From owner-freebsd-test@FreeBSD.ORG Fri Dec 26 01:24:19 2014 Return-Path: Delivered-To: freebsd-test@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by hub.freebsd.org (Postfix) with ESMTPS id C2D33D28; Fri, 26 Dec 2014 01:24:19 +0000 (UTC) Received: from albert.catwhisker.org (mx.catwhisker.org [198.144.209.73]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id 7B503263C; Fri, 26 Dec 2014 01:24:18 +0000 (UTC) Received: from albert.catwhisker.org (localhost [127.0.0.1]) by albert.catwhisker.org (8.14.9/8.14.9) with ESMTP id sBQ1OHwU043667; Thu, 25 Dec 2014 17:24:17 -0800 (PST) (envelope-from david@albert.catwhisker.org) Received: (from david@localhost) by albert.catwhisker.org (8.14.9/8.14.9/Submit) id sBQ1OHTw043666; Thu, 25 Dec 2014 17:24:17 -0800 (PST) (envelope-from david) Date: Thu, 25 Dec 2014 17:24:17 -0800 From: David Wolfskill To: Dutch Daemon - FreeBSD Forums Administrator Subject: Re: Fwd: "Short test message" Message-ID: <20141226012417.GL1210@albert.catwhisker.org> References: <17DA18BB-9AB1-4C1F-8DA4-71F45AD76780@FreeBSD.org> <1B93B0C9-903F-4FDE-90B7-86FF45B42FBA@FreeBSD.org> MIME-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-sha512; protocol="application/pgp-signature"; boundary="M7V0qTuooiQ1N2RE" Content-Disposition: inline In-Reply-To: <1B93B0C9-903F-4FDE-90B7-86FF45B42FBA@FreeBSD.org> User-Agent: Mutt/1.5.23 (2014-03-12) Cc: postmaster@freebsd.org, freebsd-test@freebsd.org X-BeenThere: freebsd-test@freebsd.org X-Mailman-Version: 2.1.18-1 Precedence: list List-Id: Test posting area List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 26 Dec 2014 01:24:19 -0000 --M7V0qTuooiQ1N2RE Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable On Fri, Dec 26, 2014 at 02:08:15AM +0100, Dutch Daemon - FreeBSD Forums Adm= inistrator wrote: > Now with CC >=20 >=20 > -------- Original Message -------- > From: Dutch Daemon - FreeBSD Forums Administrator > Sent: December 26, 2014 2:04:58 AM GMT+01:00 > To: freebsd-test@freebsd.org > Subject: "Short test message" >=20 > As requested by postmaster@ >=20 Curious... On hub, I see: hub(11.0-C)[1] cd /var/log hub(11.0-C)[2] grep 1B93B0C9-903F-4FDE-90B7-86FF45B42FBA maillog=20 Dec 26 01:08:30 hub postfix/cleanup[23982]: D74A398C: message-id=3D<1B93B0C= 9-903F-4FDE-90B7-86FF45B42FBA@FreeBSD.org> Dec 26 01:08:30 hub spamd[3083]: spamd: processing message <1B93B0C9-903F-4= FDE-90B7-86FF45B42FBA@FreeBSD.org> for flo:1248=20 Dec 26 01:08:31 hub spamd[504]: spamd: checking message <1B93B0C9-903F-4FDE= -90B7-86FF45B42FBA@FreeBSD.org> for mailman:91=20 Dec 26 01:08:32 hub spamd[3083]: spamd: result: . 