forum.lissyara.su

Код: Выделить всё

Return-path: <admin@mydomain.ru>
Envelope-to: admin@mydomain.ru 
Delivery-date: Tue, 17 Nov 2009 10:21:45 +0300
Received: from mail.iag.co.at ([81.223.25.27] helo=iag.co.at)
        by mydomain.ru.ru with esmtps (TLSv1:AES128-SHA:128)
        (Exim 4.63)
        (envelope-from <admin@mydomain.ru>)
        id 1NAINl-0006LV-07
        for admin@mydomain.ru; Tue, 17 Nov 2009 10:21:45 +0300
Received: from ngs.ru (217.8.236.156) by Mail.iag09.local (192.168.10.200)
 with Microsoft SMTP Server id 8.1.393.1; Tue, 17 Nov 2009 08:21:37 +0100
Content-Transfer-Encoding: quoted-printable
Content-Type: text/plain; charset="windows-1251"
From: <admin@mydomain.ru>
To: <admin@mydomain.ru>
Subject: =?utf-8?B?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?=
MIME-Version: 1.0
Message-ID: <3fce8771-afe5-40ec-9842-4230114efd23@Mail.iag09.local>
Date: Tue, 17 Nov 2009 08:21:37 +0100
X-GFI-SMTP-Submission: 1
X-GFI-SMTP-HelloDomain: ngs.ru
X-GFI-SMTP-RemoteIP: 217.8.236.156
X-Spam-Score: 4.1 (++++)
X-Spam-Report: Spam detection software, running on the system "mydomain.ru", has
        identified this incoming email as possible spam.  The original message
        has been attached to this so you can view it (if it isn't spam) or label
        similar future email.  If you have any questions, see
        the administrator of that system for details.
        Content preview:  Coбepем для Bac по сeти интернeт базy дaнныx пoтенциальных
        kлиeнтов для Вaшегo Бизнecа (всe контakтныe данные - poд деятельноcти, нaзвaниe,
        aдрeс, имена, тeлефoны, факcы, e-mail, www итд) Toчнo! Mного! Быстpо! Сбoр
        данныx пo гоpoду и облacти 4000 рyблей Cбоp дaнных по cтpане 6000 pублей
        [...] 
        Content analysis details:   (4.1 points, 5.0 required)
        pts rule name              description
        ---- ---------------------- --------------------------------------------------
        3.5 BAYES_99               BODY: Bayesian spam probability is 99 to 100%
        [score: 1.0000]
        0.6 RCVD_IN_SORBS_WEB      RBL: SORBS: sender is a abuseable web server
        [217.8.236.156 listed in dnsbl.sorbs.net]

Coбepем для Bac по сeти интернeт базy дaнныx 
пoтенциальных kлиeнтов для Вaшегo Бизнecа
(всe контakтныe данные - poд деятельноcти, 
нaзвaниe, aдрeс, имена, тeлефoны, факcы, 
e-mail, www итд) 
Toчнo! Mного! Быстpо!
Сбoр данныx пo гоpoду и облacти 4000 рyблей
Cбоp дaнных по cтpане 6000 pублей

Bы можeте yзнaть пoдробнеe 
по телефoну: +79133913837
Email: prodawez@mixmail.com
ICQ: 62-888-62
Skype: basedannix

Код: Выделить всё

2009-11-17 10:21:45 1NAINl-0006LV-07 <= admin@mydomain.ru H=mail.iag.co.at (iag.co.at) [81.223.25.27] P=esmtps X=TLSv1:AES128-SHA:128 S=3402 id=3fce8771-afe5-40ec-9842-4230114efd23@Mail.iag09.local
2009-11-17 10:21:45 1NAINl-0006LV-07 => adminmydomain.ru <admin@mydomain.ru> R=procmail T=procmail
2009-11-17 10:21:45 1NAINl-0006LV-07 Completed

Код: Выделить всё

# nslookup 217.8.236.156
Server:         192.168.2.87
Address:        192.168.2.87#53

Non-authoritative answer:
156.236.8.217.in-addr.arpa      name = gprs-217-8-236-156.sib.mts.ru.

Authoritative answers can be found from:
236.8.217.in-addr.arpa  nameserver = ns.zsttk.ru.
236.8.217.in-addr.arpa  nameserver = ns1.sib.mts.ru.
236.8.217.in-addr.arpa  nameserver = ns2.sib.mts.ru.
ns.zsttk.ru     internet address = 80.89.128.8
ns1.sib.mts.ru  internet address = 217.8.235.81
ns2.sib.mts.ru  internet address = 217.8.235.82

Код: Выделить всё

# telnet mail.iag.co.at 25
Trying 81.223.25.27...
Connected to mail.iag.co.at.
Escape character is '^]'.
220 Mail.iag09.local Microsoft ESMTP MAIL Service ready at Wed, 18 Nov 2009 13:29:15 +0100

