From: <fre...@va...> - 2006-12-11 14:08:08
|
Hi, There seems to be some sort of trouble with the PRA check with sid-milter v. 0.2.14 then a person emails us. Looking in the logs, I see this: Dec 11 10:43:46 mx1 sendmail[4218]: [ID 801593 mail.info] kBB9hkBu004218: Milter (sid-filter): init success to negotiate Dec 11 10:43:49 mx1 sendmail[4218]: [ID 801593 mail.info] kBB9hkBu004218: from=3D<xxx...@ma...>, size=3D235422, class=3D0, nrcpts=3D1, msgid=3D<200...@mx...>, bodytype=3D8BITMIME, proto=3DESMTP, daemon=3DMTA-v4, = relay=3Dmail.maxm.se [62.119.138.101] Dec 11 10:43:55 mx1 sid-filter[18609]: [ID 337111 mail.error] kBB9hkBu004218 ar_waitreply() failed: Too many retries Dec 11 10:43:55 mx1 sid-filter[18609]: [ID 539848 mail.error] kBB9hkBu004218 sid_marid_check(): PRA ane...@ma...: -2 ( < mx maxm.se?) Dec 11 10:43:55 mx1 sendmail[4218]: [ID 801593 mail.info] kBB9hkBu004218: Milter: data, reject=3D451 4.7.0 Too many retries Dec 11 10:43:55 mx1 sendmail[4218]: [ID 801593 mail.info] kBB9hkBu004218: to=3D<vp...@fo...>, delay=3D00:00:07, pri=3D265422, stat=3DToo many retries I do some checks in there domain... # dig -t NS maxm.se (shortshort version) ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 1489 ;; flags: qr rd ra; QUERY: 1, ANSWER: 2, AUTHORITY: 0, ADDITIONAL: 2 ;; ANSWER SECTION: maxm.se. 3600 IN NS ns.maxm.se. maxm.se. 3600 IN NS ns1.sourcecom.se. Check the SPF record... (both ns:es works fine and give the same answer) # dig -t TXT maxm.se @ns.maxm.se. (short version) ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 569 ;; flags: qr aa rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 2, ADDITIONAL: 1 ;; QUESTION SECTION: ;maxm.se. IN TXT ;; ANSWER SECTION: maxm.se. 3600 IN TXT "v=3Dspf1 mx ptr" ;; AUTHORITY SECTION: maxm.se. 3600 IN NS ns.maxm.se. maxm.se. 3600 IN NS ns1.sourcecom.se. ;; ADDITIONAL SECTION: ns.maxm.se. 3600 IN A 62.119.138.98 As I interpret this SPF policy, all *.maxm.se reverse-resolvable hosts should be able to send mail from maxm.se. But it seems that sid-milter interpret this differently... # dig -x 62.119.138.101 gives me mail.maxm.se on both auth-dns:es, (which are dns1.utfors.se and dns2.utfors.se) so I don't understand why this fails by sid-milter. # dig -t MX maxm.se @ns.maxm.se. also works fine.=20 I'm just (re)trying that since the error-message from sid-milter=20 "sid_marid_check(): PRA xxx...@ma...: -2 ( < mx maxm.se?)" Should I log this as a bug in the tracker, or have I missed a vital clue? /P |