LinkBack URL
About LinkBacks
Default address :fail: and returned mail
Hello,
I would assume this is not normal but maybe Chirpy, the guru, can comment on this...
I just recently started getting a ton of spam to the main domain email account. I noticed most, if not all were dictionary attacks so I change the default address from the username to :fail: and enabled SpamAssassin.
After 3 days of recieving no mail, I started to wonder if with the recent cPanel updates and words going around about the mail issues, maybe something is up. After some testing I found that I can send and recieve from accounts created in cPanel's Mail Account Manager, however, the main domain account can not recieve email. The same account can send email no problem, however. I changed the default address from :fail: to the username again, and bingo, worked like a charm. I still don't want to recieve all that garbage though, and want to keep it set to :fail:, but for the mean time am unable to.
Here is any info I can think of providing and if you need more, let me know. And I can't look at the moment, but any bugzillas already opened I should submit this to?
Return reciept when default address set to :fail: (and again, this is only for the main cpanel email account for the domain):
Exim log of a rejected message while default address was set to :fail: and a message that went through with the default address set to the username:Final-Recipient: RFC822; ***@*****
Action: failed
Status: 5.1.1
Remote-MTA: DNS; *****
Diagnostic-Code: SMTP; 550-"The recipient cannot be verified. Please check all recipients of this
Last-Attempt-Date: Sat, 23 Jul 2005 12:49:00 -0500
While :fail: was set as the default address, I did all of the following:2005-07-23 12:47:11 H=(webmail-1.wideopenwest.com) [64.233.207.37] F=<***@wowway.com> rejected RCPT <***@*****>:
2005-07-23 12:50:39 1DwO91-0000YG-8q <= ***@wowway.com H=(webmail-1.wideopenwest.com) [64.233.207.37] P=esmtps X=TLSv1:AES256-SHA:256 S=1047 id=20050723175210.M92193@wowway.com
2005-07-23 12:50:40 1DwO91-0000YM-E2 <= ***@wowway.com U=dgannon P=local-bsmtp S=1436 id=20050723175210.M92193@wowway.com
2005-07-23 12:50:40 1DwO91-0000YM-E2 => *** <***@saturn.supercoolhosting.com> R=localuser T=local_delivery
2005-07-23 12:50:40 1DwO91-0000YM-E2 Completed
2005-07-23 12:50:40 1DwO91-0000YG-8q => *** <***@*****> R=sa_localuser T=local_sa_delivery
2005-07-23 12:50:40 1DwO91-0000YG-8q Completed
Uninstalled cPanel Pro
/scripts/updatenow
/scripts/upcp --force
/scripts/eximup --force
/scripts/mailperms
Reinstalled cPanel Pro
root@saturn [~]# cat /etc/redhat-release;/usr/local/cpanel/cpanel -V;rpm -q exim
Red Hat Enterprise Linux ES release 3 (Taroon Update 5)
10.4.0-CURRENT_154
exim-4.52-7_cpanel_smtpctl_av_rewrite_mm2_mmmtrap_exiscan_md5pass
I only checked this on this one box for now, and will be unable to check others until later unless someone has any other input confirming my problems are related to cPanel. And I also only checked this one account which needed this fixed ASAP. When I get home later this evening I can check more.
Also if it is any relevance, the SMTP Tweak is enabled allowing connections to localhost.
Reply With Quote
Originally Posted by Blue|Fusion
