Re: [exim] How to determine 'acl_check_rcpt' failure point?

Startseite
Nachricht löschen
Nachricht beantworten
Autor: Slavko
Datum:  
To: exim-users
Betreff: Re: [exim] How to determine 'acl_check_rcpt' failure point?
Hi,

Dňa Tue, 26 Oct 2021 18:17:09 +0200 Marco Gaiarin via Exim-users
<exim-users@???> napísal:

> and put HELO, MAIL FROM: and RCPT TO: by hand; and effectively the
> ACL fail; at the last i have:


I often store commands in that.file, eg.:

    EHLO somename
    MAIL FROM: <sender@addr>
    RCPT TO: <rcpt@addr>
    QUIT


And then i fire:

    exim -bh <IP_OF_THE_SENDER> < that.file


...but result is the same as doing it manually, except that you can
simple repeat it ;-)

>  ----------- end verify ------------
>  require: condition test succeeded in ACL "acl_check_rcpt"
>  processing "require"
>    message: ${if >{$rcpt_fail_count}{0} {unrouteable address}{unknown
> user}} l_message: ${if >{$rcpt_fail_count}{0} {Dictionary attack
>  (${eval:$rcpt_fail_count+1} failed recipients)}{}}
>  check domains = !+local_domains
>  cached yes match for +local_domains
>  cached lookup data = NULL
>  ac.concordia-pordenone.it in "!+local_domains"? no (matched
>  "!+local_domains" - cached)
>  require: condition test failed in ACL "acl_check_rcpt"
>  SMTP>> 550 unknown user  
>  550 unknown user
>  LOG: MAIN REJECT

>
> OK; but how can i determine the exact point in acl_check_rcpt ACL
> that make it fail? I'm a bit puzzled...


In the output you have all processed ACL and its condition shown, eg.:

    check domains = !+local_domains


This will be somewhere in your ACL definition as:

    require:
      ...
      domains = !+local_domains


Next in above output you can see line:

    ac.concordia-pordenone.it in "!+local_domains"? no ...


This is result of that domains check and means, that
ac.concordia-pordenone.it is in your local_domains list and that
condition is not meet (as it is negated by ! -- not in list).

That snippets show cached local_domains search result, exact match will
be shown when exim did that search first.

regards

--
Slavko
https://www.slavino.sk