretty much default. Any ideas?
Don't worry too much. I tried this test a while ago and it also failed
at around test 15. I think the autho
Ole Ersoy schrieb:
Is it discarding it or trying to notify the sender that the mail can't
be delivered, but the sender is rejecting the notification?
With the default configuration, James is indeed discarding the mail. It
seems as if James is not interpreting the "%" in addresses like
"[E
my server failed test 15, too. It says I'm an open relay! I'm not
sure what to change in my config, which is pretty much default. Any
ideas?
Actually it's not, or at least not because of the test result. As I
wrote, for some reason, James is accepting the mail, but then fails to
ailed test 15, too. It says I'm an open relay! I'm not
>> sure what to change in my config, which is pretty much default. Any ideas?
>>
>>
> Actually it's not, or at least not because of the test result. As I wrote,
> for some reason, James is accepting the mail
Don Smith schrieb:
Yikes, my server failed test 15, too. It says I'm an open relay! I'm not
sure what to change in my config, which is pretty much default. Any ideas?
Actually it's not, or at least not because of the test result. As I
wrote, for some reason, James is acceptin
Yikes, my server failed test 15, too. It says I'm an open relay! I'm not
sure what to change in my config, which is pretty much default. Any ideas?
Thanks,
Don
On Wed, Jun 25, 2008 at 1:00 PM, Tor-Einar Jarnbjo <[EMAIL PROTECTED]>
wrote:
> David Legg schrieb:
>
>&g
id,
thank you for that suggestion. I've run a few other tests tools on my
installation to make sure that everything is ok, but even after updating
to James 2.3.1, the test site you referred to reports my James
installation to be an open relay. It fails on test 15:
Test 15/28
>>&g
I don't know if this will help but in the past I've used this public
SMTP testing web site [1] before and found it very useful. It attempts
more and more devious tests on your server and reports what it found.
David Legg
[1] http://www.test-smtp.com/
Stefano Bagnara schrieb:
WHy did you deleted the list of non-local addresses from the log?
Maybe its content is useful.
I assume that at least some of the addresses are real, so I didn't want
to list them here. The first mail was sent to 45 addresses in the
following domains:
fiaip.it, katama
Tor-Einar Jarnbjo ha scritto:
Hi!
I didn't notice until I realized that outgoing mails seemed to "hang"
somewhere, but obviously someone has been able to use my James server as
an open relay a few days ago and my outgoing spool repository was filled
up with undeliverab
Hi!
I didn't notice until I realized that outgoing mails seemed to "hang"
somewhere, but obviously someone has been able to use my James server as
an open relay a few days ago and my outgoing spool repository was filled
up with undeliverable mails. After deleting the mails
Hi Stefano,
Thanks a lot for your help. I will try that and let you know.
Amarish
On 2/13/06, Stefano Bagnara <[EMAIL PROTECTED]> wrote:
>
> Amarish Khopkar wrote:
> > Thanks for your suggestion.
> >
> > Sorry about this but I'm going to ask a novice question as I'm a
> beginner to
> > James.
Just but mydomain in the config.xml
bye
Am Montag, den 13.02.2006, 15:19 -0500 schrieb Amarish Khopkar:
> en relay server fo
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
Amarish Khopkar wrote:
Thanks for your suggestion.
Sorry about this but I'm going to ask a novice question as I'm a beginner to
James. I would like to try your suggestion. How do I 'flag' a rewritten
mail so that it doesn't get processed by the relaying denied processor? I
don't actually see
PROTECTED]
Sent: Monday, February 13, 2006 4:20 PM
To: James Users List
Subject: Re: what is the best way to secure an open relay server without
restricting senders
Thanks for your suggestion.
Sorry about this but I'm going to ask a novice question as I'm a beginner to
James. I would li
ctually see a mailet that does flagging in the docs.
Amarish
On 2/13/06, Stefano Bagnara <[EMAIL PROTECTED]> wrote:
>
> Amarish Khopkar wrote:
> > My question is how do I know secure my James server such that it doesn't
> get
> > used as an open relay server for spam, b
Amarish Khopkar wrote:
My question is how do I know secure my James server such that it doesn't get
used as an open relay server for spam, but still keep this functionality
intact. What I'm looking for is being able to accept all incoming mail from
anybody only as long as they are
ROTECTED]
However, I had to disable the smtp security feature as well as the relay
denied security feature (to prevent the relay-denied 550 error).
My question is how do I know secure my James server such that it doesn't get
used as an open relay server for spam, but still keep this functi
Stefano and Vicenzo - thank you both for your help. I should have
figured that out. I was more concerned with the possibility of being a
relay than thinking about what that portion of the config was telling me.
Jay
>The "local-address-error" processor is configured to bounce any mail
>address
Stefano Bagnara wrote:
The "local-address-error" processor is configured to bounce any mail
addressed to not available users, to notify the postmaster and to put
them in the address-error repository.
Your logs, as Vincenzo already recognized, just tell the same thing.
If you don't want to see th
The "local-address-error" processor is configured to bounce any mail
addressed to not available users, to notify the postmaster and to put
them in the address-error repository.
Your logs, as Vincenzo already recognized, just tell the same thing.
If you don't want to see the bounce mail after the i
Stefano Bagnara wrote:
Jay Lowe wrote:
Sorry to repeat this question.. I've never seen a simple answer to this
problem (if it is a problem). It looks like I'm an open relay.
I have my config.xml set for true
and 192.168.1.3/255.255.255.0, my.fixed
ip.address (my.fixed.ip.address rep
The first case shown in your log looks like there was a message sent to
a wrong address, hence stored in "db://maildb/deadletter/address-error"
and after that bounced back to "[EMAIL PROTECTED]". Could it be? It would
not be an open relay but normal operations.
