Re: [exim] EHLO loop

Pàgina inicial
Delete this message
Reply to this message
Autor: Jakob Hirsch
Data:  
A: Christian Gregoire
CC: exim-users
Assumptes nous: [exim] Re : EHLO loop
Assumpte: Re: [exim] EHLO loop
Christian Gregoire, 2010-03-19 11:26:

> One of my clients' MTA is going mad from time to time, issuing 'EHLO
> <name>' command in a never-ending loop. Exim politely answers with
> the SMTP banner and the extensions available.
>
> Is there an option equivalent to smtp_accept_max_per_connection to
> limit the number of EHLO/HELO commands in a single SMTP connection ?


No, but as with most things, you can build that yourself. Put something
like that in your acl_check_helo:

deny
set acl_c_helo_count = ${eval10:0$acl_c_helo_count+1}
condition = ${if > {$acl_c_helo_count}{2}}
message = Too many HELO/EHLOs

Note that this allows 3 HELOs and you should probably not increase it,
as clients will re-issue a HELO after STARTTLS and the counter is not reset.
Feel free to limit this to your internal network with "hosts =
so.me.net.work/mask", slow down the client with "sleep" or use "drop"
instead of "deny".