EXIM, sendmail, postfix, Dovecot и прочие. Решение проблем связанных с работой электронной почты
Модератор: xM
Правила форума
Убедительная просьба юзать теги [code] при оформлении листингов.
Сообщения не оформленные должным образом имеют все шансы быть незамеченными.
-
Antti
- мл. сержант
- Сообщения: 77
- Зарегистрирован: 2007-04-23 12:26:34
Непрочитанное сообщение
Antti » 2007-09-18 15:38:51
Вот при тестах обнаружил, что у меня почему то не отрабатывют след. ACL:
Код: Выделить всё
deny domains = +local_domains
local_parts = ^[.] : ^.*[@%!/|]
message = "incorrect symbol in address"
delay = 30s
deny domains = !+local_domains
local_parts = ^[./|] : ^.*[@%!] : ^.*/\\.\\./
message = "incorrect symbol in address"
delay = 30s
Код: Выделить всё
Sep 18 16:00:41 mail exim[4700]: 1IXbkv-0001Do-Uk <= root@mx.xxx.ru U=root P=local S=1391 from <root@mx.xxx.ru> for ant^ti@xxx.ru
Sep 18 16:00:42 mail exim[4701]: 1IXbkv-0001Do-Uk ** ant^ti@xxx.ru R=lotus_router T=remote_smtp: SMTP error from remote mail server after RCPT TO:<ant^ti@xxx.ru>: host 192.168.0.7 [192.168.0.7]: 554 Mail for ant^ti@xxx.ru rejected for policy reasons.
Sep 18 16:00:42 mail exim[4703]: 1IXbkw-0001Dr-4Z <= <> R=1IXbkv-0001Do-Uk U=mailnull P=local S=2373 from <> for root@mx.xxx.ru
Sep 18 16:00:42 mail exim[4701]: 1IXbkv-0001Do-Uk Completed
пропустил...то же самое и если не с локали...
Вот это тоже не срабатывает...
Код: Выделить всё
deny message = "your hostname is bad (adsl, poll, ppp & etc)."
condition = ${if match{$sender_host_name} \
{adsl|dialup|pool|peer|dhcp} \
{yes}{no}}
Код: Выделить всё
Sep 18 16:17:51 mail exim[4747]: Delay 30s for ns03sm.xxx.local [192.168.0.16] with HELO=dhcp.pupkin.com. Mail from pupkin@pupkin.com to antti@xxx.ru.
Sep 18 16:18:21 mail exim[4747]: 1IXc21-0001EZ-3h <= pupkin@pupkin.com H=ns03sm.xxx.local (dhcp.pupkin.com) [192.168.0.16] I=[192.168.0.9]:25 P=esmtp S=872 id=1451813678140.20070918161746@pupkin.com from <pupkin@pupkin.com> for antti@xxx.ru
Sep 18 16:18:21 mail exim[4748]: 1IXc21-0001EZ-3h => antti@xxx.ru R=lotus_router T=remote_smtp H=192.168.0.7 [192.168.0.7] C="250 Message accepted for delivery"
Sep 18 16:18:21 mail exim[4748]: 1IXc21-0001EZ-3h Completed
хотя в тоже время другие ACL работают, как эти например...
Код: Выделить всё
deny message = "Your IP in HELO - access denied!"
hosts = * : !+relay_from_hosts
condition = ${if eq{$sender_helo_name}\
{$sender_host_address}{true}{false}}
deny condition = ${if eq{$sender_helo_name}\
{$interface_address}{yes}{no}}
hosts = !127.0.0.1 : !localhost : *
message = "main IP in your HELO! Access denied!"
deny condition = ${if match{$sender_helo_name}\
{\N^\d+$\N}{yes}{no}}
hosts = !127.0.0.1 : !localhost : *
message = "can not be only number in HELO!"
Что у меня криво настроено?
Последний раз редактировалось
Antti 2007-09-19 9:31:53, всего редактировалось 2 раза.
Antti
-
Alex Keda
- стреляли...
- Сообщения: 35056
- Зарегистрирован: 2004-10-18 14:25:19
- Откуда: Made in USSR
-
Контактная информация:
Непрочитанное сообщение
Alex Keda » 2007-09-18 18:41:38
в отладке запусти
Убей их всех! Бог потом рассортирует...
