Yves Goergen | 28 May 20:17 2015
Picon

Documentation of tls_dhparam

Hi,

The documentation page of TLS configuration says this:

http://www.exim.org/exim-html-current/doc/html/spec_html/ch-encrypted_smtp_connections_using_tlsssl.html
 > There are a few standard primes available, see the documentation for 
 > tls_dhparam for the complete list.

All I can find is the page that says this. So it must be the 
documentation of tls_dhparam. But where did the author of that sentence 
(it also appears further to the top of the page) think I should look for 
more information?

-- 
Yves Goergen
http://unclassified.software

--

-- 
## List details at https://lists.exim.org/mailman/listinfo/exim-users
## Exim details at http://www.exim.org/
## Please use the Wiki with this list - http://wiki.exim.org/
Cyborg | 27 May 17:54 2015
Picon

SSL cert depending on hello string ?

Hi guys,

did anyone ever tried to extend the SMTP protocol to something like this ?

HELO clienthostname
250 OK
HOST maildomain.de
250 OK
STARTTLS
....
and getting the correct certificate for this domain ?

This way authentication could be done together with encryption, instead
of encryption only.

Grüße,
Marius

--

-- 
## List details at https://lists.exim.org/mailman/listinfo/exim-users
## Exim details at http://www.exim.org/
## Please use the Wiki with this list - http://wiki.exim.org/
David Byte | 25 May 16:28 2015
Picon

router filter question

I have googled quite a bit and am struggling, so any help would be 
appreciated.

I have a server hosting multiple domains and utilize an off-box 
anti-spam solution.  The current config works great.
What I need to do is inject a new router to send specific recipients to 
a new version of the anti-spam solution for testing.  Not being an exim 
expert, this is the tough part.
Here is my attempt.

amavis:
   driver = manualroute
   # Do NOT run if received via 10025/tcp or if already spam-scanned
   # or if bounce message ($sender_address="")
   condition = "${if or {{eq {$interface_port}{10025}} \
         {!eq {$local_part <at> $domain}{lsearch;/etc/exim.mg2}}\
         {eq {$received_protocol}{spam-scanned}}\
         {eq {$received_protocol}{local}}\
         {eq {$sender_address}{}} \
         }{0}{1} }"
   transport = amavis
   route_list = "* mailguard2.mydomain.com byname"
   self = send

/etc/exim.mg2 contents:
bob <at> domain1.com
fred <at> domain2.net
tim <at> domain3.com

Can anyone offer an assist?
(Continue reading)

Wei Tong | 25 May 11:15 2015
Picon

Send out email via secondary server after primary server delivery failure

I had setup two exim4 servers, one as primary remote-smtp server and another as secondary remote-smtp
server. 

On the primary server, how can I setup Exim to try delivering emails via secondary server after primary
server delivering failed.

Thanks!

Wei 

--

-- 
## List details at https://lists.exim.org/mailman/listinfo/exim-users
## Exim details at http://www.exim.org/
## Please use the Wiki with this list - http://wiki.exim.org/
Ken Robinson | 22 May 23:23 2015
Picon

Smart Host routing except for certain messages

I have a cPanel/WHM host and it has been set up to route all email except
for local messages via a smart host. I would like to modify the routing so
that certain messages identified either by a particular message header or
the "to" email address are not routed to the smart host, but are served
locally or by another smart host.

I have been looking at the documentation for months, but I'm really not
sure how to proceed.

Here is the section of the config file that does the routing:
send_via_sendgrid:
  driver = manualroute
  domains = ! +local_domains
  transport = sendgrid_smtp
  route_list = "* smtp.sendgrid.net::587 byname"
  host_find_failed = defer
  no_more

exim 4.85

Can anyone give me some examples (with explanations) of how this can be
done.

Thanks in advance,

Ken
--

-- 
## List details at https://lists.exim.org/mailman/listinfo/exim-users
## Exim details at http://www.exim.org/
## Please use the Wiki with this list - http://wiki.exim.org/
(Continue reading)

Ken Robinson | 23 May 01:57 2015

Smart Host routing except for certain messages

I submitted this message earlier (2 hours ago) from a different email 
address, but I haven't seen it come through the list yet. Sorry if it 
comes through twice.

I have a cPanel/WHM host and it has been set up to route all email 
except for local messages via a smart host. I would like to modify 
the routing so that certain messages identified either by a 
particular message header or the "to" email address are not routed to 
the smart host, but are served locally or by another smart host.

I have been looking at the documentation for months, but I'm really 
not sure how to proceed.

Here is the section of the config file that does the routing:
send_via_sendgrid:
   driver = manualroute
   domains = ! +local_domains
   transport = sendgrid_smtp
   route_list = "* smtp.sendgrid.net::587 byname"
   host_find_failed = defer
   no_more

exim 4.85

Can anyone give me some examples (with explanations) of how this can be done.

