Rocksolid Light

Welcome to RetroBBS

mail  files  register  newsreader  groups  login

Message-ID:  

Dammit Jim, I'm an actor, not a doctor.

computers / comp.mail.sendmail / Re: oder of validity check

SubjectAuthor
* oder of validity checkRalph Spitzner
+* Re: oder of validity checkClaus Aßmann
|`* Re: oder of validity checkRalph Spitzner
| `* Re: order of validity checkClaus Aßmann
|  `- Re: order of validity checkRalph Spitzner
`* Re: oder of validity check<dl8fbh
 `- Re: oder of validity checkRalph Spitzner

1
oder of validity check

<sggigg$n1u$1@dont-email.me>

  copy mid

https://www.rocksolidbbs.com/computers/article-flat.php?id=269&group=comp.mail.sendmail#269

  copy link   Newsgroups: comp.mail.sendmail
Path: i2pn2.org!i2pn.org!eternal-september.org!reader02.eternal-september.org!.POSTED!not-for-mail
From: rasp@spitzner.org (Ralph Spitzner)
Newsgroups: comp.mail.sendmail
Subject: oder of validity check
Date: Sun, 29 Aug 2021 20:08:07 +0200
Organization: A noiseless patient Spider
Lines: 10
Message-ID: <sggigg$n1u$1@dont-email.me>
Mime-Version: 1.0
Content-Type: text/plain; charset=UTF-8; format=flowed
Content-Transfer-Encoding: 7bit
Injection-Date: Sun, 29 Aug 2021 18:09:20 -0000 (UTC)
Injection-Info: reader02.eternal-september.org; posting-host="4601722ce5430b90bbaf4908d1f20090";
logging-data="23614"; mail-complaints-to="abuse@eternal-september.org"; posting-account="U2FsdGVkX18bR4tw9SpJqpxPag1rAkF/HxyjzAaPa2g="
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:60.0) Gecko/20100101
Firefox/60.0 SeaMonkey/2.53.9
Cancel-Lock: sha1:a+SE5Iaed30rOIrbIVhwbW6OIZw=
X-Mozilla-News-Host: snews://new.eternal-september.org:563
 by: Ralph Spitzner - Sun, 29 Aug 2021 18:08 UTC

is there a way to change the order in which sendmail checks incoming messages ?
reason for asking is:
I see an incoming mail from something@blah.work for a user that doesn't exist, .work is set to deny in access, the user
is not valid,but sendmail rejects it temp with
reject=451 4.1.8 Possibly forged hostname for (ip)
so they just keep trying until it gets to a 551.....

regards
-rasp

Re: oder of validity check

<sggqmj$u1v$1@news.misty.com>

  copy mid

https://www.rocksolidbbs.com/computers/article-flat.php?id=270&group=comp.mail.sendmail#270

  copy link   Newsgroups: comp.mail.sendmail
Path: i2pn2.org!i2pn.org!weretis.net!feeder6.news.weretis.net!news.cmpublishers.com!adore2!news.litech.org!news.misty.com!.POSTED.kiel.esmtp.org!not-for-mail
From: INVALID_NO_CC_REMOVE_IF_YOU_DO_NOT_POST_ml+sendmail(-no-copies-please)@esmtp.org (Claus Aßmann)
Newsgroups: comp.mail.sendmail
Subject: Re: oder of validity check
Date: Sun, 29 Aug 2021 16:29:07 -0400 (EDT)
Organization: MGT Consulting
Sender: <ml+sendmail(-no-copies-please)@esmtp.org>
Message-ID: <sggqmj$u1v$1@news.misty.com>
References: <sggigg$n1u$1@dont-email.me>
Mime-Version: 1.0
Content-Type: text/plain; charset=ISO-8859-1
Content-Transfer-Encoding: 8bit
Injection-Date: Sun, 29 Aug 2021 20:29:07 -0000 (UTC)
Injection-Info: news.misty.com; posting-host="kiel.esmtp.org:195.244.235.220";
logging-data="30783"; mail-complaints-to="abuse@misty.com"
Mail-Copies-To: never
X-Newsreader: trn 4.0-test77 (Sep 1, 2010)
Originator: ca@x2.esmtp.org (Claus Assmann)
 by: Claus Aßmann - Sun, 29 Aug 2021 20:29 UTC

Ralph Spitzner wrote:
> is there a way to change the order in which sendmail checks incoming messages ?

