accepting email for non-existing mailboxes ??

classic Classic list List threaded Threaded
8 messages Options
Reply | Threaded
Open this post in threaded view
|

accepting email for non-existing mailboxes ??

Ross Tsolakidis
Hi all,

I've run into a weird problem which I can't seem to get fixed.

System is:
Debian ETCH
Postfix (debian package w/VDA patch)
Amavis
MYSQL

Basically, I have 4 domains on there.
3 of them behave correctly, when it comes to rejecting email to unknown
users.
See here:
rosst@jeebs:~$ telnet mail.fearmail.com.au 25
Trying 103.168.34.60...
Connected to mail.fearmail.com.au.
Escape character is '^]'.
220 mail.fearmail.com.au ESMTP Postfix
helo dude
250 mail.fearmail.com.au
mail from:[hidden email]
250 2.1.0 Ok
rcpt to:[hidden email]
550 5.1.1 <[hidden email]>: Recipient address
rejected: undeliverable address: unknown user:
"[hidden email]"
 
However, one domain does not reject immediately.
rosst@jeebs:~$ telnet mail.fearmail.com.au 25
Trying 103.168.34.60...
Connected to mail.fearmail.com.au.
Escape character is '^]'.
220 mail.fearmail.com.au ESMTP Postfix
helo dude
250 mail.fearmail.com.au
mail from:[hidden email]
250 2.1.0 Ok
rcpt to:[hidden email]
250 2.1.5 Ok
data
354 End data with <CR><LF>.<CR><LF>
why are you accepting this !!
.
250 2.0.0 Ok: queued as D6A0B2A427B


Now here's the kicker, I get a bounceback;

This is the mail system at host mail.fearmail.com.au.

I'm sorry to have to inform you that your message could not be delivered
to one or more recipients. It's attached below.

For further assistance, please send mail to postmaster.

If you do so, please include this problem report. You can delete your
own text from the attached returned message.

                   The mail system

<[hidden email]>: maildir delivery failed: Sorry, the
user's
    mailbox has gone over quota, please try again later.


OVER QUOTA ??  The user doesn't even exist !!  


Anyway, here's my config:

Main.cf
inet_interfaces = all
myhostname = mail.fearmail.com.au
mydestination = localhost
mynetworks = 127.0.0.0/8, 204.0.155.0/24, 204.87.8.0/21,
103.168.32.0/19, 103.169.16.0/21, 122.129.128.0/19, 123.100.34.0/24,
202.170.192.0/20, 103.31.206.0/23, 123.67.0.0/19
smtpd_sasl_auth_enable = yes
broken_sasl_auth_clients = yes
smtpd_recipient_restrictions = permit_mynetworks,
permit_sasl_authenticated, reject_unauth_destination,
reject_unverified_recipient
unverified_recipient_reject_code = 550
smtpd_use_tls = yes
smtpd_tls_cert_file = /etc/postfix/smtpd.cert
smtpd_tls_key_file = /etc/postfix/smtpd.key
content_filter = amavis:[127.0.0.1]:10024
unknown_local_recipient_reject_code = 550
receive_override_options = no_address_mappings
default_mailbox_size = 52428800
mailbox_size_limit = 52428800
message_size_limit = 10240000
local_recipient_maps = $virtual_mailbox_maps
virtual_alias_domains =
virtual_alias_maps = mysql:/etc/postfix/mysql-virtual_forwardings.cf
mysql:/etc/postfix/mysql-virtual_email2email.cf
virtual_mailbox_domains = mysql:/etc/postfix/mysql-virtual_domains.cf
virtual_mailbox_maps = mysql:/etc/postfix/mysql-virtual_mailboxes.cf
virtual_mailbox_base = /home/vmail
virtual_uid_maps = static:5000
virtual_gid_maps = static:5000
virtual_mailbox_limit = 52428800
virtual_mailbox_limit_inbox = yes
virtual_mailbox_limit_override = yes
virtual_mailbox_limit_maps = static:52428800
virtual_create_maildirsize = yes
virtual_mailbox_extended = yes
virtual_maildir_limit_message = Sorry, the user's mailbox has gone over
quota, please try again later.
virtual_transport = virtual

