From owner-freebsd-isp Fri Sep 27 16:58:45 2002 Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.FreeBSD.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 0CD9737B401 for ; Fri, 27 Sep 2002 16:58:39 -0700 (PDT) Received: from smtp.internet.dk (smtp.internet.dk [194.19.140.25]) by mx1.FreeBSD.org (Postfix) with ESMTP id 8A83D43E4A for ; Fri, 27 Sep 2002 16:58:31 -0700 (PDT) (envelope-from leifn@neland.dk) Received: from notino (0x50c48aec.adsl-fixed.tele.dk [80.196.138.236]) (authenticated) by smtp.internet.dk (8.11.6/8.11.6/Debian/GNU) with ESMTP id g8RNvgC31465; Sat, 28 Sep 2002 01:57:42 +0200 Message-ID: <039d01c26681$9a9f2310$6405a8c0@notino> From: "Leif Neland" To: "Andre Hall" , "Dave [Hawk-Systems]" , "FreeBSD" , References: <200209272129.g8RLTcuV003366@inetworx.pcgameauthority.com> Subject: Re: open smtp relays and http proxies Date: Sat, 28 Sep 2002 01:57:05 +0200 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 6.00.2600.0000 X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Who told you your server is an open relay? Ordb only lists your server as open if it actually recieves a relayed message; not if your server accepts the message, but later rejects it. Ordb also lists the message which gets relayed, so you can see which hole to patch. Leif ----- Original Message ----- From: "Andre Hall" To: "Dave [Hawk-Systems]" ; "FreeBSD" ; Sent: Friday, September 27, 2002 11:29 PM Subject: RE: open smtp relays and http proxies > I just wanted to add that maybe I've overlooked something but I have > attached a copy of my firewall log which uses Exim as a SMTP proxy to > forward mail to my Postfix server. The email I received states the > following: Your submitted host [IP address] has been classified as an > open relay and is now stored in our database. > > How is that when my mail proxy and server both refused relay requests? > Enlighten me. Thanks. > > > > -- > > NeoMail - Webmail that doesn't suck... as much. > > http://neomail.sourceforge.net > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > > with "unsubscribe freebsd-isp" in the body of the message > > > > > > -- > NeoMail - Webmail that doesn't suck... as much. > http://neomail.sourceforge.net > ---------------------------------------------------------------------------- ---- > 27 06:37:55 frwx exim[23622]: 2002-09-27 06:37:55 Connection from 212.242.88.2 refused: too many connections > Sep 27 06:37:55 localhost exim[23622]: 2002-09-27 06:37:55 Connection from 212.242.88.2 refused: too many connections > Sep 27 06:37:55 frwx exim[23622]: 2002-09-27 06:37:55 Connection from 212.242.88.2 refused: too many connections > Sep 27 06:37:55 localhost exim[23622]: 2002-09-27 06:37:55 Connection from 212.242.88.2 refused: too many connections > Sep 27 06:37:56 frwx exim[23622]: 2002-09-27 06:37:56 Connection from 212.242.88.2 refused: too many connections > Sep 27 06:37:56 localhost exim[23622]: 2002-09-27 06:37:56 Connection from 212.242.88.2 refused: too many connections > Sep 27 06:37:56 frwx exim[23622]: 2002-09-27 06:37:56 Connection from 