Sure, it's all in rule(set)s.

> I see an incoming mail from something@blah.work for a user that doesn't exist, .work
> is set to deny in access, the user

"set" how?

> is not valid,but sendmail rejects it temp with
> reject=451 4.1.8 Possibly forged hostname for (ip)

The default rules do not use a "Possibly forged hostname"
so a ".work" entry does not apply to {client_name}.

Please provide the actual access map entries that should apply and
let us know whether you use FEATURE(delay_checks)

--
Note: please read the netiquette before posting. I will almost never
reply to top-postings which include a full copy of the previous
article(s) at the end because it's annoying, shows that the poster
is too lazy to trim his article, and it's wasting the time of all readers.

Re: oder of validity check

<sgi1ph$vdm$1@dont-email.me>

  copy mid

https://www.rocksolidbbs.com/computers/article-flat.php?id=271&group=comp.mail.sendmail#271

  copy link   Newsgroups: comp.mail.sendmail
Path: i2pn2.org!i2pn.org!eternal-september.org!reader02.eternal-september.org!.POSTED!not-for-mail
From: rasp@spitzner.org (Ralph Spitzner)
Newsgroups: comp.mail.sendmail
Subject: Re: oder of validity check
Date: Mon, 30 Aug 2021 09:35:03 +0200
Organization: A noiseless patient Spider
Lines: 21
Message-ID: <sgi1ph$vdm$1@dont-email.me>
References: <sggigg$n1u$1@dont-email.me> <sggqmj$u1v$1@news.misty.com>
Mime-Version: 1.0
Content-Type: text/plain; charset=UTF-8; format=flowed
Content-Transfer-Encoding: 8bit
Injection-Date: Mon, 30 Aug 2021 07:36:17 -0000 (UTC)
Injection-Info: reader02.eternal-september.org; posting-host="436bc5629f7a31089843a3f0914a7f5c";
logging-data="32182"; mail-complaints-to="abuse@eternal-september.org"; posting-account="U2FsdGVkX19P4wHGJ77vHDkJjXSKhTDIzEH+o4G3+1A="
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:60.0) Gecko/20100101
Firefox/60.0 SeaMonkey/2.53.9
Cancel-Lock: sha1:vcWRuvzDuPefsO4oefXSQrrNTEU=
In-Reply-To: <sggqmj$u1v$1@news.misty.com>
 by: Ralph Spitzner - Mon, 30 Aug 2021 07:35 UTC

Claus Aßmann wrote on 8/29/21 10:29 PM:
[...]

>> is set to deny in access, the user
>
> "set" how?
>
blocked tld's contains

work REJECT

> let us know whether you use FEATURE(delay_checks)

FEATURE(delay_checks) is not set in my m4.

still, the final recipient $user@spitzner.org does not exist...

regards
-rasp

Re: order of validity check

<sgi5ml$o7m$1@news.misty.com>

  copy mid

https://www.rocksolidbbs.com/computers/article-flat.php?id=272&group=comp.mail.sendmail#272

