DNSBL 列于 zen.spamhaus.org - 无法正常发送邮件?我对响应的解释正确吗?

发布于 2024-10-09 15:07:10 字数 2219 浏览 4 评论 0原文

我的邮件服务器有问题,有些东西我有点不明白!

我可以连接、验证、指定发件人地址 - 但在指定收件人时,我收到错误 550,如下所示:

RCPT TO:[email protected]
550-DNSBL listed at zen.spamhaus.org
550 http://www.spamhaus.org/query/bl?ip=62.178.15.161

现在奇怪的是 62.178.15.161 是我的本地客户端地址。不是服务器的IP地址。

另外,错误代码 550 似乎是这样定义的:

550 Requested action not taken: mailbox unavailable

对我来说,这完全没有意义。为什么此垃圾邮件消息中出现此错误代码? 为什么是本地IP地址而不是服务器?

有 exim 正在运行,并且 /var/log 中的日志 mail.err mail.info mail.log mail.warn 中没有出现任何内容

我在这里写这个是因为我想了解协议和错误以及它是如何发生的准确地解释,这样我就可以开始调试服务器并修复它。

当然,如果有人知道这是一个常见问题并且知道如何解决它,我将非常感激!

我在黑名单上查找了服务器和客户端的 IP 地址。客户端 IP 地址列在一些(如预期)上,但服务器完全干净。

这是我重现错误时的完整 telnet 日志。像 Evolution 和 Thunderbird 这样的邮件客户端给了我同样的 spamhaus 错误消息。

joe@joe-desktop:~$ telnet mail.hunsynth.org 25
Trying 193.164.132.42...
Connected to mail.hunsynth.org.
Escape character is '^]'.
220 hunsynth.org ESMTP Exim 4.69 Sat, 01 Jan 2011 17:52:45 +0100
HELP
214-Commands supported:
214 AUTH STARTTLS HELO EHLO MAIL RCPT DATA NOOP QUIT RSET HELP
EHLO AUTH
250-hunsynth.org Hello chello062178015161.6.11.univie.teleweb.at [62.178.15.161]
250-SIZE 52428800
250-PIPELINING
250-AUTH PLAIN LOGIN CRAM-MD5
250-STARTTLS
250 HELP
AUTH LOGIN
334 VXNlcm5hbWU6
dGVzdEBodW5zeW50aC5vcmc=
334 UGFzc3dvcmQ6
*******
235 Authentication succeeded
MAIL FROM:[email protected]
250 OK
RCPT TO:[email protected]
550-DNSBL listed at zen.spamhaus.org
550 http://www.spamhaus.org/query/bl?ip=62.178.15.161
quit
221 hunsynth.org closing connection
Connection closed by foreign host.
joe@joe-desktop:~$ 

更新:

我在其他服务器上尝试了同样的操作,并且可以成功发送电子邮件。

所以看起来服务器确实检查了建立连接的 IP 是否在某个黑名单中。

从理论上讲,这是一件好事 - 但是 - 服务器上的身份验证应该防止这种情况发生?或者不应该这样?

好吧,我只是认为如果我无法从我的动态 ISP 连接通过我的 smtp 服务器发送电子邮件,因为列出了动态,那将是荒谬的,尽管我有一个可以登录的干净服务器?

I have problem with a mailserver and there is something I kind of not understand!

I can connect, authenticate, specify the sender address - but when specifying the reciever i get a error 550 which looks like so:

RCPT TO:[email protected]
550-DNSBL listed at zen.spamhaus.org
550 http://www.spamhaus.org/query/bl?ip=62.178.15.161

Now the strange thing is that 62.178.15.161 is my local client address. Not the servers ip address.

Also the error code 550 seems to be defined as so:

550 Requested action not taken: mailbox unavailable

To me that makes totally no sense. Why this error code with this spamhaus message?
Why the local ip adress and not the servers?

There is exim running and there is nothing turning up in the logs mail.err mail.info mail.log mail.warn in /var/log

I write this here on SO because I want to understand the protocol and the error and how it is exactly to interpret so I can start debugging the server and fixin it.

Of course if someone knows that it is a common problem and know show to fix it, I greatly appriciate that!

I looked up both the servers and the clients ip adress on blacklists. The clients ip adress is listed on some (as expected), but the server is totally clean.

Here is the complete telnet log when I reproduced the error. Mail clients like Evolution and Thunderbird give me the same spamhaus error message.

joe@joe-desktop:~$ telnet mail.hunsynth.org 25
Trying 193.164.132.42...
Connected to mail.hunsynth.org.
Escape character is '^]'.
220 hunsynth.org ESMTP Exim 4.69 Sat, 01 Jan 2011 17:52:45 +0100
HELP
214-Commands supported:
214 AUTH STARTTLS HELO EHLO MAIL RCPT DATA NOOP QUIT RSET HELP
EHLO AUTH
250-hunsynth.org Hello chello062178015161.6.11.univie.teleweb.at [62.178.15.161]
250-SIZE 52428800
250-PIPELINING
250-AUTH PLAIN LOGIN CRAM-MD5
250-STARTTLS
250 HELP
AUTH LOGIN
334 VXNlcm5hbWU6
dGVzdEBodW5zeW50aC5vcmc=
334 UGFzc3dvcmQ6
*******
235 Authentication succeeded
MAIL FROM:[email protected]
250 OK
RCPT TO:[email protected]
550-DNSBL listed at zen.spamhaus.org
550 http://www.spamhaus.org/query/bl?ip=62.178.15.161
quit
221 hunsynth.org closing connection
Connection closed by foreign host.
joe@joe-desktop:~$ 

Update:

I tried the same thing from my other server and could successfully send an email.

So it really looks like the server does check the IP wich establiches the connection is in some blacklist.

This is theoretically a good thing - but - the authentication on the server should prevent that? Or shouldn't it?

Well I just think it would be absurd if I couldn't send email over my smtp server from my dynamic ISP connection because the dynamic is listed, altough i have a clean server with login?

如果你对这篇内容有疑问,欢迎到本站社区发帖提问 参与讨论,获取更多帮助,或者扫码二维码加入 Web 技术交流群。

扫码二维码加入Web技术交流群

发布评论

需要 登录 才能够评论, 你可以免费 注册 一个本站的账号。

评论(1

自演自醉 2024-10-16 15:07:10

好吧,我想我已经明白了。

我必须添加规则:

accept
         authenticated = *

默认情况下,到 /etc/exim4/vexim-acl-check-rcpt.conf 的顶部,

它看起来确实像服务器检查连接客户端的阻止列表。每个动态 IP 范围都在那里。
因此,顶部的这条规则保证了经过身份验证的客户端被接受,无论他们来自哪里。

Okay, it think I kind of figured it out.

i had to add the rule:

accept
         authenticated = *

to to the top of /etc/exim4/vexim-acl-check-rcpt.conf

by default it really looks like the server checks the connecting client for blocklists. and every dynamic ip range is on there.
so this rule at the top guarantees that authenticated clients are accepted, no matter where they come from.

~没有更多了~
我们使用 Cookies 和其他技术来定制您的体验包括您的登录状态等。通过阅读我们的 隐私政策 了解更多相关信息。 单击 接受 或继续使用网站,即表示您同意使用 Cookies 和您的相关数据。
原文