Thanks in advance,

Ken
--

-- 
(Continue reading)

Guy | 22 May 10:57 2015
Picon

Exiscan - selective behaviour by domain

Hi folks,

My google-fu has failed me, so hopefully someone here can help me out. I'm
using ClamAV for my content scanning and have a fairly simple config for it
in exim.

acl_check_content:

  <snip>

  deny  message = This message contains unwanted content ($malware_name)
>             malware = BC\.Heuristic.*
>             <snip>
>             malware = BC\.Heuristic\.Trojan.*
>

  warn  log_message = This message contains suspicious content
> ($malware_name)
>             message = X-Phishing: $malware_name
>             malware = *

  <snip>

A router then quarantines anything with the X-Phishing header. But I need
one specific ClamAV test (Heuristics.Phishing.Email.SpoofedDomain) to add a
different header and then allow the rest of the checks to run as normal.
Logically, if I can add a "!malware =
Heuristics.Phishing.Email.SpoofedDomain" then I could do something like:

acl_check_content:
(Continue reading)

Sujit Acharyya-choudhury | 20 May 15:09 2015
Picon

Looks like attack carrying Malware

We are getting lot of these:

no host name found for IP address 222.128.88.192

and later on the address is listed in CBL.  It is not just this address, but
many other addresses, and so far Exim config has been able to deal with it.
Later on, I found out that these addresses are blacklisted.

I was wondering if any other user is seeing this kind of activity, or just
us being targeted.

Sujit

Attachment (smime.p7s): application/pkcs7-signature, 6537 bytes
--

-- 
## List details at https://lists.exim.org/mailman/listinfo/exim-users
## Exim details at http://www.exim.org/
## Please use the Wiki with this list - http://wiki.exim.org/
Mike McKoy | 20 May 04:11 2015
Picon

Guide to setting up exim for multiple Domains on Centos

I'm trying to be able to send from multiple IPs using ecim. I have 7
different domains i'm hosting and I can't use postfix efficiently to do
that. Some of the clients have newsletter programs and other clients do not.

Is there a comprehensive step by step guide for setting up sending and
receiving on virtual domains with virtual users via centos? I really need
to do this fast. Spent weeks on centos with no luck.

--
Mike McKoy
*404.590.7176*
http://MyForeverHair.com
http://www.MyModelTalk.com
http://InCrowdUSA.net
http://www.google.com/profiles/mikemckoy
--

-- 
## List details at https://lists.exim.org/mailman/listinfo/exim-users
## Exim details at http://www.exim.org/
## Please use the Wiki with this list - http://wiki.exim.org/
MarvinC | 19 May 06:53 2015
Picon

Repairing exim on GoDaddy VDS without rebuild

Anyone have any suggestions for repairing what appears to be broken
exim on a GoDaddy unix web server. Basically the server is being used
as a relay for one of my domains. Before resorting to moving the
domains and resetting the server I'm hoping there's something I can do
to "fix" the issue.

In addition when attempting to run Mail Delivery Reports I get the
following error:

Error from delivery reporter: DBD::mysql::db selectall_arrayref
failed: Incorrect file format 'failures'

Here's a sample email:

Mail Control Data:

mailnull 47 12
<>
1432010734 0
-ident mailnull
-received_protocol local
-body_linecount 60
-max_received_linelength 94
-allow_unqualified_recipient
-allow_unqualified_sender
-frozen 1432010734
-localerror
XX
1
nancy_blake <at> nuryders.com
(Continue reading)

M. Piscaer | 15 May 11:39 2015
Picon

replacing postfix for exim4

Hi,

I'm replacing an postfix setup for exim4. This because exim has better
mail routing options then postfix. This server is used as an Smarthost
for its ISP customers.

In the current setup that we use, we have multible hostnames to connect
to the server.

All are TLS enabled, with postfix we have in the master.cf config the
following statement:

10.115.3.42:smtp     inet  n       -       -       -       -       smtpd
  -o smtpd_tls_cert_file=/etc/ssl/certs/mail.domein1.nl.crt
  -o smtpd_tls_key_file=/etc/ssl/private/mail.domein1.nl.key
  -o smtpd_tls_CAfile=/etc/ssl/certs/ThawteSSL123_bundle.crt
10.115.3.43:smtp     inet  n       -       -       -       -       smtpd
  -o smtpd_tls_cert_file=/etc/ssl/certs/mail.domein2.nl.crt
  -o smtpd_tls_key_file=/etc/ssl/private/mail.domein2.nl.key
  -o smtpd_tls_CAfile=/etc/ssl/certs/ThawteSSL123_bundle.crt
[xxx:xxx:100:11::165]:smtp     inet  n       -       -       -       -
     smtpd
  -o smtpd_tls_cert_file=/etc/ssl/certs/mail.domein1.nl.crt
  -o smtpd_tls_key_file=/etc/ssl/private/mail.domein1.nl.key
  -o smtpd_tls_CAfile=/etc/ssl/certs/ThawteSSL123_bundle.crt
[xxx:xxx:100:11::166]:smtp     inet  n       -       -       -       -
     smtpd
  -o smtpd_tls_cert_file=/etc/ssl/certs/mail.domein2.nl.crt
  -o smtpd_tls_key_file=/etc/ssl/private/mail.domein2.nl.key
  -o smtpd_tls_CAfile=/etc/ssl/certs/ThawteSSL123_bundle.crt
(Continue reading)


Gmane