  copy link   Newsgroups: comp.mail.sendmail
Path: i2pn2.org!i2pn.org!aioe.org!adore2!news.litech.org!news.misty.com!.POSTED.kiel.esmtp.org!not-for-mail
From: INVALID_NO_CC_REMOVE_IF_YOU_DO_NOT_POST_ml+sendmail(-no-copies-please)@esmtp.org (Claus Aßmann)
Newsgroups: comp.mail.sendmail
Subject: Re: order of validity check
Date: Mon, 30 Aug 2021 04:43:01 -0400 (EDT)
Organization: MGT Consulting
Sender: <ml+sendmail(-no-copies-please)@esmtp.org>
Message-ID: <sgi5ml$o7m$1@news.misty.com>
References: <sggigg$n1u$1@dont-email.me> <sggqmj$u1v$1@news.misty.com> <sgi1ph$vdm$1@dont-email.me>
Mime-Version: 1.0
Content-Type: text/plain; charset=ISO-8859-1
Content-Transfer-Encoding: 8bit
Injection-Date: Mon, 30 Aug 2021 08:43:01 -0000 (UTC)
Injection-Info: news.misty.com; posting-host="kiel.esmtp.org:195.244.235.220";
logging-data="24822"; mail-complaints-to="abuse@misty.com"
Mail-Copies-To: never
X-Newsreader: trn 4.0-test77 (Sep 1, 2010)
Originator: ca@x2.esmtp.org (Claus Assmann)
 by: Claus Aßmann - Mon, 30 Aug 2021 08:43 UTC

Ralph Spitzner wrote:

> work REJECT

Please use "tagged" entries as explained in cf/README:
From:cyberspammer.com REJECT
Connect:cyberspammer.com REJECT

> FEATURE(delay_checks) is not set in my m4.

Give it a try (check the docs first).

> still, the final recipient $user@spitzner.org does not exist...

I guess you rely on the internal checks for that?
If so, that's done "too late" for your purpose.
You could add some rules to explicitly check the recipient address
(or maybe use virtusertable? again: see cf/README) - together with
FEATURE(delay_checks) that most likely has the behaviour you want
to see.

--
Note: please read the netiquette before posting. I will almost never
reply to top-postings which include a full copy of the previous
article(s) at the end because it's annoying, shows that the poster
is too lazy to trim his article, and it's wasting the time of all readers.

Re: order of validity check

<sgiq9c$uam$1@dont-email.me>

  copy mid

https://www.rocksolidbbs.com/computers/article-flat.php?id=273&group=comp.mail.sendmail#273

  copy link   Newsgroups: comp.mail.sendmail
Path: i2pn2.org!i2pn.org!aioe.org!eternal-september.org!reader02.eternal-september.org!.POSTED!not-for-mail
From: rasp@spitzner.org (Ralph Spitzner)
Newsgroups: comp.mail.sendmail
Subject: Re: order of validity check
Date: Mon, 30 Aug 2021 16:33:06 +0200
Organization: A noiseless patient Spider
Lines: 7
Message-ID: <sgiq9c$uam$1@dont-email.me>
References: <sggigg$n1u$1@dont-email.me> <sggqmj$u1v$1@news.misty.com>
<sgi1ph$vdm$1@dont-email.me> <sgi5ml$o7m$1@news.misty.com>
Mime-Version: 1.0
Content-Type: text/plain; charset=UTF-8; format=flowed
Content-Transfer-Encoding: 8bit
Injection-Date: Mon, 30 Aug 2021 14:34:20 -0000 (UTC)
Injection-Info: reader02.eternal-september.org; posting-host="436bc5629f7a31089843a3f0914a7f5c";
logging-data="31062"; mail-complaints-to="abuse@eternal-september.org"; posting-account="U2FsdGVkX19DvF5M5iUSIkngkMJrQCKHoKECpX45U1g="
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:60.0) Gecko/20100101
Firefox/60.0 SeaMonkey/2.53.9
Cancel-Lock: sha1:kVM73xxpp2NopDBrT1PnIZzBrJo=
In-Reply-To: <sgi5ml$o7m$1@news.misty.com>
 by: Ralph Spitzner - Mon, 30 Aug 2021 14:33 UTC