Master.cf
#
# Postfix master process configuration file.  For details on the format
# of the file, see the master(5) manual page (command: "man 5 master").
#
#
========================================================================
==
# service type  private unpriv  chroot  wakeup  maxproc command + args
#               (yes)   (yes)   (yes)   (never) (100)
#
========================================================================
==
smtp      inet  n       -       -       -       -       smtpd
#submission inet n       -       -       -       -       smtpd
#  -o smtpd_enforce_tls=yes
#  -o smtpd_sasl_auth_enable=yes
#  -o smtpd_client_restrictions=permit_sasl_authenticated,reject
#smtps     inet  n       -       -       -       -       smtpd
#  -o smtpd_tls_wrappermode=yes
#  -o smtpd_sasl_auth_enable=yes
#  -o smtpd_client_restrictions=permit_sasl_authenticated,reject
#628      inet  n       -       -       -       -       qmqpd
pickup    fifo  n       -       -       60      1       pickup
cleanup   unix  n       -       -       -       0       cleanup
qmgr      fifo  n       -       n       300     1       qmgr
#qmgr     fifo  n       -       -       300     1       oqmgr
tlsmgr    unix  -       -       -       1000?   1       tlsmgr
rewrite   unix  -       -       -       -       -       trivial-rewrite
bounce    unix  -       -       -       -       0       bounce
defer     unix  -       -       -       -       0       bounce
trace     unix  -       -       -       -       0       bounce
verify    unix  -       -       -       -       1       verify
flush     unix  n       -       -       1000?   0       flush
proxymap  unix  -       -       n       -       -       proxymap
smtp      unix  -       -       -       -       -       smtp
# When relaying mail as backup MX, disable fallback_relay to avoid MX
loops
relay     unix  -       -       -       -       -       smtp
        -o fallback_relay=
#       -o smtp_helo_timeout=5 -o smtp_connect_timeout=5
showq     unix  n       -       -       -       -       showq
error     unix  -       -       -       -       -       error
discard   unix  -       -       -       -       -       discard
local     unix  -       n       n       -       -       local
virtual   unix  -       n       n       -       -       virtual
lmtp      unix  -       -       -       -       -       lmtp
anvil     unix  -       -       -       -       1       anvil
scache    unix  -       -       -       -       1       scache
#
# ====================================================================
# Interfaces to non-Postfix software. Be sure to examine the manual
# pages of the non-Postfix software to find out what options it wants.
#
# Many of the following services use the Postfix pipe(8) delivery
# agent.  See the pipe(8) man page for information about ${recipient}
# and other message envelope options.
# ====================================================================
#
# maildrop. See the Postfix MAILDROP_README file for details.
# Also specify in main.cf: maildrop_destination_recipient_limit=1
#
maildrop  unix  -       n       n       -       -       pipe
  flags=DRhu user=vmail argv=/usr/bin/maildrop -d ${recipient}
#
# See the Postfix UUCP_README file for configuration details.
#
uucp      unix  -       n       n       -       -       pipe
  flags=Fqhu user=uucp argv=uux -r -n -z -a$sender - $nexthop!rmail
($recipient)
#
# Other external delivery methods.
#
ifmail    unix  -       n       n       -       -       pipe
  flags=F user=ftn argv=/usr/lib/ifmail/ifmail -r $nexthop ($recipient)
bsmtp     unix  -       n       n       -       -       pipe
  flags=Fq. user=bsmtp argv=/usr/lib/bsmtp/bsmtp -t$nexthop -f$sender
$recipient
scalemail-backend unix  -       n       n       -       2       pipe
  flags=R user=scalemail argv=/usr/lib/scalemail/bin/scalemail-store
${nexthop} ${user} ${extension}
mailman   unix  -       n       n       -       -       pipe
  flags=FR user=list argv=/usr/lib/mailman/bin/postfix-to-mailman.py
  ${nexthop} ${user}


amavis unix - - - - - smtp
   -o smtp_data_done_timeout=1200
   -o smtp_send_xforward_command=yes

127.0.0.1:10025 inet n - - - - smtpd
   -o content_filter=
   -o local_recipient_maps=
   -o relay_recipient_maps=
   -o smtpd_restriction_classes=
   -o smtpd_client_restrictions=
   -o smtpd_helo_restrictions=
   -o smtpd_sender_restrictions=
   -o smtpd_recipient_restrictions=permit_mynetworks,reject
   -o mynetworks=127.0.0.0/8
   -o strict_rfc821_envelopes=yes
   -o
receive_override_options=no_unknown_recipient_checks,no_header_body_chec
ks



So in summary:
Why is it even accepting email for this domain when it should be
throwing a 550 immediately ?

Thanks :)
Any help welcome !

P.S.  Domains and Ips changed to protect the innocent ;)

--
Ross.

DISCLAIMER:
This e-mail and any files transmitted with it may be privileged and confidential, and are intended only for the use of the intended recipient. If you are not the intended recipient or responsible for delivering this e-mail to the intended recipient, any use, dissemination, forwarding, printing or copying of this e-mail and any attachments is strictly prohibited.
If you have received this e-mail in error, please REPLY TO the SENDER to advise the error AND then DELETE the e-mail from your system.
Any views expressed in this e-mail and any files transmitted with it are those of the individual sender, except where the sender specifically states them to be the views of our organisation.
Our organisation does not represent or warrant that the attached files are free from computer viruses or other defects.
6/6/2008
The user assumes all responsibility for any loss or damage resulting directly or indirectly from the use of the attached files. In any event, the liability to our organisation is limited to either the resupply of the attached files or the cost of having the attached files resupplied.

Reply | Threaded
Open this post in threaded view
|

RE: accepting email for non-existing mailboxes ??

Ross Tsolakidis
I should have used 2 different example domains sorry if that's
confusing..

In the 2 examples I am using fearmail.COM.au and fearmail.NET.au

Regards,
Ross




From: [hidden email]
[mailto:[hidden email]] On Behalf Of Ross Tsolakidis
Sent: Friday, 6 June 2008 2:23 PM
To: [hidden email]
Subject: accepting email for non-existing mailboxes ??

