Re: [exim] Exim relaying but shouldn't

Page principale
Supprimer ce message
Répondre à ce message
Auteur: Eric Grammatico
Date:  
À: exim-users
Sujet: Re: [exim] Exim relaying but shouldn't

Le 28/09/2022 à 15:12, Lena--- via Exim-users a écrit :
> P.S. No, the culprit is the apostrophe in auth login-name:
>
>> A=login_server:#xxxyyyy'uuss+zzz
>> server_condition = ${run{/bin/sh -c "echo -e '$auth1\n$auth2' | /usr/sbin/pwauth"}{1}{0}}
> You need to add:
>
>   deny message = Restricted characters in address
>        senders = ^.*['"$#]

>
>

Thanks Lena, that's a good barrier, some relay requests are denied, but
not all. From your advices I have added the following:

  deny    message   = Restricted characters in sender address
          senders   = ^.*['%!/|#+]

and

by myself:

  drop    message = REJECTED - Sender Verify Failed - error code
\"$sender_verify_failure\"\n\n\
  The return address you are using for this email message
<$sender_address>\
  does not seem to be a working account.
          log_message = REJECTED - Sender Verify Failed - error code
\"$sender_verify_failure\"
          !hosts = +no_verify
          !verify = sender/callout=2m,defer_ok
          condition = ${if eq{recipient}{$sender_verify_failure}}

I have some positiv hints, but it's still able to auth somehow.... I'll
investigate how to replace pwauth, but I am not sure it will fix the
issue...

In fact I tried to implement the wiki:
https://github.com/Exim/exim/wiki/AuthenticatedSmtpUsingPwauth

thx and reg

--
_/) Eric.