Mailing List Archive: exim: users

Checking recipient and wildcard

Index | Next | Previous | View Threaded

mailinglists at unix-scripts

Feb 8, 2010, 9:38 AM

Post #1 of 7 (943 views)
Permalink

Checking recipient and wildcard

I have a exim setup that is a redundant MX. The server accepts mail for
a list of domains and holds the mail until it can deliver it to the
primary server. The problem i'm having is that this server gets a ton
of spam because it's accepting mail for any recipient and then hammers
the primary server. I modified my check_recipient acl so that it has
the following

accept domains = +relay_domains
local_parts = lsearch;/etc/relaydomains/$domain
verify = recipient

Before it only had

accept domains = +relay_domains

This works great as long as i keep /etc/relaydomains/$domain updates but
the problem comes with some domains that have catchall type aliases. On
the primary server the aliases file has a *: catchall [at] domai entry.
With the modifications above if i add * to the /etc/relaydomains/$domain
it does not accept mail for all recipients.

Looking for ideas about what i need to do, thanks!

~ShaunR

--
## List details at http://lists.exim.org/mailman/listinfo/exim-users
## Exim details at http://www.exim.org/
## Please use the Wiki with this list - http://wiki.exim.org/

exim-users at lists

Feb 8, 2010, 10:05 AM

Post #2 of 7 (922 views)
Permalink

Re: Checking recipient and wildcard [In reply to]

On 08/02/2010 17:38, Shaun R wrote:

> I have a exim setup that is a redundant MX. The server accepts mail for
> a list of domains and holds the mail until it can deliver it to the
> primary server. The problem i'm having is that this server gets a ton
> of spam because it's accepting mail for any recipient and then hammers
> the primary server. I modified my check_recipient acl so that it has
> the following
>
> accept domains = +relay_domains
> local_parts = lsearch;/etc/relaydomains/$domain
> verify = recipient
>
>
> Before it only had
>
> accept domains = +relay_domains
>
> This works great as long as i keep /etc/relaydomains/$domain updates but
> the problem comes with some domains that have catchall type aliases. On
> the primary server the aliases file has a *: catchall [at] domai entry.
> With the modifications above if i add * to the /etc/relaydomains/$domain
> it does not accept mail for all recipients.
>
> Looking for ideas about what i need to do, thanks!

Is there a reason why your secondary MX can't perform the same spam
filtering as your primary MX?

--
Mike Cardwell : UK based IT Consultant, Perl developer, Linux admin
Cardwell IT Ltd. : UK Company - http://cardwellit.com/ #06920226
Technical Blog : Tech Blog - https://secure.grepular.com/
Spamalyser : Spam Tool - http://spamalyser.com/

--
## List details at http://lists.exim.org/mailman/listinfo/exim-users
## Exim details at http://www.exim.org/
## Please use the Wiki with this list - http://wiki.exim.org/

mailinglists at unix-scripts

Feb 8, 2010, 11:26 AM

Post #3 of 7 (918 views)
Permalink

Re: Checking recipient and wildcard [In reply to]

> Is there a reason why your secondary MX can't perform the same spam
> filtering as your primary MX?

Problem still is that if a spammer sends a piece of mail to a mailbox
that doesn't exist the secondary MX server will still accept it (if it
gets past the spam checks) and then the server will try to deliver it to
the primary. I'm trying to eliminate that.

~ShaunR

--
## List details at http://lists.exim.org/mailman/listinfo/exim-users
## Exim details at http://www.exim.org/
## Please use the Wiki with this list - http://wiki.exim.org/

mailinglists at unix-scripts

Feb 8, 2010, 11:26 AM

Post #4 of 7 (919 views)
Permalink

Re: Checking recipient and wildcard [In reply to]

km at krot

Feb 8, 2010, 11:44 AM

Post #5 of 7 (919 views)
Permalink

Re: Checking recipient and wildcard [In reply to]

* Shaun R [2010-02-08 09:38]:
> I have a exim setup that is a redundant MX. The server accepts mail for
> a list of domains and holds the mail until it can deliver it to the
> primary server. The problem i'm having is that this server gets a ton
> of spam because it's accepting mail for any recipient and then hammers
> the primary server. I modified my check_recipient acl so that it has
> the following
>
> accept domains = +relay_domains
> local_parts = lsearch;/etc/relaydomains/$domain
> verify = recipient
>
>
> Before it only had
>
> accept domains = +relay_domains
>
> This works great as long as i keep /etc/relaydomains/$domain updates but
> the problem comes with some domains that have catchall type aliases. On
> the primary server the aliases file has a *: catchall [at] domai entry.
> With the modifications above if i add * to the /etc/relaydomains/$domain
> it does not accept mail for all recipients.
>
> Looking for ideas about what i need to do, thanks!

Try

local_parts = search*;/etc/relaydomains/$domain

(Haven't tried, but should work)

-- Kirill

--
## List details at http://lists.exim.org/mailman/listinfo/exim-users
## Exim details at http://www.exim.org/
## Please use the Wiki with this list - http://wiki.exim.org/

km at krot

Feb 8, 2010, 11:49 AM

Post #6 of 7 (919 views)
Permalink

Re: Checking recipient and wildcard [In reply to]

* Kirill Miazine [2010-02-08 20:44]:
> * Shaun R [2010-02-08 09:38]:
> > I have a exim setup that is a redundant MX. The server accepts mail for
> > a list of domains and holds the mail until it can deliver it to the
> > primary server. The problem i'm having is that this server gets a ton
> > of spam because it's accepting mail for any recipient and then hammers
> > the primary server. I modified my check_recipient acl so that it has
> > the following
> >
> > accept domains = +relay_domains
> > local_parts = lsearch;/etc/relaydomains/$domain
> > verify = recipient
> >
> >
> > Before it only had
> >
> > accept domains = +relay_domains
> >
> > This works great as long as i keep /etc/relaydomains/$domain updates but
> > the problem comes with some domains that have catchall type aliases. On
> > the primary server the aliases file has a *: catchall [at] domai entry.
> > With the modifications above if i add * to the /etc/relaydomains/$domain
> > it does not accept mail for all recipients.
> >
> > Looking for ideas about what i need to do, thanks!
>
> Try
>
> local_parts = search*;/etc/relaydomains/$domain

Sorry, a typo in the line above. I meant lsearch*; of course.

> (Haven't tried, but should work)

Well, if I tried, I'd notice the typo at least.

-- Kirill

--
## List details at http://lists.exim.org/mailman/listinfo/exim-users
## Exim details at http://www.exim.org/
## Please use the Wiki with this list - http://wiki.exim.org/

jgh at wizmail

Feb 8, 2010, 2:38 PM

Post #7 of 7 (915 views)
Permalink

Re: Checking recipient and wildcard [In reply to]

On 02/08/2010 07:26 PM, ShaunR wrote:
>> Is there a reason why your secondary MX can't perform the same spam
>> filtering as your primary MX?
>
> Problem still is that if a spammer sends a piece of mail to a mailbox
> that doesn't exist the secondary MX server will still accept it (if it
> gets past the spam checks) and then the server will try to deliver it to
> the primary. I'm trying to eliminate that.

When he says "the same" he means "including knowing what usernames
are valid". Ditch that catchall behavior, it's an attractive nuisance.

--
Jeremy

--
## List details at http://lists.exim.org/mailman/listinfo/exim-users
## Exim details at http://www.exim.org/
## Please use the Wiki with this list - http://wiki.exim.org/

Index | Next | Previous | View Threaded

Interested in having your list archived? Contact Gossamer Threads