0 - AWL,BAYES_00,UTF8_CHA= RSET scantime=3D1.1,size=3D3503,user=3Dflo,uid=3D1248,required_score=3D5.0,= rhost=3Dlocalhost,raddr=3D::1,rport=3D29598,mid=3D<1B93B0C9-903F-4FDE-90B7-= 86FF45B42FBA@FreeBSD.org>,bayes=3D0.000000,autolearn=3Dno autolearn_force= =3Dno=20 Dec 26 01:08:32 hub postfix/cleanup[23955]: 0931B98F: message-id=3D<1B93B0C= 9-903F-4FDE-90B7-86FF45B42FBA@FreeBSD.org> Dec 26 01:08:32 hub postfix/cleanup[24011]: 0ED1D991: message-id=3D<1B93B0C= 9-903F-4FDE-90B7-86FF45B42FBA@FreeBSD.org> Dec 26 01:08:32 hub postfix/cleanup[20512]: D842B98D: message-id=3D<1B93B0C= 9-903F-4FDE-90B7-86FF45B42FBA@FreeBSD.org> Dec 26 01:08:32 hub spamd[504]: spamd: result: . 0 - AWL,BAYES_00,UTF8_CHAR= SET scantime=3D0.8,size=3D3455,user=3Dmailman,uid=3D91,required_score=3D5.0= ,rhost=3Dlocalhost,raddr=3D127.0.0.1,rport=3D29600,mid=3D<1B93B0C9-903F-4FD= E-90B7-86FF45B42FBA@FreeBSD.org>,bayes=3D0.000000,autolearn=3Dno autolearn_= force=3Dno=20 Dec 26 01:08:32 hub postfix/cleanup[20512]: 812489AE: message-id=3D<1B93B0C= 9-903F-4FDE-90B7-86FF45B42FBA@FreeBSD.org> Dec 26 01:08:32 hub postfix/cleanup[24011]: 820A09AF: message-id=3D<1B93B0C= 9-903F-4FDE-90B7-86FF45B42FBA@FreeBSD.org> Dec 26 01:08:32 hub postfix/cleanup[23982]: 835239B0: message-id=3D<1B93B0C= 9-903F-4FDE-90B7-86FF45B42FBA@FreeBSD.org> Dec 26 01:08:32 hub postfix/cleanup[24011]: 899E99B6: message-id=3D<1B93B0C= 9-903F-4FDE-90B7-86FF45B42FBA@FreeBSD.org> Dec 26 01:08:32 hub postfix/cleanup[24011]: 89E289B9: message-id=3D<1B93B0C= 9-903F-4FDE-90B7-86FF45B42FBA@FreeBSD.org> Dec 26 01:08:32 hub postfix/cleanup[23955]: 898229B4: message-id=3D<1B93B0C= 9-903F-4FDE-90B7-86FF45B42FBA@FreeBSD.org> Dec 26 01:08:32 hub postfix/cleanup[20512]: 8B4899BA: message-id=3D<1B93B0C= 9-903F-4FDE-90B7-86FF45B42FBA@FreeBSD.org> Dec 26 01:08:32 hub postfix/cleanup[23982]: 8D8EE9BB: message-id=3D<1B93B0C= 9-903F-4FDE-90B7-86FF45B42FBA@FreeBSD.org> Dec 26 01:08:32 hub postfix/cleanup[24011]: 8FEFE9BC: message-id=3D<1B93B0C= 9-903F-4FDE-90B7-86FF45B42FBA@FreeBSD.org> Dec 26 01:08:32 hub postfix/cleanup[24105]: 9241B9C0: message-id=3D<1B93B0C= 9-903F-4FDE-90B7-86FF45B42FBA@FreeBSD.org> Dec 26 01:08:32 hub postfix/cleanup[20512]: 93FB59C1: message-id=3D<1B93B0C= 9-903F-4FDE-90B7-86FF45B42FBA@FreeBSD.org> hub(11.0-C)[3]=20 which seems like a LOT of maillog entries for one message with a small number of recipients. Checking mx2, I see: root@mx2:~ # cd /var/log root@mx2:/var/log # grep 1B93B0C9-903F-4FDE-90B7-86FF45B42FBA maillog Dec 26 01:08:32 mx2 postfix/cleanup[12079]: 0B87B36B2: message-id=3D<1B93B0= C9-903F-4FDE-90B7-86FF45B42FBA@FreeBSD.org> Dec 26 01:08:32 mx2 postfix/cleanup[12627]: 1120A36B3: message-id=3D<1B93B0= C9-903F-4FDE-90B7-86FF45B42FBA@FreeBSD.org> Dec 26 01:08:32 mx2 postfix/cleanup[17022]: 112F136B4: message-id=3D<1B93B0= C9-903F-4FDE-90B7-86FF45B42FBA@FreeBSD.org> Dec 26 01:08:32 mx2 