Alex Keda
-
Antti
- мл. сержант
- Сообщения: 77
- Зарегистрирован: 2007-04-23 12:26:34
Непрочитанное сообщение
Antti » 2007-09-19 9:27:28
Код: Выделить всё
mail# exim -d+all ant^ti@xxx.ru < /etc/rc.conf
10:09:26 3285 Exim version 4.68 (FreeBSD 6.2) uid=0 gid=0 pid=3285 D=fffdffff
Probably Berkeley DB version 1.8x (native mode)
Support for: crypteq iconv() use_setclassresources PAM Perl Expand_dlfunc OpenSSL Content_Scanning Old_Demime Experimental_SPF
Lookups: lsearch wildlsearch nwildlsearch iplsearch cdb dbm dbmnz dnsdb dsearch ldap ldapdn ldapm mysql nis nis0 passwd
Authenticators: cram_md5 dovecot plaintext spa
Routers: accept dnslookup ipliteral manualroute queryprogram redirect
Transports: appendfile/maildir/mailstore/mbx autoreply lmtp pipe smtp
Fixed never_users: 0
Size of off_t: 8
10:09:26 3285 changed uid/gid: forcing real = effective
10:09:26 3285 uid=0 gid=0 pid=3285
10:09:26 3285 auxiliary group list: 0
10:09:26 3285 seeking password data for user "mailnull": using cached result
10:09:26 3285 getpwnam() succeeded uid=26 gid=26
10:09:26 3285 seeking password data for user "root": cache not available
10:09:26 3285 getpwnam() succeeded uid=0 gid=0
10:09:26 3285 configuration file is /usr/local/etc/exim/configure
10:09:26 3285 log selectors = 0000cffe 00233821
10:09:26 3285 cwd=/usr/home/antti 3 args: exim -d+all ant^ti@xxx.ru
10:09:26 3285 trusted user
10:09:26 3285 admin user
10:09:26 3285 changed uid/gid: privilege not needed
10:09:26 3285 uid=26 gid=6 pid=3285
10:09:26 3285 auxiliary group list: 6 6
10:09:26 3285 originator: uid=0 gid=0 login=root name=Charlie Root
10:09:26 3285 sender address = root@mx.xxx.ru
10:09:26 3285 set_process_info: 3285 accepting a local non-SMTP message from <root@mx.xxx.ru>
10:09:26 3285 Sender: root@mx.xxx.ru
10:09:26 3285 Recipients:
10:09:26 3285 ant^ti@xxx.ru
10:09:26 3285 search_tidyup called
10:09:26 3285 >>Headers received:
10:09:26 3285
10:09:26 3285 rewrite_one_header: type=F:
10:09:26 3285 From: Charlie Root <root@mx.xxx.ru>
10:09:26 3285 search_tidyup called
10:09:26 3285 >>Headers after rewriting and local additions:
10:09:26 3285 I Message-Id: <E1IXskY-0000qz-7D@mx.xxx.ru>
10:09:26 3285 F From: Charlie Root <root@mx.xxx.ru>
10:09:26 3285 Date: Wed, 19 Sep 2007 10:09:26 +0400
10:09:26 3285
10:09:26 3285 Data file written for message 1IXskY-0000qz-7D
10:09:26 3285 expanding: ${tod_full}
10:09:26 3285 result: Wed, 19 Sep 2007 10:09:26 +0400
10:09:26 3285 condition: def:sender_rcvhost
10:09:26 3285 result: false
10:09:26 3285 expanding: from $sender_rcvhost
10:09:26 3285
10:09:26 3285 result: from
10:09:26 3285
10:09:26 3285 skipping: result is not used
10:09:26 3285 condition: def:sender_ident
10:09:26 3285 result: true
10:09:26 3285 expanding: $sender_ident
10:09:26 3285 result: root
10:09:26 3285 expanding: from ${quote_local_part:$sender_ident}
10:09:26 3285 result: from root
10:09:26 3285 condition: def:sender_helo_name
10:09:26 3285 result: false
10:09:26 3285 expanding: (helo=$sender_helo_name)
10:09:26 3285
10:09:26 3285 result: (helo=)
10:09:26 3285
10:09:26 3285 skipping: result is not used
10:09:26 3285 expanding: ${if def:sender_ident {from ${quote_local_part:$sender_ident} }}${if def:sender_helo_name {(helo=$sender_helo_name)
10:09:26 3285 }}
10:09:26 3285 result: from root
10:09:26 3285 condition: def:received_protocol
10:09:26 3285 result: true
10:09:26 3285 expanding: with $received_protocol
10:09:26 3285 result: with local
10:09:26 3285 condition: def:tls_cipher
10:09:26 3285 result: false
10:09:26 3285 expanding: ($tls_cipher)
10:09:26 3285
10:09:26 3285 result: ()
10:09:26 3285
10:09:26 3285 skipping: result is not used
10:09:26 3285 condition: def:sender_address
10:09:26 3285 result: true
10:09:26 3285 expanding: (envelope-from <$sender_address>)
10:09:26 3285
10:09:26 3285 result: (envelope-from <root@mx.xxx.ru>)
10:09:26 3285
10:09:26 3285 condition: def:received_for
10:09:26 3285 result: true
10:09:26 3285 expanding:
10:09:26 3285 for $received_for
10:09:26 3285 result:
10:09:26 3285 for ant^ti@xxx.ru
10:09:26 3285 expanding: Received: ${if def:sender_rcvhost {from $sender_rcvhost
10:09:26 3285 }{${if def:sender_ident {from ${quote_local_part:$sender_ident} }}${if def:sender_helo_name {(helo=$sender_helo_name)
10:09:26 3285 }}}}by $primary_hostname ${if def:received_protocol {with $received_protocol}} ${if def:tls_cipher {($tls_cipher)
10:09:26 3285 }}(Exim $version_number (FreeBSD))
10:09:26 3285 ${if def:sender_address {(envelope-from <$sender_address>)
10:09:26 3285 }}id $message_exim_id${if def:received_for {
10:09:26 3285 for $received_for}}
10:09:26 3285 result: Received: from root by mx.xxx.ru with local (Exim 4.68 (FreeBSD))
10:09:26 3285 (envelope-from <root@mx.xxx.ru>)
10:09:26 3285 id 1IXskY-0000qz-7D
10:09:26 3285 for ant^ti@xxx.ru
10:09:26 3285 >>Generated Received: header line
