[Postfixbuch-users] Body-Checks: Ablehnung der E-Mail
Christian Moestchen
christian at moestchen.de
Mo Sep 20 19:46:49 CEST 2010
Hallo Liste,
ich hoffe ihr könnt mir weiter helfen.
Ich habe meinen Mailserver (Postfix, Dovecot, MySQL, clamav,
spamassassin) auf einem Debian Lenny - System
neu aufgesetzt und mich bei den Restrictions an Peer's Musterlösung
gehalten.
Bis jetzt hat auch alles, wie gewünscht, funktioniert.
Nach einem heutigen Blick in die Mailqueue (mittels pfqueue) sah ich,
das sich hier (deferred) eine E-Mail
(ID 044FD6D880B) befindet.
Nun bin ich nicht der Profi aber meines Verständnis nach hat mein
Mailserver:
- eine E-Mail empfangen
(From: Mamie Hooker <bellmisyke70 at eurocontrol.int>)
- diese wurde auf Grund des Body-Check abgelehnt
(Diagnostic-Code: smtp; 550 5.7.1 Body-Check - Uhren 17)
- mein Mailserver versucht den Absender darüber zu informieren
(The message WAS NOT relayed to)
- was fehlschlägt (Connection timed out) und die E-Mail in der
Mailqueue landet (status=deferred).
Hab ich in meiner Konfiguration einen Fehler, das er die E-Mail nicht
los wird oder ist das normal?
Was kann ich dagegen tun?
Vielen Dank für eure Ratschläge.
Viele Grüße
Christian
### Auszug aus dem Log
cat /var/log/mail.log | grep 044FD6D880B
Sep 20 17:59:15 mailserver postfix/smtpd[32265]: 044FD6D880B:
client=localhost.localdomain[127.0.0.1]
Sep 20 17:59:15 mailserver postfix/cleanup[32267]: 044FD6D880B:
message-id=<DSNuXoNCETTk+Hd at mailserver.moestchen.de>
Sep 20 17:59:15 mailserver postfix/qmgr[29341]: 044FD6D880B: from=<>,
size=3095, nrcpt=1 (queue active)
Sep 20 17:59:45 mailserver postfix/smtp[32268]: 044FD6D880B:
to=<error at mailfrom.com>, relay=none, delay=30, delays=0.01/0/30/0,
dsn=4.4.1, status=deferred (connect to mailfrom.com[82.98.86.167]:25:
Connection timed out)
Sep 20 18:04:45 mailserver postfix/qmgr[29341]: 044FD6D880B: from=<>,
size=3095, nrcpt=1 (queue active)
Sep 20 18:05:15 mailserver postfix/smtp[32616]: 044FD6D880B:
to=<error at mailfrom.com>, relay=none, delay=361, delays=331/0.01/30/0,
dsn=4.4.1, status=deferred (connect to mailfrom.com[82.98.86.167]:25:
Connection timed out)
Sep 20 18:14:45 mailserver postfix/qmgr[29341]: 044FD6D880B: from=<>,
size=3095, nrcpt=1 (queue active)
Sep 20 18:15:15 mailserver postfix/smtp[32735]: 044FD6D880B:
to=<error at mailfrom.com>, relay=none, delay=960, delays=930/0.01/30/0,
dsn=4.4.1, status=deferred (connect to mailfrom.com[82.98.86.167]:25:
Connection timed out)
Sep 20 18:34:45 mailserver postfix/qmgr[29341]: 044FD6D880B: from=<>,
size=3095, nrcpt=1 (queue active)
Sep 20 18:35:15 mailserver postfix/smtp[450]: 044FD6D880B:
to=<error at mailfrom.com>, relay=none, delay=2161, delays=2130/0.01/30/0,
dsn=4.4.1, status=deferred (connect to mailfrom.com[82.98.86.167]:25:
Connection timed out)
