Hi Dave
Thanks for the background info on how to post on this email list.
I didn't notice the
http://wiki.exim.org/DontObfuscate
Yes you can probably get some info by looking at it directly: eg: exim
-bh 203.132.28.33 *the misconfigured server in question
In addition the mis-configured server is version 4.69.
exim -bV
Exim version 4.69 #1 built 10-Dec-2010 14:00:42
Thanks for your opinion Jim. Long story short: basically i have to
use a full MTA because the MTA available to me is on another machine
and being replaced.
Hope this helps:
#------------------------------------------------------------------------------------------------------------------------------------------------------------
exim -bP
no_accept_8bitmime
acl_not_smtp =
acl_not_smtp_mime =
acl_not_smtp_start =
acl_smtp_auth =
acl_smtp_connect =
acl_smtp_data = acl_check_data
acl_smtp_etrn =
acl_smtp_expn =
acl_smtp_helo =
acl_smtp_mail = acl_check_mail
acl_smtp_mailauth =
acl_smtp_mime =
acl_smtp_notquit =
acl_smtp_predata =
acl_smtp_quit =
acl_smtp_rcpt = acl_check_rcpt
acl_smtp_starttls =
acl_smtp_vrfy =
admin_groups =
no_allow_domain_literals
no_allow_mx_to_ip
no_allow_utf8_domains
auth_advertise_hosts = *
auto_thaw = 0s
av_scanner = clamd:/var/run/clamav/clamd.ctl
bi_command =
bounce_message_file =
bounce_message_text =
bounce_return_body
bounce_return_message
bounce_return_size_limit = 100K
bounce_sender_authentication =
callout_domain_negative_expire = 3h
callout_domain_positive_expire = 1w
callout_negative_expire = 2h
callout_positive_expire = 1d
callout_random_local_part = $primary_hostname-$tod_epoch-testing
check_log_inodes = 0
check_log_space = 0
check_rfc2047_length
check_spool_inodes = 0
check_spool_space = 0
daemon_smtp_ports = smtp
daemon_startup_retries = 9
daemon_startup_sleep = 30s
delay_warning = 1d
delay_warning_condition = ${if or {{
!eq{$h_list-id:$h_list-post:$h_list-subscribe:}{} }{
match{$h_precedence:}{(?i)bulk|list|junk} }{
match{$h_auto-submitted:}{(?i)auto-generated|auto-replied} }}
{no}{yes}}
no_deliver_drop_privilege
deliver_queue_load_max =
delivery_date_remove
no_disable_ipv6
dns_again_means_nonexist =
dns_check_names_pattern = (?i)^(?>(?(1)\.|())[^\W_](?>[a-z0-9/-]*[^\W_])?)+$
dns_csa_search_limit = 5
dns_csa_use_reverse
dns_ipv4_lookup =
dns_retrans = 0s
dns_retry = 0
no_drop_cr
dsn_from = Mail Delivery System <Mailer-Daemon@$qualify_domain>
envelope_to_remove
errors_copy =
errors_reply_to =
exim_group = Debian-exim
exim_path = /usr/sbin/exim4
exim_user = Debian-exim
extra_local_interfaces =
extract_addresses_remove_arguments
finduser_retries = 0
freeze_tell = postmaster
gecos_name = $1
gecos_pattern = ^([^,:]*)
gnutls_require_kx =
gnutls_require_mac =
gnutls_require_protocols =
header_line_maxsize = 0
header_maxsize = 1048576
headers_charset = UTF-8
helo_accept_junk_hosts =
helo_allow_chars =
helo_lookup_domains = @ : @[]
helo_try_verify_hosts =
helo_verify_hosts =
hold_domains =
host_lookup = *
host_lookup_order = bydns:byaddr
host_reject_connection =
hosts_connection_nolog =
hosts_treat_as_local =
ignore_bounce_errors_after = 2d
ignore_fromline_hosts =
no_ignore_fromline_local
keep_malformed = 4d
ldap_default_servers =
ldap_version = -1
no_local_from_check
local_from_prefix =
local_from_suffix =
local_interfaces = 127.0.0.1
local_scan_path =
local_scan_timeout = 5m
local_sender_retain
localhost_number =
log_file_path = /var/log/exim4/%slog
log_selector = +tls_peerdn
no_log_timezone
lookup_open_max = 25
max_username_length = 0
no_message_body_newlines