Claus Aßmann wrote on 8/30/21 10:43 AM:
ok, changed that I'll watch the log :-)

thanks
-rasp

Re: oder of validity check

<sgkuvu$uo6$1@dl8fbh.ampr.org>

  copy mid

https://www.rocksolidbbs.com/computers/article-flat.php?id=274&group=comp.mail.sendmail#274

  copy link   Newsgroups: comp.mail.sendmail
Path: i2pn2.org!i2pn.org!eternal-september.org!reader02.eternal-september.org!.POSTED!not-for-mail
From: <dl8fbh@dl8fbh.ampr.org>
Newsgroups: comp.mail.sendmail
Subject: Re: oder of validity check
Date: Tue, 31 Aug 2021 10:06:54 -0000 (UTC)
Organization: private site
Lines: 15
Message-ID: <sgkuvu$uo6$1@dl8fbh.ampr.org>
References: <sggigg$n1u$1@dont-email.me>
Injection-Info: reader02.eternal-september.org; posting-host="9f23e303fdb0a87066771ca319934b0b";
logging-data="27463"; mail-complaints-to="abuse@eternal-september.org"; posting-account="U2FsdGVkX19MpwVpsrfypKqdECUVopGF"
Cancel-Lock: sha1:OoXYEkMMuBRmvgeL6ZJmlaOV3jg=
 by: <dl8fbh@dl8fbh.ampr.org> - Tue, 31 Aug 2021 10:06 UTC

Ralph Spitzner <rasp@spitzner.org> wrote:

> is there a way to change the order in which sendmail checks incoming messages ?
> reason for asking is:
> I see an incoming mail from something@blah.work for a user that doesn't exist, .work is set to deny in access, the user
> is not valid,but sendmail rejects it temp with
> reject=451 4.1.8 Possibly forged hostname for (ip)
> so they just keep trying until it gets to a 551.....

Why don't you use a milter, eg. mailfromd?
You can do much more and a lot easier.

Mike

Re: oder of validity check

<sgn8ie$iho$1@dont-email.me>

  copy mid

https://www.rocksolidbbs.com/computers/article-flat.php?id=275&group=comp.mail.sendmail#275

  copy link   Newsgroups: comp.mail.sendmail
Path: i2pn2.org!i2pn.org!eternal-september.org!reader02.eternal-september.org!.POSTED!not-for-mail
From: rasp@spitzner.org (Ralph Spitzner)
Newsgroups: comp.mail.sendmail
Subject: Re: oder of validity check
Date: Wed, 1 Sep 2021 09:01:21 +0200
Organization: A noiseless patient Spider
Lines: 14
Message-ID: <sgn8ie$iho$1@dont-email.me>
References: <sggigg$n1u$1@dont-email.me> <sgkuvu$uo6$1@dl8fbh.ampr.org>
Mime-Version: 1.0
Content-Type: text/plain; charset=UTF-8; format=flowed
Content-Transfer-Encoding: 7bit
Injection-Date: Wed, 1 Sep 2021 07:02:38 -0000 (UTC)
Injection-Info: reader02.eternal-september.org; posting-host="76b904411901f662eb0d18537ad2e773";
logging-data="19000"; mail-complaints-to="abuse@eternal-september.org"; posting-account="U2FsdGVkX1+WgvcW4/qpX61/daFh70KHeXFXLGS8+YE="
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:60.0) Gecko/20100101
Firefox/60.0 SeaMonkey/2.53.9
Cancel-Lock: sha1:TjE7sdisy7sapUGc72NriakmPP8=
In-Reply-To: <sgkuvu$uo6$1@dl8fbh.ampr.org>
 by: Ralph Spitzner - Wed, 1 Sep 2021 07:01 UTC

dl8fbh@dl8fbh.ampr.org wrote on 8/31/21 12:06 PM:
[...]
> Why don't you use a milter, eg. mailfromd?
> You can do much more and a lot easier.
>
> Mike
>

since only a few usernames are affected I opted fore somethingelse I've noticed reading the doc for the n'th time:
localusername@ ERROR:550

in access.....

-rasp

1
server_pubkey.txt

rocksolid light 0.9.81
clearnet tor