Re: [exim] Exim + SRS

Top Page
Delete this message
Reply to this message
Author: Miles Wilton
Date:  
To: Beber
CC: exim-users
Subject: Re: [exim] Exim + SRS
Hi,

It may be that you need to add an srs_condition line. If the email is
being declined by the router after the SRS transform has taken place, it
won't be undone.

As far as the log is concerned, the SRS=<a@???> tells you that an SRS
transform has been performed and should only appear on forwarded email.
Can you check that this appears on the bounced mail?

Your SRS secret is yours and does not need to be registered. The only
reason for it is so you can verify SRS addresses actually came from your
server(s). If a hacker discovers it they could use your server to relay
spam. Keep it secret!

Hope that helps,

Miles.


Beber wrote:
> Hi,
>
> I've some trouble using exim + SPF/SRS.
>
> SPF Check are ok with this config:
>
> acl_check_rcpt:
>
> ...
>
>   warn  message         = :after_received:$spf_received
>         !hosts          = localhost : lechuck.meleeweb.net
>         spf             = pass : softfail : none : neutral #: err_perm : err_temp : fail

>
>   deny  message         = SPF: $sender_host_address is not allowed to send mail from $sender_address_domain
>         log_message     = SPF Check failed
>         spf             = fail

>
> Appart that the Received-SPF is sometimes not set, and so I get a
> Header named X-ACL-Warn which is empty.
>
> I getted some trouble while boucing a mail to a friends and so I get a
> deny because SPF Check Failed.
>
> So I read about on google and install/configure SRS part in exim like :
>
> hide srs_config = *mysecret*:60:6
>
> ...
>
> begin routers
>
> ...
>
> userforward:
> driver = redirect
> srs = forward
> check_local_user
> local_part_suffix = +*
> local_part_suffix_optional
> file = $home/.forward
> ## allow_filter
> no_verify
> no_expn
> check_ancestor
> file_transport = address_file
> pipe_transport = address_pipe
> reply_transport = address_reply
>
> srs_router:
> driver = redirect
> srs = reverseandforward
> data = ${srs_recipient}
>
> And it still failed while bouncing the mail with still SPF Check failed.
>
> Did I miss something ?
>
> Also : All mailed received have now a modified Return-Path like :
> Return-path: <SRS0=Z8E7Xu=EB=dotsrc.org=sylpheed-claws-users-return-2924-beber=meleeweb.net@???>
>
> And exim log look strange since :
> 2006-10-20 19:01:00 1Gaxju-0004kN-16 <= enlightenment-devel-bounces@??? H=lists-outbound.sourceforge.net [66.35.250.225] P=esmtp S=4097 id=aa88ec7c0610200959s7831c4f0ia45b51d9683ed53e@???
> 2006-10-20 19:01:00 1Gaxju-0004kN-16 => beber <beber@???> SRS=<SRS0=rnTqHc=EB=lists.sourceforge.net=enlightenment-devel-bounces@???> R=localuser T=ham_delivery
>
> Also, I there some requierement for the SRS Key ? Need to registrer it
> somewhere ? in DNS ? anywhere ?
>
> Thanks
>