Date: Mon, 23 Dec 2002 17:49:09 +0100 From: Roman Neuhauser <neuhauser@bellavista.cz> To: Albertus Magnus <st_albert@gmx.net> Cc: freebsd-questions@freebsd.org Subject: Re: once last try Message-ID: <20021223164909.GK690@freepuppy.bellavista.cz> In-Reply-To: <200212231052.59455.st_albert@gmx.net> References: <20021223112336.4286.qmail@web10707.mail.yahoo.com> <20021223123554.GB690@freepuppy.bellavista.cz> <200212231052.59455.st_albert@gmx.net>
next in thread | previous in thread | raw e-mail | index | archive | help
# st_albert@gmx.net / 2002-12-23 10:52:59 -0500:
> On Monday 23 December 2002 07:35, Roman Neuhauser wrote:
> > # bsdsys@yahoo.com / 2002-12-23 03:23:36 -0800:
> > > OK. I have tried unsuscribing to this mailing list and
> > > re-subscribing to it and then sending e-mails to it to
> > > test but my e-mails never make it. I know this e-mail
> > > will make it to the list but this account is not the
> > > one im having problems with. I'm having problems with
> > > my POP account. if someone could help me figure out
> > > what the problem is i would appreciate it. I dont get
> > > any error messages back either when i try to send
> > > e-mails to this list from my POP account.
> >
> > The freebsd.org MTA is somewhat anal about the properties of the
> > other side of the SMTP connection. The name sent in EHLO/HELO
> > must resolve to the address of the host, and its IP address must
> > resolve to that name. This is a very successful anti-spam measure. It
> > unfortunately also causes some collateral damage.
> But it seems to me that there's more to it than you've described above.
might be. all I know about mx1.freebsd.org is what I observed (plus
what others have said on the list, which might just as well be
anecdotal evidence like mine).
> For example, ISTR that when I was using Pegasus Mail (Windows) I had to
> change its settings so as not to put "@localhost" in the message-ID
> header (or some such thing... I don't remember exactly).
yes. that is against RFC 822, so mx1.freebsd.org (or
hub.freebsd.org) *just might* reject such a message.
> Anyway, as of now, using KDE Kmail, I have tried three different MTA's:
> two ISP's and sendmail on my own FBSD box connected to the cable modem.
> In each case they supply (to freebsd.org) the correct hostname which
> resolves to the correct IP address, and vice versa. Yet only one gets
> through. I'm not sure why... the only errors I get are something like
> "connection refused" or "service unavailable" or something equally
> non-specific.
>
> Could it be that freebsd.org checks farther back in the chain than just
> the MTA that is talking to it? Or is it something else?
*might*, but it probably doesn't. more likely there's something
wrong with the other two MTA's (from mx1's POV at least).
but, given that they already do header checks, they might as well
check if one of the Received: hops is an open relay, and reject the
message if so. that would keep the lists clear of spammers that are
smart enough to route their shit through more than one MTA so that
the one that talks to mx1.freebsd.org is deemed ok.
> Maybe I should check some of the spam that does get through, and see how
> they do it ;-)
more interesting: post the bounces.
BTW, here's an instance of the situation we're talking about:
Out: 554 Service unavailable; [217.36.194.32] blocked using bl.spamcop.net,
reason: Blocked - see http://spamcop.net/bl.shtml?217.36.194.32
In: HELO bigfoot.com
Out: 503 Error: access denied for
host217-36-194-32.in-addr.btopenworld.com[217.36.194.32]
In: MAIL FROM: <tom12543@bigfoot.com>
Out: 503 Error: access denied for
host217-36-194-32.in-addr.btopenworld.com[217.36.194.32]
In: RCPT TO: <neuhauser@bellavista.cz>
Out: 503 Error: access denied for
host217-36-194-32.in-addr.btopenworld.com[217.36.194.32]
Out: 421 Error: too many errors
as an added bonus, this spammer's MTA ignored the 554 it got instead
of the server greeting, the server closed the session forcefully
after a configured limit of errors.
and... I reported this to abuse@btopenworld.com. here's the outcome:
Session aborted, reason: too many errors
Out: 220 mail.bellavista.cz ESMTP Postfix
In: EHLO plutonium
Out: 504 <plutonium>: Helo command rejected: need fully-qualified hostname
In: HELO plutonium
Out: 504 <plutonium>: Helo command rejected: need fully-qualified hostname
In: QUIT
Out: 221 Bye
it's not shown here, but plutonium should've been
plutonium.btinternet.com.
--
If you cc me or remove the list(s) completely I'll most likely ignore
your message. see http://www.eyrie.org./~eagle/faqs/questions.html
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20021223164909.GK690>