warning: hostname foo.bar.us does not resolve to address IP-Adresse : Temporary failure in name resolution

t.berthel at gmx.net t.berthel at gmx.net
Mo Apr 24 19:31:34 CEST 2017 

Hallo,

ich habe ein Problem mit SPAMs die leider zugestellt werden obwohl hier ein Fehler besteht. 
Ich habe keine Ahnung wo ich noch suchen soll. Im Moment habe ich mir geholfen indem ich die IP sperre, jedoch geht der Bot immer eine IP weiter nach oben. Den Hoster habe ich auch schon darüber informiert, jedoch ist es wohl bei mir auch noch ein Failure by design den ich finden sollte um diese Art von SPAMS abhalten zu können. 

Was könnte hier der Grund sein, dass dieser Müll es schafft durchzukommen?

Meine aktuelle config ist hier zu finden: https://listi.jpberlin.de/pipermail/postfixbuch-users/2017-January/064908.html

Hier mal ein Logauszug bevor ich es blockiert habe:

Apr 24 04:43:19 MAIL-GATEWAY postfix/smtpd[9824]: warning: hostname jake.metamug.us does not resolve to address 66.23.212.136: Temporary failure in name resolution
Apr 24 17:07:58 MAIL-GATEWAY postfix/smtpd[4988]: warning: hostname shone.touchrs.us does not resolve to address 66.23.212.138: Temporary failure in name resolution
Apr 24 17:08:46 MAIL-GATEWAY postfix/smtpd[4988]: warning: hostname shone.touchrs.us does not resolve to address 66.23.212.138: Temporary failure in name resolution
Apr 24 17:10:36 MAIL-GATEWAY postfix/smtpd[5292]: warning: hostname shone.touchrs.us does not resolve to address 66.23.212.138: Temporary failure in name resolution
Apr 24 17:51:56 MAIL-GATEWAY postfix/smtpd[6618]: warning: hostname grief.naminen.us does not resolve to address 66.23.212.139: Temporary failure in name resolution
Apr 24 17:52:26 MAIL-GATEWAY postfix/smtpd[6618]: warning: hostname grief.naminen.us does not resolve to address 66.23.212.139: Temporary failure in name resolution

Hier der incoming:

Apr 24 17:08:46 MAIL-GATEWAY postfix/smtpd[4988]: warning: hostname shone.touchrs.us does not resolve to address 66.23.212.138: Temporary failure in name resolution
Apr 24 17:08:46 MAIL-GATEWAY postfix/smtpd[4988]: connect from unknown[66.23.212.138]
Apr 24 17:08:49 MAIL-GATEWAY postfix/smtpd[4988]: 164741CA010: client=unknown[66.23.212.138]
Apr 24 17:08:50 MAIL-GATEWAY postfix/cleanup[5103]: 164741CA010: message-id=<8jFpiAWJoMy1mThcwtsVV2laD_lvBjefvYGV3BxLE0s.bgzvMX0f9hYw4MdPWeOb12NKnp_NKJ72XcC-cQg6LyI at hsome.stream>
Apr 24 17:08:52 MAIL-GATEWAY postfix/qmgr[2306]: 164741CA010: from=<ens at hsome.stream>, size=45412, nrcpt=1 (queue active)
Apr 24 17:08:52 MAIL-GATEWAY amavis[5152]: (05152-02) LMTP :10024 /var/amavis/tmp/amavis-20170424T170828-05152-jCbBZM7U: <ens at hsome.stream> -> <USER.NAME at Domain.de> SIZE=45412 BODY=8BITMIME Received: from Domain.de ([127.0.0.1]) by localhost (Domain.de [127.0.0.1]) (amavisd-new, port 10024) with LMTP for <USER.NAME at Domain.de>; Mon, 24 Apr 2017 17:08:52 +0200 (CEST)
Apr 24 17:08:52 MAIL-GATEWAY amavis[5152]: (05152-02) Checking: S4K4TcW0Pw_J [66.23.212.138] <ens at hsome.stream> -> <USER.NAME at Domain.de>
Apr 24 17:08:52 MAIL-GATEWAY postfix/smtpd[4988]: disconnect from unknown[66.23.212.138] ehlo=1 mail=1 rcpt=1 data=1 quit=1 commands=5
Apr 24 17:08:53 MAIL-GATEWAY amavis[5152]: (05152-02) spam-tag, <ens at hsome.stream> -> <USER.NAME at Domain.de>, No, score=0.156 required=3 tests=[BAYES_00=-1.9, HTML_FONT_LOW_CONTRAST=0.001, HTML_MESSAGE=0.001, RDNS_NONE=0.793, T_REMOTE_IMAGE=0.01, URIBL_ABUSE_SURBL=1.25, URIBL_BLOCKED=0.001] autolearn=no autolearn_force=no
Apr 24 17:08:53 MAIL-GATEWAY postfix/smtpd[5106]: EA3181CA051: client=localhost[127.0.0.1], orig_queue_id=164741CA010, orig_client=unknown[66.23.212.138]
Apr 24 17:08:53 MAIL-GATEWAY postfix/cleanup[5103]: EA3181CA051: message-id=<8jFpiAWJoMy1mThcwtsVV2laD_lvBjefvYGV3BxLE0s.bgzvMX0f9hYw4MdPWeOb12NKnp_NKJ72XcC-cQg6LyI at hsome.stream>
Apr 24 17:08:53 MAIL-GATEWAY postfix/smtpd[5106]: disconnect from localhost[127.0.0.1] ehlo=1 xforward=2 mail=2 rcpt=2 data=2 noop=1 quit=1 commands=11
Apr 24 17:08:53 MAIL-GATEWAY postfix/qmgr[2306]: EA3181CA051: from=<ens at hsome.stream>, size=46153, nrcpt=1 (queue active)
Apr 24 17:08:53 MAIL-GATEWAY amavis[5152]: (05152-02) S4K4TcW0Pw_J FWD from <ens at hsome.stream> -> <USER.NAME at Domain.de>, BODY=7BIT 250 2.0.0 from MTA(smtp:[127.0.0.1]:10025): 250 2.0.0 Ok: queued as EA3181CA051
Apr 24 17:08:54 MAIL-GATEWAY amavis[5152]: (05152-02) Passed CLEAN {RelayedInbound}, [66.23.212.138]:8920 [66.23.212.138] <ens at hsome.stream> -> <USER.NAME at Domain.de>, Queue-ID: 164741CA010, Message-ID: <8jFpiAWJoMy1mThcwtsVV2laD_lvBjefvYGV3BxLE0s.bgzvMX0f9hYw4MdPWeOb12NKnp_NKJ72XcC-cQg6LyI at hsome.stream>, mail_id: S4K4TcW0Pw_J, Hits: 0.156, size: 45302, queued_as: EA3181CA051, 1471 ms
