Sergey Korolew wrote:
> Здравствуйте, Victor.
>> Вы писали 25 октября 2004 г., 22:41:36:
>> VU> но вроде как тестить там особо нечего
> Увы, все равно не работает... Первое же письмо с нерезолвящимся релеем
> отбито..
> Oct 26 12:03:08 bitty sendmail[98164]: i9Q8331q098164: ruleset=check_rcpt, arg1=
> <aptech на bittu.org.ru>, relay=[212.193.48.22], reject=550 5.7.1 <aptech на bittu.org> .ru>... Access denied. Too many digits in sender hostname
>> Пока хак убрал..
используем максимально допустимое количество цифр - пять:
# grep check_relay_dialup_digits sendmail.mc
HACK(`check_relay_dialup_digits', `5')
# grep -e '\[0-9\]\.\*\[0-9\]' /etc/mail/sendmail.cf
Kdulpat_relay_4 regex -a на MATCH
^[^\[].*[0-9].*[0-9].*[0-9].*[0-9].*[0-9].*[0-9]
т. е. при 6-ти и более цифирей в хостнейме получим отлуп
делаем алиас на интерфейсе без записи в реверсной зоне:
# host 10.0.10.5
Host 5.10.0.10.in-addr.arpa not found: 3(NXDOMAIN)
идем с этого алиаса на него же на 25-й порт и отсылаем сообщение:
# telnet 10.0.10.5 25
Trying 10.0.10.5...
Connected to 10.0.10.5 (10.0.10.5).
Escape character is '^]'.
220 corvax.falbi.kiev.ua. ESMTP Sendmail 8.12.11/8.12.11; Tue, 26 Oct
2004 11:24:34 +0300
helo z.z
250 corvax.falbi.kiev.ua. Hello [10.0.10.5], pleased to meet you
mail from:<postmaster на farlep.net>
250 2.1.0 <postmaster на farlep.net>... Sender ok
rcpt to:<corvax+test на corvax.falbi.kiev.ua>
250 2.1.5 <corvax+test на corvax.falbi.kiev.ua>... Recipient ok
data
354 Enter mail, end with "." on a line by itself
From: postmaster на farlep.net
To: corvax+test на corvax.falbi.kiev.ua
Message-Id: <test на farlep.net>
.
250 2.0.0 i9Q8OY1u022856 Message accepted for delivery
quit
221 2.0.0 corvax.falbi.kiev.ua. closing connection
Connection closed by foreign host.
смотрим инфу о нем в логе:
# grep i9Q8OY1u022856 /var/log/maillog | grep -vi milter
Oct 26 11:25:55 corvax sendmail[22856]: i9Q8OY1u022856:
from=<postmaster на farlep.net>, size=97, class=0, nrcpts=1,
msgid=<test на farlep.net>, proto=SMTP, daemon=MSA, relay=[10.0.10.5]
Oct 26 11:25:55 corvax drweb-smf: [i9Q8OY1u022856]: dwlib[22859]: scan:
the message(drweb.tmp.lT4SwB) sent by postmaster на farlep.net to
corvax+test на corvax.falbi.kiev.ua is passed
Oct 26 11:25:55 corvax drweb-smf: [i9Q8OY1u022856]: processing message
from postmaster на farlep.net is over
Oct 26 11:25:59 corvax sendmail[23011]: i9Q8OY1u022856:
to=<corvax+test на corvax.falbi.kiev.ua>, delay=00:00:34, xdelay=00:00:00,
mailer=local, pri=31011, relay=test, dsn=2.0.0, stat=Sent
Oct 26 11:25:59 corvax sendmail[23011]: i9Q8OY1u022856: done;
delay=00:00:34, ntries=1
обращаем внимание на то, что указано в качетсве relay (цифр в нем 6):
# grep i9Q8OY1u022856 /var/log/maillog | grep -vi milter | grep relay
Oct 26 11:25:55 corvax sendmail[22856]: i9Q8OY1u022856:
from=<postmaster на farlep.net>, size=97, class=0, nrcpts=1,
msgid=<test на farlep.net>, proto=SMTP, daemon=MSA, relay=[10.0.10.5]
Oct 26 11:25:59 corvax sendmail[23011]: i9Q8OY1u022856:
to=<corvax+test на corvax.falbi.kiev.ua>, delay=00:00:34, xdelay=00:00:00,
mailer=local, pri=31011, relay=test, dsn=2.0.0, stat=Sent
теперь делаем такой же экперимент, но с хостом, у которого цифирей
поболее в имени хоста:
# host 195.177.71.218
218.71.177.195.in-addr.arpa domain name pointer 3-m82-v50.r1.ll.kw.ua.
# telnet corvax.falbi.kiev.ua 25
Trying 194.183.174.250...
Connected to corvax.falbi.kiev.ua.
Escape character is '^]'.
220 corvax.falbi.kiev.ua. ESMTP Sendmail 8.12.11/8.12.11; Tue, 26 Oct
2004 11:29:41 +0300
helo z.z
250 corvax.falbi.kiev.ua. Hello 3-m82-v50.r1.ll.kw.ua [195.177.71.218],
pleased to meet you
mail from:<postmaster на farlep.net>
250 2.1.0 <postmaster на farlep.net>... Sender ok
rcpt to:<corvax+test на corvax.falbi.kiev.ua>
550 5.7.1 <corvax+test на corvax.falbi.kiev.ua>... Access denied. Too many
digits in sender hostname
quit
221 2.0.0 corvax.falbi.kiev.ua. closing connection
Connection closed by foreign host.
# grep i9Q8TfQe023033 /var/log/maillog | grep -vi milter
Oct 26 11:30:07 corvax sendmail[23033]: i9Q8TfQe023033:
ruleset=check_rcpt, arg1=<corvax+test на corvax.falbi.kiev.ua>,
relay=3-m82-v50.r1.ll.kw.ua [195.177.71.218], reject=550 5.7.1
<corvax+test на corvax.falbi.kiev.ua>... Access denied. Too many digits in
sender hostname
Oct 26 11:30:12 corvax sendmail[23033]: i9Q8TfQe023033:
from=<postmaster на farlep.net>, size=0, class=0, nrcpts=0, proto=SMTP,
daemon=MSA, relay=3-m82-v50.r1.ll.kw.ua [195.177.71.218]
Oct 26 11:30:12 corvax drweb-smf: [i9Q8TfQe023033]: message from
postmaster на farlep.net is aborted
т. е. хак работает
--
Best wishes Victor Ustugov mailto:victor на corvax.kiev.ua
public GnuPG/PGP key: http://victor.corvax.kiev.ua/corvax.asc
ICQ: 77186900, 32418694 CRV2-RIPE, CRV-UANIC