Hello,
I have run into a problem where a remote mail server is bouncing back all mail from my machine, running exim 3. Here is the error message:
This message was created automatically by mail delivery software (Exim).
A message that you sent could not be delivered to one or more of its recipients. This is a permanent error. The following address(es) failed:
[EMAIL PROTECTED] SMTP error from remote mailer after RCPT TO:<[EMAIL PROTECTED]>: host newmoongraphics.com [66.226.64.5]: 554 5.7.1 Header forgery attempt - rejected
Someone suggested this might be an envelope problem, and I'm not certain how to rectify it. Here is the header from our correspondence as an example:
From [EMAIL PROTECTED] Tue Oct 26 04:18:52 2004Return-Path: <[EMAIL PROTECTED]>
X-Original-To: [EMAIL PROTECTED]
Delivered-To: [EMAIL PROTECTED]
Received: from lovely (node-4024071a.sfo.onnet.us.uu.net [64.36.7.26])
by bucky.theory.org (Postfix) with ESMTP id 139F34260
for <[EMAIL PROTECTED]>; Tue, 26 Oct 2004 04:18:52 -0700 (PDT)
Received: from bucky.theory.org ([64.147.163.245])
by lovely with esmtp (Exim 3.36 #1 (Debian))
id 1CMPFY-00067b-00
for <[EMAIL PROTECTED]>; Tue, 26 Oct 2004 04:12:25 -0700
Received: from [192.168.1.100] (dsl092-249-121.sfo4.dsl.speakeasy.net [66.92.24$
(using TLSv1 with cipher DHE-RSA-AE56-SHA (256/256 bits))
(No client certificate requested)
by bucky.theory.org (Postfix) with ESMTP id 8DB7E4260
for <[EMAIL PROTECTED]>; Tue, 26 Oct 2004 04:18:47 -0700 (PDT)
Message-ID: <[EMAIL PROTECTED]>
Date: Tue, 26 Oct 2004 04:18:45 -0700
From: [EMAIL PROTECTED]
The only thing I can find odd is that the mail is coming from 'lovely' instead of 'lovely.addisoncourt.org' - and for that reason newmoongraphics is refusing delivery. Are there suggestions how to correct this? I've been over the /etc/exim.conf file and it all seems right to me, however here is the main config:
###################################################################### # MAIN CONFIGURATION SETTINGS # ######################################################################
# Specify the domain you want to be added to all unqualified addresses
# here. Unqualified addresses are accepted only from local callers by
# default. See the receiver_unqualified_{hosts,nets} options if you want
# to permit unqualified addresses from remote sources. If this option is
# not set, the primary_hostname value is used for qualification.qualify_domain = addisoncourt.org
# If you want unqualified recipient addresses to be qualified with a different # domain to unqualified sender addresses, specify the recipient domain here. # If this option is not set, the qualify_domain value is used.
# qualify_recipient =
# Specify your local domains as a colon-separated list here. If this option # is not set (i.e. not mentioned in the configuration file), the # qualify_recipient value is used as the only local domain. If you do not want # to do any local deliveries, uncomment the following line, but do not supply # any data for it. This sets local_domains to an empty string, which is not # the same as not mentioning it at all. An empty string specifies that there # are no local domains; not setting it at all causes the default value (the # setting of qualify_recipient) to be used.
local_domains = localhost:addisoncourt.org
# Allow mail addressed to our hostname, or to our IP address.
local_domains_include_host = true local_domains_include_host_literals = true
# Domains we relay for; that is domains that aren't considered local but we # accept mail for them.
#relay_domains =
# If this is uncommented, we accept and relay mail for all domains we are # in the DNS as an MX for.
#relay_domains_include_local_mx = true
# No local deliveries will ever be run under the uids of these users (a colon-
# separated list). An attempt to do so gets changed so that it runs under the
# uid of "nobody" instead. This is a paranoic safety catch. Note the default
# setting means you cannot deliver mail addressed to root as if it were a
# normal user. This isn't usually a problem, as most sites have an alias for
# root that redirects such mail to a human administrator.
never_users = root
# The setting below causes Exim to do a reverse DNS lookup on all incoming # IP calls, in order to get the true host name. If you feel this is too # expensive, you can specify the networks for which a lookup is done, or # remove the setting entirely.