10:09:26 3285 P Received: from root by mx.xxx.ru with local (Exim 4.68 (FreeBSD))
10:09:26 3285 (envelope-from <root@mx.xxx.ru>)
10:09:26 3285 id 1IXskY-0000qz-7D
10:09:26 3285 for ant^ti@xxx.ru; Wed, 19 Sep 2007 10:09:26 +0400
10:09:26 3285 calling local_scan(); timeout=300
10:09:26 3285 local_scan() returned 0 NULL
10:09:26 3285 expanding: ${tod_full}
10:09:26 3285 result: Wed, 19 Sep 2007 10:09:26 +0400
10:09:26 3285 Writing spool header file
10:09:26 3285 Size of headers = 324
10:09:26 3285 LOG: MAIN
10:09:26 3285 <= root@mx.xxx.ru U=root P=local S=1391
10:09:26 3285 search_tidyup called
10:09:26 3285 search_tidyup called
10:09:26 3286 exec /usr/local/sbin/exim -d=0xfffdffff -Mc 1IXskY-0000qz-7D
10:09:26 3285 >>>>>>>>>>>>>>>> Exim pid=3285 terminating with rc=0 >>>>>>>>>>>>>>>>
mail# 10:09:26 3286 Exim version 4.68 (FreeBSD 6.2) uid=26 gid=6 pid=3286 D=fffdffff
Probably Berkeley DB version 1.8x (native mode)
Support for: crypteq iconv() use_setclassresources PAM Perl Expand_dlfunc OpenSSL Content_Scanning Old_Demime Experimental_SPF
Lookups: lsearch wildlsearch nwildlsearch iplsearch cdb dbm dbmnz dnsdb dsearch ldap ldapdn ldapm mysql nis nis0 passwd
Authenticators: cram_md5 dovecot plaintext spa
Routers: accept dnslookup ipliteral manualroute queryprogram redirect
Transports: appendfile/maildir/mailstore/mbx autoreply lmtp pipe smtp
Fixed never_users: 0
Size of off_t: 8
10:09:26 3286 changed uid/gid: forcing real = effective
10:09:26 3286 uid=0 gid=6 pid=3286
10:09:26 3286 auxiliary group list: 6
10:09:26 3286 seeking password data for user "mailnull": using cached result
10:09:26 3286 getpwnam() succeeded uid=26 gid=26
10:09:26 3286 seeking password data for user "root": cache not available
10:09:26 3286 getpwnam() succeeded uid=0 gid=0
10:09:26 3286 configuration file is /usr/local/etc/exim/configure
10:09:26 3286 log selectors = 0000cffe 00233821
10:09:26 3286 cwd=/var/spool/exim 4 args: /usr/local/sbin/exim -d=0xfffdffff -Mc 1IXskY-0000qz-7D
10:09:26 3286 trusted user
10:09:26 3286 admin user
10:09:26 3286 skipping ACL configuration - not needed
10:09:26 3286 set_process_info: 3286 delivering specified messages
10:09:26 3286 set_process_info: 3286 delivering 1IXskY-0000qz-7D
10:09:26 3286 reading spool file 1IXskY-0000qz-7D-H
10:09:26 3286 user=root uid=0 gid=0 sender=root@mx.xxx.ru
10:09:26 3286 sender_local=1 ident=root
10:09:26 3286 Non-recipients:
10:09:26 3286 Empty Tree
10:09:26 3286 ---- End of tree ----
10:09:26 3286 recipients_count=1
10:09:26 3286 body_linecount=31 message_linecount=7
10:09:26 3286 Delivery address list:
10:09:26 3286 ant^ti@xxx.ru
10:09:26 3286 locking /var/spool/exim/db/retry.lockfile
10:09:26 3286 locked /var/spool/exim/db/retry.lockfile
10:09:26 3286 EXIM_DBOPEN(/var/spool/exim/db/retry)
10:09:26 3286 returned from EXIM_DBOPEN
10:09:26 3286 opened hints database /var/spool/exim/db/retry: flags=O_RDONLY
10:09:26 3286 >>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>
10:09:26 3286 Considering: ant^ti@xxx.ru
10:09:26 3286 unique = ant^ti@xxx.ru
10:09:26 3286 dbfn_read: key=R:xxx.ru
10:09:26 3286 dbfn_read: key=R:ant^ti@xxx.ru
10:09:26 3286 dbfn_read: key=R:ant^ti@xxx.ru:<root@mx.xxx.ru>
10:09:26 3286 no domain retry record
10:09:26 3286 no address retry record
10:09:26 3286 ant^ti@xxx.ru: queued for routing
10:09:26 3286 >>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>
10:09:26 3286 routing ant^ti@xxx.ru
10:09:26 3286 --------> lotus_router router <--------
10:09:26 3286 local_part=ant^ti domain=xxx.ru
10:09:26 3286 checking domains
10:09:26 3286 xxx.ru in "xxx.ru"? yes (matched "xxx.ru")
10:09:26 3286 calling lotus_router router
10:09:26 3286 lotus_router router called for ant^ti@xxx.ru
10:09:26 3286 domain = xxx.ru
10:09:26 3286 route_item = * 192.168.0.7
10:09:26 3286 xxx.ru in "*"? yes (matched "*")
10:09:26 3286 original list of hosts = "192.168.0.7" options =
10:09:26 3286 expanded list of hosts = "192.168.0.7" options =
10:09:26 3286 set transport remote_smtp
10:09:26 3286 finding IP address for 192.168.0.7
10:09:26 3286 calling host_find_byname
10:09:26 3286 Actual local interface address is 10.1.171.2 (vr0)
10:09:26 3286 Actual local interface address is 192.168.0.9 (dc0)
10:09:26 3286 Actual local interface address is 127.0.0.1 (lo0)
10:09:26 3286 fully qualified name = 192.168.0.7
10:09:26 3286 gethostbyname looked up these IP addresses:
10:09:26 3286 name=192.168.0.7 address=192.168.0.7
10:09:26 3286 queued for remote_smtp transport: local_part = ant^ti
10:09:26 3286 domain = xxx.ru
10:09:26 3286 errors_to=NULL
10:09:26 3286 domain_data=NULL localpart_data=NULL
10:09:26 3286 routed by lotus_router router
10:09:26 3286 envelope to: ant^ti@xxx.ru
10:09:26 3286 transport: remote_smtp
10:09:26 3286 host 192.168.0.7 [192.168.0.7]
10:09:26 3286 >>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>
10:09:26 3286 After routing:
