The Community Forums

Interact with an entire community of cPanel & WHM users!
  1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Rejected mail

Discussion in 'E-mail Discussions' started by ukpro, Mar 14, 2005.

  1. ukpro

    ukpro Active Member

    Joined:
    Aug 25, 2004
    Messages:
    28
    Likes Received:
    0
    Trophy Points:
    1
    Hi all,

    I have been trying to register on a site and it is sending me an avtivation email but exim keeps rejecting it, below is part of the log:

    2005-03-15 00:47:20 1DB0DQ-0001JJ-QG H=davevee.ghosts-uk.net [217.160.189.90]:57276 I=[66.98.148.192]:25 F=<cgi-mailer-bounces-76774874@kundenserver.de> rejected after DATA: there is no valid sender in any header line

    Envelope-from: <cgi-mailer-bounces-76774874@kundenserver.de>
    Envelope-to: <billing@funksta.net>
    P Received: from davevee.ghosts-uk.net ([217.160.189.90]:57276)
    by osiris.funkstaserver.com with esmtp (Exim 4.44)
    id 1DB0DQ-0001JJ-QG
    for billing@funksta.net; Tue, 15 Mar 2005 00:47:20 +0000
    Envelope-from: <cgi-mailer-bounces-76774874@kundenserver.de>
    Envelope-to: <billing@funksta.net>
    P Received: from davevee.ghosts-uk.net ([217.160.189.90]:57276)
    by osiris.funkstaserver.com with esmtp (Exim 4.44)
    id 1DB0DQ-0001JJ-QG
    for billing@funksta.net; Tue, 15 Mar 2005 00:47:20 +0000
    P Received: from [127.0.0.1] (helo=infongd2926)
    by davevee.ghosts-uk.net with smtp (Exim 3.35 #1)
    id 1DAzRD-0002Pc-00
    for billing@funksta.net; Tue, 15 Mar 2005 00:57:31 +0100
    P Received: from [82.38.12.96](IP may be forged by CGI script)
    by infongd2926.rtr.kundenserver.de with HTTP; Tue, 15 Mar 2005 00:57:31 +0100
    X-Sender-Info: 76774874@infongd2926
    Precedence: bulk
    T To: billing@funksta.net
    Subject: User activation key for billing
    P Received: from phpmailer ([82.38.12.96])


    Can anyone help me stop this rejecting?

    I think it might be something in my acl list which is set out like:

    #!!# ACL that is used after the RCPT command
    check_recipient:
    # Exim 3 had no checking on -bs messages, so for compatibility
    # we accept if the source is local SMTP (i.e. not over TCP/IP).
    # We do this by testing for an empty sending host field.
    accept hosts = :

    #**#
    #**# RBL List Begin
    #**#
    #
    # Always accept mail to postmaster & abuse for any local domain
    #
    accept domains = +local_domains
    local_parts = postmaster:abuse
    #
    # Check sending hosts against DNS black lists.
    # Accept all locally generated messages
    # Reject message if address listed in blacklist.
    deny message = Message rejected because $sender_fullhost \
    is blacklisted at $dnslist_domain see $dnslist_text
    !hosts = +relay_hosts
    !authenticated = *
    dnslists = relays.ordb.org :\
    sbl-xbl.spamhaus.org :\
    hil.habeas.com :\
    list.dsbl.org :\
    bl.spamcop.net :\
    dnsbl.njabl.org :\
    proxies.blackholes.easynet.nl :\
    dynablock.easynet.nl :\
    spam.dnsbl.sorbs.net :\
    korea.services.net :\
    brazil.blackholes.us :\
    nigeria.blackholes.us :\
    argentina.blackholes.us :\
    malaysia.blackholes.us :\
    singapore.blackholes.us :\
    taiwan.blackholes.us
    # RBL Bypass Local Domain List
    !domains = +rbl_bypass
    # RBL Whitelist incoming hosts
    !hosts = +rbl_whitelist
    #**#
    #**# RBL List End
    #**#

    #

    drop hosts = /etc/exim_deny
    message = Connection denied after dictionary attack
    log_message = Connection denied from $sender_host_address after dictionary attack


    drop message = Appears to be a dictionary attack
    log_message = Dictionary attack (after $rcpt_fail_count failures)
    condition = ${if > {${eval:$rcpt_fail_count}}{3}{yes}{no}}
    condition = ${run{/etc/exim_deny.pl $sender_host_address }{yes}{no}}
    !verify = recipient

    # Accept bounces to lists even if callbacks or other checks would fail

    warn message = X-WhitelistedRCPT-nohdrfromcallback: Yes
    condition = \
    ${if and {{match{$local_part}{(.*)-bounces\+.*}} \
    {exists {/usr/local/cpanel/3rdparty/mailman/lists/${lc:$1}/config.pck}}} \
    {yes}{no}}

    accept condition = \
    ${if and {{match{$local_part}{(.*)-bounces\+.*}} \
    {exists {/usr/local/cpanel/3rdparty/mailman/lists/${lc:$1}/config.pck}}} \
    {yes}{no}}


