system:annoyances
Differences
This shows you the differences between two versions of the page.
| Both sides previous revisionPrevious revisionNext revision | Previous revision | ||
| system:annoyances [2021-04-27T07:43:43+0000] – michael_paoli | system:annoyances [2021-05-06T06:05:20+0000] (current) – reverted the temporarily increase of max queue time from 4 days to 7 days michael_paoli | ||
|---|---|---|---|
| Line 574: | Line 574: | ||
| and yes, that got delivered fine. | and yes, that got delivered fine. | ||
| So ... why is SPF check not working? | So ... why is SPF check not working? | ||
| + | </ | ||
| + | < | ||
| + | # systemctl stop exim4.service | ||
| + | # ls -d / | ||
| + | / | ||
| + | # update-exim4.conf | ||
| + | # systemctl start exim4.service | ||
| + | SPF check still not working. | ||
| + | </ | ||
| + | < | ||
| + | Wordpress email ... something to circle back on later. | ||
| + | For now, for header it uses: | ||
| + | From: WordPress < | ||
| + | Looks like the only bit of that that's easy to change is the domain. | ||
| + | that's then more complications. | ||
| + | MAIL FROM:< | ||
| + | Again, not simple to change that. More to circle back on for later. | ||
| + | For now, dropped in aliases for www-data and wordpress, so at least attempts to those - and for now at least, won't bounce at those domains if | ||
| + | attempted. | ||
| + | postmaster ... "good enough" | ||
| + | </ | ||
| + | < | ||
| + | Looks like the SPF checks are now working. | ||
| + | I also found an older spdf process running and killed that off - maybe that made the difference? | ||
| + | So, yes, and seeing SPF fail/ | ||
| + | # fgrep -ai spf rejectlog | ||
| + | 2021-04-28 02:29:33 H=(sweja-se.mail.protection.outlook.com) [183.199.220.44] F=< | ||
| + | 2021-04-28 03:50:56 H=(smail1.vub.sk) [222.77.253.120] F=< | ||
| + | # dig +noall +answer +nottl ottawa.ca. TXT ottawa.ca. SPF swebolt.se. TXT swebolt.se. SPF | fgrep \" | ||
| + | ottawa.ca. | ||
| + | swebolt.se. | ||
| + | # spfquery --scope mfrom --id oefydgodea@ottawa.ca --ip 183.199.220.44; | ||
| + | fail | ||
| + | Please see http:// | ||
| + | ottawa.ca: Sender is not authorized by default to use ' | ||
| + | Received-SPF: | ||
| + | 1 | ||
| + | # spfquery --scope mfrom --id jhylunrrhc@swebolt.se --ip 222.77.253.120; | ||
| + | fail | ||
| + | Please see http:// | ||
| + | swebolt.se: Sender is not authorized by default to use ' | ||
| + | Received-SPF: | ||
| + | 1 | ||
| + | # | ||
| + | </ | ||
| + | < | ||
| + | Wrote a handy little program to summarize the exim rejectlog failure from the most recent few such log files: | ||
| + | # Rejectlog_report | ||
| + | 6313 Unrouteable address | ||
| + | 1013 relay not permitted | ||
| + | 8 SPF check failed | ||
| + | 7 SMTP protocol synchronization error (input sent without waiting for greeting) | ||
| + | 7 maximum allowed line length | ||
| + | 3 unqualified address not permitted | ||
| + | 1 SMTP protocol synchronization error (next input sent too soon: pipelining was not advertised) | ||
| + | 1 missing or malformed local part | ||
| + | 1 syntactically invalid | ||
| + | # | ||
| + | Look at least the top couple items would be good candidates for adding configurations for fail2ban. | ||
| + | Some others beyond that may also be worth doing - but not as high a priority. | ||
| + | </ | ||
| + | < | ||
| + | // reverted the temporarily increase of max queue time from 4 days to 7 days: | ||
| + | # awk ' | ||
| + | * * | ||
| + | # systemctl reload exim4.service | ||
| + | # | ||
| </ | </ | ||
system/annoyances.1619509423.txt.bz2 · Last modified: 2021-04-27T07:43:43+0000 by michael_paoli