212.242.88.2 refused: too many connections > Sep 27 06:37:56 localhost exim[23622]: 2002-09-27 06:37:56 Connection from 212.242.88.2 refused: too many connections > Sep 27 06:37:56 frwx exim[23622]: 2002-09-27 06:37:56 Connection from 62.79.90.71 refused: too many connections > Sep 27 06:37:56 localhost exim[23622]: 2002-09-27 06:37:56 Connection from 62.79.90.71 refused: too many connections > Sep 27 06:37:56 frwx exim[23622]: 2002-09-27 06:37:56 Connection from 212.242.88.2 refused: too many connections > Sep 27 06:37:56 localhost exim[23622]: 2002-09-27 06:37:56 Connection from 212.242.88.2 refused: too many connections > Sep 27 06:37:56 frwx exim[23622]: 2002-09-27 06:37:56 Connection from 212.242.88.2 refused: too many connections > Sep 27 06:37:56 localhost exim[23622]: 2002-09-27 06:37:56 Connection from 212.242.88.2 refused: too many connections > Sep 27 06:37:57 frwx exim[23622]: 2002-09-27 06:37:57 Connection from 62.79.90.71 refused: too many connections > Sep 27 06:37:57 localhost exim[23622]: 2002-09-27 06:37:57 Connection from 62.79.90.71 refused: too many connections > Sep 27 06:38:19 frwx exim[14318]: 2002-09-27 06:38:19 refused relay (host) to from H=(localhost.localdomain) [212.242.88.3] > Sep 27 06:38:19 frwx exim[14318]: 2002-09-27 06:38:19 refused relay (host) to from H=(localhost.localdomain) [212.242.88.3] > Sep 27 06:38:19 localhost exim[14318]: 2002-09-27 06:38:19 refused relay (host) to from H=(localhost.localdomain) [212.242.88.3] > Sep 27 06:38:20 frwx exim[14329]: 2002-09-27 06:38:20 unqualified sender rejected: H=(localhost.localdomain) [62.79.90.71] > Sep 27 06:38:20 frwx exim[14329]: 2002-09-27 06:38:20 unqualified sender rejected: H=(localhost.localdomain) [62.79.90.71] > Sep 27 06:38:20 localhost exim[14329]: 2002-09-27 06:38:20 unqualified sender rejected: H=(localhost.localdomain) [62.79.90.71] > Sep 27 06:38:21 frwx exim[14309]: 2002-09-27 06:38:21 refused relay (host) to from H=(localhost.localdomain) [212.242.88.3] > Sep 27 06:38:21 frwx exim[14309]: 2002-09-27 06:38:21 refused relay (host) to from H=(localhost.localdomain) [212.242.88.3] > Sep 27 06:38:21 localhost exim[14309]: 2002-09-27 06:38:21 refused relay (host) to from H=(localhost.localdomain) [212.242.88.3] > Sep 27 06:38:21 frwx exim[14323]: 2002-09-27 06:38:21 refused relay (host) to from H=(localhost.localdomain) [62.79.90.71] > Sep 27 06:38:21 frwx exim[14323]: 2002-09-27 06:38:21 refused relay (host) to from H=(localhost.localdomain) [62.79.90.71] > Sep 27 06:38:21 localhost exim[14323]: 2002-09-27 06:38:21 refused relay (host) to from H=(localhost.localdomain) [62.79.90.71] > Sep 27 06:38:21 frwx exim[14317]: 2002-09-27 06:38:21 unqualified recipient rejected: <"marvin%marvin.ordb.org"> H=(groundzero.ordb.org) [62.242.0.190] > Sep 27 06:38:21 frwx exim[14317]: 2002-09-27 06:38:21 unqualified recipient rejected: <"marvin%marvin.ordb.org"> H=(groundzero.ordb.org) [62.242.0.190] > Sep 27 06:38:21 localhost exim[14317]: 2002-09-27 06:38:21 unqualified recipient rejected: <"marvin%marvin.ordb.org"> H=(groundzero.ordb.org) [62.242.0.190] > Sep 