Hi all,

I've run into a weird problem which I can't seem to get fixed.

System is:
Debian ETCH
Postfix (debian package w/VDA patch)
Amavis
MYSQL

Basically, I have 4 domains on there.
3 of them behave correctly, when it comes to rejecting email to unknown
users.
See here:
rosst@jeebs:~$ telnet mail.fearmail.com.au 25
Trying 103.168.34.60...
Connected to mail.fearmail.com.au.
Escape character is '^]'.
220 mail.fearmail.com.au ESMTP Postfix
helo dude
250 mail.fearmail.com.au
mail from:[hidden email]
250 2.1.0 Ok
rcpt to:[hidden email]
550 5.1.1 <[hidden email]>: Recipient address
rejected: undeliverable address: unknown user:
"[hidden email]"

However, one domain does not reject immediately.
rosst@jeebs:~$ telnet mail.fearmail.com.au 25
Trying 103.168.34.60...
Connected to mail.fearmail.com.au.
Escape character is '^]'.
220 mail.fearmail.com.au ESMTP Postfix
helo dude
250 mail.fearmail.com.au
mail from:[hidden email]
250 2.1.0 Ok
rcpt to:[hidden email]
250 2.1.5 Ok
data
354 End data with <CR><LF>.<CR><LF>
why are you accepting this !!
.
250 2.0.0 Ok: queued as D6A0B2A427B


Now here's the kicker, I get a bounceback;

This is the mail system at host mail.fearmail.com.au.

I'm sorry to have to inform you that your message could not be delivered
to one or more recipients. It's attached below.

For further assistance, please send mail to postmaster.

If you do so, please include this problem report. You can delete your
own text from the attached returned message.

The mail system

<[hidden email]>: maildir delivery failed: Sorry, the
user's
mailbox has gone over quota, please try again later.


OVER QUOTA ?? The user doesn't even exist !!


Anyway, here's my config:

Main.cf
inet_interfaces = all
myhostname = mail.fearmail.com.au
mydestination = localhost
mynetworks = 127.0.0.0/8, 204.0.155.0/24, 204.87.8.0/21,
103.168.32.0/19, 103.169.16.0/21, 122.129.128.0/19, 123.100.34.0/24,
202.170.192.0/20, 103.31.206.0/23, 123.67.0.0/19
smtpd_sasl_auth_enable = yes
broken_sasl_auth_clients = yes
smtpd_recipient_restrictions = permit_mynetworks,
permit_sasl_authenticated, reject_unauth_destination,
reject_unverified_recipient
unverified_recipient_reject_code = 550
smtpd_use_tls = yes
smtpd_tls_cert_file = /etc/postfix/smtpd.cert
smtpd_tls_key_file = /etc/postfix/smtpd.key
content_filter = amavis:[127.0.0.1]:10024
unknown_local_recipient_reject_code = 550
receive_override_options = no_address_mappings
default_mailbox_size = 52428800
mailbox_size_limit = 52428800
message_size_limit = 10240000
local_recipient_maps = $virtual_mailbox_maps
virtual_alias_domains =
virtual_alias_maps = mysql:/etc/postfix/mysql-virtual_forwardings.cf
mysql:/etc/postfix/mysql-virtual_email2email.cf
virtual_mailbox_domains = mysql:/etc/postfix/mysql-virtual_domains.cf
virtual_mailbox_maps = mysql:/etc/postfix/mysql-virtual_mailboxes.cf
virtual_mailbox_base = /home/vmail
virtual_uid_maps = static:5000
virtual_gid_maps = static:5000
virtual_mailbox_limit = 52428800
virtual_mailbox_limit_inbox = yes
virtual_mailbox_limit_override = yes
virtual_mailbox_limit_maps = static:52428800
virtual_create_maildirsize = yes
virtual_mailbox_extended = yes
virtual_maildir_limit_message = Sorry, the user's mailbox has gone over
quota, please try again later.
virtual_transport = virtual

