The Community Forums

Interact with an entire community of cPanel & WHM users!
  1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Exim 4.x does not support rbl_domains

Discussion in 'General Discussion' started by emeric21, Jul 1, 2003.

  1. emeric21

    emeric21 Well-Known Member

    Joined:
    Aug 5, 2002
    Messages:
    49
    Likes Received:
    0
    Trophy Points:
    6
    I just try to add rbl_domains = bl.spamcop.net/reject:\ in exim.conf but i when i restart exim, it's failed

    In exim log is see that:
    Exim configuration error in line 185:
    main option "rbl_domains" unknown

    I search in exim.org and i read that:
    Exim 4.x does not support rbl_domains at all... you must now accomplish
    the same thing using dnslist lookups in ACL entries.

    So how we can now use RBL in exim???

    cPanel.net Support Ticket Number:
     
  2. sexy_guy

    sexy_guy Well-Known Member

    Joined:
    Mar 19, 2003
    Messages:
    848
    Likes Received:
    0
    Trophy Points:
    16
    Yes it does, your just not using the proper syntax. That is incorrect. Why dont you look up the Exim4 FAQ's for your answer. Search it on google and you will find your answer.

    cPanel.net Support Ticket Number:
     
  3. goodmove

    goodmove Well-Known Member

    Joined:
    May 12, 2003
    Messages:
    624
    Likes Received:
    0
    Trophy Points:
    16
    In /etc/exim.conf find this section:

    #!!# ACL that is used after the RCPT command
    check_recipient:
    # Exim 3 had no checking on -bs messages, so for compatibility
    # we accept if the source is local SMTP (i.e. not over TCP/IP).
    # We do this by testing for an empty sending host field.
    accept hosts = :
    require verify = sender

    Right underneath that section add this:

    #!!# Spam control starts here:
    deny message = rejected because $sender_host_address is \
    is blacklisted at $dnslist_domain\n\
    $dnslist_text
    deny dnslists = relays.ordb.org: \
    sbl.spamhaus.org: \
    bl.spamcop.net
    #!!# Spam control stops here

    Restart Exim -> service exim restart

    chattr +i /etc/exim.conf (that's if you don't want Cpanel to modify the changes you've made)

    And you'll be good to go. You can add more DNSBL's to the list or change the "deny message" if you want to.

    A good list of DNSBLs with a commentary on each can be found here:
    http://www.declude.com/junkmail/support/ip4r.htm

    Check out if your server(s) are blacklisted or not !!!
    http://openrbl.org/
     
    #3 goodmove, Jul 2, 2003
    Last edited: Jul 2, 2003
  4. emeric21

    emeric21 Well-Known Member

    Joined:
    Aug 5, 2002
    Messages:
    49
    Likes Received:
    0
    Trophy Points:
    6
    Re: Re: Exim 4.x does not support rbl_domains

    Thank you very much!!

    cPanel.net Support Ticket Number:
     
  5. ciphervendor

    ciphervendor Well-Known Member

    Joined:
    Aug 26, 2002
    Messages:
    1,052
    Likes Received:
    0
    Trophy Points:
    36
    I copied my old Exim 3 config in previously, my apologies. Please find below a copy from the begging of the ACL section all the way to the rewrite section of my Exim 4 config file.
    Code:
    begin acl
              
      check_recipient:
      accept  hosts = :
      verify = sender/callout
      verify = recipient/defer_ok/callout=10s/callout_defer_ok
      
      deny    hosts = !+local_networks
              message = $sender_host_address is listed \
                        at $dnslist_domain
              dnslists = spamhaus.relays.osirusoft.com : \
                         proxy.relays.osirusoft.com : \
                         socks.relays.osirusoft.com : \
                         spamsites.relays.osirusoft.com : \
                         spews.relays.osirusoft.com : \
                         inputs.relays.osirusoft.com : \
                         spamsources.relays.osirusoft.com : \
                         dialups.relays.osirusoft.com : \
                         list.dsbl.org : \
                         flowgoaway.com : \
                         dialups.visi.com : \
                         blackholes.easynet.nl : \
                         opm.blitzed.org
      deny    local_parts = ^.*[@%!/|]
              message = I've never seen @, %, !, /, or | in an e-mail.  Neither should you.
    
