It hasn't risen to the level of DDOS, yet, but I'm getting many
hundreds of these messages per night (and it is now continuing during
the day).
They look like this:
Hi. This is the qmail-send program at purgatoire.org.
I tried to deliver a bounce message to this address, bu
This doesn't look like it's email originating from your system.
Instead, it looks like spamdyke has accepted the message and then qmail
is doing the rejection. My guess is that it passes through spamdyke
with an invalid destination user. Qmail then tries to reject it.
You can avoid this by
Thank you very much. I'll look into that.
On 11/7/2016 9:13 AM, Gary Gendel via spamdyke-users wrote:
This doesn't look like it's email originating from your system.
Instead, it looks like spamdyke has accepted the message and then
qmail is doing the rejection. My guess is that it passes thr
Well, I have spamdyke-qrv installed and turned on in spamdyke.conf,
but am still getting stuff like this (maillog):
Nov 8 21:48:51 33a45916-5b78-11e6-a0e5-0cc47a6975be spamdyke[17138]:
ALLOWED from: filenkokir...@shopon.net to: sergushk...@bk.ru
origin_ip: 10.0.1.15 origin_rdns: (unknown) a
I don't understand how you have your jails configured -- is qmail in a
different jail from spamdyke? I'm just wondering, if the message is
originating locally, why does spamdyke see the origin IP as 10.0.1.15 instead
of 127.0.0.1? And where is the message really coming from -- maybe a rogue
p
On 11/9/2016 6:27 AM, Sam Clippinger via spamdyke-users wrote:
I don't understand how you have your jails configured -- is qmail in
a different jail from spamdyke? I'm just wondering, if the message
is originating locally, why does spamdyke see the origin IP as
10.0.1.15 instead of 127.0.0.1
On 11/9/2016 6:27 AM, Sam Clippinger via spamdyke-users wrote:
Do you have 10.0.1.15 whitelisted because it's the local IP? Or is
it configured in your /etc/tcp.smtp as a relay client? Either
setting would cause spamdyke to allow these messages.
Thanks, Sam. That was the issue (both place
