The Community Forums

Interact with an entire community of cPanel & WHM users!
  1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Fix for Exim where messages are delivered to non existing sites

Discussion in 'General Discussion' started by sexy_guy, Aug 15, 2003.

  1. sexy_guy

    sexy_guy Well-Known Member

    Joined:
    Mar 19, 2003
    Messages:
    848
    Likes Received:
    0
    Trophy Points:
    16
    Here is a scenerio

    A message comes into the server.
    Exim says there is no such site
    A return msg is generated to tell the sender there is no such site.
    The msg gets thrown into the queue because the return address is some spammer/spoofed, and exim cannot deliver the msg.

    The result is your msg queue is full of undeliverable mail that should be deleted so why accept it in the first place when you can prevent it from even coming in?

    EG

    2003-08-15 18:38:03 19nq0l-0007nr-AP <= talkania_vxhu@hotmail.com H=(hotmail.com) [24.130.136.23] P=smtp S=11966
    2003-08-15 18:38:05 19nq0l-0007nr-AP ** webmaster@surfsafe.com R=virtual_aliases: no such address here
    2003-08-15 18:38:05 19nq17-0007p0-AD <= <> R=19nq0l-0007nr-AP U=mailnull P=local S=12914
    2003-08-15 18:38:05 19nq0l-0007nr-AP Completed
    2003-08-15 18:38:05 19nq17-0007p0-AD ** talkania_vxhu@hotmail.com R=lookuphost T=remote_smtp: SMTP error from remote mailer after RCPT TO:<talkania_vxhu@hotmail.com>: host mx2.hotmail.com [65.54.166.230]: 550 Requested action not taken: mailbox unavailable
    2003-08-15 18:38:05 19nq17-0007p0-AD Frozen (delivery error message)

    Here is the return msg this spammer should have received;

    19nq17-0007p0-AD-D
    This message was created automatically by mail delivery software.

    A message that you sent could not be delivered to one or more of its
    recipients. This is a permanent error. The following address(es) failed:

    webmaster@surfsafe.com
    no such address here

    But since his return address was spoofed this msg is now in the queue as undeliverable.


    Wouldnt it be nicer if Exim would make sure the the domain existed on your box first, and that the user actually existed? If it doesnt the msg is dropped. How can you fix it?

    Modify exim.conf and make this change;

    Replace;

    accept domains = +local_domains
    accept domains = +relay_domains


    with;

    # Accept if the address is in a local domain, but only if the recipient can
    # be verified. Otherwise deny. The "endpass" line is the border between
    # passing on to the next ACL statement (if tests above it fail) or denying
    # access (if tests below it fail).

    accept domains = +local_domains
    endpass
    message = unknown user
    verify = recipient

    # Accept if the address is in a domain for which we are relaying, but again,
    # only if the recipient can be verified.

    accept domains = +relay_domains
    endpass
    message = unrouteable address
    verify = recipient

    The next line in exim.conf after the above should be

    accept hosts = +relay_hosts
    etc
    etc

    Nick, can you incorportate this change. It works great!

    CREDIT: Aussie on the Rackshack forums.

    cPanel.net Support Ticket Number:
     
    #1 sexy_guy, Aug 15, 2003
    Last edited: Aug 15, 2003
  2. isputra

    isputra Well-Known Member

    Joined:
    May 3, 2003
    Messages:
    576
    Likes Received:
    0
    Trophy Points:
    16
    Location:
    Mbelitar
    Have anyone trying the method like sexy_guy ?

    I just want to hear some advise because now exim not sending and receiving any email :confused:

    cPanel.net Support Ticket Number:
     
  3. isputra

    isputra Well-Known Member

    Joined:
    May 3, 2003
    Messages:
    576
    Likes Received:
    0
    Trophy Points:
    16
    Location:
    Mbelitar
    #3 isputra, Aug 24, 2003
    Last edited: Aug 24, 2003
  4. casey

    casey Well-Known Member

    Joined:
    Jan 17, 2003
    Messages:
    2,303
    Likes Received:
    0
    Trophy Points:
    36
    Location:
    If there is trouble, it will find me
    sexy_guy got banned. He was impolite, to say the least.

    cPanel.net Support Ticket Number:
     
  5. isputra

    isputra Well-Known Member

    Joined:
    May 3, 2003
    Messages:
    576
    Likes Received:
    0
    Trophy Points:
    16
    Location:
    Mbelitar
    silly me :D

    cPanel.net Support Ticket Number:
     
  6. dgbaker

    dgbaker Well-Known Member
    PartnerNOC

    Joined:
    Sep 20, 2002
    Messages:
    2,578
    Likes Received:
    3
    Trophy Points:
    38
    Location:
    Toronto, Ontario Canada
    cPanel Access Level:
    DataCenter Provider
    Still, though removing the posts (which I do have to say in a lot of cases had some merit) is not right. While I agree he was rude at times, his issues were no less important and we should be able to see the history. At least now we know we can hit reply to view what the post was suppossed to read. :)

    cPanel.net Support Ticket Number:
     
Loading...

Share This Page