Master.cf
#
# Postfix master process configuration file. For details on the format
# of the file, see the master(5) manual page (command: "man 5 master").
#
#
========================================================================
==
# service type private unpriv chroot wakeup maxproc command + args
# (yes) (yes) (yes) (never) (100)
#
========================================================================
==
smtp inet n - - - - smtpd
#submission inet n - - - - smtpd
# -o smtpd_enforce_tls=yes
# -o smtpd_sasl_auth_enable=yes
# -o smtpd_client_restrictions=permit_sasl_authenticated,reject
#smtps inet n - - - - smtpd
# -o smtpd_tls_wrappermode=yes
# -o smtpd_sasl_auth_enable=yes
# -o smtpd_client_restrictions=permit_sasl_authenticated,reject
#628 inet n - - - - qmqpd
pickup fifo n - - 60 1 pickup
cleanup unix n - - - 0 cleanup
qmgr fifo n - n 300 1 qmgr
#qmgr fifo n - - 300 1 oqmgr
tlsmgr unix - - - 1000? 1 tlsmgr
rewrite unix - - - - - trivial-rewrite
bounce unix - - - - 0 bounce
defer unix - - - - 0 bounce
trace unix - - - - 0 bounce
verify unix - - - - 1 verify
flush unix n - - 1000? 0 flush
proxymap unix - - n - - proxymap
smtp unix - - - - - smtp
# When relaying mail as backup MX, disable fallback_relay to avoid MX
loops
relay unix - - - - - smtp
-o fallback_relay=
# -o smtp_helo_timeout=5 -o smtp_connect_timeout=5
showq unix n - - - - showq
error unix - - - - - error
discard unix - - - - - discard
local unix - n n - - local
virtual unix - n n - - virtual
lmtp unix - - - - - lmtp
anvil unix - - - - 1 anvil
scache unix - - - - 1 scache
#
# ====================================================================
# Interfaces to non-Postfix software. Be sure to examine the manual
# pages of the non-Postfix software to find out what options it wants.
#
# Many of the following services use the Postfix pipe(8) delivery
# agent. See the pipe(8) man page for information about ${recipient}
# and other message envelope options.
# ====================================================================
#
# maildrop. See the Postfix MAILDROP_README file for details.
# Also specify in main.cf: maildrop_destination_recipient_limit=1
#
maildrop unix - n n - - pipe
flags=DRhu user=vmail argv=/usr/bin/maildrop -d ${recipient}
#
# See the Postfix UUCP_README file for configuration details.
#
uucp unix - n n - - pipe
flags=Fqhu user=uucp argv=uux -r -n -z -a$sender - $nexthop!rmail
($recipient)
#
# Other external delivery methods.
#
ifmail unix - n n - - pipe
flags=F user=ftn argv=/usr/lib/ifmail/ifmail -r $nexthop ($recipient)
bsmtp unix - n n - - pipe
flags=Fq. user=bsmtp argv=/usr/lib/bsmtp/bsmtp -t$nexthop -f$sender
$recipient
scalemail-backend unix - n n - 2 pipe
flags=R user=scalemail argv=/usr/lib/scalemail/bin/scalemail-store
${nexthop} ${user} ${extension}
mailman unix - n n - - pipe
flags=FR user=list argv=/usr/lib/mailman/bin/postfix-to-mailman.py
${nexthop} ${user}


amavis unix - - - - - smtp
-o smtp_data_done_timeout=1200
-o smtp_send_xforward_command=yes

127.0.0.1:10025 inet n - - - - smtpd
-o content_filter=
-o local_recipient_maps=
-o relay_recipient_maps=
-o smtpd_restriction_classes=
-o smtpd_client_restrictions=
-o smtpd_helo_restrictions=
-o smtpd_sender_restrictions=
-o smtpd_recipient_restrictions=permit_mynetworks,reject
-o mynetworks=127.0.0.0/8
-o strict_rfc821_envelopes=yes
-o
receive_override_options=no_unknown_recipient_checks,no_header_body_chec
ks



So in summary:
Why is it even accepting email for this domain when it should be
throwing a 550 immediately ?

Thanks :)
Any help welcome !

P.S. Domains and Ips changed to protect the innocent ;)

--
Ross.


DISCLAIMER:
This e-mail and any files transmitted with it may be privileged and confidential, and are intended only for the use of the intended recipient. If you are not the intended recipient or responsible for delivering this e-mail to the intended recipient, any use, dissemination, forwarding, printing or copying of this e-mail and any attachments is strictly prohibited.
If you have received this e-mail in error, please REPLY TO the SENDER to advise the error AND then DELETE the e-mail from your system.
Any views expressed in this e-mail and any files transmitted with it are those of the individual sender, except where the sender specifically states them to be the views of our organisation.
Our organisation does not represent or warrant that the attached files are free from computer viruses or other defects.
6/6/2008
The user assumes all responsibility for any loss or damage resulting directly or indirectly from the use of the attached files. In any event, the liability to our organisation is limited to either the resupply of the attached files or the cost of having the attached files resupplied.

Reply | Threaded
Open this post in threaded view
|

Re: accepting email for non-existing mailboxes ??

Wietse Venema
In reply to this post by Ross Tsolakidis
Ross Tsolakidis:
> <[hidden email]>: maildir delivery failed: Sorry, the
> user's
>     mailbox has gone over quota, please try again later.

LOOK IN THE MAILLOG FILE.

        Wietse
Reply | Threaded
Open this post in threaded view
|

RE: accepting email for non-existing mailboxes ??

Ross Tsolakidis
Hi Wietse,

Can you be a little more specific ?
What exactly am I looking for ?
I'm sure the answer is staring at me, but I can't seem to see it.