Also the s
Jay Lowe wrote:
> Sorry to repeat this question.. I've never seen a simple answer to this
> problem (if it is a problem). It looks like I'm an open relay.
> I have my config.xml set for true
> and 192.168.1.3/255.255.255.0, my.fixed
> ip.address (my.fixed.ip.address
Sorry to repeat this question.. I've never seen a simple answer to this
problem (if it is a problem). It looks like I'm an open relay.
I have my config.xml set for true
and 192.168.1.3/255.255.255.0, my.fixed
ip.address (my.fixed.ip.address replaced with the
real address)
mailet
When you test yourself, you should send to a recipient *outside* your
domain. Only in this case SMTP AUTH is enforced by James.
Vincenzo
Ivan Jouikov wrote:
Basically I didn't configure the server to be an open relay. I have it
using SMTP Auth and it allows a couple local address to
> The reason I have a concern is because when doing tests from
> my outlook, it seems that I'm able to send a test message
> without using SMTP auth.
>
> However, I cannot send normal messages without SMTP auth -
> only the test one.
What are the differences between the test message and the "
Basically I didn't configure the server to be an open relay. I have it
using SMTP Auth and it allows a couple local address to relay openly.
If I try using http://members.iinet.net.au/~remmie/relay/ , the log says
that SMTP AUTH denied the message for like 10 times, but then it fi
I often receive returned messages that have been sent with from addresses at
our mail severs. I received one such message today from aol, with an
attachement, which from what i can work out are the headers of the origional
message:
The message starts:
The original message was received at Fri, 18
TECTED]>
> >Reply-To: "James Users List" <[EMAIL PROTECTED]>
> >To: James Users List <[EMAIL PROTECTED]>
> >Subject: Re: Open relay
> >Date: Wed, 02 Jun 2004 16:02:25 -0700
> >
> >last i checked, james was not configured as an open relay by defaul
List <[EMAIL PROTECTED]>
Subject: Re: Open relay
Date: Wed, 02 Jun 2004 16:02:25 -0700
last i checked, james was not configured as an open relay by default. ask
your isp to show you the e-mail that they successfully relayed through
it--me thinks they are confusing *accepting* a message with
last i checked, james was not configured as an open relay by default. ask your
isp to show you the e-mail that they successfully relayed through it--me thinks
they are confusing *accepting* a message with *relaying* a message--james
accepts everything, but only passes on what makes it through
My ISP won't unblock port 25 for SMTP because they say my amil server,
James 2.1.3, is an open relay. How do I re-configure James to not be
open relay?
Any help appreciated.
Regards,
Rupert Young
-
To unsubscribe, e
ne ip (which is
a natted private IP). Given that you can put up James in 1/2 hour, give it
a try.
hope that helps
bill page
> -Original Message-
> From: Lahu [mailto:[EMAIL PROTECTED]
> Sent: Tuesday, March 23, 2004 9:42 AM
> To: [EMAIL PROTECTED]
> Subject: "Open-Relay&
> > However, I see a growing concern amongst my peers for
> > the "open-relay" thing. I want to inquire that, can
> > JAMES be possibly listed in the blacklists (ORDB, MAPS
> > etc.).
>
> > I m asking because JAMES accepts the messages from ANY
>
m a pretty satisfied JAMES user. So far, JAMES has
pleased me on almost every account. (Though, I helped
catch a service-level (i.e. SMTP, NNTP, POP)
"connectionLimit" bug)
However, I see a growing concern amongst my peers for
the "open-relay" thing. I want to inquire that, ca
Hi eveybody,
I m a pretty satisfied JAMES user. So far, JAMES has
pleased me on almost every account. (Though, I helped
catch a service-level (i.e. SMTP, NNTP, POP)
"connectionLimit" bug)
However, I see a growing concern amongst my peers for
the "open-relay" thing. I want
> I use James to serve 2 domains. The email clients doesn't
> use the James SMTP server directly but rather their own
> ISP smtp.
> Is there a way to configure it to reject mails that are not
> for my 2 domains without loosing the email notification to
> sender on the error processor ?
If you con
> I've still not found how to allow delivering mails only for
> local accounts and for external address for mails generated
> during the root processor.
Hence the 127.0.0.1.
--- Noel
-
To unsubscribe, e-mail: [EMAIL PROT
Thanks for your response, I'm still looking on he docs but still get
lost. I'm sorry it's seems to be a very simple questionn I feel stupid
to bother you...
Sure that all incoming mails are for local consumption, but for things
like email noitifications or redirect to an external email, the
tr
> for the RemoteAddrNotInNetwork=127.0.0.1, if I enable this, many
> of good emails will be dropped : the users use their own ISP smtp
> server and not the james one...
If users use their ISP smtp server, then the only e-mail impacting James
will be mail intended for local consumption. The Remote
56 PM
Subject: Configuring James to avoid spam open-relay
Hi,
I use James to serve 2 domains. The email clients doesn't use the James
SMTP server directly but rather their own ISP smtp.
I use the out of the box James 2.1.3 confi.xml (with very little change)
and looking at the spool, I see
; <[EMAIL PROTECTED]>
Sent: Tuesday, November 18, 2003 7:56 PM
Subject: Configuring James to avoid spam open-relay
> Hi,
>
> I use James to serve 2 domains. The email clients doesn't use the James
> SMTP server directly but rather their own ISP smtp.
>
> I use the out of
Hi,
I use James to serve 2 domains. The email clients doesn't use the James
SMTP server directly but rather their own ISP smtp.
I use the out of the box James 2.1.3 confi.xml (with very little change)
and looking at the spool, I see that some people use my server as an
open relay to
75 matches
Mail list logo
