Hello.
On Thu, May 11, 2023 at 09:31:49AM +0100, Gary Stainburn via Exim-users wrote:
> I know how to untaint $local_part and $domain using lookups, but I have no
> idea how to untaint $sender.
...
> dovecot_delivery:
> driver = pipe
>
> # Use /usr/lib/dovecot/dovecot-lda if using Debian
On Tue, May 23, 2023 at 10:27:19PM +0200, Tim Jackson via Exim-users wrote:
> On 23/05/2023 13:21, Sander Smeenk via Exim-users wrote:
>
> > I try to send a message to 'i...@email.postcodeloterij.nl', but Exim
> > unexpectedly changes that to 'i...@postcodeloterij.slgnt.eu', based on
> > some DNS
On Wed, May 24, 2023 at 01:07:06PM +0200, Sander Smeenk via Exim-users wrote:
> Quoting Evgeniy Berdnikov via Exim-users (exim-users@lists.exim.org):
>
> > I treat the change of target domain as Exim's bug and tried to reproduce it
> > for test alias chains, with no suc
Hi.
On Wed, May 31, 2023 at 09:56:25AM -0500, Robert Nicholson via Exim-users wrote:
> Does anybody have any more ideas as to how I investigate this
> further since I don’t have debug as I’m not an admin and the folks
> responsible for the exim build claim that this is all due to the
> fact th
On Fri, Jun 02, 2023 at 09:56:16AM -0500, Robert Nicholson via Exim-users wrote:
> Having done this and looking at all the timestamps that appear in
> the trace log relative to the exim mainlog I think I can safely
> conclude that these emails never make their way to my filter. since
> none of the
On Fri, Jun 02, 2023 at 03:20:45PM -0500, Robert Nicholson via Exim-users wrote:
> So the following .forward works
...
> This is the one that breaks still.
Well, it gives a straitforward way to locate point of failure.
The logwrite statement should help to reduce number of steps.
--
Eugene Ber
On Fri, Jun 23, 2023 at 09:22:24PM +0200, tt-admin via Exim-users wrote:
> Why does adding this line not work as expected?
>
> !senders = lsearch*@;/etc/exim4/no-spf-sender
Did you try to use debug? At least "-d+acl+lookup" for manual tests.
Or "control = debug/opts=..." may be add to ACL.
--
On Thu, Jul 13, 2023 at 11:11:31AM -0400, Viktor Dukhovni via Exim-users wrote:
> Perhaps the OpenSSL library could change the message to be:
>
> "TLS fatal alert from : bad certificate"
Does TLS/SSL protocol provide enough information to conclude that alert
should be interpreted as "bad ce
On Fri, Jul 14, 2023 at 04:30:03PM +, Brian Spraker via Exim-users wrote:
> Having a lot of new spam get through to the servers over the past few weeks.
> I am noticing in the Exim logs and also in the email headers that the
> "Return-Path" is empty.
> Is there a suitable way to block any emai
On Tue, Aug 22, 2023 at 10:17:52AM +0200, Mark Elkins via Exim-users wrote:
> However, emails via Microsoft will keep changing the identity of the
> SMTP_Relay to a group of 10 or so SMTP Servers, so the initial delay keeps
> getting implemented ==> Customers complain.
...
> 3 - White list all the
On Sat, Sep 09, 2023 at 02:43:52PM +0200, Sławomir Dworaczek via Exim-users
wrote:
> here is my expression
> if
> $h_X-Spam-Potential: is not "" and
> ${sg{$h_X-Spam-Potential:}{^(\d+)\..*}{$1}} is above 16
> then
> ..
> theoretically, only the number 16 before the dot should be taken in
On Sat, Sep 09, 2023 at 09:13:01PM +0200, Sławomir Dworaczek via Exim-users
wrote:
> unfortunately, it doesn't work, I get paniclog
> Error in system filter: unrecognized condition word ""
Study debug output. Probably you made a typo.
> - Original Message - From
On Sat, Sep 09, 2023 at 10:43:54PM +0100, Jeremy Harris via Exim-users wrote:
> >
> > $h_X-Spam-Potential:{{^(\\d+).*\$}{\$1}} is above 16
>
> That's written to be ambiguous, even with the questionable
> dounbled backslash (compare with your original):
Doubling of backslash, as well as "\$" is
On Wed, Oct 04, 2023 at 02:11:27PM +0200, Mario Emmenlauer via Exim-users wrote:
> I wanted sender verification only for non-authenticated users. The
> spam protection is (for me) not relevant for authenticated users.