Here are the 2 log entries for the examples I used:

fearmail01:~# cat /var/log/mail.log | grep [hidden email]
Jun  6 14:13:28 fearmail01 postfix/virtual[10332]: D5DC62A4254:
to=<[hidden email]>, relay=virtual, delay=0.12,
delays=0.12/0/0/0, dsn=2.0.0, status=deliverable (delivers to maildir)
Jun  6 14:13:41 fearmail01 amavis[10907]: (10907-08) ESMTP::10024
/var/lib/amavis/tmp/amavis-20080606T140927-10907: <[hidden email]> ->
<[hidden email]> SIZE=381 Received: from
mail.fearmail.com.au ([127.0.0.1]) by localhost (mail.fearmail.com.au
[127.0.0.1]) (amavisd-new, port 10024) with ESMTP for
<[hidden email]>; Fri,  6 Jun 2008 14:13:41 +1000 (EST)
Jun  6 14:13:41 fearmail01 amavis[10907]: (10907-08) Checking:
tSU1yBlrMpyy [58.175.124.34] <[hidden email]> ->
<[hidden email]>
Jun  6 14:13:41 fearmail01 amavis[10907]: (10907-08)
lookup_sql_field(id) (WARN: no such field in the SQL table),
"[hidden email]" result=undef
Jun  6 14:13:46 fearmail01 amavis[10907]: (10907-08) FWD via SMTP:
<[hidden email]> -> <[hidden email]>, 250 2.6.0 Ok,
id=10907-08, from MTA([127.0.0.1]:10025): 250 2.0.0 Ok: queued as
DAD982A41BB
Jun  6 14:13:47 fearmail01 amavis[10907]: (10907-08) Passed CLEAN,
[58.175.124.34] [58.175.124.34] <[hidden email]> ->
<[hidden email]>, Message-ID:
<[hidden email]>, mail_id:
tSU1yBlrMpyy, Hits: 2.412, queued_as: DAD982A41BB, 5448 ms
Jun  6 14:13:47 fearmail01 postfix/smtp[6966]: D6A0B2A427B:
to=<[hidden email]>, relay=127.0.0.1[127.0.0.1]:10024,
delay=30, delays=25/0/0/5.5, dsn=2.6.0, status=sent (250 2.6.0 Ok,
id=10907-08, from MTA([127.0.0.1]:10025): 250 2.0.0 Ok: queued as
DAD982A41BB)
Jun  6 14:13:47 fearmail01 postfix/virtual[10332]: DAD982A41BB:
to=<[hidden email]>, relay=virtual, delay=0.36,
delays=0.1/0/0/0.26, dsn=5.0.0, status=bounced (maildir delivery failed:
Sorry, the user's mailbox has gone over quota, please try again later.)
fearmail01:~#
fearmail01:~#
fearmail01:~#
fearmail01:~# cat /var/log/mail.log | grep
[hidden email]
Jun  6 14:11:38 fearmail01 postfix/virtual[10272]: 32E942A41D1:
to=<[hidden email]>, relay=virtual, delay=0.08,
delays=0.08/0/0/0, dsn=5.1.1, status=undeliverable (unknown user:
"[hidden email]")
Jun  6 14:11:41 fearmail01 postfix/smtpd[7355]: NOQUEUE: reject: RCPT
from unknown[58.175.124.34]: 550 5.1.1
<[hidden email]>: Recipient address rejected:
undeliverable address: unknown user:
"[hidden email]"; from=<[hidden email]>
to=<[hidden email]> proto=SMTP helo=<dude>
fearmail01:~#


I'm pretty sure the issue lies in these 2 lines.
The .COM says it's deliverable, even though the mailbox doesn't exist.
The .NET is how it should behave, that part I know is right :)

Jun  6 14:13:28 fearmail01 postfix/virtual[10332]: D5DC62A4254:
to=<[hidden email]>, relay=virtual, delay=0.12,
delays=0.12/0/0/0, dsn=2.0.0, status=deliverable (delivers to maildir)
Jun  6 14:11:38 fearmail01 postfix/virtual[10272]: 32E942A41D1:
to=<[hidden email]>, relay=virtual, delay=0.08,
delays=0.08/0/0/0, dsn=5.1.1, status=undeliverable (unknown user:
"[hidden email]")

Why is the .COM behaving like this, when all the other domains on this
box do not ?
Have I mis-configured something here ?

Thanks again.

Regards,
Ross.

From: Wietse Venema [mailto:[hidden email]]
Sent: Friday, 6 June 2008 9:32 PM
To: Ross Tsolakidis
Cc: [hidden email]
Subject: Re: accepting email for non-existing mailboxes ??

Ross Tsolakidis:
> <[hidden email]>: maildir delivery failed: Sorry, the
> user's
> mailbox has gone over quota, please try again later.

LOOK IN THE MAILLOG FILE.

Wietse


DISCLAIMER:
This e-mail and any files transmitted with it may be privileged and confidential, and are intended only for the use of the intended recipient. If you are not the intended recipient or responsible for delivering this e-mail to the intended recipient, any use, dissemination, forwarding, printing or copying of this e-mail and any attachments is strictly prohibited.
If you have received this e-mail in error, please REPLY TO the SENDER to advise the error AND then DELETE the e-mail from your system.
Any views expressed in this e-mail and any files transmitted with it are those of the individual sender, except where the sender specifically states them to be the views of our organisation.
Our organisation does not represent or warrant that the attached files are free from computer viruses or other defects.
6/6/2008
The user assumes all responsibility for any loss or damage resulting directly or indirectly from the use of the attached files. In any event, the liability to our organisation is limited to either the resupply of the attached files or the cost of having the attached files resupplied.

Reply | Threaded
Open this post in threaded view
|

Re: accepting email for non-existing mailboxes ??

