The Community Forums

Interact with an entire community of cPanel & WHM users!
  1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Forcing exim to skip local delivery

Discussion in 'E-mail Discussions' started by meeven, Sep 18, 2007.

  1. meeven

    meeven Well-Known Member

    Joined:
    May 8, 2007
    Messages:
    124
    Likes Received:
    0
    Trophy Points:
    16
    On a cPanel VPS, I am using MXLogic for some domains. This basically makes all incoming emails for those domains pass through MXLogic filters before being delivered to the respective domains.

    The problem is that, when users in the same domain using the service mail to each other, the server bypasses the MXLogic filtering and delivers the email locally. This is both a security risk for those users (one infected user could infect other users on the domain) and defeats the very purpose of using MXLogic for all incoming email.

    MXLogic had the following answer when I submitted a ticket about this;

    Unfortunately, my host is not forthcoming on what I should do to make these domains skip local delivery and instead send them out and then receive them. Can anyone here guide me on which settings I should change in Exim to make this possible?

    Also, if I were to prevent local delivery, would this affect all domains? I would like to do this only for the domains that are using the spam filtering service.

    Thanks,
    Meeven
     
  2. jerrybell

    jerrybell Well-Known Member

    Joined:
    Nov 27, 2006
    Messages:
    90
    Likes Received:
    0
    Trophy Points:
    6
    The lack of understanding of mail from MXLogic in their answer is breathtaking.

    Granted, I'm really tired and probably missing something, but I can't think of a clean way, or even a dirty way, to do this. If you create a transport that says "use smtp to a smarthost if the sender_doman is one of the local domains", it'll just keep looping out. Possibly, another router could catch mail coming back from the mxlogic box and put it back into the flow. I took a look through the cpanel exim transports and routers, and I think I'm not nearly smart enough to follow all of the logic through to see where this would need to go.
     
  3. meeven

    meeven Well-Known Member

    Joined:
    May 8, 2007
    Messages:
    124
    Likes Received:
    0
    Trophy Points:
    16
    Yes, I am really disappointed too. To be fair to them, it was not MXLogic themselves, but their channel partner, who shall go un-named here. Having said that, I doubt if the support from MXLogic would've been any better. It seems to me that even if you have a VPS etc, you're really on your own when it comes to doing things in a non-standard way. Even my host washed their hands off this request.

    I really wish someone could help solve this riddle.
     
  4. nedry

    nedry Registered

    Joined:
    Aug 15, 2005
    Messages:
    2
    Likes Received:
    0
    Trophy Points:
    1
    Bump.

    I'm having the same problem.
     
  5. mtindor

    mtindor Well-Known Member

    Joined:
    Sep 14, 2004
    Messages:
    1,281
    Likes Received:
    37
    Trophy Points:
    48
    Location:
    inside a catfish
    cPanel Access Level:
    Root Administrator
    You could probably set up a transport that uses this logic:

    if sender is smtp authenticated

    and

    if recipient domain is in this list (a file that has a list of domains to bypass)

    then use some remote transport


    I don't have the time right now to figure out how to add it into exim, but somebody may.

    Of course this would not work if you have your exim set up to not require your business email users to smtp-authenticate to send outbound mail.

    Mike
     
  6. mtindor

    mtindor Well-Known Member

    Joined:
    Sep 14, 2004
    Messages:
    1,281
    Likes Received:
    37
    Trophy Points:
    48
    Location:
    inside a catfish
    cPanel Access Level:
    Root Administrator
    I was wrong about the logic. It should be:

    if sender has smtp-authenticated AND sender domain is in the list
    send using alternate transport

    I'm working on something now. I may fail miserably.

    Mike


     
  7. mtindor

    mtindor Well-Known Member

    Joined:
    Sep 14, 2004
    Messages:
    1,281
    Likes Received:
    37
    Trophy Points:
    48
    Location:
    inside a catfish
    cPanel Access Level:
    Root Administrator
    Actually, I'm not working on it - at least not now.

    But yes it should still be able to be done. The logic itself should be quite simple to code for somebody more familiar [than I] with exim.

    Mike

     
Loading...

Share This Page