Sep 20 19:14:45 mailserver postfix/qmgr[29341]: 044FD6D880B: from=<>,
size=3095, nrcpt=1 (queue active)
Sep 20 19:15:15 mailserver postfix/smtp[1118]: 044FD6D880B:
to=<error at mailfrom.com>, relay=none, delay=4561, delays=4531/0.01/30/0,
dsn=4.4.1, status=deferred (connect to mailfrom.com[82.98.86.167]:25:
Connection timed out)
cat /var/log/mail.log | grep 26564-13
Sep 20 17:59:15 mailserver amavis[26564]: (26564-13) Negative SMTP
response to data-dot (<webmaster at moestchen.de>): 550 5.7.1 Body-Check -
Uhren 17
Sep 20 17:59:15 mailserver amavis[26564]: (26564-13) (!)FWD via SMTP:
<error at mailfrom.com> -> <webmaster at moestchen.de>,BODY=7BIT 550 5.7.1
Failed, id=26564-13, from MTA([127.0.0.1]:10025): 550 5.7.1 Body-Check
- Uhren 17
Sep 20 17:59:15 mailserver amavis[26564]: (26564-13) Blocked
MTA-BLOCKED, [196.205.202.52] [85.132.43.55] <error at mailfrom.com> ->
<webmaster at moestchen.de>, Message-ID:
<7789442424.YK9CWU6M393703 at qdgvhsotl.plylcbjjdxed.va>, mail_id:
uXoNCETTk+Hd, Hits: 4.333, size: 1814, 1369 ms
### Inhalt der E-Mail mit der ID 044FD6D880B
*** ENVELOPE RECORDS /var/spool/postfix/deferred/0/044FD6D880B ***
message_size: 3095 651 1
0 3095
message_arrival_time: Mon Sep 20 17:59:15 2010
create_time: Mon Sep 20 17:59:15 2010
named_attribute: rewrite_context=local
named_attribute:
envelope_id=AM..20100920T155915Z at mailserver.moestchen.de
sender:
named_attribute: log_client_name=localhost.localdomain
named_attribute: log_client_address=127.0.0.1
named_attribute: log_client_port=49407
named_attribute: log_message_origin=localhost.localdomain[127.0.0.1]
named_attribute: log_helo_name=localhost
named_attribute: log_protocol_name=ESMTP
named_attribute: client_name=localhost.localdomain
named_attribute: reverse_client_name=localhost.localdomain
named_attribute: client_address=127.0.0.1
named_attribute: client_port=49407
named_attribute: helo_name=localhost
named_attribute: client_address_type=2
named_attribute: dsn_orig_rcpt=rfc822;error at mailfrom.com
original_recipient: error at mailfrom.com
recipient: error at mailfrom.com
*** MESSAGE CONTENTS /var/spool/postfix/deferred/0/044FD6D880B ***
Received: from localhost (localhost.localdomain [127.0.0.1])
by mailserver.moestchen.de (Postfix) with ESMTP id 044FD6D880B
for <error at mailfrom.com>; Mon, 20 Sep 2010 17:59:15 +0200 (CEST)
Content-Type: multipart/report; report-type=delivery-status;
boundary="----------=_1284998355-26564-0"
Content-Transfer-Encoding: 7bit
MIME-Version: 1.0
Subject: Undeliverable mail, TEMPFAIL
Message-ID: <DSNuXoNCETTk+Hd at mailserver.moestchen.de>
From: "Content-filter at mailserver.moestchen.de"
<postmaster at mailserver.moestchen.de>
To: <error at mailfrom.com>
Date: Mon, 20 Sep 2010 17:59:13 +0200 (CEST)
This is a multi-part message in MIME format...