      accept  domains = +local_domains
              local_parts = postmaster
      accept  domains = +relay_domains
      accept  hosts = +relay_hosts
      accept  condition = ${perl{checkrelayhost}{$sender_host_address}}
    
      accept  hosts = +auth_relay_hosts
              endpass
              message = $sender_fullhost is currently not permitted to \
                            relay through this server. Perhaps you \
                            have not logged into the pop/imap server in the \
                            last 30 minutes or do not have SMTP Authentication turned on in your email client.
              authenticated = *
      
      deny    message = $sender_fullhost is currently not permitted to \
                            relay through this server. Perhaps you \
                            have not logged into the pop/imap server in the \
                            last 30 minutes or do not have SMTP Authentication turned on in your email client.
    
    check_message:
      require verify = header_sender
      accept
    
    begin authenticators
              
    fixed_plain:
    driver = plaintext
    public_name = PLAIN
    server_condition = "${perl{checkuserpass}{$1}{$2}{$3}}"
    server_set_id = $1
              
    fixed_login:
    driver = plaintext
    public_name = LOGIN
    server_prompts = "Username:: : Password::"
    server_condition = "${perl{checkuserpass}{$1}{$2}}"
    server_set_id = $1
     
    #5 ciphervendor, Jul 2, 2003
    Last edited: Jul 2, 2003
  6. SouthernWeb

    SouthernWeb Member

    Joined:
    Nov 8, 2001
    Messages:
    20
    Likes Received:
    0
    Trophy Points:
    1
    Location:
    Birmingham, AL
    I am not following the local_networks entry, but it does create an error

    Can you elaborate on this?

    Thanks

    cPanel.net Support Ticket Number:
     
  7. goodmove

    goodmove Well-Known Member

    Joined:
    May 12, 2003
    Messages:
    624
    Likes Received:
    0
    Trophy Points:
    16
    You're welcome... :)
     
  8. ciphervendor

    ciphervendor Well-Known Member

    Joined:
    Aug 26, 2002
    Messages:
    1,052
    Likes Received:
    0
    Trophy Points:
    36
    Check for typos in your config.

    cPanel.net Support Ticket Number:
     
  9. pagedeveloping

    pagedeveloping Well-Known Member

    Joined:
    Jun 11, 2003
    Messages:
    219
    Likes Received:
    0
    Trophy Points:
    16
    Location:
    New York
    does not allow email!

    this entry
    would not allow me to email from my ISP I kept getting unknown host in my logs. when I took it out and tested it again it allowed my ISP to go through. could you please explain what this entry does..

    thank You

    Peter

    cPanel.net Support Ticket Number:
     
  10. ciphervendor

    ciphervendor Well-Known Member

    Joined:
    Aug 26, 2002
    Messages:
    1,052
    Likes Received:
    0
    Trophy Points:
    36
    Re: does not allow email!

    Should be pretty straight forward. If you don't need it, remove it. Remember that's my config, not a general config. I was simply showing how to insert rbl lists.

    cPanel.net Support Ticket Number:
     
  11. sexy_guy

    sexy_guy Well-Known Member

    Joined:
    Mar 19, 2003
    Messages:
    848
    Likes Received:
    0
    Trophy Points:
    16
    There is a much better way to do RBL checks than that. Also, this looks very similar to the config i posted a week an half back. Interesting!

    cPanel.net Support Ticket Number:
     
  12. goodmove

    goodmove Well-Known Member

    Joined:
    May 12, 2003
    Messages:
    624
    Likes Received:
    0
    Trophy Points:
    16
    sexy_guy, this is your second post in this thread without giving any useful details. Emeric21 needed a solution and couple of people (one of them is me :)) have tried to help out with example setups. Why don't you post your own exim.conf entries so everyone can see them?
     
