RE: [Exim] Bad Authentication ACL, used for relay - 4.20

Top Page
Delete this message
Reply to this message
Author: Chris Huff
Date:  
To: Wakko Warner
CC: exim-users
Subject: RE: [Exim] Bad Authentication ACL, used for relay - 4.20
yes, my exim.passwd is in
user:pass
format.
Ill try out the condition change you pointed out.

2003-09-10 00:29:10 19wwbN-0006Nb-Aq <= bask@??? H=(ibis) [218.70.137.131] P=asmtp A=auth_login:webmaster S=822
2003-09-10 00:29:12 19wlzb-0003RX-Qn => suite508@??? R=dnslookup T=remote_smtp H=mx2.hotmail.com [65.54.252.230]*
2003-09-10 00:29:12 19wlzb-0003RX-Qn Completed
2003-09-10 00:29:12 19wwbN-0006Nb-Aq => basket_33@??? R=dnslookup T=remote_smtp H=mx4.hotmail.com [65.54.253.230]
2003-09-10 00:29:12 19wwbN-0006Nb-Aq Completed

I dont have a webmaster user setup.


Thanks very much!
--CH


-----Original Message-----
From: Wakko Warner [mailto:wakko@animx.eu.org]
Sent: Thursday, September 11, 2003 7:43 AM
To: Chris Huff
Cc: exim-users@???
Subject: Re: [Exim] Bad Authentication ACL, used for relay - 4.20


> today i doscovered im being used as a relay for about 12 hours. This is the first time this has happened. I looked on the list for an answer and could not find one. Can someone please take a looka t my file and let me know whats wrong?


Log sample?

> hostlist relay_hosts = DMZ1:DMZ2:OFFICE:COLO:CR:JOESOHO


What's this? You might want to consider making this a dbm like the other
lists.

> hostlist auth_relay_hosts = *


You're allowing everyone to relay if authenticated. (FYI)

> check_recipient:


Looks ok.

> check_message:


irrelevent

> ######################################################################
> #                   AUTHENTICATION CONFIGURATION                     #
> ######################################################################

>
> begin authenticators
>
> auth_login:
> driver = plaintext
> public_name = LOGIN
> server_condition = "${if eq {${lookup{$1}lsearch{/usr/local/exim4/exim.passwd}{$value}}} {$2} {yes} {no}}"

whoah. you are an open relay with this
simple change to:
server_condition = "${if eq {${lookup{$1}lsearch{/usr/local/exim4/exim.passwd}{$value}fail}} {$2} {yes} {no}}"
what does exim.passwd look like? user: pass
or something different?

> server_set_id = $1
> server_prompts = "Username:: : Password::"
>
> #####################################33
>
> Im currently trying to fix it myself but this is my server at work and I have to get it running well very soon.


Please wrap lines at 76char.

--
Lab tests show that use of micro$oft causes cancer in lab animals