Re: [Exim] exim HELO ack

Top Page
Delete this message
Reply to this message
Author: Giuliano Gavazzi
Date:  
To: Jez Hancock, Exim Users Mailing List
Subject: Re: [Exim] exim HELO ack
At 13:50 +0100 2003/08/28, Jez Hancock wrote:
>On Thu, Aug 28, 2003 at 01:36:20PM +0100, Giuliano Gavazzi wrote:
>> At 15:26 -0400 2003/08/27, Greg A. Woods wrote:
>> >[ On Wednesday, August 27, 2003 at 12:18:16 (-0400), Wakko Warner wrote: ]
>> >> Subject: Re: [Exim] exim HELO ack
>> >>
>> >> If you check the helo string in the helo don't. Put it in the MAIL or
>> >> RCPT
>> >> acl.
>> >
>> >There's no reason to do that any more -- the mailers that ignored 5xx
>> >errors on HELO have effectively disappeared for all intents and purposes.
>>
>> only problem is that spammers use software which can ignore HELO/EHLO
>> errors, and last time I checked (IIRW) exim will accept the delivery
>> even after a failed HELO (at least for illegal chars).
>> If this is still true one must, also or only, reject at RCPT or DATA time.
>I don't know if this used to be true but doesn't appear to be the case
>any more:
>
>2003-08-28 03:59:32 rejected HELO from mail.cuno.com [12.40.254.66]:
>syntactically invalid argument(s): cuno_mail_usa.cuno.com
>
>this appears to be implemented in src/smtp_in.c:
>


no no. this reply from exim does not mean that the email will be rejected:

(fqdn faked..)

[ti:~] g% telnet pupu.humph.com 25
Trying x.y.z.t...
Connected to ....
Escape character is '^]'.
220 pupu.humph.com ESMTP Exim 4.14 Thu, 28 Aug 2003 18:17:23 +0100
helo test_no.domain
501 Syntactically invalid HELO argument(s)
mail from: xxxx at humph.com
250 OK
rcpt to: xxxxx at humph.com
550-YOUR MESSAGE HAS BEEN REJECTED AS YOU SCORED HIGH IN OUR ANTI-SPAM FILTER
550-YOU CAN EITHER TRY TO RESEND OR CONTACT US AT
550-http://pupu.humph.com/feedback.html
550-YOUR SERVER ADDRESS 62.10.73.87 IS BLACKLISTED AT dynablock.easynet.nl
550-Dynamic/Residential IP range listed by easynet.nl DynaBlock -
550 http://dynablock.easynet.nl/errors.html
quit
221 mailhost.humph.com closing connection
Connection closed by foreign host.

and there you see my point based RCPT ACL, but apart from that that
message would have been accepted even with an invalid HELO.

I have no idea what would happen if I used an HELO ACL.

Giuliano
--
H U M P H
    || |||
  software


Java & C++ Server/Client/Human Interface applications on MacOS - MacOS X
http://www.humph.com/