Phil Pennock | 1 Nov 07:31 2010

Re: Extract email address from From header

On 2010-10-30 at 18:26 +0200, Elliot Murdock wrote:
> I've managed to use the set command to give acl_c) the value of the
> email address in From header but putting this line in the acl:
> 
> set acl_c0 = ${if
> match{$header_From:}{\([a-z,A-Z,\\.,\\-]+ <at> [a-z,A-Z,\\.,\\-]+\)}{$1}}
> 
> However, I guess using the ${addresses} expansion operator would be
> more conventional.

More importantly, less buggy.

You've matched comma multiple times in that regexp, but character
classes don't take comma-separated ranges, so you're accepting commas in
the domain, as well as in the LHS, where they're not valid unless
quoted.  In addition, you're not accepting many valid characters for the
LHS, such as '+', '=', etc.  Rather than enumerate these, you might want
to look at RFCs 5321 and 5322 (for the atext & qtext productions).

And that's still not getting into parsing out the address properly from
display form, merely something less buggy, but still not as close as
${addresses:...}

-Phil

--

-- 
## List details at http://lists.exim.org/mailman/listinfo/exim-users 
## Exim details at http://www.exim.org/
## Please use the Wiki with this list - http://wiki.exim.org/

(Continue reading)

Dave Lugo | 1 Nov 13:34 2010

case question re rewrite rules

Hi,

I have a rewrite rules file that have entries
that look like this:

Jdoe <at> domain.com    Jdoe <at> sub.domain.com     FTh

The rewrite file gets rsynced from a file the
customer drops in a dir.

I can't rely on the user email addresses always
matching, case-wise, what is in the rewrite file.
Do I need to preface each address entry with ^(?i),
and turn it into:

^(?i)JDoe <at> domain.com    ^(?i)JDoe <at> sub.domain.com     FTh

Thanks,

Dave

-- 
--------------------------------------------------------
  Dave Lugo     dlugo <at> etherboy.com      No spam, thanks.
  Are you the police?  . . .  No ma'am, we're sysadmins.
--------------------------------------------------------

--

-- 
## List details at http://lists.exim.org/mailman/listinfo/exim-users 
## Exim details at http://www.exim.org/
(Continue reading)

Dave Lugo | 1 Nov 14:12 2010

Re: case question re rewrite rules

On Mon, 1 Nov 2010, Dave Lugo wrote:
>
> I can't rely on the user email addresses always
> matching, case-wise, what is in the rewrite file.
> Do I need to preface each address entry with ^(?i),
> and turn it into:
>
> ^(?i)JDoe <at> domain.com    ^(?i)JDoe <at> sub.domain.com     FTh
>

Silly me, this works:

^(?i)JDoe <at> domain.com    JDoe <at> sub.domain.com     FTh

-- 
--------------------------------------------------------
  Dave Lugo     dlugo <at> etherboy.com      No spam, thanks.
  Are you the police?  . . .  No ma'am, we're sysadmins.
--------------------------------------------------------

--

-- 
## List details at http://lists.exim.org/mailman/listinfo/exim-users 
## Exim details at http://www.exim.org/
## Please use the Wiki with this list - http://wiki.exim.org/

Heiko Schlittermann | 2 Nov 09:23 2010
Picon

web ui for exim filter?

Hello,

does anybody know about a web ui for exim filter?

    - integrated into some web mailer
or
    - standalone

The interface should be about the same as known avelsieve (the
squirrelmail plugin). It should allow a user to edit his/her filter
settings.

Thanks in advance,
-- 
Heiko
--

-- 
## List details at http://lists.exim.org/mailman/listinfo/exim-users 
## Exim details at http://www.exim.org/
## Please use the Wiki with this list - http://wiki.exim.org/
Seth Dillingham | 2 Nov 02:02 2010
Picon

conditions for running spam tests

I have the following in my acl_check_data:

  warn    spam       = nobody
          condition  = ${if < {$message_size}{10K}}
          add_header = X-Spam_score: $spam_score\n\
                       X-Spam_score_int: $spam_score_int\n\
                       X-Spam_bar: $spam_bar\n\
                       X-Spam_report: $spam_report

  # reject spam with high scores
  deny    message    = This message scored $spam_score points.
          spam       = nobody:true
          condition  = ${if < {$message_size}{10K}}
          condition  = ${if > {$spam_score_int}{70}{1}{0}}

This is working well enough, but I'd like to skip these tests under
certain conditions:

	* if the sender is on the localhost
	* if the message wasn't originally sent with SMTP
	  (I have scripts on the server which send mail to me
	  by calling Exim directly)
	* if the sender is authenticated

I'm a little fried after a solid week of trying to rebuild this
system, and I can't seem to figure these out.

If the answers are in the FAQ and I missed them, I'm sorry. I did look.

Any suggestions?
(Continue reading)

Heiko Schlittermann | 2 Nov 11:13 2010
Picon

Re: conditions for running spam tests

Seth Dillingham <seth.dillingham <at> gmail.com> (Di 02 Nov 2010 02:02:47 CET):
> I have the following in my acl_check_data:
> 
>   warn    spam       = nobody
>           condition  = ${if < {$message_size}{10K}}
>           add_header = X-Spam_score: $spam_score\n\
>                        X-Spam_score_int: $spam_score_int\n\
>                        X-Spam_bar: $spam_bar\n\
>                        X-Spam_report: $spam_report
> 
>   # reject spam with high scores
>   deny    message    = This message scored $spam_score points.
>           spam       = nobody:true
>           condition  = ${if < {$message_size}{10K}}
>           condition  = ${if > {$spam_score_int}{70}{1}{0}}
> 

First - shouldn't be the test for the message size done befor the spam
condition? If I understand well, the conditions are evaluated in order,
thus it is scanned always, but the result is used only for messages
<10k. (BTW, 10k seems to be quite small, the headers count here too., 
may be you should use the $message_body_size, if it is available in the
data acl.)

