Mysteriöse Mail-Duplikate auf Root-Server

silvio_l
Posts: 12
Joined: 2008-12-10 15:31

Mysteriöse Mail-Duplikate auf Root-Server

Post by silvio_l »

Hallo,

erst einmal die technischen Daten:
debian, confixx, exim4, spamassassin, clamav, greylisting

Problem:
Seit einiger Zeit bekommen wir identische E-Mails sporadisch 2 - 6 mal.

Habe mich schon an unseren Hoster gewendet. Der hat jedoch für sich das Problem gelöst in dem er uns mitgeteilt hat das er die Ursache nicht findet und daher auch keine Lösung hat.

Eine Recherche bei :google: brachte auch keine relevanten Ergebnisse. Die Auswertung des eximlogs (mainlog) ergab folgendes:

Hier mal ein Beispiel einer E-Mail die wir 5 mal bekommen haben (gleiche Mail-ID):

Code: Select all

2008-12-10 12:27:04 1LALqB-00089X-VN <= abc@mail.de H=host.de [255.255.255.0] P=esmtp S=74297 id=E4DA778CB9E248F6B2EFA44E9C4A266B@permissionone.local
2008-12-10 12:27:12 1LAMRM-0008Vv-IR <= abc@mail.de H=host.de [255.255.255.0] P=esmtp S=74297 id=E4DA778CB9E248F6B2EFA44E9C4A266B@permissionone.local
2008-12-10 12:27:24 1LAM2f-0008Hf-GX <= abc@mail.de H=host.de [255.255.255.0] P=esmtp S=74297 id=E4DA778CB9E248F6B2EFA44E9C4A266B@permissionone.local
2008-12-10 12:27:37 1LAN5A-0000T5-GJ <= abc@mail.de H=host.de [255.255.255.0] P=esmtp S=74297 id=E4DA778CB9E248F6B2EFA44E9C4A266B@permissionone.local
2008-12-10 12:27:38 1LALeO-00083L-Lj <= abc@mail.de H=host.de [255.255.255.0] P=esmtp S=74297 id=E4DA778CB9E248F6B2EFA44E9C4A266B@permissionone.local


So wie ich das sehe bekommt exim hier tatsächlich 5 mal ein und die selbe E-Mail also müsste das Problem doch außerhalb zu suchen sein oder? Gibt es noch andere Ursachen die zu solchen Einträgen führen könnten?

Gruß
Silvio
Top

User avatar
Joe User
Project Manager
Project Manager
Posts: 11518
Joined: 2003-02-27 01:00
Location: Hamburg

Re: Mysteriöse Mail-Duplikate auf Root-Server

Post by Joe User »

Die Ursache sollte auf @permissionone.local zu finden sein...
PayPal.Me/JoeUserFreeBSD Remote Installation
Wings for LifeWings for Life World Run

„If there’s more than one possible outcome of a job or task, and one
of those outcomes will result in disaster or an undesirable consequence,
then somebody will do it that way.“ -- Edward Aloysius Murphy Jr.
Top

silvio_l
Posts: 12
Joined: 2008-12-10 15:31

Re: Mysteriöse Mail-Duplikate auf Root-Server

Post by silvio_l »

Hallo,

danke erst einmal für die schnelle Antwort. Was ich nur nicht ganz verstehe, warum unserer Mailserver (dem Anschein nach) die E-Mails über einen Relay unseres Hosters bekommt. Wen ich permissionone.local anpinge bekomme ich nämlich den Hostname unseres Hosters aufgelöst. Ein "dig unsere-domain.de MX" liefert mir aber die direkte IP unseres Servers. Also sollte doch, wenn ich das richtig verstanden habe, der sendende smtpd seine Verbindung direkt mit unserem Server aufbauen oder hab ich einen "Denkfehler" ?

EDIT: Habe mittlerweile festgestellt das alles was ich anpinge als Subdomain verstanden wird und somit die IP unseres Hosters zurückgibt. Also gibt mir das wohl doch keinen Aufschluss darüber was permissionone.local nun ist.

Jemand eine Idee wo ich ansetzen kann?

Gruß
Silvio
Top

silvio_l
Posts: 12
Joined: 2008-12-10 15:31

Re: Mysteriöse Mail-Duplikate auf Root-Server

Post by silvio_l »

Hallo,

hat keiner einen Hinweis oder irgendwelche Erfahrungswerte? Oder werden einfach mehr Informationen benötigt?
Das sollte kein Problem sein die kann ich beschaffen.

Gruß
Silvio
Top

silvio_l
Posts: 12
Joined: 2008-12-10 15:31

Re: Mysteriöse Mail-Duplikate auf Root-Server

Post by silvio_l »

Hi,

hier z.B. noch ein weiterer Fall bei dem die Mail doppelt im Postfach gelandet ist.
Es handelt sich dabei um eine Ticket-Server-Antwort unseres Hosters.

Code: Select all

2008-12-12 00:20:35 1LAtxx-0006kw-GL <= abc@mail.de H=host.de [IP] P=esmtp S=6244 id=1229032239.568782.077516822.116562.2@ticket.host.de

2008-12-12 00:21:14 1LAupg-00072R-Pv <= abc@mail.de U=Debian-exim P=spam-scanned S=6653 id=1229032239.568782.077516822.116562.2@ticket.host.de

2008-12-12 00:21:14 1LAupg-00072R-Pv => web24p13 <web24p13@unsere-domain.de> R=local_user T=maildir_home

2008-12-12 00:21:14 1LAupg-00072R-Pv Completed

2008-12-12 00:21:14 1LAtxx-0006kw-GL => web24p13 <user@unsere-domain.de> R=spamcheck_router T=spamcheck

2008-12-12 00:21:14 1LAtxx-0006kw-GL Completed

2008-12-12 00:31:46 1LAv0T-00077c-TA <= abc@mail.de H=host.de [IP] P=esmtp S=6244 id=1229032239.568782.077516822.116562.2@ticket.host.de

2008-12-12 00:32:03 1LAv0U-00077g-6i <= abc@mail.de U=Debian-exim P=spam-scanned S=6673 id=1229032239.568782.077516822.116562.2@ticket.host.de

2008-12-12 00:32:03 1LAv0U-00077g-6i => web24p13 <web24p13@unsere-domain.de> R=local_user T=maildir_home

2008-12-12 00:32:03 1LAv0U-00077g-6i Completed

2008-12-12 00:32:03 1LAv0T-00077c-TA => web24p13 <user@unsere-domain.de> R=spamcheck_router T=spamcheck

2008-12-12 00:32:03 1LAv0T-00077c-TA Completed


Wie man sieht bekommen wir die selbe Mail (id=1229032239.568782.077516822.116562.2@ticket.host.de) mehrfach. Nur einmal direkt vom Ticketsystem und einmal über den Benutzer "Debian-exim".

mail.log sagt:

Code: Select all

Dec 12 00:31:46 wien3 spamd[21814]: spamd: connection from localhost [127.0.0.1] at port 41569

Dec 12 00:31:46 wien3 spamd[21814]: spamd: setuid to web24p13 succeeded

Dec 12 00:31:46 wien3 spamd[21814]: spamd: processing message <1229032239.568782.077516822.116562.2@ticket.host.de> for web24p13:1679

Dec 12 00:31:46 wien3 spamd[21814]: razor2: razor2 check failed: Invalid argument razor2: razor2 had unknown error during get_server_info at /usr/share/perl5/Mail/SpamAssassin/Plugin/Razor2.pm line 180. at /usr/share/perl5/Mail/SpamAssassin/Plugin/Razor2.pm line 318.


Hat jemand eine Idee woran das liegen könnte.

Gruß
Silvio
Last edited by silvio_l on 2008-12-12 11:07, edited 3 times in total.
Top

User avatar
Joe User
Project Manager
Project Manager
Posts: 11518
Joined: 2003-02-27 01:00
Location: Hamburg

Re: Mysteriöse Mail-Duplikate auf Root-Server

Post by Joe User »

Poste mal die komplette exim.conf
PayPal.Me/JoeUserFreeBSD Remote Installation
Wings for LifeWings for Life World Run

„If there’s more than one possible outcome of a job or task, and one
of those outcomes will result in disaster or an undesirable consequence,
then somebody will do it that way.“ -- Edward Aloysius Murphy Jr.
Top

silvio_l
Posts: 12
Joined: 2008-12-10 15:31

Re: Mysteriöse Mail-Duplikate auf Root-Server

Post by silvio_l »

Hallo,

habe leider keine exim.conf als solches... ist eine gesplittete Konfiguration.

Ich poste mal ein "cat *" der main Files.

