Greylist???

Web, mail, IRC, IM, hálózatok

Adott egy szerveren egy eXtremail nevu mailszerver ami egeszen mostanaig tokeletesen mukodott. Mostanaban viszont egyre tobb helyre nem tudja elkuldeni a mailt mert greylistre hivatkozik. Nehany cegnek a mi mailszerverunk van megadva SMTP kuldonek (laptopok -> kulonbozo helyszinek, kulonbozo internetszolgaltatok). A mailszerver doksijaban szetneztem, de ott egyaltalan nem talalkoztam greylistre vonatkozo dologgal (lehet hogy ez ennyire uj dolog?)

Es akkor a log (nagyon hosszu lesz):

01/03/2007 - 11:28:43 -> [360817.01] SMTP - Sending mail to: xxxxx@xxx.xx
01/03/2007 - 11:28:43 -> [360817.01] SMTP - Resolving sending domain ...
01/03/2007 - 11:28:43 -> [360817.01] SMTP - Sending domain tveger.hu is local
01/03/2007 - 11:28:43 -> [360817.01] SMTP - Resolving destination domain ...
01/03/2007 - 11:28:43 -> [360817.01] SMTP - Destination domain upc.hu is remote
01/03/2007 - 11:28:43 -> [360817.01] SMTP - Delivering remote mail ...
01/03/2007 - 11:28:43 -> [360817.01] SMTP - Resolving sender user ...
01/03/2007 - 11:28:43 -> [360817.01] SMTP - No mail relay
01/03/2007 - 11:28:43 -> [360817.01] SMTP - Searching MX server ...
01/03/2007 - 11:28:43 -> [360817.01] DNS - Searching domain upc.hu in cache ...
01/03/2007 - 11:28:43 -> [360817.01] DNS - Domain upc.hu not in cache
01/03/2007 - 11:28:43 -> [360817.01] DNS - Quering DNS server for DNS records ...
01/03/2007 - 11:28:43 -> [360817.01] DNS - There are 2 nameservers available ...
01/03/2007 - 11:28:43 -> [360817.01] DNS - Nameserver number 1
01/03/2007 - 11:28:43 -> [360817.01] DNS - DNS socket opened
01/03/2007 - 11:28:43 -> [360817.01] DNS - Connecting with DNS server: 84.2.44.1
01/03/2007 - 11:28:43 -> [360817.01] DNS - DNS server connected
01/03/2007 - 11:28:43 -> [360817.01] DNS - DNS domain search: upc.hu
01/03/2007 - 11:28:43 -> [360817.01] DNS - DNS query sent
01/03/2007 - 11:28:43 -> [360817.01] DNS - Disconnected from DNS server
01/03/2007 - 11:28:43 -> [360817.01] DNS - DNS response received. Parsing ...
01/03/2007 - 11:28:43 -> [360817.01] DNS - 2 answers received
01/03/2007 - 11:28:43 -> [360817.01] DNS - 0 authority received
01/03/2007 - 11:28:43 -> [360817.01] DNS - 0 additional received
01/03/2007 - 11:28:43 -> [360817.01] DNS - Parsing question ---------
01/03/2007 - 11:28:43 -> [360817.01] DNS - Domain parsed: upc.hu.
01/03/2007 - 11:28:43 -> [360817.01] DNS - DNS Data type: 15
01/03/2007 - 11:28:43 -> [360817.01] DNS - Parsing answer -----------
01/03/2007 - 11:28:43 -> [360817.01] DNS - Domain parsed: upc.hu.
01/03/2007 - 11:28:43 -> [360817.01] DNS - DNS Data type: 15
01/03/2007 - 11:28:43 -> [360817.01] DNS - DNS Data lenght: 19
01/03/2007 - 11:28:43 -> [360817.01] DNS - Domain parsed: mx02.broadband.hu.
01/03/2007 - 11:28:43 -> [360817.01] DNS - MX Server: mx02.broadband.hu., Pref: 10
01/03/2007 - 11:28:43 -> [360817.01] DNS - Parsing answer -----------
01/03/2007 - 11:28:43 -> [360817.01] DNS - Domain parsed: upc.hu.
01/03/2007 - 11:28:43 -> [360817.01] DNS - DNS Data type: 15
01/03/2007 - 11:28:43 -> [360817.01] DNS - DNS Data lenght: 9
01/03/2007 - 11:28:43 -> [360817.01] DNS - Domain parsed: mx01.broadband.hu.
01/03/2007 - 11:28:43 -> [360817.01] DNS - MX Server: mx01.broadband.hu., Pref: 20
01/03/2007 - 11:28:43 -> [360817.01] DNS - There are 2 nameservers available ...
01/03/2007 - 11:28:43 -> [360817.01] DNS - Nameserver number 1
01/03/2007 - 11:28:43 -> [360817.01] DNS - DNS socket opened
01/03/2007 - 11:28:43 -> [360817.01] DNS - Connecting with DNS server: 84.2.44.1
01/03/2007 - 11:28:43 -> [360817.01] DNS - DNS server connected
01/03/2007 - 11:28:43 -> [360817.01] DNS - DNS domain search: mx02.broadband.hu.