    # Accept bounces to lists even if callbacks or other checks would fail
    warn message = X-WhitelistedRCPT-nohdrfromcallback: Yes
    condition = \
    ${if and {{match{$local_part}{(.*)-bounces\+.*}} \
    {exists {/usr/local/cpanel/3rdparty/mailman/lists/${lc:$1}_${lc:$domain}/config.pck}}} \
    {yes}{no}}

    accept condition = \
    ${if and {{match{$local_part}{(.*)-bounces\+.*}} \
    {exists {/usr/local/cpanel/3rdparty/mailman/lists/${lc:$1}_${lc:$domain}/config.pck}}} \
    {yes}{no}}

    #if it gets here it isn't mailman

    #sender verifications are required for all messages that are not sent to lists

    require verify = sender
    accept domains = +local_domains
    #**#
    #**# Reject Email to Invalid Recipient
    #**#
    endpass
    message = unknown user
    verify = recipient
    #**#


    #recipient verifications are required for all messages that are not sent to the local machine
    #this was done at multiple users requests

    message = "The recipient cannot be verified. Please check all recipients of this message to verify they are valid."
    verify = recipient

    accept domains = +relay_domains

    warn message = ${perl{popbeforesmtpwarn}{$sender_host_name}}
    hosts = +relay_hosts

    accept hosts = +relay_hosts

    drop dnslists = relays.ordb.org :\
    sbl-xbl.spamhaus.org :\
    hil.habeas.com :\
    list.dsbl.org :\
    bl.spamcop.net :\
    dnsbl.njabl.org :\
    proxies.blackholes.easynet.nl :\
    dynablock.easynet.nl :\
    spam.dnsbl.sorbs.net :\
    korea.services.net :\
    brazil.blackholes.us :\
    nigeria.blackholes.us :\
    argentina.blackholes.us :\
    malaysia.blackholes.us :\
    singapore.blackholes.us :\
    taiwan.blackholes.us

    message = your mail server $sender_host_address is in a black list \
    at $dnslist_domain ($dnslist_text)

    require verify = reverse_host_lookup
    message = your mail server IP address ($sender_host_address) has no reverse DNS PTR hostname

    drop hosts = /etc/exim_deny
    message = I don't think so!
    log_message = Connection denied from $sender_host_address after dictionary attack


    drop message = Appears to be a dictionary attack
    log_message = Dictionary attack (after $rcpt_fail_count failures)
    condition = ${if > {${eval:$rcpt_fail_count}}{3}{yes}{no}}
    condition = ${run{/etc/exim_deny.pl $sender_host_address }{yes}{no}}
    !verify = recipient

    # Accept bounces to lists even if callbacks or other checks would fail

    warn message = ${perl{popbeforesmtpwarn}{$sender_host_address}}
    condition = ${perl{checkrelayhost}{$sender_host_address}}
    accept condition = ${perl{checkrelayhost}{$sender_host_address}}

    accept hosts = +auth_relay_hosts
    endpass
    message = $sender_fullhost is currently not permitted to \
    relay through this server. Perhaps you \
    have not logged into the pop/imap server in the \
    last 30 minutes or do not have SMTP Authentication turned on in your email client.
    authenticated = *

    deny message = $sender_fullhost is currently not permitted to \
    relay through this server. Perhaps you \
    have not logged into the pop/imap server in the \
    last 30 minutes or do not have SMTP Authentication turned on in your email client.

    #!!# ACL that is used after the DATA command
    check_message:
    require verify = header_sender
    ##### clamav ACL, reject virus infected mails with proper error

    deny message = This message contains malformed MIME ($demime_reason).
    demime = *
    condition = ${if >{$demime_errorlevel}{2}{1}{0}}

    deny message = This message contains a virus or other harmful content \
    ($malware_name)
    demime = *
    malware = *

    deny message = Potentially executable content. If you meant to send this file \
    then please package it up as a zip file and resend it.
    demime = ade:adp:bas:bat:chm:cmd:com:cpl:crt:eml:exe:hlp:ht
    a:inf:ins:isp:jse:lnk:mdb:mde:msc:msi:mspcd:reg:
    scr:sct:shs:url:vbs:vbe:wsf:wsh:wsc

    # Add X-Scanned Header

    warn message = X-Antivirus-Scanner: Clean mail though you should still use an Antivirus

    ##### end clamav ACL
    accept
     
    #1 ukpro, Mar 14, 2005
    Last edited: Mar 14, 2005
Loading...

Share This Page