Date: Thu, 25 Dec 2014 17:24:17 -0800 From: David Wolfskill <david@catwhisker.org> To: Dutch Daemon - FreeBSD Forums Administrator <DutchDaemon@FreeBSD.org> Cc: postmaster@freebsd.org, freebsd-test@freebsd.org Subject: Re: Fwd: "Short test message" Message-ID: <20141226012417.GL1210@albert.catwhisker.org> In-Reply-To: <1B93B0C9-903F-4FDE-90B7-86FF45B42FBA@FreeBSD.org> References: <17DA18BB-9AB1-4C1F-8DA4-71F45AD76780@FreeBSD.org> <1B93B0C9-903F-4FDE-90B7-86FF45B42FBA@FreeBSD.org>
next in thread | previous in thread | raw e-mail | index | archive | help
[-- Attachment #1 --] On Fri, Dec 26, 2014 at 02:08:15AM +0100, Dutch Daemon - FreeBSD Forums Administrator wrote: > Now with CC > > > -------- Original Message -------- > From: Dutch Daemon - FreeBSD Forums Administrator <DutchDaemon@FreeBSD.org> > Sent: December 26, 2014 2:04:58 AM GMT+01:00 > To: freebsd-test@freebsd.org > Subject: "Short test message" > > As requested by postmaster@ > Curious... On hub, I see: hub(11.0-C)[1] cd /var/log hub(11.0-C)[2] grep 1B93B0C9-903F-4FDE-90B7-86FF45B42FBA maillog Dec 26 01:08:30 hub postfix/cleanup[23982]: D74A398C: message-id=<1B93B0C9-903F-4FDE-90B7-86FF45B42FBA@FreeBSD.org> Dec 26 01:08:30 hub spamd[3083]: spamd: processing message <1B93B0C9-903F-4FDE-90B7-86FF45B42FBA@FreeBSD.org> for flo:1248 Dec 26 01:08:31 hub spamd[504]: spamd: checking message <1B93B0C9-903F-4FDE-90B7-86FF45B42FBA@FreeBSD.org> for mailman:91 Dec 26 01:08:32 hub spamd[3083]: spamd: result: . 0 - AWL,BAYES_00,UTF8_CHARSET scantime=1.1,size=3503,user=flo,uid=1248,required_score=5.0,rhost=localhost,raddr=::1,rport=29598,mid=<1B93B0C9-903F-4FDE-90B7-86FF45B42FBA@FreeBSD.org>,bayes=0.000000,autolearn=no autolearn_force=no Dec 26 01:08:32 hub postfix/cleanup[23955]: 0931B98F: message-id=<1B93B0C9-903F-4FDE-90B7-86FF45B42FBA@FreeBSD.org> Dec 26 01:08:32 hub postfix/cleanup[24011]: 0ED1D991: message-id=<1B93B0C9-903F-4FDE-90B7-86FF45B42FBA@FreeBSD.org> Dec 26 01:08:32 hub postfix/cleanup[20512]: D842B98D: message-id=<1B93B0C9-903F-4FDE-90B7-86FF45B42FBA@FreeBSD.org> Dec 26 01:08:32 hub spamd[504]: spamd: result: . 