Hi,
I found out that there's a reject if the virus scanner tries to send
back (smtp-backdoor) mail to exim and our internet connection is broken,
this only happens (of course) only for our internal mails.
The following message appears in reject.log
SMTP protocol violation: synchronization error (input sent without
waiting for greeting): rejected connection from H=[127.0.0.1]
it behaves like it were a permanent error (5XX) ...
Any comments appreciated! Should I update do 4.4x?
Thanks in advance!
Michael
Gasperi Michael wrote:
> Hi,
>
> I have the following problem - yesterday our provider had a problem and
> we went offline - then these messages have been sent but they have never
> been delivered and if I do exim -bp I also cannot see them - any hints
> why this happend?
>
> 2004-08-24 06:27:37 DNS list lookup defer (probably timeout) for
> 14.0.168.192.bl.spamcop.net: assumed not in list
> 2004-08-24 06:27:37 1BzSuH-0001W3-Em <= sender1@???
> H=(XXXXXX) [XXX.XXX.XXX.XXX] P=esmtp S=49234
> 2004-08-24 06:27:37 DNS list lookup defer (probably timeout) for
> 14.0.168.192.bl.spamcop.net: assumed not in list
> 2004-08-24 06:27:37 1BzSuH-0001W3-Em => recipient@??? R=avmgw
> T=avmgw H=localhost [127.0.0.1]
> 2004-08-24 06:27:37 1BzSuH-0001W3-Em Completed
>
> 2004-08-24 08:00:02 DNS list lookup defer (probably timeout) for
> 136.0.168.192.bl.spamcop.net: assumed not in list
> 2004-08-24 08:00:03 1BzULi-0001rx-Ur <= sender2@???
> H=(XXXXXX) [XXX.XXX.XXX.XXX] P=smtp S=812
> id=NEBBKJICAMHICLLAGHMMGECDCLAA.sender2@???
> 2004-08-24 08:00:03 1BzULi-0001rx-Ur => recipient@??? R=avmgw
> T=avmgw H=localhost [127.0.0.1]
> 2004-08-24 08:00:03 1BzULi-0001rx-Ur Completed
>
> Our mail system works like this
>
> Exim -> Antivir Mailgate -> Exim -> a) Backup copy && b) delivery to
> recipient
>
> I assume I have somewhere a misconfiguration in exim.conf (file is
> attached).
>
> Exim version 4.30
>
> Thanks in advance!
>
> Michael
>
>
> ------------------------------------------------------------------------
>
> primary_hostname = XXX.inncrystal.com
> local_interfaces = 127.0.0.1.25 : 127.0.0.1.10025 : XXX.XXX.XXX.XXX.25 : XX.XXX.XXX.XXX.25
> domainlist local_domains = @:localhost : inncrystal.com
> domainlist relay_to_domains = inncrystal.com
> hostlist relay_from_hosts = 127.0.0.1 : XXX.XXX.XXX.XXX/16
> smtp_banner = $primary_hostname ESMTP\n\
> -------------------------------------------------------------\n\
> This system is solely for the use of authorized users for\n\
> official purposes for the domain inncrystal.com!\n\
> All activities are logged!\n\
> If monitoring reveals evidence of possible abuse or criminal\n\
> activity, system personell may provide the result of such to\n\
> appropiate officials.\n\
> ------------------------------------------------------------
> acl_smtp_rcpt = acl_check_rcpt
> acl_smtp_data = acl_check_content
> qualify_domain = inncrystal.com
> never_users = root
> host_lookup = *
> rfc1413_hosts = *
> rfc1413_query_timeout = 30s
> bounce_sender_authentication = postmaster@???
> bounce_return_message = true
> bounce_return_body = true
> bounce_return_size_limit = 100K
> errors_reply_to = postmaster@???
> ignore_bounce_errors_after = 2d
> timeout_frozen_after = 7d
> log_selector = -retry_defer
> system_filter = /etc/exim/sysfilter
> system_filter_user = mail
> system_filter_group = mail
> system_filter_directory_transport = mail
> begin acl
> acl_check_rcpt:
> accept hosts = :
> deny domains = +local_domains
> local_parts = ^[.] : ^.*[@%!/|]
> deny domains = !+local_domains
> local_parts = ^[./|] : ^.*[@%!] : ^.*/\\.\\./
> accept local_parts = postmaster
> domains = +local_domains
> require verify = sender
> deny message = rejected because $sender_host_address is in a black list at $dnslist_domain\n$dnslist_text
> dnslists = bl.spamcop.net
> accept domains = +local_domains
> endpass
> verify = recipient
> accept domains = +relay_to_domains
> endpass
> verify = recipient
> accept hosts = +relay_from_hosts
> accept authenticated = *
> deny message = relay not permitted
>
> acl_check_content:
>
> deny message = This message contains a MIME error ($demime_reason)
> demime = *
> condition = ${if >{$demime_errorlevel}{2}{1}{0}}
> deny message = This message contains an unwanted file extension ($found_extension)
> demime = asd:bat:chm:com:cmd:dll:exe:hlp:hta:jse:lnk:msi:ocx:pif:reg:\
> scr:shm:shb:shs:vbe:vbs:vbx:vxd::wmf:wsf:wsh
> accept
>
> begin routers
> avmgw:
> debug_print = "R: Antivir for $local_part@$domain"
> driver = manualroute
> transport = avmgw
> route_list = "* localhost byname"
> self = send
> condition = ${if !eq {$interface_port}{10025}{1}{0}}
>
> dnslookup:
> driver = dnslookup
> domains = ! +local_domains
> transport = remote_smtp
> ignore_target_hosts = 0.0.0.0 : 127.0.0.0/8
> no_more
>
> system_aliases:
> driver = redirect
> allow_fail
> allow_defer
> data = ${lookup{$local_part}lsearch{/etc/exim/aliases}}
> file_transport = address_file
> pipe_transport = address_pipe
>
> userforward:
> driver = redirect
> check_local_user
> file = $home/.forward
> no_verify
> no_expn
> check_ancestor
> allow_filter
> file_transport = address_file
> pipe_transport = address_pipe
> reply_transport = address_reply
>
> backup_copy:
> driver = accept
> transport = backup_msg
> unseen
>
> localuser:
> driver = accept
> check_local_user
> transport = local_delivery
> cannot_route_message = Unknown user
>
> begin transports
> remote_smtp:
> driver = smtp
>
> avmgw:
> driver = smtp
> port = 10024
> allow_localhost
>
> backup_msg:
> driver = appendfile
> group = mail
> user = mail
> mode = 0660
> envelope_to_add = true
> directory = /home/mailbackup/$local_part
> maildir_format = true
> create_directory = true
> check_string = ""
> escape_string = ""
>
> local_delivery:
> driver = appendfile
> group = mail
> mode = 0660
> maildir_format = true
> directory = /home/${local_part}/Maildir
> create_directory = true
> check_string = ""
> escape_string = ""
>
> address_pipe:
> driver = pipe
> return_output
>
> address_file:
> driver = appendfile
> delivery_date_add
> envelope_to_add
> return_path_add
>
> address_reply:
> driver = autoreply
>
> begin retry
>
> # Address or Domain Error Retries
> # ----------------- ----- -------
>
> * * F,2h,15m; G,16h,1h,1.5; F,4d,6h
>
> begin rewrite
>
> begin authenticators
>
> # End of Exim configuration file