Wietse Venema
Ross Tsolakidis:
> Hi Wietse,
>
> Can you be a little more specific ?
> What exactly am I looking for ?

You complain that Postfix reports incorrect information.  I invite
you to discover the source that incorrect information.

> Jun  6 14:13:47 fearmail01 postfix/virtual[10332]: DAD982A41BB:
> to=<[hidden email]>, relay=virtual, delay=0.36,
> delays=0.1/0/0/0.26, dsn=5.0.0, status=bounced (maildir delivery failed:
> Sorry, the user's mailbox has gone over quota, please try again later.)

Postfix does not support maildir quota. The above message comes
from code that is maintained by other people, and apparently, that
code reports bogus information. Good luck.

        Wietse
Reply | Threaded
Open this post in threaded view
|

RE: accepting email for non-existing mailboxes ??

Ross Tsolakidis

Hello again,

 

I don’t believe I ever complained, only asked a question about something which I did not understand.

I do apologise if I have offended you, that was never my intention.

 

I will ask the question of the vda patch list.

Thanks for your time.

 

Regards,

Ross

 

From: Wietse Venema [mailto:[hidden email]]
Sent: Friday, 6 June 2008 10:55 PM
To: Ross Tsolakidis
Cc: Wietse Venema; [hidden email]
Subject: Re: accepting email for non-existing mailboxes ??

 

Ross Tsolakidis:
> Hi Wietse,
>
> Can you be a little more specific ?
> What exactly am I looking for ?

You complain that Postfix reports incorrect information. I invite
you to discover the source that incorrect information.

> Jun 6 14:13:47 fearmail01 postfix/virtual[10332]: DAD982A41BB:
> to=<[hidden email], relay=virtual, delay=0.36,
> delays=0.1/0/0/0.26, dsn=5.0.0, status=bounced (maildir delivery failed:
> Sorry, the user's mailbox has gone over quota, please try again later.)

Postfix does not support maildir quota. The above message comes
from code that is maintained by other people, and apparently, that
code reports bogus information. Good luck.

Wietse

DISCLAIMER:
This e-mail and any files transmitted with it may be privileged and confidential, and are intended only for the use of the intended recipient. If you are not the intended recipient or responsible for delivering this e-mail to the intended recipient, any use, dissemination, forwarding, printing or copying of this e-mail and any attachments is strictly prohibited.
If you have received this e-mail in error, please REPLY TO the SENDER to advise the error AND then DELETE the e-mail from your system.
Any views expressed in this e-mail and any files transmitted with it are those of the individual sender, except where the sender specifically states them to be the views of our organisation.
Our organisation does not represent or warrant that the attached files are free from computer viruses or other defects.
The user assumes all responsibility for any loss or damage resulting directly or indirectly from the use of the attached files. In any event, the liability to our organisation is limited to either the resupply of the attached files or the cost of having the attached files resupplied.

Reply | Threaded
Open this post in threaded view
|

Re: accepting email for non-existing mailboxes ??

mouss-2
In reply to this post by Ross Tsolakidis
Ross Tsolakidis wrote:

> Hi all,
>
> I've run into a weird problem which I can't seem to get fixed.
>
> System is:
> Debian ETCH
> Postfix (debian package w/VDA patch)
> Amavis
> MYSQL
>
> Basically, I have 4 domains on there.
> 3 of them behave correctly, when it comes to rejecting email to unknown
> users.
> See here:
> rosst@jeebs:~$ telnet mail.fearmail.com.au 25
> Trying 103.168.34.60...
> Connected to mail.fearmail.com.au.
> Escape character is '^]'.
> 220 mail.fearmail.com.au ESMTP Postfix
> helo dude
> 250 mail.fearmail.com.au
> mail from:[hidden email]
> 250 2.1.0 Ok
> rcpt to:[hidden email]
> 550 5.1.1 <[hidden email]>: Recipient address
> rejected: undeliverable address: unknown user:
> "[hidden email]"
>  
> However, one domain does not reject immediately.
> rosst@jeebs:~$ telnet mail.fearmail.com.au 25
> Trying 103.168.34.60...
> Connected to mail.fearmail.com.au.
> Escape character is '^]'.
> 220 mail.fearmail.com.au ESMTP Postfix
> helo dude
> 250 mail.fearmail.com.au
> mail from:[hidden email]
> 250 2.1.0 Ok
> rcpt to:[hidden email]
> 250 2.1.5 Ok
> data
> 354 End data with <CR><LF>.<CR><LF>
> why are you accepting this !!
> .
> 250 2.0.0 Ok: queued as D6A0B2A427B
>
> [snip]

do not send excerpts fro main.cf. send output of 'postconf -n'.



