Re: [exim] help me close an open relay

Page principale
Supprimer ce message
Répondre à ce message
Auteur: Zbigniew Szalbot
Date:  
À: exim-users
Sujet: Re: [exim] help me close an open relay
Hello again,

Nigel Metheringham wrote:
> Its really hard to diagnose this correctly from outside. However I
> would suggest you look at the ACL on rcpt - whatever acl_smtp_rcpt is
> set to - which is most likely to make sure you are not special casing
> the null sender (ie sender = )


I did a check with exim -bh

>>> using ACL "acl_check_rcpt"
>>> processing "accept"
>>> check hosts = :
>>> host in ":"? no (end of list)
>>> accept: condition test failed
>>> processing "accept"
>>> check sender_domains = +whitelisted
>>>  in "lsearch;/usr/local/etc/exim/whitelist.tld"? no (end of list)
>>>  in "+whitelisted"? no (end of list)
>>> accept: condition test failed
>>> processing "accept"
>>> check hosts = +relay_from_hosts
>>> host in "+relay_from_hosts"? no (end of list)
>>> accept: condition test failed
>>> processing "accept"
>>> check senders = :
>>>  in ":"? yes (matched "")
>>> check condition = ${if >{$recipients_count}{1}{0}{1}}
>>>                 = 1
>>> accept: condition test succeeded

250 Accepted

So I think I know where the problem originates - in the
vexim-acl-check-rcpt.conf.

This is the content of the file:

accept    hosts          = +relay_from_hosts


accept
       senders       = :
       condition     = ${if >{$recipients_count}{1}{0}{1}}


   deny  dnslists        = zen.spamhouse.org
         !authenticated  = *
         !hosts          = +relay_from_hosts
         condition       = ${if
match{${mask:$sender_host_address/0}}{${mask:::0/0}}{no}{yes}}
         message         = DNSBL: Your mail host $sender_host_address is
listed at $dnslist_domain\n$dnslist_text


I am using someone else's configuration here so will appreciate your
comments as to what to change. Thank you very much in advance! I just want
to deny messages if someone is listed in spamhouse and does not
authenticate or is not on the relay from list.

--
Zbigniew Szalbot