> They are assumed to be trustworthy.
What's the problem to add conditions like
On Wed, Oct 04, 2023 at 03:59:23PM +0200, Mario Emmenlauer wrote:
> So to confirm, the ACL that verifies only non-authenticated users would read:
>
> deny
> !acl = acl_local_deny_exceptions
> !verify = sender
> authenticated = *
> message = Sender verification failed
You should
On Wed, Oct 04, 2023 at 07:59:21PM -0400, Chris Siebenmann via Exim-users wrote:
> Another, much more brute force way (if you don't have a common
> /etc/passwd file that's somehow distributed around) is to change the
> /etc/passwd GECOS field for relevant accounts to have the machine's name
> in i
On Wed, Oct 04, 2023 at 09:36:12PM +0200, Mario Emmenlauer via Exim-users wrote:
> Since this is auto-generated system mail, there is absolutely no chance that I
> would want to reply to such email, now or in the future.
Right way is to make ALL sender's addresses routable, even for
automaticall
On Sat, Oct 07, 2023 at 10:22:28PM -0700, AC via Exim-users wrote:
> As for disabling the TLS or at least disabling the server certificate check,
> which parameter is handling that?
>
> I was guessing tls_verify_certificates does that but doesn't seem to solve
> the problem.
Your configuration e
On Thu, Oct 19, 2023 at 10:24:08PM +0200, brunoc68 via Exim-users wrote:
> It looks as if the DKIM signature is performed before the disclaimer is
> added.
Yes, DKIM signing is performed before transport filter.
You can implement MTA cascading. First add disclaimer message, then sign.
Via two
On Sun, Oct 22, 2023 at 07:03:19PM +0200, brunoc68 via Exim-users wrote:
> Public key :
> "v=DKIM1;
> k=rsa;
> p=MIIBITANBgkqhkiG9w0BAQEFAAOCAQ4AMIIBCQKCAQAzv3BvHbwGsHWZjnROtaNQMhzkL6yob0e7w2Sbatu3m7uwl89KnBbZBkmoxXsMcpK+f1XF7eahWm71f1hFqMP7cwQVwdQ/268NfXBt73zMcMgMqDPrVH5ptz93j/uTlIv9LNLbQww5fyYhzq
On Sun, Oct 22, 2023 at 09:03:19PM +0300, Evgeniy Berdnikov via Exim-users
wrote:
> > p=MIIBITANBgkqhkiG9w0BAQEFAAOCAQ4AMIIBCQKCAQAzv3BvHbwGsHWZjnROtaNQMhzkL6yob0e7w2Sbatu3m7uwl89KnBbZBkmoxXsMcpK+f1XF7eahWm71f1hFqMP7cwQVwdQ/268NfXBt73zMcMgMqDPrVH5ptz93j/uTlIv9LNLbQww5fyYhz
On Thu, Nov 09, 2023 at 10:29:46AM -0600, Johnnie W Adams via Exim-users wrote:
> Thanks! That's got me almost there. This works when I test with exim -be,
> but in exim.conf, it fails with missing lookup type:
>
> command = "/opt/lsoft/listserv/bin/lsv_amin /opt/lsoft/listserv/spool
> ${lookup ld
On Thu, Nov 09, 2023 at 01:03:50PM -0600, Johnnie W Adams via Exim-users wrote:
> Parsing did become successful with that change--thanks! It works now in
> exim -be when I hardcode $local_part and $domain. But I'm still failing
> when I put it into exim.conf. Oddly, it does work when I put in the
>
Hello.
On Mon, Nov 13, 2023 at 02:25:21PM +0200, Tapio Peltonen via Exim-users wrote:
> I have the following line in my local_sender_blacklist file, which is
> included as a blacklisted address list:
>
> ^.*@s\\d+\\..+\\.ru
[...]
> This does not match anything. Other lines in the blocklist wo
On Mon, Nov 13, 2023 at 04:33:25PM +0300, Evgeniy Berdnikov via Exim-users
wrote:
> # echo '^.*@s\\d+\\..+\\.ru' > /etc/exim4/local_sender_blacklist
> # exim4 -d-all+lookup+expand -bh 94.139.242.37
[...]
> i...@s7.alextro.ru in "/etc/exim4/local_sender_blacklist
On Sat, Nov 25, 2023 at 07:04:59PM +, G7fya GoQ8 via Exim-users wrote:
> Dear Jeremy, no My ISP is not blocking tcp/25 outbound I am sure of it.