0 - AWL,BAYES_00,UTF8_CHARSET scantime=0.8,size=3455,user=mailman,uid=91,required_score=5.0,rhost=localhost,raddr=127.0.0.1,rport=29600,mid=<1B93B0C9-903F-4FDE-90B7-86FF45B42FBA@FreeBSD.org>,bayes=0.000000,autolearn=no autolearn_force=no Dec 26 01:08:32 hub postfix/cleanup[20512]: 812489AE: message-id=<1B93B0C9-903F-4FDE-90B7-86FF45B42FBA@FreeBSD.org> Dec 26 01:08:32 hub postfix/cleanup[24011]: 820A09AF: message-id=<1B93B0C9-903F-4FDE-90B7-86FF45B42FBA@FreeBSD.org> Dec 26 01:08:32 hub postfix/cleanup[23982]: 835239B0: message-id=<1B93B0C9-903F-4FDE-90B7-86FF45B42FBA@FreeBSD.org> Dec 26 01:08:32 hub postfix/cleanup[24011]: 899E99B6: message-id=<1B93B0C9-903F-4FDE-90B7-86FF45B42FBA@FreeBSD.org> Dec 26 01:08:32 hub postfix/cleanup[24011]: 89E289B9: message-id=<1B93B0C9-903F-4FDE-90B7-86FF45B42FBA@FreeBSD.org> Dec 26 01:08:32 hub postfix/cleanup[23955]: 898229B4: message-id=<1B93B0C9-903F-4FDE-90B7-86FF45B42FBA@FreeBSD.org> Dec 26 01:08:32 hub postfix/cleanup[20512]: 8B4899BA: message-id=<1B93B0C9-903F-4FDE-90B7-86FF45B42FBA@FreeBSD.org> Dec 26 01:08:32 hub postfix/cleanup[23982]: 8D8EE9BB: message-id=<1B93B0C9-903F-4FDE-90B7-86FF45B42FBA@FreeBSD.org> Dec 26 01:08:32 hub postfix/cleanup[24011]: 8FEFE9BC: message-id=<1B93B0C9-903F-4FDE-90B7-86FF45B42FBA@FreeBSD.org> Dec 26 01:08:32 hub postfix/cleanup[24105]: 9241B9C0: message-id=<1B93B0C9-903F-4FDE-90B7-86FF45B42FBA@FreeBSD.org> Dec 26 01:08:32 hub postfix/cleanup[20512]: 93FB59C1: message-id=<1B93B0C9-903F-4FDE-90B7-86FF45B42FBA@FreeBSD.org> hub(11.0-C)[3] which seems like a LOT of maillog entries for one message with a small number of recipients. Checking mx2, I see: root@mx2:~ # cd /var/log root@mx2:/var/log # grep 1B93B0C9-903F-4FDE-90B7-86FF45B42FBA maillog Dec 26 01:08:32 mx2 postfix/cleanup[12079]: 0B87B36B2: message-id=<1B93B0C9-903F-4FDE-90B7-86FF45B42FBA@FreeBSD.org> Dec 26 01:08:32 mx2 postfix/cleanup[12627]: 1120A36B3: message-id=<1B93B0C9-903F-4FDE-90B7-86FF45B42FBA@FreeBSD.org> Dec 26 01:08:32 mx2 postfix/cleanup[17022]: 112F136B4: message-id=<1B93B0C9-903F-4FDE-90B7-86FF45B42FBA@FreeBSD.org> Dec 26 01:08:32 mx2 postfix/cleanup[12627]: 8419536D6: message-id=<1B93B0C9-903F-4FDE-90B7-86FF45B42FBA@FreeBSD.org> Dec 26 01:08:32 mx2 postfix/cleanup[17059]: 8498736D9: message-id=<1B93B0C9-903F-4FDE-90B7-86FF45B42FBA@FreeBSD.org> Dec 26 01:08:32 mx2 postfix/cleanup[17022]: 8A92336DB: message-id=<1B93B0C9-903F-4FDE-90B7-86FF45B42FBA@FreeBSD.org> Dec 26 01:08:32 mx2 postfix/cleanup[17137]: 8D0E536E1: message-id=<1B93B0C9-903F-4FDE-90B7-86FF45B42FBA@FreeBSD.org> Dec 26 01:08:32 mx2 postfix/cleanup[12079]: 8F27F36E5: message-id=<1B93B0C9-903F-4FDE-90B7-86FF45B42FBA@FreeBSD.org> Dec 26 01:08:32 mx2 postfix/cleanup[13689]: 8F2B936E7: message-id=<1B93B0C9-903F-4FDE-90B7-86FF45B42FBA@FreeBSD.org> Dec 26 01:08:32 mx2 postfix/cleanup[17163]: 8F67636E8: message-id=<1B93B0C9-903F-4FDE-90B7-86FF45B42FBA@FreeBSD.org> Dec 26 01:08:32 mx2 postfix/cleanup[17170]: 9491936E9: message-id=<1B93B0C9-903F-4FDE-90B7-86FF45B42FBA@FreeBSD.org> Dec 26 01:08:32 mx2 postfix/cleanup[12627]: 9E42C36F2: message-id=<1B93B0C9-903F-4FDE-90B7-86FF45B42FBA@FreeBSD.org> Dec 26 01:08:32 mx2 postfix/cleanup[17172]: 9EB3F36F3: message-id=<1B93B0C9-903F-4FDE-90B7-86FF45B42FBA@FreeBSD.org> Dec 26 01:08:32 mx2 postfix/cleanup[17059]: 9F1AD36F5: message-id=<1B93B0C9-903F-4FDE-90B7-86FF45B42FBA@FreeBSD.org> Dec 26 01:08:34 mx2 postfix/smtp[17332]: 8F2B936E7: to=<nightrecon@hotmail.com>, relay=mx4.hotmail.com[65.55.37.88]:25, delay=1.8, delays=0.1/1/0.25/0.46, dsn=2.0.0, status=sent (250 <1B93B0C9-903F-4FDE-90B7-86FF45B42FBA@FreeBSD.org> Queued mail for delivery) Dec 26 01:08:34 mx2 postfix/smtp[17332]: 8F2B936E7: to=<rh14@hotmail.com>, relay=mx4.hotmail.com[65.55.37.88]:25, delay=1.8, delays=0.1/1/0.25/0.46, dsn=2.0.0, status=sent (250 <1B93B0C9-903F-4FDE-90B7-86FF45B42FBA@FreeBSD.org> Queued mail for delivery) Dec 26 01:08:34 mx2 postfix/smtp[17269]: 9491936E9: to=<rsedraoui@hotmail.com>, relay=mx4.hotmail.com[65.55.37.104]:25, delay=2, delays=0.11/1.2/0.25/0.45, dsn=2.0.0, status=sent (250 <1B93B0C9-903F-4FDE-90B7-86FF45B42FBA@FreeBSD.org> Queued mail for delivery) Dec 26 01:08:36 mx2 postfix/smtp[17324]: 8A92336DB: to=<linux@ziemer.net>, relay=2000584311.mail.outlook.com[207.46.163.247]:25, delay=3.5, delays=0.1/1/0.52/1.9, dsn=2.6.0, status=sent (250 2.6.0 <1B93B0C9-903F-4FDE-90B7-86FF45B42FBA@FreeBSD.org> [InternalId=21796959027908, Hostname=DM2PR0201MB0573.namprd02.prod.outlook.com] Queued mail for delivery) Dec 26 01:08:36 mx2 postfix/smtp[17093]: 9E42C36F2: to=<hsing.yuan@isilon.com>, relay=emc-com.mail.protection.outlook.com[213.199.154.87]:25, delay=4, delays=0.1/1.3/1.5/1.1, dsn=2.6.0, status=sent (250 2.6.0 <1B93B0C9-903F-4FDE-90B7-86FF45B42FBA@FreeBSD.org> [InternalId=39195871544239, Hostname=DBXPR04MB335.eurprd04.prod.outlook.com] Queued mail for delivery) Dec 26 01:08:37 mx2 postfix/smtp[17265]: 9F1AD36F5: to=<sgarcia@cecoban.org.mx>, relay=cecoban-org-mx.mail.protection.outlook.com[207.46.163.170]:25, delay=4.6, delays=0.11/1.4/1.1/2.1, dsn=2.6.0, status=sent (250 2.6.0 <1B93B0C9-903F-4FDE-90B7-86FF45B42FBA@FreeBSD.org> [InternalId=22415434318232, Hostname=CY1PR0201MB0729.namprd02.prod.outlook.com] Queued