Archive-Date: Tue, 4 Sep 2001 08:51:03 -0700 Message-ID: <5.1.0.14.0.20010904114854.00aa4368@LIB1.HACC.EDU> Date: Tue, 04 Sep 2001 11:49:04 -0400 To: MX-List@MadGoat.com From: "Michael L. Bowden" Reply-To: MX-List@MadGoat.com Subject: More problems with the SMTP Server MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii"; format=flowed Good Morning: I need some help with relays and SMTP server. For the last couple of weeks, my SMTP server has been acting strangely. It will not relay email messages from local domain machines. Originally, I had set up the SMTP server as follows: SMTP agent settings: Retry interval: 0 00:30:00.00 Maximum number of retries: 999 Number of DNS failure retries: 999 Accounting: enabled Default router: (none) SMTP server settings: Allow VRFY commands: disabled Act as SMTP relay for any host: disabled [SHOW LOCAL_DOMAINS lists hosts] Validate sender's domain name: disabled CRAM-MD5 SMTP authentication: disabled PLAIN SMTP authentication: disabled Realtime Blackhole List check: disabled Local domain patterns for SMTP relay checks: HACC.EDU *.HACC.EDU LIB1.HACC.EDU 172.16.124.* LIB2.HACC.EDU ADM.HACC.EDU LIB-HBG-AR1.HACC.EDU These settings worked well for a long time. Recently, it just stopped working. So I tried opening up the SMTP server with the following settings: SMTP agent settings: Retry interval: 0 00:30:00.00 Maximum number of retries: 999 Number of DNS failure retries: 999 Accounting: enabled Default router: (none) SMTP server settings: Allow VRFY commands: disabled Act as SMTP relay for any host: enabled Validate sender's domain name: disabled CRAM-MD5 SMTP authentication: disabled PLAIN SMTP authentication: disabled Realtime Blackhole List check: disabled I am getting a host name verification error. I have tried telneting to port 25 and issuing an EHLO LIB-HBG-AR1.HACC.EDU command. I get the following error: 220 lib1.hacc.edu (MX V5.2 An9f) ESMTP server ready at Tue, 4 Sep 2001 11:33:35 -0400 ehlo lib-hbg-ar1.hacc.edu 250-lib1.hacc.edu (host name verification failed) 250-PIPELINING 250-ENHANCEDSTATUSCODES 250-DSN 250-ETRN 250 SIZE 2147483647 I have checked the SMTP_server logs and found this: SEP-2001 11:27:24.38: MX SMTP server: rejected message from to <........@hotmail.com> sent by [172.16.124.80] due to disabled relay I am clueless as to what is happening. I am running MX 5.2 ECO2. Can anyone offer me some advise? Michael mlbowden@hacc.edu I ================================================================================ Archive-Date: Tue, 4 Sep 2001 09:18:32 -0700 Sender: jtb@atm.com.pl Message-ID: <3B94FD99.13CF1A52@atm.com.pl> Date: Tue, 04 Sep 2001 18:13:13 +0200 From: Jacek Tobiasz Reply-To: MX-List@MadGoat.com MIME-Version: 1.0 To: MX-List@MadGoat.com Subject: Re: More problems with the SMTP Server References: <5.1.0.14.0.20010904114854.00aa4368@LIB1.HACC.EDU> Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit "Michael L. Bowden" wrote: > > Good Morning: > > I need some help with relays and SMTP server. For the last couple of > weeks, my SMTP server has been acting strangely. It will not relay email > messages from local domain machines. Originally, I had set up the SMTP > server as follows: > > SMTP agent settings: > Retry interval: 0 00:30:00.00 > Maximum number of retries: 999 > Number of DNS failure retries: 999 ^^^ huge number 999 * 30min it's almost 21 days ! > Accounting: enabled > Default router: (none) > > SMTP server settings: > Allow VRFY commands: disabled > Act as SMTP relay for any host: disabled [SHOW LOCAL_DOMAINS lists hosts] > Validate sender's domain name: disabled > CRAM-MD5 SMTP authentication: disabled > PLAIN SMTP authentication: disabled > Realtime Blackhole List check: disabled > > Local domain patterns for SMTP relay checks: > HACC.EDU > *.HACC.EDU > LIB1.HACC.EDU > 172.16.124.