Code: Select all

######################################################################
#                  Runtime configuration file for Exim               #
######################################################################

######################################################################
#                    MAIN CONFIGURATION SETTINGS                     #
######################################################################

# Just for reference and scripts, on debian, the main binary is
# installed as exim4
exim_path = /usr/sbin/exim4

# Macro defining the main configuration directory, we use no abolute
# paths.
CONFDIR = /etc/exim4

# Define a macro DC_minimaldns if dc_minimaldns=true, to use in
# .ifdef-statements otherwise this expands to an empty line
DEBCONFminimaldnsDEBCONF

# The next three settings create two lists of domains and one list of hosts.
# These lists are referred to later in this configuration using the syntax
# +local_domains, +relay_to_domains, and +relay_from_hosts, respectively. They
# are all colon-separated lists:

# '@' refers to 'the name of the local host'

### EXPANSION-begins ######################
domainlist local_domains = DEBCONFlocal_domainsDEBCONF

domainlist relay_to_domains = DEBCONFrelay_domainsDEBCONF

hostlist relay_from_hosts = 127.0.0.1 : ::::1 : DEBCONFrelay_netsDEBCONF


# Specify the domain you want to be added to all unqualified addresses
# here. An unqualified address is one that does not contain an "@" character
# followed by a domain. For example, "caesar@rome.example" is a fully qualified
# address, but the string "caesar" (i.e. just a login name) is an unqualified
# email address. Unqualified addresses are accepted only from local callers by
# default. See the recipient_unqualified_hosts option if you want to permit
# unqualified addresses from remote sources. If this option is not set, the
# primary_hostname value is used for qualification.
qualify_domain = DEBCONFvisiblenameDEBCONF

# only used for satellite-system
.ifndef DCreadhost
DCreadhost = DEBCONFreadhostDEBCONF
.endif

#for satellite and smarthost-systems
.ifndef DCsmarthost
DCsmarthost = DEBCONFsmarthostDEBCONF
.endif

# listen on all all interfaces?
DEBCONFlistenonpublicDEBCONF
### EXPANSION-ends   ######################

# The default delivery method. See CONFDIR/conf.d/transports/ for other
# possibilities
LOCAL_DELIVERY=maildir_home

# The gecos field in /etc/passwd holds not only the name. see passwd(5).
gecos_pattern = ^([^,:]*)
gecos_name = $1


# define a macro DCconfig_smarthost, DCconfig_satellite, etc. we need this
# for .ifdef ... .endif
DCconfig_DEBCONFconfigtypeDEBCONF = 1

######################################################################
#      Runtime configuration file for Exim 4 (Debian Packaging)      #
######################################################################

######################################################################
# /etc/exim4/exim4.conf.template is only used with the non-split
#   configuration scheme.
# /etc/exim4/conf.d/main/01_exim4-config_listmacrosdefs is only used
#   with the split configuration scheme.
# If you find this comment anywhere else, somebody copied it there.
# Documentation about the Debian exim4 configuration scheme can be
# found in /usr/share/doc/exim4-base/README.Debian.gz.
#
# Strings like DEBCONFsomethingDEBCONF are replaced by installation
# dependent values by update-exim4.conf, the script which builds the
# actual configuration from the templates.
######################################################################

######################################################################
#                    MAIN CONFIGURATION SETTINGS                     #
######################################################################

# Just for reference and scripts.
# On Debian systems, the main binary is installed as exim4 to avoid
# conflicts with the exim 3 packages.
exim_path = /usr/sbin/exim4

# Macro defining the main configuration directory.
# We do not use absolute paths.
.ifndef CONFDIR
CONFDIR = /etc/exim4
.endif

# This sets a macro DC_minimaldns if dc_minimaldns=true. If
# dc_minimaldns=false, this expands to an empty line.
.ifndef DC_minimaldns
DEBCONFminimaldnsDEBCONF
.endif

# Create other macros from Debconf. Macros created here are used in
# other places in exim config.
.ifndef DC_visiblename
DC_visiblename=DEBCONFvisiblenameDEBCONF
.endif

# Create domain and host lists for relay control
# '@' refers to 'the name of the local host'

# List of domains considered local for exim. Domains not listed here
# need to be deliverable remotely.
.ifndef MAIN_LOCAL_DOMAINS
MAIN_LOCAL_DOMAINS = DEBCONFlocal_domainsDEBCONF
.endif
domainlist local_domains = MAIN_LOCAL_DOMAINS

# List of recipient domains to relay _to_. Use this list if you're -
# for example - fallback MX or mail gateway for domains.
.ifndef MAIN_RELAY_TO_DOMAINS
MAIN_RELAY_TO_DOMAINS = DEBCONFrelay_domainsDEBCONF
.endif
domainlist relay_to_domains = MAIN_RELAY_TO_DOMAINS

# List of sender networks (IP addresses) to _unconditionally_ relay
# _for_. If you intend to be SMTP AUTH server, you do not need to enter
# anything here.
.ifndef MAIN_RELAY_NETS
MAIN_RELAY_NETS = DEBCONFrelay_netsDEBCONF
.endif
hostlist relay_from_hosts = MAIN_RELAY_NETS


# Specify the domain you want to be added to all unqualified addresses
# here. Unqualified addresses are accepted only from local callers by
# default. The recipient_unqualified_hosts option can be used to permit
# unqualified addresses from remote sources.
# If qualify_domain is not set, the primary_hostname value is used for
# qualification.
# The ifdef bracket makes sure that an empty debconf value is correctly
# translated to "unset".
.ifdef DC_visiblename
qualify_domain = DC_visiblename
.endif

# only used for satellite-system
.ifndef DCreadhost
DCreadhost = DEBCONFreadhostDEBCONF
.endif

#for satellite and smarthost-systems
.ifndef DCsmarthost
DCsmarthost = DEBCONFsmarthostDEBCONF
.endif

# listen on all all interfaces?
.ifdef MAIN_LOCAL_INTERFACES
local_interfaces = MAIN_LOCAL_INTERFACES
.else
DEBCONFlistenonpublicDEBCONF
.endif

.ifndef LOCAL_DELIVERY
# The default transport, set in /etc/exim4/update-exim4.conf.conf,
# defaulting to mail_spool. See CONFDIR/conf.d/transport/ for possibilities
LOCAL_DELIVERY=DEBCONFlocaldeliveryDEBCONF
.endif

# The gecos field in /etc/passwd holds not only the name. see passwd(5).
gecos_pattern = ^([^,:]*)
gecos_name = $1


# define a macro DCconfig_smarthost, DCconfig_satellite, etc. we need this
# for .ifdef ... .endif
.ifndef DCconfig_satellite
.ifndef DCconfig_internet
.ifndef DCconfig_local
.ifndef DCconfig_smarthost
DCconfig_DEBCONFconfigtypeDEBCONF = 1
.endif
.endif
.endif
.endif


# define macros to be used in acl/30_exim4-config_check_rcpt to check
# recipient local parts for strange characters.

# This macro definition really should be in
# acl/30_exim4-config_check_rcpt but cannot be there due to
# http://www.exim.org/bugzilla/show_bug.cgi?id=101 as of exim 4.62.

# These macros are documented in acl/30_exim4-config_check_rcpt,
# can be changed here or overridden by a locally added configuration
# file as described in README.Debian chapter 2.1.2

.ifndef CHECK_RCPT_LOCAL_LOCALPARTS
CHECK_RCPT_LOCAL_LOCALPARTS = ^[.] : ^.*[@%!/|`#&?]
.endif

.ifndef CHECK_RCPT_REMOTE_LOCALPARTS
CHECK_RCPT_REMOTE_LOCALPARTS = ^[./|] : ^.*[@%!`#&?] : ^.*/\.\./
.endif

# always log tls_peerdn as we use TLS for outgoing connects by default
.ifndef MAIN_LOG_SELECTOR
MAIN_LOG_SELECTOR = +tls_peerdn
.endif
av_scanner = clamd:/var/run/clamav/clamd.ctl

#voa 02082006
#maximale groesse zu scannender mails (3M)
MAX_MESSAGESIZE_VSCAN = 3M
### main/02_exim4-config_options
#################################

# This option defines the access control list that is run when an
# SMTP RCPT command is received.
#
acl_smtp_rcpt = acl_check_rcpt

# This option defines the access control list that is run when an
# SMTP DATA command is received.
#
acl_smtp_data = acl_check_data

# Define a message size limit. You can either change it here, or set the
# MESSAGE_SIZE_LIMIT macro. The default (used when MESSAGE_SIZE_LIMIT
# is unset and/or message_size_limit is unset) is 50 MB
.ifdef MESSAGE_SIZE_LIMIT
#message_size_limit = MESSAGE_SIZE_LIMIT
message_size_limit = 100M
.endif

# If you want unqualified recipient addresses to be qualified with a different
# domain to unqualified sender addresses, specify the recipient domain here.
# If this option is not set, the qualify_domain value is used.
#
# qualify_recipient =

# The following line must be uncommented if you want Exim to recognize
# addresses of the form "user@[10.11.12.13]" that is, with a "domain literal"
# (an IP address) instead of a named domain. The RFCs still require this form,
# but it makes little sense to permit mail to be sent to specific hosts by
# their IP address in the modern Internet. This ancient format has been used
# by those seeking to abuse hosts by using them for unwanted relaying. If you
# really do want to support domain literals, uncomment the following line, and
# see also the "domain_literal" router.
#
# allow_domain_literals

.ifndef DC_minimaldns
# The setting below causes Exim to do a reverse DNS lookup on all incoming
# IP calls, in order to get the true host name. If you feel this is too
# expensive, you can specify the networks for which a lookup is done, or
# remove the setting entirely.
#
host_lookup = *
.endif

# For minimaldns try to guess the primary_hostname only once at startup, when
# running update-exim4.conf
DEBCONF_hardcode_primary_hostname_DEBCONF

# The settings below, which are actually the same as the defaults in the
# code, cause Exim to make RFC 1413 (ident) callbacks for all incoming SMTP
# calls. You can limit the hosts to which these calls are made, and/or change
# the timeout that is used. If you set the timeout to zero, all RFC 1413 calls
# are disabled. RFC 1413 calls are cheap and can provide useful information
# for tracing problem messages, but some hosts and firewalls have problems
# with them. This can result in a timeout instead of an immediate refused
# connection, leading to delays on starting up an SMTP session.
#
rfc1413_hosts = *
rfc1413_query_timeout = 10s

# By default, Exim expects all envelope addresses to be fully qualified, that
# is, they must contain both a local part and a domain. If you want to accept
# unqualified addresses (just a local part) from certain hosts, you can specify
# these hosts by setting one or both of
#
# sender_unqualified_hosts =
# recipient_unqualified_hosts =
#
# to control sender and recipient addresses, respectively. When this is done,
# unqualified addresses are qualified using the settings of qualify_domain
# and/or qualify_recipient (see above).

