Sendmail: 550 Denied due to spam list
Hi guys,
I've had to switch from postfix to sendmail on our office server to
accomodate Scalix.
One problem is I cannot send mail via smtp. Here's an example of smtp
conversation:
hansdp@theluggage:~> telnet 192.168.16.2 25
Trying 192.168.16.2...
Connected to 192.168.16.2.
Escape character is '^]'.
220 hercules.example.com ESMTP Scalix SMTP Relay 10.0.0.175; Tue, 16 May
2006 10:15:03 +0200 (SAST)
helo theluggage
250 hercules.example.com Hello [192.168.16.178], pleased to meet you
mail from:
---- just changing the subject to something more accurate ---- On Tue, 2006-05-16 at 10:27 +0200, Hans du Plooy wrote:
Hi guys,
I've had to switch from postfix to sendmail on our office server to accomodate Scalix.
One problem is I cannot send mail via smtp. Here's an example of smtp conversation:
hansdp@theluggage:~> telnet 192.168.16.2 25 Trying 192.168.16.2... Connected to 192.168.16.2. Escape character is '^]'. 220 hercules.example.com ESMTP Scalix SMTP Relay 10.0.0.175; Tue, 16 May 2006 10:15:03 +0200 (SAST) helo theluggage 250 hercules.example.com Hello [192.168.16.178], pleased to meet you mail from:
250 hansdp@example.com... Sender ok rcpt to: 550 Denied due to spam list I can send to the domains hosted on the box, but nowhere else. If try to send from localhost, it works fine, so obviously it's not allowing relay for local network. Where do I enable this? I looked through /etc/sysconfig/sendmail but there isn't an option for it. And what I see in /etc/sendmail.cf makes no sense at all :-)
Thanks Hans
Kind regards Hans du Plooy SagacIT (Pty) Ltd Technical Consultant Mobile: 084 220 2443 Switchboard: 011 326 3950 Fax: 086 680 2408 E-mail: hansdp@sagacit.com Web: www.sagacit.com P.O. Box 2989 Pinegowrie 2123
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 The Tuesday 2006-05-16 at 12:51 +0200, Hans du Plooy wrote:
I've had to switch from postfix to sendmail on our office server to accomodate Scalix. ... relay for local network. Where do I enable this? I looked through /etc/sysconfig/sendmail but there isn't an option for it. And what I see in /etc/sendmail.cf makes no sense at all :-)
Alas, you must learn to use that file... that's why I switched to postfix. If I remember correctly, there is a macro file that gets converted to the final configuration - but it is not easy to read, either. There were sample configs in the doc/package dir, if my memory serves me right. - -- Cheers, Carlos Robinson -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.0 (GNU/Linux) Comment: Made with pgp4pine 1.76 iD8DBQFEab9HtTMYHG2NR9URArb3AJ0YHCN/OG3q8bKJsV96rMTyk9NbewCggR6x mBp0w2Et6vQJiWbMl6ULYvw= =lA4U -----END PGP SIGNATURE-----
On Tue, 2006-05-16 at 14:02 +0200, Carlos E. R. wrote:
Alas, you must learn to use that file... that's why I switched to postfix.
If I remember correctly, there is a macro file that gets converted to the final configuration - but it is not easy to read, either. You have a gift for understatements.
I'm following the advice in the docs - adding the network to access file, i.e. 192.168.16 RELAY but it simply doesn't seem to have an effect - I think there's some other setting somewhere taking preference over the default RELAY value, but I have no clue where to start looking. Hans
On Tue, 2006-05-16 at 14:49 +0200, Hans du Plooy wrote:
On Tue, 2006-05-16 at 14:02 +0200, Carlos E. R. wrote:
Alas, you must learn to use that file... that's why I switched to postfix.
If I remember correctly, there is a macro file that gets converted to the final configuration - but it is not easy to read, either. You have a gift for understatements.
I'm following the advice in the docs - adding the network to access file, i.e.
192.168.16 RELAY
but it simply doesn't seem to have an effect - I think there's some other setting somewhere taking preference over the default RELAY value, but I have no clue where to start looking.
In the YaST setup screen for sendmail (MTA) did you check the box for "accept remote SMTP connections"? -- Ken Schneider UNIX since 1989, linux since 1994, SuSE since 1998
On Tue, 2006-05-16 at 09:19 -0400, Ken Schneider wrote:
In the YaST setup screen for sendmail (MTA) did you check the box for "accept remote SMTP connections"?
No, I'm scared to mess with YaST - sendmail was set up by the Scalix installer and I really don't want to take any chances with it - it's a production machine. The only reason I want to add smtp relay is because we have a debian/postfix box next to the SUSE box which has a bunch of domains and does relay, that everybody in the building uses as a relay host, but it's being moved to a hosting facility tonight and I need to provide smtp relay somehow. I'm busy setting up another postfix box for the meantime :-) Thanks Hans
On Tue, 2006-05-16 at 15:30 +0200, Hans du Plooy wrote:
On Tue, 2006-05-16 at 09:19 -0400, Ken Schneider wrote:
In the YaST setup screen for sendmail (MTA) did you check the box for "accept remote SMTP connections"?