------------=_1284998355-26564-0
Content-Type: text/plain; charset="iso-8859-1"
Content-Disposition: inline
Content-Transfer-Encoding: 7bit
The message WAS NOT relayed to:
<webmaster at moestchen.de>: [127.0.0.1] said:
550 5.7.1 Failed, id=26564-13, from MTA([127.0.0.1]:10025): 550 5.7.1
Body-Check - Uhren 17
This nondelivery report was generated by the program amavisd-new at
host
mailserver.moestchen.de. Our internal reference code for your message
is
26564-13/uXoNCETTk+Hd
Return-Path: <error at mailfrom.com>
Message-ID: <7789442424.YK9CWU6M393703 at qdgvhsotl.plylcbjjdxed.va>
Subject: Edelzubehoer von hoher Qualitaet guenstig
------------=_1284998355-26564-0
Content-Type: message/delivery-status; name="dsn_status"
Content-Disposition: inline; filename="dsn_status"
Content-Transfer-Encoding: 7bit
Content-Description: Delivery error report
Reporting-MTA: dns; mailserver.moestchen.de
Received-From-MTA: smtp; mailserver.moestchen.de ([127.0.0.1])
Arrival-Date: Mon, 20 Sep 2010 17:59:13 +0200 (CEST)
Final-Recipient: rfc822;webmaster at moestchen.de
Action: failed
Status: 5.7.1
Remote-MTA: dns; 127.0.0.1
Diagnostic-Code: smtp; 550 5.7.1 Body-Check - Uhren 17
Last-Attempt-Date: Mon, 20 Sep 2010 17:59:13 +0200 (CEST)
Final-Log-ID: 26564-13/uXoNCETTk+Hd
------------=_1284998355-26564-0
Content-Type: text/rfc822-headers; name="header"
Content-Disposition: inline; filename="header"
Content-Transfer-Encoding: 7bit
Content-Description: Message header section
Return-Path: <error at mailfrom.com>
Received: from host-196-205-202-52.static.link.com.eg (unknown
[196.205.202.52])
by mailserver.moestchen.de (Postfix) with ESMTP
for <webmaster at moestchen.de>; Mon, 20 Sep 2010 17:59:13 +0200 (CEST)
Received: from [85.132.43.55] (account bellmisyke70 at eurocontrol.int
HELO mthzkchkqz.oqujqgtkpphbg.ua)
by host-196-205-202-52.static.link.com.eg (CommuniGate Pro SMTP
5.2.3)
with ESMTPA id 395347467 for <webmaster at moestchen.de>; Mon, 20 Sep
2010 17:59:13 +0200
From: Mamie Hooker <bellmisyke70 at eurocontrol.int>
To: <<webmaster at moestchen.de>>
Subject: Edelzubehoer von hoher Qualitaet guenstig
Date: Mon, 20 Sep 2010 17:59:13 +0200
MIME-Version: 1.0
Content-Type: multipart/alternative;
boundary="----=_btuze_69_69_08"
X-Priority: 3
X-Mailer: wmyqdylig 73
Message-ID: <7789442424.YK9CWU6M393703 at qdgvhsotl.plylcbjjdxed.va>
------------=_1284998355-26564-0--
*** HEADER EXTRACTED /var/spool/postfix/deferred/0/044FD6D880B ***
*** MESSAGE FILE END /var/spool/postfix/deferred/0/044FD6D880B ***
### postconf -n
alias_database = btree:/etc/aliases
alias_maps = btree:/etc/aliases
append_dot_mydomain = no
biff = no
body_checks = pcre:/etc/postfix/config/body_checks
bounce_queue_lifetime = 3d
bounce_template_file = /etc/postfix/bounce.de-DE.cf
broken_sasl_auth_clients = yes
command_directory = /usr/sbin
config_directory = /etc/postfix
daemon_directory = /usr/lib/postfix
default_database_type = btree
default_transport = smtp
disable_vrfy_command = yes
header_checks = pcre:/etc/postfix/config/header_checks
inet_interfaces = all
inet_protocols = ipv4
local_transport = local
mailbox_size_limit = 0
maximal_queue_lifetime = 3d
mydestination = mailserver, mailserver.moestchen.de, localhost,
localhost.localdomain
myhostname = mailserver.moestchen.de
mynetworks = 127.0.0.0/8
myorigin = /etc/mailname
recipient_delimiter = +