01/03/2007 - 11:28:43 -> [360817.01] DNS - DNS query sent
01/03/2007 - 11:28:43 -> [360817.01] DNS - Disconnected from DNS server
01/03/2007 - 11:28:43 -> [360817.01] DNS - DNS response received. Parsing ...
01/03/2007 - 11:28:43 -> [360817.01] DNS - 1 answers received
01/03/2007 - 11:28:43 -> [360817.01] DNS - 0 authority received
01/03/2007 - 11:28:43 -> [360817.01] DNS - 0 additional received
01/03/2007 - 11:28:43 -> [360817.01] DNS - Parsing question ---------
01/03/2007 - 11:28:43 -> [360817.01] DNS - Domain parsed: mx02.broadband.hu.
01/03/2007 - 11:28:43 -> [360817.01] DNS - DNS Data type: 1
01/03/2007 - 11:28:43 -> [360817.01] DNS - Parsing answer -----------
01/03/2007 - 11:28:43 -> [360817.01] DNS - Domain parsed: mx02.broadband.hu.
01/03/2007 - 11:28:43 -> [360817.01] DNS - DNS Data type: 1
01/03/2007 - 11:28:43 -> [360817.01] DNS - DNS Data lenght: 4
01/03/2007 - 11:28:43 -> [360817.01] DNS - IP: 195.184.181.4
01/03/2007 - 11:28:43 -> [360817.01] DNS - There are 2 nameservers available ...
01/03/2007 - 11:28:43 -> [360817.01] DNS - Nameserver number 1
01/03/2007 - 11:28:43 -> [360817.01] DNS - DNS socket opened
01/03/2007 - 11:28:43 -> [360817.01] DNS - Connecting with DNS server: 84.2.44.1
01/03/2007 - 11:28:43 -> [360817.01] DNS - DNS server connected
01/03/2007 - 11:28:43 -> [360817.01] DNS - DNS domain search: mx01.broadband.hu.
01/03/2007 - 11:28:43 -> [360817.01] DNS - DNS query sent
01/03/2007 - 11:28:43 -> [360817.01] DNS - Disconnected from DNS server
01/03/2007 - 11:28:43 -> [360817.01] DNS - DNS response received. Parsing ...
01/03/2007 - 11:28:43 -> [360817.01] DNS - 1 answers received
01/03/2007 - 11:28:43 -> [360817.01] DNS - 0 authority received
01/03/2007 - 11:28:43 -> [360817.01] DNS - 0 additional received
01/03/2007 - 11:28:43 -> [360817.01] DNS - Parsing question ---------
01/03/2007 - 11:28:43 -> [360817.01] DNS - Domain parsed: mx01.broadband.hu.
01/03/2007 - 11:28:43 -> [360817.01] DNS - DNS Data type: 1
01/03/2007 - 11:28:43 -> [360817.01] DNS - Parsing answer -----------
01/03/2007 - 11:28:43 -> [360817.01] DNS - Domain parsed: mx01.broadband.hu.
01/03/2007 - 11:28:43 -> [360817.01] DNS - DNS Data type: 1
01/03/2007 - 11:28:43 -> [360817.01] DNS - DNS Data lenght: 4
01/03/2007 - 11:28:43 -> [360817.01] DNS - IP: 195.184.181.2
01/03/2007 - 11:28:43 -> [360817.01] DNS - Adding domain upc.hu to cache ...
01/03/2007 - 11:28:43 -> [360817.01] DNS - Domain added to cache
01/03/2007 - 11:28:43 -> [360817.01] DNS - Debugging MX servers ...
01/03/2007 - 11:28:43 -> [360817.01] DNS - MX servers debugged
01/03/2007 - 11:28:43 -> [360817.01] DNS - Sorting MX servers ...
01/03/2007 - 11:28:43 -> [360817.01] DNS - Order:
01/03/2007 - 11:28:43 -> [360817.01] DNS - 10: mx02.broadband.hu., IP: 195.184.181.4
01/03/2007 - 11:28:43 -> [360817.01] DNS - 20: mx01.broadband.hu., IP: 195.184.181.2
01/03/2007 - 11:28:43 -> [360817.01] SMTP - MX server : mx02.broadband.hu.
01/03/2007 - 11:28:43 -> [360817.01] SMTP - MX server IP: 195.184.181.4
01/03/2007 - 11:28:43 -> [360817.01] SMTP - Opening Remote SMTP connection ...
01/03/2007 - 11:28:43 -> [360817.01] SMTP - Remote SMTP socket opened
01/03/2007 - 11:28:43 -> [360817.01] SMTP - Connecting with IP: 195.184.181.4
01/03/2007 - 11:28:43 -> [360817.01] SMTP - Connected with remote SMTP server
01/03/2007 - 11:28:43 -> [360817.01] SMTP - Remote SMTP connection opened
01/03/2007 - 11:28:43 -> [360817.01] SMTP - Recv: 220 ns02.broadband.hu ESMTP Postfix (Debian/GNU)
01/03/2007 - 11:28:43 -> [360817.01] SMTP - Send: EHLO mail.s3w.hu
01/03/2007 - 11:28:43 -> [360817.01] SMTP - Parsing ESMPT extensions ...