  13. sexy_guy

    sexy_guy Well-Known Member

    Joined:
    Mar 19, 2003
    Messages:
    848
    Likes Received:
    0
    Trophy Points:
    16
    deny message = rejected because $sender_host_address is in a black list at $dnslist_domain\n$dnslist_text
    dnslists = spamhaus.relays.osirusoft.com=127.0.0.6: \
    sbl.spamhaus.org=127.0.0.2: \
    relays.ordb.org:

    warn message = X-DUL-Warning: $sender_host_address is in the SpamCop blacklist. http://spamcop.net/bl.shtml?$sender_host_address
    log_message = found in $dnslist_domain
    !authenticated = *
    dnslists = bl.spamcop.net

    Hope that helps!

    cPanel.net Support Ticket Number: :D
     
  14. cts

    cts Member
    PartnerNOC

    Joined:
    Jun 24, 2003
    Messages:
    10
    Likes Received:
    0
    Trophy Points:
    1
    Allowing mail from abuse/postmaster

    In Exim 3.x, it was possible to exclude mail from domains in an RBL but allow mail from selected accounts and domains, eg, postmaster@* and abuse@*.

    Is something similar possible under the new ACLs?

    cPanel.net Support Ticket Number:
     
  15. goodmove

    goodmove Well-Known Member

    Joined:
    May 12, 2003
    Messages:
    624
    Likes Received:
    0
    Trophy Points:
    16
    In the case of spamcop, what happens? Does the recipient still gets the email but with the warning attached?
     
  16. ciphervendor

    ciphervendor Well-Known Member

    Joined:
    Aug 26, 2002
    Messages:
    1,052
    Likes Received:
    0
    Trophy Points:
    36
    Re: Allowing mail from abuse/postmaster

    Under Exim 3, add the following under your RBL lines:
    Code:
    recipients_reject_except = [email]postmaster@domain.com[/email]
    Under Exim 4, something like this:
    Code:
      accept  domains = +local_domains
              local_parts = postmaster
    cPanel.net Support Ticket Number:
     
  17. ciphervendor

    ciphervendor Well-Known Member

    Joined:
    Aug 26, 2002
    Messages:
    1,052
    Likes Received:
    0
    Trophy Points:
    36
    For someone who knows so much about Exim, why couldn't you modify your configuration to solve this issue:

    http://forums.cpanel.net/showthread.php?s=&threadid=11735

     
  18. tomkoch

    tomkoch Member

    Joined:
    May 23, 2003
    Messages:
    21
    Likes Received:
    0
    Trophy Points:
    1
    Re: Re: Exim 4.x does not support rbl_domains


    HELP: PLEASE !!!
    I did all this and it sounded good until I tested the setup from my home and got prompt undeliverable email back:
    Here's the error:


    This Message was undeliverable due to the following reason:

    Each of the following recipients was rejected by a remote mail server.
    The reasons given by the server are included to help you determine why
    each recipient was rejected.

    Recipient: <sales@trkhosting.com>
    Reason: rejected because 68.1.17.242 is is blacklisted at


    Please reply to Postmaster@cox.net
    if you feel this message to be in error.

    I checked and I guess cox is freaking blacklisted.
    So how do I exempt this Ip or this domain?
    God knows how many of my clients personal IP providers are blacklisted. That would completely make this setup unworkable due to "overprotection" right?

    Any help is appreciated!
    Tom

    cPanel.net Support Ticket Number:

    cPanel.net Support Ticket Number:
     
  19. tAzMaNiAc

    tAzMaNiAc Well-Known Member

    Joined:
    Feb 16, 2003
    Messages:
    559
    Likes Received:
    0
    Trophy Points:
    16
    Location:
    Sachse, TX
    You could reduce some of the dnslists out..
    or add a line..for except

    It's somewhere on this thread hmm..

    cPanel.net Support Ticket Number:
     
  20. kris1351

    kris1351 Well-Known Member

    Joined:
    Apr 18, 2003
    Messages:
    963
    Likes Received:
    0
    Trophy Points:
    16
    Location:
    Lewisville, Tx
    Would syntax like this work?

    #!!# Spam control starts here:
    deny message = rejected because $sender_host_address is \
    is blacklisted at $dnslist_domain\n\
    $dnslist_text
    deny dnslists = relays.ordb.org: \
    sbl.spamhaus.org:

    warn message = $send_host_address is\
    listed at $dnslist_domain\n\
    $dnslist_text
    warn dnslists = bl.spamcop.net:

    #!!# Spam control stops here

    cPanel.net Support Ticket Number:
     
Loading...

Share This Page