Autor: Tommy Butler Data: A: exim-users CC: John W. Baxter Assumpte: Re: [exim] Re: How can I tell if my server is getting bombardedwith
spam?
John W. Baxter wrote:
[snip] > Yes, it's an unrecognized command.
>
> It needs to be
> RCPT TO:<nobody@???>
>
> (Exim allows a space after the colon...actually Exim also allows omitting
> the < and >. When I'm testing something like relay, I like to follow the
> RFC exactly.)
So is this helpful? I don't want to be an open relay anymore :(
**** SMTP testing session as if from host 168.61.4.13
**** but without any ident (RFC 1413) callback.
**** This is not for real!
>>> host in host_lookup? yes (matched "*")
>>> looking up host name for 168.61.4.13
>>> IP address lookup yielded cygnus.mail-abuse.org
>>> gethostbyname2 looked up these IP addresses:
>>> name=cygnus.mail-abuse.org address=168.61.4.13
>>> checking addresses for cygnus.mail-abuse.org
>>> 168.61.4.13 OK
>>> host in host_reject_connection? no (option unset)
>>> host in sender_unqualified_hosts? no (option unset)
>>> host in recipient_unqualified_hosts? no (option unset)
>>> host in helo_verify_hosts? no (option unset)
>>> host in helo_try_verify_hosts? no (option unset)
>>> host in helo_accept_junk_hosts? no (option unset) 220 noot.cityairlines.net ESMTP Exim 4.34 Wed, 15 Dec 2004 17:23:32 -0600
MAIL FROM: <spamtest@localhost>
250 OK
RCPT TO:<nobody@???> >>> using ACL "acl_check_rcpt"
>>> processing "accept"
>>> check hosts = :
>>> host in ":"? no (end of list)
>>> accept: condition test failed
>>> processing "deny"
>>> check domains = +local_domains
>>> mail-abuse.org in "@:cityairlines.net:localhost:cityairlines.net:casino-airlines.com:casinoairlines.net"?
no (end of list) >>> mail-abuse.org in "+local_domains"? no (end of list)
>>> deny: condition test failed
>>> processing "deny"
>>> check domains = !+local_domains
>>> mail-abuse.org in "!+local_domains"? yes (end of list)
>>> check local_parts = ^[./|] : ^.*[@%!] : ^.*/\\.\\./
>>> nobody in "^[./|] : ^.*[@%!] : ^.*/\.\./"? no (end of list)
>>> deny: condition test failed
>>> processing "accept"
>>> check local_parts = postmaster
>>> nobody in "postmaster"? no (end of list)
>>> accept: condition test failed
>>> processing "deny"
>>> check !acl = acl_whitelist_local_deny
>>> using ACL "acl_whitelist_local_deny"
>>> processing "accept"
>>> check hosts = ${if exists{/etc/exim4/local_host_whitelist}{/etc/exim4/local_host_whitelist}{}} >>> host in ""? no (end of list)
>>> accept: condition test failed
>>> processing "accept"
>>> check senders = ${if exists{/etc/exim4/local_sender_whitelist}{/etc/exim4/local_sender_whitelist}{}} >>> spamtest@localhost in ""? no (end of list)
>>> accept: condition test failed
>>> end of ACL "acl_whitelist_local_deny": implicit DENY
>>> check senders = ${if exists{/etc/exim4/local_sender_blacklist}{/etc/exim4/local_sender_blacklist}{}} >>> spamtest@localhost in ""? no (end of list)
>>> deny: condition test failed
>>> processing "deny"
>>> check !acl = acl_whitelist_local_deny
>>> using ACL "acl_whitelist_local_deny"
>>> processing "accept"
>>> check hosts = ${if exists{/etc/exim4/local_host_whitelist}{/etc/exim4/local_host_whitelist}{}} >>> host in ""? no (end of list)
>>> accept: condition test failed
>>> processing "accept"
>>> check senders = ${if exists{/etc/exim4/local_sender_whitelist}{/etc/exim4/local_sender_whitelist}{}} >>> spamtest@localhost in ""? no (end of list)
>>> accept: condition test failed
>>> end of ACL "acl_whitelist_local_deny": implicit DENY
>>> check hosts = ${if exists{/etc/exim4/local_host_blacklist}{/etc/exim4/local_host_blacklist}{}} >>> host in ""? no (end of list)
>>> deny: condition test failed
>>> processing "accept"
>>> check domains = +local_domains
>>> mail-abuse.org in "+local_domains"? no (end of list)
>>> accept: condition test failed
>>> processing "accept"
>>> check domains = +relay_to_domains
>>> mail-abuse.org in "*"? yes (matched "*")
>>> mail-abuse.org in "+relay_to_domains"? yes (matched "+relay_to_domains")
>>> check verify = recipient
>>> >>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>
>>> routing nobody@???
>>> expansion of "${if exists{/etc/exim4/hubbed_hosts}{partial-lsearch;/etc/exim4/hubbed_hosts}fail}"
forced failure: assume not in this list >>> mail-abuse.org in "! +local_domains : +relay_to_domains"? yes (matched "+relay_to_domains" - cached) >>> R: dnslookup_relay_to_domains for nobody@???
>>> calling dnslookup_relay_to_domains router
>>> routed by dnslookup_relay_to_domains router
>>> ----------- end verify ------------
>>> accept: condition test succeeded 250 Accepted