# If you want Exim to support the "percent hack" for certain domains,
# uncomment the following line and provide a list of domains. The "percent
# hack" is the feature by which mail addressed to x%y@z (where z is one of
# the domains listed) is locally rerouted to x@y and sent on. If z is not one
# of the "percent hack" domains, x%y is treated as an ordinary local part. This
# hack is rarely needed nowadays; you should not enable it unless you are sure
# that you really need it.
#
# percent_hack_domains =

# When Exim can neither deliver a message nor return it to sender, it "freezes"
# the delivery error message (aka "bounce message"). There are also other
# circumstances in which messages get frozen. They will stay on the queue for
# ever unless one of the following options is set.

# This option unfreezes frozen bounce messages after two days, tries
# once more to deliver them, and ignores any delivery failures.
#
ignore_bounce_errors_after = 2d

# This option cancels (removes) frozen messages that are older than a week.
#
timeout_frozen_after = 7d

freeze_tell = postmaster

# templates for bounces and error messages
bounce_message_file = /etc/exim4/templates/bounce_message
warn_message_file = /etc/exim4/templates/warning_message

# Only for interacting with other packages, to make it possible to use
# -DSPOOLDIR to override it on the command line
.ifndef SPOOLDIR
SPOOLDIR = /var/spool/exim4
.endif
spool_directory = SPOOLDIR

# uucp should be able to set envelope-from to arbitrary values
trusted_users = uucp : www-data

# uncomment this to get the Debian version in the SMTP dialog
# smtp_banner = "${primary_hostname} ESMTP Exim ${version_number} (Debian package DEBCONFpackageversionDEBCONF) ${tod_full}"


### main/02_exim4-config_options
#################################


# Defines the access control list that is run when an
# SMTP MAIL command is received.
#
.ifndef MAIN_ACL_CHECK_MAIL
MAIN_ACL_CHECK_MAIL = acl_check_mail
.endif
acl_smtp_mail = MAIN_ACL_CHECK_MAIL


# Defines the access control list that is run when an
# SMTP RCPT command is received.
#
.ifndef MAIN_ACL_CHECK_RCPT
MAIN_ACL_CHECK_RCPT = acl_check_rcpt
.endif
acl_smtp_rcpt = MAIN_ACL_CHECK_RCPT


# Defines the access control list that is run when an
# SMTP DATA command is received.
#
.ifndef MAIN_ACL_CHECK_DATA
MAIN_ACL_CHECK_DATA = acl_check_data
.endif
acl_smtp_data = MAIN_ACL_CHECK_DATA


# Message size limit. The default (used when MESSAGE_SIZE_LIMIT
# is unset) is 50 MB
.ifdef MESSAGE_SIZE_LIMIT
message_size_limit = MESSAGE_SIZE_LIMIT
.endif


# If you are running exim4-daemon-heavy or a custom version of Exim that
# was compiled with the content-scanning extension, you can cause incoming
# messages to be automatically scanned for viruses. You have to modify the
# configuration in two places to set this up. The first of them is here,
# where you define the interface to your scanner. This example is typical
# for ClamAV; see the manual for details of what to set for other virus
# scanners. The second modification is in the acl_check_data access
# control list.

# av_scanner = clamd:/tmp/clamd


# For spam scanning, there is a similar option that defines the interface to
# SpamAssassin. You do not need to set this if you are using the default, which
# is shown in this commented example. As for virus scanning, you must also
# modify the acl_check_data access control list to enable spam scanning.

# spamd_address = 127.0.0.1 783

# Domain used to qualify unqualified recipient addresses
# If this option is not set, the qualify_domain value is used.
# qualify_recipient = <value of qualify_domain>


# Allow Exim to recognize addresses of the form "user@[10.11.12.13]",
# where the domain part is a "domain literal" (an IP address) instead
# of a named domain. The RFCs require this facility, but it is disabled
# in the default config since it is seldomly used and frequently abused.
# Domain literal support also needs a special router, which is automatically
# enabled if you use the enable macro MAIN_ALLOW_DOMAIN_LITERALS.
.ifdef MAIN_ALLOW_DOMAIN_LITERALS
allow_domain_literals
.endif


# Do a reverse DNS lookup on all incoming IP calls, in order to get the
# true host name. If you feel this is too expensive, the networks for
# which a lookup is done can be listed here.
.ifndef DC_minimaldns
.ifndef MAIN_HOST_LOOKUP
MAIN_HOST_LOOKUP = *
.endif
host_lookup = MAIN_HOST_LOOKUP
.endif


# In a minimaldns setup, update-exim4.conf guesses the hostname and
# dumps it here to avoid DNS lookups being done at Exim run time.
DEBCONF_hardcode_primary_hostname_DEBCONF

# The settings below, which are actually the same as the defaults in the
# code, cause Exim to make RFC 1413 (ident) callbacks for all incoming SMTP
# calls. You can limit the hosts to which these calls are made, and/or change
# the timeout that is used. If you set the timeout to zero, all RFC 1413 calls
# are disabled. RFC 1413 calls are cheap and can provide useful information
# for tracing problem messages, but some hosts and firewalls are
# misconfigured to drop the requests instead of either answering or
# rejecting them. This can result in a timeout instead of an immediate refused
# connection, leading to delays on starting up SMTP sessions. (The default was
# reduced from 30s to 5s for release 4.61.)
# rfc1413_hosts = *
# rfc1413_query_timeout = 5s


# By default, exim forces a Sender: header containing the local
# account name at the local host name in all locally submitted messages
# that don't have the local account name at the local host name in the
# From: header, deletes any Sender: header present in the submitted
# message and forces the envelope sender of all locally submitted
# messages to the local account name at the local host name.
# The following settings allow local users to specify their own envelope sender
# in a locally submitted message. Sender: headers existing in a locally
# submitted message are not removed, and no automatic Sender: headers
# are added. These settings are fine for most hosts.
# If you run exim on a classical multi-user systems where all users
# have local mailboxes that can be reached via SMTP from the Internet
# with the local FQDN as the domain part of the address, you might want
# to disable the following three lines for traceability reasons.
.ifndef MAIN_FORCE_SENDER
local_from_check = false
local_sender_retain = true
untrusted_set_sender = *
.endif


# By default, Exim expects all envelope addresses to be fully qualified, that
# is, they must contain both a local part and a domain. Configure exim
# to accept unqualified addresses from certain hosts. When this is done,
# unqualified addresses are qualified using the settings of qualify_domain
# and/or qualify_recipient (see above).
# sender_unqualified_hosts = <unset>
# recipient_unqualified_hosts = <unset>


# Configure Exim to support the "percent hack" for certain domains.
# The "percent hack" is the feature by which mail addressed to x%y@z
# (where z is one of the domains listed) is locally rerouted to x@y
# and sent on. If z is not one of the "percent hack" domains, x%y is
# treated as an ordinary local part. The percent hack is rarely needed
# nowadays but frequently abused. You should not enable it unless you
# are sure that you really need it.
# percent_hack_domains = <unset>


# Bounce handling
.ifndef MAIN_IGNORE_BOUNCE_ERRORS_AFTER
MAIN_IGNORE_BOUNCE_ERRORS_AFTER = 2d
.endif
ignore_bounce_errors_after = MAIN_IGNORE_BOUNCE_ERRORS_AFTER

.ifndef MAIN_TIMEOUT_FROZEN_AFTER
MAIN_TIMEOUT_FROZEN_AFTER = 7d
.endif
timeout_frozen_after = MAIN_TIMEOUT_FROZEN_AFTER

.ifndef MAIN_FREEZE_TELL
MAIN_FREEZE_TELL = postmaster
.endif
freeze_tell = MAIN_FREEZE_TELL


# Define spool directory
.ifndef SPOOLDIR
SPOOLDIR = /var/spool/exim4
.endif
spool_directory = SPOOLDIR


# trusted users can set envelope-from to arbitrary values
.ifndef MAIN_TRUSTED_USERS
MAIN_TRUSTED_USERS = uucp
.endif
trusted_users = MAIN_TRUSTED_USERS
.ifdef MAIN_TRUSTED_GROUPS
trusted_groups = MAIN_TRUSTED_GROUPS
.endif


# users in admin group can do many other things
# admin_groups = <unset>


# SMTP Banner. The example includes the Debian version in the SMTP dialog
# MAIN_SMTP_BANNER = "${primary_hostname} ESMTP Exim ${version_number} (Debian package DEBCONFpackageversionDEBCONF) ${tod_full}"
# smtp_banner = $smtp_active_hostname ESMTP Exim $version_number $tod_full
# Example for TLS/SSL configuration.

