Autor: Brian Spraker Data: Para: Jeremy Harris via Exim-users Asunto: [exim] Local / Non SMTP Connections Bypassing ACLs
I realize I may need to provide my ACLs for this question - but I have seen where emails are being sent from the server (from websites) and they are not going through any of the checks.
In the log, it will show something like:
2018-03-01 11:14:30 cwd=/ 3 args: /usr/sbin/sendmail -t -i
2018-03-01 11:14:30 1erRmo-0002QR-Cg <= FROMADDRESS U=DOMAIN P=local S=1232 T="SUBJECT" from <FROMADDRESS> for RCPTADDRESS
2018-03-01 11:14:30 cwd=/ 3 args: /usr/sbin/exim4 -Mc 1erRmo-0002QR-Cg
2018-03-01 11:14:32 1erRmo-0002QR-Cg => RCPTADDRESS I=[SERVERIP] F=<FROMADDRESS> R=dnslookup T=remote_smtp S=1321 H=cnusd-k12-ca-us.mail.eo.outlook.com [216.32.180.170] X=TLS1.2:ECDHE_RSA_AES_256_CBC_SHA384:256 CV=yes DN="C=US,ST=WA,L=Redmond,O=Microsoft Corporation,OU=Microsoft Corporation,CN=mail.protection.outlook.com" C="250 2.6.0 <E1erRmo-0002QR-Cg@DOMAIN> [InternalId=60086592473198, Hostname=DM5PR05MB3113.namprd05.prod.outlook.com] 8816 bytes in 0.131, 65.680 KB/sec Queued mail for delivery"
2018-03-01 11:14:32 1erRmo-0002QR-Cg Completed
Since it is not making a connection via TCP/IP, does Exim not put it through the same checks?
I do have an:
accept hosts = :
In the acl_connect, acl_helo, and acl_mail_from ACLs.
I also have the following further down the acl_check_rcpt and and acl_data ACLs but only after specific filters are checked:
accept hosts = 127.0.0.1/32 :
Any recommendations on how to make every connection go through the check without having to rewrite dozens of contact forms on websites?
Brian S.