10:09:26 3286 Local deliveries:
10:09:26 3286 Remote deliveries:
10:09:26 3286 ant^ti@xxx.ru
10:09:26 3286 Failed addresses:
10:09:26 3286 Deferred addresses:
10:09:26 3286 search_tidyup called
10:09:26 3286 >>>>>>>>>>>>>>>> Remote deliveries >>>>>>>>>>>>>>>>
10:09:26 3286 --------> ant^ti@xxx.ru <--------
10:09:26 3286 search_tidyup called
10:09:26 3286 set_process_info: 3286 delivering 1IXskY-0000qz-7D: waiting for a remote delivery subprocess to finish
10:09:26 3286 selecting on subprocess pipes
10:09:26 3287 changed uid/gid: remote delivery to ant^ti@xxx.ru with transport=remote_smtp
10:09:26 3287 uid=26 gid=6 pid=3287
10:09:26 3287 auxiliary group list: 6
10:09:26 3287 set_process_info: 3287 delivering 1IXskY-0000qz-7D using remote_smtp
10:09:26 3287 remote_smtp transport entered
10:09:26 3287 ant^ti@xxx.ru
10:09:26 3287 xxx.ru in queue_smtp_domains? no (option unset)
10:09:26 3287 checking status of 192.168.0.7
10:09:26 3287 locking /var/spool/exim/db/retry.lockfile
10:09:26 3287 locked /var/spool/exim/db/retry.lockfile
10:09:26 3287 EXIM_DBOPEN(/var/spool/exim/db/retry)
10:09:26 3287 returned from EXIM_DBOPEN
10:09:26 3287 opened hints database /var/spool/exim/db/retry: flags=O_RDONLY
10:09:26 3287 dbfn_read: key=T:192.168.0.7:192.168.0.7
10:09:26 3287 dbfn_read: key=T:192.168.0.7:192.168.0.7:1IXskY-0000qz-7D
10:09:26 3287 no host retry record
10:09:26 3287 no message retry record
10:09:26 3287 192.168.0.7 [192.168.0.7] status = usable
10:09:26 3287 192.168.0.7 in serialize_hosts? no (option unset)
10:09:26 3287 delivering 1IXskY-0000qz-7D to 192.168.0.7 [192.168.0.7] (ant^ti@xxx.ru)
10:09:26 3287 set_process_info: 3287 delivering 1IXskY-0000qz-7D to 192.168.0.7 [192.168.0.7] (ant^ti@xxx.ru)
10:09:26 3287 Connecting to 192.168.0.7 [192.168.0.7]:25 ... connected
10:09:26 3287 expanding: $primary_hostname
10:09:26 3287 result: mx.xxx.ru
10:09:26 3287 waiting for data on socket
10:09:26 3287 read response data: size=111
10:09:26 3287 SMTP<< 220 mail.xxx.ru ESMTP Service (Lotus Domino Release 6.5.4FP3) ready at Wed, 19
Sep 2007 10:09:23 +0400
10:09:26 3287 192.168.0.7 in hosts_avoid_esmtp? no (option unset)
10:09:26 3287 SMTP>> EHLO mx.xxx.ru
10:09:26 3287 waiting for data on socket
10:09:26 3287 read response data: size=152
10:09:26 3287 SMTP<< 250-mail.xxx.ru Hello mx.xxx.ru ([192.168.0.9]), pleased to meet you
10:09:26 3287 250-HELP
10:09:26 3287 250-DSN
10:09:26 3287 250-SIZE 20480000
10:09:26 3287 250-8BITMIME
10:09:26 3287 250 PIPELINING
10:09:26 3287 192.168.0.7 in hosts_require_tls? no (option unset)
10:09:26 3287 192.168.0.7 in hosts_avoid_pipelining? no (option unset)
10:09:26 3287 using PIPELINING
10:09:26 3287 192.168.0.7 in hosts_require_auth? no (option unset)
10:09:26 3287 SMTP>> MAIL FROM:<root@mx.xxx.ru> SIZE=2453
10:09:26 3287 SMTP>> RCPT TO:<ant^ti@xxx.ru>
10:09:26 3287 SMTP>> DATA
10:09:26 3287 waiting for data on socket
10:09:26 3287 read response data: size=152
10:09:26 3287 SMTP<< 250 root@mx.xxx.ru... Sender OK
10:09:26 3287 SMTP<< 554 Mail for ant^ti@xxx.ru rejected for policy reasons.
10:09:26 3287 SMTP<< 503 Issue RCPT TO: command before DATA command
10:09:26 3287 SMTP error from remote mail server after pipelined DATA: host 192.168.0.7 [192.168.0.7]: 503 Issue RCPT TO: command before DATA command
10:09:26 3287 error for DATA ignored: pipelining is in use and there were no good recipients
10:09:26 3287 ok=1 send_quit=1 send_rset=1 continue_more=0 yield=0 first_address is NULL
10:09:26 3287 transport_check_waiting entered
10:09:26 3287 sequence=1 local_max=500 global_max=-1
10:09:26 3287 locking /var/spool/exim/db/wait-remote_smtp.lockfile
10:09:26 3287 locked /var/spool/exim/db/wait-remote_smtp.lockfile
10:09:26 3287 EXIM_DBOPEN(/var/spool/exim/db/wait-remote_smtp)
10:09:26 3287 returned from EXIM_DBOPEN
10:09:26 3287 opened hints database /var/spool/exim/db/wait-remote_smtp: flags=O_RDWR
10:09:26 3287 dbfn_read: key=192.168.0.7
10:09:26 3287 no messages waiting for 192.168.0.7
10:09:26 3287 SMTP>> QUIT
10:09:26 3287 set_process_info: 3287 delivering 1IXskY-0000qz-7D: just tried 192.168.0.7 [192.168.0.7] for ant^ti@xxx.ru: result OK
10:09:26 3287 Leaving remote_smtp transport
10:09:26 3287 set_process_info: 3287 delivering 1IXskY-0000qz-7D (just run remote_smtp for ant^ti@xxx
.ru in subprocess)
10:09:26 3287 search_tidyup called
10:09:26 3286 reading pipe for subprocess 3287 (not ended)
10:09:26 3286 read() yielded 190
10:09:26 3286 Z0 item read
10:09:26 3286 remote delivery process 3287 ended
10:09:26 3286 set_process_info: 3286 delivering 1IXskY-0000qz-7D
10:09:26 3286 post-process ant^ti@xxx.ru (2)
10:09:26 3286 LOG: MAIN
10:09:26 3286 ** ant^ti@xxx.ru R=lotus_router T=remote_smtp: SMTP error from remote mail server after RCPT TO:<ant^ti@xxx.ru>: host 192.168.0.7 [192.168.0.7]: 554 Mail for ant^ti@xxx.ru rejected for policy reasons.