postfix/cleanup[12627]: 8419536D6: message-id=3D<1B93B0= C9-903F-4FDE-90B7-86FF45B42FBA@FreeBSD.org> Dec 26 01:08:32 mx2 postfix/cleanup[17059]: 8498736D9: message-id=3D<1B93B0= C9-903F-4FDE-90B7-86FF45B42FBA@FreeBSD.org> Dec 26 01:08:32 mx2 postfix/cleanup[17022]: 8A92336DB: message-id=3D<1B93B0= C9-903F-4FDE-90B7-86FF45B42FBA@FreeBSD.org> Dec 26 01:08:32 mx2 postfix/cleanup[17137]: 8D0E536E1: message-id=3D<1B93B0= C9-903F-4FDE-90B7-86FF45B42FBA@FreeBSD.org> Dec 26 01:08:32 mx2 postfix/cleanup[12079]: 8F27F36E5: message-id=3D<1B93B0= C9-903F-4FDE-90B7-86FF45B42FBA@FreeBSD.org> Dec 26 01:08:32 mx2 postfix/cleanup[13689]: 8F2B936E7: message-id=3D<1B93B0= C9-903F-4FDE-90B7-86FF45B42FBA@FreeBSD.org> Dec 26 01:08:32 mx2 postfix/cleanup[17163]: 8F67636E8: message-id=3D<1B93B0= C9-903F-4FDE-90B7-86FF45B42FBA@FreeBSD.org> Dec 26 01:08:32 mx2 postfix/cleanup[17170]: 9491936E9: message-id=3D<1B93B0= C9-903F-4FDE-90B7-86FF45B42FBA@FreeBSD.org> Dec 26 01:08:32 mx2 postfix/cleanup[12627]: 9E42C36F2: message-id=3D<1B93B0= C9-903F-4FDE-90B7-86FF45B42FBA@FreeBSD.org> Dec 26 01:08:32 mx2 postfix/cleanup[17172]: 9EB3F36F3: message-id=3D<1B93B0= C9-903F-4FDE-90B7-86FF45B42FBA@FreeBSD.org> Dec 26 01:08:32 mx2 postfix/cleanup[17059]: 9F1AD36F5: message-id=3D<1B93B0= C9-903F-4FDE-90B7-86FF45B42FBA@FreeBSD.org> Dec 26 01:08:34 mx2 postfix/smtp[17332]: 8F2B936E7: to=3D, relay=3Dmx4.hotmail.com[65.55.37.88]:25, delay=3D1.8, delays=3D0.1/= 1/0.25/0.46, dsn=3D2.0.0, status=3Dsent (250 <1B93B0C9-903F-4FDE-90B7-86FF= 45B42FBA@FreeBSD.org> Queued mail for delivery) Dec 26 01:08:34 mx2 postfix/smtp[17332]: 8F2B936E7: to=3D= , relay=3Dmx4.hotmail.com[65.55.37.88]:25, delay=3D1.8, delays=3D0.1/1/0.25= /0.46, dsn=3D2.0.0, status=3Dsent (250 <1B93B0C9-903F-4FDE-90B7-86FF45B42F= BA@FreeBSD.org> Queued mail for delivery) Dec 26 01:08:34 mx2 postfix/smtp[17269]: 9491936E9: to=3D, relay=3Dmx4.hotmail.com[65.55.37.104]:25, delay=3D2, delays=3D0.11= /1.2/0.25/0.45, dsn=3D2.0.0, status=3Dsent (250 <1B93B0C9-903F-4FDE-90B7-8= 6FF45B42FBA@FreeBSD.org> Queued mail for delivery) Dec 26 01:08:36 mx2 postfix/smtp[17324]: 8A92336DB: to=3D= , relay=3D2000584311.mail.outlook.com[207.46.163.247]:25, delay=3D3.5, dela= ys=3D0.1/1/0.52/1.9, dsn=3D2.6.0, status=3Dsent (250 2.6.0 <1B93B0C9-903F-4= FDE-90B7-86FF45B42FBA@FreeBSD.org> [InternalId=3D21796959027908, Hostname= =3DDM2PR0201MB0573.namprd02.prod.outlook.com] Queued mail for delivery) Dec 26 01:08:36 mx2 postfix/smtp[17093]: 9E42C36F2: to=3D, relay=3Demc-com.mail.protection.outlook.com[213.199.154.87]:25, de= lay=3D4, delays=3D0.1/1.3/1.5/1.1, dsn=3D2.6.0, status=3Dsent (250 2.6.0 <1= B93B0C9-903F-4FDE-90B7-86FF45B42FBA@FreeBSD.org> [InternalId=3D391958715442= 39, Hostname=3DDBXPR04MB335.eurprd04.prod.outlook.com] Queued