use postmap -q to see the query results.
# postmap -q [hidden email] mysql:/etc/postfix/
# postmap -q @fearmail.com.au
mysql:/etc/postfix/mysql-virtual_forwardings.cf

repeat this with for mysql-virtual_email2email.cf and
mysql-virtual_mailboxes.cf

> virtual_alias_maps = mysql:/etc/postfix/mysql-virtual_forwardings.cf
> mysql:/etc/postfix/mysql-virtual_email2email.cf
> virtual_mailbox_domains = mysql:/etc/postfix/mysql-virtual_domains.cf
> virtual_mailbox_maps = mysql:/etc/postfix/mysql-virtual_mailboxes.cf
> virtual_mailbox_base = /home/vmail
> virtual_uid_maps = static:5000
> virtual_gid_maps = static:5000
> virtual_mailbox_limit = 52428800
> virtual_mailbox_limit_inbox = yes
> virtual_mailbox_limit_override = yes
> virtual_mailbox_limit_maps = static:52428800
> virtual_create_maildirsize = yes
> virtual_mailbox_extended = yes
> virtual_maildir_limit_message = Sorry, the user's mailbox has gone over
> quota, please try again later.
> virtual_transport = virtual
>  


Reply | Threaded
Open this post in threaded view
|

RE: [SOLVED] accepting email for non-existing mailboxes ??

Ross Tsolakidis
In reply to this post by Ross Tsolakidis

Found the issue, someone had created (typo) a mailbox called;

@fearmail.com.au

 

Postfix was accepting email then putting it in ~vmail/fearmail.com.au/new

VDA was bouncing it back once the mailbox was full.

 

 

Regards,

Ross.

 

From: [hidden email] [mailto:[hidden email]] On Behalf Of Ross Tsolakidis
Sent: Friday, 6 June 2008 2:23 PM
To: [hidden email]
Subject: accepting email for non-existing mailboxes ??

 

Hi all,

I've run into a weird problem which I can't seem to get fixed.

System is:
Debian ETCH
Postfix (debian package w/VDA patch)
Amavis
MYSQL

Basically, I have 4 domains on there.
3 of them behave correctly, when it comes to rejecting email to unknown
users.
See here:
[hidden email] telnet mail.fearmail.com.au 25
Trying 103.168.34.60...
Connected to mail.fearmail.com.au.
Escape character is '^]'.
220 mail.fearmail.com.au ESMTP Postfix
helo dude
250 mail.fearmail.com.au
mail [hidden email]
250 2.1.0 Ok
rcpt [hidden email]
550 5.1.1 <[hidden email] Recipient address
rejected: undeliverable address: unknown user:
"[hidden email]"

However, one domain does not reject immediately.
[hidden email] telnet mail.fearmail.com.au 25
Trying 103.168.34.60...
Connected to mail.fearmail.com.au.
Escape character is '^]'.
220 mail.fearmail.com.au ESMTP Postfix
helo dude
250 mail.fearmail.com.au
mail [hidden email]
250 2.1.0 Ok
rcpt [hidden email]
250 2.1.5 Ok
data
354 End data with <CR><LF>.<CR><LF>
why are you accepting this !!
.
250 2.0.0 Ok: queued as D6A0B2A427B


Now here's the kicker, I get a bounceback;

This is the mail system at host mail.fearmail.com.au.

I'm sorry to have to inform you that your message could not be delivered
to one or more recipients. It's attached below.

For further assistance, please send mail to postmaster.

If you do so, please include this problem report. You can delete your
own text from the attached returned message.

The mail system

<[hidden email] maildir delivery failed: Sorry, the
user's
mailbox has gone over quota, please try again later.


OVER QUOTA ?? The user doesn't even exist !!


Anyway, here's my config:

Main.cf
inet_interfaces = all
myhostname = mail.fearmail.com.au
mydestination = localhost
mynetworks = 127.0.0.0/8, 204.0.155.0/24, 204.87.8.0/21,
103.168.32.0/19, 103.169.16.0/21, 122.129.128.0/19, 123.100.34.0/24,
202.170.192.0/20, 103.31.206.0/23, 123.67.0.0/19
smtpd_sasl_auth_enable = yes
broken_sasl_auth_clients = yes
smtpd_recipient_restrictions = permit_mynetworks,
permit_sasl_authenticated, reject_unauth_destination,
reject_unverified_recipient
unverified_recipient_reject_code = 550
smtpd_use_tls = yes
smtpd_tls_cert_file = /etc/postfix/smtpd.cert
smtpd_tls_key_file = /etc/postfix/smtpd.key
content_filter = amavis:[127.0.0.1]:10024
unknown_local_recipient_reject_code = 550
receive_override_options = no_address_mappings
default_mailbox_size = 52428800
mailbox_size_limit = 52428800
message_size_limit = 10240000
local_recipient_maps = $virtual_mailbox_maps
virtual_alias_domains =
virtual_alias_maps = mysql:/etc/postfix/mysql-virtual_forwardings.cf
mysql:/etc/postfix/mysql-virtual_email2email.cf
virtual_mailbox_domains = mysql:/etc/postfix/mysql-virtual_domains.cf
virtual_mailbox_maps = mysql:/etc/postfix/mysql-virtual_mailboxes.cf
virtual_mailbox_base = /home/vmail
virtual_uid_maps = static:5000
virtual_gid_maps = static:5000
virtual_mailbox_limit = 52428800
virtual_mailbox_limit_inbox = yes
virtual_mailbox_limit_override = yes
virtual_mailbox_limit_maps = static:52428800
virtual_create_maildirsize = yes
virtual_mailbox_extended = yes
virtual_maildir_limit_message = Sorry, the user's mailbox has gone over
quota, please try again later.
virtual_transport = virtual

