*REQUIRE* SMTP auth?

Not for sure on this but I believe you can shutdown authrelayd and this will stop the pop before smtp and should require authenication before smtp will accept mail

Chirpy will be online later tonight and he should be able to verify this or supply another way to handle it

 

Yup. You need to disable both check boxes in WHM > Service Manager > for antirelayd and then check that antirelayd is stopped. If not, just restart exim.

 

After following Chirpy's suggestion, I would also check (and clear out) any values in /etc/relayhosts and /etc/relayhostsusers which are updated when POP-before-SMTP is active.

 

Glad ya got it

Have a good weekend

 

Jonathan,

I experience same situation, i.e. SMTP does not seem to require authentication from e-mail client while relaying. I cleared 2 boxes in WHM > Service Manager > for antirelayd and also cleared files /etc/relayhosts and /etc/relayhostsusers of old entries. Restarted exim, but still same problem that SMTP does not require authentication from e-mail client. Any suggestions?

 

same probelm I restart exim trough WHM:
Waiting for exim to restart.... . . . . . . . . . . finished.

exim status

mailnull 23076 0.0 0.2 7900 5452 ? S 15:01 0:00 eximstats
mailnull 4057 0.0 0.0 7320 1124 ? Ss 21:23 0:00 /usr/sbin/exim -bd -q60m
mailnull 4065 0.0 0.0 7320 1048 ? Ss 21:23 0:00 /usr/sbin/exim -tls-on-connect -bd -oX 465
mailnull 4143 0.0 0.1 10292 2296 ? S 21:24 0:00 /usr/sbin/exim -odi -Mc 1GmFgP-00014U-WF
antirelayd is disabled

Service: [exim] has been disabled by the sys admin

but nothing change.

 

did you restart Exim to make sure the antirelayd isn't running ??

Mickalo

 

I've ticked the boxes, emptied /etc/relayhostsusers and /etc/relayhosts, and restarted Exim. Authentication is still not required on my SMTP.

What can be done?


Thanks,

Andrew

 

On my system there is an empty file called antirelayddisable in the /etc directory. Does this exist on your system? If not ...

1) Create the file: touch /etc/antirelayddisable
2) Restart Exim via /scripts/restartsrv_exim
3) After the restart, empty /etc/relayhostsusers and /etc/relayhosts.
4) Test

Hope this helps.

 

Thank you all for these steps. I am, like Andrew, still suffering from an open SMTP server. I followed all suggestions on this thread, including disabling the antirelay process and cleaning out the /etc/relayhosts* files. Exim has been restarted this way and that, and I have confirmed that antirelay is not running.

Still, I can easily send out email through the server without any authentication. I assume this is because the POP-before-SMTP conditions have been met, but why is that still in effect after I've cleared everything out and restarted? Any ideas on how to really require SMTP authentication?

 

Hello,

I'm suffering from this same problem and can not find any answers. I have antirelayd off in WHM, no instances of it running. I have cleared both /etc/relayhostsusers and /etc/relayhosts as well as forced eximup...

I am at a loss and was wondering if anyone might have any further ideas/suggestions/help.

Thanks!

 

hey!

If anyone out there is following I think I have figured out some of my problems.. maybe..

http://www.exim.org/mail-archives/exim-users/Week-of-Mon-20040419/msg00285.html

I have not been able to get this thing going as of yet... will update on any developments.

 

doesn't anyone know how to prevent the fact that anyone can use your server's SMTP to potentially send spam? Getting solid information about Exim is almost possible.

 

What makes you think that anyone can use your exim configuration to send spam? The default cPanel configuration of it certainly doesn't. There's extensive documentation for exim over at www.exim.org - more than I've seen for any MTA.