mail for deli= very) Dec 26 01:08:37 mx2 postfix/smtp[17265]: 9F1AD36F5: to=3D, relay=3Dcecoban-org-mx.mail.protection.outlook.com[207.46.163.170]:= 25, delay=3D4.6, delays=3D0.11/1.4/1.1/2.1, dsn=3D2.6.0, status=3Dsent (250= 2.6.0 <1B93B0C9-903F-4FDE-90B7-86FF45B42FBA@FreeBSD.org> [InternalId=3D224= 15434318232, Hostname=3DCY1PR0201MB0729.namprd02.prod.outlook.com] Queued m= ail for delivery) root@mx2:/var/log # grep 1B93B0C9-903F-4FDE-90B7-86FF45B42FBA maillog | gre= p -i bengrimm root@mx2:/var/log # Hmmm... A similar large number of log messages, but none mention bengrimm.net. Looking a bit more on mx2: root@mx2:/var/log # grep -wi bengrimm maillog Dec 26 01:02:12 mx2 postfix/smtp[15420]: 688A33578: host hail.bengrimm.net[= 185.23.140.188] said: 451 4.7.1 Greylisting in action, please come back in = 00:03:00 (in reply to RCPT TO command) Dec 26 01:02:24 mx2 postfix/smtp[15420]: 688A33578: to=3D, relay=3Doffshore.bengrimm.net[84.22.99.9]:25, delay=3D24, delays=3D0/= 0/23/0.63, dsn=3D5.7.1, status=3Dbounced (host offshore.bengrimm.net[84.22.= 99.9] said: 550 5.7.1 ... Relaying denied (in reply t= o RCPT TO command)) Dec 26 01:12:12 mx2 postfix/smtp[17194]: 8B90C1CE3: to=3D, relay=3Dhail.bengrimm.net[185.23.140.188]:25, delay=3D11, delays=3D0/= 0/10/0.73, dsn=3D2.0.0, status=3Dsent (250 2.0.0 sBQ1C1C6069795 Message acc= epted for delivery) root@mx2:/var/log #=20 Hmmm... perhaps Mailman isn't especially happy about being greylisted. Does that help provide some clues for evasive action for you? Peace, david --=20 David H. Wolfskill david@catwhisker.org Actions have consequences ... as do inactions. See http://www.catwhisker.org/~david/publickey.gpg for my public key. --M7V0qTuooiQ1N2RE Content-Type: application/pgp-signature -----BEGIN PGP SIGNATURE----- Version: GnuPG v2 iQJ8BAEBCgBmBQJUnLjBXxSAAAAAAC4AKGlzc3Vlci1mcHJAbm90YXRpb25zLm9w ZW5wZ3AuZmlmdGhob3JzZW1hbi5uZXQ4RThEMDY4QTIxMjc1MDZFRDIzODYzRTc4 QTY3RjlDOERFRjQxOTNCAAoJEIpn+cje9Bk7jEwQAJ38wCYaWTEyGbJe6nRXB6KX /rLs0NBO0kyM+LPdYSsWnUYgLbZYdJH5JtxVhFXT0OqLyUCsNlEY9GH84BViv57U CRC9fOaC5dpmSD/lyFM30zs2RmtLDv4kgECoxs3pR3zrmrscgxaiWYZ7asBhx9b3 QSfmwyJeRqaFDnZgslTuG2k+CLiP8LPZRn5uBTwJIb1HRLL54edAqYpfAzYhj1SA m6t88PrBESacmgBPmNeaduOBByJWf17yUpo39oegmL+P/JTQWg4nmBCmOb4lvH1T /GktPusJcAzXernA0X+DI8Ebcmwv3Tj/0LSai2xv1uaIcizyzF6zsrB9G3gwaaQz 2khuDxjyau5EAOedV+HERcXXZJc1cfCsPn0hVfqRSzyKkvW6gbtgVistk/m7qEy6 OEGsZs8njpnATu2wymextBTj5BoTD1jtgXKq+3Ni/pGkEWay9oBWpmD9H7wI0VLj 891Bj+mYR7rocyAabHPRkH6DD8yuluwQNukg1DUyF9/NrMsBgBZV3wEuvyYm5F5Y JGDoJA0KOvy2UmNAEKqBJs/va0ZU0R64DPNEbWIw4+cySTuWivwzBPOvzUM7Dt0D sNHEhvstxwEiKJ+Q5uIO9UjZ7wyJJz8bBhMxU2nMYD4XedXIchl4WGyN8zTY0bUu Z/wqZbESz9LooXRXBnqL =VXsF -----END PGP SIGNATURE----- --M7V0qTuooiQ1N2RE--