# See /usr/share/doc/exim4-base/README.TLS* for explanations.

# Defines that you want to log what cipher your exim and the peer's mailer
# uses to encrypt the transaction. It also defines you want to log the 'DN'
# (Distinguished Name) of the certificate of the peer.
#
log_selector = +tls_cipher +tls_peerdn

# Defines what hosts to 'advertise' STARTTLS functionality to. Setting this
# to * will advertise to all hosts that connect with EHLO, and this is a
# good default
#
tls_advertise_hosts = *

# Defines where your SSL-certificate and SSL-Private Key are located.
# This requires a full path. The files pointed to must be kept 'secret'
# and should be owned my root.Debian-exim mode 640 (-rw-r-----). Usually the
# exim-gencert script takes care of these prerequisites.
#
tls_certificate = CONFDIR/exim.crt
tls_privatekey = CONFDIR/exim.key

# A file which contains the certificates of the trusted CAs (Certification
# Authorities) against which host certificates can be checked (through the
# `tls_verify_hosts' and `tls_try_verify_hosts' lists below).
# /etc/ssl/certs/ca-certificates.crt is generated by
# the "ca-certificates" package's update-ca-certificates(8) command.
#
tls_verify_certificates = /etc/ssl/certs/ca-certificates.crt

# A list of hosts which are constrained by `tls_verify_certificates'. A host
# that matches `tls_verify_host' must present a certificate that's
# verifyable through `tls_verify_certificates' in order to be accepted as an
# SMTP client. If it does not, the connection is aborted.
#
#tls_verify_hosts =

# A weaker form of checking: if a client matches `tls_try_verify_hosts' (but
# not `tls_verify_hosts'), request a certificate and check it against
# `tls_verify_certificates' but do not abort the connection if there is no
# certificate or if the certificate presented does not match. (This
# condition can be tested for in ACLs through `verify = certificate')
#
#tls_try_verify_hosts = *

### main/03_exim4-config_tlsoptions
#################################

# TLS/SSL configuration.
# See /usr/share/doc/exim4-base/README.Debian.gz for explanations.


.ifdef MAIN_TLS_ENABLE
# Defines what hosts to 'advertise' STARTTLS functionality to. The
# default, *, will advertise to all hosts that connect with EHLO.
.ifndef MAIN_TLS_ADVERTISE_HOSTS
MAIN_TLS_ADVERTISE_HOSTS = *
.endif
tls_advertise_hosts = MAIN_TLS_ADVERTISE_HOSTS


# Full paths to Certificate and Private Key. The Private Key file
# must be kept 'secret' and should be owned by root.Debian-exim mode
# 640 (-rw-r-----). exim-gencert takes care of these prerequisites.
# Normally, exim4 looks for certificate and key in different files:
#   MAIN_TLS_CERTIFICATE - path to certificate file,
#                          CONFDIR/exim.crt if unset
#   MAIN_TLS_PRIVATEKEY  - path to private key file
#                          CONFDIR/exim.key if unset
# You can also configure exim to look for certificate and key in the
# same file, set MAIN_TLS_CERTKEY to that file to enable. This takes
# precedence over all other settings regarding certificate and key file.
.ifdef MAIN_TLS_CERTKEY
tls_certificate = MAIN_TLS_CERTKEY
.else
.ifndef MAIN_TLS_CERTIFICATE
MAIN_TLS_CERTIFICATE = CONFDIR/exim.crt
.endif
tls_certificate = MAIN_TLS_CERTIFICATE

.ifndef MAIN_TLS_PRIVATEKEY
MAIN_TLS_PRIVATEKEY = CONFDIR/exim.key
.endif
tls_privatekey = MAIN_TLS_PRIVATEKEY
.endif

# Pointer to the CA Certificates against which client certificates are
# checked. This is controlled by the `tls_verify_hosts' and
# `tls_try_verify_hosts' lists below.
# If you want to check server certificates, you need to add an
# tls_verify_certificates statement to the smtp transport.
# /etc/ssl/certs/ca-certificates.crt is generated by
# the "ca-certificates" package's update-ca-certificates(8) command.
.ifndef MAIN_TLS_VERIFY_CERTIFICATES
MAIN_TLS_VERIFY_CERTIFICATES = ${if exists{/etc/ssl/certs/ca-certificates.crt}
                                    {/etc/ssl/certs/ca-certificates.crt}
                {/dev/null}}
.endif
tls_verify_certificates = MAIN_TLS_VERIFY_CERTIFICATES


# A list of hosts which are constrained by `tls_verify_certificates'. A host
# that matches `tls_verify_host' must present a certificate that is
# verifyable through `tls_verify_certificates' in order to be accepted as an
# SMTP client. If it does not, the connection is aborted.
.ifdef MAIN_TLS_VERIFY_HOSTS
tls_verify_hosts = MAIN_TLS_VERIFY_HOSTS
.endif

# A weaker form of checking: if a client matches `tls_try_verify_hosts' (but
# not `tls_verify_hosts'), request a certificate and check it against
# `tls_verify_certificates' but do not abort the connection if there is no
# certificate or if the certificate presented does not match. (This
# condition can be tested for in ACLs through `verify = certificate')
.ifndef MAIN_TLS_TRY_VERIFY_HOSTS
MAIN_TLS_TRY_VERIFY_HOSTS = *
.endif
tls_try_verify_hosts = MAIN_TLS_TRY_VERIFY_HOSTS

.endif
smtp_accept_max = 50
smtp_accept_max_per_host = 5
smtp_accept_queue = 20
# split spool directory
split_spool_directory = true

# turn off message logs
message_logs = false

# queue control
deliver_queue_load_max = 10
queue_only_load = 15

### main/90_exim4-config_log_selector
#################################

# uncomment this for debugging
# MAIN_LOG_SELECTOR == MAIN_LOG_SELECTOR +all -subject -arguments

.ifdef MAIN_LOG_SELECTOR
log_selector = MAIN_LOG_SELECTOR
.endif


Und hier noch die Router Files.

Code: Select all

######################################################################
#                      ROUTERS CONFIGURATION                         #
#               Specifies how addresses are handled                  #
######################################################################
#     THE ORDER IN WHICH THE ROUTERS ARE DEFINED IS IMPORTANT!       #
# An address is passed to each router in turn until it is accepted.  #
######################################################################

begin routers


# This router routes to remote hosts over SMTP by explicit IP address,
# when an email address is given in "domain literal" form, for example,
# <user@[192.168.35.64]>. The RFCs require this facility. However, it is
# little-known these days, and has been exploited by evil people seeking
# to abuse SMTP relays. Consequently it is commented out in the default
# configuration. If you uncomment this router, you also need to uncomment
# allow_domain_literals above, so that Exim can recognize the syntax of
# domain literal addresses.

# domain_literal:
#   debug_print = "R: domain_literal for $local_part@$domain"
#   driver = ipliteral
#   domains = ! +local_domains
#   transport = remote_smtp


# router/150_exim4-config_hubbed_hosts
#################################

# route specific domains manually.
#
# see exim4-config_files(5) and spec.txt chapter 20.3 through 20.7 for
# more detailed documentation.

hubbed_hosts:
  debug_print = "R: hubbed_hosts for $domain"
  driver = manualroute
  domains = "${if exists{CONFDIR/hubbed_hosts}
                   {partial-lsearch;CONFDIR/hubbed_hosts}
              fail}"
  same_domain_copy_routing = yes
  route_data = ${lookup{$domain}partial-lsearch{CONFDIR/hubbed_hosts}}
  transport = remote_smtp

### router/200_exim4-config_primary
#################################
# This file holds the primary router, responsible for nonlocal mails

.ifdef DCconfig_internet
# configtype=internet
#
# deliver mail to the recipient if recipient domain is a domain we
# relay for. We do not ignore any target hosts here since delivering to
# a site local or even a link local address might be wanted here, and if
# such an address has found its way into the MX record of such a domain,
# the local admin is probably in a place where that broken MX record
# could be fixed.

dnslookup_relay_to_domains:
  debug_print = "R: dnslookup_relay_to_domains for $local_part@$domain"
  driver = dnslookup
  domains = ! +local_domains : +relay_to_domains
  transport = remote_smtp
  same_domain_copy_routing = yes
  no_more

# deliver mail directly to the recipient. This router is only reached
# for domains that we do not relay for. Since we most probably can't
# have broken MX records pointing to site local or link local IP
# addresses fixed, we ignore target hosts pointing to these addresses.

dnslookup:
  debug_print = "R: dnslookup for $local_part@$domain"
  driver = dnslookup
  #voa 02082006, domains= ... :! +relay_to_domains angefuegt
  #dadurch wird vermieden das lokale domains nochmal per dns abgefragt werden, was nur bei externen mails der fall ist
  #hierdurch wird der spamcheck router und alle unten folgenden router nicht mehr angesprochen
  domains =  ! +local_domains : ! +relay_to_domains
  transport = remote_smtp
  same_domain_copy_routing = yes
  # ignore private rfc1918 and APIPA addresses
  ignore_target_hosts = 0.0.0.0 : 127.0.0.0/8 : 192.168.0.0/16 :
                        172.16.0.0/12 : 10.0.0.0/8 : 169.254.0.0/16
  no_more

.endif


.ifdef DCconfig_local
# configtype=local
#
# Stand-alone system, so generate an error for mail to a non-local domain
nonlocal:
  debug_print = "R: nonlocal for $local_part@$domain"
  driver = redirect
  domains = ! +local_domains
  allow_fail
  data = :fail: Mailing to remote domains not supported
  no_more

.endif


.ifdef DCconfig_smarthost DCconfig_satellite
# configtype=smarthost or configtype=satellite
#
# Send all non-local mail to a single other machine (smarthost).
#
# This means _ALL_ non-local mail goes to the smarthost. This will most
# probably not do what you want for domains that are listed in
# relay_domains. The most typical use for relay_domains is to control
# relaying for incoming e-mail on secondary MX hosts. In that case,
# it doesn't make sense to send the mail to the smarthost since the
# smarthost will probably send the message right back here, causing a
# loop.
#
# If you want to use a smarthost while being secondary MX for some
# domains, you'll need to copy the dnslookup_relay_to_domains router
# here so that mail to relay_domains is handled separately.

smarthost:
  debug_print = "R: smarthost for $local_part@$domain"
  driver = manualroute
  domains = ! +local_domains
  transport = remote_smtp_smarthost
  route_list = * DCsmarthost byname
  host_find_failed = defer
  same_domain_copy_routing = yes
  no_more

.endif


# The "no_more" above means that all later routers are for
# domains in the local_domains list, i.e. just like Exim 3 directors.