10:09:26 3286 >>>>>>>>>>>>>>>> deliveries are done >>>>>>>>>>>>>>>>
10:09:26 3286 changed uid/gid: post-delivery tidying
10:09:26 3286 uid=26 gid=6 pid=3286
10:09:26 3286 auxiliary group list: 6
10:09:26 3286 set_process_info: 3286 tidying up after delivering 1IXskY-0000qz-7D
10:09:26 3286 Processing retry items
10:09:26 3286 Succeeded addresses:
10:09:26 3286 Failed addresses:
10:09:26 3286 ant^ti@xxx.ru: no retry items
10:09:26 3286 Deferred addresses:
10:09:26 3286 end of retry processing
10:09:26 3286 processing failed address ant^ti@xxx.ru
10:09:26 3286 sending error message to: root@mx.xxx.ru
10:09:26 3288 exec /usr/local/sbin/exim -d=0xfffdffff -t -oem -oi -f <> -E1IXskY-0000qz-7D
10:09:26 3286 expanding: Mail Delivery System <Mailer-Daemon@$qualify_domain>
10:09:26 3286 result: Mail Delivery System <Mailer-Daemon@mx.xxx.ru>
10:09:26 3286 writing data block fd=8 size=1428 timeout=0
10:09:26 3288 Exim version 4.68 (FreeBSD 6.2) uid=26 gid=6 pid=3288 D=fffdffff
Probably Berkeley DB version 1.8x (native mode)
Support for: crypteq iconv() use_setclassresources PAM Perl Expand_dlfunc OpenSSL Content_Scanning Old_Demime Experimental_SPF
Lookups: lsearch wildlsearch nwildlsearch iplsearch cdb dbm dbmnz dnsdb dsearch ldap ldapdn ldapm mysql nis nis0 passwd
Authenticators: cram_md5 dovecot plaintext spa
Routers: accept dnslookup ipliteral manualroute queryprogram redirect
Transports: appendfile/maildir/mailstore/mbx autoreply lmtp pipe smtp
Fixed never_users: 0
Size of off_t: 8
10:09:26 3288 changed uid/gid: forcing real = effective
10:09:26 3288 uid=0 gid=6 pid=3288
10:09:26 3288 auxiliary group list: 6
10:09:26 3288 seeking password data for user "mailnull": using cached result
10:09:26 3288 getpwnam() succeeded uid=26 gid=26
10:09:26 3288 seeking password data for user "root": cache not available
10:09:26 3288 getpwnam() succeeded uid=0 gid=0
10:09:26 3288 configuration file is /usr/local/etc/exim/configure
10:09:26 3288 log selectors = 0000cffe 00233821
10:09:26 3288 cwd=/var/spool/exim 8 args: /usr/local/sbin/exim -d=0xfffdffff -t -oem -oi -f <> -E1IXskY-0000qz-7D
10:09:26 3288 trusted user
10:09:26 3288 admin user
10:09:26 3288 changed uid/gid: privilege not needed
10:09:26 3288 uid=26 gid=6 pid=3288
10:09:26 3288 auxiliary group list: 6 6
10:09:26 3288 originator: uid=26 gid=6 login=mailnull name=
10:09:26 3288 sender address =
10:09:26 3288 set_process_info: 3288 accepting a local non-SMTP message from <>
10:09:26 3288 Sender:
10:09:26 3288 search_tidyup called
10:09:26 3288 >>Headers received:
10:09:26 3288 X-Failed-Recipients: ant^ti@xxx.ru
10:09:26 3288 Auto-Submitted: auto-replied
10:09:26 3288 From: Mail Delivery System <Mailer-Daemon@mx.xxx.ru>
10:09:26 3288 To: root@mx.xxx.ru
10:09:26 3288 Subject: Mail delivery failed: returning message to sender
10:09:26 3288
10:09:26 3288 rewrite_one_header: type=F:
10:09:26 3288 From: Mail Delivery System <Mailer-Daemon@mx.xxx.ru>
10:09:26 3288 rewrite_one_header: type=T:
10:09:26 3288 To: root@mx.xxx.ru
10:09:26 3288 search_tidyup called
10:09:26 3288 >>Headers after rewriting and local additions:
10:09:26 3288 X-Failed-Recipients: ant^ti@xxx.ru
10:09:26 3288 Auto-Submitted: auto-replied
10:09:26 3288 F From: Mail Delivery System <Mailer-Daemon@mx.xxx.ru>
10:09:26 3288 T To: root@mx.xxx.ru
10:09:26 3288 Subject: Mail delivery failed: returning message to sender
10:09:26 3288 I Message-Id: <E1IXskY-0000r2-Dd@mx.xxx.ru>
10:09:26 3288 Date: Wed, 19 Sep 2007 10:09:26 +0400
10:09:26 3288
10:09:26 3288 Data file written for message 1IXskY-0000r2-Dd
10:09:26 3288 expanding: ${tod_full}
10:09:26 3288 result: Wed, 19 Sep 2007 10:09:26 +0400
10:09:26 3288 condition: def:sender_rcvhost
10:09:26 3288 result: false
10:09:26 3288 expanding: from $sender_rcvhost
10:09:26 3288
10:09:26 3288 result: from
10:09:26 3288
10:09:26 3288 skipping: result is not used
10:09:26 3288 condition: def:sender_ident
10:09:26 3288 result: true
10:09:26 3288 expanding: $sender_ident
10:09:26 3288 result: mailnull
10:09:26 3288 expanding: from ${quote_local_part:$sender_ident}
10:09:26 3288 result: from mailnull
10:09:26 3288 condition: def:sender_helo_name
10:09:26 3288 result: false
10:09:26 3288 expanding: (helo=$sender_helo_name)
10:09:26 3288
10:09:26 3288 result: (helo=)
10:09:26 3288