27 06:38:21 frwx exim[14316]: 2002-09-27 06:38:21 refused relay (host) to from H=(localhost.localdomain) [212.242.88.3] > Sep 27 06:38:21 frwx exim[14316]: 2002-09-27 06:38:21 refused relay (host) to from H=(localhost.localdomain) [212.242.88.3] > Sep 27 06:38:21 localhost exim[14316]: 2002-09-27 06:38:21 refused relay (host) to from H=(localhost.localdomain) [212.242.88.3] > Sep 27 06:38:21 frwx exim[14336]: 2002-09-27 06:38:21 refused relay (host) to from H=(localhost.localdomain) [212.242.88.3] > Sep 27 06:38:21 frwx exim[14336]: 2002-09-27 06:38:21 refused relay (host) to from H=(localhost.localdomain) [212.242.88.3] > Sep 27 06:38:21 localhost exim[14336]: 2002-09-27 06:38:21 refused relay (host) to from H=(localhost.localdomain) [212.242.88.3] > Sep 27 06:38:22 frwx exim[14311]: 2002-09-27 06:38:22 17uvK1-0003ip-00 <= bitbucket@ordb.org H=(groundzero.ordb.org) [62.242.0.190] P=esmtp S=1027 > Sep 27 06:38:22 localhost exim[14311]: 2002-09-27 06:38:22 17uvK1-0003ip-00 <= bitbucket@ordb.org H=(groundzero.ordb.org) [62.242.0.190] P=esmtp S=1027 > Sep 27 06:38:22 frwx exim[14488]: 2002-09-27 06:38:22 17uvK1-0003ip-00 => "marvin@marvin.ordb.org"@pcgameauthority.com R=smtp_router T=remote_smtp H=10.10.10.2 [10.10.10.2] > Sep 27 06:38:22 frwx exim[14488]: 2002-09-27 06:38:22 17uvK1-0003ip-00 Completed > Sep 27 06:38:22 localhost exim[14488]: 2002-09-27 06:38:22 17uvK1-0003ip-00 => "marvin@marvin.ordb.org"@pcgameauthority.com R=smtp_router T=remote_smtp H=10.10.10.2 [10.10.10.2] > Sep 27 06:38:22 localhost exim[14488]: 2002-09-27 06:38:22 17uvK1-0003ip-00 Completed > Sep 27 06:38:22 frwx exim[14328]: 2002-09-27 06:38:22 refused relay (host) to from H=(localhost.localdomain) [212.242.88.3] > Sep 27 06:38:22 frwx exim[14328]: 2002-09-27 06:38:22 refused relay (host) to from H=(localhost.localdomain) [212.242.88.3] > Sep 27 06:38:22 localhost exim[14328]: 2002-09-27 06:38:22 refused relay (host) to from H=(localhost.localdomain) [212.242.88.3] > Sep 27 06:38:24 frwx exim[14331]: 2002-09-27 06:38:24 refused relay (host) to from H=(groundzero.ordb.org) [62.242.0.190] > Sep 27 06:38:24 frwx exim[14331]: 2002-09-27 06:38:24 refused relay (host) to from H=(groundzero.ordb.org) [62.242.0.190] > Sep 27 06:38:24 localhost exim[14331]: 2002-09-27 06:38:24 refused relay (host) to from H=(groundzero.ordb.org) [62.242.0.190] > Sep 27 06:38:24 frwx exim[14327]: 2002-09-27 06:38:24 refused relay (host) to <"marvin@marvin.ordb.org"@dsl081-233-167.lax1.dsl.speakeasy.net> from H=(localhost.localdomain) [62.79.90.71] > Sep 27 06:38:24 frwx exim[14327]: 2002-09-27 06:38:24 refused relay (host) to <"marvin@marvin.ordb.org"@dsl081-233-167.lax1.dsl.speakeasy.net> from H=(localhost.localdomain) [62.79.90.71] > Sep 27 06:38:24 localhost exim[14327]: 2002-09-27 06:38:24 refused relay (host) to <"marvin@marvin.ordb.org"@dsl081-233-167.lax1.dsl.speakeasy.net> from H=(localhost.localdomain) [62.79.90.71] > Sep 27 06:38:24 frwx exim[14324]: 2002-09-27 06:38:24 refused relay (host) to from H=(localhost.localdomain) [62.79.90.71] > Sep 