Код: Выделить всё

# $Cambridge: exim/exim-src/src/configure.default,v 1.10 2006/07/27 10:36:34 ph10 Exp $
primary_hostname = mydomain.ru
domainlist local_domains = @ : localhost : mydomain.ru
domainlist relay_to_domains = 
hostlist   relay_from_hosts = 127.0.0.1 : 77.175.64.123
acl_smtp_rcpt = acl_check_rcpt
acl_smtp_data = acl_check_data
acl_smtp_mime = acl_check_mime
av_scanner = clamd:/var/run/clamd.exim/clamd.sock
spamd_address = 127.0.0.1 783
tls_advertise_hosts = *
tls_certificate = /etc/pki/tls/certs/exim.pem
tls_privatekey = /etc/pki/tls/private/exim.pem
daemon_smtp_ports = 25 : 465 : 587
tls_on_connect_ports = 465
never_users = root : mail
rfc1413_hosts = *
rfc1413_query_timeout = 5s
ignore_bounce_errors_after = 2d
timeout_frozen_after = 7d
auth_advertise_hosts = *
begin acl
acl_check_rcpt:
  accept  hosts = :
  deny    message       = Restricted characters in address
          domains       = +local_domains
          local_parts   = ^[.] : ^.*[@%!/|]
  deny    message       = Restricted characters in address
          domains       = !+local_domains
          local_parts   = ^[./|] : ^.*[@%!] : ^.*/\\.\\./
  accept  local_parts   = postmaster
          domains       = +local_domains
  require verify        = sender
  accept  hosts         = +relay_from_hosts
          control       = submission
  accept  authenticated = *
          control       = submission
  require message = relay not permitted
          domains = +local_domains : +relay_domains
  require verify = recipient
  accept
acl_check_data:
    deny    condition  = ${if !def:h_Message-ID: {1}}
            message    = RFC2822 says that all mail SHOULD have a Message-ID header.\n\
                        Most messages without it are spam, so your mail has been rejected.
   accept  condition  = ${if >={$message_size}{100000} {1}}
           add_header = X-Spam-Note: SpamAssassin run bypassed due to message size
   warn    spam       = nobody/defer_ok
           add_header = X-Spam-Flag: YES
  
   accept  condition  = ${if !def:spam_score_int {1}}
           add_header = X-Spam-Note: SpamAssassin invocation failed
  
   warn    add_header = X-Spam-Score: $spam_score ($spam_bar)\n\
                        X-Spam-Report: $spam_report
   warn  spam = nobody/defer_ok
      add_header = Subject: *****SPAM***** $h_Subject:
   deny    condition = ${if >{$spam_score_int}{100} {1}}
           message   = Your message scored $spam_score SpamAssassin point. Report follows:\n\
                        $spam_report
  accept
acl_check_mime:
  deny message = Blacklisted file extension detected
       condition = ${if match \
                        {${lc:$mime_filename}} \
                        {\N  #
begin routers
dnslookup:
  driver = dnslookup
  domains = ! +local_domains
  transport = remote_smtp
  ignore_target_hosts = 0.0.0.0 : 127.0.0.0/8
  no_more
system_aliases:
  driver = redirect
  allow_fail
  allow_defer
  data = ${lookup{$local_part@$domain}lsearch{/etc/aliases}}
  file_transport = address_file
  pipe_transport = address_pipe
userforward:
  driver = redirect
  check_local_user
  file = $home/.forward
  allow_filter
  no_verify
  no_expn
  check_ancestor
  file_transport = address_file
  pipe_transport = address_pipe
  reply_transport = address_reply
procmail:
  driver = accept
  check_local_user
  require_files = ${local_part}:+${home}/.procmailrc:/usr/bin/procmail
  transport = procmail
  no_verify
localuser:
  driver = accept
  check_local_user  
  transport = local_delivery
  cannot_route_message = Unknown user
begin transports
remote_smtp:
  driver = smtp
  headers_remove = Sender:Received:Return-path
  
procmail:
  driver = pipe
  command = "/usr/bin/procmail -d $local_part"
  return_path_add
  delivery_date_add
  envelope_to_add
  user = $local_part
  initgroups
  return_output
local_delivery:
  driver = appendfile
  file = /var/mail/$local_part
  delivery_date_add
  envelope_to_add
  return_path_add
  group = mail
  mode = 0660
address_pipe:
  driver = pipe
  return_output
address_file:
  driver = appendfile
  delivery_date_add
  envelope_to_add
  return_path_add
address_reply:
  driver = autoreply
begin retry
*                      *           F,2h,15m; G,16h,1h,1.5; F,4d,6h
begin rewrite
begin authenticators
PLAIN:
  driver                     = plaintext
  public_name                = PLAIN  
  server_set_id              = ${sg{$auth2}{[@]}{}}
  server_prompts             = :
  server_condition           = ${if saslauthd{{${sg{$2}{[@]}{}}}{$3}{smtp}} {1}}
LOGIN:
  driver                     = plaintext
  server_set_id              = ${sg{$auth1}{[@]}{}}
  server_prompts             = <| Username: | Password:
  server_condition           = ${if saslauthd{{${sg{$1}{[@]}{}}}{$2}{smtp}} {1}}

Код: Выделить всё

Код: Выделить всё

  accept  authenticated = *
          control       = submission

Код: Выделить всё

  deny domains = +local_domains
   sender_domains = +local_domains
   message = Reject. Local policy.
   log_message = Reject. Remote sender use my local domain

Код: Выделить всё

# Список доменов
MYSQL_DOMAINS           = SELECT domain FROM domain WHERE transport = 'virtual' AND active='1'

# Наши домены ( @ - домен нашего компьютера)
domainlist local_domains = @ : ${sg{${lookup mysql{MYSQL_DOMAINS}}}{\n}{:}}