* > LIB2.HACC.EDU > ADM.HACC.EDU > LIB-HBG-AR1.HACC.EDU What about INSIDE_NETWORK_ADDRESS ? If it's not defined it's possible to use your smtp server as a relay. > These settings worked well for a long time. Recently, it just stopped > working. So I tried opening up the SMTP server with the following settings: [...] > SMTP server settings: > Allow VRFY commands: disabled > Act as SMTP relay for any host: enabled > Validate sender's domain name: disabled > CRAM-MD5 SMTP authentication: disabled > PLAIN SMTP authentication: disabled > Realtime Blackhole List check: disabled > > I am getting a host name verification error. I have tried telneting to port > 25 and issuing an EHLO LIB-HBG-AR1.HACC.EDU command. I get the following > error: reverse DNS resolves IP address to lib1.hacc.edu, so it's not what ehlo says. Check DNS configuration. But it's not your problem (?). > 220 lib1.hacc.edu (MX V5.2 An9f) ESMTP server ready at Tue, 4 Sep 2001 11:33:35 > -0400 > ehlo lib-hbg-ar1.hacc.edu > 250-lib1.hacc.edu (host name verification failed) > 250-PIPELINING > 250-ENHANCEDSTATUSCODES > 250-DSN > 250-ETRN > 250 SIZE 2147483647 your connection was not rejected after ehlo; what was after ehlo ? > I have checked the SMTP_server logs and found this: > > SEP-2001 11:27:24.38: MX SMTP server: rejected message from > to <........@hotmail.com> sent by [172.16.124.80] > due to disabled relay it's should not happened in this scenario if relaying is enabled. Is it realy log of your test connection ? Not sure what's wrong here. Try defining INSIDE_NETWORK_ADDRESS first, next turn SMTP server debug. Regards Jacek ================================================================================ Archive-Date: Tue, 4 Sep 2001 18:43:55 -0700 Message-ID: <023601c135ac$1d75f000$de2c67cb@stmarks.pp.catholic.edu.au> From: "Geoff Roberts" Reply-To: MX-List@MadGoat.com To: Subject: How to remove a SYSTEM_USER from MX? Date: Wed, 5 Sep 2001 11:13:08 +0930 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit Hi all, I've done a sweep through the help and docs and can't seem to find a way to remove a SYSTEM_USER from MX using MCP. REMOVE doesn't seem to cover it? Did I miss something obvious? Cheers Geoff Roberts Computer Systems Manager Saint Mark's College Port Pirie, South Australia geoffrob@stmarks.pp.catholic.edu.au netcafe@tell.net.au ICQ: 1970476 ================================================================================ Archive-Date: Wed, 5 Sep 2001 06:50:54 -0700 Sender: madison@MadGoat.Com Date: Wed, 5 Sep 2001 06:50:49 -0700 From: Matt Madison Reply-To: MX-List@MadGoat.com To: MX-List@MadGoat.com CC: mlbowden@lib1.hacc.edu Message-ID: <00A0195F.8F9E8660.2@MadGoat.Com> Subject: RE: More problems with the SMTP Server MIME-Version: 1.0 Content-Transfer-Encoding: 7bit Content-Type: text/plain; charset="iso-8859-1" >I need some help with relays and SMTP server. For the last couple of >weeks, my SMTP server has been acting strangely. It will not relay email >messages from local domain machines. Originally, I had set up the SMTP >server as follows: [...] >These settings worked well for a long time. Recently, it just stopped >working. So I tried opening up the SMTP server with the following settings: [...] >Act as SMTP relay for any host: enabled [...] >I am getting a host name verification error. I have tried telneting to port >25 and issuing an EHLO LIB-HBG-AR1.HACC.EDU command. I get the following >error: HELO host name validation is not connected with the anti-relay checks. You're getting that error because lib-hbg-ar1.hacc.edu isn't in the DNS, so that's OK. [...] > SEP-2001 11:27:24.38: MX SMTP server: rejected message from > to <........