Had a report of a strange case of a 451 error ..
Inadvertently the recipient has a poor MX record in place, eg
mx.domain.com 0
backup.domain.com 10 (Not responding)
However, when the sending MTA attempted to send an email, it received an
error of
451 4.4.0 Security status InvalidToken
Not sure if the sending MTA system generated that error internally, but
it isn't one the recipients mail server would have generated normally,
but in either case, you would expect that be treated as a temporary
error, and retried later.
Instead, the MTA tried the second backup server which wasn't responding,
and so returned a permanent error.
Now, the RFC's state that the sending MTA 'may' retry after a 451, and
most MTA's do for a certain time, but it seems very unusual to see it
try subsequent MX's unless the first one was down or not responding.
Any comments? Should a server continue trying other MX'es on a 4xx error?
*Diagnostic information for administrators:*
Generating server: CY1PR0201MB0556.namprd02.prod.outlook.com
<http://CY1PR0201MB0556.namprd02.prod.outlook.com>
Receiving server: na01-internal.map.protection.outlook.com
<http://na01-internal.map.protection.outlook.com> (10.58.52.27)
<RECIP_SNIPPED> <mailto:sgr...@gpa-kids.com>
1/18/2015 12:09:56 AM - Remote Server at
na01-internal.map.protection.outlook.com
<http://na01-internal.map.protection.outlook.com> (10.58.52.27) returned
'550 4.4.7 QUEUE.Expired; message expired'
1/18/2015 12:05:51 AM - Remote Server at
na01-internal.map.protection.outlook.com
<http://na01-internal.map.protection.outlook.com> (10.58.52.27) returned
'450 4.7.0 Proxy session setup failed on Frontend with '451 4.4.0
Primary target IP address responded with: "451 4.4.0 Security status
InvalidToken." Attempted failover to alternate host, but that did not
succeed. Either there are no alternate hosts, or delivery failed to all
alternate hosts. The last endpoint attempted was <BACKUPMX_SNIPPED>:1101''
--
"Catch the Magic of Linux..."
------------------------------------------------------------------------
Michael Peddemors, President/CEO LinuxMagic Inc.
Visit us at http://www.linuxmagic.com @linuxmagic
------------------------------------------------------------------------
A Wizard IT Company - For More Info http://www.wizard.ca
"MagicSpam" is a Registered TradeMark of Wizard Tower TechnoServices Ltd.
------------------------------------------------------------------------
604-682-0300 Beautiful British Columbia, Canada
This email and any electronic data contained are confidential and intended
solely for the use of the individual or entity to which they are addressed.
Please note that any views or opinions presented in this email are solely
those of the author and are not intended to represent those of the company.
--
"Catch the Magic of Linux..."
------------------------------------------------------------------------
Michael Peddemors, President/CEO LinuxMagic Inc.
Visit us at http://www.linuxmagic.com @linuxmagic
------------------------------------------------------------------------
A Wizard IT Company - For More Info http://www.wizard.ca
"LinuxMagic" a Registered TradeMark of Wizard Tower TechnoServices Ltd.
------------------------------------------------------------------------
604-682-0300 Beautiful British Columbia, Canada
This email and any electronic data contained are confidential and intended
solely for the use of the individual or entity to which they are addressed.
Please note that any views or opinions presented in this email are solely
those of the author and are not intended to represent those of the company.
_______________________________________________
mailop mailing list
mailop@mailop.org
http://chilli.nosignal.org/mailman/listinfo/mailop
