[Exim] Denying a particular HELO

Top Page
Delete this message
Reply to this message
Author: Jeff Bonner
Date:  
To: exim-users
Subject: [Exim] Denying a particular HELO
I have a two-part question about Exim:

The first part is not specific to the mailer, but I am hopefully not
alone in having seen this in my logs here:

2003-02-17 03:08:34 verify failed for SMTP recipient 20021022122914.
ga32459@??? from <checker@???> H=(cyberproxy.
com) [202.88.132.23]

2003-02-18 21:11:10 refused relay (host) to <200210221336.
g9mdawd12514@???> from <checker@???>
H=200-158-149-250.dsl.telesp.net.br (cyberproxy.com) [200.158.149.250]

2003-02-18 21:11:56 unexpected disconnection while reading SMTP
command from (cyberproxy.com) [218.22.143.178]

The above is just a sampling... these messages arrive in droves, and
I informally counted more than 36 in the last few days.

They are also a variety of different events; tonight they're trying
to relay, it seems; a few days ago, it was verifying SMTP recipients
here. But the common thread is the "cyberproxy.com".

Naturally, I became curious and checked up on the domain by going
to http://www.cyberproxy.com but it does not appear to be any kind
of public tool. In fact, I am not really sure what's going on.

Next, I wrote to various contact names listed on that website, and
in their DNS records -- not one of whom bothered to respond (indeed
some of my mail was even bounced as being spam).

Does anyone know where these originate from? They appear to be
individuals using some sort of client, and not the actual site
cyberproxy.com itself. A search on Google turned up absolutely
nothing useful.

The second part of my question is this: how would I program Exim
to completely and unabashedly ignore these requests, since they are
unsolicited and annoying?

Any help in putting an end to this foolishness will be greatly
appreciated.

Jeff Bonner, NREMT-B
Royal Oak, Michigan USA