No, I'm scared to mess with YaST - sendmail was set up by the Scalix installer and I really don't want to take any chances with it - it's a production machine. The only reason I want to add smtp relay is because we have a debian/postfix box next to the SUSE box which has a bunch of domains and does relay, that everybody in the building uses as a relay host, but it's being moved to a hosting facility tonight and I need to provide smtp relay somehow. I'm busy setting up another postfix box for the meantime :-)
OK. Then edit /etc/sysconfig/mail and check the following: # Set this to "yes" if mail from remote should be accepted # this is necessary for any mail server. # If set to "no" or empty then only mail from localhost # will be accepted. # SMTPD_LISTEN_REMOTE="yes" -- Ken Schneider UNIX since 1989, linux since 1994, SuSE since 1998
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 The Tuesday 2006-05-16 at 10:43 -0400, Ken Schneider wrote:
OK. Then edit /etc/sysconfig/mail and check the following:
# Set this to "yes" if mail from remote should be accepted # this is necessary for any mail server. # If set to "no" or empty then only mail from localhost # will be accepted. # SMTPD_LISTEN_REMOTE="yes"
By doing that, SuSEconfig (and yast) will rewrite sendmail configuration file from scratch. At least, it worked that way two or three years ago. - -- Cheers, Carlos Robinson -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.0 (GNU/Linux) Comment: Made with pgp4pine 1.76 iD8DBQFEaegktTMYHG2NR9URAo+uAJ9uAOH74aSOhLirsdI2c6iGK8BJPQCfdTG2 ayyg28eobh4fcdRg4WaOKRk= =WUh4 -----END PGP SIGNATURE-----
On Tue, 2006-05-16 at 16:56 +0200, Carlos E. R. wrote:
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1
The Tuesday 2006-05-16 at 10:43 -0400, Ken Schneider wrote:
OK. Then edit /etc/sysconfig/mail and check the following:
# Set this to "yes" if mail from remote should be accepted # this is necessary for any mail server. # If set to "no" or empty then only mail from localhost # will be accepted. # SMTPD_LISTEN_REMOTE="yes"
By doing that, SuSEconfig (and yast) will rewrite sendmail configuration file from scratch. At least, it worked that way two or three years ago.
Then the OP can save a copy of the current sendmail.cf file, make the above changes, run diff on the two files and incorporate the necessary changes into the original file and all should be well. -- Ken Schneider UNIX since 1989, linux since 1994, SuSE since 1998
On Tue, 2006-05-16 at 10:43 -0400, Ken Schneider wrote:
OK. Then edit /etc/sysconfig/mail and check the following:
# Set this to "yes" if mail from remote should be accepted # this is necessary for any mail server. # If set to "no" or empty then only mail from localhost # will be accepted. # SMTPD_LISTEN_REMOTE="yes"
Ken, thanks. But that's not the problem. It *is* listening and allowing remote connections (mail from outside comes in just fine). What it isn't doing is alowing hosts on the local network to relay to the internet unconditionally. kind of like in postfix it would have been: mynetworkplaces = 127.0.0.0/8 Nevertheless, I have figured out why it isn't working. As I said before I have Scalix installed on the box. It seems scalix changes sendmail's config so it doesn't listen on the external interface, only on localhost. Instead Scalix itself listens on the external interface. No wonder my changes don't seem to have any effect! Spot the difference: hercules:~ # telnet localhost 25 Trying 127.0.0.1... Connected to localhost. Escape character is '^]'. 220 hercules.example.com ESMTP Sendmail 8.12.11.20060308/8.12.10/SuSE Linux 0.7; Tue, 16 May 2006 20:28:35 +0200 and hercules:~ # telnet 192.168.16.2 25 Trying 192.168.16.2... Connected to 192.168.16.2. Escape character is '^]'. 220 hercules.example.com ESMTP Scalix SMTP Relay 10.0.0.175; Tue, 16 May 2006 20:28:45 +0200 (SAST) Thanks for all who responded - sorry for the time wasted.. Hans
Hans du Plooy wrote:
On Tue, 2006-05-16 at 14:02 +0200, Carlos E. R. wrote:
Alas, you must learn to use that file... that's why I switched to postfix.
If I remember correctly, there is a macro file that gets converted to the final configuration - but it is not easy to read, either. You have a gift for understatements.
I'm following the advice in the docs - adding the network to access file, i.e.
192.168.16 RELAY
but it simply doesn't seem to have an effect - I think there's some other setting somewhere taking preference over the default RELAY value, but I have no clue where to start looking.
I think the file needs to be mapped to a hash database the same way you need to do for postfix access maps, if they are not regexp maps. Sandy -- List replies only please! Please address PMs to: news-reply2 (@) japantest (.) homelinux (.) com
On Tue, 2006-05-16 at 15:20 +0200, Sandy Drobic wrote:
Hans du Plooy wrote:
On Tue, 2006-05-16 at 14:02 +0200, Carlos E. R. wrote:
Alas, you must learn to use that file... that's why I switched to postfix.
If I remember correctly, there is a macro file that gets converted to the final configuration - but it is not easy to read, either. You have a gift for understatements.
I'm following the advice in the docs - adding the network to access file, i.e.
192.168.16 RELAY
but it simply doesn't seem to have an effect - I think there's some other setting somewhere taking preference over the default RELAY value, but I have no clue where to start looking.
I think the file needs to be mapped to a hash database the same way you need to do for postfix access maps, if they are not regexp maps.
They do and the command is at the top of the access file. cd /etc/mail makemap hash access.db < access -- Ken Schneider UNIX since 1989, linux since 1994, SuSE since 1998
On Tue, 2006-05-16 at 15:20 +0200, Sandy Drobic wrote:
I think the file needs to be mapped to a hash database the same way you need to do for postfix access maps, if they are not regexp maps.
Yip, makemap hash /etc/mail/access.db < /etc/mail/access according to the sendmail docs. It is accepting smtp connections (sorry, forgot to mention this in my reply to Ken's mail), even from foreign networks, as long as the mail goes to valid recipients. The problem is it doesn't allow relay. I have the relay bits set up as it should be (at least to my understanding from the docs) but it seems some setting is overriding it. Thanks Hans
participants (4)
-
Carlos E. R.
-
Hans du Plooy
-
Ken Schneider
-
Sandy Drobic