message_body_visible = 500
message_id_header_domain =
message_id_header_text =
message_logs
message_size_limit = 50M
no_move_frozen_messages
no_mua_wrapper
mysql_servers =
never_users =
percent_hack_domains =
no_perl_at_start
perl_startup =
pgsql_servers =
pid_file_path = /var/run/exim4/exim.pid
pipelining_advertise_hosts = *
no_preserve_message_logs
primary_hostname = aeroclub-beta.aeroclub-beta.com.au
no_print_topbitchars
process_log_path =
prod_requires_admin
qualify_domain = aeroclub-beta.com.au
qualify_recipient = aeroclub-beta.com.au
queue_domains =
queue_list_requires_admin
no_queue_only
queue_only_file =
queue_only_load =
queue_only_load_latch
queue_only_override
no_queue_run_in_order
queue_run_max = 5
queue_smtp_domains =
receive_timeout = 0s
received_header_text = Received: ${if def:sender_rcvhost {from
$sender_rcvhost\n\t}{${if def:sender_ident {from
${quote_local_part:$sender_ident} }}${if def:sender_helo_name
{(helo=$sender_helo_name)\n\t}}}}by $primary_hostname ${if
def:received_protocol {with $received_protocol}} ${if def:tls_cipher
{($tls_cipher)\n\t}}(Exim $version_number)\n\t${if def:sender_address
{(envelope-from <$sender_address>)\n\t}}id $message_exim_id${if
def:received_for {\n\tfor $received_for}}
received_headers_max = 30
recipient_unqualified_hosts =
recipients_max = 0
no_recipients_max_reject
remote_max_parallel = 2
remote_sort_domains =
retry_data_expire = 1w
retry_interval_max = 1d
return_path_remove
rfc1413_hosts = *
rfc1413_query_timeout = 5s
sender_unqualified_hosts =
smtp_accept_keepalive
smtp_accept_max = 20
smtp_accept_max_nonmail = 10
smtp_accept_max_nonmail_hosts = *
smtp_accept_max_per_connection = 1000
smtp_accept_max_per_host =
smtp_accept_queue = 0
smtp_accept_queue_per_connection = 10
smtp_accept_reserve = 0
smtp_active_hostname =
smtp_banner = $smtp_active_hostname ESMTP Exim $version_number $tod_full
smtp_check_spool_space
smtp_connect_backlog = 20
smtp_enforce_sync
smtp_etrn_command =
smtp_etrn_serialize
smtp_load_reserve =
smtp_max_synprot_errors = 3
smtp_max_unknown_commands = 3
smtp_ratelimit_hosts =
smtp_ratelimit_mail =
smtp_ratelimit_rcpt =
smtp_receive_timeout = 5m
smtp_reserve_hosts =
no_smtp_return_error_details
spamd_address = 127.0.0.1 783
no_split_spool_directory
spool_directory = /var/spool/exim4
sqlite_lock_timeout = 5
no_strict_acl_vars
no_strip_excess_angle_brackets
no_strip_trailing_dot
syslog_duplication
syslog_facility =
syslog_processname = exim
syslog_timestamp
system_filter = /etc/exim4/system.filter
system_filter_directory_transport =
system_filter_file_transport =
system_filter_group =
system_filter_pipe_transport =
system_filter_reply_transport =
system_filter_user =
tcp_nodelay
timeout_frozen_after = 1w
timezone =
tls_advertise_hosts = *
tls_certificate = /etc/exim4/exim.crt
tls_crl =
tls_dhparam =
tls_on_connect_ports =
tls_privatekey = /etc/exim4/exim.key
no_tls_remember_esmtp
tls_require_ciphers =
tls_try_verify_hosts = *
tls_verify_certificates = ${if
exists{/etc/ssl/certs/ca-certificates.crt}{/etc/ssl/certs/ca-certificates.crt}{/dev/null}}
tls_verify_hosts =
trusted_groups =
trusted_users = uucp
unknown_login =
unknown_username =
untrusted_set_sender = *
uucp_from_pattern =
^From\s+(\S+)\s+(?:[a-zA-Z]{3},?\s+)?(?:[a-zA-Z]{3}\s+\d?\d|\d?\d\s+[a-zA-Z]{3}\s+\d\d(?:\d\d)?)\s+\d\d?:\d\d?
uucp_from_sender = $1
warn_message_file =
write_rejectlog
#------------------------------------------------------------------------------------------------------------------------------------------------------------