relay_transport = smtp
relayhost =
sendmail_path = /usr/sbin/sendmail
smtp_sasl_auth_enable = no
smtp_tls_session_cache_database = btree:${data_directory}/smtp_scache
smtpd_banner = $myhostname ESMTP $mail_name (Debian/GNU)
smtpd_delay_reject = yes
smtpd_enforce_tls = no
smtpd_helo_required = yes
smtpd_recipient_restrictions =
check_recipient_access btree:/etc/postfix/config/roleaccount_allow,
check_client_access cidr:/etc/postfix/config/client_allow,
check_client_access cidr:/etc/postfix/config/client_deny,
check_helo_access btree:/etc/postfix/config/helo_allow,
check_helo_access btree:/etc/postfix/config/helo_deny,
check_sender_access btree:/etc/postfix/config/sender_allow,
check_sender_access btree:/etc/postfix/config/sender_deny,
check_recipient_access btree:/etc/postfix/config/recipient_allow,
check_recipient_access btree:/etc/postfix/config/recipient_deny,
reject_non_fqdn_sender,
reject_non_fqdn_recipient,
reject_unknown_sender_domain,
reject_unknown_recipient_domain,
permit_sasl_authenticated,
permit_mynetworks,
check_sender_mx_access cidr:/etc/postfix/config/bogus_mx,
check_sender_mx_access btree:/etc/postfix/config/bogus_wildcard_mx,
check_sender_ns_access btree:/etc/postfix/config/bogus_dns,
reject_rbl_client zen.spamhaus.org,
reject_rbl_client ix.dnsbl.manitu.net,
reject_rbl_client bl.spamcop.net,
reject_rbl_client dnsbl.njabl.org,
reject_rbl_client list.dsbl.org,
reject_rhsbl_client blackhole.securitysage.com,
check_policy_service inet:127.0.0.1:12525,
check_policy_service inet:127.0.0.1:60000,
check_policy_service unix:private/tumgreyspf
reject_unverified_recipient,
permit_mx_backup,
reject_unauth_destination,
permit
smtpd_sasl_auth_enable = yes
smtpd_sasl_local_domain =
smtpd_sasl_path = private/auth
smtpd_sasl_security_options = noanonymous
smtpd_sasl_type = dovecot
smtpd_tls_CAfile = /etc/ssl/certs/mailserver.crt
smtpd_tls_auth_only = no
smtpd_tls_cert_file = /etc/ssl/certs/dovecot.pem
smtpd_tls_key_file = /etc/ssl/private/dovecot.pem
smtpd_tls_loglevel = 1
smtpd_tls_received_header = yes
smtpd_tls_session_cache_database =
btree:${data_directory}/smtpd_scache
smtpd_tls_session_cache_timeout = 3600s
smtpd_use_tls = yes
strict_rfc821_envelopes = yes
virtual_alias_maps =
mysql:/etc/postfix/mysql-virtual-alias-maps.cf,mysql:/etc/postfix/mysql-email2email.cf
virtual_gid_maps = static:5000
virtual_mailbox_base = /var/vmail/mails/
virtual_mailbox_domains =
mysql:/etc/postfix/mysql-virtual-mailbox-domains.cf
virtual_mailbox_maps =
mysql:/etc/postfix/mysql-virtual-mailbox-maps.cf
virtual_transport = dovecot
virtual_uid_maps = static:5000
# master.cf (geänderte Zeilen)
smtp inet n - - - 200 smtpd
-o smtpd_proxy_filter=localhost:10024
-o content_filter=
localhost:10025 inet n - n - - smtpd
-o content_filter=
-o smtpd_proxy_filter=
-o smtpd_authorized_xforward_hosts=127.0.0.0/8
-o smtpd_client_restrictions=
-o smtpd_helo_restrictions=
-o smtpd_sender_restrictions=
-o smtpd_recipient_restrictions=permit_mynetworks,reject
-o mynetworks=127.0.0.0/8
-o receive_override_options=no_unknown_recipient_checks
pickup fifo n - - 60 1 pickup
-o content_filter=smtp:[localhost]:10024
dovecot unix - n n - - pipe
flags=DRhu user=vmail:vmail argv=/usr/lib/dovecot/deliver -d
${recipient}
tumgreyspf unix - n n - - spawn
user=tumgreyspf argv=/usr/bin/tumgreyspf
Mehr Informationen über die Mailingliste Postfixbuch-users