Re: [Javaemailserver-user] message relaying - elaboration
Brought to you by:
edaugherty,
mfg8876
Menu
▾
▴
Re: [Javaemailserver-user] message relaying - elaboration
|
From: <jav...@li...> - 2011-08-24 23:36:29
|
Hello Raf Your input is much appreciated. I have identified the offending code and have proceeded to provide a fix. The new version (beta4b) is available at sourceforge. As I understand the SMTP rfc, an authenticated user (thus also a "local" JES user) can define any recipient. Therefore a user belonging to a locally administered domain (eps.agfa.be) MUST be allowed to send mail to whatever recipient (including agfa.com). It is the admin's responsibility to enforce a more strict recipient policy, and the means to do it is (now correctly) offered by JES via the recipientPolicy mechanism. If you purpose to send mail only to the locally administered mail domain (eps.agfa.be) you should specify allow=eps.agfa.be or allow.eps.agfa.be=eps.agfa.be This way you don't have to block domains individually. Let us know how things have worked out. Andreas To: jav...@li... Date: Tue, 23 Aug 2011 16:32:28 +0200 From: jav...@li... Subject: [Javaemailserver-user] message relaying - elaboration Hi Andreas, Thanks for your feedback on my previous questions. Here follows a more elaborate record of the relaying issue. >> >> 3) Mail to other (non local) domains gets relayed, even with relay.ipaddresses disabled (see setting) >> >> How can i prevent relaying ? >> >>>> Could you plz elaborate a bit more? The "relay" entries in mail.conf concern exclusively >>>> the recipient list of incoming messages and are only >> taken into account should the >>>> connecting sender not have authenticated during the active session. >> In our JES test mail.conf setup the domains 'agfa.com', 'agfahealthcare.com' are not local domains. Only 'eps.agfa.be'is local E.g. I want to prevent relaying any mail destined for '@agfa.com' A mail , sent by user 'ra...@ep...' to 'rap...@ag...' however is relayed successfully. Given the fact that (AFAIK) i've not enable relaying anywhere in mail.conf, i wasn't expecting this message to be relayed. However, the JES log shows that it was relayed via server 'morswhv64.agfahealthcare.com'. Even using the global 'block=agfa.com' feature in the rcptPolicy.conf file did not prevent relaying mail to the 'agfa.com' addresses. At which mail.conf setting should i be looking to prevent relaying ? Thx, Raf +++++++++++++++++ jes .log +++++++++++++++++++ 2011-08-03 15:09:57,937 - [SMTP:5] PlainServerMode$FinalizeAuthenticationSMTP - User: ra...@ep... logged in successfully. 2011-08-03 15:09:57,937 - [SMTP:5] SMTPProcessor - Writing Output: 235 Authentication Successful 2011-08-03 15:09:57,937 - [SMTP:5] SMTPProcessor - Read Input: MAIL FROM:<ra...@ep...> 2011-08-03 15:09:57,937 - [SMTP:5] SMTPProcessor$FullTransferMode - MAIL FROM: ra...@ep... 2011-08-03 15:09:57,937 - [SMTP:5] SMTPProcessor - Writing Output: 250 OK 2011-08-03 15:09:57,953 - [SMTP:5] SMTPProcessor - Read Input: RCPT TO:<rap...@ag...> 2011-08-03 15:09:57,953 - [SMTP:5] ConfigurationManager - Tried to load non-existent user: rap...@ag... 2011-08-03 15:09:57,953 - [SMTP:5] SMTPProcessor - Writing Output: 250 OK 2011-08-03 15:09:57,953 - [SMTP:5] SMTPProcessor - Message from domain eps.agfa.be to Domain agfa.com is ACCEPTED! 