> This is working well enough, but I'd like to skip these tests under
> certain conditions:
> 
>       * if the sender is on the localhost
>       * if the message wasn't originally sent with SMTP
>         (I have scripts on the server which send mail to me
(Continue reading)

Phil Pennock | 2 Nov 16:08 2010

Re: web ui for exim filter?

On 2010-11-02 at 09:23 +0100, Heiko Schlittermann wrote:
> does anybody know about a web ui for exim filter?
> 
>     - integrated into some web mailer
> or
>     - standalone
> 
> The interface should be about the same as known avelsieve (the
> squirrelmail plugin). It should allow a user to edit his/her filter
> settings.

If you use pysieved and do not set forbid_sieve_filter on the
forwardfile Router, then you should be able to just use avelsieve.

pysieved takes care of transparently munging the "#Sieve filter" line
into place for you.  So at that point any MANAGESIEVE client, which
creates Sieve scripts compatible with the features Exim's Sieve
implementation provides, should be able to just work with Exim.

I don't recall what Avelsieve does or doesn't offer.  If it doesn't work
for you, or you can't stick with it, take a look at the other web UIs
at:
  http://sieve.info/clients

Hrm, Exim could do with documenting which Sieve "require" capabilities
are supported.  It's:
    comparator-en;ascii-casemap
    comparator-i;ascii-casemap
    comparator-i;ascii-numeric
    comparator-i;octet
(Continue reading)

Michael Klimczak | 2 Nov 16:24 2010
Picon
Picon

Re: Cannot send mail from outside of local network

Okay, I managed to nail down the issue. Thanks for confirming that exim 
in it's standard configuration should not be the cause of our problems.
Doing a normal 'traceroute' I could follow the route from my home 
computer to the mailserver, doing a 'tcptraceroute' on ports 25 and 587 
revealed that they were already cut off halfway through by one of the 
gates of the university.

Best regards,
micha

On 10/29/2010 07:12 AM, W B Hacker wrote:
> Michael Klimczak wrote:
>> Hi,
>>
>> sorry if this question has been asked before but I could not find a
>> suitable solution.
>>
>> Exim is set up to receive mail from users and forward them to another
>> smtp for delivery (smarthost setup). Authentication via sasl and TLS
>> encryption are working. From the basic setup I would have assumed that I
>> now should be abel to send mail over the exim. However, this is only
>> working from within the local network.
>> Am I missing a configuration step in exim to enable connections from
>> outside or is it likely that there is an external cause for these issues
>> (I am sure there is no conflict with the firewall). Currently,
>> connections from outside do not receive a rejection, they just time out.
>> So far, I've tried setting auth_advertise_hosts to * (but this should be
>> the default anyway).
>>
>> Any help would be appreciated,
(Continue reading)

W B Hacker | 2 Nov 19:13 2010

Re: conditions for running spam tests

Seth Dillingham wrote:
> I have the following in my acl_check_data:
> 
>   warn    spam       = nobody
>           condition  = ${if < {$message_size}{10K}}
>           add_header = X-Spam_score: $spam_score\n\
>                        X-Spam_score_int: $spam_score_int\n\
>                        X-Spam_bar: $spam_bar\n\
>                        X-Spam_report: $spam_report
> 
>   # reject spam with high scores
>   deny    message    = This message scored $spam_score points.
>           spam       = nobody:true
>           condition  = ${if < {$message_size}{10K}}
>           condition  = ${if > {$spam_score_int}{70}{1}{0}}
> 
> 
> This is working well enough, but I'd like to skip these tests under
> certain conditions:
> 
> 	* if the sender is on the localhost
> 	* if the message wasn't originally sent with SMTP
> 	  (I have scripts on the server which send mail to me
> 	  by calling Exim directly)

That's inherent. 'normal' acl's only apply to an smtp 'session', which does not 
occur when calling the binary. See also 'acl_not_smtp' for those.

> 	* if the sender is authenticated
>
(Continue reading)

W B Hacker | 2 Nov 19:31 2010

Re: Cannot send mail from outside of local network

Michael Klimczak wrote:
> Okay, I managed to nail down the issue. Thanks for confirming that exim 
> in it's standard configuration should not be the cause of our problems.
> Doing a normal 'traceroute' I could follow the route from my home 
> computer to the mailserver, doing a 'tcptraceroute' on ports 25 and 587 
> revealed that they were already cut off halfway through by one of the 
> gates of the university.
> 
> Best regards,
> micha

OK - by messing with port 587 they are perhaps being overly cautious, but that's 
not a bad thing. Universities are full of 'rule benders'.

;-)

IF there are ports open, and IF it won't get you in trouble (see their Tos or 
whatever..) you can run Exim on one or 'many' non-standard ports and configure 
MUA accordingly so you can submit or recover POP/IMAP.

You will still need a smarthost to send OUT of Exim, (else fail an rDNS test), 
and may have NO practical way for arrivals from 'the wide world' to get IN, as 
they expect a listener on port 25 (and no other) - which the Uni is blocking or 
intercepting.

Bottom line is you'll need to find a way to VPN to-from a box & IP *outside* of 
the Uni's firewall and run the MTA from a point where it CAN listen on (at 
least) unblocked ports 25 and 587. Unless that 'place' (leased virtual host?) 
includes a fixed-IP with PTR RR as well as MX (or at least A) RR, you will still 
need a smarthost.
(Continue reading)


Gmane