host_lookup = *
# The setting below would, if uncommented, cause Exim to check the syntax of
# all the headers that are supposed to contain email addresses (To:, From:,
# etc). This reduces the level of bounced bounces considerably.
# headers_check_syntax
# Exim contains support for the Realtime Blocking List (RBL), and the many
# similar services that are being maintained as part of the DNS. See
# http://www.mail-abuse.org/ for background. The line below, if uncommented,
# will reject mail from hosts in the RBL, and add warning headers to mail
# from hosts in a list of dynamic-IP dialups. Note that MAPS may charge
# for this service.
#rbl_domains = rbl.mail-abuse.org/reject : dialups.mail-abuse.org/warn
# http://www.rfc-ignorant.org is another interesting site with a number of # services you can use with the rbl_domains option
# The setting below allows your host to be used as a mail relay only by # localhost: it locks out the use of your host as a mail relay by any # other host. See the section of the manual entitled "Control of relaying" # for more info.
host_accept_relay = 127.0.0.1 : ::::1 : 64.36.7.27
# This setting allows anyone who has authenticated to use your host as a # mail relay. To use this you will need to set up some authenticators at # the end of the file
#host_auth_accept_relay = *
# If you want Exim to support the "percent hack" for all your local domains,
# uncomment the following line. This is the feature by which mail addressed
# to [EMAIL PROTECTED] (where z is one of your local domains) is locally rerouted to
# [EMAIL PROTECTED] and sent on. Otherwise x%y is treated as an ordinary local part
# percent_hack_domains=*
# If this option is set, then any process that is running as one of the # listed users may pass a message to Exim and specify the sender's # address using the "-f" command line option, without Exim's adding a # "Sender" header.
trusted_users = mail:www-data
# If this option is true, the SMTP command VRFY is supported on incoming # SMTP connections; otherwise it is not.
smtp_verify = true
# Some operating systems use the "gecos" field in the system password file
# to hold other information in addition to users' real names. Exim looks up
# this field when it is creating "sender" and "from" headers. If these options
# are set, exim uses "gecos_pattern" to parse the gecos field, and then
# expands "gecos_name" as the user's name. $1 etc refer to sub-fields matched
# by the pattern.
gecos_pattern = ^([^,:]*)
gecos_name = $1
# This sets the maximum number of messages that will be accepted in one
# connection and immediately delivered. If one connection sends more
# messages than this, any further ones are accepted and queued but not
# delivered. The default is 10, which is probably enough for most purposes,
# but is too low on dialup SMTP systems, which often have many more mails
# queued for them when they connect.
smtp_accept_queue_per_connection = 100
# Send a mail to the postmaster when a message is frozen. There are many # reasons this could happen; one is if exim cannot deliver a mail with no # return address (normally a bounce) another that may be common on dialup # systems is if a DNS lookup of a smarthost fails. Read the documentation # for more details: you might like to look at the auto_thaw option
freeze_tell_mailmaster = true
# This string defines the contents of the \`Received' message header that
# is added to each message, except for the timestamp, which is automatically
# added on at the end, preceded by a semicolon. The string is expanded each
# time it is used.
received_header_text = "Received: \
${if def:sender_rcvhost {from ${sender_rcvhost}\n\t}\
{${if def:sender_ident {from ${sender_ident} }}\
${if def:sender_helo_name {(helo=${sender_helo_name})\n\t}}}}\
by ${primary_hostname} \
${if def:received_protocol {with ${received_protocol}}} \
(Exim ${version_number} #${compile_number} (Debian))\n\t\
id ${message_id}\
${if def:received_for {\n\tfor <$received_for>}}"# Attempt to verify recipient address before receiving mail, so that mails # to invalid addresses are rejected rather than accepted and then bounced. # Apparently some spammers are abusing servers that accept and then bounce # to send bounces containing their spam to people.
receiver_try_verify = true
# This would make exim advertise the 8BIT-MIME option. According to # RFC1652, this means it will take an 8bit message, and ensure it gets # delivered correctly. exim won't do this: it is entirely 8bit clean # but won't do any conversion if the next hop isn't. Therefore, if you # set this option you are asking exim to lie and not be RFC # compliant. But some people want it.
#accept_8bitmime = true
# This will cause it to accept mail only from the local interface
#local_interfaces = 127.0.0.1
# If this next line is uncommented, any user can see the mail queue # by using the mailq command or exim -bp. #queue_list_requires_admin = false
# The errors_copy line will cause the specified address to receive a copy # of bounces generated on the system.
#errors_copy = [EMAIL PROTECTED] [EMAIL PROTECTED]
# end
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