mail for delivery) root@mx2:/var/log # grep 1B93B0C9-903F-4FDE-90B7-86FF45B42FBA maillog | grep -i bengrimm root@mx2:/var/log # Hmmm... A similar large number of log messages, but none mention bengrimm.net. Looking a bit more on mx2: root@mx2:/var/log # grep -wi bengrimm maillog Dec 26 01:02:12 mx2 postfix/smtp[15420]: 688A33578: host hail.bengrimm.net[185.23.140.188] said: 451 4.7.1 Greylisting in action, please come back in 00:03:00 (in reply to RCPT TO command) Dec 26 01:02:24 mx2 postfix/smtp[15420]: 688A33578: to=<freebsd@bengrimm.net>, relay=offshore.bengrimm.net[84.22.99.9]:25, delay=24, delays=0/0/23/0.63, dsn=5.7.1, status=bounced (host offshore.bengrimm.net[84.22.99.9] said: 550 5.7.1 <freebsd@bengrimm.net>... Relaying denied (in reply to RCPT TO command)) Dec 26 01:12:12 mx2 postfix/smtp[17194]: 8B90C1CE3: to=<freebsd@bengrimm.net>, relay=hail.bengrimm.net[185.23.140.188]:25, delay=11, delays=0/0/10/0.73, dsn=2.0.0, status=sent (250 2.0.0 sBQ1C1C6069795 Message accepted for delivery) root@mx2:/var/log # Hmmm... perhaps Mailman isn't especially happy about being greylisted. Does that help provide some clues for evasive action for you? Peace, david -- David H. Wolfskill david@catwhisker.org Actions have consequences ... as do inactions. See http://www.catwhisker.org/~david/publickey.gpg for my public key. [-- Attachment #2 --] -----BEGIN PGP SIGNATURE----- Version: GnuPG v2 iQJ8BAEBCgBmBQJUnLjBXxSAAAAAAC4AKGlzc3Vlci1mcHJAbm90YXRpb25zLm9w ZW5wZ3AuZmlmdGhob3JzZW1hbi5uZXQ4RThEMDY4QTIxMjc1MDZFRDIzODYzRTc4 QTY3RjlDOERFRjQxOTNCAAoJEIpn+cje9Bk7jEwQAJ38wCYaWTEyGbJe6nRXB6KX /rLs0NBO0kyM+LPdYSsWnUYgLbZYdJH5JtxVhFXT0OqLyUCsNlEY9GH84BViv57U CRC9fOaC5dpmSD/lyFM30zs2RmtLDv4kgECoxs3pR3zrmrscgxaiWYZ7asBhx9b3 QSfmwyJeRqaFDnZgslTuG2k+CLiP8LPZRn5uBTwJIb1HRLL54edAqYpfAzYhj1SA m6t88PrBESacmgBPmNeaduOBByJWf17yUpo39oegmL+P/JTQWg4nmBCmOb4lvH1T /GktPusJcAzXernA0X+DI8Ebcmwv3Tj/0LSai2xv1uaIcizyzF6zsrB9G3gwaaQz 2khuDxjyau5EAOedV+HERcXXZJc1cfCsPn0hVfqRSzyKkvW6gbtgVistk/m7qEy6 OEGsZs8njpnATu2wymextBTj5BoTD1jtgXKq+3Ni/pGkEWay9oBWpmD9H7wI0VLj 891Bj+mYR7rocyAabHPRkH6DD8yuluwQNukg1DUyF9/NrMsBgBZV3wEuvyYm5F5Y JGDoJA0KOvy2UmNAEKqBJs/va0ZU0R64DPNEbWIw4+cySTuWivwzBPOvzUM7Dt0D sNHEhvstxwEiKJ+Q5uIO9UjZ7wyJJz8bBhMxU2nMYD4XedXIchl4WGyN8zTY0bUu Z/wqZbESz9LooXRXBnqL =VXsF -----END PGP SIGNATURE-----
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20141226012417.GL1210>