01/03/2007 - 11:28:43 -> [360817.01] SMTP - ESMPT line: 250-ns02.broadband.hu
01/03/2007 - 11:28:43 -> [360817.01] SMTP - ESMPT line: 250-PIPELINING
01/03/2007 - 11:28:43 -> [360817.01] SMTP - ESMPT line: 250-SIZE 30000000
01/03/2007 - 11:28:43 -> [360817.01] SMTP - ESMPT line: 250-ETRN
01/03/2007 - 11:28:43 -> [360817.01] SMTP - ESMPT line: 250-ENHANCEDSTATUSCODES
01/03/2007 - 11:28:43 -> [360817.01] SMTP - ESMPT line: 250-8BITMIME
01/03/2007 - 11:28:43 -> [360817.01] SMTP - ESMPT line: 250 DSN
01/03/2007 - 11:28:43 -> [360817.01] SMTP - ESMPT extension parsed
01/03/2007 - 11:28:43 -> [360817.01] SMTP - ESMPT extensions lines: 7
01/03/2007 - 11:28:43 -> [360817.01] SMTP - Remote server accept SIZE ESMTP extension
01/03/2007 - 11:28:43 -> [360817.01] SMTP - ESMPT recognized extensions: 1
01/03/2007 - 11:28:43 -> [360817.01] SMTP - Send: MAIL FROM: SIZE=987
01/03/2007 - 11:28:43 -> [360817.01] SMTP - Recv: 250 2.1.0 Ok
01/03/2007 - 11:28:43 -> [360817.01] SMTP - Send: RCPT TO:
01/03/2007 - 11:28:43 -> [360817.01] SMTP - Error: SMTP error response received: 450 4.7.1 : Recipient address rejected: Greylisted, see http://isg.ee.ethz.ch/tools/postgrey/help/upc.hu.html
01/03/2007 - 11:28:43 -> [360817.01] SMTP - Remote SMTP connection closed
01/03/2007 - 11:28:43 -> [360817.01] SMTP - MX server : mx01.broadband.hu.
01/03/2007 - 11:28:43 -> [360817.01] SMTP - MX server IP: 195.184.181.2
01/03/2007 - 11:28:43 -> [360817.01] SMTP - Opening Remote SMTP connection ...
01/03/2007 - 11:28:43 -> [360817.01] SMTP - Remote SMTP socket opened
01/03/2007 - 11:28:43 -> [360817.01] SMTP - Connecting with IP: 195.184.181.2
01/03/2007 - 11:28:43 -> [360817.01] SMTP - Connected with remote SMTP server
01/03/2007 - 11:28:43 -> [360817.01] SMTP - Remote SMTP connection opened
01/03/2007 - 11:28:43 -> [360817.01] SMTP - Recv: 220 mx01.broadband.hu ESMTP Postfix (Debian/GNU)
01/03/2007 - 11:28:43 -> [360817.01] SMTP - Send: EHLO mail.s3w.hu
01/03/2007 - 11:28:43 -> [360817.01] SMTP - Parsing ESMPT extensions ...
01/03/2007 - 11:28:43 -> [360817.01] SMTP - ESMPT line: 250-mx01.broadband.hu
01/03/2007 - 11:28:43 -> [360817.01] SMTP - ESMPT line: 250-PIPELINING
01/03/2007 - 11:28:43 -> [360817.01] SMTP - ESMPT line: 250-SIZE 25000000
01/03/2007 - 11:28:43 -> [360817.01] SMTP - ESMPT line: 250-ETRN
01/03/2007 - 11:28:43 -> [360817.01] SMTP - ESMPT line: 250-ENHANCEDSTATUSCODES
01/03/2007 - 11:28:43 -> [360817.01] SMTP - ESMPT line: 250-8BITMIME
01/03/2007 - 11:28:43 -> [360817.01] SMTP - ESMPT line: 250 DSN
01/03/2007 - 11:28:43 -> [360817.01] SMTP - ESMPT extension parsed
01/03/2007 - 11:28:43 -> [360817.01] SMTP - ESMPT extensions lines: 7
01/03/2007 - 11:28:43 -> [360817.01] SMTP - Remote server accept SIZE ESMTP extension
01/03/2007 - 11:28:43 -> [360817.01] SMTP - ESMPT recognized extensions: 1
01/03/2007 - 11:28:43 -> [360817.01] SMTP - Send: MAIL FROM: SIZE=987
01/03/2007 - 11:28:43 -> [360817.01] SMTP - Recv: 250 2.1.0 Ok
01/03/2007 - 11:28:43 -> [360817.01] SMTP - Send: RCPT TO:
01/03/2007 - 11:28:43 -> [360817.01] SMTP - Error: SMTP error response received: 450 4.7.1 : Recipient address rejected: Greylisted for 300 seconds (see http://isg.ee.ethz.ch/tools/postgrey/help/upc.hu.html)
01/03/2007 - 11:28:43 -> [360817.01] SMTP - Remote SMTP connection closed
01/03/2007 - 11:28:43 -> [360817.01] SMTP - Error delivering remote mail
01/03/2007 - 11:28:43 -> [360817.01] SMTP - Unregistering SMTP connection
01/03/2007 - 11:28:43 -> [360817.01] SMTP - Deleting temporary mail file: /home/eXtremail/cache/0201112843.518
01/03/2007 - 11:28:43 -> [360817.01] SMTP - Temporary mail file deleted
01/03/2007 - 11:28:43 -> [360817.01] SMTP - Exiting from thread