2011-08-03 15:09:57,953 - [SMTP:5] SMTPProcessor$FullTransferMode - RCTP TO: rap...@ag... accepted. 2011-08-03 15:09:57,953 - [SMTP:5] SMTPProcessor - Read Input: DATA 2011-08-03 15:09:57,953 - [SMTP:5] SMTPProcessor - Writing Output: 354 Start mail input; end with <CRLF>.<CRLF> 2011-08-03 15:09:57,984 - [SMTP:5] SMTPProcessor - Writing Output: 250 OK 2011-08-03 15:09:57,984 - [SMTP:5] SMTPProcessor - Message 688d9005 accepted for delivery. 2011-08-03 15:10:04,531 - [SMTPSender] IncrementalFileIOProccessor - Loading SMTP Message smtp688d9005.ser version 1.0 2011-08-03 15:10:04,531 - [Deliver Standard 2] SMTPSenderStandard$StandardDeliver - Delivering Message to remote domain: agfa.com 2011-08-03 15:10:04,562 - [Deliver Standard 2] SMTPRemoteSender - Read Input: 220 morswhv64.agfahealthcare.com ESMTP Service (Lotus Domino Release 8.5.2FP2 HF380) ready at Wed, 3 Aug 2011 15:10:04 +0200 2011-08-03 15:10:04,562 - [Deliver Standard 2] SMTPRemoteSender - Writing: EHLO eps.agfa.be 2011-08-03 15:10:04,562 - [Deliver Standard 2] SMTPRemoteSender - Read Input: 250-morswhv64.agfahealthcare.com Hello eps.agfa.be ([10.232.50.144]), pleased to meet you 2011-08-03 15:10:04,562 - [Deliver Standard 2] SMTPRemoteSender - Read Input: 250-SIZE 2011-08-03 15:10:04,562 - [Deliver Standard 2] SMTPRemoteSender - Read Input: 250-8BITMIME 2011-08-03 15:10:04,578 - [Deliver Standard 2] SMTPRemoteSender - Read Input: 250 PIPELINING 2011-08-03 15:10:04,578 - [Deliver Standard 2] SMTPRemoteSender - Writing: MAIL FROM:<ra...@ep...> SIZE=716 2011-08-03 15:10:04,578 - [Deliver Standard 2] SMTPRemoteSender - Read Input: 250 ra...@ep...... Sender OK 2011-08-03 15:10:04,578 - [Deliver Standard 2] SMTPRemoteSender - Writing: RCPT TO:<rap...@ag...> 2011-08-03 15:10:04,578 - [Deliver Standard 2] SMTPRemoteSender - Read Input: 250 rap...@ag...... Recipient OK 2011-08-03 15:10:04,578 - [Deliver Standard 2] SMTPRemoteSender - Writing: DATA 2011-08-03 15:10:04,578 - [Deliver Standard 2] SMTPRemoteSender - Read Input: 354 Enter message, end with "." on a line by itself 2011-08-03 15:10:04,718 - [Deliver Standard 2] SMTPRemoteSender - Read Input: 250 Message accepted for delivery 2011-08-03 15:10:04,718 - [Deliver Standard 2] SMTPRemoteSender - Writing: QUIT 2011-08-03 15:10:04,718 - [Deliver Standard 2] SMTPRemoteSender - Read Input: 221 morswhv64.agfahealthcare.com SMTP Service closing transmission channel 2011-08-03 15:10:04,718 - [Deliver Standard 2] SMTPRemoteSender - Session has ended 2011-08-03 15:10:04,718 - [Deliver Standard 2] SMTPSenderStandard$StandardDeliver - Delivery complete for message 688d9005 to recipient(s) at domain: agfa.com +++++++++++++++++++++++++++++++++++++ ------------------------------------------------------------------------------ EMC VNX: the world's simplest storage, starting under $10K The only unified storage solution that offers unified management Up to 160% more powerful than alternatives and 25% more efficient. Guaranteed. http://p.sf.net/sfu/emc-vnx-dev2dev _______________________________________________ Javaemailserver-user mailing list Jav...@li... https://lists.sourceforge.net/lists/listinfo/javaemailserver-user |
