[exim-dev] [Bug 855] Sender-callout-Verification should use …

Top Page
Delete this message
Reply to this message
Author: Graeme Fowler
Date:  
To: exim-dev
Subject: [exim-dev] [Bug 855] Sender-callout-Verification should use VRFY not RCPT TO
------- You are receiving this mail because: -------
You are on the CC list for the bug.

http://bugs.exim.org/show_bug.cgi?id=855




--- Comment #10 from Graeme Fowler <graeme@???> 2009-06-21 15:50:03 ---
On Sun, 2009-06-21 at 15:15 +0100, bugzilla@??? wrote:
> I use Sendmail for all but one of my servers. That server has CPanel and EXIM.
>
> The CPanel config has "sender callout verification" as a checkmark option.
>
> The CPanel technician indicated that Exim would use VRFY


Aha, it all becomes clear. This seems to be a fundamental
misunderstanding and perhaps documentation "bug" on the part of cPanel.
They are clearly making the option available without, perhaps, fully
understanding how the option works.

> There was _nothing_ from CPanel to indicate that there was any 'mis-use'.
> There was _nothing_ from Exim to indicate that there was any 'mis-use'.


I would not expect there to be. cPanel is a "self-contained" hosting
platform which makes very heavy customisations to a lot of packages
(Apache httpd, Exim, PHP and so on) but rarely goes upstream to discuss
things (in my experience).

> With no warnings from Exim, and no warnings from CPanel, and no indication that
> enabling it was 'mis-use', I think placing blame on new users is a bit odd.


That could have been avoided if you'd mentioned cPanel in your initial
report. I can guarantee, absolutely, that they won't be providing the
default config file - their raison d'etre is to provide a buffer between
you, the user, and the underlying components so you can manage your
hosting system via a web interface.

Unfortunately we spend a lot of time answering questions regarding
various Exim switches and options where it becomes very obvious that the
person raising the question has not read the docs (which is poor form).
This is similar to the "don't press this button" psychological
experiment; in your case you aren't really to blame, as such, because
you couldn't see the button you were pressing until it was too late. You
then lifted the covers (cPanel) to see what you were leaning on (the
Exim config)...

I'll quit with the poor analogy now :)

> I was trying to use something that looked like it would be a useful tool, with
> no indication that the "bridge is out ahead".


I think you can take it back to the cPanel maintainers, in that case.
They will need to improve their docs. Feel free to pass on the proposed
warning I posted earlier.

Graeme


--
Configure bugmail: http://bugs.exim.org/userprefs.cgi?tab=email