10:09:26 3288 skipping: result is not used
10:09:26 3288 expanding: ${if def:sender_ident {from ${quote_local_part:$sender_ident} }}${if def:sender_helo_name {(helo=$sender_helo_name)
10:09:26 3288 }}
10:09:26 3288 result: from mailnull
10:09:26 3288 condition: def:received_protocol
10:09:26 3288 result: true
10:09:26 3288 expanding: with $received_protocol
10:09:26 3288 result: with local
10:09:26 3288 condition: def:tls_cipher
10:09:26 3288 result: false
10:09:26 3288 expanding: ($tls_cipher)
10:09:26 3288
10:09:26 3288 result: ()
10:09:26 3288
10:09:26 3288 skipping: result is not used
10:09:26 3288 condition: def:sender_address
10:09:26 3288 result: false
10:09:26 3288 expanding: (envelope-from <$sender_address>)
10:09:26 3288
10:09:26 3288 result: (envelope-from <>)
10:09:26 3288
10:09:26 3288 skipping: result is not used
10:09:26 3288 condition: def:received_for
10:09:26 3288 result: true
10:09:26 3288 expanding:
10:09:26 3288 for $received_for
10:09:26 3288 result:
10:09:26 3288 for root@mx.xxx.ru
10:09:26 3288 expanding: Received: ${if def:sender_rcvhost {from $sender_rcvhost
10:09:26 3288 }{${if def:sender_ident {from ${quote_local_part:$sender_ident} }}${if def:sender_helo_name {(helo=$sender_helo_name)
10:09:26 3288 }}}}by $primary_hostname ${if def:received_protocol {with $received_protocol}} ${if def:tls_cipher {($tls_cipher)
10:09:26 3288 }}(Exim $version_number (FreeBSD))
10:09:26 3288 ${if def:sender_address {(envelope-from <$sender_address>)
10:09:26 3288 }}id $message_exim_id${if def:received_for {
10:09:26 3288 for $received_for}}
10:09:26 3288 result: Received: from mailnull by mx.xxx.ru with local (Exim 4.68 (FreeBSD))
10:09:26 3288 id 1IXskY-0000r2-Dd
10:09:26 3288 for root@mx.xxx.ru
10:09:26 3288 >>Generated Received: header line
10:09:26 3288 P Received: from mailnull by mx.xxx.ru with local (Exim 4.68 (FreeBSD))
10:09:26 3288 id 1IXskY-0000r2-Dd
10:09:26 3288 for root@mx.xxx.ru; Wed, 19 Sep 2007 10:09:26 +0400
10:09:26 3288 calling local_scan(); timeout=300
10:09:26 3288 local_scan() returned 0 NULL
10:09:26 3288 expanding: ${tod_full}
10:09:26 3288 result: Wed, 19 Sep 2007 10:09:26 +0400
10:09:26 3288 Writing spool header file
10:09:26 3288 Size of headers = 461
10:09:26 3288 LOG: MAIN
10:09:26 3288 <= <> R=1IXskY-0000qz-7D U=mailnull P=local S=2373
10:09:26 3288 search_tidyup called
10:09:26 3288 search_tidyup called
10:09:26 3289 exec /usr/local/sbin/exim -d=0xfffdffff -Mc 1IXskY-0000r2-Dd
10:09:26 3288 >>>>>>>>>>>>>>>> Exim pid=3288 terminating with rc=0 >>>>>>>>>>>>>>>>
10:09:26 3286 Writing spool header file
10:09:26 3286 Size of headers = 324
10:09:26 3286 LOG: MAIN
10:09:26 3286 Completed
10:09:26 3286 end delivery of 1IXskY-0000qz-7D
10:09:26 3286 search_tidyup called
10:09:26 3286 search_tidyup called
10:09:26 3286 >>>>>>>>>>>>>>>> Exim pid=3286 terminating with rc=0 >>>>>>>>>>>>>>>>
10:09:26 3289 Exim version 4.68 (FreeBSD 6.2) uid=26 gid=6 pid=3289 D=fffdffff
Probably Berkeley DB version 1.8x (native mode)
Support for: crypteq iconv() use_setclassresources PAM Perl Expand_dlfunc OpenSSL Content_Scanning Old_Demime Experimental_SPF
Lookups: lsearch wildlsearch nwildlsearch iplsearch cdb dbm dbmnz dnsdb dsearch ldap ldapdn ldapm mysql nis nis0 passwd
Authenticators: cram_md5 dovecot plaintext spa
Routers: accept dnslookup ipliteral manualroute queryprogram redirect
Transports: appendfile/maildir/mailstore/mbx autoreply lmtp pipe smtp
Fixed never_users: 0
Size of off_t: 8
10:09:26 3289 changed uid/gid: forcing real = effective
10:09:26 3289 uid=0 gid=6 pid=3289
10:09:26 3289 auxiliary group list: 6
10:09:26 3289 seeking password data for user "mailnull": using cached result
10:09:26 3289 getpwnam() succeeded uid=26 gid=26
10:09:26 3289 seeking password data for user "root": cache not available
10:09:26 3289 getpwnam() succeeded uid=0 gid=0
10:09:26 3289 configuration file is /usr/local/etc/exim/configure
10:09:26 3289 log selectors = 0000cffe 00233821
10:09:26 3289 cwd=/var/spool/exim 4 args: /usr/local/sbin/exim -d=0xfffdffff -Mc 1IXskY-0000r2-Dd
10:09:26 3289 trusted user
10:09:26 3289 admin user
10:09:26 3289 skipping ACL configuration - not needed
10:09:26 3289 set_process_info: 3289 delivering specified messages
10:09:26 3289 set_process_info: 3289 delivering 1IXskY-0000r2-Dd