### router/200_exim4-config_primary
#################################
# This file holds the primary router, responsible for nonlocal mails

.ifdef DCconfig_internet
# configtype=internet
#
# deliver mail to the recipient if recipient domain is a domain we
# relay for. We do not ignore any target hosts here since delivering to
# a site local or even a link local address might be wanted here, and if
# such an address has found its way into the MX record of such a domain,
# the local admin is probably in a place where that broken MX record
# could be fixed.

dnslookup_relay_to_domains:
  debug_print = "R: dnslookup_relay_to_domains for $local_part@$domain"
  driver = dnslookup
  domains = ! +local_domains : +relay_to_domains
  transport = remote_smtp
  same_domain_copy_routing = yes
  no_more

# deliver mail directly to the recipient. This router is only reached
# for domains that we do not relay for. Since we most probably can't
# have broken MX records pointing to site local or link local IP
# addresses fixed, we ignore target hosts pointing to these addresses.

dnslookup:
  debug_print = "R: dnslookup for $local_part@$domain"
  driver = dnslookup
  domains = ! +local_domains
  transport = remote_smtp
  same_domain_copy_routing = yes
  # ignore private rfc1918 and APIPA addresses
  ignore_target_hosts = 0.0.0.0 : 127.0.0.0/8 : 192.168.0.0/16 :
                        172.16.0.0/12 : 10.0.0.0/8 : 169.254.0.0/16 :
         255.255.255.255
  no_more

.endif


.ifdef DCconfig_local
# configtype=local
#
# Stand-alone system, so generate an error for mail to a non-local domain
nonlocal:
  debug_print = "R: nonlocal for $local_part@$domain"
  driver = redirect
  domains = ! +local_domains
  allow_fail
  data = :fail: Mailing to remote domains not supported
  no_more

.endif


.ifdef DCconfig_smarthost DCconfig_satellite
# configtype=smarthost or configtype=satellite
#
# Send all non-local mail to a single other machine (smarthost).
#
# This means _ALL_ non-local mail goes to the smarthost. This will most
# probably not do what you want for domains that are listed in
# relay_domains. The most typical use for relay_domains is to control
# relaying for incoming e-mail on secondary MX hosts. In that case,
# it doesn't make sense to send the mail to the smarthost since the
# smarthost will probably send the message right back here, causing a
# loop.
#
# If you want to use a smarthost while being secondary MX for some
# domains, you'll need to copy the dnslookup_relay_to_domains router
# here so that mail to relay_domains is handled separately.

smarthost:
  debug_print = "R: smarthost for $local_part@$domain"
  driver = manualroute
  domains = ! +local_domains
  transport = remote_smtp_smarthost
  route_list = * DCsmarthost byname
  host_find_failed = defer
  same_domain_copy_routing = yes
  no_more

.endif


# The "no_more" above means that all later routers are for
# domains in the local_domains list, i.e. just like Exim 3 directors.

real_local:
  debug_print = "R: real_local for $local_part@$domain"
  driver = accept
  domains = +local_domains
  local_part_prefix = real-
  check_local_user
  transport = LOCAL_DELIVERY


### router/300_exim4-config_real_local
#################################

# This router allows reaching a local user while avoiding local
# processing. This can be used to inform a user of a broken .forward
# file, for example. The userforward router does this.

real_local:
  debug_print = "R: real_local for $local_part@$domain"
  driver = accept
  domains = +local_domains
  local_part_prefix = real-
  check_local_user
  transport = LOCAL_DELIVERY

# router for the confixx aliases

confixx_aliases:
  driver = redirect
  data = ${lookup{$local_part@$domain}lsearch*@{/etc/exim4/confixx/confixx-aliases}}
  debug_print = "R: virtual for $local_part@$domain"
  pipe_transport = address_pipe
  condition = ${if and { {!match {$local_part}{^web(.*)p(.*)}} {!match {$local_part}{^confixx-du-(.*)}}} {1}{0}}

# This router handles aliasing using a traditional /etc/aliases file.
#
##### NB  You must ensure that /etc/aliases exists. It used to be the case
##### NB  that every Unix had that file, because it was the Sendmail default.
##### NB  These days, there are systems that don't have it. Your aliases
##### NB  file should at least contain an alias for "postmaster".
#
# Piping to programs in /etc/aliases is disabled per default.
# If that is a problem for you, see
#   /usr/share/doc/exim4-config/README.system_aliases
# or explanation and some workarounds.
#
# Note that the transports listed below are the same as are used for
# .forward files; you might want to set up different ones for pipe and
# file deliveries from aliases.

system_aliases:
  debug_print = "R: system_aliases for $local_part@$domain"
  driver = redirect
  domains = +local_domains
  allow_fail
  allow_defer
  data = ${lookup{$local_part}lsearch{/etc/aliases}}
#  user = list
#  group = mail
  file_transport = address_file
  pipe_transport = address_pipe
# directory_transport = address_directory

### router/400_exim4-config_system_aliases
#################################

# This router handles aliasing using a traditional /etc/aliases file.
#
##### NB  You must ensure that /etc/aliases exists. It used to be the case
##### NB  that every Unix had that file, because it was the Sendmail default.
##### NB  These days, there are systems that don't have it. Your aliases
##### NB  file should at least contain an alias for "postmaster".
#
# This router handles the local part in a case-insensitive way which
# satisfies the RFCs requirement that postmaster be reachable regardless
# of case. If you decide to handle /etc/aliases in a caseful way, you
# need to make arrangements for a caseless postmaster.
#
# Delivery to arbitrary directories, files, and piping to programs in
# /etc/aliases is disabled per default.
# If that is a problem for you, see
#   /usr/share/doc/exim4-base/README.Debian.gz
# for explanation and some workarounds.

system_aliases:
  debug_print = "R: system_aliases for $local_part@$domain"
  driver = redirect
  domains = +local_domains
  allow_fail
  allow_defer
  data = ${lookup{$local_part}lsearch{/etc/aliases}}
  .ifdef SYSTEM_ALIASES_USER
  user = SYSTEM_ALIASES_USER
  .endif
  .ifdef SYSTEM_ALIASES_GROUP
  group = SYSTEM_ALIASES_GROUP
  .endif
  .ifdef SYSTEM_ALIASES_FILE_TRANSPORT
  file_transport = SYSTEM_ALIASES_FILE_TRANSPORT
  .endif
  .ifdef SYSTEM_ALIASES_PIPE_TRANSPORT
  pipe_transport = SYSTEM_ALIASES_PIPE_TRANSPORT
  .endif
  .ifdef SYSTEM_ALIASES_DIRECTORY_TRANSPORT
  directory_transport = SYSTEM_ALIASES_DIRECTORY_TRANSPORT
  .endif

### router/500_exim4-config_hubuser
#################################

.ifdef DCconfig_satellite
# This router is only used for configtype=satellite.
# It takes care to route all mail targetted to <somelocaluser@this.machine>
# to the host where we read our mail
#
hub_user:
  debug_print = "R: hub_user for $local_part@$domain"
  driver = redirect
  domains = +local_domains
  data = ${local_part}@DCreadhost
  check_local_user

.endif


spamcheck_router:
  no_verify
  check_local_user
# condition = "${if and { {!def:h_X-Spam-Flag:} {!eq {$received_protocol}{spam-scanned}}} {1}{0}}"
#voa 02082006
#hostaddresse !=127.0.0.1
 condition = "${if and { {!def:h_X-Spam-Flag:} {!eq {$received_protocol}{spam-scanned}} {!eq {$sender_host_address}{127.0.0.1}}} {1}{0}}"

  driver = accept
  transport = spamcheck

### router/600_exim4-config_userforward
#################################

# This router handles forwarding using traditional .forward files in users'
# home directories. It also allows mail filtering with a forward file
# starting with the string "# Exim filter" or "# Sieve filter".
#
# The no_verify setting means that this router is skipped when Exim is
# verifying addresses. Similarly, no_expn means that this router is skipped if
# Exim is processing an EXPN command.
#
# The check_ancestor option means that if the forward file generates an
# address that is an ancestor of the current one, the current one gets
# passed on instead. This covers the case where A is aliased to B and B
# has a .forward file pointing to A.
#
# The four transports specified at the end are those that are used when
# forwarding generates a direct delivery to a directory, or a file, or to a
# pipe, or sets up an auto-reply, respectively.
#
userforward:
  debug_print = "R: userforward for $local_part@$domain"
  driver = redirect
  domains = +local_domains
  check_local_user
  file = $home/.forward
  require_files = $local_part:$home/.forward
  no_verify
  no_expn
  check_ancestor
  allow_filter
  forbid_smtp_code = true
  directory_transport = address_directory
  file_transport = address_file
  pipe_transport = address_pipe
  reply_transport = address_reply
  skip_syntax_errors
  syntax_errors_to = real-$local_part@$domain
  syntax_errors_text =
    This is an automatically generated message. An error hasn
    been found in your .forward file. Details of the error aren
    reported below. While this error persists, you will receiven
    a copy of this message for every message that is addressedn
    to you. If your .forward file is a filter file, or if it isn
    a non-filter file containing no valid forwarding addresses,n
    a copy of each incoming message will be put in your normaln
    mailbox. If a non-filter file contains at least one validn
    forwarding address, forwarding to the valid addresses willn
    happen, and those will be the only deliveries that occur.