> also I am able to send to some email services but not gmail.com
If you have traceroute with TCP support (running Linux, for example), try
to trac
On Thu, Dec 21, 2023 at 07:26:09PM +0300, Odhiambo Washington via Exim-users
wrote:
> So I added this to the top of the Makefile:
> LDFLAGS += -L/usr/local/lib
>
> But still no joy.
Resulting log (below) has no "-L/usr/local/lib"...
Looks like this definition was not applied or was overwritten
On Thu, Jan 04, 2024 at 11:02:30AM -0800, Ian Z via Exim-users wrote:
> Conceivably, if exim detects that an arg is empty, it could just
> remove it from the list of args.
Why? Args are positional, and empty string is a valid arg, isn't it?
Bourne shells remove empty expressions during evaluati
On Thu, Jan 25, 2024 at 08:36:04AM +0100, Niels Kobschätzki via Exim-users
wrote:
> The only solution so far I come up with that I can put singular
> senders and domains in tables and have multiple ACLs and routers.
> And then have an extra file for those cases where I need a regexp
> but then som
On Thu, Jan 25, 2024 at 09:45:38AM +0100, Niels Kobschätzki via Exim-users
wrote:
> > Evgeniy Berdnikov via Exim-users hat am
> > 25.01.2024 09:09 CET geschrieben:
> >
> > The first question should be raised is "Why you want to use SQL database?"
> >
On Mon, Feb 05, 2024 at 03:01:03PM +, graeme vetterlein via Exim-users
wrote:
> BTW this came to my attention while debugging a maildrop setup I noted it
> using flock(2) I also note it can use dot-lock files. Now fetchmail,
> maildrop, exmim4, procmail etc all work together in many combinatio
On Tue, Feb 27, 2024 at 01:02:09PM +, Jeremy Harris via Exim-users wrote:
> On 2/27/24 12:36, graeme vetterlein via Exim-users wrote:
> > Bit of a side note, but I tried many different ways (for about a day) to
> > turn on debugging , never really got anything useful. I'm using Debian
> > (b
On Thu, Mar 07, 2024 at 01:38:15PM +0100, mhbeyle--- via Exim-users wrote:
> When a user groups several recipients under the To, Cc or Bcc fields, the
> message is encoded with a unique ID. Some relay providers impose limits on
> the number of such recipients.
> Is there any way to avoid this and i
On Fri, Mar 08, 2024 at 10:44:09AM +, Jeremy Harris via Exim-users wrote:
> Tell your user they should use a proper mailing-list manager,
> and follow best practices for bulk mail.
Probably user's answer would be: "Find proper mail provider.
Limit on number of messages with identical Message
On Mon, Mar 18, 2024 at 09:58:45AM +, Athanasius via Exim-users wrote:
> Are you using other than the exim4-daemon-heavy package ?
Package exim4-daemon-light should be built with same set of generic options.
It gives me _ACL_COND_SEEN=y for package version 4.97-5.
--
Eugene Berdnikov
--
On Tue, Apr 09, 2024 at 12:08:30PM -0700, Ian Z via Exim-users wrote:
> At what point in the "life of the message" is the check for a
> message-id header made, and at what point is one generated if missing?
MUA should do it, and MTA may if message-id is missing.
> I have a client MUA which gener
On Tue, Apr 09, 2024 at 02:01:55PM -0700, Ian Z via Exim-users wrote:
> On Tue, Apr 09, 2024 at 11:04:14PM +0300, Evgeniy Berdnikov via Exim-users
> wrote:
> > MUA should do it, and MTA may if message-id is missing.
>
> My question was about the data flow inside exim. For exam
On Mon, Jul 22, 2024 at 06:11:49PM +0200, Michael Haardt via Exim-users wrote:
> Since Maildirs never go away on an empty mailbox,
> checking for them to exist is an easy way.
Mailbox file also should NOT be deleted if emptied by MUA.
--
Eugene Berdnikov
--
## subscription configuration (requ
On Tue, Aug 06, 2024 at 01:16:29PM -0700, Ian Z via Exim-users wrote:
> Does non-callout sender verification of nonlocal addresses, in the case of
> a dnslookup router, determine the MX host of the sender domain?
Please, explain how non-local address can be verified without callout.
