Torry Crass wrote:
1) Greylisting. Is there any way to easily see the contents of the greylist and/or check what's getting rejected? I'm a little concerned that valid gmail and hotmail messages might be going in and not coming out. I don't have proof of this yet, but I don't have proof that they're making it through alright either and wanted to see if I could monitor it.
Exim4U's greylisting is pretty benign in that any mail that is greylisted is automatically accepted on retries after 5 minutes from the time of the initial greylisting. This works well since all legitimate mail servers will retry after a temporary rejection within a few minutes of the rejection and will continue to retry for up to four days thereafter. Also, to be greylisted in the first place, the email must have suspicious qualities such as missing headers and/or a spam score greater than zero. Once accepted, the sender is added to the known resender list in the sqlite database and will be automatically accepted without greylisting thereafter. Most all legitimate mail is accepted without any greylisting delay. I have found the greylisting to be a huge benefit in reducing spam and I am unaware of anybody having problems with it blocking legitimate mail after the 5 minute interval following the initial delivery attempt. Here are some things that you can do to follow the greylisting. First, the shell script, eximstats.sh, which is included the Exim4U distributions /xtrasw/eximstats directory gives an excellent summary of mail rejections such as the following. Notice that in this report, 46 emails were greylisted. User Specified Patterns --------------------------------- Total Ratelimited 45258 HELO Errors 2967 Local Addr Content 0 Not Local or Relay 409 Sent Domain Failed 17 Dictionary Attack 2270 Rcpt Callout 58314 Rcpt Callout Cache 0 DNSBL 456 SPF - Sender 4 File Extension 0 URL Blacklists 130 SPF - From 0 MIME Errors 0 Malware 0 Spamassassin 108 SA Add Ons 0 Greylisted 46 Blackhole 0 Sender Ratelimit 0 You could also review the contents of the sqlite database and/or examine the logs. You should use "exigrep Greylisted logfilename" to examine the logs and list all greylisting that occurred during a given day. For example, "exigrep Greylisted /var/log/exim/main.log" will list all mail that was greylisted for the day associated with the /var/log/exim/main.log log file. Torry Crass wrote:
2) SMTP Authentication. In vexim there's a section that allows users to send e-mail via the server as long as they authenticate to it first. This is an essential feature for my setup and can't seem to find the same type of config in exim4u. I've found where to add relay domains and things like that, but that's not really what I need. I need to be able to allow a user to send e-mail regardless of where they're connecting from as long as they have authenticated to the server. Any ideas?
I am not sure what you mean here since Exim4U and Vexim are both setup to accept authenticated smtp sessions. Could you be talking about "POP before SMTP" where the SMTP server does not authenticate but instead relies on whether the user has performed a POP3 login within a preceding time frame (such as 30 minutes)? I do not believe that Vexim supporting "POP before SMTP", however, you can do that if you want with Vexim or Exim4U. Read the Exim docs in section 9.4 about the whoson lookup type here: http://www.exim.org/exim-html-current/doc/html/spec_html/ch09.html As stated in the Exim docs, "that approach (POP before SMTP) has been superseded by SMTP authentication". Here are some other links about "POP before SMTP" with exim: http://www.linuxquestions.org/questions/linux-server-73/exim-and-pop-before-... http://www.mail-archive.com/exim-users(a)exim.org/msg03681.html http://packages.debian.org/sid/pop-before-smtp FYI, Gordon