procmail:
  debug_print = "R: procmail for $local_part@$domain"
  driver = accept
  domains = +local_domains
  check_local_user
  transport = procmail_pipe
  # emulate OR with "if exists"-expansion
  require_files = ${local_part}:
                  ${if exists{/etc/procmailrc}
                    {/etc/procmailrc}{${home}/.procmailrc}}:
                  +/usr/bin/procmail
  no_verify
  no_expn


### router/800_exim4-config_maildrop
#################################

maildrop:
  debug_print = "R: maildrop for $local_part@$domain"
  driver = accept
  domains = +local_domains
  check_local_user
  transport = maildrop_pipe
  require_files = ${local_part}:${home}/.mailfilter:+/usr/bin/maildrop
  no_verify
  no_expn


### router/900_exim4-config_local_user
#################################

# This router matches local user mailboxes. If the router fails, the error
# message is "Unknown user".

local_user:
  debug_print = "R: local_user for $local_part@$domain"
  driver = accept
  domains = +local_domains
  check_local_user
  local_parts = ! root
  transport = LOCAL_DELIVERY
  cannot_route_message = Unknown user

### router/mmm_mail4root
#################################
# deliver mail addressed to root to /var/mail/mail as user mail:mail
# if it was not redirected in /etc/aliases or by other means
# Exim cannot deliver as root since 4.24 (FIXED_NEVER_USERS)

mail4root:
  debug_print = "R: mail4root for $local_part@$domain"
  driver = redirect
  domains = +local_domains
  data = /var/mail/mail
  file_transport = address_file
  local_parts = root
  user = mail
  group = mail

Top

User avatar
Joe User
Project Manager
Project Manager
Posts: 11518
Joined: 2003-02-27 01:00
Location: Hamburg

Re: Mysteriöse Mail-Duplikate auf Root-Server

Post by Joe User »

Irgendwo in Deinem Debian muss es eine komplette exim.conf geben, Exim wird die von Dir geposteten unvollständigen/rohen Configs nicht für jeden SMTP-Connect neu parsen...
PayPal.Me/JoeUserFreeBSD Remote Installation
Wings for LifeWings for Life World Run

„If there’s more than one possible outcome of a job or task, and one
of those outcomes will result in disaster or an undesirable consequence,
then somebody will do it that way.“ -- Edward Aloysius Murphy Jr.
Top

silvio_l
Posts: 12
Joined: 2008-12-10 15:31

Re: Mysteriöse Mail-Duplikate auf Root-Server

Post by silvio_l »

Ein exim4 -bV hat mir folgendes geliefert:

Code: Select all

Exim version 4.63 #1 built 20-Jan-2007 10:42:32
Copyright (c) University of Cambridge 2006
Berkeley DB: Sleepycat Software: Berkeley DB 4.3.29: (September  6, 2005)
Support for: crypteq iconv() IPv6 PAM Perl GnuTLS move_frozen_messages Content_Scanning Old_Demime
Lookups: lsearch wildlsearch nwildlsearch iplsearch cdb dbm dbmnz dnsdb dsearch ldap ldapdn ldapm mysql nis nis0 passwd pgsql sqlite
Authenticators: cram_md5 cyrus_sasl plaintext spa
Routers: accept dnslookup ipliteral iplookup manualroute queryprogram redirect
Transports: appendfile/maildir/mailstore/mbx autoreply lmtp pipe smtp
Fixed never_users: 0
Size of off_t: 8
Configuration file is /var/lib/exim4/config.autogenerated


Und hier ist das was exim als Config-File nutzt (siehe letzte Zeile der obigen Ausgabe):

Code: Select all

#########
# WARNING WARNING WARNING
# WARNING WARNING WARNING
# WARNING WARNING WARNING
# WARNING WARNING WARNING
# WARNING WARNING WARNING
# This file is generated dynamically from the files in
# the conf.d/ directory, or from exim4.conf.template respectively.
# Additional information is read from update-exim4.conf.conf
# This version of the file was created from the directory /etc/exim4
# Any changes you make here will be lost.
# See /usr/share/doc/exim4-base/README.Debian.gz and update-exim4.conf(8)
# for instructions of customization.
# WARNING WARNING WARNING
# WARNING WARNING WARNING
# WARNING WARNING WARNING
# WARNING WARNING WARNING
# WARNING WARNING WARNING
#########

exim_path = /usr/sbin/exim4

CONFDIR = /etc/exim4

domainlist local_domains = @:localhost:/etc/exim4/confixx/confixx-domains

domainlist relay_to_domains =

hostlist relay_from_hosts = 127.0.0.1 : ::::1 :  : 127.0.0.1 : ::::1

qualify_domain = new-color.de

.ifndef DCreadhost
DCreadhost =
.endif

.ifndef DCsmarthost
DCsmarthost =
.endif

LOCAL_DELIVERY=maildir_home

gecos_pattern = ^([^,:]*)
gecos_name = $1

DCconfig_internet = 1

av_scanner = clamd:/var/run/clamav/clamd.ctl

MAX_MESSAGESIZE_VSCAN = 3M

acl_smtp_rcpt = acl_check_rcpt

acl_smtp_data = acl_check_data

.ifdef MESSAGE_SIZE_LIMIT
message_size_limit = 100M
.endif

.ifndef DC_minimaldns
host_lookup = *
.endif

rfc1413_hosts = *
rfc1413_query_timeout = 10s

ignore_bounce_errors_after = 2d

timeout_frozen_after = 7d

freeze_tell = postmaster

bounce_message_file = /etc/exim4/templates/bounce_message
warn_message_file = /etc/exim4/templates/warning_message

.ifndef SPOOLDIR
SPOOLDIR = /var/spool/exim4
.endif
spool_directory = SPOOLDIR

trusted_users = uucp : www-data

log_selector = +tls_cipher +tls_peerdn

tls_advertise_hosts = *

tls_certificate = CONFDIR/exim.crt
tls_privatekey = CONFDIR/exim.key

tls_verify_certificates = /etc/ssl/certs/ca-certificates.crt

smtp_accept_max = 50
smtp_accept_max_per_host = 5
smtp_accept_queue = 20

split_spool_directory = true

message_logs = false

deliver_queue_load_max = 10
queue_only_load = 15

.ifdef MAIN_LOG_SELECTOR
log_selector = MAIN_LOG_SELECTOR
.endif

begin acl

acl_whitelist_local_deny:
  accept hosts = ${if exists{CONFDIR/local_host_whitelist}
                        {CONFDIR/local_host_whitelist}
                        {}}
  accept senders = ${if exists{CONFDIR/local_sender_whitelist}
                        {CONFDIR/local_sender_whitelist}
                        {}}

acl_check_mail:
  .ifdef CHECK_MAIL_HELO_ISSUED
  deny
    message = no HELO given before MAIL command
    condition = ${if def:sender_helo_name {no}{yes}}
  .endif

  accept

acl_check_rcpt:
  defer
    message        = $sender_host_address is not yet authorized to deliver
                     mail from <$sender_address> to <$local_part@$domain>.
                     Please try later.
    log_message    = greylisted.
    !senders       = :
    !hosts         = : +relay_from_hosts :
                     ${if exists {/etc/greylistd/whitelist-hosts}
                                 {/etc/greylistd/whitelist-hosts}{}} :
                     ${if exists {/var/lib/greylistd/whitelist-hosts}
                                 {/var/lib/greylistd/whitelist-hosts}{}}
    !authenticated = *
    !acl           = acl_whitelist_local_deny
    domains        = +local_domains : +relay_to_domains
    verify         = recipient/callout=20s,use_sender,defer_ok
    condition      = ${readsocket{/var/run/greylistd/socket}
                                 {--grey
                                  $sender_host_address
                                  $sender_address
                                  $local_part@$domain}
                                 {5s}{}{false}}

  accept hosts = :

  deny    domains       = +local_domains
          local_parts   = ^[.] : ^.*[@%!/|]
          message       = restricted characters in address

  deny    domains       = !+local_domains
          local_parts   = ^[./|] : ^.*[@%!] : ^.*/\.\./
          message       = restricted characters in address

  accept local_parts = postmaster
         domains = +local_domains

  deny message = Sender verification failed
        !acl = acl_whitelist_local_deny
        !verify = sender

  deny message = sender envelope address $sender_address is locally blacklisted here. If you think this is wrong, get in touch with postmaster
       !acl = acl_whitelist_local_deny
       senders = ${if exists{CONFDIR/local_sender_blacklist}
                             {CONFDIR/local_sender_blacklist}
                             {}}

  deny message = sender IP address $sender_host_address is locally blacklisted here. If you think this is wrong, get in touch with postmaster
       !acl = acl_whitelist_local_deny
       hosts = ${if exists{CONFDIR/local_host_blacklist}
                             {CONFDIR/local_host_blacklist}
                             {}}

  deny message = Message was delivered by ratware
       log_message = remote host used IP address in HELO/EHLO greeting
       condition   = ${if isip {$sender_helo_name}{true}{false}}

  deny message = Message was delivered by ratware
       log_message = remote host did not present HELO/EHLO greeting.
       condition   = ${if def:sender_helo_name {false}{true}}

  accept domains = +local_domains
         endpass
         message = unknown user
         verify = recipient

  accept domains = +relay_to_domains
         endpass
         message = unrouteable address
         verify = recipient

  accept hosts = +relay_from_hosts

  accept authenticated = *

  deny message = relay not permitted

deny dnslists = nl.spamcop.net :
      relays.ordb.org :
      relays.osirusoft.com :
      opm.blitzed.org   #:

acl_check_data:
  defer
    message        = $sender_host_address is not yet authorized to deliver
                     mail from <$sender_address> to <$recipients>.
                     Please try later.
    log_message    = greylisted.
    senders        = :
    !hosts         = : +relay_from_hosts :
                     ${if exists {/etc/greylistd/whitelist-hosts}
                                 {/etc/greylistd/whitelist-hosts}{}} :
                     ${if exists {/var/lib/greylistd/whitelist-hosts}
                                 {/var/lib/greylistd/whitelist-hosts}{}}
    !authenticated = *
    !acl           = acl_whitelist_local_deny
    condition      = ${readsocket{/var/run/greylistd/socket}
                                 {--grey
                                  $sender_host_address
                                  $recipients}
                                  {5s}{}{false}}

   warn condition = ${if !def:h_Message-ID: {1}}
        hosts = +relay_from_hosts
        message = Message-ID: <E$message_id@$primary_hostname>
           

 deny
     message     = We do not accept ".$found_extension" attachments here, please create an archive like zip or tgz or rar to send your file. thx.
     demime      = bat:btm:cmd:com:cpl:dll:exe:lnk:msi:pif:prf:reg:scr:vbs:url:sh

  accept authenticated = *
  accept hosts = +relay_from_hosts
 

accept
  condition   = ${if >{$message_size}{MAX_MESSAGESIZE_VSCAN} {true}}
  logwrite    = :main: Not classified
                      (message size larger than MAX_MESSAGESIZE_VSCAN)
           
warn message = X-ScanP:
   scanned by $primary_hostname

deny message = Message contains malware or a virus ($malware_name).
   log_message = $sender_host_address tried sending $malware_name
   demime = *
   malware = *
accept

begin routers

hubbed_hosts:
  debug_print = "R: hubbed_hosts for $domain"
  driver = manualroute
  domains = "${if exists{CONFDIR/hubbed_hosts}
                   {partial-lsearch;CONFDIR/hubbed_hosts}
              fail}"
  same_domain_copy_routing = yes
  route_data = ${lookup{$domain}partial-lsearch{CONFDIR/hubbed_hosts}}
  transport = remote_smtp

.ifdef DCconfig_internet

dnslookup_relay_to_domains:
  debug_print = "R: dnslookup_relay_to_domains for $local_part@$domain"
  driver = dnslookup
  domains = ! +local_domains : +relay_to_domains
  transport = remote_smtp
  same_domain_copy_routing = yes
  no_more

dnslookup:
  debug_print = "R: dnslookup for $local_part@$domain"
  driver = dnslookup
  domains =  ! +local_domains : ! +relay_to_domains
  transport = remote_smtp
  same_domain_copy_routing = yes
  ignore_target_hosts = 0.0.0.0 : 127.0.0.0/8 : 192.168.0.0/16 :
                        172.16.0.0/12 : 10.0.0.0/8 : 169.254.0.0/16
  no_more

.endif

.ifdef DCconfig_local
nonlocal:
  debug_print = "R: nonlocal for $local_part@$domain"
  driver = redirect
  domains = ! +local_domains
  allow_fail
  data = :fail: Mailing to remote domains not supported
  no_more

.endif

.ifdef DCconfig_smarthost DCconfig_satellite

smarthost:
  debug_print = "R: smarthost for $local_part@$domain"
  driver = manualroute
  domains = ! +local_domains
  transport = remote_smtp_smarthost
  route_list = * DCsmarthost byname
  host_find_failed = defer
  same_domain_copy_routing = yes
  no_more

.endif

real_local:
  debug_print = "R: real_local for $local_part@$domain"
  driver = accept
  domains = +local_domains
  local_part_prefix = real-
  check_local_user
  transport = LOCAL_DELIVERY

confixx_aliases:
  driver = redirect
  data = ${lookup{$local_part@$domain}lsearch*@{/etc/exim4/confixx/confixx-aliases}}
  debug_print = "R: virtual for $local_part@$domain"
  pipe_transport = address_pipe
  condition = ${if and { {!match {$local_part}{^web(.*)p(.*)}} {!match {$local_part}{^confixx-du-(.*)}}} {1}{0}}

system_aliases:
  debug_print = "R: system_aliases for $local_part@$domain"
  driver = redirect
  domains = +local_domains
  allow_fail
  allow_defer
  data = ${lookup{$local_part}lsearch{/etc/aliases}}
  file_transport = address_file
  pipe_transport = address_pipe

.ifdef DCconfig_satellite
hub_user:
  debug_print = "R: hub_user for $local_part@$domain"
  driver = redirect
  domains = +local_domains
  data = ${local_part}@DCreadhost
  check_local_user

.endif

spamcheck_router:
  no_verify
  check_local_user
 condition = "${if and { {!def:h_X-Spam-Flag:} {!eq {$received_protocol}{spam-scanned}} {!eq {$sender_host_address}{127.0.0.1}}} {1}{0}}"

  driver = accept
  transport = spamcheck

userforward:
  debug_print = "R: userforward for $local_part@$domain"
  driver = redirect
  domains = +local_domains
  check_local_user
  file = $home/.forward
  require_files = $local_part:$home/.forward
  no_verify
  no_expn
  check_ancestor
  allow_filter
  forbid_smtp_code = true
  directory_transport = address_directory
  file_transport = address_file
  pipe_transport = address_pipe
  reply_transport = address_reply
  skip_syntax_errors
  syntax_errors_to = real-$local_part@$domain
  syntax_errors_text =
    This is an automatically generated message. An error hasn
    been found in your .forward file. Details of the error aren
    reported below. While this error persists, you will receiven
    a copy of this message for every message that is addressedn
    to you. If your .forward file is a filter file, or if it isn
    a non-filter file containing no valid forwarding addresses,n
    a copy of each incoming message will be put in your normaln
    mailbox. If a non-filter file contains at least one validn
    forwarding address, forwarding to the valid addresses willn
    happen, and those will be the only deliveries that occur.

procmail:
  debug_print = "R: procmail for $local_part@$domain"
  driver = accept
  domains = +local_domains
  check_local_user
  transport = procmail_pipe
  require_files = ${local_part}:
                  ${if exists{/etc/procmailrc}
                    {/etc/procmailrc}{${home}/.procmailrc}}:
                  +/usr/bin/procmail
  no_verify
  no_expn

maildrop:
  debug_print = "R: maildrop for $local_part@$domain"
  driver = accept
  domains = +local_domains
  check_local_user
  transport = maildrop_pipe
  require_files = ${local_part}:${home}/.mailfilter:+/usr/bin/maildrop
  no_verify
  no_expn

local_user:
  debug_print = "R: local_user for $local_part@$domain"
  driver = accept
  domains = +local_domains
  check_local_user
  local_parts = ! root
  transport = LOCAL_DELIVERY
  cannot_route_message = Unknown user

mail4root:
  debug_print = "R: mail4root for $local_part@$domain"
  driver = redirect
  domains = +local_domains
  data = /var/mail/mail
  file_transport = address_file
  local_parts = root
  user = mail
  group = mail

begin transports

address_file:
  debug_print = "T: address_file for $local_part@$domain"
  driver = appendfile
  delivery_date_add
  envelope_to_add
  return_path_add

address_pipe:
  debug_print = "T: address_pipe for $local_part@$domain"
  driver = pipe
  return_fail_output

address_reply:
  debug_print = "T: autoreply for $local_part@$domain"
  driver = autoreply

mail_spool:
  debug_print = "T: appendfile for $local_part@$domain"
  driver = appendfile
  file = /var/mail/$local_part
  delivery_date_add
  envelope_to_add
  return_path_add
  group = mail
  mode = 0660
  mode_fail_narrower = false

maildir_home:
  debug_print = "T: maildir_home for $local_part@$domain"
  driver = appendfile
  directory = $home/Maildir
  delivery_date_add
  envelope_to_add
  return_path_add
  maildir_format
  mode = 0600
  mode_fail_narrower = false

maildir_sysfilter:
  debug_print = "T: maildir_home for $local_part@$domain"
  driver = appendfile
  directory = /mails/archiv/Maildir
  delivery_date_add
  envelope_to_add
  return_path_add
  maildir_format
  mode = 0600
  mode_fail_narrower = false

maildrop_pipe:
  debug_print = "T: maildrop_pipe for $local_part@$domain"
  driver = pipe
  path = "/bin:/usr/bin:/usr/local/bin"
  command = "/usr/bin/maildrop"
  return_path_add
  delivery_date_add
  envelope_to_add

spamcheck:
  driver = pipe
  command = "/usr/sbin/exim4 -oMr spam-scanned -bS"
  use_bsmtp = true
  transport_filter = "/usr/bin/spamc -s 150000 -u $local_part"
  home_directory = "/tmp"
  current_directory = "/tmp"
  user = Debian-exim
  group = Debian-exim
  log_output = true
  return_fail_output = true
  return_path_add = false
  message_prefix =
  message_suffix =

procmail_pipe:
  debug_print = "T: procmail_pipe for $local_part@$domain"
  driver = pipe
  path = "/bin:/usr/bin:/usr/local/bin"
  command = "/usr/bin/procmail"
  return_path_add
  delivery_date_add
  envelope_to_add

remote_smtp:
  debug_print = "T: remote_smtp for $local_part@$domain"
  driver = smtp

remote_smtp_smarthost:
  debug_print = "T: remote_smtp_smarthost for $local_part@$domain"
  driver = smtp
  hosts_try_auth = ${if exists{CONFDIR/passwd.client}
        {
        ${lookup{$host}nwildlsearch{CONFDIR/passwd.client}{$host_address}}
        }
        {}
      }
 