Master.cf
#
# Postfix master process configuration file. For details on the format
# of the file, see the master(5) manual page (command: "man 5 master").
#
#
========================================================================
==
# service type private unpriv chroot wakeup maxproc command + args
# (yes) (yes) (yes) (never) (100)
#
========================================================================
==
smtp inet n - - - - smtpd
#submission inet n - - - - smtpd
# -o smtpd_enforce_tls=yes
# -o smtpd_sasl_auth_enable=yes
# -o smtpd_client_restrictions=permit_sasl_authenticated,reject
#smtps inet n - - - - smtpd
# -o smtpd_tls_wrappermode=yes
# -o smtpd_sasl_auth_enable=yes
# -o smtpd_client_restrictions=permit_sasl_authenticated,reject
#628 inet n - - - - qmqpd
pickup fifo n - - 60 1 pickup
cleanup unix n - - - 0 cleanup
qmgr fifo n - n 300 1 qmgr
#qmgr fifo n - - 300 1 oqmgr
tlsmgr unix - - - 1000? 1 tlsmgr
rewrite unix - - - - - trivial-rewrite
bounce unix - - - - 0 bounce
defer unix - - - - 0 bounce
trace unix - - - - 0 bounce
verify unix - - - - 1 verify
flush unix n - - 1000? 0 flush
proxymap unix - - n - - proxymap
smtp unix - - - - - smtp
# When relaying mail as backup MX, disable fallback_relay to avoid MX
loops
relay unix - - - - - smtp
-o fallback_relay=
# -o smtp_helo_timeout=5 -o smtp_connect_timeout=5
showq unix n - - - - showq
error unix - - - - - error
discard unix - - - - - discard
local unix - n n - - local
virtual unix - n n - - virtual
lmtp unix - - - - - lmtp
anvil unix - - - - 1 anvil
scache unix - - - - 1 scache
#
# ====================================================================
# Interfaces to non-Postfix software. Be sure to examine the manual
# pages of the non-Postfix software to find out what options it wants.
#
# Many of the following services use the Postfix pipe(8) delivery
# agent. See the pipe(8) man page for information about ${recipient}
# and other message envelope options.
# ====================================================================
#
# maildrop. See the Postfix MAILDROP_README file for details.
# Also specify in main.cf: maildrop_destination_recipient_limit=1
#
maildrop unix - n n - - pipe
flags=DRhu user=vmail argv=/usr/bin/maildrop -d ${recipient}
#
# See the Postfix UUCP_README file for configuration details.
#
uucp unix - n n - - pipe
flags=Fqhu user=uucp argv=uux -r -n -z -a$sender - $nexthop!rmail
($recipient)
#
# Other external delivery methods.
#
ifmail unix - n n - - pipe
flags=F user=ftn argv=/usr/lib/ifmail/ifmail -r $nexthop ($recipient)
bsmtp unix - n n - - pipe
flags=Fq. user=bsmtp argv=/usr/lib/bsmtp/bsmtp -t$nexthop -f$sender
$recipient
scalemail-backend unix - n n - 2 pipe
flags=R user=scalemail argv=/usr/lib/scalemail/bin/scalemail-store
${nexthop} ${user} ${extension}
mailman unix - n n - - pipe
flags=FR user=list argv=/usr/lib/mailman/bin/postfix-to-mailman.py
${nexthop} ${user}


amavis unix - - - - - smtp
-o smtp_data_done_timeout=1200
-o smtp_send_xforward_command=yes

127.0.0.1:10025 inet n - - - - smtpd
-o content_filter=
-o local_recipient_maps=
-o relay_recipient_maps=
-o smtpd_restriction_classes=
-o smtpd_client_restrictions=
-o smtpd_helo_restrictions=
-o smtpd_sender_restrictions=
-o smtpd_recipient_restrictions=permit_mynetworks,reject
-o mynetworks=127.0.0.0/8
-o strict_rfc821_envelopes=yes
-o
receive_override_options=no_unknown_recipient_checks,no_header_body_chec
ks



So in summary:
Why is it even accepting email for this domain when it should be
throwing a 550 immediately ?

Thanks :)
Any help welcome !

P.S. Domains and Ips changed to protect the innocent ;)

--
Ross.


DISCLAIMER:
This e-mail and any files transmitted with it may be privileged and confidential, and are intended only for the use of the intended recipient. If you are not the intended recipient or responsible for delivering this e-mail to the intended recipient, any use, dissemination, forwarding, printing or copying of this e-mail and any attachments is strictly prohibited.
If you have received this e-mail in error, please REPLY TO the SENDER to advise the error AND then DELETE the e-mail from your system.
Any views expressed in this e-mail and any files transmitted with it are those of the individual sender, except where the sender specifically states them to be the views of our organisation.
Our organisation does not represent or warrant that the attached files are free from computer viruses or other defects.
The user assumes all responsibility for any loss or damage resulting directly or indirectly from the use of the attached files. In any event, the liability to our organisation is limited to either the resupply of the attached files or the cost of having the attached files resupplied.