27 06:38:24 frwx exim[14324]: 2002-09-27 06:38:24 refused relay (host) to from H=(localhost.localdomain) [62.79.90.71] > Sep 27 06:38:24 localhost exim[14324]: 2002-09-27 06:38:24 refused relay (host) to from H=(localhost.localdomain) [62.79.90.71] > Sep 27 06:38:25 frwx exim[14333]: 2002-09-27 06:38:25 refused relay (host) to from H=(groundzero.ordb.org) [62.242.0.190] > Sep 27 06:38:25 frwx exim[14333]: 2002-09-27 06:38:25 refused relay (host) to from H=(groundzero.ordb.org) [62.242.0.190] > Sep 27 06:38:25 localhost exim[14333]: 2002-09-27 06:38:25 refused relay (host) to from H=(groundzero.ordb.org) [62.242.0.190] > Sep 27 06:38:26 frwx exim[14335]: 2002-09-27 06:38:26 unqualified recipient rejected: <"marvin@marvin.ordb.org@lax1.dsl.speakeasy.net"> H=(localhost.localdomain) [212.242.88.2] > Sep 27 06:38:26 frwx exim[14335]: 2002-09-27 06:38:26 unqualified recipient rejected: <"marvin@marvin.ordb.org@lax1.dsl.speakeasy.net"> H=(localhost.localdomain) [212.242.88.2] > Sep 27 06:38:26 localhost exim[14335]: 2002-09-27 06:38:26 unqualified recipient rejected: <"marvin@marvin.ordb.org@lax1.dsl.speakeasy.net"> H=(localhost.localdomain) [212.242.88.2] > Sep 27 06:38:26 frwx exim[14338]: 2002-09-27 06:38:26 unqualified recipient rejected: <"marvin@marvin.ordb.org@speakeasy.net"> H=(localhost.localdomain) [212.242.88.2] > Sep 27 06:38:26 frwx exim[14338]: 2002-09-27 06:38:26 unqualified recipient rejected: <"marvin@marvin.ordb.org@speakeasy.net"> H=(localhost.localdomain) [212.242.88.2] > Sep 27 06:38:26 localhost exim[14338]: 2002-09-27 06:38:26 unqualified recipient rejected: <"marvin@marvin.ordb.org@speakeasy.net"> H=(localhost.localdomain) [212.242.88.2] > Sep 27 06:38:26 frwx exim[14325]: 2002-09-27 06:38:26 refused relay (host) to from H=(localhost.localdomain) [212.242.88.2] > Sep 27 06:38:26 frwx exim[14325]: 2002-09-27 06:38:26 refused relay (host) to from H=(localhost.localdomain) [212.242.88.2] > Sep 27 06:38:26 localhost exim[14325]: 2002-09-27 06:38:26 refused relay (host) to from H=(localhost.localdomain) [212.242.88.2] > Sep 27 06:38:26 frwx exim[14339]: 2002-09-27 06:38:26 refused relay (host) to from H=(localhost.localdomain) [212.242.88.2] > Sep 27 06:38:26 frwx exim[14339]: 2002-09-27 06:38:26 refused relay (host) to from H=(localhost.localdomain) [212.242.88.2] > Sep 27 06:38:26 localhost exim[14339]: 2002-09-27 06:38:26 refused relay (host) to from H=(localhost.localdomain) [212.242.88.2] > Sep 27 06:38:27 frwx exim[14523]: 2002-09-27 06:38:27 17uvK7-0003mF-00 <= bitbucket@ordb.org H=(BocksCar.ORDB.org) [62.243.72.19] P=esmtp S=1333 id=20020927203611.7BAD25B01@BocksCar.ORDB.org > Sep 27 06:38:27 localhost exim[14523]: 2002-09-27 06:38:27 17uvK7-0003mF-00 <= bitbucket@ordb.org H=(BocksCar.ORDB.org) [62.243.72.19] P=esmtp S=1333 id=20020927203611.7BAD25B01@BocksCar.ORDB.org > Sep 27 06:38:27 frwx exim[14524]: 2002-09-27 06:38:27 17uvK7-0003mF-00 => ahall@pcgameauthority.com R=smtp_router T=remote_smtp H=10.10.10.2 [10.10.10.2] > Sep 27 06:38:27 frwx exim[14524]: 2002-09-27 