exim -bh 203.132.28.33
**** SMTP testing session as if from host 203.132.28.33
**** but without any ident (RFC 1413) callback.
**** This is not for real!
>>> host in hosts_connection_nolog? no (option unset)
>>> host in host_lookup? no (option unset)
>>> host in host_reject_connection? no (option unset)
>>> host in sender_unqualified_hosts? no (option unset)
>>> host in recipient_unqualified_hosts? no (option unset)
>>> host in helo_verify_hosts? no (option unset)
>>> host in helo_try_verify_hosts? no (option unset)
>>> host in helo_accept_junk_hosts? yes (matched "*")
>>> using ACL "acl_connect"
>>> processing "accept"
>>> check hosts = +trustedmailhosts
>>> sender host name required, to match against lsearch;/etc/trustedmailhosts
>>> looking up host name for 203.132.28.33
>>> IP address lookup using gethostbyaddr()
>>> IP address lookup failed: h_errno=1
LOG: no host name found for IP address 203.132.28.33
>>> host in "lsearch;/etc/trustedmailhosts"? no (failed to find host name for 203.132.28.33)
>>> host in "+trustedmailhosts"? no (end of list)
>>> accept: condition test failed
>>> processing "accept"
>>> 203.132.28.33 in "iplsearch;/etc/trustedmailhosts"? no (end of list)
>>> check condition = ${if match_ip{$sender_host_address}{iplsearch;/etc/trustedmailhosts}{1}{0}}
>>> = 0
>>> accept: condition test failed
>>> processing "accept"
>>> 203.132.28.33 in "iplsearch;/etc/relayhosts"? no (end of list)
>>> check condition = ${if match_ip{$sender_host_address}{iplsearch;/etc/relayhosts}{1}{${if eq{$sender_host_address}{127.0.0.1}{1}{0}}}}
>>> = 0
>>> accept: condition test failed
>>> processing "accept"
>>> check hosts = +relay_hosts : +backupmx_hosts
>>> sender host name required, to match against lsearch;/etc/relayhosts
>>> host in "lsearch;/etc/relayhosts : localhost"? no (failed to find host name for 203.132.28.33)
>>> sender host name required, to match against lsearch;/etc/backupmxhosts
>>> host in "lsearch;/etc/backupmxhosts"? no (failed to find host name for 203.132.28.33)
>>> host in "+relay_hosts : +backupmx_hosts"? no (end of list)
>>> accept: condition test failed
>>> processing "accept"
>>> check condition = ${if eq {$interface_port}{25}{no}{yes}}
>>> = yes
>>> accept: condition test succeeded
220-bravo-host.bravo.net.au ESMTP Exim 4.69 #1 Mon, 28 Mar 2011 16:35:15 +1000
220-We do not authorize the use of this system to transport unsolicited,
220 and/or bulk e-mail.
#------------------------------------------------------------------------------------------------------------------------------------------------------------
cheers
sam_W
On Mon, Mar 28, 2011 at 5:28 PM, Dave Evans
<exim-users-20081202@???> wrote:
> On Mon, Mar 28, 2011 at 05:03:45PM +1100, Sam Walters wrote:
>> Hi
>> I am a web software developer by trade and this is my first foray into
>> configuring exim.
>
> Welcome :-)
>
>> I am setting up a new server and the configuration seems to fail when
>> attempting to send email to other exim servers. (or other servers
>> doing the same verification)
>> The receiving exim server isn't able to verify my domain causing a
>> verification error, which is emailed back to me.
>>
>> info@<TEST_DOMAIN>.com
>> SMTP error from remote mail server after RCPT
>> TO:<info@<TEST_DOMAIN>.com>:
>> host <TEST_DOMAIN>.com.au [203.130.28.14]: 550-Verification failed
>> for <testfrom@<NEW_SERVER>.com.au>
>> 550-Unrouteable address
>> 550 Sender verify failed
>> "
>
> Either the problem is that you're sending broken domain names, e.g.
> <TEST_DOMAIN>.com ("<" for example isn't a valid character in domain names),
> or you're obfuscating, in which case please don't: see
> http://wiki.exim.org/DontObfuscate for why not.
>
>> I understand the verification process according to:
>> http://www.exim.org/exim-html-3.20/doc/html/spec_45.html#SEC803
>
> Either you're using a waaaay old version of Exim, or you're looking at the
> wrong documentation. Please check your exim version (exim -bV) then find
> documentation more appropriate to your version, e.g. perhaps
> http://www.exim.org/exim-html-4.69/doc/html/spec_html/index.html if you're on
> 4.69.
>
>> I need to fix my new server so it will send emails to servers that do
>> a full reverse lookup of the senders email address otherwise ill run
>> into all sorts of trouble sending email.
>> Any relevent commands or a setting i have overlooked whilst setting up
>> the server? (errors below) Or further reading i could do on this
>> subject?
>
> Without knowing the domain name in question (see above), impossible to say.
>
> Let's have some more solid information then we'll see if we can help more.
>
> Cheers!
>
> --
> Dave Evans
> http://djce.org.uk/
> http://djce.org.uk/pgpkey
>
> -----BEGIN PGP SIGNATURE-----
> Version: GnuPG v1.4.9 (GNU/Linux)
>
> iEYEARECAAYFAk2QKm4ACgkQnYOJTU6nkkl9CgCeNuliD+W86bZrWHorxzsAFcbs
> JIgAmwYgrOJSneIifo+HXq9D4H8/HUIT
> =QIj+
> -----END PGP SIGNATURE-----
>
>
