https://bugs.exim.org/show_bug.cgi?id=1834
--- Comment #2 from Daniel Kenzelmann <exim.org@???> ---
I'm now running a tcpdump on port 25 (I don't think they used ssl/tls) and
maybe I can get more information on this if it happen again.
My (sanitized) config below... maybe it helps..
-----------------------------------------
LDAP_USER_QUERY = user="cn=XXXX,ou=XXXX,dc=XXXX,dc=XXXX" pass=XXXXX
ldapi://%2fvar%2frun%2fopenldap%2fslapd.sock/ou=XXXX,dc=XXXX,dc=XXXX?uid?sub?(&(objectClass=inetOrgPerson)(uid=${local_part})(mail=${local_part}@${domain}))
SELECT_ALIASES = servers=127.0.0.1/XXXX/XXXX/XXXX; SELECT string_agg(DISTINCT
userid,',') AS target FROM aliases WHERE
address='${quote_pgsql:$local_part@$domain}';
keep_environment =
primary_hostname = XXXX
log_file_path = syslog
log_selector = +all
smtp_banner = $smtp_active_hostname ESMTP $tod_log$tod_zone
daemon_smtp_ports = 25 : 465 : 587
tls_advertise_hosts = *
tls_certificate = XXXX
tls_privatekey = XXXX
tls_on_connect_ports = 465
auth_advertise_hosts = ${if eq{$tls_cipher}{}{}{*}}
#auth_advertise_hosts = *
bounce_return_message = false
domainlist local_domains = XXXX
domainlist relay_to_domains =
hostlist relay_from_hosts = 127.0.0.1
acl_smtp_rcpt = acl_check_rcpt
acl_smtp_data = acl_check_data
spamd_address = 127.0.0.1 11333 variant=rspamd
qualify_domain = XXXX
never_users = root
host_lookup = *
rfc1413_query_timeout = 0s
ignore_bounce_errors_after = 2d
timeout_frozen_after = 7d
begin acl
acl_check_rcpt:
accept hosts = :
deny message = Restricted characters in address
domains = +local_domains
local_parts = ^[.] : ^.*[@%!/|]
deny message = Restricted characters in address
domains = !+local_domains
local_parts = ^[./|] : ^.*[@%!] : ^.*/\\.\\./
accept local_parts = postmaster
domains = +local_domains
require verify = sender
accept hosts = +relay_from_hosts
control = submission
accept authenticated = *
control = submission/sender_retain
accept domains = +relay_to_domains
verify = recipient/callout=10s,defer_ok
accept domains = +local_domains
sender_domains = !+local_domains
verify = recipient
deny
acl_check_data:
accept condition = ${if > {$message_size}{400K} {true}}
logwrite = :main: Not classified (message size larger than 400K)
accept authenticated = *
logwrite = :main: Not classified (message sender authenticated)
warn spam = nobody
add_header = X-Spam-Flag: YES
add_header = X-Spam-Score: $spam_score ($spam_bar)
add_header = X-Spam-Status: $spam_report
accept
begin routers
default_smarthost:
driver = manualroute
domains = ! +local_domains
transport = remote_smtp
route_list = * XXXX
fallback_hosts = XXXX
ignore_target_hosts = 0.0.0.0 : 127.0.0.0/8
no_more
db_aliases:
driver = redirect
allow_fail
allow_defer
data = ${lookup pgsql {SELECT_ALIASES}}
system_aliases:
driver = redirect
allow_fail
allow_defer
data = ${lookup{$local_part}lsearch{/etc/mail/aliases}}
dovecot_user:
driver = accept
domains = +local_domains
transport = dovecot_lmtp
cannot_route_message = Unknown user
condition = ${if !eq {}{${lookup ldap {LDAP_USER_QUERY}}} {true}{false}}
begin transports
remote_smtp:
driver = smtp
hosts_require_tls = XXXX
hosts_require_auth = XXXX
dkim_domain = ${lc:${domain:$h_from:}}
dkim_selector = XXXX
dkim_private_key = XXXX
dkim_canon = relaxed
dovecot_lmtp:
driver = lmtp
socket = /var/run/dovecot/lmtp
batch_max = 200
address_reply:
driver = autoreply
begin retry
* * F,2h,15m; G,16h,1h,1.5; F,4d,6h
begin rewrite
begin authenticators
.include /etc/exim/auth_conf.sub
--
You are receiving this mail because:
You are on the CC list for the bug.