It seems me
On Wed, Aug 21, 2024 at 12:55:37PM -0300, Ronaldo Luiz via Exim-users wrote:
> Hi Sirs,
>
> I need a help to install on my Linux Server an Archive Email software
> management.
>
> Exim send around 15.000 billing e-mails each month, receive around
> 200.000/month and need to archive the 5 last y
On Sat, Oct 12, 2024 at 12:36:33PM -0700, Ian Z via Exim-users wrote:
> I need to inspect the output from en external program (run via the
> ${run} expansion). The program outputs multiple lines, only the first
> is relevant to me. What is the least painful way to extract it? I mean
> the least num
On Thu, Sep 26, 2024 at 09:50:39AM -0700, Ian Z via Exim-users wrote:
> On Thu, Sep 26, 2024 at 09:15:07AM GMT, Cam Ellison via Exim-users wrote:
>
> > > Sep 23 00:00:08 mail exim[1468704]: 2024-09-23 00:00:08
> > > 1ssUci-006A4f-Ph failed to write to main log: length=91 result=-1 errno=9
> >
Hi.
On Fri, Sep 27, 2024 at 10:59:20AM -0700, Ivor Durham via Exim-users wrote:
> Here's the (anonymized) log entry right after I sent a test message:
>
> 2024-09-26 01:56:20.185 [9856] 1stiQE-0002Yy-18 <=
> boun...@cathouseonthekings.com H=(localhost) [XXX.XXX.XXX.XXX]:52212
> I=[XXX.XXX.XXX.X
Hello.
On Thu, Nov 21, 2024 at 05:33:46AM +0800, Gedalya via Exim-users wrote:
> I have some users with some convoluted cyclical forwarding.
>
> I get this debug line: mysql_alias router skipped: previously routed
> user@domain
[...]
> ═ data = :blackhole:
>
> If the recipient is an alias, an
On Wed, Dec 04, 2024 at 11:11:53AM +, Max Kostikov via Exim-users wrote:
> F= temporarily rejected during MIME ACL checks: failed to
> expand ACL string “${run{/my/script.sh}{yes}{yes}}”: command timed out
>
> I tried using the local_scan_timeout setting but it has no effect on this
> behavior
On Thu, Jan 30, 2025 at 07:34:31PM +0100, Matteo Bonora via Exim-users wrote:
> I have a remote_smtp transport configured to send messages using the same
> interface that originally received such message.
Please, post here configuration of this transport, and explain
how outgoing interface is bo
Hi.
On Sun, Dec 15, 2024 at 04:18:40PM +0100, Andreas Barth via Exim-users wrote:
> I'd like to have some kind of regression tests for my exim config (at
> least the different delivery actions), so that I make sure to not
> break working configurations.
>
> I.e. I want to have some tests defi
On Wed, Dec 18, 2024 at 07:42:18PM +0100, Marcin Owsiany via Exim-users wrote:
> However investigating closely I couldn't see any setting that would prevent
> access to the spool directory. And what's more important I couldn't find
> anything that would prevent reading the data file that already ha
On Fri, Jan 10, 2025 at 10:31:12AM +0100, Gandalf Corvotempesta via Exim-users
wrote:
> Also, the server seems to get the error sent directly from the client
> when it's closing the connection, so the client i think will be able
> to also send the real error to the server, isn't it?
No, SSL/TLS
On Wed, Jan 22, 2025 at 08:02:22AM +0100, Martin Waschbüsch via Exim-users
wrote:
> And yes, this is not something to use lightly, but there are literally
> several hundred fake domains I identified all using this one MX... I am
> quite sure in this instance. ;-)
If so, you can easily block this
Hi.
