/etc/trustedmailhosts

[mtindor]

I see the existence of this file in the latest Release version.

I see what the changelog says it does, but I don't see where exim or spamassassin is calling/checking that file for IPs. Where is that file referenced within exim or spamassassin?

Mike

 

[cPanelKenneth]

It's an ACL, you need to enable this in the Exim Configuration Editor "Trusted Mail Host Whitelist (/etc/trustedmailhosts) -- bypass spam checks"

 

[yapluka]

What is the format that should be used there ? IP ? FQDN ? Wildcards allowed ?

Thanks !

 

[rpmws]

this may be what I was asking nick for a few weeks ago. I plan to use it to put all my shared boxes IPs in. I have clients that send mail back and forth as well as forward back and forth between servers to multiple domains. Using this will lighten the load on the machines when they exchange emails.

some thing else it will also do is allow certian registrars that send expiration notices out for domain owners to make sure they get their notices. Many of those systems are tagged by spamassassin and the RBLs. I look forward to using this feature. Great THANKS to cPanel again for taking my call and again thanks for putting our ideas and needs and interests on the top of the list. cPanel is always keeping it's users in mind. big thanks!!!

 

[mtindor]

It's an ACL, you need to enable this in the Exim Configuration Editor "Trusted Mail Host Whitelist (/etc/trustedmailhosts) -- bypass spam checks"

Ahh, I would never see that in there because... as soon as I edit the exim config editor for things like the dictionary attack ACL and a few HELO checks, I don't get to see the normal stuff that everyone else sees in exim configuration editor. Even though the things I add all work fine, it obviously can't parse the files and make sense out of all of the ACLS once I add a few - so it doesn't show me those things. So typically I have to:

1. revert everything to default config
2. set up those settings like that which i want
3. then add my ACLs lastly.. knowing I won't ever be able to do #2 again until I do #1.

Mike

 

[cPanelKenneth]

Ahh, I would never see that in there because... as soon as I edit the exim config editor for things like the dictionary attack ACL and a few HELO checks, I don't get to see the normal stuff that everyone else sees in exim configuration editor. Even though the things I add all work fine, it obviously can't parse the files and make sense out of all of the ACLS once I add a few - so it doesn't show me those things. So typically I have to:

1. revert everything to default config
2. set up those settings like that which i want
3. then add my ACLs lastly.. knowing I won't ever be able to do #2 again until I do #1.

Mike

So the Exim Editor in WHM seems to choke on your custom edits? Can you provide examples so perhaps we can improve the parsing?

 

[mtindor]

So the Exim Editor in WHM seems to choke on your custom edits? Can you provide examples so perhaps we can improve the parsing?

Yes. I originally had a description of how to reproduce the problem, but it was off topic. I can open a ticket, or a bugzilla report if you want. You can have access to see for yourself what it looks like now (after I added the ACLs), or you can have access to a box that you then revert back to default configs and apply the ACL and HELO checks to yourself so that you can see the problem reproduced.

The bugzilla report is http://bugzilla.cpanel.net/show_bug.cgi?id=6073 . However, you probably need to know exactly what I added in order to reproduce the problem.

Mike

 

[cPanelKenneth]

Thanks for going the extra step with the bug report. Your original response was emailed to me before your edit, there should be enough info there to re-create and determine what is happening. I have a few ideas after perusing the additions. If a ticket is necessary, I'll let you know.

Thanks again.

 

[mtindor]

Thanks for going the extra step with the bug report. Your original response was emailed to me before your edit, there should be enough info there to re-create and determine what is happening. I have a few ideas after perusing the additions. If a ticket is necessary, I'll let you know.

Thanks again.

Ok sounds good. Thanks

Mike

 

[cPanelKenneth]

I tracked down that thread to verify, but produced the same results. The HELO-based ACLs are producing configuration errors:

007-11-05 19:20:02 Exim configuration error in line 254 of /etc/exim.conf.buildtest:
  missing or malformed ACL name

The line it mentions is where it matches the HELO to an IP Address. The config test also choked on the empty HELO test. I'll have to play around with it a bit more later.

Testing on 11.15.0-C17853
Exim 4.68-1_cpanel_Maildir

 

[mtindor]

I tracked down that thread to verify, but produced the same results. The HELO-based ACLs are producing configuration errors:

007-11-05 19:20:02 Exim configuration error in line 254 of /etc/exim.conf.buildtest:
  missing or malformed ACL name

The line it mentions is where it matches the HELO to an IP Address. The config test also choked on the empty HELO test. I'll have to play around with it a bit more later.

Testing on 11.15.0-C17853
Exim 4.68-1_cpanel_Maildir

Thanks Kenneth, I appreciate it!

Mike

 

[jamesbond]

Does this work for 'sender verify' and callout checks as well?