06:38:27 17uvK7-0003mF-00 Completed > Sep 27 06:38:27 localhost exim[14524]: 2002-09-27 06:38:27 17uvK7-0003mF-00 => ahall@pcgameauthority.com R=smtp_router T=remote_smtp H=10.10.10.2 [10.10.10.2] > Sep 27 06:38:27 localhost exim[14524]: 2002-09-27 06:38:27 17uvK7-0003mF-00 Completed > Sep 27 06:43:18 frwx exim[16224]: 2002-09-27 06:43:18 Start queue run: pid=16224 > Sep 27 06:43:18 frwx exim[16224]: 2002-09-27 06:43:18 End queue run: pid=16224 > Sep 27 06:43:18 localhost exim[16224]: 2002-09-27 06:43:18 Start queue run: pid=16224 > Sep 27 06:43:18 localhost exim[16224]: 2002-09-27 06:43:18 End queue run: pid=16224 > Sep 27 06:58:48 frwx exim[21662]: 2002-09-27 06:58:48 17uvdo-0005dO-00 <= owner-freebsd-hackers@freebsd.org H=(mx2.freebsd.org) [216.136.204.119] P=esmtp S=7632 id=8A83D227-D25B-11D6-94A3-0003935AF2A4@cnt.org > Sep 27 06:58:48 localhost exim[21662]: 2002-09-27 06:58:48 17uvdo-0005dO-00 <= owner-freebsd-hackers@freebsd.org H=(mx2.freebsd.org) [216.136.204.119] P=esmtp S=7632 id=8A83D227-D25B-11D6-94A3-0003935AF2A4@cnt.org > Sep 27 06:58:48 frwx exim[21673]: 2002-09-27 06:58:48 17uvdo-0005dO-00 => ahall@pcgameauthority.com R=smtp_router T=remote_smtp H=10.10.10.2 [10.10.10.2] > Sep 27 06:58:48 frwx exim[21673]: 2002-09-27 06:58:48 17uvdo-0005dO-00 Completed > Sep 27 06:58:48 localhost exim[21673]: 2002-09-27 06:58:48 17uvdo-0005dO-00 => ahall@pcgameauthority.com R=smtp_router T=remote_smtp H=10.10.10.2 [10.10.10.2] > Sep 27 06:58:48 localhost exim[21673]: 2002-09-27 06:58:48 17uvdo-0005dO-00 Completed > Sep 27 07:02:23 frwx exim[22978]: 2002-09-27 07:02:23 refused relay (host) to from H=(groundzero.ordb.org) [62.242.0.190] > Sep 27 07:02:23 frwx exim[22978]: 2002-09-27 07:02:23 refused relay (host) to from H=(groundzero.ordb.org) [62.242.0.190] > Sep 27 07:02:23 localhost exim[22978]: 2002-09-27 07:02:23 refused relay (host) to from H=(groundzero.ordb.org) [62.242.0.190] > Sep 27 07:02:23 frwx exim[22978]: 2002-09-27 07:02:23 refused relay (host) to from H=(groundzero.ordb.org) [62.242.0.190] > Sep 27 07:02:23 frwx exim[22978]: 2002-09-27 07:02:23 refused relay (host) to from H=(groundzero.ordb.org) [62.242.0.190] > Sep 27 07:02:23 localhost exim[22978]: 2002-09-27 07:02:23 refused relay (host) to from H=(groundzero.ordb.org) [62.242.0.190] > Sep 27 07:02:23 frwx exim[22978]: 2002-09-27 07:02:23 refused relay (host) to from H=(groundzero.ordb.org) [62.242.0.190] > Sep 27 07:02:23 frwx exim[22978]: 2002-09-27 07:02:23 refused relay (host) to from H=(groundzero.ordb.org) [62.242.0.190] > Sep 27 07:02:23 localhost exim[22978]: 2002-09-27 07:02:23 refused relay (host) to from H=(groundzero.ordb.org) [62.242.0.190] > Sep 27 07:03:18 frwx exim[23309]: 2002-09-27 07:03:18 Start queue run: pid=23309 > Sep 27 07:03:18 frwx exim[23309]: 2002-09-27 07:03:18 End queue run: pid=23309 > Sep 27 07:03:18 localhost exim[23309]: 2002-09-27 07:03:18 Start queue run: pid=23309 > Sep 27 07:03:18 localhost exim[23309]: 2002-09-27 07:03:18 End queue run: pid=23309 To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message