10:09:26 3289 reading spool file 1IXskY-0000r2-Dd-H
10:09:26 3289 user=mailnull uid=26 gid=6 sender=
10:09:26 3289 sender_local=0 ident=mailnull
10:09:26 3289 Non-recipients:
10:09:26 3289 Empty Tree
10:09:26 3289 ---- End of tree ----
10:09:26 3289 recipients_count=1
10:09:26 3289 body_linecount=54 message_linecount=10
10:09:26 3289 Delivery address list:
10:09:26 3289 root@mx.xxx.ru
10:09:26 3289 locking /var/spool/exim/db/retry.lockfile
10:09:26 3289 locked /var/spool/exim/db/retry.lockfile
10:09:26 3289 EXIM_DBOPEN(/var/spool/exim/db/retry)
10:09:26 3289 returned from EXIM_DBOPEN
10:09:26 3289 opened hints database /var/spool/exim/db/retry: flags=O_RDONLY
10:09:26 3289 >>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>
10:09:26 3289 Considering: root@mx.xxx.ru
10:09:26 3289 unique = root@mx.xxx.ru
10:09:26 3289 dbfn_read: key=R:mx.xxx.ru
10:09:26 3289 dbfn_read: key=R:root@mx.xxx.ru
10:09:26 3289 dbfn_read: key=R:root@mx.xxx.ru:<>
10:09:26 3289 no domain retry record
10:09:26 3289 no address retry record
10:09:26 3289 root@mx.xxx.ru: queued for routing
10:09:26 3289 >>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>
10:09:26 3289 routing root@mx.xxx.ru
10:09:26 3289 --------> lotus_router router <--------
10:09:26 3289 local_part=root domain=mx.xxx.ru
10:09:26 3289 checking domains
10:09:26 3289 mx.xxx.ru in "xxx.ru"? no (end of list)
10:09:26 3289 lotus_router router skipped: domains mismatch
10:09:26 3289 --------> dnslookup router <--------
10:09:26 3289 local_part=root domain=mx.xxx.ru
10:09:26 3289 checking domains
10:09:26 3289 mx.xxx.ru in "@"? yes (matched "@")
10:09:26 3289 mx.xxx.ru in "! +local_domains"? no (matched "! +local_domains")
10:09:26 3289 dnslookup router skipped: domains mismatch
10:09:26 3289 no more routers
10:09:26 3289 post-process root@mx.xxx.ru (2)
10:09:26 3289 LOG: MAIN
10:09:26 3289 ** root@mx.xxx.ru: Unrouteable address
10:09:26 3289 >>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>
10:09:26 3289 After routing:
10:09:26 3289 Local deliveries:
10:09:26 3289 Remote deliveries:
10:09:26 3289 Failed addresses:
10:09:26 3289 Deferred addresses:
10:09:26 3289 root@mx.xxx.ru
10:09:26 3289 search_tidyup called
10:09:26 3289 >>>>>>>>>>>>>>>> deliveries are done >>>>>>>>>>>>>>>>
10:09:26 3289 changed uid/gid: post-delivery tidying
10:09:26 3289 uid=26 gid=6 pid=3289
10:09:26 3289 auxiliary group list: 6
10:09:26 3289 set_process_info: 3289 tidying up after delivering 1IXskY-0000r2-Dd
10:09:26 3289 Processing retry items
10:09:26 3289 Succeeded addresses:
10:09:26 3289 Failed addresses:
10:09:26 3289 Deferred addresses:
10:09:26 3289 root@mx.xxx.ru: no retry items
10:09:26 3289 end of retry processing
10:09:26 3289 LOG: MAIN
10:09:26 3289 Frozen (delivery error message)
10:09:26 3289 delivery deferred: update_spool=1 header_rewritten=0
10:09:26 3289 Writing spool header file
10:09:26 3289 Size of headers = 461
10:09:26 3289 end delivery of 1IXskY-0000r2-Dd
10:09:26 3289 search_tidyup called
10:09:26 3289 search_tidyup called
10:09:26 3289 >>>>>>>>>>>>>>>> Exim pid=3289 terminating with rc=0 >>>>>>>>>>>>>>>>
Antti
-
Alex Keda
- стреляли...
- Сообщения: 35056
- Зарегистрирован: 2004-10-18 14:25:19
- Откуда: Made in USSR
-
Контактная информация:
Непрочитанное сообщение
Alex Keda » 2007-09-19 9:30:39
хачу такую траву
ты давно такие адреса последний раз видел? Я - даже у спамеров не видел такого
советую почитать про регулярные выражения
Убей их всех! Бог потом рассортирует...
Alex Keda
-
Antti
- мл. сержант
- Сообщения: 77
- Зарегистрирован: 2007-04-23 12:26:34
Непрочитанное сообщение
Antti » 2007-09-19 9:39:40
Тссс ! трава есть - заходи, покурим...Я еще не проснулся...
Ну а серьезно - как вообще в отладке - есть что нибудь кривое ?
или кривое все ?
Antti
-
cyrus_user
- сержант
- Сообщения: 181
- Зарегистрирован: 2007-04-24 12:16:36
Непрочитанное сообщение
cyrus_user » 2007-09-19 11:05:54
Antti писал(а):Вот при тестах обнаружил, что у меня почему то не отрабатывют след. ACL:
Код: Выделить всё
deny domains = +local_domains
local_parts = ^[.] : ^.*[@%!/|]
message = "incorrect symbol in address"
delay = 30s
deny domains = !+local_domains
local_parts = ^[./|] : ^.*[@%!] : ^.*/\\.\\./
message = "incorrect symbol in address"
delay = 30s
Что у меня криво настроено?
