Greetings,
Over the past few days I've been keeping a close eye on the mailq's and have
seen a much larger than normal amount of deferred emails left stuck in the
queue. Bagel and NetSky surely have something to do with it, but I am
seeing some odd errors that I did not see before. Mostly I am seeing:
1. "454 5.7.3 Client was not authenticated"
2. Issues with hostname resolution
3. Connection Refused
The "454" error started as early as Friday of last week. Prior to that, I
was passing traffic to that domain. Same goes for the connection refused
and hostname resolution, but I suspect those are a result of the flood of
emails causing DNS lookup timeouts or the admin has shut his network off
from the rest of us to prevent infections.
The most suspicious thing is that I have deferred messages destined for
addresses on my local network. I can send messages from my server to those
addresses using `mail -s ...` and it is received in seconds. List messages
passed to Exim remain deferred even following a forced flush.
Redhat 7.3
Exim 3.35
Mailman 2.0.13
Brian
EXIM.CONF (specific host info excluded)
---------------------------------------
log_level = 6
log_smtp_connections = true
primary_hostname = XXXX.XXXX.XXX
forbid_domain_literals
never_users = root
host_accept_relay = localhost
receiver_verify
sender_verify
rbl_domains = blackholes.mail-abuse.org:dialups.mail-abuse.org
ignore_errmsg_errors = yes
timeout_frozen_after = 4d
MAILMAN_HOME=/XXX/XXXXXXXX/${lookup{$local_part}lsearch{/etc/exim/grp.conf}{
$value}fail}
MAILMAN_WRAP=MAILMAN_HOME/mail/wrapper
MAILMAN_UID=mailman
MAILMAN_GID=mailman
remote_smtp:
driver = smtp
hosts_avoid_tls = *
connect_timeout = 1m
local_delivery:
driver = appendfile
file = /var/mail/$local_part
delivery_date_add
envelope_to_add
return_path_add
group = mail
mode = 0660
address_pipe:
driver = pipe
user = mail
return_output
address_file:
driver = appendfile
delivery_date_add
envelope_to_add
return_path_add
address_reply:
driver = autoreply
list_transport:
driver = pipe
command = MAILMAN_WRAP post ${lc:$local_part}
current_directory = MAILMAN_HOME
home_directory = MAILMAN_HOME
user = MAILMAN_UID
group = MAILMAN_GID
list_request_transport:
driver = pipe
command = MAILMAN_WRAP mailcmd ${lc:$local_part}
current_directory = MAILMAN_HOME
home_directory = MAILMAN_HOME
user = MAILMAN_UID
group = MAILMAN_GID
list_admin_transport:
driver = pipe
command = MAILMAN_WRAP mailowner ${lc:$local_part}
current_directory = MAILMAN_HOME
home_directory = MAILMAN_HOME
user = MAILMAN_UID
group = MAILMAN_GID
system_aliases:
driver = aliasfile
file = /etc/aliases
search_type = lsearch
file_transport = address_file
pipe_transport = address_pipe
userforward:
driver = forwardfile
file = .forward
no_verify
no_expn
check_ancestor
file_transport = address_file
pipe_transport = address_pipe
reply_transport = address_reply
localuser:
driver = localuser
transport = local_delivery
list_owner_director:
driver = smartuser
require_files = MAILMAN_HOME/lists/${lc:$local_part}/config.db
suffix = "-owner"
new_address = "${lc:$local_part}-admin@${domain}"
owner_list_director:
driver = smartuser
require_files = MAILMAN_HOME/lists/${lc:$local_part}/config.db
prefix = "owner-"
new_address = "${lc:$local_part}-admin@${domain}"
list_admin_director:
driver = smartuser
suffix = -admin
require_files = MAILMAN_HOME/lists/${lc:$local_part}/config.db
transport = list_admin_transport
list_request_director:
driver = smartuser
suffix = -request
require_files = MAILMAN_HOME/lists/${lc:$local_part}/config.db
transport = list_request_transport
list_director:
driver = smartuser
require_files = MAILMAN_HOME/lists/${lc:$local_part}/config.db
transport = list_transport
lookuphost:
driver = lookuphost
transport = remote_smtp
ignore_target_hosts = 127.0.0.0/8
* * F,2h,15m; G,16h,1h,1.5; F,4d,8h
