Re: [exim] ratelimit DB

Page principale
Supprimer ce message
Répondre à ce message
Auteur: Graeme Fowler
Date:  
À: exim-users
Sujet: Re: [exim] ratelimit DB
Hi

The answer to your question is in your debug output :)

> drop: condition test failed
> end of ACL "domeny_acl_smtp_connect": implicit DENY
> SMTP>> 550 Administrative prohibition


The "implicit DENY" part is the giveaway. Your ACL does not have an
"accept" clause; when an ACL is defined, by default, the action is
'deny' *unless* another action overrides it.

> domeny_acl_smtp_connect:
> drop
>         log_message = RATELIMIT BAD AUTH: $sender_rate / $sender_rate_period
>         message = Too many failed authentication attempts / Zbyt wiele nieudanych prob uwierzytelnienia
>         ratelimit = 5 / 4h / noupdate / badauth:$sender_host_address
>         delay = 5s


Add a newline, followed by "accept" after the "delay = 5s".

And yes, in case you were wondering, you could find this in the docs
here:

http://www.exim.org/exim-html-current/doc/html/spec_html/ch40.html#SECID200

At the end of that section, there is the line:

"At the end of each ACL there is an implicit unconditional deny."

Graeme