On Thu, Jan 16, 2025 at 07:59:05AM -0800, Randy Bush via Exim-users wrote:
> what happened? the symptom was
>
> 2025-01-13 06:25:27 1tXDt8-00Aigw-35 1tXDt8-00Aigw-35 no recipients found in
> headers
> 2025-01-13 06:25:27 1tXDt8-00Aigv-35 1tXDt8-00Aigv-35 no recipients found in
> headers
On Fri, Mar 14, 2025 at 08:18:42AM +0100, Sławomir Dworaczek via Exim-users
wrote:
> bogo_router checks if the header already has bogosity, if not, the message
> goes to the transport, there the message status X-Bogosity Spam Han or
> Unsure is assigned
> if Spam, it stops processing, if Ham or un
On Thu, Apr 10, 2025 at 10:43:00AM -0500, Johnnie W Adams via Exim-users wrote:
> 10:37:07 120872 ├──expanding: $auth1
> 10:37:07 120872 ╰─result: foo
> 10:37:07 120872 ╰──(tainted)
> 10:37:07 120872 SMTP>> 235 Authentication succeeded
Probably you've limited debug options to "e
On Thu, Apr 10, 2025 at 09:06:34PM +0100, Jeremy Harris via Exim-users wrote:
> On 2025/04/10 8:19 PM, Johnnie W Adams via Exim-users wrote:
> > 14:16:37 121712 re-binding with user= password=foo
> >
> > 14:16:37 121712 Bind succeeded: ldapauth returns OK
>
> OK, I see two possible problems her
On Sun, Apr 20, 2025 at 04:15:34PM +0200, Sander ter Steege via Exim-users
wrote:
> 1322640 LOG: address_rewrite MAIN
> 1322640 "testu...@example.com" from env-from rewritten as
> ""testu...@example.com"@primary_hostname.com" by submission mode
> 1322640 rewrite rules on sender address
> 132264
On Fri, Apr 11, 2025 at 03:19:27PM -0500, Johnnie W Adams wrote:
>I'm still puzzled as to why the user is blank. I certainly entered it in
>the SMTP session.
For ldapauth "user" must be the so-called "Bind DN", special entry
in LDAP object tree, not a user name that was entered in SMTP
On Fri, Feb 21, 2025 at 09:44:22AM +0100, Slawomir Dworaczek via Exim-users
wrote:
> failed to expand condition "${if or {{!def:h_X-Bogosity:}{{ and
> {{def:h_X-Bogosity:}{match{$h_X-Bogosity:}{^Spam}}{!match{$h_from:}{lsearch{/etc/exim/listy_acl/bogo_list}}}{!match{$sender_address_domain:}{lsear
On Tue, Feb 25, 2025 at 10:03:45AM -0600, Johnnie W Adams via Exim-users wrote:
> I'm troubleshooting an acl and having an issue using exim -bh. Here's
> the command line:
>
> exim -d+acl -bh 100.10.10.10.587 -oMai allo...@example.com
...
> It appears to me this is failing because exim b
On Wed, May 14, 2025 at 01:29:08PM +0200, Cyborg via Exim-users wrote:
> It gives you flexibility, because in the real world, you have to deal with
> legacy servers, that fail to use tls 1.2+ or EC, but are not required to
> comply to the data protection laws.
Legacy software and security are inc
On Sat, May 24, 2025 at 07:09:11PM +0200, Slawomir Dworaczek via Exim-users
wrote:
> How to disable depracated protocols Tls 1 and tls 1.1 and enable only strong
> protocols
The simplest way: use fresh distro with fresh Exim.
But if you are looking for adventures, ask google how to adjust
ope
On Fri, Jul 25, 2025 at 10:52:52AM +0100, Jeremy Harris via Exim-users wrote:
> On 2025/07/25 3:32 AM, Moritz Orbach via Exim-users wrote:
> > I wrote an ACL that checks SPF alignment by running spfquery.pl from
> > Mail::SPF. This works fine and adds the Received-SPF-header, but I don't
> > kno
Fri, Jul 25, 2025 at 02:25:22PM +0200, Niklas Schell via Exim-users wrote:
> --- for SPF I've set:
>
> (acl_smtp_rcpt):
>
> warn
> set acl_m_spf_result = ${run{/usr/bin/spfquery.mail-spf-perl --ip
> ${quote:$sender_host_address} --scope mfrom --identity
> ${quote:$sender_address}}}
>
Hi.
BTW, I observe such behaviour of Exim 4.98 on Debian:
# exim4 -be '_DKIM_OVERSIGN_HEADERS'
+From:+Sender:+Reply-To:+Subject:+Date:+Message-ID:+To:+Cc:+MIME-Version:+Content-Type:+Content-Transfer-Encoding:+Content-ID:+Content-Description:+Resent-Date:+Resent-From:+Resent-Sender:+Resent-To:+
Hi.
On Tue, Jul 29, 2025 at 11:16:40AM +0200, Hardy via Exim-users wrote:
> On 28.07.25 19:12, Jeremy Harris via Exim-users wrote:
> > On 2025/07/28 5:52 PM, Hardy via Exim-users wrote:
> > > is═there═a═way═to═log═the═smtp═session═of═a═connection?═(i.e.═in═a═way═swaks═shows═it═from═its═client═vi
64 matches
Mail list logo