вот из вашего:
echo "anti^tt" | egrep '^.*[@%!]'
вот для проверки ^ внутри:
echo "anti^tt" | egrep '^.*[^@%!]'
anti^tt
видно разницу?
cyrus_user
-
Antti
- мл. сержант
- Сообщения: 77
- Зарегистрирован: 2007-04-23 12:26:34
Непрочитанное сообщение
Antti » 2007-09-19 13:55:25
Вот, спасибо, теперь понял...а то совсем запутался в этих закорючках...
Еще вопрос возник : делаю проверку по пользователю
Код: Выделить всё
accept domains = ${lookup mysql{SELECT `domain` FROM `alias` WHERE \
`domain`='${domain}'}}
endpass
local_parts = ${lookup mysql{SELECT `address` FROM `alias` WHERE \
`address`='${local_part}' AND `domain`='${domain}'}}
message = "Unknown user"
но вместо сообщения "Unknown user" приходит сообщение "550 Administrative prohibition". Почему ?
Antti
-
dikens3
- подполковник
- Сообщения: 4856
- Зарегистрирован: 2006-09-06 16:24:08
- Откуда: Нижний Новгород
-
Контактная информация:
Непрочитанное сообщение
dikens3 » 2007-09-19 14:16:15
А почему нормальная не устраивает?
Код: Выделить всё
# Принимаем, если получатель и домен наши и существуют.
accept domains = +local_domains
endpass
message = "Unknown user"
verify = recipient
Лучше установить FreeBSD, чем потратить 30 лет на Linux'ы и выяснить какой из них хуже.
dikens3
-
dikens3
- подполковник
- Сообщения: 4856
- Зарегистрирован: 2006-09-06 16:24:08
- Откуда: Нижний Новгород
-
Контактная информация:
Непрочитанное сообщение
dikens3 » 2007-09-19 14:22:22
Antti писал(а):Так у меня же релей....
Просвети меня грешного, что же ты под этим понимаешь? (Ибо фильтр ты пишешь полностью аналогичный)
Лучше установить FreeBSD, чем потратить 30 лет на Linux'ы и выяснить какой из них хуже.
dikens3
-
Antti
- мл. сержант
- Сообщения: 77
- Зарегистрирован: 2007-04-23 12:26:34
Непрочитанное сообщение
Antti » 2007-09-19 14:43:14
dikens3 писал(а):А почему нормальная не устраивает?
Код: Выделить всё
# Принимаем, если получатель и домен наши и существуют.
accept domains = +local_domains
endpass
message = "Unknown user"
verify = recipient
Лучше ты мне объясни, если не трудно, как будет работать такая проверка при условии, что локальных ящиков нет совсем. Как я понял из доки, можно так проверить, как ты говоришь, но только с callout...Или я опять ничего не понял ?
Antti
-
dikens3
- подполковник
- Сообщения: 4856
- Зарегистрирован: 2006-09-06 16:24:08
- Откуда: Нижний Новгород
-
Контактная информация:
Непрочитанное сообщение
dikens3 » 2007-09-19 16:33:24
# Принимаем, если получатель и домен наши и существуют.
accept domains = +local_domains
endpass
message = "Unknown user"
verify = recipient
accept
Данное условие примет (пропустит) сообщение при выполнении всех нижеперечисленных условий, а это:
1.
domains = +local_domains
Домен назначения должен быть твой и находиться в списке local_domains, который определяется в основном конфиге примерно так:
# Список доменов
MYSQL_DOMAINS = SELECT domain FROM domains WHERE domain='${quote_mysql:$domain}' AND active='Y' LIMIT 1
# Все наши домены
domainlist local_domains = ${lookup mysql{MYSQL_DOMAINS}}
2.
endpass
Данное условие сообщит exim о том, что всё, что совпадёт с доменом (т.е. при выполнении вернего условия), на этом правиле и закончится. (т.е. accept изменится на deny при невыполнении любого условия, перечисленного после endpass. Вобщем если домен получатель будет твой, то этот фильтр решит судьбу сообщения, либо accept, либо deny при невыполнении verify = recipient и выдаст сообщение = message )
3.
message = "Unknown user"Это само сообщение при невыполнении условия verify = recipient. Оно ниже
4.
verify = recipientВызывает секцию routers и смотрит, можно ли доставить сообщение куда-нибудь. Т.к. роутер dnslookup содержит !+local_domains, то после проверки получателя во всех роутерах не будет найден ни один подходящий роутер, и данное правило вернёт отрицательный результат.
Если отрицательный - выдётся deny и message, если положительный - accept и далее сообщение передаётся в следующие секции - acl_smtp_predata, acl_smtp_data и т.д.
Читать можно
тут и
тут. Поиск на странице по endpass, там нормальнее описано.
Лучше установить FreeBSD, чем потратить 30 лет на Linux'ы и выяснить какой из них хуже.
dikens3
-
Antti
- мл. сержант
- Сообщения: 77
- Зарегистрирован: 2007-04-23 12:26:34
Непрочитанное сообщение
Antti » 2007-09-19 16:42:54
Я понял - ты решил меня окончательно запутать !
Объяснение хорошее, я уже читал это в мануале, но где проверка на пользователя - я не вижу. Это ведь не она :
Код: Выделить всё
4. verify = recipient
Вызывает секцию routers и смотрит, можно ли доставить сообщение куда-нибудь. Т.к. роутер dnslookup содержит !+local_domains, то после проверки получателя во всех роутерах не будет найден ни один подходящий роутер, и данное правило вернёт отрицательный результат.
Если отрицательный - выдётся deny и message, если положительный - accept и далее сообщение передаётся в следующие секции - acl_smtp_predata, acl_smtp_data и т.д.
мне же не доставлять пока надо, а юзверя проверить, если его нету то deny, а если есть - вот тогда доставлять...
Antti