Apr 24 17:08:54 MAIL-GATEWAY amavis[5152]: (05152-02) TIMING-SA [total 1309 ms, cpu 753 ms] - parse: 3.1 (0.2%), extract_message_metadata: 51 (3.9%), get_uri_detail_list: 7 (0.6%), tests_pri_-1000: 7 (0.5%), tests_pri_-950: 0.64 (0.0%), tests_pri_-900: 0.67 (0.1%), tests_pri_-400: 58 (4.5%), check_bayes: 58 (4.4%), b_tokenize: 20 (1.6%), b_tok_get_all: 30 (2.3%), b_comp_prob: 4.1 (0.3%), 
b_tok_touch_all: 0.35 (0.0%), b_finish: 0.55 (0.0%), tests_pri_0: 1175 (89.7%), check_dkim_signature: 1.23 (0.1%), check_dkim_adsp: 70 (5.3%), check_spf: 0.25 (0.0%), check_razor2: 648 (49.5%), check_pyzor: 0.14 (0.0%), tests_pri_500: 4.0 (0.3%), get_report: 0.58 (0.0%)
Apr 24 17:08:54 MAIL-GATEWAY postfix/lmtp[5104]: 164741CA010: to=<USER.NAME at Domain.de>, relay=127.0.0.1[127.0.0.1]:10024, delay=6, delays=4.5/0/0/1.5, dsn=2.0.0, status=sent (250 2.0.0 from MTA(smtp:[127.0.0.1]:10025): 250 2.0.0 Ok: queued as EA3181CA051)
Apr 24 17:08:54 MAIL-GATEWAY amavis[5152]: (05152-02) size: 45302, TIMING [total 1475 ms, cpu 780 ms, AM-cpu 27 ms, SA-cpu 753 ms] - SMTP greeting: 1.6 (0%)0, SMTP LHLO: 0.6 (0%)0, SMTP pre-MAIL: 0.6 (0%)0, SMTP pre-DATA-flush: 2.1 (0%)0, SMTP DATA: 37 (2%)3, check_init: 0.4 (0%)3, digest_hdr: 0.3 (0%)3, digest_body: 0.4 (0%)3, collect_info: 1.4 (0%)3, check_header: 1.1 (0%)3, AV-scan-1: 58 (4%)7, 
spam-wb-list: 0.5 (0%)7, SA msg read: 0.4 (0%)7, SA parse: 3.4 (0%)7, SA check: 1304 (88%)96, decide_mail_destiny: 4.8 (0%)96, notif-quar: 0.4 (0%)96, fwd-connect: 3.0 (0%)96, fwd-xforward: 0.4 (0%)96, fwd-mail-pip: 1.2 (0%)96, fwd-rcpt-pip: 0.2 (0%)96, fwd-data-chkpnt: 0.1 (0%)96, write-header: 0.3 (0%)96, fwd-data-contents: 1.0 (0%)97, fwd-end-chkpnt: 41 (3%)99, prepare-dsn: 0.6 (0%)99, report: 1.2 (0%)99,
main_log_entry: 4.8 (0%)100, update_snmp: 2.0 (0%)100, SMTP pre-response: 0.3 (0%)100, SMTP response: 0.2 (0%)100, unlink-1-files: 0.2 (0%)100, rundown: 0.6 (0%)100
Apr 24 17:08:54 MAIL-GATEWAY amavis[5152]: (05152-02) size: 45302, RUSAGE minflt=144+0, majflt=0+0, nswap=0+0, inblock=0+0, oublock=264+0, msgsnd=0+0, msgrcv=0+0, nsignals=0+0, nvcsw=21+0, nivcsw=3+0, maxrss=88176+0, ixrss=0+0, idrss=0+0, isrss=0+0, utime=0.773+0.000, stime=0.007+0.000
Apr 24 17:08:54 MAIL-GATEWAY postfix/qmgr[2306]: 164741CA010: removed
Apr 24 17:08:54 MAIL-GATEWAY postfix/smtp[5107]: EA3181CA051: to=<USER.NAME at Domain.de>, relay=MAIL-SERVER-IP[MAIL-SERVER-IP]:25, delay=0.11, delays=0.04/0/0/0.06, dsn=2.6.0, status=sent (250 2.6.0  <8jFpiAWJoMy1mThcwtsVV2laD_lvBjefvYGV3BxLE0s.bgzvMX0f9hYw4MdPWeOb12NKnp_NKJ72XcC-cQg6LyI at hsome.stream> Queued mail for delivery)
Apr 24 17:08:54 MAIL-GATEWAY postfix/qmgr[2306]: EA3181CA051: removed

Um ein paar Tipps wäre ich dennoch sehr dankbar! 

VG

Mehr Informationen über die Mailingliste Postfixbuch-users