On 12/29/05, Philip Hazel <ph10@???> wrote:
>
> Odd. I'll investigate that one. It should be giving the IP address (and
> from localhost it should be 127.0.0.1).
>
Thank you sir! See the rest of this msg for more info...
Do you need anything from me that hasn't already been provided; the
configure file, etc? I'm running exim on Solaris 9 SPARC platforms.
>
> Or, Exim looked up an incoming IP address in the rDNS, and was given
> that name. It double-checks by looking it up to see if it gets the IP
> address it started from. However 81.161.250.78 seems perfectly OK and
> does not use that name:
>
> $ host 81.161.250.78
> 78.250.161.81.in-addr.arpa domain name pointer FDIBA10100-2.tu-sofia.bg.
> $ host FDIBA10100-2.tu-sofia.bg
> FDIBA10100-2.tu-sofia.bg has address 81.161.250.78
> $
>
> > Using IPs in the config as Giuliano suggested is just a workaround. The
> > real solution is for you to fix your DNS problem.
>
> It does seem to be a local DNS problem.
>
I'm not sure exactly what you mean here. The DNS (forward & reverse)
for this sample host/IP (81.161.250.78) resolves properly from the
host OS, but not from exim, as shown in the logs. The DNS servers
used by my exim servers are supplied by TimeWarner Telecom and have
thus far proven very reliable. I'm sure I've just misunderstood your
meaning.
Wait a minute...
I looked more closely at the logs for this particular entry, and, as
Marc suggested earlier, there might be more info to be gleaned from a
more complete snapshot of the log:
...
2005-12-28 16:51:01 1ErjCH-0005Us-1J => return@???
R=dnslookup T=remote_smtp H=tvbargains001.com [216.22.61.98]
2005-12-28 16:51:01 1ErjCH-0005Us-1J Completed
2005-12-28 16:51:07 no IP address found for host
smtp05.dc2.safesecureweb.com (during SMTP connection from NULL)
2005-12-28 16:51:08 no IP address found for host
smtp05.dc2.safesecureweb.com (during SMTP connection from
(81.161.250.78) [81.161.250.78])
2005-12-28 16:51:08 H=(81.161.250.78) [81.161.250.78]
F=<xddukiakwlat@???> rejected RCPT
<asqctqzmrewfgafaije@???>: Unrestricted relaying not
permitted
2005-12-28 16:51:08 H=(81.161.250.78) [81.161.250.78]
F=<xddukiakwlat@???> rejected RCPT <aszewska@???>:
Unrestricted relaying not permitted
2005-12-28 16:51:08 H=(81.161.250.78) [81.161.250.78]
F=<xddukiakwlat@???> rejected RCPT
<aszhzrsxddvpedsvioy@???>: Unrestricted relaying not
permitted
2005-12-28 16:51:08 H=(81.161.250.78) [81.161.250.78]
F=<xddukiakwlat@???> rejected RCPT
<atcqedrwcsmfqtdndda@???>: Unrestricted relaying not
permitted
...
The connection attempts from this host (81.161.250.78) are rejected
subsequent to logging the "no IP address found" entry. The
"Unrestricted relaying not permitted" message is what I respond with
when I detect an attempt to use our server as an open relay.
The log entries I previously posted were just a 'grep' for
"smtp05.dc2.safesecureweb.com" and this eliminated any entries before
or after that specific message. :(
Does this additional info help clarify what might be happening here?
Thanks again!
-Bill