@hotmail.com> sent by [172.16.124.80] >due to disabled relay > >I am clueless as to what is happening. I am running MX 5.2 ECO2. > >Can anyone offer me some advise? First, I wouldn't leave the relay open! As mentioned earlier, you might want to double-check your INSIDE_NETWORK settings, to make sure they're OK. Then, try sending some test messages with anti-spam debugging turned on in the SMTP server: $ DEFINE MX_ANTI_SPAM_DEBUG 1 The file MX_SMTP_DIR:MX_ANTI_SPAM_LOG.LOG_ (where is the process ID of the SMTP server) will contain the debug output; if you need help decoding it, let me know. You may need to RESET or shutdown/ restart the SMTP server to have the debug setting take effect. If you want more detail in the log, you can set the debug level to 2 instead of 1. -Matt -- Matthew Madison | MadGoat Software | PO Box 556, Santa Cruz, CA 95061 USA madison@madgoat.com http://www.madgoat.com ================================================================================ Archive-Date: Wed, 5 Sep 2001 06:52:28 -0700 Sender: madison@MadGoat.Com Date: Wed, 5 Sep 2001 06:52:23 -0700 From: Matt Madison Reply-To: MX-List@MadGoat.com To: MX-List@MadGoat.com CC: geoffrob@stmarks.pp.catholic.edu.au Message-ID: <00A0195F.C7624875.5@MadGoat.Com> Subject: RE: How to remove a SYSTEM_USER from MX? MIME-Version: 1.0 Content-Transfer-Encoding: 7bit Content-Type: text/plain; charset="iso-8859-1" >I've done a sweep through the help and docs and can't seem to find a way >to remove a SYSTEM_USER from MX using MCP. REMOVE doesn't seem to >cover it? Did I miss something obvious? Unlike most MCP commands, DEFINE SYSTEM_USER has no REMOVE counterpart. To remove an address from the list, simply re-DEFINE it with the addresses you still want there. -Matt -- Matthew Madison | MadGoat Software | PO Box 556, Santa Cruz, CA 95061 USA madison@madgoat.com http://www.madgoat.com ================================================================================ Archive-Date: Mon, 24 Sep 2001 23:30:55 -0700 Message-ID: <000f01c1458b$9776cac0$de2c67cb@stmarks.pp.catholic.edu.au> From: "Geoff Roberts" Reply-To: MX-List@MadGoat.com To: References: <5.1.0.14.0.20010904114854.00aa4368@LIB1.HACC.EDU> <3B94FD99.13CF1A52@atm.com.pl> Subject: SMTP Server crashing on Plain Authentication attempts Date: Tue, 25 Sep 2001 16:00:36 +0930 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit Hi guys, Houston, we have a problem. VMS 6.0 Multinet 3.2 Rev B. MX 5.2 all current ECO's installed. Authentication plain enabled. No RBL checking at the moment. Only seems to occur from an outside network connection that is trying to authenticate. Internal network connections sending mail without the authenication don't have any problems. Client gets a "Mail Server unexpectedly terminated the connection error" Not surprisingly. Client in this case was Outlook Express, haven't tried others yet. I can't go back to no authentication, spammers are trying to relay, without success, but sure as heck I turn it off again. Previously we were using IP and Domain restrictions, mostly to keep it within the 203.x.x.x range, unfortunately, some of the Chinese and Korean stuff is in there, so we need to turn it all off and rely on smtp authentication. Log entry (one of many the same): 24-SEP-2001 21:50:52.57: MX SMTP Server (pid 40200227) exiting, status = 100000 0C 11-SEP-2001 21:50:54.27: MX SMTP Server (pid 40200227) starting %SYSTEM-F-ACCVIO, access violation, reason mask=00, virtual address=00000000, PC =00011CBD, PSL=03C00001 %TRACE-F-TRACEBACK, symbolic stack dump follows module name routine name line rel PC abs PC VERIFY HASH_PASSWORD 3168 000000B2 00011CBD VERIFY VMS_AUTHENTICATE 3088 00000172 00011BC1 VERIFY USER_AUTHENTICATE 2942 0000004F 00011A2E SMTP_SERVER AUTH_LOGIN_PASSWORD 3644 0000013D 0000CF87 SMTP_SERVER SMTP_SERVER 844 00000AB4 000076B4 Help! Regards Geoff Roberts Computer Systems Manager Saint Mark's College Port Pirie, South Australia geoffrob@stmarks.pp.catholic.edu.au ICQ: 1970476