 

address_directory:
  debug_print = "T: address_directory for $local_part@$domain"
  driver = appendfile
  delivery_date_add
  envelope_to_add
  return_path_add
  check_string = ""
  escape_string = ""
  maildir_format

begin retry

*                      *           F,2h,15m; G,16h,1h,1.5; F,4d,6h

begin rewrite

*@+local_domains ${lookup{${local_part}}lsearch{/etc/email-addresses}
                   {$value}fail} Ffrs

*@+local_domains "${if exists {CONFDIR/email-addresses}
                    {${lookup{${local_part}}lsearch{CONFDIR/email-addresses}
          {$value}fail}}fail}" Ffrs

begin authenticators

plain:
  driver = plaintext
  public_name = PLAIN
  server_condition = "${if pam{$2:$3}{1}{0}}"
  server_set_id = $2
login:
  driver = plaintext
  public_name = LOGIN
  server_prompts = "Username:: : Password::"
  server_condition = "${if pam{$1:$2}{1}{0}}"
  server_set_id = $1



Danke schonmal für die Hilfe ;-)
Top

User avatar
Joe User
Project Manager
Project Manager
Posts: 11518
Joined: 2003-02-27 01:00
Location: Hamburg

Re: Mysteriöse Mail-Duplikate auf Root-Server

Post by Joe User »

Deaktiviere mal den Spamcheck...
PayPal.Me/JoeUserFreeBSD Remote Installation
Wings for LifeWings for Life World Run

„If there’s more than one possible outcome of a job or task, and one
of those outcomes will result in disaster or an undesirable consequence,
then somebody will do it that way.“ -- Edward Aloysius Murphy Jr.
Top

silvio_l
Posts: 12
Joined: 2008-12-10 15:31

Re: Mysteriöse Mail-Duplikate auf Root-Server

Post by silvio_l »

Reicht es wenn ich dafür den folgenden Bereich auskommentiere oder muss ich noch irgendwelche anderen Flags setzen/entfernen?

Code: Select all

spamcheck:
  driver = pipe
  command = "/usr/sbin/exim4 -oMr spam-scanned -bS"
  use_bsmtp = true
  transport_filter = "/usr/bin/spamc -s 150000 -u $local_part"
  home_directory = "/tmp"
  current_directory = "/tmp"
  user = Debian-exim
  group = Debian-exim
  log_output = true
  return_fail_output = true
  return_path_add = false
  message_prefix =
  message_suffix =


Habe den Teil für den spamcheck aus der Split-Config verschoben und den exim neu gestartet. Nach Überprüfung des automatisch neu genierten Configfiles ist der spamcheck-Block nicht mehr enthalten also inaktiv (denke ich).

Und nun? Abwarten und Tee trinken ;-) ?

Gruß
Silvio
Top

silvio_l
Posts: 12
Joined: 2008-12-10 15:31

Re: Mysteriöse Mail-Duplikate auf Root-Server

Post by silvio_l »

Nachdem ich nun in der mainlog von exim folgendes fand:

== transport "spamcheck" not found in spamcheck_router router

habe ich noch den "router-split" aus der config verschoben und wiederum neu gestartet.

Das exim paniclog enthält im Übrigen lauter einträge mit dem Inhalt "2008-12-12 10:19:22 1LB49C-0002ox-32 malware acl condition: clamd: unable to read from socket (Connection timed out)". In wie weit das damit zu tun haben könnte kann ich leider auch nicht erkennen. Aber im Normalfall sollte das paniclog doch leer sein oder?
Top

User avatar
Joe User
Project Manager
Project Manager
Posts: 11518
Joined: 2003-02-27 01:00
Location: Hamburg

Re: Mysteriöse Mail-Duplikate auf Root-Server

Post by Joe User »

Ich bin kein Exim-User, daher kann ich leider nur auf Grund der Config und den Logs "raten". Der spamcheck enthält die einzige Referenz zum User Debian-exim (ja ich weiss, dass Exim unter Debian selbst auch unter diesem User läuft) und laut Log stimmt auch etwas mit Deinem Clamd nicht. Daher solltest Du Clamd erstmal auch aus der Config schmeissen, genaueres verrät die Exim-Doku. Eventuell meldet sich auch noch ein Exim-User zu Wort und hilft Dir weiter...
PayPal.Me/JoeUserFreeBSD Remote Installation
Wings for LifeWings for Life World Run

„If there’s more than one possible outcome of a job or task, and one
of those outcomes will result in disaster or an undesirable consequence,
then somebody will do it that way.“ -- Edward Aloysius Murphy Jr.
Top

silvio_l
Posts: 12
Joined: 2008-12-10 15:31

Re: Mysteriöse Mail-Duplikate auf Root-Server

Post by silvio_l »

Würde ja an sich auch gerne auf Postfix umsteigen, scheue mich jedoch ein bisschen vor dem Aufwand und den eventuell auftretenden Problemen.

Kann mir keinen großen Ausfall erlauben auf dem Server. Und gerade was die Zusammenarbeit mit Confixx usw. betrifft sind meine Erfahrungswerte zu wenig bzw. mein Wissensstand reicht dazu nicht.

Ist sicher kein Problem das zu lernen nur leider ist eine Produktive Umgebung nicht der richtige Übungsort.

Gibt es irgendwelche Erfahrungen was den Umstieg auf Postfix von Exim unter Confixx angeht?

Auf jeden Fall hast mir bis hier her schon mal sehr gut geholfen, Danke dafür! Andere "zu Wort Meldungen" wären natürlich auch ganz nett ;-)

Gruß
Silvio
Top

silvio_l
Posts: 12
Joined: 2008-12-10 15:31

Re: Mysteriöse Mail-Duplikate auf Root-Server

Post by silvio_l »

Hallo,

habe bis heute nachdem der spamcheck (Router und Transport Config) deaktiviert wurde keine identischen Mails mehr im Log. Das ist auf jeden Fall schon mal sehr gut. Am besten wäre natürlich, wenn man da Problem "spamcheck", was ja offensichtlich der Verursacher war, genau bestimmen könnte.

Jemand eine Ahnung was da falsch bzw. defekt sein könnte?

Gruß

Silvio
Top

silvio_l
Posts: 12
Joined: 2008-12-10 15:31

Re: Mysteriöse Mail-Duplikate auf Root-Server

Post by silvio_l »

Kommando zurück!

E-Mails kommen weiterhin, auch mit deaktiviertem spamcheck, mehrfach an. Siehe Log-Ausschnitt:

Code: Select all

2008-12-15 12:07:42 1LCAO3-0000Z9-Bz <= mail_1_@*****.de H=*****.de [IP] P=esmtp S=637585 id=4604B562AF3E73408108A0DF87852D8301C8E410@ex-1.*****.ORG
2008-12-15 12:07:42 1LCAYU-0000dP-6i <= mail_1_@*****.de H=*****.de [IP] P=esmtp S=637580 id=4604B562AF3E73408108A0DF87852D8301C8E410@ex-1.*****.ORG
2008-12-15 12:07:42 1LCB4K-0000qZ-Ms <= mail_1_@*****.de H=*****.de [IP] P=esmtp S=637580 id=4604B562AF3E73408108A0DF87852D8301C8E410@ex-1.*****.ORG
2008-12-15 12:07:43 1LCAO3-0000Z9-Bz => web24p9 <user@unsere-domain.de> R=local_user T=maildir_home
2008-12-15 12:07:43 1LCAO3-0000Z9-Bz Completed
2008-12-15 12:07:43 1LCAYU-0000dP-6i => web24p9 <user@unsere-domain.de> R=local_user T=maildir_home
2008-12-15 12:07:43 1LCAYU-0000dP-6i Completed
2008-12-15 12:07:43 1LCB4K-0000qZ-Ms => web24p9 <user@unsere-domain.de> R=local_user T=maildir_home
2008-12-15 12:07:43 1LCB4K-0000qZ-Ms Completed
2008-12-15 12:07:43 1LCAfR-0000gV-T0 <= mail_2_@*****.de H=*****.de [IP] P=esmtps X=TLS-1.0:DHE_RSA_AES_256_CBC_SHA1:32 S=1585512 id=OF8123B969.A3C16513-ONC1257520.00394888-C1257520.00395738@*****.de
2008-12-15 12:07:43 1LCAfR-0000gV-T0 => web24p9 <user@unsere-domain.de> R=local_user T=maildir_home
2008-12-15 12:07:43 1LCAfR-0000gV-T0 Completed
2008-12-15 12:07:47 1LCBDM-0000t2-Qy <= mail_2_@*****.de H=*****.de [IP] P=esmtps X=TLS-1.0:DHE_RSA_AES_256_CBC_SHA1:32 S=1585512 id=OF8123B969.A3C16513-ONC1257520.00394888-C1257520.00395738@*****.de
2008-12-15 12:07:47 1LCBDM-0000t2-Qy => web24p9 <user@unsere-domain.de> R=local_user T=maildir_homeme
2008-12-15 12:07:47 1LCBDM-0000t2-Qy Completed


Muss also an irgendetwas anderem liegen... Merkwürdig ist auch das die erste E-Mail von mail_1_@*****.de 5 Byte größer als die beiden anderen ist aber trotzdem die selbe ID auf der Senderseite hat.

Gruß
Silvio
Top

Roger Wilco
Administrator
Administrator
Posts: 6001
Joined: 2004-05-23 12:53

Re: Mysteriöse Mail-Duplikate auf Root-Server

Post by Roger Wilco »

Die E-Mails kommen definitiv von außen und werden mehrfach eingeliefert, zu sehen an den unterschiedlichen Message-IDs auf deinem System. Kannst du das Problem auf eine bestimmte Domain, einen bestimmten Empfänger oder Sender (bzw. sendenden Host) einschränken?
Top