Help!

2552 megtekintés

http://www.google.com/search?q=greylisting

0 szavazat

A hozzászóláshoz be kell jelentkezni

Hali!

A Greylisting egy spamszűrési technika, mely röviden így működik, ha egy greylistinget használó mailserverhez levél érkezik:

- Megnézi az adatbázisában a (küldő IP-je,feladó,címzett) hármasokat, ha már szerepel, beengedi a levelet
- Ha nem, IDEIGLENESEN visszautasítja a levelet, és felveszi a hozzá tartozó hármast az adatbázisába

Ez azért jó, mert egy jól bekonfigurált küldő mail szervernek az RFC-szerint rövidebb idő után újra kell próbálkoznia, és mivel akkor már szerepel az adatbázisban a hármasa, fogadva lesz a levél.
Ezzel szemben a legtöbb spambot csak tüzel és többet nem próbálkozik.
Személyes tapasztalataim szerint rendkívüli mértékben csökkenti a beérkező spam mennyiségét ennek használata.

Egy mellékhatása van: kicsit késnek a levelek. Jó esetben ez csak néhány percet jelent (amíg újra nem próbálkozik a küldő server). Rosszabb esetben akár órákat, pl. ha a küldőnek több mail servere van, és az újrapróbálkozás már más IP-ről jön (pl. googlemail szerverfarmjai), ekkor addig nem érkezik meg a levél, ameddig nem próbálkozik másodszorra ugyanarról az IP-ről.
Mondjuk vannak már olyan graylisting daemonok amik az IP-re nem illesztenek, csak sajna még Debianban nincs.

0 szavazat

A hozzászóláshoz be kell jelentkezni

de a késés is csak 1x van jó esetben, mivelhogy megadható egy élettartam a trustednek vélt esetekre, így ha pl 1 hónapon belül ismét küld, akkor kapásból bejön a levél, ha 1 hónapig semmi nem jön ugyan olyan paraméterek mellett, akkor legközelebb is eljátszik az ideiglenes elutasítással.

0 szavazat